CBMC
symex_assign.cpp
Go to the documentation of this file.
1 /*******************************************************************\
2 
3 Module: Symbolic Execution
4 
5 Author: Daniel Kroening, kroening@kroening.com
6 
7 \*******************************************************************/
8 
11 
12 #include "symex_assign.h"
13 
14 #include "expr_skeleton.h"
15 #include "goto_symex_state.h"
16 #include <util/byte_operators.h>
17 #include <util/expr_util.h>
18 #include <util/range.h>
19 
20 #include "symex_config.h"
21 
22 // We can either use with_exprt or update_exprt when building expressions that
23 // modify components of an array or a struct. Set USE_UPDATE to use
24 // update_exprt.
25 // #define USE_UPDATE
26 
27 constexpr bool use_update()
28 {
29 #ifdef USE_UPDATE
30  return true;
31 #else
32  return false;
33 #endif
34 }
35 
36 void symex_assignt::assign_rec(
37  const exprt &lhs,
38  const expr_skeletont &full_lhs,
39  const exprt &rhs,
40  exprt::operandst &guard)
41 {
42  if(is_ssa_expr(lhs))
43  {
44  assign_symbol(to_ssa_expr(lhs), full_lhs, rhs, guard);
45  }
46  else if(lhs.id() == ID_index)
47  assign_array<use_update()>(to_index_expr(lhs), full_lhs, rhs, guard);
48  else if(lhs.id()==ID_member)
49  {
50  const typet &type = to_member_expr(lhs).struct_op().type();
51  if(type.id() == ID_struct || type.id() == ID_struct_tag)
52  {
53  assign_struct_member<use_update()>(
54  to_member_expr(lhs), full_lhs, rhs, guard);
55  }
56  else if(type.id() == ID_union || type.id() == ID_union_tag)
57  {
58  // should have been replaced by byte_extract
59  throw unsupported_operation_exceptiont(
60  "assign_rec: unexpected assignment to union member");
61  }
62  else
63  throw unsupported_operation_exceptiont(
64  "assign_rec: unexpected assignment to member of '" + type.id_string() +
65  "'");
66  }
67  else if(lhs.id()==ID_if)
68  assign_if(to_if_expr(lhs), full_lhs, rhs, guard);
69  else if(lhs.id()==ID_typecast)
70  assign_typecast(to_typecast_expr(lhs), full_lhs, rhs, guard);
71  else if(goto_symex_statet::is_read_only_object(lhs))
72  {
73  // ignore
74  }
75  else if(lhs.id()==ID_byte_extract_little_endian ||
76  lhs.id()==ID_byte_extract_big_endian)
77  {
78  assign_byte_extract(to_byte_extract_expr(lhs), full_lhs, rhs, guard);
79  }
80  else if(lhs.id() == ID_complex_real)
81  {
82  // this is stuff like __real__ x = 1;
83  const complex_real_exprt &complex_real_expr = to_complex_real_expr(lhs);
84 
85  const complex_imag_exprt complex_imag_expr(complex_real_expr.op());
86 
87  complex_exprt new_rhs(
88  rhs, complex_imag_expr, to_complex_type(complex_real_expr.op().type()));
89 
90  assign_rec(complex_real_expr.op(), full_lhs, new_rhs, guard);
91  }
92  else if(lhs.id() == ID_complex_imag)
93  {
94  const complex_imag_exprt &complex_imag_expr = to_complex_imag_expr(lhs);
95 
96  const complex_real_exprt complex_real_expr(complex_imag_expr.op());
97 
98  complex_exprt new_rhs(
99  complex_real_expr, rhs, to_complex_type(complex_imag_expr.op().type()));
100 
101  assign_rec(complex_imag_expr.op(), full_lhs, new_rhs, guard);
102  }
103  else
104  throw unsupported_operation_exceptiont(
105  "assignment to '" + lhs.id_string() + "' not handled");
106 }
107 
109 struct assignmentt final
110 {
111  ssa_exprt lhs;
113  expr_skeletont original_lhs_skeleton;
114  exprt rhs;
115 };
116 
128 void symex_assignt::assign_from_struct(
129  const ssa_exprt &lhs, // L1
130  const expr_skeletont &full_lhs,
131  const struct_exprt &rhs,
132  const exprt::operandst &guard)
133 {
134  const auto &components = to_struct_type(ns.follow(lhs.type())).components();
135  PRECONDITION(rhs.operands().size() == components.size());
136 
137  for(const auto &comp_rhs : make_range(components).zip(rhs.operands()))
138  {
139  const auto &comp = comp_rhs.first;
