Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

HeapSeparator: Implement preprocessings, rework heap separation accordingly #295

Open
alexandernutz opened this issue Jan 12, 2018 · 0 comments
Open

HeapSeparator: Implement preprocessings, rework heap separation accordingly #295

alexandernutz opened this issue Jan 12, 2018 · 0 comments
Assignees
@alexandernutz
Labels
abstract interpretation

Comments

@alexandernutz
Copy link
Member

In order for the heap separator to make use of the map equality domain, and separate the heap-array, we need to apply a preprocessing to the input program.

Problem:
To get a good separation result, we cannot simply analyze which values a pointer variable may have at any location in the program, but we want to know which values it could have at any heap-write that reaches the read-location.

We would like to try two flavours, both introduce a preprocessing before the map equality domain is applied:

  1. "freeze-variables"
    at an array update l1: a[i] := v
    we add a nondeterministic update if (*) { frz_l1 := i }
    --> the analysis will derive all values that i can have during an update of a at location l1
  2. "memloc-array"
    introduce a special global array called memloc
    at an array update l1: a[i] := v
    for every program location li, introduce a literal lit_li
    we add the statement memloc[i] := lit_l1
    --> the analysis will derive for every memory location i, at which locations it may have been written

The map equality domain will run on the preprocessed program, and afterwards the heap separator will transform the original program based on the analysis result.
@alexandernutz alexandernutz self-assigned this Jan 12, 2018
alexandernutz added a commit that referenced this issue Jan 13, 2018
@alexandernutz
#295, first steps towards reworking heap separator, cannot use simple…
ddcefba 
… ITransformulaTransformers anymore, introduced IcfgTransitionTransformer in order to be able to work on the IcfgEdges instead, rough implementation of StoreIndexFreezerIcfgTransformer
alexandernutz added a commit that referenced this issue Jan 13, 2018
@alexandernutz
#295, first implementations of aspects of the freeze-var transformati…
f18b405 
…on: adding freeze var updates at array updates, initializing freeze vars with freeze var literals (still missing: initializing valid at freeze var literals), announcing freeze var literals to the equality domain
alexandernutz added a commit that referenced this issue Jan 15, 2018
@alexandernutz
#295, incremental improvement towards the new heap separator
bf31b64
alexandernutz added a commit that referenced this issue Jan 17, 2018
@alexandernutz
#295, reworking heap separator, intermediate commit
5150b10
@alexandernutz alexandernutz mentioned this issue Jan 18, 2018
Closed
alexandernutz added a commit that referenced this issue Jan 18, 2018
@alexandernutz
#295, first sketchy implementation of PartitionProjection (working ti…
5582c84 
…tle, the "downarrow" projection operator that is used to transform the program according to the heap separation result)
alexandernutz added a commit that referenced this issue Jan 18, 2018
@alexandernutz
#295, some more infrastructure work
024adf3
alexandernutz added a commit that referenced this issue Jan 19, 2018
@alexandernutz
#295, towards computing the array partitionings
464e88d
alexandernutz added a commit that referenced this issue Jan 19, 2018
@alexandernutz
#295, cleanup
25f8bf1
alexandernutz added a commit that referenced this issue Jan 22, 2018
@alexandernutz
#295, odds and ends for heap separator
966e2c8
alexandernutz added a commit that referenced this issue Jan 23, 2018
@alexandernutz
#295, add method to TransformedIcfgBuilder that is needed for its use…
17948a9 
… in IcfgTransitionTransformer (scan created transformulas for fresh variables even when there is a corresponding formula in the old icfg)
alexandernutz added a commit that referenced this issue Jan 23, 2018
@alexandernutz
#295, only havoc variable when removing pvocs from an EqState
5ab50b2
alexandernutz added a commit that referenced this issue Jan 23, 2018
@alexandernutz
#295, set in/outvars correctly in FreezeVarInitializer, also for the …
47db877 
…valid-array; Use the symbol table-updating method of TransformedIcfgBuilder in IcfgTransitionTransformer
alexandernutz added a commit that referenced this issue Jan 26, 2018
@alexandernutz
#295, still putting together parts of HeapSeparator, newest insight: …
a5fe26f 
…LocationBlocks must be relative to an ArrayGroup _and_ a dimension of the arrays in the group
alexandernutz added a commit that referenced this issue Jan 26, 2018
@alexandernutz
#295, intermediate commit
3963351
alexandernutz added a commit that referenced this issue Jan 26, 2018
@alexandernutz
#295, cleanup, compiles, reworked conversion of select terms in Parti…
814a39f 
…tionProjectionTermTransformer
alexandernutz added a commit that referenced this issue Jan 26, 2018
@alexandernutz
#295, ignore non-heap arrays, bug hunting
580494a
alexandernutz added a commit that referenced this issue Jan 26, 2018
@alexandernutz
#295, bugfixes, simplest example does not crash anymore
9afa430
alexandernutz added a commit that referenced this issue Jan 26, 2018
@alexandernutz
#295, add (legacy) test case
fe1c51e
alexandernutz added a commit that referenced this issue Jan 27, 2018
@alexandernutz
#295, cleanup, start to add logging output
c9e63bb
alexandernutz added a commit that referenced this issue Jan 27, 2018
@alexandernutz
#295, more and nicer log output, other slight improvements
7372fef
alexandernutz added a commit that referenced this issue Jan 27, 2018
@alexandernutz
#295, incremental improvements, solving corner cases
51c630c
alexandernutz added a commit that referenced this issue Jan 27, 2018
@alexandernutz
#295, introduce dummy array write NoStoreIndexInfo which stands for "…
