cbmc/rewrite__union_8cpp_source.html

/*******************************************************************\


Module: Symbolic Execution of ANSI-C


Author: Daniel Kroening, kroening@kroening.com


\*******************************************************************/


#include "rewrite_union.h"


#include <util/arith_tools.h>

#include <util/byte_operators.h>

#include <util/c_types.h>

#include <util/pointer_expr.h>

#include <util/pointer_offset_size.h>

#include <util/std_code.h>


#include <goto-programs/goto_model.h>


static bool have_to_rewrite_union(const exprt &expr)

{

  if(expr.id()==ID_member)

  {

    const exprt &op=to_member_expr(expr).struct_op();


    if(op.type().id() == ID_union_tag || op.type().id() == ID_union)

      return true;

  }

  else if(expr.id()==ID_union)

    return true;


  for(const auto &op : expr.operands())

  {

    if(have_to_rewrite_union(op))

      return true;

  }


  return false;

}

static bool have_to_rewrite_union(const exprt &expr) {…}


// inside an address of (&x), unions can simply

// be type casts and don't have to be re-written!


void rewrite_union_address_of(exprt &expr)

{

  if(!have_to_rewrite_union(expr))

    return;


  if(expr.id()==ID_index)

  {

    rewrite_union_address_of(to_index_expr(expr).array());

    rewrite_union(to_index_expr(expr).index());

  }

  else if(expr.id()==ID_member)

    rewrite_union_address_of(to_member_expr(expr).struct_op());

  else if(expr.id()==ID_symbol)

  {

    // done!

  }

  else if(expr.id()==ID_dereference)

    rewrite_union(to_dereference_expr(expr).pointer());

}

void rewrite_union_address_of(exprt &expr) {…}


void rewrite_union(exprt &expr)

{

  if(expr.id()==ID_address_of)

  {

    rewrite_union_address_of(to_address_of_expr(expr).object());

    return;

  }


  if(!have_to_rewrite_union(expr))

    return;


  Forall_operands(it, expr)

    rewrite_union(*it);


  if(expr.id()==ID_member)

  {

    const exprt &op=to_member_expr(expr).struct_op();


    if(op.type().id() == ID_union_tag || op.type().id() == ID_union)

    {

      exprt offset = from_integer(0, c_index_type());

      expr = make_byte_extract(op, offset, expr.type());

    }

  }

  else if(expr.id()==ID_union)

  {

    const union_exprt &union_expr=to_union_expr(expr);

    exprt offset = from_integer(0, c_index_type());

    side_effect_expr_nondett nondet(expr.type(), expr.source_location());

    expr = make_byte_update(nondet, offset, union_expr.op());

  }

}

void rewrite_union(exprt &expr) {…}


void rewrite_union(goto_functionst::goto_functiont &goto_function)

{

  for(auto &instruction : goto_function.body.instructions)

  {

    rewrite_union(instruction.code_nonconst());


    if(instruction.has_condition())

      rewrite_union(instruction.condition_nonconst());

  }

}

void rewrite_union(goto_functionst::goto_functiont &goto_function) {…}


void rewrite_union(goto_functionst &goto_functions)

{

  for(auto &gf_entry : goto_functions.function_map)

    rewrite_union(gf_entry.second);

}

void rewrite_union(goto_functionst &goto_functions) {…}


void rewrite_union(goto_modelt &goto_model)

{

  rewrite_union(goto_model.goto_functions);

}

void rewrite_union(goto_modelt &goto_model) {…}


static bool restore_union_rec(exprt &expr, const namespacet &ns)

{

  bool unmodified = true;


  Forall_operands(it, expr)

    unmodified &= restore_union_rec(*it, ns);


  if(

    expr.id() == ID_byte_extract_little_endian ||

    expr.id() == ID_byte_extract_big_endian)

  {

    byte_extract_exprt &be = to_byte_extract_expr(expr);

    if(be.op().type().id() == ID_union || be.op().type().id() == ID_union_tag)

    {

      const union_typet &union_type =

        be.op().type().id() == ID_union_tag

          ? ns.follow_tag(to_union_tag_type(be.op().type()))

          : to_union_type(be.op().type());


      for(const auto &comp : union_type.components())

      {

        if(be.offset().is_zero() && be.type() == comp.type())

        {

          expr = member_exprt{be.op(), comp.get_name(), be.type()};

          return false;

        }

        else if(

          comp.type().id() == ID_array || comp.type().id() == ID_struct ||

          comp.type().id() == ID_struct_tag)

        {

          std::optional<exprt> result = get_subexpression_at_offset(

            member_exprt{be.op(), comp.get_name(), comp.type()},

            be.offset(),

            be.type(),

            ns);

          if(result.has_value())

          {

            expr = *result;

            return false;

          }

        }

      }

    }

  }


  return unmodified;

}

static bool restore_union_rec(exprt &expr, const namespacet &ns) {…}


void restore_union(exprt &expr, const namespacet &ns)

