CBMC
value_set_analysis_fi.cpp
Go to the documentation of this file.
1 /*******************************************************************\
2 
3 Module: Value Set Propagation (Flow Insensitive)
4 
5 Author: Daniel Kroening, kroening@kroening.com
6  CM Wintersteiger
7 
8 \*******************************************************************/
9 
12 
13 #include "value_set_analysis_fi.h"
14 
15 #include <util/pointer_expr.h>
16 #include <util/symbol_table.h>
17 
18 void value_set_analysis_fit::initialize(
19  const goto_programt &goto_program)
20 {
21  baset::initialize(goto_program);
22  add_vars(goto_program);
23 }
24 
25 void value_set_analysis_fit::initialize(
26  const goto_functionst &goto_functions)
27 {
28  baset::initialize(goto_functions);
29  add_vars(goto_functions);
30 }
31 
32 void value_set_analysis_fit::add_vars(
33  const goto_programt &goto_program)
34 {
35  typedef std::list<value_set_fit::entryt> entry_listt;
36 
37  // get the globals
38  entry_listt globals;
39  get_globals(globals);
40 
41  // get the locals
42  goto_programt::decl_identifierst locals;
43  goto_program.get_decl_identifiers(locals);
44 
45  // cache the list for the locals to speed things up
46  typedef std::unordered_map<irep_idt, entry_listt> entry_cachet;
47  entry_cachet entry_cache;
48 
49  value_set_fit &v=state.value_set;
50 
51  for(goto_programt::instructionst::const_iterator
52  i_it=goto_program.instructions.begin();
53  i_it!=goto_program.instructions.end();
54  i_it++)
55  {
56  v.add_vars(globals);
57 
58  for(goto_programt::decl_identifierst::const_iterator
59  l_it=locals.begin();
60  l_it!=locals.end();
61  l_it++)
62  {
63  // cache hit?
64  entry_cachet::const_iterator e_it=entry_cache.find(*l_it);
65 
66  if(e_it==entry_cache.end())
67  {
68  const symbolt &symbol=ns.lookup(*l_it);
69 
70  std::list<value_set_fit::entryt> &entries=entry_cache[*l_it];
71  get_entries(symbol, entries);
72  v.add_vars(entries);
73  }
74  else
75  v.add_vars(e_it->second);
76  }
77  }
78 }
79 
80 void value_set_analysis_fit::get_entries(
81  const symbolt &symbol,
82  std::list<value_set_fit::entryt> &dest)
83 {
84  get_entries_rec(symbol.name, "", symbol.type, dest);
85 }
86 
87 void value_set_analysis_fit::get_entries_rec(
88  const irep_idt &identifier,
89  const std::string &suffix,
90  const typet &type,
91  std::list<value_set_fit::entryt> &dest)
92 {
93  const typet &t=ns.follow(type);
94 
95  if(t.id()==ID_struct ||
96  t.id()==ID_union)
97  {
98  for(const auto &c : to_struct_union_type(t).components())
99  {
100  get_entries_rec(
101  identifier, suffix + "." + id2string(c.get_name()), c.type(), dest);
102  }
103  }
104  else if(t.id()==ID_array)
105  {
106  get_entries_rec(
107  identifier, suffix + "[]", to_array_type(t).element_type(), dest);
108  }
109  else if(check_type(t))
110  {
111  dest.push_back(value_set_fit::entryt(identifier, suffix));
112  }
113 }
114 
115 void value_set_analysis_fit::add_vars(
116  const goto_functionst &goto_functions)
117 {
118  // get the globals
119  std::list<value_set_fit::entryt> globals;
120  get_globals(globals);
121 
122  value_set_fit &v=state.value_set;
123  v.add_vars(globals);
124 
125  for(const auto &gf_entry : goto_functions.function_map)
126  {
127  // get the locals
128  std::set<irep_idt> locals;
129  get_local_identifiers(gf_entry.second, locals);
130 
131  for(auto l : locals)
132  {
133  const symbolt &symbol=ns.lookup(l);
134 
135  std::list<value_set_fit::entryt> entries;
136  get_entries(symbol, entries);
137  v.add_vars(entries);
138  }
139  }
140 }
141 
142 void value_set_analysis_fit::get_globals(
143  std::list<value_set_fit::entryt> &dest)
144 {
145  // static ones
146  for(const auto &symbol_pair : ns.get_symbol_table().symbols)
147  {
148  if(symbol_pair.second.is_lvalue && symbol_pair.second.is_static_lifetime)
149  {
150  get_entries(symbol_pair.second, dest);
151  }
152  }
153 }
154 
155 bool value_set_analysis_fit::check_type(const typet &type)
156 {
157  if(type.id()==ID_pointer)
158  {
159  switch(track_options)
160  {
161  case TRACK_ALL_POINTERS:
162  { return true; break; }
163  case TRACK_FUNCTION_POINTERS:
164  {
165  if(type.id()==ID_pointer)
166  {
167  const typet *t = &type;
168  while(t->id() == ID_pointer)
169  t = &(to_pointer_type(*t).base_type());
170 
171  return (t->id()==ID_code);
172  }
173 
174  break;
175  }
176  default: // don't track.
