Fjord Token Staking
Fjord
Submission Details
Severity: medium
ValidonStreamCanceled function breaks points accounting
Updates
Lead Judging Commences
Submission Judgement Published
Validated
Assigned finding tags:
Sablier calls `onStreamCanceled` > `_unstakeVested` > points.onUnstaked(msg.sender, amount); making the effects of points.onUnstaked apply to sablier who's the msg.sender.
Indeed the `points.onUnstaked` should use the streamOwner instead of msg.sender as an input parameter. Impact: high - The vested stakers who got their streams canceled will keep on receiving rewards (points included) for the previously staked stream. Likelihood: low - whenever a Sablier stream sender decides to `cancel()` a recipient's stream
Prize pool breakdown
Total prize
20,000 USDC
nSLOC
66230 USDC / LOC
High Medium
16,000 USDC
Low
2,500 USDC
Judges
1,500 USDC
Live
The contest is live. Earn rewards by submitting a finding.
Community Judging
Submissions are being reviewed by the community.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.