cbmc/string__concatenation__builtin__function_8cpp_source.html

 /*******************************************************************\


 Module: Builtin functions for string concatenations


 Author: Romain Brenguier, Joel Allred


 \*******************************************************************/


 #include "string_concatenation_builtin_function.h"


 #include <algorithm>


 string_concatenation_builtin_functiont::string_concatenation_builtin_functiont(

   const exprt &return_code,

   const std::vector<exprt> &fun_args,

   array_poolt &array_pool)

   : string_insertion_builtin_functiont(return_code, array_pool)

 {

   PRECONDITION(fun_args.size() >= 4 && fun_args.size() <= 6);

   const auto arg1 = expr_checked_cast<struct_exprt>(fun_args[2]);

   input1 = array_pool.find(arg1.op1(), arg1.op0());

   const auto arg2 = expr_checked_cast<struct_exprt>(fun_args[3]);

   input2 = array_pool.find(arg2.op1(), arg2.op0());

   result = array_pool.find(fun_args[1], fun_args[0]);

   args.insert(args.end(), fun_args.begin() + 4, fun_args.end());

 }


 std::pair<exprt, string_constraintst>

 string_constraint_generatort::add_axioms_for_concat_substr(

   const array_string_exprt &res,

   const array_string_exprt &s1,

   const array_string_exprt &s2,

   const exprt &start_index,

   const exprt &end_index)

 {

   string_constraintst constraints;

   const typet &index_type = start_index.type();

   const exprt start1 = maximum(start_index, from_integer(0, index_type));

   const exprt end1 =

     maximum(minimum(end_index, array_pool.get_or_create_length(s2)), start1);


   // Axiom 1.

   constraints.existential.push_back(length_constraint_for_concat_substr(

     res, s1, s2, start_index, end_index, array_pool));


   // Axiom 2.

   constraints.universal.push_back([&] {

     const symbol_exprt idx = fresh_symbol("QA_index_concat", res.length_type());

     return string_constraintt(

       idx,

       zero_if_negative(array_pool.get_or_create_length(s1)),

       equal_exprt(s1[idx], res[idx]),

       message_handler);

   }());


   // Axiom 3.

   constraints.universal.push_back([&] {

     const symbol_exprt idx2 =

       fresh_symbol("QA_index_concat2", res.length_type());

     const equal_exprt res_eq(

       res[plus_exprt(idx2, array_pool.get_or_create_length(s1))],

       s2[plus_exprt(start1, idx2)]);

     const minus_exprt upper_bound(

       array_pool.get_or_create_length(res),

       array_pool.get_or_create_length(s1));

     return string_constraintt(

       idx2, zero_if_negative(upper_bound), res_eq, message_handler);

   }());


   return {from_integer(0, get_return_code_type()), std::move(constraints)};

 }


 exprt length_constraint_for_concat_substr(

   const array_string_exprt &res,

   const array_string_exprt &s1,

   const array_string_exprt &s2,

   const exprt &start,

   const exprt &end,

   array_poolt &array_pool)

 {

   PRECONDITION(res.length_type().id() == ID_signedbv);

   const exprt start1 = maximum(start, from_integer(0, start.type()));

   const exprt end1 =

     maximum(minimum(end, array_pool.get_or_create_length(s2)), start1);

   const plus_exprt res_length(

     array_pool.get_or_create_length(s1), minus_exprt(end1, start1));

   const exprt overflow = sum_overflows(res_length);

   const exprt max_int = to_signedbv_type(res.length_type()).largest_expr();

   return equal_exprt(

     array_pool.get_or_create_length(res),

     if_exprt(overflow, max_int, res_length));

 }


 exprt length_constraint_for_concat(

   const array_string_exprt &res,

   const array_string_exprt &s1,

   const array_string_exprt &s2,

   array_poolt &array_pool)

 {

   return equal_exprt(

     array_pool.get_or_create_length(res),

     plus_exprt(

       array_pool.get_or_create_length(s1),

       array_pool.get_or_create_length(s2)));

 }


 exprt length_constraint_for_concat_char(

   const array_string_exprt &res,

   const array_string_exprt &s1,

   array_poolt &array_pool)

