solidity icon indicating copy to clipboard operation
solidity copied to clipboard

Published 20 hours ago verified publisher icon SRI-CSL

Unable to verify non-decreasing balance.

Open michael-emmi opened this issue 5 years ago • 4 comments 

$ cat a.sol && solc-verify.py a.sol 
pragma solidity ^0.5.0;

contract A {

    /// @notice postcondition address(this).balance >= __verifier_old_uint(address(this).balance)
    function f1() public payable { }

}
A::f1: ERROR
 - a.sol:6:5: Postcondition 'address(this).balance >= __verifier_old_uint(address(this).balance)' might not hold at end of function.
A::[implicit_constructor]: OK
Errors were found by the verifier.

michael-emmi avatar Aug 15 '19 21:08 michael-emmi

In the default integer mode, msg.value is also an integer and can be negative. Try running with --arithmetic mod. We were thinking about adding constraints for non-negative integers on a best effort basis. However, now the semantics of the integer mode is clear, everything is an unbounded, signed integer. As soon as we start adding such constraints, it might be hard to keep track. But I am not against it, as it makes the integer mode more precise. @dddejan ?

hajduakos avatar Aug 15 '19 22:08 hajduakos

We should just move the default integer encoding to mod.

dddejan avatar Sep 19 '19 16:09 dddejan

It succeeds with --artihmetic mod, but why should it work actually (?) when the pre-value of balance could be so large so that the post-value overflew. Looking again, I would have expected a precondition that balance and msg.value are not too large.

michael-emmi avatar Sep 24 '19 13:09 michael-emmi

In --arithmetic mod we do have implicit assumptions that balances cannot overflow.

hajduakos avatar Sep 28 '19 20:09 hajduakos