[TG-2356] skip basic block instrumentation from virtual call removal #1812
Conversation
mgudemann
requested review from
chrisr-diffblue,
kroening,
martin-cs,
peterschrammel,
smowton and
tautschnig
as code owners
| { | ||
| return get_bool(ID_C_java_removed_virtual_call); | ||
| } | ||
|
|
There was a problem hiding this comment.
I'm failing to parse the commit message for this one, and I'm not too happy to have Java-specific APIs enter something as general as a source_locationt? You might play the same game as is done with various other irept-children and introduce a java_source_locationt that has those extra functions?
There was a problem hiding this comment.
@tautschnig I don't mind, but please note that source_locationt already has get_java_bytecode_index
There was a problem hiding this comment.
Maybe you can fix that all in one go?
There was a problem hiding this comment.
As this is a fairly large refactoring I've raised an issue (#1824) to tackle this separately.
mgudemann
force-pushed
the
feature/skip_basic_blocks_from_virtual_call_removal
branch
5 times, most recently
from
2b16c13 to
9690e9c
Compare
There was a problem hiding this comment.
Looks good, but the final commit should be squashed into the unit tests commit (or introduced before it) so that each commit compiles (also confusingly GH shows Add possibility to mark instructions to source_locationt before Skip instructions from virtual call removal from instrumentation but this is just GH being weird.
| THEN("instrumentation assertions are inserted") | ||
| { | ||
| REQUIRE( | ||
| !instrument_cover_goals( |
There was a problem hiding this comment.
What does this check? REQUIRE_FALSE might be clearer here.
There was a problem hiding this comment.
nothing much beyond verifying that instrumentation has been done
| // originating from a java virtual function call removal | ||
| if( | ||
| i_it->source_location == source_locationt::nil() || | ||
| !i_it->source_location.get_java_removed_virtual_call()) |
There was a problem hiding this comment.
I think this commit may be in the wrong order as I don't think this function has been introduced yet.
| { | ||
| return get_bool(ID_C_java_removed_virtual_call); | ||
| } | ||
|
|
There was a problem hiding this comment.
As this is a fairly large refactoring I've raised an issue (#1824) to tackle this separately.
| REQUIRE(function != new_goto_functions.function_map.end()); | ||
|
|
||
| const goto_programt &goto_program = function->second.body; | ||
| for(auto it = goto_program.instructions.begin(); |
There was a problem hiding this comment.
Can this not just be a range based for loop?
There was a problem hiding this comment.
Or since you are actually just looking for a specific find, perhaps:
std::find(
goto_program.instructions.begin(),
goto_program.instructions.end(),
[](const instructiont &instruction) {
return instruction.type==goto_program_instruction_typet::GOTO &&
instruction.guard.id() == ID_equal;
});This has the advantage you can require that you find the relevant instruction and make it clear you're only looking for the first equal guarded goto.
There was a problem hiding this comment.
converted to std::find_if
| @@ -94,12 +94,12 @@ INCLUDES= -I .. | |||
|
|
|||
| LIBS = | |||
|
|
|||
| CLEANFILES = goto-instrument$(EXEEXT) | |||
| CLEANFILES = goto-instrument$(EXEEXT) goto-instrument$(LIBEXT) | |||
There was a problem hiding this comment.
Perhaps the intent was already there, but this should be squashed with the commit that introduces the unit tests so that they compile.
| instrument(goto_program, i_it, basic_blocks); | ||
| // do not instrument if instruction has a source location but is marked as | ||
| // originating from a java virtual function call removal | ||
| if( |
There was a problem hiding this comment.
This is misplaced - it should be implemented as a goal filter, see e.g. https://github.com/diffblue/cbmc/blob/develop/src/goto-instrument/cover_filter.cpp#L96
There was a problem hiding this comment.
done, it's now part of bool internal_goals_filtert::operator()(const source_locationt &source_location) const
mgudemann
force-pushed
the
feature/skip_basic_blocks_from_virtual_call_removal
branch
4 times, most recently
from
8a15359 to
ca7cbbf
Compare
This adds a goal_filter to the instrumentation that skips over instructions marked as originating from a removed virtual call.
mgudemann
force-pushed
the
feature/skip_basic_blocks_from_virtual_call_removal
branch
from
ca7cbbf to
e7cf6c6
Compare
| "call and there is no GOTO ASSERT") | ||
| { | ||
| const source_locationt &loc = it->source_location; | ||
| REQUIRE( |
There was a problem hiding this comment.
The printer deals better with simple statements, perhaps:
REQUIRE(loc != source_locationt::nil());
REQUIRE_FALSE(loc.get_java_bytecode_index().empty());
mgudemann
force-pushed
the
feature/skip_basic_blocks_from_virtual_call_removal
branch
from
e7cf6c6 to
d0aea6e
Compare
|
@peterschrammel I see the point, #1830 seems to be more generic. On the other hand, it might introduce a superfluous coverage property, e.g., for virtual calls the first guarded GOTO will always be reached so this basic block is always covered. Then again, this is likely harmless. |
|
Hello. I'm closing this PR as it appears stale and no longer in sync with the repository. Feel free to reopen it if you feel it adds enough value and should be merged, but in that case this will need to be rebased on top of branch |
When a virtual function call is encountered in Java, we replace it by explicit calls to all possible implementing object types.
The coverage instrumentation does not allow for a single bytecode index (the virtual call) to be instrumented several times, which makes sense, as only a single such instrumentation can be placed at the bytecode.
In the current implementation, a coverage property was placed right after the first guarded GOTO, but not on succeeding ones, leading to the situation that coverage was reported differently, depending on the order implementing classes were found. This patch removes instrumentation of GOTO instructions generated via remove_virtual_functions altogether, the function call is considered to be completed and covered if the final target
t_finalis reached. This is the target for each concrete function call.