Skip to content

Byte-update lowering: handle sub-byte sized bit fields #5390

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Nov 7, 2020
Merged

Byte-update lowering: handle sub-byte sized bit fields #5390

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
ee1f966
Byte-update lowering: handle sub-byte sized bit fields
tautschnig Jun 22, 2020
e16b7db
Byte operator lowering: Clarify units (bits)
tautschnig Nov 6, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
25 changes: 25 additions & 0 deletions regression/cbmc/byte_update13/main.c
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,25 @@
#include <assert.h>
#include <string.h>

struct blob
{
unsigned dummy;
unsigned bit : 1;
};

int main()
{
struct blob b;
struct blob b1 = b;

// Perform byte-wise updates of the struct, up to its full size. Constant
// propagation made impossible, and thus the byte updates need to be handled
// by the back-end.
if(b.dummy <= sizeof(struct blob))
memset(&b, 0, b.dummy);

// If we updated the complete struct, then the single-bit bit-field needs to
// have been set to zero as well. This makes sure that the encoding of byte
// update properly handles fields that are smaller than bytes.
assert(b1.dummy != sizeof(struct blob) || b.bit == 0);
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Brutal! If you are need to change things in this PR, please could you add a comment or two here to explain what you are testing because I fear that people without your knowledge of C struct packing rules and how they relate to bit-fields might miss some of the subtlety here.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done.

}
8 changes: 8 additions & 0 deletions regression/cbmc/byte_update13/test.desc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,8 @@
CORE
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tests: can we test behaviour in the other endianness somehow?

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Setting the --arch flags appropriately should do it.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think endianness actually matters in this test?

main.c

^EXIT=0$
^SIGNAL=0$
^VERIFICATION SUCCESSFUL$
--
^warning: ignoring
74 changes: 43 additions & 31 deletions src/solvers/lowering/byte_operators.cpp
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2136,10 +2136,30 @@ static exprt lower_byte_update(
instantiate_byte_array(value_as_byte_array, 0, (type_bits + 7) / 8, ns);
}

const std::size_t update_size_bits = update_bytes.size() * 8;
const std::size_t bit_width = std::max(type_bits, update_size_bits);

const bool is_little_endian = src.id() == ID_byte_update_little_endian;

exprt val_before =
typecast_exprt::conditional_cast(src.op(), bv_typet{type_bits});
if(bit_width > type_bits)
{
val_before =
concatenation_exprt{from_integer(0, bv_typet{bit_width - type_bits}),
val_before,
bv_typet{bit_width}};

if(!is_little_endian)
to_concatenation_expr(val_before)
.op0()
.swap(to_concatenation_expr(val_before).op1());
}

if(non_const_update_bound.has_value())
{
const exprt src_as_bytes = unpack_rec(
src.op(),
val_before,
src.id() == ID_byte_update_little_endian,
mp_integer{0},
mp_integer{update_bytes.size()},
Expand All @@ -2158,19 +2178,15 @@ static exprt lower_byte_update(
}
}

const std::size_t update_size = update_bytes.size();
const std::size_t width = std::max(type_bits, update_size * 8);

const bool is_little_endian = src.id() == ID_byte_update_little_endian;

// build mask
exprt mask;
if(is_little_endian)
mask = from_integer(power(2, update_size * 8) - 1, bv_typet{width});
mask = from_integer(power(2, update_size_bits) - 1, bv_typet{bit_width});
else
{
mask = from_integer(
power(2, width) - power(2, width - update_size * 8), bv_typet{width});
power(2, bit_width) - power(2, bit_width - update_size_bits),
bv_typet{bit_width});
}

const typet &offset_type = src.offset().type();
Expand All @@ -2186,34 +2202,20 @@ static exprt lower_byte_update(
mask_shifted.true_case().swap(mask_shifted.false_case());

// original_bits &= ~mask
exprt val_before =
typecast_exprt::conditional_cast(src.op(), bv_typet{type_bits});
if(width > type_bits)
{
val_before =
concatenation_exprt{from_integer(0, bv_typet{width - type_bits}),
val_before,
bv_typet{width}};

if(!is_little_endian)
to_concatenation_expr(val_before)
.op0()
.swap(to_concatenation_expr(val_before).op1());
}
bitand_exprt bitand_expr{val_before, bitnot_exprt{mask_shifted}};

// concatenate and zero-extend the value
concatenation_exprt value{update_bytes, bv_typet{update_size * 8}};
concatenation_exprt value{update_bytes, bv_typet{update_size_bits}};
if(is_little_endian)
std::reverse(value.operands().begin(), value.operands().end());

exprt zero_extended;
if(width > update_size * 8)
if(bit_width > update_size_bits)
{
zero_extended =
concatenation_exprt{from_integer(0, bv_typet{width - update_size * 8}),
value,
bv_typet{width}};
zero_extended = concatenation_exprt{
from_integer(0, bv_typet{bit_width - update_size_bits}),
value,
bv_typet{bit_width}};

if(!is_little_endian)
to_concatenation_expr(zero_extended)
Expand All @@ -2233,12 +2235,22 @@ static exprt lower_byte_update(
// original_bits |= newvalue
bitor_exprt bitor_expr{bitand_expr, value_shifted};

if(!is_little_endian && width > type_bits)
if(!is_little_endian && bit_width > type_bits)
{
return simplify_expr(
typecast_exprt::conditional_cast(
extractbits_exprt{bitor_expr,
bit_width - 1,
bit_width - type_bits,
bv_typet{type_bits}},
src.type()),
ns);
}
else if(bit_width > type_bits)
{
return simplify_expr(
typecast_exprt::conditional_cast(
extractbits_exprt{
bitor_expr, width - 1, width - type_bits, bv_typet{type_bits}},
extractbits_exprt{bitor_expr, type_bits - 1, 0, bv_typet{type_bits}},
src.type()),
ns);
}
Expand Down