2025-08-12 11:33:48 +00:00
|
|
|
/*!
|
|
|
|
|
* MIR Verification - SSA form and semantic verification
|
|
|
|
|
*
|
|
|
|
|
* Implements dominance checking, SSA verification, and semantic analysis
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
use super::{MirModule, MirFunction, BasicBlockId, ValueId};
|
|
|
|
|
use std::collections::{HashSet, HashMap};
|
|
|
|
|
|
|
|
|
|
/// Verification error types
|
|
|
|
|
#[derive(Debug, Clone, PartialEq)]
|
|
|
|
|
pub enum VerificationError {
|
|
|
|
|
/// Undefined value used
|
|
|
|
|
UndefinedValue {
|
|
|
|
|
value: ValueId,
|
|
|
|
|
block: BasicBlockId,
|
|
|
|
|
instruction_index: usize,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
/// Value defined multiple times
|
|
|
|
|
MultipleDefinition {
|
|
|
|
|
value: ValueId,
|
|
|
|
|
first_block: BasicBlockId,
|
|
|
|
|
second_block: BasicBlockId,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
/// Invalid phi function
|
|
|
|
|
InvalidPhi {
|
|
|
|
|
phi_value: ValueId,
|
|
|
|
|
block: BasicBlockId,
|
|
|
|
|
reason: String,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
/// Unreachable block
|
|
|
|
|
UnreachableBlock {
|
|
|
|
|
block: BasicBlockId,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
/// Control flow error
|
|
|
|
|
ControlFlowError {
|
|
|
|
|
block: BasicBlockId,
|
|
|
|
|
reason: String,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
/// Dominator violation
|
|
|
|
|
DominatorViolation {
|
|
|
|
|
value: ValueId,
|
|
|
|
|
use_block: BasicBlockId,
|
|
|
|
|
def_block: BasicBlockId,
|
|
|
|
|
},
|
2025-08-23 16:33:32 +09:00
|
|
|
/// Merge block uses predecessor-defined value directly instead of Phi
|
|
|
|
|
MergeUsesPredecessorValue {
|
|
|
|
|
value: ValueId,
|
|
|
|
|
merge_block: BasicBlockId,
|
|
|
|
|
pred_block: BasicBlockId,
|
|
|
|
|
},
|
2025-08-24 02:52:11 +09:00
|
|
|
/// WeakRef(load) must originate from a WeakNew/WeakRef(new)
|
|
|
|
|
InvalidWeakRefSource {
|
|
|
|
|
weak_ref: ValueId,
|
|
|
|
|
block: BasicBlockId,
|
|
|
|
|
instruction_index: usize,
|
|
|
|
|
reason: String,
|
|
|
|
|
},
|
|
|
|
|
/// Barrier pointer must not be a void constant
|
|
|
|
|
InvalidBarrierPointer {
|
|
|
|
|
ptr: ValueId,
|
|
|
|
|
block: BasicBlockId,
|
|
|
|
|
instruction_index: usize,
|
|
|
|
|
reason: String,
|
|
|
|
|
},
|
2025-08-26 00:48:09 +09:00
|
|
|
/// Barrier appears without nearby memory ops (diagnostic; strict mode only)
|
|
|
|
|
SuspiciousBarrierContext {
|
|
|
|
|
block: BasicBlockId,
|
|
|
|
|
instruction_index: usize,
|
|
|
|
|
note: String,
|
|
|
|
|
},
|
2025-08-12 11:33:48 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// MIR verifier for SSA form and semantic correctness
|
|
|
|
|
pub struct MirVerifier {
|
|
|
|
|
/// Current verification errors
|
|
|
|
|
errors: Vec<VerificationError>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl MirVerifier {
|
|
|
|
|
/// Create a new MIR verifier
|
|
|
|
|
pub fn new() -> Self {
|
|
|
|
|
Self {
|
|
|
|
|
errors: Vec::new(),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Verify an entire MIR module
|
|
|
|
|
pub fn verify_module(&mut self, module: &MirModule) -> Result<(), Vec<VerificationError>> {
|
|
|
|
|
self.errors.clear();
|
|
|
|
|
|
2025-08-16 17:39:04 +09:00
|
|
|
for (_name, function) in &module.functions {
|
2025-08-12 11:33:48 +00:00
|
|
|
if let Err(mut func_errors) = self.verify_function(function) {
|
|
|
|
|
// Add function context to errors
|
2025-08-16 17:39:04 +09:00
|
|
|
for _error in &mut func_errors {
|
2025-08-12 11:33:48 +00:00
|
|
|
// Could add function name to error context here
|
|
|
|
|
}
|
|
|
|
|
self.errors.extend(func_errors);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if self.errors.is_empty() {
|
|
|
|
|
Ok(())
|
|
