Skip to content

Propagate write-set checks to sub-functions #6371

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 11 commits into from
Oct 3, 2021
Merged

Propagate write-set checks to sub-functions #6371

merged 11 commits into from
Oct 3, 2021

Conversation

feliperodri
Copy link
Collaborator

@feliperodri feliperodri commented Sep 30, 2021
edited
Loading

  • Each commit message has a non-empty body, explaining why the change was made.
  • Methods or procedures I have added are documented, following the guidelines provided in CODING_STANDARD.md.
  • The feature or user visible behaviour I have added or modified has been documented in the User Guide in doc/cprover-manual/
  • Regression or unit tests are included, or existing tests cover the modified code (in this case I have detailed which ones those are in the commit message).
  • My commit message includes data points confirming performance improvements (if claimed).
  • My PR is restricted to a single feature or bugfix.
  • White-space or formatting changes outside the feature-related changed lines are in commits of their own.

@feliperodri feliperodri added bugfix aws Bugs or features of importance to AWS CBMC users Code Contracts Function and loop contracts labels Sep 30, 2021
@feliperodri feliperodri self-assigned this Sep 30, 2021
@codecov
Copy link

codecov bot commented Sep 30, 2021
edited
Loading

Codecov Report

Merging #6371 (3f48b6e) into develop (eebdba8) will decrease coverage by 0.00%.
The diff coverage is 100.00%.

Impacted file tree graph

@@             Coverage Diff             @@
##           develop    #6371      +/-   ##
===========================================
- Coverage    75.91%   75.90%   -0.01%     
===========================================
  Files         1517     1517              
  Lines       164022   163893     -129     
===========================================
- Hits        124513   124406     -107     
+ Misses       39509    39487      -22
Impacted Files Coverage Δ
src/ansi-c/expr2c.cpp 65.34% <ø> (+0.07%) ⬆️
src/goto-instrument/contracts/assigns.h 100.00% <ø> (ø)
src/goto-instrument/contracts/contracts.h 100.00% <ø> (ø)
...rc/goto-instrument/goto_instrument_parse_options.h 100.00% <ø> (ø)
src/ansi-c/ansi_c_convert_type.cpp 78.98% <100.00%> (-0.31%) ⬇️
src/ansi-c/ansi_c_convert_type.h 100.00% <100.00%> (ø)
src/ansi-c/c_typecheck_base.cpp 78.76% <100.00%> (+0.34%) ⬆️
src/goto-instrument/contracts/assigns.cpp 98.43% <100.00%> (+1.84%) ⬆️
src/goto-instrument/contracts/contracts.cpp 95.77% <100.00%> (+1.02%) ⬆️
.../goto-instrument/goto_instrument_parse_options.cpp 68.29% <100.00%> (-0.01%) ⬇️
... and 6 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 1ab9590...3f48b6e. Read the comment docs.

@feliperodri feliperodri marked this pull request as ready for review September 30, 2021 13:28
@feliperodri feliperodri force-pushed the propagate-assigns-checks branch 2 times, most recently from 5cf671a to ad29bf7 Compare September 30, 2021 17:20
SaswatPadhi
SaswatPadhi suggested changes Sep 30, 2021
View reviewed changes
Copy link
Contributor

@SaswatPadhi SaswatPadhi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks! That's quite a lot of cleanup and fixes.

I have a few minor comments and only major comments about subset check part.

jimgrundy
jimgrundy reviewed Sep 30, 2021
View reviewed changes
@remi-delmas-3000 remi-delmas-3000 mentioned this pull request Oct 1, 2021
Closed
@feliperodri feliperodri force-pushed the propagate-assigns-checks branch from bd8e221 to 18dabdf Compare October 1, 2021 22:39
SaswatPadhi
SaswatPadhi reviewed Oct 1, 2021
View reviewed changes
@feliperodri feliperodri force-pushed the propagate-assigns-checks branch from 18dabdf to a3ce36a Compare October 1, 2021 22:51
@feliperodri feliperodri requested a review from a team as a code owner October 1, 2021 22:51
@feliperodri feliperodri force-pushed the propagate-assigns-checks branch 2 times, most recently from 8b2c4d4 to e13c8e4 Compare October 1, 2021 23:11
jimgrundy
jimgrundy approved these changes Oct 1, 2021
View reviewed changes
SaswatPadhi
SaswatPadhi approved these changes Oct 1, 2021
View reviewed changes
Copy link
Contributor

@SaswatPadhi SaswatPadhi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Thanks!

@SaswatPadhi
Copy link
Contributor

One minor comment: We have many tiny commits in this PR and could merge some of these together (especially if they are related) for a cleaner history. For example 77b2d94 and d5374d7 could definitely be merged together.

