Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Reconsider the use/explanation of extract in the tutorial's "Second loop example" #51

Open
samcowger opened this issue Jul 20, 2024 · 7 comments
Open

Reconsider the use/explanation of extract in the tutorial's "Second loop example" #51

samcowger opened this issue Jul 20, 2024 · 7 comments

Comments

@samcowger
Copy link
Contributor

I'll start by saying that this issue might just be a result of my misunderstanding.

When I was going through the second loop example in the tutorial, I was surprised by its second use of extract:

  ...
  while (j < n)
  /*@ inv take al = each(u32 i; i < j) { Owned<char>( array_shift<char>(p, i)) };
          take ar = each(u32 i; j <= i && i < n) { Block<char>( array_shift<char>(p, i)) };
          {p} unchanged; {n} unchanged;
          j <= n;
  @*/
  {
    /*@ extract Block<char>, j; @*/
    /*@ extract Owned<char>, j; @*/
    p[j] = 0;
    j++;
  }
  ...

It didn't easily fit into the mental model of extract - a tool to extract individual elements from in-scope iterated resources - that earlier parts of the tutorial had been guiding me towards. Now, the tutorial does offer some explanation of this:

finally, we put extract Owned<char>, j; to allow CN to "attach" this resource to the iterated Owned resource. CN issues a warning, because nothing is, in fact, extracted: we are using extract only for the "reverse" direction.

But, to the extent I understand this explanation, it's describing an entirely different semantics for extract as compared to its prior and subsequent mentions. Not only was I surprised that it's apparently doing the opposite of what extract usually does, I was particularly surprised to see that one is able to write this extract seemingly before the Owned resource is actually introduced (which I would assume would happen at the write to p[j]).

I think that this use case for extract might warrant a bit more explanation, and perhaps another motivating example, to help tutorial consumers gain a better understanding of it.
@cp526
Copy link
Collaborator

cp526 commented Jul 22, 2024
edited
Loading

That sounds like a good idea.

I've, in fact, been looking for a different name for extract that better describes what it does: extract P, i (for some predicate name P) tells CN that it should feel free to instantiate and "reverse-instantiate" iterated resources with predicate name P for index i. So the name "extract" is not representative of what it actually does in two ways:

  • it allows CN not just to extract but also to re-attach, and

  • the extract does not just prompt a single action, it's more declarative -- following the extract CN knows that for the remainder of this control-flow path it should freely extract and re-attach that index in matching iterated resources. The advantage of this is that it can significantly reduce the annotation burden.

@bcpierce00
Copy link
Collaborator

bcpierce00 commented Jul 22, 2024 via email

@bcpierce00
Copy link
Collaborator

bcpierce00 commented Jul 22, 2024 via email

@cp526
Copy link
Collaborator

cp526 commented Jul 22, 2024

"focus" actually matches quite well!

@cp526
Copy link
Collaborator

cp526 commented Jul 22, 2024

Just for completeness: it is in principle also possible to change the semantics of extract to something that has a better intuition, if it doesn't lead to too much annotation burden: e.g. extract + inject would probably be more intuitive, but lead to an awkward amount of proof annotations.

But "focus" seems quite good!

@samcowger
Copy link
Contributor Author

the extract does not just prompt a single action, it's more declarative

Ah, I see - I guess the idiom is probably to put all of your extract statements at the beginning of a loop block, or whenever your index comes into scope? It seems like this is broadly done in the examples, but because they're simple, the extract statements also usually immediately precede the statement that necessitates them, so I must have accidentally learned that as the idiom.

At any rate, I like "focus" as well, though I wouldn't be opposed to two different annotations for the two different directions.

I've also just seen that there is some content in the tutorial about the "reverse" direction for extract, which I guess I must have missed! It's a useful explanation, though I still think switching to a bidirectional word like "focus" would be more intuitive.

@cp526
Copy link
Collaborator

cp526 commented Jul 22, 2024

Agreed. "Focus" would be better naming (previously I'd been considering "movable", but that isn't ideal either), but more tutorial text+examples would probably also be needed.

This was referenced Aug 15, 2024
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@cp526 @bcpierce00 @samcowger