Assessment reportsPublic findings
Back to Zellic siteBack
Assessment reports>SSI Protocol>Threat Model>Function: addBurnFeeRequest(uint256 assetID, OrderInfo orderInfo)
GeneralOverview
Findings
Medium (3)
Low (4)
DiscussionTest suiteCustom errors could save gasRedundant checksNo storage gap for upgradable contractsCentralization risk
Threat ModelWhat are threat models?AssetFactory.sol
AssetFeeManager.solFunction: addBurnFeeRequest(uint256 assetID, OrderInfo orderInfo)
AssetIssuer.solAssetLocking.solAssetRebalancer.solAssetToken.solStakeFactory.solStakeToken.solSwap.solUSSI.sol
Audit ResultsAssessment Results

Function: addBurnFeeRequest(uint256 assetID, OrderInfo orderInfo)

The function is used to add a burn-fee request for a given asset.

Inputs

  • assetID

    • Control: Fully controlled by the caller.

    • Constraints: The contract is checked to be a fee manager of the asset.

    • Impact: A non-manager cannot create a burn request.

  • orderInfo

    • Control: Fully controlled by the caller.

    • Constraints: The order should not have been used before for the asset swap. The order hash should match the hash computed over the order structure. The signature of the order is verified to have been made by the order maker.

    • Impact: Prevents invalid order from being passed or replayed to the same swap.

Branches and code coverage

Intended branches

  • A burn request is successfully created for a valid order and a fee manager.

Negative behavior

  • A burn request should revert when the contract is not a fee manager for the asset.

  • A burn request should revert when the order is invalid.

  • A burn request should revert when the order was already used for the same swap.

  • A burn request should revert when there are not enough fee tokens.

  • A burn request should revert when the chains do not match.

  • A burn request should revert when the out-token list is not the vault.

  • A burn request should revert when some tokens are not whitelisted.

Zellic © 2025Back to top ↑