simplify__expr__pointer_8cpp_source.html

 /*******************************************************************\


 Module:


 Author: Daniel Kroening, kroening@kroening.com


 \*******************************************************************/


 #include "simplify_expr_class.h"


 #include "arith_tools.h"

 #include "c_types.h"

 #include "config.h"

 #include "expr_util.h"

 #include "namespace.h"

 #include "pointer_expr.h"

 #include "pointer_offset_size.h"

 #include "pointer_predicates.h"

 #include "std_expr.h"

 #include "string_constant.h"


 static bool is_dereference_integer_object(

   const exprt &expr,

   mp_integer &address)

 {

   if(expr.id() == ID_dereference)

   {

     const auto &pointer = to_dereference_expr(expr).pointer();


     if(

       pointer.id() == ID_typecast &&

       to_typecast_expr(pointer).op().is_constant() &&

       !to_integer(to_constant_expr(to_typecast_expr(pointer).op()), address))

     {

       return true;

     }


     if(pointer.is_constant())

     {

       const constant_exprt &constant = to_constant_expr(pointer);


       if(is_null_pointer(constant))

       {

         address=0;

         return true;

       }

       else if(!to_integer(constant, address))

         return true;

     }

   }


   return false;

 }


 simplify_exprt::resultt<>

 simplify_exprt::simplify_unary_pointer_predicate_preorder(

   const unary_exprt &expr)

 {

   const exprt &pointer = expr.op();

   PRECONDITION(pointer.type().id() == ID_pointer);


   if(pointer.id() == ID_if)

   {

     if_exprt if_expr = lift_if(expr, 0);

     return changed(simplify_if_preorder(if_expr));

   }

   else

   {

     auto r_it = simplify_rec(pointer); // recursive call

     if(r_it.has_changed())

     {

       auto tmp = expr;

       tmp.op() = r_it.expr;

       return tmp;

     }

   }


   return unchanged(expr);

 }


 simplify_exprt::resultt<>

 simplify_exprt::simplify_address_of_arg(const exprt &expr)

 {

   if(expr.id()==ID_index)

   {

     auto new_index_expr = to_index_expr(expr);


     bool no_change = true;


     auto array_result = simplify_address_of_arg(new_index_expr.array());


     if(array_result.has_changed())

     {

       no_change = false;

       new_index_expr.array() = array_result.expr;

     }


     auto index_result = simplify_rec(new_index_expr.index());


     if(index_result.has_changed())

     {

       no_change = false;

       new_index_expr.index() = index_result.expr;

     }


     // rewrite (*(type *)int) [index] by

     // pushing the index inside


     mp_integer address;

     if(is_dereference_integer_object(new_index_expr.array(), address))

     {

       // push index into address

       auto step_size = pointer_offset_size(new_index_expr.type(), ns);


       if(step_size.has_value())

       {

         const auto index = numeric_cast<mp_integer>(new_index_expr.index());


         if(index.has_value())

         {

           pointer_typet pointer_type = to_pointer_type(

             to_dereference_expr(new_index_expr.array()).pointer().type());

           pointer_type.base_type() = new_index_expr.type();


           typecast_exprt typecast_expr(

             from_integer((*step_size) * (*index) + address, c_index_type()),

             pointer_type);


           return dereference_exprt{typecast_expr};

         }

       }

     }


     if(!no_change)

       return new_index_expr;

   }

   else if(expr.id()==ID_member)

   {

     auto new_member_expr = to_member_expr(expr);


     bool no_change = true;


     auto struct_op_result =

       simplify_address_of_arg(new_member_expr.struct_op());


     if(struct_op_result.has_changed())

     {

       new_member_expr.struct_op() = struct_op_result.expr;

       no_change = false;

     }


     const typet &op_type = new_member_expr.struct_op().type();


     if(op_type.id() == ID_struct || op_type.id() == ID_struct_tag)

     {

       // rewrite NULL -> member by

       // pushing the member inside


       mp_integer address;

       if(is_dereference_integer_object(new_member_expr.struct_op(), address))

       {

         const struct_typet &struct_type =

           op_type.id() == ID_struct_tag

             ? ns.follow_tag(to_struct_tag_type(op_type))

             : to_struct_type(op_type);

         const irep_idt &member = to_member_expr(expr).get_component_name();

         auto offset = member_offset(struct_type, member, ns);

         if(offset.has_value())

