Source: sva_reduced_prod.ml (p.codex.1.0~rc4.doc.src.codex.single_value

The Codex static analysis library
- Quick start: verifying C code using Frama-C/Codex
- Tutorials
- Spatial Memory Safety with Dependent Types in Codex
- Extending Codex to a simple while language
- Overview: The While Language
- Lattices and Single Value Abstractions
- Interval Analysis on While Language
- Interval Analysis using Codex
- Library Type_parser
  - Type_parser
- Library codex
  - Codex
- Library codex.bdd
  - Bdd
- Library codex.binarytrace
  - Binarytrace
- Library codex.cfg
  - Cfg
- Library codex.codex_config
  - Codex_config
- Library codex.codex_log
  - Codex_log
- Library codex.compressor
  - Compressor
- Library codex.condition_map
  - Condition_map
- Library codex.datatype_sig
  - Datatype_sig
- Library codex.domains
  - Domains
- Library codex.emit_alarm
  - Emit_alarm
- Library codex.extstdlib
  - Extstdlib
- Library codex.file_to_html
  - File_to_html
- Library codex.fixpoint
  - Fixpoint
- Library codex.framac_ival
  - Framac_ival
- Library codex.gui
  - Gui
- Library codex.hashing
  - Hashing
- Library codex.het-hashtbl
  - HetHashtbl
- Library codex.hook
  - Hook
- Library codex.int_builtins
  - Int_builtins
- Library codex.interval_map
  - Interval_map
- Library codex.lattices
  - Lattices
- Library codex.online_nearest_common_ancestor_skiplist
  - Online_nearest_common_ancestor_skiplist
- Library codex.operator
  - Operator
- Library codex.record_time
  - Record_time
- Library codex.single_value_abstraction
  - Single_value_abstraction
- Library codex.smallmap
  - Smallmap
- Library codex.smtbackend
  - Smtbackend
- Library codex.stats
  - Stats
- Library codex.syntax_tree
  - Syntax_tree
- Library codex.terms
  - Terms
- Library codex.tracelog
  - Tracelog
- Library codex.treemap
  - Treemap
- Library codex.types
  - Types
- Library codex.union_find
  - Union_Find
- Library codex.units
  - Units
- Library codex.utils
- Library codex.while_ast
  - While_ast
- Library codex.whilelib
  - Whilelib
- Library immutable_array
  - Immutable_array
- Library interface
  - Interface
- Library ppx_while
  - Ppx_while
- Library type_parse_tree
  - Type_parse_tree
- Sources
  - Type_parser
    - type_parser.ml
  - codex
    - codex.ml
  - codex.bdd
    - bdd.ml
  - codex.binarytrace
    - binarytrace.ml
  - codex.cfg
    - cfg.ml
    - cfg__.ml
  - codex.codex_config
    - codex_config.ml
  - codex.codex_log
    - codex_log.ml
  - codex.compressor
    - compressor.ml
  - codex.condition_map
    - condition_map.ml
  - codex.datatype_sig
    - datatype_sig.ml
  - codex.domains
  - codex.emit_alarm
    - emit_alarm.ml
  - codex.extstdlib
    - extstdlib.ml
  - codex.file_to_html
    - file_to_html.ml
  - codex.fixpoint
  - codex.framac_ival
  - codex.gui
  - codex.hashing
    - hashing.ml
  - codex.het-hashtbl
    - hetHashtbl.ml
  - codex.hook
    - hook.ml
  - codex.int_builtins
    - int_builtins.ml
  - codex.interval_map
    - interval_map.ml
  - codex.lattices
  - codex.online_nearest_common_ancestor_skiplist
    - online_nearest_common_ancestor_skiplist.ml
  - codex.operator
  - codex.record_time
    - record_time.ml
  - codex.single_value_abstraction
  - codex.smallmap
    - smallmap.ml
  - codex.smtbackend
