- Status: Open
- Tracking Issue: #29
- Start date: 2025/03/07
- End date: 2025/10/17
- Reward: ?
Verify the safety of [std::str] functions that are defined in (library/core/src/str/iter.rs):
IMPORTANT NOTE: for this challenge, you can assume:
- The safety and functional correctness of all functions in
slicemodule - The safety and functional correctness of all functions in (library/core/src/str/pattern.rs)
- That all functions in (library/core/src/str/validations.rs) are functionally correct (consistent with the UTF8 encoding description in https://en.wikipedia.org/wiki/UTF-8).
- That all the Iterators in (library/core/src/str/iter.rs) are derived from a valid utf8 string (str) (You can assume any property of valid utf8 encoded string)
Write and prove the contract for the safety of the following functions:
| Function | Impl for |
|---|---|
| next | Chars |
| advance_by | Chars |
| next_back | Chars |
| as_str | Chars |
| get_end | SplitInternal |
| next | SplitInternal |
| next_inclusive | SplitInternal |
| next_match_back | SplitInternal |
| next_back_inclusive | SplitInternal |
| remainder | SplitInternal |
| next | MatchIndicesInternal |
| next_back | MatchIndicesInternal |
| next | MatchesInternal |
| next_back | MatchesInternal |
| remainder | SplitAsciiWhitespace |
The verification must be unbounded---it must hold for str of arbitrary length.
All proofs must automatically ensure the absence of the following undefined behaviors ref:
- Accessing (loading from or storing to) a place that is dangling or based on a misaligned pointer.
- Reading from uninitialized memory except for padding or unions.
- Mutating immutable bytes.
- Producing an invalid value
Note: All solutions to verification challenges need to satisfy the criteria established in the challenge book in addition to the ones listed above.