         {

           pointer_typet pointer_type = to_pointer_type(

             to_dereference_expr(new_member_expr.struct_op()).pointer().type());

           pointer_type.base_type() = new_member_expr.type();

           typecast_exprt typecast_expr(

             from_integer(address + *offset, c_index_type()), pointer_type);

           return dereference_exprt{typecast_expr};

         }

       }

     }


     if(!no_change)

       return new_member_expr;

   }

   else if(expr.id()==ID_dereference)

   {

     auto new_expr = to_dereference_expr(expr);

     auto r_pointer = simplify_rec(new_expr.pointer());

     if(r_pointer.has_changed())

     {

       new_expr.pointer() = r_pointer.expr;

       return std::move(new_expr);

     }

   }

   else if(expr.id()==ID_if)

   {

     auto new_if_expr = to_if_expr(expr);


     bool no_change = true;


     auto r_cond = simplify_rec(new_if_expr.cond());

     if(r_cond.has_changed())

     {

       new_if_expr.cond() = r_cond.expr;

       no_change = false;

     }


     auto true_result = simplify_address_of_arg(new_if_expr.true_case());

     if(true_result.has_changed())

     {

       new_if_expr.true_case() = true_result.expr;

       no_change = false;

     }


     auto false_result = simplify_address_of_arg(new_if_expr.false_case());


     if(false_result.has_changed())

     {

       new_if_expr.false_case() = false_result.expr;

       no_change = false;

     }


     // condition is a constant?

     if(new_if_expr.cond().is_true())

     {

       return new_if_expr.true_case();

     }

     else if(new_if_expr.cond().is_false())

     {

       return new_if_expr.false_case();

     }


     if(!no_change)

       return new_if_expr;

   }


   return unchanged(expr);

 }


 simplify_exprt::resultt<>

 simplify_exprt::simplify_address_of(const address_of_exprt &expr)

 {

   if(expr.type().id() != ID_pointer)

     return unchanged(expr);


   auto new_object = simplify_address_of_arg(expr.object());


   if(new_object.expr.id() == ID_index)

   {

     auto index_expr = to_index_expr(new_object.expr);


     if(!index_expr.index().is_zero())

     {

       // we normalize &a[i] to (&a[0])+i

       exprt offset = index_expr.op1();

       index_expr.op1()=from_integer(0, offset.type());

       auto new_address_of_expr = expr;

       new_address_of_expr.object() = std::move(index_expr);

       return plus_exprt(std::move(new_address_of_expr), offset);

     }

   }

   else if(new_object.expr.id() == ID_dereference)

   {

     // simplify &*p to p

     return to_dereference_expr(new_object.expr).pointer();

   }


   if(new_object.has_changed())

   {

     auto new_expr = expr;

     new_expr.object() = new_object;

     return new_expr;

   }

   else

     return unchanged(expr);

 }


 simplify_exprt::resultt<>

 simplify_exprt::simplify_pointer_offset(const pointer_offset_exprt &expr)

 {

   const exprt &ptr = expr.pointer();


   if(ptr.type().id()!=ID_pointer)

     return unchanged(expr);


   if(ptr.id()==ID_address_of)

   {

     auto offset = compute_pointer_offset(to_address_of_expr(ptr).object(), ns);


     if(offset.has_value())

       return from_integer(*offset, expr.type());

   }

   else if(ptr.id()==ID_typecast) // pointer typecast

   {

     const auto &op = to_typecast_expr(ptr).op();

     const typet &op_type = op.type();


     if(op_type.id()==ID_pointer)

     {

       // Cast from pointer to pointer.

       // This just passes through, remove typecast.

       auto new_expr = expr;

       new_expr.op() = op;


       return changed(simplify_pointer_offset(new_expr)); // recursive call

     }

     else if(op_type.id()==ID_signedbv ||

             op_type.id()==ID_unsignedbv)

     {

       // Cast from integer to pointer, say (int *)x.


       if(op.is_constant())

       {

         // (T *)0x1234 -> 0x1234

         return changed(simplify_typecast(typecast_exprt{op, expr.type()}));

       }

       else

       {

         // We do a bit of special treatment for (TYPE *)(a+(int)&o),

         // which is re-written to 'a'.


         typet type = expr.type();

         exprt tmp = op;

         if(tmp.id()==ID_plus && tmp.operands().size()==2)

