This is an archive of the discontinued LLVM Phabricator instance.

Differential D128363

[clang][dataflow] Implement functionality for flow condition variable substitution.
ClosedPublic

Authored by wyt on Jun 22 2022, 10:45 AM.

Details

Reviewers
gribozavr2
hlopko
sgatev
ymandel
xazax.hun
Commits
rGbdfe556dd837: [clang][dataflow] Implement functionality for flow condition variable…
Summary

This patch introduces buildAndSubstituteFlowCondition - given a flow condition token, this function returns the expression of constraints defining the flow condition, with values substituted where specified.

As an example:
Say we have tokens FC1, FC2, FC3:

FlowConditionConstraints: {
 FC1: C1,
 FC2: C2,
 FC3: (FC1 v FC2) ^ C3,
}

buildAndSubstituteFlowCondition(FC3, /*Substitutions:*/{{C1 -> C1'}})
returns a value corresponding to (C1' v C2) ^ C3.

Note:
This function returns the flow condition expressed directly as its constraints, which differs to how we currently represent the flow condition as a token bound to a set of constraints and dependencies. Making the representation consistent may be an option to consider in the future.

Depends On D128357

Diff Detail

Event Timeline

wyt created this revision.Jun 22 2022, 10:45 AM
Herald added a project: Restricted Project. · View Herald TranscriptJun 22 2022, 10:45 AM
Herald added subscribers: martong, tschuett, xazax.hun. · View Herald Transcript
wyt requested review of this revision.Jun 22 2022, 10:45 AM
Herald added a project: Restricted Project. · View Herald TranscriptJun 22 2022, 10:45 AM
Herald added a subscriber: cfe-commits. · View Herald Transcript
wyt added reviewers: gribozavr2, hlopko, sgatev, ymandel, xazax.hun.Jun 22 2022, 11:09 AM
Herald added a subscriber: rnkovacs. · View Herald TranscriptJun 22 2022, 11:09 AM
wyt edited the summary of this revision. (Show Details)Jun 22 2022, 11:10 AM
Harbormaster completed remote builds in B171374: Diff 439092.Jun 22 2022, 11:24 AM
gribozavr2 added inline comments.Jun 22 2022, 11:53 AM
clang/lib/Analysis/FlowSensitive/DataflowAnalysisContext.cpp
174

Could you refactor it into a free function? It does not use 'this', seems like.

236–240

It is better to put special cases (early returns) first.

clang/unittests/Analysis/FlowSensitive/DataflowAnalysisContextTest.cpp
235

Could you do the following: build explicitly a BoolValue that represents the expected result formula, and then ask the SAT solver to prove equivalence between the two? That would be a stronger test than merely checking one implication.

Same in the test below.

xazax.hun added inline comments.Jun 22 2022, 4:42 PM
clang/include/clang/Analysis/FlowSensitive/DataflowAnalysisContext.h
209

Could you elaborate on why do we need this? Why do we care about how flow condition constraints are represented? We should use the solver to ask questions and as far as I understand the solver should work with both representations. Also this function feels like doing two things, building the flow condition from the tokens and doing substitutions. Any reason why those two are not separate functions? Is this for performance reasons?

wyt updated this revision to Diff 439719.Jun 24 2022, 5:54 AM
wyt marked an inline comment as done.

Address comments - improve test clarity by comparing substituted flow condition with an expected value using equivalentBoolValues utility.

Harbormaster completed remote builds in B171840: Diff 439719.Jun 24 2022, 5:55 AM
wyt edited parent revisions, added: D128521: [clang][dataflow] Implement functionality to compare if two boolean values are equivalent.; removed: D128357: [clang][dataflow] Store flow condition constraints in a single `FlowConditionConstraints` map..Jun 24 2022, 6:12 AM
wyt marked 3 inline comments as done.Jun 24 2022, 6:32 AM

@xazax.hun

Could you elaborate on why do we need this?

We are currently working on a pointer nullability analysis here: https://github.com/google/crubit/tree/main/nullability_verification.
One of the things we are trying to do is to check if the flow condition is independent of a variable, done by checking if the formula regardless if the variable is substituted to true or false - requiring buildAndSubstituteFlowCondition.

