Validate Ghost Invocations Before Sending to SMT

- Validate ghost invocations instead of relying on Z3 output
- Throw LJErrors in AST expressions

Author: rcosta358

liquidjava-verifier/src/main/java/liquidjava/diagnostics/Diagnostics.java

@@ -55,11 +55,10 @@ public void clear() {
     }
 
     public String getErrorOutput() {
-        return String.join("\n", errors.stream().map(LJError::toString).toList()) + (errors.isEmpty() ? "" : "\n");
+        return String.join("\n", errors.stream().map(LJError::toString).toList());
     }
 
     public String getWarningOutput() {
-        return String.join("\n", warnings.stream().map(LJWarning::toString).toList())
-                + (warnings.isEmpty() ? "" : "\n");
+        return String.join("\n", warnings.stream().map(LJWarning::toString).toList());
     }
 }

liquidjava-verifier/src/main/java/liquidjava/diagnostics/errors/NotFoundError.java

@@ -12,15 +12,14 @@
 public class NotFoundError extends LJError {
 
     private final String name;
-    private final String kind; // "Variable" or "Ghost"
+    private final String kind; // "Variable" | "Ghost" | "Alias"
 
-    public NotFoundError(String message, String name, String kind) {
-        this(message, null, name, kind, null);
+    public NotFoundError(String name, String kind) {
+        this(null, name, kind, null);
     }
 
-    public NotFoundError(String message, SourcePosition position, String name, String kind,
-            TranslationTable translationTable) {
-        super("Not Found Error", message, position, translationTable);
+    public NotFoundError(SourcePosition position, String name, String kind, TranslationTable translationTable) {
+        super("Not Found Error", String.format("%s '%s' not found", kind, name), position, translationTable);
         this.name = Utils.getSimpleName(name);
         this.kind = kind;
     }

liquidjava-verifier/src/main/java/liquidjava/processor/refinement_checker/TypeChecker.java

@@ -35,14 +35,14 @@
 
 public abstract class TypeChecker extends CtScanner {
 
-    Context context;
-    Factory factory;
-    VCChecker vcChecker;
+    protected final Context context;
+    protected final Factory factory;
+    protected final VCChecker vcChecker;
 
     public TypeChecker(Context context, Factory factory) {
         this.context = context;
         this.factory = factory;
-        vcChecker = new VCChecker();
+        this.vcChecker = new VCChecker();
     }
 
     public Context getContext() {
@@ -296,16 +296,16 @@ public boolean checksStateSMT(Predicate prevState, Predicate expectedState, Sour
         return vcChecker.canProcessSubtyping(prevState, expectedState, context.getGhostState(), p, factory);
     }
 
-    public void createError(SourcePosition position, Predicate expectedType, Predicate foundType) throws LJError {
-        vcChecker.raiseSubtypingError(position, expectedType, foundType);
+    public void throwRefinementError(SourcePosition position, Predicate expectedType, Predicate foundType)
+            throws LJError {
+        vcChecker.throwRefinementError(position, expectedType, foundType);
     }
 
-    public void createSameStateError(SourcePosition position, Predicate expectedType, String klass) throws LJError {
-        vcChecker.raiseSameStateError(position, expectedType);
+    public void throwStateRefinementError(SourcePosition position, Predicate found, Predicate expected) throws LJError {
+        vcChecker.throwStateRefinementError(position, found, expected);
     }
 
-    public void createStateMismatchError(SourcePosition position, String method, Predicate found, Predicate expected)
-            throws LJError {
-        vcChecker.raiseStateMismatchError(position, found, expected);
+    public void throwStateConflictError(SourcePosition position, Predicate expectedType) throws LJError {
+        vcChecker.throwStateConflictError(position, expectedType);
     }
 }

liquidjava-verifier/src/main/java/liquidjava/processor/refinement_checker/VCChecker.java