 {

   return equal_exprt(

     array_pool.get_or_create_length(res),

     plus_exprt(

       array_pool.get_or_create_length(s1), from_integer(1, s1.length_type())));

 }


 std::pair<exprt, string_constraintst>

 string_constraint_generatort::add_axioms_for_concat(

   const array_string_exprt &res,

   const array_string_exprt &s1,

   const array_string_exprt &s2)

 {

   exprt index_zero = from_integer(0, s2.length_type());

   return add_axioms_for_concat_substr(

     res, s1, s2, index_zero, array_pool.get_or_create_length(s2));

 }


 std::pair<exprt, string_constraintst>

 string_constraint_generatort::add_axioms_for_concat_code_point(

   const function_application_exprt &f)

 {

   PRECONDITION(f.arguments().size() == 4);

   const array_string_exprt res =

     array_pool.find(f.arguments()[1], f.arguments()[0]);

   const array_string_exprt s1 = get_string_expr(array_pool, f.arguments()[2]);

   const typet &char_type = to_type_with_subtype(s1.content().type()).subtype();

   const typet &index_type = s1.length_type();

   const array_string_exprt code_point =

     array_pool.fresh_string(index_type, char_type);

   return combine_results(

     add_axioms_for_code_point(code_point, f.arguments()[3]),

     add_axioms_for_concat(res, s1, code_point));

 }


 std::vector<mp_integer> string_concatenation_builtin_functiont::eval(

   const std::vector<mp_integer> &input1_value,

   const std::vector<mp_integer> &input2_value,

   const std::vector<mp_integer> &args_value) const

 {

   const auto start_index =

     args_value.size() > 0 && args_value[0] > 0 ? args_value[0] : mp_integer(0);

   const mp_integer input2_size(input2_value.size());

   const auto end_index =

     args_value.size() > 1

       ? std::max(std::min(args_value[1], input2_size), start_index)

       : input2_size;


   std::vector<mp_integer> eval_result(input1_value);

   eval_result.insert(

     eval_result.end(),

     input2_value.begin() + numeric_cast_v<std::size_t>(start_index),

     input2_value.begin() + numeric_cast_v<std::size_t>(end_index));

   return eval_result;

 }


 string_constraintst string_concatenation_builtin_functiont::constraints(

   string_constraint_generatort &generator,

   message_handlert &message_handler) const


 {

   auto pair = [&]() -> std::pair<exprt, string_constraintst> {

     if(args.size() == 0)

       return generator.add_axioms_for_concat(result, input1, input2);

     if(args.size() == 2)

     {

       return generator.add_axioms_for_concat_substr(

         result, input1, input2, args[0], args[1]);

     }

     UNREACHABLE;

   }();

   pair.second.existential.push_back(equal_exprt(pair.first, return_code));

   return pair.second;

 }


 exprt string_concatenation_builtin_functiont::length_constraint() const

 {

   if(args.size() == 0)

     return length_constraint_for_concat(result, input1, input2, array_pool);

   if(args.size() == 2)

     return length_constraint_for_concat_substr(

       result, input1, input2, args[0], args[1], array_pool);

   UNREACHABLE;

 }

from_integer
constant_exprt from_integer(const mp_integer &int_value, const typet &type)
Definition: arith_tools.cpp:100

get_string_expr
array_string_exprt get_string_expr(array_poolt &array_pool, const exprt &expr)
Fetch the string_exprt corresponding to the given refined_string_exprt.
Definition: array_pool.cpp:199

to_signedbv_type
const signedbv_typet & to_signedbv_type(const typet &type)
Cast a typet to a signedbv_typet.
Definition: bitvector_types.h:245

s2
int16_t s2
Definition: bytecode_info.h:60

s1
int8_t s1
Definition: bytecode_info.h:59

char_type
bitvector_typet char_type()
Definition: c_types.cpp:106

array_poolt
Correspondance between arrays and pointers string representations.
Definition: array_pool.h:42

array_poolt::get_or_create_length
exprt get_or_create_length(const array_string_exprt &s)
Get the length of an array_string_exprt from the array_pool.
Definition: array_pool.cpp:26

