.

safe-global · May 15, 2024 · da59212 · da59212
1 parent aca3afc
commit da59212
Show file tree

Hide file tree

Showing 17 changed files with 67 additions and 15 deletions.
diff --git a/certora/confs/SafeWebAuthnSignerProxy.conf b/certora/confs/SafeWebAuthnSignerProxy.conf
@@ -0,0 +1,34 @@
+{
+    "assert_autofinder_success": true,
+    "files": [
+        "modules/passkey/contracts/SafeWebAuthnSignerProxy.sol",
+        "modules/passkey/contracts/SafeWebAuthnSignerSingleton.sol",
+        "certora/harnesses/ERC20Like/DummyWeth.sol",
+		"certora/harnesses/Utilities.sol",
+        "modules/passkey/contracts/libraries/P256.sol"
+    ],
+    "link": [
+        "SafeWebAuthnSignerProxy:_VERIFIERS=P256",
+        "SafeWebAuthnSignerProxy:_SINGLETON=SafeWebAuthnSignerSingleton"
+    ],
+    "java_args": [
+        " -ea -Dlevel.setup.helpers=info"
+    ],
+    "msg": "sanity_with_all_default_summaries",
+    "process": "emv",
+    "prover_args": [
+        " -verifyCache -verifyTACDumps -testMode -checkRuleDigest -callTraceHardFail on"
+    ],
+    "packages":[
+        "@safe-global=node_modules/@safe-global",
+        "@account-abstraction=node_modules/@account-abstraction"
+    ],
+    "solc": "solc8.23",
+    "solc_via_ir": false,
+    "optimistic_loop": true,
+    "loop_iter": "6",
+    "optimistic_hashing": true,
+    "prover_version": "master",
+    "server": "production",
+    "verify": "SafeWebAuthnSignerProxy:certora/specs/SafeWebAuthnSignerProxy.spec"
+}
diff --git a/certora/confs/SafeWebAuthnSigner.conf → ...ra/confs/SafeWebAuthnSignerSingleton.conf b/certora/confs/SafeWebAuthnSigner.conf → ...ra/confs/SafeWebAuthnSignerSingleton.conf
@@ -1,13 +1,9 @@
 {
     "assert_autofinder_success": true,
     "files": [
-        "modules/passkey/contracts/SafeWebAuthnSigner.sol",
+        "modules/passkey/contracts/SafeWebAuthnSignerSingleton.sol",
         "certora/harnesses/ERC20Like/DummyWeth.sol",
 		"certora/harnesses/Utilities.sol",
-        "modules/passkey/contracts/libraries/P256.sol"
-    ],
-    "link": [
-        "SafeWebAuthnSigner:VERIFIERS=P256"
     ],
     "java_args": [
         " -ea -Dlevel.setup.helpers=info"
@@ -24,9 +20,8 @@
     "solc": "solc8.23",
     "solc_via_ir": false,
     "optimistic_loop": true,
-    "loop_iter": "6",
     "optimistic_hashing": true,
     "prover_version": "master",
     "server": "production",
-    "verify": "SafeWebAuthnSigner:certora/specs/SafeWebAuthnSigner.spec"
+    "verify": "SafeWebAuthnSignerSingleton:certora/specs/SafeWebAuthnSignerSingleton.spec"
 }
diff --git a/certora/confs/AllowanceModule.conf → ...nfs/historical_confs/AllowanceModule.conf b/certora/confs/AllowanceModule.conf → ...nfs/historical_confs/AllowanceModule.conf
diff --git a/certora/confs/Safe4337Module.conf → ...onfs/historical_confs/Safe4337Module.conf b/certora/confs/Safe4337Module.conf → ...onfs/historical_confs/Safe4337Module.conf
diff --git a/certora/confs/SafeModuleSetup.conf → ...nfs/historical_confs/SafeModuleSetup.conf b/certora/confs/SafeModuleSetup.conf → ...nfs/historical_confs/SafeModuleSetup.conf
diff --git a/certora/confs/SafeSignerLaunchpad.conf → ...historical_confs/SafeSignerLaunchpad.conf b/certora/confs/SafeSignerLaunchpad.conf → ...historical_confs/SafeSignerLaunchpad.conf
diff --git a/certora/specs/SafeWebAuthnSignerFactory.spec b/certora/specs/SafeWebAuthnSignerFactory.spec
@@ -5,11 +5,11 @@ import "ERC1967/erc1967.spec";
 import "PriceAggregators/chainlink.spec";
 import "PriceAggregators/tellor.spec";
 
