Skip to content

Commit

Permalink
Add Kani model checking for MacAddr's TryFrom and as_array()
Browse files Browse the repository at this point in the history
  • Loading branch information
@oherrala
oherrala committed Feb 8, 2025
1 parent d70984d commit 8a661b9
Show file tree
Hide file tree
Showing 2 changed files with 24 additions and 1 deletion.
3 changes: 3 additions & 0 deletions Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -58,6 +58,9 @@ unused = { level = "deny", priority = -1 }
missing_docs = { level = "deny", priority = -1 }
unsafe-code = "deny"

# Allow cfg(kani)
unexpected_cfgs = { level = "warn", check-cfg = ['cfg(kani)'] }

# Remove these after moving to Rust 2024 edition
tail_expr_drop_order = "allow"
if_let_rescope = "allow"
22 changes: 21 additions & 1 deletion luomu-common/src/macaddr.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -42,7 +42,7 @@ impl MacAddr {
/// A broadcast MAC address (FF:FF:FF:FF:FF:FF)
pub const BROADCAST: MacAddr = MacAddr(MAC_BITS);

/// Return MAC address as bytearray in big endian order.
/// Return MAC address as byte array in big endian order.
pub fn as_array(&self) -> [u8; 6] {
// Taking range of [2,7] is safe from u64. See kani proof in bunnies
// module.
Expand Down Expand Up @@ -406,3 +406,23 @@ mod tests {
}
}
}

#[cfg(kani)]
mod bunnies {
use crate::MacAddr;

#[kani::proof]
fn check_macaddr_try_from() {
let i: u64 = kani::any();
kani::assume(i <= 0x00FFFFFFFFFFFF);
assert!(MacAddr::try_from(i).is_ok());
}

#[kani::proof]
fn check_macaddr_as_array() {
let i: u64 = kani::any();
kani::assume(i <= 0x00FFFFFFFFFFFF);
let mac = MacAddr::try_from(i).unwrap();
mac.as_array();
}
}

0 comments on commit 8a661b9

Please sign in to comment.