Dria

Swan

NFTHardhat

21,000 USDC

View results

Previous Next

Submission Details

Severity: medium

Invalid

Protocol String Length Validation Missing in `request` Function

0xrakesh_ummadi28

Summary

The request function in the smart contract expects a protocol string of exactly 32 bytes, as noted in the function's documentation. However, there is no validation to enforce this length. Allowing protocol inputs of any length can lead to unexpected behavior and runtime errors in parts of the contract.

Vulnerability Details

Function: request
Issue: Without a validation check, the protocol parameter could be set to a length other than 32 bytes, leading to potential issues in storage or downstream processing that expects a strict 32-byte format.

Location:
LLMOracleCoordinator.sol

https://github.com/Cyfrin/2024-10-swan-dria/blob/c3f6f027ed51dd31f60b224506de2bc847243eb7/contracts/llm/LLMOracleCoordinator.sol#L150

Impact

If the protocol string length is inconsistent, it may cause unexpected behavior in storage or processing tasks.
The lack of validation may lead to runtime errors in tasks or components that assume a fixed-length protocol parameter.

Tools Used

Manual review

Recommendations

Add a validation check in the request function to enforce a 32-byte length for the protocol parameter. This will ensure consistency with the expected format and prevent any downstream errors.

Suggested Mitigation

require(bytes(protocol).length == 32, "Protocol must be a 32-byte string");

Updated function

function request(

bytes32 protocol,

bytes memory input,

bytes memory models,

LLMOracleTaskParameters calldata parameters

) public onlyValidParameters(parameters) returns (uint256) {

// Ensure protocol is exactly 32 bytes

(+) require(bytes(protocol).length == 32, "Protocol must be a 32-byte string");

(uint256 totalfee, uint256 generatorFee, uint256 validatorFee) = getFee(parameters);

//Remaing code ..

}

Updates

Lead Judging Commences

inallhonesty Lead Judge

9 months ago

inallhonesty Lead Judge 8 months ago

Submission Judgement Published

Invalidated

Reason: Incorrect statement

Prize pool breakdown

Total prize

21,000 USDC

nSLOC

1,034

20 USDC / LOC

High Medium

20,000 USDC

Low

1,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.