Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

dyn Trait proof for contracts of byte_offset_from #196

Merged
merged 17 commits into from
Dec 10, 2024
Merged

dyn Trait proof for contracts of byte_offset_from #196

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
17658b3
Contracts and harnesses for byte_offset_from verifying int, unit, sli…
stogaru Nov 26, 2024
6604291
Adds comments
stogaru Nov 26, 2024
4251118
Merge branch 'main' into verify/ptr_const_byte_offset_from
stogaru Nov 26, 2024
808b794
Added dyn Trait verification for byte_offset_from
xsxszab Nov 27, 2024
1d0fb75
Merge branch 'main' into verify/ptr_const_byte_offset_from
stogaru Nov 27, 2024
6aacbb8
Runs rust format on the file
stogaru Nov 28, 2024
30ab88d
Removes unnecessary `pub` visibility specifier
stogaru Nov 28, 2024
d415cb2
Derived Arbitrary trait for structs directly, replacing manual implem…
xsxszab Nov 28, 2024
e838d70
Merge branch 'verify/ptr_const_byte_offset_from' into verify/ptr_byte…
xsxszab Nov 28, 2024
7fe7852
Formatted code using rustfmt
xsxszab Nov 28, 2024
2357170
Merge branch 'main' into verify/ptr_byte_offset_from_dyn
stogaru Dec 9, 2024
c8cd102
Updated variable names to improve readability
xsxszab Dec 10, 2024
651eb77
Merge branch 'main' into verify/ptr_byte_offset_from_dyn
xsxszab Dec 10, 2024
14ba4f9
Applied variable renaming for mut_ptr.rs for better readability.
xsxszab Dec 10, 2024
ba09d66
Formatted code using rustfmt.
xsxszab Dec 10, 2024
668b97d
Merge branch 'main' into verify/ptr_byte_offset_from_dyn
tautschnig Dec 10, 2024
8891025
Update library/core/src/ptr/mut_ptr.rs
tautschnig Dec 10, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
29 changes: 28 additions & 1 deletion library/core/src/ptr/const_ptr.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2536,7 +2536,8 @@ mod verify {
// Trait used exclusively for implementing proofs for contracts for `dyn Trait` type.
trait TestTrait {}

// Struct used exclusively for implementing proofs for contracts for `dyn Trait` type.
// Struct used exclusively for implementing proof for contracts for `dyn Trait` type.
#[cfg_attr(kani, derive(kani::Arbitrary))]
struct TestStruct {
value: i64,
}
Expand Down Expand Up @@ -2770,4 +2771,30 @@ mod verify {
generate_const_byte_offset_from_slice_harness!(i64, check_const_byte_offset_from_i64_slice);
generate_const_byte_offset_from_slice_harness!(i128, check_const_byte_offset_from_i128_slice);
generate_const_byte_offset_from_slice_harness!(isize, check_const_byte_offset_from_isize_slice);

// tracking issue: https://github.com/model-checking/kani/issues/3763
// Workaround: Directly verifying the method `<*const dyn TestTrait>::byte_offset_from`
// causes a compilation error. As a workaround, the proof is annotated with the
// underlying struct type instead.
#[kani::proof_for_contract(<*const TestStruct>::byte_offset_from)]
pub fn check_const_byte_offset_from_dyn() {
const gen_size: usize = mem::size_of::<TestStruct>();
// Since the pointer generator cannot directly create pointers to `dyn Trait`,
// we first generate a pointer to the underlying struct and then cast it to a `dyn Trait` pointer.
let mut generator_caller = PointerGenerator::<gen_size>::new();
let mut generator_input = PointerGenerator::<gen_size>::new();
let ptr_caller: *const TestStruct = generator_caller.any_in_bounds().ptr;
let ptr_input: *const TestStruct = if kani::any() {
generator_caller.any_alloc_status().ptr
} else {
generator_input.any_alloc_status().ptr
};

let ptr_caller = ptr_caller as *const dyn TestTrait;
let ptr_input = ptr_input as *const dyn TestTrait;

unsafe {
ptr_caller.byte_offset_from(ptr_input);
}
}
}
31 changes: 29 additions & 2 deletions library/core/src/ptr/mut_ptr.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2763,6 +2763,7 @@ mod verify {
trait TestTrait {}

// Struct used exclusively for implementing proofs for contracts for `dyn Trait` type.
#[cfg_attr(kani, derive(kani::Arbitrary))]
struct TestStruct {
value: i64,
}
Expand All @@ -2775,7 +2776,7 @@ mod verify {
/// - `$proof_name`: Specifies the name of the generated proof for contract.
macro_rules! gen_mut_byte_arith_harness_for_dyn {
(byte_offset, $proof_name:ident) => {
//tracking issue: https://github.com/model-checking/kani/issues/3763
// tracking issue: https://github.com/model-checking/kani/issues/3763
// Workaround: Directly verifying the method `<*mut dyn TestTrait>::byte_offset`
// causes a compilation error. As a workaround, the proof is annotated with the
// underlying struct type instead.
Expand All @@ -2793,7 +2794,7 @@ mod verify {
}
};
($fn_name: ident, $proof_name:ident) => {
//tracking issue: https://github.com/model-checking/kani/issues/3763
// tracking issue: https://github.com/model-checking/kani/issues/3763
// Workaround: Directly verifying the method `<*mut dyn TestTrait>::$fn_name`
// causes a compilation error. As a workaround, the proof is annotated with the
// underlying struct type instead.
Expand Down Expand Up @@ -3013,4 +3014,30 @@ mod verify {
generate_mut_byte_offset_from_slice_harness!(i64, check_mut_byte_offset_from_i64_slice);
generate_mut_byte_offset_from_slice_harness!(i128, check_mut_byte_offset_from_i128_slice);
generate_mut_byte_offset_from_slice_harness!(isize, check_mut_byte_offset_from_isize_slice);

// tracking issue: https://github.com/model-checking/kani/issues/3763
// Workaround: Directly verifying the method `<*mut dyn TestTrait>::byte_offset_from`
// causes a compilation error. As a workaround, the proof is annotated with the
// underlying struct type instead.
#[kani::proof_for_contract(<*mut TestStruct>::byte_offset_from)]
pub fn check_mut_byte_offset_from_dyn() {
const gen_size: usize = mem::size_of::<TestStruct>();
// Since the pointer generator cannot directly create pointers to `dyn Trait`,
// we first generate a pointer to the underlying struct and then cast it to a `dyn Trait` pointer.
let mut generator_caller = PointerGenerator::<gen_size>::new();
let mut generator_input = PointerGenerator::<gen_size>::new();
let ptr_caller: *mut TestStruct = generator_caller.any_in_bounds().ptr;
let ptr_input: *mut TestStruct = if kani::any() {
generator_caller.any_alloc_status().ptr
} else {
generator_input.any_alloc_status().ptr
};

let ptr_caller = ptr_caller as *mut dyn TestTrait;
let ptr_input = ptr_input as *mut dyn TestTrait;

unsafe {
ptr_caller.byte_offset_from(ptr_input);
}
}
}
Loading