Trail of Bits
Audit Open Original ↗

Scroll ZkEVM Wave 2

Type

Security review

Client

Scroll

Date

2023-08

Domain

Blockchain

Effort

6 wks

Section

Scroll

Trail of Bits's security review of Scroll (Aug 2023) identified 10 issues: 3 high, and 7 informational.

Findings · 10

  1. 1 PoseidonLookup is not implemented Informational
  2. 2 IsZeroGadget does not constrain the inverse witness when the value is zero Informational
  3. 3 The MPT nonexistence proof gadget is missing constraints specified in the documentation Informational
  4. 4 Discrepancies between the MPT circuit specification and implementation Informational
  5. 5 Redundant lookups in the Word RLC circuit Informational
  6. 6 The NonceChanged configuration circuit does not constrain the new value nonce value High
  7. 7 The Copy circuit does not totally enforce the tag values Informational
  8. 8 The “invalid creation” error handling circuit is unconstrained High
  9. 9 The OneHot primitive allows more than one value at once High
  10. 10 Intermediate columns are not explicit Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.

Related