Added expiry check

Soupstraw · Soupstraw · commit 35e0909344b5 · 2025-02-06T14:09:20.000+02:00
diff --git a/src/Ledger/Conway/Conformance/Equivalence.agda b/src/Ledger/Conway/Conformance/Equivalence.agda
@@ -396,8 +396,8 @@ opaque
           → (record Γ { certState = certState' } , n)
             ⊢ s ⇀⦇ txgov ,GOVn⦈ s'
   castGOV deps (BS-base Id-nop) = BS-base Id-nop
-  castGOV {Γ} deps (BS-ind (C.GOV-Vote {voter = voter} (a , b , c)) rs) =
-    BS-ind (C.GOV-Vote (a , b , cast-isRegistered Γ deps voter c))
+  castGOV {Γ} deps (BS-ind (C.GOV-Vote {voter = voter} (a , b , c , d)) rs) =
+    BS-ind (C.GOV-Vote (a , b , cast-isRegistered Γ deps voter c , d))
            (castGOV deps rs)
   castGOV deps (BS-ind (C.GOV-Propose h) rs) =
     BS-ind (C.GOV-Propose h)
diff --git a/src/Ledger/Conway/Conformance/Equivalence/Gov.agda b/src/Ledger/Conway/Conformance/Equivalence/Gov.agda
@@ -41,7 +41,7 @@ instance
             → L.Deposits × L.Deposits
               ⊢ (Γ , n) L.⊢ s ⇀⦇ votes ,GOV'⦈ s' ⭆ⁱ λ deposits _ →
                 (deposits ⊢conv Γ , n) C.⊢ s ⇀⦇ votes ,GOV'⦈ s'
-  GOV'ToConf .convⁱ deposits (L.GOV-Vote (a , b , c)) = C.GOV-Vote (a , b , deposits ⊢conv c)
+  GOV'ToConf .convⁱ deposits (L.GOV-Vote (a , b , c , d)) = C.GOV-Vote (a , b , deposits ⊢conv c , d)
   GOV'ToConf .convⁱ deposits (L.GOV-Propose h) = C.GOV-Propose h
 
   GOVToConf : ∀ {Γ s votes s' n}
@@ -53,7 +53,7 @@ instance
 
   GOV'FromConf : ∀ {Γ s votes s' n}
             → (Γ , n) C.⊢ s ⇀⦇ votes ,GOV'⦈ s' ⭆ (conv Γ , n) L.⊢ s ⇀⦇ votes ,GOV'⦈ s'
-  GOV'FromConf .convⁱ _ (C.GOV-Vote (a , b , c)) = L.GOV-Vote (a , b , conv c)
+  GOV'FromConf .convⁱ _ (C.GOV-Vote (a , b , c , d)) = L.GOV-Vote (a , b , conv c , d)
   GOV'FromConf .convⁱ _ (C.GOV-Propose h)        = L.GOV-Propose h
 
   GOVFromConf : ∀ {Γ s votes s' n}
diff --git a/src/Ledger/Conway/Conformance/Gov.agda b/src/Ledger/Conway/Conformance/Gov.agda
@@ -77,6 +77,7 @@ data _⊢_⇀⦇_,GOV'⦈_  : GovEnv × ℕ → GovState → GovVote ⊎ GovProp
     ∙ (aid , ast) ∈ fromList s
     ∙ canVote pparams (action ast) (proj₁ voter)
     ∙ isRegistered Γ voter
+    ∙ ¬ (expired epoch ast)
       ───────────────────────────────────────
       (Γ , k) ⊢ s ⇀⦇ inj₁ vote ,GOV'⦈ L.addVote s aid voter v
 
@@ -91,6 +92,7 @@ data _⊢_⇀⦇_,GOV'⦈_  : GovEnv × ℕ → GovState → GovVote ⊎ GovProp
     ∙ L.validHFAction prop s enactState
     ∙ L.hasParent enactState s a prev
     ∙ addr .RwdAddr.net ≡ NetworkId
+    ∙ addr .RwdAddr.stake ∈ rewardCreds
       ───────────────────────────────────────
       (Γ , k) ⊢ s ⇀⦇ inj₂ prop ,GOV'⦈ s'
 
diff --git a/src/Ledger/Conway/Conformance/Gov/Properties.agda b/src/Ledger/Conway/Conformance/Gov/Properties.agda
@@ -36,10 +36,6 @@ open GovActionState
 open Inverse
 
 private
-  lookupActionId : (pparams : PParams) (role : GovRole) (aid : GovActionID) (s : GovState) →
-                   Dec (Any (λ (aid' , ast) → aid ≡ aid' × canVote pparams (action ast) role) s)
-  lookupActionId pparams role aid = any? λ _ → ¿ _ ¿
-
   isUpdateCommittee : (a : GovAction) → Dec (∃[ new ] ∃[ rem ] ∃[ q ] a ≡ UpdateCommittee new rem q)
   isUpdateCommittee NoConfidence                = no λ()
   isUpdateCommittee (UpdateCommittee new rem q) = yes (new , rem , q , refl)
@@ -97,16 +93,16 @@ instance
       module GoVote sig where
         open GovVote sig
 