|
|
|
} else {
|
|
|
|
|
Err(self.errors.clone())
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Verify a single MIR function
|
|
|
|
|
pub fn verify_function(&mut self, function: &MirFunction) -> Result<(), Vec<VerificationError>> {
|
|
|
|
|
let mut local_errors = Vec::new();
|
|
|
|
|
|
|
|
|
|
// 1. Check SSA form
|
|
|
|
|
if let Err(mut ssa_errors) = self.verify_ssa_form(function) {
|
|
|
|
|
local_errors.append(&mut ssa_errors);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 2. Check dominance relations
|
|
|
|
|
if let Err(mut dom_errors) = self.verify_dominance(function) {
|
|
|
|
|
local_errors.append(&mut dom_errors);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 3. Check control flow integrity
|
|
|
|
|
if let Err(mut cfg_errors) = self.verify_control_flow(function) {
|
|
|
|
|
local_errors.append(&mut cfg_errors);
|
|
|
|
|
}
|
2025-08-23 16:33:32 +09:00
|
|
|
// 4. Check merge-block value usage (ensure Phi is used)
|
|
|
|
|
if let Err(mut merge_errors) = self.verify_merge_uses(function) {
|
|
|
|
|
local_errors.append(&mut merge_errors);
|
|
|
|
|
}
|
2025-08-24 02:52:11 +09:00
|
|
|
// 5. Minimal checks for WeakRef/Barrier
|
|
|
|
|
if let Err(mut weak_barrier_errors) = self.verify_weakref_and_barrier(function) {
|
|
|
|
|
local_errors.append(&mut weak_barrier_errors);
|
|
|
|
|
}
|
2025-08-26 00:48:09 +09:00
|
|
|
// 6. Light barrier-context diagnostic (strict mode only)
|
|
|
|
|
if let Err(mut barrier_ctx) = self.verify_barrier_context(function) {
|
|
|
|
|
local_errors.append(&mut barrier_ctx);
|
|
|
|
|
}
|
2025-08-12 11:33:48 +00:00
|
|
|
|
|
|
|
|
if local_errors.is_empty() {
|
|
|
|
|
Ok(())
|
|
|
|
|
} else {
|
|
|
|
|
Err(local_errors)
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-08-24 02:52:11 +09:00
|
|
|
|
|
|
|
|
/// Verify WeakRef/Barrier minimal semantics
|
|
|
|
|
fn verify_weakref_and_barrier(&self, function: &MirFunction) -> Result<(), Vec<VerificationError>> {
|
|
|
|
|
use super::MirInstruction;
|
|
|
|
|
let mut errors = Vec::new();
|
|
|
|
|
// Build def map value -> (block, idx, &inst)
|
|
|
|
|
let mut def_map: HashMap<ValueId, (BasicBlockId, usize, &MirInstruction)> = HashMap::new();
|
|
|
|
|
for (bid, block) in &function.blocks {
|
|
|
|
|
for (idx, inst) in block.all_instructions().enumerate() {
|
|
|
|
|
if let Some(dst) = inst.dst_value() {
|
|
|
|
|
def_map.insert(dst, (*bid, idx, inst));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (bid, block) in &function.blocks {
|
|
|
|
|
for (idx, inst) in block.all_instructions().enumerate() {
|
|
|
|
|
match inst {
|
|
|
|
|
MirInstruction::WeakRef { op: super::WeakRefOp::Load, value, .. } => {
|
|
|
|
|
match def_map.get(value) {
|
|
|
|
|
Some((_db, _di, def_inst)) => match def_inst {
|
|
|
|
|
MirInstruction::WeakRef { op: super::WeakRefOp::New, .. } | MirInstruction::WeakNew { .. } => {}
|
|
|
|
|
_ => {
|
|
|
|
|
errors.push(VerificationError::InvalidWeakRefSource {
|
|
|
|
|
weak_ref: *value,
|
|
|
|
|
block: *bid,
|
|
|
|
|
instruction_index: idx,
|
|
|
|
|
reason: "weakref.load source is not a weakref.new/weak_new".to_string(),
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
None => {
|
|
|
|
|
errors.push(VerificationError::InvalidWeakRefSource {
|
|
|
|
|
weak_ref: *value,
|
|
|
|
|
block: *bid,
|
|
|
|
|
instruction_index: idx,
|
|
|
|
|
reason: "weakref.load source is undefined".to_string(),
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
MirInstruction::WeakLoad { weak_ref, .. } => {
|
|
|
|
|
match def_map.get(weak_ref) {
|
|
|
|
|
Some((_db, _di, def_inst)) => match def_inst {
|
|
|
|
|
MirInstruction::WeakNew { .. } | MirInstruction::WeakRef { op: super::WeakRefOp::New, .. } => {}
|
|
|
|
|
_ => {
|
|
|
|
|
errors.push(VerificationError::InvalidWeakRefSource {
