Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

New bitvector interface with hidden type-level length #41

Merged
merged 16 commits into from Feb 3, 2023
Merged

New bitvector interface with hidden type-level length #41

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
5161e09
:recycle: drop Sym type and make SymBool/SymInteger/etc. no longer sy…
lsrcz Jan 30, 2023
e7832fc
:sparkles: implement Some(IntN/WordN) and their symbolic versions
lsrcz Jan 30, 2023
647339d
:art: fix ormolu and hlint errors
lsrcz Jan 31, 2023
f47c1b2
:bug: fix typing errors on 8.10.7
lsrcz Jan 31, 2023
a7c366d
:bug: fix selectSignedBV constraints
lsrcz Jan 31, 2023
8472493
:bug: add TypeOperators extensions to files with type equality
lsrcz Feb 1, 2023
f581702
:bug: fix missing Function instance for (-->)
lsrcz Feb 1, 2023
f5ef321
:art: fix ormolu format bug
lsrcz Feb 1, 2023
ad4725f
:memo: update bit vector documentation
lsrcz Feb 1, 2023
cbef1c0
:art: fix ormolu error
lsrcz Feb 1, 2023
635f779
:recycle: rename BV API
lsrcz Feb 1, 2023
27ed9b4
:sparkles: utilities for type-level natural numbers
lsrcz Feb 2, 2023
97a8454
:memo: update Haddock documentation
lsrcz Feb 2, 2023
e0c38ce
:sparkles: rework the LinkedRep class, make =~> and -~> use symbolic …
lsrcz Feb 2, 2023
5bac14a
:memo: update function type documentations
lsrcz Feb 3, 2023
a301c96
:art: fix ormolu error
lsrcz Feb 3, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
37 changes: 36 additions & 1 deletion LICENSE
View file
Open in desktop
Expand Up @@ -27,4 +27,39 @@ LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

-------------------------------------------------------------------------------

This repository contains code from the parameterized-utils package:

Copyright (c) 2013-2022 Galois Inc.
All rights reserved.

Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions
are met:

* Redistributions of source code must retain the above copyright
notice, this list of conditions and the following disclaimer.

* Redistributions in binary form must reproduce the above copyright
notice, this list of conditions and the following disclaimer in
the documentation and/or other materials provided with the
distribution.

* Neither the name of Galois, Inc. nor the names of its contributors
may be used to endorse or promote products derived from this
software without specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER
OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
2 changes: 2 additions & 0 deletions grisette.cabal
View file
Open in desktop
Expand Up @@ -109,6 +109,8 @@ library
Grisette.Lib.Data.List
Grisette.Lib.Data.Traversable
Grisette.Lib.Mtl
Grisette.Utils
Grisette.Utils.Parameterized
other-modules:
Paths_grisette
hs-source-dirs:
Expand Down
4 changes: 4 additions & 0 deletions src/Grisette.hs
View file
Open in desktop
Expand Up @@ -19,6 +19,9 @@ module Grisette

-- * Solver backend
module Grisette.Backend.SBV,

-- * Utils
module Grisette.Utils,
)
where

Expand All @@ -27,3 +30,4 @@ import Grisette.Core
import Grisette.IR.SymPrim
import Grisette.Lib.Base
import Grisette.Lib.Mtl
import Grisette.Utils
88 changes: 22 additions & 66 deletions src/Grisette/Backend/SBV/Data/SMT/Lowering.hs
View file
Open in desktop
Expand Up @@ -56,31 +56,10 @@ import Grisette.IR.SymPrim.Data.Prim.InternedTerm.TermUtils
import Grisette.IR.SymPrim.Data.Prim.Model as PM
import Grisette.IR.SymPrim.Data.Prim.PartialEval.Bool
import Grisette.IR.SymPrim.Data.TabularFun
import Grisette.Utils.Parameterized
import qualified Type.Reflection as R
import Unsafe.Coerce

newtype NatRepr (n :: Nat) = NatRepr Natural

withKnownNat :: forall n r. NatRepr n -> (KnownNat n => r) -> r
withKnownNat (NatRepr nVal) v =
case someNatVal nVal of
SomeNat (Proxy :: Proxy n') ->
case unsafeAxiom :: n :~: n' of
Refl -> v

data LeqProof (m :: Nat) (n :: Nat) where
LeqProof :: m <= n => LeqProof m n

-- | Assert a proof of equality between two types.
-- This is unsafe if used improperly, so use this with caution!
unsafeAxiom :: forall a b. a :~: b
unsafeAxiom = unsafeCoerce (Refl @a)
{-# NOINLINE unsafeAxiom #-} -- Note [Mark unsafe axioms as NOINLINE]

