GitBross Главная Обзор Помощь
Регистрация Вход
sol_Bo8des9o
/
openzeppelin-contracts
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: cd86596938
Ветки Метки
openzeppelin-co...
/
certora
/
specs
/
AccessManaged.spec

AccessManaged.spec 2.4 KB
История Исходник

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 
  1. import "helpers/helpers.spec";
    2. 

  2. import "methods/IAccessManaged.spec";
    3. 

  3. 

  4. methods {
    5. 

  5.     // FV
    6. 

  6.     function someFunction()                       external;
    7. 

  7.     function authority_canCall_immediate(address) external returns (bool);
    8. 

  8.     function authority_canCall_delay(address)     external returns (uint32);
    9. 

  9.     function authority_getSchedule(address)       external returns (uint48);
    10. 

  10.     function _hasCode(address)                    external returns (bool) envfree;
    11. 

  11. 

  12.     // Summaries
    13. 

  13.     function _.setAuthority(address)              external => DISPATCHER(true);
    14. 

  14. }
    15. 

  15. 

  16. invariant isConsumingScheduledOpClean()
    17. 

  17.     isConsumingScheduledOp() == to_bytes4(0);
    18. 

  18. 

  19. rule callRestrictedFunction(env e) {
    20. 

  20.     bool   immediate      = authority_canCall_immediate(e, e.msg.sender);
    21. 

  21.     uint32 delay          = authority_canCall_delay(e, e.msg.sender);
    22. 

  22.     uint48 scheduleBefore = authority_getSchedule(e, e.msg.sender);
    23. 

  23. 

  24.     someFunction@withrevert(e);
    25. 

  25.     bool success = !lastReverted;
    26. 

  26. 

  27.     uint48 scheduleAfter  = authority_getSchedule(e, e.msg.sender);
    28. 

  28. 

  29.     // can only call if immediate, or (with delay) by consuming a scheduled op
    30. 

  30.     assert success => (
    31. 

  31.         immediate ||
    32. 

  32.         (
    33. 

  33.             delay > 0 &&
    34. 

  34.             isSetAndPast(e, scheduleBefore) &&
    35. 

  35.             scheduleAfter == 0
    36. 

  36.         )
    37. 

  37.     );
    38. 

  38. }
    39. 

  39. 

  40. /*
    41. 

  41. ┌─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
    42. 

  42. │ Rule: Only valid authorities can be set by the current authority                                                    │
    43. 

  43. └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
    44. 

  44. */
    45. 

  45. rule setAuthority(env e) {
    46. 

  46.     require nonpayable(e);
    47. 

  47. 

  48.     address newAuthority;
    49. 

  49. 

  50.     address previousAuthority = authority();
    51. 

  51. 

  52.     setAuthority@withrevert(e, newAuthority);
    53. 

  53.     bool success = !lastReverted;
    54. 

  54. 

  55.     assert (success && authority() == newAuthority) <=> (
    56. 

  56.         previousAuthority == e.msg.sender &&
    57. 

  57.         _hasCode(newAuthority)
    58. 

  58.     );
    59. 

  59. }
    60.