Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Certora] Stay healthy liquidate #684

Merged
merged 15 commits into from
Sep 30, 2024
Merged

[Certora] Stay healthy liquidate #684

Changes from 6 commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
faafe0f
feat: add healthy liquidate general rule
QGarchery Jul 5, 2024
4263c9b
chore: switch to certora-cli-beta
QGarchery Jul 5, 2024
d1e81ed
style: refactor stay healthy liquidate
QGarchery Jul 5, 2024
9aeb49f
chore: switch back to certora-cli
QGarchery Aug 14, 2024
91e6beb
fix: ensure price not changed by view functions
QGarchery Aug 28, 2024
b485614
fix: price did not change after liquidate
QGarchery Aug 28, 2024
1cc0444
refactor: remove unnecessary require
QGarchery Sep 26, 2024
a5efbc2
docs: comment stayHealthyLiquidate
QGarchery Sep 26, 2024
beea950
feat: stay healthy liquidate with different markets
QGarchery Sep 26, 2024
ee18a49
Merge remote-tracking branch 'origin/main' into certora/stay-healthy-…
QGarchery Sep 27, 2024
3b9eb66
feat: split stay healthy rules
QGarchery Sep 30, 2024
bbb4cca
chore: add StayHealthy spec
QGarchery Sep 30, 2024
eb6c5b6
docs: adapt README
QGarchery Sep 30, 2024
8282907
docs: fix spec of no borrow
QGarchery Sep 30, 2024
90c3c8e
chore: remove unnecessary variable definition
QGarchery Sep 30, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
41 changes: 41 additions & 0 deletions certora/specs/Health.spec
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,10 @@
methods {
function extSloads(bytes32[]) external returns bytes32[] => NONDET DELETE;

function totalBorrowAssets(MorphoHarness.Id) external returns uint256 envfree;
function totalBorrowShares(MorphoHarness.Id) external returns uint256 envfree;
function virtualTotalBorrowAssets(MorphoHarness.Id) external returns uint256 envfree;
function virtualTotalBorrowShares(MorphoHarness.Id) external returns uint256 envfree;
QGarchery marked this conversation as resolved.
Show resolved Hide resolved
function lastUpdate(MorphoHarness.Id) external returns uint256 envfree;
function borrowShares(MorphoHarness.Id, address) external returns uint256 envfree;
function collateral(MorphoHarness.Id, address) external returns uint256 envfree;
Expand Down Expand Up @@ -75,6 +78,44 @@ filtered {
assert !priceChanged => stillHealthy;
}

// The general case of liquidate for the stayHealthy rule
// - the user checked is not the borrower,
QGarchery marked this conversation as resolved.
Show resolved Hide resolved
// - the market of the liquidation is the market of the user,
QGarchery marked this conversation as resolved.
Show resolved Hide resolved
// - there is still some borrow on the market after liquidation,
// - there was no bad debt realization.
MathisGD marked this conversation as resolved.
Show resolved Hide resolved
rule stayHealthyLiquidate(env e, MorphoHarness.MarketParams marketParams, address borrower, uint256 seizedAssets, bytes data) {
MorphoHarness.Id id = libId(marketParams);
address user;

priceChanged = false;
QGarchery marked this conversation as resolved.
Show resolved Hide resolved
// Assume that the position is healthy before the interaction.
require isHealthy(marketParams, user);
uint256 debtSharesBefore = borrowShares(id, user);
uint256 debtAssetsBefore = summaryMulDivUp(debtSharesBefore, virtualTotalBorrowAssets(id), virtualTotalBorrowShares(id));
// Safe require because of the invariants onlyEnabledLltv and lltvSmallerThanWad in ConsistentState.spec.
require marketParams.lltv < 10^18;
// Assumption to ensure that no interest is accumulated.
require lastUpdate(id) == e.block.timestamp;

liquidate(e, marketParams, borrower, seizedAssets, 0, data);
require !priceChanged;

// Safe require because of the invariant sumBorrowSharesCorrect.
require borrowShares(id, user) <= totalBorrowShares(id);
// Handle the case where not everything was repaid.
require totalBorrowAssets(id) > 0;
// Handle the case where the user has some collateral left.
require collateral(id, borrower) > 0;
MathisGD marked this conversation as resolved.
Show resolved Hide resolved

assert user != borrower;
assert debtSharesBefore == borrowShares(id, user);
assert debtAssetsBefore >= summaryMulDivUp(debtSharesBefore, virtualTotalBorrowAssets(id), virtualTotalBorrowShares(id));

bool stillHealthy = isHealthy(marketParams, user);
require !priceChanged;
assert stillHealthy;
}

// Check that users cannot lose collateral by unauthorized parties except in case of an unhealthy position.
rule healthyUserCannotLoseCollateral(env e, method f, calldataarg data)
filtered { f -> !f.isView }
Expand Down
Loading