array_poolt::fresh_string
array_string_exprt fresh_string(const typet &index_type, const typet &char_type)
Construct a string expression whose length and content are new variables.
Definition: array_pool.cpp:57

array_poolt::find
array_string_exprt find(const exprt &pointer, const exprt &length)
Creates a new array if the pointer is not pointing to an array.
Definition: array_pool.cpp:184

array_string_exprt
Definition: string_expr.h:68

array_string_exprt::length_type
const typet & length_type() const
Definition: string_expr.h:70

equal_exprt
Equality.
Definition: std_expr.h:1361

exprt
Base class for all expressions.
Definition: expr.h:56

exprt::type
typet & type()
Return the type of the expression.
Definition: expr.h:84

function_application_exprt
Application of (mathematical) function.
Definition: mathematical_expr.h:197

function_application_exprt::arguments
argumentst & arguments()
Definition: mathematical_expr.h:218

if_exprt
The trinary if-then-else operator.
Definition: std_expr.h:2370

integer_bitvector_typet::largest_expr
constant_exprt largest_expr() const
Return an expression representing the largest value of this type.
Definition: bitvector_types.cpp:65

irept::id
const irep_idt & id() const
Definition: irep.h:388

message_handlert
Definition: message.h:27

minus_exprt
Binary minus.
Definition: std_expr.h:1061

plus_exprt
The plus expression Associativity is not specified.
Definition: std_expr.h:1002

string_builtin_functiont::return_code
exprt return_code
Definition: string_builtin_function.h:110

string_builtin_functiont::array_pool
array_poolt & array_pool
Definition: string_builtin_function.h:121

string_concatenation_builtin_functiont::constraints
string_constraintst constraints(string_constraint_generatort &generator, message_handlert &message_handler) const override
Add constraints ensuring that the value of result expression of the builtin function corresponds to t...
Definition: string_concatenation_builtin_function.cpp:212

string_concatenation_builtin_functiont::string_concatenation_builtin_functiont
string_concatenation_builtin_functiont(const exprt &return_code, const std::vector< exprt > &fun_args, array_poolt &array_pool)
Constructor from arguments of a function application.
Definition: string_concatenation_builtin_function.cpp:16

string_concatenation_builtin_functiont::eval
std::vector< mp_integer > eval(const std::vector< mp_integer > &input1_value, const std::vector< mp_integer > &input2_value, const std::vector< mp_integer > &args_value) const override
Evaluate the result from a concrete valuation of the arguments.
Definition: string_concatenation_builtin_function.cpp:191

string_concatenation_builtin_functiont::length_constraint
exprt length_constraint() const override
Constraint ensuring that the length of the strings are coherent with the function call.
Definition: string_concatenation_builtin_function.cpp:231

string_constraint_generatort
Definition: string_constraint_generator.h:48

string_constraint_generatort::add_axioms_for_concat
std::pair< exprt, string_constraintst > add_axioms_for_concat(const array_string_exprt &res, const array_string_exprt &s1, const array_string_exprt &s2)
Add axioms enforcing that res is equal to the concatenation of s1 and s2.
Definition: string_concatenation_builtin_function.cpp:160

string_constraint_generatort::add_axioms_for_concat_substr
std::pair< exprt, string_constraintst > add_axioms_for_concat_substr(const array_string_exprt &res, const array_string_exprt &s1, const array_string_exprt &s2, const exprt &start_index, const exprt &end_index)
Add axioms enforcing that res is the concatenation of s1 with the substring of s2 starting at index ‘...
Definition: string_concatenation_builtin_function.cpp:53

string_constraint_generatort::message_handler
message_handlert & message_handler
Definition: string_constraint_generator.h:75

string_constraint_generatort::add_axioms_for_code_point
std::pair< exprt, string_constraintst > add_axioms_for_code_point(const array_string_exprt &res, const exprt &code_point)
add axioms for the conversion of an integer representing a java code point to a utf-16 string
Definition: string_constraint_generator_code_points.cpp:23

