Generate :exhaust for simple properties.
#1848
Conversation
ChrisEPhifer
temporarily deployed
to
github-pages
GitHub Actions
Inactive
ChrisEPhifer
changed the title
:ensure for simple properties.:ensure for simple properties.
|
OK, CI seems happy, so I think this is ready for review / to be merged. |
|
I think I'm missing something: what is the |
... Oops. You're right, sorry. Let's not think too hard about what time it is on the west coast... |
ChrisEPhifer
changed the title
:ensure for simple properties.:exhaust for simple properties.
There was a problem hiding this comment.
This looks reasonable at a quick glance. I think it would be worth mentioning the fact that Cryptol implicitly :exhausts Bool-typed properties somewhere in the Documentation Comments section of the Cryptol user manual, however.
tests/docstrings/T05.icry.stdout
Outdated
| :exhaust p | ||
| Using exhaustive testing. | ||
| Testing... Passed 1 tests. | ||
| Q.E.D. |
There was a problem hiding this comment.
This example already has an explicit :exhaust pragma in the docstrings:
cryptol/tests/docstrings/T05.md
Lines 13 to 15 in 86ee4b6
As such, this runs :exhaust p twice (you can see the output of the other :exhaust p invocation above). Is it possible to detect examples like this to avoid redundantly running :exhaust again?
There was a problem hiding this comment.
Good idea. I can poke around at the code consuming the gathered-up docstrings / see about de-duplicating what's extracted there, rather than trying to detect this based on the docstring text itself.
There was a problem hiding this comment.
How about we change the rule to be "if a piece of code has no code blocks and it is of type Bit, then add an implicit :exhaust" otherwise leave it alone. So this is a kind of default action for things of type Bit but if the user adds a code block, then they can say explicitly say what they want to do, so we don't add an implicit one as well.
There was a problem hiding this comment.
Oh sure! If that's an acceptable adjustment to what we originally wanted, it's definitely an easy way to avoid duplicates without any kind of janky cleanup after gathering up / extracting all the code blocks.
I'll adjust what I had queued up re: changes to the reference manual and implement this check instead.
There was a problem hiding this comment.
Actually -- We don't know about the structure of the docstring code blocks until the extraction is done, so we'll have to move some of this into the REPL.Command module.
I was hoping to just replace <> with <|> where I'm adding the new doctring test, but this is too aggressive, as it'll skip adding the :exhaust if there are any docstring comments, even if there are no other code fences,
Pay no mind, I'm silly :)
tests/docstrings/T10.icry.stdout
Outdated
| @@ -22,12 +22,32 @@ Checking module T10 | |||
| Docstrings on T10::where_at__30_11::N | |||
| Docstrings on T10::F1::N | |||
| Docstrings on T10::M::q | |||
| :exhaust q | |||
There was a problem hiding this comment.
Relatedly, I wonder if this output should say something like ":exhaust q (implicit)" or some such to indicate that this is running due to the implicit behavior of how :check-docstrings works, rather than an explicit directive in the docstrings themselves.
ChrisEPhifer
temporarily deployed
to
github-pages
GitHub Actions
Inactive
If the given declaration is of Bit (Boolean) type and a property, return a docstring code fence that uses :exhaust to validate the property. Note that we return a Maybe value in order to easily integrate with the existing declaration docstring handling.
Straightforward use of the Semigroup a => Semigroup (Maybe a) instance to combine user-provided docstrings with our :exhaust tests (when we encounter a property declaration of Bit/Boolean type, as described in the previous commit).
These show the new :exhaust tests being added as expected. I'm not currently set up to run CVC4/5, Yices, or Bitwuzla - so I am unsure if those tests need their golden/reference files updated.
This helps distinguish automatically-generated :exhaust checks from those that were explicitly written by users. Fortunately, the docstring/doctest extraction mechanism preserves the full text -- so this was as simple as adding a valid line comment.
This function is useful to determine when to add implicit :exhaust commands to property docstrings, but was too high in the Cryptol.* module dependency hierarchy.
This adds the additional condition that the declaration's docstring contain no runnable code blocks (i.e. code blocks that are unlabeled or labeled with repl). This change 'fixes' docstring test T05, in particular by avoiding the duplicate exhaustive testing the previous behavior caused.
ChrisEPhifer
force-pushed
the
1842-improve-project-checking
branch
from
a535b85 to
6af7930
Compare
ChrisEPhifer
temporarily deployed
to
github-pages
GitHub Actions
Inactive
ChrisEPhifer
temporarily deployed
to
github-pages
GitHub Actions
Inactive
src/Cryptol/TypeCheck/AST.hs
Outdated
| -- | Extract the code blocks from the body of a docstring. | ||
| -- | ||
| -- A single code block starts with at least 3 backticks followed by an | ||
| -- optional language specifier of "cryptol". This allowed other kinds |
There was a problem hiding this comment.
