cbmc/refine__arrays_8cpp_source.html

/*******************************************************************\


Module:


Author: Daniel Kroening, kroening@kroening.com


\*******************************************************************/


#include "bv_refinement.h"


#ifdef DEBUG

#include <iostream>

#endif


#include <util/std_expr.h>

#include <util/find_symbols.h>


#include <solvers/sat/satcheck.h>


void bv_refinementt::finish_eager_conversion_arrays()

{

  collect_indices();

  // at this point all indices should in the index set


  // just build the data structure

  update_index_map(true);


  // we don't actually add any constraints

  lazy_arrays=config_.refine_arrays;

  add_array_constraints();

  freeze_lazy_constraints();

}

void bv_refinementt::finish_eager_conversion_arrays() {…}


void bv_refinementt::arrays_overapproximated()

{

  if(!config_.refine_arrays)

    return;


  unsigned nb_active=0;


  std::list<lazy_constraintt>::iterator it=lazy_array_constraints.begin();

  while(it!=lazy_array_constraints.end())

  {

    satcheck_no_simplifiert sat_check{log.get_message_handler()};

    bv_pointerst solver{ns, sat_check, log.get_message_handler()};

    solver.unbounded_array=bv_pointerst::unbounded_arrayt::U_ALL;


    exprt current=(*it).lazy;


    // some minor simplifications

    // check if they are worth having

    if(current.id()==ID_implies)

    {

      implies_exprt imp=to_implies_expr(current);

      exprt implies_simplified=get(imp.op0());

      if(implies_simplified==false_exprt())

      {

        ++it;

        continue;

      }

    }


    if(current.id()==ID_or)

    {

      or_exprt orexp=to_or_expr(current);

      INVARIANT(

        orexp.operands().size() == 2, "only treats the case of a binary or");

      exprt o1=get(orexp.op0());

      exprt o2=get(orexp.op1());

      if(o1==true_exprt() || o2 == true_exprt())

      {

        ++it;

        continue;

      }

    }


    exprt simplified=get(current);

    solver << simplified;


    switch(static_cast<decision_proceduret::resultt>(sat_check.prop_solve()))

    {

    case decision_proceduret::resultt::D_SATISFIABLE:

      ++it;

      break;

    case decision_proceduret::resultt::D_UNSATISFIABLE:

      prop.l_set_to_true(convert(current));

      nb_active++;

      lazy_array_constraints.erase(it++);

      break;

    case decision_proceduret::resultt::D_ERROR:

      INVARIANT(false, "error in array over approximation check");

    }

  }


  log.debug() << "BV-Refinement: " << nb_active

              << " array expressions become active" << messaget::eom;

  log.debug() << "BV-Refinement: " << lazy_array_constraints.size()

              << " inactive array expressions" << messaget::eom;

  if(nb_active > 0)

    progress=true;

}

void bv_refinementt::arrays_overapproximated() {…}


void bv_refinementt::freeze_lazy_constraints()

{

  if(!lazy_arrays)

    return;


  for(const auto &constraint : lazy_array_constraints)

  {

    for(const auto &symbol : find_symbols(constraint.lazy))

    {

      if(!bv_width.get_width_opt(symbol.type()).has_value())

        continue;

      const bvt bv=convert_bv(symbol);

      for(const auto &literal : bv)

        if(!literal.is_constant())

          prop.set_frozen(literal);

    }

  }

}

void bv_refinementt::freeze_lazy_constraints() {…}

convert
static bool convert(const irep_idt &identifier, const std::ostringstream &s, symbol_table_baset &symbol_table, message_handlert &message_handler)
Definition builtin_factory.cpp:42

bv_refinement.h
Abstraction Refinement Loop.

