Wrap returned value from codegen_place in a Result to account for the possibility of an error due to unsupported operations (rust-lang#1057)

Author: zhassan-aws

src/kani-compiler/src/codegen_cprover_gotoc/codegen/operand.rs

@@ -2,6 +2,7 @@
 // SPDX-License-Identifier: Apache-2.0 OR MIT
 use crate::codegen_cprover_gotoc::utils::slice_fat_ptr;
 use crate::codegen_cprover_gotoc::GotocCtx;
+use crate::unwrap_or_return_codegen_unimplemented;
 use cbmc::goto_program::{Expr, Location, Stmt, Symbol, Type};
 use cbmc::NO_PRETTY_NAME;
 use rustc_ast::ast::Mutability;
@@ -27,7 +28,8 @@ impl<'tcx> GotocCtx<'tcx> {
             Operand::Copy(d) | Operand::Move(d) =>
             // TODO: move shouldn't be the same as copy
             {
-                let projection = self.codegen_place(d);
+                let projection =
+                    unwrap_or_return_codegen_unimplemented!(self, self.codegen_place(d));
                 // If the operand itself is a Dynamic (like when passing a boxed closure),
                 // we need to pull off the fat pointer. In that case, the rustc kind() on
                 // both the operand and the inner type are Dynamic.

src/kani-compiler/src/codegen_cprover_gotoc/codegen/place.rs

@@ -8,7 +8,7 @@
 use super::typ::TypeExt;
 use crate::codegen_cprover_gotoc::utils::slice_fat_ptr;
 use crate::codegen_cprover_gotoc::GotocCtx;
-use cbmc::goto_program::{Expr, Type};
+use cbmc::goto_program::{Expr, Location, Type};
 use rustc_hir::Mutability;
 use rustc_middle::ty::layout::LayoutOf;
 use rustc_middle::{
@@ -26,6 +26,19 @@ pub enum TypeOrVariant<'tcx> {
     Variant(&'tcx VariantDef),
 }
 
