cbmc/instrument__spec__assigns_8h_source.html

 /*******************************************************************\


 Module: Instrument assigns clauses in code contracts.


 Author: Remi Delmas


 Date: January 2022


 \*******************************************************************/


 #ifndef CPROVER_GOTO_INSTRUMENT_CONTRACTS_INSTRUMENT_SPEC_ASSIGNS_H

 #define CPROVER_GOTO_INSTRUMENT_CONTRACTS_INSTRUMENT_SPEC_ASSIGNS_H


 #include <util/expr_util.h>

 #include <util/message.h>

 #include <util/namespace.h>

 #include <util/symbol_table_base.h>


 #include <goto-programs/goto_program.h>


 #include <algorithm>

 #include <unordered_map>

 #include <unordered_set>


 // forward declarations

 class conditional_target_group_exprt;

 class cfg_infot;

 class goto_functionst;


 class conditional_target_exprt : public exprt

 {

 public:

   conditional_target_exprt(const exprt &_condition, const exprt &_target)

     : exprt(irep_idt{}, typet{}, {_condition, _target})

   {

     INVARIANT(

       !has_subexpr(_condition, ID_side_effect),

       "condition must have no side_effect sub-expression");

     add_source_location() = _target.source_location();

   }


   const exprt &condition() const

   {

     return operands()[0];

   }


   const exprt &target() const

   {

     return operands()[1];

   }

 };


 enum class car_havoc_methodt

 {

   HAVOC_OBJECT,

   HAVOC_SLICE,

   NONDET_ASSIGN

 };


 class car_exprt : public exprt

 {

 public:

   car_exprt(

     const exprt &_condition,

     const exprt &_target,

     const exprt &_target_start_address,

     const exprt &_target_size,

     const symbol_exprt &_validity_var,

     const symbol_exprt &_lower_bound_var,

     const symbol_exprt &_upper_bound_var,

     const car_havoc_methodt _havoc_method)

     : exprt(

         irep_idt{},

         typet{},

         {_condition,

          _target,

          _target_start_address,

          _target_size,

          _validity_var,

          _lower_bound_var,

          _upper_bound_var}),

       havoc_method(_havoc_method)

   {

     add_source_location() = _target.source_location();

   }


   const car_havoc_methodt havoc_method;


   const exprt &condition() const

   {

     return operands()[0];

   }


   const exprt &target() const

   {

     return operands()[1];

   }


   const exprt &target_start_address() const

   {

     return operands()[2];

   }


   const exprt &target_size() const

   {

     return operands()[3];

   }


   const symbol_exprt &valid_var() const

   {

     return to_symbol_expr(operands()[4]);

   }


   const symbol_exprt &lower_bound_var() const

   {

     return to_symbol_expr(operands()[5]);

   }


   const symbol_exprt &upper_bound_var() const

   {

     return to_symbol_expr(operands()[6]);

   }

 };


 bool has_propagate_static_local_pragma(source_locationt &source_location);


 void add_propagate_static_local_pragma(source_locationt &source_location);


 //  "unsigned-overflow-check", "conversion-check".

 void add_pragma_disable_pointer_checks(source_locationt &source_location);


 void add_pragma_disable_assigns_check(source_locationt &source_location);


 goto_programt::instructiont &

 add_pragma_disable_assigns_check(goto_programt::instructiont &instr);


 goto_programt &add_pragma_disable_assigns_check(goto_programt &prog);


 class instrument_spec_assignst

 {

 public:

   instrument_spec_assignst(

     const irep_idt &_function_id,

     const goto_functionst &_functions,

     cfg_infot &_cfg_info,

     symbol_table_baset &_st,

     message_handlert &_message_handler)

     : function_id(_function_id),

       functions(_functions),

       cfg_info(_cfg_info),

       st(_st),

       ns(_st),

       log(_message_handler),

       mode(st.lookup_ref(function_id).mode)