Why do we care about how flow condition constraints are represented? We should use the solver to ask questions and as far as I understand the solver should work with both representations.

The first approach of representing flow conditions as an atomic boolean token, places the responsibility on the user to handle adding the constraints of the flow condition when checking with the solver.
The second approach of representing flow conditions as a direct conjunction of its constraints, has performance implications as any boolean values with the flow condition appearing in it may grow in size, and the entire conjunction of the flow condition has to be added repeatedly if the flow condition appears in multiple places.

Also this function feels like doing two things, building the flow condition from the tokens and doing substitutions. Any reason why those two are not separate functions? Is this for performance reasons?

You'd build the flow condition by passing in an empty substitutions set. Also, just building the flow condition does not see any use currently.

clang/lib/Analysis/FlowSensitive/DataflowAnalysisContext.cpp
188

@gribozavr2

Could you refactor it into a free function? It does not use 'this', seems like.

We store and retrieve BoolVals in DataflowAnalysisContext. Example as highlighted.

xazax.hun accepted this revision.Jun 24 2022, 8:49 AM
xazax.hun added inline comments.
clang/lib/Analysis/FlowSensitive/DataflowAnalysisContext.cpp
219

I think DenseMap has a constructor that accepts two iterators.

235–238

Should we move this check to the beginning to save work?

This revision is now accepted and ready to land.Jun 24 2022, 8:49 AM
wyt updated this revision to Diff 439810.Jun 24 2022, 10:03 AM
wyt marked 2 inline comments as done.
wyt added a parent revision: D128357: [clang][dataflow] Store flow condition constraints in a single `FlowConditionConstraints` map..

Address comments.

Harbormaster completed remote builds in B171888: Diff 439810.Jun 24 2022, 10:04 AM
gribozavr2 accepted this revision.Jun 24 2022, 3:22 PM
gribozavr2 added inline comments.
clang/include/clang/Analysis/FlowSensitive/DataflowAnalysisContext.h
209

Could you copy the example from the commit description into the doc comment?

clang/unittests/Analysis/FlowSensitive/DataflowAnalysisContextTest.cpp
319

Could you also add a test for negations?

wyt updated this revision to Diff 440119.Jun 27 2022, 1:11 AM
wyt marked an inline comment as done.

Address comments - add example to buildAndSubstituteFlowCondition doc comment, add tests for atomic and negated flow condition.

wyt marked an inline comment as done.Jun 27 2022, 1:13 AM
Harbormaster completed remote builds in B172131: Diff 440119.Jun 27 2022, 1:57 AM
gribozavr2 accepted this revision.Jun 27 2022, 2:17 AM
Closed by commit rGbdfe556dd837: [clang][dataflow] Implement functionality for flow condition variable… (authored by wyt, committed by gribozavr). · Explain WhyJun 27 2022, 2:38 AM
This revision was automatically updated to reflect the committed changes.
gribozavr added a commit: rGbdfe556dd837: [clang][dataflow] Implement functionality for flow condition variable….

Revision Contents

PathSize
clang/
include/
clang/
Analysis/
FlowSensitive/
32 lines
lib/
Analysis/
FlowSensitive/
70 lines
unittests/
Analysis/
FlowSensitive/
128 lines

