Support null-pointer without operand in interpreter

[mgudemann]

Before the interpreter evaluate function always expected a pointer type to have an operand, but we can have NULL pointers without operand, in the example it was from cprover_string_content

[allredj]

Passed Diffblue compatibility checks (cbmc commit: 624d1aa).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84141522

[tautschnig]

Sorry, not being changed here, but as I'm trying to understand the code: line 334 suggests there is a type ID_address_of?

[thk123]

That surely must be in error!

[mgudemann]

I removed this (and one other occurrence) I don't think those can be types

[tautschnig]

What does a pointer-typed constant (mind the test in line 300) with operands even look like?

[thk123]

Constant memory offset? void *x = 0x100? Don't know if that is ever what you want

[mgudemann]

@tautschnig this for example

java::@inflight_exception
constant
  * type: pointer
      * width: 64
      * #no_nondet_initialization: 1
      0: empty
  * value: 0000000000000000000000000000000000000000000000000000000000000000
  0: constant
      * type: pointer
          * width: 64
          * #no_nondet_initialization: 1
          0: empty
      * value: NULL

effectively this here was the culprit for the failed to evaluate expression: null:

cprover_string_content::cprover_string_content
constant
  * type: pointer
      * width: 64
      0: unsignedbv
          * width: 16
  * value: NULL
  * #source_location: 
    * file: org/apache/tika/parser/prt/PRTParser.java
    * line: 222
    * function: java::org.apache.tika.parser.prt.PRTParser.extractText:([BZ)Ljava/lang/String;
    * java_bytecode_index: 22
!! failed to evaluate expression: null

(both first name then .pretty output)

[thk123]

That is definitely wrong (!) Could you raise a ticket either on issues here or on Jira to track this down. @LAJW I bet this is why you had some weird edge case handling code for null pointers!

[tautschnig]

You might just do expr.is_zero(), although config.ansi_c.NULL_is_zero should actually be considered.

[mgudemann]

made it i.is_zero() I am not sure that java correctly sets the NULL_is_zero in any case

[allredj]

Passed Diffblue compatibility checks (cbmc commit: 8b3bfaa).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84148025

[allredj]

Passed Diffblue compatibility checks (cbmc commit: 56ef1d4).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84153742

[thk123]

I don't know how feasible this is, but I have no idea what this change does so it'd be great to ad a (unit?) test.

[mgudemann]

@thk123 this fixes an error message from the interpreter. It should be possible to call the evaluate method f the interpreter and to check the result.

[allredj]

Passed Diffblue compatibility checks (cbmc commit: 55a1dfe).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84304603

[smowton]

I don't have a strong opinion which one we want, but surely there should be one correct form of a null pointer constant, and the interpreter should understand that one form?

@tautschnig the "operand" form is I believe inspired by the constant object pointers produced by prop_convt::get, which will make something like 0x100 (operand &obj_xyz), thus providing both the address and the meaning of that address. The null with operands is giving the numerical representation (0) and the symbolic one (null).

[allredj]

This PR failed Diffblue compatibility checks (cbmc commit: bce73d4).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84403064
Status will be re-evaluated on next push.
Please contact @peterschrammel, @thk123, or @allredj for support.

Common spurious failures:

• the cbmc commit has disappeared in the mean time (e.g. in a force-push)
• the author is not in the list of contributors (e.g. first-time contributors).

[thk123]

@smowton - thanks for this that makes sense. But null_pointer_exprt returns the no-operand version - so it should be updated to return this op'd version if this is really is the "correct" format for a pointer. This should also be documented (perhaps in pointer_typet/null_pointer_exprt/address_of_exprt)

[thk123]

Thanks for the test!

💡 can we get one for the other kind of null pointer too?
🚫 avoid putting code only required for test in the main src

[thk123]

🚫 This is required for the unit test right? I think it is cleaner to declare friend class interpreter_testt and then put this into the unit folder 0 as it stands you might as well make evaluate public no?

[mgudemann]

will go with the friend class, that is hopefully less controversial

[thk123]

⛏️ You can use

REQUIRE_THAT(mp_vector, Catch::Matchers::Vector::Equals<mp_integer>{{0}});

To check that the array is exactly {0}

[smowton]

It might be better to say there is a correct format in a particular place. The interpreter operates over traces, which have been produced by prop_convt::get'ing all the symbols in a particular equation. My guess is it's behaving differently for constants given in the input equation vs. symbols that have been solved for a zero / null value.

[mgudemann]

@thk123 addressed your comments

[allredj]

This PR failed Diffblue compatibility checks (cbmc commit: d4f9fb0).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84421606
Status will be re-evaluated on next push.
Please contact @peterschrammel, @thk123, or @allredj for support.

Common spurious failures:

• the cbmc commit has disappeared in the mean time (e.g. in a force-push)
• the author is not in the list of contributors (e.g. first-time contributors).

[majakusber]

Since all of the if/else if return, you can make them all ifs.

[allredj]

Passed Diffblue compatibility checks (cbmc commit: d22f26a).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84449831

[allredj]

Passed Diffblue compatibility checks (cbmc commit: 7bc468d).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84545908

[mgudemann]

based on #2935

[allredj]

Passed Diffblue compatibility checks (cbmc commit: f7e9715).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/84558263