-        computeProof = case lookupActionId pparams (proj₁ voter) gid s ,′ isRegistered? (proj₁ Γ) voter of λ where
+        computeProof = case L.lookupActionId pparams (proj₁ voter) gid epoch s ,′ isRegistered? (proj₁ Γ) voter of λ where
             (yes p , yes p') → case Any↔ .from p of λ where
-              (_ , mem , refl , cV) → success (_ , GOV-Vote (∈-fromList .to mem , cV , p'))
+              (_ , mem , refl , cV , ¬exp) → success (_ , GOV-Vote (∈-fromList .to mem , cV , p' , ¬exp))
             (yes _ , no ¬p) → failure (genErrors ¬p)
             (no ¬p , _)     → failure (genErrors ¬p)
 
         completeness : ∀ s' → Γ ⊢ s ⇀⦇ inj₁ sig ,GOV'⦈ s' → map proj₁ computeProof ≡ success s'
-        completeness s' (GOV-Vote (mem , cV , reg))
-          with lookupActionId pparams (proj₁ voter) gid s | isRegistered? (proj₁ Γ) voter
-        ... | no ¬p | _ = ⊥-elim (¬p (Any↔ .to (_ , ∈-fromList .from mem , refl , cV)))
+        completeness s' (GOV-Vote (mem , cV , reg , ¬exp))
+          with L.lookupActionId pparams (proj₁ voter) gid epoch s | isRegistered? (proj₁ Γ) voter
+        ... | no ¬p | _ = ⊥-elim (¬p (Any↔ .to (_ , ∈-fromList .from mem , refl , cV , ¬exp)))
         ... | yes _ | no ¬p = ⊥-elim $ ¬p reg
         ... | yes p | yes p' with Any↔ .from p
         ... | (_ , mem , refl , cV) = refl
@@ -124,7 +120,8 @@ instance
             × d ≡ govActionDeposit
             × L.validHFAction prop s enactState
             × L.hasParent' enactState s a prev
-            × addr .RwdAddr.net ≡ NetworkId ¿
+            × addr .RwdAddr.net ≡ NetworkId
+            × addr .RwdAddr.stake ∈ rewardCreds ¿
             ,′ isUpdateCommittee a
 
         genErrorsWellFormed : ∀ {a} → ¬ (L.actionWellFormed rewardCreds p ppolicy epoch a) → String
@@ -137,9 +134,9 @@ instance
         genErrorsWellFormed {Info} ¬p                  = genErrors ¬p
 
         computeProof = case H of λ where
-          (yes (wf , dep , vHFA , L.HasParent' en , goodAddr) , yes (new , rem , q , refl)) →
+          (yes (wf , dep , vHFA , L.HasParent' en , goodAddr , regReward) , yes (new , rem , q , refl)) →
             case ¿ ∀[ e ∈ range new ] epoch < e × dom new ∩ rem ≡ᵉ ∅ ¿ of λ where
-              (yes newOk) → success (_ , GOV-Propose (wf , dep , vHFA , en , goodAddr))
+              (yes newOk) → success (_ , GOV-Propose (wf , dep , vHFA , en , goodAddr , regReward))
               (no ¬p)     → failure (genErrors ¬p)
           (yes (wf , dep , vHFA , L.HasParent' en , goodAddr) , no notNewComm) → success
             (-, GOV-Propose (wf , dep , vHFA , en , goodAddr))
diff --git a/src/Ledger/Gov.lagda b/src/Ledger/Gov.lagda
@@ -354,6 +354,7 @@ data _⊢_⇀⦇_,GOV'⦈_ where
     ∙ (aid , ast) ∈ fromList s
     ∙ canVote pparams (action ast) (proj₁ voter)
     ∙ isRegistered Γ voter
+    ∙ ¬ (expired epoch ast)
       ───────────────────────────────────────
       (Γ , k) ⊢ s ⇀⦇ inj₁ vote ,GOV'⦈ addVote s aid voter v
 
@@ -368,6 +369,7 @@ data _⊢_⇀⦇_,GOV'⦈_ where
     ∙ validHFAction prop s enactState
     ∙ hasParent enactState s a prev
     ∙ addr .RwdAddr.net ≡ NetworkId
+    ∙ addr .RwdAddr.stake ∈ rewardCreds
       ───────────────────────────────────────
       (Γ , k) ⊢ s ⇀⦇ inj₂ prop ,GOV'⦈ s'
 
diff --git a/src/Ledger/Gov/Properties.agda b/src/Ledger/Gov/Properties.agda
@@ -31,11 +31,13 @@ open Equivalence
 open GovActionState
 open Inverse
 