|
|
|
|
|
weak_ref: *weak_ref,
|
|
|
|
|
block: *bid,
|
|
|
|
|
instruction_index: idx,
|
|
|
|
|
reason: "weak_load source is not a weak_new/weakref.new".to_string(),
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
None => {
|
|
|
|
|
errors.push(VerificationError::InvalidWeakRefSource {
|
|
|
|
|
weak_ref: *weak_ref,
|
|
|
|
|
block: *bid,
|
|
|
|
|
instruction_index: idx,
|
|
|
|
|
reason: "weak_load source is undefined".to_string(),
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
MirInstruction::Barrier { ptr, .. } | MirInstruction::BarrierRead { ptr } | MirInstruction::BarrierWrite { ptr } => {
|
|
|
|
|
if let Some((_db, _di, def_inst)) = def_map.get(ptr) {
|
|
|
|
|
if let MirInstruction::Const { value: super::ConstValue::Void, .. } = def_inst {
|
|
|
|
|
errors.push(VerificationError::InvalidBarrierPointer {
|
|
|
|
|
ptr: *ptr,
|
|
|
|
|
block: *bid,
|
|
|
|
|
instruction_index: idx,
|
|
|
|
|
reason: "barrier pointer is void".to_string(),
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
_ => {}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if errors.is_empty() { Ok(()) } else { Err(errors) }
|
2025-08-26 00:48:09 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Light diagnostic: Barrier should be near memory ops in the same block (best-effort)
|
|
|
|
|
/// Enabled only when NYASH_VERIFY_BARRIER_STRICT=1
|
|
|
|
|
fn verify_barrier_context(&self, function: &MirFunction) -> Result<(), Vec<VerificationError>> {
|
|
|
|
|
let strict = std::env::var("NYASH_VERIFY_BARRIER_STRICT").ok().as_deref() == Some("1");
|
|
|
|
|
if !strict { return Ok(()); }
|
|
|
|
|
|
|
|
|
|
use super::MirInstruction;
|
|
|
|
|
let mut errors = Vec::new();
|
|
|
|
|
for (bid, block) in &function.blocks {
|
|
|
|
|
// Build a flat vec of (idx, &inst) including terminator (as last)
|
|
|
|
|
let mut insts: Vec<(usize, &MirInstruction)> = block.instructions.iter().enumerate().collect();
|
|
|
|
|
if let Some(term) = &block.terminator {
|
|
|
|
|
insts.push((usize::MAX, term));
|
|
|
|
|
}
|
|
|
|
|
for (idx, inst) in &insts {
|
|
|
|
|
let is_barrier = matches!(inst,
|
|
|
|
|
MirInstruction::Barrier { .. } |
|
|
|
|
|
MirInstruction::BarrierRead { .. } |
|
|
|
|
|
MirInstruction::BarrierWrite { .. }
|
|
|
|
|
);
|
|
|
|
|
if !is_barrier { continue; }
|
|
|
|
|
|
|
|
|
|
// Look around +-2 instructions for a memory op hint
|
|
|
|
|
let mut has_mem_neighbor = false;
|
|
|
|
|
for (j, other) in &insts {
|
|
|
|
|
if *j == *idx { continue; }
|
|
|
|
|
// integer distance (treat usize::MAX as distant)
|
|
|
|
|
let dist = if *idx == usize::MAX || *j == usize::MAX { 99 } else { idx.max(j) - idx.min(j) };
|
|
|
|
|
if dist > 2 { continue; }
|
|
|
|
|
if matches!(other,
|
|
|
|
|
MirInstruction::Load { .. } |
|
|
|
|
|
MirInstruction::Store { .. } |
|
|
|
|
|
MirInstruction::ArrayGet { .. } |
|
|
|
|
|
MirInstruction::ArraySet { .. } |
|
|
|
|
|
MirInstruction::RefGet { .. } |
|
|
|
|
|
MirInstruction::RefSet { .. }
|
|
|
|
|
) {
|
|
|
|
|
has_mem_neighbor = true;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if !has_mem_neighbor {
|
|
|
|
|
errors.push(VerificationError::SuspiciousBarrierContext {
|
|
|
|
|
block: *bid,
|
|
|
|
|
instruction_index: *idx,
|
|
|
|
|
note: "barrier without nearby memory op (±2 inst)".to_string(),
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if errors.is_empty() { Ok(()) } else { Err(errors) }
|
2025-08-24 02:52:11 +09:00
|
|
|
}
|
2025-08-12 11:33:48 +00:00
|
|
|
|
|
|
|
|
/// Verify SSA form properties
|
|
|
|
|
fn verify_ssa_form(&self, function: &MirFunction) -> Result<(), Vec<VerificationError>> {
|
|
|
|
|
let mut errors = Vec::new();
|
|
|
|
|
let mut definitions = HashMap::new();
|
|
|
|
|
|
|
|
|
|
