Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Proofs for Vec::swap_remove, Option::as_slice, and VecDeque::swap #212

Merged
merged 64 commits into from
Dec 12, 2024
Merged

Proofs for Vec::swap_remove, Option::as_slice, and VecDeque::swap #212

merged 64 commits into from
Dec 12, 2024
+119 −2

Conversation

stogaru
Copy link

@stogaru stogaru commented Dec 6, 2024
edited by tautschnig
Loading

Resolves: #76

Changes

  • Adds proofs for the following functions using raw pointer operations:
    • Vec::swap_remove
    • Option::as_slice
    • VecDeque::swap
  • ideally the usages should have been verified by stubbing the contracts for reaw pointer operations like byte_add, add and offset, but stubbing cannot be done for these functions at this time due to Compilation Error When Stubbing Functions That Return Pointers Using Function Contracts kani#3732
  • Marks Challenge 3 as Resolved and changes its end date.
  • Adds contributors.

PoCs:

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 and MIT licenses.

xsxszab and others added 30 commits October 7, 2024 12:44
@xsxszab
added common codes for all proof of contracts
9a8993d
@xsxszab
implemented integer type proof for contract for fn add, sub and offset
55950bb
@stogaru
Merge branch 'main' into verify/ptr_mut
ce13e8f
@stogaru
Adds proofs for tuple types
3682858
@stogaru
Renames harnesses
a6d4d62
@MayureshJoshi25
Added unit type proofs for mut ptr
dec8c30
@stogaru
Merge pull request #8 from stogaru/verify/ptr_mut_unit_types
2be7639 
Added unit type proofs for mut ptr
@xsxszab
Merge branch 'verify/ptr_mut' into verify/ptr_mut_integer_types
75179dc
@xsxszab
Merge pull request #6 from stogaru/verify/ptr_mut_integer_types
34c670e 
implemented integer type proof for contract for fn add, sub and offset
@stogaru
Merge branch 'verify/ptr_mut' into verify/ptr_mut_composite
66c956e
@stogaru
Merge pull request #7 from stogaru/verify/ptr_mut_composite
d9b8c65 
Verify/ptr mut composite
@stogaru
Combined macros
0faac46
@stogaru
Fixes a typo
82345de
@stogaru
Removes an unnecessary attribute
656209b
@stogaru
Merge pull request #9 from stogaru/verify/ptr_mut_combined
46e839c 
Combines macros for different types.
@xsxszab
refactored function contracts for add, sub and offset using the same_…
96a8a2e 
…allocation api, modified their proof for harness accordingly
@xsxszab
merged macros for add, sub and offset
852e96f
@xsxszab
updated function contracts and proof for contracts for add(), sub() a…
04bd61e 
…nd offset()
@xsxszab
added support for unit type pointers
7557fc5
@xsxszab
updated function contracts, removed unnecessary kani::assmue
76b2311
@xsxszab
added comments to function contracts
cb6a177
@xsxszab
Merge pull request #12 from stogaru/verify/ptr_mut_refactor_harness
6385d4a 
Verify/ptr mut refactor harness
@xsxszab
added comments for magic numbers
a079a7a
@stogaru
Merge branch 'main' into verify/ptr_mut
214f84d
@xsxszab
updated proofs using pointer generator
51ded41
@xsxszab
fixed typos in comments
fb6215e
@xsxszab
rustfmt formatting
f229fd9
@xsxszab
reverse unnecessary rustfmt formatting
20fffa3
@xsxszab
temporary disabled check_mut_add_u8 test
b9054a8
@xsxszab
Clarified preconditions with additional notes
b528b0e
@feliperodri
Copy link

@stogaru Update the description of the PR to close the issue, update the goal's document stating the challenge is completed, and list the previous PRs that need to be merged before we can evaluate this PR and complete the goal.

@stogaru
Copy link
Author

stogaru commented Dec 8, 2024

@feliperodri, I made the required changes.

feliperodri
feliperodri requested changes Dec 10, 2024
View reviewed changes
library/core/src/option.rs Outdated Show resolved Hide resolved
library/core/src/option.rs Outdated Show resolved Hide resolved
library/alloc/src/collections/vec_deque/mod.rs Outdated Show resolved Hide resolved
library/alloc/src/collections/vec_deque/mod.rs Show resolved Hide resolved
library/alloc/src/collections/vec_deque/mod.rs Outdated Show resolved Hide resolved
library/alloc/src/string.rs Outdated Show resolved Hide resolved
library/alloc/src/string.rs Outdated Show resolved Hide resolved
library/alloc/src/string.rs Outdated Show resolved Hide resolved
library/alloc/src/string.rs Outdated Show resolved Hide resolved
library/alloc/src/vec/mod.rs Outdated Show resolved Hide resolved
@feliperodri feliperodri changed the title Proofs for String::remove, Vec::swap_remove, Option::as_slice, and VecDeque::swap Proofs for Vec::swap_remove, Option::as_slice, and VecDeque::swap Dec 12, 2024
@feliperodri feliperodri assigned tautschnig and unassigned stogaru Dec 12, 2024
@tautschnig tautschnig mentioned this pull request Dec 12, 2024
Closed
@tautschnig tautschnig enabled auto-merge December 12, 2024 18:32
@tautschnig tautschnig added this pull request to the merge queue Dec 12, 2024
Merged via the queue into model-checking:main with commit 955577c Dec 12, 2024
8 of 9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@szlee118 szlee118 szlee118 left review comments

@qinheping qinheping qinheping left review comments

@feliperodri feliperodri feliperodri approved these changes

@tautschnig tautschnig tautschnig approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Challenge 3: Verifying Raw Pointer Arithmetic Operations
7 participants
@stogaru @feliperodri @tautschnig @qinheping @szlee118 @xsxszab @MayureshJoshi25