liquid_fixpoint/

lib.rs

//! This crate implements an interface to the [liquid-fixpoint] binary
//!
//! [liquid-fixpoint]: https://github.com/ucsd-progsys/liquid-fixpoint
#![cfg_attr(feature = "nightly", feature(rustc_private))]

#[cfg(feature = "nightly")]
extern crate rustc_macros;
#[cfg(feature = "nightly")]
extern crate rustc_serialize;
#[cfg(feature = "nightly")]
extern crate rustc_span;

mod constraint;
#[cfg(feature = "rust-fixpoint")]
mod constraint_fragments;
#[cfg(feature = "rust-fixpoint")]
mod constraint_solving;
mod constraint_with_env;
#[cfg(feature = "rust-fixpoint")]
mod cstr2smt2;
mod format;
#[cfg(feature = "rust-fixpoint")]
mod graph;
pub mod parser;
pub mod sexp;

use std::{
    collections::{HashMap, hash_map::DefaultHasher},
    fmt::{self, Debug},
    hash::{Hash, Hasher},
    io,
    str::FromStr,
};
#[cfg(not(feature = "rust-fixpoint"))]
use std::{
    io::{BufWriter, Write as IOWrite},
    process::{Command, Stdio},
};

pub use constraint::{
    BinOp, BinRel, Bind, BoundVar, Constant, Constraint, DataCtor, DataDecl, DataField, Expr,
    FunSort, Pred, Qualifier, Quantifier, Sort, SortCtor, SortDecl,
};
use derive_where::derive_where;
#[cfg(feature = "nightly")]
use rustc_macros::{Decodable, Encodable};
use serde::{Deserialize, Serialize, de};

/// Type alias for qualifier assignments used in constraint solving
pub type Assignments<'a, T> = HashMap<<T as Types>::KVar, Vec<(&'a Qualifier<T>, Vec<usize>)>>;

#[cfg(feature = "rust-fixpoint")]
use crate::constraint_with_env::ConstraintWithEnv;

pub trait Types {
    type Sort: Identifier + Hash + Clone + Debug + Eq;
    type KVar: Identifier + Hash + Clone + Debug + Eq;
    type Var: Identifier + Hash + Clone + Debug + Eq;
    type String: FixpointFmt + Hash + Clone + Debug;
    type Real: FixpointFmt + Hash + Clone + Debug;
    type Tag: fmt::Display + FromStr + Hash + Clone + Debug;
}

pub trait FixpointFmt: Sized {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result;

    /// Returns a type that implements [`fmt::Display`] using this [`FixpointFmt::fmt`] implementation.
    fn display(&self) -> impl fmt::Display {
        struct DisplayAdapter<T>(T);
        impl<T: FixpointFmt> std::fmt::Display for DisplayAdapter<&T> {
            fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
                FixpointFmt::fmt(self.0, f)
            }
        }
        DisplayAdapter(self)
    }
}

pub trait Identifier: Sized {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result;

    /// Returns a type that implements [`fmt::Display`] using this [`Identifier::fmt`] implementation.
    fn display(&self) -> impl fmt::Display {
        struct DisplayAdapter<T>(T);
        impl<T: Identifier> fmt::Display for DisplayAdapter<&T> {
            fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
                Identifier::fmt(self.0, f)
            }
        }
        DisplayAdapter(self)
    }
}

impl Identifier for &str {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "{self}")
    }
}

impl FixpointFmt for u32 {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "{self}")
    }
}

impl FixpointFmt for String {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "\"{self}\"")
    }
}

