Merge branch 'proto'

Author: scott-cotton

README.md

@@ -2,14 +2,56 @@
 
 pal -- pointer analysis library for Go
 
-## main stub
+See [this blog post](https://go-air.github.io/blog/20210729-pal.html)
+for an overview.
 
-This is a stub/skeleton branch since only toy examples work as of yet.
+## status: volatile prototype
+
+pal is in a volatile prototyping stage.  We have re-organised 
+things a few times already, and there are many sizeable holes
+still to be coded.
+
+## roadmap
+
+- cli
+	- [x] analyzer framework stub
+	- [ ] service
+- [ ] memory model
+	- [x] constraints (load, store, transfer)
+	- [x] plain serialize
+- [ ] indexing
+	- [ ] integrate types
+	- [ ] dev.typeparams version
+- [ ] types -- represent locatable objects
+	- [ ] to go types
+	- [ ] from go types
+	- [ ] serialize
+- [ ] objects -- manage lifecycle of memory model w.r.t. Go things
+	- [ ] creation
+	- 
+- [ ] ssa2pal
+	- [x] loads
+	- [x] stores
+	- [x] map values to memory locations
+	- [ ] map values to objects
+	- [ ] indexing arithmetic operations
+	- [x] structs
+	- [x] arrays
+	- [ ] slices
+	- [x] returns
+	- [x] phi nodes
+	- [x] function objects
+	- [ ] function variadics
+	- [ ] builtins
+- [ ] docs
+	- [x] statement of purpose
+	- [ ] design
+		- [ ] cli
+		- [ ] service
+	- [ ] tutorial
+	- [ ] reference
 
-See the branch "proto" if you're interested in a volatile prototyping repo.
 
-See [this blog post](https://go-air.github.io/blog/20210729-pal.html)
-for an overview.
 
 
 

docs/design/archi.md

@@ -1,11 +1,21 @@
 # pal architecture
 
-The pal architecture is centered around the idea of  _persistant modular analysis_.
+The pal architecture is centered around the idea of  _persistant modular
+analysis_.
 
-This means that the analysis is bottom-up in the dependency graph, mirroring the Go build system and the go/tools analysis library.  However, the
-analysis is _persistent_, meaning the results are stored and may be used later to different ends.  
+This means that the analysis is bottom-up in the dependency graph, mirroring
+the Go build system and the go/tools analysis library.  However, the analysis
+is _persistent_, meaning the results are stored and may be used later to
+different ends.  
 
-In this bottom-up phase, pal constructs executable and queryable memory models for each exported symbol of each package. 
+In this bottom-up phase, pal constructs executable and queryable memory models
+for each exported symbol of each package. 
+
+## Applications
+
+### Command line
+
+### Module proxy
 
 
 ## Related Work
@@ -31,8 +41,8 @@ between memory locations.
 
 Gillian [5] is also language agnostic, however it is based on modelling full
 programs by symbolic execution in a given IR (GIL) whereas pal only
-symbolically executes the numeric _Values_ in pointer arithmetic, allowing the
-caller to model these values in many different ways.
+symbolically executes the numeric _index_ in pointer arithmetic, allowing the
+caller to model these index in many different ways.
 
 Golang's pointer analysis [8] is Anderson style with less flexibility,
 dependency on an ssa package specific to Go.
@@ -44,4 +54,4 @@ correct pointer analysis in the presence of races or unsafe.Pointer usage.
 
 Rather, pal should provide a small set of basic operations which, taken together,
 can be used to model a variety of program behaviors while focusing principally
-on usage for which Go guarantees memory safety. 
+on usage for which Go guarantees memory safety. 

docs/design/func.md

@@ -10,7 +10,7 @@ specific to control flow and/or call flow context.  However, pal leaves this
 opaque to the user, at least at the level of the memory model.
 
 Sets of locs may or may not support non-constant values for their size.  For non-constant
-values which occur in the program under analysis, a special Value type is provided and
+index which occur in the program under analysis, a special Value type is provided and
 detailed below.
 
 Sets of locs must provide an efficient means to determine if two locs 'm', 'n' may overlap
@@ -29,7 +29,7 @@ and/or locations in the program of heap allocations such as `malloc`.
 
 In Go's x/tools/go/pointer, a loc correponds to a node, so for example a 
 map would would be represented by a node representing a (key, value) pair;
-all the values in the map are abstracted to a single pair.
+all the index in the map are abstracted to a single pair.
 
 For flow sensitivity, an SSA form in combination with such a representation
 can be used.  For more flow sensitivity an SSI form can be used.  These
@@ -50,18 +50,18 @@ type Constraints interface {
 }
 ```
 
-## Values
+## index
 
 Traditional pointer analyses such as Anderson, SteensGaard are independent of
 numerical analysis.  Often such analysis are useful because they can bootstrap a
 numerical analysis and they are usually much faster (albeit less precise) than
 methods which combine numerical and points-to analysis.
 
-pal provides opaque support for numerical constraints in a _Values_ type, defined
+pal provides opaque support for numerical constraints in a _index_ type, defined
 below.
 
 ```go
-type Values interface {
+type index interface {
 	ToInt(v Value) (int, bool)
 	FromInt(int) V
 	Plus(a, b Value) Value
@@ -72,19 +72,19 @@ type Values interface {
 
 
 The idea is that the pointer operations only use addition and tests for 
-Values in order to implement the Mems interface; however, Values in programs
+index in order to implement the Mems interface; however, index in programs
 may be arbitrary expressions in the target language, which, over the 
 set of all possible executions of the program, may contain any sort of
 concrete value.  
 
