Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Anonymous structs and case types and compile-time flags #85

Merged
merged 15 commits into from
Nov 4, 2022
Merged

Anonymous structs and case types and compile-time flags #85

merged 15 commits into from
Nov 4, 2022

Conversation

nikswamy
Copy link
Contributor

@nikswamy nikswamy commented Oct 4, 2022

Summary

  • We now support anonymous nested structs and case types. Previously, all such types had to be named at the top level.

  • You can use a #if to enforce some constraints based on compile-time boolean expressions in the constraint associated with a field.

  • You can also use #if to selectively add fields to a type, with some restrictions explained in the detailed section later in this email.

The generated code preserves those #if expressions, so that the C code can be compiled for multiple compile-time configurations.

Limitations

Since we are generating C code that contains the #if (since the goal is to be able to generate C code for multiple compile-time configurations at once from a single 3d specification), we are NOT using a preprocessor to just evaluate the #if terms away at the 3D level. This means, unlike C, you cannot use #if everywhere to syntactically preprocess terms (e.g., conditionally adding a function argument, renaming a type, etc.)

Note also, due to FStarLang/karamel#293 some examples do not yet produce compilable C code. See, tests/ifdefs/src/AnonNestedStructIfDefs.3d, which produces C code, but the compilation to produce a .o is currently excluded from the regression suite until the krml bug is fixed.

How it works

A config file

Associated with 3d project (which may consist of multiple 3d files), we associate a new JSON formatted .3d.config file.

See tests/ifdefs/src/CompileTimeIfFlags.3d.config, for an example, reproduced here:

{ "compile_time_flags":
    {
      "flags":["ABOVE_DIAGONAL","STRICT","DIM3","DIM4"],
      "include_file":"compile_time_flags.h"
    }
}

It contains a key called compile_time_flags whose value contains:

  1. The names of all the flags used in the project in a field called "flags"
  2. The name of an .h file that provides definitions for all those flags, e.g., "compile_time_flags.h"

Based on these configuration options, 3d will

  1. Check that if you are writing #if F1 && F2, that all the variables mentioned in F1 && F2 are recorded in the config file. The flags field of the config is a clear contract between 3d and include file (compile_time_flags.h), meaning that if definitions for all the flags variables are provided, then we guarantee that the code produced by 3d should be compilable for all values of those flags.

  2. When 3d generates code, in every C file it produces, it will also inject the following directive in its corresponding .h file:

#include "compile_time_flags.h"

It is then responsibility of the user to actually provide compile_time_flags.h, making sure that it is available on the include path, and that it provides definitions for all the flags.

It also provides the user with the flexibility to define those flags however they please, e.g., using complex macro expressions, referencing other header files, etc.

In a typical usage, one could:

  1. define a new flag , recording it in the .3d.config file
  2. make changes to the 3d file, delimiting your changes within #if conditionals
  3. generate C code that retains those #if conditionals,
  4. provide a definition for your new flag in the include file mentioned in the config file, e.g., compile_time_flags.h
  5. compile the code as usual

Some more details

##. #if in constraints

In the constraint associated with a field, you can use a #if to enforce some constraints based on compile-time boolean expressions:

For example, you can write:

typedef struct _PointConditional {
  UINT32 x;
  UINT32 y
  {
    #if (ABOVE_DIAGONAL && STRICT)
        x < y
    #elif ABOVE_DIAGONAL
        x <= y
    #else
        true
    #endif
  };
} PointConditional;

This produces the following C code fragment for validating the y field:

    /* reading field_value */
    uint32_t y_refinement = Load32Le(Input + (uint32_t)positionAfterx);
    /* start: checking constraint */
    BOOLEAN y_refinementConstraintIsOk;
    #if ABOVE_DIAGONAL && STRICT
    y_refinementConstraintIsOk = x < y_refinement;
    #elif ABOVE_DIAGONAL
    y_refinementConstraintIsOk = x <= y_refinement;
    #else
    y_refinementConstraintIsOk = TRUE;
    #endif
    /* end: checking constraint */

#if in the fields of a type

You can also use #if to selectively add fields to a type, based on some compile-time boolean expressions.

