Merge pull request #5678 from jezhiggins/vsd-pointer-arithmetic

VSD pointer arithmetic, differencing, and comparisons

Author: martin-cs

regression/goto-analyzer/pointer-arithmetic-simple/main.c

@@ -0,0 +1,13 @@
+#include <assert.h>
+
+int main()
+{
+  int a[2];
+  int *p = a;
+
+  ++p;
+  assert(p == &(a[1]));
+
+  --p;
+  assert(p == a);
+}

regression/goto-analyzer/pointer-arithmetic-simple/test.desc

@@ -0,0 +1,7 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers constants --vsd-values constants --verify 
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] line 9 assertion p == \&\(a\[1\]\): SUCCESS
+^\[main.assertion.2\] line 12 assertion p == a: SUCCESS

regression/goto-analyzer/pointer-comparison-equality-array-of-struct-members/main.c

@@ -0,0 +1,22 @@
+#include <assert.h>
+
+int main()
+{
+  struct int_pair
+  {
+    int a;
+    int b;
+  };
+  struct int_pair x[2];
+
+  int *pa = &(x[0].a);
+
+  assert(pa == &(x[0].a));
+  assert(pa != &(x[0].a));
+  assert(pa == &(x[0].b));
+  assert(pa != &(x[0].b));
+  assert(pa == &(x[1].a));
+  assert(pa != &(x[1].a));
+  assert(pa == &(x[1].b));
+  assert(pa != &(x[1].b));
+}

regression/goto-analyzer/pointer-comparison-equality-array-of-struct-members/test-constants.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers constants --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion pa == &\(x\[0\].a\): SUCCESS
+^\[main.assertion.2\] .* assertion pa != &\(x\[0\].a\): FAILURE
+^\[main.assertion.3\] .* assertion pa == &\(x\[0\].b\): FAILURE
+^\[main.assertion.4\] .* assertion pa != &\(x\[0\].b\): SUCCESS
+^\[main.assertion.5\] .* assertion pa == &\(x\[1\].a\): FAILURE
+^\[main.assertion.6\] .* assertion pa != &\(x\[1\].a\): SUCCESS
+^\[main.assertion.7\] .* assertion pa == &\(x\[1\].b\): FAILURE
+^\[main.assertion.8\] .* assertion pa != &\(x\[1\].b\): SUCCESS

regression/goto-analyzer/pointer-comparison-equality-array-of-struct-members/test-top-bottom.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers top-bottom --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion pa == &\(x\[0\].a\): UNKNOWN
+^\[main.assertion.2\] .* assertion pa != &\(x\[0\].a\): UNKNOWN
+^\[main.assertion.3\] .* assertion pa == &\(x\[0\].b\): UNKNOWN
+^\[main.assertion.4\] .* assertion pa != &\(x\[0\].b\): UNKNOWN
+^\[main.assertion.5\] .* assertion pa == &\(x\[1\].a\): UNKNOWN
+^\[main.assertion.6\] .* assertion pa != &\(x\[1\].a\): UNKNOWN
+^\[main.assertion.7\] .* assertion pa == &\(x\[1\].b\): UNKNOWN
+^\[main.assertion.8\] .* assertion pa != &\(x\[1\].b\): UNKNOWN

regression/goto-analyzer/pointer-comparison-equality-array-of-struct-members/test-value-set.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers value-set --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion pa == &\(x\[0\].a\): SUCCESS
+^\[main.assertion.2\] .* assertion pa != &\(x\[0\].a\): FAILURE
+^\[main.assertion.3\] .* assertion pa == &\(x\[0\].b\): FAILURE
+^\[main.assertion.4\] .* assertion pa != &\(x\[0\].b\): SUCCESS
+^\[main.assertion.5\] .* assertion pa == &\(x\[1\].a\): FAILURE
+^\[main.assertion.6\] .* assertion pa != &\(x\[1\].a\): SUCCESS
+^\[main.assertion.7\] .* assertion pa == &\(x\[1\].b\): FAILURE
+^\[main.assertion.8\] .* assertion pa != &\(x\[1\].b\): SUCCESS

