rsrRewardsAtLastPayout is incorrectly updated to a smaller value in seizeRSR. This results in the staker pool receiving less rewards in subsequent reward payouts than expected.
Proof of Concept
In function seizeRSR, the amount of seized stakeRSR, draftRSR, and rewards are calculated based on the seized ratio, where seizedRatio = ceil(rsrAmount / rsrBalance). At line 472, the seized rsrRewards is calculated as (rewards * rsrAmount + (rsrBalance - 1)) / rsrBalance, and is then added to the total seizedRSR. Then the seized rsrRewards should be subtracted from the current rsrRewards to update rsrRewardsAtLastPayout. However, it is the total seizedRSR is subtracted from the current rsrRewards instead of the seized rsrRewards. This results in rsrRewardsAtLastPayout being incorrectly updated to a smaller value.
The rsrRewardsAtLastPayout is used in _payoutRewards to calculate the payout amount (L609-L610). If rsrRewardsAtLastPayout is incorrectly updated to a smaller value, the staker pool will receive less rewards than expected.
// Function: StRSR.sol#_payoutRewards()
600: // Do an actual payout if and only if enough RSR is staked!
601: if (totalStakes >= FIX_ONE) {
602: // Paying out the ratio r, N times, equals paying out the ratio (1 - (1-r)^N) 1 time.
603: // Apply payout to RSR backing
604: // payoutRatio: D18 = FIX_ONE: D18 - FixLib.powu(): D18
605: // Both uses of uint192(-) are fine, as it's equivalent to FixLib.sub().
606: uint192 payoutRatio = FIX_ONE - FixLib.powu(FIX_ONE - rewardRatio, numPeriods);
607:
608: // payout: {qRSR} = D18{1} * {qRSR} / D18
609:@> payout = (payoutRatio * rsrRewardsAtLastPayout) / FIX_ONE;
610:@> stakeRSR += payout;
611: }
Lines of code
https://github.com/code-423n4/2024-07-reserve/blob/main/contracts/p1/StRSR.sol#L471-L473
Vulnerability details
Impact
rsrRewardsAtLastPayoutis incorrectly updated to a smaller value inseizeRSR. This results in the staker pool receiving less rewards in subsequent reward payouts than expected.Proof of Concept
In function
seizeRSR, the amount of seizedstakeRSR,draftRSR, andrewardsare calculated based on the seized ratio, whereseizedRatio = ceil(rsrAmount / rsrBalance). At line 472, the seizedrsrRewardsis calculated as(rewards * rsrAmount + (rsrBalance - 1)) / rsrBalance, and is then added to the totalseizedRSR. Then the seizedrsrRewardsshould be subtracted from the currentrsrRewardsto updatersrRewardsAtLastPayout. However, it is the totalseizedRSRis subtracted from the currentrsrRewardsinstead of the seizedrsrRewards. This results inrsrRewardsAtLastPayoutbeing incorrectly updated to a smaller value.https://github.com/code-423n4/2024-07-reserve/blob/main/contracts/p1/StRSR.sol#L471-L473
The
rsrRewardsAtLastPayoutis used in_payoutRewardsto calculate the payout amount (L609-L610). IfrsrRewardsAtLastPayoutis incorrectly updated to a smaller value, the staker pool will receive less rewards than expected.https://github.com/code-423n4/2024-07-reserve/blob/main/contracts/p1/StRSR.sol#L600-L611
Tools Used
VS Code
Recommended Mitigation Steps
Update the
rsrRewardsAtLastPayoutby subtracting the seizedrsrRewardsfrom the currentrsrRewardsinstead of the totalseizedRSR.Assessed type
Other