string_constraint_generatort::fresh_symbol
symbol_generatort fresh_symbol
Definition: string_constraint_generator.h:61

string_constraint_generatort::array_pool
array_poolt array_pool
Definition: string_constraint_generator.h:63

string_constraint_generatort::add_axioms_for_concat_code_point
std::pair< exprt, string_constraintst > add_axioms_for_concat_code_point(const function_application_exprt &f)
Add axioms corresponding to the StringBuilder.appendCodePoint(I) function.
Definition: string_concatenation_builtin_function.cpp:175

string_constraint_generatort::combine_results
std::pair< exprt, string_constraintst > combine_results(std::pair< exprt, string_constraintst > result1, std::pair< exprt, string_constraintst > result2)
Combine the results of two add_axioms function by taking the maximum of the return codes and merging ...
Definition: string_constraint_generator_main.cpp:420

string_constraintt
Definition: string_constraint.h:56

string_insertion_builtin_functiont
String inserting a string into another one.
Definition: string_insertion_builtin_function.h:16

string_insertion_builtin_functiont::input1
array_string_exprt input1
Definition: string_insertion_builtin_function.h:19

string_insertion_builtin_functiont::result
array_string_exprt result
Definition: string_insertion_builtin_function.h:18

string_insertion_builtin_functiont::input2
array_string_exprt input2
Definition: string_insertion_builtin_function.h:20

string_insertion_builtin_functiont::args
std::vector< exprt > args
Definition: string_insertion_builtin_function.h:21

symbol_exprt
Expression to hold a symbol (variable)
Definition: std_expr.h:131

type_with_subtypet::subtype
const typet & subtype() const
Definition: type.h:187

typet
The type of an expression, extends irept.
Definition: type.h:29

mp_integer
BigInt mp_integer
Definition: smt_terms.h:17

UNREACHABLE
#define UNREACHABLE
This should be used to mark dead code.
Definition: invariant.h:525

PRECONDITION
#define PRECONDITION(CONDITION)
Definition: invariant.h:463

length_constraint_for_concat
exprt length_constraint_for_concat(const array_string_exprt &res, const array_string_exprt &s1, const array_string_exprt &s2, array_poolt &array_pool)
Add axioms enforcing that the length of res is that of the concatenation of s1 with s2
Definition: string_concatenation_builtin_function.cpp:125

length_constraint_for_concat_char
exprt length_constraint_for_concat_char(const array_string_exprt &res, const array_string_exprt &s1, array_poolt &array_pool)
Add axioms enforcing that the length of res is that of the concatenation of s1 with.
Definition: string_concatenation_builtin_function.cpp:140

length_constraint_for_concat_substr
exprt length_constraint_for_concat_substr(const array_string_exprt &res, const array_string_exprt &s1, const array_string_exprt &s2, const exprt &start, const exprt &end, array_poolt &array_pool)
Add axioms enforcing that the length of res is that of the concatenation of s1 with the substring of ...
Definition: string_concatenation_builtin_function.cpp:102

string_concatenation_builtin_function.h
Builtin functions for string concatenations.

sum_overflows
exprt sum_overflows(const plus_exprt &sum)
Definition: string_constraint_generator_main.cpp:40

maximum
exprt maximum(const exprt &a, const exprt &b)
Definition: string_constraint_generator_main.cpp:404

minimum
exprt minimum(const exprt &a, const exprt &b)
Definition: string_constraint_generator_main.cpp:399

zero_if_negative
exprt zero_if_negative(const exprt &expr)
Returns a non-negative version of the argument.
Definition: string_constraint_generator_main.cpp:412

get_return_code_type
signedbv_typet get_return_code_type()
Definition: string_constraint_generator_main.cpp:182

string_constraintst
Collection of constraints of different types: existential formulas, universal formulas,...
Definition: string_constraint_generator.h:39

string_constraintst::existential
std::vector< exprt > existential
Definition: string_constraint_generator.h:40

string_constraintst::universal
std::vector< string_constraintt > universal
Definition: string_constraint_generator.h:41

to_type_with_subtype
const type_with_subtypet & to_type_with_subtype(const typet &type)
Definition: type.h:208