2024-07-24 16:50:18 +00:00
|
|
|
using ERC20A as Token;
|
|
|
|
|
2024-08-05 14:27:20 +00:00
|
|
|
methods {
|
|
|
|
function Token.balanceOf(address) external returns (uint256) envfree;
|
2024-08-09 07:30:15 +00:00
|
|
|
function Token.totalSupply() external returns (uint256) envfree;
|
2024-08-09 11:05:56 +00:00
|
|
|
function publicPeriodEnd(Periods.Period) external returns (uint256) envfree;
|
2024-08-05 14:27:20 +00:00
|
|
|
}
|
|
|
|
|
2024-07-24 16:50:18 +00:00
|
|
|
/*--------------------------------------------
|
|
|
|
| Ghosts and hooks |
|
|
|
|
--------------------------------------------*/
|
|
|
|
|
2024-08-09 07:30:15 +00:00
|
|
|
ghost mathint sumOfBalances {
|
|
|
|
init_state axiom sumOfBalances == 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
hook Sload uint256 balance Token._balances[KEY address addr] {
|
|
|
|
require sumOfBalances >= to_mathint(balance);
|
|
|
|
}
|
|
|
|
|
|
|
|
hook Sstore Token._balances[KEY address addr] uint256 newValue (uint256 oldValue) {
|
|
|
|
sumOfBalances = sumOfBalances - oldValue + newValue;
|
|
|
|
}
|
|
|
|
|
2024-07-24 16:50:18 +00:00
|
|
|
ghost mathint totalReceived;
|
|
|
|
|
|
|
|
hook Sload uint256 defaultValue currentContract._marketplaceTotals.received {
|
|
|
|
require totalReceived >= to_mathint(defaultValue);
|
|
|
|
}
|
|
|
|
|
|
|
|
hook Sstore currentContract._marketplaceTotals.received uint256 defaultValue (uint256 defaultValue_old) {
|
|
|
|
totalReceived = totalReceived + defaultValue - defaultValue_old;
|
|
|
|
}
|
|
|
|
|
|
|
|
ghost mathint totalSent;
|
|
|
|
|
|
|
|
hook Sload uint256 defaultValue currentContract._marketplaceTotals.sent {
|
|
|
|
require totalSent >= to_mathint(defaultValue);
|
|
|
|
}
|
|
|
|
|
|
|
|
hook Sstore currentContract._marketplaceTotals.sent uint256 defaultValue (uint256 defaultValue_old) {
|
|
|
|
totalSent = totalSent + defaultValue - defaultValue_old;
|
|
|
|
}
|
|
|
|
|
2024-08-09 11:05:56 +00:00
|
|
|
ghost uint256 lastBlockTimestampGhost;
|
|
|
|
|
|
|
|
hook TIMESTAMP uint v {
|
|
|
|
require lastBlockTimestampGhost <= v;
|
|
|
|
lastBlockTimestampGhost = v;
|
|
|
|
}
|
|
|
|
|
|
|
|
ghost mapping(MarketplaceHarness.SlotId => mapping(Periods.Period => bool)) _missingMirror {
|
2024-08-15 10:51:14 +00:00
|
|
|
init_state axiom forall MarketplaceHarness.SlotId a.
|
|
|
|
forall Periods.Period b.
|
2024-08-09 11:05:56 +00:00
|
|
|
_missingMirror[a][b] == false;
|
|
|
|
}
|
|
|
|
|
2024-08-15 10:51:14 +00:00
|
|
|
ghost mapping(MarketplaceHarness.SlotId => uint256) _missedMirror {
|
|
|
|
init_state axiom forall MarketplaceHarness.SlotId a.
|
|
|
|
_missedMirror[a] == 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
ghost mapping(MarketplaceHarness.SlotId => mathint) _missedCalculated {
|
|
|
|
init_state axiom forall MarketplaceHarness.SlotId a.