   {

   }


   void track_spec_target(const exprt &expr, goto_programt &dest);


   void

   track_stack_allocated(const symbol_exprt &symbol_expr, goto_programt &dest);


   bool stack_allocated_is_tracked(const symbol_exprt &symbol_expr) const;


   void invalidate_stack_allocated(

     const symbol_exprt &symbol_expr,

     goto_programt &dest);


   void track_heap_allocated(const exprt &expr, goto_programt &dest);


   void track_static_locals(goto_programt &dest);


   void track_static_locals_between(

     goto_programt::const_targett it,

     const goto_programt::const_targett end,

     goto_programt &dest);


 protected:

   class location_intervalt

   {

   public:

     location_intervalt()

     {

       min_line = std::numeric_limits<std::size_t>::max();

       min_col = std::numeric_limits<std::size_t>::max();

       max_line = std::numeric_limits<std::size_t>::min();

       max_col = std::numeric_limits<std::size_t>::min();

     }


     void anywhere()

     {

       min_line = std::numeric_limits<std::size_t>::min();

       min_col = std::numeric_limits<std::size_t>::min();

       max_line = std::numeric_limits<std::size_t>::max();

       max_col = std::numeric_limits<std::size_t>::max();

     }


     void update(const source_locationt &source_location)

     {

       PRECONDITION(source_location.is_not_nil());

       // use pessimistic lowest value to update min for undefined

       update_min(

         line_to_size_t(

           source_location, std::numeric_limits<std::size_t>::min()),

         col_to_size_t(

           source_location, std::numeric_limits<std::size_t>::min()));


       // use pessimistic highest value to update max for undefined

       update_max(

         line_to_size_t(

           source_location, std::numeric_limits<std::size_t>::max()),

         col_to_size_t(

           source_location, std::numeric_limits<std::size_t>::max()));

     }


     bool contains(const source_locationt &source_location)

     {

       if(source_location.is_not_nil())

       {

         return

           // use pessimistic highest value to compare to min for undefined

           is_lte(

             min_line,

             min_col,

             line_to_size_t(

               source_location, std::numeric_limits<std::size_t>::max()),

             col_to_size_t(

               source_location, std::numeric_limits<std::size_t>::max())) &&

           // use pessimistic lowest value to compare to max for undefined

           is_lte(

             line_to_size_t(

               source_location, std::numeric_limits<std::size_t>::min()),

             col_to_size_t(

               source_location, std::numeric_limits<std::size_t>::min()),

             max_line,

             max_col);

       }

       else

       {

         return true;

       }

     }


   private:

     std::size_t col_to_size_t(

       const source_locationt &source_location,

       std::size_t default_value)

     {

       if(

         source_location.get_line().empty() ||

         source_location.get_column().empty())

       {

         return default_value;

       }

       else

       {

         std::stringstream stream(id2string(source_location.get_column()));

         size_t res;

         stream >> res;

         return res;

       }

     }


     std::size_t line_to_size_t(

       const source_locationt &source_location,

       std::size_t default_value)

     {

       if(source_location.get_line().empty())

       {

         return default_value;

       }

       else

       {

         std::stringstream stream(id2string(source_location.get_line()));

         size_t res;

         stream >> res;

         return res;

       }

     }


     static bool is_lte(size_t line0, size_t col0, size_t line1, size_t col1)

     {

       return (line0 < line1) || ((line0 == line1) && (col0 <= col1));

     }


     void update_min(size_t line, size_t col)

     {

       if(is_lte(line, col, min_line, min_col))

       {

         min_line = line;

         min_col = col;

       }

     }


     void update_max(size_t line, size_t col)

     {

       if(is_lte(max_line, max_col, line, col))

       {

         max_line = line;

         max_col = col;

       }

     }


     std::size_t min_line;

     std::size_t min_col;

     std::size_t max_line;

     std::size_t max_col;

