First Flight #17: Dussehra

First Flight #17

Beginner FriendlyFoundryNFT

100 EXP

View results

Previous Next

Submission Details

Severity: medium

Invalid

Unfair randomness in `selectRamIfNotSelected` function

yaioxy

Summary

The ChoosingRam::selectRamIfNotSelected function uses a modulo operation for randomness, which can lead to unfairness where certain tokens may have a lower probability of being selected.

Vulnerability Details

The function uses the following line to generate a random token ID:

uint256 random = uint256(keccak256(abi.encodePacked(block.timestamp, block.prevrandao))) % ramNFT.tokenCounter();

This modulo operation (% ramNFT.tokenCounter()) can introduce bias if the token counter is not a power of two. For example, if ramNFT.tokenCounter() is not a power of two, some token IDs may have a slightly higher probability of being selected than others.

Impact

Certain tokens may have a lower probability of being selected, leading to an unfair selection process.

Tools Used

Manual review

Recommendations

Use a more uniform method for random selection to ensure all tokens have an equal chance of being selected. One approach is to use a secure randomness source like ChainLink VRF.

Updates

Lead Judging Commences

bube Lead Judge over 1 year ago

Submission Judgement Published

Invalidated

Reason: Non-acceptable severity

Rewards breakdown

nSLOC

218

This contest has a flat reward structure with the following payouts:

High

100 EXP

Medium

20 EXP

Low

2 EXP

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.

Give us feedback!