cbmc/boolbv__quantifier_8cpp_source.html

/*******************************************************************\


Module:


Author: Daniel Kroening, kroening@kroening.com


\*******************************************************************/


#include <util/arith_tools.h>

#include <util/bitvector_types.h>

#include <util/expr_util.h>

#include <util/invariant.h>

#include <util/simplify_expr.h>


#include "boolbv.h"


static bool expr_eq(const exprt &expr1, const exprt &expr2)

{

  return skip_typecast(expr1) == skip_typecast(expr2);

}


static std::optional<constant_exprt>


get_quantifier_var_min(const exprt &var_expr, const exprt &quantifier_expr)

{

  if(quantifier_expr.id()==ID_or)

  {

    for(auto &x : quantifier_expr.operands())

    {

      if(x.id()!=ID_not)

        continue;

      exprt y = to_not_expr(x).op();

      if(y.id()!=ID_ge)

        continue;

      const auto &y_binary = to_binary_relation_expr(y);

      if(expr_eq(var_expr, y_binary.lhs()) && y_binary.rhs().is_constant())

      {

        return to_constant_expr(y_binary.rhs());

      }

    }


    if(var_expr.type().id() == ID_unsignedbv)

      return from_integer(0, var_expr.type());

  }

  else if(quantifier_expr.id() == ID_and)

  {

    // The minimum variable can be of the form `var_expr >= constant`, or

    // it can be of the form `var_expr == constant` (e.g. in the case where

    // the interval that bounds the variable is a singleton interval (set

    // with only one element)).

    for(auto &x : quantifier_expr.operands())

    {

      if(x.id() != ID_ge && x.id() != ID_equal)

        continue;

      const auto &x_binary = to_binary_relation_expr(x);

      if(expr_eq(var_expr, x_binary.lhs()) && x_binary.rhs().is_constant())

      {

        return to_constant_expr(x_binary.rhs());

      }

    }


    if(var_expr.type().id() == ID_unsignedbv)

      return from_integer(0, var_expr.type());

  }


  return {};

}


static std::optional<constant_exprt>


get_quantifier_var_max(const exprt &var_expr, const exprt &quantifier_expr)

{

  if(quantifier_expr.id()==ID_or)

  {

    for(auto &x : quantifier_expr.operands())

    {

      if(x.id()!=ID_ge)

        continue;

      const auto &x_binary = to_binary_relation_expr(x);

      if(expr_eq(var_expr, x_binary.lhs()) && x_binary.rhs().is_constant())

      {

        const constant_exprt &over_expr = to_constant_expr(x_binary.rhs());


        mp_integer over_i = numeric_cast_v<mp_integer>(over_expr);


        over_i-=1;

        return from_integer(over_i, x_binary.rhs().type());

      }

    }

  }

  else

  {

    // There are two potential forms we could come across here. The first one

    // is `!(var_expr >= constant)` - identified by the first if branch - and

    // the second is `var_expr == constant` - identified by the second else-if

    // branch. The second form could be met if previous simplification has

    // identified a singleton interval - see simplify_boolean_expr.cpp.

    for(auto &x : quantifier_expr.operands())

    {

      if(x.id() == ID_not)

      {

        exprt y = to_not_expr(x).op();

        if(y.id() != ID_ge)

          continue;

        const auto &y_binary = to_binary_relation_expr(y);

        if(expr_eq(var_expr, y_binary.lhs()) && y_binary.rhs().is_constant())

        {

          const constant_exprt &over_expr = to_constant_expr(y_binary.rhs());

          mp_integer over_i = numeric_cast_v<mp_integer>(over_expr);

          over_i -= 1;

          return from_integer(over_i, y_binary.rhs().type());

        }

      }

      else if(x.id() == ID_equal)

      {

        const auto &y_binary = to_binary_relation_expr(x);

        if(expr_eq(var_expr, y_binary.lhs()) && y_binary.rhs().is_constant())

        {

          return to_constant_expr(y_binary.rhs());

        }

      }

      else

      {

        // If you need special handling for a particular expression type (say,

        // after changes to the simplifier) you need to make sure that you add

        // an `else if` branch above, otherwise the expression will get skipped

        // and the constraints will not propagate correctly.

        continue;

      }

    }

  }


  return {};

}


static std::optional<exprt> eager_quantifier_instantiation(

  const quantifier_exprt &expr,

  const namespacet &ns)

{

  if(expr.variables().size() > 1)

  {

    // Qx,y.P(x,y) is the same as Qx.Qy.P(x,y)

    auto new_variables = expr.variables();

    new_variables.pop_back();

    auto new_expression = quantifier_exprt(

      expr.id(),

      expr.variables().back(),

      quantifier_exprt(expr.id(), new_variables, expr.where()));

    return eager_quantifier_instantiation(new_expression, ns);

