Source file bitvector_standard.ml

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
(**************************************************************************)
(*  This file is part of the Codex semantics library.                     *)
(*                                                                        *)
(*  Copyright (C) 2013-2025                                               *)
(*    CEA (Commissariat à l'énergie atomique et aux énergies              *)
(*         alternatives)                                                  *)
(*                                                                        *)
(*  you can redistribute it and/or modify it under the terms of the GNU   *)
(*  Lesser General Public License as published by the Free Software       *)
(*  Foundation, version 2.1.                                              *)
(*                                                                        *)
(*  It is distributed in the hope that it will be useful,                 *)
(*  but WITHOUT ANY WARRANTY; without even the implied warranty of        *)
(*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the         *)
(*  GNU Lesser General Public License for more details.                   *)
(*                                                                        *)
(*  See the GNU Lesser General Public License version 2.1                 *)
(*  for more details (enclosed in the file LICENSE).                      *)
(*                                                                        *)
(**************************************************************************)


module In_bits = Units.In_bits

(**************** Standard abstractions for bitvectors. ****************)

(* Standard abstractions that are useful for exchanging information between domains.  *)

            
module Interval = struct
(* Min, max pair. Note that on bitvectors there is a maximum, so there
   is no need for infinity to represent top.  *)

  include Integer_standard.ZPair;;

  let join ~size:_ (min1,max1) (min2,max2) = (Z.min min1 min2, Z.max max1 max2);;
  let inter ~size:_ (min1,max1) (min2,max2) = (Z.max min1 min2, Z.min max1 max2);;  
    
  (* Any element where max is smaller than min is bottom. *)
  let bottom ~size:_ = Z.one, Z.zero

  let includes ~size (min1,max1) (min2,max2) = Z.leq min1 min2 && Z.geq max1 max2;;

  let pretty ~size fmt (a,b) =
    Format.fprintf fmt "[%s..%s]" (Z.to_string a) (Z.to_string b)
end

module Signed_Interval = struct
  include Interval
end

module Unsigned_Interval = struct
  include Interval
  let top ~size = (Z.zero, Z.pred @@ Z.(lsl) Z.one size)
end
             
module Known_Bits = struct

  (* First bitvector = 0 where the bits must be 0, 1 otherwise.
     Second bitvector = 1 where the bits must be 1, 0 otherwise.

     This is the same representation than for integers, with the
     additional restriction that bits at position higher than size are
     zero (so we must be careful and use extract for every operation
     that can change the sign or higher bits).  *)
  include Integer_standard.ZPair

  let chop ~(size:In_bits.t) x = Z.extract x 0 (size:>int)

  let bottom ~size = (Z.zero, chop ~size Z.minus_one);;
  let is_bottom ~size x = Integer_standard.Known_Bits.is_bottom x

  let top ~size = (chop ~size Z.minus_one, Z.zero);;
  let pretty ~size = Integer_standard.Known_Bits.pretty 
  
  let singleton ~size x =
    let x = chop ~size x in
    (x,x)
  ;;

  (* Intersection: keep the bits known by one side. *)  
  let inter0 = Z.(land)
  let inter1 = Z.(lor)
  let inter ~size:(_:In_bits.t) (x0,x1) (y0,y1) = (inter0 x0 y0, inter1 x1 y1);;

  let join0 = Z.(lor)
  let join1 = Z.(land)
  let join ~size (x0,x1) (y0,y1) = (join0 x0 y0, join1 x1 y1)

  let equal (x0,x1) (y0,y1) = Z.equal x0 y0 && Z.equal x1 y1;;
  let is_included ~size x y = equal y (join ~size x y);;
  let includes ~size x y = is_included ~size y x

  (* A widening operator from a paper by Antoine Miné. *)
  let widen ~(size:In_bits.t) ~previous:(prev0,prev1) (new0,new1) =
    let res0 =
      let t = join0 prev0 new0 in
      if Z.equal prev0 t then prev0
      else Z.extract Z.minus_one 0 (size:>int)
    in
    let res1 =
      let t = join1 prev1 new1 in
      if Z.equal prev1 t then prev1
      else Z.zero
    in    
    (res0,res1)
  ;;

  let includes_or_widen ~size ~previous _ = assert false

  (* TODO. *)
  let is_singleton ~size _x = assert false
  let is_empty ~size _x = assert false
  let fold_crop_signed ~size _x ~inf ~sup _acc _f  = assert false
  let fold_crop_unsigned ~size _x ~inf ~sup _acc _f  = assert false    
  let to_known_bits ~size x = x
  let to_unsigned_interval ~size _ = assert false
  let to_signed_interval ~size _ = assert false    
end
  

module Congruence = struct

  (* Represents a set q * Z + r, where q is the first element, and r
     the second.  - If q is negative, this represents bottom.  - If q
     is 0, this represents a singleton.  - If q is >0, then 0 <= r <
     q.

     Note: as this representation is independent from the sign, most
     operations are the same than for integers.
  *)
  include Integer_standard.ZPair

  let bottom ~size = Integer_standard.Congruence.bottom
  let top ~size = Integer_standard.Congruence.top
  let singleton ~size x = Z.zero, Z.extract x 0 size
end


(* Bitvectors are finite, thus we can explicitely enumerate bitvectors. *)
module BVSet = struct
  module ZSet = Set.Make(Z)

  let equal = ZSet.equal
  let compare = ZSet.compare
  let hash _ = assert false
  let pretty ~size fmt x =
    Format.fprintf fmt "@[<hv>";
    x |> ZSet.iter (fun x -> Format.fprintf fmt "%s@ " (Z.to_string x));
    Format.fprintf fmt "@]"
  ;;
              
  type t = ZSet.t
  let bottom ~size = ZSet.empty
  let top ~size = assert false
  let join ~size = ZSet.union
  let inter ~size = ZSet.inter
  let singleton ~size x = ZSet.singleton x
end