Refined

vest_lib::regular::modifier

Struct Refined 

Source 
pub struct Refined<Inner, P> {
    pub inner: Inner,
    pub predicate: P,
}
Expand description

Combinator that refines the result of an inner combinator with a predicate that implements Pred.

Fields§

§inner: Inner

The inner combinator.

§predicate: P

The predicate.

Trait Implementations§

Source§

impl<'x, I, O, Inner, P> Combinator<'x, I, O> for Refined<Inner, P>
where I: VestInput, O: VestOutput<I>, Inner: Combinator<'x, I, O, SType = &'x <Inner as Combinator<'x, I, O>>::Type>, Inner::V: SecureSpecCombinator<Type = <Inner::Type as View>::V>, P: Pred<Inner::Type>, P::V: SpecPred<<Inner::Type as View>::V>, Inner::Type: 'x,

Source§

exec fn length(&self, v: Self::SType) -> usize

Source§

open spec fn ex_requires(&self) -> bool

{ self.inner.ex_requires() }
Source§

exec fn parse(&self, s: I) -> Result<(usize, Self::Type), ParseError>

Source§

exec fn serialize( &self, v: Self::SType, data: &mut O, pos: usize, ) -> Result<usize, SerializeError>

Source§

type Type = <Inner as Combinator<'x, I, O>>::Type

The result type of parsing
Source§

type SType = <Inner as Combinator<'x, I, O>>::SType

The input type of serialization, often a reference to Self::Type. For “structural” formats though (e.g., crate::regular::sequence::Pair and crate::regular::variant::Choice), this is the tuple/sum of the corresponding Combinator::SType types.
Source§

impl<Inner, P1, P2> DisjointFrom<Refined<Inner, P2>> for Refined<Inner, P1>
where Inner: SpecCombinator, P1: SpecPred<Inner::Type>, P2: SpecPred<Inner::Type>,

Source§

open spec fn disjoint_from(&self, other: &Refined<Inner, P2>) -> bool

{
    self.inner == other.inner
        && forall |i| {
            self.predicate.spec_apply(&i) ==> !other.predicate.spec_apply(&i)
        }
}
Source§

proof fn parse_disjoint_on(&self, other: &Refined<Inner, P2>, buf: Seq<u8>)

Source§

impl<Inner, P> SecureSpecCombinator for Refined<Inner, P>
where Inner: SecureSpecCombinator, P: SpecPred<Inner::Type>,

Source§

open spec fn is_prefix_secure() -> bool

{ Inner::is_prefix_secure() }
Source§

open spec fn is_productive(&self) -> bool

{ self.inner.is_productive() }
Source§

proof fn theorem_serialize_parse_roundtrip(&self, v: Self::Type)

Source§

proof fn theorem_parse_serialize_roundtrip(&self, buf: Seq<u8>)

Source§

proof fn lemma_prefix_secure(&self, s1: Seq<u8>, s2: Seq<u8>)

Source§

proof fn lemma_parse_length(&self, s: Seq<u8>)

Source§

proof fn lemma_parse_productive(&self, s: Seq<u8>)

Source§

fn corollary_parse_surjective(&self, v: Self::Type)

Read more
Source§

fn corollary_serialize_injective(&self, v1: Self::Type, v2: Self::Type)

Read more
Source§

fn corollary_serialize_injective_contraposition( &self, v1: Self::Type, v2: Self::Type, )

Read more
Source§

fn corollary_parse_non_malleable(&self, buf1: Seq<u8>, buf2: Seq<u8>)

Read more
Source§

fn lemma_serialize_productive(&self, v: Self::Type)

Read more
Source§

impl<Inner, P> SpecCombinator for Refined<Inner, P>
where Inner: SpecCombinator, P: SpecPred<Inner::Type>,