   };


   typedef std::unordered_map<irep_idt, location_intervalt> covered_locationst;

   typedef std::unordered_set<symbol_exprt, irep_hash> propagated_static_localst;


   void traverse_instructions(

     const irep_idt ambient_function_id,

     goto_programt::const_targett it,

     const goto_programt::const_targett end,

     covered_locationst &covered_locations,

     propagated_static_localst &propagated) const;


   void collect_static_symbols(

     covered_locationst &covered_locations,

     std::unordered_set<symbol_exprt, irep_hash> &dest);


 public:

   void check_inclusion_assignment(const exprt &lhs, goto_programt &dest) const;


   void check_inclusion_heap_allocated_and_invalidate_aliases(

     const exprt &expr,

     goto_programt &dest);


   void instrument_instructions(

     goto_programt &body,

     goto_programt::targett instruction_it,

     const goto_programt::targett &instruction_end,

     const std::function<bool(const goto_programt::targett &)> &pred = {});


   template <typename C>

   void get_static_locals(std::insert_iterator<C> inserter) const

   {

     std::transform(

       from_static_local.cbegin(),

       from_static_local.cend(),

       inserter,

       // can use `const auto &` below once we switch to C++14

       [](const symbol_exprt_to_car_mapt::value_type &s) { return s.first; });

   }


 protected:

   const irep_idt &function_id;


   const goto_functionst &functions;


   cfg_infot &cfg_info;


   symbol_table_baset &st;


   const namespacet ns;


   messaget log;


   const irep_idt &mode;


   void track_spec_target_group(

     const conditional_target_group_exprt &group,

     goto_programt &dest);


   void track_plain_spec_target(const exprt &expr, goto_programt &dest);


   void create_snapshot(const car_exprt &car, goto_programt &dest) const;


   exprt

   target_validity_expr(const car_exprt &car, bool allow_null_target) const;


   void target_validity_assertion(

     const car_exprt &car,

     bool allow_null_target,

     goto_programt &dest) const;


   exprt inclusion_check_single(

     const car_exprt &lhs,

     const car_exprt &candidate_car) const;


   exprt inclusion_check_full(

     const car_exprt &lhs,

     bool allow_null_lhs,

     bool include_stack_allocated) const;


   void inclusion_check_assertion(

     const car_exprt &lhs,

     bool allow_null_lhs,

     bool include_stack_allocated,

     goto_programt &dest) const;


   void invalidate_car(

     const car_exprt &tracked_car,

     const car_exprt &freed_car,

     goto_programt &result) const;


   void invalidate_heap_and_spec_aliases(

     const car_exprt &freed_car,

     goto_programt &dest) const;


   bool must_track_decl(const goto_programt::const_targett &target) const;


   bool must_track_dead(const goto_programt::const_targett &target) const;


   bool must_track_decl_or_dead(const irep_idt &ident) const;


   bool must_check_assign(const goto_programt::const_targett &target);


   void instrument_assign_statement(

     goto_programt::targett &instruction_it,

     goto_programt &body) const;


   void instrument_call_statement(

     goto_programt::targett &instruction_it,

     goto_programt &body);


   using cond_target_exprt_to_car_mapt = std::

     unordered_map<const conditional_target_exprt, const car_exprt, irep_hash>;


   cond_target_exprt_to_car_mapt from_spec_assigns;


   const car_exprt &

   create_car_from_spec_assigns(const exprt &condition, const exprt &target);


   using symbol_exprt_to_car_mapt =

     std::unordered_map<const symbol_exprt, const car_exprt, irep_hash>;


   symbol_exprt_to_car_mapt from_stack_alloc;


   const car_exprt &create_car_from_stack_alloc(const symbol_exprt &target);


   using exprt_to_car_mapt =

     std::unordered_map<const exprt, const car_exprt, irep_hash>;


   using car_expr_listt = std::list<car_exprt>;

   car_expr_listt from_heap_alloc;


   const car_exprt &create_car_from_heap_alloc(const exprt &target);


   symbol_exprt_to_car_mapt from_static_local;


   const car_exprt &create_car_from_static_local(const symbol_exprt &target);


   car_exprt create_car_expr(const exprt &condition, const exprt &target) const;

 };


