cbmc/invariant__set__domain_8cpp_source.html

/*******************************************************************\


Module: Invariant Set Domain


Author: Daniel Kroening, kroening@kroening.com


\*******************************************************************/


#include "invariant_set_domain.h"


#include <util/expr_util.h>

#include <util/simplify_expr.h>


void invariant_set_domaint::transform(

  const irep_idt &function_from,

  trace_ptrt trace_from,

  const irep_idt &function_to,

  trace_ptrt trace_to,

  ai_baset &ai,

  const namespacet &ns)

{

  locationt from_l(trace_from->current_location());

  locationt to_l(trace_to->current_location());


  switch(from_l->type())

  {

  case GOTO:

    {

      // Comparing iterators is safe as the target must be within the same list

      // of instructions because this is a GOTO.

      exprt tmp(from_l->condition());


      if(std::next(from_l) == to_l)

        tmp = boolean_negate(tmp);


      simplify(tmp, ns);

      invariant_set.strengthen(tmp);

    }

    break;


  case ASSERT:

  case ASSUME:

    {

      exprt tmp(from_l->condition());

      simplify(tmp, ns);

      invariant_set.strengthen(tmp);

    }

    break;


    case SET_RETURN_VALUE:

      // ignore

      break;


    case ASSIGN:

      invariant_set.assignment(from_l->assign_lhs(), from_l->assign_rhs());

      break;


    case OTHER:

      if(from_l->get_other().is_not_nil())

        invariant_set.apply_code(from_l->code());

      break;


    case DECL:

      invariant_set.apply_code(from_l->code());

      break;


    case FUNCTION_CALL:

      invariant_set.apply_code(from_l->code());

      break;


    case START_THREAD:

      invariant_set.make_threaded();

      break;


    case CATCH:

    case THROW:

      DATA_INVARIANT(false, "Exceptions must be removed before analysis");

      break;

    case DEAD:         // No action required

    case ATOMIC_BEGIN: // Ignoring is a valid over-approximation

    case ATOMIC_END:   // Ignoring is a valid over-approximation

    case END_FUNCTION: // No action required

    case LOCATION:     // No action required

    case END_THREAD:   // Require a concurrent analysis at higher level

    case SKIP:         // No action required

      break;

    case INCOMPLETE_GOTO:

    case NO_INSTRUCTION_TYPE:

      DATA_INVARIANT(false, "Only complete instructions can be analyzed");

      break;

  }

}

void invariant_set_domaint::transform( {…}

ai_baset
This is the basic interface of the abstract interpreter with default implementations of the core func...
Definition ai.h:117

ai_domain_baset::trace_ptrt
ai_history_baset::trace_ptrt trace_ptrt
Definition ai_domain.h:73

ai_domain_baset::locationt
goto_programt::const_targett locationt
Definition ai_domain.h:72

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition dstring.h:38

exprt
Base class for all expressions.
Definition expr.h:56

invariant_set_domaint::invariant_set
invariant_sett invariant_set
Definition invariant_set_domain.h:32

invariant_set_domaint::transform
virtual void transform(const irep_idt &function_from, trace_ptrt trace_from, const irep_idt &function_to, trace_ptrt trace_to, ai_baset &ai, const namespacet &ns) final override
how function calls are treated: a) there is an edge from each call site to the function head b) there...
Definition invariant_set_domain.cpp:17

invariant_sett::apply_code
void apply_code(const codet &code)
Definition invariant_set.cpp:1052

invariant_sett::strengthen
void strengthen(const exprt &expr)
Definition invariant_set.cpp:375

invariant_sett::make_threaded
void make_threaded()
Definition invariant_set.h:135

invariant_sett::assignment
void assignment(const exprt &lhs, const exprt &rhs)
Definition invariant_set.cpp:1035

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition namespace.h:91

boolean_negate
exprt boolean_negate(const exprt &src)
negate a Boolean expression, possibly removing a not_exprt, and swapping false and true
Definition expr_util.cpp:103

expr_util.h
Deprecated expression utility functions.

FUNCTION_CALL
@ FUNCTION_CALL
Definition goto_program.h:49

ATOMIC_END
@ ATOMIC_END
Definition goto_program.h:44

DEAD
@ DEAD
Definition goto_program.h:48

LOCATION
@ LOCATION
Definition goto_program.h:41

END_FUNCTION
@ END_FUNCTION
Definition goto_program.h:42

ASSIGN
@ ASSIGN
Definition goto_program.h:46

ASSERT
@ ASSERT
Definition goto_program.h:36

SET_RETURN_VALUE
@ SET_RETURN_VALUE
Definition goto_program.h:45

ATOMIC_BEGIN
@ ATOMIC_BEGIN
Definition goto_program.h:43

CATCH
@ CATCH
Definition goto_program.h:51

END_THREAD
@ END_THREAD
Definition goto_program.h:40

SKIP
@ SKIP
Definition goto_program.h:38

NO_INSTRUCTION_TYPE
@ NO_INSTRUCTION_TYPE
Definition goto_program.h:33

START_THREAD
@ START_THREAD
Definition goto_program.h:39

THROW
@ THROW
Definition goto_program.h:50

DECL
@ DECL
Definition goto_program.h:47

OTHER
@ OTHER
Definition goto_program.h:37

GOTO
@ GOTO
Definition goto_program.h:34

INCOMPLETE_GOTO
@ INCOMPLETE_GOTO
Definition goto_program.h:52

ASSUME
@ ASSUME
Definition goto_program.h:35

invariant_set_domain.h
Value Set.

simplify
bool simplify(exprt &expr, const namespacet &ns)
Definition simplify_expr.cpp:3246

simplify_expr.h

DATA_INVARIANT
#define DATA_INVARIANT(CONDITION, REASON)
This condition should be used to document that assumptions that are made on goto_functions,...
Definition invariant.h:534