use stable to detect cycles in side x y

Moving `add_infl x y` after `destabilize` is potentially more precise but makes 20/01 no-int-context not terminate. The following still widens on g, but only b/c the base analysis introduces some infl g 2 and infl g 3. ~~~ side.c int g; int main(){ /* 1 */ g = 1; /* 2 */ g = 2; /* 3 */ g = 3; } ~~~ `g` appears in the local state after the first assign, then sync after each tf triggers a side, but where is g ever read? TODO: check calls to ctx.global
jerhard · Jul 16, 2019 · 5d090ec · 5d090ec
1 parent cba4dc2
commit 5d090ec
Showing 1 changed file with 4 additions and 8 deletions.
diff --git a/src/solvers/td3.ml b/src/solvers/td3.ml
@@ -41,15 +41,13 @@ module WP =
         if tracing then trace "sol2" "add_infl %a %a\n" S.Var.pretty_trace y S.Var.pretty_trace x;
         HM.replace infl y (VS.add x (try HM.find infl y with Not_found -> VS.empty))
       in
-      let rec destabilize ?side x =
+      let rec destabilize x =
         if tracing then trace "sol2" "destabilize %a on %i\n" S.Var.pretty_trace x (S.Var.line_nr x);
-        if HM.mem called x then assert (HM.find infl x = VS.empty); (* TODO if this is really true, we can remove the check below *)
-        Option.may (fun z -> if S.Var.equal z x then HM.replace wpoint z ()) side;
         let w = HM.find_default infl x VS.empty in
         HM.replace infl x VS.empty;
         VS.iter (fun y ->
           HM.remove stable y;
-          if not (HM.mem called y) then destabilize ?side y) w
+          destabilize y) w
       and solve x phase =
         if tracing then trace "sol2" "solve %a on %i, called: %b, stable: %b\n" S.Var.pretty_trace x (S.Var.line_nr x) (HM.mem called x) (HM.mem stable x);
         init x;
@@ -137,10 +135,8 @@ module WP =
           assert (S.Dom.leq j w); *)
           HM.replace rho y ((if HM.mem wpoint y then S.Dom.widen old else identity) (S.Dom.join old d));
           HM.replace stable y ();
-          if HM.mem wpoint y then
-            destabilize y (* we already are a wpoint, so no need to propagate it anymore *)
-          else
-            destabilize ~side:y y
+          destabilize y;
+          if not (HM.mem stable y) then HM.replace wpoint y ()
         )
       and init x =
         if tracing then trace "sol2" "init %a on %i\n" S.Var.pretty_trace x (S.Var.line_nr x);