140  const exprt lhs_field = state.field_sensitivity.apply(
141  ns, state, member_exprt{lhs, comp.get_name(), comp.type()}, true);
142  INVARIANT(
143  lhs_field.id() == ID_symbol,
144  "member of symbol should be susceptible to field-sensitivity");
145 
146  assign_symbol(to_ssa_expr(lhs_field), full_lhs, comp_rhs.second, guard);
147  }
148 }
149 
150 void symex_assignt::assign_non_struct_symbol(
151  const ssa_exprt &lhs, // L1
152  const expr_skeletont &full_lhs,
153  const exprt &rhs,
154  const exprt::operandst &guard)
155 {
156  exprt l2_rhs =
157  state
158  .rename(
159  // put assignment guard into the rhs
160  guard.empty()
161  ? rhs
162  : static_cast<exprt>(if_exprt{conjunction(guard), rhs, lhs}),
163  ns)
164  .get();
165 
166  assignmentt assignment{lhs, full_lhs, l2_rhs};
167 
168  if(symex_config.simplify_opt)
169  assignment.rhs = simplify_expr(std::move(assignment.rhs), ns);
170 
171  const ssa_exprt l2_lhs = state
172  .assignment(
173  assignment.lhs,
174  assignment.rhs,
175  ns,
176  symex_config.simplify_opt,
177  symex_config.constant_propagation,
178  symex_config.allow_pointer_unsoundness)
179  .get();
180 
181  state.record_events.push(false);
182  // Note any other symbols mentioned in the skeleton are rvalues -- for example
183  // array indices -- and were renamed to L2 at the start of
184  // goto_symext::symex_assign.
185  const exprt l2_full_lhs = assignment.original_lhs_skeleton.apply(l2_lhs);
186  if(symex_config.run_validation_checks)
187  {
188  INVARIANT(
189  !check_renaming(l2_full_lhs), "l2_full_lhs should be renamed to L2");
190  }
191  state.record_events.pop();
192 
193  auto current_assignment_type =
194  ns.lookup(l2_lhs.get_object_name()).is_auxiliary
195  ? symex_targett::assignment_typet::HIDDEN
196  : assignment_type;
197 
198  target.assignment(
199  make_and(state.guard.as_expr(), conjunction(guard)),
200  l2_lhs,
201  l2_full_lhs,
202  get_original_name(l2_full_lhs),
203  assignment.rhs,
204  state.source,
205  current_assignment_type);
206 
207  const ssa_exprt &l1_lhs = assignment.lhs;
208  if(state.field_sensitivity.is_divisible(l1_lhs))
209  {
210  // Split composite symbol lhs into its components
211  state.field_sensitivity.field_assignments(
212  ns,
213  state,
214  l1_lhs,
215  assignment.rhs,
216  target,
217  symex_config.allow_pointer_unsoundness);
218  // Erase the composite symbol from our working state. Note that we need to
219  // have it in the propagation table and the value set while doing the field
220  // assignments, thus we cannot skip putting it in there above.
221  state.propagation.erase_if_exists(l1_lhs.get_identifier());
222  state.value_set.erase_symbol(l1_lhs, ns);
223  }
224 }
225 
226 void symex_assignt::assign_symbol(
227  const ssa_exprt &lhs, // L1
228  const expr_skeletont &full_lhs,
229  const exprt &rhs,
230  const exprt::operandst &guard)
231 {
232  // Shortcut the common case of a whole-struct initializer:
233  if(rhs.id() == ID_struct)
234  assign_from_struct(lhs, full_lhs, to_struct_expr(rhs), guard);
235  else
236  assign_non_struct_symbol(lhs, full_lhs, rhs, guard);
237 }
238 
239 void symex_assignt::assign_typecast(
240  const typecast_exprt &lhs,
241  const expr_skeletont &full_lhs,
242  const exprt &rhs,
243  exprt::operandst &guard)
244 {
245  // these may come from dereferencing on the lhs
246  exprt rhs_typecasted = typecast_exprt::conditional_cast(rhs, lhs.op().type());
247  expr_skeletont new_skeleton =
248  full_lhs.compose(expr_skeletont::remove_op0(lhs));
249  assign_rec(lhs.op(), new_skeleton, rhs_typecasted, guard);
250 }
251 
252 template <bool use_update>
253 void symex_assignt::assign_array(
254  const index_exprt &lhs,
255  const expr_skeletont &full_lhs,
256  const exprt &rhs,
257  exprt::operandst &guard)
258 {
259  const exprt &lhs_array=lhs.array();
