Closed igcontreras closed 4 years ago
@arie: The problem seems simple. We don't create a shadow.mem.out
annotation if the created new memory is read-only but I think we should because like in this case, the function allocates memory and returns and some caller will do something with this.
The fix is just to comment these two lines: https://github.com/seahorn/sea-dsa/blob/master/src/ShadowMem.cc#L905 https://github.com/seahorn/sea-dsa/blob/master/src/ShadowMem.cc#L1094
This has been fixed in commit a393e0e43214f8a30d1241a08f2fe00983371948
In that graph you can see a node only reachable from the return cell that is only read in function
find_anchor_wl_entry
.But no shadow mem annotation:
Sources: only-ret.zip