Diff 439810

clang/include/clang/Analysis/FlowSensitive/DataflowAnalysisContext.h

Show First 20 LinesShow All 189 Lines▼ Show 20 Linespublic:
AtomicBoolValue &forkFlowCondition(AtomicBoolValue &Token); AtomicBoolValue &forkFlowCondition(AtomicBoolValue &Token);
/// Creates a new flow condition that represents the disjunction of the flow /// Creates a new flow condition that represents the disjunction of the flow
/// conditions identified by `FirstToken` and `SecondToken`, and returns its /// conditions identified by `FirstToken` and `SecondToken`, and returns its
/// token. /// token.
AtomicBoolValue &joinFlowConditions(AtomicBoolValue &FirstToken, AtomicBoolValue &joinFlowConditions(AtomicBoolValue &FirstToken,
AtomicBoolValue &SecondToken); AtomicBoolValue &SecondToken);
// FIXME: This function returns the flow condition expressed directly as its
// constraints: (C1 AND C2 AND ...). This differs from the general approach in
// the framework where a flow condition is represented as a token (an atomic
// boolean) with dependencies and constraints tracked in `FlowConditionDeps`
// and `FlowConditionConstraints`: (FC <=> C1 AND C2 AND ...).
// Consider if we should make the representation of flow condition consistent,
// returning an atomic boolean token with separate constraints instead.
//
/// Builds and returns the logical formula defining the flow condition
/// identified by `Token`. If a value in the formula is present as a key in
/// `Substitutions`, it will be substituted with the value it maps to.
BoolValue &buildAndSubstituteFlowCondition(
xazax.hunUnsubmitted
Done
ReplyInline Actions

Could you elaborate on why do we need this? Why do we care about how flow condition constraints are represented? We should use the solver to ask questions and as far as I understand the solver should work with both representations. Also this function feels like doing two things, building the flow condition from the tokens and doing substitutions. Any reason why those two are not separate functions? Is this for performance reasons?

xazax.hun: Could you elaborate on why do we need this? Why do we care about how flow condition constraints…
gribozavr2Unsubmitted
Done
ReplyInline Actions

Could you copy the example from the commit description into the doc comment?

gribozavr2: Could you copy the example from the commit description into the doc comment?
AtomicBoolValue &Token,
llvm::DenseMap<AtomicBoolValue *, BoolValue *> Substitutions);
/// Returns true if and only if the constraints of the flow condition /// Returns true if and only if the constraints of the flow condition
/// identified by `Token` imply that `Val` is true. /// identified by `Token` imply that `Val` is true.
bool flowConditionImplies(AtomicBoolValue &Token, BoolValue &Val); bool flowConditionImplies(AtomicBoolValue &Token, BoolValue &Val);
/// Returns true if and only if the constraints of the flow condition /// Returns true if and only if the constraints of the flow condition
/// identified by `Token` are always true. /// identified by `Token` are always true.
bool flowConditionIsTautology(AtomicBoolValue &Token); bool flowConditionIsTautology(AtomicBoolValue &Token);
Show All 19 Linesprivate:
Solver::Result querySolver(llvm::DenseSet<BoolValue *> Constraints); Solver::Result querySolver(llvm::DenseSet<BoolValue *> Constraints);
/// Returns true if the solver is able to prove that there is no satisfying /// Returns true if the solver is able to prove that there is no satisfying
/// assignment for `Constraints` /// assignment for `Constraints`
bool checkUnsatisfiable(llvm::DenseSet<BoolValue *> Constraints) { bool checkUnsatisfiable(llvm::DenseSet<BoolValue *> Constraints) {
return querySolver(std::move(Constraints)) == Solver::Result::Unsatisfiable; return querySolver(std::move(Constraints)) == Solver::Result::Unsatisfiable;
} }
/// Returns a boolean value as a result of substituting `Val` and its sub
/// values based on entries in `SubstitutionsCache`. Intermediate results are
/// stored in `SubstitutionsCache` to avoid reprocessing values that have
/// already been visited.
BoolValue &substituteBoolValue(
BoolValue &Val,
llvm::DenseMap<BoolValue *, BoolValue *> &SubstitutionsCache);
/// Builds and returns the logical formula defining the flow condition
/// identified by `Token`, sub values may be substituted based on entries in
/// `SubstitutionsCache`. Intermediate results are stored in
/// `SubstitutionsCache` to avoid reprocessing values that have already been
/// visited.
BoolValue &buildAndSubstituteFlowConditionWithCache(
AtomicBoolValue &Token,
llvm::DenseMap<BoolValue *, BoolValue *> &SubstitutionsCache);
std::unique_ptr<Solver> S; std::unique_ptr<Solver> S;
// Storage for the state of a program. // Storage for the state of a program.
std::vector<std::unique_ptr<StorageLocation>> Locs; std::vector<std::unique_ptr<StorageLocation>> Locs;
std::vector<std::unique_ptr<Value>> Vals; std::vector<std::unique_ptr<Value>> Vals;
// Maps from program declarations and statements to storage locations that are // Maps from program declarations and statements to storage locations that are
// assigned to them. These assignments are global (aggregated across all basic // assigned to them. These assignments are global (aggregated across all basic
Show All 40 Lines