260  const exprt &lhs_index=lhs.index();
261  const typet &lhs_index_type = lhs_array.type();
262 
263  PRECONDITION(lhs_index_type.id() == ID_array);
264 
265  if(use_update)
266  {
267  // turn
268  // a[i]=e
269  // into
270  // a'==UPDATE(a, [i], e)
271  const update_exprt new_rhs{lhs_array, index_designatort(lhs_index), rhs};
272  const expr_skeletont new_skeleton =
273  full_lhs.compose(expr_skeletont::remove_op0(lhs));
274  assign_rec(lhs, new_skeleton, new_rhs, guard);
275  }
276  else
277  {
278  // turn
279  // a[i]=e
280  // into
281  // a'==a WITH [i:=e]
282  const with_exprt new_rhs{lhs_array, lhs_index, rhs};
283  const expr_skeletont new_skeleton =
284  full_lhs.compose(expr_skeletont::remove_op0(lhs));
285  assign_rec(lhs_array, new_skeleton, new_rhs, guard);
286  }
287 }
288 
289 template <bool use_update>
290 void symex_assignt::assign_struct_member(
291  const member_exprt &lhs,
292  const expr_skeletont &full_lhs,
293  const exprt &rhs,
294  exprt::operandst &guard)
295 {
296  // Symbolic execution of a struct member assignment.
297 
298  // lhs must be member operand, which
299  // takes one operand, which must be a structure.
300 
301  exprt lhs_struct = lhs.op();
302 
303  // typecasts involved? C++ does that for inheritance.
304  if(lhs_struct.id()==ID_typecast)
305  {
306  if(to_typecast_expr(lhs_struct).op().id() == ID_null_object)
307  {
308  // ignore, and give up
309  return;
310  }
311  else
312  {
313  // remove the type cast, we assume that the member is there
314  exprt tmp = to_typecast_expr(lhs_struct).op();
315 
316  if(tmp.type().id() == ID_struct || tmp.type().id() == ID_struct_tag)
317  lhs_struct=tmp;
318  else
319  return; // ignore and give up
320  }
321  }
322 
323  const irep_idt &component_name=lhs.get_component_name();
324 
325  if(use_update)
326  {
327  // turn
328  // a.c=e
329  // into
330  // a'==UPDATE(a, .c, e)
331  const update_exprt new_rhs{
332  lhs_struct, member_designatort(component_name), rhs};
333  const expr_skeletont new_skeleton =
334  full_lhs.compose(expr_skeletont::remove_op0(lhs));
335  assign_rec(lhs_struct, new_skeleton, new_rhs, guard);
336  }
337  else
338  {
339  // turn
340  // a.c=e
341  // into
342  // a'==a WITH [c:=e]
343 
344  with_exprt new_rhs(lhs_struct, exprt(ID_member_name), rhs);
345  new_rhs.where().set(ID_component_name, component_name);
346  const expr_skeletont new_skeleton =
347  full_lhs.compose(expr_skeletont::remove_op0(lhs));
348  assign_rec(lhs_struct, new_skeleton, new_rhs, guard);
349  }
350 }
351 
352 void symex_assignt::assign_if(
353  const if_exprt &lhs,
354  const expr_skeletont &full_lhs,
355  const exprt &rhs,
356  exprt::operandst &guard)
357 {
358  // we have (c?a:b)=e;
359 
360  guard.push_back(lhs.cond());
361  assign_rec(lhs.true_case(), full_lhs, rhs, guard);
362  guard.pop_back();
363 
364  guard.push_back(not_exprt(lhs.cond()));
365  assign_rec(lhs.false_case(), full_lhs, rhs, guard);
366  guard.pop_back();
367 }
368 
369 void symex_assignt::assign_byte_extract(
370  const byte_extract_exprt &lhs,
371  const expr_skeletont &full_lhs,
372  const exprt &rhs,
373  exprt::operandst &guard)
374 {
375  // we have byte_extract_X(object, offset)=value
376  // turn into object=byte_update_X(object, offset, value)
377 
378  irep_idt byte_update_id;
379  if(lhs.id()==ID_byte_extract_little_endian)
380  byte_update_id = ID_byte_update_little_endian;
381  else if(lhs.id()==ID_byte_extract_big_endian)
382  byte_update_id = ID_byte_update_big_endian;
383  else
384  UNREACHABLE;
385 
386  const byte_update_exprt new_rhs{byte_update_id, lhs.op(), lhs.offset(), rhs};
387  const expr_skeletont new_skeleton =
388  full_lhs.compose(expr_skeletont::remove_op0(lhs));
389  assign_rec(lhs.op(), new_skeleton, new_rhs, guard);
390 }
with_exprt
Operator to update elements in structs and arrays.