// Check that each value is defined exactly once
|
|
|
|
|
for (block_id, block) in &function.blocks {
|
|
|
|
|
for (inst_idx, instruction) in block.all_instructions().enumerate() {
|
|
|
|
|
if let Some(dst) = instruction.dst_value() {
|
|
|
|
|
if let Some((first_block, _)) = definitions.insert(dst, (*block_id, inst_idx)) {
|
|
|
|
|
errors.push(VerificationError::MultipleDefinition {
|
|
|
|
|
value: dst,
|
|
|
|
|
first_block,
|
|
|
|
|
second_block: *block_id,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check that all used values are defined
|
|
|
|
|
for (block_id, block) in &function.blocks {
|
|
|
|
|
for (inst_idx, instruction) in block.all_instructions().enumerate() {
|
|
|
|
|
for used_value in instruction.used_values() {
|
|
|
|
|
if !definitions.contains_key(&used_value) {
|
|
|
|
|
errors.push(VerificationError::UndefinedValue {
|
|
|
|
|
value: used_value,
|
|
|
|
|
block: *block_id,
|
|
|
|
|
instruction_index: inst_idx,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if errors.is_empty() {
|
|
|
|
|
Ok(())
|
|
|
|
|
} else {
|
|
|
|
|
Err(errors)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-08-23 19:27:02 +09:00
|
|
|
/// Verify dominance relations (def must dominate use across blocks)
|
2025-08-12 11:33:48 +00:00
|
|
|
fn verify_dominance(&self, function: &MirFunction) -> Result<(), Vec<VerificationError>> {
|
2025-08-23 19:27:02 +09:00
|
|
|
let mut errors = Vec::new();
|
|
|
|
|
|
|
|
|
|
// Build def -> block map and dominators
|
|
|
|
|
let def_block = self.compute_def_blocks(function);
|
|
|
|
|
let dominators = self.compute_dominators(function);
|
|
|
|
|
|
|
|
|
|
for (use_block_id, block) in &function.blocks {
|
2025-08-12 11:33:48 +00:00
|
|
|
for instruction in block.all_instructions() {
|
|
|
|
|
for used_value in instruction.used_values() {
|
2025-08-23 19:27:02 +09:00
|
|
|
if let Some(&def_bb) = def_block.get(&used_value) {
|
|
|
|
|
if def_bb != *use_block_id {
|
|
|
|
|
let doms = dominators.get(use_block_id).unwrap();
|
|
|
|
|
if !doms.contains(&def_bb) {
|
|
|
|
|
errors.push(VerificationError::DominatorViolation {
|
|
|
|
|
value: used_value,
|
|
|
|
|
use_block: *use_block_id,
|
|
|
|
|
def_block: def_bb,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-08-12 11:33:48 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-08-23 19:27:02 +09:00
|
|
|
|
|
|
|
|
if errors.is_empty() { Ok(()) } else { Err(errors) }
|
2025-08-12 11:33:48 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Verify control flow graph integrity
|
|
|
|
|
fn verify_control_flow(&self, function: &MirFunction) -> Result<(), Vec<VerificationError>> {
|
|
|
|
|
let mut errors = Vec::new();
|
|
|
|
|
|
|
|
|
|
// Check that all referenced blocks exist
|
|
|
|
|
for (block_id, block) in &function.blocks {
|
|
|
|
|
for successor in &block.successors {
|
|
|
|
|
if !function.blocks.contains_key(successor) {
|
|
|
|
|
errors.push(VerificationError::ControlFlowError {
|
|
|
|
|
block: *block_id,
|
|
|
|
|
reason: format!("References non-existent block {}", successor),
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check that all blocks are reachable from entry
|
|
|
|
|
let reachable = self.compute_reachable_blocks(function);
|
|
|
|
|
for block_id in function.blocks.keys() {
|
|
|
|
|
if !reachable.contains(block_id) && *block_id != function.entry_block {
|
|
|
|
|
errors.push(VerificationError::UnreachableBlock {
|
|
|
|
|
block: *block_id,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if errors.is_empty() {
|
|
|
|
|
Ok(())
|
|
|
|
|
} else {
|
|
|
|
|
Err(errors)
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-08-23 16:33:32 +09:00
|
|
|
|
|
|
|
|
/// Verify that blocks with multiple predecessors do not use predecessor-defined values directly.
