cbmc/ssa__step_8cpp_source.html

/*******************************************************************\


Module: Symbolic Execution


Author: Romain Brenguier <romain.brenguier@diffblue.com>


*******************************************************************/


#include "ssa_step.h"


#include <util/format_expr.h>

#include <util/namespace.h>


void SSA_stept::output(std::ostream &out) const

{

  out << "Thread " << source.thread_nr;


  if(source.pc->source_location().is_not_nil())

    out << " " << source.pc->source_location() << '\n';

  else

    out << '\n';


  switch(type)

  {

  case goto_trace_stept::typet::ASSERT:

    out << "ASSERT " << format(cond_expr) << '\n';

    break;

  case goto_trace_stept::typet::ASSUME:

    out << "ASSUME " << format(cond_expr) << '\n';

    break;

  case goto_trace_stept::typet::LOCATION:

    out << "LOCATION" << '\n';

    break;

  case goto_trace_stept::typet::INPUT:

    out << "INPUT" << '\n';

    break;

  case goto_trace_stept::typet::OUTPUT:

    out << "OUTPUT" << '\n';

    break;


  case goto_trace_stept::typet::DECL:

    out << "DECL" << '\n';

    out << format(ssa_lhs) << '\n';

    break;


  case goto_trace_stept::typet::ASSIGNMENT:

    out << "ASSIGNMENT (";

    switch(assignment_type)

    {

    case symex_targett::assignment_typet::HIDDEN:

      out << "HIDDEN";

      break;

    case symex_targett::assignment_typet::STATE:

      out << "STATE";

      break;

    case symex_targett::assignment_typet::VISIBLE_ACTUAL_PARAMETER:

      out << "VISIBLE_ACTUAL_PARAMETER";

      break;

    case symex_targett::assignment_typet::HIDDEN_ACTUAL_PARAMETER:

      out << "HIDDEN_ACTUAL_PARAMETER";

      break;

    case symex_targett::assignment_typet::PHI:

      out << "PHI";

      break;

    case symex_targett::assignment_typet::GUARD:

      out << "GUARD";

      break;

    default:

    {

    }

    }


    out << ")\n";

    break;


  case goto_trace_stept::typet::DEAD:

    out << "DEAD\n";

    break;

  case goto_trace_stept::typet::FUNCTION_CALL:

    out << "FUNCTION_CALL\n";

    break;

  case goto_trace_stept::typet::FUNCTION_RETURN:

    out << "FUNCTION_RETURN\n";

    break;

  case goto_trace_stept::typet::CONSTRAINT:

    out << "CONSTRAINT\n";

    break;

  case goto_trace_stept::typet::SHARED_READ:

    out << "SHARED READ\n";

    break;

  case goto_trace_stept::typet::SHARED_WRITE:

    out << "SHARED WRITE\n";

    break;

  case goto_trace_stept::typet::ATOMIC_BEGIN:

    out << "ATOMIC_BEGIN\n";

    break;

  case goto_trace_stept::typet::ATOMIC_END:

    out << "AUTOMIC_END\n";

    break;

  case goto_trace_stept::typet::SPAWN:

    out << "SPAWN\n";

    break;

  case goto_trace_stept::typet::MEMORY_BARRIER:

    out << "MEMORY_BARRIER\n";

    break;

  case goto_trace_stept::typet::GOTO:

    out << "IF " << format(cond_expr) << " GOTO\n";

    break;


  case goto_trace_stept::typet::NONE:

    UNREACHABLE;

  }


  if(is_assert() || is_assume() || is_assignment() || is_constraint())

    out << format(cond_expr) << '\n';


  if(is_assert() || is_constraint())

    out << comment << '\n';


  if(is_shared_read() || is_shared_write())

    out << format(ssa_lhs) << '\n';


  out << "Guard: " << format(guard) << '\n';

}

void SSA_stept::output(std::ostream &out) const {…}


void SSA_stept::validate(const namespacet &ns, const validation_modet vm) const

{

  validate_full_expr(guard, ns, vm);


  switch(type)

  {

  case goto_trace_stept::typet::ASSERT:

    DATA_CHECK(vm, !property_id.empty(), "missing property id in assert step");

  case goto_trace_stept::typet::ASSUME:

  case goto_trace_stept::typet::GOTO:

  case goto_trace_stept::typet::CONSTRAINT:

    validate_full_expr(cond_expr, ns, vm);

    break;

  case goto_trace_stept::typet::DECL:

    validate_full_expr(ssa_lhs, ns, vm);

    validate_full_expr(ssa_full_lhs, ns, vm);

    validate_full_expr(original_full_lhs, ns, vm);

    break;

  case goto_trace_stept::typet::ASSIGNMENT:

    validate_full_expr(ssa_lhs, ns, vm);

    validate_full_expr(ssa_full_lhs, ns, vm);

    validate_full_expr(original_full_lhs, ns, vm);

    validate_full_expr(ssa_rhs, ns, vm);

