cbmc/rewrite__union_8cpp_source.html

 /*******************************************************************\


 Module: Symbolic Execution of ANSI-C


 Author: Daniel Kroening, kroening@kroening.com


 \*******************************************************************/


 #include "rewrite_union.h"


 #include <util/arith_tools.h>

 #include <util/byte_operators.h>

 #include <util/c_types.h>

 #include <util/pointer_expr.h>

 #include <util/pointer_offset_size.h>

 #include <util/std_code.h>


 #include <goto-programs/goto_model.h>


 static bool have_to_rewrite_union(const exprt &expr)

 {

   if(expr.id()==ID_member)

   {

     const exprt &op=to_member_expr(expr).struct_op();


     if(op.type().id() == ID_union_tag || op.type().id() == ID_union)

       return true;

   }

   else if(expr.id()==ID_union)

     return true;


   for(const auto &op : expr.operands())

   {

     if(have_to_rewrite_union(op))

       return true;

   }


   return false;

 }


 // inside an address of (&x), unions can simply

 // be type casts and don't have to be re-written!

 void rewrite_union_address_of(exprt &expr)

 {

   if(!have_to_rewrite_union(expr))

     return;


   if(expr.id()==ID_index)

   {

     rewrite_union_address_of(to_index_expr(expr).array());

     rewrite_union(to_index_expr(expr).index());

   }

   else if(expr.id()==ID_member)

     rewrite_union_address_of(to_member_expr(expr).struct_op());

   else if(expr.id()==ID_symbol)

   {

     // done!

   }

   else if(expr.id()==ID_dereference)

     rewrite_union(to_dereference_expr(expr).pointer());

 }


 void rewrite_union(exprt &expr)

 {

   if(expr.id()==ID_address_of)

   {

     rewrite_union_address_of(to_address_of_expr(expr).object());

     return;

   }


   if(!have_to_rewrite_union(expr))

     return;


   Forall_operands(it, expr)

     rewrite_union(*it);


   if(expr.id()==ID_member)

   {

     const exprt &op=to_member_expr(expr).struct_op();


     if(op.type().id() == ID_union_tag || op.type().id() == ID_union)

     {

       exprt offset = from_integer(0, c_index_type());

       expr = make_byte_extract(op, offset, expr.type());

     }

   }

   else if(expr.id()==ID_union)

   {

     const union_exprt &union_expr=to_union_expr(expr);

     exprt offset = from_integer(0, c_index_type());

     side_effect_expr_nondett nondet(expr.type(), expr.source_location());

     expr = make_byte_update(nondet, offset, union_expr.op());

   }

 }


 void rewrite_union(goto_functionst::goto_functiont &goto_function)

 {

   for(auto &instruction : goto_function.body.instructions)

   {

     rewrite_union(instruction.code_nonconst());


     if(instruction.has_condition())

       rewrite_union(instruction.condition_nonconst());

   }

 }


 void rewrite_union(goto_functionst &goto_functions)

 {

   for(auto &gf_entry : goto_functions.function_map)

     rewrite_union(gf_entry.second);

 }


 void rewrite_union(goto_modelt &goto_model)

 {

   rewrite_union(goto_model.goto_functions);

 }


 static bool restore_union_rec(exprt &expr, const namespacet &ns)

 {

   bool unmodified = true;


   Forall_operands(it, expr)

     unmodified &= restore_union_rec(*it, ns);


   if(

     expr.id() == ID_byte_extract_little_endian ||

     expr.id() == ID_byte_extract_big_endian)

   {

     byte_extract_exprt &be = to_byte_extract_expr(expr);

     if(be.op().type().id() == ID_union || be.op().type().id() == ID_union_tag)

     {

       const union_typet &union_type =

         be.op().type().id() == ID_union_tag

           ? ns.follow_tag(to_union_tag_type(be.op().type()))

           : to_union_type(be.op().type());


       for(const auto &comp : union_type.components())

       {

         if(be.offset().is_zero() && be.type() == comp.type())

         {

           expr = member_exprt{be.op(), comp.get_name(), be.type()};

           return false;

         }

         else if(

           comp.type().id() == ID_array || comp.type().id() == ID_struct ||

           comp.type().id() == ID_struct_tag)

         {

           std::optional<exprt> result = get_subexpression_at_offset(

             member_exprt{be.op(), comp.get_name(), comp.type()},

             be.offset(),

             be.type(),

             ns);

           if(result.has_value())

           {

             expr = *result;

             return false;

           }

         }

       }

     }

   }


   return unmodified;

 }


 void restore_union(exprt &expr, const namespacet &ns)

 {

   exprt tmp = expr;


   if(!restore_union_rec(tmp, ns))

     expr.swap(tmp);

 }

from_integer
constant_exprt from_integer(const mp_integer &int_value, const typet &type)
Definition: arith_tools.cpp:100

arith_tools.h

make_byte_update
byte_update_exprt make_byte_update(const exprt &_op, const exprt &_offset, const exprt &_value)
Construct a byte_update_exprt with endianness and byte width matching the current configuration.
Definition: byte_operators.cpp:55

make_byte_extract
byte_extract_exprt make_byte_extract(const exprt &_op, const exprt &_offset, const typet &_type)
Construct a byte_extract_exprt with endianness and byte width matching the current configuration.
Definition: byte_operators.cpp:48

byte_operators.h
Expression classes for byte-level operators.