-private
-  lookupActionId : (pparams : PParams) (role : GovRole) (aid : GovActionID) (s : GovState) →
-                   Dec (Any (λ (aid' , ast) → aid ≡ aid' × canVote pparams (action ast) role) s)
-  lookupActionId pparams role aid = any? λ _ → ¿ _ ¿
+lookupActionId : (pparams : PParams) (role : GovRole) (aid : GovActionID) (epoch : Epoch) (s : GovState) →
+                 Dec (Any (λ (aid' , ast) → aid ≡ aid' × canVote pparams (action ast) role × ¬ (expired epoch ast)) s)
+lookupActionId pparams role aid epoch = 
+  let instance _ = λ {e ga} → ⁇ (expired? e ga) 
+   in any? λ _ → ¿ _ ¿
 
+private
   isUpdateCommittee : (a : GovAction) → Dec (∃[ new ] ∃[ rem ] ∃[ q ] a ≡ UpdateCommittee new rem q)
   isUpdateCommittee NoConfidence                = no λ()
   isUpdateCommittee (UpdateCommittee new rem q) = yes (new , rem , q , refl)
@@ -111,19 +113,19 @@ instance
       module GoVote sig where
         open GovVote sig
 
-        computeProof = case lookupActionId pparams (proj₁ voter) gid s ,′ isRegistered? (proj₁ Γ) voter of λ where
+        computeProof = case lookupActionId pparams (proj₁ voter) gid epoch s ,′ isRegistered? (proj₁ Γ) voter of λ where
             (yes p , yes p') → case Any↔ .from p of λ where
-              (_ , mem , refl , cV) → success (_ , GOV-Vote (∈-fromList .to mem , cV , p'))
+              (_ , mem , refl , cV , ¬exp) → success (_ , GOV-Vote (∈-fromList .to mem , cV , p' , ¬exp))
             (yes _ , no ¬p) → failure (genErrors ¬p)
-            (no ¬p , _)     → failure (genErrors ¬p)
+            (no ¬p , _    ) → failure (genErrors ¬p)
 
         completeness : ∀ s' → Γ ⊢ s ⇀⦇ inj₁ sig ,GOV'⦈ s' → map proj₁ computeProof ≡ success s'
-        completeness s' (GOV-Vote (mem , cV , reg))
-          with lookupActionId pparams (proj₁ voter) gid s | isRegistered? (proj₁ Γ) voter
-        ... | no ¬p | _ = ⊥-elim (¬p (Any↔ .to (_ , ∈-fromList .from mem , refl , cV)))
+        completeness s' (GOV-Vote {ast = ast} (mem , cV , reg , ¬expired))
+          with lookupActionId pparams (proj₁ voter) gid epoch s | isRegistered? (proj₁ Γ) voter
+        ... | no ¬p | _ = ⊥-elim (¬p (Any↔ .to (_ , ∈-fromList .from mem , refl , cV , ¬expired)))
         ... | yes _ | no ¬p = ⊥-elim $ ¬p reg
-        ... | yes p | yes p' with Any↔ .from p
-        ... | (_ , mem , refl , cV) = refl
+        ... | yes p | yes q with Any↔ .from p 
+        ... | ((_ , ast') , mem , refl , cV) = refl
 
       module GoProp prop where
         open GovProposal prop
@@ -138,16 +140,17 @@ instance
             × d ≡ govActionDeposit
             × validHFAction prop s enactState
             × hasParent' enactState s a prev
-            × addr .RwdAddr.net ≡ NetworkId ¿
+            × addr .RwdAddr.net ≡ NetworkId
+            × addr .RwdAddr.stake ∈ rewardCreds ¿
             ,′ isUpdateCommittee a
 
         computeProof = case H of λ where
-          (yes (wf , dep , vHFA , HasParent' en , goodAddr) , yes (new , rem , q , refl)) →
+          (yes (wf , dep , vHFA , HasParent' en , goodAddr , regReturn) , yes (new , rem , q , refl)) →
             case ¿ ∀[ e ∈ range new ] epoch < e × dom new ∩ rem ≡ᵉ ∅ ¿ of λ where
-              (yes newOk) → success (_ , GOV-Propose (wf , dep , vHFA , en , goodAddr))
+              (yes newOk) → success (_ , GOV-Propose (wf , dep , vHFA , en , goodAddr , regReturn))
               (no ¬p)     → failure (genErrors ¬p)
-          (yes (wf , dep , vHFA , HasParent' en , goodAddr) , no notNewComm) → success
-            (-, GOV-Propose (wf , dep , vHFA , en , goodAddr))
+          (yes (wf , dep , vHFA , HasParent' en , goodAddr , returnReg) , no notNewComm) → success
+            (-, GOV-Propose (wf , dep , vHFA , en , goodAddr , returnReg))
           (no ¬p , _) → failure (genErrors ¬p)
 
         completeness : ∀ s' → Γ ⊢ s ⇀⦇ inj₂ prop ,GOV'⦈ s' → map proj₁ computeProof ≡ success s'