         {

           const auto &plus_expr = to_plus_expr(tmp);


           if(

             plus_expr.op0().id() == ID_typecast &&

             to_typecast_expr(plus_expr.op0()).op().id() == ID_address_of)

           {

             auto new_expr =

               typecast_exprt::conditional_cast(plus_expr.op1(), type);


             return changed(simplify_node(new_expr));

           }

           else if(

             plus_expr.op1().id() == ID_typecast &&

             to_typecast_expr(plus_expr.op1()).op().id() == ID_address_of)

           {

             auto new_expr =

               typecast_exprt::conditional_cast(plus_expr.op0(), type);


             return changed(simplify_node(new_expr));

           }

         }

       }

     }

   }

   else if(ptr.id()==ID_plus) // pointer arithmetic

   {

     exprt::operandst ptr_expr;

     exprt::operandst int_expr;


     for(const auto &op : ptr.operands())

     {

       if(op.type().id()==ID_pointer)

         ptr_expr.push_back(op);

       else if(!op.is_zero())

       {

         exprt tmp=op;

         if(tmp.type()!=expr.type())

           tmp = simplify_typecast(typecast_exprt(tmp, expr.type()));


         int_expr.push_back(tmp);

       }

     }


     if(ptr_expr.size()!=1 || int_expr.empty())

       return unchanged(expr);


     typet pointer_base_type =

       to_pointer_type(ptr_expr.front().type()).base_type();

     if(pointer_base_type.id() == ID_empty)

       pointer_base_type = char_type();


     auto element_size = pointer_offset_size(pointer_base_type, ns);


     if(!element_size.has_value())

       return unchanged(expr);


     exprt pointer_offset_expr = simplify_pointer_offset(

       pointer_offset_exprt(ptr_expr.front(), expr.type()));


     exprt sum;


     if(int_expr.size()==1)

       sum=int_expr.front();

     else

       sum = simplify_plus(plus_exprt{int_expr, expr.type()});


     exprt size_expr = from_integer(*element_size, expr.type());


     exprt product = simplify_mult(mult_exprt{sum, size_expr});


     auto new_expr = plus_exprt(pointer_offset_expr, product);


     return changed(simplify_plus(new_expr));

   }

   else if(ptr.is_constant())

   {

     const constant_exprt &c_ptr = to_constant_expr(ptr);


     if(is_null_pointer(c_ptr))

     {

       return from_integer(0, expr.type());

     }

     else

     {

       // this is a pointer, we can't use to_integer

       const auto width = to_pointer_type(ptr.type()).get_width();

       mp_integer number = bvrep2integer(c_ptr.get_value(), width, false);

       // a null pointer would have been caught above, return value 0

       // will indicate that conversion failed

       if(number==0)

         return unchanged(expr);


       // The constant address consists of OBJECT-ID || OFFSET.

       mp_integer offset_bits =

         *pointer_offset_bits(ptr.type(), ns) - config.bv_encoding.object_bits;

       number%=power(2, offset_bits);


       return from_integer(number, expr.type());

     }

   }


   return unchanged(expr);

 }


 simplify_exprt::resultt<> simplify_exprt::simplify_inequality_address_of(

   const binary_relation_exprt &expr)

 {

   // the operands of the relation are both either one of

   // a) an address_of_exprt

   // b) a typecast_exprt with an address_of_exprt operand


   PRECONDITION(expr.id() == ID_equal || expr.id() == ID_notequal);


   // skip over the typecast

   exprt tmp0 = skip_typecast(expr.op0());

   PRECONDITION(tmp0.id() == ID_address_of);


   auto &tmp0_address_of = to_address_of_expr(tmp0);


   if(

     tmp0_address_of.object().id() == ID_index &&

     to_index_expr(tmp0_address_of.object()).index().is_zero())

   {

     tmp0_address_of =

       address_of_exprt(to_index_expr(tmp0_address_of.object()).array());

   }


   // skip over the typecast

   exprt tmp1 = skip_typecast(expr.op1());

   PRECONDITION(tmp1.id() == ID_address_of);


   auto &tmp1_address_of = to_address_of_expr(tmp1);


   if(

     tmp1_address_of.object().id() == ID_index &&

     to_index_expr(tmp1_address_of.object()).index().is_zero())

   {

     tmp1 = address_of_exprt(to_index_expr(tmp1_address_of.object()).array());

