Skip to content

Refactor get_* calls in harnesses for fewer steps #88

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 26 commits into from
Nov 6, 2025
Merged

Refactor get_* calls in harnesses for fewer steps #88

merged 26 commits into from
Nov 6, 2025

Conversation

@dkcumming
Copy link
Collaborator

@dkcumming dkcumming commented Nov 4, 2025
edited
Loading

This PR refactors calls to get_{account, mint, multisig} where possible in all proof harnesses to reduce the amount of steps proofs need to take. A selection of proofs were run again to see the reduction in steps, not every harness could be refactored and some proofs go for long without stopping so it is hard to see how the count changes.

The naming convention introduced is inspired by specification languages that have an old(...) operator to talk about pre-strate (e.g. Dafny). In the post state I added new to variable so it would be clear this is captured after the implementation has executed.

Proofs run and change in steps:

  • initialize_account: 89207 -> 89207 = no change, probably indicates not getting into the else branch
  • transfer: 4011 -> 3459 = 14% reduction
  • mint_to: 3248 -> 2834 = 13% reduction
  • burn: 4699 -> 3457 = 26% reduction
  • close_account: 3711 -> 3021 = 19% reduction
  • transfer_checked: 4755 -> 4065 = 15% reduction
  • burn_checked: 5290 -> 3910 = 26% reduction
  • approve: 3049 -> 2773 = 9% reduction
  • approve_checked: 3793 -> 3517 = 7% reduction
  • revoke: 2409 -> 2133 = 11% reduction
  • freeze_account: 3199 -> 2647 = 17% reduction
  • thaw_account: 3199 -> 2647 = 17% reduction
  • mint_to_checked: 3689 -> 3275 = 11% reduction
  • sync_native: 2331 -> 2055 = 12% reduction

The concrete test harnesses that are able to run with our restricted harnesses were also run successfully

@dkcumming
Reduced get_account calls for CloseAccount
ff29e0e 
Improvement from 3711 steps to 3021 steps for the proof.
@dkcumming
Reduced calls to get_mint in InitializeMint
972188d 
`test_process_initialize_mint_{freeze, no_freeze}` did not have the
proofs run again as they do not finish to tell if there is a step
reduction
@dkcumming
Reduced calls to get_account in InitializeAccount
f3b31de 
This DOES NOT reduce the amount of proofs steps compared to if this
change is not present (both 89207 steps), indicating that our proofs are not getting into the
`else` brach of the post-condition.
@dkcumming
Reduced calls to get_account in Transfer
7f06106
@dkcumming
Reduced called to get_{account, mint} for MintTo
597f699
@dkcumming
Reduced calls to get_account in Burn
35e4424
@dkcumming
Reduced calls to get_account in TransferChecked
3686c52
@dkcumming
Reduced calls to get_account in BurnChecked
05bf4e2
@dkcumming
Reduced calls to get_account in InitializeAccount2
ddc0cac
@dkcumming
Reduced calls to get_account for InitializeAccount3
1a82045
@dkcumming
Reduced calls to get_mint for InitializeMint2
f4a6379
@dkcumming
Reduced calls to get_multisig in InitializeMultisig
a528120
@dkcumming
Reduced calls to get_account for Approve
02c100a
@dkcumming
Reduced calls to get_account in Revoke
958163e
@dkcumming
Reduced calls to get_{account, mint} in SetAuthority
5434cf3
@dkcumming
Reduced calls to get_{account, mint} for FreezeAccount
6f49398
@dkcumming
Reduced calls to get_{account, mint} for ThawAccount
343902e
@dkcumming
Reduced calls to get_account for ApproveChecked
86ec29c
@dkcumming
Reduced calls to get_{account, mint} in MintToChecked
962d28d
@dkcumming
Reduced calls to get_account in SyncNative
d4c0fd2
@dkcumming
Reduced calls to get_multisig in InitializeMultisig2
f994f91
@dkcumming
Reduced calls to get_{mint, account} for WithdrawExcessLamports
9207963
@dkcumming dkcumming self-assigned this Nov 4, 2025
@dkcumming dkcumming marked this pull request as ready for review November 5, 2025 15:10
@dkcumming
Copy link
Collaborator Author

dkcumming commented Nov 5, 2025

Concrete tests have been run post merge for both p-token and programs and passed all (except the malformed input tests we do not handle)

@dkcumming dkcumming requested a review from JuanCoRo November 5, 2025 15:11
jberthold
jberthold approved these changes Nov 5, 2025
View reviewed changes
Copy link
Member

@jberthold jberthold left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM
Nice refactoring, code is much easier to read/follow now.

@automergerpr-permission-manager automergerpr-permission-manager bot merged commit dfd122e into proofs Nov 6, 2025
1 check passed
@jberthold jberthold deleted the dc/fewer-calls branch November 6, 2025 07:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jberthold jberthold jberthold approved these changes

@sskeirik sskeirik Awaiting requested review from sskeirik

@Stevengre Stevengre Awaiting requested review from Stevengre

@JuanCoRo JuanCoRo Awaiting requested review from JuanCoRo

Assignees

@dkcumming dkcumming

Labels

automerge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@dkcumming @jberthold