CBMC
Loading...
Searching...
No Matches
dfcc_contract_functions.cpp
Go to the documentation of this file.
1/*******************************************************************\
2
3Module: Dynamic frame condition checking for function contracts
4
5Author: Remi Delmas, delmasrd@amazon.com
6Date: August 2022
7
8\*******************************************************************/
9#include "dfcc_contract_functions.h"
10
11#include <util/mathematical_expr.h>
12#include <util/symbol.h>
13
14#include "dfcc_contract_clauses_codegen.h"
15#include "dfcc_instrument.h"
16#include "dfcc_spec_functions.h"
17#include "dfcc_utils.h"
18
19dfcc_contract_functionst::dfcc_contract_functionst(
20 const symbolt &pure_contract_symbol,
21 goto_modelt &goto_model,
22 message_handlert &message_handler,
23 dfcc_libraryt &library,
24 dfcc_spec_functionst &spec_functions,
25 dfcc_contract_clauses_codegent &contract_clauses_codegen,
26 dfcc_instrumentt &instrument)
27 : pure_contract_symbol(pure_contract_symbol),
28 code_with_contract(to_code_with_contract_type(pure_contract_symbol.type)),
29 spec_assigns_function_id(
30 id2string(pure_contract_symbol.name) + "::assigns"),
31 spec_assigns_havoc_function_id(
32 id2string(pure_contract_symbol.name) + "::assigns::havoc"),
33 spec_frees_function_id(id2string(pure_contract_symbol.name) + "::frees"),
34 language_mode(pure_contract_symbol.mode),
35 goto_model(goto_model),
36 message_handler(message_handler),
37 log(message_handler),
38 library(library),
39 spec_functions(spec_functions),
40 contract_clauses_codegen(contract_clauses_codegen),
41 instrument(instrument),
42 ns(goto_model.symbol_table)
43{
44 gen_spec_assigns_function();
45
46 spec_functions.generate_havoc_function(
47 spec_assigns_function_id,
48 spec_assigns_havoc_function_id,
49 nof_assigns_targets);
50
51 spec_functions.to_spec_assigns_function(
52 spec_assigns_function_id, nof_assigns_targets);
53
54 gen_spec_frees_function();
55
56 spec_functions.to_spec_frees_function(
57 spec_frees_function_id, nof_frees_targets);
58
59 instrument_without_loop_contracts_check_no_pointer_contracts(
60 spec_assigns_function_id);
61
62 instrument_without_loop_contracts_check_no_pointer_contracts(
63 spec_frees_function_id);
64}
65
66void dfcc_contract_functionst::
67 instrument_without_loop_contracts_check_no_pointer_contracts(
68 const irep_idt &spec_function_id)
69{
70 std::set<irep_idt> function_pointer_contracts;
71 instrument.instrument_function(
72 spec_function_id, loop_contract_configt{false}, function_pointer_contracts);
73
74 INVARIANT(
75 function_pointer_contracts.empty(),
76 id2string(spec_function_id) + " shall not contain calls to " CPROVER_PREFIX
77 "obeys_contract");
78}
79
80const symbolt &
85
86const symbolt &
91
96
97const std::size_t dfcc_contract_functionst::get_nof_assigns_targets() const
98{
99 return nof_assigns_targets;
100}
101
102const std::size_t dfcc_contract_functionst::get_nof_frees_targets() const
103{
104 return nof_frees_targets;
105}
106
107void dfcc_contract_functionst::gen_spec_assigns_function()
108{
109 const auto &spec_function_symbol = dfcc_utilst::clone_and_rename_function(
110 goto_model,
111 pure_contract_symbol.name,
112 spec_assigns_function_id,
113 empty_typet());
114
115 const auto &spec_function_id = spec_function_symbol.name;
116
117 auto &spec_code_type = to_code_type(spec_function_symbol.type);
118
119 exprt::operandst lambda_parameters;
120
121 if(code_with_contract.return_type().id() != ID_empty)
122 {
123 // use a dummy symbol for __CPROVER_return_value
124 // which does occur in the assigns clause anyway
125 lambda_parameters.push_back(
126 symbol_exprt("dummy_return_value", code_with_contract.return_type()));
127 }
128
129 for(const auto &param_id : spec_code_type.parameter_identifiers())
130 {
131 lambda_parameters.push_back(ns.lookup(param_id).symbol_expr());
132 }
133
134 // fetch the goto_function to add instructions to
135 goto_functiont &goto_function =
