bashrs 6.66.0

Rust-to-Shell transpiler for deterministic bootstrap scripts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331

impl ProofInspector {
    /// Generate a comprehensive verification report
    pub fn inspect(ast: &TinyAst, initial_state: AbstractState) -> VerificationReport {
        // Generate emitted code
        let emitted_code = FormalEmitter::emit(ast);

        // Create execution traces
        let rash_trace = Self::trace_rash_execution(ast, initial_state.clone());
        let posix_trace = Self::trace_posix_execution(&emitted_code, initial_state.clone());

        // Generate annotated AST
        let annotated_ast = Self::annotate_ast(ast, initial_state.clone());

        // Analyze equivalence
        let equivalence_analysis =
            Self::analyze_equivalence(&rash_trace.final_state, &posix_trace.final_state);

        // Generate emitter justifications
        let emitter_justifications = Self::generate_emitter_justifications(ast);

        // Determine verification result
        let verification_result = if equivalence_analysis.are_equivalent {
            VerificationResult::Success { confidence: 1.0 }
        } else {
            VerificationResult::Failure {
                reasons: vec!["States are not equivalent".to_string()],
            }
        };

        VerificationReport {
            ast: ast.clone(),
            emitted_code,
            initial_state,
            annotated_ast,
            rash_trace,
            posix_trace,
            equivalence_analysis,
            emitter_justifications,
            verification_result,
        }
    }

    /// Create an annotated AST with semantic information
    fn annotate_ast(ast: &TinyAst, initial_state: AbstractState) -> AnnotatedAst {
        let postcondition = match rash_semantics::eval_rash(ast, initial_state.clone()) {
            Ok(state) => state,
            Err(_) => initial_state.clone(),
        };

        let transformation = Self::compute_transformation(&initial_state, &postcondition);

        let children = match ast {
            TinyAst::Sequence { commands } => {
                let mut current_state = initial_state.clone();
                let mut annotations = Vec::new();

                for cmd in commands {
                    let annotation = Self::annotate_ast(cmd, current_state.clone());
                    current_state = annotation.postcondition.clone();
                    annotations.push(annotation);
                }

                annotations
            }
            _ => Vec::new(),
        };

        AnnotatedAst {
            node: ast.clone(),
            precondition: initial_state,
            postcondition,
            transformation,
            children,
        }
    }

    /// Compute state transformation description
    fn compute_transformation(
        before: &AbstractState,
        after: &AbstractState,
    ) -> StateTransformation {
        let mut env_changes = HashMap::new();

        // Check for environment changes
        for (key, value) in &after.env {
            match before.env.get(key) {
                Some(old_value) if old_value != value => {
                    env_changes.insert(
                        key.clone(),
                        EnvChange::Modified {
                            old_value: old_value.clone(),
                            new_value: value.clone(),
                        },
                    );
                }
                None => {
                    env_changes.insert(
                        key.clone(),
                        EnvChange::Added {
                            value: value.clone(),
                        },
                    );
                }
                _ => {} // No change
            }
        }

        // Check for removed environment variables
        for (key, value) in &before.env {
            if !after.env.contains_key(key) {
                env_changes.insert(
                    key.clone(),
                    EnvChange::Removed {
                        old_value: value.clone(),
                    },
                );
            }
        }

        // Check for working directory change
        let cwd_change = if before.cwd != after.cwd {
            Some(CwdChange {
                from: before.cwd.to_string_lossy().to_string(),
                to: after.cwd.to_string_lossy().to_string(),
            })
        } else {
            None
        };

        // Check for filesystem changes
        let mut fs_changes = Vec::new();
        for (path, entry) in &after.filesystem {
            if !before.filesystem.contains_key(path) {
                match entry {
                    crate::formal::FileSystemEntry::Directory => {
                        fs_changes.push(FilesystemChange::DirectoryCreated {
                            path: path.to_string_lossy().to_string(),
                        });
                    }
                    crate::formal::FileSystemEntry::File(content) => {
                        fs_changes.push(FilesystemChange::FileCreated {
                            path: path.to_string_lossy().to_string(),
                            content: content.clone(),
                        });
                    }
                }
            }
        }

        // Compute output differences
        let output_produced = after
            .stdout
            .iter()
            .skip(before.stdout.len())
            .cloned()
            .collect();

        let errors_produced = after
            .stderr
            .iter()
            .skip(before.stderr.len())
            .cloned()
            .collect();

        let exit_code_change = if before.exit_code != after.exit_code {
            Some(after.exit_code)
        } else {
            None
        };