regression/goto-analyzer/pointer-comparison-equality-different-target/main.c

@@ -0,0 +1,20 @@
+#include <assert.h>
+
+int main()
+{
+  int a[2];
+  int b[2];
+  int c;
+
+  int *p = &(a[0]);
+  int *q = &(b[1]);
+  int *r = &c;
+
+  assert(p == q);
+  assert(p == r);
+  assert(q == r);
+
+  assert(p != q);
+  assert(p != r);
+  assert(q != r);
+}

regression/goto-analyzer/pointer-comparison-equality-different-target/test-constants.desc

@@ -0,0 +1,11 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers constants --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q: FAILURE
+^\[main.assertion.2\] .* assertion p == r: FAILURE
+^\[main.assertion.3\] .* assertion q == r: FAILURE
+^\[main.assertion.4\] .* assertion p != q: SUCCESS
+^\[main.assertion.5\] .* assertion p != r: SUCCESS
+^\[main.assertion.6\] .* assertion q != r: SUCCESS

regression/goto-analyzer/pointer-comparison-equality-different-target/test-top-bottom.desc

@@ -0,0 +1,11 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers top-bottom --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q: UNKNOWN
+^\[main.assertion.2\] .* assertion p == r: UNKNOWN
+^\[main.assertion.3\] .* assertion q == r: UNKNOWN
+^\[main.assertion.4\] .* assertion p != q: UNKNOWN
+^\[main.assertion.5\] .* assertion p != r: UNKNOWN
+^\[main.assertion.6\] .* assertion q != r: UNKNOWN

regression/goto-analyzer/pointer-comparison-equality-different-target/test-value-set.desc

@@ -0,0 +1,11 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers value-set --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q: FAILURE
+^\[main.assertion.2\] .* assertion p == r: FAILURE
+^\[main.assertion.3\] .* assertion q == r: FAILURE
+^\[main.assertion.4\] .* assertion p != q: SUCCESS
+^\[main.assertion.5\] .* assertion p != r: SUCCESS
+^\[main.assertion.6\] .* assertion q != r: SUCCESS

regression/goto-analyzer/pointer-comparison-equality-same-target-2/main.c

@@ -0,0 +1,16 @@
+#include <assert.h>
+
+int main()
+{
+  int a[2];
+
+  int *p = &(a[0]);
+  int *q = &(a[1]);
+  int *r = p + 1;
+
+  assert(p == q || p == r);
+  assert(q == p || q == r);
+
+  assert(p != q && p != r);
+  assert(q != p && q != r);
+}

regression/goto-analyzer/pointer-comparison-equality-same-target-2/test-constants.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers constants --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q || p == r: FAILURE
+^\[main.assertion.2\] .* assertion q == p || q == r: SUCCESS
+^\[main.assertion.3\] .* assertion p != q && p != r: SUCCESS
+^\[main.assertion.4\] .* assertion q != p && q != r: FAILURE

regression/goto-analyzer/pointer-comparison-equality-same-target-2/test-top-bottom.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers top-bottom --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q || p == r: UNKNOWN
+^\[main.assertion.2\] .* assertion q == p || q == r: UNKNOWN
+^\[main.assertion.3\] .* assertion p != q && p != r: UNKNOWN
+^\[main.assertion.4\] .* assertion q != p && q != r: UNKNOWN

regression/goto-analyzer/pointer-comparison-equality-same-target-2/test-value-set.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers value-set --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q || p == r: FAILURE
+^\[main.assertion.2\] .* assertion q == p || q == r: SUCCESS
+^\[main.assertion.3\] .* assertion p != q && p != r: SUCCESS
+^\[main.assertion.4\] .* assertion q != p && q != r: FAILURE