Definition: std_expr.h:2423
UNREACHABLE
#define UNREACHABLE
This should be used to mark dead code.
Definition: invariant.h:503
struct_union_typet::components
const componentst & components() const
Definition: std_types.h:147
dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition: dstring.h:36
value_sett::erase_symbol
void erase_symbol(const symbol_exprt &symbol_expr, const namespacet &ns)
Definition: value_set.cpp:1821
make_and
exprt make_and(exprt a, exprt b)
Conjunction of two expressions.
Definition: expr_util.cpp:292
typecast_exprt::conditional_cast
static exprt conditional_cast(const exprt &expr, const typet &type)
Definition: std_expr.h:2025
conjunction
exprt conjunction(const exprt::operandst &op)
1) generates a conjunction for two or more operands 2) for one operand, returns the operand 3) return...
Definition: std_expr.cpp:62
symex_assign.h
byte_update_exprt
Expression corresponding to op() where the bytes starting at position offset (given in number of byte...
Definition: byte_operators.h:77
goto_symex_statet::assignment
renamedt< ssa_exprt, L2 > assignment(ssa_exprt lhs, const exprt &rhs, const namespacet &ns, bool rhs_is_simplified, bool record_value, bool allow_pointer_unsoundness=false)
Definition: goto_symex_state.cpp:73
to_struct_type
const struct_typet & to_struct_type(const typet &type)
Cast a typet to a struct_typet.
Definition: std_types.h:308
typet
The type of an expression, extends irept.
Definition: type.h:28
expr_skeleton.h
to_byte_extract_expr
const byte_extract_exprt & to_byte_extract_expr(const exprt &expr)
Definition: byte_operators.h:57
to_index_expr
const index_exprt & to_index_expr(const exprt &expr)
Cast an exprt to an index_exprt.
Definition: std_expr.h:1478
to_if_expr
const if_exprt & to_if_expr(const exprt &expr)
Cast an exprt to an if_exprt.
Definition: std_expr.h:2403
byte_update_id
static irep_idt byte_update_id()
Definition: byte_operators.cpp:30
symex_assignt::assign_from_struct
void assign_from_struct(const ssa_exprt &lhs, const expr_skeletont &full_lhs, const struct_exprt &rhs, const exprt::operandst &guard)
Assign a struct expression to a symbol.
Definition: symex_assign.cpp:128
symex_assignt::assign_struct_member
void assign_struct_member(const member_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition: symex_assign.cpp:290
unsupported_operation_exceptiont
Thrown when we encounter an instruction, parameters to an instruction etc.
Definition: exception_utils.h:144
if_exprt
The trinary if-then-else operator.
Definition: std_expr.h:2322
member_designatort
Definition: std_expr.h:2556
complex_real_exprt
Real part of the expression describing a complex number.
Definition: std_expr.h:1925
exprt
Base class for all expressions.
Definition: expr.h:55
ssa_exprt::get_object_name
irep_idt get_object_name() const
goto_symex_statet::source
symex_targett::sourcet source
Definition: goto_symex_state.h:61
goto_symex_statet::is_read_only_object
static bool is_read_only_object(const exprt &lvalue)
Returns true if lvalue is a read-only object, such as the null object.
Definition: goto_symex_state.h:247
symex_assignt::assign_byte_extract
void assign_byte_extract(const byte_extract_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition: symex_assign.cpp:369
to_complex_type
const complex_typet & to_complex_type(const typet &type)
Cast a typet to a complex_typet.
Definition: std_types.h:1102
field_sensitivityt::apply
exprt apply(const namespacet &ns, goto_symex_statet &state, exprt expr, bool write) const
Turn an expression expr into a field-sensitive SSA expression.
Definition: field_sensitivity.cpp:32
use_update
constexpr bool use_update()
Definition: symex_assign.cpp:27
if_exprt::false_case
exprt & false_case()
Definition: std_expr.h:2360
assignmentt::original_lhs_skeleton
expr_skeletont original_lhs_skeleton
Skeleton to reconstruct the original lhs in the assignment.
