Skip to content

Commit

Permalink
refactor: show increasing nextTime
Browse files Browse the repository at this point in the history
  • Loading branch information
@QGarchery
QGarchery committed Mar 21, 2024
1 parent 3bd9d66 commit e655ec7
Showing 1 changed file with 12 additions and 8 deletions.
20 changes: 12 additions & 8 deletions certora/specs/Timelock.spec
View file
Original file line number Diff line number Diff line change
Expand Up @@ -48,16 +48,17 @@ rule guardianUpdateTime(env e_next, method f, calldataarg args) {
require prevGuardian != 0;
// Sane assumption on the current time, as any following transaction should happen after it.
require e_next.block.timestamp >= e.block.timestamp;
uint256 nextGuardianUpdateTimeBeforeInteraction = nextGuardianUpdateTime(e);
// Increasing nextGuardianUpdateTime with no interaction;
assert nextGuardianUpdateTime(e_next) >= nextTime;
assert nextGuardianUpdateTimeBeforeInteraction >= nextTime;

f(e_next, args);

if (e_next.block.timestamp < nextTime) {
// Check that guardian cannot change.
assert guardian() == prevGuardian;
// Increasing nextGuardianUpdateTime with an interaction;
assert nextGuardianUpdateTime(e_next) >= nextTime;
assert nextGuardianUpdateTime(e_next) >= nextGuardianUpdateTimeBeforeInteraction;
}
assert true;
}
Expand Down Expand Up @@ -97,16 +98,17 @@ rule capIncreaseTime(env e_next, method f, calldataarg args) {

// Sane assumption on the current time, as any following transaction should happen after it.
require e_next.block.timestamp >= e.block.timestamp;
uint256 nextCapIncreaseTimeBeforeInteraction = nextCapIncreaseTime(e_next, id);
// Increasing nextCapIncreaseTime with no interaction;
assert nextCapIncreaseTime(e_next, id) >= nextTime;
assert nextCapIncreaseTimeBeforeInteraction >= nextTime;

f(e_next, args);

if (e_next.block.timestamp < nextTime) {
// Check that cap cannot increase.
assert config_(id).cap <= prevCap;
// Increasing nextCapIncreaseTime with an interaction;
assert nextCapIncreaseTime(e_next, id) >= nextTime;
assert nextCapIncreaseTime(e_next, id) >= nextCapIncreaseTimeBeforeInteraction;
}
assert true;
}
Expand Down Expand Up @@ -144,16 +146,17 @@ rule timelockDecreaseTime(env e_next, method f, calldataarg args) {

// Sane assumption on the current time, as any following transaction should happen after it.
require e_next.block.timestamp >= e.block.timestamp;
uint256 nextTimelockDecreaseTimeBeforeInteraction = nextTimelockDecreaseTime(e_next);
// Increasing nextTimelockDecreaseTime with no interaction;
assert nextTimelockDecreaseTime(e_next) >= nextTime;
assert nextTimelockDecreaseTimeBeforeInteraction >= nextTime;

f(e_next, args);

if (e_next.block.timestamp < nextTime) {
// Check that timelock cannot decrease.
assert timelock() >= prevTimelock;
// Increasing nextTimelockDecreaseTime with an interaction;
assert nextTimelockDecreaseTime(e_next) >= nextTime;
assert nextTimelockDecreaseTime(e_next) >= nextTimelockDecreaseTimeBeforeInteraction;
}
assert true;
}
Expand Down Expand Up @@ -194,16 +197,17 @@ rule removableTime(env e_next, method f, calldataarg args) {
require config_(id).enabled;
// Sane assumption on the current time, as any following transaction should happen after it.
require e_next.block.timestamp >= e.block.timestamp;
uint256 nextRemovableTimeBeforeInteraction = nextRemovableTime(e_next, id);
// Increasing nextRemovableTime with no interaction;
assert nextRemovableTime(e_next, id) >= nextTime;
assert nextRemovableTimeBeforeInteraction >= nextTime;

f(e_next, args);

if (e_next.block.timestamp < nextTime) {
// Check that no forced removal happened.
assert lastSupplyShares(id, currentContract) > 0 => config_(id).enabled;
// Increasing nextRemovableTime with an interaction;
assert nextRemovableTime(e_next, id) >= nextTime;
assert nextRemovableTime(e_next, id) >= nextRemovableTimeBeforeInteraction;
}
assert true;
}

0 comments on commit e655ec7

Please sign in to comment.