CBMC
Loading...
Searching...
No Matches
symex_assign.cpp
Go to the documentation of this file.
1/*******************************************************************\
2
3Module: Symbolic Execution
4
5Author: Daniel Kroening, kroening@kroening.com
6
7\*******************************************************************/
8
11
12#include "symex_assign.h"
13
14#include <util/byte_operators.h>
15#include <util/pointer_expr.h>
16#include <util/range.h>
17
18#include "expr_skeleton.h"
19#include "goto_symex_state.h"
20#include "simplify_expr_with_value_set.h"
21#include "symex_config.h"
22
23// We can either use with_exprt or update_exprt when building expressions that
24// modify components of an array or a struct. Set USE_UPDATE to use
25// update_exprt.
26// #define USE_UPDATE
27
28constexpr bool use_update()
29{
30#ifdef USE_UPDATE
31 return true;
32#else
33 return false;
34#endif
35}
36
41static bool is_string_constant_initialization(const exprt &rhs)
42{
43 if(const auto &address_of = expr_try_dynamic_cast<address_of_exprt>(rhs))
44 {
45 if(
46 const auto &index =
47 expr_try_dynamic_cast<index_exprt>(address_of->object()))
48 {
49 if(index->array().id() == ID_string_constant && index->index().is_zero())
50 {
51 return true;
52 }
53 }
54 }
55 return false;
56}
57
58void symex_assignt::assign_rec(
59 const exprt &lhs,
60 const expr_skeletont &full_lhs,
61 const exprt &rhs,
62 exprt::operandst &guard)
63{
64 if(is_ssa_expr(lhs))
65 {
66 assign_symbol(to_ssa_expr(lhs), full_lhs, rhs, guard);
67
68 // Allocate shadow memory
69 if(shadow_memory.has_value())
70 {
71 bool is_string_constant_init = is_string_constant_initialization(rhs);
72 if(is_string_constant_init)
73 {
74 shadow_memory->symex_field_static_init_string_constant(
75 state, to_ssa_expr(lhs), rhs);
76 }
77 else
78 {
79 shadow_memory->symex_field_static_init(state, to_ssa_expr(lhs));
80 }
81 }
82 }
83 else if(lhs.id() == ID_index)
84 assign_array<use_update()>(to_index_expr(lhs), full_lhs, rhs, guard);
85 else if(lhs.id()==ID_member)
86 {
87 const typet &type = to_member_expr(lhs).struct_op().type();
88 if(type.id() == ID_struct || type.id() == ID_struct_tag)
89 {
90 assign_struct_member<use_update()>(
91 to_member_expr(lhs), full_lhs, rhs, guard);
92 }
93 else if(type.id() == ID_union || type.id() == ID_union_tag)
94 {
95 // should have been replaced by byte_extract
96 throw unsupported_operation_exceptiont(
97 "assign_rec: unexpected assignment to union member");
98 }
99 else
100 throw unsupported_operation_exceptiont(
101 "assign_rec: unexpected assignment to member of '" + type.id_string() +
102 "'");
103 }
104 else if(lhs.id()==ID_if)
105 assign_if(to_if_expr(lhs), full_lhs, rhs, guard);
106 else if(lhs.id()==ID_typecast)
107 assign_typecast(to_typecast_expr(lhs), full_lhs, rhs, guard);
108 else if(goto_symex_statet::is_read_only_object(lhs))
109 {
110 // ignore
111 }
112 else if(lhs.id()==ID_byte_extract_little_endian ||
113 lhs.id()==ID_byte_extract_big_endian)
114 {
115 assign_byte_extract(to_byte_extract_expr(lhs), full_lhs, rhs, guard);
116 }
117 else if(lhs.id() == ID_complex_real)
118 {
119 // this is stuff like __real__ x = 1;
120 const complex_real_exprt &complex_real_expr = to_complex_real_expr(lhs);
121
122 const complex_imag_exprt complex_imag_expr(complex_real_expr.op());
123
124 complex_exprt new_rhs(
125 rhs, complex_imag_expr, to_complex_type(complex_real_expr.op().type()));
126
127 assign_rec(complex_real_expr.op(), full_lhs, new_rhs, guard);
128 }
129 else if(lhs.id() == ID_complex_imag)
130 {
131 const complex_imag_exprt &complex_imag_expr = to_complex_imag_expr(lhs);
132
133 const complex_real_exprt complex_real_expr(complex_imag_expr.op());
134
135 complex_exprt new_rhs(
136 complex_real_expr, rhs, to_complex_type(complex_imag_expr.op().type()));
137
138 assign_rec(complex_imag_expr.op(), full_lhs, new_rhs, guard);
139 }
140 else
141 throw unsupported_operation_exceptiont(
142 "assignment to '" + lhs.id_string() + "' not handled");