    DATA_CHECK(

      vm,

      ssa_lhs.get_original_expr().type() == ssa_rhs.type(),

      "Type inequality in SSA assignment\nlhs-type: " +

        ssa_lhs.get_original_expr().type().id_string() +

        "\nrhs-type: " + ssa_rhs.type().id_string());

    break;

  case goto_trace_stept::typet::INPUT:

  case goto_trace_stept::typet::OUTPUT:

    for(const auto &expr : io_args)

      validate_full_expr(expr, ns, vm);

    break;

  case goto_trace_stept::typet::FUNCTION_CALL:

    for(const auto &expr : ssa_function_arguments)

      validate_full_expr(expr, ns, vm);

  case goto_trace_stept::typet::FUNCTION_RETURN:

  {

    const symbolt *symbol;

    DATA_CHECK(

      vm,

      called_function.empty() || !ns.lookup(called_function, symbol),

      "unknown function identifier " + id2string(called_function));

  }

  break;

  case goto_trace_stept::typet::NONE:

  case goto_trace_stept::typet::LOCATION:

  case goto_trace_stept::typet::DEAD:

  case goto_trace_stept::typet::SHARED_READ:

  case goto_trace_stept::typet::SHARED_WRITE:

  case goto_trace_stept::typet::SPAWN:

  case goto_trace_stept::typet::MEMORY_BARRIER:

  case goto_trace_stept::typet::ATOMIC_BEGIN:

  case goto_trace_stept::typet::ATOMIC_END:

    break;

  }

}

void SSA_stept::validate(const namespacet &ns, const validation_modet vm) const {…}


SSA_assignment_stept::SSA_assignment_stept(

  symex_targett::sourcet source,

  exprt _guard,

  ssa_exprt _ssa_lhs,

  exprt _ssa_full_lhs,

  exprt _original_full_lhs,

  exprt _ssa_rhs,

  symex_targett::assignment_typet _assignment_type)

  : SSA_stept(source, goto_trace_stept::typet::ASSIGNMENT)

{

  guard = std::move(_guard);

  ssa_lhs = std::move(_ssa_lhs);

  ssa_full_lhs = std::move(_ssa_full_lhs);

  original_full_lhs = std::move(_original_full_lhs);

  ssa_rhs = std::move(_ssa_rhs);

  assignment_type = _assignment_type;

  cond_expr = equal_exprt{ssa_lhs, ssa_rhs};

  hidden = assignment_type != symex_targett::assignment_typet::STATE &&

           assignment_type !=

             symex_targett::assignment_typet::VISIBLE_ACTUAL_PARAMETER;

}

SSA_assignment_stept::SSA_assignment_stept( {…}

SSA_assignment_stept::SSA_assignment_stept
SSA_assignment_stept(symex_targett::sourcet source, exprt guard, ssa_exprt ssa_lhs, exprt ssa_full_lhs, exprt original_full_lhs, exprt ssa_rhs, symex_targett::assignment_typet assignment_type)
Definition ssa_step.cpp:189

SSA_stept
Single SSA step in the equation.
Definition ssa_step.h:47

SSA_stept::called_function
irep_idt called_function
Definition ssa_step.h:163

SSA_stept::is_assume
bool is_assume() const
Definition ssa_step.h:57

SSA_stept::validate
void validate(const namespacet &ns, const validation_modet vm) const
Check that the SSA step is well-formed.
Definition ssa_step.cpp:129

SSA_stept::ssa_function_arguments
std::vector< exprt > ssa_function_arguments
Definition ssa_step.h:166

SSA_stept::cond_expr
exprt cond_expr
Definition ssa_step.h:145

SSA_stept::assignment_type
symex_targett::assignment_typet assignment_type
Definition ssa_step.h:142

SSA_stept::ssa_full_lhs
exprt ssa_full_lhs
Definition ssa_step.h:140

SSA_stept::type
goto_trace_stept::typet type
Definition ssa_step.h:50

SSA_stept::hidden
bool hidden
Definition ssa_step.h:133

SSA_stept::is_constraint
bool is_constraint() const
Definition ssa_step.h:72

SSA_stept::guard
exprt guard
Definition ssa_step.h:135

SSA_stept::is_shared_write
bool is_shared_write() const
Definition ssa_step.h:107

