Update check_proof_assuming to return Result for error handling

Author: SeRin-Yang

src/main.rs

@@ -39,7 +39,7 @@ use tokio::task::JoinError;
 use tracing::{error, info, warn};
 
 use vc::explain::VcExplanation;
-use z3rro::{prover::ProveResult, util::ReasonUnknown};
+use z3rro::{prover::{ProveResult, ProverCommandError}, util::ReasonUnknown};
 
 pub mod ast;
 mod driver;
@@ -541,6 +541,10 @@ fn finalize_verify_result(
             tracing::error!("Interrupted");
             ExitCode::from(130) // 130 seems to be a standard exit code for CTRL+C
         }
+        Err(VerifyError::ProverError(err)) => {
+            eprintln!("{}", err.to_string());
+            ExitCode::from(1)
+        }
     }
 }
 
@@ -620,6 +624,8 @@ pub enum VerifyError {
     /// The verifier was interrupted.
     #[error("interrupted")]
     Interrupted,
+    #[error("{0}")]
+    ProverError(#[from] ProverCommandError),
 }
 
 /// Verify a list of `user_files`. The `options.files` value is ignored here.

src/opt/fuzz_test.rs

@@ -207,13 +207,16 @@ fn prove_equiv(expr: Expr, optimized: Expr, tcx: &TyCtx) -> TestCaseResult {
         .add_assumptions_to_prover(&mut prover);
     prover.add_provable(&eq_expr_z3);
     let x = match prover.check_proof() {
-        ProveResult::Proof => Ok(()),
-        ProveResult::Counterexample(model) => Err(TestCaseError::fail(format!(
+        Ok(ProveResult::Proof) => Ok(()),
+        Ok(ProveResult::Counterexample(model)) => Err(TestCaseError::fail(format!(
             "rewrote {} ...into... {}, but those are not equivalent:\n{}",
             expr, optimized, model
         ))),
-        ProveResult::Unknown(reason) => {
+        Ok(ProveResult::Unknown(reason)) => {
             Err(TestCaseError::fail(format!("unknown result ({})", reason)))
+        },
+        Err(err) => {
+            Err(TestCaseError::fail(format!("{}", err)))
         }
     };
     x

src/slicing/solver.rs

@@ -7,13 +7,13 @@ use z3::{
 };
 use z3rro::{
     model::InstrumentedModel,
-    prover::{ProveResult, Prover},
+    prover::{ProveResult, Prover, ProverCommandError},
     util::ReasonUnknown,
 };
 
 use crate::{
     ast::{ExprBuilder, Span},
-    resource_limits::{LimitError, LimitsRef},
+    resource_limits::LimitsRef,
     slicing::{
         model::{SliceMode, SliceModel},
         util::{PartialMinimizeResult, SubsetExploration},
@@ -232,7 +232,7 @@ impl<'ctx> SliceSolver<'ctx> {
             .check_proof_assuming(&active_toggle_values);
 
         let mut slice_searcher = SliceModelSearch::new(active_toggle_values.clone());
-        if let ProveResult::Proof = res {
+        if let Ok(ProveResult::Proof) = res {
             slice_searcher.found_active(self.prover.get_unsat_core());
         }
 
@@ -322,14 +322,18 @@ impl<'ctx> SliceSolver<'ctx> {
 
         slice_sat_binary_search(&mut self.prover, &active_toggle_values, options, limits_ref)?;
         let res = self.prover.check_proof();
-        let slice_model = if let ProveResult::Counterexample(model) = &res {
-            let slice_model =
-                SliceModel::from_model(SliceMode::Error, &self.slice_stmts, selection, model);
-            Some(slice_model)
-        } else {
-            None
-        };
-        Ok((res, slice_model))
+
+        match res {
+            Err(err) => Err(VerifyError::ProverError(err)),
+            Ok(prove_result) => match &prove_result {
+                ProveResult::Counterexample(model) => {
+                    let slice_model =
+                    SliceModel::from_model(SliceMode::Error, &self.slice_stmts, selection, &model);
+                    Ok((prove_result, Some(slice_model)))
+                },
+                _ => Ok((prove_result, None)),
+            }
+        }
     }
 }
 
@@ -551,36 +555,39 @@ pub fn slice_next_extremal_set<'ctx>(
     prover: &mut Prover<'ctx>,
     options: &SliceSolveOptions,
     limits_ref: &LimitsRef,
-) -> Result<Option<ExtremalSet<'ctx>>, LimitError> {
+) -> Result<Option<ExtremalSet<'ctx>>, VerifyError> {
     let all_variables = exploration.variables().clone();
 
     while let Some(seed) = exploration.next_set() {
         limits_ref.check_limits()?;
 
         match check_proof_seed(prover, limits_ref, &seed) {
-            ProveResult::Proof => {
+            Ok(ProveResult::Proof) => {
                 let seed = unsat_core_to_seed(prover, &all_variables);
 
