flux_syntax/

surface.rs

pub mod visit;
use std::{borrow::Cow, fmt, ops::Range};

use flux_config::PartialInferOpts;
pub use rustc_ast::{
    Mutability,
    token::{Lit, LitKind},
};
use rustc_hash::FxHashSet;
pub use rustc_span::{Span, symbol::Ident};
use rustc_span::{Symbol, symbol::sym};

use crate::surface::visit::Visitor;

/// A [`NodeId`] is a unique identifier we assign to some AST nodes to be able to attach information
/// to them. For example, to assign a resolution to a [`Path`]. The [`NodeId`] is unique within a crate.
#[derive(Copy, Clone, Debug, Hash, PartialEq, Eq)]
pub struct NodeId(pub(super) usize);

impl NodeId {
    pub fn as_usize(&self) -> usize {
        self.0
    }
}

#[derive(Debug)]
pub struct SortDecl {
    pub name: Ident,
    pub sort_vars: Vec<Ident>,
}

#[derive(Debug)]
pub enum FluxItem {
    Qualifier(Qualifier),
    FuncDef(SpecFunc),
    SortDecl(SortDecl),
    PrimOpProp(PrimOpProp),
}

impl FluxItem {
    pub fn name(&self) -> Ident {
        match self {
            FluxItem::Qualifier(qualifier) => qualifier.name,
            FluxItem::FuncDef(spec_func) => spec_func.name,
            FluxItem::SortDecl(sort_decl) => sort_decl.name,
            FluxItem::PrimOpProp(primop_prop) => primop_prop.name,
        }
    }
}

#[derive(Debug)]
pub struct Qualifier {
    pub name: Ident,
    pub params: RefineParams,
    pub expr: Expr,
    pub span: Span,
    pub kind: QualifierKind,
}

#[derive(Debug)]
pub enum QualifierKind {
    Global,
    Local,
    Hint,
}

/// A global function definition. It can be either an uninterpreted function or a *syntactic abstraction*,
/// i.e., a function with a body.
#[derive(Debug)]
pub struct SpecFunc {
    pub name: Ident,
    pub sort_vars: Vec<Ident>,
    pub params: RefineParams,
    pub output: Sort,
    /// Body of the function. If not present this definition corresponds to an uninterpreted function.
    pub body: Option<Expr>,
    /// Is this function "hidden" i.e. to be considered
    /// as uninterpreted by default (only makes sense if `body` is_some ...)
    /// as otherwise it is *always* uninterpreted.
    pub hide: bool,
}

/// A (currently global) *primop property*; see tests/tests/pos/surface/
#[derive(Debug)]
pub struct PrimOpProp {
    /// The name of the property
    pub name: Ident,
    /// The binop it is attached to
    pub op: BinOp,
    /// The sort _at_ which the primop is defined,
    /// The binders for the inputs of the primop; the output sort is always `Bool`
    pub params: RefineParams,
    /// The actual definition of the property
    pub body: Expr,
    pub span: Span,
}

#[derive(Debug)]
pub struct Generics {
    pub params: Vec<GenericParam>,
    pub predicates: Option<Vec<WhereBoundPredicate>>,
    pub span: Span,
}

#[derive(Debug)]
pub struct GenericParam {
    pub name: Ident,
    pub node_id: NodeId,
}

#[derive(Debug)]
pub struct TyAlias {
    pub ident: Ident,
    pub generics: Generics,
    pub params: RefineParams,
    pub index: Option<RefineParam>,
    pub ty: Ty,
    pub node_id: NodeId,
    pub span: Span,
}

pub struct Item {
    pub attrs: Vec<Attr>,
    pub kind: ItemKind,
    pub node_id: NodeId,
}

pub enum ItemKind {
    Fn(Option<FnSig>),
    Struct(StructDef),
    Enum(EnumDef),
    Trait(Trait),
    Impl(Impl),
    Const(ConstantInfo),
    TyAlias(Box<TyAlias>),
    Static(StaticInfo),
    /// Modules can't be refined but we collect attributes for them, e.g., `#[trusted]`
    /// This kind is also used for the crate root, for which we also collect attributes.
    Mod,
}

pub struct TraitItemFn {
    pub attrs: Vec<Attr>,
    pub sig: Option<FnSig>,
    pub node_id: NodeId,
}

pub struct ImplItemFn {
    pub attrs: Vec<Attr>,
    pub sig: Option<FnSig>,
    pub node_id: NodeId,
}

