Incorrect cut calculation on pot closing leads to locking part of the funds in the Pot contract
Summary
Function Pot::closePot incorrectly calculates cut that must be paid to claimants and taht leads to part of the funds are locked in the Pot contract after the pot is closed.
Vulnerability Details
Function Pot::closePot transfers the manager's cut and then distributes remaining rewards between players who claimed their cut in time:
The issue here is that claimant's cut is calculated as (remainingRewards - managerCut) / i_players.length, but it must be (remainingRewards - managerCut) / claimants.length. If some players have not claimed their cut, the claimants count is less then i_players.length (overall players count), and the calculated cut will be smaller than it must be.
Impact
Part of the funds will be locked in the Pot contract after closing if some players do not claim their rewards in time.
Tools Used
Manual review
Recommendations
Change claimant cut calculation as below:
Lead Judging Commences
Incorrect distribution in closePot()
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.