Lab Course SoSe2025 - Pentagon Domain #1740
Conversation
michael-schwarz
added
student-job
relational
…nagment or Apron stuff.
src/cdomains/pentagon/zExt.ml
Outdated
| let hash (z: t) = | ||
| match z with | ||
| | PosInfty -> failwith "ZExt.pow: TODO" | ||
| | NegInfty -> failwith "ZExt.pow: TODO" | ||
| | Arb(z) -> Z.hash z;; |
There was a problem hiding this comment.
I am bit surprised your analysis works at all, given it will fail if any PosInfinity or NegInfinity appears in an abstract value. What precisely is your plan for how you use them?
tests/unit/dune
Outdated
| ; See: https://github.com/ocaml/dune/issues/4383#issuecomment-805107435. | ||
| ; TODO: Remove workaround with dune 3.0, where this should get fixed. |
There was a problem hiding this comment.
I don't think the entire comment needs to be repeated.
| (* Note: | ||
| There are currently no tests independent of apron. | ||
| *) |
There was a problem hiding this comment.
If they are not independent of apron, why are they called No-Apron?
| ) |> | ||
| assert_equal expected | ||
|
|
||
| let noop _ = assert_bool "" true |
src/cdomains/pentagon/boxes.ml
Outdated
| let narrow (i1: t) (i2: t) = | ||
| meet i1 i2 |
There was a problem hiding this comment.
Could you elaborate on why setting narrow to meet is ok here, i.e., why the domain does not have (quasi-)infinite (i.e., of length 2^64 or something) descending chains?
src/cdomains/pentagon/intv.ml
Outdated
| let narrow (i1: t) (i2: t) = | ||
| inter i1 i2 |
There was a problem hiding this comment.
Same question as above for narrow.
| *) | ||
| module Intv = | ||
| struct | ||
| include ZExtOps |
There was a problem hiding this comment.
This is almost a lattice except you have named (some) operations differently? Any reasons for that?
|
|
||
| type t = (ZExt.t * ZExt.t) [@@deriving eq, hash, ord] | ||
|
|
||
| let to_string ((lb, ub): t) = Printf.sprintf "[%s,%s]" (StringUtils.int32_bound_str lb) (StringUtils.int32_bound_str ub) |
… some explaining comments; Minor performance stuff;
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| | ZExt.PosInfty -> failwith "This should not happen :)" | ||
| | ZExt.NegInfty -> ( | ||
| if Z.abs coeff = Z.one then | ||
| if List.length l >= 2 then |
Check warning
Code scanning / Semgrep OSS
Semgrep Finding: semgrep.list-length-compare-n Warning
| "Failed to convert cil expression: exception %s" | ||
| (SharedFunctions.show_unsupported_cilExp exn), |
There was a problem hiding this comment.
This is where at least on my computer the memory overflow happens; can you do without the call to show_unsupported_cilExp ?
There was a problem hiding this comment.
I guess we can remove this call. iirc we only put this in for debugging purposes.
PS: How did you recognize it as the cause?
There was a problem hiding this comment.
- I started goblint/pentagon with the command from an SV-Comp OUT OF MEMORY
- Waited for the memory usage to build up, without progress in the eval counter
- pressed ctr-c
- inspected the stacktrace for the uppermost occurance of a line from the pentagon implementation
There was a problem hiding this comment.
Is this consistent, i.e., does redoing those steps always result in that spot? It might just be a coincidence that the Ctrl-C interrupt happened right at that call.
Nevertheless, I will do some experiments later today and check it out.
There was a problem hiding this comment.
It seems to be d_plainexp in the CIL Pretty printer. We've had similar problems with recursive printers in the past.
There was a problem hiding this comment.
AHHH now I can see it.
I miss interpreted the calls to the Pretty module and just "waved them off", as I thought they were needed to produce the output when specifying ./goblint -v.
You are right. d_plainexp starts a long chain of calls.
I just simply removed the lines for a simple test and it seems to make the cut. Wow, I really did not anticipate that easy of a fix! That's great 😄
| let (str, res) = | ||
| match Convert.tcons1_of_cil_exp ask t t.env e negate no_ov with | ||
| | exception Convert.Unsupported_CilExp exn -> ( | ||
| ( | ||
| Printf.sprintf | ||
| "Failed to convert cil expression: exception %s" | ||
| (SharedFunctions.show_unsupported_cilExp exn), | ||
| t | ||
| ) | ||
| ) | ||
| | tcons -> ( | ||
| ( | ||
| StringUtils.string_of_tcons1 tcons, | ||
| assert_constraint ask t tcons negate no_ov | ||
| ) | ||
| ) | ||
| in |
There was a problem hiding this comment.
This should go into the tracing part
Lab Course: Static Analysis with Goblint
In this lab course we try to actively contribute to the Goblint codebase by integrating new abstract domain.
In the current iteration, the focus is on the development of the pentagon domain (Pntg), which combines interval analysis with symbolic relational constraints of the form$x < y$ . This hybrid approach offers greater precision than traditional interval analysis while maintaining lower complexity compared to more expressive domains like the octagon domain.