{

  exprt tmp = expr;


  if(!restore_union_rec(tmp, ns))

    expr.swap(tmp);

}

void restore_union(exprt &expr, const namespacet &ns) {…}

from_integer
constant_exprt from_integer(const mp_integer &int_value, const typet &type)
Definition arith_tools.cpp:99

arith_tools.h

make_byte_update
byte_update_exprt make_byte_update(const exprt &_op, const exprt &_offset, const exprt &_value)
Construct a byte_update_exprt with endianness and byte width matching the current configuration.
Definition byte_operators.cpp:55

make_byte_extract
byte_extract_exprt make_byte_extract(const exprt &_op, const exprt &_offset, const typet &_type)
Construct a byte_extract_exprt with endianness and byte width matching the current configuration.
Definition byte_operators.cpp:48

byte_operators.h
Expression classes for byte-level operators.

to_byte_extract_expr
const byte_extract_exprt & to_byte_extract_expr(const exprt &expr)
Definition byte_operators.h:70

c_index_type
bitvector_typet c_index_type()
Definition c_types.cpp:16

c_types.h

to_union_type
const union_typet & to_union_type(const typet &type)
Cast a typet to a union_typet.
Definition c_types.h:184

to_union_tag_type
const union_tag_typet & to_union_tag_type(const typet &type)
Cast a typet to a union_tag_typet.
Definition c_types.h:224

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

byte_extract_exprt
Expression of type type extracted from some object op starting at position offset (given in number of...
Definition byte_operators.h:29

exprt
Base class for all expressions.
Definition expr.h:56

exprt::type
typet & type()
Return the type of the expression.
Definition expr.h:84

exprt::operands
operandst & operands()
Definition expr.h:94

exprt::source_location
const source_locationt & source_location() const
Definition expr.h:231

goto_functionst
A collection of goto functions.
Definition goto_functions.h:25

goto_functionst::function_map
function_mapt function_map
Definition goto_functions.h:29

goto_functionst::goto_functiont
::goto_functiont goto_functiont
Definition goto_functions.h:27

goto_modelt
Definition goto_model.h:27

goto_modelt::goto_functions
goto_functionst goto_functions
GOTO functions.
Definition goto_model.h:34

irept::swap
void swap(irept &irep)
Definition irep.h:434

irept::id
const irep_idt & id() const
Definition irep.h:388

member_exprt
Extract member of struct or union.
Definition std_expr.h:2971

namespace_baset::follow_tag
const union_typet & follow_tag(const union_tag_typet &) const
Follow type tag of union type.
Definition namespace.cpp:49

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition namespace.h:91

side_effect_expr_nondett
A side_effect_exprt that returns a non-deterministically chosen value.
Definition std_code.h:1520

union_exprt
Union constructor from single element.
Definition std_expr.h:1770

union_typet
The union type.
Definition c_types.h:147

Forall_operands
#define Forall_operands(it, expr)
Definition expr.h:27

goto_model.h
Symbol Table + CFG.

pointer_expr.h
API to expression classes for Pointers.

to_address_of_expr
const address_of_exprt & to_address_of_expr(const exprt &expr)
Cast an exprt to an address_of_exprt.
Definition pointer_expr.h:577

to_dereference_expr
const dereference_exprt & to_dereference_expr(const exprt &expr)
Cast an exprt to a dereference_exprt.
Definition pointer_expr.h:890

get_subexpression_at_offset
std::optional< exprt > get_subexpression_at_offset(const exprt &expr, const mp_integer &offset_bytes, const typet &target_type_raw, const namespacet &ns)
Definition pointer_offset_size.cpp:560

pointer_offset_size.h
Pointer Logic.

restore_union
void restore_union(exprt &expr, const namespacet &ns)
Undo the union access -> byte_extract replacement that rewrite_union did for the purpose of displayin...
Definition rewrite_union.cpp:180

have_to_rewrite_union
static bool have_to_rewrite_union(const exprt &expr)
Definition rewrite_union.cpp:23

rewrite_union_address_of
void rewrite_union_address_of(exprt &expr)
Definition rewrite_union.cpp:46

rewrite_union
void rewrite_union(exprt &expr)
We rewrite u.c for unions u into byte_extract(u, 0), and { .c = v } into byte_update(NIL,...
Definition rewrite_union.cpp:68

restore_union_rec
static bool restore_union_rec(exprt &expr, const namespacet &ns)
Undo the union access -> byte_extract replacement that rewrite_union did for the purpose of displayin...
Definition rewrite_union.cpp:128

rewrite_union.h
Symbolic Execution.

std_code.h

to_index_expr
const index_exprt & to_index_expr(const exprt &expr)
Cast an exprt to an index_exprt.
Definition std_expr.h:1538

to_member_expr
const member_exprt & to_member_expr(const exprt &expr)
Cast an exprt to a member_exprt.
Definition std_expr.h:3063

to_union_expr
const union_exprt & to_union_expr(const exprt &expr)
Cast an exprt to a union_exprt.
Definition std_expr.h:1816