SSA_stept::ssa_rhs
exprt ssa_rhs
Definition ssa_step.h:141

SSA_stept::comment
std::string comment
Definition ssa_step.h:147

SSA_stept::source
symex_targett::sourcet source
Definition ssa_step.h:49

SSA_stept::original_full_lhs
exprt original_full_lhs
Definition ssa_step.h:140

SSA_stept::is_shared_read
bool is_shared_read() const
Definition ssa_step.h:102

SSA_stept::property_id
irep_idt property_id
Definition ssa_step.h:149

SSA_stept::io_args
std::list< exprt > io_args
Definition ssa_step.h:159

SSA_stept::output
void output(std::ostream &out) const
Definition ssa_step.cpp:14

SSA_stept::is_assignment
bool is_assignment() const
Definition ssa_step.h:62

SSA_stept::ssa_lhs
ssa_exprt ssa_lhs
Definition ssa_step.h:139

SSA_stept::is_assert
bool is_assert() const
Definition ssa_step.h:52

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

dstringt::empty
bool empty() const
Definition dstring.h:89

equal_exprt
Equality.
Definition std_expr.h:1366

exprt
Base class for all expressions.
Definition expr.h:56

exprt::type
typet & type()
Return the type of the expression.
Definition expr.h:84

goto_trace_stept
Step of the trace of a GOTO program.
Definition goto_trace.h:50

goto_trace_stept::typet::SPAWN
@ SPAWN

goto_trace_stept::typet::ASSERT
@ ASSERT

goto_trace_stept::typet::ATOMIC_END
@ ATOMIC_END

goto_trace_stept::typet::GOTO
@ GOTO

goto_trace_stept::typet::OUTPUT
@ OUTPUT

goto_trace_stept::typet::MEMORY_BARRIER
@ MEMORY_BARRIER

goto_trace_stept::typet::SHARED_WRITE
@ SHARED_WRITE

goto_trace_stept::typet::SHARED_READ
@ SHARED_READ

goto_trace_stept::typet::LOCATION
@ LOCATION

goto_trace_stept::typet::DECL
@ DECL

goto_trace_stept::typet::ASSIGNMENT
@ ASSIGNMENT

goto_trace_stept::typet::INPUT
@ INPUT

goto_trace_stept::typet::NONE
@ NONE

goto_trace_stept::typet::DEAD
@ DEAD

goto_trace_stept::typet::FUNCTION_RETURN
@ FUNCTION_RETURN

goto_trace_stept::typet::ASSUME
@ ASSUME

goto_trace_stept::typet::CONSTRAINT
@ CONSTRAINT

goto_trace_stept::typet::ATOMIC_BEGIN
@ ATOMIC_BEGIN

goto_trace_stept::typet::FUNCTION_CALL
@ FUNCTION_CALL

irept::id_string
const std::string & id_string() const
Definition irep.h:391

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition namespace.h:91

namespacet::lookup
bool lookup(const irep_idt &name, const symbolt *&symbol) const override
See documentation for namespace_baset::lookup().
Definition namespace.cpp:134

ssa_exprt
Expression providing an SSA-renamed symbol of expressions.
Definition ssa_expr.h:17

ssa_exprt::get_original_expr
const exprt & get_original_expr() const
Definition ssa_expr.h:33

symbolt
Symbol table entry.
Definition symbol.h:28

symex_targett::assignment_typet
assignment_typet
Definition symex_target.h:69

symex_targett::assignment_typet::STATE
@ STATE

symex_targett::assignment_typet::HIDDEN
@ HIDDEN

symex_targett::assignment_typet::GUARD
@ GUARD

symex_targett::assignment_typet::VISIBLE_ACTUAL_PARAMETER
@ VISIBLE_ACTUAL_PARAMETER

symex_targett::assignment_typet::HIDDEN_ACTUAL_PARAMETER
@ HIDDEN_ACTUAL_PARAMETER

symex_targett::assignment_typet::PHI
@ PHI

typet
The type of an expression, extends irept.
Definition type.h:29

format
static format_containert< T > format(const T &o)
Definition format.h:37

format_expr.h

id2string
const std::string & id2string(const irep_idt &d)
Definition irep.h:44

namespace.h

UNREACHABLE
#define UNREACHABLE
This should be used to mark dead code.
Definition invariant.h:525

ssa_step.h

symex_targett::sourcet
Identifies source in the context of symbolic execution.
Definition symex_target.h:37

symex_targett::sourcet::thread_nr
unsigned thread_nr
Definition symex_target.h:38

symex_targett::sourcet::pc
goto_programt::const_targett pc
Definition symex_target.h:42

DATA_CHECK
#define DATA_CHECK(vm, condition, message)
This macro takes a condition which denotes a well-formedness criterion on goto programs,...
Definition validate.h:22

validate_full_expr
void validate_full_expr(const exprt &expr, const namespacet &ns, const validation_modet vm)
Check that the given expression is well-formed (full check, including checks of all subexpressions an...
Definition validate_expressions.cpp:114

validation_modet
validation_modet
Definition validation_mode.h:13