+/// A struct for storing the data for passing to `codegen_unimplemented`
+#[derive(Debug)]
+pub struct UnimplementedData {
+    /// The specific operation that is not supported
+    pub operation: String,
+    /// URL for issue on Kani github page
+    pub bug_url: String,
+    /// The resulting goto type of the operation
+    pub goto_type: Type,
+    /// Location of operation
+    pub loc: Location,
+}
+
 /// Relevent information about a projected place (i.e. an lvalue).
 #[derive(Debug)]
 pub struct ProjectedPlace<'tcx> {
@@ -290,9 +303,10 @@ impl<'tcx> GotocCtx<'tcx> {
     /// the return value is the expression after.
     fn codegen_projection(
         &mut self,
-        before: ProjectedPlace<'tcx>,
+        before: Result<ProjectedPlace<'tcx>, UnimplementedData>,
         proj: ProjectionElem<Local, Ty<'tcx>>,
-    ) -> ProjectedPlace<'tcx> {
+    ) -> Result<ProjectedPlace<'tcx>, UnimplementedData> {
+        let before = before?;
         match proj {
             ProjectionElem::Deref => {
                 let base_type = before.mir_typ();
@@ -360,18 +374,18 @@ impl<'tcx> GotocCtx<'tcx> {
                     _ => inner_goto_expr.dereference(),
                 };
                 let typ = TypeOrVariant::Type(inner_mir_typ);
-                ProjectedPlace::new(expr, typ, fat_ptr_goto_expr, fat_ptr_mir_typ, self)
+                Ok(ProjectedPlace::new(expr, typ, fat_ptr_goto_expr, fat_ptr_mir_typ, self))
             }
             ProjectionElem::Field(f, t) => {
                 let typ = TypeOrVariant::Type(t);
                 let expr = self.codegen_field(before.goto_expr, before.mir_typ_or_variant, &f);
-                ProjectedPlace::new(
+                Ok(ProjectedPlace::new(
                     expr,
                     typ,
                     before.fat_ptr_goto_expr,
                     before.fat_ptr_mir_typ,
                     self,
-                )
+                ))
             }
             ProjectionElem::Index(i) => {
                 let base_type = before.mir_typ();
@@ -385,21 +399,20 @@ impl<'tcx> GotocCtx<'tcx> {
                     ty::Slice(..) => before.goto_expr.index(idxe),
                     _ => unreachable!("must index an array"),
                 };
-                ProjectedPlace::new(
+                Ok(ProjectedPlace::new(
                     expr,
                     typ,
                     before.fat_ptr_goto_expr,
                     before.fat_ptr_mir_typ,
                     self,
-                )
+                ))
             }
             ProjectionElem::ConstantIndex { offset, min_length, from_end } => {
-                self.codegen_constant_index(before, offset, min_length, from_end)
+                Ok(self.codegen_constant_index(before, offset, min_length, from_end))
             }
             // Best effort to codegen subslice projection.
-            // This is known to fail with a CBMC invariant violation
-            // in some cases. Full support to be added in
-            // https://github.com/model-checking/kani/issues/357
+            // Full support to be added in
+            // https://github.com/model-checking/kani/issues/707
             ProjectionElem::Subslice { from, to, from_end } => {
                 // https://rust-lang.github.io/rfcs/2359-subslice-pattern-syntax.html
                 match before.mir_typ().kind() {
@@ -425,13 +438,13 @@ impl<'tcx> GotocCtx<'tcx> {
                         let from_elem = before.goto_expr.index(index);
                         let data = from_elem.address_of();
                         let fat_ptr = slice_fat_ptr(goto_type, data, len, &self.symbol_table);
-                        ProjectedPlace::new(
+                        Ok(ProjectedPlace::new(
                             fat_ptr.clone(),
                             TypeOrVariant::Type(ptr_typ),
                             Some(fat_ptr),
                             Some(ptr_typ),
                             self,
-                        )
+                        ))
                     }
                     _ => unreachable!("must be array or slice"),
                 }
@@ -456,13 +469,13 @@ impl<'tcx> GotocCtx<'tcx> {
                                 TagEncoding::Niche { .. } => before.goto_expr,
                             },
                         };
-                        ProjectedPlace::new(
+                        Ok(ProjectedPlace::new(
                             expr,
                             typ,
                             before.fat_ptr_goto_expr,
                             before.fat_ptr_mir_typ,
                             self,
-                        )
+                        ))
                     }
                     _ => unreachable!("it's a bug to reach here!"),
                 }
@@ -476,15 +489,18 @@ impl<'tcx> GotocCtx<'tcx> {
     /// This function follows the MIR projection to get the final useable lvalue.
     /// If it passes through a fat pointer along the way, it stores info about it,
     /// which can be useful in reconstructing fat pointer operations.
-    pub fn codegen_place(&mut self, p: &Place<'tcx>) -> ProjectedPlace<'tcx> {
+    pub fn codegen_place(
+        &mut self,
+        p: &Place<'tcx>,
+    ) -> Result<ProjectedPlace<'tcx>, UnimplementedData> {
         debug!(place=?p, "codegen_place");
         let initial_expr = self.codegen_local(p.local);
         let initial_typ = TypeOrVariant::Type(self.local_ty(p.local));
         debug!(?initial_typ, ?initial_expr, "codegen_place");
         let initial_projection = ProjectedPlace::new(initial_expr, initial_typ, None, None, self);
         p.projection
             .iter()
-            .fold(initial_projection, |accum, proj| self.codegen_projection(accum, proj))
+            .fold(Ok(initial_projection), |accum, proj| self.codegen_projection(accum, proj))
     }
 
     // https://doc.rust-lang.org/nightly/nightly-rustc/rustc_middle/mir/enum.ProjectionElem.html
@@ -550,3 +566,40 @@ impl<'tcx> GotocCtx<'tcx> {
         arr.member("0", &self.symbol_table).index_array(idx)
     }
 }
+
+/// A convenience macro that unwraps a `Result<ProjectPlace<'tcx>,
+/// Err<UnimplementedData>` if it is `Ok` and returns an `codegen_unimplemented`
+/// expression otherwise.
+/// Note that this macro affects the control flow since it calls `return`
+#[macro_export]
+macro_rules! unwrap_or_return_codegen_unimplemented {
+    ($ctx:expr, $pp_result:expr) => {{
+        if let Err(err) = $pp_result {
+            return $ctx.codegen_unimplemented(
+                err.operation.as_str(),
+                err.goto_type,
+                err.loc,
+                err.bug_url.as_str(),
+            );
+        }
+        $pp_result.unwrap()
+    }};
+}
+
+/// Same as the above macro, but returns a goto program `Stmt` instead
+#[macro_export]
+macro_rules! unwrap_or_return_codegen_unimplemented_stmt {
+    ($ctx:expr, $pp_result:expr) => {{
+        if let Err(err) = $pp_result {
+            return $ctx
+                .codegen_unimplemented(
+                    err.operation.as_str(),
+                    err.goto_type,
+                    err.loc,
+                    err.bug_url.as_str(),
+                )
+                .as_stmt(err.loc);
+        }
+        $pp_result.unwrap()
+    }};
+}

