Reference
An archetype contract is composed of declarations, actions (aka entry points) and optionally specification for formal verification.
constantandvariablesdeclare global variables. A constant value cannot be modified in the contract's actions.
constant rate : rational = 0.2
variable price : tez = 10tz
statesdeclares contract's possible states. It is then possible to use transitions to change the contract states (see below)
states =| Created initial| Confirmed| Canceled| Success| Fail
initial is used to declare the initial state value of the contract.
actiondeclares an entry point of the contract. An action has the following sections:specification(optional) to provide the post conditions the action is supposed to haveaccept transfer(optional) to specify that transfer of tez is acceptedcalled by(optional) to declare which role may call this actionrequire(optional) to list the necessary conditions for the action to be executedfailif(optional)to list the conditions which prevent from executioneffectis the code to execute by the action
entry an_entry_1 (arg1 : string, arg2 : int) {specification {// see 'specification' section below}called by a_rolerequire {r1 : arg2 > 0}failif {f1 : arg2 > 10}effect {// ...}}
transitiondeclares an entry point of the contract that changes the state of the contract. A transition has the same sections as an action (excepteffect, see above) plus:fromto specify the states the transition starts fromtoto specify the states after the transitionwhen(optional) to specify the transition conditionwith effectto specify the effect of the transition
states =| Created initial| Confirmed| Canceled| Success| Fail​transition confirm () {from Createdto Confirmedwhen { transferred > 10tz }with effect {transfer 1tz to @tz1Lc2qBKEWCBeDU8npG6zCeCqpmaegRi6Jg}}
It is possible to specify several to ... when .... with effect ... sections in a transition. It is possible to specify a list of original states for the transition to start from:
transition to_fail () {from Created or Confirmedto Failwhen { ... }}
bool: boolean valuesint: integer valuesrational: floating value that can be expressed as the quotient or fraction of two integersaddress: account addressrole: an address that can be used in action's called by sectiondate: date valuesduration: duration values (in second, minute, hour, day, week)string: string of characterstez: Tezos currencybytes: bytes sequencekey:signature:key_hash:
*declares a tuple made of other types.
constant pair : int * string = (1, "astr")
optiondeclares an option of type.
constant value : int option = none
listdeclares a list of any type (builtin or composed)
variable vals : string list = []
assetdeclares a collection of asset and the data an asset is composed of. For example the following declares a collection of real estates described by an address, a location and an owner:
asset real_estate identified by addr {addr : string;xlocation : string;ylocation : string;owner : address;}
enumdeclares an enumeration value. It is read with amatch ... withcommand (see below).
enum color =| White| Red| Green| Blue
It is then possible to declare a variable of type color:
variable c : color = Green
contractdeclares the signature of another existing contract to call in actions.
contract called_contract_sig {entry set_value (n : int)entry add_value (a : int, b : int)}
It is then possible to declare a contract value of type called_contract_sig and set its address:
constant c : called_contract_sig = @KT1RNB9PXsnp7KMkiMrWNMRzPjuefSWojBAm
aggregatedeclares an asset field as a aggregate of another asset.
asset an_asset identified by id {id : string;a_val : int;asset_col : another_asset aggregate;}
partitiondeclares an asset field as a collection of another asset. The difference withaggregateis that a partition ensures at compilation that every partitioned asset (i.e. element of the partition) belongs to one and only partitioning asset.
asset partitioning_asset identified by id {id : string;asset_part : partitioned_asset partition;}
As a consequence of the partition, a partitioned asset cannot be straightforwardly added or removed to its global collection with add and remove (see operation below). This has to be done via a partition field:
my_partitioning_asset.asset_part.add(a_new_partitioned_asset)
An action's effect is composed of instructions separated by a semi-colon.
vardeclares a local variable with its value. While possible, it is not necessary to declare the type a local variable. Local variables' identifier must be unique (no name capture in Archetype).
var i = 0;
:=enables to assign a new value to a global or local variable.
i := 1;
+=,-=,*=and/=enable to respectively increment and decrement an integer variable (local or global).
i *= 2; // i := i * 2d += 3w; // d := i + 3w, date d is now previous d plus 3 weeks
addenables to add an asset to an asset collection. It fails if the asset key is already present in the collection.
an_asset.add({ id = "RJRUEQDECSTG", asset_col = [] }); // see 'collection' example
updateenables to update an existing asset; it takes as arguments the id of the asset to update and the list of effects on the asset. It fails if the id is not present in the asset collection.
