Carview!

The Kani Rust Verifier is a bit-precise model checker for Rust.

Kani is particularly useful for verifying unsafe code blocks in Rust, where the "unsafe superpowers" are unchecked by the compiler.

Kani verifies:

Memory safety (e.g., null pointer dereferences)
User-specified assertions (i.e., assert!(...))
The absence of panics (e.g., unwrap() on None values)
The absence of some types of unexpected behavior (e.g., arithmetic overflows)

Installation

To install the latest version of Kani (Rust 1.58+; Linux or Mac), run:

cargo install --locked kani-verifier
cargo kani setup

See the installation guide for more details.

How to use Kani

Similar to testing, you write a harness, but with Kani you can check all possible values using kani::any():

use my_crate::{function_under_test, meets_specification, precondition};
#[kani::proof]
fn check_my_property() {
   // Create a nondeterministic input
   let input = kani::any();
   // Constrain it according to the function's precondition
   kani::assume(precondition(input));
   // Call the function under verification
   let output = function_under_test(input);
   // Check that it meets the specification
   assert!(meets_specification(input, output));
}

Kani will then try to prove that all valid inputs produce acceptable outputs, without panicking or executing unexpected behavior. Otherwise Kani will generate a trace that points to the failure. We recommend following the tutorial to learn more about how to use Kani.

GitHub Action

Use Kani in your CI with model-checking/kani-github-action@VERSION. See the GitHub Action section in the Kani book for details.

Security

See SECURITY for more information.

Contributing

If you are interested in contributing to Kani, please take a look at the developer documentation.

License

Kani

Kani is distributed under the terms of both the MIT license and the Apache License (Version 2.0).

See LICENSE-APACHE and LICENSE-MIT for details.

Rust

Kani contains code from the Rust project. Rust is primarily distributed under the terms of both the MIT license and the Apache License (Version 2.0), with portions covered by various BSD-like licenses.

See the Rust repository for details.

Name		Name	Last commit message	Last commit date
Latest commit History 2,156 Commits
.cargo		.cargo
.github		.github
charon @ df3b7fd		charon @ df3b7fd
cprover_bindings		cprover_bindings
docs		docs
firecracker @ cd36c69		firecracker @ cd36c69
kani-compiler		kani-compiler
kani-driver		kani-driver
kani_metadata		kani_metadata
library		library
papers/vstte2024		papers/vstte2024
rfc		rfc
scripts		scripts
src		src
tests		tests
tools		tools
.clang-format		.clang-format
.dockerignore		.dockerignore
.editorconfig		.editorconfig
.gitattributes		.gitattributes
.gitignore		.gitignore
.gitmodules		.gitmodules
CHANGELOG.md		CHANGELOG.md
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
CONTRIBUTING.md		CONTRIBUTING.md
Cargo.lock		Cargo.lock
Cargo.toml		Cargo.toml
LICENSE-APACHE		LICENSE-APACHE
LICENSE-MIT		LICENSE-MIT
README.md		README.md
build.rs		build.rs
deny.toml		deny.toml
favicon.ico		favicon.ico
kani-dependencies		kani-dependencies
kani-logo.png		kani-logo.png
kani-verifier-security.public.key		kani-verifier-security.public.key
rust-toolchain.toml		rust-toolchain.toml
rustfmt.toml		rustfmt.toml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Licenses found

Uh oh!

Repository files navigation

Installation

How to use Kani

GitHub Action

Security

Contributing

License

Kani

Rust

About

Licenses found

Uh oh!

Releases 65

Packages

Uh oh!

Contributors 64

Languages

License

Licenses found

model-checking/kani

Folders and files

Latest commit

History

Repository files navigation

Installation

How to use Kani

GitHub Action

Security

Contributing

License

Kani

Rust

About

Topics

Resources

License

Licenses found

Code of conduct

Security policy

Uh oh!

Stars

Watchers

Forks

Releases 65

Packages 0

Uh oh!

Contributors 64

Languages

Packages