1 month ago
The information of the Ethereum protocol is continually being improved, and 1 caller effort is the outer information reappraisal of the Pectra System Contracts.
The results of this reappraisal tin beryllium recovered successful the audits repository, and the TL;DR is that each discovered issues deemed applicable oregon important from these reviews person been addressed.
Audit Scope and Methodology
The Pectra System Contracts encompass respective EIPs (EIP-2935, EIP-7002, and EIP-7251), and reviews were chiefly done to:
- Evaluate the contracts for imaginable onslaught vectors.
- Ensure that the declaration logic accurately implements the intended functionality arsenic per the EIP specifications.
A multi-phase attack was taken, with each audit gathering upon the findings of erstwhile ones:
Between each review, codification improvements were made earlier proceeding to the adjacent circular of audits.
Formal Verification
In summation to the information reviews listed above, a16z conducted a Formal Verification utilizing Halmos. They utilized Halmos to formally verify the functional correctness of these contracts. This specifically focused connected whether the bytecode aligned with the spec, alternatively than evaluating the information of the spec itself against imaginable maltreatment oregon malicious use. This separation of concerns allows auditors and the assemblage to reappraisal the spec without worrying astir low-level bytecode implementation details.
Next Steps
The afloat reports tin beryllium recovered successful the Pectra System Contracts Audits repository.
A bug bounty contention is presently moving connected Cantina has rewards of up to $2,000,000 for findings related to Pectra.
As always, the information of the Ethereum ecosystem is simply a corporate effort. We widen our gratitude to each the auditors and contributors who person played an important portion successful this process!
English (US) 