an_asset.update("RJRUEQDECSTG", { a_value += 3 });
addupdateis similar to update except that it adds the asset if its identifier is not present in the collection.
an_asset.addupdate("RJRUEQDECSTG", { a_value += 3 });
removeremoves a an asset from its collection.
an_asset.remove("RJRUEQDECSTG");
removeifenables removing assets under a condition.
an_asset.removeif(a_val > 10); // "a_val" is an asset field
clearclears an asset collection.
an_asset.clear();
;sequence
res := 1;res := 2;res := 3;
if thenandif then elseare the conditional branchings instructions.
if i > 0 then (// (* effect when i > 0 *)) else (// (* effect when i <= 0 *));
match ... with ... end
archetype effect_control_matchwith​enum t =| C1| C2| C3| C4| C5​variable res : int = 0​entry exec () {specification {s0: res = 1;}effect {var x : t = C3;match x with| C1 | C2 -> res := 0| C3 -> res := 1| _ -> res := 2end}}​
for in do doneiterates over a collection.
var res = 0;for a in an_asset dores += a.a_val;done;
iter to do doneiterates over a sequence of integer values (starting from 1).
var res = 0iter i to 3 do // iterates from 1 to 3 includedres += i;done; // res is 6
transfertransfers an amount of tez to an address or a contract.
transfer 2tz to @tz1RNB9PXsnp7KMkiMrWNMRzPjuefSWojBAm;
With the contract keyword presented above, it is possible to transfer to a contract and call an entry point. In the example below, the entry point set_value of contract c is called and 2tz is transferred.
contract contract_called_sig {entry set_value (n : int)entry add_value (a : int, b : int)}​constant c : called_contract_sig = @KT1RNB9PXsnp7KMkiMrWNMRzPjuefSWojBAm​entry update_value(n : int) {effect {transfer 2tz to c call set_value(n);}}
failaborts the execution. It prevents from deploying the contract on the blockchain. As a consequence the storage is left unchanged when executed.
fail("a message");
requireandfailiffail if the argument condition is respectively false and true.require(t)is sugar forif t then fail("").
require(val > 0);failif(val <= 0);
boolean
constant x : bool = trueconstant y : bool = false
integer
constant i : int = 1constant j : int = -42
rational
constant f : rational = 1.1constant g : rational = -1.1constant r : rational = 2 div 6constant t : rational = -2 div 6
string
constant s : string = "hello world"
tez
constant ctz : tez = 1tzconstant cmtz : tez = 1mtzconstant cutz : tez = 1utz
address/role
constant a : address = @tz1Lc2qBKEWCBeDU8npG6zCeCqpmaegRi6Jg
duration
// duration of 3 weeks 8 days 4 hours 34 minutes 18 secondsconstant d : duration = 3w8d4h34m18s
date
constant date0 : date = 2019-01-01constant date1 : date = 2019-01-01T01:02:03constant date2 : date = 2019-01-01T01:02:03Zconstant date3 : date = 2019-01-01T00:00:00+01:00constant date4 : date = 2019-01-01T00:00:00-05:30
list
constant mylist : int list = [1; 2; 3]
option
constant op1 : int option = noneconstant op2 : int option = some(0)
bytes
constant bl : bytes = 0x12f12354356a
​
andoperator of logical conjunction
var bool_bool_and : bool = (true and false);
oroperator of logical disjunction
var bool_bool_or : bool = (true or false);
notoperator of logical negation
var bool_bool_not : bool = not true;
=
var int_int_eq : bool = 1 = 2;var rat_int_eq : bool = (1 / 2) = 2;var int_rat_eq : bool = 1 = (2 / 3);var rat_rat_eq : bool = (1 / 3) = (2 / 3);var tez_tez_eq : bool = 1tz = 2tz;var dur_dur_eq : bool = 1h = 2h;var date_date_eq : bool = 2020-01-01 = 2020-12-31;var bool_bool_eq : bool = true = false;var addr_addr_eq : bool = @tz1Lc2qBKEWCBeDU8npG6zCeCqpmaegRi6Jg = @tz1bfVgcJC4ukaQSHUe1EbrUd5SekXeP9CWk;var str_str_eq : bool = "a" = "b";
<>
