CBMC
All Classes Namespaces Files Functions Variables Typedefs Enumerations Enumerator Friends Macros Modules Pages
new.c
Go to the documentation of this file.
1/* FUNCTION: __new */
2
3__CPROVER_bool __VERIFIER_nondet___CPROVER_bool(void);
4const void *__CPROVER_new_object = 0;
5__CPROVER_bool __CPROVER_malloc_is_new_array = 0;
6
7inline void *__new(__typeof__(sizeof(int)) malloc_size)
8{
9 // The constructor call is done by the front-end.
10 // This just does memory allocation.
11 __CPROVER_HIDE:;
12 void *res;
13 res = __CPROVER_allocate(malloc_size, 0);
14
15 // non-deterministically record the object for delete/delete[] checking
16 __CPROVER_bool record_malloc=__VERIFIER_nondet___CPROVER_bool();
17 __CPROVER_new_object = record_malloc ? res : __CPROVER_new_object;
18 __CPROVER_malloc_is_new_array=record_malloc?0:__CPROVER_malloc_is_new_array;
19
20 // detect memory leaks
21 __CPROVER_bool record_may_leak=__VERIFIER_nondet___CPROVER_bool();
22 __CPROVER_memory_leak=record_may_leak?res:__CPROVER_memory_leak;
23
24 return res;
25}
26
27/* FUNCTION: __new_array */
28
29__CPROVER_bool __VERIFIER_nondet___CPROVER_bool(void);
30#ifndef LIBRARY_CHECK
31const void *__CPROVER_new_object = 0;
32__CPROVER_bool __CPROVER_malloc_is_new_array = 0;
33#endif
34
35inline void *__new_array(__CPROVER_size_t count, __CPROVER_size_t size)
36{
37 // The constructor call is done by the front-end.
38 // This just does memory allocation.
39 __CPROVER_HIDE:;
40 void *res;
41 res = __CPROVER_allocate(size*count, 0);
42
43 // non-deterministically record the object for delete/delete[] checking
44 __CPROVER_bool record_malloc=__VERIFIER_nondet___CPROVER_bool();
45 __CPROVER_new_object = record_malloc ? res : __CPROVER_new_object;
46 __CPROVER_malloc_is_new_array=record_malloc?1:__CPROVER_malloc_is_new_array;
47
48 // detect memory leaks
49 __CPROVER_bool record_may_leak=__VERIFIER_nondet___CPROVER_bool();
50 __CPROVER_memory_leak=record_may_leak?res:__CPROVER_memory_leak;
51
52 return res;
53}
54
55/* FUNCTION: __placement_new */
56
57inline void *__placement_new(__typeof__(sizeof(int)) malloc_size, void *p)
58{
59 // The constructor call is done by the front-end.
60 // The allocation is done by the user. So this does nothing.
61 __CPROVER_HIDE:;
62 (void)malloc_size;
63 return p;
64}
65
66/* FUNCTION: __delete */
67
68void __CPROVER_deallocate(void *);
69__CPROVER_bool __VERIFIER_nondet___CPROVER_bool(void);
70#ifndef LIBRARY_CHECK
71const void *__CPROVER_new_object = 0;
72__CPROVER_bool __CPROVER_malloc_is_new_array = 0;
73#endif
74
75inline void __delete(void *ptr)
76{
77 __CPROVER_HIDE:;
78 // is it dynamic?
79 __CPROVER_precondition(ptr==0 || __CPROVER_DYNAMIC_OBJECT(ptr),
80 "delete argument must be dynamic object");
81 __CPROVER_precondition(__CPROVER_POINTER_OFFSET(ptr)==0,
82 "delete argument must have offset zero");
83
84 // catch double delete
85 __CPROVER_precondition(ptr==0 || __CPROVER_deallocated!=ptr, "double delete");
86
87 // catch people who call delete for objects allocated with new[]
88 __CPROVER_precondition(
89 ptr == 0 || __CPROVER_new_object != ptr || !__CPROVER_malloc_is_new_array,
90 "delete of array object");
91
92 // If ptr is NULL, no operation is performed.
93 // This is a requirement by the standard, not generosity!
94 if(ptr!=0)
95 {
96 __CPROVER_deallocate(ptr);
97
98 // detect memory leaks
99 if(__CPROVER_memory_leak==ptr)
100 __CPROVER_memory_leak=0;
101 }
102}
103
104/* FUNCTION: __delete_array */
105
106void __CPROVER_deallocate(void *);
107__CPROVER_bool __VERIFIER_nondet___CPROVER_bool(void);
108#ifndef LIBRARY_CHECK
109const void *__CPROVER_new_object = 0;
110__CPROVER_bool __CPROVER_malloc_is_new_array = 0;
111#endif
112
113inline void __delete_array(void *ptr)
114{
115 __CPROVER_HIDE:;
116 // If ptr is NULL, no operation is performed.
117 // This is a requirement by the standard, not generosity!
118
119 // is it dynamic?
120 __CPROVER_precondition(ptr==0 || __CPROVER_DYNAMIC_OBJECT(ptr),
121 "delete argument must be dynamic object");
122 __CPROVER_precondition(ptr==0 || __CPROVER_POINTER_OFFSET(ptr)==0,
123 "delete argument must have offset zero");
124
125 // catch double delete
126 __CPROVER_precondition(ptr==0 || __CPROVER_deallocated!=ptr,
127 "double delete");
128
129 // catch people who call delete[] for objects allocated with new
130 __CPROVER_precondition(
131 ptr == 0 || __CPROVER_new_object != ptr || __CPROVER_malloc_is_new_array,
132 "delete[] of non-array object");
133
134 if(ptr!=0)
135 {
136 __CPROVER_deallocate(ptr);
137
138 // detect memory leaks
139 if(__CPROVER_memory_leak==ptr) __CPROVER_memory_leak=0;
140 }
141}
__typeof__
typedef __typeof__(sizeof(int)) __CPROVER_size_t
__CPROVER_allocate
void * __CPROVER_allocate(__CPROVER_size_t size, __CPROVER_bool zero)
__CPROVER_deallocated
const void * __CPROVER_deallocated
__CPROVER_memory_leak
const void * __CPROVER_memory_leak
ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562
__CPROVER_POINTER_OFFSET
__CPROVER_size_t __CPROVER_POINTER_OFFSET(const void *)
__CPROVER_precondition
void __CPROVER_precondition(__CPROVER_bool precondition, const char *description)
__CPROVER_DYNAMIC_OBJECT
__CPROVER_bool __CPROVER_DYNAMIC_OBJECT(const void *)
__delete
void __delete(void *ptr)
Definition new.c:75
__new
void * __new(__typeof__(sizeof(int)) malloc_size)
Definition new.c:7
__delete_array
void __delete_array(void *ptr)
Definition new.c:113
__new_array
void * __new_array(__CPROVER_size_t count, __CPROVER_size_t size)
Definition new.c:35
__CPROVER_deallocate
void __CPROVER_deallocate(void *)
Definition stdlib.c:670
__CPROVER_new_object
const void * __CPROVER_new_object
Definition new.c:4
__VERIFIER_nondet___CPROVER_bool
__CPROVER_bool __VERIFIER_nondet___CPROVER_bool(void)
__CPROVER_malloc_is_new_array
__CPROVER_bool __CPROVER_malloc_is_new_array
Definition new.c:5
__placement_new
void * __placement_new(__typeof__(sizeof(int)) malloc_size, void *p)
Definition new.c:57