traceforge 0.2.1

TraceForge is a model checker for concurrent and distributed programs written in Rust
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107

//! This module contains the logic for printing and persisting enough failure information when a
//! test panics to allow the failure to be replayed.
//!
//! The core idea is that we install a custom panic hook (`init_panic_hook`) that runs when a thread
//! panics. That hook tries to print information about the failing schedule by calling
//! `persist_failure`.
//!
//! The complexity in this logic comes from a few requirements beyond the simple panic hook:
//! 1. If a panic occurs within `ExecutionState`, the panic hook might not be able to access the
//!    execution state to retrieve the failing schedule, so we need to be careful about accessing it
//!    and try to recover from this problem when the panic is later caught in
//!    `ExecutionState::step`. We try wherever possible to avoid panicing in this state, but if it
//!    does happen we want to get useful output and not crash.
//! 2. In addition to simply printing the failing schedule, we want to include it in the panic
//!    payload wherever possible, so that we can parse it back out in tests (essentially we are
//!    reinventing try/catch, which is usually an anti-pattern in Rust, but here we don't have
//!    control over the user code that panics). That means sometimes we end up calling
//!    `persist_schedule` twice -- once in the panic hook (where we can't modify the panic payload)
//!    and again when we catch the panic (where we can modify the payload). We don't want to print
//!    the schedule twice, so we keep track of whether the info has already been printed.

use std::panic;
use std::sync::{Mutex, Once};

use log::error;

use crate::event::Event;
use crate::must::Must;
use crate::runtime::execution::ExecutionState;

pub(crate) fn persist_task_failure(message: String, pos: Option<Event>) -> String {
    // Disarm the panic hook so that we don't print the failure twice
    if let PanicHookState::Persisted(persisted_message) =
        PANIC_HOOK.with(|lock| lock.lock().unwrap().clone())
    {
        return persisted_message;
    }
    if let Some(must) = Must::current() {
        if let Ok(mut must) = must.try_borrow_mut() {
            must.store_replay_information(pos);
        } else {
            error!("Couldn't generate a counterexample because Must::current is borrowed");
        }
    } else {
        error!("Couldn't generate a counterexample because Must::current returned None");
    }

    let persisted_message = message;
    PANIC_HOOK
        .with(|lock| *lock.lock().unwrap() = PanicHookState::Persisted(persisted_message.clone()));
    println!("{}", persisted_message);
    persisted_message
}

#[derive(Clone)]
enum PanicHookState {
    Disarmed,
    Armed,
    Persisted(String),
}

thread_local! {
    static PANIC_HOOK: Mutex<PanicHookState> = const { Mutex::new(PanicHookState::Disarmed) };
}

/// A guard that disarms the panic hook when dropped
#[derive(Debug)]
#[non_exhaustive]
pub struct PanicHookGuard;

impl Drop for PanicHookGuard {
    fn drop(&mut self) {
        if std::thread::panicking() { return; }
        PANIC_HOOK.with(|lock| *lock.lock().unwrap() = PanicHookState::Disarmed);
    }
}

/// Set up a panic hook that will try to print the current schedule to stderr so that the failure
/// can be replayed. Returns a guard that will disarm the panic hook when dropped.
///
/// See the module documentation for more details on how this method fits into the failure reporting
/// story.
#[must_use = "the panic hook will be disarmed when the returned guard is dropped"]
pub(crate) fn init_panic_hook() -> PanicHookGuard {
    static INIT: Once = Once::new();
    INIT.call_once(|| {
        let original_hook = panic::take_hook();
        panic::set_hook(Box::new(move |panic_info| {
            let state = PANIC_HOOK.with(|lock| {
                std::mem::replace(&mut *lock.lock().unwrap(), PanicHookState::Disarmed)
            });
            // The hook is armed if this is the first time it's fired
            if let PanicHookState::Armed = state {
                if let Some((name, pos)) = ExecutionState::failure_info() {
                    persist_task_failure(name, Some(pos));
                } else {
                    persist_task_failure("A panic was detected".to_string(), None);
                }
            }
            original_hook(panic_info);
        }));
    });

    PANIC_HOOK.with(|lock| *lock.lock().unwrap() = PanicHookState::Armed);

    PanicHookGuard
}