For example:

typedef struct _StaticConditionalPoint {
     UINT32 d1;
     UINT32 d2;
  #if (DIM3 || DIM4)
     UINT32 d3;
  #endif
  #if DIM4
     UINT32 d4;
  #endif
} StaticConditionalPoint;

Which produces C code of the following shape:

  #if DIM3 || DIM4
  /* Validating field d3 */
  /* Checking that we have enough space for a UINT32, i.e., 4 bytes */
  BOOLEAN hasBytes = (uint64_t)4U <= (InputLength - positionAfterd2);
  ...
  #endif

  #if DIM4
  /* Validating field d4 */
  /* Checking that we have enough space for a UINT32, i.e., 4 bytes */
  BOOLEAN hasBytes = (uint64_t)4U <= (InputLength - positionAfterX4);
  ...
  #endif

Note, dependence between the branches of a #if is not allowed. For example, you cannot write

typedef struct _StaticConditionalPoint {
     UINT32 d1;
     UINT32 d2;
  #if (DIM3 || DIM4)
     UINT32 d3;
  #endif
  #if DIM4
     UINT32 d4
     { d3 <= d4 }; // <---- d3 is not available for use here!
  #endif
} StaticConditionalPoint;

If you must have dependence between the fields, then you need to distribute the fields between the branches,
For example, this is legal:

typedef struct _StaticConditionalPoint {
     UINT32 d1;
     UINT32 d2;
  #if DIM3
     UINT32 d3;
  #elif DIM4
     UINT32 d3;
     UINT32 d4
     { d3 <= d4 }; //Now you can refer to d3 in the constraint on d4
  #endif
} StaticConditionalPoint;

@nikswamy
fix up syntax of some examples that miss semicolons on struct fields;…
edc712d 
… fix grouping of fields; fix expected output in one case
@nikswamy
Copy link
Contributor Author

nikswamy commented Oct 5, 2022

FYI, as part of the generalization of the syntax to support nested structs and unions, I fixed the syntax to insist on every field declaration in a struct concluding with a semi-colon. This is in keeping with C syntax, whereas previously we would allow things like { int f; int g} without the semicolon after g. This syntax fix necessitated changes in a few examples.

nikswamy
nikswamy commented Nov 3, 2022
View reviewed changes
src/3d/Ast.fst
and field' =
| AtomicField of atomic_field
| RecordField : record -> ident -> field'
| SwitchCaseField : switch_case -> ident -> field'
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is one of the main changes in the PR.
A field is no longer just an atomic field. It can be a composite field too, enabled nested structs (RecordField) and unions (SwitchCaseField)

nikswamy
nikswamy commented Nov 3, 2022
View reviewed changes
src/3d/BitFields.fst
match field.v with
| RecordField _ _
| SwitchCaseField _ _ ->
Inl (rewrite_composite_field field) :: out
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

recurse to rewrite_field, to group bitfields within the record or union

nikswamy
nikswamy commented Nov 3, 2022
View reviewed changes
src/3d/BitFields.fst
then Inr(index, typ, af :: atomic_fields) :: tl //extend this bitfield group
else Inr(bf.v.bitfield_identifier, bf.v.bitfield_type, [af]) :: out //new bitfield group

| _ -> Inr (bf.v.bitfield_identifier, bf.v.bitfield_type, [af]) :: out //new bitfield group
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The behavior on atomic fields is the same as before

nikswamy
nikswamy commented Nov 3, 2022
View reviewed changes
src/3d/Deps.fst

let get_config () =
match !parsed_config with
| Some c -> Some c
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

parse the config once and memoize it

nikswamy
nikswamy commented Nov 3, 2022
View reviewed changes
src/3d/Desugar.fst
| This -> error "'this' is not allowed in the guard of an #if" e.range
| Static _ -> failwith "static should have been eliminated already"
| Constant _ -> ()
| Identifier i ->
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ensures that all variables in a #if are declared as compile-time flags in the config

@tahina-pro tahina-pro merged commit 4ee7762 into master Nov 4, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tahina-pro tahina-pro Awaiting requested review from tahina-pro

@aseemr aseemr Awaiting requested review from aseemr

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@nikswamy @tahina-pro