CBMC
symex_target.h
Go to the documentation of this file.
1 /*******************************************************************\
2 
3 Module: Generate Equation using Symbolic Execution
4 
5 Author: Daniel Kroening, kroening@kroening.com
6 
7 \*******************************************************************/
8 
11 
12 #ifndef CPROVER_GOTO_SYMEX_SYMEX_TARGET_H
13 #define CPROVER_GOTO_SYMEX_SYMEX_TARGET_H
14 
15 #include <goto-programs/goto_program.h>
16 
17 #include "renamed.h"
18 
19 class ssa_exprt;
20 
24 class symex_targett
25 {
26 public:
27  symex_targett()
28  {
29  }
30 
31  virtual ~symex_targett() { }
32 
36  struct sourcet
37  {
38  unsigned thread_nr;
39  irep_idt function_id;
40  // The program counter is an iterator which indicates where the execution
41  // is in its program sequence
42  goto_programt::const_targett pc;
43 
44  sourcet(const irep_idt &_function_id, goto_programt::const_targett _pc)
45  : thread_nr(0), function_id(_function_id), pc(_pc)
46  {
47  }
48 
49  explicit sourcet(
50  const irep_idt &_function_id,
51  const goto_programt &_goto_program)
52  : thread_nr(0),
53  function_id(_function_id),
54  pc(_goto_program.instructions.begin())
55  {
56  }
57 
58  sourcet(sourcet &&other) noexcept
59  : thread_nr(other.thread_nr), function_id(other.function_id), pc(other.pc)
60  {
61  }
62 
63  sourcet(const sourcet &other) = default;
64  sourcet &operator=(const sourcet &other) = default;
65  sourcet &operator=(sourcet &&other) = default;
66  };
67 
68  enum class assignment_typet
69  {
70  STATE,
71  HIDDEN,
72  VISIBLE_ACTUAL_PARAMETER,
73  HIDDEN_ACTUAL_PARAMETER,
74  PHI,
75  GUARD,
76  };
77 
87  virtual void shared_read(
88  const exprt &guard,
89  const ssa_exprt &ssa_object,
90  unsigned atomic_section_id,
91  const sourcet &source) = 0;
92 
100  virtual void shared_write(
101  const exprt &guard,
102  const ssa_exprt &ssa_object,
103  unsigned atomic_section_id,
104  const sourcet &source) = 0;
105 
117  virtual void assignment(
118  const exprt &guard,
119  const ssa_exprt &ssa_lhs,
120  const exprt &ssa_full_lhs,
121  const exprt &original_full_lhs,
122  const exprt &ssa_rhs,
123  const sourcet &source,
124  assignment_typet assignment_type)=0;
125 
134  virtual void decl(
135  const exprt &guard,
136  const ssa_exprt &ssa_lhs,
137  const exprt &initializer,
138  const sourcet &source,
139  assignment_typet assignment_type) = 0;
140 
146  virtual void dead(
147  const exprt &guard,
148  const ssa_exprt &ssa_lhs,
149  const sourcet &source)=0;
150 
158  virtual void function_call(
159  const exprt &guard,
160  const irep_idt &function_id,
161  const std::vector<renamedt<exprt, L2>> &ssa_function_arguments,
162  const sourcet &source,
163  bool hidden) = 0;
164 
171  virtual void function_return(
172  const exprt &guard,
173  const irep_idt &function_id,
174  const sourcet &source,
175  bool hidden) = 0;
176 
181  virtual void location(
182  const exprt &guard,
183  const sourcet &source)=0;
184 
191  virtual void output(
192  const exprt &guard,
193  const sourcet &source,
194  const irep_idt &output_id,
195  const std::list<renamedt<exprt, L2>> &args) = 0;
196 
204  virtual void output_fmt(
205  const exprt &guard,
206  const sourcet &source,
207  const irep_idt &output_id,
208  const irep_idt &fmt,
209  const std::list<exprt> &args)=0;
210 
217  virtual void input(
218  const exprt &guard,
219  const sourcet &source,
220  const irep_idt &input_id,
221  const std::list<exprt> &args)=0;
222 
228  virtual void assumption(
229  const exprt &guard,
230  const exprt &cond,
231  const sourcet &source)=0;
232 
