Controller cannot operate a gauge normally
Summary
Controller cannot operate a gauge normally, due to missing several functions.
Vulnerability Details
The gauge controller lacks functions to invoke updatePeriod, setEmission and setInitialWeight, however these function have onlyController modifier meaning that only this contract would be able to call them.
https://github.com/Cyfrin/2025-02-raac/blob/main/contracts/core/governance/gauges/BaseGauge.sol#L452
Impact
Controller cannot operate properly his gauges.
Emissions won't be configurable.
votingPeriod will never be made, except the one in the constructor, but this one is only 1 week and when it passes it's over.
Periods are the way that rewards are distributed inside gouges and without them they won't distribute rewards properly.
Tools Used
Manual review
Recommendations
Add functions inside the controller to operate properly those gauges.
Lead Judging Commences
`setWeeklyEmission`, `setBoostParameters`, `setEmission` and `setInitialWeight` cannot be called due to controller access control - not implemented in controller
`setWeeklyEmission`, `setBoostParameters`, `setEmission` and `setInitialWeight` cannot be called due to controller access control - not implemented in controller
Appeal created
`setWeeklyEmission`, `setBoostParameters`, `setEmission` and `setInitialWeight` cannot be called due to controller access control - not implemented in controller
GaugeController::updatePeriod doesn't call the gauge's updatePeriod function, preventing periodState.distributed from resetting and eventually causing distributeRewards to permanently fail
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.