143}
144
153
165void symex_assignt::assign_from_struct(
166 const ssa_exprt &lhs, // L1
167 const expr_skeletont &full_lhs,
168 const struct_exprt &rhs,
169 const exprt::operandst &guard)
170{
171 const auto &components =
172 lhs.type().id() == ID_struct_tag
173 ? ns.follow_tag(to_struct_tag_type(lhs.type())).components()
174 : to_struct_type(lhs.type()).components();
175 PRECONDITION(rhs.operands().size() == components.size());
176
177 for(const auto &comp_rhs : make_range(components).zip(rhs.operands()))
178 {
179 const auto &comp = comp_rhs.first;
180 const exprt lhs_field = state.field_sensitivity.apply(
181 ns, state, member_exprt{lhs, comp.get_name(), comp.type()}, true);
182 INVARIANT(
183 lhs_field.id() == ID_symbol,
184 "member of symbol should be susceptible to field-sensitivity");
185
186 assign_symbol(to_ssa_expr(lhs_field), full_lhs, comp_rhs.second, guard);
187 }
188}
189
190void symex_assignt::assign_non_struct_symbol(
191 const ssa_exprt &lhs, // L1
192 const expr_skeletont &full_lhs,
193 const exprt &rhs,
194 const exprt::operandst &guard)
195{
196 exprt l2_rhs =
197 state
198 .rename(
199 // put assignment guard into the rhs
200 guard.empty()
201 ? rhs
202 : static_cast<exprt>(if_exprt{conjunction(guard), rhs, lhs}),
203 ns)
204 .get();
205
206 assignmentt assignment{lhs, full_lhs, l2_rhs};
207
208 if(symex_config.simplify_opt)
209 {
210 simplify_expr_with_value_sett{state.value_set, language_mode, ns}.simplify(
211 assignment.rhs);
212 }
213
214 const ssa_exprt l2_lhs = state
215 .assignment(
216 assignment.lhs,
217 assignment.rhs,
218 ns,
219 symex_config.simplify_opt,
220 symex_config.constant_propagation,
221 symex_config.allow_pointer_unsoundness)
222 .get();
223
224 state.record_events.push(false);
225 // Note any other symbols mentioned in the skeleton are rvalues -- for example
226 // array indices -- and were renamed to L2 at the start of
227 // goto_symext::symex_assign.
228 const exprt l2_full_lhs = assignment.original_lhs_skeleton.apply(l2_lhs);
229 if(symex_config.run_validation_checks)
230 {
231 INVARIANT(
232 !check_renaming(l2_full_lhs), "l2_full_lhs should be renamed to L2");
233 }
234 state.record_events.pop();
235
236 auto current_assignment_type =
237 ns.lookup(l2_lhs.get_object_name()).is_auxiliary &&
238 id2string(l2_lhs.get_object_name()).find(SHADOW_MEMORY_SYMBOL_PREFIX) !=
239 std::string::npos
240 ? symex_targett::assignment_typet::HIDDEN
241 : assignment_type;
242
243 target.assignment(
244 conjunction(state.guard.as_expr(), conjunction(guard)),
245 l2_lhs,
246 l2_full_lhs,
247 get_original_name(l2_full_lhs),
248 assignment.rhs,
249 state.source,
250 current_assignment_type);
251
252 const ssa_exprt &l1_lhs = assignment.lhs;
253 if(state.field_sensitivity.is_divisible(l1_lhs, false))
254 {
255 // Split composite symbol lhs into its components
256 state.field_sensitivity.field_assignments(
257 ns,
258 state,
259 l1_lhs,
260 assignment.rhs,
261 target,
262 symex_config.allow_pointer_unsoundness);
263 }
264}
265
266void symex_assignt::assign_symbol(
267 const ssa_exprt &lhs, // L1
268 const expr_skeletont &full_lhs,
269 const exprt &rhs,
270 const exprt::operandst &guard)
271{
272 // Shortcut the common case of a whole-struct initializer:
273 if(rhs.id() == ID_struct)
274 assign_from_struct(lhs, full_lhs, to_struct_expr(rhs), guard);
275 else
276 assign_non_struct_symbol(lhs, full_lhs, rhs, guard);
277}
278
279void symex_assignt::assign_typecast(
280 const typecast_exprt &lhs,
281 const expr_skeletont &full_lhs,
282 const exprt &rhs,
283 exprt::operandst &guard)
284{
285 // these may come from dereferencing on the lhs
286 exprt rhs_typecasted = typecast_exprt::conditional_cast(rhs, lhs.op().type());
287 expr_skeletont new_skeleton =
288 full_lhs.compose(expr_skeletont::remove_op0(lhs));
289 assign_rec(lhs.op(), new_skeleton, rhs_typecasted, guard);
290}
291
292template <bool use_update>
293void symex_assignt::assign_array(
294 const index_exprt &lhs,