unsafeLeqProof :: forall m n. LeqProof m n
unsafeLeqProof = unsafeCoerce (LeqProof @0 @0)
{-# NOINLINE unsafeLeqProof #-} -- Note [Mark unsafe axioms as NOINLINE]

cachedResult ::
forall integerBitWidth a.
(SupportedPrim a, Typeable (TermTy integerBitWidth a)) =>
Expand Down Expand Up @@ -276,38 +255,32 @@ lowerSinglePrimImpl' config t@(BVConcatTerm _ (bv1 :: Term x) (bv2 :: Term y)) =
lowerSinglePrimImpl' config t@(BVSelectTerm _ (ix :: R.TypeRep ix) w (bv :: Term x)) =
case (R.typeRep @a, R.typeRep @x) of
(UnsignedBVType (_ :: Proxy na), UnsignedBVType (_ :: Proxy xn)) ->
withKnownNat n1 $
withKnownProof (unsafeKnownProof @(na + ix - 1) (natVal (Proxy @na) + natVal (Proxy @ix) - 1)) $
case ( unsafeAxiom @(na + ix - 1 - ix + 1) @na,
unsafeLeqProof @(na + ix - 1 + 1) @xn,
unsafeLeqProof @ix @(na + ix - 1)
) of
(Refl, LeqProof, LeqProof) ->
lowerUnaryTerm' config t bv (SBV.bvExtract (Proxy @(na + ix - 1)) (Proxy @ix))
where
n1 :: NatRepr (na + ix - 1)
n1 = NatRepr (natVal (Proxy @na) + natVal (Proxy @ix) - 1)
(SignedBVType (_ :: Proxy na), SignedBVType (_ :: Proxy xn)) ->
withKnownNat n1 $
withKnownProof (unsafeKnownProof @(na + ix - 1) (natVal (Proxy @na) + natVal (Proxy @ix) - 1)) $
case ( unsafeAxiom @(na + ix - 1 - ix + 1) @na,
unsafeLeqProof @(na + ix - 1 + 1) @xn,
unsafeLeqProof @ix @(na + ix - 1)
) of
(Refl, LeqProof, LeqProof) ->
lowerUnaryTerm' config t bv (SBV.bvExtract (Proxy @(na + ix - 1)) (Proxy @ix))
where
n1 :: NatRepr (na + ix - 1)
n1 = NatRepr (natVal (Proxy @na) + natVal (Proxy @ix) - 1)
_ -> translateTernaryError "bvselect" ix w (R.typeRep @x) (R.typeRep @a)
lowerSinglePrimImpl' config t@(BVExtendTerm _ signed (n :: R.TypeRep n) (bv :: Term x)) =
case (R.typeRep @a, R.typeRep @x) of
(UnsignedBVType (_ :: Proxy na), UnsignedBVType (_ :: Proxy nx)) ->
withKnownNat (NatRepr (natVal (Proxy @na) - natVal (Proxy @nx)) :: NatRepr (na - nx)) $
withKnownProof (unsafeKnownProof @(na - nx) (natVal (Proxy @na) - natVal (Proxy @nx))) $
case (unsafeLeqProof @(nx + 1) @na, unsafeLeqProof @1 @(na - nx)) of
(LeqProof, LeqProof) ->
bvIsNonZeroFromGEq1 @(na - nx) $
lowerUnaryTerm' config t bv (if signed then SBV.signExtend else SBV.zeroExtend)
(SignedBVType (_ :: Proxy na), SignedBVType (_ :: Proxy nx)) ->
withKnownNat (NatRepr (natVal (Proxy @na) - natVal (Proxy @nx)) :: NatRepr (na - nx)) $
withKnownProof (unsafeKnownProof @(na - nx) (natVal (Proxy @na) - natVal (Proxy @nx))) $
case (unsafeLeqProof @(nx + 1) @na, unsafeLeqProof @1 @(na - nx)) of
(LeqProof, LeqProof) ->
bvIsNonZeroFromGEq1 @(na - nx) $