                 // now start the shrinking, then block up
-                let res = exploration.shrink_block_up(seed, |seed| {
-                    match check_proof_seed(prover, limits_ref, seed) {
-                        ProveResult::Proof => Some(unsat_core_to_seed(prover, &all_variables)),
-                        ProveResult::Counterexample(_) | ProveResult::Unknown(_) => None,
-                    }
-                });
+                let res_seed = match check_proof_seed(prover, limits_ref, &seed) {
+                    Ok(ProveResult::Proof) => Some(unsat_core_to_seed(prover, &all_variables)),
+                    Ok(ProveResult::Counterexample(_)) | Ok(ProveResult::Unknown(_)) => None,
+                    Err(err) => return Err(VerifyError::ProverError(err)),
+                };
+
+                let res = exploration.shrink_block_up(seed, |_| res_seed.clone());
                 return Ok(Some(ExtremalSet::MinimalUnsat(res)));
             }
-            ProveResult::Counterexample(_) => {
+            Ok(ProveResult::Counterexample(_)) => {
                 // grow the counterexample and then block down
-                let res = exploration.grow_block_down(seed, |seed| {
-                    match check_proof_seed(prover, limits_ref, seed) {
-                        ProveResult::Counterexample(_) => true,
-                        ProveResult::Proof | ProveResult::Unknown(_) => false,
-                    }
-                });
+
+                let res_seed = match check_proof_seed(prover, limits_ref, &seed) {
+                    Ok(ProveResult::Counterexample(_)) => true,
+                    Ok(ProveResult::Proof) | Ok(ProveResult::Unknown(_)) => false,
+                    Err(err) => return Err(VerifyError::ProverError(err)),
+                };
+
+                let res = exploration.grow_block_down(seed, |_| res_seed);
                 return Ok(Some(ExtremalSet::MaximalSat(res)));
             }
-            ProveResult::Unknown(_) => {
+            Ok(ProveResult::Unknown(_)) => {
                 if options.continue_on_unknown {
                     // for seeds that result in unknown, just block them to
                     // ensure progress.
@@ -589,6 +596,7 @@ pub fn slice_next_extremal_set<'ctx>(
                     return Ok(None);
                 }
             }
+            Err(err) => return Err(VerifyError::ProverError(err)),
         }
     }
     Ok(None)
@@ -599,7 +607,7 @@ fn check_proof_seed<'ctx>(
     prover: &mut Prover<'ctx>,
     limits_ref: &LimitsRef,
     seed: &HashSet<Bool<'ctx>>,
-) -> ProveResult<'ctx> {
+) -> Result<ProveResult<'ctx>, ProverCommandError>  {
     let mut timeout = Duration::from_millis(100);
     if let Some(time_left) = limits_ref.time_left() {
         timeout = timeout.min(time_left);

src/slicing/transform_test.rs

@@ -138,14 +138,15 @@ fn prove_equiv(
     }
     prover.add_provable(&eq_expr_z3);
     let x = match prover.check_proof() {
-        ProveResult::Proof => Ok(()),
-        ProveResult::Counterexample(model) => Err(format!(
+        Ok(ProveResult::Proof) => Ok(()),
+        Ok(ProveResult::Counterexample(model)) => Err(format!(
                 "we want to rewrite {:?} ...into... {:?} under assumptions {:?}, but those are not equivalent:\n{}\n original evaluates to {}\n rewritten evaluates to {}",
             stmt1, stmt2, assumptions, model, translate.t_eureal(&stmt1_vc).eval(&model).unwrap(), translate.t_eureal(&stmt2_vc).eval(&model).unwrap()
         )),
-        ProveResult::Unknown(reason) => {
+        Ok(ProveResult::Unknown(reason)) => {
             Err(format!("unknown result ({})", reason))
-        }
+        },
+        Err(err) => Err(format!("{}", err))
     };
     x
 }

z3rro/src/prover.rs

@@ -7,7 +7,7 @@ use std::{
     fmt::Display,
     io::{self, Write},
     path::Path,
-    process::{self, Command},
+    process::Command,
     time::Duration,
 };
 
@@ -25,7 +25,7 @@ use crate::{
 };
 
 #[derive(Debug, Error)]
-pub enum CommandError {
+pub enum ProverCommandError {
     #[error("Environment variable error: {0}")]
     EnvVarError(#[from] env::VarError),
     #[error("Process execution failed: {0}")]
@@ -47,7 +47,7 @@ pub enum ProveResult<'ctx> {
 }
 
 /// Execute swine on the file located at file_path
-fn execute_swine(file_path: &Path) -> Result<SatResult, CommandError> {
+fn execute_swine(file_path: &Path) -> Result<SatResult, ProverCommandError> {
     let output = Command::new("swine").arg(file_path).output();
 
     match output {
@@ -62,7 +62,7 @@ fn execute_swine(file_path: &Path) -> Result<SatResult, CommandError> {
                 Ok(SatResult::Unknown)
             }
         }
-        Err(e) => Err(CommandError::ProcessError(e)),
+        Err(e) => Err(ProverCommandError::ProcessError(e)),
     }
 }
 