177  break;
178  }
179  }
180  else if(type.id()==ID_struct ||
181  type.id()==ID_union)
182  {
183  for(const auto &c : to_struct_union_type(type).components())
184  {
185  if(check_type(c.type()))
186  return true;
187  }
188  }
189  else if(type.id()==ID_array)
190  return check_type(to_array_type(type).element_type());
191  else if(type.id() == ID_struct_tag || type.id() == ID_union_tag)
192  return check_type(ns.follow(type));
193 
194  return false;
195 }
196 
197 std::vector<exprt> value_set_analysis_fit::get_values(
198  const irep_idt &function_id,
199  flow_insensitive_analysis_baset::locationt l,
200  const exprt &expr)
201 {
202  state.value_set.from_function =
203  state.value_set.function_numbering.number(function_id);
204  state.value_set.to_function =
205  state.value_set.function_numbering.number(function_id);
206  state.value_set.from_target_index = l->location_number;
207  state.value_set.to_target_index = l->location_number;
208  return state.value_set.get_value_set(expr, ns);
209 }
struct_union_typet::components
const componentst & components() const
Definition: std_types.h:147
dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition: dstring.h:36
to_struct_union_type
const struct_union_typet & to_struct_union_type(const typet &type)
Cast a typet to a struct_union_typet.
Definition: std_types.h:214
typet
The type of an expression, extends irept.
Definition: type.h:28
value_set_analysis_fit::get_entries_rec
void get_entries_rec(const irep_idt &identifier, const std::string &suffix, const typet &type, std::list< value_set_fit::entryt > &dest)
Definition: value_set_analysis_fi.cpp:87
symbolt::type
typet type
Type of symbol.
Definition: symbol.h:31
value_set_fit::entryt
Definition: value_set_fi.h:173
value_set_fit::from_function
unsigned from_function
Definition: value_set_fi.h:39
exprt
Base class for all expressions.
Definition: expr.h:55
goto_programt::get_decl_identifiers
void get_decl_identifiers(decl_identifierst &decl_identifiers) const
get the variables in decl statements
Definition: goto_program.cpp:317
value_set_domain_fit::value_set
value_set_fit value_set
Definition: value_set_domain_fi.h:23
value_set_fit::from_target_index
unsigned from_target_index
Definition: value_set_fi.h:40
goto_functionst::function_map
function_mapt function_map
Definition: goto_functions.h:29
value_set_fit
Definition: value_set_fi.h:29
value_set_fit::to_target_index
unsigned to_target_index
Definition: value_set_fi.h:40
flow_insensitive_analysis_baset::initialize
virtual void initialize(const goto_programt &)
Definition: flow_insensitive_analysis.h:111
namespacet::lookup
bool lookup(const irep_idt &name, const symbolt *&symbol) const override
See documentation for namespace_baset::lookup().
