Assessment reportsPublic findings
Back to Zellic site
Assessment reports>Orderly Strategy Vault>Design>Component: LedgerImplA
GeneralOverview
Findings
Informational (1)
DiscussionCCTP supportTypos in the codebaseExecution ordering
DesignComponent: Protocol VaultComponent: LedgerImplCComponent: Protocol Vault LedgerComponent: VaultCrossChainManagerComponent: CrossChainRelayUpgradeableComponent: LedgerCrossChainManagerUpgradeableComponent: VaultCrossChainManagerUpgradeableComponent: LedgerImplAComponent: VaultManagerComponent: Ledger
Audit ResultsAssessment Results

Component: LedgerImplA

Description

The LedgerImplA contract provides the logic and state updates that power important account operations like deposits, withdrawals, liquidation, and settlement. It ensures these operations are carried out securely and consistently, relying on checks for broker/token allowance, EIP-712 signatures, and safe finalization of withdrawals.

Invariants

  1. Account integrity

    • Deposits and withdrawals must reference valid accountIds that match the broker hash and user address (verified via Utils.validateAccountId).

    • If an account does not exist yet, its first deposit automatically registers it.

  2. Balance consistency

    • When an account deposits, its ledger balance and the corresponding chain balance in VaultManager must both increase by the deposit amount.

    • When an account withdraws, the withdrawn amount is frozen in both the ledger and the vault until finalization, preventing double-spends or repeated withdrawals.

  3. Authorization

    • Only the cross-chain manager is allowed to call accountDeposit.

    • Only the designated operator can call certain methods, such as executeWithdrawAction.

    • Broker, token, and symbol checks must be successful before an operation can proceed (e.g., vaultManager.getAllowedBroker, vaultManager.getAllowedChainToken).

  4. Signature validity

    • Methods like Signature.verifyWithdraw and Signature.verifyDelegateWithdraw ensure that any user-initiated withdrawal is backed by a correct EIP-712 signature.

    • These checks safeguard against unauthorized or replayed transactions by requiring a strictly increasing withdrawNonce.

Test coverage

Key cases covered

  1. Correct signature validation

    • Verifies that a valid EIP-712 signature (verifyWithdraw) succeeds when the chainId and signature data match

  2. Signature failure with incorrect chainId

    • Checks that providing an incorrect chainId causes the withdrawal signature verification to fail, thereby rejecting the transaction

  3. Valid deposit via cross-chain

    • Simulates a deposit called by the cross-chain manager

    • Confirms that ledger and VaultManager balances both reflect the deposited amount

  4. Withdrawal approval

    • Examines executeWithdrawAction, ensuring that the user’s ledger balance is frozen and the corresponding vault chain balance is also locked

    • Shows that amounts remain frozen until the withdrawal is finalized on chain

  5. Revert on invalid accountId

    • Attempts to deposit with an accountId that does not match the user address and broker hash, causing the operation to revert

  6. Withdrawal finalization

    • Tests finalizing a withdrawal with accountWithDrawFinish, verifying that frozen balances are removed from the ledger and vault once the process completes

    • Demonstrates a full cross-chain withdrawal flow from freeze to finish

Attack surface

  • Signature replay or invalid signature

    • All user-triggered withdrawals require a valid EIP-712 signature from the correct user and a monotonically increasing withdrawNonce. This mitigates replay and spoofing.

  • Unauthorized calls

    • Only whitelisted entities can call accountDeposit.

    • Only the system’s designated operator can trigger certain ledger actions.

    • Additional safeguards exist through vaultManager checks to ensure only allowed brokers and tokens are utilized.

  • Frozen-balance manipulation

    • During a withdrawal, both ledger and vault balances are frozen. Nonces ensure the same amount cannot be unfrozen more than once, preventing any double-spend exploits.

Zellic © 2025Back to top ↑