@feliperodri feliperodri force-pushed the propagate-assigns-checks branch 4 times, most recently from f67187b to d371cf3 Compare October 3, 2021 00:16
jimgrundy
jimgrundy reviewed Oct 3, 2021
View reviewed changes
@feliperodri feliperodri force-pushed the propagate-assigns-checks branch 3 times, most recently from 987f2d1 to a1bff8e Compare October 3, 2021 05:04
kroening
kroening reviewed Oct 3, 2021
View reviewed changes
feliperodri and others added 11 commits October 3, 2021 16:22
@feliperodri
Properly track assigns clause targets in goto converter
923c623 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Remove general contracts flags
57c787e 
Removes --enforce-all-contracts and --replace-all-calls-with-contracts flags.
The user must specify which functions to enforce or replace using contracts.

Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Assigns clause should not track a single source location
2e0b00b 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Inline sub-function calls
b6f30b9 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Maintain a single write set
15f99ce 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Removes dead code
58cac97 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Properly fixes test descriptions for contracts regression
1e42716 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Removes subset relationship check from contracts
98f56a4 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Adds test to cover contracts and function pointers support
ef7e94d 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri
Adding more tests on what expressions shall be accepted/rejected in a…
38ca41f 
…ssigns clauses.
@feliperodri
Check for lvalue in assigns clause after type checking
3f48b6e 
Signed-off-by: Felipe R. Monteiro <[email protected]>
@feliperodri feliperodri force-pushed the propagate-assigns-checks branch from a1bff8e to 3f48b6e Compare October 3, 2021 16:31
@SaswatPadhi SaswatPadhi mentioned this pull request Oct 3, 2021
Merged
6 tasks
martin-cs
martin-cs approved these changes Oct 3, 2021
View reviewed changes
Copy link
Collaborator

@martin-cs martin-cs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am approving this because 1. I do not see any blocking problems here, 2. as far as I know you are the main users of this code so changes in the functionality & interface are not likely to affect others too much and 3. I know it is urgent for you. But, I found this quite hard to review. In the future, if you have the time please could you consider:

  1. Smaller PRs -- this does a number of related, but different things and would be easier to review in chunks.
  2. A description of what you are doing and why in each commit message. They are one line at the moment which is better than nothing but it gives more limited context.
  3. More of a over-view description in the PR.

src/goto-instrument/contracts/contracts.h
#define FLAG_ENFORCE_CONTRACT "enforce-contract"
#define HELP_ENFORCE_CONTRACT \
" --enforce-contract <fun> wrap fun with an assertion of its contract\n"

#define FLAG_ENFORCE_ALL_CONTRACTS "enforce-all-contracts"
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am a little concerned by the change in functionality. I realise that it would be good to have the extra flexibility but having to give a command-line argument for every function is quite a lot. Elsewhere I have seen regexes used for this kind of thing.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We we're using contracts now in a context where an user enforces one contract at a time, makes sure it is correct and then uses it during replacement. In the future, we still want to have an option where we can simply apply contracts whenever they are available, but for now we want to force users to specify which contracts must be enforced or replaced.

@feliperodri feliperodri merged commit a03d382 into diffblue:develop Oct 3, 2021
@feliperodri
Copy link
Collaborator Author

I am approving this because 1. I do not see any blocking problems here, 2. as far as I know you are the main users of this code so changes in the functionality & interface are not likely to affect others too much and 3. I know it is urgent for you. But, I found this quite hard to review. In the future, if you have the time please could you consider:

1. Smaller PRs -- this does a number of related, but different things and would be easier to review in chunks.

2. A description of what you are doing and why in each commit message.  They are one line at the moment which is better than nothing but it gives more limited context.

3. More of a over-view description in the PR.

Thanks for the review @martin-cs. I'll at least add a better description for this PR now (3) and keep in mind (1) and (2) for future PRs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@SaswatPadhi SaswatPadhi SaswatPadhi approved these changes

@jimgrundy jimgrundy jimgrundy approved these changes

@kroening kroening kroening approved these changes

@martin-cs martin-cs martin-cs approved these changes

@chrisr-diffblue chrisr-diffblue Awaiting requested review from chrisr-diffblue

@peterschrammel peterschrammel Awaiting requested review from peterschrammel peterschrammel is a code owner

@tautschnig tautschnig Awaiting requested review from tautschnig tautschnig is a code owner

@remi-delmas-3000 remi-delmas-3000 Awaiting requested review from remi-delmas-3000 remi-delmas-3000 is a code owner

Assignees

@feliperodri feliperodri

Labels
aws Bugs or features of importance to AWS CBMC users aws-high bugfix Code Contracts Function and loop contracts
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@feliperodri @SaswatPadhi @kroening @martin-cs @jimgrundy