295 const expr_skeletont &full_lhs,
296 const exprt &rhs,
297 exprt::operandst &guard)
298{
299 const exprt &lhs_array=lhs.array();
300 const exprt &lhs_index=lhs.index();
301 const typet &lhs_index_type = lhs_array.type();
302
303 PRECONDITION(lhs_index_type.id() == ID_array);
304
305 if(use_update)
306 {
307 // turn
308 // a[i]=e
309 // into
310 // a'==UPDATE(a, [i], e)
311 const update_exprt new_rhs{lhs_array, index_designatort(lhs_index), rhs};
312 const expr_skeletont new_skeleton =
313 full_lhs.compose(expr_skeletont::remove_op0(lhs));
314 assign_rec(lhs, new_skeleton, new_rhs, guard);
315 }
316 else
317 {
318 // turn
319 // a[i]=e
320 // into
321 // a'==a WITH [i:=e]
322 const with_exprt new_rhs{lhs_array, lhs_index, rhs};
323 const expr_skeletont new_skeleton =
324 full_lhs.compose(expr_skeletont::remove_op0(lhs));
325 assign_rec(lhs_array, new_skeleton, new_rhs, guard);
326 }
327}
328
329template <bool use_update>
330void symex_assignt::assign_struct_member(
331 const member_exprt &lhs,
332 const expr_skeletont &full_lhs,
333 const exprt &rhs,
334 exprt::operandst &guard)
335{
336 // Symbolic execution of a struct member assignment.
337
338 // lhs must be member operand, which
339 // takes one operand, which must be a structure.
340
341 exprt lhs_struct = lhs.op();
342
343 // typecasts involved? C++ does that for inheritance.
344 if(lhs_struct.id()==ID_typecast)
345 {
346 if(to_typecast_expr(lhs_struct).op().id() == ID_null_object)
347 {
348 // ignore, and give up
349 return;
350 }
351 else
352 {
353 // remove the type cast, we assume that the member is there
354 exprt tmp = to_typecast_expr(lhs_struct).op();
355
356 if(tmp.type().id() == ID_struct || tmp.type().id() == ID_struct_tag)
357 lhs_struct=tmp;
358 else
359 return; // ignore and give up
360 }
361 }
362
363 const irep_idt &component_name=lhs.get_component_name();
364
365 if(use_update)
366 {
367 // turn
368 // a.c=e
369 // into
370 // a'==UPDATE(a, .c, e)
371 const update_exprt new_rhs{
372 lhs_struct, member_designatort(component_name), rhs};
373 const expr_skeletont new_skeleton =
374 full_lhs.compose(expr_skeletont::remove_op0(lhs));
375 assign_rec(lhs_struct, new_skeleton, new_rhs, guard);
376 }
377 else
378 {
379 // turn
380 // a.c=e
381 // into
382 // a'==a WITH [c:=e]
383
384 with_exprt new_rhs(lhs_struct, exprt(ID_member_name), rhs);
385 new_rhs.where().set(ID_component_name, component_name);
386 const expr_skeletont new_skeleton =
387 full_lhs.compose(expr_skeletont::remove_op0(lhs));
388 assign_rec(lhs_struct, new_skeleton, new_rhs, guard);
389 }
390}
391
392void symex_assignt::assign_if(
393 const if_exprt &lhs,
394 const expr_skeletont &full_lhs,
395 const exprt &rhs,
396 exprt::operandst &guard)
397{
398 // we have (c?a:b)=e;
399
400 guard.push_back(lhs.cond());
401 assign_rec(lhs.true_case(), full_lhs, rhs, guard);
402 guard.pop_back();
403
404 guard.push_back(not_exprt(lhs.cond()));
405 assign_rec(lhs.false_case(), full_lhs, rhs, guard);
406 guard.pop_back();
407}
408
409void symex_assignt::assign_byte_extract(
410 const byte_extract_exprt &lhs,
411 const expr_skeletont &full_lhs,
412 const exprt &rhs,
413 exprt::operandst &guard)
414{
415 // we have byte_extract_X(object, offset)=value
416 // turn into object=byte_update_X(object, offset, value)
417
418 irep_idt byte_update_id;
419 if(lhs.id()==ID_byte_extract_little_endian)
420 byte_update_id = ID_byte_update_little_endian;
421 else if(lhs.id()==ID_byte_extract_big_endian)
422 byte_update_id = ID_byte_update_big_endian;
423 else
424 UNREACHABLE;
425
426 const byte_update_exprt new_rhs{
427 byte_update_id, lhs.op(), lhs.offset(), rhs, lhs.get_bits_per_byte()};
428 const expr_skeletont new_skeleton =
429 full_lhs.compose(expr_skeletont::remove_op0(lhs));
430 assign_rec(lhs.op(), new_skeleton, new_rhs, guard);
431}
byte_update_id
static irep_idt byte_update_id()
Definition byte_operators.cpp:30
byte_operators.h
Expression classes for byte-level operators.