@@ -13,7 +13,7 @@
 import liquidjava.processor.context.*;
 import liquidjava.rj_language.Predicate;
 import liquidjava.smt.SMTEvaluator;
-import liquidjava.smt.errors.TypeCheckError;
+import liquidjava.smt.TypeCheckError;
 import liquidjava.utils.constants.Keys;
 import spoon.reflect.cu.SourcePosition;
 import spoon.reflect.declaration.CtElement;
@@ -39,30 +39,64 @@ public void processSubtyping(Predicate expectedType, List<GhostState> list, CtEl
         TranslationTable map = new TranslationTable();
         String[] s = { Keys.WILDCARD, Keys.THIS };
         Predicate premisesBeforeChange = joinPredicates(expectedType, mainVars, lrv, map).toConjunctions();
-        Predicate premises = new Predicate();
-        Predicate et;
+        Predicate premises;
+        Predicate expected;
         try {
             List<GhostState> filtered = filterGhostStatesForVariables(list, mainVars, lrv);
             premises = premisesBeforeChange.changeStatesToRefinements(filtered, s).changeAliasToRefinement(context, f);
-            et = expectedType.changeStatesToRefinements(filtered, s).changeAliasToRefinement(context, f);
+            expected = expectedType.changeStatesToRefinements(filtered, s).changeAliasToRefinement(context, f);
         } catch (LJError e) {
             // add location info to error
             e.setPosition(element.getPosition());
             throw e;
         }
-        try {
-            smtChecking(premises, et);
-        } catch (Exception e) {
-            // To emit the message we use the constraints before the alias and state change
-            raiseError(e, element.getPosition(), premisesBeforeChange, expectedType, map);
-        }
+        boolean isSubtype = smtChecks(expected, premises, element.getPosition());
+        if (!isSubtype)
+            throw new RefinementError(element.getPosition(), expectedType.getExpression(),
+                    premisesBeforeChange.simplify(), map);
     }
 
+    /**
+     * Check that type is a subtype of expectedType Throws RefinementError otherwise
+     *
+     * @param type
+     * @param expectedType
+     * @param list
+     * @param element
+     * @param f
+     *
+     * @throws LJError
+     */
     public void processSubtyping(Predicate type, Predicate expectedType, List<GhostState> list, CtElement element,
             Factory f) throws LJError {
         boolean b = canProcessSubtyping(type, expectedType, list, element.getPosition(), f);
         if (!b)
-            raiseSubtypingError(element.getPosition(), expectedType, type);
+            throwRefinementError(element.getPosition(), expectedType, type);
+    }
+
+    /**
+     * Checks the expected against the found constraint
+     *
+     * @param expected
+     * @param found
+     * @param position
+     *
+     * @return true if expected type is subtype of found type, false otherwise
+     *
+     * @throws LJError
+     */
+    public boolean smtChecks(Predicate expected, Predicate found, SourcePosition position) throws LJError {
+        try {
+            new SMTEvaluator().verifySubtype(found, expected, context);
+            return true;
+        } catch (TypeCheckError e) {
+            return false;
+        } catch (LJError e) {
+            e.setPosition(position);
+            throw e;
+        } catch (Exception e) {
+            throw new CustomError(e.getMessage(), position);
+        }
     }
 
     public boolean canProcessSubtyping(Predicate type, Predicate expectedType, List<GhostState> list,
@@ -75,23 +109,14 @@ public boolean canProcessSubtyping(Predicate type, Predicate expectedType, List<
 
         TranslationTable map = new TranslationTable();
         String[] s = { Keys.WILDCARD, Keys.THIS };
-
-        Predicate premises;
-        Predicate et;
-        try {
-            premises = joinPredicates(expectedType, mainVars, lrv, map).toConjunctions();
-            List<GhostState> filtered = filterGhostStatesForVariables(list, mainVars, lrv);
-            premises = Predicate.createConjunction(premises, type).changeStatesToRefinements(filtered, s)
-                    .changeAliasToRefinement(context, f);
-            et = expectedType.changeStatesToRefinements(filtered, s).changeAliasToRefinement(context, f);
-        } catch (LJError e) {
-            // add location info to error
-            e.setPosition(position);
-            throw e;
-        } catch (Exception e) {
-            return false;
-        }
-        return smtChecks(et, premises, position, map);
+        Predicate premises = joinPredicates(expectedType, mainVars, lrv, map).toConjunctions();
+        List<GhostState> filtered = filterGhostStatesForVariables(list, mainVars, lrv);
+        premises = Predicate.createConjunction(premises, type).changeStatesToRefinements(filtered, s)
+                .changeAliasToRefinement(context, f);
+        Predicate expected = expectedType.changeStatesToRefinements(filtered, s).changeAliasToRefinement(context, f);
+
+        // check subtyping
+        return smtChecks(expected, premises, position);
     }
 
     /**
@@ -196,7 +221,6 @@ private List<RefinedVariable> getVariables(Predicate c, String varName) {
         getVariablesFromContext(c.getVariableNames(), allVars, varName);
         List<String> pathNames = pathVariables.stream().map(Refined::getName).collect(Collectors.toList());
         getVariablesFromContext(pathNames, allVars, "");
-
         return allVars;
     }
 
