From 9ee153e74d1b0fbdcb2802f2186d211ab6b2343b Mon Sep 17 00:00:00 2001 From: Dhruv Makwana Date: Mon, 30 Sep 2024 18:09:31 +0100 Subject: [PATCH] Add support for VIP This commit is a backwards compatible change to some tests to enable VIP by default in CN in an upcoming commit. --- src/example-archive/c-testsuite/working/00032.c | 2 +- src/example-archive/simple-examples/working/cast_1.c | 4 +++- src/example-archive/simple-examples/working/cast_2.c | 2 +- src/example-archive/simple-examples/working/cast_3.c | 2 +- src/example-archive/simple-examples/working/cast_4.c | 2 +- src/example-archive/simple-examples/working/pointer_dec1.c | 4 ++-- src/example-archive/simple-examples/working/pointer_dec2.c | 4 ++-- src/examples/queue_cn_types_2.h | 1 + src/examples/queue_cn_types_3.h | 3 ++- src/examples/queue_pop.c | 1 + src/examples/queue_push.c | 2 +- src/examples/queue_push_induction.c | 2 ++ src/examples/queue_push_lemma.h | 2 ++ 13 files changed, 20 insertions(+), 11 deletions(-) diff --git a/src/example-archive/c-testsuite/working/00032.c b/src/example-archive/c-testsuite/working/00032.c index 61fe917c..1867ba73 100644 --- a/src/example-archive/c-testsuite/working/00032.c +++ b/src/example-archive/c-testsuite/working/00032.c @@ -20,7 +20,7 @@ main() p = &arr[1]; if(*(p--) != 3) return 1; - if(*(p--) != 2) + if(*p != 2) return 2; p = &arr[0]; diff --git a/src/example-archive/simple-examples/working/cast_1.c b/src/example-archive/simple-examples/working/cast_1.c index b2b785dc..25877d83 100644 --- a/src/example-archive/simple-examples/working/cast_1.c +++ b/src/example-archive/simple-examples/working/cast_1.c @@ -1,4 +1,6 @@ // Cast a pointer to an int, and back +// In regular VIP, this does not require a copy_alloc_id but as implemented +// currently in CN, it does. #include // For uintptr_t, intptr_t @@ -12,7 +14,7 @@ int cast_1() uintptr_t ptr_as_int = (uintptr_t) ptr_original; // Cast back to pointer - int *ptr_restored = (int *)ptr_as_int; + int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int, &x); // Dereference the pointer int ret = *ptr_restored; diff --git a/src/example-archive/simple-examples/working/cast_2.c b/src/example-archive/simple-examples/working/cast_2.c index 82af441b..e2b548f6 100644 --- a/src/example-archive/simple-examples/working/cast_2.c +++ b/src/example-archive/simple-examples/working/cast_2.c @@ -18,7 +18,7 @@ int cast_2() if (ptr_as_int < ptr_as_int_copy) // Check for overflow { ptr_as_int_copy = ptr_as_int_copy - 1; - int *ptr_restored = (int *)ptr_as_int_copy; + int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, &x); int ret = *ptr_restored; diff --git a/src/example-archive/simple-examples/working/cast_3.c b/src/example-archive/simple-examples/working/cast_3.c index f9ef0cbc..09150429 100644 --- a/src/example-archive/simple-examples/working/cast_3.c +++ b/src/example-archive/simple-examples/working/cast_3.c @@ -19,7 +19,7 @@ int cast_3() if (ptr_as_int < ptr_as_int_copy) // Check for overflow { ptr_as_int_copy = ptr_as_int_copy - OFFSET; - int *ptr_restored = (int *)ptr_as_int_copy; + int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, &x); int ret = *ptr_restored; diff --git a/src/example-archive/simple-examples/working/cast_4.c b/src/example-archive/simple-examples/working/cast_4.c index d66d9b03..5510b6c5 100644 --- a/src/example-archive/simple-examples/working/cast_4.c +++ b/src/example-archive/simple-examples/working/cast_4.c @@ -19,7 +19,7 @@ int cast_4(int *ptr_original) if (ptr_as_int < ptr_as_int_copy) // Check for overflow { ptr_as_int_copy = ptr_as_int_copy - OFFSET; - int *ptr_restored = (int *)ptr_as_int_copy; + int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, ptr_original); int ret = *ptr_restored; diff --git