#[macro_export]
macro_rules! declare_types {
    (   type Sort = $sort:ty;
        type KVar = $kvar:ty;
        type Var = $var:ty;
        type String = $str:ty;
        type Real = $real:ty;
        type Tag = $tag:ty;
    ) => {
        pub mod fixpoint_generated {
            pub struct FixpointTypes;
            pub type Expr = $crate::Expr<FixpointTypes>;
            pub type Pred = $crate::Pred<FixpointTypes>;
            pub type Constraint = $crate::Constraint<FixpointTypes>;
            pub type KVarDecl = $crate::KVarDecl<FixpointTypes>;
            pub type ConstDecl = $crate::ConstDecl<FixpointTypes>;
            pub type FunDef = $crate::FunDef<FixpointTypes>;
            pub type FunSort = $crate::FunSort<FixpointTypes>;
            pub type FunBody = $crate::FunBody<FixpointTypes>;
            pub type Task = $crate::Task<FixpointTypes>;
            pub type Qualifier = $crate::Qualifier<FixpointTypes>;
            pub type Sort = $crate::Sort<FixpointTypes>;
            pub type SortCtor = $crate::SortCtor<FixpointTypes>;
            pub type SortDecl = $crate::SortDecl<FixpointTypes>;
            pub type DataDecl = $crate::DataDecl<FixpointTypes>;
            pub type DataCtor = $crate::DataCtor<FixpointTypes>;
            pub type DataField = $crate::DataField<FixpointTypes>;
            pub type Bind = $crate::Bind<FixpointTypes>;
            pub type Constant = $crate::Constant<FixpointTypes>;
            pub use $crate::{BinOp, BinRel, BoundVar, Quantifier, ThyFunc};
        }

        impl $crate::Types for fixpoint_generated::FixpointTypes {
            type Sort = $sort;
            type KVar = $kvar;
            type Var = $var;
            type String = $str;
            type Real = $real;
            type Tag = $tag;
        }
    };
}

#[derive_where(Hash, Clone, Debug)]
pub struct ConstDecl<T: Types> {
    pub name: T::Var,
    pub sort: Sort<T>,
    #[derive_where(skip)]
    pub comment: Option<String>,
}

#[derive_where(Hash, Debug)]
pub struct FunDef<T: Types> {
    pub name: T::Var,
    pub sort: FunSort<T>,
    pub body: Option<FunBody<T>>,
    #[derive_where(skip)]
    pub comment: Option<String>,
}

#[derive_where(Hash, Debug)]
pub struct FunBody<T: Types> {
    pub args: Vec<T::Var>,
    pub expr: Expr<T>,
}

#[derive_where(Hash)]
pub struct Task<T: Types> {
    #[derive_where(skip)]
    pub comments: Vec<String>,
    pub constants: Vec<ConstDecl<T>>,
    pub data_decls: Vec<DataDecl<T>>,
    pub define_funs: Vec<FunDef<T>>,
    pub kvars: Vec<KVarDecl<T>>,
    pub constraint: Constraint<T>,
    pub qualifiers: Vec<Qualifier<T>>,
    pub scrape_quals: bool,
    pub solver: SmtSolver,
}

#[derive(Clone, Copy, Hash)]
pub enum SmtSolver {
    Z3,
    CVC5,
}

impl fmt::Display for SmtSolver {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            SmtSolver::Z3 => write!(f, "z3"),
            SmtSolver::CVC5 => write!(f, "cvc5"),
        }
    }
}

#[derive(Serialize, Deserialize, Debug, Clone)]
#[serde(
    tag = "tag",
    content = "contents",
    bound(deserialize = "Tag: FromStr", serialize = "Tag: ToString")
)]
pub enum FixpointStatus<Tag> {
    Safe(Stats),
    Unsafe(Stats, Vec<Error<Tag>>),
    Crash(CrashInfo),
}

#[derive(Serialize, Deserialize, Debug, Clone, Default)]
#[serde(tag = "tag", content = "contents")]
pub enum LeanStatus {
    #[default]
    Invalid,
    Valid,
}

#[derive(Serialize, Deserialize, Debug, Clone)]
#[serde(bound(deserialize = "Tag: FromStr", serialize = "Tag: ToString"))]
pub struct VerificationResult<Tag> {
    pub status: FixpointStatus<Tag>,
    pub solution: Vec<KVarBind>,
    #[serde(rename = "nonCutsSolution")]
    pub non_cuts_solution: Vec<KVarBind>,
    #[serde(default)]
    pub lean_status: LeanStatus,
}

