CBMC
safety_checker.h
Go to the documentation of this file.
1 /*******************************************************************\
2 
3 Module: Safety Checker Interface
4 
5 Author: Daniel Kroening, kroening@kroening.com
6 
7 \*******************************************************************/
8 
11 
12 #ifndef CPROVER_GOTO_PROGRAMS_SAFETY_CHECKER_H
13 #define CPROVER_GOTO_PROGRAMS_SAFETY_CHECKER_H
14 
15 // this is just an interface -- it won't actually do any checking!
16 
17 #include <util/invariant.h>
18 #include <util/message.h>
19 
20 #include "goto_trace.h"
21 
22 class goto_functionst;
23 
24 class safety_checkert:public messaget
25 {
26 public:
27  explicit safety_checkert(
28  const namespacet &_ns);
29 
30  explicit safety_checkert(
31  const namespacet &_ns,
32  message_handlert &_message_handler);
33 
34  enum class resultt
35  {
37  SAFE,
39  UNSAFE,
41  ERROR,
45  PAUSED,
46  };
47 
48  // check whether all assertions in goto_functions are safe
49  // if UNSAFE, then a trace is returned
50 
51  virtual resultt operator()(
52  const goto_functionst &goto_functions)=0;
53 
54  // this is the counterexample
55  goto_tracet error_trace;
56 
57 protected:
58  // the namespace
59  const namespacet &ns;
60 };
61 
68 inline safety_checkert::resultt &
69 operator&=(safety_checkert::resultt &a, safety_checkert::resultt const &b)
70 {
71  PRECONDITION(
72  a != safety_checkert::resultt::PAUSED &&
73  b != safety_checkert::resultt::PAUSED);
74  switch(a)
75  {
76  case safety_checkert::resultt::ERROR:
77  return a;
78  case safety_checkert::resultt::SAFE:
79  a = b;
80  return a;
81  case safety_checkert::resultt::UNSAFE:
82  a = b == safety_checkert::resultt::ERROR ? b : a;
83  return a;
84  case safety_checkert::resultt::PAUSED:
85  UNREACHABLE;
86  }
87  UNREACHABLE;
88 }
89 
96 inline safety_checkert::resultt &
97 operator|=(safety_checkert::resultt &a, safety_checkert::resultt const &b)
98 {
99  PRECONDITION(
100  a != safety_checkert::resultt::PAUSED &&
101  b != safety_checkert::resultt::PAUSED);
102  switch(a)
103  {
104  case safety_checkert::resultt::SAFE:
105  return a;
106  case safety_checkert::resultt::ERROR:
107  a = b;
108  return a;
109  case safety_checkert::resultt::UNSAFE:
110  a = b == safety_checkert::resultt::SAFE ? b : a;
111  return a;
112  case safety_checkert::resultt::PAUSED:
113  UNREACHABLE;
114  }
115  UNREACHABLE;
116 }
117 #endif // CPROVER_GOTO_PROGRAMS_SAFETY_CHECKER_H
messaget
Class that provides messages with a built-in verbosity 'level'.
Definition: message.h:154
UNREACHABLE
#define UNREACHABLE
This should be used to mark dead code.
Definition: invariant.h:503
resultt
resultt
The result of goto verifying.
Definition: properties.h:44
safety_checkert::resultt::PAUSED
@ PAUSED
Symbolic execution has been suspended due to encountering a GOTO while doing path exploration; the sy...
safety_checkert::resultt::SAFE
@ SAFE
No safety properties were violated.
invariant.h
safety_checkert::safety_checkert
safety_checkert(const namespacet &_ns)
Definition: safety_checker.cpp:14
goto_trace.h
namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition: namespace.h:90
safety_checkert::ns
const namespacet & ns
Definition: safety_checker.h:59
safety_checkert::error_trace
goto_tracet error_trace
Definition: safety_checker.h:55
PRECONDITION
#define PRECONDITION(CONDITION)
Definition: invariant.h:463
message_handlert
Definition: message.h:27
safety_checkert::resultt::ERROR
@ ERROR
Safety is unknown due to an error during safety checking.
safety_checkert::resultt::UNSAFE
@ UNSAFE
Some safety properties were violated.
safety_checkert::operator()
virtual resultt operator()(const goto_functionst &goto_functions)=0
goto_functionst
A collection of goto functions.
Definition: goto_functions.h:24
safety_checkert::resultt
resultt
Definition: safety_checker.h:34
safety_checkert
Definition: safety_checker.h:24
operator&=
safety_checkert::resultt & operator&=(safety_checkert::resultt &a, safety_checkert::resultt const &b)
The worst of two results.
Definition: safety_checker.h:69
goto_tracet
Trace of a GOTO program.
Definition: goto_trace.h:174
operator|=
safety_checkert::resultt & operator|=(safety_checkert::resultt &a, safety_checkert::resultt const &b)
The best of two results.
Definition: safety_checker.h:97
message.h