Enum SafetyBounds 

pub enum SafetyBounds {
    None,
    Mpu,
    Software,
    Mask,
}

Memory-bounds safety strategy. Phase 1 of docs/binary-safety-design.md §3.1.

• Mpu/PMP: rely on hardware (ARM MPU or RV32 PMP) — no inline check.
• Software: emit a CMP/BHS Trap_Handler (ARM) or bgeu addr, mem_size, ebreak (RV32) before every load/store.
• Mask: emit AND addr, addr, #(mem_size - 1) — only valid when memory size is a power of two. Wraps on OOB rather than trapping (fuzz-profile semantics).
• None: no bounds enforcement.

Variants

None

No bounds check (caller assumes the WASM module is trusted)

Mpu

ARM MPU / RV32 PMP — hardware enforcement, no inline guard

Software

Software CMP/BHS (ARM) or BGEU+EBREAK (RV32) per access

Mask

AND-mask, requires power-of-two memory size

Implementations

impl SafetyBounds

pub fn parse(s: &str) -> Result<Self, String>

Parse the --safety-bounds argument value.

pub fn as_str(self) -> &'static str

String form used in the safety manifest.

Trait Implementations

impl Clone for SafetyBounds

fn clone(&self) -> SafetyBounds

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for SafetyBounds

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Default for SafetyBounds

fn default() -> SafetyBounds

Returns the “default value” for a type.

impl PartialEq for SafetyBounds

fn eq(&self, other: &SafetyBounds) -> bool

Tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl Copy for SafetyBounds

impl Eq for SafetyBounds

impl StructuralPartialEq for SafetyBounds