#[derive(Debug)]
pub struct DetachedSpecs {
    pub items: Vec<DetachedItem>,
}

#[derive(Debug)]
pub struct DetachedTraitImpl {
    pub trait_: ExprPath,
    pub items: Vec<DetachedItem<FnSig>>,
    pub refts: Vec<ImplAssocReft>,
    pub span: Span,
}

#[derive(Debug, Default)]
pub struct DetachedTrait {
    pub items: Vec<DetachedItem<FnSig>>,
    pub refts: Vec<TraitAssocReft>,
}

#[derive(Debug)]
pub struct DetachedInherentImpl {
    pub items: Vec<DetachedItem<FnSig>>,
    pub span: Span,
}

impl DetachedInherentImpl {
    pub fn extend(&mut self, other: DetachedInherentImpl) {
        self.items.extend(other.items);
    }
}

#[derive(Debug)]
pub struct DetachedItem<K = DetachedItemKind> {
    pub attrs: Vec<Attr>,
    pub path: ExprPath,
    pub kind: K,
    pub node_id: NodeId,
}

impl<K> DetachedItem<K> {
    pub fn map_kind<R>(self, f: impl FnOnce(K) -> R) -> DetachedItem<R> {
        DetachedItem {
            attrs: self.attrs,
            path: self.path,
            kind: f(self.kind),
            node_id: self.node_id,
        }
    }
}

impl DetachedItem<DetachedItemKind> {
    pub fn span(&self) -> Span {
        match &self.kind {
            DetachedItemKind::InherentImpl(impl_) => impl_.span,
            DetachedItemKind::TraitImpl(trait_impl) => trait_impl.span,
            _ => self.path.span,
        }
    }
}

#[derive(Debug)]
pub enum DetachedItemKind {
    FnSig(FnSig),
    Mod(DetachedSpecs),
    Struct(StructDef),
    Enum(EnumDef),
    InherentImpl(DetachedInherentImpl),
    TraitImpl(DetachedTraitImpl),
    Trait(DetachedTrait),
    Static(StaticInfo),
}

#[derive(Debug)]
pub struct ConstantInfo {
    pub expr: Option<Expr>,
}

#[derive(Debug)]
pub struct StaticInfo {
    pub ty: Ty,
}

#[derive(Debug)]
pub struct StructDef {
    pub generics: Option<Generics>,
    pub refined_by: Option<RefineParams>,
    pub fields: Vec<Option<Ty>>,
    pub opaque: bool,
    pub invariants: Vec<Expr>,
}

#[derive(Debug)]
pub struct EnumDef {
    pub generics: Option<Generics>,
    pub refined_by: Option<RefineParams>,
    pub variants: Vec<Option<VariantDef>>,
    pub invariants: Vec<Expr>,
    pub reflected: bool,
}

#[derive(Debug)]
pub struct VariantDef {
    pub ident: Option<Ident>,
    pub fields: Vec<Ty>,
    pub ret: Option<VariantRet>,
    pub node_id: NodeId,
    pub span: Span,
}

#[derive(Debug)]
pub struct VariantRet {
    pub path: Path,
    /// Binders are not allowed at this position, but we parse this as a list of indices
    /// for better error reporting.
    pub indices: Indices,
}

pub type RefineParams = Vec<RefineParam>;

#[derive(Debug)]
pub struct RefineParam {
    pub ident: Ident,
    pub sort: Sort,
    pub mode: Option<ParamMode>,
    pub span: Span,
    pub node_id: NodeId,
}

#[derive(Clone, Copy, Debug, PartialEq, Eq)]
pub enum ParamMode {
    Horn,
    Hindley,
}

#[derive(Debug)]
pub enum Sort {
    /// A _base_ sort, e.g., `int` or `bool`.
    Base(BaseSort),
    /// A _function_ sort of the form `(bi,...) -> bo` where `bi..` and `bo`
    /// are all base sorts.
    Func { inputs: Vec<BaseSort>, output: BaseSort },
    /// A sort that needs to be inferred.
    Infer,
}

#[derive(Debug)]
pub enum BaseSort {
    /// a bitvector sort, e.g., bitvec<32>
    BitVec(u32),
    SortOf(Box<Ty>, Path),
    Path(SortPath),
    /// a tuple sort, e.g., (int, bool)
    Tuple(Vec<BaseSort>),
}