 #endif // CPROVER_GOTO_INSTRUMENT_CONTRACTS_INSTRUMENT_SPEC_ASSIGNS_H

transform
static abstract_object_pointert transform(const exprt &expr, const std::vector< abstract_object_pointert > &operands, const abstract_environmentt &environment, const namespacet &ns)
Definition: abstract_value_object.cpp:159

car_exprt
Class that represents a normalized conditional address range, with:
Definition: instrument_spec_assigns.h:74

car_exprt::havoc_method
const car_havoc_methodt havoc_method
Method to use to havod the target.
Definition: instrument_spec_assigns.h:101

car_exprt::target_size
const exprt & target_size() const
Size of the target in bytes.
Definition: instrument_spec_assigns.h:122

car_exprt::upper_bound_var
const symbol_exprt & upper_bound_var() const
Identifier of the upper address bound snapshot variable.
Definition: instrument_spec_assigns.h:140

car_exprt::condition
const exprt & condition() const
Condition expression. When this condition holds the target is allowed.
Definition: instrument_spec_assigns.h:104

car_exprt::car_exprt
car_exprt(const exprt &_condition, const exprt &_target, const exprt &_target_start_address, const exprt &_target_size, const symbol_exprt &_validity_var, const symbol_exprt &_lower_bound_var, const symbol_exprt &_upper_bound_var, const car_havoc_methodt _havoc_method)
Definition: instrument_spec_assigns.h:76

car_exprt::valid_var
const symbol_exprt & valid_var() const
Identifier of the validity snapshot variable.
Definition: instrument_spec_assigns.h:128

car_exprt::target
const exprt & target() const
The target expression.
Definition: instrument_spec_assigns.h:110

car_exprt::lower_bound_var
const symbol_exprt & lower_bound_var() const
Identifier of the lower address bound snapshot variable.
Definition: instrument_spec_assigns.h:134

car_exprt::target_start_address
const exprt & target_start_address() const
Start address of the target.
Definition: instrument_spec_assigns.h:116

cfg_infot
Stores information about a goto function computed from its CFG.
Definition: cfg_info.h:40

conditional_target_exprt
Class that represents a single conditional target.
Definition: instrument_spec_assigns.h:35

conditional_target_exprt::target
const exprt & target() const
Target expression.
Definition: instrument_spec_assigns.h:53

conditional_target_exprt::conditional_target_exprt
conditional_target_exprt(const exprt &_condition, const exprt &_target)
Definition: instrument_spec_assigns.h:37

conditional_target_exprt::condition
const exprt & condition() const
Condition expression.
Definition: instrument_spec_assigns.h:47

conditional_target_group_exprt
A class for an expression that represents a conditional target or a list of targets sharing a common ...
Definition: c_expr.h:233

dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition: dstring.h:38

dstringt::empty
bool empty() const
Definition: dstring.h:89

exprt
Base class for all expressions.
Definition: expr.h:56

exprt::add_source_location
source_locationt & add_source_location()
Definition: expr.h:236

exprt::operands
operandst & operands()
Definition: expr.h:94

goto_functionst
A collection of goto functions.
Definition: goto_functions.h:25

goto_programt::instructiont
This class represents an instruction in the GOTO intermediate representation.
Definition: goto_program.h:181

goto_programt
A generic container class for the GOTO intermediate representation of one function.
Definition: goto_program.h:73

goto_programt::targett
instructionst::iterator targett
Definition: goto_program.h:614

goto_programt::const_targett
instructionst::const_iterator const_targett
Definition: goto_program.h:615

instrument_spec_assignst::location_intervalt
Represents an interval of source locations covered by the static local variable search.
Definition: instrument_spec_assigns.h:262

instrument_spec_assignst::location_intervalt::contains
bool contains(const source_locationt &source_location)
True iff the interval contains the given location.
Definition: instrument_spec_assigns.h:303

instrument_spec_assignst::location_intervalt::anywhere
void anywhere()
Grows the interval cover the maximum range [(size_t::min, size_t::min), (size_t::min,...
Definition: instrument_spec_assigns.h:275

instrument_spec_assignst::location_intervalt::update_min
void update_min(size_t line, size_t col)
Updates the min_line and min_col in place using the given values iff they are smaller.
Definition: instrument_spec_assigns.h:378

instrument_spec_assignst::location_intervalt::max_line
std::size_t max_line
Definition: instrument_spec_assigns.h:400

instrument_spec_assignst::location_intervalt::location_intervalt
location_intervalt()
Initializes to the empty interval.
Definition: instrument_spec_assigns.h:265

instrument_spec_assignst::location_intervalt::is_lte
static bool is_lte(size_t line0, size_t col0, size_t line1, size_t col1)
True iff (line0, col0) <= (line1, col1) in lexicographic ordering.
Definition: instrument_spec_assigns.h:371

instrument_spec_assignst::location_intervalt::col_to_size_t
std::size_t col_to_size_t(const source_locationt &source_location, std::size_t default_value)
If line or col is missing use default.
Definition: instrument_spec_assigns.h:333

instrument_spec_assignst::location_intervalt::update
void update(const source_locationt &source_location)
Grows the interval to include the given (line, col) location.
Definition: instrument_spec_assigns.h:284

instrument_spec_assignst::location_intervalt::max_col
std::size_t max_col
Definition: instrument_spec_assigns.h:401

instrument_spec_assignst::location_intervalt::min_col
std::size_t min_col
Definition: instrument_spec_assigns.h:399

instrument_spec_assignst::location_intervalt::line_to_size_t
std::size_t line_to_size_t(const source_locationt &source_location, std::size_t default_value)
If line is missing use default.
Definition: instrument_spec_assigns.h:353

instrument_spec_assignst::location_intervalt::min_line
std::size_t min_line
Definition: instrument_spec_assigns.h:398

instrument_spec_assignst::location_intervalt::update_max
void update_max(size_t line, size_t col)
Updates the max_line and max_col in place using the given values iff they are larger.
Definition: instrument_spec_assigns.h:389

instrument_spec_assignst
A class that generates instrumentation for assigns clause checking.
Definition: instrument_spec_assigns.h:187

instrument_spec_assignst::must_track_dead
bool must_track_dead(const goto_programt::const_targett &target) const
Returns true iff a DEAD x must be processed to update the write set.
Definition: instrument_spec_assigns.cpp:1024

instrument_spec_assignst::invalidate_stack_allocated
void invalidate_stack_allocated(const symbol_exprt &symbol_expr, goto_programt &dest)
Generate instructions to invalidate a stack-allocated object that goes DEAD in dest.
Definition: instrument_spec_assigns.cpp:115

instrument_spec_assignst::propagated_static_localst
std::unordered_set< symbol_exprt, irep_hash > propagated_static_localst
Definition: instrument_spec_assigns.h:406

instrument_spec_assignst::functions
const goto_functionst & functions
Other functions of the model.
Definition: instrument_spec_assigns.h:477

instrument_spec_assignst::collect_static_symbols
void collect_static_symbols(covered_locationst &covered_locations, std::unordered_set< symbol_exprt, irep_hash > &dest)
Collects static symbols from the symbol table that have a source location included in one of the cove...
Definition: instrument_spec_assigns.cpp:293

instrument_spec_assignst::track_spec_target
void track_spec_target(const exprt &expr, goto_programt &dest)
Track an assigns clause target and generate snaphsot instructions and well-definedness assertions in ...
Definition: instrument_spec_assigns.cpp:92

instrument_spec_assignst::must_check_assign
bool must_check_assign(const goto_programt::const_targett &target)
Returns true iff an ASSIGN lhs := rhs instruction must be instrumented.
Definition: instrument_spec_assigns.cpp:934

instrument_spec_assignst::from_stack_alloc
symbol_exprt_to_car_mapt from_stack_alloc
Map from DECL symbols to corresponding conditional address ranges.
Definition: instrument_spec_assigns.h:611

instrument_spec_assignst::inclusion_check_assertion
void inclusion_check_assertion(const car_exprt &lhs, bool allow_null_lhs, bool include_stack_allocated, goto_programt &dest) const
Returns an inclusion check assertion of lhs over all tracked cars.
Definition: instrument_spec_assigns.cpp:700

instrument_spec_assignst::track_stack_allocated
void track_stack_allocated(const symbol_exprt &symbol_expr, goto_programt &dest)
Track a stack-allocated object and generate snaphsot instructions in dest.
Definition: instrument_spec_assigns.cpp:102