#[derive(Serialize, Deserialize, Debug, Clone)]
pub struct KVarBind {
    pub kvar: String,
    pub val: String,
}

impl KVarBind {
    pub fn dump(&self) -> String {
        format!("{} := {}", self.kvar, self.val)
    }
}

impl<Tag> FixpointStatus<Tag> {
    pub fn is_safe(&self) -> bool {
        matches!(self, FixpointStatus::Safe(_))
    }

    pub fn merge(self, other: FixpointStatus<Tag>) -> Self {
        use FixpointStatus as FR;
        match (self, other) {
            (FR::Safe(stats1), FR::Safe(stats2)) => FR::Safe(stats1.merge(&stats2)),
            (FR::Safe(stats1), FR::Unsafe(stats2, errors)) => {
                FR::Unsafe(stats1.merge(&stats2), errors)
            }
            (FR::Unsafe(stats1, mut errors1), FR::Unsafe(stats2, errors2)) => {
                errors1.extend(errors2);
                FR::Unsafe(stats1.merge(&stats2), errors1)
            }
            (FR::Unsafe(stats1, errors), FR::Safe(stats2)) => {
                FR::Unsafe(stats1.merge(&stats2), errors)
            }
            (FR::Crash(info1), FR::Crash(info2)) => FR::Crash(info1.merge(info2)),
            (FR::Crash(info), _) => FR::Crash(info),
            (_, FR::Crash(info)) => FR::Crash(info),
        }
    }
}

#[derive(Debug, Clone)]
pub struct Error<Tag> {
    pub id: i32,
    pub tag: Tag,
}

#[derive(Debug, Serialize, Deserialize, Default, Clone)]
#[serde(rename_all = "camelCase")]
pub struct Stats {
    pub num_cstr: i32,
    pub num_iter: i32,
    pub num_chck: i32,
    pub num_vald: i32,
}

impl Stats {
    pub fn merge(&self, other: &Stats) -> Self {
        Stats {
            num_cstr: self.num_cstr + other.num_cstr,
            num_iter: self.num_iter + other.num_iter,
            num_chck: self.num_chck + other.num_chck,
            num_vald: self.num_vald + other.num_vald,
        }
    }
}

#[derive(Serialize, Deserialize, Debug, Clone)]
pub struct CrashInfo(Vec<serde_json::Value>);

impl CrashInfo {
    pub fn merge(self, other: CrashInfo) -> Self {
        let mut v = self.0;
        v.extend(other.0);
        CrashInfo(v)
    }
}

#[derive_where(Debug, Clone, Hash)]
pub struct KVarDecl<T: Types> {
    pub kvid: T::KVar,
    pub sorts: Vec<Sort<T>>,
    #[derive_where(skip)]
    pub comment: String,
}

impl<T: Types> Task<T> {
    pub fn hash_with_default(&self) -> u64 {
        let mut hasher = DefaultHasher::new();
        self.hash(&mut hasher);
        hasher.finish()
    }

    #[cfg(feature = "rust-fixpoint")]
    pub fn run(&self) -> io::Result<VerificationResult<T::Tag>> {
        let mut cstr_with_env = ConstraintWithEnv::new(
            self.data_decls.clone(),
            self.kvars.clone(),
            self.qualifiers.clone(),
            self.constants.clone(),
            self.constraint.clone(),
        );
        Ok(VerificationResult {
            status: cstr_with_env.is_satisfiable(),
            solution: vec![],
            non_cuts_solution: vec![],
        })
    }

    #[cfg(not(feature = "rust-fixpoint"))]
    pub fn run(&self) -> io::Result<VerificationResult<T::Tag>> {
        let mut child = Command::new("fixpoint")
            .arg("-q")
            .arg("--stdin")
            .arg("--sorted-solution")
            .arg("--json")
            .arg("--allowho")
            .arg("--allowhoqs")
            .arg(format!("--solver={}", self.solver))
            .stdin(Stdio::piped())
            .stdout(Stdio::piped())
            .stderr(Stdio::piped())
            .spawn()?;
        let mut stdin = None;
        std::mem::swap(&mut stdin, &mut child.stdin);
        {
            let mut w = BufWriter::new(stdin.unwrap());
            // Use compact formatting to reduce overhead when communicating with fixpoint
            writeln!(w, "{}", format::CompactTask(self))?;
        }
        let out = child.wait_with_output()?;