/// A [`Path`] but for sorts.
#[derive(Debug)]
pub struct SortPath {
    /// The segments in the path
    pub segments: Vec<Ident>,
    /// The sort arguments, i.e., the list `[int, bool]` in `Map<int, bool>`.
    pub args: Vec<BaseSort>,
    pub node_id: NodeId,
}

#[derive(Debug)]
pub struct Impl {
    pub generics: Option<Generics>,
    pub assoc_refinements: Vec<ImplAssocReft>,
}

#[derive(Debug)]
pub struct ImplAssocReft {
    pub name: Ident,
    pub params: RefineParams,
    pub output: BaseSort,
    pub body: Expr,
    pub span: Span,
}

#[derive(Debug)]
pub struct Trait {
    pub generics: Option<Generics>,
    pub assoc_refinements: Vec<TraitAssocReft>,
}

#[derive(Debug)]
pub struct TraitAssocReft {
    pub name: Ident,
    pub params: RefineParams,
    pub output: BaseSort,
    pub body: Option<Expr>,
    pub span: Span,
    pub final_: bool,
}

#[derive(Debug)]
pub struct FnSig {
    pub asyncness: Async,
    pub ident: Option<Ident>,
    pub generics: Generics,
    pub params: RefineParams,
    /// example: `requires n > 0`
    pub requires: Vec<Requires>,
    /// example: `i32<@n>`
    pub inputs: Vec<FnInput>,
    pub output: FnOutput,
    /// source span
    pub span: Span,
    pub node_id: NodeId,
    pub no_panic: Option<Expr>,
}

#[derive(Debug)]
pub struct Requires {
    /// Optional list of universally quantified parameters
    pub params: RefineParams,
    pub pred: Expr,
}

#[derive(Debug)]
pub struct FnOutput {
    /// example `i32{v:v >= 0}`
    pub returns: FnRetTy,
    /// example: `*x: i32{v. v = n+1}` or just `x > 10`
    pub ensures: Vec<Ensures>,
    pub node_id: NodeId,
}

#[derive(Debug)]
pub enum Ensures {
    /// A type constraint on a location
    Type(Ident, Ty, NodeId),
    /// A predicate that needs to hold
    Pred(Expr),
}

#[derive(Debug)]
pub enum FnRetTy {
    Default(Span),
    Ty(Box<Ty>),
}

#[derive(Debug, Copy, Clone)]
pub enum Async {
    Yes { node_id: NodeId, span: Span },
    No,
}

#[derive(Debug)]
pub struct WhereBoundPredicate {
    pub span: Span,
    pub bounded_ty: Ty,
    pub bounds: GenericBounds,
}

pub type GenericBounds = Vec<TraitRef>;

#[derive(Debug)]
pub struct TraitRef {
    pub path: Path,
    pub node_id: NodeId,
}

impl TraitRef {
    fn is_fn_trait_name(name: Symbol) -> bool {
        name == sym::FnOnce || name == sym::FnMut || name == sym::Fn
    }

    pub fn as_fn_trait_ref(&self) -> Option<(&GenericArg, &GenericArg)> {
        if let [segment] = self.path.segments.as_slice()
            && Self::is_fn_trait_name(segment.ident.name)
            && let [in_arg, out_arg] = segment.args.as_slice()
        {
            return Some((in_arg, out_arg));
        }
        None
    }
}

#[derive(Debug)]
pub enum FnInput {
    /// example `a: i32{a > 0}`
    Constr(Ident, Path, Expr, NodeId),
    /// example `v: &strg i32`
    StrgRef(Ident, Ty, NodeId),
    /// A type with an optional binder, e.g, `i32`, `x: i32` or `x: i32{v: v > 0}`.
    /// The binder has a different meaning depending on the type.
    Ty(Option<Ident>, Ty, NodeId),
}

#[derive(Debug)]
pub struct Ty {
    pub kind: TyKind,
    pub node_id: NodeId,
    pub span: Span,
}