136 goto_model.goto_functions.function_map.at(spec_function_id);
137
138 exprt::operandst targets;
139
140 for(const exprt &target : code_with_contract.c_assigns())
141 {
142 auto new_target = to_lambda_expr(target).application(lambda_parameters);
143 new_target.add_source_location() = target.source_location();
144 targets.push_back(new_target);
145 }
146
147 goto_programt &body = goto_function.body;
148 contract_clauses_codegen.gen_spec_assigns_instructions(
149 spec_function_symbol.mode, targets, body);
150 body.add(goto_programt::make_end_function(spec_function_symbol.location));
151
152 goto_model.goto_functions.update();
153}
154
155void dfcc_contract_functionst::gen_spec_frees_function()
156{
157 // fetch pure contract symbol
158 const auto &code_with_contract =
159 to_code_with_contract_type(pure_contract_symbol.type);
160
161 auto &spec_function_symbol = dfcc_utilst::clone_and_rename_function(
162 goto_model,
163 pure_contract_symbol.name,
164 spec_frees_function_id,
165 empty_typet());
166
167 const auto &spec_function_id = spec_function_symbol.name;
168
169 auto &spec_code_type = to_code_type(spec_function_symbol.type);
170
171 exprt::operandst lambda_parameters;
172
173 if(code_with_contract.return_type().id() != ID_empty)
174 {
175 // use a dummy symbol for __CPROVER_return_value
176 // which does occur in the assigns clause anyway
177 symbolt dummy;
178 dummy.name = "dummy_return_value";
179 dummy.type = code_with_contract.return_type();
180 lambda_parameters.push_back(dummy.symbol_expr());
181 }
182
183 for(const auto &param_id : spec_code_type.parameter_identifiers())
184 {
185 lambda_parameters.push_back(ns.lookup(param_id).symbol_expr());
186 }
187
188 // fetch the goto_function to add instructions to
189 goto_functiont &goto_function =
190 goto_model.goto_functions.function_map.at(spec_function_id);
191
192 exprt::operandst targets;
193
194 for(const exprt &target : code_with_contract.c_frees())
195 {
196 auto new_target = to_lambda_expr(target).application(lambda_parameters);
197 new_target.add_source_location() = target.source_location();
198 targets.push_back(new_target);
199 }
200
201 goto_programt &body = goto_function.body;
202 contract_clauses_codegen.gen_spec_frees_instructions(
203 spec_function_symbol.mode, targets, body);
204 body.add(goto_programt::make_end_function(spec_function_symbol.location));
205
206 goto_model.goto_functions.update();
207}
to_code_with_contract_type
const code_with_contract_typet & to_code_with_contract_type(const typet &type)
Cast a typet to a code_with_contract_typet.
Definition c_types.h:467
ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562
dfcc_contract_clauses_codegent
Translates assigns and frees clauses of a function contract or loop contract into GOTO programs that ...
Definition dfcc_contract_clauses_codegen.h:29
dfcc_contract_clauses_codegent::gen_spec_assigns_instructions
void gen_spec_assigns_instructions(const irep_idt &language_mode, const exprt::operandst &assigns_clause, goto_programt &dest)
Generates instructions encoding the assigns_clause targets and adds them to dest.
Definition dfcc_contract_clauses_codegen.cpp:43
dfcc_contract_clauses_codegent::gen_spec_frees_instructions
void gen_spec_frees_instructions(const irep_idt &language_mode, const exprt::operandst &frees_clause, goto_programt &dest)
Generates instructions encoding the frees_clause targets and adds them to dest.
Definition dfcc_contract_clauses_codegen.cpp:71
dfcc_contract_functionst::gen_spec_frees_function
void gen_spec_frees_function()
Translates the contract's frees clause to a GOTO function that uses the freeable built-in to express ...
Definition dfcc_contract_functions.cpp:155
dfcc_contract_functionst::nof_assigns_targets
std::size_t nof_assigns_targets
Definition dfcc_contract_functions.h:121
dfcc_contract_functionst::spec_assigns_havoc_function_id
const irep_idt spec_assigns_havoc_function_id
Identifier of the contract::c_assigns::havoc function.
