cbmc/field__sensitivity_8h_source.html

/*******************************************************************\


Module: Field-sensitive SSA


Author: Michael Tautschnig


\*******************************************************************/


#ifndef CPROVER_GOTO_SYMEX_FIELD_SENSITIVITY_H

#define CPROVER_GOTO_SYMEX_FIELD_SENSITIVITY_H


#include <util/ssa_expr.h>


class byte_extract_exprt;

class namespacet;

class goto_symex_statet;

class symex_targett;

class value_sett;


class field_sensitive_ssa_exprt : public exprt

{

public:


  field_sensitive_ssa_exprt(const ssa_exprt &ssa, exprt::operandst &&fields)

    : exprt(ID_field_sensitive_ssa, ssa.type(), std::move(fields))

  {

    add(ID_expression, ssa);

  }


  const ssa_exprt &get_object_ssa() const

  {

    return static_cast<const ssa_exprt &>(find(ID_expression));

  }


};


template <>


inline bool can_cast_expr<field_sensitive_ssa_exprt>(const exprt &base)

{

  return base.id() == ID_field_sensitive_ssa;

}


inline const field_sensitive_ssa_exprt &


to_field_sensitive_ssa_expr(const exprt &expr)

{

  PRECONDITION(expr.id() == ID_field_sensitive_ssa);

  const field_sensitive_ssa_exprt &ret =

    static_cast<const field_sensitive_ssa_exprt &>(expr);

  return ret;

}


inline field_sensitive_ssa_exprt &to_field_sensitive_ssa_expr(exprt &expr)

{

  PRECONDITION(expr.id() == ID_field_sensitive_ssa);

  field_sensitive_ssa_exprt &ret =

    static_cast<field_sensitive_ssa_exprt &>(expr);

  return ret;

}


class field_sensitivityt

{

public:


  field_sensitivityt(

    std::size_t max_array_size,

    bool should_simplify,

    const irep_idt &language_mode)

    : max_field_sensitivity_array_size(max_array_size),

      should_simplify(should_simplify),

      language_mode(language_mode)

  {

  }


  void field_assignments(

    const namespacet &ns,

    goto_symex_statet &state,

    const ssa_exprt &lhs,

    const exprt &rhs,

    symex_targett &target,

    bool allow_pointer_unsoundness) const;


  [[nodiscard]] exprt

  apply(const namespacet &ns, goto_symex_statet &state, exprt expr, bool write)

    const;

  [[nodiscard]] exprt apply(

    const namespacet &ns,

    goto_symex_statet &state,

    ssa_exprt expr,

    bool write) const;


  [[nodiscard]] exprt get_fields(

    const namespacet &ns,

    goto_symex_statet &state,

    const ssa_exprt &ssa_expr,

    bool disjoined_fields_only) const;


  [[nodiscard]] bool

  is_divisible(const ssa_exprt &expr, bool disjoined_fields_only) const;


private:

  const std::size_t max_field_sensitivity_array_size;


  const bool should_simplify;

  const irep_idt &language_mode;


  void field_assignments_rec(

    const namespacet &ns,

    goto_symex_statet &state,

    const exprt &lhs_fs,

    const exprt &ssa_rhs,

    symex_targett &target,

    bool allow_pointer_unsoundness) const;


  [[nodiscard]] exprt simplify_opt(

    exprt e,

    const value_sett &value_set,

    const namespacet &ns) const;


  [[nodiscard]] exprt apply_byte_extract(

    const namespacet &ns,

    goto_symex_statet &state,

    const byte_extract_exprt &expr,

    bool write) const;

};


