| 123456789101112131415161718192021222324252627282930313233343536373839 |
- import "helpers.spec"
- import "methods/IGovernor.spec"
- import "Governor.helpers.spec"
- import "GovernorInvariants.spec"
- use invariant proposalStateConsistency
- /*
- โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
- โ Rule: Proposal can be switched state only by specific functions โ
- โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
- */
- rule changes(uint256 pId, env e, method f, calldataarg args)
- filtered { f -> !skip(f) }
- {
- require clockSanity(e);
- requireInvariant proposalStateConsistency(pId);
- address user;
- bool existBefore = proposalCreated(pId);
- bool isExecutedBefore = isExecuted(pId);
- bool isCanceledBefore = isCanceled(pId);
- bool isQueuedBefore = isQueued(pId);
- bool hasVotedBefore = hasVoted(pId, user);
- f(e, args);
- assert proposalCreated(pId) != existBefore => (!existBefore && f.selector == propose(address[],uint256[],bytes[],string).selector);
- assert isExecuted(pId) != isExecutedBefore => (!isExecutedBefore && f.selector == execute(address[],uint256[],bytes[],bytes32).selector);
- assert isCanceled(pId) != isCanceledBefore => (!isCanceledBefore && f.selector == cancel(address[],uint256[],bytes[],bytes32).selector);
- assert hasVoted(pId, user) != hasVotedBefore => (!hasVotedBefore && votingAll(f));
- // queue is cleared on cancel
- assert isQueued(pId) != isQueuedBefore => (
- (!isQueuedBefore && f.selector == queue(address[],uint256[],bytes[],bytes32).selector) ||
- (isQueuedBefore && f.selector == cancel(address[],uint256[],bytes[],bytes32).selector)
- );
- }
|