k__induction_8cpp_source.html

 /*******************************************************************\


 Module: k-induction


 Author: Daniel Kroening, kroening@kroening.com


 \*******************************************************************/


 #include "k_induction.h"


 #include <analyses/natural_loops.h>

 #include <analyses/local_may_alias.h>


 #include <goto-programs/remove_skip.h>


 #include "havoc_utils.h"

 #include "loop_utils.h"

 #include "unwind.h"


 class k_inductiont

 {

 public:

   k_inductiont(

     const irep_idt &_function_id,

     goto_functiont &_goto_function,

     bool _base_case,

     bool _step_case,

     unsigned _k,

     const namespacet &ns)

     : function_id(_function_id),

       goto_function(_goto_function),

       local_may_alias(_goto_function),

       natural_loops(_goto_function.body),

       base_case(_base_case),

       step_case(_step_case),

       k(_k),

       ns(ns)

   {

     k_induction();

   }


 protected:

   const irep_idt &function_id;

   goto_functiont &goto_function;

   local_may_aliast local_may_alias;

   natural_loops_mutablet natural_loops;


   const bool base_case, step_case;

   const unsigned k;


   const namespacet &ns;


   void k_induction();


   void process_loop(

     const goto_programt::targett loop_head,

     const loopt &);

 };


 void k_inductiont::process_loop(

   const goto_programt::targett loop_head,

   const loopt &loop)

 {

   PRECONDITION(!loop.empty());


   // save the loop guard

   const exprt loop_guard = loop_head->condition();


   // compute the loop exit

   goto_programt::targett loop_exit=

     get_loop_exit(loop);


   if(base_case)

   {

     // now unwind k times

     goto_unwindt goto_unwind;

     goto_unwind.unwind(

       function_id,

       goto_function.body,

       loop_head,

       loop_exit,

       k,

       goto_unwindt::unwind_strategyt::PARTIAL);


     // assume the loop condition has become false

     goto_programt::instructiont assume =

       goto_programt::make_assumption(loop_guard);

     goto_function.body.insert_before_swap(loop_exit, assume);

   }


   if(step_case)

   {

     // step case


     // find out what can get changed in the loop

     assignst assigns;

     get_assigns(local_may_alias, loop, assigns);


     // build the havocking code

     goto_programt havoc_code;

     havoc_utilst havoc_gen(assigns, ns);

     havoc_gen.append_full_havoc_code(loop_head->source_location(), havoc_code);


     // unwind to get k+1 copies

     std::vector<goto_programt::targett> iteration_points;


     goto_unwindt goto_unwind;

     goto_unwind.unwind(

       function_id,

       goto_function.body,

       loop_head,

       loop_exit,

       k + 1,

       goto_unwindt::unwind_strategyt::PARTIAL,

       iteration_points);


     // we can remove everything up to the first assertion

     for(goto_programt::targett t=loop_head; t!=loop_exit; t++)

     {

       if(t->is_assert())

         break;

       t->turn_into_skip();

     }


     // now turn any assertions in iterations 0..k-1 into assumptions

     DATA_INVARIANT(

       iteration_points.size() == k + 1, "number of iteration points");


     DATA_INVARIANT(k >= 1, "at least one iteration");

     goto_programt::targett end=iteration_points[k-1];


     for(goto_programt::targett t=loop_head; t!=end; t++)

     {

       DATA_INVARIANT(

         t != goto_function.body.instructions.end(), "t is in range");

       if(t->is_assert())

         t->turn_into_assume();

     }


     // assume the loop condition has become false

     goto_programt::instructiont assume =

       goto_programt::make_assumption(loop_guard);

     goto_function.body.insert_before_swap(loop_exit, assume);


     // Now havoc at the loop head. Use insert_swap to

     // preserve jumps to loop head.

     goto_function.body.insert_before_swap(loop_head, havoc_code);

   }


   // remove skips

   remove_skip(goto_function.body);

 }


 void k_inductiont::k_induction()

 {

   // iterate over the (natural) loops in the function


   for(natural_loops_mutablet::loop_mapt::const_iterator

       l_it=natural_loops.loop_map.begin();

       l_it!=natural_loops.loop_map.end();

       l_it++)

     process_loop(l_it->first, l_it->second);

 }


 void k_induction(

   goto_modelt &goto_model,

   bool base_case, bool step_case,

   unsigned k)

 {

   for(auto &gf_entry : goto_model.goto_functions.function_map)

   {

     k_inductiont(

       gf_entry.first,

       gf_entry.second,

       base_case,

       step_case,

       k,

       namespacet{goto_model.symbol_table});