var int_int_ne : bool = 1 <> 2;var rat_int_ne : bool = (1 / 2) <> 2;var int_rat_ne : bool = 1 <> (2 / 3);var rat_rat_ne : bool = (1 / 2) <> (2 / 3);var tez_tez_ne : bool = 1tz <> 2tz;var dur_dur_ne : bool = 1h <> 2h;var date_date_ne : bool = 2020-01-01 <> 2020-12-31;var bool_bool_ne : bool = true <> false;var addr_addr_ne : bool = @tz1Lc2qBKEWCBeDU8npG6zCeCqpmaegRi6Jg <> @tz1bfVgcJC4ukaQSHUe1EbrUd5SekXeP9CWk;var str_str_ne : bool = "a" <> "b";
<
var int_int_lt : bool = 1 < 2;var rat_int_lt : bool = (1 / 2) < 2;var int_rat_lt : bool = 1 < (2 / 3);var rat_rat_lt : bool = (1 / 2) < (2 / 3);var tez_tez_lt : bool = 1tz < 2tz;var dur_dur_lt : bool = 1h < 2h;var date_date_lt : bool = 2020-01-01 < 2020-12-31;
<=
var int_int_le : bool = 1 <= 2;var rat_int_le : bool = (1 / 2) <= 2;var int_rat_le : bool = 1 <= (2 / 3);var rat_rat_le : bool = (1 / 2) <= (2 / 3);var tez_tez_le : bool = 1tz <= 2tz;var dur_dur_le : bool = 1h <= 2h;var date_date_le : bool = 2020-01-01 <= 2020-12-31;
>
var int_int_gt : bool = 1 > 2;var rat_int_gt : bool = (1 / 2) > 2;var int_rat_gt : bool = 1 > (2 / 3);var rat_rat_gt : bool = (1 / 2) > (2 / 3);var tez_tez_gt : bool = 1tz > 2tz;var dur_dur_gt : bool = 1h > 2h;var date_date_gt : bool = 2020-01-01 > 2020-12-31;
>=
var int_int_ge : bool = 1 >= 2;var rat_int_ge : bool = (1 / 2) >= 2;var int_rat_ge : bool = 1 >= (2 / 3);var rat_rat_ge : bool = (1 / 2) >= (2 / 3);var tez_tez_ge : bool = 1tz >= 2tz;var dur_dir_ge : bool = 1h >= 2h;var date_date_ge : bool = 2020-01-01 >= 2020-12-31;
+
var int_int_plus : int = 1 + 2;var rat_rat_plus : rational = 1.1 + 1.2;var int_rat_plus : rational = 1 + 1.2;var rat_int_plus : rational = 1.1 + 2;var dur_dur_plus : duration = 1h + 2s;var date_dur_plus : date = 2020-01-01 + 1d;var dur_date_plus : date = 1d + 2020-01-01;var str_str_plus : string = "str1" + "str2"; (* concat *)var tez_tez_plus : tez = 2tz + 1tz;
-
var int_int_minus : int = 1 - 2;var rat_rat_minus : rational = 1.1 - 1.2;var int_rat_minus : rational = 1 - 1.2;var rat_int_minus : rational = 1.1 - 2;var date_date_minus : duration = 2020-01-01 - 2019-12-31; (* absolute value *)var dur_dur_minus : duration = 1h - 2s; (* absolute value *)var date_dur_minus : date = 2020-01-01 - 1d;var tez_tez_minus : tez = 2tz - 1tz;
*
var int_int_mult : int = 1 * 2;var rat_rat_mult : rational = 1.1 * 1.2;var int_rat_mult : rational = 1 * 1.2;var rat_int_mult : rational = 1.1 * 2;var int_dur_mult : duration = 2 * 1h;var int_tez_mult : tez = 1 * 1tz;var rat_tez_mult : tez = 1.1 * 1tz;
/
var int_int_div : rational = 1 / 2;var rat_rat_div : rational = 1.1 / 1.2;var int_rat_div : rational = 1 / 1.2;var rat_int_div : rational = 1.1 / 2;
%
var int_int_modulo : int = 1 % 2;
caller
var v : address = caller; (* SENDER *)
source
var v : address = source; (* SOURCE *)
balance
var v : tez = balance; (* BALANCE *)
transferred
var v : tez = transferred; (* AMOUNT *)
now
var v : date = now; (* NOW *)
state
archetype sample_state​states =| First| Second| Third​​transition mytr () {from Firstto Secondwith effect {require (state = First)}}
min
var int_int_min : int = min(1, 2);var rat_int_min : rat = min(1 / 2, 1);var int_rat_min : rat = min(2, 1 / 3);var rat_rat_min : rat = min(1 / 2, 1 / 3);var date_date_min : date = min(2020-01-01, 2020-12-31);var dur_dur_min : dur = min(1h, 1s);var tez_tez_min : tez = min(1tz, 2tz);
max
var int_int_max : int = max(1, 2);var rat_int_max : rat = max(1 / 2, 1);var int_rat_max : rat = max(2, 1 / 3);var rat_rat_max : rat = max(1 / 2, 1 / 3);var date_date_max : date = max(2020-01-01, 2020-12-31);var dur_dur_max : dur = max(1h, 1s);var tez_tez_max : tez = max(1tz, 2tz);
abs
var int_abs : int = abs(-1);var rat_abs : rat = abs(-1 / 2);
concat