regression/goto-analyzer/pointer-comparison-equality-same-target/main.c

@@ -0,0 +1,16 @@
+#include <assert.h>
+
+int main()
+{
+  int a[2];
+
+  int *p = &(a[0]);
+  int *q = &(a[1]);
+  int *r = p + 1;
+
+  assert(p == q);
+  assert(r == q);
+
+  assert(p != q);
+  assert(r != q);
+}

regression/goto-analyzer/pointer-comparison-equality-same-target/test-constants.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers constants --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q: FAILURE
+^\[main.assertion.2\] .* assertion r == q: SUCCESS
+^\[main.assertion.3\] .* assertion p != q: SUCCESS
+^\[main.assertion.4\] .* assertion r != q: FAILURE

regression/goto-analyzer/pointer-comparison-equality-same-target/test-top-bottom.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers top-bottom --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q: UNKNOWN
+^\[main.assertion.2\] .* assertion r == q: UNKNOWN
+^\[main.assertion.3\] .* assertion p != q: UNKNOWN
+^\[main.assertion.4\] .* assertion r != q: UNKNOWN

regression/goto-analyzer/pointer-comparison-equality-same-target/test-value-set.desc

@@ -0,0 +1,9 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers value-set --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p == q: FAILURE
+^\[main.assertion.2\] .* assertion r == q: SUCCESS
+^\[main.assertion.3\] .* assertion p != q: SUCCESS
+^\[main.assertion.4\] .* assertion r != q: FAILURE

regression/goto-analyzer/pointer-comparison-equality-struct-members/main.c

@@ -0,0 +1,28 @@
+#include <assert.h>
+
+int main()
+{
+  struct int_pair
+  {
+    int a;
+    int b;
+  };
+  struct int_pair x = {0, 1};
+
+  int *pa = &(x.a);
+
+  assert(pa == &(x.a));
+  assert(pa != &(x.a));
+
+  int *pb = &(x.b);
+  assert(pb == &(x.a));
+  assert(pb != &(x.a));
+
+  struct int_pair y = {0, 1.0};
+  assert(pa == &(y.a));
+  assert(pa != &(y.a));
+
+  int *pb = &(x.b);
+  assert(pb == &(y.a));
+  assert(pb != &(y.a));
+}

regression/goto-analyzer/pointer-comparison-equality-struct-members/test-constants.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers constants --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion pa == &\(x.a\): SUCCESS
+^\[main.assertion.2\] .* assertion pa != &\(x.a\): FAILURE
+^\[main.assertion.3\] .* assertion pb == &\(x.a\): FAILURE
+^\[main.assertion.4\] .* assertion pb != &\(x.a\): SUCCESS
+^\[main.assertion.5\] .* assertion pa == &\(y.a\): FAILURE
+^\[main.assertion.6\] .* assertion pa != &\(y.a\): SUCCESS
+^\[main.assertion.7\] .* assertion pb == &\(y.a\): FAILURE
+^\[main.assertion.8\] .* assertion pb != &\(y.a\): SUCCESS

regression/goto-analyzer/pointer-comparison-equality-struct-members/test-top-bottom.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers top-bottom --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion pa == &\(x.a\): UNKNOWN
+^\[main.assertion.2\] .* assertion pa != &\(x.a\): UNKNOWN
+^\[main.assertion.3\] .* assertion pb == &\(x.a\): UNKNOWN
+^\[main.assertion.4\] .* assertion pb != &\(x.a\): UNKNOWN
+^\[main.assertion.5\] .* assertion pa == &\(y.a\): UNKNOWN
+^\[main.assertion.6\] .* assertion pa != &\(y.a\): UNKNOWN
+^\[main.assertion.7\] .* assertion pb == &\(y.a\): UNKNOWN
+^\[main.assertion.8\] .* assertion pb != &\(y.a\): UNKNOWN