src/kani-compiler/src/codegen_cprover_gotoc/codegen/rvalue.rs

@@ -3,6 +3,7 @@
 use super::typ::{is_pointer, pointee_type, TypeExt};
 use crate::codegen_cprover_gotoc::utils::{dynamic_fat_ptr, slice_fat_ptr};
 use crate::codegen_cprover_gotoc::{GotocCtx, VtableCtx};
+use crate::unwrap_or_return_codegen_unimplemented;
 use cbmc::goto_program::{Expr, Location, Stmt, Symbol, Type};
 use cbmc::utils::BUG_REPORT_URL;
 use cbmc::MachineModel;
@@ -81,7 +82,7 @@ impl<'tcx> GotocCtx<'tcx> {
     /// Given a mir object denoted by a mir place, codegen a pointer to this object.
     pub fn codegen_rvalue_ref(&mut self, place: &Place<'tcx>, result_mir_type: Ty<'tcx>) -> Expr {
         let place_mir_type = self.place_ty(place);
-        let projection = self.codegen_place(place);
+        let projection = unwrap_or_return_codegen_unimplemented!(self, self.codegen_place(place));
 
         debug!("codegen_rvalue_ref: place: {:?}", place);
         debug!("codegen_rvalue_ref: place type: {:?}", place_mir_type);
@@ -203,9 +204,10 @@ impl<'tcx> GotocCtx<'tcx> {
         let pt = self.place_ty(p);
         match pt.kind() {
             ty::Array(_, sz) => self.codegen_const(*sz, None),
-            ty::Slice(_) => {
-                self.codegen_place(p).fat_ptr_goto_expr.unwrap().member("len", &self.symbol_table)
-            }
+            ty::Slice(_) => unwrap_or_return_codegen_unimplemented!(self, self.codegen_place(p))
+                .fat_ptr_goto_expr
+                .unwrap()
+                .member("len", &self.symbol_table),
             _ => unreachable!("Len(_) called on type that has no length: {:?}", pt),
         }
     }
@@ -411,7 +413,8 @@ impl<'tcx> GotocCtx<'tcx> {
                 UnOp::Neg => self.codegen_operand(e).neg(),
             },
             Rvalue::Discriminant(p) => {
-                let place = self.codegen_place(p).goto_expr;
+                let place =
+                    unwrap_or_return_codegen_unimplemented!(self, self.codegen_place(p)).goto_expr;
                 let pt = self.place_ty(p);
                 self.codegen_get_discriminant(place, pt, res_ty)
             }

src/kani-compiler/src/codegen_cprover_gotoc/codegen/statement.rs

@@ -5,6 +5,7 @@ use super::typ::FN_RETURN_VOID_VAR_NAME;
 use super::PropertyClass;
 use crate::codegen_cprover_gotoc::utils;
 use crate::codegen_cprover_gotoc::{GotocCtx, VtableCtx};
+use crate::unwrap_or_return_codegen_unimplemented_stmt;
 use cbmc::goto_program::{BuiltinFn, Expr, Location, Stmt, Type};
 use cbmc::utils::BUG_REPORT_URL;
 use kani_queries::UserInput;
@@ -63,7 +64,9 @@ impl<'tcx> GotocCtx<'tcx> {
                     self.codegen_ret_unit()
                 } else {
                     let p = Place::from(mir::RETURN_PLACE);
-                    let v = self.codegen_place(&p).goto_expr;
+                    let v =
+                        unwrap_or_return_codegen_unimplemented_stmt!(self, self.codegen_place(&p))
+                            .goto_expr;
                     if self.place_ty(&p).is_bool() {
                         v.cast_to(Type::c_bool()).ret(loc)
                     } else {
@@ -151,7 +154,9 @@ impl<'tcx> GotocCtx<'tcx> {
         let loc_ty = self.place_ty(location);
         let drop_instance = Instance::resolve_drop_in_place(self.tcx, loc_ty);
         if let Some(hk) = self.hooks.hook_applies(self.tcx, drop_instance) {
-            let le = self.codegen_place(location).goto_expr;
+            let le =
+                unwrap_or_return_codegen_unimplemented_stmt!(self, self.codegen_place(location))
+                    .goto_expr;
             hk.handle(self, drop_instance, vec![le], None, Some(*target), None)
         } else {
             let drop_implementation = match drop_instance.def {
@@ -163,8 +168,12 @@ impl<'tcx> GotocCtx<'tcx> {
                     match loc_ty.kind() {
                         ty::Dynamic(..) => {
                             // Virtual drop via a vtable lookup
-                            let trait_fat_ptr =
-                                self.codegen_place(location).fat_ptr_goto_expr.unwrap();
+                            let trait_fat_ptr = unwrap_or_return_codegen_unimplemented_stmt!(
+                                self,
+                                self.codegen_place(location)
+                            )
+                            .fat_ptr_goto_expr
+                            .unwrap();
 
