Update README.md and Add smart contract examples

Author: Coder2Programmer

README.md

@@ -22,9 +22,38 @@ The main components of WANA is as follow.
   + `structure.py` and `runtime.py` represent WebAssembly bytecode structure and virtual machine runtime structure.
   + `number.py`, `utils.py` and `logger.py` are helper modules.
 
+## Prerequisites
+The following Python packages are required.
+ + six==1.14.0
+ + func_timeout==4.3.5
+ + z3-solver==4.8.8.0
+
+The project was developed under Ubuntu 18.04, therefore it is compatible with later version in principle.
+
+
 ## Usage
-Firstly, the prerequisites in [requirements.txt](./requirements.txt) should be correctly installed. 
+There should be a compiled smart contract in wasm format. The EOSIO and Ethereum smart contract could be 
+compiled as follow.
+
+### EOSIO smart contract
+The EOSIO smart contract is developed using cpp or rust, like [appdemo](./examples/EOSIO_contracts/appdemo/appdemo.cpp).
+Firstly, installing the [eosio.cdt](https://github.com/EOSIO/eosio.cdt) according to its 
+[README](https://github.com/EOSIO/eosio.cdt/blob/master/README.md). Then, using the following command to compile the
+above smart contract.
+```bash
+eosio-cpp appdemo.cpp -o appdemo.wasm
+```
 