@@ -217,30 +241,6 @@ private void recAuxGetVars(RefinedVariable var, List<RefinedVariable> newVars) {
         getVariablesFromContext(l, newVars, varName);
     }
 
-    public boolean smtChecks(Predicate expected, Predicate found, SourcePosition position, TranslationTable map)
-            throws LJError {
-        try {
-            new SMTEvaluator().verifySubtype(found, expected, context);
-        } catch (TypeCheckError e) {
-            return false;
-        } catch (Exception e) {
-            raiseError(e, position, found, expected, map);
-        }
-        return true;
-    }
-
-    /**
-     * Checks the expectedType against the cSMT constraint. If the types do not check and error is sent and the program
-     * ends
-     *
-     * @param cSMT
-     * @param expectedType
-     * 
-     */
-    private void smtChecking(Predicate cSMT, Predicate expectedType) throws Exception {
-        new SMTEvaluator().verifySubtype(cSMT, expectedType, context);
-    }
-
     public void addPathVariable(RefinedVariable rv) {
         pathVariables.add(rv);
     }
@@ -256,53 +256,36 @@ void removePathVariableThatIncludes(String otherVar) {
 
     // Errors---------------------------------------------------------------------------------------------------
 
-    private TranslationTable createMap(Predicate expectedType) {
+    protected void throwRefinementError(SourcePosition position, Predicate expected, Predicate found)
+            throws RefinementError {
         List<RefinedVariable> lrv = new ArrayList<>(), mainVars = new ArrayList<>();
-        gatherVariables(expectedType, lrv, mainVars);
+        gatherVariables(expected, lrv, mainVars);
+        gatherVariables(found, lrv, mainVars);
         TranslationTable map = new TranslationTable();
-        joinPredicates(expectedType, mainVars, lrv, map);
-        return map;
-    }
-
-    protected void raiseError(Exception e, SourcePosition position, Predicate found, Predicate expected,
-            TranslationTable map) throws LJError {
-        if (e instanceof TypeCheckError) {
-            throw new RefinementError(position, expected.getExpression(), found.simplify(), map);
-        } else if (e instanceof liquidjava.smt.errors.NotFoundError nfe) {
-            throw new NotFoundError(e.getMessage(), position, nfe.getName(), nfe.getKind(), map);
-        } else {
-            String msg = e.getLocalizedMessage().toLowerCase();
-            if (msg.contains("wrong number of arguments")) {
-                throw new ArgumentMismatchError("Wrong number of arguments in ghost invocation", position, map);
-            } else if (msg.contains("sort mismatch")) {
-                throw new ArgumentMismatchError("Type mismatch in arguments of ghost invocation", position, map);
-            } else {
-                throw new CustomError(e.getMessage(), position);
-            }
-        }
+        Predicate premises = joinPredicates(expected, mainVars, lrv, map).toConjunctions();
+        throw new RefinementError(position, expected.getExpression(), premises.simplify(), map);
     }
 
-    protected void raiseSubtypingError(SourcePosition position, Predicate expected, Predicate found) throws LJError {
+    protected void throwStateRefinementError(SourcePosition position, Predicate found, Predicate expected)
+            throws StateRefinementError {
         List<RefinedVariable> lrv = new ArrayList<>(), mainVars = new ArrayList<>();
-        gatherVariables(expected, lrv, mainVars);
         gatherVariables(found, lrv, mainVars);
         TranslationTable map = new TranslationTable();
-        Predicate premises = joinPredicates(expected, mainVars, lrv, map).toConjunctions();
-        throw new RefinementError(position, expected.getExpression(), premises.simplify(), map);
+        VCImplication foundState = joinPredicates(found, mainVars, lrv, map);
+        throw new StateRefinementError(position, expected.getExpression(),
+                foundState.toConjunctions().simplify().getValue(), map);
     }
 
-    protected void raiseSameStateError(SourcePosition position, Predicate expected) throws LJError {
+    protected void throwStateConflictError(SourcePosition position, Predicate expected) throws StateConflictError {
         TranslationTable map = createMap(expected);
         throw new StateConflictError(position, expected.getExpression(), map);
     }
 
