2021-10-12 09:12:18 +00:00
|
|
|
interface Token {
|
|
|
|
function balanceOf(address _a) external view returns (uint);
|
|
|
|
function transfer(address _to, uint _amt) external;
|
|
|
|
}
|
|
|
|
|
|
|
|
contract TokenWrong is Token {
|
|
|
|
mapping (address => uint) balance;
|
|
|
|
constructor(address _a, uint _b) {
|
|
|
|
balance[_a] = _b;
|
|
|
|
}
|
|
|
|
function balanceOf(address _a) public view override returns (uint) {
|
|
|
|
return balance[_a];
|
|
|
|
}
|
|
|
|
function transfer(address _to, uint _amt) public override {
|
|
|
|
require(balance[msg.sender] >= _amt);
|
|
|
|
// Commented out to make this token implementation wrong.
|
|
|
|
//balance[msg.sender] -= _amt;
|
|
|
|
balance[_to] += _amt;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
contract Test {
|
|
|
|
function property_transfer(address _token, address _to, uint _amt) public {
|
|
|
|
require(_to != address(this));
|
|
|
|
|
|
|
|
TokenWrong t = TokenWrong(_token);
|
|
|
|
|
|
|
|
uint xPre = t.balanceOf(address(this));
|
|
|
|
require(xPre >= _amt);
|
|
|
|
uint yPre = t.balanceOf(_to);
|
|
|
|
|
|
|
|
t.transfer(_to, _amt);
|
|
|
|
uint xPost = t.balanceOf(address(this));
|
|
|
|
uint yPost = t.balanceOf(_to);
|
|
|
|
|
|
|
|
assert(xPost == xPre - _amt); // should fail
|
|
|
|
assert(yPost == yPre + _amt);
|
|
|
|
}
|
|
|
|
|
|
|
|
function test_concrete() public {
|
|
|
|
TokenWrong t = new TokenWrong(address(this), 1000);
|
|
|
|
|
|
|
|
uint b = t.balanceOf(address(this));
|
|
|
|
assert(b == 1000);
|
|
|
|
|
|
|
|
address other = address(0x333);
|
|
|
|
require(address(this) != other);
|
|
|
|
|
|
|
|
uint c = t.balanceOf(other);
|
|
|
|
assert(c == 0);
|
|
|
|
|
|
|
|
t.transfer(other, 100);
|
|
|
|
|
|
|
|
uint d = t.balanceOf(address(this));
|
|
|
|
assert(d == 900); // should fail
|
|
|
|
|
|
|
|
uint e = t.balanceOf(other);
|
|
|
|
assert(e == 100);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
// ====
|
|
|
|
// SMTContract: Test
|
|
|
|
// SMTEngine: chc
|
|
|
|
// SMTExtCalls: trusted
|
|
|
|
// SMTTargets: assert
|
|
|
|
// ----
|
|
|
|
// Warning 6328: (950-978): CHC: Assertion violation happens here.
|
|
|
|
// Warning 6328: (1370-1386): CHC: Assertion violation happens here.
|
2023-02-09 16:07:13 +00:00
|
|
|
// Info 1391: CHC: 4 verification condition(s) proved safe! Enable the model checker option "show proved safe" to see all of them.
|