240  virtual void assertion(
241  const exprt &guard,
242  const exprt &cond,
243  const irep_idt &property_id,
244  const std::string &msg,
245  const sourcet &source) = 0;
246 
252  virtual void goto_instruction(
253  const exprt &guard,
254  const renamedt<exprt, L2> &cond,
255  const sourcet &source) = 0;
256 
262  virtual void constraint(
263  const exprt &cond,
264  const std::string &msg,
265  const sourcet &source)=0;
266 
271  virtual void spawn(
272  const exprt &guard,
273  const sourcet &source)=0;
274 
279  virtual void memory_barrier(
280  const exprt &guard,
281  const sourcet &source)=0;
282 
288  virtual void atomic_begin(
289  const exprt &guard,
290  unsigned atomic_section_id,
291  const sourcet &source)=0;
292 
298  virtual void atomic_end(
299  const exprt &guard,
300  unsigned atomic_section_id,
301  const sourcet &source)=0;
302 };
303 
309 bool operator < (
310  const symex_targett::sourcet &a,
311  const symex_targett::sourcet &b);
312 
313 #endif // CPROVER_GOTO_SYMEX_SYMEX_TARGET_H
guard
static exprt guard(const exprt::operandst &guards, exprt cond)
Definition: c_safety_checks.cpp:69
dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition: dstring.h:38
exprt
Base class for all expressions.
Definition: expr.h:56
goto_programt
A generic container class for the GOTO intermediate representation of one function.
Definition: goto_program.h:73
goto_programt::const_targett
instructionst::const_iterator const_targett
Definition: goto_program.h:615
renamedt
Wrapper for expressions or types which have been renamed up to a given level.
Definition: renamed.h:33
ssa_exprt
Expression providing an SSA-renamed symbol of expressions.
Definition: ssa_expr.h:17
symex_targett
The interface of the target container for symbolic execution to record its symbolic steps into.
Definition: symex_target.h:25
symex_targett::spawn
virtual void spawn(const exprt &guard, const sourcet &source)=0
Record spawning a new thread.
symex_targett::assertion
virtual void assertion(const exprt &guard, const exprt &cond, const irep_idt &property_id, const std::string &msg, const sourcet &source)=0
Record an assertion.
symex_targett::memory_barrier
virtual void memory_barrier(const exprt &guard, const sourcet &source)=0
Record creating a memory barrier.
symex_targett::output
virtual void output(const exprt &guard, const sourcet &source, const irep_idt &output_id, const std::list< renamedt< exprt, L2 >> &args)=0
Record an output.
symex_targett::function_call
virtual void function_call(const exprt &guard, const irep_idt &function_id, const std::vector< renamedt< exprt, L2 >> &ssa_function_arguments, const sourcet &source, bool hidden)=0
Record a function call.
symex_targett::shared_read
virtual void shared_read(const exprt &guard, const ssa_exprt &ssa_object, unsigned atomic_section_id, const sourcet &source)=0
Read from a shared variable ssa_object (which is both the left- and the right–hand side of assignment...
symex_targett::output_fmt
virtual void output_fmt(const exprt &guard, const sourcet &source, const irep_idt &output_id, const irep_idt &fmt, const std::list< exprt > &args)=0
Record formatted output.
symex_targett::decl
virtual void decl(const exprt &guard, const ssa_exprt &ssa_lhs, const exprt &initializer, const sourcet &source, assignment_typet assignment_type)=0
Declare a fresh variable.
symex_targett::shared_write
virtual void shared_write(const exprt &guard, const ssa_exprt &ssa_object, unsigned atomic_section_id, const sourcet &source)=0
Write to a shared variable ssa_object: we effectively assign a value from this thread to be visible b...