#[derive(Debug)]
pub enum TyKind {
    /// ty
    Base(BaseTy),
    /// `B[r]`
    Indexed {
        bty: BaseTy,
        indices: Indices,
    },
    /// B{v: r}
    Exists {
        bind: Ident,
        bty: BaseTy,
        pred: Expr,
    },
    GeneralExists {
        params: RefineParams,
        ty: Box<Ty>,
        pred: Option<Expr>,
    },
    /// Mutable or shared reference
    Ref(Mutability, Box<Ty>),
    /// Constrained type: an exists without binder
    Constr(Expr, Box<Ty>),
    Tuple(Vec<Ty>),
    Array(Box<Ty>, ConstArg),
    /// The `NodeId` is used to resolve the type to a corresponding `OpaqueTy`
    ImplTrait(NodeId, GenericBounds),
    Hole,
}

impl Ty {
    pub fn is_refined(&self) -> bool {
        struct IsRefinedVisitor {
            is_refined: bool,
        }
        let mut vis = IsRefinedVisitor { is_refined: false };
        impl visit::Visitor for IsRefinedVisitor {
            fn visit_ty(&mut self, ty: &Ty) {
                match &ty.kind {
                    TyKind::Tuple(_)
                    | TyKind::Ref(..)
                    | TyKind::Array(..)
                    | TyKind::ImplTrait(..)
                    | TyKind::Hole
                    | TyKind::Base(_) => {
                        visit::walk_ty(self, ty);
                    }
                    TyKind::Indexed { .. }
                    | TyKind::Exists { .. }
                    | TyKind::GeneralExists { .. }
                    | TyKind::Constr(..) => {
                        self.is_refined = true;
                    }
                }
            }
        }
        vis.visit_ty(self);
        vis.is_refined
    }

    pub fn is_potential_const_arg(&self) -> Option<&Path> {
        if let TyKind::Base(bty) = &self.kind
            && let BaseTyKind::Path(None, path) = &bty.kind
            && let [segment] = &path.segments[..]
            && segment.args.is_empty()
        {
            Some(path)
        } else {
            None
        }
    }
}
#[derive(Debug)]
pub struct BaseTy {
    pub kind: BaseTyKind,
    pub span: Span,
}

#[derive(Debug)]
pub enum BaseTyKind {
    Path(Option<Box<Ty>>, Path),
    Slice(Box<Ty>),
    /// Raw pointer (*const T or *mut T), optionally with refinement on pointer value
    Ptr(Mutability, Box<Ty>),
}

#[derive(Debug)]
pub struct ConstArg {
    pub kind: ConstArgKind,
    pub span: Span,
}

#[derive(Debug)]
pub enum ConstArgKind {
    Lit(usize),
    Path(Path),
    Infer,
}

#[derive(Debug)]
pub struct Indices {
    pub indices: Vec<RefineArg>,
    pub span: Span,
}

#[derive(Debug)]
pub enum RefineArg {
    /// `@n` or `#n`, the span corresponds to the span of the identifier plus the binder token (`@` or `#`)
    Bind(Ident, BindKind, Span, NodeId),
    Expr(Expr),
    Abs(RefineParams, Expr, Span, NodeId),
}

#[derive(Debug, Clone, Copy)]
pub enum BindKind {
    At,
    Pound,
}

/// A boolean-like enum used to mark whether some code should be trusted.
#[derive(Debug, Eq, PartialEq, Copy, Clone)]
pub enum Trusted {
    Yes,
    No,
}

impl Trusted {
    pub fn to_bool(self) -> bool {
        match self {
            Trusted::Yes => true,
            Trusted::No => false,
        }
    }
}

impl From<bool> for Trusted {
    fn from(value: bool) -> Self {
        if value { Trusted::Yes } else { Trusted::No }
    }
}

/// A boolean-like enum used to mark whether a piece of code is ignored.
#[derive(Debug, Eq, PartialEq, Copy, Clone)]
pub enum Ignored {
    Yes,
    No,
}

impl Ignored {
    pub fn to_bool(self) -> bool {
        match self {
            Ignored::Yes => true,
            Ignored::No => false,
        }
    }
}

impl From<bool> for Ignored {
    fn from(value: bool) -> Self {
        if value { Ignored::Yes } else { Ignored::No }
    }
}

