[NCC-E008263-4VP] Unchecked Accesses to Data Structures #457

conradoplg · 2023-07-26T18:51:38Z

In multiple instances, dictionary are accessed directly, which leads to panics if the key is not present. See report for more details.

Also, in aggregate(), we should make sure that the 3 arguments have matching sets of identifiers.

Fix those:

It's probably better to avoid indexing directly altogether and use .get() instead, handling the error. Try enabling the indexing_slicing lint (possibly with an exception in test code)
Add a validation in aggregate() to make sue the identifier sets are consistent (signing_package.signing_commitments and signature_shares should have equal keys, and they should be a subset of pubkeys.signer_pubkeys)

The text was updated successfully, but these errors were encountered:

mpguerra mentioned this issue Jul 27, 2023

Epic: Improvements from FROST Audit #451

Closed

26 tasks

conradoplg self-assigned this Aug 15, 2023

conradoplg mentioned this issue Aug 15, 2023

Fix unchecked access #477

Merged

mergify bot closed this as completed in #477 Aug 16, 2023

mpguerra added this to the FROST Audit milestone Aug 24, 2023

mpguerra added this to FROST Aug 24, 2023

mpguerra moved this to Done in FROST Aug 24, 2023

Provide feedback