Definition dfcc_contract_functions.h:104
dfcc_contract_functionst::ns
namespacet ns
Definition dfcc_contract_functions.h:120
dfcc_contract_functionst::instrument
dfcc_instrumentt & instrument
Definition dfcc_contract_functions.h:119
dfcc_contract_functionst::code_with_contract
const code_with_contract_typet & code_with_contract
The code_with_contract_type carrying the contract clauses.
Definition dfcc_contract_functions.h:98
dfcc_contract_functionst::get_spec_frees_function_symbol
const symbolt & get_spec_frees_function_symbol() const
Returns the contract::frees function symbol.
Definition dfcc_contract_functions.cpp:92
dfcc_contract_functionst::goto_model
goto_modelt & goto_model
Definition dfcc_contract_functions.h:113
dfcc_contract_functionst::nof_frees_targets
std::size_t nof_frees_targets
Definition dfcc_contract_functions.h:122
dfcc_contract_functionst::contract_clauses_codegen
dfcc_contract_clauses_codegent & contract_clauses_codegen
Definition dfcc_contract_functions.h:118
dfcc_contract_functionst::spec_assigns_function_id
const irep_idt spec_assigns_function_id
Identifier of the contract::c_assigns function.
Definition dfcc_contract_functions.h:101
dfcc_contract_functionst::instrument_without_loop_contracts_check_no_pointer_contracts
void instrument_without_loop_contracts_check_no_pointer_contracts(const irep_idt &spec_function_id)
Instruments the given function without loop contracts and checks that no function pointer contracts w...
Definition dfcc_contract_functions.cpp:67
dfcc_contract_functionst::dfcc_contract_functionst
dfcc_contract_functionst(const symbolt &pure_contract_symbol, goto_modelt &goto_model, message_handlert &message_handler, dfcc_libraryt &library, dfcc_spec_functionst &spec_functions, dfcc_contract_clauses_codegent &contract_clauses_codegen, dfcc_instrumentt &instrument)
Definition dfcc_contract_functions.cpp:19
dfcc_contract_functionst::get_spec_assigns_function_symbol
const symbolt & get_spec_assigns_function_symbol() const
Returns the contract::c_assigns function symbol.
Definition dfcc_contract_functions.cpp:81
dfcc_contract_functionst::pure_contract_symbol
const symbolt & pure_contract_symbol
The function symbol carrying the contract.
Definition dfcc_contract_functions.h:95
dfcc_contract_functionst::get_nof_assigns_targets
const std::size_t get_nof_assigns_targets() const
Returns the maximum number of targets in the assigns clause.
Definition dfcc_contract_functions.cpp:97
dfcc_contract_functionst::get_spec_assigns_havoc_function_symbol
const symbolt & get_spec_assigns_havoc_function_symbol() const
Returns the contract::c_assigns::havoc function symbol.
Definition dfcc_contract_functions.cpp:87
dfcc_contract_functionst::gen_spec_assigns_function
void gen_spec_assigns_function()
Translates the contract's assigns clause to a GOTO function that uses the assignable,...
Definition dfcc_contract_functions.cpp:107
dfcc_contract_functionst::spec_frees_function_id
const irep_idt spec_frees_function_id
Identifier of the contract::frees function.
Definition dfcc_contract_functions.h:107
dfcc_contract_functionst::spec_functions
dfcc_spec_functionst & spec_functions
Definition dfcc_contract_functions.h:117
dfcc_contract_functionst::get_nof_frees_targets
const std::size_t get_nof_frees_targets() const
Returns the maximum number of targets in the frees clause.
Definition dfcc_contract_functions.cpp:102
dfcc_instrumentt
This class instruments GOTO functions or instruction sequences for frame condition checking and loop ...
Definition dfcc_instrument.h:44
dfcc_instrumentt::instrument_function
void instrument_function(const irep_idt &function_id, const loop_contract_configt &loop_contract_config, std::set< irep_idt > &function_pointer_contracts)
Instruments a GOTO function by adding an extra write set parameter and instrumenting its body instruc...
Definition dfcc_instrument.cpp:318
dfcc_libraryt
Class interface to library types and functions defined in cprover_contracts.c.