+### Ethereum smart contract
+The type of Ethereum smart contract source code is solidity. At present, there are some tools to complete the process
+that compile smart contract from solidity to WebAssembly. For example, [soll](https://github.com/second-state/SOLL) is
+a more mature tool. After setting up the environment of soll, using the following command to compile a smart contract,
+for example, [Router.sol](./examples/Ethereum_contracts/delegatecall_samples/Router.sol).
+```bash
+~/soll/build/tools/soll/soll Router.sol
+```
+
+### Analysis
 The following command will analyze the EOSIO smart contract `contract.wasm` with timeout 20 seconds. The `-t` is 
 optional, the symbolic execution won't be interrupted until complete analysis if `-t` not set.
 ```bash
@@ -53,5 +82,5 @@ contract.wasm: forged transfer notification found
 1. https://webassembly.org/
 2. https://github.com/WebAssembly/
 3. https://developer.mozilla.org/en-US/docs/WebAssembly
-
-
+4. https://github.com/EOSIO/eosio.cdt
+5. https://github.com/second-state/SOLL

bug_analyzer.py

@@ -37,7 +37,7 @@ def cur_state_analysis(store, frame, stack, expr, pc, solver=None):
         return
 
     if global_vars.fake_detection_mode:
-        fake_eos_analysis(store, frame, expr, pc, solver)
+        fake_eos_analysis(store, frame, stack, expr, pc, solver)
         return
 
     if _is_transfer_function(store, frame, stack, expr, pc):
@@ -164,7 +164,7 @@ def detect_forged_transfer(store, frame, index):
 
     """
 
-    global_vars.detect()
+    global_vars.forged_detect()
 
     module = frame.module
     table = store.tables[module.tableaddrs[0]]
@@ -298,14 +298,14 @@ def detect_fake_eos(vm, name) -> None:
     func_type.args = bytearray([bin_format.i64, bin_format.i64, bin_format.i64])
     func_type.rets = bytearray()
     apply_func = vm.store.funcs[vm.module_instance.funcaddrs[global_vars.apply_function_address]]
-    global_vars.detect()
+    global_vars.fake_detect()
     if apply_func.functype == func_type:
         params = utils.gen_symbolic_args(apply_func)
         global_vars.apply_params = params
         params[0] = utils.eos_abi_to_int(name)
         params[2] = utils.eos_abi_to_int('transfer')
         init_constraints = [params[0] != params[1], params[1] != utils.eos_abi_to_int('eosio.token')]
-        vm.exec_by_address(global_vars.apply_function_address, params, False, init_constraints)
+        vm.exec_by_address(global_vars.apply_function_address, params, init_constraints)
     global_vars.sym_exec() # set the detection mode to False
 
 

examples/EOSIO_contracts/appdemo/appdemo.abi

@@ -0,0 +1,143 @@
+{
+  "____comment": "This file was generated by eosio-abigen. DO NOT EDIT - 2018-05-15T01:04:39",
+  "types": [],
+  "structs": [{
+      "name": "profile",
+      "base": "",
+      "fields": [{
+          "name": "account",
+          "type": "account_name"
+        },{
+          "name": "username",
+          "type": "string"
+        },{
+          "name": "age",
+          "type": "uint32"
+        },{
+          "name": "bio",
+          "type": "string"
+        }
+      ]
+    },{
+      "name": "hello",
+      "base": "",
+      "fields": [{
+          "name": "account",
+          "type": "account_name"
+        }
+      ]
+    },{
+      "name": "create",
+      "base": "",
+      "fields": [{
+          "name": "account",
+          "type": "account_name"
+        },{
+          "name": "username",
+          "type": "string"
+        },{
+          "name": "age",
+          "type": "uint32"
+        },{
+          "name": "bio",
+          "type": "string"
+        }
+      ]
+    },{
+      "name": "get",
+      "base": "",
+      "fields": [{
+          "name": "account",
+          "type": "account_name"
+        }
+      ]
+    },{
+      "name": "update",
+      "base": "",
+      "fields": [{
+          "name": "account",
+          "type": "account_name"
+        },{
+          "name": "username",
+          "type": "string"
+        },{
+          "name": "age",
+          "type": "uint32"
+        },{
+          "name": "bio",
+          "type": "string"
+        }
+      ]
+    },{
+      "name": "remove",
+      "base": "",
+      "fields": [{
+          "name": "account",
+          "type": "account_name"
+        }
+      ]
+    },{
+      "name": "byage",
+      "base": "",
+      "fields": [{
+          "name": "age",
+          "type": "uint32"
+        }
+      ]
+    },{
+      "name": "agerange",
+      "base": "",
+      "fields": [{
+          "name": "young",
+          "type": "uint32"
+        },{
+          "name": "old",
+          "type": "uint32"
+        }
+      ]
+    }
+  ],
+  "actions": [{
+      "name": "hello",
+      "type": "hello",
+      "ricardian_contract": ""
+    },{
+      "name": "create",
+      "type": "create",
+      "ricardian_contract": ""
+    },{
+      "name": "get",
+      "type": "get",
+      "ricardian_contract": ""
+    },{
+      "name": "update",
+      "type": "update",
+      "ricardian_contract": ""
+    },{
+      "name": "remove",
+      "type": "remove",
+      "ricardian_contract": ""
+    },{
+      "name": "byage",
+      "type": "byage",
+      "ricardian_contract": ""
+    },{
+      "name": "agerange",
+      "type": "agerange",
+      "ricardian_contract": ""
+    }
+  ],
+  "tables": [{
+      "name": "profile",
+      "index_type": "i64",
+      "key_names": [
+        "account"
+      ],
+      "key_types": [
+        "account_name"
+      ],
+      "type": "profile"
+    }
+  ],
+  "clauses": []
+}

examples/EOSIO_contracts/appdemo/appdemo.cpp

@@ -0,0 +1,106 @@
+/* appdemo.cpp
+*  Jack DiSalvatore
+*/
+#include <appdemo.hpp>
+
+void appdemo::hello(account_name account) {
+    print("Hello ", name{account});
+}
+
+void appdemo::create(const account_name account,
+                     const string&      username,
+                     uint32_t           age,
+                     const string&      bio) {
+    require_auth(account);
+
+    profile_table profiles(_self, _self);
+
+    auto itr = profiles.find(account);
+
+    eosio_assert(itr == profiles.end(), "Account already exists");
+
+    profiles.emplace(account, [&](auto& p) {
+        p.account  = account;
+        p.username = username;
+        p.age      = age;
+        p.bio      = bio;
+    });
+}
+
+void appdemo::get(const account_name account) {
+    profile_table profiles(_self, _self);
+
+    auto itr = profiles.find(account);
+
+    eosio_assert(itr != profiles.end(), "Account does not exist");
+
+    print("Account: ", name{itr->account}, " , ");
+    print("Username: ", itr->username.c_str(), " , ");
+    print("Age: ", itr->age , " , ");
+    print("Bio: ", itr->bio.c_str());
+}
+
+void appdemo::update(const account_name account,
+                     const string&      username,
+                     uint32_t           age,
+                     const string&      bio) {
+    require_auth(account);
+
+    profile_table profiles(_self, _self);
+
+    auto itr = profiles.find(account);
+
+    eosio_assert(itr != profiles.end(), "Account does not exist");
+
+    profiles.modify(itr, account, [&](auto& p) {
+        p.username = username;
+        p.age      = age;
+        p.bio      = bio;
+    });
+}
+
+void appdemo::remove(const account_name account) {
+    require_auth(account);
+
+    profile_table profiles(_self, _self);
+
+    auto itr = profiles.find(account);
+
+    eosio_assert(itr != profiles.end(), "Account does not exist");
+
+    profiles.erase(itr);
+    print(name{account} , " deleted!");
+}
+
+void appdemo::byage(uint32_t age) {
+    print("Checking age: ", age, "\n");
+    profile_table profiles(_self, _self);
+
+    // get an interface to the 'profiles' containter
+    // that looks up a profile by its age
+    auto age_index = profiles.get_index<N(age)>();
+
+    // lower_bound is an associative container operator
+    // which returns an iterator to the first element that is
+    // to lower then the key
+    // we use lower bound, because we want to find everyone
+    // who is this age, there may be multiple
+    auto itr = age_index.lower_bound(age);
+
+    for(; itr != age_index.end() && itr->age == age; ++itr) {
+        print(itr->username.c_str(), " is ", itr->age, " years old\n");
+    }
+}
+
+void appdemo::agerange(uint32_t young, uint32_t old) {
+    profile_table profiles(_self, _self);
+
+    auto age_index = profiles.get_index<N(age)>();
+
+    auto begin = age_index.lower_bound(young);
+    auto end   = age_index.upper_bound(old);
+
+    for_each(begin, end, [&](auto& p) {
+        print(p.username.c_str(), " is ", p.age, " years old\n");
+    });
+}