var str_concat : string = concat("abc", "def");var byt_concat : bytes = concat(0x12, 0xef);
slice
var str_slice : string = slice("abcdef", 1, 2);var byt_slice : bytes = slice(0xabcdef01, 1, 2);
length
var str_length : int = length("abcdef");
isnone
var b_issome : bool = isnone(none);
issome
var b_issome : bool = issome(some(1));
getopt
var res : int = getopt(some(1));
floor
var pos_floor : int = floor(5 / 3); // 1var neg_floor : int = floor(-5 / 3); // -2
ceil
var pos_ceil : int = ceil(5 / 3); // 2var neg_ceil : int = ceil(-5 / 3); // -1
pack
var v : bytes = pack("archetype")
unpack
var s : string option = unpack<string>(0x050100000009617263686574797065) // some("archetype")
contains
archetype expr_list_contains​variable res : bool = false​entry exec () {specification {s0: res = true;}effect {var l : string list = ["1"; "2"; "3"];res := contains(l, "2")}}​
count
archetype expr_list_count​variable res : int = 0​entry exec () {specification {s0: res = 3;}effect {var l : string list = ["1"; "2"; "3"];res := count(l)}}​
nth
archetype expr_list_nth​variable res : string = ""​entry exec () {specification {s0: res = "2";}effect {var l : string list = ["1"; "2"; "3"];res := nth(l, 1)}}​
prependadds an element to a list at the first position.
archetype expr_list_prepend​variable res : string list = []​entry exec () {specification {s0: res = ["0"; "1"; "2"; "3"];}effect {var l : string list = ["1"; "2"; "3"];res := prepend(l, "0");}}
contains
archetype expr_method_asset_contains​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 0};{"id1"; 1};{"id2"; 2}}​variable res : bool = false​entry exec () {specification {s0: res = true;}effect {res := my_asset.contains("id0")}}
count
archetype expr_method_asset_count​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 0};{"id1"; 1};{"id2"; 2}}​variable res : int = 0​entry exec () {specification {s0: res = 3;}effect {res := my_asset.count()}}
nth
archetype expr_method_asset_nth​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 0};{"id1"; 1};{"id2"; 2}}​variable res : int = 0​entry exec () {specification {s0: res = 1;}effect {var a = my_asset.nth(1);res := a.value}}
head
archetype expr_method_asset_head​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 4};{"id1"; 3};{"id2"; 2}}​variable res : int = 0​entry exec () {specification {s0: res = 3;}effect {var l = my_asset.head(2);var a = l.nth(1);res := a.value}}
tail
archetype expr_method_asset_tail​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 0};{"id1"; 1};{"id2"; 2}}​variable res : int = 0​entry exec () {specification {s0: res = 1;}effect {var l = my_asset.tail(2);var a = l.nth(0);res := a.value}}
select
archetype expr_method_asset_select​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 0};{"id1"; 1};{"id2"; 2}}​variable res : int = 0​entry exec () {specification {s0: res = 2;}effect {var l = my_asset.select(the.id = "id2");var a = l.nth(0);res := a.value}}
sort
archetype expr_method_asset_sort​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 3};{"id1"; 2};{"id2"; 1}}​variable res : int = 0​entry exec () {specification {s0: res = 1;}effect {var l = my_asset.sort(value);var a = l.nth(0);res := a.value}}
you can also sort with several criteria
archetype multi_sort​asset my_asset identified by id {id : string;v1 : int;v2 : int;v3 : int;} initialized by {{"id0"; 1; 2; 7};{"id1"; 1; 3; 9};{"id2"; 1; 3; 8};{"id3"; 1; 2; 6}}​entry exec () {​effect {var res = my_asset.sort(v1, asc(v2), desc (v3))(* res = ["id0"; "id3", "id1", "id2"] *)}}
sum
archetype expr_method_asset_sum​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 0};{"id1"; 1};{"id2"; 2}}​variable res : int = 0​entry exec () {specification {s0: res = 3;}effect {res := my_asset.sum(value)}}