   }

 }

dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition: dstring.h:38

exprt
Base class for all expressions.
Definition: expr.h:56

goto_functionst::function_map
function_mapt function_map
Definition: goto_functions.h:29

goto_functiont
A goto function, consisting of function body (see body) and parameter identifiers (see parameter_iden...
Definition: goto_function.h:24

goto_functiont::body
goto_programt body
Definition: goto_function.h:26

goto_modelt
Definition: goto_model.h:27

goto_modelt::goto_functions
goto_functionst goto_functions
GOTO functions.
Definition: goto_model.h:34

goto_programt::instructiont
This class represents an instruction in the GOTO intermediate representation.
Definition: goto_program.h:181

goto_programt
A generic container class for the GOTO intermediate representation of one function.
Definition: goto_program.h:73

goto_programt::make_assumption
static instructiont make_assumption(const exprt &g, const source_locationt &l=source_locationt::nil())
Definition: goto_program.h:945

goto_programt::instructions
instructionst instructions
The list of instructions in the goto program.
Definition: goto_program.h:622

goto_programt::insert_before_swap
void insert_before_swap(targett target)
Insertion that preserves jumps to "target".
Definition: goto_program.h:643

goto_programt::targett
instructionst::iterator targett
Definition: goto_program.h:614

goto_unwindt
Definition: unwind.h:22

goto_unwindt::unwind_strategyt::PARTIAL
@ PARTIAL

goto_unwindt::unwind
void unwind(const irep_idt &function_id, goto_programt &goto_program, const goto_programt::const_targett loop_head, const goto_programt::const_targett loop_exit, const unsigned k, const unwind_strategyt unwind_strategy)
Definition: unwind.cpp:84

havoc_utilst
Definition: havoc_utils.h:53

havoc_utilst::append_full_havoc_code
void append_full_havoc_code(const source_locationt location, goto_programt &dest)
Append goto instructions to havoc the full assigns set.
Definition: havoc_utils.cpp:21

k_inductiont
Definition: k_induction.cpp:24

k_inductiont::base_case
const bool base_case
Definition: k_induction.cpp:51

k_inductiont::natural_loops
natural_loops_mutablet natural_loops
Definition: k_induction.cpp:49

k_inductiont::local_may_alias
local_may_aliast local_may_alias
Definition: k_induction.cpp:48

k_inductiont::k
const unsigned k
Definition: k_induction.cpp:52

k_inductiont::goto_function
goto_functiont & goto_function
Definition: k_induction.cpp:47

k_inductiont::step_case
const bool step_case
Definition: k_induction.cpp:51

k_inductiont::k_inductiont
k_inductiont(const irep_idt &_function_id, goto_functiont &_goto_function, bool _base_case, bool _step_case, unsigned _k, const namespacet &ns)
Definition: k_induction.cpp:26

k_inductiont::ns
const namespacet & ns
Definition: k_induction.cpp:54

k_inductiont::function_id
const irep_idt & function_id
Definition: k_induction.cpp:46

k_inductiont::process_loop
void process_loop(const goto_programt::targett loop_head, const loopt &)
Definition: k_induction.cpp:63

k_inductiont::k_induction
void k_induction()
Definition: k_induction.cpp:157

local_may_aliast
Definition: local_may_alias.h:25

loop_analysist::loop_map
loop_mapt loop_map
Definition: loop_analysis.h:88

namespacet
A namespacet is essentially one or two symbol tables bound together, to allow for symbol lookups in t...
Definition: namespace.h:94

natural_loops_templatet< goto_programt, goto_programt::targett, goto_programt::target_less_than >

get_assigns
static const exprt::operandst & get_assigns(const goto_programt::const_targett &latch_target)
Extracts the assigns clause expression from the latch condition.
Definition: dfcc_cfg_info.cpp:34

havoc_utils.h
Utilities for building havoc code for expressions.

assignst
std::set< exprt > assignst
Definition: havoc_utils.h:22

k_induction
void k_induction(goto_modelt &goto_model, bool base_case, bool step_case, unsigned k)
Definition: k_induction.cpp:168

k_induction.h
k-induction

local_may_alias.h
Field-insensitive, location-sensitive may-alias analysis.

get_loop_exit
goto_programt::targett get_loop_exit(const loopt &loop)
Definition: loop_utils.cpp:21

loop_utils.h
Helper functions for k-induction and loop invariants.

loopt
natural_loops_mutablet::natural_loopt loopt
Definition: loop_utils.h:20

natural_loops.h
Compute natural loops in a goto_function.

remove_skip
void remove_skip(goto_programt &goto_program, goto_programt::targett begin, goto_programt::targett end)
remove unnecessary skip statements
Definition: remove_skip.cpp:87

remove_skip.h
Program Transformation.

DATA_INVARIANT
#define DATA_INVARIANT(CONDITION, REASON)
This condition should be used to document that assumptions that are made on goto_functions,...
Definition: invariant.h:534

PRECONDITION
#define PRECONDITION(CONDITION)
Definition: invariant.h:463

unwind.h
Loop unwinding.