Source§

open spec fn requires(&self) -> bool

{ self.inner.requires() }
Source§

open spec fn wf(&self, v: Self::Type) -> bool

{ self.inner.wf(v) && self.predicate.spec_apply(&v) }
Source§

open spec fn spec_parse(&self, s: Seq<u8>) -> Option<(int, Self::Type)>

{
    match self.inner.spec_parse(s) {
        Some((n, v)) if self.predicate.spec_apply(&v) => Some((n, v)),
        _ => None,
    }
}
Source§

open spec fn spec_serialize(&self, v: Self::Type) -> Seq<u8>

{ self.inner.spec_serialize(v) }
Source§

type Type = <Inner as SpecCombinator>::Type

The view of [Combinator::Result].
Source§

impl<Inner: View, P: View> View for Refined<Inner, P>

Source§

open spec fn view(&self) -> Self::V

{
    Refined {
        inner: self.inner@,
        predicate: self.predicate@,
    }
}
Source§

type V = Refined<<Inner as View>::V, <P as View>::V>

Auto Trait Implementations§

§

impl<Inner, P> Freeze for Refined<Inner, P>
where Inner: Freeze, P: Freeze,

§

impl<Inner, P> RefUnwindSafe for Refined<Inner, P>
where Inner: RefUnwindSafe, P: RefUnwindSafe,

§

impl<Inner, P> Send for Refined<Inner, P>
where Inner: Send, P: Send,

§

impl<Inner, P> Sync for Refined<Inner, P>
where Inner: Sync, P: Sync,

§

impl<Inner, P> Unpin for Refined<Inner, P>
where Inner: Unpin, P: Unpin,

§

impl<Inner, P> UnwindSafe for Refined<Inner, P>
where Inner: UnwindSafe, P: UnwindSafe,

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T
where T: View, <T as View>::V: SpecFrom<<T as View>::V>,

Source§

exec fn ex_from(t: T) -> res : T

Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

§

impl<T, VERUS_SPEC__A> FromSpec<T> for VERUS_SPEC__A
where VERUS_SPEC__A: From<T>,

§

fn obeys_from_spec() -> bool

§

fn from_spec(v: T) -> VERUS_SPEC__A

Source§

impl<T, U> Into<U> for T
where T: View, U: View + From<T>, <U as View>::V: SpecFrom<<T as View>::V>,

Source§

exec fn ex_into(self) -> U

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

§

impl<T, VERUS_SPEC__A> IntoSpec<T> for VERUS_SPEC__A
where VERUS_SPEC__A: Into<T>,

§

fn obeys_into_spec() -> bool

§

fn into_spec(self) -> T

§

impl<T, U> IntoSpecImpl<U> for T
where U: From<T>,

§

fn obeys_into_spec() -> bool

§

fn into_spec(self) -> U

Source§

impl<T> SpecFrom<T> for T

Source§

open spec fn spec_from(t: T) -> T

{ t }
Source§

impl<T, U> SpecInto<U> for T
where U: SpecFrom<T>,

Source§

open spec fn spec_into(self) -> U

{ U::spec_from(self) }
Source§

impl<T, U> SpecTryInto<U> for T
where U: SpecTryFrom<T>,

Source§

open spec fn spec_try_into(self) -> Result<U, <U as SpecTryFrom<T>>::Error>

{ U::spec_try_from(self) }
Source§

type Error = <U as SpecTryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
§

impl<T, VERUS_SPEC__A> TryFromSpec<T> for VERUS_SPEC__A
where VERUS_SPEC__A: TryFrom<T>,

§

fn obeys_try_from_spec() -> bool

§

fn try_from_spec( v: T, ) -> Result<VERUS_SPEC__A, <VERUS_SPEC__A as TryFrom<T>>::Error>

Source§

impl<T, U> TryInto<U> for T
where T: View, U: View + TryFrom<T>, <U as View>::V: SpecTryFrom<<T as View>::V>,

Source§

exec fn ex_try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<T, VERUS_SPEC__A> TryIntoSpec<T> for VERUS_SPEC__A
where VERUS_SPEC__A: TryInto<T>,

§

fn obeys_try_into_spec() -> bool

§

fn try_into_spec(self) -> Result<T, <VERUS_SPEC__A as TryInto<T>>::Error>

§

impl<T, U> TryIntoSpecImpl<U> for T
where U: TryFrom<T>,

§

fn obeys_try_into_spec() -> bool

§

fn try_into_spec(self) -> Result<U, <U as TryFrom<T>>::Error>