Here is a full example with all sections of an action specification
archetype contract_with_full_specification​asset myasset {id: string;val: bool;}​asset col1 {id1 : string;}​asset col2 {id2 : string;}​entry exec () {specification {​definition mydef {x : myasset | forall y in col1, x.id = y.id1}​predicate mypredicate (a : int) {forall x in col1, forall y in col2, x.id1 = y.id2}​variable myvar : int = 0​shadow effect {myvar := 3}​assert a1 {x = yinvariant for myloop {x = 0;y = 0}}​postcondition s1 {x = yinvariant for myloop {x = 0;y = 0}}}​effect {var x : int = 0;var y : int = 0;for : myloop c in col1 dorequire(true)done;assert a1}}​
definition
definition mydef {x : myasset | forall y in col1, x.id = y.id1}
predicate
predicate mypredicate (a : int) {forall x in col1, forall y in col2, x.id1 = y.id2}
variable
variable myvar : int = 0
shadow effect
shadow effect {myvar := 3}
assert
assert a1 {x = yinvariant for myloop {x = 0;y = 0}}
invariant
invariant for myloop {x = 0;y = 0}
postcondition
postcondition s1 {x = yinvariant for myloop {x = 0;y = 0}}
One specification section is available at the top of the contract. But there is neither shadow effect nor postcondition, which is replaced by contract invariant for the last one.
contract invariant
contract invariant c1 {true <> false}
All expression in effect are available in formula part.
foralluniversal quantifier
q1: forall x : int, x = x;q2: forall x in my_asset, x.value = x.value;
existsexistential quantifier
q3: exists x : int, x = x;q4: exists x in my_asset, x.value = x.value;
->imply
o1: true -> true;
<->equivalence
o2: true <-> true;
subsetof
archetype expr_formula_asset_method_subset​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 0};{"id1"; 1};{"id2"; 2}}​entry exec () {​specification {s: my_asset.subsetof(my_asset);}​effect {require (true)}}​
isempty
archetype expr_formula_asset_method_isempty​asset my_asset identified by id {id : string;value : int;} initialized by {{"id0"; 0};{"id1"; 1};{"id2"; 2}}​entry exec () {​specification {s: my_asset.isempty();}​effect {require (true)}}
before
s1: before.my_asset.isempty();
at
s2: at(lbl).my_asset.isempty();
unmoved
s3: unmoved.my_asset.isempty();
added
s4: added.my_asset.isempty();
removed
s5: removed.my_asset.isempty();
iterated
entry exec () {specification {postcondition p1 {trueinvariant for loop {iterated.isempty()}}}​effect {var res : int = 0;for:loop i in my_asset dores += 1;done}}
toiterate
action exec () {specification {postcondition p1 {trueinvariant for loop {toiterate.isempty()}}}​effect {var res : int = 0;for:loop i in my_asset dores += 1;done}}
archetype lang_security​constant admin : role = @tz1aazS5ms5cbGkb6FN1wvWmN7yrMTTcr6wB​asset my_asset identified by id {id : string;value : int;}​entry exec () {effect {()}}​security {s00 : only_by_role (anyentry, admin);s01 : only_in_entry (anyentry, exec);s02 : only_by_role_in_entry (anyentry, admin, exec);s03 : not_by_role (anyentry, admin);s04 : not_in_entry (anyentry, exec);s05 : not_by_role_in_entry (anyentry, admin, exec);s06 : transferred_by (anyentry);s07 : transferred_to (anyentry);s08 : no_storage_fail (anyentry);}​
only_by_role
s00 : only_by_role (anyentry, admin);
only_in_action
s01 : only_in_entry (anyentry, exec);
only_by_role_in_action
s02 : only_by_role_in_entry (anyentry, admin, exec);
not_by_role
s03 : not_by_role (anyentry, admin);
not_in_action
s04 : not_in_entry (anyentry, exec);
not_by_role_in_action
s05 : not_by_role_in_entry (anyentry, admin, exec);
transferred_by
s06 : transferred_by (anyentry);
transferred_to
s07 : transferred_to (anyentry);
no_storage_fail
s08 : no_storage_fail (anyentry);
​