        serde_json::from_slice(&out.stdout).map_err(|err| {
            // If we fail to parse stdout fixpoint may have outputed something to stderr
            // so use that for the error instead
            if !out.stderr.is_empty() {
                let stderr = std::str::from_utf8(&out.stderr)
                    .unwrap_or("fixpoint exited with a non-zero return code");
                io::Error::other(stderr)
            } else {
                err.into()
            }
        })
    }
}

impl<T: Types> KVarDecl<T> {
    pub fn new(kvid: T::KVar, sorts: Vec<Sort<T>>, comment: String) -> Self {
        Self { kvid, sorts, comment }
    }
}

#[derive(Serialize, Deserialize)]
struct ErrorInner(i32, String);

impl<Tag: ToString> Serialize for Error<Tag> {
    fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
    where
        S: serde::Serializer,
    {
        ErrorInner(self.id, self.tag.to_string()).serialize(serializer)
    }
}

impl<'de, Tag: FromStr> Deserialize<'de> for Error<Tag> {
    fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
    where
        D: serde::Deserializer<'de>,
    {
        let ErrorInner(id, tag) = Deserialize::deserialize(deserializer)?;
        let tag = tag
            .parse()
            .map_err(|_| de::Error::invalid_value(de::Unexpected::Str(&tag), &"valid tag"))?;
        Ok(Error { id, tag })
    }
}

#[derive(Clone, Copy, PartialEq, Eq, Hash, Debug)]
#[cfg_attr(feature = "nightly", derive(Encodable, Decodable))]
pub enum ThyFunc {
    // STRINGS
    StrLen,
    StrConcat,
    StrPrefixOf,
    StrSuffixOf,
    StrContains,

    // BIT VECTORS
    BvZeroExtend(u8),
    BvSignExtend(u8),
    IntToBv8,
    Bv8ToInt,
    IntToBv32,
    Bv32ToInt,
    IntToBv64,
    Bv64ToInt,
    BvUle,
    BvSle,
    BvUge,
    BvSge,
    BvUdiv,
    BvSdiv,
    BvSrem,
    BvUrem,
    BvLshr,
    BvAshr,
    BvAnd,
    BvOr,
    BvXor,
    BvNot,
    BvAdd,
    BvNeg,
    BvSub,
    BvMul,
    BvShl,
    BvUgt,
    BvSgt,
    BvUlt,
    BvSlt,

    // SETS
    /// Make an empty set
    SetEmpty,
    /// Make a singleton set
    SetSng,
    /// Set union
    SetCup,
    /// Set intersection
    SetCap,
    /// Set difference
    SetDif,
    /// Subset
    SetSub,
    /// Set membership
    SetMem,

    // MAPS
    /// Create a map where all keys point to a value
    MapDefault,
    /// Select a key in a map
    MapSelect,
    /// Store a key value pair in a map
    MapStore,
}

impl ThyFunc {
    pub const ALL: [ThyFunc; 44] = [
        ThyFunc::StrLen,
        ThyFunc::StrConcat,
        ThyFunc::StrPrefixOf,
        ThyFunc::StrSuffixOf,
        ThyFunc::StrContains,
        ThyFunc::IntToBv8,
        ThyFunc::Bv8ToInt,
        ThyFunc::IntToBv32,
        ThyFunc::Bv32ToInt,
        ThyFunc::IntToBv64,
        ThyFunc::Bv64ToInt,
        ThyFunc::BvAdd,
        ThyFunc::BvNeg,
        ThyFunc::BvSub,
        ThyFunc::BvShl,
        ThyFunc::BvLshr,
        ThyFunc::BvAshr,
        ThyFunc::BvMul,
        ThyFunc::BvUdiv,
        ThyFunc::BvSdiv,
        ThyFunc::BvUrem,
        ThyFunc::BvSrem,
        ThyFunc::BvAnd,
        ThyFunc::BvOr,
        ThyFunc::BvXor,
        ThyFunc::BvNot,
        ThyFunc::BvUle,
        ThyFunc::BvSle,
        ThyFunc::BvUge,
        ThyFunc::BvSge,
        ThyFunc::BvUgt,
        ThyFunc::BvSgt,
        ThyFunc::BvUlt,
        ThyFunc::BvSlt,
        ThyFunc::SetEmpty,
        ThyFunc::SetSng,
        ThyFunc::SetCup,
        ThyFunc::SetMem,
        ThyFunc::SetCap,
        ThyFunc::SetDif,
        ThyFunc::SetSub,
        ThyFunc::MapDefault,
        ThyFunc::MapSelect,
        ThyFunc::MapStore,
    ];
}

