Expand description
This module re-exports macros from hax-lib-macros since a
proc-macro crate cannot export anything but procedural macros.
Modules§
- coq
- Procedular macros that have an effect only for the backend coq.
- fstar
- Procedular macros that have an effect only for the backend fstar.
- proverif
- Procedular macros that have an effect only for the backend proverif.
Macros§
- coq
- Embed coq expression inside a Rust expression. This macro takes only one argument: some raw coq code as a string literal.
- fstar
- Embed fstar expression inside a Rust expression. This macro takes only one argument: some raw fstar code as a string literal.
- loop_
decreases - Must be used to prove termination of while loops. This takes an expression that should be a usize that decreases at every iteration
- loop_
invariant - Add an invariant to a loop which deals with an index. The invariant cannot refer to any variable introduced within the loop. An invariant is a closure that takes one argument, the index, and returns a proposition.
- proverif
- Embed proverif expression inside a Rust expression. This macro takes only one argument: some raw proverif code as a string literal.
Attribute Macros§
- attributes
- Enable the following attrubutes in the annotated item and sub-items.
- decreases
- Provide a measure for a function: this measure will be used once extracted in a backend for checking termination. The expression that decreases can be of any type. (TODO: this is probably as it is true only for F*, see #297)
- ensures
- Add a logical postcondition to a function. Note you can use the
forallandexistsoperators. - exclude
- Exclude this item from the Hax translation.
- impl_
fn_ decoration - Internal macro for dealing with function decorations
(
#[decreases(...)],#[ensures(...)],#[requires(...)]) onfnitems within animplblock. There is special handling since such functions might have aselfargument: in such cases, we rewrite function decorations as#[impl_fn_decoration(<KIND>, <GENERICS>, <WHERE CLAUSE>, <SELF TYPE>, <BODY>)]. - include
- Include this item in the Hax translation.
- lemma
- Mark a
Proof<{STATEMENT}>-returning function as a lemma, whereSTATEMENTis aPropexpression capturing any input variable. In the backends, this will generate a lemma with an empty proof. - opaque
- Mark an item opaque: the extraction will assume the type without revealing its definition.
- opaque_
type - Mark an item opaque: the extraction will assume the type without revealing its definition.
- process_
init - A marker indicating a
fnas a ProVerif process initialization. - process_
read - A marker indicating a
fnas a ProVerif process read. - process_
write - A marker indicating a
fnas a ProVerif process write. - protocol_
messages - A marker indicating an
enumas describing the protocol messages. - pv_
constructor - A marker indicating a
fnshould be automatically translated to a ProVerif constructor. - pv_
handwritten - A marker indicating a
fnrequires manual modelling in ProVerif. - refinement_
type - Marks a newtype
struct RefinedT(T);as a refinement type. The struct should have exactly one unnamed private field. - requires
- Add a logical precondition to a function.
In the case of a function that has one or more
&mutinputs, in theensuresclause, you can refer to such an&mutinputxasxfor its “past” value andfuture(x)for its “future” value. - trait_
fn_ decoration - transparent
- Mark an item transparent: the extraction will not
make it opaque regardless of the
-iflag default.