Loop invariants and harnesses for memchr functions #429

thanhnguyen-aws · 2025-07-29T18:42:30Z

This PR adds loop invariants and harnesses for memchr functions

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 and MIT licenses.

…verify-rust-std into memchrinvariant

tautschnig · 2025-08-16T05:46:45Z

library/core/src/slice/memchr.rs

@@ -36,6 +40,7 @@ const fn memchr_naive(x: u8, text: &[u8]) -> Option<usize> {
    let mut i = 0;

    // FIXME(const-hack): Replace with `text.iter().pos(|c| *c == x)`.
+    #[cfg_attr(kani, kani::loop_invariant(i <= text.len() && forall!(|j in (0,i)| unsafe {*text.as_ptr().wrapping_add(j)} != x)))]


We will need to use an SMT solver for any function that eventually invokes this function.

…verify-rust-std into memchrinvariant

thanhnguyen-aws added 3 commits July 28, 2025 10:37

add loop-invariants and harnesses

e10a8f6

format fix

8f02ac9

fix harness name

617804e

thanhnguyen-aws requested a review from a team as a code owner July 29, 2025 18:42

thanhnguyen-aws marked this pull request as draft July 29, 2025 18:42

thanhnguyen-aws and others added 13 commits July 29, 2025 12:47

add crate::kani

dcf1882

fix format

5ccddc7

fix format

4844377

fix invariant

ce54852

fix invariant

9bd7cc2

add quantifiers to loop invariant

da0761a

add im port kani

67098c5

add cfg kani

abda27a

Merge branch 'main' into memchrinvariant

55e641f

add -Z quantifiers

864098f

Merge branch 'memchrinvariant' of https://github.com/thanhnguyen-aws/…

98e10c4

…verify-rust-std into memchrinvariant

Make forall compile

ab64f85

Fix formatting, make flux happy

b701f3a

tautschnig reviewed Aug 16, 2025

View reviewed changes

thanhnguyen-aws added 5 commits August 18, 2025 09:59

change unwind to solver(cvc5)

e5515d6

Merge branch 'main' into memchrinvariant

b4a38b9

change unwind to solver(cvc5)

a96b095

Merge branch 'memchrinvariant' of https://github.com/thanhnguyen-aws/…

fac264f

…verify-rust-std into memchrinvariant

add target_arch cfg

e411051

thanhnguyen-aws force-pushed the memchrinvariant branch from dfcc7cc to e411051 Compare August 18, 2025 18:39

thanhnguyen-aws added 5 commits August 19, 2025 07:09

Merge branch 'main' into memchrinvariant

1780de6

using quantifiers in CStr

c357e47

Merge branch 'memchrinvariant' of https://github.com/thanhnguyen-aws/…

be834b0

…verify-rust-std into memchrinvariant

add import forall

b24e668

fix typo

797b38e

thanhnguyen-aws and others added 5 commits August 19, 2025 13:24

fix format

7fda174

temporarily disable is_safe check for CStr

c753437

temporarily disable is_safe check for CStr

f2db5e4

temporarily disable is_safe check for CStr

5ea263a

Merge branch 'main' into memchrinvariant

92d5e64

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Loop invariants and harnesses for memchr functions #429

Loop invariants and harnesses for memchr functions #429

Uh oh!

thanhnguyen-aws commented Jul 29, 2025

Uh oh!

tautschnig Aug 16, 2025

Uh oh!

Uh oh!

Loop invariants and harnesses for memchr functions #429

Are you sure you want to change the base?

Loop invariants and harnesses for memchr functions #429

Uh oh!

Conversation

thanhnguyen-aws commented Jul 29, 2025

Uh oh!

tautschnig Aug 16, 2025

Choose a reason for hiding this comment

Uh oh!

Uh oh!