Definition dfcc_library.h:163
dfcc_spec_functionst
This class rewrites GOTO functions that use the built-ins:
Definition dfcc_spec_functions.h:49
dfcc_spec_functionst::to_spec_assigns_function
void to_spec_assigns_function(const irep_idt &function_id, std::size_t &nof_targets)
Transforms (in place) a function.
Definition dfcc_spec_functions.cpp:279
dfcc_spec_functionst::generate_havoc_function
void generate_havoc_function(const irep_idt &function_id, const irep_idt &havoc_function_id, std::size_t &nof_targets)
Generates the havoc function for a function contract.
Definition dfcc_spec_functions.cpp:44
dfcc_spec_functionst::to_spec_frees_function
void to_spec_frees_function(const irep_idt &function_id, std::size_t &nof_targets)
Transforms (in place) a function.
Definition dfcc_spec_functions.cpp:362
dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition dstring.h:38
empty_typet
The empty type.
Definition std_types.h:51
exprt
Base class for all expressions.
Definition expr.h:56
exprt::operandst
std::vector< exprt > operandst
Definition expr.h:58
goto_functionst::function_map
function_mapt function_map
Definition goto_functions.h:29
goto_functionst::update
void update()
Definition goto_functions.h:88
goto_functiont
A goto function, consisting of function body (see body) and parameter identifiers (see parameter_iden...
Definition goto_function.h:24
goto_functiont::body
goto_programt body
Definition goto_function.h:26
goto_modelt
Definition goto_model.h:27
goto_modelt::goto_functions
goto_functionst goto_functions
GOTO functions.
Definition goto_model.h:34
goto_programt
A generic container class for the GOTO intermediate representation of one function.
Definition goto_program.h:72
goto_programt::make_end_function
static instructiont make_end_function(const source_locationt &l=source_locationt::nil())
Definition goto_program.h:1000
goto_programt::add
targett add(instructiont &&instruction)
Adds a given instruction at the end.
Definition goto_program.h:738
message_handlert
Definition message.h:27
namespacet::lookup
bool lookup(const irep_idt &name, const symbolt *&symbol) const override
See documentation for namespace_baset::lookup().
Definition namespace.cpp:134
symbol_exprt
Expression to hold a symbol (variable)
Definition std_expr.h:131
symbolt
Symbol table entry.
Definition symbol.h:28
symbolt::symbol_expr
class symbol_exprt symbol_expr() const
Produces a symbol_exprt for a symbol.
Definition symbol.cpp:121
symbolt::type
typet type
Type of symbol.
Definition symbol.h:31
symbolt::name
irep_idt name
The unique identifier.
Definition symbol.h:40
CPROVER_PREFIX
#define CPROVER_PREFIX
Definition cprover_prefix.h:14
dfcc_contract_clauses_codegen.h
Translates assigns and frees clauses of a function contract or loop contract into goto programs that ...
dfcc_contract_functions.h
Translates assigns and frees clauses of a function contract into goto functions that allow to build a...
dfcc_instrument.h
Add instrumentation to a goto program to perform frame condition checks.
dfcc_spec_functions.h
Translate functions that specify assignable and freeable targets declaratively into active functions ...
dfcc_utils.h
Dynamic frame condition checking utility functions.
id2string
const std::string & id2string(const irep_idt &d)
Definition irep.h:44
log
double log(double x)
Definition math.c:2449
mathematical_expr.h
API to expression classes for 'mathematical' expressions.
to_lambda_expr
const lambda_exprt & to_lambda_expr(const exprt &expr)
Cast an exprt to a lambda_exprt.
Definition mathematical_expr.h:477
INVARIANT
#define INVARIANT(CONDITION, REASON)
This macro uses the wrapper function 'invariant_violated_string'.
Definition invariant.h:423
to_code_type
const code_typet & to_code_type(const typet &type)
Cast a typet to a code_typet.
Definition std_types.h:788
dfcc_utilst::clone_and_rename_function
static const symbolt & clone_and_rename_function(goto_modelt &goto_model, const irep_idt &function_id, const irep_idt &new_function_id, std::optional< typet > new_return_type)
Creates a new function symbol and goto_function entry in the goto_functions_map by cloning the given ...
Definition dfcc_utils.cpp:300
loop_contract_configt
Loop contract configurations.
Definition loop_contract_config.h:19
symbol.h
Symbol table entry.