1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
|
(.module:
[lux #*
[control
[monad (#+ do)]
["ex" exception (#+ exception:)]
equivalence]
[data
[bit ("bit/" Equivalence<Bit>)]
[number]
["e" error ("error/" Monad<Error>)]
[maybe]
[text format]
[collection
[list ("list/" Fold<List>)]
["dict" dictionary (#+ Dictionary)]]]]
[//// ("operation/" Monad<Operation>)]
[/// (#+ Pattern Variant Operation)])
(def: cases
(-> (Maybe Nat) Nat)
(|>> (maybe.default +0)))
(def: (variant sum-side)
(-> (Either Pattern Pattern) (Variant Pattern))
(loop [lefts +0
variantP sum-side]
(case variantP
(#.Left valueP)
(case valueP
(#///.Complex (#///.Sum value-side))
(recur (inc lefts) value-side)
_
{#///.lefts lefts
#///.right? false
#///.value valueP})
(#.Right valueP)
{#///.lefts lefts
#///.right? true
#///.value valueP})))
## The coverage of a pattern-matching expression summarizes how well
## all the possible values of an input are being covered by the
## different patterns involved.
## Ideally, the pattern-matching has "exhaustive" coverage, which just
## means that every possible value can be matched by at least 1
## pattern.
## Every other coverage is considered partial, and it would be valued
## as insuficient (since it could lead to runtime errors due to values
## not being handled by any pattern).
## The #Partial tag covers arbitrary partial coverages in a general
## way, while the other tags cover more specific cases for bits
## and variants.
(type: #export #rec Coverage
#Partial
(#Bit Bit)
(#Variant (Maybe Nat) (Dictionary Nat Coverage))
(#Seq Coverage Coverage)
(#Alt Coverage Coverage)
#Exhaustive)
(def: #export (exhaustive? coverage)
(-> Coverage Bit)
(case coverage
(#Exhaustive _)
true
_
false))
(def: #export (determine pattern)
(-> Pattern (Operation Coverage))
(case pattern
(^or (#///.Simple #///.Unit)
(#///.Bind _))
(operation/wrap #Exhaustive)
## Primitive patterns always have partial coverage because there
## are too many possibilities as far as values go.
(^template [<tag>]
(#///.Simple (<tag> _))
(operation/wrap #Partial))
([#///.Nat]
[#///.Int]
[#///.Rev]
[#///.Frac]
[#///.Text])
## Bits are the exception, since there is only "true" and
## "false", which means it is possible for bit
## pattern-matching to become exhaustive if complementary parts meet.
(#///.Simple (#///.Bit value))
(operation/wrap (#Bit value))
## Tuple patterns can be exhaustive if there is exhaustiveness for all of
## their sub-patterns.
(#///.Complex (#///.Product [left right]))
(do ////.Monad<Operation>
[left (determine left)
right (determine right)]
(case right
(#Exhaustive _)
(wrap left)
_
(wrap (#Seq left right))))
(#///.Complex (#///.Sum sum-side))
(let [[variant-lefts variant-right? variant-value] (variant sum-side)]
## Variant patterns can be shown to be exhaustive if all the possible
## cases are handled exhaustively.
(do ////.Monad<Operation>
[value-coverage (determine variant-value)
#let [variant-idx (if variant-right?
(inc variant-lefts)
variant-lefts)]]
(wrap (#Variant (if variant-right?
(#.Some variant-idx)
#.None)
(|> (dict.new number.Hash<Nat>)
(dict.put variant-idx value-coverage))))))))
(def: (xor left right)
(-> Bit Bit Bit)
(or (and left (not right))
(and (not left) right)))
## The coverage checker not only verifies that pattern-matching is
## exhaustive, but also that there are no redundant patterns.
## Redundant patterns will never be executed, since there will
## always be a pattern prior to them that would match the input.
## Because of that, the presence of redundant patterns is assumed to
## be a bug, likely due to programmer carelessness.
(def: redundant-pattern
(e.Error Coverage)
(e.fail "Redundant pattern."))
(def: (flatten-alt coverage)
(-> Coverage (List Coverage))
(case coverage
(#Alt left right)
(list& left (flatten-alt right))
_
(list coverage)))
(structure: _ (Equivalence Coverage)
(def: (= reference sample)
(case [reference sample]
[#Exhaustive #Exhaustive]
true
[(#Bit sideR) (#Bit sideS)]
(bit/= sideR sideS)
[(#Variant allR casesR) (#Variant allS casesS)]
(and (n/= (cases allR)
(cases allS))
(:: (dict.Equivalence<Dictionary> =) = casesR casesS))
[(#Seq leftR rightR) (#Seq leftS rightS)]
(and (= leftR leftS)
(= rightR rightS))
[(#Alt _) (#Alt _)]
(let [flatR (flatten-alt reference)
flatS (flatten-alt sample)]
(and (n/= (list.size flatR) (list.size flatS))
(list.every? (function (_ [coverageR coverageS])
(= coverageR coverageS))
(list.zip2 flatR flatS))))
_
false)))
(open: "C/" Equivalence<Coverage>)
## After determining the coverage of each individual pattern, it is
## necessary to merge them all to figure out if the entire
## pattern-matching expression is exhaustive and whether it contains
## redundant patterns.
(def: #export (merge addition so-far)
(-> Coverage Coverage (e.Error Coverage))
(case [addition so-far]
## The addition cannot possibly improve the coverage.
[_ #Exhaustive]
redundant-pattern
## The addition completes the coverage.
[#Exhaustive _]
(error/wrap #Exhaustive)
[#Partial #Partial]
(error/wrap #Partial)
## 2 bit coverages are exhaustive if they complement one another.
(^multi [(#Bit sideA) (#Bit sideSF)]
(xor sideA sideSF))
(error/wrap #Exhaustive)
[(#Variant allA casesA) (#Variant allSF casesSF)]
(cond (not (n/= (cases allSF) (cases allA)))
(e.fail "Variants do not match.")
(:: (dict.Equivalence<Dictionary> Equivalence<Coverage>) = casesSF casesA)
redundant-pattern
## else
(do e.Monad<Error>
[casesM (monad.fold @
(function (_ [tagA coverageA] casesSF')
(case (dict.get tagA casesSF')
(#.Some coverageSF)
(do @
[coverageM (merge coverageA coverageSF)]
(wrap (dict.put tagA coverageM casesSF')))
#.None
(wrap (dict.put tagA coverageA casesSF'))))
casesSF (dict.entries casesA))]
(wrap (if (let [case-coverages (dict.values casesM)]
(and (n/= (cases allSF) (list.size case-coverages))
(list.every? exhaustive? case-coverages)))
#Exhaustive
(#Variant allSF casesM)))))
[(#Seq leftA rightA) (#Seq leftSF rightSF)]
(case [(C/= leftSF leftA) (C/= rightSF rightA)]
## There is nothing the addition adds to the coverage.
[true true]
redundant-pattern
## The 2 sequences cannot possibly be merged.
[false false]
(error/wrap (#Alt so-far addition))
## Same prefix
[true false]
(do e.Monad<Error>
[rightM (merge rightA rightSF)]
(if (exhaustive? rightM)
## If all that follows is exhaustive, then it can be safely dropped
## (since only the "left" part would influence whether the
## merged coverage is exhaustive or not).
(wrap leftSF)
(wrap (#Seq leftSF rightM))))
## Same suffix
[false true]
(do e.Monad<Error>
[leftM (merge leftA leftSF)]
(wrap (#Seq leftM rightA))))
## The left part will always match, so the addition is redundant.
(^multi [(#Seq left right) single]
(C/= left single))
redundant-pattern
## The right part is not necessary, since it can always match the left.
(^multi [single (#Seq left right)]
(C/= left single))
(error/wrap single)
## When merging a new coverage against one based on Alt, it may be
## that one of the many coverages in the Alt is complementary to
## the new one, so effort must be made to fuse carefully, to match
## the right coverages together.
## If one of the Alt sub-coverages matches the new one, the cycle
## must be repeated, in case the resulting coverage can now match
## other ones in the original Alt.
## This process must be repeated until no further productive
## merges can be done.
[_ (#Alt leftS rightS)]
(do e.Monad<Error>
[#let [fuse-once (: (-> Coverage (List Coverage)
(e.Error [(Maybe Coverage)
(List Coverage)]))
(function (_ coverage possibilities)
(loop [alts possibilities]
(case alts
#.Nil
(wrap [#.None (list coverage)])
(#.Cons alt alts')
(case (merge coverage alt)
(#e.Success altM)
(case altM
(#Alt _)
(do @
[[success alts+] (recur alts')]
(wrap [success (#.Cons alt alts+)]))
_
(wrap [(#.Some altM) alts']))
(#e.Error error)
(e.fail error))
))))]
[success possibilities] (fuse-once addition (flatten-alt so-far))]
(loop [success success
possibilities possibilities]
(case success
(#.Some coverage')
(do @
[[success' possibilities'] (fuse-once coverage' possibilities)]
(recur success' possibilities'))
#.None
(case (list.reverse possibilities)
(#.Cons last prevs)
(wrap (list/fold (function (_ left right) (#Alt left right))
last
prevs))
#.Nil
(undefined)))))
_
(if (C/= so-far addition)
## The addition cannot possibly improve the coverage.
redundant-pattern
## There are now 2 alternative paths.
(error/wrap (#Alt so-far addition)))))
|
