Edit: Seems like I misread the documentation... ~~What I was implying is that Ka... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

PartiallyTyped on May 4, 2024 | parent | context | favorite | on: CBMC: C bounded model checker (2021)

Edit:

Seems like I misread the documentation...

~~What I was implying is that Kani just can't figure out all of the paths;~~ ~~Consider this example from Kani documentation [1]:~~

    fn estimate_size(x: u32) -> u32 {
       if x < 256 {
            if x < 128 {
                return 1;
            } else {
                return 3;
            }
        } else if x < 1024 {
            if x > 1022 {
                panic!("Oh no, a failing corner case!");
            } else {
                return 5;
            }
        } else {
            if x < 2048 {
                return 7;
            } else {
                return 9;
            }
        }
    }

~~Kani is very unlikely to find x=1023.~~

https://model-checking.github.io/kani/tutorial-first-steps.h...

accelbred on May 4, 2024 | [–]

Kani will find 1023 unless you constrain the input. The link you posted is saying a property test is unlikely to find it but Kani will find it.

IshKebab on May 4, 2024 | [–]

Yeah you misread that. Read it again, it's saying normal fuzzing is unlikely to find it but Kani finds it instantly.

PartiallyTyped on May 4, 2024 | [–]

Oh this is embarrassing.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact