Add EbpfDomain Catch2 test suite

[elazarg]

Summary

• add a friend accessor so the tests can inspect EbpfDomain internals
• create a dedicated Catch2 suite that covers lattice operations, helper lookups, and environment setup for EbpfDomain
• wire the new suite into the CMake test target

Testing

• ./tests '[ebpf_domain]'

---

https://chatgpt.com/codex/tasks/task_e_68c90da5b05c83299daec10a2b4c3022

Summary by CodeRabbit

• Tests
  • Added a comprehensive test suite for the eBPF analysis domain, covering state transitions, joins/meets, widening/narrowing, map and offset handling, loop counters, and register/stack bounds. Improves coverage and confidence with no user-visible behavior changes.
• Chores
  • Updated build configuration to include the new tests when tests are enabled, ensuring they are compiled and executed in test builds.

[coderabbitai]

Walkthrough

Adds a new Catch2 test suite for EbpfDomain, introduces a friend test-access class, and wires the test into the CMake build gated by VERIFIER_ENABLE_TESTS. No functional changes to production logic beyond the friend declaration.

Changes

Cohort / File(s)	Change Summary
Build configuration CMakeLists.txt	Includes test_ebpf_domain.cpp in the tests target and ALL_TEST glob when VERIFIER_ENABLE_TESTS is enabled.
EbpfDomain test access src/crab/ebpf_domain.hpp	Adds friend class EbpfDomainTestAccess; to allow tests to access private members; no other API or logic changes.
New EbpfDomain tests src/test/test_ebpf_domain.cpp	Adds comprehensive Catch2 tests for EbpfDomain, including test scaffolding (EbpfDomainTestAccess, EbpfDomainTestEnvironment), a mock platform, helpers, and extensive cases covering lattice operations, initialization, constraints, maps, counters, and accessor behaviors.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title "Add EbpfDomain Catch2 test suite" succinctly and accurately summarizes the primary change: adding a Catch2-based test suite for EbpfDomain and wiring it into the build. It is concise, specific, and focused on the main contribution rather than implementation details. The title aligns with the PR objectives and the file-level changes in the raw summary.

✨ Finishing touches

• 📝 Generate Docstrings

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch codex/add-catch2-test-suite-for-ebpfdomain

Tip

👮 Agentic pre-merge checks are now available in preview!

Pro plan users can now enable pre-merge checks in their settings to enforce checklists before merging PRs.

• Built-in checks – Quickly apply ready-made checks to enforce title conventions, require pull request descriptions that follow templates, validate linked issues for compliance, and more.
• Custom agentic checks – Define your own rules using CodeRabbit’s advanced agentic capabilities to enforce organization-specific policies and workflows. For example, you can instruct CodeRabbit’s agent to verify that API documentation is updated whenever API schema files are modified in a PR. Note: Upto 5 custom checks are currently allowed during the preview period. Pricing for this feature will be announced in a few weeks.

Please see the documentation for more information.

Example:

reviews:
  pre_merge_checks:
    custom_checks:
      - name: "Undocumented Breaking Changes"
        mode: "warning"
        instructions: |
          Pass/fail criteria: All breaking changes to public APIs, CLI flags, environment variables, configuration keys, database schemas, or HTTP/GraphQL endpoints must be documented in the "Breaking Change" section of the PR description and in CHANGELOG.md. Exclude purely internal or private changes (e.g., code not exported from package entry points or explicitly marked as internal).

Please share your feedback with us on this Discord post.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coveralls]

Pull Request Test Coverage Report for Build 17777152218

Details

• 322 of 349 (92.26%) changed or added relevant lines in 1 file are covered.
• No unchanged relevant lines lost coverage.
• Overall first build on codex/add-catch2-test-suite-for-ebpfdomain at 89.001%

---

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
src/test/test_ebpf_domain.cpp	322	349	92.26%

Totals
Change from base Build 17748859600:	89.0%
Covered Lines:	8966
Relevant Lines:	10074

---

💛 - Coveralls

[coderabbitai]

Actionable comments posted: 5

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 50855d6 and b931e39.

📒 Files selected for processing (3)

• CMakeLists.txt (1 hunks)
• src/crab/ebpf_domain.hpp (1 hunks)
• src/test/test_ebpf_domain.cpp (1 hunks)

🧰 Additional context used

📓 Path-based instructions (6)

CMakeLists.txt

📄 CodeRabbit inference engine (AGENTS.md)

Maintain C++20 build configuration for the core verifier (e.g., CMAKE_CXX_STANDARD 20) in the top-level CMakeLists.txt

Files:

• CMakeLists.txt

**/*.{c,cc,cpp,h,hpp}

📄 CodeRabbit inference engine (AGENTS.md)

**/*.{c,cc,cpp,h,hpp}: Run the project formatter (./scripts/format-code --staged) before committing to ensure consistent clang-format styling
Ensure new C/C++ sources include the standard SPDX license header (validate via ./scripts/check-license.sh)

Files:

• src/crab/ebpf_domain.hpp
• src/test/test_ebpf_domain.cpp

**/*.{h,hpp}

📄 CodeRabbit inference engine (AGENTS.md)

Headers should prefer #pragma once for include guards; follow existing patterns within each subdirectory

Files:

• src/crab/ebpf_domain.hpp

src/{asm_*,cfg,arith,crab,linux}/**/*.{cc,cpp,h,hpp}

📄 CodeRabbit inference engine (AGENTS.md)

Add new verifier logic under the matching subsystem directory (asm_*, cfg, arith, crab, linux) to keep separation of concerns

Files:

• src/crab/ebpf_domain.hpp

src/test/**/*.{cc,cpp}

📄 CodeRabbit inference engine (AGENTS.md)

Place Catch2 unit/integration tests in src/test and add focused tests when modifying verifier behaviour

Files:

• src/test/test_ebpf_domain.cpp

**/*.{cc,cpp}

📄 CodeRabbit inference engine (AGENTS.md)

Favor explicit error handling and early exits in the verifier to surface problems rather than relying on implicit behaviour

Files:

• src/test/test_ebpf_domain.cpp

🧠 Learnings (2)

📓 Common learnings

Learnt from: CR
PR: vbpf/prevail#0
File: AGENTS.md:0-0
Timestamp: 2025-09-15T22:00:28.296Z
Learning: Applies to src/test/**/*.{cc,cpp} : Place Catch2 unit/integration tests in src/test and add focused tests when modifying verifier behaviour

📚 Learning: 2025-09-15T22:00:28.296Z

Learnt from: CR
PR: vbpf/prevail#0
File: AGENTS.md:0-0
Timestamp: 2025-09-15T22:00:28.296Z
Learning: Applies to src/test/**/*.{cc,cpp} : Place Catch2 unit/integration tests in src/test and add focused tests when modifying verifier behaviour

Applied to files:

• CMakeLists.txt
• src/test/test_ebpf_domain.cpp

🧬 Code graph analysis (1)

src/test/test_ebpf_domain.cpp (2)

src/crab/ebpf_domain.hpp (6)

• reg (90-90)
• reg (92-92)
• reg (94-94)
• EbpfDomain (41-41)
• EbpfDomain (42-42)
• constraints (69-69)

src/platform.hpp (3)

• map_fd (36-36)
• platform_specific_type (18-18)
• map_type (26-26)

🔇 Additional comments (8)

CMakeLists.txt (2)

116-116: Test suite wiring looks correct (gated, linked, tagged).

src/test/test_ebpf_domain.cpp is added under VERIFIER_ENABLE_TESTS and linked with Catch2::Catch2WithMain. No production impact.

---

33-39: Confirm Catch2 pin and C++20 designated‑initializer support across CI

Catch2 is pinned to v3.10.0 (current v3 release; released Aug 25, 2025). MSVC (VS 2022) supports C++20 designated initializers only when compiled with /std:c++20 or /std:c++latest and enforces restrictions (designators must follow member declaration order; cannot mix designated and positional initializers; nested-designator support is limited). Ensure CI images for GCC/Clang/MSVC enable C++20 and use Catch2 v3.10.0, and verify tests’ designated‑initializer usage is compatible with MSVC restrictions.

Locations: CMakeLists.txt: 33–39; also applies to 146–151, 203–224

src/test/test_ebpf_domain.cpp (5)

1-2: License header present and correct.

Meets SPDX requirement for new sources.

---

76-145: Test platform shim is cohesive and thread‑local safe.

Function pointers and TLS map types isolate tests from production platform.

---

178-182: Helper for domain construction is clear.

Top stack + injected numeric domain mirrors production constructors.

---

184-190: as_set bottom handling is correct.

Avoids leaking “bottom” markers into expectations.

---

490-519: Map descriptor range tests cover both consistent and inconsistent cases well.

Good coverage of type join, range limiting, and property aggregation.

Also applies to: 521-535, 537-550

src/crab/ebpf_domain.hpp (1)

36-36: Test-only friend is fine — only referenced in tests.
Search shows EbpfDomainTestAccess only in src/test/test_ebpf_domain.cpp; friend declaration at src/crab/ebpf_domain.hpp:36. No ABI/behavior change; no action required.

