Skip to content

Latest commit

 

History

History
185 lines (131 loc) · 4.55 KB

README.md

File metadata and controls

185 lines (131 loc) · 4.55 KB

wstat

CircleCI Generic badge

Wstat a statical analyzer for the While toy language. It relies on Abstract Interpretation for run a sound analysis.

While Language

The syntax of the While language is given by the following grammar.

Stmt  : Var := AExpr
      | assert BExpr
      | Stmt ; Stmt
      | skip
      | if BExpr then Stmt else Stmt endif
      | while BExpr do Stmt done

AExpr : ( AExpr )
      | Int
      | Var
      | AExpr + AExpr
      | AExpr - AExpr
      | AExpr * AExpr
      | AExpr / AExpr
      | [Int   , Int]
      | [neginf, Int]
      | [Int   , posinf]
      | [neginf, posinf]

BExpr : ( BExpr )
      | Bool
      | not BExpr
      | BExpr and BExpr
      | BExpr or  BExpr
      | AExpr !=  AExpr
      | AExpr  =  AExpr
      | AExpr <=  AExpr
      | AExpr >=  AExpr
      | AExpr  <  AExpr
      | AExpr  >  AExpr

Var   : [a-z][a-zA-Z]*
Int   : [1-9][0-9]*
Bool  : true | false

One can include comments surrounding them in #s

Examples

x := 0;
while x < 40 do
    x := (x + 1)
done
x := [0, posinf]; # nondeterministic choice #
if (x <= 10) then
    y := 1
else
    y := 0
endif
x := 0;
y := 1;
while true do
    y := y + 1
done

About abstract interpretation

The wstat tool is based on abstract interpretation. It analyzes a source program code and infers sound invariants. You can choose between five different abstract domains:

  • Simple Sign Domain:

Simple sign Domain

  • Sign Domain:

Sign domain

  • Interval Domain:

Interval domain

  • Congruence Domain:

Congruence domain

  • Reduction (Interval x Congruence) Domain

Here you can see some results using the interval domain:

Interval analysis on terminating program

Interval analysis on non-terminating program

Interval analysis on division by zero

Adding a new Concrete non-relational domain

It is possible to implement a new domain and plug it in wstat, this domain has to comply with some conditions:

  1. The domain has to be a non-relational domain
  2. The State domain correspond to the new domain has to be representable in a map to be automatically inferred, anyway the State domain auto-inferred from the given Value domain defines only the abstract domain operations, it does not define the conditional operator

To define a new domain you have to follow these steps:

  1. Build the (non-relational) domain, add the new module in the src/Domains directory
  2. Add the new domain's name in the Domains.DomainsList module
  3. Add the corresponding initial-state builder in the InitialStateBuilder module
  4. Add in the main the procedure to run the analysis instantiated with the relative initial-state builder

Run Key examples

All the key examples initialized their variables, you do not have to init them. For each concrete domain implemented we have done a couple of key examples:

  • Sign Domain:

    • sign
  • Interval Domain:

    • i
  • Congruence Domain:

    • congruence
  • Reduction (Interval x Congruence) Domain:

    • product

Installation

Installation prerequisites

  • Stack (version 1.7.1 or newer)

On Unix System install as:

curl -sSL https://get.haskellstack.org/ | sh

Or

wget -qO- https://get.haskellstack.org/ | sh

Get Started

Before the first use build dependecies:

./init

Build the project:

./build

Test the project:

./spec

Run the project:

./run

Authors

License

This project is licensed under the BSD-3 License - see the LICENSE.md file for details