Definition: namespace.cpp:138
value_set_analysis_fit::initialize
void initialize(const goto_programt &goto_program) override
Definition: value_set_analysis_fi.cpp:18
id2string
const std::string & id2string(const irep_idt &d)
Definition: irep.h:47
value_set_fit::get_value_set
std::vector< exprt > get_value_set(const exprt &expr, const namespacet &ns) const
Definition: value_set_fi.cpp:294
pointer_expr.h
to_pointer_type
const pointer_typet & to_pointer_type(const typet &type)
Cast a typet to a pointer_typet.
Definition: pointer_expr.h:79
value_set_analysis_fit::get_globals
void get_globals(std::list< value_set_fit::entryt > &dest)
Definition: value_set_analysis_fi.cpp:142
irept::id
const irep_idt & id() const
Definition: irep.h:396
get_local_identifiers
void get_local_identifiers(const goto_functiont &goto_function, std::set< irep_idt > &dest)
Return in dest the identifiers of the local variables declared in the goto_function and the identifie...
Definition: goto_function.cpp:20
value_set_analysis_fi.h
value_set_analysis_fit::check_type
bool check_type(const typet &type)
Definition: value_set_analysis_fi.cpp:155
value_set_analysis_fit::get_values
std::vector< exprt > get_values(const irep_idt &function_id, locationt l, const exprt &expr) override
Definition: value_set_analysis_fi.cpp:197
flow_insensitive_analysis_baset::ns
const namespacet & ns
Definition: flow_insensitive_analysis.h:156
value_set_analysis_fit::TRACK_FUNCTION_POINTERS
@ TRACK_FUNCTION_POINTERS
Definition: value_set_analysis_fi.h:25
goto_programt::instructions
instructionst instructions
The list of instructions in the goto program.
Definition: goto_program.h:592
flow_insensitive_analysist< value_set_domain_fit >::state
value_set_domain_fit state
Definition: flow_insensitive_analysis.h:252
goto_functionst
A collection of goto functions.
Definition: goto_functions.h:24
flow_insensitive_analysis_baset::locationt
goto_programt::const_targett locationt
Definition: flow_insensitive_analysis.h:94
namespacet::get_symbol_table
const symbol_table_baset & get_symbol_table() const
Return first symbol table registered with the namespace.
Definition: namespace.h:123
namespace_baset::follow
const typet & follow(const typet &) const
Resolve type symbol to the type it points to.
Definition: namespace.cpp:49
numberingt::number
number_type number(const key_type &a)
Definition: numbering.h:37
symbolt
Symbol table entry.
Definition: symbol.h:27
symbol_table_baset::symbols
const symbolst & symbols
Read-only field, used to look up symbols given their names.
Definition: symbol_table_base.h:30
value_set_analysis_fit::get_entries
void get_entries(const symbolt &symbol, std::list< value_set_fit::entryt > &dest)
Definition: value_set_analysis_fi.cpp:80
pointer_typet::base_type
const typet & base_type() const
The type of the data what we point to.
Definition: pointer_expr.h:35
to_array_type
const array_typet & to_array_type(const typet &type)
Cast a typet to an array_typet.
Definition: std_types.h:844
goto_programt
A generic container class for the GOTO intermediate representation of one function.
Definition: goto_program.h:72
value_set_fit::function_numbering
static numberingt< irep_idt > function_numbering
Definition: value_set_fi.h:42
value_set_fit::to_function
unsigned to_function
Definition: value_set_fi.h:39
value_set_fit::add_vars
void add_vars(const std::list< entryt > &vars)
Definition: value_set_fi.h:245
symbol_table.h
Author: Diffblue Ltd.
value_set_analysis_fit::track_options
track_optionst track_options
Definition: value_set_analysis_fi.h:42
value_set_analysis_fit::add_vars
void add_vars(const goto_functionst &goto_functions)
Definition: value_set_analysis_fi.cpp:115
value_set_analysis_fit::TRACK_ALL_POINTERS
@ TRACK_ALL_POINTERS
Definition: value_set_analysis_fi.h:25
goto_programt::decl_identifierst
std::set< irep_idt > decl_identifierst
Definition: goto_program.h:844
symbolt::name
irep_idt name
The unique identifier.
Definition: symbol.h:40
array_typet::element_type
const typet & element_type() const
The type of the elements of the array.
Definition: std_types.h:785