Skip to content

Partial expression simplification #1020

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 130 commits into from
Closed

Partial expression simplification #1020

wants to merge 130 commits into from

Conversation

thk123
Copy link
Contributor

@thk123 thk123 commented Jun 15, 2017
edited
Loading

Depends on variable sensitivity domain: #708
Fixes part of diffblue/cbmc-toyota#132

When calling ai_simplify, previously if we couldn't simplify the whole expression we gave up. Now we
recurse over the sub-elements to get a partially simplified expression. E.g. if we have an array whose value is top, but the index i is known to be 1 then arr[i] will simplify to:

arr[1]

Real diff: de2f979

@thk123 thk123 requested review from NlightNFotis and martin-cs June 15, 2017 13:07
martin and others added 23 commits June 15, 2017 15:04
Fix constant propagator.
08a2f8a
@danpoe
disable two-way propagation for now
956225f
Addressing constant domain review comments by Daniel Poetzl.
1b13114
@danpoe
constant propagator fix
e2fdcbf
Add is_bottom() and is_top() to ai_domain_baset and derived domains.
3178f1b
Use is_bottom() to catch unreachable functions.
5606ce5
Refactor goto-analyzer so that task, analysis, domain and output can …
7cee75e 
…be picked independently.
Remove the special case handling of --show-intervals.
5f6ecbe 
The option string --show --intervals is more flexible, --show-intervals is now an alias.
Add support for dependency graph display.
93b8f8c
Program simplification now removes unused instructions.
d0b728a
Catch exceptions thrown in doit() in goto analyzer.
427580d
Fix merging issues in goto analyzer.
ce669c3
@danpoe
Fix whitespace to match coding guidelines
8db8121
Whitespace fixes in goto-analyzer.
7193056
@danpoe
regression test changes
cb54f29
Addressing goto analyzer review comments by Daniel Poetzl.
42e603c
@danpoe
option to ignore unresolved functions in the constant propagator
74170fd
Test that requires is_bottom() and is_top().
ec808bd
Improve status output.
f1c62f2
@danpoe
enable failed tests printer for goto-analyzer regression tests
7ca4e94
@danpoe
enable assertions in is_threadedt
ca7d8ab
Update the use of ai_simplify for the introduction of ai_simplify_lhs.
3565cc6
Check in of basic variable sensitivity framework.
5abec1e 
This includes skeleton code written by @martin-cs.

Added hook for running the variable sensitivity

Involved removing messaget inheritance since we require a zero parameter
constructor for ai_baset

Terminate correctly

Made the domain correclty find the fixed point. The merge operation
returns whether the merge actually changed any values by implementing a
operator== for each of the abstract objects.

Further, when merging a map, if a key is absent from one map then we
remove it from the other unless the map is bottom.

Adding handlers for the special types

They are just stubs at the moment, returning top as we need the abstract
objects that represent them.

Updated interface for ai_domain_baset
thk123 added 19 commits June 15, 2017 17:53
Using enable_shared_from_this to eliminate naked pointers
2772300 
Modify the merge to return shared pointers by replacing returns of this
with returns of `shared_from_this`. This simplifies the code for dealing
with when need to modify the result in dervied classes as we are no
longer responsible for freeing the pointer returned by the super class.
Adding unit tests for merging of abstract objects
c84f11b
Fixed bugs revealed by unit tests
d8341af 
The base merge should always result in either top or bottom (it is up
for dervied classes to clear the top flag if they are not top).

Correctly use the base class merge when appropriate in merging constant
values.
Adding unit tests for constant abstract object.
f90bf00
Adding tests for constant array
b8a0c78 
Refactored the merge maps method to use std::intersection as there was a
bug with empty maps caught by the unit tests.
Adding unit tests for the struct abstract object
3b05fe3
Corrected merge methods for pointer and struct
b2ef738
Rewriting the constant_abstract_value::merge using behaviour driven d…
c96f418 
…esign
Replaced assert with __CPROVER_assert
ca525bd 
Use the CPROVER_assert as behaviour is consistent across platforms.
Use Behaviour Driven Design testing for abstract object merge
0f51650
Struct and array AO unit tests using behaviour driven design
6191fb2 
Removed some unnecessary debug information from the tests
Corrected guard on specialised merge
430f934
Made pointer to array name consistent
66561d7
Constant array reading from top handled correctly
deba2a3
Completed test suite for full struct and constant array AOs
b1ac428
Correctly set up the enviroment before running tests
d4afa61 
In release builds, the top/bottom status of the enviroment was
undefined. This ensures the enviroment is set to top (i.e. an entry
point).
Extracted out logic for when to use a 2 value merge
f7f3db0 
Previously each abstract object that implemented merge had to correctly
redirect merging top with anything or merging with a bottom.

This is now handled directly in the root merge by checking the three
cases where the base merge must be used.

If this is bottom must still be handled by derived classes as we must
create an abstract object of the same type.
Improved comment in the LHS simplify
bb4f378
Fixed ai_simplify in variable sensitivity domain to use new interface
8601e81 
At some point this commit needs backdating as the ai_domain interface
has changed under our feet.
@martin-cs
Copy link
Collaborator

Looks good to me. The only nit is to make sure to update the call to ai_simplify to the new signature.

@martin-cs
Copy link
Collaborator

Let's see if the merge issues go away once the rebase is done. Other than that I am happy with this change.

Made ai_simplify perform a partial simplifcation
de2f979 
If the ai_simplify is not able to resolve the expression to a constant,
it tries to simplify recursively any child operations. For example,
given a int i that is know to be 1, and an unknown (top) array a, it
would convert a[i] to a[1].
@thk123 thk123 force-pushed the bugfix/partial-expression-simplification branch from 9f2198a to de2f979 Compare June 15, 2017 17:58
@thk123 thk123 mentioned this pull request Jun 28, 2017
Merged
@peterschrammel peterschrammel mentioned this pull request Jul 3, 2017
Closed
@tautschnig tautschnig changed the base branch from master to develop August 22, 2017 12:22
@hannes-steffenhagen-diffblue
Copy link
Contributor

Closing as it's unlike @thk123 is going to pick this up again. Also I believe a version of this was eventually implemented regardless.

@martin-cs
Copy link
Collaborator

Just to close the loop, VSD did get merged and @jezhiggins is currently working on this bit of code, hopefully for a final version.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@NlightNFotis NlightNFotis Awaiting requested review from NlightNFotis

@martin-cs martin-cs Awaiting requested review from martin-cs martin-cs is a code owner

Assignees

@thk123 thk123

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@thk123 @martin-cs @hannes-steffenhagen-diffblue @NlightNFotis @danpoe