|
|
|
|
|
/// In merge blocks, values coming from predecessors must be routed through Phi.
|
|
|
|
|
fn verify_merge_uses(&self, function: &MirFunction) -> Result<(), Vec<VerificationError>> {
|
|
|
|
|
let mut errors = Vec::new();
|
2025-08-23 19:27:02 +09:00
|
|
|
let preds = self.compute_predecessors(function);
|
|
|
|
|
let def_block = self.compute_def_blocks(function);
|
|
|
|
|
let dominators = self.compute_dominators(function);
|
2025-08-23 16:33:32 +09:00
|
|
|
// Helper: collect phi dsts in a block
|
|
|
|
|
let mut phi_dsts_in_block: std::collections::HashMap<BasicBlockId, std::collections::HashSet<ValueId>> = std::collections::HashMap::new();
|
|
|
|
|
for (bid, block) in &function.blocks {
|
|
|
|
|
let set = phi_dsts_in_block.entry(*bid).or_default();
|
|
|
|
|
for inst in block.all_instructions() {
|
|
|
|
|
if let super::MirInstruction::Phi { dst, .. } = inst { set.insert(*dst); }
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (bid, block) in &function.blocks {
|
|
|
|
|
let Some(pred_list) = preds.get(bid) else { continue };
|
|
|
|
|
if pred_list.len() < 2 { continue; }
|
|
|
|
|
let phi_dsts = phi_dsts_in_block.get(bid);
|
2025-08-23 19:27:02 +09:00
|
|
|
let doms_of_block = dominators.get(bid).unwrap();
|
2025-08-23 16:33:32 +09:00
|
|
|
// check instructions including terminator
|
|
|
|
|
for inst in block.all_instructions() {
|
|
|
|
|
for used in inst.used_values() {
|
|
|
|
|
if let Some(&db) = def_block.get(&used) {
|
2025-08-23 19:27:02 +09:00
|
|
|
// If def doesn't dominate merge block, it must be routed via phi
|
|
|
|
|
if !doms_of_block.contains(&db) {
|
2025-08-23 16:33:32 +09:00
|
|
|
let is_phi_dst = phi_dsts.map(|s| s.contains(&used)).unwrap_or(false);
|
|
|
|
|
if !is_phi_dst {
|
|
|
|
|
errors.push(VerificationError::MergeUsesPredecessorValue {
|
|
|
|
|
value: used,
|
|
|
|
|
merge_block: *bid,
|
|
|
|
|
pred_block: db,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if errors.is_empty() { Ok(()) } else { Err(errors) }
|
|
|
|
|
}
|
2025-08-12 11:33:48 +00:00
|
|
|
|
|
|
|
|
/// Compute reachable blocks from entry
|
|
|
|
|
fn compute_reachable_blocks(&self, function: &MirFunction) -> HashSet<BasicBlockId> {
|
|
|
|
|
let mut reachable = HashSet::new();
|
|
|
|
|
let mut worklist = vec![function.entry_block];
|
|
|
|
|
|
|
|
|
|
while let Some(current) = worklist.pop() {
|
|
|
|
|
if reachable.insert(current) {
|
|
|
|
|
if let Some(block) = function.blocks.get(¤t) {
|
2025-08-13 07:13:53 +00:00
|
|
|
// Add normal successors
|
2025-08-12 11:33:48 +00:00
|
|
|
for successor in &block.successors {
|
|
|
|
|
if !reachable.contains(successor) {
|
|
|
|
|
worklist.push(*successor);
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-08-13 07:13:53 +00:00
|
|
|
|
|
|
|
|
// Add exception handler blocks as reachable
|
|
|
|
|
for instruction in &block.instructions {
|
|
|
|
|
if let super::MirInstruction::Catch { handler_bb, .. } = instruction {
|
|
|
|
|
if !reachable.contains(handler_bb) {
|
|
|
|
|
worklist.push(*handler_bb);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Also check terminator for exception handlers
|
|
|
|
|
if let Some(ref terminator) = block.terminator {
|
|
|
|
|
if let super::MirInstruction::Catch { handler_bb, .. } = terminator {
|
|
|
|
|
if !reachable.contains(handler_bb) {
|
|
|
|
|
worklist.push(*handler_bb);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-08-12 11:33:48 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
reachable
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Get all verification errors from the last run
|
|
|
|
|
