templeToken can be locked in the DaiGoldAuction if there are no bidders
Summary
In DaiGoldAuction, templeTokenwill be locked in the contract if there are no bidders for an auction.
Vulnerability Details
The auction can be started by auctionStarterusing startAuctionfunction. This function calls _distributeGoldwhich mints the templeTokento DaiGoldAuctioncontract according to DistributionParams. The number of templeTokenminted plus carry-forward from previous auction will be set as totalAuctionTokenAmountin EpochInfofor that auction. Once the auction is started and cooldown period has passed, no one will be able to totalAuctionTokenAmountis reserved for bidders of that auction. If there are no bidders for that auction, totalAuctionTokenAmountset for that auction will be permanantly locked in the contract.
SpiceAuctionhas an function recoverAuctionTokenForZeroBidAuction for such scenarios but DaiGoldAuctionis lacking this functionality.
Impact
The templeTokencan be permanantly locked in the contract if there are no bidders for an auction.
Tools Used
Manual review
Recommendations
Introduce a function which can recover templeToken(i.e. auctionToken) if there are no bidders for the completed auction.
Lead Judging Commences
Auctioned tokens cannot be recovered for epochs with empty bids in DaiGoldAuction
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.