clang/lib/Analysis/FlowSensitive/DataflowAnalysisContext.cpp

Show First 20 LinesShow All 163 Lines▼ Show 20 Linesvoid DataflowAnalysisContext::addTransitiveFlowConditionConstraints(
if (DepsIT != FlowConditionDeps.end()) { if (DepsIT != FlowConditionDeps.end()) {
for (AtomicBoolValue *DepToken : DepsIT->second) { for (AtomicBoolValue *DepToken : DepsIT->second) {
addTransitiveFlowConditionConstraints(*DepToken, Constraints, addTransitiveFlowConditionConstraints(*DepToken, Constraints,
VisitedTokens); VisitedTokens);
} }
} }
} }
BoolValue &DataflowAnalysisContext::substituteBoolValue(
BoolValue &Val,
llvm::DenseMap<BoolValue *, BoolValue *> &SubstitutionsCache) {
gribozavr2Unsubmitted
Done
ReplyInline Actions

Could you refactor it into a free function? It does not use 'this', seems like.

gribozavr2: Could you refactor it into a free function? It does not use 'this', seems like.
auto IT = SubstitutionsCache.find(&Val);
if (IT != SubstitutionsCache.end()) {
return *IT->second;
}
BoolValue *Result;
switch (Val.getKind()) {
case Value::Kind::AtomicBool: {
Result = &Val;
break;
}
case Value::Kind::Negation: {
auto &Negation = *cast<NegationValue>(&Val);
auto &Sub = substituteBoolValue(Negation.getSubVal(), SubstitutionsCache);
Result = &getOrCreateNegation(Sub);
wytAuthorUnsubmitted
Done
ReplyInline Actions

@gribozavr2

Could you refactor it into a free function? It does not use 'this', seems like.

We store and retrieve BoolVals in DataflowAnalysisContext. Example as highlighted.

wyt: @gribozavr2 > Could you refactor it into a free function? It does not use 'this', seems like.
break;
}
case Value::Kind::Disjunction: {
auto &Disjunct = *cast<DisjunctionValue>(&Val);
auto &LeftSub =
substituteBoolValue(Disjunct.getLeftSubValue(), SubstitutionsCache);
auto &RightSub =
substituteBoolValue(Disjunct.getRightSubValue(), SubstitutionsCache);
Result = &getOrCreateDisjunction(LeftSub, RightSub);
break;
}
case Value::Kind::Conjunction: {
auto &Conjunct = *cast<ConjunctionValue>(&Val);
auto &LeftSub =
substituteBoolValue(Conjunct.getLeftSubValue(), SubstitutionsCache);
auto &RightSub =
substituteBoolValue(Conjunct.getRightSubValue(), SubstitutionsCache);
Result = &getOrCreateConjunction(LeftSub, RightSub);
break;
}
default:
llvm_unreachable("Unhandled Value Kind");
}
SubstitutionsCache[&Val] = Result;
return *Result;
}
BoolValue &DataflowAnalysisContext::buildAndSubstituteFlowCondition(
AtomicBoolValue &Token,
llvm::DenseMap<AtomicBoolValue *, BoolValue *> Substitutions) {
llvm::DenseMap<BoolValue *, BoolValue *> SubstitutionsCache(
xazax.hunUnsubmitted
Done
ReplyInline Actions

I think DenseMap has a constructor that accepts two iterators.

