cbmc:feature/spicy-loops

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

560f984... by Martin Brain <email address hidden> on 2023-08-02

Add Duff's device

52cfd42... by Martin Brain <email address hidden> on 2023-02-24

WIP

ea500da... by Michael Tautschnig <email address hidden> on 2023-01-20

Merge pull request #7494 from tautschnig/bugfixes/7473-recursion

Fix symex coverage reporting of recursive calls

85b7bb9... by Fotis Koutoulakis <email address hidden> on 2023-01-20

Merge pull request #7434 from esteffin/esteffin/incr-smt2-new-regressions

Add regression tests from CBMC folder to incremental SMT2 backend

1412b19... by Michael Tautschnig <email address hidden> on 2023-01-19

Fix symex coverage reporting of recursive calls

Recursive calls have two successors as far as coverage recording in
symex is concerned: the edge back to the beginning of the function as
well as the (pseudo-)edge to instruction after the call. Fix the
invariant to account for this case.

Also, remove debugging-to-stderr.

Fixes: #7473

Co-authored-by: Qiuye-Hua

e913535... by Michael Tautschnig <email address hidden> on 2023-01-20

Merge pull request #6893 from diffblue/unsigned_pointer_offset

make pointer_offset_exprt unsigned

7cb83c1... by Remi Delmas <email address hidden> on 2023-01-17

CONTRACTS: take unsigned offsets into account

f8cc13a... by Daniel Kroening <email address hidden> on 2022-05-27

make pointer_offset_exprt unsigned

This commit changes the type of __CPROVER_POINTER_OFFSET from ssize_t to
size_t. To match, relational operators on pointers are now unsigned, to
enable p+PTRDIFF_MAX+1 > p.

The rationale is subtle. The ISO C 11 standard 6.5.8 par 5 suggests that a
pair of pointers can be compared if either the pointers point into the
object, or one beyond the end of the sequence. The behavior in the case of
a pointer that points before the sequence is undefined. There is a similar
narrative for pointer arithmetic. A pointer with an offset that has a set
most significant bit should thus compare "less than" a pointer with an
offset that has a zero MSB. This suggests an unsigned encoding.

bdc3538... by Enrico Steffinlongo <email address hidden> on 2022-12-13

Add 645 regression tests from cbmc folder

9b6d003... by Michael Tautschnig <email address hidden> on 2023-01-16

replace_expr: check type consistency

Make sure that replace_expr cannot introduce type-inconsistent
expressions. This wouldn't be a fault of replace_expr, but rather
requires fixing the caller. Add preconditions to check this.