TempleGold
TempleDAO
Foundry
25,000 USDC
View results
Previous Next
Submission Details
Severity: high
Invalid

Incorrect Distribution Parameters Validation

0xdevin

Summary

The function setDistributionParams is intended to ensure that the sum of the distribution percentages for staking, gnosis, and escrow add up to 100%. However, the code only checks if the sum is equal to DISTRIBUTION_DIVISOR, which is set to 100 ether. This creates a potential issue where the distribution parameters can be incorrectly validated if the inputs are not properly scaled.

Vulnerability Details

function setDistributionParams(DistributionParams calldata _params) external override onlyOwner {
if (_params.staking + _params.gnosis + _params.escrow != DISTRIBUTION_DIVISOR) {
revert ITempleGold.InvalidTotalShare();
}
distributionParams = _params;
emit DistributionParamsSet(_params.staking, _params.escrow, _params.gnosis);
}

https://github.com/Cyfrin/2024-07-templegold/blob/57a3e597e9199f9e9e0c26aab2123332eb19cc28/protocol/contracts/templegold/TempleGold.sol#L120C1-L124C6

The check _params.staking + _params.gnosis + _params.escrow != DISTRIBUTION_DIVISOR only verifies if the sum of the input parameters equals DISTRIBUTION_DIVISOR. It does not ensure that these parameters are properly scaled by 1 ether, which can lead to incorrect validation.

For example, the expected inputs should be staking = 50 ether, gnosis = 30 ether, and escrow = 20 ether. If a user provides staking = 50, gnosis = 30, and escrow = 20 instead, the sum would be 100, which satisfies the current validation check but does not match the required scaling.

Impact

Incorrect Token Distribution:

  • Disproportionate Rewards: The minting process could distribute tokens disproportionately if the parameters are not properly scaled. For example, a distribution parameter of 50 instead of 50 ether would drastically reduce the number of tokens allocated for staking, gnosis, and escrow.

  • Economic Imbalance: This can lead to an economic imbalance within the ecosystem, where some entities receive far fewer tokens than intended, affecting incentives for participation.

Security Vulnerability:

  • Exploitation by Malicious Actors: A malicious actor could deliberately provide incorrectly scaled parameters to manipulate the token distribution for their gain.

Tools Used

Recommendations

  • Modify the validation check to ensure that the inputs are properly scaled by comparing them with DISTRIBUTION_DIVISOR multiplied by 1 ether.

function setDistributionParams(DistributionParams calldata _params) external override onlyOwner {
// Correct validation: ensures inputs are scaled properly
if (_params.staking + _params.gnosis + _params.escrow != DISTRIBUTION_DIVISOR) {
revert ITempleGold.InvalidTotalShare();
}
distributionParams = _params;
emit DistributionParamsSet(_params.staking, _params.escrow, _params.gnosis);
}
// Updated validation function
function validateDistributionParams(DistributionParams memory _params) internal pure returns (bool) {
return (_params.staking + _params.gnosis + _params.escrow == DISTRIBUTION_DIVISOR);
}
// Usage in setDistributionParams
function setDistributionParams(DistributionParams calldata _params) external override onlyOwner {
if (!validateDistributionParams(_params)) {
revert ITempleGold.InvalidTotalShare();
}
distributionParams = _params;
emit DistributionParamsSet(_params.staking, _params.escrow, _params.gnosis);
}
Updates

Lead Judging Commences

inallhonesty Lead Judge 12 months ago
Submission Judgement Published
Invalidated
Reason: Lack of quality

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.