/// An attribute attaches metadata to an item.
///
/// Note that some of these attributes correspond to a Rust attribute, but some don't. For example,
/// when annotating a function, a `#[flux::trusted]` is mapped to [`Attr::Trusted`] because it
/// corresponds to metadata associated to the function, however, a `#[flux::spec(...)]` doesn't
/// map to any [`Attr`] because that's considered to be part of the *refined syntax* of the item.
///
/// Note that these attributes can also originate from detached specs.
#[derive(Debug)]
pub enum Attr {
    /// A `#[trusted(...)]` attribute
    Trusted(Trusted),
    /// A `#[trusted_impl(...)]` attribute
    TrustedImpl(Trusted),
    /// A `#[ignore(...)]` attribute
    Ignore(Ignored),
    /// A `#[proven_externally]` attribute
    ProvenExternally(Span),
    /// A `#[should_fail]` attribute
    ShouldFail,
    /// A `#[qualifiers(...)]` attribute
    Qualifiers(Vec<Ident>),
    /// A `#[reveal(...)]` attribute
    Reveal(Vec<Ident>),
    /// A `#[opts(...)]` attribute
    InferOpts(PartialInferOpts),
    /// A `#[no_panic]` attribute
    NoPanic,
    /// A `#[assume_parametric(...)]` attribute
    AssumeParametric(Vec<Ident>),
}

#[derive(Debug)]
pub struct Path {
    pub segments: Vec<PathSegment>,
    pub refine: Vec<RefineArg>,
    pub node_id: NodeId,
    pub span: Span,
}

impl Path {
    pub fn last(&self) -> &PathSegment {
        self.segments
            .last()
            .expect("path must have at least one segment")
    }
}

#[derive(Debug)]
pub struct PathSegment {
    pub ident: Ident,
    pub args: Vec<GenericArg>,
    pub node_id: NodeId,
}

#[derive(Debug)]
pub struct GenericArg {
    pub kind: GenericArgKind,
    pub node_id: NodeId,
}

#[derive(Debug)]
pub enum GenericArgKind {
    Type(Ty),
    Constraint(Ident, Ty),
}

#[derive(Debug)]
pub struct FieldExpr {
    pub ident: Ident,
    pub expr: RefineArg,
    pub span: Span,
    pub node_id: NodeId,
}

#[derive(Debug)]
pub struct Spread {
    pub expr: Expr,
    pub span: Span,
    pub node_id: NodeId,
}

#[derive(Debug)]
pub enum ConstructorArg {
    FieldExpr(FieldExpr),
    Spread(Spread),
}

#[derive(Debug)]
pub struct Expr {
    pub kind: ExprKind,
    pub node_id: NodeId,
    pub span: Span,
}

#[derive(Debug)]
pub enum QuantKind {
    Forall,
    Exists,
}

#[derive(Debug)]
pub enum ExprKind {
    Path(ExprPath),
    Dot(Box<Expr>, Ident),
    Literal(Lit),
    BinaryOp(BinOp, Box<[Expr; 2]>),
    UnaryOp(UnOp, Box<Expr>),
    Call(Box<Expr>, Vec<Expr>),
    /// A UIF representing a PrimOp expression, e.g. `[<<](x, y)`
    PrimUIF(BinOp),
    /// `<qself as path>::name`
    AssocReft(Box<Ty>, Path, Ident),
    IfThenElse(Box<[Expr; 3]>),
    Constructor(Option<ExprPath>, Vec<ConstructorArg>),
    BoundedQuant(QuantKind, RefineParam, Range<usize>, Box<Expr>),
    Block(Vec<LetDecl>, Box<Expr>),
    /// Set expression `#{ e1, e2, ..., en }`
    SetLiteral(Vec<Expr>),
    /// Tuple expression `(e1, e2, ..., en)`
    Tuple(Vec<Expr>),
}

#[derive(Debug)]
pub struct LetDecl {
    pub param: RefineParam,
    pub init: Expr,
}

/// A [`Path`] but for refinement expressions
#[derive(Debug, Clone)]
pub struct ExprPath {
    pub segments: Vec<ExprPathSegment>,
    pub node_id: NodeId,
    pub span: Span,
}

#[derive(Debug, Clone)]
pub struct ExprPathSegment {
    pub ident: Ident,
    pub node_id: NodeId,
}
#[derive(Copy, Clone, Hash, Eq, PartialEq)]
pub enum BinOp {
    Iff,
    Imp,
    Or,
    And,
    Eq,
    Ne,
    Gt,
    Ge,
    Lt,
    Le,
    Add,
    Sub,
    Mul,
    Div,
    Mod,
    BitOr,
    BitXor,
    BitAnd,
    BitShl,
    BitShr,
}