[coderabbitai]

🧹 Nitpick

Make the test accessor non-instantiable.

Prevent accidental construction; it’s a pure static helper.

 class EbpfDomainTestAccess {
   public:
+    EbpfDomainTestAccess() = delete;
+    EbpfDomainTestAccess(const EbpfDomainTestAccess&) = delete;
+    EbpfDomainTestAccess& operator=(const EbpfDomainTestAccess&) = delete;

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	using namespace prevail;
	namespace prevail {
	class EbpfDomainTestAccess {
	public:
	static NumAbsDomain& numeric(EbpfDomain& dom) { return dom.m_inv; }
	static const NumAbsDomain& numeric(const EbpfDomain& dom) { return dom.m_inv; }
	static ArrayDomain& stack(EbpfDomain& dom) { return dom.stack; }
	static const ArrayDomain& stack(const EbpfDomain& dom) { return dom.stack; }
	static TypeDomain& types(EbpfDomain& dom) { return dom.type_inv; }
	static const TypeDomain& types(const EbpfDomain& dom) { return dom.type_inv; }
	static std::optional<Variable> type_offset_variable(const Reg& reg, int type) {
	return EbpfDomain::get_type_offset_variable(reg, type);
	}
	static std::optional<Variable> type_offset_variable(const EbpfDomain& dom, const Reg& reg) {
	return dom.get_type_offset_variable(reg);
	}
	static std::optional<Variable> type_offset_variable(const EbpfDomain& dom, const Reg& reg,
	const NumAbsDomain& inv) {
	return dom.get_type_offset_variable(reg, inv);
	}
	static std::optional<uint32_t> map_type(const EbpfDomain& dom, const Reg& reg) { return dom.get_map_type(reg); }
	static std::optional<uint32_t> map_inner_map_fd(const EbpfDomain& dom, const Reg& reg) {
	return dom.get_map_inner_map_fd(reg);
	}
	static Interval map_key_size(const EbpfDomain& dom, const Reg& reg) { return dom.get_map_key_size(reg); }
	static Interval map_value_size(const EbpfDomain& dom, const Reg& reg) { return dom.get_map_value_size(reg); }
	static Interval map_max_entries(const EbpfDomain& dom, const Reg& reg) { return dom.get_map_max_entries(reg); }
	static bool map_fd_range(const EbpfDomain& dom, const Reg& reg, int32_t* start_fd, int32_t* end_fd) {
	return dom.get_map_fd_range(reg, start_fd, end_fd);
	}
	};
	using namespace prevail;
	namespace prevail {
	class EbpfDomainTestAccess {
	public:
	EbpfDomainTestAccess() = delete;
	EbpfDomainTestAccess(const EbpfDomainTestAccess&) = delete;
	EbpfDomainTestAccess& operator=(const EbpfDomainTestAccess&) = delete;
	static NumAbsDomain& numeric(EbpfDomain& dom) { return dom.m_inv; }
	static const NumAbsDomain& numeric(const EbpfDomain& dom) { return dom.m_inv; }
	static ArrayDomain& stack(EbpfDomain& dom) { return dom.stack; }
	static const ArrayDomain& stack(const EbpfDomain& dom) { return dom.stack; }
	static TypeDomain& types(EbpfDomain& dom) { return dom.type_inv; }
	static const TypeDomain& types(const EbpfDomain& dom) { return dom.type_inv; }
	static std::optional<Variable> type_offset_variable(const Reg& reg, int type) {
	return EbpfDomain::get_type_offset_variable(reg, type);
	}
	static std::optional<Variable> type_offset_variable(const EbpfDomain& dom, const Reg& reg) {
	return dom.get_type_offset_variable(reg);
	}
	static std::optional<Variable> type_offset_variable(const EbpfDomain& dom, const Reg& reg,
	const NumAbsDomain& inv) {
	return dom.get_type_offset_variable(reg, inv);
	}
	static std::optional<uint32_t> map_type(const EbpfDomain& dom, const Reg& reg) { return dom.get_map_type(reg); }
	static std::optional<uint32_t> map_inner_map_fd(const EbpfDomain& dom, const Reg& reg) {
	return dom.get_map_inner_map_fd(reg);
	}
	static Interval map_key_size(const EbpfDomain& dom, const Reg& reg) { return dom.get_map_key_size(reg); }
	static Interval map_value_size(const EbpfDomain& dom, const Reg& reg) { return dom.get_map_value_size(reg); }
	static Interval map_max_entries(const EbpfDomain& dom, const Reg& reg) { return dom.get_map_max_entries(reg); }
	static bool map_fd_range(const EbpfDomain& dom, const Reg& reg, int32_t* start_fd, int32_t* end_fd) {
	return dom.get_map_fd_range(reg, start_fd, end_fd);
	}
	};

