Merge pull request #6271 from jezhiggins/vsd-region-context

VSD - liveness context

Author: martin-cs

regression/goto-analyzer/liveness-array/main.c

@@ -0,0 +1,10 @@
+int main()
+{
+  int non_det;
+  int x[2] = {0, 1};
+
+  if(non_det)
+    x[0] = 2;
+  else
+    x[0] = 3;
+}

regression/goto-analyzer/liveness-array/test-liveness.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-arrays every-element --vsd-values intervals --vsd-liveness --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::x .* TOP @ \[1\]
+^main::1::x .* \{\[0\] = \[0, 0\] @ \[2\]
+^main::1::x .* \{\[0\] = \[2, 3\] @ \[7\]
+--

regression/goto-analyzer/liveness-array/test-write-location.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-arrays every-element --vsd-values intervals --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::x .* TOP @ \[1\]
+^main::1::x .* \{\[0\] = \[0, 0\] @ \[2\]
+^main::1::x .* \{\[0\] = \[2, 3\] @ \[4, 6\]
+--

regression/goto-analyzer/liveness-function-call/main.c

@@ -0,0 +1,22 @@
+int globalX;
+
+void f00()
+{
+}
+
+int main()
+{
+  globalX = 1;
+
+  f00();
+
+  assert(globalX == 1);
+
+  globalX = 2;
+
+  f00();
+
+  assert(globalX == 2);
+
+  return 0;
+}

regression/goto-analyzer/liveness-function-call/test-liveness-show.desc

@@ -0,0 +1,10 @@
+CORE
+main.c
+--variable-sensitivity --vsd-liveness --show
+^EXIT=0$
+^SIGNAL=0$
+globalX .* 0 @ \[28\]
+globalX .* 1 @ \[0\]
+globalX .* 2 @ \[3\]
+globalX .* TOP @ \[31\]
+--

regression/goto-analyzer/liveness-function-call/test-liveness-three-way-show.desc

@@ -0,0 +1,10 @@
+CORE
+main.c
+--variable-sensitivity --vsd-liveness --three-way-merge --show
+^EXIT=0$
+^SIGNAL=0$
+globalX .* 0 @ \[28\]
+globalX .* 1 @ \[0\]
+globalX .* 2 @ \[3\]
+globalX .* TOP @ \[31\]
+--

regression/goto-analyzer/liveness-function-call/test-liveness-three-way.desc

@@ -0,0 +1,8 @@
+CORE
+main.c
+--variable-sensitivity --vsd-liveness --three-way-merge --verify
+^EXIT=0$
+^SIGNAL=0$
+\[main.assertion.1\] .* globalX == 1: SUCCESS
+\[main.assertion.2\] .* globalX == 2: SUCCESS
+--

regression/goto-analyzer/liveness-function-call/test-liveness.desc

@@ -0,0 +1,8 @@
+CORE
+main.c
+--variable-sensitivity --vsd-liveness --verify
+^EXIT=0$
+^SIGNAL=0$
+\[main.assertion.1\] .* globalX == 1: SUCCESS
+\[main.assertion.2\] .* globalX == 2: UNKNOWN
+--

regression/goto-analyzer/liveness-function-call/test-write-location-show.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --show
+^EXIT=0$
+^SIGNAL=0$
+globalX .* 0 @ \[28\]
+globalX .* 1 @ \[0\]
+globalX .* TOP @ \[0, 3\]
+--

regression/goto-analyzer/liveness-function-call/test-write-location-three-way-show.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --three-way-merge --show
+^EXIT=0$
+^SIGNAL=0$
+globalX .* 0 @ \[28\]
+globalX .* 1 @ \[0\]
+globalX .* 2 @ \[3\]
+--

regression/goto-analyzer/liveness-function-call/test-write-location-three-way.desc

@@ -0,0 +1,8 @@
+CORE
+main.c
+--variable-sensitivity --three-way-merge --verify
+^EXIT=0$
+^SIGNAL=0$
+\[main.assertion.1\] .* globalX == 1: SUCCESS
+\[main.assertion.2\] .* globalX == 2: SUCCESS
+--

regression/goto-analyzer/liveness-function-call/test-write-location.desc

@@ -0,0 +1,8 @@
+CORE
+main.c
+--variable-sensitivity --verify
+^EXIT=0$
+^SIGNAL=0$
+\[main.assertion.1\] .* globalX == 1: SUCCESS
+\[main.assertion.2\] .* globalX == 2: UNKNOWN
+--