xazax.hun: I think `DenseMap` has a constructor that accepts two iterators.
Substitutions.begin(), Substitutions.end());
return buildAndSubstituteFlowConditionWithCache(Token, SubstitutionsCache);
}
BoolValue &DataflowAnalysisContext::buildAndSubstituteFlowConditionWithCache(
AtomicBoolValue &Token,
llvm::DenseMap<BoolValue *, BoolValue *> &SubstitutionsCache) {
auto ConstraintsIT = FlowConditionConstraints.find(&Token);
if (ConstraintsIT == FlowConditionConstraints.end()) {
return getBoolLiteralValue(true);
}
auto DepsIT = FlowConditionDeps.find(&Token);
if (DepsIT != FlowConditionDeps.end()) {
for (AtomicBoolValue *DepToken : DepsIT->second) {
auto &NewDep = buildAndSubstituteFlowConditionWithCache(
*DepToken, SubstitutionsCache);
SubstitutionsCache[DepToken] = &NewDep;
}
}
xazax.hunUnsubmitted
Done
ReplyInline Actions

Should we move this check to the beginning to save work?

xazax.hun: Should we move this check to the beginning to save work?
return substituteBoolValue(*ConstraintsIT->second, SubstitutionsCache);
}
gribozavr2Unsubmitted
Done
ReplyInline Actions
auto ConstraintsIt = FlowConditionConstraints.find(&Token);
- if (ConstraintsIt != FlowConditionConstraints.end()) {
- auto &Constraints = *ConstraintsIt->second;
- return substituteBoolVal(Constraints, SubstitutionsCache);
- }
- return getBoolLiteralValue(true);
- }
+ if (ConstraintsIt == FlowConditionConstraints.end()) {
+ return getBoolLiteralValue(true);
+ }
+ auto &Constraints = *ConstraintsIt->second;
+ return substituteBoolVal(Constraints, SubstitutionsCache);
+ }
} // namespace dataflow

It is better to put special cases (early returns) first.

gribozavr2: It is better to put special cases (early returns) first.
} // namespace dataflow } // namespace dataflow
} // namespace clang } // namespace clang
using namespace clang; using namespace clang;
const Expr &clang::dataflow::ignoreCFGOmittedNodes(const Expr &E) { const Expr &clang::dataflow::ignoreCFGOmittedNodes(const Expr &E) {
const Expr *Current = &E; const Expr *Current = &E;
if (auto *EWC = dyn_cast<ExprWithCleanups>(Current)) { if (auto *EWC = dyn_cast<ExprWithCleanups>(Current)) {
Show All 13 Lines

clang/unittests/Analysis/FlowSensitive/DataflowAnalysisContextTest.cpp

Show First 20 LinesShow All 226 Lines▼ Show 20 LinesTEST_F(DataflowAnalysisContextTest, EquivBoolVals) {
// !X != X // !X != X
EXPECT_FALSE(Context.equivalentBoolValues(Context.getOrCreateNegation(X), X)); EXPECT_FALSE(Context.equivalentBoolValues(Context.getOrCreateNegation(X), X));
// !(!X) = X // !(!X) = X
EXPECT_TRUE(Context.equivalentBoolValues( EXPECT_TRUE(Context.equivalentBoolValues(
Context.getOrCreateNegation(Context.getOrCreateNegation(X)), X)); Context.getOrCreateNegation(Context.getOrCreateNegation(X)), X));
// (X || X) == X // (X || X) == X
EXPECT_TRUE( EXPECT_TRUE(
gribozavr2Unsubmitted
Done
ReplyInline Actions

Could you do the following: build explicitly a BoolValue that represents the expected result formula, and then ask the SAT solver to prove equivalence between the two? That would be a stronger test than merely checking one implication.

Same in the test below.

