void fint n int j 0 for int

  • Slides: 65
Download presentation

void f(int n) { int j = 0; for (int i = 0; i

void f(int n) { int j = 0; for (int i = 0; i < n; ++i) { j += 1; } assert(j >= n); }

void f() { int i = 0; while (i < 100) { ++i; }

void f() { int i = 0; while (i < 100) { ++i; } assert(i == 100); } 2 2

2 2

2 2

2 2

2 2

void f(int n) { int j = 0; for (int i = 0; i

void f(int n) { int j = 0; for (int i = 0; i < n; ++i) { j += 1; } assert(j >= n); }

void f(int n) { int j = 0; for (int i = 0; i

void f(int n) { int j = 0; for (int i = 0; i < n; ++i) { j += 1; } assert(j >= n); } void f(int n) { int j = 0; int i = 0; assume(i >= n); assert(j >= n); } void f(int n) { int j = 0; int i = 0; assume(i < n); j += 1; ++i; assume(i >= n); assert(j >= n); }

void f(int n) { int j = 0; int i = 0; assume(i >=

void f(int n) { int j = 0; int i = 0; assume(i >= n); assert(j >= n); } void f(int n) { int j = 0; int i = 0; assume(i < n); j += 1; ++i; assume(i >= n); assert(j >= n); }

void f(int n) { int j = 0; for (int i = 0; i

void f(int n) { int j = 0; for (int i = 0; i < n; ++i) { j += 1; } assert(j >= n); } 2 2

2 2

2 2

2 2 unreachable

2 2 unreachable

Abstraction # SMT queries Abstract Interp Query result Incremental? Fixed 1 per “line” per

Abstraction # SMT queries Abstract Interp Query result Incremental? Fixed 1 per “line” per iteration SAT No Symbolic Exec No 1 per path mixed Yes BMC No 1 per unfolding UNSAT No Adaptive 1 per “line” per predicate per iteration UNSAT No Model Checking

QARMC -nopreprocess cdaudio. bug 7 s 70 s (10 x) diskperf 88 s >

QARMC -nopreprocess cdaudio. bug 7 s 70 s (10 x) diskperf 88 s > 600 s (> 7 x) summ_mccarthy 0. 5 s > 50 s (> 100 x) 1 s > 100 s (> 100 x) 0. 7 s 1. 4 s (2 x) qrdcmp tridag

True/False Z 3 BV SICStus LLVM Prolog CLPQ Constant. Range 3, 657 264, 550

True/False Z 3 BV SICStus LLVM Prolog CLPQ Constant. Range 3, 657 264, 550 (72 x) 2, 886 14, 682 (5 x) 883 4, 996 (6 x) 1, 748 5, 000 x potential 1, 091 20 Million

int f(int *a, int k) { int b[5]; for (unsigned i = 0; i

int f(int *a, int k) { int b[5]; for (unsigned i = 0; i < 5; ++i) { b[i] = a[i] + i; } return b[k]; Can’t alias (i. e. , don’t overlap) }

int f(int *a, int k) { int b[5]; for (unsigned i = 0; i

int f(int *a, int k) { int b[5]; for (unsigned i = 0; i < 5; ++i) { b[i] = a[i] + i; } return b[k]; }

char f(char x) { char y = 0; if (x < 0) y =

char f(char x) { char y = 0; if (x < 0) y = 3; if (x >= 3 && (y & 1) != 0) return 0; return 1; }

char f(char x) { char y = 0; if (x < 0) y =

char f(char x) { char y = 0; if (x < 0) y = 3; if (x >= 3 && (y & 1) != 0) return 0; return 1; }

function fn(a, b) { return a + b; }

function fn(a, b) { return a + b; }

function fn(a, b) { return a + b; } function fn(a, b) { if

function fn(a, b) { return a + b; } function fn(a, b) { if (typeof a === 'number' && typeof b === 'number') return Number. add(a, b); if (typeof a === 'string' && typeof b === 'string') return String. concat(a, b); return a + b; } Top 2 types at runtime

void fint n int j 0 for intvoid fint n int j 0 for int
void fint n int j 0 for intvoid fint n int j 0 for int
void swapint x int y void main intvoid swapint x int y void main int
void swapint x int y void main intvoid swapint x int y void main int
ESP 100 int fint x 200 int gintESP 100 int fint x 200 int gint
stack void testint int int main int Astack void testint int int main int A
void polygonint a int b int c intvoid polygonint a int b int c int
void mulint a int b int c intvoid mulint a int b int c int
void DISPPassword void System Disable void Login Failedvoid DISPPassword void System Disable void Login Failed
CLASS 5 int myabsint int rectint int intCLASS 5 int myabsint int rectint int int
typedef int Int A10 Int A a Inttypedef int Int A10 Int A a Int
int mainvoid int x2 xinitial2 int p5 intint mainvoid int x2 xinitial2 int p5 int
IO int a7 int b6 int c5 intIO int a7 int b6 int c5 int
CLASS 5 int myabsint int rectint int intCLASS 5 int myabsint int rectint int int
int add 3 int a int b intint add 3 int a int b int
void main int a32767 printfd a void mainvoid main int a32767 printfd a void main
void insert First node ptrhead int input voidvoid insert First node ptrhead int input void
C overload swap void swapint int void swapdoubleC overload swap void swapint int void swapdouble
2 stringarray 1 c void main void int2 stringarray 1 c void main void int
1 void Xint cols int static blank void1 void Xint cols int static blank void
1 int compconst void p const void q1 int compconst void p const void q
1 void set Progress int progress void set1 void set Progress int progress void set
void Get Arrayint a int size void Printvoid Get Arrayint a int size void Print
1 int compconst void p const void q1 int compconst void p const void q