Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

llvm_verify crashes (Prelude.tail: empty list) when verifying a function whose name contains "__breakpoint__" without a # afterwards #2097

Open
RyanGlScott opened this issue Aug 21, 2024 · 0 comments
Open

llvm_verify crashes (Prelude.tail: empty list) when verifying a function whose name contains "__breakpoint__" without a # afterwards #2097

RyanGlScott opened this issue Aug 21, 2024 · 0 comments
Labels
subsystem: crucible-llvm Issues related to LLVM bitcode verification with crucible-llvm topics: error-handling Issues involving the way SAW responds to an error condition topics: error-messages Issues involving the messages SAW produces on error type: bug Issues reporting bugs or unexpected/unwanted behavior
Milestone
2025T1

Comments

@RyanGlScott
Copy link
Contributor

Consider the following variant of the test0041_invariant_1 test case:

// test.c
#include <stdlib.h>

extern size_t __breakpoint__inv(size_t*);

size_t add2(size_t x) {
  ++x;
  __breakpoint__inv(&x);
  ++x;
  return x;
}
// test.saw
m <- llvm_load_module "test.bc";

let ptr_to_fresh n ty = do {
  p <- llvm_alloc ty;
  x <- llvm_fresh_var n ty;
  llvm_points_to p (llvm_term x);
  return (p, x);
};

let add2_spec = do {
  x <- llvm_fresh_var "x" (llvm_int 64);
  llvm_execute_func [llvm_term x];
  llvm_return (llvm_term {{ x + 2 }});
};

let inv_spec = do {
  (px, x) <- ptr_to_fresh "x" (llvm_int 64);
  llvm_execute_func [px];
  llvm_return (llvm_term {{ x + 1 }});
};

inv <- llvm_verify m "__breakpoint__inv#add2" [] false inv_spec abc;
inv2 <- llvm_verify m "__breakpoint__inv" [] false inv_spec abc;

This SAW script uses the inv_spec twice: once to verify a function named __breakpoint__inv#add2, and once more to verify a function named __breakpoint__inv. The former succeeds, but the latter causes SAW to crash:

$ clang test.c -g -emit-llvm -c
$ ~/Software/saw-1.1/bin/saw test.saw
[12:52:07.373] Loading file "/home/ryanglscott/Documents/Hacking/Haskell/saw-script/test.saw"
[12:52:07.416] Verifying __breakpoint__inv ...
[12:52:07.416] Simulating __breakpoint__inv ...
[12:52:07.417] Checking proof obligations __breakpoint__inv ...
[12:52:07.469] Proof succeeded! __breakpoint__inv
[12:52:07.507] Verifying __breakpoint__inv ...
[12:52:07.507] Simulating __breakpoint__inv ...
[12:52:07.507] Prelude.tail: empty list

From my reading of this code, llvm_verify has a requirement that if the name of the function being verified contains "__breakpoint__", then the function must end with "#<parent_name>", where <parent_name> is the name of the function that contains the breakpoint. Unfortunately, this requirement is not documented anywhere (as far as I can tell), and the error message that SAW produces when you violate this requirement (Prelude.tail: empty list) is rather poor. We should fix the documentation and improve the error message.
@RyanGlScott RyanGlScott added type: bug Issues reporting bugs or unexpected/unwanted behavior subsystem: crucible-llvm Issues related to LLVM bitcode verification with crucible-llvm labels Aug 21, 2024
RyanGlScott added a commit that referenced this issue Aug 21, 2024
@RyanGlScott
resolveSpecName: Panic instead of calling partial tail function (#2097)
738f1dc 
Really, we should be throwing a proper error message here instead of throwing a
`panic`, and we should document the requirement that `__breakpoint__` functions
must end with `#<parent_name>`. That is left as future work (see #2097).
@RyanGlScott RyanGlScott mentioned this issue Aug 21, 2024
Merged
@sauclovian-g sauclovian-g added topics: error-messages Issues involving the messages SAW produces on error topics: error-handling Issues involving the way SAW responds to an error condition labels Nov 8, 2024
@sauclovian-g sauclovian-g added this to the 2025T1 milestone Nov 8, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
subsystem: crucible-llvm Issues related to LLVM bitcode verification with crucible-llvm topics: error-handling Issues involving the way SAW responds to an error condition topics: error-messages Issues involving the messages SAW produces on error type: bug Issues reporting bugs or unexpected/unwanted behavior
Projects
None yet
Milestone
2025T1
Development

No branches or pull requests
2 participants
@RyanGlScott @sauclovian-g