gribozavr2: Could you do the following: build explicitly a BoolValue that represents the expected result…
Context.equivalentBoolValues(Context.getOrCreateDisjunction(X, X), X)); Context.equivalentBoolValues(Context.getOrCreateDisjunction(X, X), X));
// (X || Y) != X // (X || Y) != X
EXPECT_FALSE( EXPECT_FALSE(
Context.equivalentBoolValues(Context.getOrCreateDisjunction(X, Y), X)); Context.equivalentBoolValues(Context.getOrCreateDisjunction(X, Y), X));
// (X || True) == True // (X || True) == True
EXPECT_TRUE(Context.equivalentBoolValues( EXPECT_TRUE(Context.equivalentBoolValues(
Context.getOrCreateDisjunction(X, True), True)); Context.getOrCreateDisjunction(X, True), True));
// (X || False) == X // (X || False) == X
Show All 27 Lines EXPECT_TRUE(Context.equivalentBoolValues(
Context.getOrCreateDisjunction(Context.getOrCreateDisjunction(X, Y), Z), Context.getOrCreateDisjunction(Context.getOrCreateDisjunction(X, Y), Z),
Context.getOrCreateDisjunction(X, Context.getOrCreateDisjunction(Y, Z)))); Context.getOrCreateDisjunction(X, Context.getOrCreateDisjunction(Y, Z))));
// ((X && Y) && Z) == (X && (Y && Z)) // ((X && Y) && Z) == (X && (Y && Z))
EXPECT_TRUE(Context.equivalentBoolValues( EXPECT_TRUE(Context.equivalentBoolValues(
Context.getOrCreateConjunction(Context.getOrCreateConjunction(X, Y), Z), Context.getOrCreateConjunction(Context.getOrCreateConjunction(X, Y), Z),
Context.getOrCreateConjunction(X, Context.getOrCreateConjunction(Y, Z)))); Context.getOrCreateConjunction(X, Context.getOrCreateConjunction(Y, Z))));
} }
TEST_F(DataflowAnalysisContextTest, SubstituteFlowConditionsDisjunctiveFC) {
auto &X = Context.createAtomicBoolValue();
auto &Y = Context.createAtomicBoolValue();
auto &True = Context.getBoolLiteralValue(true);
auto &False = Context.getBoolLiteralValue(false);
// FC = X || Y
auto &FC = Context.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC, Context.getOrCreateDisjunction(X, Y));
// If X is true in FC, FC = X || Y must be true
auto &FCWithXTrue =
Context.buildAndSubstituteFlowCondition(FC, {{&X, &True}});
EXPECT_TRUE(Context.equivalentBoolValues(FCWithXTrue, True));
// If X is false in FC, FC = X || Y is equivalent to evaluating Y
auto &FC1WithXFalse =
Context.buildAndSubstituteFlowCondition(FC, {{&X, &False}});
EXPECT_TRUE(Context.equivalentBoolValues(FC1WithXFalse, Y));
}
TEST_F(DataflowAnalysisContextTest, SubstituteFlowConditionsConjunctiveFC) {
auto &X = Context.createAtomicBoolValue();
auto &Y = Context.createAtomicBoolValue();
auto &True = Context.getBoolLiteralValue(true);
auto &False = Context.getBoolLiteralValue(false);
// FC = X && Y
auto &FC = Context.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC, Context.getOrCreateConjunction(X, Y));
// If X is true in FC, FC = X && Y is equivalent to evaluating Y
auto &FCWithXTrue =
Context.buildAndSubstituteFlowCondition(FC, {{&X, &True}});
EXPECT_TRUE(Context.equivalentBoolValues(FCWithXTrue, Y));
// If X is false in FC, FC = X && Y must be false
auto &FCWithXFalse =
Context.buildAndSubstituteFlowCondition(FC, {{&X, &False}});
EXPECT_TRUE(Context.equivalentBoolValues(FCWithXFalse, False));
}
gribozavr2Unsubmitted
Done
ReplyInline Actions

Could you also add a test for negations?