  - codex.stats
    - stats.ml
  - codex.syntax_tree
    - syntax_tree.ml
  - codex.terms
  - codex.tracelog
  - codex.treemap
    - treemap.ml
  - codex.types
  - codex.union_find
  - codex.units
    - units.ml
  - codex.while_ast
    - while_ast.ml
  - codex.whilelib
  - immutable_array
    - immutable_array.ml
  - interface
    - interface.ml
  - ppx_while
    - ppx_while.ml
  - type_parse_tree
    - type_parse_tree.ml

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312(**************************************************************************) (* This file is part of the Codex semantics library. *) (* *) (* Copyright (C) 2013-2025 *) (* CEA (Commissariat à l'énergie atomique et aux énergies *) (* alternatives) *) (* *) (* you can redistribute it and/or modify it under the terms of the GNU *) (* Lesser General Public License as published by the Free Software *) (* Foundation, version 2.1. *) (* *) (* It is distributed in the hope that it will be useful, *) (* but WITHOUT ANY WARRANTY; without even the implied warranty of *) (* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *) (* GNU Lesser General Public License for more details. *) (* *) (* See the GNU Lesser General Public License version 2.1 *) (* for more details (enclosed in the file LICENSE). *) (* *) (**************************************************************************) module In_bits = Units.In_bits module type Reduce = sig type t1 type t2 val reduce : size:In_bits.t -> t1 * t2 -> t1 * t2 end module type Reduced_prod_functor = functor (B1 : Sva_sig.NUMERIC) (B2 : Sva_sig.NUMERIC) (R : Reduce with type t1 = B1.bitvector and type t2 = B2.bitvector) -> Sva_sig.NUMERIC (** A domain that abstracts a bitvector, trying to track whether it is equal to zero or not. *) module Make (B1 : Sva_sig.NUMERIC) (B2 : Sva_sig.NUMERIC) (R : Reduce with type t1 = B1.bitvector and type t2 = B2.bitvector) : Sva_sig.NUMERIC = struct let _name = Printf.sprintf "Reduced_prod(%s)(%s)" B1.name B2.name include Sva_quadrivalent module Integer_Lattice = struct include Lattices.Unimplemented.Integer_Lattice(struct type t = unit let loc = __LOC__ end) end type integer = Integer_Lattice.t module Integer_Backward = Sva_Assert_False_Transfer_Functions.Integer_Backward module Integer_Forward = Sva_Assert_False_Transfer_Functions.Integer_Forward module Bitvector_Lattice = struct module L1 = B1.Bitvector_Lattice module L2 = B2.Bitvector_Lattice type t = | Bot | NonBot of L1.t * L2.t (** invariant: none of the arguments are bottom. *) module L = Lattices.Unimplemented.Bitvector_Lattice(struct type nonrec t = t let loc = __LOC__ end) include (L:module type of L with type t := t) let mk ~size (x1,x2) = if L1.is_bottom ~size x1 || L2.is_bottom ~size x2 then Bot else NonBot (x1,x2) let unpack ~size = function | Bot -> (L1.bottom ~size, L2.bottom ~size) | NonBot (x1,x2) -> x1,x2 let bottom ~size:_ = Bot let is_bottom ~size:_ = function Bot -> true | _ -> false let top ~size = NonBot (L1.top ~size, L2.top ~size) let pretty ~size fmt = let open Format in function | Bot -> pp_print_string fmt "Bottom" | NonBot (x1,x2) -> fprintf fmt "@[<hov 2>(%a,@ %a)@]" (L1.pretty ~size) x1 (L2.pretty ~size) x2 let includes ~size x y = match x,y with | _,Bot -> true | Bot,_ -> false | NonBot (x1,x2), NonBot (y1,y2) -> L1.includes ~size x1 y1 && L2.includes ~size x2 y2 let join ~size x y = match x,y with | Bot,a | a,Bot -> a | NonBot (x1,x2), NonBot (y1,y2) -> NonBot (L1.join ~size x1 y1, L2.join ~size x2 y2) let inter ~size x y = match x,y with | Bot,_ | _,Bot -> Bot | NonBot (x1,x2), NonBot (y1,y2) -> NonBot (L1.inter ~size x1 y1, L2.inter ~size x2 y2) let hash = function | Bot -> Hashtbl.hash 0 | NonBot (x,y) -> Hashtbl.hash (1, L1.hash x, L2.hash y) let compare x y = match x,y with | Bot,Bot -> 0 | Bot, NonBot _ -> -1 | NonBot _,Bot -> 1 | NonBot (x1,x2), NonBot (y1,y2) -> let c = L1.compare x1 y1 in if c <> 0 then c else L2.compare x2 y2 let equal x y = match x,y with | Bot,Bot -> true | NonBot (x1,x2), NonBot (y1,y2) -> L1.equal x1 y1 && L2.equal x2 y2 | _ -> false let widen ~size ~previous x = let p1,p2 = match previous with | Bot -> L1.bottom ~size, L2.bottom ~size | NonBot (x,y) -> x,y in let x1,x2 = match x with | Bot -> L1.bottom ~size, L2.bottom ~size | NonBot (x,y) -> x,y in let res1,res2 = L1.widen ~size ~previous:p1 x1, L2.widen ~size ~previous:p2 x2 in if L1.is_bottom ~size res1 || L2.is_bottom ~size res2 then Bot else NonBot (res1,res2) let includes_or_widen ~size ~previous x = if includes ~size previous x then (true, x) else (false, widen ~size ~previous x) let singleton ~size i = NonBot (L1.singleton ~size i, L2.singleton ~size i) let is_singleton ~size x = let x1,x2 = unpack ~size x in match L1.is_singleton ~size x1 with | None -> L2.is_singleton ~size x2 | x -> x let is_empty ~size x = let x1,x2 = unpack ~size x in L1.is_empty ~size x1 || L2.is_empty ~size x2 let to_known_bits ~size x = let x1,x2 = unpack ~size x in let kb1 = L1.to_known_bits ~size x1 in let kb2 = L2.to_known_bits ~size x2 in Lattices.Known_Bits.inter ~size kb1 kb2 end type bitvector = Bitvector_Lattice.t module Bitvector_Forward = struct open Bitvector_Lattice module BF1 = B1.Bitvector_Forward module BF2 = B2.Bitvector_Forward let biconst ~size const = NonBot (BF1.biconst ~size const, BF2.biconst ~size const) let bop1 ~size f1 f2 x = let x1,x2 = unpack ~size x in mk ~size @@ R.reduce ~size @@ (f1 x1, f2 x2) let buext ~size ~oldsize = bop1 ~size (BF1.buext ~size ~oldsize) (BF2.buext ~size ~oldsize) let bsext ~size ~oldsize = bop1 ~size (BF1.bsext ~size ~oldsize) (BF2.bsext ~size ~oldsize) let bextract ~size ~index ~oldsize = bop1 ~size (BF1.bextract ~size ~index ~oldsize) (BF2.bextract ~size ~index ~oldsize) let bop2 f1 f2 = fun ~size x y -> let x1,x2 = unpack ~size x in let y1,y2 = unpack ~size y in mk ~size @@ R.reduce ~size (f1 ~size x1 y1, f2 ~size x2 y2) let bop2_wrapped_flags f1 f2 = fun ~size ~flags x y -> let x1,x2 = unpack ~size x in let y1,y2 = unpack ~size y in mk ~size @@ R.reduce ~size (f1 ~size ~flags x1 y1, f2 ~size ~flags x2 y2) let biadd = bop2_wrapped_flags BF1.biadd BF2.biadd let bisub = bop2_wrapped_flags BF1.bisub BF2.bisub let bimul = bop2_wrapped_flags BF1.bimul BF2.bimul let bisdiv = bop2 BF1.bisdiv BF2.bisdiv let bismod = bop2 BF1.bismod BF2.bismod let biudiv = bop2 BF1.biudiv BF2.biudiv let biumod = bop2 BF1.biumod BF2.biumod let bimul_add ~size ~prod ~offset x = let l,r = unpack ~size x in mk ~size (BF1.bimul_add ~size ~prod ~offset l, BF2.bimul_add ~size ~prod ~offset r) let band = bop2 BF1.band BF2.band let bor = bop2 BF1.bor BF2.bor let bxor = bop2 BF1.bxor BF2.bxor let bshl = bop2_wrapped_flags BF1.bshl BF2.bshl let bashr = bop2 BF1.bashr BF2.bashr let blshr = bop2 BF1.blshr BF2.blshr let bofbool ~size b = mk ~size (BF1.bofbool ~size b, BF2.bofbool ~size b) let bconcat ~size1 ~size2 a b = let a1,a2 = unpack ~size:size1 a in let b1,b2 = unpack ~size:size2 b in mk ~size:In_bits.