Feat: Verified and easy-to-use parser combinators

[MikaelMayer]

Fixes #5418

This PR adds to the standard library support for functional parsers and parsers combinators.
A parser is simply a Input -> ParseResult<T> where ParseResult is either a success or a failure that contains the remaining unparsed input. A parsing failure is "committed" if the remaining unparsed input is strictly smaller than the input. Disjunctions can happen only if a failure is not committed. Combinators can help modify the consumption of the input, which makes it possible to create a rich variety of parsers.

The Parsers module is abstract as parsers operate on an Input that can be converted at any time to a seq<C>. In StringParsers, C is a char and Input is a datatype simulating lazy slicing on the input string. That lazy slicing resulted in a +16% speedup on a real benchmark compared to just having seq<char> for Input.

You can browse the example to understand how parsers combinators can be used.

• A parser for polynomial expressions like 4*(1+3)*x^3+x
• A Tic-tac-toe grid parser

The easiest way to use parsers is to use the parsers builders. Parser builds are a datatype wrapper around parsers to make it possible to have suffix and infix combinators. This allows chaining and avoid nested parentheses. See the following examples:

• The same parser for polynomial expressions like 4*(1+3)*x^3+x but the syntax seems better to me.
• A JSON-like parser in 70 LoC
• A Dafny-like parser that can parse imports, nested modules and declarations
• A Parser generator parser that can parse expressions of the type abc((de|f((g))*))ml", create another parser out of that, and apply this parser to an input string like "abcdeml".
• A Tic-tac-toe grid parser

Notable features include:

• Combinators for repetition do not concatenate sequences with one value at a time. Instead, they build a linked list and when done convert the whole linked list to a sequence. This resulted in a +430% speedup on a benchmark that was using single-character repetition when using the JavaScript version of the parsers.
• Debugging utilities and tutorial to explain how to use them in the README.md
• It is not possible to create parsers that don't terminate, thanks Dafny for proving it. At worst, a non-terminating parser will always return a "fatal" parsing result that can be still be analyzed at run-time.
• It is possible to prove that parsers won't return fatal errors and perform progress. Some parser combinators have proofs of progress preservation and absence of fatal errors in ParserTheorems.dfy
• Support for multiple parse error messages
• For string parsers, a utility to display nice error messages that includes the line number, the line, a hat to indicate the column where parsing fails, and a detailed error message.

Error:
1; 1+*   
     ^   
expected '(', or
expected a digit, or
expected 'x'

• Largely inspired from (Meijer 1996) parsers

How has this been tested?

• Main examples in the README.md are checked
• Several example illustrate the parsers functionality
• I have used this parsers combinators library on a big project.

By submitting this pull request, I confirm that my contribution is made under the terms of the MIT license.

[robin-aws]

You might be interested in the "proof trait" pattern I used in the Actions library: https://github.com/dafny-lang/dafny/pull/6074/files#diff-cb5145d4b584ea7656360f05c946523c48c5651815cea269b469a855844c3ed2R105

[robin-aws]

Just some initial thoughts based on the offline demo, will return for a more thorough review.

[robin-aws]

Why not use the existing utilities like Std.Strings.OfInt()?

[MikaelMayer]

Excellent suggestion.

[MikaelMayer]

I remember why I did not do that. In the project that was using these parsers, I was only import Std.Wrappers and these parsers.
By using Std.Strings.OfInt(), I now need to include all these files

  "Std/Strings.dfy",
  "Std/Arithmetic/Power.dfy",
  "Std/Arithmetic/Mul.dfy",
  "Std/Arithmetic/DivMod.dfy",
  "Std/Arithmetic/Logarithm.dfy",
  "Std/Arithmetic/Internal/DivInternals.dfy",
  "Std/Arithmetic/Internal/GeneralInternals.dfy",
  "Std/Arithmetic/Internal/ModInternals.dfy",
  "Std/Arithmetic/Internal/MulInternalsNonlinear.dfy",
  "Std/Arithmetic/Internal/ModInternalsNonlinear.dfy",
  "Std/Arithmetic/Internal/DivInternalsNonlinear.dfy",
  "Std/Arithmetic/Internal/MulInternals.dfy",
  "Std/Arithmetic/LittleEndianNat.dfy",

much of which is useless to my application. Looking forward being able to just enable standard libraries soon :-)

[robin-aws]

Ah sure, but as you move this code in here it will become part of the project/pre-built doo file, so there's no need for includes anywhere!