   }


   const auto &tmp0_object = tmp0_address_of.object();

   const auto &tmp1_object = tmp1_address_of.object();


   if(tmp0_object.id() == ID_symbol && tmp1_object.id() == ID_symbol)

   {

     bool equal = to_symbol_expr(tmp0_object).get_identifier() ==

                  to_symbol_expr(tmp1_object).get_identifier();


     return make_boolean_expr(expr.id() == ID_equal ? equal : !equal);

   }

   else if(

     tmp0_object.id() == ID_dynamic_object &&

     tmp1_object.id() == ID_dynamic_object)

   {

     bool equal = to_dynamic_object_expr(tmp0_object).get_instance() ==

                  to_dynamic_object_expr(tmp1_object).get_instance();


     return make_boolean_expr(expr.id() == ID_equal ? equal : !equal);

   }

   else if(

     (tmp0_object.id() == ID_symbol && tmp1_object.id() == ID_dynamic_object) ||

     (tmp0_object.id() == ID_dynamic_object && tmp1_object.id() == ID_symbol))

   {

     return make_boolean_expr(expr.id() != ID_equal);

   }

   else if(

     tmp0_object.id() == ID_string_constant &&

     tmp1_object.id() == ID_string_constant && tmp0_object == tmp1_object)

   {

     return make_boolean_expr(expr.id() == ID_equal);

   }


   return unchanged(expr);

 }


 simplify_exprt::resultt<> simplify_exprt::simplify_inequality_pointer_object(

   const binary_relation_exprt &expr)

 {

   PRECONDITION(expr.id() == ID_equal || expr.id() == ID_notequal);

   PRECONDITION(expr.is_boolean());


   exprt::operandst new_inequality_ops;

   for(const auto &operand : expr.operands())

   {

     PRECONDITION(operand.id() == ID_pointer_object);

     const exprt &op = to_pointer_object_expr(operand).pointer();


     if(op.id()==ID_address_of)

     {

       const auto &op_object = to_address_of_expr(op).object();


       if((op_object.id() != ID_symbol && op_object.id() != ID_dynamic_object &&

           op_object.id() != ID_string_constant))

       {

         return unchanged(expr);

       }

     }

     else if(!op.is_constant() || !op.is_zero())

     {

       return unchanged(expr);

     }


     if(new_inequality_ops.empty())

       new_inequality_ops.push_back(op);

     else

     {

       new_inequality_ops.push_back(

         simplify_node(typecast_exprt::conditional_cast(

           op, new_inequality_ops.front().type())));

     }

   }


   auto new_expr = expr;


   new_expr.operands() = std::move(new_inequality_ops);


   return changed(simplify_inequality(new_expr));

 }


 simplify_exprt::resultt<>

 simplify_exprt::simplify_pointer_object(const pointer_object_exprt &expr)

 {

   const exprt &op = expr.pointer();


   auto op_result = simplify_object(op);


   if(op_result.expr.id() == ID_if)

   {

     const if_exprt &if_expr = to_if_expr(op_result.expr);

     exprt cond=if_expr.cond();


     auto p_o_false = expr;

     p_o_false.op() = if_expr.false_case();


     auto p_o_true = expr;

     p_o_true.op() = if_expr.true_case();


     auto new_expr = if_exprt(cond, p_o_true, p_o_false, expr.type());

     return changed(simplify_rec(new_expr));

   }


   if(op_result.has_changed())

   {

     auto new_expr = expr;

     new_expr.op() = op_result;

     return std::move(new_expr);

   }

   else

     return unchanged(expr);

 }


 simplify_exprt::resultt<>

 simplify_exprt::simplify_is_dynamic_object(const unary_exprt &expr)

 {

   auto new_expr = expr;

   exprt &op = new_expr.op();


   bool no_change = true;


   auto op_result = simplify_object(op);


   if(op_result.has_changed())

   {

     op = op_result.expr;

     no_change = false;

   }


   // NULL is not dynamic

   if(op.is_constant() && is_null_pointer(to_constant_expr(op)))

     return false_exprt();


   // &something depends on the something

   if(op.id() == ID_address_of)

   {

     const auto &op_object = to_address_of_expr(op).object();


     if(op_object.id() == ID_symbol)

     {

       const irep_idt identifier = to_symbol_expr(op_object).get_identifier();


