Skip to content

[Audit C-01] Emitted BFV public-key bytes are not bound to the proven commitment #1708

Description

@hmzakhalid

Finding

Severity: Critical

Confirmed against baseline commit d4277510d. The baseline accepted a C5 proof for a public-key commitment while emitting caller-supplied BFV bytes without checking that those bytes canonically recomputed the proven commitment.

Full audit report

Required remediation

Validate canonical BFV public-key encoding at the client/indexer trust boundary, recompute its commitment, and require it to equal the C5 commitment before publication is accepted.

The dedicated fixing commit and remediation PR will be linked in a follow-up comment.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions