Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FV for Safe v1.5 Audit #3

Merged
merged 27 commits into from
Jan 15, 2025
Merged

FV for Safe v1.5 Audit #3

merged 27 commits into from
Jan 15, 2025
+1,191 −28

Conversation

derek-certora
Copy link

Summary

This is a draft PR to make it easy to get code review on the new rules being written.

Files

The new spec and conf files are located in respective v1.5 files, in order to keep the new spec separate (for now) from the old spec.

Note

This is a rebased version of a the previous working branch, derek/audit, onto a more recent commit given by the customer.

@github-actions GitHub Actions
Copy link

CLA Assistant Lite bot:
Thank you for your submission, we really appreciate it. Like many open-source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution. You can sign the CLA by just posting a Pull Request Comment same as the below format.

I have read the CLA Document and I hereby sign the CLA

Derek Sorensen seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.
You can retrigger this bot by commenting recheck in this Pull Request

Derek Sorensen added 2 commits December 16, 2024 13:51
a new specification for guards, including transaction guards and modu…
7b7fab2 
…le guards; this commit ports a rule from Safe.spec so that rules on guards are in the same spec, adds some functionality to the Safe harness, and makes two mocks for the module and transaction guards.
a specification for execute, executionTxn, executeTxnFromModule, etc.…
4f7e6c6 
… and all its expected functionality
@coveralls
Copy link

coveralls commented Dec 16, 2024
edited
Loading

Pull Request Test Coverage Report for Build 12796391062

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 93.814%
Totals Coverage Status
Change from base Build 12350895163: 0.0%
Covered Lines: 495
Relevant Lines: 507
💛 - Coveralls

Derek Sorensen added 2 commits December 16, 2024 14:02
fix execTxnModulePermissions so that it checks whether the caller was…
5730c06 
… an enabled module before making the successful call, and adds documentation that refers to an added function to the Safe Harness
clean up two rule statements from bool == true to just bool
658bdae
@derek-certora
Copy link
Author

All the rules are passing now, this codebase also incorporates changes suggested by @nd-certora on the previous draft PR.

Derek Sorensen added 2 commits December 16, 2024 14:23
derek-certora
derek-certora commented Dec 16, 2024
View reviewed changes
certora/specs/Safe.spec Outdated
Copy link
Author

@derek-certora derek-certora Dec 16, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The rule guardAddressChange was moved from Safe.spec to Guards.spec so that all the rules about guards are in one place.

nd-certora
nd-certora reviewed Dec 17, 2024
View reviewed changes
Copy link

@nd-certora nd-certora left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks better

Derek Sorensen added 8 commits December 17, 2024 16:44
first draft of a fallback spec, with some TODOs including resolving s…
f2ed3c9 
…anity on the invariant fallbackHanlderNeverSelf, adding the static Dummy to the spec, and strengthening from satisfy to assert
remove unnecessary args in conf files
8f011da
small style adjustment
a8561df
combine the two setup rules into one more concise rules
c97107a
reintroduce prover args to guards conf because moduleGuardCalledRetur…
019aef5 
…n and txnGuardCalled are vioalted otherwise
extend some rules, deprecate/remove fixes used because I couldn't res…
206a82b 
…olve some CVL issues, filter the invariant fallbackHanlderNeverSelf for sanity, etc. overall improvement of rules for fallback
add rules on hashing
e15d1a2
change Safe spec to Hash spec for more accurate naming
43f4cb1
jhoenicke
jhoenicke reviewed Dec 19, 2024
View reviewed changes
Copy link

@jhoenicke jhoenicke left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Left some comments, but looks good overall.

Derek Sorensen added 9 commits December 20, 2024 14:12
debugging handlerCalledIfSet rule, included an invariant that handler…
d8b3e02 
… is never self nor the zero address, and now the Prover is misbehaving. Committing here and opening a ticket
typo fixes, removed unnecessary invariant assumptions, removed false …
853c03b 
…invariant
enhances rules about module and transaction guards to include the pro…
0644d7a 
…position that the correct guard is called
remove unused function in harness
7500134
remove separating v1.5 folder, which was there just for project organ…
91d4f0d 
…ization, and adding all the specs to the spec folder and all the confs to the conf folder
removed unused function in methods block
73d4594
separate some fallback rules to separate contexts, one of which was c…
3b7f624 
…ausing timeout in a rule
remove deprecated prover tag
6813a0d
munge fallback handler
df2aa6b
@derek-certora derek-certora marked this pull request as ready for review January 15, 2025 20:23
@derek-certora derek-certora changed the title Audit Draft PR for Code Review FV for Safe v1.5 Audit Jan 15, 2025
@derek-certora
Copy link
Author

merging in preparation for PR to client

@derek-certora derek-certora merged commit a38212b into main Jan 15, 2025
16 of 25 checks passed
@github-actions github-actions bot locked and limited conversation to collaborators Jan 15, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@jhoenicke jhoenicke

@shellygr shellygr

@nd-certora nd-certora

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@derek-certora @coveralls @jhoenicke @shellygr @nd-certora