       // this is for the benefit of symex

       return make_boolean_expr(

         identifier.starts_with(SYMEX_DYNAMIC_PREFIX "::"));

     }

     else if(op_object.id() == ID_string_constant)

     {

       return false_exprt();

     }

     else if(op_object.id() == ID_array)

     {

       return false_exprt();

     }

   }


   if(no_change)

     return unchanged(expr);

   else

     return std::move(new_expr);

 }


 simplify_exprt::resultt<>

 simplify_exprt::simplify_is_invalid_pointer(const unary_exprt &expr)

 {

   auto new_expr = expr;

   exprt &op = new_expr.op();

   bool no_change = true;


   auto op_result = simplify_object(op);


   if(op_result.has_changed())

   {

     op = op_result.expr;

     no_change = false;

   }


   // NULL is not invalid

   if(op.is_constant() && is_null_pointer(to_constant_expr(op)))

   {

     return false_exprt();

   }


   // &anything is not invalid

   if(op.id()==ID_address_of)

   {

     return false_exprt();

   }


   if(no_change)

     return unchanged(expr);

   else

     return std::move(new_expr);

 }


 simplify_exprt::resultt<>

 simplify_exprt::simplify_object_size(const object_size_exprt &expr)

 {

   auto new_expr = expr;

   bool no_change = true;

   exprt &op = new_expr.pointer();

   auto op_result = simplify_object(op);


   if(op_result.has_changed())

   {

     op = op_result.expr;

     no_change = false;

   }


   if(op.id() == ID_address_of)

   {

     const auto &op_object = to_address_of_expr(op).object();


     if(op_object.id() == ID_symbol)

     {

       // just get the type

       auto size_opt = size_of_expr(op_object.type(), ns);


       if(size_opt.has_value())

       {

         const typet &expr_type = expr.type();

         exprt size = size_opt.value();


         if(size.type() != expr_type)

           size = simplify_typecast(typecast_exprt(size, expr_type));


         return size;

       }

     }

     else if(op_object.id() == ID_string_constant)

     {

       typet type=expr.type();

       return from_integer(

         to_string_constant(op_object).value().size() + 1, type);

     }

   }


   if(no_change)

     return unchanged(expr);

   else

     return std::move(new_expr);

 }


 simplify_exprt::resultt<> simplify_exprt::simplify_prophecy_r_or_w_ok(

   const prophecy_r_or_w_ok_exprt &expr)

 {

   exprt new_expr = simplify_rec(expr.lower(ns));

   if(!new_expr.is_constant())

     return unchanged(expr);

   else

     return std::move(new_expr);

 }


 simplify_exprt::resultt<> simplify_exprt::simplify_prophecy_pointer_in_range(

   const prophecy_pointer_in_range_exprt &expr)

 {

   exprt new_expr = simplify_rec(expr.lower(ns));

   if(!new_expr.is_constant())

     return unchanged(expr);

   else

     return std::move(new_expr);

 }

config
configt config
Definition: config.cpp:25

bvrep2integer
mp_integer bvrep2integer(const irep_idt &src, std::size_t width, bool is_signed)
convert a bit-vector representation (possibly signed) to integer
Definition: arith_tools.cpp:402

from_integer
constant_exprt from_integer(const mp_integer &int_value, const typet &type)
Definition: arith_tools.cpp:100

to_integer
bool to_integer(const constant_exprt &expr, mp_integer &int_value)
Convert a constant expression expr to an arbitrary-precision integer.
Definition: arith_tools.cpp:20

power
mp_integer power(const mp_integer &base, const mp_integer &exponent)
A multi-precision implementation of the power operator.
Definition: arith_tools.cpp:195

arith_tools.h

pointer_type
pointer_typet pointer_type(const typet &subtype)
Definition: c_types.cpp:235

char_type
bitvector_typet char_type()
Definition: c_types.cpp:106

c_index_type
bitvector_typet c_index_type()
Definition: c_types.cpp:16

c_types.h

address_of_exprt
Operator to return the address of an object.
Definition: pointer_expr.h:540

address_of_exprt::object
exprt & object()
Definition: pointer_expr.h:549

binary_exprt::op1
exprt & op1()
Definition: expr.h:136

binary_exprt::op0
exprt & op0()
Definition: expr.h:133

binary_relation_exprt
A base class for relations, i.e., binary predicates whose two operands have the same type.
Definition: std_expr.h:762