|
|
|
|
_missedCalculated[a] == 0;
|
|
|
|
}
|
|
|
|
|
2024-08-09 11:05:56 +00:00
|
|
|
hook Sload bool defaultValue _missing[KEY MarketplaceHarness.SlotId slotId][KEY Periods.Period period] {
|
|
|
|
require _missingMirror[slotId][period] == defaultValue;
|
|
|
|
}
|
|
|
|
|
|
|
|
hook Sstore _missing[KEY MarketplaceHarness.SlotId slotId][KEY Periods.Period period] bool defaultValue {
|
|
|
|
_missingMirror[slotId][period] = defaultValue;
|
2024-08-15 10:51:14 +00:00
|
|
|
_missedCalculated[slotId] = _missedCalculated[slotId] + 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
hook Sstore _missed[KEY MarketplaceHarness.SlotId slotId] uint256 defaultValue {
|
|
|
|
_missedMirror[slotId] = defaultValue;
|
2024-08-09 11:05:56 +00:00
|
|
|
}
|
|
|
|
|
2024-08-13 12:16:12 +00:00
|
|
|
ghost mathint requestStateChangesCount {
|
|
|
|
init_state axiom requestStateChangesCount == 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
hook Sstore _requestContexts[KEY Marketplace.RequestId requestId].state Marketplace.RequestState newState (Marketplace.RequestState oldState) {
|
|
|
|
if (oldState != newState) {
|
|
|
|
requestStateChangesCount = requestStateChangesCount + 1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
ghost mathint slotStateChangesCount {
|
|
|
|
init_state axiom slotStateChangesCount == 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
hook Sstore _slots[KEY Marketplace.SlotId slotId].state Marketplace.SlotState newState (Marketplace.SlotState oldState) {
|
|
|
|
if (oldState != newState) {
|
|
|
|
slotStateChangesCount = slotStateChangesCount + 1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2024-08-09 07:30:15 +00:00
|
|
|
/*--------------------------------------------
|
|
|
|
| Helper functions |
|
|
|
|
--------------------------------------------*/
|
|
|
|
|
2024-08-05 14:27:20 +00:00
|
|
|
function canCancelRequest(method f) returns bool {
|
|
|
|
return f.selector == sig:withdrawFunds(Marketplace.RequestId).selector;
|
|
|
|
}
|
|
|
|
|
|
|
|
function canStartRequest(method f) returns bool {
|
|
|
|
return f.selector == sig:fillSlot(Marketplace.RequestId, uint256, Marketplace.Groth16Proof).selector;
|
|
|
|
}
|
|
|
|
|
|
|
|
function canFinishRequest(method f) returns bool {
|
|
|
|
return f.selector == sig:freeSlot(Marketplace.SlotId).selector;
|
|
|
|
}
|
|
|
|
|
|
|
|
function canFailRequest(method f) returns bool {
|
2024-08-15 10:51:14 +00:00
|
|
|
return f.selector == sig:markProofAsMissing(Marketplace.SlotId, Periods.Period).selector ||
|
2024-08-05 14:27:20 +00:00
|
|
|
f.selector == sig:freeSlot(Marketplace.SlotId).selector;
|
|
|
|
}
|
|
|
|
|
2024-08-09 07:30:15 +00:00
|
|
|
/*--------------------------------------------
|
|
|
|
| Invariants |
|
|
|
|
--------------------------------------------*/
|
|
|
|
|
|
|
|
invariant totalSupplyIsSumOfBalances()
|
|
|
|
to_mathint(Token.totalSupply()) == sumOfBalances;
|
|
|
|
|
2024-08-05 14:27:20 +00:00
|
|
|
invariant requestStartedWhenSlotsFilled(env e, Marketplace.RequestId requestId, Marketplace.SlotId slotId)
|
|
|
|
to_mathint(currentContract.requestContext(e, requestId).slotsFilled) == to_mathint(currentContract.getRequest(e, requestId).ask.slots) => currentContract.requestState(e, requestId) == Marketplace.RequestState.Started;
|
|
|
|
|
2024-08-15 10:51:14 +00:00
|
|
|
invariant slotMissedShouldBeEqualToNumberOfMissedPeriods(env e, Marketplace.SlotId slotId)
|
|
|
|
to_mathint(_missedMirror[slotId]) == _missedCalculated[slotId];
|
|
|
|
|
2024-08-09 11:05:56 +00:00
|
|
|
// STATUS - verified
|
|
|
|
// can set missing if period was passed
|
|
|
|
// https://prover.certora.com/output/3106/026b36c118e44ad0824a51c50647c497/?anonymousKey=29879706f3d343555bb6122d071c9409d4e9876d
|
|
|
|
invariant cantBeMissedIfInPeriod(MarketplaceHarness.SlotId slotId, Periods.Period period)
|
|
|
|
lastBlockTimestampGhost <= publicPeriodEnd(period) => !_missingMirror[slotId][period];
|
|
|
|
|
2024-07-24 16:50:18 +00:00
|
|
|
/*--------------------------------------------
|
|
|
|
| Properties |
|
|
|
|
--------------------------------------------*/
|
|
|
|
|
|
|
|
rule sanity(env e, method f) {
|
|
|
|
calldataarg args;
|
|
|
|
f(e, args);
|
|
|
|
assert true;
|
|
|
|
satisfy true;
|
|
|
|
}
|
|
|
|
|
|
|
|