regression/goto-analyzer/liveness-loop/main.c

@@ -0,0 +1,12 @@
+int main()
+{
+  int non_det;
+  int x = 0;
+
+  for(int i = 0; i != 5; ++i)
+  {
+    int y = 0;
+    x++;
+    y = 1;
+  }
+}

regression/goto-analyzer/liveness-loop/test-liveness.desc

@@ -0,0 +1,10 @@
+CORE
+main.c
+--variable-sensitivity --vsd-values set-of-constants --vsd-liveness --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::x .* TOP @ \[1\]
+^main::1::x .* value-set-begin: 0 :value-set-end @ \[2\]
+^main::1::x .* value-set-begin: 1, 2, 3, 4, 5 :value-set-end @ \[9\]
+^main::1::x .* value-set-begin: 0, 1, 2, 3, 4, 5 :value-set-end @ \[5\]
+--

regression/goto-analyzer/liveness-loop/test-write-location.desc

@@ -0,0 +1,10 @@
+CORE
+main.c
+--variable-sensitivity --vsd-values set-of-constants --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::x .* TOP @ \[1\]
+^main::1::x .* value-set-begin: 0 :value-set-end @ \[2\]
+^main::1::x .* value-set-begin: 1, 2, 3, 4, 5 :value-set-end @ \[8\]
+^main::1::x .* value-set-begin: 0, 1, 2, 3, 4, 5 :value-set-end @ \[2, 8\]
+--

regression/goto-analyzer/liveness-pointer-write-through/main.c

@@ -0,0 +1,11 @@
+int main()
+{
+  int non_det;
+  int x = 0;
+  int *p = &x;
+
+  if(non_det)
+    *p = 2;
+  else
+    *p = 3;
+}

regression/goto-analyzer/liveness-pointer-write-through/test-liveness.desc

@@ -0,0 +1,11 @@
+CORE
+main.c
+--variable-sensitivity --vsd-values set-of-constants --vsd-pointers constants --vsd-liveness --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::x .* TOP @ \[1\]
+^main::1::x .* value-set-begin: 0 :value-set-end @ \[2\]
+^main::1::x .* value-set-begin: 2, 3 :value-set-end @ \[9\]
+^main::1::p .* TOP @ \[3\]
+^main::1::p .*\(main::1::x\) @ \[4\]
+--

regression/goto-analyzer/liveness-pointer-write-through/test-write-location.desc

@@ -0,0 +1,11 @@
+CORE
+main.c
+--variable-sensitivity --vsd-values set-of-constants --vsd-pointers constants --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::x .* TOP @ \[1\]
+^main::1::x .* value-set-begin: 0 :value-set-end @ \[2\]
+^main::1::x .* value-set-begin: 2, 3 :value-set-end @ \[6, 8\]
+^main::1::p .* TOP @ \[3\]
+^main::1::p .*\(main::1::x\) @ \[4\]
+--

regression/goto-analyzer/liveness-struct/main.c

@@ -0,0 +1,16 @@
+struct S
+{
+  int x;
+  int y;
+};
+
+int main()
+{
+  int non_det;
+  struct S s = {1, 3};
+
+  if(non_det)
+    s.x = 2;
+  else
+    s.x = 3;
+}

regression/goto-analyzer/liveness-struct/test-liveness.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-structs every-field --vsd-values intervals --vsd-liveness --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::s .* \{\} @ \[1\]
+^main::1::s .* \{.x=\[1, 1\] @ \[2\], .y=\[3, 3\] @ \[2\]\} @ \[2\]
+^main::1::s .* \{.x=\[2, 3\] @ \[7\], .y=\[3, 3\] @ \[2\]\} @ \[7\]
+--

regression/goto-analyzer/liveness-struct/test-write-location.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-structs every-field --vsd-values intervals --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::s .* \{\} @ \[1\]
+^main::1::s .* \{.x=\[1, 1\] @ \[2\], .y=\[3, 3\] @ \[2\]\} @ \[2\]
+^main::1::s .* \{.x=\[2, 3\] @ \[4, 6\], .y=\[3, 3\] @ \[2\]\} @ \[4, 6\]
+--

regression/goto-analyzer/liveness/main.c

@@ -0,0 +1,10 @@
+int main()
+{
+  int non_det;
+  int x = 0;
+
+  if(non_det)
+    x = 2;
+  else
+    x = 3;
+}