        StateTransformation {
            env_changes,
            cwd_change,
            fs_changes,
            output_produced,
            errors_produced,
            exit_code_change,
        }
    }

    /// Trace rash execution step by step
    fn trace_rash_execution(ast: &TinyAst, initial_state: AbstractState) -> ExecutionTrace {
        let mut steps = Vec::new();
        let mut current_state = initial_state.clone();
        let mut step_number = 1;

        Self::trace_rash_recursive(ast, &mut current_state, &mut steps, &mut step_number);

        ExecutionTrace {
            initial_state,
            steps,
            final_state: current_state,
        }
    }

    /// Recursive helper for tracing rash execution
    fn trace_rash_recursive(
        ast: &TinyAst,
        current_state: &mut AbstractState,
        steps: &mut Vec<ExecutionStep>,
        step_number: &mut usize,
    ) {
        let state_before = current_state.clone();

        match ast {
            TinyAst::ExecuteCommand { command_name, args } => {
                let operation = format!("Execute command: {} {}", command_name, args.join(" "));
                let mut errors = Vec::new();

                if let Err(e) = rash_semantics::eval_command(current_state, command_name, args) {
                    errors.push(e);
                }

                steps.push(ExecutionStep {
                    step_number: *step_number,
                    operation,
                    state_before,
                    state_after: current_state.clone(),
                    errors,
                });
                *step_number += 1;
            }

            TinyAst::SetEnvironmentVariable { name, value } => {
                let operation = format!("Set environment variable: {name}={value}");
                current_state.set_env(name.clone(), value.clone());

                steps.push(ExecutionStep {
                    step_number: *step_number,
                    operation,
                    state_before,
                    state_after: current_state.clone(),
                    errors: Vec::new(),
                });
                *step_number += 1;
            }

            TinyAst::ChangeDirectory { path } => {
                let operation = format!("Change directory to: {path}");
                let mut errors = Vec::new();

                if let Err(e) = current_state.change_directory(std::path::PathBuf::from(path)) {
                    errors.push(e);
                }

                steps.push(ExecutionStep {
                    step_number: *step_number,
                    operation,
                    state_before,
                    state_after: current_state.clone(),
                    errors,
                });
                *step_number += 1;
            }

            TinyAst::Sequence { commands } => {
                for cmd in commands {
                    Self::trace_rash_recursive(cmd, current_state, steps, step_number);
                }
            }
        }
    }

    /// Trace POSIX execution step by step
    fn trace_posix_execution(code: &str, initial_state: AbstractState) -> ExecutionTrace {
        let mut steps = Vec::new();
        let mut current_state = initial_state.clone();

        // For simplicity, we'll treat the entire POSIX code as one step
        // In a more sophisticated implementation, we could parse and trace each command
        let state_before = current_state.clone();
        let mut errors = Vec::new();

        if let Err(e) = posix_semantics::eval_posix(code, current_state.clone()) {
            errors.push(e);
        } else if let Ok(final_state) = posix_semantics::eval_posix(code, current_state.clone()) {
            current_state = final_state;
        }

        steps.push(ExecutionStep {
            step_number: 1,
            operation: format!("Execute POSIX code: {code}"),
            state_before,
            state_after: current_state.clone(),
            errors,
        });

        ExecutionTrace {
            initial_state,
            steps,
            final_state: current_state,
        }
    }

    /// Analyze equivalence between two states
    fn analyze_equivalence(
        rash_state: &AbstractState,
        posix_state: &AbstractState,
    ) -> EquivalenceAnalysis {
        let env_comparison = Self::compare_environments(&rash_state.env, &posix_state.env);
        let cwd_comparison = Self::compare_cwd(&rash_state.cwd, &posix_state.cwd);
        let fs_comparison =
            Self::compare_filesystems(&rash_state.filesystem, &posix_state.filesystem);
        let output_comparison = Self::compare_output(
            &rash_state.stdout,
            &rash_state.stderr,
            &posix_state.stdout,
            &posix_state.stderr,
        );
        let exit_code_comparison =
            Self::compare_exit_codes(rash_state.exit_code, posix_state.exit_code);

        let are_equivalent = env_comparison.matches
            && cwd_comparison.matches
            && fs_comparison.matches
            && output_comparison.stdout_matches
            && output_comparison.stderr_matches
            && exit_code_comparison.matches;

        EquivalenceAnalysis {
            are_equivalent,
            env_comparison,
            cwd_comparison,
            fs_comparison,
            output_comparison,
            exit_code_comparison,
        }
    }
}

include!("inspector_proofinspector_compare_environ.rs");