Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Check assumptions during simulation #1487

Draft
wants to merge 2 commits into
base: main
Choose a base branch
from
Draft

Check assumptions during simulation #1487

wants to merge 2 commits into from

Conversation

romac
Copy link
Member

@romac romac commented Aug 23, 2024
edited
Loading

See: #1450

module parent {
    const N: int

    action init = true
    action step = true
}

module small {
    import parent(N = 42).*

    assume LargeN = N > 100
}

module large {
    import parent(N = 200).*

    assume LargeN = N > 100
}
❯ npm run debug -- run --main small assume.qnt

error: [QNT510] assume1.qnt:11:5 - error: Assumption failed
11:     assume LargeN = N > 100
        ^^^^^^^^^^^^^^^^^^^^^^^

error: Runtime error

❯ npm run debug -- run --main large assume.qnt
(...)

[ok] No violation found (216ms).
  • Tests added for any new code
  • Documentation added for any new functionality
  • Entries added to the respective CHANGELOG.md for any new functionality
  • Feature table on README.md updated for any listed functionality

@romac romac mentioned this pull request Aug 23, 2024
Open
@romac romac requested a review from bugarela August 28, 2024 08:12
@romac romac marked this pull request as ready for review August 28, 2024 08:12
@bugarela
Copy link
Collaborator

Hi! It is awesome that you managed to make it work with such a small change.

However, there is one problem that you couldn't predict. I'm almost done with a big change to the simulator that will make this a bit harder.

In my new version, I eliminate flattening, so we don't have the issue of discarding assumes anymore. However, we only compile/evaluate expressions that are used (i.e. in quint run we only evaluate init, step and inv and anything that gets used by them).

So I think, ideally, we should have an additional pass that goes through assumptions in all modules and checks them, before compilation. On this pass, I believe it is possible to re-use most of your code here. But it will require a larger change in general. Therefore, I'd rather hold this change until my new evaluator gets merged, so we don't introduce one more thing to block it.

On a separate note: I don't remember how assumptions work in TLA+, but if they can refer to state variables, then we need to make sure we evaluate the assumptions for every single state we explore. This should be easier (I think) to do in the new evaluator (if it is the case).

@romac
Copy link
Member Author

romac commented Aug 28, 2024
edited
Loading

No problem, happy to figure out how to do this properly on top of your changes after those are merged.

@romac
Copy link
Member Author

romac commented Aug 28, 2024

Note in case that was not clear that this PR does not solve the issue of assumes getting lost in flattening, but only adds checks for those found in leaf modules.

@romac romac marked this pull request as draft August 29, 2024 08:37
@romac romac added the blocked Blocked by another issue or requirement label Aug 30, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bugarela bugarela Awaiting requested review from bugarela

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
blocked Blocked by another issue or requirement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@romac @bugarela