to_byte_extract_expr
const byte_extract_exprt & to_byte_extract_expr(const exprt &expr)
Definition: byte_operators.h:70

c_index_type
bitvector_typet c_index_type()
Definition: c_types.cpp:16

c_types.h

to_union_tag_type
const union_tag_typet & to_union_tag_type(const typet &type)
Cast a typet to a union_tag_typet.
Definition: c_types.h:224

to_union_type
const union_typet & to_union_type(const typet &type)
Cast a typet to a union_typet.
Definition: c_types.h:184

byte_extract_exprt
Expression of type type extracted from some object op starting at position offset (given in number of...
Definition: byte_operators.h:29

byte_extract_exprt::op
exprt & op()
Definition: byte_operators.h:46

byte_extract_exprt::offset
exprt & offset()
Definition: byte_operators.h:47

exprt
Base class for all expressions.
Definition: expr.h:56

exprt::source_location
const source_locationt & source_location() const
Definition: expr.h:231

exprt::is_zero
bool is_zero() const
Return whether the expression is a constant representing 0.
Definition: expr.cpp:47

exprt::type
typet & type()
Return the type of the expression.
Definition: expr.h:84

exprt::operands
operandst & operands()
Definition: expr.h:94

goto_functionst
A collection of goto functions.
Definition: goto_functions.h:25

goto_functionst::function_map
function_mapt function_map
Definition: goto_functions.h:29

goto_functionst::goto_functiont
::goto_functiont goto_functiont
Definition: goto_functions.h:27

goto_modelt
Definition: goto_model.h:27

goto_modelt::goto_functions
goto_functionst goto_functions
GOTO functions.
Definition: goto_model.h:34

irept::id
const irep_idt & id() const
Definition: irep.h:388

irept::swap
void swap(irept &irep)
Definition: irep.h:434

member_exprt
Extract member of struct or union.
Definition: std_expr.h:2849

member_exprt::struct_op
const exprt & struct_op() const
Definition: std_expr.h:2887

namespace_baset::follow_tag
const union_typet & follow_tag(const union_tag_typet &) const
Follow type tag of union type.
Definition: namespace.cpp:63

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition: namespace.h:94

side_effect_expr_nondett
A side_effect_exprt that returns a non-deterministically chosen value.
Definition: std_code.h:1520

struct_union_typet::components
const componentst & components() const
Definition: std_types.h:147

unary_exprt::op
const exprt & op() const
Definition: std_expr.h:391

union_exprt
Union constructor from single element.
Definition: std_expr.h:1770

union_typet
The union type.
Definition: c_types.h:147

Forall_operands
#define Forall_operands(it, expr)
Definition: expr.h:27

goto_model.h
Symbol Table + CFG.

pointer_expr.h
API to expression classes for Pointers.

to_dereference_expr
const dereference_exprt & to_dereference_expr(const exprt &expr)
Cast an exprt to a dereference_exprt.
Definition: pointer_expr.h:890

to_address_of_expr
const address_of_exprt & to_address_of_expr(const exprt &expr)
Cast an exprt to an address_of_exprt.
Definition: pointer_expr.h:577

get_subexpression_at_offset
std::optional< exprt > get_subexpression_at_offset(const exprt &expr, const mp_integer &offset_bytes, const typet &target_type_raw, const namespacet &ns)
Definition: pointer_offset_size.cpp:560

pointer_offset_size.h
Pointer Logic.

restore_union
void restore_union(exprt &expr, const namespacet &ns)
Undo the union access -> byte_extract replacement that rewrite_union did for the purpose of displayin...
Definition: rewrite_union.cpp:180

have_to_rewrite_union
static bool have_to_rewrite_union(const exprt &expr)
Definition: rewrite_union.cpp:23

rewrite_union_address_of
void rewrite_union_address_of(exprt &expr)
Definition: rewrite_union.cpp:46

rewrite_union
void rewrite_union(exprt &expr)
We rewrite u.c for unions u into byte_extract(u, 0), and { .c = v } into byte_update(NIL,...
Definition: rewrite_union.cpp:68

restore_union_rec
static bool restore_union_rec(exprt &expr, const namespacet &ns)
Undo the union access -> byte_extract replacement that rewrite_union did for the purpose of displayin...
Definition: rewrite_union.cpp:128

rewrite_union.h
Symbolic Execution.

std_code.h

to_union_expr
const union_exprt & to_union_expr(const exprt &expr)
Cast an exprt to a union_exprt.
Definition: std_expr.h:1816

to_member_expr
const member_exprt & to_member_expr(const exprt &expr)
Cast an exprt to a member_exprt.
Definition: std_expr.h:2941

to_index_expr
const index_exprt & to_index_expr(const exprt &expr)
Cast an exprt to an index_exprt.
Definition: std_expr.h:1538