Haddock trick to prevent "cryptol" from being highlighted as a module identifier:
| -- optional language specifier of "cryptol". This allowed other kinds | |
| -- optional language specifier of \"cryptol\". This allowed other kinds |
src/Cryptol/TypeCheck/AST.hs
Outdated
| -- | Extract the code blocks from the body of a docstring. | ||
| -- | ||
| -- A single code block starts with at least 3 backticks followed by an | ||
| -- optional language specifier of "cryptol". This allowed other kinds |
There was a problem hiding this comment.
| -- optional language specifier of "cryptol". This allowed other kinds | |
| -- optional language specifier of "cryptol". This allows other kinds |
CHANGES.md
Outdated
| * `Bit` properties (e.g. `property p = True`) will be checked with `:exhaust`, | ||
| unless their docstrings contain code blocks understood by `:check-docstrings`. | ||
| ([#1842](https://github.com/GaloisInc/cryptol/issues/1842)) |
There was a problem hiding this comment.
When I first read this sentence, I was under the false impression that all Bit properties would be checked with :exhaust. I think this should mention "when running :check-docstrings" upfront, as that is an important caveat. Something like:
| * `Bit` properties (e.g. `property p = True`) will be checked with `:exhaust`, | |
| unless their docstrings contain code blocks understood by `:check-docstrings`. | |
| ([#1842](https://github.com/GaloisInc/cryptol/issues/1842)) | |
| * When running the `:check-docstrings` command, `Bit` properties (e.g. `property p = True`) will be checked with `:exhaust`, | |
| unless their docstrings contain code blocks understood by `:check-docstrings`. | |
| ([#1842](https://github.com/GaloisInc/cryptol/issues/1842)) |
| @@ -1993,61 +1993,6 @@ moduleInfoCmd isFile name | |||
| rPutStrLn "}" | |||
| pure emptyCommandResult | |||
|
|
|||
There was a problem hiding this comment.
Why did extractCodeBlocks get moved to Cryptol.TypeCheck.AST? I don't think that's a good place for it, as we already have too much stuff in that module. As far as I can see, it's only called from Command, so keeping it there is probably OK. If it does need to be moved for some reason, let's see what's a better place for it.
There was a problem hiding this comment.
This PR updates the code to also call extractCodeBlocks from Cryptol.TypeCheck.AST (from gatherModuleDocstrings).
There was a problem hiding this comment.
Oh I see, that was already there. I think we should make a new module called Docstrings (or something) in the same directory, and move both of these functions there. In general, the plan is that AST should contain the AST and any little convenience function for working with it, but things that provide additional functionality should be in their own modules.
There was a problem hiding this comment.
OK, no problem -- I didn't love it either, I was just trying to make minimally-invasive changes that made sense in the existing module hierarchy, but I'm happy to add this new module.
ChrisEPhifer
temporarily deployed
to
github-pages
GitHub Actions
Inactive
The new module is Cryptol.TypeCheck.Docstrings.
ChrisEPhifer
temporarily deployed
to
github-pages
GitHub Actions
Inactive
| @@ -1993,61 +1993,6 @@ moduleInfoCmd isFile name | |||
| rPutStrLn "}" | |||
| pure emptyCommandResult | |||
|
|
|||
CHANGES.md
Outdated
| * `Bit` properties (e.g. `property p = True`) will be checked with `:exhaust`, | ||
| unless their docstrings contain code blocks understood by `:check-docstrings`. | ||
| ([#1842](https://github.com/GaloisInc/cryptol/issues/1842)) |
src/Cryptol/TypeCheck/AST.hs
Outdated
| -- | Extract the code blocks from the body of a docstring. | ||
| -- | ||
| -- A single code block starts with at least 3 backticks followed by an | ||
| -- optional language specifier of "cryptol". This allowed other kinds |
src/Cryptol/TypeCheck/AST.hs
Outdated
| -- | Extract the code blocks from the body of a docstring. | ||
| -- | ||
| -- A single code block starts with at least 3 backticks followed by an | ||
| -- optional language specifier of "cryptol". This allowed other kinds |
Closes #1842.
This works by adding
Textof the form:To the list of docstrings extracted from a module's
Decls, whenpis aBit-typed declaration that has thepropertyPragma.I wasn't set up to run every test in the regression suite (particularly those requiring CVC4/CVC5/Bitwuzla/Yices); I've marked this as a draft for now, and will use CI to determine which (if any) additional golden/
.stdoutfiles I need to update.