impl fmt::Display for ThyFunc {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            ThyFunc::StrLen => write!(f, "strLen"),
            ThyFunc::StrConcat => write!(f, "strConcat"),
            ThyFunc::StrPrefixOf => write!(f, "strPrefixOf"),
            ThyFunc::StrSuffixOf => write!(f, "strSuffixOf"),
            ThyFunc::StrContains => write!(f, "strContains"),
            ThyFunc::BvZeroExtend(size) => {
                // `app` is a hack in liquid-fixpoint used to implement indexed identifiers
                write!(f, "app (_ zero_extend {size})")
            }
            ThyFunc::BvSignExtend(size) => write!(f, "app (_ sign_extend {size})"),
            ThyFunc::IntToBv32 => write!(f, "int_to_bv32"),
            ThyFunc::Bv32ToInt => write!(f, "bv32_to_int"),
            ThyFunc::IntToBv8 => write!(f, "int_to_bv8"),
            ThyFunc::Bv8ToInt => write!(f, "bv8_to_int"),
            ThyFunc::IntToBv64 => write!(f, "int_to_bv64"),
            ThyFunc::Bv64ToInt => write!(f, "bv64_to_int"),
            ThyFunc::BvUle => write!(f, "bvule"),
            ThyFunc::BvSle => write!(f, "bvsle"),
            ThyFunc::BvUge => write!(f, "bvuge"),
            ThyFunc::BvSge => write!(f, "bvsge"),
            ThyFunc::BvUdiv => write!(f, "bvudiv"),
            ThyFunc::BvSdiv => write!(f, "bvsdiv"),
            ThyFunc::BvUrem => write!(f, "bvurem"),
            ThyFunc::BvSrem => write!(f, "bvsrem"),
            ThyFunc::BvLshr => write!(f, "bvlshr"),
            ThyFunc::BvAshr => write!(f, "bvashr"),
            ThyFunc::BvAnd => write!(f, "bvand"),
            ThyFunc::BvOr => write!(f, "bvor"),
            ThyFunc::BvXor => write!(f, "bvxor"),
            ThyFunc::BvNot => write!(f, "bvnot"),
            ThyFunc::BvAdd => write!(f, "bvadd"),
            ThyFunc::BvNeg => write!(f, "bvneg"),
            ThyFunc::BvSub => write!(f, "bvsub"),
            ThyFunc::BvMul => write!(f, "bvmul"),
            ThyFunc::BvShl => write!(f, "bvshl"),
            ThyFunc::BvUgt => write!(f, "bvugt"),
            ThyFunc::BvSgt => write!(f, "bvsgt"),
            ThyFunc::BvUlt => write!(f, "bvult"),
            ThyFunc::BvSlt => write!(f, "bvslt"),
            ThyFunc::SetEmpty => write!(f, "Set_empty"),
            ThyFunc::SetSng => write!(f, "Set_sng"),
            ThyFunc::SetCup => write!(f, "Set_cup"),
            ThyFunc::SetCap => write!(f, "Set_cap"),
            ThyFunc::SetDif => write!(f, "Set_dif"),
            ThyFunc::SetMem => write!(f, "Set_mem"),
            ThyFunc::SetSub => write!(f, "Set_sub"),
            ThyFunc::MapDefault => write!(f, "Map_default"),
            ThyFunc::MapSelect => write!(f, "Map_select"),
            ThyFunc::MapStore => write!(f, "Map_store"),
        }
    }
}