Incorrect Return Value in mul_mod Function #10
Labels
bug
Something isn't working
downgraded by judge
Judge downgraded the risk level of this issue
grade-b
primary issue
Highest quality submission among a set of duplicates
Q-03
QA (Quality Assurance)
Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
🤖_primary
AI based primary recommendation
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
sufficient quality report
This report is of sufficient quality
Comments
howlbot-integration
bot
added
3 (High Risk)
|
Thankfully this isn't in use. We're going to rip this function out. |
af-afk
added
the
sponsor confirmed
|
Is it fair to say this is a high issue if we're not using this code? |
|
The Warden has identified a severe flaw in the As the function remains unused in the codebase, it has a zero likelihood of manifesting in the compiled code of the project and thus merits a QA severity rating. |
c4-judge
added
downgraded by judge
|
alex-ppg changed the severity to QA (Quality Assurance) |
|
alex-ppg marked the issue as grade-b |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Lines of code
https://github.com/code-423n4/2024-10-superposition/blob/7ad51104a8514d46e5c3d756264564426f2927fe/pkg/seawater/src/maths/full_math.rs#L28
Vulnerability details
The mul_mod function is intended to calculate the result of
a×bmodc, but due to a logical issue, it returns the modified modulus (denoted as c) instead of the result of the modulo operation. This leads to incorrect outcomes when using this function, which can result in unintended behavior, especially in critical financial or cryptographic operations where correct modular arithmetic is essential.
The issue with the return value in the mul_mod function arises because the function is intended to compute
a×bmodc — i.e., it should return the result of multiplying a and b, and then taking the remainder when that product is divided by modulus (denoted as c).
However, the current implementation mistakenly returns the modified modulus itself, rather than the remainder
Why is this a problem?
In modular arithmetic, you typically want to compute a result like this:
result=(a×b)%c This means you:
Multiply a and b together to get a large number (the "product").
Divide the product by c (modulus), and return the remainder from that division as the result.
Instead, the function currently:
Multiplies a and b correctly, storing the product in a temporary variable.
Modifies the modulus variable by performing division (which likely updates its internal representation).
Returns the modified modulus, which is not the result of
a×bmodc.
Example of Correct Logic:
Consider a = 10, b = 20, and c = 7.
200÷7=28 with a remainder of 4.
The function should return 4 because
200%7=4.
Instead, the current function is returning c (or modulus), which is 7, not the remainder 4.
The function needs to return the remainder of the division, not the modified modulus.
Assessed type
Other
The text was updated successfully, but these errors were encountered: