analyzer/src/cdomains/baseDomain.ml at 663ee11c7d6cec29e3670e29dfaafc550b817cd5 · goblint/analyzer · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
(** Full domain of {!Base} analysis. *)

open GoblintCil
module VD = ValueDomain.Compound

module CPA =
struct
  module M0 = MapDomain.PatriciaMapBot (Basetype.Variables) (VD)
  module M =
  struct
    include M0
    include MapDomain.PrintGroupable (Basetype.Variables) (VD) (M0)
  end
  include MapDomain.LiftTop (VD) (MapDomain.HashCached (M))
  let name () = "value domain"
end

(* Keeps track of which arrays are potentially partitioned according to an expression containing a specific variable *)
(* Map from variables to sets of arrays: var -> {array} *)
module PartDeps =
struct
  module VarSet = SetDomain.Make(Basetype.Variables)
  include MapDomain.PatriciaMapBot_LiftTop(Basetype.Variables)(VarSet)
  let name () = "array partitioning deps"
end

(** Maintains a set of local variables that need to be weakly updated, because multiple reachable copies of them may *)
(* exist on the call stack *)
module WeakUpdates =
struct
  include SetDomain.ToppedSet(Basetype.Variables) (struct let topname = "All variables weak" end)
  let name () = "Vars with Weak Update"
end


type 'a basecomponents_t = {
  cpa: CPA.t;
  deps: PartDeps.t;
  weak: WeakUpdates.t;
  priv: 'a;
} [@@deriving eq, ord, hash, relift, lattice]


module BaseComponents (PrivD: Lattice.S):
sig
  include Lattice.S with type t = PrivD.t basecomponents_t
  val op_scheme: (CPA.t -> CPA.t -> CPA.t) -> (PartDeps.t -> PartDeps.t -> PartDeps.t) -> (WeakUpdates.t -> WeakUpdates.t -> WeakUpdates.t) -> (PrivD.t -> PrivD.t -> PrivD.t) -> t -> t -> t
end =
struct
  type t = PrivD.t basecomponents_t [@@deriving eq, ord, hash, relift, lattice]

  include Printable.Std
  open Pretty

  let show r =
    let first  = CPA.show r.cpa in
    let second  = PartDeps.show r.deps in
    let third  = WeakUpdates.show r.weak in
    let fourth =  PrivD.show r.priv in
    "(" ^ first ^ ", " ^ second ^ ", " ^ third  ^ ", " ^ fourth  ^ ")"

  let pretty () r =
    text "(" ++
    CPA.pretty () r.cpa
    ++ text ", " ++
    PartDeps.pretty () r.deps
    ++ text ", " ++
    WeakUpdates.pretty () r.weak
    ++ text ", " ++
    PrivD.pretty () r.priv
    ++ text ")"

  let printXml f r =
    let e = XmlUtil.escape in
    BatPrintf.fprintf f "<value>\n<map>\n<key>\n%s\n</key>\n%a<key>\n%s\n</key>\n%a<key>\n%s\n</key>\n%a\n<key>\n%s\n</key>\n%a</map>\n</value>\n"
      (e @@ CPA.name ()) CPA.printXml r.cpa
      (e @@ PartDeps.name ()) PartDeps.printXml r.deps
      (e @@ WeakUpdates.name ()) WeakUpdates.printXml r.weak
      (e @@ PrivD.name ()) PrivD.printXml r.priv

  let to_yojson r =
    `Assoc [ (CPA.name (), CPA.to_yojson r.cpa); (PartDeps.name (), PartDeps.to_yojson r.deps); (WeakUpdates.name (), WeakUpdates.to_yojson r.weak); (PrivD.name (), PrivD.to_yojson r.priv) ]

  let name () = CPA.name () ^ " * " ^ PartDeps.name () ^ " * " ^ WeakUpdates.name ()  ^ " * " ^ PrivD.name ()

  let of_tuple(cpa, deps, weak, priv):t = {cpa; deps; weak; priv}
  let to_tuple r = (r.cpa, r.deps, r.weak, r.priv)

  let arbitrary () =
    let tr = QCheck.quad (CPA.arbitrary ()) (PartDeps.arbitrary ()) (WeakUpdates.arbitrary ()) (PrivD.arbitrary ()) in
    QCheck.map ~rev:to_tuple of_tuple tr

  let pretty_diff () (({cpa=x1; deps=x2; weak=x3; priv=x4}:t),({cpa=y1; deps=y2; weak=y3; priv=y4}:t)): Pretty.doc =
    if not (CPA.leq x1 y1) then
      CPA.pretty_diff () (x1,y1)
    else if not (PartDeps.leq x2 y2) then
      PartDeps.pretty_diff () (x2,y2)
    else if not (WeakUpdates.leq x3 y3) then
      WeakUpdates.pretty_diff () (x3,y3)
    else
      PrivD.pretty_diff () (x4,y4)

  let op_scheme op1 op2 op3 op4 {cpa=x1; deps=x2; weak=x3; priv=x4} {cpa=y1; deps=y2; weak=y3; priv=y4}: t =
    {cpa = op1 x1 y1; deps = op2 x2 y2; weak = op3 x3 y3; priv = op4 x4 y4 }
end

module type ExpEvaluator =
sig
  type t
  val eval_exp: t  ->  Cil.exp -> Z.t option
end

(* Takes a module for privatization component and a module specifying how expressions can be evaluated inside the domain and returns the domain *)
module DomFunctor (PrivD: Lattice.S) (ExpEval: ExpEvaluator with type t = BaseComponents (PrivD).t) =
struct
  include BaseComponents (PrivD)

  let join (one:t) (two:t): t =
    let cpa_join = CPA.join_with_fct (VD.smart_join (ExpEval.eval_exp one) (ExpEval.eval_exp two)) in
    op_scheme cpa_join PartDeps.join WeakUpdates.join PrivD.join one two

  let leq one two =
    let cpa_leq = CPA.leq_with_fct (VD.smart_leq (ExpEval.eval_exp one) (ExpEval.eval_exp two)) in
    cpa_leq one.cpa two.cpa && PartDeps.leq one.deps two.deps && WeakUpdates.leq one.weak two.weak && PrivD.leq one.priv two.priv

  let widen one two: t =
    let cpa_widen = CPA.widen_with_fct (VD.smart_widen (ExpEval.eval_exp one) (ExpEval.eval_exp two)) in
    op_scheme cpa_widen PartDeps.widen WeakUpdates.widen PrivD.widen one two
end


(* The domain with an ExpEval that only returns constant values for top-level vars that are definite ints *)
module DomWithTrivialExpEval (PrivD: Lattice.S) = DomFunctor (PrivD) (struct

  type t = BaseComponents (PrivD).t
  let eval_exp (r: t) e =
    match e with
    | Lval (Var v, NoOffset) ->
      begin
        match CPA.find v r.cpa with
        | Int i -> ValueDomain.ID.to_int i
        | _ -> None
      end
    | _ -> None
end)