regression/goto-analyzer/liveness/test-liveness.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-values set-of-constants --vsd-liveness --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::x .* TOP @ \[1\]
+^main::1::x .* value-set-begin: 0 :value-set-end @ \[2\]
+^main::1::x .* value-set-begin: 2, 3 :value-set-end @ \[7\]
+--

regression/goto-analyzer/liveness/test-write-location.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-values set-of-constants --show
+^EXIT=0$
+^SIGNAL=0$
+^main::1::x .* TOP @ \[1\]
+^main::1::x .* value-set-begin: 0 :value-set-end @ \[2\]
+^main::1::x .* value-set-begin: 2, 3 :value-set-end @ \[4, 6\]
+--

src/analyses/Makefile

@@ -45,6 +45,7 @@ SRC = ai.cpp \
       variable-sensitivity/full_array_abstract_object.cpp \
       variable-sensitivity/full_struct_abstract_object.cpp \
       variable-sensitivity/interval_abstract_value.cpp \
+      variable-sensitivity/liveness_context.cpp \
       variable-sensitivity/three_way_merge_abstract_interpreter.cpp \
       variable-sensitivity/two_value_pointer_abstract_object.cpp \
       variable-sensitivity/value_set_abstract_object.cpp \

src/analyses/variable-sensitivity/abstract_environment.cpp

@@ -345,6 +345,7 @@ abstract_object_pointert abstract_environmentt::add_object_context(
 
 bool abstract_environmentt::merge(
   const abstract_environmentt &env,
+  const goto_programt::const_targett &merge_location,
   widen_modet widen_mode)
 {
   // for each entry in the incoming environment we need to either add it
@@ -363,8 +364,9 @@ bool abstract_environmentt::merge(
   bool modified = false;
   for(const auto &entry : env.map.get_delta_view(map))
   {
-    auto merge_result =
-      abstract_objectt::merge(entry.get_other_map_value(), entry.m, widen_mode);
+    auto merge_result = abstract_objectt::merge(
+      entry.get_other_map_value(), entry.m, merge_location, widen_mode);
+
     modified |= merge_result.modified;
     map.replace(entry.k, merge_result.object);
   }

src/analyses/variable-sensitivity/abstract_environment.h

@@ -190,10 +190,14 @@ class abstract_environmentt
   /// Computes the join between "this" and "b"
   ///
   /// \param env: the other environment
+  /// \param merge_location: when the merge is happening
   /// \param widen_mode: indicates if this is a widening merge
   ///
   /// \return A Boolean, true when the merge has changed something
-  virtual bool merge(const abstract_environmentt &env, widen_modet widen_mode);
+  virtual bool merge(
+    const abstract_environmentt &env,
+    const goto_programt::const_targett &merge_location,
+    widen_modet widen_mode);
 
   /// This should be used as a default case / everything else has failed
   /// The string is so that I can easily find and diagnose cases where this

src/analyses/variable-sensitivity/abstract_object.cpp

@@ -206,6 +206,19 @@ void abstract_objectt::output(
   }
 }
 
+abstract_objectt::combine_result abstract_objectt::merge(
+  const abstract_object_pointert &op1,
+  const abstract_object_pointert &op2,
+  const locationt &merge_location,
+  const widen_modet &widen_mode)
+{
+  abstract_object_pointert result = merge(op1, op2, widen_mode).object;
+  result = result->merge_location_context(merge_location);
+
+  // If no modifications, we will return the original pointer
+  return {result, result != op1};
+}
+
 abstract_objectt::combine_result abstract_objectt::merge(
   const abstract_object_pointert &op1,
   const abstract_object_pointert &op2,
@@ -214,6 +227,7 @@ abstract_objectt::combine_result abstract_objectt::merge(
   abstract_object_pointert result = op1->should_use_base_merge(op2)
                                       ? op1->abstract_object_merge(op2)
                                       : op1->merge(op2, widen_mode);
+
   // If no modifications, we will return the original pointer
   return {result, result != op1};
 }
@@ -241,9 +255,14 @@ bool abstract_objectt::should_use_base_meet(
   return is_bottom() || is_top() || other->is_bottom() || other->is_top();
 }
 
-abstract_object_pointert abstract_objectt::update_location_context(
-  const locationst &locations,
-  const bool update_sub_elements) const
+abstract_object_pointert
+abstract_objectt::write_location_context(const locationt &location) const
+{
+  return shared_from_this();
+}
+
+abstract_object_pointert
+abstract_objectt::merge_location_context(const locationt &location) const
 {
   return shared_from_this();
 }