cbmc/pointer__predicates_8cpp_source.html

/*******************************************************************\


Module: Various predicates over pointers in programs


Author: Daniel Kroening, kroening@kroening.com


\*******************************************************************/


#include "pointer_predicates.h"


#include "arith_tools.h"

#include "c_types.h"

#include "cprover_prefix.h"

#include "namespace.h"

#include "pointer_expr.h"

#include "pointer_offset_size.h"

#include "std_expr.h"

#include "symbol.h"


exprt pointer_object(const exprt &p)

{

  return pointer_object_exprt(p, size_type());

}

exprt pointer_object(const exprt &p) {…}


exprt same_object(const exprt &p1, const exprt &p2)

{

  return equal_exprt(pointer_object(p1), pointer_object(p2));

}

exprt same_object(const exprt &p1, const exprt &p2) {…}


exprt object_size(const exprt &pointer)

{

  return object_size_exprt(pointer, size_type());

}

exprt object_size(const exprt &pointer) {…}


exprt pointer_offset(const exprt &pointer)

{

  return pointer_offset_exprt(pointer, size_type());

}

exprt pointer_offset(const exprt &pointer) {…}


exprt deallocated(const exprt &pointer, const namespacet &ns)

{

  // we check __CPROVER_deallocated!

  const symbolt &deallocated_symbol=ns.lookup(CPROVER_PREFIX "deallocated");


  return same_object(pointer, deallocated_symbol.symbol_expr());

}

exprt deallocated(const exprt &pointer, const namespacet &ns) {…}


exprt dead_object(const exprt &pointer, const namespacet &ns)

{

  // we check __CPROVER_dead_object!

  const symbolt &deallocated_symbol=ns.lookup(CPROVER_PREFIX "dead_object");


  return same_object(pointer, deallocated_symbol.symbol_expr());

}

exprt dead_object(const exprt &pointer, const namespacet &ns) {…}


exprt null_object(const exprt &pointer)

{

  null_pointer_exprt null_pointer(to_pointer_type(pointer.type()));

  return same_object(null_pointer, pointer);

}

exprt null_object(const exprt &pointer) {…}


exprt integer_address(const exprt &pointer)

{

  null_pointer_exprt null_pointer(to_pointer_type(pointer.type()));

  return and_exprt(same_object(null_pointer, pointer),

                   notequal_exprt(null_pointer, pointer));

}

exprt integer_address(const exprt &pointer) {…}


exprt object_upper_bound(

  const exprt &pointer,

  const exprt &access_size)

{

  exprt object_offset = pointer_offset(pointer);


  exprt object_size_expr=object_size(pointer);


  std::size_t max_width = std::max(

    to_bitvector_type(object_offset.type()).get_width(),

    to_bitvector_type(object_size_expr.type()).get_width());


  // We add the size to the offset, if given.

  if(access_size.is_not_nil())

  {

    // This is

    // POINTER_OFFSET(p)+access_size>OBJECT_SIZE(pointer)

    // We enlarge all bit-vectors to avoid an overflow on the addition.


    max_width =

      std::max(max_width, to_bitvector_type(access_size.type()).get_width());


    auto type = unsignedbv_typet(max_width + 1);


    auto sum = plus_exprt(

      typecast_exprt::conditional_cast(object_offset, type),

      typecast_exprt::conditional_cast(access_size, type));


    return binary_relation_exprt(

      sum, ID_gt, typecast_exprt::conditional_cast(object_size_expr, type));

  }

  else

  {

    // This is

    // POINTER_OFFSET(p)>=OBJECT_SIZE(pointer)


    auto type = unsignedbv_typet(max_width);


    return binary_relation_exprt(

      typecast_exprt::conditional_cast(object_offset, type),

      ID_ge,

      typecast_exprt::conditional_cast(object_size_expr, type));

  }

}

exprt object_upper_bound( {…}


exprt object_lower_bound(

  const exprt &pointer,

  const exprt &offset)

