machine-check-gui 0.7.1

Utility crate for the formal verification tool machine-check
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358

use std::{
    ops::ControlFlow,
    sync::{
        mpsc::{sync_channel, Receiver, SyncSender, TrySendError},
        Arc, RwLock,
    },
    time::Instant,
};

use log::info;

use crate::{
    backend::{workspace::Workspace, BackendSettings, BackendStats, FullMachine},
    shared::{
        snapshot::log::{MessageType, StepMessage, StepStatus},
        BackendInfo, BackendStatus, Request, Response, StepSettings,
    },
};

use super::extract_space_info;

/// A command for the worker to work.
struct WorkCommand {
    /// The work request.
    request: Request,
    /// A communication channel to send the response after the work is done.
    send_to_server: SyncSender<Response>,
}

/// A backend worker.
///
/// This is a structure for a separate thread that owns the workspace
/// for verification and performs tasks on it. It is commanded by the
/// main backend thread.
struct BackendWorker<M: FullMachine, D> {
    /// Verification workspace.
    workspace: Workspace<M, D>,
    /// Simple stats that are updated during the work, providing responsiveness
    /// to the frontend about the current situation.
    stats: Arc<RwLock<BackendStats>>,
    /// Backend settings.
    settings: BackendSettings,
    /// A communication channel for receiving work commands from the main backend thread.
    recv_from_server: Receiver<WorkCommand>,
}

impl<M: FullMachine, D> BackendWorker<M, D> {
    fn new(
        workspace: Workspace<M, D>,
        stats: Arc<RwLock<BackendStats>>,
        settings: BackendSettings,
        recv_from_server: Receiver<WorkCommand>,
    ) -> Self {
        Self {
            workspace,
            stats,
            settings,
            recv_from_server,
        }
    }

    fn run(mut self) {
        loop {
            let worker_request = match self.recv_from_server.recv() {
                Ok(ok) => ok,
                Err(_) => {
                    // all senders have disconnected
                    // end gracefully
                    break;
                }
            };

            // process the request
            self.process_request(worker_request);
        }
    }

    fn process_request(&mut self, work_command: WorkCommand) {
        enum AsynchronousRequest {
            Step(StepSettings),
        }

        // Perform synchronous processing first before sending the response.
        let asynchronous_request = match work_command.request {
            Request::InitialContent => None,
            Request::GetContent => None,
            Request::Query => {
                // do not waste time making a snapshot, just return the current stats
                let stats = self
                    .stats
                    .read()
                    .expect("Backend stats should not be poisoned");
                let backend_info = backend_info(false, &stats);
                let response = Response {
                    info: backend_info,
                    snapshot: None,
                };
                // ignore the error that occurs if the receiver does not exist anymore
                let _ = work_command.send_to_server.send(response);
                return;
            }
            Request::Cancel => {
                // there is nothing to cancel
                None
            }
            Request::Reset => {
                self.workspace.framework.reset();
                self.workspace.log.add_message(MessageType::Reset);
                None
            }
            Request::Step(step_settings) => Some(AsynchronousRequest::Step(step_settings)),
            Request::AddProperty(property) => {
                match machine_check_machine::process_property::<M, _>(
                    self.workspace.framework.machine(),
                    &property,
                    self.workspace.property_macros(),
                ) {
                    Ok(property) => {
                        self.workspace.properties.push(property);
                    }
                    Err(err) => {
                        self.workspace.log.error(err.to_string());
                    }
                };

                None
            }
            Request::RemoveProperty(root_property_index) => {
                self.workspace.properties.remove(root_property_index.0);
                None
            }
        };

        // Update the stats and send the response after synchronous processing.
        {
            let mut stats = self
                .stats
                .write()
                .expect("Backend stats should not be poisoned");
            // clear the cancellation flag before asynchronous processing
            stats.should_cancel = false;

            stats.space_info = extract_space_info(&mut self.workspace.framework);
            let worker_busy = asynchronous_request.is_some();
            let backend_info = backend_info(worker_busy, &stats);

            let response = Response {
                info: backend_info,
                snapshot: Some(self.workspace.generate_snapshot(&self.settings)),
            };

            // ignore the error that occurs if the receiver does not exist anymore
            let _ = work_command.send_to_server.send(response);
            // release the stats lock so the stats can be read by server threads
        }

        // Perform asynchronous processing.
        match asynchronous_request {
            Some(AsynchronousRequest::Step(step_settings)) => self.backend_step(step_settings),
            None => {}
        }
    }

    fn backend_step(&mut self, step_settings: StepSettings) {
        info!("Starting stepping.");

        // multi-step with possible cancellation between steps
        let start_instant = Instant::now();

        let mut num_refinements = 0;
        let mut cancelled = false;
        loop {
            // if the maximum number of refinements is given, stop stepping when it is reached
            if let Some(max_refinements) = step_settings.max_refinements {
                if num_refinements >= max_refinements {
                    break;
                }
            }

