Add support for VIP

dc-mak · dc-mak · commit 9ee153e74d1b · 2024-09-30T18:26:40.000+01:00
This commit is a backwards compatible change to some tests to enable VIP
by default in CN in an upcoming commit.
diff --git a/src/example-archive/c-testsuite/working/00032.c b/src/example-archive/c-testsuite/working/00032.c
@@ -20,7 +20,7 @@ main()
 	p = &arr[1];
 	if(*(p--) != 3)
 		return 1;
-	if(*(p--) != 2)
+	if(*p != 2)
 		return 2;
 		
 	p = &arr[0];
diff --git a/src/example-archive/simple-examples/working/cast_1.c b/src/example-archive/simple-examples/working/cast_1.c
@@ -1,4 +1,6 @@
 // Cast a pointer to an int, and back
+// In regular VIP, this does not require a copy_alloc_id but as implemented
+// currently in CN, it does.
 
 #include <stdint.h> // For uintptr_t, intptr_t
 
@@ -12,7 +14,7 @@ int cast_1()
   uintptr_t ptr_as_int = (uintptr_t) ptr_original;
 
   // Cast back to pointer
-  int *ptr_restored = (int *)ptr_as_int;
+  int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int, &x);
 
   // Dereference the pointer 
   int ret = *ptr_restored;
diff --git a/src/example-archive/simple-examples/working/cast_2.c b/src/example-archive/simple-examples/working/cast_2.c
@@ -18,7 +18,7 @@ int cast_2()
   if (ptr_as_int < ptr_as_int_copy) // Check for overflow 
   {
     ptr_as_int_copy = ptr_as_int_copy - 1;
-    int *ptr_restored = (int *)ptr_as_int_copy;
+    int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, &x);
 
     int ret = *ptr_restored;
 
diff --git a/src/example-archive/simple-examples/working/cast_3.c b/src/example-archive/simple-examples/working/cast_3.c
@@ -19,7 +19,7 @@ int cast_3()
   if (ptr_as_int < ptr_as_int_copy) // Check for overflow 
   {
     ptr_as_int_copy = ptr_as_int_copy - OFFSET;
-    int *ptr_restored = (int *)ptr_as_int_copy;
+    int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, &x);
 
     int ret = *ptr_restored;
 
diff --git a/src/example-archive/simple-examples/working/cast_4.c b/src/example-archive/simple-examples/working/cast_4.c
@@ -19,7 +19,7 @@ int cast_4(int *ptr_original)
   if (ptr_as_int < ptr_as_int_copy) // Check for overflow 
   {
     ptr_as_int_copy = ptr_as_int_copy - OFFSET;
-    int *ptr_restored = (int *)ptr_as_int_copy;
+    int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, ptr_original);
 
     int ret = *ptr_restored;
 
diff --git a/src/example-archive/simple-examples/working/pointer_dec1.c b/src/example-archive/simple-examples/working/pointer_dec1.c
@@ -1,5 +1,5 @@
-int a;
+int a[2];
 void b() {
-  int *c = &a;
+  int *c = &a[1];
   c -= 1;
 }
diff --git a/src/example-archive/simple-examples/working/pointer_dec2.c b/src/example-archive/simple-examples/working/pointer_dec2.c
@@ -1,7 +1,7 @@
 // Derived from src/example-archive/c-testsuite/broken/error-proof/00032.err1.c
 