Expand Down Expand Up @@ -669,38 +642,32 @@ lowerSinglePrimImpl config t@(BVConcatTerm _ (bv1 :: Term x) (bv2 :: Term y)) m
lowerSinglePrimImpl config t@(BVSelectTerm _ (ix :: R.TypeRep ix) w (bv :: Term x)) m =
case (R.typeRep @a, R.typeRep @x) of
(UnsignedBVType (_ :: Proxy na), UnsignedBVType (_ :: Proxy xn)) ->
withKnownNat n1 $
withKnownProof (unsafeKnownProof @(na + ix - 1) (natVal (Proxy @na) + natVal (Proxy @ix) - 1)) $
case ( unsafeAxiom @(na + ix - 1 - ix + 1) @na,
unsafeLeqProof @(na + ix - 1 + 1) @xn,
unsafeLeqProof @ix @(na + ix - 1)
) of
(Refl, LeqProof, LeqProof) ->
lowerUnaryTerm config t bv (SBV.bvExtract (Proxy @(na + ix - 1)) (Proxy @ix)) m
where
n1 :: NatRepr (na + ix - 1)
n1 = NatRepr (natVal (Proxy @na) + natVal (Proxy @ix) - 1)
(SignedBVType (_ :: Proxy na), SignedBVType (_ :: Proxy xn)) ->
withKnownNat n1 $
withKnownProof (unsafeKnownProof @(na + ix - 1) (natVal (Proxy @na) + natVal (Proxy @ix) - 1)) $
case ( unsafeAxiom @(na + ix - 1 - ix + 1) @na,
unsafeLeqProof @(na + ix - 1 + 1) @xn,
unsafeLeqProof @ix @(na + ix - 1)
) of
(Refl, LeqProof, LeqProof) ->
lowerUnaryTerm config t bv (SBV.bvExtract (Proxy @(na + ix - 1)) (Proxy @ix)) m
where
n1 :: NatRepr (na + ix - 1)
n1 = NatRepr (natVal (Proxy @na) + natVal (Proxy @ix) - 1)
_ -> translateTernaryError "bvselect" ix w (R.typeRep @x) (R.typeRep @a)
lowerSinglePrimImpl config t@(BVExtendTerm _ signed (n :: R.TypeRep n) (bv :: Term x)) m =
case (R.typeRep @a, R.typeRep @x) of
(UnsignedBVType (_ :: Proxy na), UnsignedBVType (_ :: Proxy nx)) ->
withKnownNat (NatRepr (natVal (Proxy @na) - natVal (Proxy @nx)) :: NatRepr (na - nx)) $
withKnownProof (unsafeKnownProof @(na - nx) (natVal (Proxy @na) - natVal (Proxy @nx))) $
case (unsafeLeqProof @(nx + 1) @na, unsafeLeqProof @1 @(na - nx)) of
(LeqProof, LeqProof) ->
bvIsNonZeroFromGEq1 @(na - nx) $
lowerUnaryTerm config t bv (if signed then SBV.signExtend else SBV.zeroExtend) m
(SignedBVType (_ :: Proxy na), SignedBVType (_ :: Proxy nx)) ->
withKnownNat (NatRepr (natVal (Proxy @na) - natVal (Proxy @nx)) :: NatRepr (na - nx)) $
withKnownProof (unsafeKnownProof @(na - nx) (natVal (Proxy @na) - natVal (Proxy @nx))) $
case (unsafeLeqProof @(nx + 1) @na, unsafeLeqProof @1 @(na - nx)) of
(LeqProof, LeqProof) ->
bvIsNonZeroFromGEq1 @(na - nx) $
Expand Down Expand Up @@ -742,18 +709,6 @@ lowerSinglePrimImpl config t@(ModIntegerTerm _ arg1 arg2) m =
_ -> translateBinaryError "mod" (R.typeRep @a) (R.typeRep @a) (R.typeRep @a)
lowerSinglePrimImpl _ _ _ = error "Should never happen"

