fix assertPred ignoring its boolean flag for equalities

This is a fix for #424. The fix consists in splitting the logic for equality tests based on the value of isTrue. I have separated it as its own function as it's needed for two branches, and Haskell lacks binding or-patterns.
GaloisInc · Aug 20, 2024 · 5f6d898 · 5f6d898
1 parent 649b850
commit 5f6d898
Showing 1 changed file with 39 additions and 6 deletions.
diff --git a/base/src/Data/Macaw/AbsDomain/JumpBounds.hs b/base/src/Data/Macaw/AbsDomain/JumpBounds.hs
@@ -719,6 +719,43 @@ addWithinRangePred cns w l x u
   | otherwise =
     addRangePred cns (intraStackValueExpr cns x) $! mkRangeBound w (fromInteger l) (fromInteger u)
 
+-- | @addExcludeRangePred cns w x l u@ adds a @(x < l) or (u < x)@ constraint over the
+-- `w`-bit-truncated values.  Fails when the bound excludes all possible values.
+addExcludeRangePred ::
+  RegisterInfo (ArchReg arch) =>
+  BlockIntraStackConstraints arch ids -> NatRepr n -> Value arch ids (BVType n) -> Integer -> Integer ->
+  Either String (BranchConstraints arch ids)
+addExcludeRangePred cns w x l u
+  | l <= 0 && u >= maxUnsigned w = Left "Excluded range excludes all possible values"
+  | otherwise =
+    -- compiles it to @(x <= l - 1) or (u + 1 <= x)@
+    disjoinBranchConstraints
+      <$> addUpperBoundPred cns w x (l - 1)
+      <*> addLowerBoundPred cns w (u + 1) x
+
+-- | @assertEqPred cns x w c isTrue@ asserts equality @x = BVValue c w@ is either true or false,
+-- based on `isTrue`.
+assertEqPred ::
+  RegisterInfo (ArchReg arch) =>
+  -- | Constraints that let us evaluate `x`
+  BlockIntraStackConstraints arch ids ->
+  -- | Bitwidth the comparison should apply to
+  NatRepr w ->
+  -- | Value to be constrained
+  Value arch ids (BVType w) ->
+  -- | Numeric constant x should be equal/different to
+  Integer ->
+  -- | `True` if we should assert equality, `False` if we should assert non-equality
+  Bool ->
+  Either String (BranchConstraints arch ids)
+assertEqPred cns w x c isTrue
+  | isTrue =
+    -- x == c becomes c <= x <= c
+    addWithinRangePred cns w c x c
+  | otherwise =
+    -- !(x == c) is handled via !(c <= x <= c) and becomes (x <= c - 1) or (c + 1 <= x)
+    addExcludeRangePred cns w x c c
+
 -- | Assert a predicate is true/false and update bounds.
 --
 -- If it returns a new upper bounds, then that may be used.
@@ -732,12 +769,8 @@ assertPred :: RegisterInfo (ArchReg arch)
 assertPred bnds (AssignedValue a) isTrue = do
   let cns = intraStackConstraints bnds
   case assignRhs a of
-    EvalApp (Eq x (BVValue w c)) ->
-      -- x == c becomes c <= x <= c
-      addWithinRangePred cns w c x c
-    EvalApp (Eq (BVValue w c) x) ->
-      -- x == c becomes c <= x <= c
-      addWithinRangePred cns w c x c
+    EvalApp (Eq x (BVValue w c)) -> assertEqPred cns w x c isTrue
+    EvalApp (Eq (BVValue w c) x) -> assertEqPred cns w x c isTrue
     EvalApp (BVUnsignedLt x (BVValue w c))
       | isTrue ->
         -- x < c becomes x <= c - 1