Skip to content

Commit

Permalink
.
Browse files Browse the repository at this point in the history
  • Loading branch information
@liav-certora
liav-certora committed May 30, 2024
1 parent a932fab commit f9251a9
Show file tree
Hide file tree
Showing 2 changed files with 105 additions and 0 deletions.
4 changes: 4 additions & 0 deletions certora/harnesses/WebAuthnHarness.sol
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,6 +28,10 @@ contract WebAuthnHarness {
return WebAuthn.castSignature(signature);
}

function castSignature_notreturns(bytes calldata signature) external pure {
WebAuthn.castSignature(signature);
}

function compareStrings(string memory str1, string memory str2) public view returns (bool) {
bytes memory str1Bytes = bytes(str1);
bytes memory str2Bytes = bytes(str2);
Expand Down
101 changes: 101 additions & 0 deletions certora/specs/WebAuthn.spec
View file
Original file line number Diff line number Diff line change
Expand Up @@ -173,4 +173,105 @@ rule castSignatureLengthCheckValidity(){
assert compareSignatures(e, structSignature, decodedSignature) => (
isValid <=> encodeSig.length <= encodeSignature(e, structSignature).length
);
}

/*
┌──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
castSignature Reverting Conditions |
| Will only revert if function was paid. |
| Passes - https://prover.certora.com/output/15800/9d6be0f24e094ffe94b9faf1ed8bfc8f?anonymousKey=517b64e4e1693de5294f836400a5581fc7ec0bcf |
└──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
*/
rule castSignatureRevertingConditions {
env e;
bytes signature;

bool triedTransferringEth = e.msg.value != 0;

castSignature_notreturns@withrevert(e, signature);

assert lastReverted <=> triedTransferringEth;
}

/*
┌──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
encodeClientDataJson Reverting Conditions |
| Will only revert if function was paid. |
| Passes - https://prover.certora.com/output/15800/ccc8d2fd45b04cf5ac8efdf263820324?anonymousKey=68d9ae2e6f4f22dd7aae9f8bddbc5faf7de12df1 |
└──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
*/
rule encodeClientDataJsonRevertingConditions {
env e;
bytes32 challenge;
string clientDataFields;

bool triedTransferringEth = e.msg.value != 0;

encodeClientDataJson@withrevert(e, challenge, clientDataFields);

assert lastReverted <=> triedTransferringEth;
}

/*
┌──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
encodeSigningMessage Reverting Conditions |
| Will only revert if function was paid. |
| Passes - https://prover.certora.com/output/15800/93685eaf7e7146eabaa38125dc32f29b?anonymousKey=eaf6d4135849f0476d8e9e6a758cca8818a96b94 |
└──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
*/
rule encodeSigningMessageRevertingConditions {
env e;
bytes32 challenge;
bytes authenticatorData;
string clientDataFields;

bool triedTransferringEth = e.msg.value != 0;

encodeSigningMessage@withrevert(e, challenge, authenticatorData, clientDataFields);

assert lastReverted <=> triedTransferringEth;
}

/*
┌──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
checkAuthenticatorFlags Reverting Conditions |
| Will only revert if function was paid or the bytes array `authenticatorData`'s length is too small (<= 32 bytes). |
| Passes - https://prover.certora.com/output/15800/d2d34792998c479db5f38430efc7dc8b?anonymousKey=7e68511768f3da35bdb9f75c9f86d40d2e07e2aa |
└──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
*/
rule checkAuthenticatorFlagsRevertingConditions {
env e;
bytes authenticatorData;
WebAuthn.AuthenticatorFlags authenticatorFlags;

bool triedTransferringEth = e.msg.value != 0;
bool dataLengthInsufficient = authenticatorData.length <= 32;

checkAuthenticatorFlags@withrevert(e, authenticatorData, authenticatorFlags);

assert lastReverted <=> (triedTransferringEth || dataLengthInsufficient);
}

/*
┌──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
verifySignature Reverting Conditions |
| Will only revert if function was paid or the bytes array `authenticatorData`'s in `signature` length is too small (<= 32 bytes). |
| Passes - https://prover.certora.com/output/15800/d2d34792998c479db5f38430efc7dc8b?anonymousKey=7e68511768f3da35bdb9f75c9f86d40d2e07e2aa |
└──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
*/
rule verifySignatureRevertingConditions {
env e;
bytes32 challenge;
WebAuthn.Signature signature;
WebAuthn.AuthenticatorFlags authenticatorFlags;
uint256 x;
uint256 y;
P256.Verifiers verifiers;

bool triedTransferringEth = e.msg.value != 0;
bool dataLengthInsufficient = signature.authenticatorData.length <= 32;

verifySignature@withrevert(e, challenge, signature, authenticatorFlags, x, y, verifiers);

assert lastReverted <=> (triedTransferringEth || dataLengthInsufficient);
}

0 comments on commit f9251a9

Please sign in to comment.