Discussion of "overload" feature in K and whether to support it

[jberthold]

The legacy Haskell backend implements a constructor "overloading" feature described in a long design document, for a particular kind of overloading.
The booster backend does not currently support this functionality, and the cost-benefit relation is questionable, as we discuss here using the motivating example from the design document.

module NUMBERS-SYNTAX
    imports INT-SYNTAX
    imports FLOAT-SYNTAX

    syntax IValType ::= "i32" | "i64"
    syntax FValType ::= "f32" | "f64"
    syntax AValType ::= IValType | FValType
    syntax Number ::= Int | Float
    syntax IVal ::= "<" IValType ">" Int    [klabel(<_>_)]
    syntax FVal ::= "<" FValType ">" Float  [klabel(<_>_)]
    syntax  Val ::= IVal | FVal
    // the problematic constructor:
    syntax  Val ::= "<" AValType ">" Number [klabel(<_>_)]
endmodule

With this syntax, the K compiler will identify the last constructor < _ > _ : ValType -> Number -> Val as a kind of "super-constructor" overloaded by both the FVal and IVal constructor:

• all three have the same klabel
• all three have the same arity
• both the argument types and the result types are in a subsort relationship (FValType,IValType < ValType, Float,Int < Number, FVal, IVal < Val).

NB This is a very specific case of "overloading", which generally would allow for different arities and has no relation to subsorting per se.

Equations are generated which amount to

< inj{FValType, ValType}(vt) > inj{Float, Number}(f) #Equals inj(FVal,Val}(<vt > f // using FVal constructor
< inj{IValType, ValType}(vt) > inj{  Int, Number}(i) #Equals inj(IVal,Val}(<vt > i // using IVal constructor

Now, when unifying Values from a rule LHS and from the input (subject), a problem arises:

module NUMBERS
    imports NUMBERS-SYNTAX
    imports INT
    imports FLOAT
    imports MAP

    rule [problem]: <k> (0 |-> <i32> IValue) => 0 |-> f(IValue) </k> // with an opaque f : Number -> Val for illustration

This rule won't match against a concrete singleton map 0 |-> <i32> 1 (which uses the IVal constructor, because of the existence of the indeterminate Val constructor (which is required for the "overloading" mechanism implemented).
(this issue came up in private code using a real-world semantics)

The legacy backend kore-rpc implements complicated logic to apply the generated equations (right-to-left) and insert appropriate injections to align the rule LHS and the subject. An additional complication here is that the Map will contain keys and values injected from their original sort to KItem and the injection chains are shortened.

Note that the rule LHS already contains a literal i32. Therefore it is clear that IValue is supposed to be of sort Int but the rule's RHS does not determine this sort. More generally, the following function demonstrates that the Val-sorted constructor enables creating ill-defined Values (clearly f32 and f64 should not be used for the ValType when the Number is in fact of sort Int and vice-versa with i32, i64.

    // creates ill-formed values
    syntax Val ::= creature32 ( Number ) [function, total]
    rule creature32(I:Int) => <f32> I
    rule creature32(F:Float) => <i32> F

The fix for the rule in question would be to just constrain IValue:Int to be of sort Int, thereby determining the constructor used in the rule's LHS. Likewise, if the RHS were to imply this sort for IValue we would know the constructor is that of IVal.

However, this raises the more general question of whether the overloading functionality is useful at all. The motivating example has some implicit invariants that the top-most constructor violates.

If we were to simply remove the problematic Val ::= "<" AValType ">" Number, the creature32 function above would not type-check any more. On the flip-side, ad-hoc polymorphic functions would have to be more verbose:

    syntax Number ::=- retract ( Val ) [ function, total]
    rule retract(< _ > N) => N // "ambiguous parse" of IVal or FVal constructor
endmodule

One would have to write a separate rule for each of the constructors. In this case it would be sufficient to add a :Int and :Float at the end in (two copies of) the rule above

It is unclear whether this convenience justifies the complexity of the overload unification implemented in the legacy unifier.

[Baltoli]

We should take a look at how often overloading is actually being used in practice in real semantics - clearly it is here, but we weren't sure in the K meeting the other day how many other places it crops up. My - very high level - thoughts are:

• We don't want to be supporting features that have complex implementations for small conveniences in user K code, especially if the canonical implementation is in the legacy Haskell backend.
• I'm happy enough with the :Int / :Float copy fix proposed at the end of the issue; if we were to find that lots of user code ended up needing a large number of such cases, I'd feel differently, but I'd be surprised if that were the case.

Will put this on the agenda for this week's K meeting; we had some related discussions about the semantics of overloading and the somewhat unintuitive way that you opt into those semantics via duplicated, non-symbol labels.

