[hermes] Add Charon step

[joshlf]

---

• 　  [hermes] Take responsibility for all terminal UI #3019
• 　  [hermes] Get tests passing again #3018
• 　  [hermes] Add some tests for Charon invocation #3015
• 👉 [hermes] Add Charon step #3014
• 　  [hermes] Isolate shadow crate from other artifacts #3013
• 　  [hermes] Add some trace/debug logging #3012
• 　  [hermes] Add one more UI test #3011
• 　  [hermes] Add fixture testing #3010
• 　  [hermes] Finish shadow crate creation #3009
• 　  [hermes] Discover mod foo; declarations #3008
• 　  [hermes] Resolve Cargo and Hermes target dirs #3007
• 　  [hermes] Add shadow copy creation #3006
• 　  [hermes] Add package/target/root resolution #3005
• 　  [hermes] Add source code transformation #3004
• 　  [hermes] Add UI testing #3003
• 　  [hermes] Initial commit of parser #3002

Latest Update: v26 — Compare vs v25

📚 Full Patch History

Links show the diff between the row version and the column version.

Version	v25	v24	v23	v22	v21	v20	v19	v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v26	v25	v24	v23	v22	v21	v20	v19	v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v25		v24	v23	v22	v21	v20	v19	v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v24			v23	v22	v21	v20	v19	v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v23				v22	v21	v20	v19	v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v22					v21	v20	v19	v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v21						v20	v19	v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v20							v19	v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v19								v18	v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v18									v17	v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v17										v16	v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v16											v15	v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v15												v14	v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v14													v13	v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v13														v12	v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v12															v11	v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v11																v10	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v10																	v9	v8	v7	v6	v5	v4	v3	v2	v1	Base
v9																		v8	v7	v6	v5	v4	v3	v2	v1	Base
v8																			v7	v6	v5	v4	v3	v2	v1	Base
v7																				v6	v5	v4	v3	v2	v1	Base
v6																					v5	v4	v3	v2	v1	Base
v5																						v4	v3	v2	v1	Base
v4																							v3	v2	v1	Base
v3																								v2	v1	Base
v2																									v1	Base
v1																										Base

⬇️ Download this PR

Branch

git fetch origin refs/heads/Ge1bd84b5d857e18e3668e809844c6d73b808a020 && git checkout -b pr-Ge1bd84b5d857e18e3668e809844c6d73b808a020 FETCH_HEAD

Checkout

git fetch origin refs/heads/Ge1bd84b5d857e18e3668e809844c6d73b808a020 && git checkout FETCH_HEAD

Cherry Pick

git fetch origin refs/heads/Ge1bd84b5d857e18e3668e809844c6d73b808a020 && git cherry-pick FETCH_HEAD

Pull

git pull origin refs/heads/Ge1bd84b5d857e18e3668e809844c6d73b808a020

Stacked PRs enabled by GHerrit.

[gemini-code-assist]

Summary of Changes

Hello @joshlf, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request significantly extends the Hermes verification tool by integrating the 'Charon' analysis step directly into its workflow. The primary goal is to enable deeper static analysis of Rust code by leveraging Charon on the transformed shadow crate. This involves setting up the execution environment for Charon, ensuring proper argument forwarding, and enhancing the intermediate code generation phase to identify relevant analysis targets.

Highlights

• Charon Integration: A new module charon.rs has been added, containing the run_charon function. This function is responsible for constructing and executing the charon command, forwarding various arguments from Hermes's own command-line interface.
• Hermes Workflow Update: The main Hermes execution flow in main.rs now incorporates the charon step. After the shadow crate is built, the collected entry points (items with Hermes annotations) are passed to charon::run_charon for further analysis. Additionally, env_logger is now initialized for improved logging.
• Dependency Management: The project's Cargo.lock and tools/hermes/Cargo.toml files have been updated to include env_logger and its transitive dependencies, such as env_filter, jiff, and portable-atomic-util, to support the new logging setup.
• Shadow Crate Enhancements: The shadow.rs module has been modified to collect fully qualified paths of items bearing Hermes annotations during the shadow crate construction process. These collected entry points are then made available for use by the charon step.
• Argument Visibility and Root Resolution: Several fields within the Args struct in resolve.rs have been made public to allow the new charon module to access command-line arguments. A new charon_root() method was also added to the Roots struct to define the output directory for Charon artifacts.

