Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RFC Function Contracts #2620

Merged
merged 41 commits into from
Aug 25, 2023
Merged

RFC Function Contracts #2620

merged 41 commits into from
Aug 25, 2023

Conversation

JustusAdam
Copy link
Contributor

@JustusAdam JustusAdam commented Jul 24, 2023
edited
Loading

Rendered

Proposes the addition of function contracts and mechanisms to check them and use them as modular abstractions.

@JustusAdam JustusAdam requested a review from a team as a code owner July 24, 2023 19:30
@JustusAdam JustusAdam changed the title Function contract RFC first draft RFC Function Contracts Jul 24, 2023
@JustusAdam JustusAdam self-assigned this Jul 24, 2023
@JustusAdam JustusAdam added this to the Function Contracts MVP milestone Jul 24, 2023
@JustusAdam JustusAdam marked this pull request as draft July 24, 2023 20:00
celinval
celinval reviewed Jul 26, 2023
View reviewed changes
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
feliperodri
feliperodri requested changes Jul 28, 2023
View reviewed changes
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
celinval
celinval reviewed Jul 28, 2023
View reviewed changes
Copy link
Contributor

@celinval celinval left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I like this structure much better! Thanks.

I haven't finished reviewing it yet. I'll keep looking at it later today.

I do have two things I would like to discuss:

  1. Our previous contract implementation uses #[kani::modifies] instead of assigns. I like that better.
  2. I think it should be up to the user to verify their contracts. We shouldn't enforce it inside Kani, especially for contracts defined in a dependency.

rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
@JustusAdam JustusAdam mentioned this pull request Aug 3, 2023
Merged
4 tasks
@JustusAdam JustusAdam marked this pull request as ready for review August 3, 2023 21:28
celinval
celinval reviewed Aug 3, 2023
View reviewed changes
Copy link
Contributor

@celinval celinval left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please don't forget to change the summary.md file

rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
adpaco-aws
adpaco-aws reviewed Aug 7, 2023
View reviewed changes
Copy link
Contributor

@adpaco-aws adpaco-aws left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The "User Experience" section is structured in a way that makes it a little hard-to-follow. It seems to me that you're trying to tackle three problems at once: specification, checking and replacement. Maybe each could have their own subsection instead of being itemized?
There's a similar issue with "Rationale and alternatives" and "Future possibilities", although I haven't carefully read them yet.

rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0008-function-contracts.md Outdated Show resolved Hide resolved
JustusAdam and others added 4 commits August 9, 2023 12:30
@JustusAdam @celinval @adpaco-aws
Apply suggestions from code review
90280b4 
Co-authored-by: Celina G. Val <celinval@amazon.com>
Co-authored-by: Adrian Palacios <73246657+adpaco-aws@users.noreply.github.com>
@JustusAdam
Addressing more comments
474afc6
@JustusAdam
Rename file
c0f08b8
@JustusAdam
Edit summary
21f3c37
adpaco-aws
adpaco-aws reviewed Aug 15, 2023
View reviewed changes
Copy link
Contributor

@adpaco-aws adpaco-aws left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @JustusAdam , it's looking great! Only a couple technical comments, the rest are more related to writing.

rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
JustusAdam and others added 4 commits August 15, 2023 21:12
@JustusAdam
Spellcheck
e37d23e
@JustusAdam
Spell checks and suggestions
61f956a
@JustusAdam @celinval @adpaco-aws
Apply suggestions from code review
6b6d371 
Co-authored-by: Celina G. Val <celinval@amazon.com>
Co-authored-by: Adrian Palacios <73246657+adpaco-aws@users.noreply.github.com>
@JustusAdam
Suggestions and expansions
8dee5ca
celinval
celinval reviewed Aug 17, 2023
View reviewed changes
Copy link
Contributor

@celinval celinval left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Almost there. :)

rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
JustusAdam and others added 2 commits August 16, 2023 18:16
@celinval
Copy link
Contributor

BTW, please wait for a second approval before merging. Thanks!

adpaco-aws
adpaco-aws approved these changes Aug 17, 2023
View reviewed changes
Copy link
Contributor

@adpaco-aws adpaco-aws left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @JustusAdam ! Please take care of unresolved comments before merging.

rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/SUMMARY.md Show resolved Hide resolved
@JustusAdam
Copy link
Contributor Author

BTW, please wait for a second approval before merging. Thanks!

I'm going to wait for @remi-delmas-3000 to give it another look because there are some unresolved comments before merging.

remi-delmas-3000
remi-delmas-3000 reviewed Aug 18, 2023
View reviewed changes
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Outdated Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Show resolved Hide resolved
rfc/src/rfcs/0009-function-contracts.md Show resolved Hide resolved
@JustusAdam JustusAdam merged commit 62142e4 into model-checking:main Aug 25, 2023
12 checks passed
@JustusAdam JustusAdam deleted the contracts-rfc branch August 25, 2023 00:34
tautschnig pushed a commit to tautschnig/kani that referenced this pull request Aug 30, 2023
@JustusAdam @celinval
@adpaco-aws @tautschnig
RFC Function Contracts (model-checking#2620)
e11d083 
Co-authored-by: Celina G. Val <celinval@amazon.com>
Co-authored-by: Adrian Palacios <73246657+adpaco-aws@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@remi-delmas-3000 remi-delmas-3000 remi-delmas-3000 left review comments

@celinval celinval celinval approved these changes

@feliperodri feliperodri feliperodri approved these changes

@adpaco-aws adpaco-aws adpaco-aws approved these changes

Assignees

@JustusAdam JustusAdam

Labels
None yet
Projects
No open projects
Kani 2023-08-01
Status: In Progress
Kani 2023-09-12
Status: Done
Milestone
Function Contracts
Development

Successfully merging this pull request may close these issues.
5 participants
@JustusAdam @celinval @remi-delmas-3000 @feliperodri @adpaco-aws