Core Contracts

Regnum Aurum Acquisition Corp

HardhatReal World AssetsNFT

77,280 USDC

View results

Previous Next

Submission Details

Severity: medium

Invalid

Lack of update Mechanism in BaseGauge.

akioniace

Summary

BaseGauge.sol defines many critical variable Particularly rewardToken, stakingToken, controller which are only set once. There are no functions allowing contract owner( or anyother entity defined in contract for operating critical function) to either update these references. Consequently, if the rewardToken or stakingToken turns out to be deprecated, invalid or compromised, there is no mechanism to change to original one. Similarly, if rewardToken, stakingToken or controller addresses need to change (e.g., due to upgrade or security issues), there is no built in function to do it.

Vulnerability Details

1. The `rewardToken`, `stakingToken` and `controller` addresses are declared as `public immutable`, meaning:

They are set once during contract deployment (in the constructor).
They cannot be modified after deployment.
This design choice is efficient for gas usage but lacks flexibility for adapting to changes in external dependencies.

2. Potential Scenarios Requiring Address Updates

The rewardToken, stakingToken, controller contract addresses might change in the following situations:

Upgrades and Optimizations:
- If Some reason rewardToken or stakingToken or controller releases a new version of the contract with improved features, optimizations, or bug fixes.
- The old contract is deprecated, and owner need to migrate to the new address.
Critical Bug Fixes:
- A critical vulnerability is discovered in the any of the above contracts, requiring a patched version with a new address.
Chain-Specific Deployments:
- The contract is deployed on multiple chains, what if rewardToken, stakingToken addresses differs across chains. If the contract is not redeployed with the correct address, it will fail to function on the new chain.

Heres the Code Link of the contract: SLOC#30-37

// File: contracts/core/governance/gauges/BaseGauge.sol

/// @notice Token distributed as rewards

IERC20 public immutable rewardToken; // <@ as POC, see no update

/// @notice Token that can be staked

IERC20 public immutable stakingToken; // <@ as POC, see no update

/// @notice Controller contract managing gauge weights

address public immutable controller; // <@ as POC, see no update

Impact

If any of the address changes, the BaseGauge contract will continue to interact with the old address. This may force the entire system to rely on an unsafe or useless contract indefinitely or require a full contract migration.

Tools Used

Manual Review

Recommended Mitigation

Provide functions to update rewardToken, stakingToken or controller if necessary. These can be restricted through onlyOwner or a more robust governance mechanism to prevent unauthorized changes.

Updates

Lead Judging Commences

inallhonesty Lead Judge 7 months ago

Submission Judgement Published

Invalidated

Reason: Design choice

Prize pool breakdown

Total prize

77,280 USDC

nSLOC

3,864

20 USDC / LOC

High Medium

74,000

Low

3,280

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.