Definition: symex_assign.cpp:113
goto_statet::propagation
sharing_mapt< irep_idt, exprt > propagation
Definition: goto_state.h:71
to_complex_real_expr
const complex_real_exprt & to_complex_real_expr(const exprt &expr)
Cast an exprt to a complex_real_exprt.
Definition: std_expr.h:1952
struct_exprt
Struct constructor from list of elements.
Definition: std_expr.h:1818
ssa_exprt
Expression providing an SSA-renamed symbol of expressions.
Definition: ssa_expr.h:16
exprt::type
typet & type()
Return the type of the expression.
Definition: expr.h:84
namespacet::lookup
bool lookup(const irep_idt &name, const symbolt *&symbol) const override
See documentation for namespace_baset::lookup().
Definition: namespace.cpp:138
byte_operators.h
Expression classes for byte-level operators.
is_ssa_expr
bool is_ssa_expr(const exprt &expr)
Definition: ssa_expr.h:125
symex_assignt::assign_typecast
void assign_typecast(const typecast_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition: symex_assign.cpp:239
symex_targett::assignment
virtual void assignment(const exprt &guard, const ssa_exprt &ssa_lhs, const exprt &ssa_full_lhs, const exprt &original_full_lhs, const exprt &ssa_rhs, const sourcet &source, assignment_typet assignment_type)=0
Write to a local variable.
to_ssa_expr
const ssa_exprt & to_ssa_expr(const exprt &expr)
Cast a generic exprt to an ssa_exprt.
Definition: ssa_expr.h:145
byte_extract_exprt::op
exprt & op()
Definition: byte_operators.h:43
guard_exprt::as_expr
exprt as_expr() const
Definition: guard_expr.h:46
irept::set
void set(const irep_idt &name, const irep_idt &value)
Definition: irep.h:420
member_exprt::struct_op
const exprt & struct_op() const
Definition: std_expr.h:2832
PRECONDITION
#define PRECONDITION(CONDITION)
Definition: invariant.h:463
symbol_exprt::get_identifier
const irep_idt & get_identifier() const
Definition: std_expr.h:142
goto_symex_statet::rename
renamedt< exprt, level > rename(exprt expr, const namespacet &ns)
Rewrites symbol expressions in exprt, applying a suffix to each symbol reflecting its most recent ver...
Definition: goto_symex_state.cpp:169
goto_statet::guard
guardt guard
Definition: goto_state.h:58
symex_configt::allow_pointer_unsoundness
bool allow_pointer_unsoundness
Definition: symex_config.h:25
assignmentt
Assignment from the rhs value to the lhs variable.
Definition: symex_assign.cpp:109
symex_assignt::assign_if
void assign_if(const if_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition: symex_assign.cpp:352
symex_assignt::assign_array
void assign_array(const index_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition: symex_assign.cpp:253
symex_configt::simplify_opt
bool simplify_opt
Definition: symex_config.h:31
assignmentt::rhs
exprt rhs
Definition: symex_assign.cpp:114
irept::id_string
const std::string & id_string() const
Definition: irep.h:399
simplify_expr
exprt simplify_expr(exprt src, const namespacet &ns)
Definition: simplify_expr.cpp:2931
index_exprt::index
exprt & index()
Definition: std_expr.h:1450
index_exprt::array
exprt & array()
Definition: std_expr.h:1440
symex_assignt::assignment_type
symex_targett::assignment_typet assignment_type
Definition: symex_assign.h:60
expr_skeletont::remove_op0
static expr_skeletont remove_op0(exprt e)
Create a skeleton by removing the first operand of e.
Definition: expr_skeleton.cpp:20
get_original_name
exprt get_original_name(exprt expr)
Undo all levels of renaming.
Definition: renaming_level.cpp:157
irept::id
const irep_idt & id() const
Definition: irep.h:396
range.h
exprt::operandst
std::vector< exprt > operandst
Definition: expr.h:58
complex_exprt
Complex constructor from a pair of numbers.
Definition: std_expr.h:1857
symex_assignt::assign_rec
void assign_rec(const exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, exprt::operandst &guard)
Definition: symex_assign.cpp:36
unary_exprt::op
const exprt & op() const
Definition: std_expr.h:326
symex_assignt::assign_non_struct_symbol
void assign_non_struct_symbol(const ssa_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, const exprt::operandst &guard)
Definition: symex_assign.cpp:150
index_designatort
Definition: std_expr.h:2503
to_complex_imag_expr
const complex_imag_exprt & to_complex_imag_expr(const exprt &expr)
Cast an exprt to a complex_imag_exprt.