pub fn get_errors(&self) -> &[VerificationError] {
|
|
|
|
|
&self.errors
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Clear verification errors
|
|
|
|
|
pub fn clear_errors(&mut self) {
|
|
|
|
|
self.errors.clear();
|
|
|
|
|
}
|
2025-08-23 19:27:02 +09:00
|
|
|
|
|
|
|
|
/// Build predecessor map for all blocks
|
|
|
|
|
fn compute_predecessors(&self, function: &MirFunction) -> HashMap<BasicBlockId, Vec<BasicBlockId>> {
|
|
|
|
|
let mut preds: HashMap<BasicBlockId, Vec<BasicBlockId>> = HashMap::new();
|
|
|
|
|
for (bid, block) in &function.blocks {
|
|
|
|
|
for succ in &block.successors {
|
|
|
|
|
preds.entry(*succ).or_default().push(*bid);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
preds
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Build a map from ValueId to its defining block
|
|
|
|
|
fn compute_def_blocks(&self, function: &MirFunction) -> HashMap<ValueId, BasicBlockId> {
|
|
|
|
|
let mut def_block: HashMap<ValueId, BasicBlockId> = HashMap::new();
|
|
|
|
|
for (bid, block) in &function.blocks {
|
|
|
|
|
for inst in block.all_instructions() {
|
|
|
|
|
if let Some(dst) = inst.dst_value() { def_block.insert(dst, *bid); }
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
def_block
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Compute dominator sets per block using standard iterative algorithm
|
|
|
|
|
fn compute_dominators(&self, function: &MirFunction) -> HashMap<BasicBlockId, HashSet<BasicBlockId>> {
|
|
|
|
|
let all_blocks: HashSet<BasicBlockId> = function.blocks.keys().copied().collect();
|
|
|
|
|
let preds = self.compute_predecessors(function);
|
|
|
|
|
let mut dom: HashMap<BasicBlockId, HashSet<BasicBlockId>> = HashMap::new();
|
|
|
|
|
|
|
|
|
|
for &b in function.blocks.keys() {
|
|
|
|
|
if b == function.entry_block {
|
|
|
|
|
let mut set = HashSet::new();
|
|
|
|
|
set.insert(b);
|
|
|
|
|
dom.insert(b, set);
|
|
|
|
|
} else {
|
|
|
|
|
dom.insert(b, all_blocks.clone());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let mut changed = true;
|
|
|
|
|
while changed {
|
|
|
|
|
changed = false;
|
|
|
|
|
for &b in function.blocks.keys() {
|
|
|
|
|
if b == function.entry_block { continue; }
|
|
|
|
|
let mut new_set: HashSet<BasicBlockId> = all_blocks.clone();
|
|
|
|
|
if let Some(ps) = preds.get(&b) {
|
|
|
|
|
if !ps.is_empty() {
|
|
|
|
|
for (i, p) in ps.iter().enumerate() {
|
|
|
|
|
if let Some(p_set) = dom.get(p) {
|
|
|
|
|
if i == 0 { new_set = p_set.clone(); }
|
|
|
|
|
else { new_set = new_set.intersection(p_set).copied().collect(); }
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
new_set.insert(b);
|
|
|
|
|
if let Some(old) = dom.get(&b) {
|
|
|
|
|
if &new_set != old { dom.insert(b, new_set); changed = true; }
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
dom
|
|
|
|
|
}
|
2025-08-12 11:33:48 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl Default for MirVerifier {
|
|
|
|
|
fn default() -> Self {
|
|
|
|
|
Self::new()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl std::fmt::Display for VerificationError {
|
|
|
|
|
fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
|
|
|
|
|
match self {
|
|
|
|
|
VerificationError::UndefinedValue { value, block, instruction_index } => {
|
|
|
|
|
write!(f, "Undefined value {} used in block {} at instruction {}",
|
|
|
|
|
value, block, instruction_index)
|
|
|
|
|
},
|
|
|
|
|
VerificationError::MultipleDefinition { value, first_block, second_block } => {
|
|
|
|
|
write!(f, "Value {} defined multiple times: first in block {}, again in block {}",
|
|
|
|
|
value, first_block, second_block)
|
|
|
|
|
},
|
|
|
|
|