-A client of pal must decide how to model these concrete values, however any such
-model will provide the Values interface above.
+A client of pal must decide how to model these concrete index, however any such
+model will provide the index interface above.
 
 pal will provide some basic models
 
-### Const Values
+### Const index
 
-Constant values, corresponding to types\' offsets.  In this model, every load or store
+Constant index, corresponding to types\' offsets.  In this model, every load or store
 to a Mem with non-constant offset are collapsed onto a single Mem with zero offset.  
 This is an abstraction which is simple, efficient, and imprecise for containers
 containing lots of pointers.  
@@ -96,54 +96,68 @@ generated.
 
 TODO(wsc0)
 
-## Solving
-
-Suppose we have a program or a fragment of a program for which we have created
-Mems, Constraints, and Values.  We would like to compute the points to set of
-Mems  
+## Modularity
 
-In pal, all these scenarios share a common _Solver_ interface specified below.
+Pal follows Go's packages, which form an acyclic dependency graph.  Pal
+results are stored on a per-package basis.
 
 
-```go
+### Coding
 
-// Construct a solver from Mems (and so with the associated constraints)
-// and a modelling of the values.  Results are precomputed.
-func SolverForAll(ms Mems, vs Values) Solver
-// Results are on demand.
-func LazySolver(ms Mems, vs Values) Solver
-// Results are pre-ordered according to 'perm'
-func OrderedSolver(ms Mems, []int perm, vs Values) Solver
+This consists of encoding the package into the pal memory model.
+Notably, for modularity, we need to keep track of exportable
+symbols, opaqueness, param and return index of functions.
 
-// Results are selected from q and PointsTo means transitively to
-// things related to q (forward and backward )
-func SelectFwdSolver(ms Mems, q []Mem, vs Values) Solver {...}
-func SelectBwdSolver(ms Mems, q []Mem, vs Values) Solver {...}
-func SelectSolve(ms Mems, q []Mem, vs Values) Solver {...}
+### Solving
 
-// project the transitive closue of the points to onto 'on'
-func ProjectedSolver(ms Mems, on []Mem, vs Values) Solver
+This consists of finding the points-to relation for the package
+in terms of how it was coded.
 
-type Solver interface {
+### Export
 
-    // Overlaps determines complex aliasing.
-	Overlaps(m Mem, mext Value, n Mem, next Value) AbsTruth
+This consists of projecting the memory model onto i/o relations
+between exported opaque memory locations (including parameters
+and returns of exported functions).
 
-	// m == n ?
-	Equal(m, n Mem) AbsTruth
+### Import
 
 
-	// PointsTo place the points to set of m into dst, starting
-	// at offset from with a max of 'ext',
-	//
-	// return the resulting dst.
-	PointsTo(dst []Mem, m Mem, ext Value) []Mem
+### Example
 
-	// ReplaceOpaque
-	// for every Mem in the underlying Mems whose points-to set
-	// includes the points to set of 't', remove the points-to 
-	// set of 't' and add the PointsTo set of every rep in 'reps'
-	ReplaceOpaque(t Mem, reps ...Mem)
+Below is an example diamond 
+shaped package dependency graph which we will use to describe how
+modular solving works.
 
-}
 ```
+S -> A
+S -> B
+A -> D
+B -> D
+```
+Below is a list of actions for solving the points-to 
+incrementally
+
+
+1. D: Code 
+1. D: Solve
+1. D: Export
+1. A: Import D
+1. A: Code
+1. A: Solve
+1. A: Export
+1. B: Import D
+1. B: Code
+1. B: Solve
+1. B: Export
+1. S: Import A
+1. S: Import B
+1. S: Code
+1. S: Solve
+
+
+
+
+## Solving
+
+
+

docs/design/index.md

@@ -35,7 +35,7 @@ api to meet the most common needs well, and to meet most needs reasonably.
 ### For different Go IRs
 
 staticcheck [6] has an IR, golang.org/x/tools/go/ssa is a baseline, we are
-working on (air)[https://github.com/go-air/air].  We would like pal to be
+working on [air](https://github.com/go-air/air).  We would like pal to be
 retargetable to these different IRs.  Perhaps it can be used one day for the Go
 gc compiler IR, or other IRs.
 
@@ -61,7 +61,7 @@ DOI: 10.1561/2500000014 (https://yanniss.github.io/points-to-tutorial15.pdf)
 Compositional Analysis by means of bi-abduction
 Journal of the ACM Volume 58 Issue 6
 December 2011 
-Article No.: 26pp 1–66https://doi.org/10.1145/2049697.2049700
+Article No.: 26pp 1–66 https://doi.org/10.1145/2049697.2049700
 
 [3] Andersen, Lars Ole (1994). Program Analysis and Specialization for the C
 Programming Language (PDF) (PhD thesis).

docs/index.md

@@ -1,3 +1,12 @@
+<<<<<<< HEAD
 # pal website
 
 Hello
+=======
+# pal -- pointer analysis library
+
+pal is a library for doing pointer analysis.
+
+
+
+>>>>>>> proto

docs/tutorial/index.md

@@ -29,11 +29,11 @@ As our first IR is "golang.org/x/tools/go/ssa", we recommend taking a look at th
 
 #### github.com/go-air/pal/results
 
-#### github.com/go-air/pal/values
+#### github.com/go-air/pal/index
 
 ### Memory
 
 ### Results
 
-### Working with Values
+### Working with index