Core Contracts

Regnum Aurum Acquisition Corp

HardhatReal World AssetsNFT

77,280 USDC

View results

Previous Next

Submission Details

Severity: high

Valid

User locking there `RAAC` tokens again in `veRAACToken` will loose all there previous position and funds.

nikhil20

Summary

The function veRAACToken::lock does not check whether the user already has an existing locked position or if they are locking tokens for the first time. This omission causes previously locked values to be overwritten, leading to loss of voting power and locked funds data.

Vulnerability Details

The function veRAACToken::lock is responsible for locking RAAC tokens in exchange for veRAACTokens, which serve as voting power in governance. However, the function lacks a check to determine if the user already has an active lock. As a result, when a user attempts to lock additional funds, their previous position is overwritten instead of being updated, leading to loss of accumulated voting power and incorrect lock state tracking.

Key Affected Areas:

Lock State Overwritten
In _lockState::createLock, a new lock replaces the existing one without checking if the user already has a locked position:

state.locks[user] = Lock({
amount: amount,
end: end,
exists: true
});
- Impact: If a user locks additional tokens, their previous lock amount and duration are replaced, effectively resetting their lock progress.
Voting Power Reset
In _votingState::calculateAndUpdatePower, the previous voting power is discarded, and a new state is assigned:

state.points[user] = RAACVoting.Point({
bias: bias,
slope: slope,
timestamp: block.timestamp
});
- Impact: The user's voting power is recomputed from scratch, erasing previously accumulated voting influence.

Impact

Users lose their previous locked tokens' progress when attempting to lock additional funds.
Voting power resets, leading to governance inconsistencies.
Potential manipulation by malicious users who intentionally reset their lock state to gain an unfair advantage.

Tools Used

Manual review
Static analysis

Recommendations

Check if the user already has a locked position before overwriting values.
Modify the logic to allow additional deposits to extend an existing lock instead of replacing it.
Implement a merge/update mechanism for existing locks instead of replacing them entirely.

Updates

Lead Judging Commences

inallhonesty Lead Judge 7 months ago

Submission Judgement Published

Validated

Assigned finding tags:

veRAACToken::lock called multiple times, by the same user, leads to loss of funds

Prize pool breakdown

Total prize

77,280 USDC

nSLOC

3,864

20 USDC / LOC

High Medium

74,000

Low

3,280

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.

Give us feedback!