Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RFC: Unicode strings and characters #13

Open
wants to merge 15 commits into
base: master
Choose a base branch
from
Open

RFC: Unicode strings and characters #13

Changes from 1 commit
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
f64cd44
First start
robin-aws Jul 7, 2022
098ccbd
Finished front half
robin-aws Jul 12, 2022
efc0ba8
Progress
robin-aws Jul 12, 2022
2c5ae54
Most alternatives done
robin-aws Jul 13, 2022
1c9ecda
Remaining alternatives todo
robin-aws Jul 13, 2022
9a636ed
Everything filled in
robin-aws Jul 14, 2022
5f7d0e0
Trailing fix ups
robin-aws Jul 14, 2022
d347572
Apply suggestions from code review
robin-aws Aug 2, 2022
16f6a97
Half-open intervals
robin-aws Aug 2, 2022
04d2553
Clarified representation of string literals
robin-aws Aug 2, 2022
931d679
More details in Prior Art
robin-aws Aug 2, 2022
3b87491
Don’t support \uXXXX with \unicodeChar:1
robin-aws Sep 26, 2022
30c7ea7
Addressing remaining comments
robin-aws Sep 26, 2022
cbb491e
Lingering edits
robin-aws Sep 26, 2022
560f395
Apply suggestions from code review
robin-aws Sep 28, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Progress
  • Loading branch information
@robin-aws
robin-aws committed Jul 12, 2022
commit efc0ba8aabea3e5625fbdf6cf2b247bef6ab0366
47 changes: 41 additions & 6 deletions 0012-unicode-strings.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -143,39 +143,74 @@ without having to decode these bytes into character values.
# Drawbacks
[drawbacks]: #drawbacks

Why should we *not* do this?
Changing the behavior of an existing concept in a backwards-incompatible way always carries a high cost,
and I do not propose it lightly.

***TODO***

# Rationale and alternatives
[rationale-and-alternatives]: #rationale-and-alternatives

***TODO***

## Enforce valid UTF-16 strings in the verifier

## Encode valid UTF-16 strings as a library predicates
***TODO***

## Define "valid UTF-16 strings" as a predicate in a shared library

***TODO***

## Distinct string type
## Add a new, distinct string type

## Distinct "rune" type
Since the current definition of `string` as an alias for `seq<char>`
***TODO***

## Add a new, distinct "rune" type

We could maintain the current definition of the `char` type, and introduce a new `rune` type to represent Unicode scalar values
instead ("rune" being the term Go uses for this).
instead ("rune" being the term both Go and C# use for this).
This would make it more obvious when reading Dafny source code in isolation whether it was using the new definitions of strings.
There are often few explicit references to individual character values in code that references string values, however,
and even when the `char` type is used it can often be only implicitly referenced because of type inference.
This alternative does not seem to be worth the implementation cost or additional cognitive load on users,
especially since it is hard to imagine any codebase needing to use both `char` and `rune` together.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The problem with char is that in unicode "character" refers to something that's pretty different from a scalar value (in particular, a "character" in unicode can be made up of more than one "scalar value").

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was trying to say I would personally find it confusing to read code that uses both char to represent UTF-16 code units and rune to represent Unicode scalar values. Code like https://github.com/dafny-lang/libraries/tree/master/src/Unicode specifically doesn't connect the built-in char type to anything because it generalizes over multiple encoding forms and UTF-16 isn't special in that library.

You're also absolutely right that even with /unicodeChar:1, char still doesn't correspond to an abstract Unicode character. Perhaps you're arguing that we should deprecate char and replace it with rune to more aggressively avoid that confusion? I can add that as another option here: just deprecating char for now wouldn't be as disruptive as some of these options and could be worth it.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not sure about this (never using both char and rune): IIRC Windows file system APIs use sequences of Dafny-3 chars, not valid utf-16 strings.

Maybe this just means that we'll have to build file system APIs with seq<byte> instead of string.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah, if you need to manipulate possibly-invalid sequences of UTF-16 code points, that should probably be a seq<uint16> instead.

I'm personally happy with the trade-off of a simpler, maximally correct and portable definition of string at the expense of making some specific APIs more ugly.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added an explicit note on this, and an open question on being able to compile to a native utf-16 type.


## Disallow compiling s[i]

Given popular Unicode encodings such as UTF-8 and UTF-16 do not support random access of characters,
we could decide that
we could decide to forbid random access of string elements in compiled code,
instead directing users to fallback to external code for efficient access,
or to sequential access via the new [ordered quantification features](https://github.com/dafny-lang/rfcs/pull/10) (once they are implemented).
This would be a much more disruptive breaking change for existing code, however.
String indexing would not be the first instance in Dafny of a simple, mathematical expression
that supports verification easily but is inefficient at runtime.
The proposed lazy decoding approach should provide a good balance between the clean expression of concepts
and efficient, unsurprising runtime behavior.

# Prior art
[prior-art]: #prior-art

Unicode has a long and messy history, and the approach to supporting Unicode varies dramatically across different programming languages.
Here is the current state of many of the most popular programming languages, especially those that Dafny currently or will likely
soon support compiling to:

***TODO***

* C#:
* Java:
* Go:
* JavaScript:
* C/C++:
* Rust:
* Swift:

# Unresolved questions
[unresolved-questions]: #unresolved-questions

***TODO***

# Future possibilities
[future-possibilities]: #future-possibilities

***TODO***