VerificationError::InvalidPhi { phi_value, block, reason } => {
|
|
|
|
|
write!(f, "Invalid phi function {} in block {}: {}",
|
|
|
|
|
phi_value, block, reason)
|
|
|
|
|
},
|
|
|
|
|
VerificationError::UnreachableBlock { block } => {
|
|
|
|
|
write!(f, "Unreachable block {}", block)
|
|
|
|
|
},
|
|
|
|
|
VerificationError::ControlFlowError { block, reason } => {
|
|
|
|
|
write!(f, "Control flow error in block {}: {}", block, reason)
|
|
|
|
|
},
|
|
|
|
|
VerificationError::DominatorViolation { value, use_block, def_block } => {
|
|
|
|
|
write!(f, "Value {} used in block {} but defined in non-dominating block {}",
|
|
|
|
|
value, use_block, def_block)
|
|
|
|
|
},
|
2025-08-23 16:33:32 +09:00
|
|
|
VerificationError::MergeUsesPredecessorValue { value, merge_block, pred_block } => {
|
|
|
|
|
write!(f, "Merge block {} uses predecessor-defined value {} from block {} without Phi",
|
|
|
|
|
merge_block, value, pred_block)
|
|
|
|
|
},
|
2025-08-24 02:52:11 +09:00
|
|
|
VerificationError::InvalidWeakRefSource { weak_ref, block, instruction_index, reason } => {
|
|
|
|
|
write!(f, "Invalid WeakRef source {} in block {} at {}: {}", weak_ref, block, instruction_index, reason)
|
|
|
|
|
},
|
|
|
|
|
VerificationError::InvalidBarrierPointer { ptr, block, instruction_index, reason } => {
|
|
|
|
|
write!(f, "Invalid Barrier pointer {} in block {} at {}: {}", ptr, block, instruction_index, reason)
|
|
|
|
|
},
|
2025-08-12 11:33:48 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
|
mod tests {
|
|
|
|
|
use super::*;
|
2025-08-23 16:33:32 +09:00
|
|
|
use crate::mir::{MirFunction, FunctionSignature, MirType, EffectMask, BasicBlock, MirBuilder, MirPrinter};
|
|
|
|
|
use crate::ast::{ASTNode, Span, LiteralValue};
|
2025-08-12 11:33:48 +00:00
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
|
fn test_valid_function_verification() {
|
|
|
|
|
let signature = FunctionSignature {
|
|
|
|
|
name: "test".to_string(),
|
|
|
|
|
params: vec![],
|
|
|
|
|
return_type: MirType::Void,
|
|
|
|
|
effects: EffectMask::PURE,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let entry_block = BasicBlockId::new(0);
|
|
|
|
|
let function = MirFunction::new(signature, entry_block);
|
|
|
|
|
|
|
|
|
|
let mut verifier = MirVerifier::new();
|
|
|
|
|
let result = verifier.verify_function(&function);
|
|
|
|
|
|
|
|
|
|
assert!(result.is_ok(), "Valid function should pass verification");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
|
fn test_undefined_value_detection() {
|
|
|
|
|
// This test would create a function with undefined value usage
|
|
|
|
|
// and verify that the verifier catches it
|
|
|
|
|
// Implementation details would depend on the specific test case
|
|
|
|
|
}
|
2025-08-23 16:33:32 +09:00
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
|
fn test_if_merge_uses_phi_not_predecessor() {
|
|
|
|
|
// Program:
|
|
|
|
|
// if true { result = "A" } else { result = "B" }
|
|
|
|
|
// result
|
|
|
|
|
let ast = ASTNode::Program {
|
|
|
|
|
statements: vec![
|
|
|
|
|
ASTNode::If {
|
|
|
|
|
condition: Box::new(ASTNode::Literal { value: LiteralValue::Bool(true), span: Span::unknown() }),
|
|
|
|
|
then_body: vec![ ASTNode::Assignment {
|
|
|
|
|
target: Box::new(ASTNode::Variable { name: "result".to_string(), span: Span::unknown() }),
|
|
|
|
|
value: Box::new(ASTNode::Literal { value: LiteralValue::String("A".to_string()), span: Span::unknown() }),
|
|
|
|
|
span: Span::unknown(),
|
|
|
|
|
}],
|
|
|
|
|
else_body: Some(vec![ ASTNode::Assignment {
|
|
|
|
|
target: Box::new(ASTNode::Variable { name: "result".to_string(), span: Span::unknown() }),
