28 lines
1.8 KiB
Ruby
28 lines
1.8 KiB
Ruby
import "helpers.spec"
|
|
import "methods/IGovernor.spec"
|
|
import "Governor.helpers.spec"
|
|
|
|
/*
|
|
┌─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
|
|
│ Rule: internal variables can only change though specific functions calls │
|
|
└─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
|
|
*/
|
|
rule changes(uint256 pId, env e) {
|
|
require nonpayable(e);
|
|
require clockSanity(e);
|
|
|
|
address user;
|
|
|
|
bool isExecutedBefore = isExecuted(pId);
|
|
bool isCanceledBefore = isCanceled(pId);
|
|
bool isQueuedBefore = isQueued(pId);
|
|
bool hasVotedBefore = hasVoted(pId, user);
|
|
|
|
method f; calldataarg args; f(e, args);
|
|
|
|
assert isExecuted(pId) != isExecutedBefore => (!isExecutedBefore && f.selector == execute(address[],uint256[],bytes[],bytes32).selector);
|
|
assert isCanceled(pId) != isCanceledBefore => (!isCanceledBefore && f.selector == cancel(address[],uint256[],bytes[],bytes32).selector);
|
|
assert isQueued(pId) != isQueuedBefore => (!isQueuedBefore && f.selector == queue(address[],uint256[],bytes[],bytes32).selector);
|
|
assert hasVoted(pId, user) != hasVotedBefore => (!hasVotedBefore && voting(f));
|
|
}
|