                             // Pull the function off of the fat pointer's vtable pointer
                             let vtable_ref =
@@ -195,7 +204,10 @@ impl<'tcx> GotocCtx<'tcx> {
                             assert!(!matches!(drop_instance.def, InstanceDef::Virtual(_, _)));
 
                             let func = self.codegen_func_expr(drop_instance, None);
-                            let place = self.codegen_place(location);
+                            let place = unwrap_or_return_codegen_unimplemented_stmt!(
+                                self,
+                                self.codegen_place(location)
+                            );
                             let arg = if let Some(fat_ptr) = place.fat_ptr_goto_expr {
                                 // Drop takes the fat pointer if it exists
                                 fat_ptr
@@ -513,7 +525,9 @@ impl<'tcx> GotocCtx<'tcx> {
         if self.place_ty(p).is_unit() {
             e.as_stmt(Location::none())
         } else {
-            self.codegen_place(&p).goto_expr.assign(e, Location::none())
+            unwrap_or_return_codegen_unimplemented_stmt!(self, self.codegen_place(&p))
+                .goto_expr
+                .assign(e, Location::none())
         }
     }
 
@@ -576,15 +590,17 @@ impl<'tcx> GotocCtx<'tcx> {
                     // implicit address of a function pointer, e.g.
                     // let fp: fn() -> i32 = foo;
                     // where the reference is implicit.
-                    self.codegen_place(l)
+                    unwrap_or_return_codegen_unimplemented_stmt!(self, self.codegen_place(l))
                         .goto_expr
                         .assign(self.codegen_rvalue(r).address_of(), Location::none())
                 } else if rty.is_bool() {
-                    self.codegen_place(l)
+                    unwrap_or_return_codegen_unimplemented_stmt!(self, self.codegen_place(l))
                         .goto_expr
                         .assign(self.codegen_rvalue(r).cast_to(Type::c_bool()), Location::none())
                 } else {
-                    self.codegen_place(l).goto_expr.assign(self.codegen_rvalue(r), Location::none())
+                    unwrap_or_return_codegen_unimplemented_stmt!(self, self.codegen_place(l))
+                        .goto_expr
+                        .assign(self.codegen_rvalue(r), Location::none())
                 }
             }
             StatementKind::SetDiscriminant { place, variant_index } => {
@@ -624,10 +640,13 @@ impl<'tcx> GotocCtx<'tcx> {
                             // DISCRIMINANT - val:0 ty:i8
                             // DISCRIMINANT - val:1 ty:i8
                             let discr = Expr::int_constant(discr.val, self.codegen_ty(discr_t));
-                            self.codegen_place(place)
-                                .goto_expr
-                                .member("case", &self.symbol_table)
-                                .assign(discr, Location::none())
+                            unwrap_or_return_codegen_unimplemented_stmt!(
+                                self,
+                                self.codegen_place(place)
+                            )
+                            .goto_expr
+                            .member("case", &self.symbol_table)
+                            .assign(discr, Location::none())
                         }
                         TagEncoding::Niche { dataful_variant, niche_variants, niche_start } => {
                             if dataful_variant != variant_index {
@@ -647,7 +666,11 @@ impl<'tcx> GotocCtx<'tcx> {
                                 } else {
                                     Expr::int_constant(niche_value, discr_ty.clone())
                                 };
-                                let place = self.codegen_place(place).goto_expr;
+                                let place = unwrap_or_return_codegen_unimplemented_stmt!(
+                                    self,
+                                    self.codegen_place(place)
+                                )
+                                .goto_expr;
                                 self.codegen_get_niche(place, offset, discr_ty)
                                     .assign(value, Location::none())
                             } else {