instrument_spec_assignst::from_spec_assigns
cond_target_exprt_to_car_mapt from_spec_assigns
Map from conditional target expressions of assigns clauses to corresponding conditional address range...
Definition: instrument_spec_assigns.h:602

instrument_spec_assignst::instrument_assign_statement
void instrument_assign_statement(goto_programt::targett &instruction_it, goto_programt &body) const
Inserts an assertion in body immediately before the assignment at instruction_it, to ensure that the ...
Definition: instrument_spec_assigns.cpp:1030

instrument_spec_assignst::create_car_from_static_local
const car_exprt & create_car_from_static_local(const symbol_exprt &target)
Definition: instrument_spec_assigns.cpp:885

instrument_spec_assignst::track_heap_allocated
void track_heap_allocated(const exprt &expr, goto_programt &dest)
Track a whole heap-alloc object and generate snaphsot instructions in dest.
Definition: instrument_spec_assigns.cpp:134

instrument_spec_assignst::st
symbol_table_baset & st
Program symbol table.
Definition: instrument_spec_assigns.h:483

instrument_spec_assignst::symbol_exprt_to_car_mapt
std::unordered_map< const symbol_exprt, const car_exprt, irep_hash > symbol_exprt_to_car_mapt
Definition: instrument_spec_assigns.h:608

instrument_spec_assignst::from_static_local
symbol_exprt_to_car_mapt from_static_local
Map to from detected or propagated static local symbols to corresponding conditional address ranges.
Definition: instrument_spec_assigns.h:626

instrument_spec_assignst::create_car_from_spec_assigns
const car_exprt & create_car_from_spec_assigns(const exprt &condition, const exprt &target)
Definition: instrument_spec_assigns.cpp:833

instrument_spec_assignst::mode
const irep_idt & mode
Language mode.
Definition: instrument_spec_assigns.h:492

instrument_spec_assignst::invalidate_car
void invalidate_car(const car_exprt &tracked_car, const car_exprt &freed_car, goto_programt &result) const
Adds an assignment in dest to invalidate the tracked car if was valid before and was pointing to the ...
Definition: instrument_spec_assigns.cpp:905

instrument_spec_assignst::from_heap_alloc
car_expr_listt from_heap_alloc
Definition: instrument_spec_assigns.h:620

instrument_spec_assignst::car_expr_listt
std::list< car_exprt > car_expr_listt
List of malloc'd conditional address ranges.
Definition: instrument_spec_assigns.h:619

instrument_spec_assignst::create_car_expr
car_exprt create_car_expr(const exprt &condition, const exprt &target) const
Creates a conditional address range expression from a cleaned-up condition and target expression.
Definition: instrument_spec_assigns.cpp:476

instrument_spec_assignst::track_spec_target_group
void track_spec_target_group(const conditional_target_group_exprt &group, goto_programt &dest)
Track and generate snaphsot instructions and target validity checking assertions for a conditional ta...
Definition: instrument_spec_assigns.cpp:416

instrument_spec_assignst::must_track_decl_or_dead
bool must_track_decl_or_dead(const irep_idt &ident) const
Returns true iff a function-local symbol must be tracked.
Definition: instrument_spec_assigns.cpp:995

instrument_spec_assignst::target_validity_assertion
void target_validity_assertion(const car_exprt &car, bool allow_null_target, goto_programt &dest) const
Generates the target validity assertion for the given car and adds it to dest.
Definition: instrument_spec_assigns.cpp:669

instrument_spec_assignst::track_static_locals
void track_static_locals(goto_programt &dest)
Searches the goto instructions reachable from the start to the end of the instrumented function's ins...
Definition: instrument_spec_assigns.cpp:165

instrument_spec_assignst::instrument_call_statement
void instrument_call_statement(goto_programt::targett &instruction_it, goto_programt &body)
Inserts an assertion in body immediately before the function call at instruction_it,...
Definition: instrument_spec_assigns.cpp:1041