regression/goto-analyzer/pointer-comparison-equality-struct-members/test-value-set.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers value-set --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion pa == &\(x.a\): SUCCESS
+^\[main.assertion.2\] .* assertion pa != &\(x.a\): FAILURE
+^\[main.assertion.3\] .* assertion pb == &\(x.a\): FAILURE
+^\[main.assertion.4\] .* assertion pb != &\(x.a\): SUCCESS
+^\[main.assertion.5\] .* assertion pa == &\(y.a\): FAILURE
+^\[main.assertion.6\] .* assertion pa != &\(y.a\): SUCCESS
+^\[main.assertion.7\] .* assertion pb == &\(y.a\): FAILURE
+^\[main.assertion.8\] .* assertion pb != &\(y.a\): SUCCESS

regression/goto-analyzer/pointer-comparison-inequality-different-target/main.c

@@ -0,0 +1,23 @@
+#include <assert.h>
+
+int main()
+{
+  int a[2];
+  int b[2];
+
+  int *p = &(a[0]);
+  int *q = &(b[1]);
+
+  // p and q point to different base objects so these
+  // comparisons are undefined. Consequently we evaluate
+  // them as UNKNOWN
+  assert(p <= q);
+  assert(p < q);
+  assert(p >= q);
+  assert(p > q);
+
+  assert(q <= p);
+  assert(q < p);
+  assert(q >= p);
+  assert(q > p);
+}

regression/goto-analyzer/pointer-comparison-inequality-different-target/test-constants.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers constants --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p <= q: UNKNOWN
+^\[main.assertion.2\] .* assertion p < q: UNKNOWN
+^\[main.assertion.3\] .* assertion p >= q: UNKNOWN
+^\[main.assertion.4\] .* assertion p > q: UNKNOWN
+^\[main.assertion.5\] .* assertion q <= p: UNKNOWN
+^\[main.assertion.6\] .* assertion q < p: UNKNOWN
+^\[main.assertion.7\] .* assertion q >= p: UNKNOWN
+^\[main.assertion.8\] .* assertion q > p: UNKNOWN

regression/goto-analyzer/pointer-comparison-inequality-different-target/test-top-bottom.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers top-bottom --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p <= q: UNKNOWN
+^\[main.assertion.2\] .* assertion p < q: UNKNOWN
+^\[main.assertion.3\] .* assertion p >= q: UNKNOWN
+^\[main.assertion.4\] .* assertion p > q: UNKNOWN
+^\[main.assertion.5\] .* assertion q <= p: UNKNOWN
+^\[main.assertion.6\] .* assertion q < p: UNKNOWN
+^\[main.assertion.7\] .* assertion q >= p: UNKNOWN
+^\[main.assertion.8\] .* assertion q > p: UNKNOWN

regression/goto-analyzer/pointer-comparison-inequality-different-target/test-value-set.desc

@@ -0,0 +1,13 @@
+CORE
+main.c
+--variable-sensitivity --vsd-pointers value-set --verify
+^EXIT=0$
+^SIGNAL=0$
+^\[main.assertion.1\] .* assertion p <= q: UNKNOWN
+^\[main.assertion.2\] .* assertion p < q: UNKNOWN
+^\[main.assertion.3\] .* assertion p >= q: UNKNOWN
+^\[main.assertion.4\] .* assertion p > q: UNKNOWN
+^\[main.assertion.5\] .* assertion q <= p: UNKNOWN
+^\[main.assertion.6\] .* assertion q < p: UNKNOWN
+^\[main.assertion.7\] .* assertion q >= p: UNKNOWN
+^\[main.assertion.8\] .* assertion q > p: UNKNOWN

regression/goto-analyzer/pointer-comparison-inequality-same-target/main.c

@@ -0,0 +1,24 @@
+#include <assert.h>
+
+int main()
+{
+  int a[2];
+
+  int *p = &(a[0]);
+  int *q = &(a[1]);
+
+  assert(p <= a);
+  assert(p < a);
+  assert(p >= a);
+  assert(p > a);
+
+  assert(p <= q);
+  assert(p < q);
+  assert(p >= q);
+  assert(p > q);
+
+  assert(q <= p);
+  assert(q < p);
+  assert(q >= p);
+  assert(q > p);
+}