cbmc/symex__decl_8cpp_source.html

/*******************************************************************\


Module: Symbolic Execution


Author: Daniel Kroening, kroening@kroening.com


\*******************************************************************/


#include "goto_symex.h"


#include <util/std_expr.h>


#include "path_storage.h"


void goto_symext::symex_decl(statet &state)

{

  const goto_programt::instructiont &instruction=*state.source.pc;

  symex_decl(state, instruction.decl_symbol());

}

void goto_symext::symex_decl(statet &state) {…}


void goto_symext::symex_decl(statet &state, const symbol_exprt &expr)

{

  // each declaration introduces a new object, which we record as a fresh L1

  // index


  // We use "1" as the first level-1 index, which is in line with doing so for

  // level-2 indices (but it's an arbitrary choice, we have just always been

  // doing it this way).

  ssa_exprt ssa = state.add_object(

    expr,

    [this](const irep_idt &l0_name) {

      return path_storage.get_unique_l1_index(l0_name, 1);

    },

    ns);


  ssa = state.declare(std::move(ssa), ns);


  // we hide the declaration of auxiliary variables

  // and if the statement itself is hidden

  bool hidden = ns.lookup(expr.get_identifier()).is_auxiliary ||

                state.call_stack().top().hidden_function ||

                state.source.pc->source_location().get_hide();


  target.decl(

    state.guard.as_expr(),

    ssa,

    state.field_sensitivity.apply(ns, state, ssa, false),

    state.source,

    hidden ? symex_targett::assignment_typet::HIDDEN

           : symex_targett::assignment_typet::STATE);


  if(path_storage.dirty(ssa.get_object_name()) && state.atomic_section_id == 0)

    target.shared_write(

      state.guard.as_expr(),

      ssa,

      state.atomic_section_id,

      state.source);


  shadow_memory.symex_field_local_init(state, ssa);

}

void goto_symext::symex_decl(statet &state, const symbol_exprt &expr) {…}

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:562

call_stackt::top
framet & top()
Definition call_stack.h:17

dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition dstring.h:38

field_sensitivityt::apply
exprt apply(const namespacet &ns, goto_symex_statet &state, exprt expr, bool write) const
Turn an expression expr into a field-sensitive SSA expression.
Definition field_sensitivity.cpp:34

framet::hidden_function
bool hidden_function
Definition frame.h:40

goto_programt::instructiont
This class represents an instruction in the GOTO intermediate representation.
Definition goto_program.h:181

goto_programt::instructiont::decl_symbol
const symbol_exprt & decl_symbol() const
Get the declared symbol for DECL.
Definition goto_program.h:228

goto_statet::guard
guardt guard
Definition goto_state.h:58

goto_statet::atomic_section_id
unsigned atomic_section_id
Threads.
Definition goto_state.h:76

goto_symex_statet
Central data structure: state.
Definition goto_symex_state.h:43

goto_symex_statet::declare
ssa_exprt declare(ssa_exprt ssa, const namespacet &ns)
Add invalid (or a failed symbol) to the value_set if ssa is a pointer, ensure that level2 index of sy...
Definition goto_symex_state.cpp:848

goto_symex_statet::add_object
ssa_exprt add_object(const symbol_exprt &expr, std::function< std::size_t(const irep_idt &)> index_generator, const namespacet &ns)
Instantiate the object expr.
Definition goto_symex_state.cpp:823

goto_symex_statet::call_stack
call_stackt & call_stack()
Definition goto_symex_state.h:147

goto_symex_statet::field_sensitivity
field_sensitivityt field_sensitivity
Definition goto_symex_state.h:122

goto_symex_statet::source
symex_targett::sourcet source
Definition goto_symex_state.h:62

goto_symext::symex_decl
virtual void symex_decl(statet &state)
Symbolically execute a DECL instruction.
Definition symex_decl.cpp:18

goto_symext::path_storage
path_storaget & path_storage
Symbolic execution paths to be resumed later.
Definition goto_symex.h:810

goto_symext::target
symex_target_equationt & target
The equation that this execution is building up.
Definition goto_symex.h:266

goto_symext::shadow_memory
shadow_memoryt shadow_memory
Shadow memory instrumentation API.
Definition goto_symex.h:839

goto_symext::ns
namespacet ns
Initialized just before symbolic execution begins, to point to both outer_symbol_table and the symbol...
Definition goto_symex.h:258

guard_exprt::as_expr
exprt as_expr() const
Definition guard_expr.h:46

namespacet::lookup
bool lookup(const irep_idt &name, const symbolt *&symbol) const override
See documentation for namespace_baset::lookup().
Definition namespace.cpp:134

path_storaget::dirty
incremental_dirtyt dirty
Local variables are considered 'dirty' if they've had an address taken and therefore may be referred ...
Definition path_storage.h:116

path_storaget::get_unique_l1_index
std::size_t get_unique_l1_index(const irep_idt &id, std::size_t minimum_index)
Provide a unique L1 index for a given id, starting from minimum_index.
Definition path_storage.h:104

shadow_memoryt::symex_field_local_init
void symex_field_local_init(goto_symex_statet &state, const ssa_exprt &expr)
Initialize local-scope shadow memory for local variables and parameters.
Definition shadow_memory.cpp:406

ssa_exprt
Expression providing an SSA-renamed symbol of expressions.
Definition ssa_expr.h:17

symbol_exprt
Expression to hold a symbol (variable)
Definition std_expr.h:131

symbol_exprt::get_identifier
const irep_idt & get_identifier() const
Definition std_expr.h:160

symex_target_equationt::shared_write
virtual void shared_write(const exprt &guard, const ssa_exprt &ssa_object, unsigned atomic_section_id, const sourcet &source)
Write to a shared variable ssa_object: we effectively assign a value from this thread to be visible b...
Definition symex_target_equation.cpp:46

symex_target_equationt::decl
virtual void decl(const exprt &guard, const ssa_exprt &ssa_lhs, const exprt &initializer, const sourcet &source, assignment_typet assignment_type)
Declare a fresh variable.
Definition symex_target_equation.cpp:135

symex_targett::assignment_typet::STATE
@ STATE

symex_targett::assignment_typet::HIDDEN
@ HIDDEN

goto_symex.h
Symbolic Execution.

path_storage.h
Storage of symbolic execution paths to resume.

std_expr.h
API to expression classes.

symex_targett::sourcet::pc
goto_programt::const_targett pc
Definition symex_target.h:42