unsafeMkNatRepr :: Int -> NatRepr w
unsafeMkNatRepr x = NatRepr (fromInteger $ toInteger x)

unsafeWithNonZeroKnownNat :: forall w r. Int -> ((KnownNat w, 1 <= w) => r) -> r
unsafeWithNonZeroKnownNat i r
| i <= 0 = error "Not an nonzero natural number"
| otherwise = withKnownNat @w (unsafeMkNatRepr i) $ unsafeBVIsNonZero r
where
unsafeBVIsNonZero :: ((1 <= w) => r) -> r
unsafeBVIsNonZero r1 = case unsafeAxiom :: w :~: 1 of
Refl -> r1

bvIsNonZeroFromGEq1 :: forall w r. (1 <= w) => ((SBV.BVIsNonZero w) => r) -> r
bvIsNonZeroFromGEq1 r1 = case unsafeAxiom :: w :~: 1 of
Refl -> r1
Expand Down Expand Up @@ -782,12 +737,13 @@ parseModel _ (SBVI.SMTModel _ _ assoc uifuncs) mp = foldr gouifuncs (foldr goass
R.App a (n :: R.TypeRep w) ->
case R.eqTypeRep (R.typeRepKind n) (R.typeRep @Nat) of
Just R.HRefl ->
unsafeWithNonZeroKnownNat @w bitWidth $
case (R.eqTypeRep a (R.typeRep @IntN), R.eqTypeRep a (R.typeRep @WordN)) of
(Just R.HRefl, _) ->
fromInteger i
(_, Just R.HRefl) -> fromInteger i
_ -> error "Bad type"
case (unsafeKnownProof @w (fromIntegral bitWidth), unsafeLeqProof @1 @w) of
(KnownProof, LeqProof) ->
case (R.eqTypeRep a (R.typeRep @IntN), R.eqTypeRep a (R.typeRep @WordN)) of
(Just R.HRefl, _) ->
fromInteger i
(_, Just R.HRefl) -> fromInteger i
_ -> error "Bad type"
_ -> error "Bad type"
_ -> error "Bad type"
resolveSingle _ _ = error "Unknown cv"
Expand Down Expand Up @@ -826,35 +782,35 @@ parseModel _ (SBVI.SMTModel _ _ assoc uifuncs) mp = foldr gouifuncs (foldr goass
gougfuncResolve idx ta1 ta2 (l, s) =
case ta2 of
GFunType (ta2' :: R.TypeRep a2) (tr2' :: R.TypeRep r2) ->
let sym = WithInfo (IndexedSymbol "arg" idx) FunArg
let sym = IndexedSymbol "arg" idx
funs = second (\r -> gougfuncResolve (idx + 1) ta2' tr2' (r, s)) <$> partition ta1 l
def = gougfuncResolve (idx + 1) ta2' tr2' ([], s)
body =
foldl'
( \acc (v, f) ->
pevalITETerm
(pevalEqvTerm (iinfosymTerm "arg" idx FunArg) (conTerm v))
(pevalEqvTerm (symTerm sym) (conTerm v))
(conTerm f)
acc
)
(conTerm def)
funs
in GeneralFun sym body
in buildGeneralFun sym body
_ ->
let sym = WithInfo (IndexedSymbol "arg" idx) FunArg
let sym = IndexedSymbol "arg" idx
vs = bimap (resolveSingle ta1 . head) (resolveSingle ta2) <$> l
def = resolveSingle ta2 s
body =
foldl'
( \acc (v, a) ->
pevalITETerm
(pevalEqvTerm (iinfosymTerm "arg" idx FunArg) (conTerm v))
(pevalEqvTerm (symTerm sym) (conTerm v))
(conTerm a)
acc
)
(conTerm def)
vs
in GeneralFun sym body
in buildGeneralFun sym body
partition :: R.TypeRep a -> [([SBVI.CV], SBVI.CV)] -> [(a, [([SBVI.CV], SBVI.CV)])]
partition t = case (R.eqTypeRep t (R.typeRep @Bool), R.eqTypeRep t (R.typeRep @Integer)) of
(Just R.HRefl, _) -> partitionWithOrd . resolveFirst t
Expand Down
8 changes: 4 additions & 4 deletions src/Grisette/Backend/SBV/Data/SMT/Solving.hs
View file
Open in desktop
Expand Up @@ -170,8 +170,8 @@ solveTermWith config term = SBV.runSMTWith (sbvConfig config) $ do
_ -> return (m, Left r)

