Skip to content

Check that Invariant implementations refer to every field and every enum variant #735

New issue
New issue
Closed
Closed
Check that Invariant implementations refer to every field and every enum variant#735
Labels
[C] Feature / EnhancementA new feature request or enhancement to an existing feature.[E] User ExperienceAn UX enhancement for an existing feature. Including deprecation of an existing one.
@celinval

Description

@celinval
celinval
opened on Jan 7, 2022

Requested feature: Implementing an Invariant can be error prone and may lead to invalid symbolic variable generation or unsound assertions.
Use case: Users implementing Invariant for their custom enums and structs.
Link to relevant documentation (Rust reference, Nomicon, RFC):
Is this a breaking change? No

struct Header {
    type: Type,
    size: usize,
}

unsafe impl Invariant for Header {
    fn is_valid() -> bool {
        type.is_valid()
    }
}

We should also provide an attribute to suppress the warning if some fields were left out on purpose. E.g.:

struct Header {
    type: Type,
    data: u128,
}

unsafe impl Invariant for Header {
    #[rmc::allow_unchecked]
    fn is_valid() -> bool {
        type.is_valid()
    }
}

Metadata

Metadata

Assignees

No one assigned

    Labels

    [C] Feature / EnhancementA new feature request or enhancement to an existing feature.[E] User ExperienceAn UX enhancement for an existing feature. Including deprecation of an existing one.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions