Skip to content

Commit

Permalink
json: Add a tutorial
Browse files Browse the repository at this point in the history
  • Loading branch information
@cpitclaudel
cpitclaudel committed Sep 2, 2022
1 parent 390e288 commit dcd06cc
Show file tree
Hide file tree
Showing 4 changed files with 286 additions and 0 deletions.
5 changes: 5 additions & 0 deletions src/JSON/AST.dfy
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,11 @@
module {:options "-functionSyntax:4"} JSON.AST {
datatype Decimal =
Decimal(n: int, e10: int) // (n) * 10^(e10)

function Int(n: int): Decimal {
Decimal(n, 0)
}

datatype JSON =
| Null
| Bool(b: bool)
Expand Down
269 changes: 269 additions & 0 deletions src/JSON/Tutorial.dfy
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,269 @@
// RUN: %dafny -compile:3 -runAllTests:1 "%s"
/// # Using the JSON library

include "API.dfy"
include "ZeroCopy/API.dfy"

/// This library offers two APIs: a high-level one and a low-level one.
///
/// ## High-level API

module {:options "-functionSyntax:4"} JSON.Examples.HighLevel {
import API
import Utils.Unicode
import opened AST
import opened Wrappers

/// The high-level API works with fairly simple ASTs that contain native Dafny
/// strings:

method {:test} Test() {

/// Use `API.Deserialize` to deserialize a byte string.
///
/// For example, here is how to decode the JSON test `"[true]"`. (We need to
/// convert from Dafny's native strings to byte strings because Dafny does not
/// have syntax for byte strings; in a real application, we would be reading and
/// writing raw bytes directly from disk or from the network instead).

var SIMPLE_JS := Unicode.Transcode16To8("[true]");
var SIMPLE_AST := Array([Bool(true)]);
expect API.Deserialize(SIMPLE_JS) == Success(SIMPLE_AST);

/// Here is a larger object, written using a verbatim string (with `@"`). In
/// verbatim strings `""` represents a single double-quote character):

var CITIES_JS := Unicode.Transcode16To8(@"{
""Cities"": [
{
""Name"": ""Boston"",
""Founded"": 1630,
""Population"": 689386,
""Area (km2)"": 4584.2
}, {
""Name"": ""Rome"",
""Founded"": -753,
""Population"": 2.873e6,
""Area (km2)"": 1285
}, {
""Name"": ""Paris"",
""Founded"": null,
""Population"": 2.161e6,
""Area (km2)"": 2383.5
}
]
}");
var CITIES_AST := Object([
("Cities", Array([
Object([
("Name", String("Boston")),
("Founded", Number(Int(1630))),
("Population", Number(Int(689386))),
("Area (km2)", Number(Decimal(45842, -1)))
]),
Object([
("Name", String("Rome")),
("Founded", Number(Int(-753))),
("Population", Number(Decimal(2873, 3))),
("Area (km2)", Number(Int(1285)))
]),
Object([
("Name", String("Paris")),
("Founded", Null),
("Population", Number(Decimal(2161, 3))),
("Area (km2)", Number(Decimal(23835, -1)))
])
]))
]);
expect API.Deserialize(CITIES_JS) == Success(CITIES_AST);

/// Serialization works similarly, with `API.Serialize`. For this first example
/// the generated string matches what we started with exactly:

expect API.Serialize(SIMPLE_AST) == Success(SIMPLE_JS);

/// For more complex object, the generated layout may not be exactly the same; note in particular how the representation of numbers and the whitespace have changed.

expect API.Serialize(CITIES_AST) == Success(Unicode.Transcode16To8(
@"{""Cities"":[{""Name"":""Boston"",""Founded"":1630,""Population"":689386,""Area (km2)"":45842e-1},{""Name"":""Rome"",""Founded"":-753,""Population"":2873e3,""Area (km2)"":1285},{""Name"":""Paris"",""Founded"":null,""Population"":2161e3,""Area (km2)"":23835e-1}]}"
));

/// Additional methods are defined in `API.dfy` to serialize an object into an
/// existing buffer or into an array. Below is the smaller example from the
/// README, as a sanity check:

var CITY_JS := Unicode.Transcode16To8(@"{""Cities"": [{
""Name"": ""Boston"",
""Founded"": 1630,
""Population"": 689386,
""Area (km2)"": 4584.2}]}");

var CITY_AST := Object([("Cities", Array([
Object([
("Name", String("Boston")),
("Founded", Number(Int(1630))),
("Population", Number(Int(689386))),
("Area (km2)", Number(Decimal(45842, -1)))])]))]);

expect API.Deserialize(CITY_JS) == Success(CITY_AST);

expect API.Serialize(CITY_AST) == Success(Unicode.Transcode16To8(
@"{""Cities"":[{""Name"":""Boston"",""Founded"":1630,""Population"":689386,""Area (km2)"":45842e-1}]}"
));
}
}

/// ## Low-level API
///
/// If you care about low-level performance, or about preserving existing
/// formatting as much as possible, you may prefer to use the lower-level API:

module {:options "-functionSyntax:4"} JSON.Examples.LowLevel {
import ZeroCopy.API
import Utils.Unicode
import opened Grammar
import opened Wrappers

/// The low-level API works with ASTs that record all details of formatting and
/// encoding: each node contains pointers to parts of a string, such that
/// concatenating the fields of all nodes reconstructs the serialized value.

method {:test} Test() {

/// The low-level API exposes the same functions and methods as the high-level
/// one, but the type that they consume and produce is `Grammar.JSON` (defined
/// in `Grammar.dfy` as a `Grammar.Value` surrounded by optional whitespace)
/// instead of `AST.JSON` (defined in `AST.dfy`). Since `Grammar.JSON` contains
/// all formatting information, re-serializing an object produces the original
/// value:

var CITIES := Unicode.Transcode16To8(@"{
""Cities"": [
{
""Name"": ""Boston"",
""Founded"": 1630,
""Population"": 689386,
""Area (km2)"": 4600
}, {
""Name"": ""Rome"",
""Founded"": -753,
""Population"": 2.873e6,
""Area (km2)"": 1285
}, {
""Name"": ""Paris"",
""Founded"": null,
""Population"": 2.161e6,
""Area (km2)"": 2383.5
}
]
}");

var deserialized :- expect API.Deserialize(CITIES);
expect API.Serialize(deserialized) == Success(CITIES);

/// Since the formatting is preserved, it is also possible to write
/// minimally-invasive transformations over an AST. For example, let's replace
/// `null` in the object above with `"Unknown"`.
///
/// First, we construct a JSON value for the string `"Unknown"`; this could be
/// done by hand using `View.OfBytes()`, but using `API.Deserialize` is even
/// simpler:

var UNKNOWN :- expect API.Deserialize(Unicode.Transcode16To8(@"""Unknown"""));

/// `UNKNOWN` is of type `Grammar.JSON`, which contains optional whitespace and
/// a `Grammar.Value` under the name `UNKNOWN.t`, which we can use in the
/// replacement:

var without_null := deserialized.(t := ReplaceNull(deserialized.t, UNKNOWN.t));

/// Then, if we reserialize, we see that all formatting (and, in fact, all of
/// the serialization work) has been reused:

expect API.Serialize(without_null) == Success(Unicode.Transcode16To8(@"{
""Cities"": [
{
""Name"": ""Boston"",
""Founded"": 1630,
""Population"": 689386,
""Area (km2)"": 4600
}, {
""Name"": ""Rome"",
""Founded"": -753,
""Population"": 2.873e6,
""Area (km2)"": 1285
}, {
""Name"": ""Paris"",
""Founded"": ""Unknown"",
""Population"": 2.161e6,
""Area (km2)"": 2383.5
}
]
}"));
}

/// All that remains is to write the recursive traversal:

import Seq

function ReplaceNull(js: Value, replacement: Value): Value {
match js

/// Non-recursive cases are untouched:

case Bool(_) => js
case String(_) => js
case Number(_) => js

/// `Null` is replaced with the new `replacement` value:

case Null(_) => replacement

/// … and objects and arrays are traversed recursively (only the data part of is
/// traversed: other fields record information about the formatting of braces,
/// square brackets, and whitespace, and can thus be reused without
/// modifications):

case Object(obj) =>
Object(obj.(data := MapSuffixedSequence(obj.data, (s: Suffixed<jkv, jcomma>) requires s in obj.data =>
s.t.(v := ReplaceNull(s.t.v, replacement)))))
case Array(arr) =>
Array(arr.(data := MapSuffixedSequence(arr.data, (s: Suffixed<Value, jcomma>) requires s in arr.data =>
ReplaceNull(s.t, replacement))))
}

/// Note that well-formedness criteria on the low-level AST are enforced using
/// subset types, which is why we need a bit more work to iterate over the
/// sequences of key-value paris and of values in objects and arrays.
/// Specifically, we need to prove that mapping over these sequences doesn't
/// introduce dangling punctuation (`NoTrailingSuffix`). We package this
/// reasoning into a `MapSuffixedSequence` function:

function MapSuffixedSequence<D, S>(sq: SuffixedSequence<D, S>, fn: Suffixed<D, S> --> D)
: SuffixedSequence<D, S>
requires forall suffixed | suffixed in sq :: fn.requires(suffixed)
{
// BUG(https://github.com/dafny-lang/dafny/issues/2184)
// BUG(https://github.com/dafny-lang/dafny/issues/2690)
var fn' := (sf: Suffixed<D, S>) requires (ghost var in_sq := sf => sf in sq; in_sq(sf)) => sf.(t := fn(sf));
var sq' := Seq.Map(fn', sq);

assert NoTrailingSuffix(sq') by {
forall idx | 0 <= idx < |sq'| ensures sq'[idx].suffix.Empty? <==> idx == |sq'| - 1 {
calc {
sq'[idx].suffix.Empty?;
fn'(sq[idx]).suffix.Empty?;
sq[idx].suffix.Empty?;
idx == |sq| - 1;
idx == |sq'| - 1;
}
}
}

sq'
}
}

/// The examples in this file can be run with `Dafny -compile:4 -runAllTests:1`
/// (the tests produce no output, but their calls to `expect` will be checked
/// dynamically).
4 changes: 4 additions & 0 deletions src/JSON/Tutorial.dfy.expect
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@

Dafny program verifier finished with 3 verified, 0 errors
JSON.Examples.HighLevel.Test: PASSED
JSON.Examples.LowLevel.Test: PASSED
8 changes: 8 additions & 0 deletions src/JSON/Utils/Unicode.dfy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -143,4 +143,12 @@ module {:options "-functionSyntax:4"} JSON.Utils.Unicode {
function Transcode8To16(s: seq<uint8>): string {
Utf16Encode(Utf8Decode(s))
}

function ASCIIToBytes(s: string): seq<uint8>
// Keep ASCII characters in `s` and discard all other characters
{
seq(|s|, idx requires 0 <= idx < |s| =>
if s[idx] as uint16 < 128 then s[idx] as uint8
else 0 as uint8)
}
}

0 comments on commit dcd06cc

Please sign in to comment.