instrument_spec_assignst::instrument_instructions
void instrument_instructions(goto_programt &body, goto_programt::targett instruction_it, const goto_programt::targett &instruction_end, const std::function< bool(const goto_programt::targett &)> &pred={})
Instruments a sequence of instructions with inclusion checks.
Definition: instrument_spec_assigns.cpp:332

instrument_spec_assignst::track_plain_spec_target
void track_plain_spec_target(const exprt &expr, goto_programt &dest)
Track and generate snaphsot instructions and target validity checking assertions for a conditional ta...
Definition: instrument_spec_assigns.cpp:443

instrument_spec_assignst::check_inclusion_heap_allocated_and_invalidate_aliases
void check_inclusion_heap_allocated_and_invalidate_aliases(const exprt &expr, goto_programt &dest)
Generates inclusion check instructions for an argument passed to free.
Definition: instrument_spec_assigns.cpp:314

instrument_spec_assignst::exprt_to_car_mapt
std::unordered_map< const exprt, const car_exprt, irep_hash > exprt_to_car_mapt
Definition: instrument_spec_assigns.h:616

instrument_spec_assignst::invalidate_heap_and_spec_aliases
void invalidate_heap_and_spec_aliases(const car_exprt &freed_car, goto_programt &dest) const
Generates instructions to invalidate all targets aliased with a car that was passed to free,...
Definition: instrument_spec_assigns.cpp:922

instrument_spec_assignst::instrument_spec_assignst
instrument_spec_assignst(const irep_idt &_function_id, const goto_functionst &_functions, cfg_infot &_cfg_info, symbol_table_baset &_st, message_handlert &_message_handler)
Class constructor.
Definition: instrument_spec_assigns.h:196

instrument_spec_assignst::traverse_instructions
void traverse_instructions(const irep_idt ambient_function_id, goto_programt::const_targett it, const goto_programt::const_targett end, covered_locationst &covered_locations, propagated_static_localst &propagated) const
Traverses the given list of instructions, updating the given coverage map, recursing into function ca...
Definition: instrument_spec_assigns.cpp:212

instrument_spec_assignst::track_static_locals_between
void track_static_locals_between(goto_programt::const_targett it, const goto_programt::const_targett end, goto_programt &dest)
Searches the goto instructions reachable between the given it and end target instructions to identify...
Definition: instrument_spec_assigns.cpp:193

instrument_spec_assignst::must_track_decl
bool must_track_decl(const goto_programt::const_targett &target) const
Returns true iff a DECL x must be explicitly added to the write set.
Definition: instrument_spec_assigns.cpp:1002

instrument_spec_assignst::create_car_from_stack_alloc
const car_exprt & create_car_from_stack_alloc(const symbol_exprt &target)
Definition: instrument_spec_assigns.cpp:856

instrument_spec_assignst::log
messaget log
Logger.
Definition: instrument_spec_assigns.h:489

instrument_spec_assignst::cond_target_exprt_to_car_mapt
std::unordered_map< const conditional_target_exprt, const car_exprt, irep_hash > cond_target_exprt_to_car_mapt
Definition: instrument_spec_assigns.h:598

instrument_spec_assignst::inclusion_check_full
exprt inclusion_check_full(const car_exprt &lhs, bool allow_null_lhs, bool include_stack_allocated) const
Returns an inclusion check expression of lhs over all tracked cars.
Definition: instrument_spec_assigns.cpp:761

instrument_spec_assignst::create_car_from_heap_alloc
const car_exprt & create_car_from_heap_alloc(const exprt &target)
Definition: instrument_spec_assigns.cpp:877

instrument_spec_assignst::inclusion_check_single
exprt inclusion_check_single(const car_exprt &lhs, const car_exprt &candidate_car) const
Returns inclusion check expression for a single candidate location.
Definition: instrument_spec_assigns.cpp:742

instrument_spec_assignst::ns
const namespacet ns
Program namespace.
Definition: instrument_spec_assigns.h:486

instrument_spec_assignst::target_validity_expr
exprt target_validity_expr(const car_exprt &car, bool allow_null_target) const
Returns the target validity expression for a car_exprt.
Definition: instrument_spec_assigns.cpp:650