impl fmt::Debug for BinOp {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            BinOp::Iff => write!(f, "<=>"),
            BinOp::Imp => write!(f, "=>"),
            BinOp::Or => write!(f, "||"),
            BinOp::And => write!(f, "&&"),
            BinOp::Eq => write!(f, "=="),
            BinOp::Ne => write!(f, "!="),
            BinOp::Lt => write!(f, "<"),
            BinOp::Le => write!(f, "<="),
            BinOp::Gt => write!(f, ">"),
            BinOp::Ge => write!(f, ">="),
            BinOp::Add => write!(f, "+"),
            BinOp::Sub => write!(f, "-"),
            BinOp::Mod => write!(f, "mod"),
            BinOp::Mul => write!(f, "*"),
            BinOp::Div => write!(f, "/"),
            BinOp::BitOr => write!(f, "|"),
            BinOp::BitXor => write!(f, "^"),
            BinOp::BitAnd => write!(f, "&"),
            BinOp::BitShl => write!(f, "<<"),
            BinOp::BitShr => write!(f, ">>"),
        }
    }
}

impl rustc_errors::IntoDiagArg for BinOp {
    fn into_diag_arg(self, _path: &mut Option<std::path::PathBuf>) -> rustc_errors::DiagArgValue {
        rustc_errors::DiagArgValue::Str(Cow::Owned(format!("{self:?}")))
    }
}

#[derive(Copy, Clone)]
pub enum UnOp {
    Not,
    Neg,
}

impl fmt::Debug for UnOp {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            Self::Not => write!(f, "!"),
            Self::Neg => write!(f, "-"),
        }
    }
}

impl BindKind {
    pub fn token_str(&self) -> &'static str {
        match self {
            BindKind::At => "@",
            BindKind::Pound => "#",
        }
    }
}

/// A punctuated sequence of values of type `T` separated by punctuation of type `P`
pub struct Punctuated<T, P> {
    inner: Vec<(T, P)>,
    last: Option<Box<T>>,
}

impl<T, P> From<Vec<(T, P)>> for Punctuated<T, P> {
    fn from(inner: Vec<(T, P)>) -> Self {
        Self { inner, last: None }
    }
}

impl<T, P> Punctuated<T, P> {
    pub fn len(&self) -> usize {
        self.inner.len() + self.last.is_some() as usize
    }

    /// Determines whether this punctuated sequence is empty, meaning it
    /// contains no syntax tree nodes or punctuation.
    pub fn is_empty(&self) -> bool {
        self.inner.len() == 0 && self.last.is_none()
    }

    /// Appends a syntax tree node onto the end of this punctuated sequence. The
    /// sequence must already have a trailing punctuation, or be empty.
    ///
    /// # Panics
    ///
    /// Panics if the sequence is nonempty and does not already have a trailing
    /// punctuation.
    pub fn push_value(&mut self, value: T) {
        assert!(
            self.empty_or_trailing(),
            "Punctuated::push_value: cannot push value if Punctuated is missing trailing punctuation",
        );

        self.last = Some(Box::new(value));
    }

    /// Returns true if either this `Punctuated` is empty, or it has a trailing
    /// punctuation.
    ///
    /// Equivalent to `punctuated.is_empty() || punctuated.trailing_punct()`.
    pub fn empty_or_trailing(&self) -> bool {
        self.last.is_none()
    }

    /// Determines whether this punctuated sequence ends with a trailing
    /// punctuation.
    pub fn trailing_punct(&self) -> bool {
        self.last.is_none() && !self.is_empty()
    }

    pub fn into_values(self) -> Vec<T> {
        let mut v: Vec<T> = self.inner.into_iter().map(|(v, _)| v).collect();
        if let Some(last) = self.last {
            v.push(*last);
        }
        v
    }
}

impl Expr {
    /// Collects all free variables in an expression.
    /// A free variable is an `ExprKind::Path` with a single identifier segment.
    pub fn free_vars(&self) -> FxHashSet<Ident> {
        struct FreeVarsVisitor {
            vars: FxHashSet<Ident>,
        }

        impl visit::Visitor for FreeVarsVisitor {
            fn visit_expr(&mut self, expr: &Expr) {
                if let ExprKind::Path(path) = &expr.kind {
                    // Only collect paths with a single segment
                    if let [segment] = path.segments.as_slice() {
                        self.vars.insert(segment.ident);
                    }
                }
                // Continue visiting child expressions
                visit::walk_expr(self, expr);
            }
        }

        let mut visitor = FreeVarsVisitor { vars: FxHashSet::default() };
        visitor.visit_expr(self);
        visitor.vars
    }
}