instance Solver (GrisetteSMTConfig n) SBVC.CheckSatResult where
solve config (Sym t) = snd <$> solveTermWith config t
solveMulti config n s@(Sym t)
solve config (SymBool t) = snd <$> solveTermWith config t
solveMulti config n s@(SymBool t)
| n > 0 = SBV.runSMTWith (sbvConfig config) $ do
(newm, a) <- lowerSinglePrim config t
SBVC.query $ do
Expand Down Expand Up @@ -258,7 +258,7 @@ instance CEGISSolver (GrisetteSMTConfig n) SBVC.CheckSatResult where
IO (Either SBVC.CheckSatResult ([inputs], PM.Model))
go cexFormula inputs allInputs pre post =
SBV.runSMTWith (sbvConfig config) $ do
let Sym t = phi &&~ cexFormula
let SymBool t = phi &&~ cexFormula
(newm, a) <- lowerSinglePrim config t
SBVC.query $
snd <$> do
Expand All @@ -285,7 +285,7 @@ instance CEGISSolver (GrisetteSMTConfig n) SBVC.CheckSatResult where
return (evaluateSym False newm inputs, newm)
guess :: Model -> SymBiMap -> Query (SymBiMap, Either SBVC.CheckSatResult PM.Model)
guess candidate origm = do
let Sym evaluated = evaluateSym False candidate phi
let SymBool evaluated = evaluateSym False candidate phi
let (lowered, newm) = lowerSinglePrim' config evaluated origm
SBV.constrain lowered
r <- SBVC.checkSat
Expand Down
28 changes: 19 additions & 9 deletions src/Grisette/Core.hs
View file
Open in desktop
Expand Up @@ -74,7 +74,8 @@ module Grisette.Core
-- The values of unsolvable types are __/partially/__ merged in a symbolic
-- union, which is essentially an if-then-else tree.
--
-- For example, assume that the lists have the type @[SymBool]@.
-- For example, assume that the lists have the type
-- @['Grisette.IR.SymPrim.SymBool']@.
-- In the following example, the result shows that @[b]@ and @[c]@ can be
-- merged together in the same symbolic union because they have the same
-- length:
Expand Down Expand Up @@ -125,10 +126,14 @@ module Grisette.Core
-- Grisette
-- currently provides an implementation for the following solvable types:
--
-- * @SymBool@ or @Sym Bool@ (symbolic Booleans)
-- * @SymInteger@ or @Sym Integer@ (symbolic unbounded integers)
-- * @SymIntN n@ or @Sym (IntN n)@ (symbolic signed bit vectors of length @n@)
-- * @SymWordN n@ or @Sym (WordN n)@ (symbolic unsigned bit vectors of length @n@)
-- * 'Grisette.IR.SymPrim.SymBool' (symbolic Booleans)
-- * 'Grisette.IR.SymPrim.SymInteger' (symbolic unbounded integers)
-- * @'Grisette.IR.SymPrim.SymIntN' n@ (symbolic signed bit vectors of length @n@)
-- * @'Grisette.IR.SymPrim.SymWordN' n@ (symbolic unsigned bit vectors of length @n@)
--
-- The two bit vector types has their lengths checked at compile time.
-- Grisette also provides runtime-checked versions of these types:
-- 'Grisette.IR.SymPrim.SomeSymIntN' and 'Grisette.IR.SymPrim.SomeSymWordN'.
--
-- Values of a solvable type can consist of concrete values, symbolic
-- constants (placeholders for concrete values that can be assigned by a
Expand Down Expand Up @@ -176,10 +181,15 @@ module Grisette.Core
SEq (..),
SymBoolOp,
SOrd (..),
BVConcat (..),
BVExtend (..),
BVSelect (..),
bvextract,
SomeBV (..),
someBVZext',
someBVSext',
someBVExt',
someBVSelect',
someBVExtract,
someBVExtract',
SizedBV (..),
sizedBVExtract,
SignedDivMod (..),
UnsignedDivMod (..),
SignedQuotRem (..),
Expand Down
2 changes: 1 addition & 1 deletion src/Grisette/Core/Control/Monad/Union.hs
View file
Open in desktop
Expand Up @@ -25,5 +25,5 @@ import Grisette.Core.Data.Class.SimpleMergeable
-- >>> import Grisette.Core
-- >>> import Grisette.IR.SymPrim

-- | Class for monads that support union-like operations and 'Mergeable' knowledge propagation.
-- | Class for monads that support union-like operations and 'Grisette.Core.Data.Class.Mergeable' knowledge propagation.
type MonadUnion u = (UnionLike u, Monad u)
2 changes: 2 additions & 0 deletions src/Grisette/Core/Control/Monad/UnionM.hs
View file
Open in desktop
Expand Up @@ -387,6 +387,7 @@ instance (Mergeable a, EvaluateSym a) => EvaluateSym (UnionM a) where
(go t)
(go f)

{-
instance (Mergeable a, SubstituteSym a) => SubstituteSym (UnionM a) where
substituteSym sym val x = go $ underlyingUnion x
where
Expand All @@ -397,6 +398,7 @@ instance (Mergeable a, SubstituteSym a) => SubstituteSym (UnionM a) where
(substituteSym sym val cond)
(go t)
(go f)
-}

instance
(ExtractSymbolics a) =>
Expand Down