Use mathematical notation for semantic policy Display

[febyeji]

Summary

• Change semantic::Policy Display impl to use mathematical notation:
  • and(a,b) → (a ∧ b)
  • or(a,b) → (a ∨ b)
  • thresh(k,a,b,c) → #{a, b, c} = k

Close #926

[apoelstra]

• thresh(k,a,b,c) → #{a, b, c} ≥ k

The correct inequality is =, not ≥. If you provide too many satisfactions your witness will be invalid. But concept ACK using this brace/comma notation. I think it will be easier to read in a large expression than my notation was.

[febyeji]

Thanks for the review! Changed ≥ to = and added a doc comment to Display noting the notation and that it's not parseable.

[apoelstra]

Can you squash these commits, so that there isn't one modifying code introduced by the other?

[tcharding]

Do we want to close the issue if this merges?

[tcharding]

ACK 73ee818

[trevarj]

Do we want to close the issue if this merges?

@tcharding Don't close #885 until issues are made for these at least

• We rename policy::Concrete to policy::Policy, leaving a type alias to minimize code breakage.
• We move policy::Semantic into its own module so it becomes semantic::Semantic (we can also leave a type alias at the old location but we should deprecate it). We also move the Lift trait, which I think is in policy/mod.rs, to this own module (we can re-export it at the old location, but sadly we cannot deprecate re-exports).
• We stop referring to policy::Semantic as a "semantic policy" or a "policy" at all anywhere in our docs
• We change the Display impl for Semantic to output something goofy, like instead of and(a, b, c) it does (a ∧ b ∧ c). Whoever PRs to do this should provide several examples so we can debate this, especially the threshold notation. (Maybe we want (2 = a + b + c) for thresh(2, a, b, c)?)

Furthermore, I propose adding a method to "uncompile" from a Miniscript to a Policy (or even a Semantic to a Policy), but we should move that to a separate issue because I'm quite conflicted about what to do about percentages.

[apoelstra]

No, to close the issue we've also got to do the renames and doc changes to stop referring to semantic policies as "policies".

[tcharding]

@febyeji I've changed your PR description to close the new #926. Please check you are happy with that.

[febyeji]

@tcharding Looks good, thanks for updating the PR body. Happy with that.

[apoelstra]

In eb6011e:

This parser is gratuitously inefficient. You should be able to just parse the new syntax directly. It is a simple CFG and I don't think it even needs lookahead.

You definitely do not need to rewrite the string into the old syntax, and even if you did, this manages to be both recursive (we should not be introducing any new recursive code) and still manages to rescan the entire string on every iteration.

[febyeji]

I simplified the parser and added hybrid rejection. The math parser now refuses atoms whose root name is and/or/thresh, so strings like (a ∧ or(b, c)) and similar won't parse.

[apoelstra]

That solution is insane. I feel like I'm just arguing with a LLM by proxy here. I am not going to provide detailed feedback anymore.

[febyeji]

@apoelstra Apologies for the back-and-forth. I wrote the parser myself, but without carefully understanding the codebase. I was trying to be conservative and reuse expression::Tree, which compounded the mess since I had also misunderstood your intent and feedback.

I've rewritten the code. If the result isn't what you had in mind, please feel free to close the PR. I will just leave one note in case it helps resolving the issue later.

In the current code, FromStr accepts the legacy form as well to avoid breaking existing tests and users, but I'm not sure if FromStr should accept only the new format.

[trevarj]

Leaving some starting feedback on the parser. If the suggestions get implemented then I will do another review and see if we can refine it more.

You may want to not force push and start stacking some commits in case Andrew or someone else doesn't like a change and then you can drop that commit and rebase later.

[trevarj]

Andrew said that we don't need a BNF grammar in the doc comment.
It's a pretty simple grammar, but I prefer a more simplified notation anyway (like regex style for human readability).

I don't like how the grammar includes whitespace. I think it would be better to always skip whitespace to accept pk(A) ∧ pk(B).

[febyeji]

Thanks for the review. I changed the code to accept whitespaces except for the digraph #{. I dropped the BNF grammar from the doc comment as well.

[trevarj]

Drop whitespace and then you can have a impl From<&str> for Op and have the _ case be unreachable!() instead of this.

[febyeji]

I refactored the code, but used From<char> instead of From<&str> since Op are of a single literal and we can avoid constructing &str from the call site. Happy to switch &str if it's a better option to consider.

[trevarj]

You are correct, should be char!

[trevarj]

I would prefer using a s.chars().peekable() (or char_indices()) Iterator.
I think it will make things more readable and you won't have to index into the byte slice and skip utf8 bytes. It's not a huge problem, but I think it's just nicer Rust.

After that, then you can have really nice looking match statements on the main while loop. It's more idiomatic Rust IMO.

You'll probably need some "traditional" parser/lexer helper functions, like skipping whitespace and reading until some char, so it may be worth it to wrap the iterator in a MathParser struct or something.

[febyeji]

Thank you for the guidance. I refactored the code to wrap the parser state in a MathParser struct with a few helpers like peek, bump, .... Most of the byte-index manipulation is now hidden, though some match arms may still not be ergonomic to read. Please let me know if there's room to push this further.

[trevarj]

Derive PartialEq, Eq on Kind and you can get rid of matches! like this and just use != here and in the other areas.

[febyeji]

Thanks, Kind now derives the traits and directly uses == / !=.

[trevarj]

For example, this is copied a couple times and could be replaced with some helper to consume until some char, I think.

[febyeji]

For this one, I added consume_while(predicate) helper to MathParser

[trevarj]

I think the parser is turning out pretty good, I like it.
Probably my last round of review since everything else seems ok to me.
Thanks!

[trevarj]

Does this still work if it's changed to?:

parser.skip_ws();
while let Some(c) = parser.peek() {
  ...
  parser.skip_ws(); // <- last statementin block
}

I'm not actually sure what is better...just a nit and can ignore.

[febyeji]

I've thought about it and would work if we put parser.skip_ws() before continue as well. For now, I kept as it is to have loop -> skip_ws -> peek-or-break format.

[trevarj]

Can we get doc comments here and in the impl? Thanks!

[trevarj]

Let's move this and the other parse_* functions into MathParser.
Then we can give it a good doc comment explaining the high level overview of how the parser works.

[trevarj]

Another doc comment here explaining what the use of Frame is used for.

[trevarj]

I think it would be better to add a context: &str arg and display that so the user knows exactly where the policy is malformed. Need to update callers appropriately.

[febyeji]

Thanks, I updated this along with expect.

[trevarj]

nit: I'd rather have next() unless you think it's better to use bump. Some people use chomp...

Suggested change

	fn bump(&mut self) -> Option<char> { self.iter.next().map(|(_, c)| c) }
	fn next(&mut self) -> Option<char> { self.iter.next().map(|(_, c)| c) }

[trevarj]

Suggested change

	fn try_consume(&mut self, want: char) -> bool {
	fn expect(&mut self, want: char) -> Result<(), Error> {

This way you can get rid of the return Err(malformed_math()); that is scattered around and just use parser.expect('(')?;

[febyeji]

Right, it's much clearer. Thanks!

[trevarj]

I would remove the try_consume function fully and then use:

Suggested change

	if !self.try_consume('(') {
	if let Err(e) = self.expect('(') {

[febyeji]

Oh, thank you. I missed this line.

[trevarj]

ACK 511e81b

Don't forget to squash commits later. Probably last 5 into a single commit?