  }


  const symbol_exprt &var_expr = expr.symbol();


  const exprt where_simplified = simplify_expr(expr.where(), ns);


  if(

    (where_simplified.is_true() || where_simplified.is_false()) &&

    (var_expr.type().id() == ID_integer ||

     var_expr.type().id() == ID_rational || var_expr.type().id() == ID_real ||

     var_expr.type().id() == ID_bool ||

     (can_cast_type<bitvector_typet>(var_expr.type()) &&

      to_bitvector_type(var_expr.type()).get_width() > 0)))

  {

    return where_simplified;

  }


  if(var_expr.is_boolean())

  {

    // Expand in full.

    // This grows worst-case exponentially in the quantifier nesting depth.

    if(expr.id() == ID_forall)

    {

      // ∀b.f(b) <===> f(0)∧f(1)

      return and_exprt(

        expr.instantiate({false_exprt()}), expr.instantiate({true_exprt()}));

    }

    else if(expr.id() == ID_exists)

    {

      // ∃b.f(b) <===> f(0)∨f(1)

      return or_exprt(

        expr.instantiate({false_exprt()}), expr.instantiate({true_exprt()}));

    }

    else

      UNREACHABLE;

  }


  const std::optional<constant_exprt> min_i =

    get_quantifier_var_min(var_expr, where_simplified);

  const std::optional<constant_exprt> max_i =

    get_quantifier_var_max(var_expr, where_simplified);


  if(!min_i.has_value() || !max_i.has_value())

    return {};


  mp_integer lb = numeric_cast_v<mp_integer>(min_i.value());

  mp_integer ub = numeric_cast_v<mp_integer>(max_i.value());


  if(lb > ub)

    return {};


  auto expr_simplified =

    quantifier_exprt(expr.id(), expr.variables(), where_simplified);


  std::vector<exprt> expr_insts;

  for(mp_integer i = lb; i <= ub; ++i)

  {

    exprt constraint_expr =

      expr_simplified.instantiate({from_integer(i, var_expr.type())});

    expr_insts.push_back(constraint_expr);

  }


  if(expr.id() == ID_forall)

  {

    // maintain the domain constraint if it isn't guaranteed

    // by the instantiations (for a disjunction the domain

    // constraint is implied by the instantiations)

    if(where_simplified.id() == ID_and)

    {

      expr_insts.push_back(binary_predicate_exprt(

        var_expr, ID_gt, from_integer(lb, var_expr.type())));

      expr_insts.push_back(binary_predicate_exprt(

        var_expr, ID_le, from_integer(ub, var_expr.type())));

    }


    return simplify_expr(conjunction(expr_insts), ns);

  }

  else if(expr.id() == ID_exists)

  {

    // maintain the domain constraint if it isn't trivially satisfied

    // by the instantiations (for a conjunction the instantiations are

    // stronger constraints)

    if(where_simplified.id() == ID_or)

    {

      expr_insts.push_back(binary_predicate_exprt(

        var_expr, ID_gt, from_integer(lb, var_expr.type())));

      expr_insts.push_back(binary_predicate_exprt(

        var_expr, ID_le, from_integer(ub, var_expr.type())));

    }


    return simplify_expr(disjunction(expr_insts), ns);

  }


  UNREACHABLE;

}


literalt boolbvt::convert_quantifier(const quantifier_exprt &src)

{

  PRECONDITION(src.id() == ID_forall || src.id() == ID_exists);


  // We first worry about the scoping of the symbols bound by the quantifier.

  auto fresh_symbols = fresh_binding(src);


  // replace in where()

  auto where_replaced = src.instantiate(fresh_symbols);


  // produce new quantifier expression

  auto new_src =

    quantifier_exprt(src.id(), std::move(fresh_symbols), where_replaced);


  const auto res = eager_quantifier_instantiation(src, ns);


  if(res)

    return convert_bool(*res);


  // we failed to instantiate here, need to pass to post-processing

  quantifier_list.emplace_back(quantifiert(src, prop.new_variable()));


  return quantifier_list.back().l;

}


void boolbvt::finish_eager_conversion_quantifiers()

{

  if(quantifier_list.empty())

    return;


  // we do not yet have any elaborate post-processing

  for(const auto &q : quantifier_list)

    conversion_failed(q.expr);

}


from_integer
constant_exprt from_integer(const mp_integer &int_value, const typet &type)
Definition arith_tools.cpp:99

arith_tools.h

bitvector_types.h
Pre-defined bitvector types.

