Skip to content

Latest commit

 

History

History
 
 

docker

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
base
base
 
 
klee
klee
 
 
rust2calltree
rust2calltree
 
 
rvt
rvt
 
 
seahorn
seahorn
 
 
smack
smack
 
 
solvers
solvers
 
 
README.md
README.md
 
 
build
build
 
 
init
init
 
 
mkimage
mkimage
 
 
run
run
 
 
sudo_if_needed.bash
sudo_if_needed.bash
 
 

README.md

Docker images

These scripts provide a convenient, portable way to build the Rust verification tools and their dependencies.

At present, only the KLEE backend is supported.

Todo: at the moment, the scripts use 'sudo' when invoking docker. This is necessary on some platforms but not necessary on other platforms. It is not clear whether there is any value in avoiding the use of sudo.

Building docker images

The script docker/build builds the following images

  • rvt_base:latest contains Ubuntu and standard Ubuntu packages
  • rvt_rustc:latest adds the Rust compiler
  • rvt_minisat:latest adds the MiniSat solver
  • rvt_stp:latest adds the STP solver
  • rvt_klee:latest adds the KLEE symbolic execution engine
  • rvt:latest adds a snapshot of the Rust verification tools repo

In practice, the only image that is useful is rvt. The other images exist only to make it faster to rebuild rvt It takes several hours to build the rvt_rustc image.

The docker/build script should be invoked in the top directory of rust-verification-tools. The script will invoke sudo so you may be asked for your password.

Building the images creates an unprivileged user with the same username, uid and gid as the user that ran docker/build.

No attempt has been made to reduce the size of the images – they total around 13GB.

Using docker images

The rvt image can be invoked using the script docker/run script. This script:

  • Mounts the current directory as read/write so that rvt can access any files in the current directory or its subdirectories. Parent directories are not accessible.

  • The image will run with the permissions of the user that created the image. It is expected that this will be the current user.

  • The PATH contains the Rust compiler, LLVM, Cargo and the Rust-verification-tools script cargo-verify.

  • The rvt image contains a copy of rust-verification-tools in /home/rust-verification-tools.

    The dependencies in Cargo.toml files typically contain lines like

    verification-annotations = { path="/home/rust-verification-tools/verification-annotations" }
propverify               = { path="/home/rust-verification-tools/propverify" }

  • If any arguments are provided, they will be treated as commands to run in rvt. Otherwise, the bash shell will be run and exit can be used to exit docker.