|
|
|
|
|
value: Box::new(ASTNode::Literal { value: LiteralValue::String("B".to_string()), span: Span::unknown() }),
|
|
|
|
|
span: Span::unknown(),
|
|
|
|
|
}]),
|
|
|
|
|
span: Span::unknown(),
|
|
|
|
|
},
|
|
|
|
|
ASTNode::Variable { name: "result".to_string(), span: Span::unknown() },
|
|
|
|
|
],
|
|
|
|
|
span: Span::unknown(),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let mut builder = MirBuilder::new();
|
|
|
|
|
let module = builder.build_module(ast).expect("build mir");
|
|
|
|
|
|
|
|
|
|
// Verify: should be OK (no MergeUsesPredecessorValue)
|
|
|
|
|
let mut verifier = MirVerifier::new();
|
|
|
|
|
let res = verifier.verify_module(&module);
|
|
|
|
|
if let Err(errs) = &res { eprintln!("Verifier errors: {:?}", errs); }
|
|
|
|
|
assert!(res.is_ok(), "MIR should pass merge-phi verification");
|
|
|
|
|
|
|
|
|
|
// Optional: ensure printer shows a phi in merge and ret returns a defined value
|
|
|
|
|
let mut printer = MirPrinter::verbose();
|
|
|
|
|
let mir_text = printer.print_module(&module);
|
|
|
|
|
assert!(mir_text.contains("phi"), "Printed MIR should contain a phi in merge block\n{}", mir_text);
|
|
|
|
|
}
|
2025-08-23 19:27:02 +09:00
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
|
fn test_merge_use_before_phi_detected() {
|
|
|
|
|
use crate::mir::{MirInstruction, ConstValue};
|
|
|
|
|
|
|
|
|
|
// Construct a function with a bad merge use (no phi)
|
|
|
|
|
let signature = FunctionSignature {
|
|
|
|
|
name: "merge_bad".to_string(),
|
|
|
|
|
params: vec![],
|
|
|
|
|
return_type: MirType::String,
|
|
|
|
|
effects: EffectMask::PURE,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let entry = BasicBlockId::new(0);
|
|
|
|
|
let mut f = MirFunction::new(signature, entry);
|
|
|
|
|
|
|
|
|
|
let then_bb = BasicBlockId::new(1);
|
|
|
|
|
let else_bb = BasicBlockId::new(2);
|
|
|
|
|
let merge_bb = BasicBlockId::new(3);
|
|
|
|
|
|
|
|
|
|
let cond = f.next_value_id(); // %0
|
|
|
|
|
{
|
|
|
|
|
let b0 = f.get_block_mut(entry).unwrap();
|
|
|
|
|
b0.add_instruction(MirInstruction::Const { dst: cond, value: ConstValue::Bool(true) });
|
|
|
|
|
b0.add_instruction(MirInstruction::Branch { condition: cond, then_bb, else_bb });
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let v1 = f.next_value_id(); // %1
|
|
|
|
|
let mut b1 = BasicBlock::new(then_bb);
|
|
|
|
|
b1.add_instruction(MirInstruction::Const { dst: v1, value: ConstValue::String("A".to_string()) });
|
|
|
|
|
b1.add_instruction(MirInstruction::Jump { target: merge_bb });
|
|
|
|
|
f.add_block(b1);
|
|
|
|
|
|
|
|
|
|
let v2 = f.next_value_id(); // %2
|
|
|
|
|
let mut b2 = BasicBlock::new(else_bb);
|
|
|
|
|
b2.add_instruction(MirInstruction::Const { dst: v2, value: ConstValue::String("B".to_string()) });
|
|
|
|
|
b2.add_instruction(MirInstruction::Jump { target: merge_bb });
|
|
|
|
|
f.add_block(b2);
|
|
|
|
|
|
|
|
|
|
let mut b3 = BasicBlock::new(merge_bb);
|
|
|
|
|
// Illegal: directly use v1 from predecessor
|
|
|
|
|
b3.add_instruction(MirInstruction::Return { value: Some(v1) });
|
|
|
|
|
f.add_block(b3);
|
|
|
|
|
|
|
|
|
|
f.update_cfg();
|
|
|
|
|
|
|
|
|
|
let mut verifier = MirVerifier::new();
|
|
|
|
|
let res = verifier.verify_function(&f);
|
|
|
|
|
assert!(res.is_err(), "Verifier should error on merge use without phi");
|
|
|
|
|
let errs = res.err().unwrap();
|
|
|
|
|
assert!(errs.iter().any(|e| matches!(e, VerificationError::MergeUsesPredecessorValue{..} | VerificationError::DominatorViolation{..})),
|
|
|
|
|
"Expected merge/dominator error, got: {:?}", errs);
|
|
|
|
|
}
|
2025-08-23 16:33:32 +09:00
|
|
|
}
|