gribozavr2: Could you also add a test for negations?
TEST_F(DataflowAnalysisContextTest, SubstituteFlowConditionsForkedFC) {
auto &X = Context.createAtomicBoolValue();
auto &Y = Context.createAtomicBoolValue();
auto &Z = Context.createAtomicBoolValue();
auto &True = Context.getBoolLiteralValue(true);
auto &False = Context.getBoolLiteralValue(false);
// FC = X && Y
auto &FC = Context.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC, Context.getOrCreateConjunction(X, Y));
// ForkedFC = FC && Z = X && Y && Z
auto &ForkedFC = Context.forkFlowCondition(FC);
Context.addFlowConditionConstraint(ForkedFC, Z);
// If any of X,Y,Z is true in ForkedFC, ForkedFC = X && Y && Z is equivalent
// to evaluating the conjunction of the remaining values
auto &ForkedFCWithZTrue =
Context.buildAndSubstituteFlowCondition(ForkedFC, {{&Z, &True}});
EXPECT_TRUE(Context.equivalentBoolValues(
ForkedFCWithZTrue, Context.getOrCreateConjunction(X, Y)));
auto &ForkedFCWithYAndZTrue = Context.buildAndSubstituteFlowCondition(
ForkedFC, {{&Y, &True}, {&Z, &True}});
EXPECT_TRUE(Context.equivalentBoolValues(ForkedFCWithYAndZTrue, X));
// If any of X,Y,Z is false in ForkedFC, ForkedFC = X && Y && Z must be false
auto &ForkedFCWithXFalse =
Context.buildAndSubstituteFlowCondition(ForkedFC, {{&X, &False}});
auto &ForkedFCWithYFalse =
Context.buildAndSubstituteFlowCondition(ForkedFC, {{&Y, &False}});
auto &ForkedFCWithZFalse =
Context.buildAndSubstituteFlowCondition(ForkedFC, {{&Z, &False}});
EXPECT_TRUE(Context.equivalentBoolValues(ForkedFCWithXFalse, False));
EXPECT_TRUE(Context.equivalentBoolValues(ForkedFCWithYFalse, False));
EXPECT_TRUE(Context.equivalentBoolValues(ForkedFCWithZFalse, False));
}
TEST_F(DataflowAnalysisContextTest, SubstituteFlowConditionsJoinedFC) {
auto &X = Context.createAtomicBoolValue();
auto &Y = Context.createAtomicBoolValue();
auto &Z = Context.createAtomicBoolValue();
auto &True = Context.getBoolLiteralValue(true);
auto &False = Context.getBoolLiteralValue(false);
// FC1 = X
auto &FC1 = Context.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC1, X);
// FC2 = Y
auto &FC2 = Context.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC2, Y);
// JoinedFC = (FC1 || FC2) && Z = (X || Y) && Z
auto &JoinedFC = Context.joinFlowConditions(FC1, FC2);
Context.addFlowConditionConstraint(JoinedFC, Z);
// If any of X, Y is true in JoinedFC, JoinedFC = (X || Y) && Z is equivalent
// to evaluating the remaining Z
auto &JoinedFCWithXTrue =
Context.buildAndSubstituteFlowCondition(JoinedFC, {{&X, &True}});
auto &JoinedFCWithYTrue =
Context.buildAndSubstituteFlowCondition(JoinedFC, {{&Y, &True}});
EXPECT_TRUE(Context.equivalentBoolValues(JoinedFCWithXTrue, Z));
EXPECT_TRUE(Context.equivalentBoolValues(JoinedFCWithYTrue, Z));
// If Z is true in JoinedFC, JoinedFC = (X || Y) && Z is equivalent to
// evaluating the remaining disjunction (X || Y)
auto &JoinedFCWithZTrue =
Context.buildAndSubstituteFlowCondition(JoinedFC, {{&Z, &True}});
EXPECT_TRUE(Context.equivalentBoolValues(
JoinedFCWithZTrue, Context.getOrCreateDisjunction(X, Y)));
// If any of X, Y is false in JoinedFC, JoinedFC = (X || Y) && Z is equivalent
// to evaluating the conjunction of the other value and Z
auto &JoinedFCWithXFalse =
Context.buildAndSubstituteFlowCondition(JoinedFC, {{&X, &False}});
auto &JoinedFCWithYFalse =
Context.buildAndSubstituteFlowCondition(JoinedFC, {{&Y, &False}});
EXPECT_TRUE(Context.equivalentBoolValues(
JoinedFCWithXFalse, Context.getOrCreateConjunction(Y, Z)));
EXPECT_TRUE(Context.equivalentBoolValues(
JoinedFCWithYFalse, Context.getOrCreateConjunction(X, Z)));
// If Z is false in JoinedFC, JoinedFC = (X || Y) && Z must be false
auto &JoinedFCWithZFalse =
Context.buildAndSubstituteFlowCondition(JoinedFC, {{&Z, &False}});
EXPECT_TRUE(Context.equivalentBoolValues(JoinedFCWithZFalse, False));
}
} // namespace } // namespace