Open goodlyrottenapple opened 10 months ago
Baltoli
commented
10 months ago To check my understanding of what you're looking for, you'd want to generate the following rules for every constructor c with arity n:
syntax SomeSort ::= c(S_1, ..., S_n)
rule c(a_1, ..., a_n) ==K c(a'_1, ..., a'_n) => true
requires a_1 ==K a'_1 andBool ... andBool a_n ==K a'_n
rule c(a_1, ..., a_n) ==K _Other => false [owise]
goodlyrottenapple
commented
10 months ago yes, although a better version might be
rule c(a_1, ..., a_n) ==K c(a'_1, ..., a'_n) => a_1 ==K a'_1 andBool ... andBool a_n ==K a'_n
rule c(a_1, ..., a_n) ==K _Other => false [owise]This is basically what the LLVM backend does internally when hooking ==K: https://github.com/runtimeverification/llvm-backend/blob/29bb01e45da52e13549f4f9a38dac91aacb6d0bd/runtime/collections/kelemle.cpp#L12; it's just an optimised native-code walk over the arguments of a constructor that dispatches to specialised implementations for hooked sorts.
Baltoli
commented
10 months ago I guess you would need to do a few things here to implement the change:
==K symbol to some internal symbol, then reinstate it to unconditionally rewrite to the hooked internal symbol.There may also be something I'm missing as well; let's put this on the agenda for Thursday to discuss in detail.
goodlyrottenapple
commented
10 months ago Rename the ==K symbol to some internal symbol, then reinstate it to unconditionally rewrite to the hooked internal symbol.
Why would we need this? because of the LLVM backend? could we perhaps just add the equations to a separate symbolic module somehow?
Baltoli
commented
10 months ago Why would we need this?
You might not need to, I guess; my thought was to minimise the surface area of the change by adding a new customisation point but it might not be necessary on inspection. Would need to give it some more thought to say in detail.
Baltoli
commented
10 months ago @dwightguth mentions that to avoid a quadratic blowup in the number of equations we generate, we should take care to make sure the symbolic backend handles owise correctly.
There may have been a reason not to do this; the Maude backend went through a similar process when implementing ==K. @dwightguth will try to recall this; may have been Maude specific.
If we can do this in linear rules, it should be fine and we can try a prototype.
Baltoli
commented
10 months ago The Maude reason may have been that the Maude backend doesn't consider the possible values of a variable when applying an owise rule; this restriction probably doesn't apply elsewhere and so the linear-rules axiomatisation might well work.
Another issue is confluence; rules for equality need to apply on fully-simplified arguments in order for ==K to be sound.
ehildenb
commented
10 months ago Some thoughts:
_==K_.owise rule may not even be needed, since we just need it to decompose when it can. That should also avoid the problem with it picking false for things where the terms aren't already simplified. Maybe though having the owise is important for path pruning.
dwightguth
commented
10 months ago The maude and llvm backends should be able to handle the equations you're talking about generating, but it will certainly be less efficient than what it's currently doing, so my suggestion would be to enable them only for the backends you need them on.
I agree that the non-owise rule should be sound if generated for free constructors only, even if the arguments are not simplified. This is not true for the owise rule unless the implementation of owise simplifies its arguments previously to applying the owise rule. For example, if foo is a function that evaluates to bar, and bar is a free constructor, the owise rule above might apply and rewrite foo == bar to false, which is not sound.
Without the owise rule, two unequal terms cannot be rewritten to false without a quadratic number of axioms. If you don't care about reducing unequal terms to false, that axiom is of course not needed.
ehildenb
commented
10 months ago I'm pretty sure the haskell backend should not apply the owise rule unless it can definitely tell that it applies, which means that it definitely knows the non-owise cannot apply. This is different than Maude's built-in equality, for example, which relies on syntactic normal forms.
So I think for the Haskell backend at least, it should be safe to generate the owise. Either way, I believe @goodlyrottenapple is first implementing it hardcoded in the backend to test the concept and performance, then we can think about generating axioms.
Baltoli
commented
10 months ago ... first implementing it hardcoded in the backend to test the concept and performance ...
Nice, that makes sense to me. Can discuss further this afternoon
Baltoli
commented
9 months ago This is not a pressing issue; the booster has implemented something morally equivalent to what we'd see if we implemented this generation of equations.
There is the possible future benefit that generating the equations would be "purer", but not a priority.
We have recently noticed that both the haskell backend and llvm backend hook the
==Ksymbol directly (LLVM) or rewrite to#Equals(haskell backend), both of which are internal simplification/evaluation strategies which are opaque to the user (i.e. the question of why some... ==K ...term was simplified to something else cannot be traced easily in the haskell backend, because we simplified to{ ... #Equals ... }and afterwards, no kore rules were applied because the internal logic of#Equalswas used). In booster, we are trying to minimise the amount of built in behaviour and it would make sense for the backend to use generated equations for==K, rather than rely on a builtin simplifier. Would it be possible to generate rules for==Kor is there some inherent limitation that would prevent us form doing this?