{

  exprt p_offset=pointer_offset(pointer);


  exprt zero=from_integer(0, p_offset.type());


  if(offset.is_not_nil())

  {

    p_offset = plus_exprt(

      p_offset, typecast_exprt::conditional_cast(offset, p_offset.type()));

  }


  return binary_relation_exprt(std::move(p_offset), ID_lt, std::move(zero));

}

exprt object_lower_bound( {…}

from_integer
constant_exprt from_integer(const mp_integer &int_value, const typet &type)
Definition arith_tools.cpp:99

arith_tools.h

to_bitvector_type
const bitvector_typet & to_bitvector_type(const typet &type)
Cast a typet to a bitvector_typet.
Definition bitvector_types.h:32

c_types.h

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

and_exprt
Boolean AND.
Definition std_expr.h:2125

binary_relation_exprt
A base class for relations, i.e., binary predicates whose two operands have the same type.
Definition std_expr.h:762

equal_exprt
Equality.
Definition std_expr.h:1366

exprt
Base class for all expressions.
Definition expr.h:56

exprt::type
typet & type()
Return the type of the expression.
Definition expr.h:84

irept::is_not_nil
bool is_not_nil() const
Definition irep.h:372

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition namespace.h:91

namespacet::lookup
bool lookup(const irep_idt &name, const symbolt *&symbol) const override
See documentation for namespace_baset::lookup().
Definition namespace.cpp:134

notequal_exprt
Disequality.
Definition std_expr.h:1425

null_pointer_exprt
The null pointer constant.
Definition pointer_expr.h:909

object_size_exprt
Expression for finding the size (in bytes) of the object a pointer points to.
Definition pointer_expr.h:1399

plus_exprt
The plus expression Associativity is not specified.
Definition std_expr.h:1002

pointer_object_exprt
A numerical identifier for the object a pointer points to.
Definition pointer_expr.h:1340

pointer_offset_exprt
The offset (in bytes) of a pointer relative to the object.
Definition pointer_expr.h:1282

symbolt
Symbol table entry.
Definition symbol.h:28

typecast_exprt::conditional_cast
static exprt conditional_cast(const exprt &expr, const typet &type)
Definition std_expr.h:2081

unsignedbv_typet
Fixed-width bit-vector with unsigned binary interpretation.
Definition bitvector_types.h:168

cprover_prefix.h

CPROVER_PREFIX
#define CPROVER_PREFIX
Definition cprover_prefix.h:14

namespace.h

pointer_expr.h
API to expression classes for Pointers.

to_pointer_type
const pointer_typet & to_pointer_type(const typet &type)
Cast a typet to a pointer_typet.
Definition pointer_expr.h:93

pointer_offset_size.h
Pointer Logic.

pointer_offset
exprt pointer_offset(const exprt &pointer)
Definition pointer_predicates.cpp:38

integer_address
exprt integer_address(const exprt &pointer)
Definition pointer_predicates.cpp:65

deallocated
exprt deallocated(const exprt &pointer, const namespacet &ns)
Definition pointer_predicates.cpp:43

object_size
exprt object_size(const exprt &pointer)
Definition pointer_predicates.cpp:33

object_upper_bound
exprt object_upper_bound(const exprt &pointer, const exprt &access_size)
Definition pointer_predicates.cpp:72

dead_object
exprt dead_object(const exprt &pointer, const namespacet &ns)
Definition pointer_predicates.cpp:51

same_object
exprt same_object(const exprt &p1, const exprt &p2)
Definition pointer_predicates.cpp:28

null_object
exprt null_object(const exprt &pointer)
Definition pointer_predicates.cpp:59

pointer_object
exprt pointer_object(const exprt &p)
Definition pointer_predicates.cpp:23

object_lower_bound
exprt object_lower_bound(const exprt &pointer, const exprt &offset)
Definition pointer_predicates.cpp:117

pointer_predicates.h
Various predicates over pointers in programs.

std_expr.h
API to expression classes.

symbol.h
Symbol table entry.

size_type
#define size_type
Definition unistd.c:186