elenchus-solver 0.6.0

Forward-pass inference interpreter for elenchus: 3-valued Kleene evaluation of the Impossible/CNF clause IR into CONFLICT / WARNING / CONSISTENT results.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174

//! Hard, riddle-style scenarios. These exercise the SAT backward pass: a
//! constraint web where most atoms are UNKNOWN and the verdict only emerges from
//! case analysis the forward pass cannot do on its own.

use elenchus_solver::{Status, verify_source};

/// A 3×3 assignment puzzle: each of alice/bob/carol gets exactly one of
/// lead/dev/qa, and each role goes to exactly one person — a permutation.
/// Six ONEOF premises (~24 clauses), nine atoms, none asserted by default.
const ROLES: &str = "\
PREMISE alice_role:
    ONEOF
        alice is lead
        alice is dev
        alice is qa
PREMISE bob_role:
    ONEOF
        bob is lead
        bob is dev
        bob is qa
PREMISE carol_role:
    ONEOF
        carol is lead
        carol is dev
        carol is qa
PREMISE lead_one:
    ONEOF
        alice is lead
        bob is lead
        carol is lead
PREMISE dev_one:
    ONEOF
        alice is dev
        bob is dev
        carol is dev
PREMISE qa_one:
    ONEOF
        alice is qa
        bob is qa
        carol is qa
";

fn puzzle(givens_and_check: &str) -> Status {
    let mut src = String::from(ROLES);
    src.push_str(givens_and_check);
    verify_source("roles.vrf", &src).unwrap().status
}

#[test]
fn well_posed_puzzle_has_a_unique_solution() {
    // alice = lead, and bob is not qa.  Deductions: lead_one ⇒ bob,carol ≠ lead;
    // bob ≠ qa ⇒ bob = dev; then carol = qa. Exactly one full model → CONSISTENT.
    let s = puzzle(
        r#"
        FACT alice is lead
        NOT bob is qa
        CHECK alice BIDIRECTIONAL
        "#,
    );
    assert_eq!(s, Status::Consistent);
}

#[test]
fn under_clued_puzzle_is_underdetermined() {
    // Drop the "bob is not qa" clue: bob/carol may swap dev↔qa → two models.
    let s = puzzle(
        r#"
        FACT alice is lead
        CHECK alice BIDIRECTIONAL
        "#,
    );
    assert_eq!(s, Status::Underdetermined);
}

#[test]
fn over_clued_puzzle_is_conflict() {
    // Two people as lead violates lead_one (at most one) — the forward pass
    // already catches it (a pairwise EXCLUSIVE clause goes all-TRUE).
    let s = puzzle(
        r#"
        FACT alice is lead
        FACT bob is lead
        CHECK alice
        "#,
    );
    assert_eq!(s, Status::Conflict);
}

#[test]
fn no_givens_is_underdetermined() {
    // A bare permutation has 3! = 6 solutions.
    let s = puzzle(
        r#"
        CHECK alice BIDIRECTIONAL
        "#,
    );
    assert_eq!(s, Status::Underdetermined);
}

/// A ~20-condition deployment gate: a long implication chain where the first
/// links fire but the rest are blocked on UNKNOWN data — a forward WARNING web.
const DEPLOY: &str = "\
FACT svc built
FACT svc unit_tested
NOT  svc deprecated

PREMISE build_implies_artifact:
    WHEN svc built
    THEN svc has_artifact

PREMISE tested_chain:
    WHEN svc unit_tested
    THEN svc integration_tested

PREMISE ready_needs_all:
    WHEN svc has_artifact
    AND  svc integration_tested
    AND  svc security_scanned
    THEN svc release_ready

PREMISE deploy_needs_ready:
    WHEN svc release_ready
    AND  NOT svc deprecated
    THEN svc can_deploy

PREMISE exclusive_env:
    EXCLUSIVE
        svc env staging
        svc env prod

RULE artifact_rule:
    WHEN svc built
    THEN svc has_artifact
";

#[test]
fn deploy_chain_is_warning_when_data_is_missing() {
    // built + unit_tested are known, so the first implications are live, but
    // security_scanned (and onwards) is UNKNOWN → the chain is blocked → WARNING.
    let r = verify_source("deploy.vrf", &format!("{DEPLOY}CHECK svc\n")).unwrap();
    assert_eq!(r.status, Status::Warning);
    assert!(r.conflicts.is_empty());
    assert!(!r.warnings.is_empty());
    // the RULE fires on `built`, deriving the artifact.
    assert!(r.derived.iter().any(|d| d.atom == "svc has_artifact"));
}

#[test]
fn deploy_chain_completed_is_consistent() {
    // Supply the missing facts; every implication is satisfied → CONSISTENT.
    let extra = r#"
        FACT svc has_artifact
        FACT svc integration_tested
        FACT svc security_scanned
        FACT svc release_ready
        FACT svc can_deploy
        CHECK svc
        "#;
    let r = verify_source("deploy.vrf", &format!("{DEPLOY}{extra}")).unwrap();
    assert_eq!(r.status, Status::Consistent);
}

#[test]
fn deploy_chain_violation_is_conflict() {
    // release_ready holds and not deprecated, but can_deploy is denied →
    // deploy_needs_ready is violated.
    let extra = r#"
        FACT svc release_ready
        NOT svc can_deploy
        CHECK svc
        "#;
    let r = verify_source("deploy.vrf", &format!("{DEPLOY}{extra}")).unwrap();
    assert_eq!(r.status, Status::Conflict);
}