Merged
Conversation
|
You have run out of free Bugbot PR reviews for this billing cycle. This will reset on March 1. To receive reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial. |
Contributor
There was a problem hiding this comment.
Pull request overview
This PR updates the Move Prover’s dynamic-field pipeline to better handle cases where UID is passed directly as a function parameter, and extends the Boogie prelude/backend to cover additional dynamic-field operations.
Changes:
- Extend
DynamicFieldAnalysiswith inter-procedural handling ofUIDparameters and call-site type substitution. - Add Boogie prelude/backend support for
dynamic_field::remove_if_existsand ensure dynamic-field-related types aren’t translated as opaque. - Add new sui-prover integration test inputs and snapshots covering
UID-parameter scenarios.
Reviewed changes
Copilot reviewed 12 out of 13 changed files in this pull request and generated 5 comments.
Show a summary per file
| File | Description |
|---|---|
| crates/move-stackless-bytecode/src/dynamic_field_analysis.rs | Adds UID-parameter tracking and call-site-based type resolution/substitution during dynamic field analysis. |
| crates/move-prover-boogie-backend/src/boogie_backend/prelude/native.bpl | Introduces a Boogie procedure template for remove_if_exists. |
| crates/move-prover-boogie-backend/src/boogie_backend/lib.rs | Threads remove_if_exists into dynamic-field instance generation; adjusts instance inclusion logic (incl. UID). |
| crates/move-prover-boogie-backend/src/boogie_backend/bytecode_translator.rs | Changes opaque-type decision to keep dynamic-field-bearing structs non-opaque. |
| crates/sui-prover/tests/inputs/dynamic_field/*.move | Adds new Move inputs to exercise UID parameter behavior and remove/exists variants. |
| crates/sui-prover/tests/snapshots/dynamic_field/*.snap | Adds snapshots asserting successful verification for the new inputs. |
| Cargo.lock | Updates dependency lockfile due to upstream/version changes. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
crates/move-prover-boogie-backend/src/boogie_backend/bytecode_translator.rs
Outdated
Show resolved
Hide resolved
andreistefanescu
requested changes
Feb 24, 2026
Contributor
andreistefanescu
left a comment
andreistefanescu
left a comment
There was a problem hiding this comment.
let's split the changes from dynamic_field_analysis from the rest
crates/move-prover-boogie-backend/src/boogie_backend/prelude/native.bpl
Outdated
Show resolved
Hide resolved
…c field analysis When a function takes &UID directly (rather than extracting from an object), the analysis can't determine the parent object type. Instead of emitting an error (E0022), fall back to placing dynamic fields under UID itself with a warning. If any dynamic field for a UID needs fallback, all fields for that UID use UID type for consistency. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
When a function mixes direct UID usage (from inlined callees taking &UID) with obj.id access, consolidate all dynamic field entries under UID type to ensure consistent Boogie slots. Simplifies compute_uid_info by removing UID parameter tracking and FreezeRef/ReadRef/Assign propagation. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…ngs emitted When any function uses the UID fallback (warning emitted), finalize now consolidates all dynamic field entries under UID type — both the global combined_info and each function's per-function annotation. This ensures consistent Boogie slots across the entire program. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…ard in process The annotation consolidation (merging all df entries under UID type) is handled entirely by finalize. Process only keeps the bytecode rewriting guard (use_uid_type) since type_inst must match the consolidated annotations and bytecodes can't be rewritten after emission. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
The uid_fallback closure in info collection already handles the case where parent is unknown, and the use_uid_type guard ensures bytecode consistency. The extra else-if branch was redundant. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Move UID detection to initialize (runs before process). When any accessible function takes &UID and makes df calls, set a global flag. Process then routes all df operations through UID type directly. Finalize no longer needs to consolidate annotations or bytecodes. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…pen-type filter Finalize now collects from all functions (like main) instead of just specs/pure/abort-check. Removed the per-function and global annotation consolidation (handled by initialize + process). Kept the fixpoint loop for UID entry propagation (needed when reachable functions skip callee propagation) and open-type filtering (prevents ill-founded Boogie types). Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…alysis Allow callee info propagation for reachable functions so generic instantiation flows naturally through call chains. This eliminates the need for the fixpoint loop in finalize. Gracefully skip callees that were filtered out (spec functions) instead of panicking. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Instead of checking if a function has a UID parameter, actually try resolving each df call's parent object type using the same logic as compute_uid_info (BorrowField/GetField + callee propagation). Only flag as unresolvable when resolution genuinely fails. Callee uid_info is computed recursively on-the-fly since annotations don't exist yet in initialize. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…or type params used in UID dynamic fields Instead of filtering open-typed UID entries in dynamic field analysis finalize, prevent the circularity at the source: don't generate UID-wrapping datatype declarations for type parameters that appear in UID's dynamic field entries. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…ations When a dynamic field value type is a compound type like Vec(T), it must be parenthesized inside Table declarations to avoid Boogie parsing it as extra type arguments. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
… type parenthesization - uid_param_vec_value: UID fallback + vector value type (parenthesization) - uid_param_multi_type_params: multiple type params on &UID (circular fix) - uid_param_multi_ops: multiple df operations with different types on same &UID - uid_param_nested_generic: generic calling generic on &UID (transitive fallback) - vec_value_concrete: vector value type on normal object (parenthesization) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Structs with dynamic fields must not be opaque. Move this check from the struct translation loop into MonoInfo::is_used_datatype so the logic is centralized. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
andreistefanescu
approved these changes
Mar 16, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Initial commit made by cursor
Resolves: #535
Resolves: #536