-int a;
+int a[2];
 void b() {
-  int *c = &a;
+  int *c = &a[1];
   --c;
 }
diff --git a/src/examples/queue_cn_types_2.h b/src/examples/queue_cn_types_2.h
@@ -5,6 +5,7 @@ predicate (datatype seq) IntQueueFB (pointer front, pointer back) {
   } else {
     take B = Owned<struct int_queueCell>(back);
     assert (is_null(B.next));
+    assert (ptr_eq(front, back) || !addr_eq(front, back));
     take L = IntQueueAux (front, back);
     return snoc(L, B.first);
   }
diff --git a/src/examples/queue_cn_types_3.h b/src/examples/queue_cn_types_3.h
@@ -4,7 +4,8 @@ predicate (datatype seq) IntQueueAux (pointer f, pointer b) {
     return Seq_Nil{};
   } else {
     take F = Owned<struct int_queueCell>(f);
-    assert (!is_null(F.next));  
+    assert (!is_null(F.next));
+    assert (ptr_eq(F.next, b) || !addr_eq(F.next, b));
     take B = IntQueueAux(F.next, b);
     return Seq_Cons{head: F.first, tail: B};
   }
diff --git a/src/examples/queue_pop.c b/src/examples/queue_pop.c
@@ -12,6 +12,7 @@ int IntQueue_pop (struct int_queue *q)
   /*@ split_case is_null(q->front); @*/
   struct int_queueCell* h = q->front;
   if (h == q->back) {
+    /*@ assert ((alloc_id) h == (alloc_id) (q->back)); @*/
     int x = h->first;
     freeIntQueueCell(h);
     q->front = 0;
diff --git a/src/examples/queue_push.c b/src/examples/queue_push.c
@@ -18,7 +18,7 @@ void IntQueue_push (int x, struct int_queue *q)
     struct int_queueCell *oldback = q->back;
     q->back->next = c;
     q->back = c;
-    /*@ apply push_lemma (q->front, oldback); @*/
+    /*@ apply push_lemma(q->front, oldback); @*/
     return;
   }
 }
diff --git a/src/examples/queue_push_induction.c b/src/examples/queue_push_induction.c
@@ -5,11 +5,13 @@ void push_induction(struct int_queueCell* front
         , struct int_queueCell* last)
 /*@
   requires
+      ptr_eq(front, second_last) || !addr_eq(front, second_last);
       take Q = IntQueueAux(front, second_last);
       take Second_last = Owned(second_last);
       ptr_eq(Second_last.next, last);
       take Last = Owned(last);
   ensures
+      ptr_eq(front, last) || !addr_eq(front, last);
       take NewQ = IntQueueAux(front, last);
       take Last2 = Owned(last);
       NewQ == snoc(Q, Second_last.first);
diff --git a/src/examples/queue_push_lemma.h b/src/examples/queue_push_lemma.h
@@ -1,9 +1,11 @@
 /*@
 lemma push_lemma (pointer front, pointer p)
   requires
+      ptr_eq(front, p) || !addr_eq(front, p);
       take Q = IntQueueAux(front, p);
       take P = Owned<struct int_queueCell>(p);
   ensures
+      ptr_eq(front, P.next) || !addr_eq(front, P.next);
       take NewQ = IntQueueAux(front, P.next);
       NewQ == snoc(Q, P.first);
 @*/

Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@ int cast_2()`
`18`	`18`	`if (ptr_as_int < ptr_as_int_copy) // Check for overflow`
`19`	`19`	`{`
`20`	`20`	`ptr_as_int_copy = ptr_as_int_copy - 1;`
`21`		`- int ptr_restored = (int )ptr_as_int_copy;`
	`21`	`+ int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, &x);`
`22`	`22`
`23`	`23`	`int ret = *ptr_restored;`
`24`	`24`
Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ int cast_3()`
`19`	`19`	`if (ptr_as_int < ptr_as_int_copy) // Check for overflow`
`20`	`20`	`{`
`21`	`21`	`ptr_as_int_copy = ptr_as_int_copy - OFFSET;`
`22`		`- int ptr_restored = (int )ptr_as_int_copy;`
	`22`	`+ int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, &x);`
`23`	`23`
`24`	`24`	`int ret = *ptr_restored;`
`25`	`25`
Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ int cast_4(int *ptr_original)`
`19`	`19`	`if (ptr_as_int < ptr_as_int_copy) // Check for overflow`
`20`	`20`	`{`
`21`	`21`	`ptr_as_int_copy = ptr_as_int_copy - OFFSET;`
`22`		`- int ptr_restored = (int )ptr_as_int_copy;`
	`22`	`+ int *ptr_restored = __cerbvar_copy_alloc_id(ptr_as_int_copy, ptr_original);`
`23`	`23`
`24`	`24`	`int ret = *ptr_restored;`
`25`	`25`
Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,5 @@`
`1`		`-int a;`
	`1`	`+int a[2];`
`2`	`2`	`void b() {`
`3`		`- int *c = &a;`
	`3`	`+ int *c = &a[1];`
`4`	`4`	`c -= 1;`
`5`	`5`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`// Derived from src/example-archive/c-testsuite/broken/error-proof/00032.err1.c`
`2`	`2`
`3`		`-int a;`
	`3`	`+int a[2];`
`4`	`4`	`void b() {`
`5`		`- int *c = &a;`
	`5`	`+ int *c = &a[1];`
`6`	`6`	`--c;`
`7`	`7`	`}`
Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,7 @@ predicate (datatype seq) IntQueueFB (pointer front, pointer back) {`
`5`	`5`	`} else {`
`6`	`6`	`take B = Owned<struct int_queueCell>(back);`
`7`	`7`	`assert (is_null(B.next));`
	`8`	`+ assert (ptr_eq(front, back) \|\| !addr_eq(front, back));`
`8`	`9`	`take L = IntQueueAux (front, back);`
`9`	`10`	`return snoc(L, B.first);`
`10`	`11`	`}`
Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@ void IntQueue_push (int x, struct int_queue *q)`
`18`	`18`	`struct int_queueCell *oldback = q->back;`
`19`	`19`	`q->back->next = c;`
`20`	`20`	`q->back = c;`
`21`		`- /@ apply push_lemma (q->front, oldback); @/`
	`21`	`+ /@ apply push_lemma(q->front, oldback); @/`
`22`	`22`	`return;`
`23`	`23`	`}`
`24`	`24`	`}`