machine-check-machine 0.7.1

Utility crate for the formal verification tool machine-check
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324

use std::collections::HashMap;

use syn::{
    punctuated::Punctuated, spanned::Spanned, Block, Expr, ExprAssign, ExprIf, ExprLit, ExprMacro,
    Lit, Pat, Stmt, Token,
};

use crate::{
    into_wir::{
        from_syn::{item_fn::FunctionScope, ty::fold_type},
        Error, ErrorType, Errors,
    },
    util::{create_expr_ident, path_matches_global_names},
    wir::{
        WBlock, WIdent, WIfCondition, WIndexedIdent, WMacroableStmt, WNoIfPolarity,
        WPanicMacroKind, WPartialGeneralType, WSpan, WSpanned, WStmtAssign, WStmtIf,
        WStmtPanicMacro, ZTac,
    },
};

impl super::FunctionFolder {
    pub fn fold_block(&mut self, block: Block) -> Result<(WBlock<ZTac>, Option<WIdent>), Errors> {
        // push a local scope
        let scope_id = self.next_scope_id;
        self.next_scope_id = self
            .next_scope_id
            .checked_add(1)
            .expect("Scope id should not overflow");
        self.scopes.push(FunctionScope {
            local_map: HashMap::new(),
        });

        let mut orig_stmts = block.stmts;

        let result_expr = if let Some(last_stmt) = orig_stmts.pop() {
            if let Stmt::Expr(last_expr, None) = last_stmt {
                if matches!(last_expr, Expr::Block(_) | Expr::If(_)) {
                    // blocks and if conditions do not support returns now
                    // so we can re-push it converted to statement
                    // this avoids needing to add a semicolon if it is the last in the block
                    let span = last_expr.span();
                    orig_stmts.push(Stmt::Expr(last_expr, Some(Token![;](span))));
                    None
                } else {
                    // is a result expression
                    Some(last_expr)
                }
            } else {
                // is not an expression, push back
                orig_stmts.push(last_stmt);
                None
            }
        } else {
            None
        };

        let mut stmts: Vec<WMacroableStmt<ZTac>> = Vec::new();
        let mut errors = Vec::new();

        for orig_stmt in orig_stmts {
            match self.fold_stmt(scope_id, orig_stmt, &mut stmts) {
                Ok(()) => {}
                Err(err) => errors.push(err),
            }
        }

        let mut pre_return_stmts = Vec::new();
        let return_ident =
            // has a return statement
            if let Some(result_expr) = result_expr {
                match self.force_right_expr_to_ident(result_expr, &mut pre_return_stmts) {
                    Ok(ident) => Some(ident),
                    Err(err) => {
                        errors.push(Errors::single(err));
                        // the None value will never propagate out of the function
                        None
                    },
                }
            } else {
                None
            };

        Errors::errors_vec_to_result(errors)?;

        stmts.extend(pre_return_stmts);

        // pop the local scope, it should exist
        assert!(self.scopes.pop().is_some());

        Ok((WBlock { stmts }, return_ident))
    }

    fn fold_stmt(
        &mut self,
        scope_id: u32,
        stmt: Stmt,
        result_stmts: &mut Vec<WMacroableStmt<ZTac>>,
    ) -> Result<(), Errors> {
        match stmt {
            Stmt::Local(local) => {
                let mut pat = local.pat.clone();
                let mut ty = WPartialGeneralType::Unknown;
                if let Pat::Type(pat_type) = pat {
                    ty = fold_type(*pat_type.ty, self.self_ty.as_ref())
                        .map(WPartialGeneralType::Normal)
                        .map_err(Errors::single)?;
                    pat = *pat_type.pat;
                }

                let Pat::Ident(left_pat_ident) = pat else {
                    return Err(Errors::single(Error::unsupported_syn_construct(
                        "Non-ident local pattern",
                        &pat,
                    )));
                };
                if left_pat_ident.by_ref.is_some() {
                    return Err(Errors::single(Error::unsupported_syn_construct(
                        "Pattern binding by reference",
                        &left_pat_ident.by_ref,
                    )));
                }
                // mutable patterns are supported
                if let Some((_at, subpat)) = &left_pat_ident.subpat {
                    return Err(Errors::single(Error::unsupported_syn_construct(
                        "Subpatterns",
                        &subpat,
                    )));
                }
                let local_syn_ident = left_pat_ident.ident;
                let local_ident = WIdent::from_syn_ident(local_syn_ident.clone());
                self.add_local_ident(scope_id, local_ident, ty);

                if let Some(init) = local.init {
                    if let Some((else_token, _else_block)) = init.diverge {
                        return Err(Errors::single(Error::unsupported_syn_construct(
                            "Diverging let",
                            &else_token,
                        )));
                    }
                    self.fold_stmt_expr(
                        Expr::Assign(ExprAssign {
                            attrs: vec![],
                            left: Box::new(create_expr_ident(local_syn_ident)),
                            eq_token: init.eq_token,
                            right: init.expr,
                        }),
                        result_stmts,
                    )?;
                }
            }
            Stmt::Expr(stmt_expr, _) => self.fold_stmt_expr(stmt_expr, result_stmts)?,
            Stmt::Item(_) => {
                return Err(Errors::single(Error::unsupported_syn_construct(
                    "Items inside function",
                    &stmt,
                )))
            }
            Stmt::Macro(_) => {
                return Err(Errors::single(Error::unsupported_syn_construct(
                    "Macro invocations in statement position",
                    &stmt,
                )))
            }
        };
        Ok(())
    }