🤖 Prompt for AI Agents

In src/test/test_ebpf_domain.cpp around lines 33-73, the EbpfDomainTestAccess
class is a pure static helper but is currently instantiable; make it
non-instantiable by deleting its constructors and assignment operators: add a
deleted default constructor (EbpfDomainTestAccess() = delete;), delete the
destructor if desired, and delete copy and move constructors/assignment
(EbpfDomainTestAccess(const EbpfDomainTestAccess&) = delete;
EbpfDomainTestAccess& operator=(const EbpfDomainTestAccess&) = delete;
EbpfDomainTestAccess(EbpfDomainTestAccess&&) = delete; EbpfDomainTestAccess&
operator=(EbpfDomainTestAccess&&) = delete;) so the class cannot be constructed
or copied.

[coderabbitai]

🧹 Nitpick

RAII env resets global TLS; consider snapshot/restore for stricter isolation.

Optional: snapshot previous thread_local_options, program info, and g_test_map_types then restore in dtor instead of zeroing to defaults. Reduces inter-test coupling if future tests rely on prior non-defaults.

🤖 Prompt for AI Agents

In src/test/test_ebpf_domain.cpp around lines 149 to 176, the RAII test
environment unconditionally clears and zeroes global/thread-local state
(g_test_map_types, thread_local_program_info, thread_local_options,
variable_registry) which may break tests that rely on prior non-default TLS;
modify the constructor to save copies of the previous thread_local_options,
thread_local_program_info (or its underlying ProgramInfo), and g_test_map_types
before mutating them, and modify the destructor to restore those saved snapshots
instead of clearing/zeroing — ensure you use move semantics only for the new
test data but keep backups as values, and restore them in the destructor to
return global/TLS state to its original values.

[coderabbitai]

🧹 Nitpick

Widening clamp assertion is precise; guard includes for fixed-width ints.

int32_t is used later; include <cstdint> explicitly to avoid transitive-dependency flakiness.

 #include <algorithm>
 #include <array>
+#include <cstdint>
 #include <limits>

Committable suggestion skipped: line range outside the PR's diff.

🤖 Prompt for AI Agents

In src/test/test_ebpf_domain.cpp around lines 326 to 349, the test uses int32_t
but does not include the header that defines fixed-width integer types; add a
direct include for <cstdint> at the top of this file (or the nearest test header
includes) so int32_t is guaranteed to be available and the test doesn't rely on
transitive includes.

[coderabbitai]

🧹 Nitpick

Avoid magic number for metadata lower bound.

Name the -4098 bound once to ease future changes.

-        REQUIRE(inv.eval_interval(variable_registry->meta_offset()) == Interval(-4098, 0));
+        constexpr int kMetaLowerBound = -4098;
+        REQUIRE(inv.eval_interval(variable_registry->meta_offset()) == Interval(kMetaLowerBound, 0));

Apply similarly in the packet initialization test.

Also applies to: 400-418

🤖 Prompt for AI Agents

In src/test/test_ebpf_domain.cpp around lines 370 to 398 (also apply the same
change at 400-418), replace the magic literal -4098 with a named constant:
declare a descriptive constant (e.g. const int META_OFFSET_MIN = -4098) near the
test file top or in the test fixture and use that constant in the
REQUIRE(assertion) for meta_offset() so the bound is named once and reused in
both packet and metadata initialization tests; update any other occurrences in
the referenced range to use the same constant.

[coderabbitai]

🧹 Nitpick

Option toggle scope.

You flip check_for_termination mid-test; if future sections add more assertions after this, state may leak. Optional: use a small guard to restore the prior value on scope exit.

struct OptionsGuard {
  ebpf_verifier_options_t saved;
  OptionsGuard() : saved(thread_local_options) {}
  ~OptionsGuard() { thread_local_options = saved; }
};
// usage:
// OptionsGuard guard;
// thread_local_options.cfg_opts.check_for_termination = true;

🤖 Prompt for AI Agents

In src/test/test_ebpf_domain.cpp around lines 552 to 568, the test toggles
thread_local_options.cfg_opts.check_for_termination mid-test which can leak
modified state into later tests; wrap the change in a scope guard that saves the
previous thread_local_options (or at least the cfg_opts.check_for_termination
flag) on construction and restores it on destruction so the original option
value is reinstated when the test block exits (use an RAII-style guard or
explicit save/restore immediately before and after setting the flag).