instrument_spec_assignst::check_inclusion_assignment
void check_inclusion_assignment(const exprt &lhs, goto_programt &dest) const
Generates inclusion check instructions for an assignment, havoc or havoc_object instruction.
Definition: instrument_spec_assigns.cpp:148

instrument_spec_assignst::cfg_info
cfg_infot & cfg_info
CFG information for simplification.
Definition: instrument_spec_assigns.h:480

instrument_spec_assignst::create_snapshot
void create_snapshot(const car_exprt &car, goto_programt &dest) const
Returns snapshot instructions for a car_exprt.
Definition: instrument_spec_assigns.cpp:618

instrument_spec_assignst::function_id
const irep_idt & function_id
Name of the instrumented function.
Definition: instrument_spec_assigns.h:474

instrument_spec_assignst::stack_allocated_is_tracked
bool stack_allocated_is_tracked(const symbol_exprt &symbol_expr) const
Returns true if the expression is tracked.
Definition: instrument_spec_assigns.cpp:109

instrument_spec_assignst::covered_locationst
std::unordered_map< irep_idt, location_intervalt > covered_locationst
Map type from function identifiers to covered locations.
Definition: instrument_spec_assigns.h:405

instrument_spec_assignst::get_static_locals
void get_static_locals(std::insert_iterator< C > inserter) const
Inserts the detected static local symbols into a target container.
Definition: instrument_spec_assigns.h:462

irept::is_not_nil
bool is_not_nil() const
Definition: irep.h:372

message_handlert
Definition: message.h:27

messaget
Class that provides messages with a built-in verbosity 'level'.
Definition: message.h:154

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition: namespace.h:94

source_locationt
Definition: source_location.h:20

source_locationt::get_column
const irep_idt & get_column() const
Definition: source_location.h:51

source_locationt::get_line
const irep_idt & get_line() const
Definition: source_location.h:46

symbol_exprt
Expression to hold a symbol (variable)
Definition: std_expr.h:131

symbol_table_baset
The symbol table base class interface.
Definition: symbol_table_base.h:23

typet
The type of an expression, extends irept.
Definition: type.h:29

has_subexpr
bool has_subexpr(const exprt &expr, const std::function< bool(const exprt &)> &pred)
returns true if the expression has a subexpression that satisfies pred
Definition: expr_util.cpp:115

expr_util.h
Deprecated expression utility functions.

goto_program.h
Concrete Goto Program.

add_pragma_disable_pointer_checks
void add_pragma_disable_pointer_checks(source_locationt &source_location)
Adds a pragma on a source location disable all pointer checks.
Definition: instrument_spec_assigns.cpp:54

has_propagate_static_local_pragma
bool has_propagate_static_local_pragma(source_locationt &source_location)
True iff the pragma to mark assignments to static local variables that need to be propagated upwards ...

add_pragma_disable_assigns_check
void add_pragma_disable_assigns_check(source_locationt &source_location)
Adds a pragma on a source_locationt to disable inclusion checking.
Definition: instrument_spec_assigns.cpp:73

car_havoc_methodt
car_havoc_methodt
method to use to havoc a target
Definition: instrument_spec_assigns.h:61

car_havoc_methodt::NONDET_ASSIGN
@ NONDET_ASSIGN

car_havoc_methodt::HAVOC_OBJECT
@ HAVOC_OBJECT

car_havoc_methodt::HAVOC_SLICE
@ HAVOC_SLICE

add_propagate_static_local_pragma
void add_propagate_static_local_pragma(source_locationt &source_location)
Sets a pragma to mark assignments to static local variables that need to be propagated upwards in the...
Definition: instrument_spec_assigns.cpp:45

id2string
const std::string & id2string(const irep_idt &d)
Definition: irep.h:44

namespace.h

PRECONDITION
#define PRECONDITION(CONDITION)
Definition: invariant.h:463

message.h

to_symbol_expr
const symbol_exprt & to_symbol_expr(const exprt &expr)
Cast an exprt to a symbol_exprt.
Definition: std_expr.h:272

symbol_table_base.h
Author: Diffblue Ltd.

validation_modet::INVARIANT
@ INVARIANT