Skip to content

Commit

Permalink
Tests for <op>_with_overflow (model-checking#1083)
Browse files Browse the repository at this point in the history
  • Loading branch information
adpaco-aws authored and tedinski committed Apr 25, 2022
1 parent 1e25f50 commit c81e1e9
Showing 1 changed file with 52 additions and 0 deletions.
52 changes: 52 additions & 0 deletions tests/kani/Intrinsics/Math/Arith/ops_with_overflow.rs
Original file line number Diff line number Diff line change
@@ -0,0 +1,52 @@
// Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
// SPDX-License-Identifier: Apache-2.0 OR MIT
//
// Checks that `<op>_with_overflow` returns the expected result in all cases.
#![feature(core_intrinsics)]
use std::intrinsics::{add_with_overflow, mul_with_overflow, sub_with_overflow};

// The value of the overflow flag should match the option value returned by the
// corresponding checked operation. In other words, if `checked.is_some()` is
// assumed then `<op>_with_overflow` should not have overflown and `overflow`
// should be false. The same can be done to verify overflows with
// `checked.is_none()`.
macro_rules! verify_no_overflow {
($ty:ty, $cf: ident, $fwo: ident) => {{
let a: $ty = kani::any();
let b: $ty = kani::any();
let checked = a.$cf(b);
kani::assume(checked.is_some());
let (res, overflow) = $fwo(a, b);
assert!(!overflow);
assert!(checked.unwrap() == res);
}};
}

macro_rules! verify_overflow {
($ty:ty, $cf: ident, $fwo: ident) => {{
let a: $ty = kani::any();
let b: $ty = kani::any();
let checked = a.$cf(b);
kani::assume(checked.is_none());
let (_res, overflow) = $fwo(a, b);
assert!(overflow);
}};
}

#[kani::proof]
fn test_add_with_overflow() {
verify_no_overflow!(u8, checked_add, add_with_overflow);
verify_overflow!(u8, checked_add, add_with_overflow);
}

#[kani::proof]
fn test_sub_with_overflow() {
verify_no_overflow!(u8, checked_sub, sub_with_overflow);
verify_overflow!(u8, checked_sub, sub_with_overflow);
}

#[kani::proof]
fn test_mul_with_overflow() {
verify_no_overflow!(u8, checked_mul, mul_with_overflow);
verify_overflow!(u8, checked_mul, mul_with_overflow);
}

0 comments on commit c81e1e9

Please sign in to comment.