[robin-aws]

How about just _I and I_, since the "e" can be inferred by the lack of "I"?

[MikaelMayer]

_I is not a valid user-defined Dafny identifier because it starts with underscore. I also wanted that initially. That's also why I made the e lowercase. Also, the e lowercase makes me think of the interdiction sign on the road, a bit bended :-)

[robin-aws]

Ah right, damn. I suppose you could also do '_I and I_'? :)

[MikaelMayer]

You could but then that means the resulting generated code will look like _q__I and I___q in most backends, and even __q__I and _I___q in Rust, which does not look as symmetrical. Plus, quotes make it hard to select the entire identifier in any regular IDE. So no, I don't think I want to add quotes in identifiers in a builder pattern.

[robin-aws]

You could use @"..." verbatim strings for multi-line constants in a few places.

[MikaelMayer]

The problem with @"..." is that indentation is treated as part of the constant, the first line requires two more characters than the remaining lines (because of the @" initial) and, because of the way Windows checks out lines, the expect would automatically fail if it expects "\r\n" instead of "\n".
The format I used above makes it possible to preserve the indentation while still having a visual about what the output should look like, and having control over all the characters.
Alternatively, I could use @" and still have the right indentation, by writing something like:

    StripIdent(@"
       FirstLine()
       SecondLine()");

where strip ident would

• Be a method in the standard library, somewhere?
• Remove the first newline
• Detect the indentation of the first line
• Erase the indentation on all subsequent lines
• Erase Windows' carriage return \r.

I would prefer the current approach because it does not require any special handling of the string.
I'm personally using @"" mostly for regular expressions, to avoid escaping backslashes, not to avoid newlines.

[robin-aws]

Fair that this is well out of scope for this PR at least. But those stripping utilities definitely sound like great things to add to Std.Strings in the future, so all Dafny users can get more value out of verbatim strings.

[robin-aws]

I don't think we should change this as it means we won't catch cases of libraries that accidentally can't be used in this mode. Is the Parsers library fundamentally non-deterministic or is this something fixable?

The good news is my PR creates a separate examples project with this off since I hit this as well: https://github.com/dafny-lang/dafny/pull/6074/files#diff-8ae9e889ff28306ca6c425716f35f7ef20201f4c15d7128363b49411e724bb3b :)

[MikaelMayer]

I think this was accidentally committed. Thanks for pointing it out.

[robin-aws]

This is a decent solution given the current constraints, but I definitely wish it was easier to flip on for users somehow, and it's not great that it just plain doesn't work if users have --track-print-effects on.

Would it be possible to have an alternate evaluation mode that also carries a separate debugging information type in parallel, so you could do something like:

var r, log := ApplyWithLog(p, input);
print log;

(I'll know better myself how feasible that is once I review this more deeply)

[MikaelMayer]

I think the way we could do it would be to define a new module ParserBuildersLog that would keep track of everything like this

datatype B<P> = B(p: Parser<(P, string)>) = {
  ... All operators but adding a log to it
}
... All operators but taking into account the log

Then, to import these, one could simply replace import Std.Parsers.StringParsersBuilders by adding Log at the end of the last one.
However, it would have the extra hassle that it has to be maintained separately.
To avoid the separation, one would have to create another abstract module

abstract module StringBuildersAbstract refines ParserBuilders {
  type Returning<P>
  function Extract(r: Returning<P>): P
  function Combine(a: Returning<P>, r: Returning<Q>): Returning<P>
}
module StringBuilders StringBuildersAbstract {
  type Returning<P> = P
}
module StringBuildersLog StringBuildersAbstract {
  type Returning<P> = (P, string)
}

Let me know if it's important for you that we do it this way.

[robin-aws]

Indeed, that solution would have a lot of overhead. I'll keep this in mind when I review the implementation to see if I can think of a simpler solution.

[robin-aws]

Reviewed README and examples as requested, will start reviewing the rest next week.