to_byte_extract_expr
const byte_extract_exprt & to_byte_extract_expr(const exprt &expr)
Definition byte_operators.h:70
guard
static exprt guard(const exprt::operandst &guards, exprt cond)
Definition c_safety_checks.cpp:69
ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562
byte_extract_exprt
Expression of type type extracted from some object op starting at position offset (given in number of...
Definition byte_operators.h:29
byte_extract_exprt::offset
exprt & offset()
Definition byte_operators.h:47
byte_extract_exprt::op
exprt & op()
Definition byte_operators.h:46
byte_extract_exprt::get_bits_per_byte
std::size_t get_bits_per_byte() const
Definition byte_operators.h:52
byte_update_exprt
Expression corresponding to op() where the bytes starting at position offset (given in number of byte...
Definition byte_operators.h:91
complex_exprt
Complex constructor from a pair of numbers.
Definition std_expr.h:1916
complex_imag_exprt
Imaginary part of the expression describing a complex number.
Definition std_expr.h:2027
complex_real_exprt
Real part of the expression describing a complex number.
Definition std_expr.h:1984
dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition dstring.h:38
expr_skeletont
Expression in which some part is missing and can be substituted for another expression.
Definition expr_skeleton.h:26
expr_skeletont::compose
expr_skeletont compose(expr_skeletont other) const
Replace the missing part of the current skeleton by another skeleton, ending in a bigger skeleton cor...
Definition expr_skeleton.cpp:51
expr_skeletont::remove_op0
static expr_skeletont remove_op0(exprt e)
Create a skeleton by removing the first operand of e.
Definition expr_skeleton.cpp:20
exprt
Base class for all expressions.
Definition expr.h:56
exprt::operandst
std::vector< exprt > operandst
Definition expr.h:58
exprt::type
typet & type()
Return the type of the expression.
Definition expr.h:84
exprt::operands
operandst & operands()
Definition expr.h:94
field_sensitivityt::apply
exprt apply(const namespacet &ns, goto_symex_statet &state, exprt expr, bool write) const
Turn an expression expr into a field-sensitive SSA expression.
Definition field_sensitivity.cpp:34
field_sensitivityt::field_assignments
void field_assignments(const namespacet &ns, goto_symex_statet &state, const ssa_exprt &lhs, const exprt &rhs, symex_targett &target, bool allow_pointer_unsoundness) const
Assign to the individual fields of a non-expanded symbol lhs.
Definition field_sensitivity.cpp:314
field_sensitivityt::is_divisible
bool is_divisible(const ssa_exprt &expr, bool disjoined_fields_only) const
Determine whether expr would translate to an atomic SSA expression (returns false) or a composite obj...
Definition field_sensitivity.cpp:545
goto_statet::guard
guardt guard
Definition goto_state.h:58
goto_statet::value_set
value_sett value_set
Uses level 1 names, and is used to do dereferencing.
Definition goto_state.h:51
goto_symex_statet::record_events
std::stack< bool > record_events
Definition goto_symex_state.h:213
goto_symex_statet::assignment
renamedt< ssa_exprt, L2 > assignment(ssa_exprt lhs, const exprt &rhs, const namespacet &ns, bool rhs_is_simplified, bool record_value, bool allow_pointer_unsoundness=false)
Definition goto_symex_state.cpp:77
goto_symex_statet::rename
renamedt< exprt, level > rename(exprt expr, const namespacet &ns)
Rewrites symbol expressions in exprt, applying a suffix to each symbol reflecting its most recent ver...