a/src/example-archive/simple-examples/working/pointer_dec1.c b/src/example-archive/simple-examples/working/pointer_dec1.c index a5d208da..33e87bae 100644 --- a/src/example-archive/simple-examples/working/pointer_dec1.c +++ b/src/example-archive/simple-examples/working/pointer_dec1.c @@ -1,5 +1,5 @@ -int a; +int a[2]; void b() { - int *c = &a; + int *c = &a[1]; c -= 1; } diff --git a/src/example-archive/simple-examples/working/pointer_dec2.c b/src/example-archive/simple-examples/working/pointer_dec2.c index 542a2108..058880fc 100644 --- a/src/example-archive/simple-examples/working/pointer_dec2.c +++ b/src/example-archive/simple-examples/working/pointer_dec2.c @@ -1,7 +1,7 @@ // Derived from src/example-archive/c-testsuite/broken/error-proof/00032.err1.c -int a; +int a[2]; void b() { - int *c = &a; + int *c = &a[1]; --c; } diff --git a/src/examples/queue_cn_types_2.h b/src/examples/queue_cn_types_2.h index d8e724f3..440a2cb2 100644 --- a/src/examples/queue_cn_types_2.h +++ b/src/examples/queue_cn_types_2.h @@ -5,6 +5,7 @@ predicate (datatype seq) IntQueueFB (pointer front, pointer back) { } else { take B = Owned(back); assert (is_null(B.next)); + assert (ptr_eq(front, back) || !addr_eq(front, back)); take L = IntQueueAux (front, back); return snoc(L, B.first); } diff --git a/src/examples/queue_cn_types_3.h b/src/examples/queue_cn_types_3.h index 99f22eb0..83deddf8 100644 --- a/src/examples/queue_cn_types_3.h +++ b/src/examples/queue_cn_types_3.h @@ -4,7 +4,8 @@ predicate (datatype seq) IntQueueAux (pointer f, pointer b) { return Seq_Nil{}; } else { take F = Owned(f); - assert (!is_null(F.next)); + assert (!is_null(F.next)); + assert (ptr_eq(F.next, b) || !addr_eq(F.next, b)); take B = IntQueueAux(F.next, b); return Seq_Cons{head: F.first, tail: B}; } diff --git a/src/examples/queue_pop.c b/src/examples/queue_pop.c index d1053c25..56f8a87a 100644 --- a/src/examples/queue_pop.c +++ b/src/examples/queue_pop.c @@ -12,6 +12,7 @@ int IntQueue_pop (struct int_queue *q) /*@ split_case is_null(q->front); @*/ struct int_queueCell* h = q->front; if (h == q->back) { + /*@ assert ((alloc_id) h == (alloc_id) (q->back)); @*/ int x = h->first; freeIntQueueCell(h); q->front = 0; diff --git a/src/examples/queue_push.c b/src/examples/queue_push.c index e22dd152..98e9826f 100644 --- a/src/examples/queue_push.c +++ b/src/examples/queue_push.c @@ -18,7 +18,7 @@ void IntQueue_push (int x, struct int_queue *q) struct int_queueCell *oldback = q->back; q->back->next = c; q->back = c; - /*@ apply push_lemma (q->front, oldback); @*/ + /*@ apply push_lemma(q->front, oldback); @*/ return; } } diff --git a/src/examples/queue_push_induction.c b/src/examples/queue_push_induction.c index 9d0f897a..dc1b012d 100644 --- a/src/examples/queue_push_induction.c +++ b/src/examples/queue_push_induction.c @@ -5,11 +5,13 @@ void push_induction(struct int_queueCell* front , struct int_queueCell* last) /*@ requires + ptr_eq(front, second_last) || !addr_eq(front, second_last); take Q = IntQueueAux(front, second_last); take Second_last = Owned(second_last); ptr_eq(Second_last.next, last); take Last = Owned(last); ensures + ptr_eq(front, last) || !addr_eq(front, last); take NewQ = IntQueueAux(front, last); take Last2 = Owned(last); NewQ == snoc(Q, Second_last.first); diff --git a/src/examples/queue_push_lemma.h b/src/examples/queue_push_lemma.h index d3052dc2..a93abe50 100644 --- a/src/examples/queue_push_lemma.h +++ b/src/examples/queue_push_lemma.h @@ -1,9 +1,11 @@ /*@ lemma push_lemma (pointer front, pointer p) requires + ptr_eq(front, p) || !addr_eq(front, p); take Q = IntQueueAux(front, p); take P = Owned(p); ensures + ptr_eq(front, P.next) || !addr_eq(front, P.next); take NewQ = IntQueueAux(front, P.next); NewQ == snoc(Q, P.first); @*/