853c5cd 
…no write can have happend at this program point to this index"
alexandernutz added a commit that referenced this issue Jan 27, 2018
@alexandernutz
#295, modified simple tests
2e1a970
alexandernutz added a commit that referenced this issue Jan 27, 2018
@alexandernutz
#295, cosmetics
f20b036
alexandernutz added a commit that referenced this issue Jan 28, 2018
@alexandernutz
#295, incremental changes
6c736d0
alexandernutz added a commit that referenced this issue Jan 28, 2018
@alexandernutz
#295, fiddling around with freeze var literals, weaken assertion in C…
5361639 
…ongruenceClosure.assertHasOnlyWeqVarConstraints(..)
alexandernutz added a commit that referenced this issue Aug 24, 2018
@alexandernutz
#295, improve sanitization of names of newly introduced variables
234d561
alexandernutz added a commit that referenced this issue Aug 24, 2018
@alexandernutz
#295, when replacing an array equality with an array equality with lo…
dfbc2ac 
…c-array updates, do the position-based substitution and the term-based substitution in one go (otherwise it is impossible to build Terms as they will have the wrong type)
alexandernutz added a commit that referenced this issue Aug 25, 2018
@alexandernutz
#295, arrays in select terms must also be assigned to an per-edge arr…
6afd625 
…ay group,
alexandernutz added a commit that referenced this issue Aug 25, 2018
@alexandernutz
#295, bugfix/count array access dimensions 1-based
d8f65d7
alexandernutz added a commit that referenced this issue Aug 25, 2018
@alexandernutz
#295, give more suitable backtranslators to the nested icfgTransforme…
5dd4ab7 
…rs, query for intermeditate eq state by edge of precprocessed graph, not the original one
alexandernutz added a commit that referenced this issue Aug 25, 2018
@alexandernutz
#295, minor fix/improvements
ec54df2
alexandernutz added a commit that referenced this issue Aug 25, 2018
@alexandernutz
#295, fix renaming in predecessor for intermediate states (variables …
762c9bb 
…have to be normalized according to the given edge/transformula's invars/outvars..
alexandernutz added a commit that referenced this issue Aug 25, 2018
@alexandernutz
#295, fixes for obtaining the literal set constraint from an intermed…
59d76be 
…iate eq state
alexandernutz added a commit that referenced this issue Aug 27, 2018
@alexandernutz
#295, extra variant of LocArrayInfo, namely LocArrayReadInfo, for whe…
c312d3a 
…n a loc-array is not touched during loc-array-preprocessing, but one of its values is queried, during partition computation
alexandernutz added a commit that referenced this issue Aug 27, 2018
@alexandernutz
#295, various bugfixes (typical early debugging run stuff)
8e3e362
alexandernutz added a commit that referenced this issue Aug 27, 2018
@alexandernutz
#295, fixes regarding handling of multidimensional arrays
1d3aa2e
alexandernutz added a commit that referenced this issue Aug 28, 2018
@alexandernutz
#295, support introduction of loc-array inititalization in disjunctiv…
c337f3a 
…e formulas, too (only if they are in DNF, however)
alexandernutz added a commit that referenced this issue Aug 30, 2018
@alexandernutz
#295, make use of option to give "tracked arrays"
a416f4c
alexandernutz added a commit that referenced this issue Sep 3, 2018
@alexandernutz
#295, bugfix to NoStoreInfo, now NoStoreInfo also gets Ids (they are …
5f1bb60 
…all negative, to differentiate from normal StoreInfos)
alexandernutz added a commit that referenced this issue Sep 3, 2018
@alexandernutz
#295, fix retrieval of set constraints from an EqConstraint
18e96e3
alexandernutz added a commit that referenced this issue Sep 6, 2018
@alexandernutz
#295, don't crash when no set constraint for a loc-array access can b…
a1664ae 
…efound, log a warning and merge all blocks
alexandernutz added a commit that referenced this issue Oct 3, 2018
@alexandernutz
#295, more tolerant DNF checking
31d1621
alexandernutz added a commit that referenced this issue Oct 3, 2018
@alexandernutz
#295, benchmarking examples
cd9b80b
alexandernutz added a commit that referenced this issue Oct 3, 2018
@alexandernutz
#295, heap separator settings
34b0935
alexandernutz added a commit that referenced this issue Oct 4, 2018
@alexandernutz
#295, more examples ..
e407412
alexandernutz added a commit that referenced this issue Oct 8, 2018
@alexandernutz
#295, towards support for separating local array variables (only glob…
a6f8d09 
…al ones worked so far)
alexandernutz added a commit that referenced this issue Oct 8, 2018
@alexandernutz
#295, minor changes
9db3e76
alexandernutz added a commit that referenced this issue Oct 8, 2018
@alexandernutz
#295, fixes that came up when running on "difficult" path programs
83a02cc
alexandernutz added a commit that referenced this issue Oct 9, 2018
@alexandernutz
#295, cleanup, update comments, debugging code
ec86ca9
alexandernutz added a commit that referenced this issue Oct 9, 2018
@alexandernutz
#295, make an assignment instead of an assume on the loc-arrays, when…
191cc1d 
… the corresponding array is guaranteed to be freshly havocced
alexandernutz added a commit that referenced this issue Oct 10, 2018
@alexandernutz
#295, bugfix to AddInitializingEdgesIcfgTransformer.splitLocation(..)
b0b52e4
alexandernutz added a commit that referenced this issue Oct 11, 2018
@alexandernutz
#295, convert TransFormula to DNF for loc array instrumentation
81efa18
alexandernutz added a commit that referenced this issue Oct 11, 2018
@alexandernutz
#295, comments, formatting
23cbcf9
alexandernutz added a commit that referenced this issue Oct 14, 2018
@alexandernutz
#295, cleanup, revert slow setting for domain
093a8c0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@alexandernutz alexandernutz

Labels
abstract interpretation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@danieldietsch @alexandernutz