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

arrayst::lazy_array_constraints
std::list< lazy_constraintt > lazy_array_constraints
Definition arrays.h:115

arrayst::ns
const namespacet & ns
Definition arrays.h:56

arrayst::lazy_arrays
bool lazy_arrays
Definition arrays.h:112

arrayst::collect_indices
void collect_indices()
Definition arrays.cpp:83

arrayst::add_array_constraints
void add_array_constraints()
Definition arrays.cpp:280

arrayst::update_index_map
void update_index_map(bool update_all)
Definition arrays.cpp:407

arrayst::log
messaget log
Definition arrays.h:57

boolbv_widtht::get_width_opt
virtual std::optional< std::size_t > get_width_opt(const typet &type) const
Definition boolbv_width.h:31

boolbvt::convert_bv
virtual const bvt & convert_bv(const exprt &expr, const std::optional< std::size_t > expected_width={})
Convert expression to vector of literalts, using an internal cache to speed up conversion if availabl...
Definition boolbv.cpp:39

boolbvt::unbounded_arrayt::U_ALL
@ U_ALL

boolbvt::bv_width
boolbv_widtht bv_width
Definition boolbv.h:117

boolbvt::get
exprt get(const exprt &expr) const override
Return expr with variables replaced by values from satisfying assignment if available.
Definition boolbv_get.cpp:21

bv_pointerst
Definition bv_pointers.h:17

bv_refinementt::progress
bool progress
Definition bv_refinement.h:107

bv_refinementt::config_
configt config_
Definition bv_refinement.h:112

bv_refinementt::freeze_lazy_constraints
void freeze_lazy_constraints()
freeze symbols for incremental solving
Definition refine_arrays.cpp:107

bv_refinementt::arrays_overapproximated
void arrays_overapproximated()
check whether counterexample is spurious
Definition refine_arrays.cpp:36

bv_refinementt::finish_eager_conversion_arrays
void finish_eager_conversion_arrays() override
generate array constraints
Definition refine_arrays.cpp:21

decision_proceduret::resultt
resultt
Result of running the decision procedure.
Definition decision_procedure.h:45

decision_proceduret::resultt::D_ERROR
@ D_ERROR

decision_proceduret::resultt::D_UNSATISFIABLE
@ D_UNSATISFIABLE

decision_proceduret::resultt::D_SATISFIABLE
@ D_SATISFIABLE

exprt
Base class for all expressions.
Definition expr.h:56

false_exprt
The Boolean constant false.
Definition std_expr.h:3199

implies_exprt
Boolean implication.
Definition std_expr.h:2225

irept::id
const irep_idt & id() const
Definition irep.h:388

messaget::debug
mstreamt & debug() const
Definition message.h:421

messaget::get_message_handler
message_handlert & get_message_handler()
Definition message.h:183

messaget::eom
static eomt eom
Definition message.h:289

or_exprt
Boolean OR.
Definition std_expr.h:2270

prop_conv_solvert::prop
propt & prop
Definition prop_conv_solver.h:130

propt::l_set_to_true
void l_set_to_true(literalt a)
Definition prop.h:52

propt::set_frozen
virtual void set_frozen(literalt)
Definition prop.h:117

true_exprt
The Boolean constant true.
Definition std_expr.h:3190

find_symbols
static bool find_symbols(symbol_kindt, const typet &, std::function< bool(const symbol_exprt &)>, std::unordered_set< irep_idt > &bindings, const std::vector< irep_idt > &subs_to_find)
Find identifiers with id ID_symbol of the sub expressions and the subs with ID in subs_to_find consid...
Definition find_symbols.cpp:152

find_symbols.h

bvt
std::vector< literalt > bvt
Definition literal.h:201

satcheck.h

solver
void solver(std::vector< framet > &frames, const std::unordered_set< symbol_exprt, irep_hash > &address_taken, const solver_optionst &solver_options, const namespacet &ns, std::vector< propertyt > &properties, std::size_t property_index)
Definition solver.cpp:44

INVARIANT
#define INVARIANT(CONDITION, REASON)
This macro uses the wrapper function 'invariant_violated_string'.
Definition invariant.h:423

std_expr.h
API to expression classes.

to_or_expr
const or_exprt & to_or_expr(const exprt &expr)
Cast an exprt to a or_exprt.
Definition std_expr.h:2317

to_implies_expr
const implies_exprt & to_implies_expr(const exprt &expr)
Cast an exprt to a implies_exprt.
Definition std_expr.h:2250

bv_refinementt::configt::refine_arrays
bool refine_arrays
Enable array refinement.
Definition bv_refinement.h:28