Skip to content

Refine the abstract domain of values #490

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
xavierleroy merged 2 commits into from
May 25, 2023
Merged

Refine the abstract domain of values #490

xavierleroy merged 2 commits into from
May 25, 2023

Conversation

@xavierleroy
Copy link
Contributor

@xavierleroy xavierleroy commented May 5, 2023

Introduce a Num p abstract value that stands for any number (but no pointers), with provenance p. In non-strict mode, this makes the value analysis more precise than using Ifptr p for the same purpose, like we did before. (In particular, it should address the imprecision mentioned in #489, even though the vlub function remains non-monotonic.)

Also: minor simplifications and cleanups in the management of provenance. In strict mode, instead of setting all provenances to Pbot, just propagate them but ignore them in aptr_of_aval. Simplify vnormalize and its proof consequently.

@xavierleroy
Refine the abstract domain of values
a61b09a 
Introduce a `Num p` abstract value that stands for any number (but no
pointers), with provenance `p`.  In non-strict mode, this makes the
value analysis more precise than using `Ifptr p` for the same purpose,
like we did before.

Also: minor simplifications and cleanups in the management of provenance.
In strict mode, instead of setting all provenances to `Pbot`, just
propagate them but ignore them in `aptr_of_aval`.  Simplify
`vnormalize` and its proof consequently.
@xavierleroy xavierleroy mentioned this pull request May 5, 2023
Closed
@xavierleroy
Copy link
Contributor Author

xavierleroy commented May 5, 2023

NB. This will need to be run against AbsInt's test suite to check that it does not cause over-optimization.

@monniaux
Copy link
Contributor

monniaux commented May 15, 2023

Indeed, this allows, for instance, to establish that a stack variable and t[i], where t is an out-of-current-stackframe variable, are disjoint.

@xavierleroy
More precise definition of vlub, without catch-all Vtop case
db9b5b3 
One possible case (Ptr, Num) and many impossible cases (e.g. I, F)
were sent to Vtop and are now given more precise upper bounds.
@xavierleroy
Copy link
Contributor Author

xavierleroy commented May 25, 2023

Testing shows no over-optimization. Merging.

@xavierleroy xavierleroy merged commit 8d5a9df into master May 25, 2023
@xavierleroy xavierleroy deleted the vanalysis branch May 25, 2023 09:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@xavierleroy @monniaux