Definition: std_expr.h:1997
symex_assignt::ns
const namespacet & ns
Definition: symex_assign.h:61
goto_symex_statet::field_sensitivity
field_sensitivityt field_sensitivity
Definition: goto_symex_state.h:121
update_exprt
Operator to update elements in structs and arrays.
Definition: std_expr.h:2607
byte_extract_exprt::offset
exprt & offset()
Definition: byte_operators.h:44
member_exprt
Extract member of struct or union.
Definition: std_expr.h:2793
expr_util.h
Deprecated expression utility functions.
if_exprt::true_case
exprt & true_case()
Definition: std_expr.h:2350
goto_symex_state.h
field_sensitivityt::is_divisible
bool is_divisible(const ssa_exprt &expr) const
Determine whether expr would translate to an atomic SSA expression (returns false) or a composite obj...
Definition: field_sensitivity.cpp:353
namespace_baset::follow
const typet & follow(const typet &) const
Resolve type symbol to the type it points to.
Definition: namespace.cpp:49
symex_assignt::symex_config
const symex_configt & symex_config
Definition: symex_assign.h:62
field_sensitivityt::field_assignments
void field_assignments(const namespacet &ns, goto_symex_statet &state, const ssa_exprt &lhs, const exprt &rhs, symex_targett &target, bool allow_pointer_unsoundness)
Assign to the individual fields of a non-expanded symbol lhs.
Definition: field_sensitivity.cpp:228
symex_configt::constant_propagation
bool constant_propagation
Definition: symex_config.h:27
symex_assignt::target
symex_targett & target
Definition: symex_assign.h:63
to_typecast_expr
const typecast_exprt & to_typecast_expr(const exprt &expr)
Cast an exprt to a typecast_exprt.
Definition: std_expr.h:2051
if_exprt::cond
exprt & cond()
Definition: std_expr.h:2340
check_renaming
bool check_renaming(const typet &type)
Check that type is correctly renamed to level 2 and return true in case an error is detected.
Definition: renaming_level.cpp:198
complex_imag_exprt
Imaginary part of the expression describing a complex number.
Definition: std_expr.h:1970
byte_extract_exprt
Expression of type type extracted from some object op starting at position offset (given in number of...
Definition: byte_operators.h:28
expr_skeletont::compose
expr_skeletont compose(expr_skeletont other) const
Replace the missing part of the current skeleton by another skeleton, ending in a bigger skeleton cor...
Definition: expr_skeleton.cpp:51
goto_symex_statet::record_events
std::stack< bool > record_events
Definition: goto_symex_state.h:210
to_member_expr
const member_exprt & to_member_expr(const exprt &expr)
Cast an exprt to a member_exprt.
Definition: std_expr.h:2886
symex_assignt::state
goto_symex_statet & state
Definition: symex_assign.h:59
member_exprt::get_component_name
irep_idt get_component_name() const
Definition: std_expr.h:2816
exprt::operands
operandst & operands()
Definition: expr.h:94
symex_targett::assignment_typet::HIDDEN
@ HIDDEN
index_exprt
Array index operator.
Definition: std_expr.h:1409
symex_configt::run_validation_checks
bool run_validation_checks
Should the additional validation checks be run? If this flag is set the checks for renaming (both lev...
Definition: symex_config.h:42
typecast_exprt
Semantic type conversion.
Definition: std_expr.h:2016
assignmentt::lhs
ssa_exprt lhs
Definition: symex_assign.cpp:111
with_exprt::where
exprt & where()
Definition: std_expr.h:2444
goto_statet::value_set
value_sett value_set
Uses level 1 names, and is used to do dereferencing.
Definition: goto_state.h:51
make_range
ranget< iteratort > make_range(iteratort begin, iteratort end)
Definition: range.h:524
expr_skeletont
Expression in which some part is missing and can be substituted for another expression.
Definition: expr_skeleton.h:25
to_struct_expr
const struct_exprt & to_struct_expr(const exprt &expr)
Cast an exprt to a struct_exprt.
Definition: std_expr.h:1842
validation_modet::INVARIANT
@ INVARIANT
symex_config.h
symex_assignt::assign_symbol
void assign_symbol(const ssa_exprt &lhs, const expr_skeletont &full_lhs, const exprt &rhs, const exprt::operandst &guard)
Record the assignment of value rhs to variable lhs in state and add the equation to target: lhs#{n+1}...
Definition: symex_assign.cpp:226
not_exprt
Boolean negation.
Definition: std_expr.h:2277