Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add intrinsics and Arbitrary support for no_core #3230

Merged
merged 29 commits into from
Jun 11, 2024
Merged
Show file tree
Hide file tree
Changes from 5 commits
Commits
Show all changes
29 commits
Select commit Hold shift + click to select a range
48defa8
Shift intrinsics and arbitrary to kani_core
jaisnan May 31, 2024
d4e9a7b
Add contracts to scope of user crate
jaisnan Jun 3, 2024
e231f9d
Fix duplicated definitions error
celinval Jun 4, 2024
32ef011
Add one macro to rule them all...
celinval Jun 4, 2024
4d9b7fe
Merge branch 'add-3152' of https://github.com/jaisnan/kani into add-f…
jaisnan Jun 5, 2024
8103dd5
Add flag to disable test addition to std-regression script
jaisnan Jun 5, 2024
33eb53a
comment out flag for custom rust source
jaisnan Jun 5, 2024
d6e8dd0
Add flag to regression
jaisnan Jun 5, 2024
e093376
undo changes to arbitrary
jaisnan Jun 5, 2024
78328ed
Commit till the point of compiling std-lib
jaisnan Jun 6, 2024
b08dc9c
Merge branch 'add-fix-3152' of https://github.com/jaisnan/kani into a…
jaisnan Jun 6, 2024
63f3ea6
Merge branch 'main' of https://github.com/model-checking/kani into ad…
jaisnan Jun 6, 2024
4614e65
get core to compile everything but proof_for_contract
jaisnan Jun 7, 2024
18a556e
Add -Zfunction-contracts and cfg(no_core)
jaisnan Jun 7, 2024
b465652
Merge branch 'main' of https://github.com/model-checking/kani into tm…
jaisnan Jun 7, 2024
3566f9e
cargo fmt
jaisnan Jun 10, 2024
13c27cd
Merge branch 'tmp-branch-3152' into add-fix-3152
jaisnan Jun 10, 2024
e6a8189
Merge branch 'main' of https://github.com/model-checking/kani into ad…
jaisnan Jun 10, 2024
57dda05
Merge branch 'main' of https://github.com/model-checking/kani into ad…
jaisnan Jun 10, 2024
985adca
Add changes to the point where proof_for_Contract works as well.
jaisnan Jun 10, 2024
b211bac
Merge branch 'main' into add-fix-3152
jaisnan Jun 10, 2024
ce6cd61
Revert changes, and cleanup
jaisnan Jun 10, 2024
fb3b9c4
Merge branch 'main' of https://github.com/model-checking/kani into ad…
jaisnan Jun 10, 2024
752c7e9
Merge branch 'main' into add-fix-3152
jaisnan Jun 10, 2024
e0b1693
Remove -Z function contract; Add some tests related to function contr…
jaisnan Jun 10, 2024
219bee7
Merge branch 'add-fix-3152' of https://github.com/jaisnan/kani into a…
jaisnan Jun 10, 2024
a1f3a43
replace kani with kani_core
jaisnan Jun 10, 2024
e96d4a7
Add basic comments
jaisnan Jun 10, 2024
cbcbb72
Fix regression test for verify_std
jaisnan Jun 11, 2024
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 2 additions & 1 deletion Cargo.lock
Original file line number Diff line number Diff line change
Expand Up @@ -407,6 +407,7 @@ checksum = "49f1f14873335454500d59611f1cf4a4b0f786f9ac11f4312a78e4cf2566695b"
name = "kani"
version = "0.52.0"
dependencies = [
"kani_core",
"kani_macros",
]

Expand Down Expand Up @@ -470,7 +471,7 @@ dependencies = [

[[package]]
name = "kani_core"
version = "0.51.0"
version = "0.52.0"
dependencies = [
"kani_macros",
]
Expand Down
1 change: 1 addition & 0 deletions Cargo.toml
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,7 @@ strip = "debuginfo"

[workspace]
members = [
"library/kani_core",
"library/kani",
"library/std",
"tools/compiletest",
Expand Down
103,083 changes: 103,083 additions & 0 deletions errors.txt

Large diffs are not rendered by default.

1 change: 1 addition & 0 deletions library/kani/Cargo.toml
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,7 @@ publish = false

[dependencies]
kani_macros = { path = "../kani_macros" }
kani_core = { path = "../kani_core" }

[features]
concrete_playback = []
148 changes: 1 addition & 147 deletions library/kani/src/arbitrary.rs
Original file line number Diff line number Diff line change
Expand Up @@ -4,122 +4,7 @@
//! This module introduces the Arbitrary trait as well as implementation for primitive types and
//! other std containers.

use std::{
marker::{PhantomData, PhantomPinned},
num::*,
};