#endif // CPROVER_GOTO_SYMEX_FIELD_SENSITIVITY_H

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

byte_extract_exprt
Expression of type type extracted from some object op starting at position offset (given in number of...
Definition byte_operators.h:29

dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition dstring.h:38

exprt
Base class for all expressions.
Definition expr.h:57

exprt::operandst
std::vector< exprt > operandst
Definition expr.h:59

exprt::type
typet & type()
Return the type of the expression.
Definition expr.h:85

field_sensitive_ssa_exprt
Definition field_sensitivity.h:21

field_sensitive_ssa_exprt::field_sensitive_ssa_exprt
field_sensitive_ssa_exprt(const ssa_exprt &ssa, exprt::operandst &&fields)
Definition field_sensitivity.h:23

field_sensitive_ssa_exprt::get_object_ssa
const ssa_exprt & get_object_ssa() const
Definition field_sensitivity.h:29

field_sensitivityt
Control granularity of object accesses.
Definition field_sensitivity.h:119

field_sensitivityt::simplify_opt
exprt simplify_opt(exprt e, const value_sett &value_set, const namespacet &ns) const
Definition field_sensitivity.cpp:616

field_sensitivityt::should_simplify
const bool should_simplify
Definition field_sensitivity.h:210

field_sensitivityt::apply_byte_extract
exprt apply_byte_extract(const namespacet &ns, goto_symex_statet &state, const byte_extract_exprt &expr, bool write) const
Turn an expression expr into a field-sensitive SSA expression.
Definition field_sensitivity.cpp:34

field_sensitivityt::max_field_sensitivity_array_size
const std::size_t max_field_sensitivity_array_size
Definition field_sensitivity.h:208

field_sensitivityt::field_sensitivityt
field_sensitivityt(std::size_t max_array_size, bool should_simplify, const irep_idt &language_mode)
Definition field_sensitivity.h:125

field_sensitivityt::get_fields
exprt get_fields(const namespacet &ns, goto_symex_statet &state, const ssa_exprt &ssa_expr, bool disjoined_fields_only) const
Compute an expression representing the individual components of a field-sensitive SSA representation ...
Definition field_sensitivity.cpp:264

field_sensitivityt::field_assignments_rec
void field_assignments_rec(const namespacet &ns, goto_symex_statet &state, const exprt &lhs_fs, const exprt &ssa_rhs, symex_targett &target, bool allow_pointer_unsoundness) const
Assign to the individual fields lhs_fs of a non-expanded symbol lhs.
Definition field_sensitivity.cpp:392

field_sensitivityt::apply
exprt apply(const namespacet &ns, goto_symex_statet &state, exprt expr, bool write) const
Turn an expression expr into a field-sensitive SSA expression.
Definition field_sensitivity.cpp:125

field_sensitivityt::field_assignments
void field_assignments(const namespacet &ns, goto_symex_statet &state, const ssa_exprt &lhs, const exprt &rhs, symex_targett &target, bool allow_pointer_unsoundness) const
Assign to the individual fields of a non-expanded symbol lhs.
Definition field_sensitivity.cpp:357

field_sensitivityt::language_mode
const irep_idt & language_mode
Definition field_sensitivity.h:211

field_sensitivityt::is_divisible
bool is_divisible(const ssa_exprt &expr, bool disjoined_fields_only) const
Determine whether expr would translate to an atomic SSA expression (returns false) or a composite obj...
Definition field_sensitivity.cpp:588

goto_symex_statet
Central data structure: state.
Definition goto_symex_state.h:42

irept::find
const irept & find(const irep_idt &name) const
Definition irep.cpp:93

irept::id
const irep_idt & id() const
Definition irep.h:388

irept::add
irept & add(const irep_idt &name)
Definition irep.cpp:103

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition namespace.h:91

ssa_exprt
Expression providing an SSA-renamed symbol of expressions.
Definition ssa_expr.h:17

symex_targett
The interface of the target container for symbolic execution to record its symbolic steps into.
Definition symex_target.h:25

value_sett
State type in value_set_domaint, used in value-set analysis and goto-symex.
Definition value_set.h:43

can_cast_expr< field_sensitive_ssa_exprt >
bool can_cast_expr< field_sensitive_ssa_exprt >(const exprt &base)
Definition field_sensitivity.h:36

to_field_sensitive_ssa_expr
const field_sensitive_ssa_exprt & to_field_sensitive_ssa_expr(const exprt &expr)
Definition field_sensitivity.h:42

std
STL namespace.

PRECONDITION
#define PRECONDITION(CONDITION)
Definition invariant.h:463

ssa_expr.h

write
ssize_t write(int fildes, const void *buf, size_t nbyte)
Definition unistd.c:195