(size1+size2) (BF1.bconcat ~size1 ~size2 a1 b1, BF2.bconcat ~size1 ~size2 a2 b2) let bpred ~size f1 f2 = fun a b -> let a1,a2 = unpack ~size a in let b1,b2 = unpack ~size b in Sva_quadrivalent.Boolean_Lattice.inter (f1 ~size a1 b1) (f2 ~size a2 b2) let beq ~size = bpred ~size BF1.beq BF2.beq let bisle ~size = bpred ~size BF1.bisle BF2.bisle let biule ~size = bpred ~size BF1.biule BF2.biule end module Bitvector_Backward = struct module BB1 = B1.Bitvector_Backward module BB2 = B2.Bitvector_Backward open Bitvector_Lattice let coalesce_nones ~size olda oldb a b = match a,b with | None,None -> None | Some v, None -> Some (mk ~size @@ R.reduce ~size (v, oldb)) | None, Some v -> Some (mk ~size @@ R.reduce ~size (olda, v)) | Some va, Some vb -> Some (mk ~size (va,vb)) let bpred2 ~size op1 op2 x y res = let x1,x2 = unpack ~size x in let y1,y2 = unpack ~size y in let (newa1,newb1) = op1 ~size x1 y1 res in let (newa2,newb2) = op2~size x2 y2 res in (coalesce_nones ~size x1 x2 newa1 newa2, coalesce_nones ~size y1 y2 newb1 newb2) let beq ~size = bpred2 ~size BB1.beq BB2.beq let biule ~size = bpred2 ~size BB1.biule BB2.biule let bisle ~size = bpred2 ~size BB1.bisle BB2.bisle let bop2_common ~size op1 op2 x y res = let x1,x2 = unpack ~size x in let y1,y2 = unpack ~size y in let res1,res2 = unpack ~size res in let (newa1,newb1) = op1 x1 y1 res1 in let (newa2,newb2) = op2 x2 y2 res2 in (coalesce_nones ~size x1 x2 newa1 newa2, coalesce_nones ~size y1 y2 newb1 newb2) let bop2_wrapped ~size ~flags op1 op2 = bop2_common ~size (op1 ~size ~flags) (op2 ~size ~flags) let bop2 ~size op1 op2 = bop2_common ~size (op1 ~size) (op2 ~size) let biadd = bop2_wrapped BB1.biadd BB2.biadd let bisub = bop2_wrapped BB1.bisub BB2.bisub let bimul = bop2_wrapped BB1.bimul BB2.bimul let bimul_add ~size ~prod ~offset x res = let (l,r) = unpack ~size x in let (res_l,res_r) = unpack ~size res in coalesce_nones ~size l r (BB1.bimul_add ~size ~prod ~offset l res_l) (BB2.bimul_add ~size ~prod ~offset r res_r) let band = bop2 BB1.band BB2.band let bor = bop2 BB1.bor BB2.bor let bxor = bop2 BB1.bxor BB2.bxor let bisdiv = bop2 BB1.bisdiv BB2.bisdiv let bismod = bop2 BB1.bismod BB2.bismod let biudiv = bop2 BB1.biudiv BB2.biudiv let biumod = bop2 BB1.biumod BB2.biumod let bashr = bop2 BB1.bashr BB2.bashr let blshr = bop2 BB1.blshr BB2.blshr let bshl = bop2_wrapped BB1.bshl BB2.bshl let bsext ~size:_ ~oldsize:_ _ _ = (None) let buext ~size:_ ~oldsize:_ _ _ = (None) let bconcat ~size1:_ ~size2:_ _ _ _ = (None,None) let bextract ~size:_ ~index:_ ~oldsize:_ _ _ = (None) let bofbool ~size bool bin = match bin with | Bot -> Some Lattices.Quadrivalent.Bottom | NonBot (bin1,bin2) -> match BB1.bofbool ~size bool bin1, BB2.bofbool ~size bool bin2 with | x, None -> x | None, x -> x | Some b1, Some b2 -> Some (if b1 <> b2 then Lattices.Quadrivalent.Bottom else b1) end end