mirror of
https://github.com/logos-co/staking.git
synced 2025-01-27 10:54:57 +00:00
9b084c1b15
There have been a bunch of breaking changes in the staking contract that resulted in our specs not compiling. This commit fixes this, however it does not yet ensure the prover is satisfied.
130 lines
2.9 KiB
Ruby
130 lines
2.9 KiB
Ruby
using ERC20A as staked;
|
|
using StakeManagerNew as newStakeManager;
|
|
|
|
methods {
|
|
function staked.balanceOf(address) external returns (uint256) envfree;
|
|
function totalSupplyBalance() external returns (uint256) envfree;
|
|
function totalSupplyMP() external returns (uint256) envfree;
|
|
function oldManager() external returns (address) envfree;
|
|
function accounts(address) external returns(address, uint256, uint256, uint256, uint256, uint256, uint256) envfree;
|
|
|
|
function _.migrationInitialize(uint256,uint256,uint256,uint256) external => DISPATCHER(true);
|
|
function StakeManagerNew.totalSupplyBalance() external returns (uint256) envfree;
|
|
}
|
|
|
|
|
|
function getAccountMultiplierPoints(address addr) returns uint256 {
|
|
uint256 multiplierPoints;
|
|
_, _, _, multiplierPoints, _, _, _ = accounts(addr);
|
|
|
|
return multiplierPoints;
|
|
}
|
|
|
|
function getAccountBalance(address addr) returns uint256 {
|
|
uint256 balance;
|
|
_, balance, _, _, _, _, _ = accounts(addr);
|
|
|
|
return balance;
|
|
}
|
|
|
|
definition blockedWhenMigrating(method f) returns bool = (
|
|
f.selector == sig:stake(uint256, uint256).selector ||
|
|
f.selector == sig:unstake(uint256).selector ||
|
|
f.selector == sig:lock(uint256).selector ||
|
|
f.selector == sig:executeEpoch().selector ||
|
|
f.selector == sig:startMigration(address).selector
|
|
);
|
|
|
|
definition blockedWhenNotMigrating(method f) returns bool = (
|
|
f.selector == sig:migrateTo(bool).selector ||
|
|
f.selector == sig:transferNonPending().selector
|
|
);
|
|
|
|
rule rejectWhenMigrating(method f) filtered {
|
|
f -> blockedWhenMigrating(f)
|
|
} {
|
|
calldataarg args;
|
|
env e;
|
|
|
|
require currentContract.migration != 0;
|
|
|
|
f@withrevert(e, args);
|
|
|
|
assert lastReverted;
|
|
}
|
|
|
|
rule allowWhenMigrating(method f) filtered {
|
|
f -> !blockedWhenMigrating(f)
|
|
} {
|
|
calldataarg args;
|
|
env e;
|
|
|
|
require currentContract.migration != 0;
|
|
|
|
f@withrevert(e, args);
|
|
|
|
satisfy !lastReverted;
|
|
}
|
|
|
|
|
|
rule rejectWhenNotMigrating(method f) filtered {
|
|
f -> blockedWhenNotMigrating(f)
|
|
} {
|
|
calldataarg args;
|
|
env e;
|
|
|
|
require currentContract.migration == 0;
|
|
|
|
f@withrevert(e, args);
|
|
|
|
assert lastReverted;
|
|
}
|
|
|
|
rule allowWhenNotMigrating(method f) filtered {
|
|
f -> !blockedWhenNotMigrating(f)
|
|
} {
|
|
calldataarg args;
|
|
env e;
|
|
|
|
require currentContract.migration == 0;
|
|
|
|
f@withrevert(e, args);
|
|
|
|
satisfy !lastReverted;
|
|
}
|
|
|
|
rule startMigrationCorrect {
|
|
env e;
|
|
address newContract = newStakeManager;
|
|
|
|
startMigration(e, newContract);
|
|
|
|
assert currentContract.migration == newContract;
|
|
assert newStakeManager.totalSupplyBalance() == currentContract.totalSupplyBalance();
|
|
}
|
|
|
|
rule migrationLockedIn {
|
|
method f;
|
|
env e;
|
|
calldataarg args;
|
|
|
|
require currentContract.migration != 0;
|
|
|
|
f(e, args);
|
|
|
|
assert currentContract.migration != 0;
|
|
}
|
|
|
|
rule epochStaysSameOnMigration {
|
|
method f;
|
|
env e;
|
|
calldataarg args;
|
|
|
|
uint256 epochBefore = currentContract.currentEpoch;
|
|
require currentContract.migration != 0;
|
|
|
|
f(e, args);
|
|
|
|
assert currentContract.currentEpoch == epochBefore;
|
|
}
|