Voting power based on balance on some situations and in other voting power function
Summary
The voting power calculation is inconsistent across different parts of the protocol.
In BaseGauge, the system uses
balanceOfon veRAAC, meaning it considers the raw token balance.In Governance, the system uses
getVotingPower, which follows the Curve-style time decay model.
This discrepancy creates inconsistencies in how voting power is measured across the protocol.
Vulnerability Details
Example Scenario
A user locks 1000 RAAC tokens for 1 year.
Over time, the
getVotingPowerfunction reduces their voting power, as it follows a time-based decay model.In Governance, the user’s voting power decreases over time (expected behavior).
However, in BaseGauge, the user’s power remains based on
balanceOf, meaning they always have full power as long as they hold veRAAC.This inconsistency allows users to have higher influence in gauge voting than in governance, potentially skewing incentives and rewards.
Impact
Unfair Influence – Users can have different voting power depending on which function is used.
Incentive Misalignment – A user may have full gauge voting power even though their governance power is decaying.
Tools Used
Manual review
Recommendations
Ensure all voting mechanisms use getVotingPower instead of balanceOf, to consistently apply the decay model across the protocol.
Lead Judging Commences
BaseGauge::_applyBoost, GaugeController::vote, BoostController::calculateBoost use balanceOf() instead of getVotingPower() for vote-escrow tokens, negating time-decay mechanism
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.