[jberthold]

I looked for overloaded symbols in evm-semantics and kontrol as well as the c-semantics :

EVM-semantics

• function Cgascap in gas.md

  Cgascap : Schedule -> Gas -> Gas -> Int -> Gas
  Cgascap : Schedule -> Int -> Int -> Int -> Gas
  

• function #allBut64th in gas.md

  #allBut64th : Gas -> Gas
  #allBut64th : Int -> Int
  

This is mysterious. Neither of these two function declarations even
uses a klabel attribute in the K source file but the generated
kore file features klabel attributes that trigger the overloading
mechanism.

Obviously, the same overloading axioms occur in kontrols
FOUNDRY-MAIN definition.

C-semantics

• A few productions with label arg trigger the overloading mechanism:

  syntax Exps  ::= Exp  // in language/exp/exp.k
  
  syntax Vals  ::= Val  // in language/concepts/representation.k
  syntax RVals ::= RVal // same location
  

  With subsort relations

  syntax Exps ::= Vals  // same location, subsort declarations
  syntax Vals ::= RVals //   that trigger the overload mechanism
  

  this triggers the compiler to generate the following equations:

  axiom{R} \equals{SortExps{}, R} (Lblarg{}(inj{SortVal{}, SortExp{}} (K0:SortVal{})), inj{SortVals{}, SortExps{}} (Lbl'UndsUnds'C-REPRESENTATION-SYNTAX'Unds'Vals'Unds'Val{}(K0:SortVal{}))) [overload{}(Lblarg{}(), Lbl'UndsUnds'C-REPRESENTATION-SYNTAX'Unds'Vals'Unds'Val{}())] // overloaded production
  axiom{R} \equals{SortVals{}, R} (Lbl'UndsUnds'C-REPRESENTATION-SYNTAX'Unds'Vals'Unds'Val{}(inj{SortRVal{}, SortVal{}} (K0:SortRVal{})), inj{SortRVals{}, SortVals{}} (Lbl'UndsUnds'C-REPRESENTATION-SYNTAX'Unds'RVals'Unds'RVal{}(K0:SortRVal{}))) [overload{}(Lbl'UndsUnds'C-REPRESENTATION-SYNTAX'Unds'Vals'Unds'Val{}(), Lbl'UndsUnds'C-REPRESENTATION-SYNTAX'Unds'RVals'Unds'RVal{}())] // overloaded production
  axiom{R} \equals{SortExps{}, R} (Lblarg{}(inj{SortRVal{}, SortExp{}} (K0:SortRVal{})), inj{SortRVals{}, SortExps{}} (Lbl'UndsUnds'C-REPRESENTATION-SYNTAX'Unds'RVals'Unds'RVal{}(K0:SortRVal{}))) [overload{}(Lblarg{}(), Lbl'UndsUnds'C-REPRESENTATION-SYNTAX'Unds'RVals'Unds'RVal{}())] // overloaded production
  

• With the same subsort relation RVals < Vals < Exps, the "comma operator" becomes overloaded (label exps):

  axiom{R} \equals{SortVals{}, R} (Lbl'UndsCommUndsUnds'C-REPRESENTATION-SYNTAX'Unds'Vals'Unds'Vals'Unds'Val{}(inj{SortRVals{}, SortVals{}} (K0:SortRVals{}),inj{SortRVal{}, SortVal{}} (K1:SortRVal{})), inj{SortRVals{}, SortVals{}} (Lbl'UndsCommUndsUnds'C-REPRESENTATION-SYNTAX'Unds'RVals'Unds'RVals'Unds'RVal{}(K0:SortRVals{},K1:SortRVal{}))) [overload{}(Lbl'UndsCommUndsUnds'C-REPRESENTATION-SYNTAX'Unds'Vals'Unds'Vals'Unds'Val{}(), Lbl'UndsCommUndsUnds'C-REPRESENTATION-SYNTAX'Unds'RVals'Unds'RVals'Unds'RVal{}())] // overloaded production
  axiom{R} \equals{SortExps{}, R} (Lbl'UndsCommUndsUnds'C-EXPRESSIONS-SYNTAX'Unds'Exps'Unds'Exps'Unds'Exp{}(inj{SortRVals{}, SortExps{}} (K0:SortRVals{}),inj{SortRVal{}, SortExp{}} (K1:SortRVal{})), inj{SortRVals{}, SortExps{}} (Lbl'UndsCommUndsUnds'C-REPRESENTATION-SYNTAX'Unds'RVals'Unds'RVals'Unds'RVal{}(K0:SortRVals{},K1:SortRVal{}))) [overload{}(Lbl'UndsCommUndsUnds'C-EXPRESSIONS-SYNTAX'Unds'Exps'Unds'Exps'Unds'Exp{}(), Lbl'UndsCommUndsUnds'C-REPRESENTATION-SYNTAX'Unds'RVals'Unds'RVals'Unds'RVal{}())] // overloaded production
  axiom{R} \equals{SortExps{}, R} (Lbl'UndsCommUndsUnds'C-EXPRESSIONS-SYNTAX'Unds'Exps'Unds'Exps'Unds'Exp{}(inj{SortVals{}, SortExps{}} (K0:SortVals{}),inj{SortVal{}, SortExp{}} (K1:SortVal{})), inj{SortVals{}, SortExps{}} (Lbl'UndsCommUndsUnds'C-REPRESENTATION-SYNTAX'Unds'Vals'Unds'Vals'Unds'Val{}(K0:SortVals{},K1:SortVal{}))) [overload{}(Lbl'UndsCommUndsUnds'C-EXPRESSIONS-SYNTAX'Unds'Exps'Unds'Exps'Unds'Exp{}(), Lbl'UndsCommUndsUnds'C-REPRESENTATION-SYNTAX'Unds'Vals'Unds'Vals'Unds'Val{}())] // overloaded production
  

