cbmc/goto__state_8h_source.html

/*******************************************************************\


Module: Symbolic Execution


Author: Romain Brenguier, romain.brenguier@diffblue.com


\*******************************************************************/


#ifndef CPROVER_GOTO_SYMEX_GOTO_STATE_H

#define CPROVER_GOTO_SYMEX_GOTO_STATE_H


#include <util/sharing_map.h>


#include <analyses/guard.h>


#include <pointer-analysis/value_set.h>


#include "renaming_level.h"


// Forward declaration required since subclass is used explicitly

// by the parent class.

class goto_symex_statet;


class goto_statet

{

public:

  unsigned depth = 0;


protected:

  symex_level2t level2;


public:

  sharing_mapt<exprt, symbol_exprt, false, irep_hash> dereference_cache;


  const symex_level2t &get_level2() const

  {

    return level2;

  }

  const symex_level2t &get_level2() const {…}


  value_sett value_set;


  // A guard is a particular condition that has to pass for an instruction

  // to be executed. The easiest example is an if/else: each instruction along

  // the if branch will be guarded by the condition of the if (and if there

  // is an else branch then instructions on it will be guarded by the negation

  // of the condition of the if).

  guardt guard;


  bool reachable;


  // Map L1 names to (L2) constants. Values will be evicted from this map

  // when they become non-constant. This is used to propagate values that have

  // been worked out to only have one possible value.

  //

  // "constants" can include symbols, but only in the context of an address-of

  // op (i.e. &x can be propagated), and an address-taken thing should only be

  // L1.

  sharing_mapt<irep_idt, exprt> propagation;


  void output_propagation_map(std::ostream &);


  unsigned atomic_section_id = 0;


  goto_statet() = delete;

  goto_statet &operator=(const goto_statet &other) = delete;

  goto_statet &operator=(goto_statet &&other) = default;

  goto_statet(const goto_statet &other) = default;

  goto_statet(goto_statet &&other) = default;


  explicit goto_statet(guard_managert &guard_manager)

    : guard(true_exprt(), guard_manager), reachable(true)

  {

  }

  explicit goto_statet(guard_managert &guard_manager) {…}


  void apply_condition(

    const exprt &condition, // L2

    const goto_symex_statet &previous_state,

    const namespacet &ns);

};

class goto_statet {…};


#endif // CPROVER_GOTO_SYMEX_GOTO_STATE_H

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

exprt
Base class for all expressions.
Definition expr.h:56

goto_statet
Container for data that varies per program point, e.g.
Definition goto_state.h:32

goto_statet::operator=
goto_statet & operator=(goto_statet &&other)=default

goto_statet::level2
symex_level2t level2
Definition goto_state.h:38

goto_statet::goto_statet
goto_statet(const goto_statet &other)=default

goto_statet::guard
guardt guard
Definition goto_state.h:58

goto_statet::operator=
goto_statet & operator=(const goto_statet &other)=delete

goto_statet::goto_statet
goto_statet(guard_managert &guard_manager)
Definition goto_state.h:85

goto_statet::depth
unsigned depth
Distance from entry.
Definition goto_state.h:35

goto_statet::reachable
bool reachable
Is this code reachable? If not we can take shortcuts such as not entering function calls,...
Definition goto_state.h:62

goto_statet::apply_condition
void apply_condition(const exprt &condition, const goto_symex_statet &previous_state, const namespacet &ns)
Given a condition that must hold on this path, propagate as much knowledge as possible.
Definition goto_state.cpp:43

goto_statet::goto_statet
goto_statet(goto_statet &&other)=default

goto_statet::atomic_section_id
unsigned atomic_section_id
Threads.
Definition goto_state.h:76

goto_statet::propagation
sharing_mapt< irep_idt, exprt > propagation
Definition goto_state.h:71

goto_statet::goto_statet
goto_statet()=delete
Constructors.

goto_statet::value_set
value_sett value_set
Uses level 1 names, and is used to do dereferencing.
Definition goto_state.h:51

goto_statet::output_propagation_map
void output_propagation_map(std::ostream &)
Print the constant propagation map in a human-friendly format.
Definition goto_state.cpp:19

goto_statet::dereference_cache
sharing_mapt< exprt, symbol_exprt, false, irep_hash > dereference_cache
This is used for eliminating repeated complicated dereferences.
Definition goto_state.h:43

goto_statet::get_level2
const symex_level2t & get_level2() const
Definition goto_state.h:45

goto_symex_statet
Central data structure: state.
Definition goto_symex_state.h:42

guard_exprt
Definition guard_expr.h:24

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition namespace.h:91

true_exprt
The Boolean constant true.
Definition std_expr.h:3190

value_sett
State type in value_set_domaint, used in value-set analysis and goto-symex.
Definition value_set.h:44

guard.h
Guard Data Structure.

renaming_level.h
Renaming levels.

sharing_map.h
Sharing map.

guard_expr_managert
This is unused by this implementation of guards, but can be used by other implementations of the same...
Definition guard_expr.h:20

symex_level2t
Functor to set the level 2 renaming of SSA expressions.
Definition renaming_level.h:69

value_set.h
Value Set.