cbmc/dirty_8cpp_source.html

/*******************************************************************\


Module: Local variables whose address is taken


Author: Daniel Kroening


Date: March 2013


\*******************************************************************/


#include "dirty.h"


#include <util/pointer_expr.h>

#include <util/std_expr.h>


void dirtyt::build(const goto_functiont &goto_function)

{

  for(const auto &i : goto_function.body.instructions)

  {

    if(i.is_other())

    {

      search_other(i);

    }

    else

    {

      i.apply([this](const exprt &e) { find_dirty(e); });

    }

  }

}

void dirtyt::build(const goto_functiont &goto_function) {…}


void dirtyt::search_other(const goto_programt::instructiont &instruction)

{

  INVARIANT(instruction.is_other(), "instruction type must be OTHER");

  if(instruction.get_other().id() == ID_code)

  {

    const codet &code = instruction.get_other();

    const irep_idt &statement = code.get_statement();

    if(

      statement == ID_expression || statement == ID_array_set ||

      statement == ID_array_equal || statement == ID_array_copy ||

      statement == ID_array_replace || statement == ID_havoc_object ||

      statement == ID_input || statement == ID_output)

    {

      for(const auto &op : code.operands())

        find_dirty(op);

    }

    // other possible cases according to goto_programt::instructiont::output

    // and goto_symext::symex_other:

    // statement == ID_fence ||

    // statement == ID_user_specified_predicate ||

    // statement == ID_user_specified_parameter_predicates ||

    // statement == ID_user_specified_return_predicates ||

    // statement == ID_decl || statement == ID_nondet || statement == ID_asm)

  }

}

void dirtyt::search_other(const goto_programt::instructiont &instruction) {…}


void dirtyt::find_dirty(const exprt &expr)

{

  if(expr.id() == ID_address_of)

  {

    const address_of_exprt &address_of_expr = to_address_of_expr(expr);

    find_dirty_address_of(address_of_expr.object());

    return;

  }


  for(const auto &op : expr.operands())

    find_dirty(op);

}

void dirtyt::find_dirty(const exprt &expr) {…}


void dirtyt::find_dirty_address_of(const exprt &expr)

{

  if(expr.id() == ID_symbol)

  {

    const irep_idt &identifier = to_symbol_expr(expr).get_identifier();


    dirty.insert(identifier);

  }

  else if(expr.id() == ID_member)

  {

    find_dirty_address_of(to_member_expr(expr).struct_op());

  }

  else if(expr.id() == ID_index)

  {

    find_dirty_address_of(to_index_expr(expr).array());

    find_dirty(to_index_expr(expr).index());

  }

  else if(expr.id() == ID_dereference)

  {

    find_dirty(to_dereference_expr(expr).pointer());

  }

  else if(expr.id() == ID_if)

  {

    find_dirty_address_of(to_if_expr(expr).true_case());

    find_dirty_address_of(to_if_expr(expr).false_case());

    find_dirty(to_if_expr(expr).cond());

  }

}

void dirtyt::find_dirty_address_of(const exprt &expr) {…}


void dirtyt::output(std::ostream &out) const

{

  die_if_uninitialized();

  for(const auto &d : dirty)

    out << d << '\n';

}

void dirtyt::output(std::ostream &out) const {…}


void incremental_dirtyt::populate_dirty_for_function(

  const irep_idt &id,

  const goto_functionst::goto_functiont &function)

{

  auto insert_result = dirty_processed_functions.insert(id);

  if(insert_result.second)

    dirty.add_function(function);

}

void incremental_dirtyt::populate_dirty_for_function( {…}

address_of_exprt
Operator to return the address of an object.
Definition pointer_expr.h:540

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

codet
Data structure for representing an arbitrary statement in a program.
Definition std_code_base.h:29

codet::get_statement
const irep_idt & get_statement() const
Definition std_code_base.h:65

dirtyt::add_function
void add_function(const goto_functiont &goto_function)
Definition dirty.h:84

dirtyt::build
void build(const goto_functionst &goto_functions)
Definition dirty.h:90

dirtyt::find_dirty
void find_dirty(const exprt &expr)
Definition dirty.cpp:60

dirtyt::find_dirty_address_of
void find_dirty_address_of(const exprt &expr)
Definition dirty.cpp:73

dirtyt::output
void output(std::ostream &out) const
Definition dirty.cpp:102

dirtyt::dirty
std::unordered_set< irep_idt > dirty
Definition dirty.h:103

dirtyt::search_other
void search_other(const goto_programt::instructiont &instruction)
Definition dirty.cpp:34

dirtyt::die_if_uninitialized
void die_if_uninitialized() const
Definition dirty.h:30

dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition dstring.h:38

exprt
Base class for all expressions.
Definition expr.h:56

exprt::operands
operandst & operands()
Definition expr.h:94

goto_functionst::goto_functiont
::goto_functiont goto_functiont
Definition goto_functions.h:27

goto_functiont
A goto function, consisting of function body (see body) and parameter identifiers (see parameter_iden...
Definition goto_function.h:24

goto_functiont::body
goto_programt body
Definition goto_function.h:26

goto_programt::instructiont
This class represents an instruction in the GOTO intermediate representation.
Definition goto_program.h:181

goto_programt::instructiont::get_other
const goto_instruction_codet & get_other() const
Get the statement for OTHER.
Definition goto_program.h:314

goto_programt::instructiont::is_other
bool is_other() const
Definition goto_program.h:499

goto_programt::instructions
instructionst instructions
The list of instructions in the goto program.
Definition goto_program.h:622

incremental_dirtyt::dirty_processed_functions
std::unordered_set< irep_idt > dirty_processed_functions
Definition dirty.h:136

incremental_dirtyt::populate_dirty_for_function
void populate_dirty_for_function(const irep_idt &id, const goto_functionst::goto_functiont &function)
Analyse the given function with dirtyt if it hasn't been seen before.
Definition dirty.cpp:112

incremental_dirtyt::dirty
dirtyt dirty
Definition dirty.h:135

irept::id
const irep_idt & id() const
Definition irep.h:388

dirty.h
Variables whose address is taken.

pointer_expr.h
API to expression classes for Pointers.

to_address_of_expr
const address_of_exprt & to_address_of_expr(const exprt &expr)
Cast an exprt to an address_of_exprt.
Definition pointer_expr.h:577

to_dereference_expr
const dereference_exprt & to_dereference_expr(const exprt &expr)
Cast an exprt to a dereference_exprt.
Definition pointer_expr.h:890

INVARIANT
#define INVARIANT(CONDITION, REASON)
This macro uses the wrapper function 'invariant_violated_string'.
Definition invariant.h:423

std_expr.h
API to expression classes.

to_index_expr
const index_exprt & to_index_expr(const exprt &expr)
Cast an exprt to an index_exprt.
Definition std_expr.h:1538

to_if_expr
const if_exprt & to_if_expr(const exprt &expr)
Cast an exprt to an if_exprt.
Definition std_expr.h:2577

to_member_expr
const member_exprt & to_member_expr(const exprt &expr)
Cast an exprt to a member_exprt.
Definition std_expr.h:3063

to_symbol_expr
const symbol_exprt & to_symbol_expr(const exprt &expr)
Cast an exprt to a symbol_exprt.
Definition std_expr.h:272