bugfix(semantic): Reject phantom types used as values. by orizi · Pull Request #10169 · starkware-libs/cairo

orizi · 2026-06-28T10:41:02Z

Summary

Phantom types (types marked #[phantom], or types that transitively contain a phantom type through struct members, enum variants, tuple elements, or fixed-size array elements) now produce a diagnostic error when they appear in a function signature or are used as values. Previously, only direct instantiation of a phantom type was caught; wrapping a phantom type in a generic container like Option<Ph> would silently compile. The diagnostic message was also updated from "Can not create instances of phantom types." to "Phantom types cannot be instantiated.".

The is_phantom check on TypeLongId was extended to recurse into struct members and enum variants (in addition to the existing tuple/array recursion), and the check is now memoized via a Salsa-tracked query with a cycle-breaking fallback of false. Function signature validation now explicitly checks each parameter type and the return type for phantom-ness and emits CannotCreateInstancesOfPhantomTypes accordingly.

On the Sierra generation side, the special-casing that represented user-defined phantom structs/enums as never was removed. Extern phantom types (e.g. circuit gates) still retain their dedicated Phantom Sierra long id. User-defined phantom types that appear only after generic substitution (i.e. where the generic parameter itself is not phantom) fall through to their regular Sierra representation, since the front-end diagnostic only fires when the concrete phantom type is visible at the use site.

Type of change

Please check one:

Bug fix (fixes incorrect behavior)
New feature
Performance improvement
Documentation change with concrete technical impact
Style, wording, formatting, or typo-only change

Why is this change needed?

Using a phantom type inside a generic container (e.g. Option<Ph>) in a function signature or as a runtime value was previously accepted by the compiler and silently lowered to a never-typed Sierra representation. This was incorrect: phantom types have no runtime representation and must not appear as values. The compiler should reject such code with a clear diagnostic rather than silently producing potentially unsound Sierra output.

What was the behavior or documentation before?

Option<Ph> (where Ph is a #[phantom] type) was accepted in function signatures and as values. The Sierra generator would represent the phantom struct/enum as never and specialize containers around it accordingly. The diagnostic for direct phantom instantiation used the message "Can not create instances of phantom types.".

What is the behavior or documentation after?

Any type that is, or transitively contains, a phantom type is now rejected in function signatures (both parameters and return types) and when used as a value. The diagnostic message is "Phantom types cannot be instantiated.". Extern phantom types used by libfuncs (e.g. circuit gates) are unaffected. Phantom types that appear only after generic substitution (where the generic parameter is not itself phantom) continue to compile via their regular Sierra representation.

Related issue or discussion (if any)

Additional context

The is_phantom query is now Salsa-tracked with a cycle result of false to handle self-referential types without infinite recursion.

reviewable-StarkWare · 2026-06-28T10:41:12Z

This change is

orizi · 2026-06-28T10:41:17Z

bugfix(semantic): Reject phantom types used as values. #10169 👈 (View in Graphite)
main

This stack of pull requests is managed by Graphite. Learn more about stacking.

cursor · 2026-06-28T10:43:38Z

PR Summary

Medium Risk
Touches core type checking, inference rewrite diagnostics, and Sierra type lowering; behavior change may reject previously accepted code and alter circuit type strings, though extern circuit phantoms are preserved.

Overview
Phantom types (including those nested in generics, structs, tuples, snapshots, or implicits) are now rejected when they appear in function signatures or as expression values, not only on direct struct/enum construction. The diagnostic is renamed to InstancesOfPhantomTypes with message "Phantom types cannot be instantiated." (still E2019).

is_phantom now treats a type as phantom if it transitively contains one via struct members, enum variant payloads, tuples, fixed-size arrays, or @T snapshots; the check is Salsa-memoized with cycle edges contributing false.

Sierra generation drops mapping user-defined phantom structs/enums to never and the old contains_extern_phantom walk; only extern phantom types keep the dedicated Phantom long id. Cases that only become phantom after generic substitution may still lower with a regular representation.

Expectation updates cover new semantic tests, sierra generator cases (signature/value errors vs post-substitution compile), circuit profiling/contract JSON (Circuit<(...)> → Circuit<Tuple<...>>), and related fixtures.