to_bitvector_type
const bitvector_typet & to_bitvector_type(const typet &type)
Cast a typet to a bitvector_typet.
Definition bitvector_types.h:32

boolbv.h

expr_eq
static bool expr_eq(const exprt &expr1, const exprt &expr2)
A method to detect equivalence between experts that can contain typecast.
Definition boolbv_quantifier.cpp:18

get_quantifier_var_max
static std::optional< constant_exprt > get_quantifier_var_max(const exprt &var_expr, const exprt &quantifier_expr)
To obtain the max value for the quantifier variable of the specified forall/exists operator.
Definition boolbv_quantifier.cpp:79

eager_quantifier_instantiation
static std::optional< exprt > eager_quantifier_instantiation(const quantifier_exprt &expr, const namespacet &ns)
Definition boolbv_quantifier.cpp:153

get_quantifier_var_min
static std::optional< constant_exprt > get_quantifier_var_min(const exprt &var_expr, const exprt &quantifier_expr)
To obtain the min value for the quantifier variable of the specified forall/exists operator.
Definition boolbv_quantifier.cpp:27

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

and_exprt
Boolean AND.
Definition std_expr.h:2125

arrayst::ns
const namespacet & ns
Definition arrays.h:56

binary_predicate_exprt
A base class for expressions that are predicates, i.e., Boolean-typed, and that take exactly two argu...
Definition std_expr.h:731

binding_exprt::where
exprt & where()
Definition std_expr.h:3266

binding_exprt::variables
variablest & variables()
Definition std_expr.h:3256

binding_exprt::instantiate
exprt instantiate(const exprt::operandst &) const
substitute free occurrences of the variables in where() by the given values
Definition std_expr.cpp:250

boolbvt::quantifiert
Definition boolbv.h:263

boolbvt::fresh_binding
binding_exprt::variablest fresh_binding(const binding_exprt &)
create new, unique variables for the given binding
Definition boolbv.cpp:557

boolbvt::finish_eager_conversion_quantifiers
void finish_eager_conversion_quantifiers()
Definition boolbv_quantifier.cpp:293

boolbvt::convert_quantifier
virtual literalt convert_quantifier(const quantifier_exprt &expr)
Definition boolbv_quantifier.cpp:268

boolbvt::conversion_failed
bvt conversion_failed(const exprt &expr)
Print that the expression of x has failed conversion, then return a vector of x's width.
Definition boolbv.cpp:94

boolbvt::quantifier_list
quantifier_listt quantifier_list
Definition boolbv.h:275

constant_exprt
A constant literal expression.
Definition std_expr.h:3118

exprt
Base class for all expressions.
Definition expr.h:56

irept::id
const irep_idt & id() const
Definition irep.h:388

literalt
Definition literal.h:26

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition namespace.h:91

or_exprt
Boolean OR.
Definition std_expr.h:2275

prop_conv_solvert::convert_bool
virtual literalt convert_bool(const exprt &expr)
Definition prop_conv_solver.cpp:190

prop_conv_solvert::prop
propt & prop
Definition prop_conv_solver.h:130

propt::new_variable
virtual literalt new_variable()=0

quantifier_exprt
A base class for quantifier expressions.
Definition mathematical_expr.h:284

quantifier_exprt::symbol
symbol_exprt & symbol()
Definition mathematical_expr.h:299

symbol_exprt
Expression to hold a symbol (variable)
Definition std_expr.h:131

skip_typecast
const exprt & skip_typecast(const exprt &expr)
find the expression nested inside typecasts, if any
Definition expr_util.cpp:188

expr_util.h
Deprecated expression utility functions.

simplify_expr
exprt simplify_expr(exprt src, const namespacet &ns)
Definition simplify_expr.cpp:3363

simplify_expr.h

mp_integer
BigInt mp_integer
Definition smt_terms.h:17

invariant.h

UNREACHABLE
#define UNREACHABLE
This should be used to mark dead code.
Definition invariant.h:525

PRECONDITION
#define PRECONDITION(CONDITION)
Definition invariant.h:463

disjunction
exprt disjunction(const exprt::operandst &op)
1) generates a disjunction for two or more operands 2) for one operand, returns the operand 3) return...
Definition std_expr.cpp:71

conjunction
exprt conjunction(exprt a, exprt b)
Conjunction of two expressions.
Definition std_expr.cpp:83

to_binary_relation_expr
const binary_relation_exprt & to_binary_relation_expr(const exprt &expr)
Cast an exprt to a binary_relation_exprt.
Definition std_expr.h:895

to_constant_expr
const constant_exprt & to_constant_expr(const exprt &expr)
Cast an exprt to a constant_exprt.
Definition std_expr.h:3173

to_not_expr
const not_exprt & to_not_expr(const exprt &expr)
Cast an exprt to an not_exprt.
Definition std_expr.h:2484