According to CCIP docs at :
https://docs.chain.link/ccip/api-reference/i-router-client#getfee
getFee()
would return 0 for invalid messages but the return value of the function is never checked throughout the protocol . We can see it in WrappedTokenBridge.sol
at:
https://github.com/Cyfrin/2023-12-stake-link/blob/main/contracts/core/ccip/WrappedTokenBridge.sol#L177
and can also be seen in the mentioned links provided.
Could cause unexpected Errors for Invalid Messages
Manual Review, CCIP Docs
Check whether fees returned from getFee() is 0 or not.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.