    fn fold_stmt_expr(
        &mut self,
        expr: Expr,
        result_stmts: &mut Vec<WMacroableStmt<ZTac>>,
    ) -> Result<(), Errors> {
        match expr {
            syn::Expr::Assign(expr) => self.fold_assign(expr, result_stmts),
            syn::Expr::If(expr) => self.fold_if(expr, result_stmts),
            syn::Expr::Block(expr) => {
                // handle nested blocks
                let (mut block, result) = self.fold_block(expr.block)?;
                if let Some(result) = result {
                    return Err(Errors::single(Error::unsupported_construct(
                        "Block statements with result",
                        result.wir_span(),
                    )));
                };
                assert!(result.is_none());
                result_stmts.append(&mut block.stmts);
                Ok(())
            }
            syn::Expr::Macro(expr) => self.fold_macro(expr, result_stmts),
            _ => Err(Errors::single(Error::unsupported_syn_construct(
                "Expression kind",
                &expr,
            ))),
        }
    }

    fn fold_assign(
        &mut self,
        expr: ExprAssign,
        result_stmts: &mut Vec<WMacroableStmt<ZTac>>,
    ) -> Result<(), Errors> {
        let left = match *expr.left {
            Expr::Index(expr_index) => {
                let base_ident = self.fold_expr_as_ident(*expr_index.expr)?;
                let index_ident =
                    self.force_right_expr_to_ident(*expr_index.index, result_stmts)?;
                WIndexedIdent::Indexed(base_ident, index_ident)
            }
            Expr::Path(expr_path) => {
                let left_ident = self.fold_expr_as_ident(Expr::Path(expr_path))?;

                WIndexedIdent::NonIndexed(left_ident.clone())
            }
            _ => {
                return Err(Errors::single(Error::unsupported_syn_construct(
                    "Left expression that is not an identifier nor index",
                    &expr,
                )))
            }
        };

        let right = self.fold_right_expr(*expr.right, result_stmts)?;
        result_stmts.push(WMacroableStmt::Assign(WStmtAssign { left, right }));
        Ok(())
    }

    fn fold_if(
        &mut self,
        expr: ExprIf,
        result_stmts: &mut Vec<WMacroableStmt<ZTac>>,
    ) -> Result<(), Errors> {
        let condition = self.force_right_expr_to_ident(*expr.cond, result_stmts)?;

        let then_block = self.fold_block(expr.then_branch)?.0;

        let mut else_stmts = Vec::new();
        if let Some((_else_token, else_branch)) = expr.else_branch {
            self.fold_stmt_expr(*else_branch, &mut else_stmts)?;
        }
        let else_block = WBlock { stmts: else_stmts };

        result_stmts.push(WMacroableStmt::If(WStmtIf {
            condition: WIfCondition {
                polarity: WNoIfPolarity,
                ident: condition,
            },
            then_block,
            else_block,
        }));
        Ok(())
    }

    fn fold_macro(
        &mut self,
        expr: ExprMacro,
        result_stmts: &mut Vec<WMacroableStmt<ZTac>>,
    ) -> Result<(), Errors> {
        let mac = expr.mac;
        let kind = if path_matches_global_names(&mac.path, &["std", "panic"]) {
            WPanicMacroKind::Panic
        } else if path_matches_global_names(&mac.path, &["std", "unimplemented"]) {
            WPanicMacroKind::Unimplemented
        } else if path_matches_global_names(&mac.path, &["std", "todo"]) {
            WPanicMacroKind::Todo
        } else {
            return Err(Errors::single(Error::unsupported_syn_construct(
                "This macro",
                &mac.path,
            )));
        };
        let args = match mac.parse_body_with(Punctuated::<Expr, Token![,]>::parse_terminated) {
            Ok(args) => args,
            Err(err) => {
                return Err(Errors::single(Error::new(
                    ErrorType::MacroParseError(err),
                    WSpan::from_syn(&mac),
                )))
            }
        };

        if args.len() > 1 {
            return Err(Errors::single(Error::unsupported_construct(
                "Panic-like macro with more than one argument",
                WSpan::from_syn(&mac.path),
            )));
        }

        let msg = if let Some(first_arg) = args.into_iter().next() {
            let Expr::Lit(ExprLit {
                lit: Lit::Str(lit_str),
                ..
            }) = first_arg
            else {
                return Err(Errors::single(Error::new(
                    ErrorType::MacroError(String::from(
                        "The first argument must be a string literal",
                    )),
                    WSpan::from_syn(&first_arg),
                )));
            };

            let value = lit_str.value();

            match kind {
                crate::wir::WPanicMacroKind::Panic => value,
                crate::wir::WPanicMacroKind::Unimplemented => {
                    format!("not implemented: {}", value)
                }
                crate::wir::WPanicMacroKind::Todo => {
                    format!("not yet implemented: {}", value)
                }
            }
        } else {
            String::from(match kind {
                crate::wir::WPanicMacroKind::Panic => "explicit panic",
                crate::wir::WPanicMacroKind::Unimplemented => "not implemented",
                crate::wir::WPanicMacroKind::Todo => "not yet implemented",
            })
        };

        result_stmts.push(WMacroableStmt::PanicMacro(WStmtPanicMacro { kind, msg }));
        Ok(())
    }
}