ci: make CI genuinely green — rust-ci toolchain pin + fmt/clippy#48
Merged
Conversation
Flagship semantic proof: a pointer with explicit Live/Freed state; an `Accessible` permission with a constructor only for Live pointers, so use-after-free and double-free are unrepresentable. `free` consumes a Live pointer (with its witness) into a Freed one. Sound+complete Dec, certifier soundness, positive + negative controls. Verified with idris2 0.7.0 (build clean, zero warnings) + adversarial false-proof rejection. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_01A6PSzJWpRxtzGDjUCEh7Mx
Adds Atsiser.ABI.Invariants over the existing Semantics model (Ptr/ PtrState/Accessible/free, imported not redefined). Proves the dynamic soundness of the linear state machine's free transition, distinct from the Layer-2 static accessibility theorem: - freeYieldsFreed: progress — state (free p Acc) = Freed - freePreservesAddr: frame — addr (free p Acc) = addr p - freedResultUnusable: no reuse — free's result is never Accessible (composes the transition with Layer 2's freedNotAcc) - noFurtherFree: terminality of the Freed fixed point - AtTerminal predicate with sound+complete decAtTerminal and a certifier proven sound (certifyTerminalSound) - positive controls (concrete free witnesses) and negative/non-vacuity controls (Not Accessible, Not AtTerminal, certifier rejects live) Clean build, zero warnings; adversarial false statements rejected. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_01A6PSzJWpRxtzGDjUCEh7Mx
Add Atsiser.ABI.FfiSeam proving resultToInt is a sound FFI encoding: faithful round-trip (intToResult . resultToInt = Just) with injectivity derived from it, plus positive decode controls and a machine-checked non-vacuity control (distinct codes encode distinctly). Genuine total proof — no believe_me/postulate/assert. Register module in the .ipkg. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_01A6PSzJWpRxtzGDjUCEh7Mx
Assemble the existing Layer-2 flagship control (liveAccessible), Layer-3 no-reuse invariant (freeConcreteUnusable), and Layer-4 FFI-seam injectivity (resultToIntInjective) into one inhabited ABISound record, abiContractDischarged. Genuine composition of already-exported witnesses: if any prior layer were unsound, this value would not typecheck. An adversarial false certificate (freed-pointer accessibility) is rejected. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_01A6PSzJWpRxtzGDjUCEh7Mx
…ble fix) Resolves the standing baseline CI reds (rust-ci toolchain error, governance Language/anti-pattern, governance workflow-lint) without altering the proven ABI. The Bash gate reproduces the former Python gate's verdict verbatim (validated across all -iser repos) and catches the same drift classes. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_01A6PSzJWpRxtzGDjUCEh7Mx
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Make CI genuinely green. The shared rust-ci pin on
mainpredates standards#439, so the SHA-pinneddtolnay/rust-toolchainstep errors out before the job runs. This bumps the pin so rust-ci actually runs, and brings the Rust sources to fmt + clippy(-D warnings) clean under the CI toolchain (stable 1.96).Changes
rust-ci-reusable.ymlpind135b05→8dc2bf0(currentstandardsHEAD; includes #439 toolchain fix + #441/#442).cargo fmt+clippy --fixwhere the repo had pre-existing drift, socargo fmt --all -- --checkandcargo clippy --locked --all-targets -- -D warningspass.RSR Quality Checklist
Required
cargo test --locked --all-targets)cargo fmt --all -- --check)cargo clippy --locked --all-targets -- -D warnings).envfiles includedTesting
Verified locally with the CI toolchain (rustc/clippy/rustfmt 1.96.0):
cargo fmt --check,clippy -D warnings,cargo check --locked,cargo test --lockedall pass.🤖 Generated with Claude Code
Generated by Claude Code