🧠 New Feature in Public Preview: You can now enable Memory to help Gemini Code Assist learn from your team's feedback. This makes future code reviews more consistent and personalized to your project's style. Click here to enable Memory in your admin console.

Changelog

• tools/Cargo.lock
  • Added new dependencies: env_filter (0.1.4), env_logger (0.11.8), jiff (0.2.19), jiff-static (0.2.19), portable-atomic-util (0.2.5) and their respective transitive dependencies.
• tools/hermes/Cargo.toml
  • Added env_logger = "0.11.8" as a direct dependency.
• tools/hermes/src/charon.rs
  • New file created, implementing run_charon function to orchestrate Charon execution, including directory creation, argument forwarding (dest, abort-on-error, start-from, manifest-path, workspace/package/exclude, target selection, features), and environment setup (CARGO_TARGET_DIR).
• tools/hermes/src/main.rs
  • Imported the new charon module.
  • Initialized env_logger at the start of the main function.
  • Modified the Commands::Verify match arm to capture entry_points from shadow::build_shadow_crate.
  • Added a check to bail out if no Hermes annotations are found.
  • Invoked charon::run_charon with resolved arguments, roots, and entry points.
• tools/hermes/src/parse.rs
  • Added a public name() method to the ParsedItem enum to retrieve the identifier of parsed items (functions, structs, enums, unions, traits).
  • Changed the module_path field in ParsedLeanItem to be public.
• tools/hermes/src/resolve.rs
  • Made manifest, workspace, features, lib, bin, bins, example, examples, test, and tests fields of the Args struct public.
  • Added a charon_root() method to the Roots struct to provide a path for Charon's output.
• tools/hermes/src/shadow.rs
  • Modified build_shadow_crate function signature to return Result<Vec<String>> (list of annotated item paths).
  • Introduced a new mpsc::channel (path_tx, path_rx) to collect annotated item paths.
  • Updated process_file_recursive function signature to accept path_tx and module_prefix.
  • Within process_file_recursive, logic was added to construct the full path of annotated items and send them through path_tx.
  • Adjusted the return value of build_shadow_crate to return the collected annotated_paths.

Activity

• The pull request introduces new code for Charon integration and updates existing modules to support this new step.
• Dependencies have been updated to include necessary logging utilities.
• The shadow crate generation logic has been enhanced to extract specific information required for the Charon analysis.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a new charon step to the hermes tool. The changes are well-structured and include adding a new charon.rs module, updating main.rs to integrate the new step, and modifying shadow.rs to gather necessary entry points. The addition of env_logger is a good improvement for debugging. I have one suggestion in charon.rs to improve error logging for better diagnostics. Overall, the implementation aligns well with the PR's objective.

[gemini-code-assist]

The error from std::fs::canonicalize is silently ignored. If canonicalize fails (for example, because the path does not exist), this will fall back to using the original path. This could lead to unexpected behavior or a less clear error message later on. It would be better to log this failure to aid in debugging.

Suggested change

	let abs_manifest =
	std::fs::canonicalize(original_manifest).unwrap_or_else(|_| original_manifest.clone());
	let abs_manifest = std::fs::canonicalize(original_manifest).unwrap_or_else(|e| {
	log::warn!("Failed to canonicalize manifest path {:?}: {}. Using original path.", original_manifest, e);
	original_manifest.clone()
	});

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 91.87%. Comparing base (b3bfc03) to head (c0c7f26).

Additional details and impacted files

@@                            Coverage Diff                             @@
##           G7f8abd90b628d02a6fdc01985535eef50509312e    #3014   +/-   ##
==========================================================================
  Coverage                                      91.87%   91.87%           
==========================================================================
  Files                                             20       20           
  Lines                                           6057     6057           
==========================================================================
  Hits                                            5565     5565           
  Misses                                           492      492           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.