Definition goto_symex_state.cpp:162
goto_symex_statet::is_read_only_object
static bool is_read_only_object(const exprt &lvalue)
Returns true if lvalue is a read-only object, such as the null object.
Definition goto_symex_state.h:250
goto_symex_statet::field_sensitivity
field_sensitivityt field_sensitivity
Definition goto_symex_state.h:122
goto_symex_statet::source
symex_targett::sourcet source
Definition goto_symex_state.h:62
guard_exprt::as_expr
exprt as_expr() const
Definition guard_expr.h:46
if_exprt
The trinary if-then-else operator.
Definition std_expr.h:2502
if_exprt::cond
exprt & cond()
Definition std_expr.h:2519
if_exprt::false_case
exprt & false_case()
Definition std_expr.h:2539
if_exprt::true_case
exprt & true_case()
Definition std_expr.h:2529
index_designatort
Definition std_expr.h:2679
index_exprt
Array index operator.
Definition std_expr.h:1470
index_exprt::index
exprt & index()
Definition std_expr.h:1510
index_exprt::array
exprt & array()
Definition std_expr.h:1500
irept::id_string
const std::string & id_string() const
Definition irep.h:391
irept::id
const irep_idt & id() const
Definition irep.h:388
member_designatort
Definition std_expr.h:2732
member_exprt
Extract member of struct or union.
Definition std_expr.h:2972
member_exprt::get_component_name
irep_idt get_component_name() const
Definition std_expr.h:2994
not_exprt
Boolean negation.
Definition std_expr.h:2459
simplify_expr_with_value_sett
Definition simplify_expr_with_value_set.h:17
ssa_exprt
Expression providing an SSA-renamed symbol of expressions.
Definition ssa_expr.h:17
struct_exprt
Struct constructor from list of elements.
Definition std_expr.h:1877
symex_assignt::assign_byte_extract
void assign_byte_extract(const byte_extract_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition symex_assign.cpp:409
symex_assignt::assign_if
void assign_if(const if_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition symex_assign.cpp:392
symex_assignt::language_mode
const irep_idt & language_mode
Definition symex_assign.h:70
symex_assignt::symex_config
const symex_configt & symex_config
Definition symex_assign.h:69
symex_assignt::assign_non_struct_symbol
void assign_non_struct_symbol(const ssa_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, const exprt::operandst &guard)
Definition symex_assign.cpp:190
symex_assignt::state
goto_symex_statet & state
Definition symex_assign.h:66
symex_assignt::assign_array
void assign_array(const index_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition symex_assign.cpp:293
symex_assignt::target
symex_targett & target
Definition symex_assign.h:71
symex_assignt::assign_rec
void assign_rec(const exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition symex_assign.cpp:58
symex_assignt::assign_symbol
void assign_symbol(const ssa_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, const exprt::operandst &guard)
Record the assignment of value rhs to variable lhs in state and add the equation to target: lhs#{n+1}...
Definition symex_assign.cpp:266
symex_assignt::assign_struct_member
void assign_struct_member(const member_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition symex_assign.cpp:330
symex_assignt::assignment_type
symex_targett::assignment_typet assignment_type
Definition symex_assign.h:67
symex_assignt::ns
const namespacet & ns
Definition symex_assign.h:68
symex_assignt::assign_from_struct
void assign_from_struct(const ssa_exprt &lhs, const expr_skeletont &full_lhs, const struct_exprt &rhs, const exprt::operandst &guard)
Assign a struct expression to a symbol.
Definition symex_assign.cpp:165
symex_assignt::assign_typecast
void assign_typecast(const typecast_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition symex_assign.cpp:279
symex_assignt::shadow_memory
std::optional< shadow_memoryt > shadow_memory
Definition symex_assign.h:65
symex_targett::assignment_typet::HIDDEN
@ HIDDEN
symex_targett::assignment
virtual void assignment(const exprt &guard, const ssa_exprt &ssa_lhs, const exprt &ssa_full_lhs, const exprt &original_full_lhs, const exprt &ssa_rhs, const sourcet &source, assignment_typet assignment_type)=0
Write to a local variable.
typecast_exprt
Semantic type conversion.
Definition std_expr.h:2073
typecast_exprt::conditional_cast
static exprt conditional_cast(const exprt &expr, const typet &type)
Definition std_expr.h:2081
typet
The type of an expression, extends irept.