-import "problems.spec";
-import "unresolved.spec";
-import "optimizations.spec";
+import "spec_utils/problems.spec";
+import "spec_utils/unresolved.spec";
+import "spec_utils/optimizations.spec";
 
-import "generic.spec"; // pick additional rules from here
+import "spec_utils/generic.spec"; // pick additional rules from here
 
 use builtin rule sanity filtered { f -> f.contract == currentContract }
 

diff --git a/certora/specs/SafeWebAuthnSigner.spec → certora/specs/SafeWebAuthnSignerProxy.spec b/certora/specs/SafeWebAuthnSigner.spec → certora/specs/SafeWebAuthnSignerProxy.spec
@@ -5,11 +5,11 @@ import "ERC1967/erc1967.spec";
 import "PriceAggregators/chainlink.spec";
 import "PriceAggregators/tellor.spec";
 
-import "problems.spec";
-import "unresolved.spec";
-import "optimizations.spec";
+import "spec_utils/problems.spec";
+import "spec_utils/unresolved.spec";
+import "spec_utils/optimizations.spec";
 
-import "generic.spec"; // pick additional rules from here
+import "spec_utils/generic.spec"; // pick additional rules from here
 
 use builtin rule sanity filtered { f -> f.contract == currentContract }
 

diff --git a/certora/specs/SafeWebAuthnSignerSingleton.spec b/certora/specs/SafeWebAuthnSignerSingleton.spec
@@ -0,0 +1,23 @@
+import "ERC20/erc20cvl.spec";
+import "ERC20/WETHcvl.spec";
+import "ERC721/erc721.spec";
+import "ERC1967/erc1967.spec";
+import "PriceAggregators/chainlink.spec";
+import "PriceAggregators/tellor.spec";
+
+import "spec_utils/problems.spec";
+import "spec_utils/unresolved.spec";
+import "spec_utils/optimizations.spec";
+
+import "spec_utils/generic.spec"; // pick additional rules from here
+
+use builtin rule sanity filtered { f -> f.contract == currentContract }
+
+use builtin rule hasDelegateCalls filtered { f -> f.contract == currentContract }
+use builtin rule msgValueInLoopRule;
+use builtin rule viewReentrancy;
+use rule privilegedOperation filtered { f -> f.contract == currentContract }
+use rule timeoutChecker filtered { f -> f.contract == currentContract }
+use rule simpleFrontRunning filtered { f -> f.contract == currentContract }
+use rule noRevert filtered { f -> f.contract == currentContract }
+use rule alwaysRevert filtered { f -> f.contract == currentContract }
diff --git a/certora/specs/AllowanceModule.spec → ...ora/specs/spec_utils/AllowanceModule.spec b/certora/specs/AllowanceModule.spec → ...ora/specs/spec_utils/AllowanceModule.spec
diff --git a/certora/specs/Safe4337Module.spec → certora/specs/spec_utils/Safe4337Module.spec b/certora/specs/Safe4337Module.spec → certora/specs/spec_utils/Safe4337Module.spec
diff --git a/certora/specs/SafeModuleSetup.spec → ...ora/specs/spec_utils/SafeModuleSetup.spec b/certora/specs/SafeModuleSetup.spec → ...ora/specs/spec_utils/SafeModuleSetup.spec
diff --git a/certora/specs/SafeSignerLaunchpad.spec → ...specs/spec_utils/SafeSignerLaunchpad.spec b/certora/specs/SafeSignerLaunchpad.spec → ...specs/spec_utils/SafeSignerLaunchpad.spec
diff --git a/certora/specs/generic.spec → certora/specs/spec_utils/generic.spec b/certora/specs/generic.spec → certora/specs/spec_utils/generic.spec
diff --git a/certora/specs/optimizations.spec → certora/specs/spec_utils/optimizations.spec b/certora/specs/optimizations.spec → certora/specs/spec_utils/optimizations.spec
diff --git a/certora/specs/problems.spec → certora/specs/spec_utils/problems.spec b/certora/specs/problems.spec → certora/specs/spec_utils/problems.spec
diff --git a/certora/specs/unresolved.spec → certora/specs/spec_utils/unresolved.spec b/certora/specs/unresolved.spec → certora/specs/spec_utils/unresolved.spec