[robin-aws]

Hyperlink to paper perhaps?

[robin-aws]

Should that be literally char, or is character more like a type parameter here?

[robin-aws]

Consider var cell instead of var x

[robin-aws]

How many parsers are NOT valid? (Begs the question again of what a fatal error is)

[MikaelMayer]

Reformulated to:

    // A parser is NeverFatal iff for any input, it never returns a fatal error
    // Since fatal errors occur only when a parser returns more characters than it was given,
    // NeverFatal means the remaining unparsed must be smaller or equal to the input

[robin-aws]

I really like that you're showing this example with both styles of constructing parsers, but since the rest is identical, I'd say combine them into one file and just run the tests on both copies.

[robin-aws]

Fair that this is well out of scope for this PR at least. But those stripping utilities definitely sound like great things to add to Std.Strings in the future, so all Dafny users can get more value out of verbatim strings.

[robin-aws]

Ah sure, but as you move this code in here it will become part of the project/pre-built doo file, so there's no need for includes anywhere!

[robin-aws]

Ah right, damn. I suppose you could also do '_I and I_'? :)

[robin-aws]

Really exemplary work all around, and excellent depth of documentation and examples. Mainly quibbling over too-short names in the DSL and some potential reuse of existing utilities.

[robin-aws]

Unused?

[robin-aws]

Could be Seq.Join(Seq.Map(f, s), separator)?

[MikaelMayer]

The map from the library takes a total function, and I need a partial one to ensure all the things it's called with are in the list for termination purposes.
Perhaps we could create another Map for that purpose but I don't plan to for now.

[MikaelMayer]

Oh I just found out that I had a wrong assumption, that the standard library Map function actually a partial function. Nevermind, will update, I prefer to reuse existing code too and Seq.Join(Seq.MapPartialFunction(f, s), separator)

[robin-aws]

Nit, misread this as taking three arguments instead of a sequence of arguments at first. Might be enough to tweak the documentation to say "Chains multiple parsers in sequence. For example, will parse with B1..."

[robin-aws]

I think it's worth the extra two letters to call this Map, and similarly for the other arity variants.

[MikaelMayer]

Yes I thought of that too. I deliberated and here is why I'll stick to M only.
I designed the builders so that variants used the most can be as short as possible while remaining readable. That way constants can use S(), include/exclude take only three letters, and Map only one letter.

Since parser builders already require a learning curve, I'm piggy backing on it to avoid long identifiers, and only abbreviations. That way there is a relatively clear separation between the raw parsers and these builders.

If one wants to use the longer forms like Map, I'd recommend to use the parser combinators without the DSL, which use explicit names everywhere.
In very little time I was used to just M and I am glad I don't need to write 2 extra chars everywhere.

[robin-aws]

"Rep" isn't quite unambiguous enough for me to read it as "Repeat", too close to "Representation" or others.

Perhaps "Star" as the prefix for repeating instead of "Rep", since that's so often the symbol used in grammers/regexps?

[MikaelMayer]

I'm considering it but then instead of Rep and Rep1 you'd have the two heterogeneous Star and Plus which are not descriptive enough for me. So I'd prefer to stick with the 3 letter version of Rep.

[robin-aws]

Collections.Seq.Repeat!

[robin-aws]

Recording a time Dafny caught a bug? :)

[MikaelMayer]

Yep, but the line has been changed so much that this is no longer relevant. Removing.

[robin-aws]

I think you've earned a few more words on this than just that. :) Mention some of the cool features at least too!

[robin-aws]

Awesome, thanks

[robin-aws]

Why is this necessary given all the backends already do this for sequence concatenation?

[MikaelMayer]

Doing this resulted in a +430% speedup on a benchmark that was using single-character repetition when using the JavaScript version of the parsers.
I think that the problem is when we do this.

"a" + "b" + "c" + "d" + ...

it does perform the concatenation in a lazy way, but when the time comes when we want to realize the final strings, two things happen

• The recursion to get the string blows the stack in some cases
• When it does not blow the stack, intermediate strings seem to be concretized even though they are not necessary.

[robin-aws]

Very much appreciate the more verbose aliases we decided on, thanks for putting in the extra effort to make more users happy. :)