rule totalReceivedCannotDecrease(env e, method f) {
|
|
|
|
mathint total_before = totalReceived;
|
|
|
|
|
|
|
|
calldataarg args;
|
|
|
|
f(e, args);
|
|
|
|
|
|
|
|
mathint total_after = totalReceived;
|
|
|
|
|
|
|
|
assert total_after >= total_before;
|
|
|
|
}
|
|
|
|
|
|
|
|
rule totalSentCannotDecrease(env e, method f) {
|
|
|
|
mathint total_before = totalSent;
|
|
|
|
|
|
|
|
calldataarg args;
|
|
|
|
f(e, args);
|
|
|
|
|
|
|
|
mathint total_after = totalSent;
|
|
|
|
|
|
|
|
assert total_after >= total_before;
|
|
|
|
}
|
2024-08-05 14:27:20 +00:00
|
|
|
|
|
|
|
rule allowedRequestStateChanges(env e, method f) {
|
|
|
|
calldataarg args;
|
|
|
|
Marketplace.RequestId requestId;
|
|
|
|
|
|
|
|
Marketplace.RequestState requestStateBefore = currentContract.requestState(e, requestId);
|
|
|
|
f(e, args);
|
|
|
|
Marketplace.RequestState requestStateAfter = currentContract.requestState(e, requestId);
|
|
|
|
|
|
|
|
assert requestStateBefore != requestStateAfter && requestStateAfter == Marketplace.RequestState.Started => requestStateBefore == Marketplace.RequestState.New;
|
|
|
|
assert requestStateBefore != requestStateAfter && requestStateAfter == Marketplace.RequestState.Finished => requestStateBefore == Marketplace.RequestState.Started;
|
|
|
|
assert requestStateBefore != requestStateAfter && requestStateAfter == Marketplace.RequestState.Failed => requestStateBefore == Marketplace.RequestState.Started;
|
|
|
|
assert requestStateBefore != requestStateAfter && requestStateAfter == Marketplace.RequestState.Cancelled => requestStateBefore == Marketplace.RequestState.New;
|
|
|
|
}
|
|
|
|
|
|
|
|
rule functionsCausingRequestStateChanges(env e, method f) {
|
|
|
|
calldataarg args;
|
|
|
|
Marketplace.RequestId requestId;
|
|
|
|
|
|
|
|
Marketplace.RequestState requestStateBefore = currentContract.requestState(e, requestId);
|
|
|
|
f(e, args);
|
|
|
|
Marketplace.RequestState requestStateAfter = currentContract.requestState(e, requestId);
|
|
|
|
|
|
|
|
// RequestState.New -> RequestState.Started
|
|
|
|
assert requestStateBefore == Marketplace.RequestState.New && requestStateAfter == Marketplace.RequestState.Started => canStartRequest(f);
|
|
|
|
|
|
|
|
// RequestState.Started -> RequestState.Finished
|
|
|
|
assert requestStateBefore == Marketplace.RequestState.Started && requestStateAfter == Marketplace.RequestState.Finished => canFinishRequest(f);
|
|
|
|
|
|
|
|
// RequestState.Started -> RequestState.Failed
|
|
|
|
assert requestStateBefore == Marketplace.RequestState.Started && requestStateAfter == Marketplace.RequestState.Failed => canFailRequest(f);
|
|
|
|
|
|
|
|
// RequestState.New -> RequestState.Cancelled
|
|
|
|
assert requestStateBefore == Marketplace.RequestState.New && requestStateAfter == Marketplace.RequestState.Cancelled => canCancelRequest(f);
|
|
|
|
}
|
|
|
|
|
|
|
|
rule finishedRequestCannotBeStartedAgain(env e, method f) {
|
|
|
|
|
|
|
|
calldataarg args;
|
|
|
|
Marketplace.RequestId requestId;
|
|
|
|
|
|
|
|
Marketplace.RequestState requestStateBefore = currentContract.requestState(e, requestId);
|
|
|
|
require requestStateBefore == Marketplace.RequestState.Finished;
|
|
|
|
f(e, args);
|
|
|
|
Marketplace.RequestState requestStateAfter = currentContract.requestState(e, requestId);
|
|
|
|
|
|
|
|
assert requestStateBefore == requestStateAfter;
|
|
|
|
}
|
2024-08-13 12:16:12 +00:00
|
|
|
|
|
|
|
rule requestStateChangesOnlyOncePerFunctionCall(env e, method f) {
|
|
|
|
calldataarg args;
|
|
|
|
Marketplace.RequestId requestId;
|
|
|
|
|
|
|
|
mathint requestStateChangesCountBefore = requestStateChangesCount;
|
|
|
|
f(e, args);
|
|
|
|
mathint requestStateChangesCountAfter = requestStateChangesCount;
|
|
|
|
|
|
|
|
assert requestStateChangesCountAfter <= requestStateChangesCountBefore + 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
rule slotStateChangesOnlyOncePerFunctionCall(env e, method f) {
|
|
|
|
calldataarg args;
|
|
|
|
Marketplace.SlotId slotId;
|
|
|
|
|
|
|
|
mathint slotStateChangesCountBefore = slotStateChangesCount;
|
|
|
|
f(e, args);
|
2024-08-15 10:51:14 +00:00
|
|
|
mathint slotStateChangesCountAfter =slotStateChangesCount;
|
2024-08-13 12:16:12 +00:00
|
|
|
|
|
|
|
assert slotStateChangesCountAfter <= slotStateChangesCountBefore + 1;
|
|
|
|
}
|