Add test verifying no invalid trace with dynamic array

[thk123]

• Each commit message has a non-empty body, explaining why the change was made.
• Methods or procedures I have added are documented, following the guidelines provided in CODING_STANDARD.md.
• [n/a] The feature or user visible behaviour I have added or modified has been documented in the User Guide in doc/cprover-manual/
• Regression or unit tests are included, or existing tests cover the modified code (in this case I have detailed which ones those are in the commit message).
• [n/a] My commit message includes data points confirming performance improvements (if claimed).
• My PR is restricted to a single feature or bugfix.
• White-space or formatting changes outside the feature-related changed lines are in commits of their own.

In trying to produce a test for #4197 I've discovered the problem originally discussed in #4153 has been fixed. So I added the test and moved the invariant to a more defensive position.

[tautschnig]

I'm quite curious which change actually fixed this problem?

[tautschnig]

"a an"

[tautschnig]

I'm quite curious which change actually fixed the problem?

[tautschnig]

"a an"

[smowton]

Fix English, otherwise lgtm :)

[smowton]

"Verify that when an array's size is determined by an array input, the resulting trace is valid"?

[thk123]

So moving this invariant now causes some other failures so I will do the following:

• try this branch on top of Do not generate nil_exprt in bv_get #4197 to see if that's now fixing that
• move the invariant back and add a regex that the value is now not unknown
• low priority: bisect between two versions to see what fixed it

[thk123]

Note failure is cbmc-cprover-smt2-CORE not cbmc-CORE

[tautschnig]

@thk123 I suppose I should also put some effort into the work in #4197.

[thk123]

@tautschnig I've not yet checked that fixes this, and so far not got a test that passes on your branch that fails on develop so I wouldn't rush. I'll let you know if the failures here are fixed by your branch.

[thk123]

@tautschnig Still get this invariant fail on top of your branch, specifically on cbmc-cprover-smt2:

• json1/test.desc
• trace_options_json_extended/extended.desc
• trace_options_json_extended/non-extended.desc

If you want to investigate them further. For now I will put the invariant back and see if I can make the test a little more precise.

[peterschrammel]

Compare with the corresponding code in goto_trace.cpp:

cbmc/src/goto-programs/goto_trace.cpp

Line 271 in 557be1d

if(value.is_nil())

[tautschnig]

@tautschnig Still get this invariant fail on top of your branch, specifically on cbmc-cprover-smt2: [...]

It seems the SMT2 solver simply is broken when it comes to unbounded/infinity-sized arrays (@kroening might have some input): The solver returns as model

((|__CPROVER_threads_exited#1| |__CPROVER_threads_exited#1|))

which is not usable as it is self-referential.

[tautschnig]

@thk123 I took the liberty to rebase your branch, include tags for the broken SMT test, and apply @smowton text suggestion. I'll leave it to you to merge this as I'm not sure whether moving the invariant would break TG in some way.

[allredj]

✔️
Passed Diffblue compatibility checks (cbmc commit: 08c7c9d).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/106404959

[thk123]

This passes tests locally for me, I believe I only ever saw problems on JBMC