• With subsorts Int < Value and ObjectId < Value, the

  axiom{R} \equals{SortValue{}, R} (Lblcheck'LParUndsCommUndsCommUndsRParUnds'C-CHECKER-SYNTAX'Unds'Value'Unds'Value'Unds'String'Unds'KItem{}(inj{SortInt{}, SortValue{}} (K0:SortInt{}),K1:SortString{},K2:SortKItem{},K3:SortGeneratedTopCell{}), inj{SortInt{}, SortValue{}} (Lblcheck'LParUndsCommUndsCommUndsRParUnds'C-CHECKER-SYNTAX'Unds'Int'Unds'Int'Unds'String'Unds'KItem{}(K0:SortInt{},K1:SortString{},K2:SortKItem{},K3:SortGeneratedTopCell{}))) [overload{}(Lblcheck'LParUndsCommUndsCommUndsRParUnds'C-CHECKER-SYNTAX'Unds'Value'Unds'Value'Unds'String'Unds'KItem{}(), Lblcheck'LParUndsCommUndsCommUndsRParUnds'C-CHECKER-SYNTAX'Unds'Int'Unds'Int'Unds'String'Unds'KItem{}())] // overloaded production
  axiom{R} \equals{SortValue{}, R} (Lblcheck'LParUndsCommUndsCommUndsRParUnds'C-CHECKER-SYNTAX'Unds'Value'Unds'Value'Unds'String'Unds'KItem{}(inj{SortObjectId{}, SortValue{}} (K0:SortObjectId{}),K1:SortString{},K2:SortKItem{},K3:SortGeneratedTopCell{}), inj{SortObjectId{}, SortValue{}} (Lblcheck'LParUndsCommUndsCommUndsRParUnds'C-CHECKER-SYNTAX'Unds'ObjectId'Unds'ObjectId'Unds'String'Unds'KItem{}(K0:SortObjectId{},K1:SortString{},K2:SortKItem{},K3:SortGeneratedTopCell{}))) [overload{}(Lblcheck'LParUndsCommUndsCommUndsRParUnds'C-CHECKER-SYNTAX'Unds'Value'Unds'Value'Unds'String'Unds'KItem{}(), Lblcheck'LParUndsCommUndsCommUndsRParUnds'C-CHECKER-SYNTAX'Unds'ObjectId'Unds'ObjectId'Unds'String'Unds'KItem{}())] // overloaded production
  

• The following declaration constructors

  syntax DirectDeclarator ::= Identifier [klabel(Declarator), avoid]
                            | "(" Declarator ")" [klabel(declaratorBracket)]
                            | FunctionDirectDeclarator
  syntax FunctionDirectDeclarator ::= "(" FunctionDeclarator ")" [klabel(declaratorBracket)]
  

  trigger the overloading mechanism with FunctionDirectDeclarator < DirectDeclarator

  axiom{R} \equals{SortDirectDeclarator{}, R} (Lbl'LParUndsRParUnds'C-DECLARATIONS-SYNTAX'Unds'DirectDeclarator'Unds'Declarator{}(inj{SortFunctionDeclarator{}, SortDeclarator{}} (K0:SortFunctionDeclarator{})), inj{SortFunctionDirectDeclarator{}, SortDirectDeclarator{}} (Lbl'LParUndsRParUnds'C-DECLARATIONS-SYNTAX'Unds'FunctionDirectDeclarator'Unds'FunctionDeclarator{}(K0:SortFunctionDeclarator{}))) [overload{}(Lbl'LParUndsRParUnds'C-DECLARATIONS-SYNTAX'Unds'DirectDeclarator'Unds'Declarator{}(), Lbl'LParUndsRParUnds'C-DECLARATIONS-SYNTAX'Unds'FunctionDirectDeclarator'Unds'FunctionDeclarator{}())] // overloaded production
  

[Baltoli]

This is mysterious. Neither of these two function declarations even uses a klabel attribute in the K source file but the generated kore file features klabel attributes that trigger the overloading mechanism.

runtimeverification/k#3979