symex_targett::constraint
virtual void constraint(const exprt &cond, const std::string &msg, const sourcet &source)=0
Record a global constraint: there is no guard limiting its scope.
symex_targett::atomic_begin
virtual void atomic_begin(const exprt &guard, unsigned atomic_section_id, const sourcet &source)=0
Record a beginning of an atomic section.
symex_targett::assignment_typet
assignment_typet
Definition: symex_target.h:69
symex_targett::assignment_typet::STATE
@ STATE
symex_targett::assignment_typet::HIDDEN
@ HIDDEN
symex_targett::assignment_typet::GUARD
@ GUARD
symex_targett::assignment_typet::VISIBLE_ACTUAL_PARAMETER
@ VISIBLE_ACTUAL_PARAMETER
symex_targett::assignment_typet::HIDDEN_ACTUAL_PARAMETER
@ HIDDEN_ACTUAL_PARAMETER
symex_targett::assignment_typet::PHI
@ PHI
symex_targett::assignment
virtual void assignment(const exprt &guard, const ssa_exprt &ssa_lhs, const exprt &ssa_full_lhs, const exprt &original_full_lhs, const exprt &ssa_rhs, const sourcet &source, assignment_typet assignment_type)=0
Write to a local variable.
symex_targett::input
virtual void input(const exprt &guard, const sourcet &source, const irep_idt &input_id, const std::list< exprt > &args)=0
Record an input.
symex_targett::dead
virtual void dead(const exprt &guard, const ssa_exprt &ssa_lhs, const sourcet &source)=0
Remove a variable from the scope.
symex_targett::~symex_targett
virtual ~symex_targett()
Definition: symex_target.h:31
symex_targett::function_return
virtual void function_return(const exprt &guard, const irep_idt &function_id, const sourcet &source, bool hidden)=0
Record return from a function.
symex_targett::symex_targett
symex_targett()
Definition: symex_target.h:27
symex_targett::goto_instruction
virtual void goto_instruction(const exprt &guard, const renamedt< exprt, L2 > &cond, const sourcet &source)=0
Record a goto instruction.
symex_targett::location
virtual void location(const exprt &guard, const sourcet &source)=0
Record a location.
symex_targett::assumption
virtual void assumption(const exprt &guard, const exprt &cond, const sourcet &source)=0
Record an assumption.
symex_targett::atomic_end
virtual void atomic_end(const exprt &guard, unsigned atomic_section_id, const sourcet &source)=0
Record ending an atomic section.
goto_program.h
Concrete Goto Program.
renamed.h
Class for expressions or types renamed up to a given level.
symex_targett::sourcet
Identifies source in the context of symbolic execution.
Definition: symex_target.h:37
symex_targett::sourcet::thread_nr
unsigned thread_nr
Definition: symex_target.h:38
symex_targett::sourcet::operator=
sourcet & operator=(sourcet &&other)=default
symex_targett::sourcet::operator=
sourcet & operator=(const sourcet &other)=default
symex_targett::sourcet::sourcet
sourcet(const sourcet &other)=default
symex_targett::sourcet::sourcet
sourcet(const irep_idt &_function_id, goto_programt::const_targett _pc)
Definition: symex_target.h:44
symex_targett::sourcet::sourcet
sourcet(sourcet &&other) noexcept
Definition: symex_target.h:58
symex_targett::sourcet::pc
goto_programt::const_targett pc
Definition: symex_target.h:42
symex_targett::sourcet::function_id
irep_idt function_id
Definition: symex_target.h:39
symex_targett::sourcet::sourcet
sourcet(const irep_idt &_function_id, const goto_programt &_goto_program)
Definition: symex_target.h:49
operator<
bool operator<(const symex_targett::sourcet &a, const symex_targett::sourcet &b)
Base class comparison operator for symbolic execution targets.
Definition: symex_target.cpp:14