            // update the space info
            // if cancellation was requested, stop stepping
            if self.update_stats_check_cancel() {
                info!("Cancelling stepping.");
                cancelled = true;
                break;
            }

            // stop stepping when we are done
            if let ControlFlow::Break(_) = self
                .workspace
                .framework
                .step_verification(&step_settings.selected_property)
            {
                break;
            }

            num_refinements += 1;
        }

        // no longer stepping, compact the state space
        self.workspace.framework.make_compact();

        let duration = start_instant.elapsed();

        self.workspace
            .log
            .add_message(MessageType::Step(StepMessage {
                status: if cancelled {
                    StepStatus::Cancelled
                } else {
                    StepStatus::Completed
                },
                num_refinements,
                duration,
            }));
        // we performed the work, update the stats
        self.update_stats_check_cancel();
        info!("Stepping done.");
    }

    fn update_stats_check_cancel(&mut self) -> bool {
        let mut stats_guard = self
            .stats
            .write()
            .expect("Backend stats should not be poisoned");
        stats_guard.space_info = extract_space_info(&mut self.workspace.framework);
        stats_guard.should_cancel
    }
}

/// A backend synchronisation structure.
///
/// It allows tasking the worker by a command channel
/// and looking up the current basic situation.
pub struct BackendSync {
    /// Simple stats that are updated during the work, providing responsiveness
    /// to the frontend about the current situation.
    stats: Arc<RwLock<BackendStats>>,
    /// A channel to task the worker on.
    send_to_worker: SyncSender<WorkCommand>,
}

impl BackendSync {
    pub fn new<M: FullMachine, D: Send + 'static>(
        workspace: Workspace<M, D>,
        stats: BackendStats,
        settings: BackendSettings,
    ) -> BackendSync {
        let stats = Arc::new(RwLock::new(stats));

        // The server threads each try to send to the worker thread, which executes the requests sequentially.
        // Therefore, the bound 0 is used to make this a rendezvous channel.
        let (send_to_worker, recv_from_server) = sync_channel(0);

        // Spawn and detach the backend thread.
        let worker_stats = Arc::clone(&stats);

        std::thread::Builder::new()
            .name(String::from("backend worker"))
            .spawn(|| BackendWorker::new(workspace, worker_stats, settings, recv_from_server).run())
            .expect("Worker thread should be spawned");
        BackendSync {
            stats,
            send_to_worker,
        }
    }

    pub fn command(&self, request: Request) -> Response {
        // execute the worker
        let is_cancel = matches!(request, Request::Cancel);

        match self.try_execute_worker(request) {
            Ok(ok) => ok,
            Err(_) => {
                // the worker is currently busy
                let info = if is_cancel {
                    // try to cancel the computation
                    let mut stats = self.lock_stats_write();
                    stats.should_cancel = true;
                    backend_info(true, &stats)
                } else {
                    // just read the stats and construct the response
                    let stats = self.lock_stats_read();
                    backend_info(true, &stats)
                };
                Response {
                    info,
                    snapshot: None,
                }
            }
        }
    }

    fn try_execute_worker(&self, request: Request) -> Result<Response, ()> {
        // The worker thread sends an one-shot message to the originator server thread, do not block the worker.
        // As Rust does not provide a one-shot channel in std, just use a synchronous channel with bound 1.
        let (send_to_server, recv_from_worker) = sync_channel(1);

        let is_initial_content_request = matches!(request, Request::InitialContent);

        let worker_request = WorkCommand {
            request,
            send_to_server,
        };

        // The initial content request must have a snapshot inside its response. Ensure it does by blocking.
        if is_initial_content_request {
            if self.send_to_worker.send(worker_request).is_err() {
                panic!("Backend worker should not disconnect (service sending)");
            }
        } else {
            match self.send_to_worker.try_send(worker_request) {
                Ok(_) => {}
                Err(TrySendError::Full(_)) => {
                    // the worker is busy
                    return Err(());
                }
                Err(TrySendError::Disconnected(_)) => {
                    panic!("Backend worker should not disconnect (service sending)");
                }
            };
        }

        let response = recv_from_worker
            .recv()
            .expect("Backend worker should not disconnect (service receiving)");

        Ok(response)
    }

    fn lock_stats_read(&self) -> std::sync::RwLockReadGuard<'_, BackendStats> {
        self.stats
            .read()
            .expect("Backend stats should not be poisoned")
    }

    fn lock_stats_write(&self) -> std::sync::RwLockWriteGuard<'_, BackendStats> {
        self.stats
            .write()
            .expect("Backend stats should not be poisoned")
    }
}

fn backend_info(worker_busy: bool, stats: &BackendStats) -> BackendInfo {
    let status = if worker_busy {
        if stats.should_cancel {
            BackendStatus::Cancelling
        } else {
            BackendStatus::Running
        }
    } else {
        BackendStatus::Waiting
    };
    BackendInfo {
        status,
        space_info: stats.space_info.clone(),
    }
}