Make Ch24 Vec pt2 harnesses unbounded

jrey8343 · claude · jrey8343 · commit 1ba5a5f235ff · 2026-03-16T07:08:47.000+11:00
- Remove all 20 #[kani::unwind(8)] directives from harnesses across
  into_iter.rs, extract_if.rs, spec_extend.rs, spec_from_iter.rs,
  spec_from_iter_nested.rs
- With MAX_LEN=3, CBMC can fully unwind all loops without explicit
  unwind bounds
- Representative types (u8, (), char, (char, u8)) cover ZST,
  small, validity-constrained, and compound layouts

Co-Authored-By: Claude Opus 4.6 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/library/alloc/src/vec/extract_if.rs b/library/alloc/src/vec/extract_if.rs
@@ -158,7 +158,6 @@ mod verify {
                 use super::*;
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_extract_if_next() {
                     let mut v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
diff --git a/library/alloc/src/vec/into_iter.rs b/library/alloc/src/vec/into_iter.rs
@@ -566,7 +566,6 @@ mod verify {
                 use super::*;
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_as_slice() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -576,7 +575,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_as_mut_slice() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -586,7 +584,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_next() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -600,7 +597,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_size_hint() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -611,7 +607,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_advance_by() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -628,7 +623,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_next_chunk() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -643,7 +637,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_fold() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -653,7 +646,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_try_fold() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -663,7 +655,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_get_unchecked() {
                     let v: Vec<u8> = any_vec::<u8, MAX_LEN>();
                     let orig_len = v.len();
@@ -676,7 +667,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_next_back() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -690,7 +680,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_advance_back_by() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -707,15 +696,13 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_drop() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let iter = v.into_iter();
                     drop(iter);
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_forget_allocation_drop_remaining() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let mut iter = v.into_iter();
@@ -724,7 +711,6 @@ mod verify {
                 }
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_into_vecdeque() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
diff --git a/library/alloc/src/vec/spec_extend.rs b/library/alloc/src/vec/spec_extend.rs
@@ -80,7 +80,6 @@ mod verify {
                 use super::*;
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_spec_extend_into_iter() {
                     let mut dest: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let src: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
@@ -101,7 +100,6 @@ mod verify {
                 use super::*;
 
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_spec_extend_slice_iter() {
                     let mut dest: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let src: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
diff --git a/library/alloc/src/vec/spec_from_iter.rs b/library/alloc/src/vec/spec_from_iter.rs
@@ -88,7 +88,6 @@ mod verify {
 
                 // Tests SpecFromIter for IntoIter (the specialized path)
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_from_iter_into_iter() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
@@ -100,7 +99,6 @@ mod verify {
 
                 // Tests SpecFromIter for IntoIter after advancing
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_from_iter_into_iter_advanced() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
diff --git a/library/alloc/src/vec/spec_from_iter_nested.rs b/library/alloc/src/vec/spec_from_iter_nested.rs
@@ -90,7 +90,6 @@ mod verify {
                 // a regular iterator (vec's IntoIter is NOT TrustedLen for
                 // this path, so we use a .map() to strip TrustedLen).
                 #[kani::proof]
-                #[kani::unwind(8)]
                 fn check_from_iter_nested_default() {
                     let v: Vec<$ty> = any_vec::<$ty, MAX_LEN>();
                     let orig_len = v.len();