^{Reviewed by Cursor Bugbot for commit 0e631f3. Bugbot is set up for automated code reviews on this repo. Configure here.}

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: ab368f90d8

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

orizi

@orizi made 1 comment.
Reviewable status: 0 of 15 files reviewed, 3 unresolved discussions (waiting on eytan-starkware and TomerStarkware).

orizi

@orizi resolved 2 discussions.
Reviewable status: 0 of 15 files reviewed, 1 unresolved discussion (waiting on eytan-starkware and TomerStarkware).

eytan-starkware

@eytan-starkware reviewed 3 files and all commit messages, and made 1 comment.
Reviewable status: 3 of 15 files reviewed, 2 unresolved discussions (waiting on orizi and TomerStarkware).

crates/cairo-lang-semantic/src/types.rs line 167 at r2 (raw file):

    /// Returns whether the type is, or transitively contains, a phantom type.
    ///
    /// A type is phantom if it carries the `#[phantom]` attribute (or a phantom attribute declared

Documenting what a phantom is twice will be a source of divergance

Phantom types have no runtime representation, but a `#[phantom]` type - or a type that transitively contains one, e.g. `Option<Ph>` - could still appear as a value: a function parameter or return type, a constructed value, or any expression. Reaching sierra generation it caused an ICE - the type was lowered to `never`, whose shape did not match the phantom's declared variants/members, so the emitted `match`/`struct_deconstruct` mismatched the libfunc signature. - `TypeId::is_phantom` now reports whether a type is, or transitively contains, a phantom type (through struct members, enum variants, tuple and fixed-size-array elements, or a snapshot), guarded against self-referential types. - Function parameter and return types, and every expression, are now checked; a phantom one is reported as `CannotCreateInstancesOfPhantomTypes` ("Phantom types cannot be instantiated."). - The sierra-generator `never` workaround is removed; phantom types now use their regular representation. This is correct for the only case the front end cannot see - a phantom that becomes concrete only after generic substitution - which now compiles instead of panicking.

orizi

@orizi made 1 comment.
Reviewable status: 2 of 15 files reviewed, 2 unresolved discussions (waiting on eytan-starkware and TomerStarkware).

crates/cairo-lang-semantic/src/types.rs line 167 at r2 (raw file):

Previously, eytan-starkware wrote…

Documenting what a phantom is twice will be a source of divergance

Done.

orizi

@orizi resolved 1 discussion.
Reviewable status: 1 of 15 files reviewed, 1 unresolved discussion (waiting on eytan-starkware and TomerStarkware).

cursor

Cursor Bugbot has reviewed your changes and found 1 potential issue.

There are 2 total unresolved issues (including 1 from previous review).

^{❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.}

^{Reviewed by Cursor Bugbot for commit 0e631f3. Configure here.}

orizi

@orizi made 1 comment.
Reviewable status: 1 of 15 files reviewed, 2 unresolved discussions (waiting on eytan-starkware and TomerStarkware).

eytan-starkware

@eytan-starkware reviewed 14 files and all commit messages, made 1 comment, and resolved 1 discussion.
Reviewable status: all files reviewed, 1 unresolved discussion (waiting on orizi and TomerStarkware).

orizi

@orizi made 1 comment.
Reviewable status: all files reviewed, 1 unresolved discussion (waiting on eytan-starkware and TomerStarkware).

eytan-starkware

@eytan-starkware made 1 comment and resolved 1 discussion.
Reviewable status: complete! all files reviewed, all discussions resolved (waiting on TomerStarkware).

orizi

@orizi made 1 comment.
Reviewable status: complete! all files reviewed, all discussions resolved (waiting on TomerStarkware).

orizi requested review from TomerStarkware and eytan-starkware June 28, 2026 10:41

orizi marked this pull request as ready for review June 28, 2026 10:43

cursor Bot reviewed Jun 28, 2026

View reviewed changes

Comment thread crates/cairo-lang-semantic/src/types.rs

chatgpt-codex-connector Bot reviewed Jun 28, 2026

View reviewed changes

Comment thread crates/cairo-lang-semantic/src/items/functions.rs

Comment thread crates/cairo-lang-semantic/src/types.rs Outdated

orizi force-pushed the orizi/06-28-bugfix_semantic_reject_phantom_types_used_as_values branch from ab368f9 to 10b248b Compare June 28, 2026 11:03

cursor Bot reviewed Jun 28, 2026

View reviewed changes

Comment thread crates/cairo-lang-semantic/src/expr/compute.rs