-    protected void raiseStateMismatchError(SourcePosition position, Predicate found, Predicate expected)
-            throws LJError {
+    private TranslationTable createMap(Predicate expectedType) {
         List<RefinedVariable> lrv = new ArrayList<>(), mainVars = new ArrayList<>();
-        gatherVariables(found, lrv, mainVars);
+        gatherVariables(expectedType, lrv, mainVars);
         TranslationTable map = new TranslationTable();
-        VCImplication foundState = joinPredicates(found, mainVars, lrv, map);
-        throw new StateRefinementError(position, expected.getExpression(),
-                foundState.toConjunctions().simplify().getValue(), map);
+        joinPredicates(expectedType, mainVars, lrv, map);
+        return map;
     }
 }

liquidjava-verifier/src/main/java/liquidjava/processor/refinement_checker/object_checkers/AuxHierarchyRefinementsPassage.java

@@ -83,7 +83,7 @@ static void transferArgumentsRefinements(RefinedFunction superFunction, RefinedF
             } else {
                 boolean ok = tc.checksStateSMT(superArgRef, argRef, params.get(i).getPosition());
                 if (!ok) {
-                    tc.createError(method.getPosition(), argRef, superArgRef);
+                    tc.throwRefinementError(method.getPosition(), argRef, superArgRef);
                 }
             }
         }

liquidjava-verifier/src/main/java/liquidjava/processor/refinement_checker/object_checkers/AuxStateHandler.java

@@ -215,7 +215,7 @@ private static Predicate createStatePredicate(String value, String targetClass,
         c = c.changeOldMentions(nameOld, name);
         boolean ok = tc.checksStateSMT(new Predicate(), c.negate(), e.getPosition());
         if (ok) {
-            tc.createSameStateError(e.getPosition(), p, targetClass);
+            tc.throwStateConflictError(e.getPosition(), p);
         }
         return c1;
     }
@@ -407,7 +407,7 @@ public static void updateGhostField(CtFieldWrite<?> fw, TypeChecker tc) throws L
                 .changeOldMentions(vi.getName(), instanceName);
 
         if (!tc.checksStateSMT(prevState, expectState, fw.getPosition())) { // Invalid field transition
-            tc.createStateMismatchError(fw.getPosition(), fw.toString(), prevState, stateChange.getFrom());
+            tc.throwStateRefinementError(fw.getPosition(), prevState, stateChange.getFrom());
             return;
         }
 
@@ -490,8 +490,7 @@ private static void changeState(TypeChecker tc, VariableInstance vi, List<Object
                     .map(ObjectState::getFrom)
                     .reduce(Predicate.createLit("false", Types.BOOLEAN), Predicate::createDisjunction);
             String simpleInvocation = invocation.toString();
-            tc.createStateMismatchError(invocation.getPosition(), simpleInvocation, prevState,
-                    expectedStatesDisjunction);
+            tc.throwStateRefinementError(invocation.getPosition(), prevState, expectedStatesDisjunction);
         }
     }
 

liquidjava-verifier/src/main/java/liquidjava/rj_language/Predicate.java

@@ -105,6 +105,8 @@ public Predicate changeAliasToRefinement(Context context, Factory f) throws LJEr
         }
 
         ref = ref.changeAlias(alias, context, f);
+        ref.validateGhostInvocations(context, f);
+
         return new Predicate(ref);
     }
 

liquidjava-verifier/src/main/java/liquidjava/rj_language/ast/AliasInvocation.java

@@ -4,6 +4,7 @@
 import java.util.List;
 import java.util.stream.Collectors;
 
+import liquidjava.diagnostics.errors.LJError;
 import liquidjava.rj_language.visitors.ExpressionVisitor;
 
 public class AliasInvocation extends Expression {
@@ -24,7 +25,7 @@ public List<Expression> getArgs() {
     }
 
     @Override
-    public <T> T accept(ExpressionVisitor<T> visitor) throws Exception {
+    public <T> T accept(ExpressionVisitor<T> visitor) throws LJError {
         return visitor.visitAliasInvocation(this);
     }
 

liquidjava-verifier/src/main/java/liquidjava/rj_language/ast/BinaryExpression.java

@@ -2,6 +2,7 @@
 
 import java.util.List;
 
+import liquidjava.diagnostics.errors.LJError;
 import liquidjava.rj_language.visitors.ExpressionVisitor;
 
 public class BinaryExpression extends Expression {
@@ -40,7 +41,7 @@ public boolean isArithmeticOperation() {
     }
 
     @Override
-    public <T> T accept(ExpressionVisitor<T> visitor) throws Exception {
+    public <T> T accept(ExpressionVisitor<T> visitor) throws LJError {
         return visitor.visitBinaryExpression(this);
     }