@@ -161,7 +161,7 @@ impl<'ctx> Prover<'ctx> {
         self.min_level_with_provables.get_or_insert(self.level);
     }
 
-    pub fn check_proof(&mut self) -> ProveResult<'ctx> {
+    pub fn check_proof(&mut self) -> Result<ProveResult<'ctx>, ProverCommandError> {
         self.check_proof_assuming(&[])
     }
 
@@ -170,13 +170,11 @@ impl<'ctx> Prover<'ctx> {
     pub fn check_proof_assuming(
         &mut self,
         assumptions: &[Bool<'ctx>],
-    ) -> ProveResult<'ctx> {
+    ) -> Result<ProveResult<'ctx>, ProverCommandError> {
         if self.min_level_with_provables.is_none() {
-            return ProveResult::Proof;
+            return Ok(ProveResult::Proof);
         }
 
-        let res;
-
         match self.smt_solver {
             SolverType::SWINE => {
                 let mut smtlib = self.get_smtlib();
@@ -188,35 +186,33 @@ impl<'ctx> Prover<'ctx> {
                     .unwrap();
                 let file_path = smt_file.path();
 
-                res = execute_swine(file_path).unwrap_or_else(|e| {
-                    eprintln!("{}", e);
-                    process::exit(1)
-                });
+                let res = execute_swine(file_path);
                 match res {
-                    SatResult::Unsat => ProveResult::Proof,
-                    SatResult::Unknown => {
+                    Ok(SatResult::Unsat) => Ok(ProveResult::Proof),
+                    Ok(SatResult::Unknown) => {
                         // TODO: Determine the correct reason for Unknown
-                        ProveResult::Unknown(ReasonUnknown::Other("unknown".to_string()))
-                    }
-                    SatResult::Sat => {
+                        Ok(ProveResult::Unknown(ReasonUnknown::Other("unknown".to_string())))
+                    },
+                    Ok(SatResult::Sat) => {
                         // TODO: Get the model from the output of SWINE
-                        process::exit(1)
-                    }
+                        panic!("no counterexample for swine")
+                    },
+                    Err(err) => Err(err)
                 }
             }
             SolverType::Z3 => {
-                res = if assumptions.is_empty() {
+                let res = if assumptions.is_empty() {
                     self.solver.check()
                 } else {
                     self.solver.check_assumptions(assumptions)
                 };
                 match res {
-                    SatResult::Unsat => ProveResult::Proof,
-                    SatResult::Unknown => ProveResult::Unknown(self.get_reason_unknown().unwrap()),
+                    SatResult::Unsat => Ok(ProveResult::Proof),
+                    SatResult::Unknown => Ok(ProveResult::Unknown(self.get_reason_unknown().unwrap())),
                     SatResult::Sat => {
                         let model = self.get_model().unwrap();
                         let model = InstrumentedModel::new(model);
-                        ProveResult::Counterexample(model)
+                        Ok(ProveResult::Counterexample(model))
                     }
                 }
             }
@@ -315,16 +311,16 @@ mod test {
     fn test_prover() {
         let ctx = Context::new(&Config::default());
         let mut prover = Prover::new(&ctx, SolverType::Z3);
-        assert!(matches!(prover.check_proof(), ProveResult::Proof));
+        assert!(matches!(prover.check_proof(), Ok(ProveResult::Proof)));
         assert_eq!(prover.check_sat(), SatResult::Sat);
 
         prover.push();
         prover.add_assumption(&Bool::from_bool(&ctx, true));
-        assert!(matches!(prover.check_proof(), ProveResult::Proof));
+        assert!(matches!(prover.check_proof(), Ok(ProveResult::Proof)));
         assert_eq!(prover.check_sat(), SatResult::Sat);
         prover.pop();
 
-        assert!(matches!(prover.check_proof(), ProveResult::Proof));
+        assert!(matches!(prover.check_proof(), Ok(ProveResult::Proof)));
         assert_eq!(prover.check_sat(), SatResult::Sat);
     }
 }

z3rro/src/test.rs

@@ -28,13 +28,14 @@ pub fn test_prove(f: impl for<'ctx> FnOnce(&'ctx Context, &mut SmtScope<'ctx>) -
 
     prover.add_provable(&theorem);
     match prover.check_proof() {
-        ProveResult::Counterexample(model) => panic!(
+        Ok(ProveResult::Counterexample(model)) => panic!(
             "counter-example: {:?}\nsolver:\n{:?}",
             model,
             prover.solver()
         ),
-        ProveResult::Unknown(reason) => panic!("solver returned unknown ({})", reason),
-        ProveResult::Proof => {}
+        Ok(ProveResult::Unknown(reason)) => panic!("solver returned unknown ({})", reason),
+        Ok(ProveResult::Proof) => {},
+        Err(_) => {}
     };
 }