/// This trait should be used to generate symbolic variables that represent any valid value of
/// its type.
pub trait Arbitrary
where
Self: Sized,
{
fn any() -> Self;
fn any_array<const MAX_ARRAY_LENGTH: usize>() -> [Self; MAX_ARRAY_LENGTH]
// the requirement defined in the where clause must appear on the `impl`'s method `any_array`
// but also on the corresponding trait's method
where
[(); std::mem::size_of::<[Self; MAX_ARRAY_LENGTH]>()]:,
{
[(); MAX_ARRAY_LENGTH].map(|_| Self::any())
}
}

/// The given type can be represented by an unconstrained symbolic value of size_of::<T>.
macro_rules! trivial_arbitrary {
( $type: ty ) => {
impl Arbitrary for $type {
#[inline(always)]
fn any() -> Self {
// This size_of call does not use generic_const_exprs feature. It's inside a macro, and Self isn't generic.
unsafe { crate::any_raw_internal::<Self, { std::mem::size_of::<Self>() }>() }
}
fn any_array<const MAX_ARRAY_LENGTH: usize>() -> [Self; MAX_ARRAY_LENGTH]
where
// `generic_const_exprs` requires all potential errors to be reflected in the signature/header.
// We must repeat the expression in the header, to make sure that if the body can fail the header will also fail.
[(); { std::mem::size_of::<[$type; MAX_ARRAY_LENGTH]>() }]:,
{
unsafe {
crate::any_raw_internal::<
[Self; MAX_ARRAY_LENGTH],
{ std::mem::size_of::<[Self; MAX_ARRAY_LENGTH]>() },
>()
}
}
}
};
}

trivial_arbitrary!(u8);
trivial_arbitrary!(u16);
trivial_arbitrary!(u32);
trivial_arbitrary!(u64);
trivial_arbitrary!(u128);
trivial_arbitrary!(usize);

trivial_arbitrary!(i8);
trivial_arbitrary!(i16);
trivial_arbitrary!(i32);
trivial_arbitrary!(i64);
trivial_arbitrary!(i128);
trivial_arbitrary!(isize);

// We do not constraint floating points values per type spec. Users must add assumptions to their
// verification code if they want to eliminate NaN, infinite, or subnormal.
trivial_arbitrary!(f32);
trivial_arbitrary!(f64);

trivial_arbitrary!(());

impl Arbitrary for bool {
#[inline(always)]
fn any() -> Self {
let byte = u8::any();
crate::assume(byte < 2);
byte == 1
}
}

/// Validate that a char is not outside the ranges [0x0, 0xD7FF] and [0xE000, 0x10FFFF]
/// Ref: <https://doc.rust-lang.org/stable/nomicon/what-unsafe-does.html>
impl Arbitrary for char {
#[inline(always)]
fn any() -> Self {
// Generate an arbitrary u32 and constrain it to make it a valid representation of char.
let val = u32::any();
crate::assume(val <= 0xD7FF || (0xE000..=0x10FFFF).contains(&val));
unsafe { char::from_u32_unchecked(val) }
}
}

macro_rules! nonzero_arbitrary {
( $type: ty, $base: ty ) => {
impl Arbitrary for $type {
#[inline(always)]
fn any() -> Self {
let val = <$base>::any();
crate::assume(val != 0);
unsafe { <$type>::new_unchecked(val) }
}
}
};
}

nonzero_arbitrary!(NonZeroU8, u8);
nonzero_arbitrary!(NonZeroU16, u16);
nonzero_arbitrary!(NonZeroU32, u32);
nonzero_arbitrary!(NonZeroU64, u64);
nonzero_arbitrary!(NonZeroU128, u128);
nonzero_arbitrary!(NonZeroUsize, usize);

nonzero_arbitrary!(NonZeroI8, i8);
nonzero_arbitrary!(NonZeroI16, i16);
nonzero_arbitrary!(NonZeroI32, i32);
nonzero_arbitrary!(NonZeroI64, i64);
nonzero_arbitrary!(NonZeroI128, i128);
nonzero_arbitrary!(NonZeroIsize, isize);
use crate::Arbitrary;

impl<T, const N: usize> Arbitrary for [T; N]
where
Expand All @@ -131,37 +16,6 @@ where
}
}

impl<T> Arbitrary for Option<T>
where
T: Arbitrary,
{
fn any() -> Self {
if bool::any() { Some(T::any()) } else { None }
}
}

impl<T, E> Arbitrary for Result<T, E>
where
T: Arbitrary,
E: Arbitrary,
{
fn any() -> Self {
if bool::any() { Ok(T::any()) } else { Err(E::any()) }
}
}

impl<T: ?Sized> Arbitrary for std::marker::PhantomData<T> {
fn any() -> Self {
PhantomData
}
}

impl Arbitrary for std::marker::PhantomPinned {
fn any() -> Self {
PhantomPinned
}
}

impl<T> Arbitrary for std::boxed::Box<T>
where
T: Arbitrary,
Expand Down
Loading