Definition type.h:29
unary_exprt::op
const exprt & op() const
Definition std_expr.h:391
unsupported_operation_exceptiont
Thrown when we encounter an instruction, parameters to an instruction etc.
Definition exception_utils.h:145
update_exprt
Operator to update elements in structs and arrays.
Definition std_expr.h:2783
with_exprt
Operator to update elements in structs and arrays.
Definition std_expr.h:2603
expr_skeleton.h
Expression skeleton.
goto_symex_state.h
Symbolic Execution.
id2string
const std::string & id2string(const irep_idt &d)
Definition irep.h:44
pointer_expr.h
API to expression classes for Pointers.
range.h
Ranges: pair of begin and end iterators, which can be initialized from containers,...
make_range
ranget< iteratort > make_range(iteratort begin, iteratort end)
Definition range.h:522
get_original_name
exprt get_original_name(exprt expr)
Undo all levels of renaming.
Definition renaming_level.cpp:158
check_renaming
bool check_renaming(const typet &type)
Check that type is correctly renamed to level 2 and return true in case an error is detected.
Definition renaming_level.cpp:199
SHADOW_MEMORY_SYMBOL_PREFIX
#define SHADOW_MEMORY_SYMBOL_PREFIX
Definition shadow_memory.h:26
simplify_expr_with_value_set.h
UNREACHABLE
#define UNREACHABLE
This should be used to mark dead code.
Definition invariant.h:525
PRECONDITION
#define PRECONDITION(CONDITION)
Definition invariant.h:463
INVARIANT
#define INVARIANT(CONDITION, REASON)
This macro uses the wrapper function 'invariant_violated_string'.
Definition invariant.h:423
is_ssa_expr
bool is_ssa_expr(const exprt &expr)
Definition ssa_expr.h:125
to_ssa_expr
const ssa_exprt & to_ssa_expr(const exprt &expr)
Cast a generic exprt to an ssa_exprt.
Definition ssa_expr.h:145
conjunction
exprt conjunction(exprt a, exprt b)
Conjunction of two expressions.
Definition std_expr.cpp:83
to_struct_expr
const struct_exprt & to_struct_expr(const exprt &expr)
Cast an exprt to a struct_exprt.
Definition std_expr.h:1900
to_index_expr
const index_exprt & to_index_expr(const exprt &expr)
Cast an exprt to an index_exprt.
Definition std_expr.h:1538
to_typecast_expr
const typecast_exprt & to_typecast_expr(const exprt &expr)
Cast an exprt to a typecast_exprt.
Definition std_expr.h:2107
to_if_expr
const if_exprt & to_if_expr(const exprt &expr)
Cast an exprt to an if_exprt.
Definition std_expr.h:2582
to_member_expr
const member_exprt & to_member_expr(const exprt &expr)
Cast an exprt to a member_exprt.
Definition std_expr.h:3064
to_complex_imag_expr
const complex_imag_exprt & to_complex_imag_expr(const exprt &expr)
Cast an exprt to a complex_imag_exprt.
Definition std_expr.h:2053
to_complex_real_expr
const complex_real_exprt & to_complex_real_expr(const exprt &expr)
Cast an exprt to a complex_real_exprt.
Definition std_expr.h:2010
to_struct_type
const struct_typet & to_struct_type(const typet &type)
Cast a typet to a struct_typet.
Definition std_types.h:308
to_struct_tag_type
const struct_tag_typet & to_struct_tag_type(const typet &type)
Cast a typet to a struct_tag_typet.
Definition std_types.h:518
to_complex_type
const complex_typet & to_complex_type(const typet &type)
Cast a typet to a complex_typet.
Definition std_types.h:1158
assignmentt
Assignment from the rhs value to the lhs variable.
Definition symex_assign.cpp:147
assignmentt::lhs
ssa_exprt lhs
Definition symex_assign.cpp:148
assignmentt::original_lhs_skeleton
expr_skeletont original_lhs_skeleton
Skeleton to reconstruct the original lhs in the assignment.
Definition symex_assign.cpp:150
use_update
constexpr bool use_update()
Definition symex_assign.cpp:28
is_string_constant_initialization
static bool is_string_constant_initialization(const exprt &rhs)
Determine whether the RHS expression is a string constant initialization.
Definition symex_assign.cpp:41
symex_assign.h
Symbolic Execution of assignments.
symex_config.h
Symbolic Execution.