bitvector_typet::get_width
std::size_t get_width() const
Definition: std_types.h:920

configt::bv_encoding
struct configt::bv_encodingt bv_encoding

constant_exprt
A constant literal expression.
Definition: std_expr.h:2987

constant_exprt::get_value
const irep_idt & get_value() const
Definition: std_expr.h:2995

dereference_exprt
Operator to dereference a pointer.
Definition: pointer_expr.h:834

dereference_exprt::pointer
exprt & pointer()
Definition: pointer_expr.h:847

dstringt
dstringt has one field, an unsigned integer no which is an index into a static table of strings.
Definition: dstring.h:38

dstringt::starts_with
bool starts_with(const char *s) const
equivalent of as_string().starts_with(s)
Definition: dstring.h:95

dynamic_object_exprt::get_instance
unsigned int get_instance() const
Definition: pointer_expr.cpp:24

exprt
Base class for all expressions.
Definition: expr.h:56

exprt::operandst
std::vector< exprt > operandst
Definition: expr.h:58

exprt::op1
exprt & op1()
Definition: expr.h:136

exprt::is_boolean
bool is_boolean() const
Return whether the expression represents a Boolean.
Definition: expr.h:224

exprt::is_zero
bool is_zero() const
Return whether the expression is a constant representing 0.
Definition: expr.cpp:47

exprt::type
typet & type()
Return the type of the expression.
Definition: expr.h:84

exprt::is_constant
bool is_constant() const
Return whether the expression is a constant.
Definition: expr.h:212

exprt::operands
operandst & operands()
Definition: expr.h:94

false_exprt
The Boolean constant false.
Definition: std_expr.h:3064

if_exprt
The trinary if-then-else operator.
Definition: std_expr.h:2370

if_exprt::true_case
exprt & true_case()
Definition: std_expr.h:2397

if_exprt::false_case
exprt & false_case()
Definition: std_expr.h:2407

if_exprt::cond
exprt & cond()
Definition: std_expr.h:2387

index_exprt::array
exprt & array()
Definition: std_expr.h:1495

index_exprt::index
exprt & index()
Definition: std_expr.h:1505

irept::id
const irep_idt & id() const
Definition: irep.h:384

member_exprt::get_component_name
irep_idt get_component_name() const
Definition: std_expr.h:2863

mult_exprt
Binary multiplication Associativity is not specified.
Definition: std_expr.h:1107

namespace_baset::follow_tag
const union_typet & follow_tag(const union_tag_typet &) const
Follow type tag of union type.
Definition: namespace.cpp:63

object_size_exprt
Expression for finding the size (in bytes) of the object a pointer points to.
Definition: pointer_expr.h:1399

plus_exprt
The plus expression Associativity is not specified.
Definition: std_expr.h:1002

pointer_object_exprt
A numerical identifier for the object a pointer points to.
Definition: pointer_expr.h:1340

pointer_object_exprt::pointer
exprt & pointer()
Definition: pointer_expr.h:1347

pointer_offset_exprt
The offset (in bytes) of a pointer relative to the object.
Definition: pointer_expr.h:1282

pointer_offset_exprt::pointer
exprt & pointer()
Definition: pointer_expr.h:1289

pointer_typet
The pointer type These are both 'bitvector_typet' (they have a width) and 'type_with_subtypet' (they ...
Definition: pointer_expr.h:24

pointer_typet::base_type
const typet & base_type() const
The type of the data what we point to.
Definition: pointer_expr.h:35

prophecy_pointer_in_range_exprt
pointer_in_range (see pointer_in_range_exprt) with prophecy expressions to encode whether a pointer r...
Definition: pointer_expr.h:453

prophecy_pointer_in_range_exprt::lower
exprt lower(const namespacet &ns) const
Definition: pointer_expr.cpp:253

prophecy_r_or_w_ok_exprt
A base class for a predicate that indicates that an address range is ok to read or write or both.
Definition: pointer_expr.h:1019

prophecy_r_or_w_ok_exprt::lower
exprt lower(const namespacet &ns) const
Lower an r_or_w_ok_exprt to arithmetic and logic expressions.
Definition: pointer_expr.cpp:242

simplify_exprt::ns
const namespacet & ns
Definition: simplify_expr_class.h:286

simplify_exprt::simplify_inequality_address_of
resultt simplify_inequality_address_of(const binary_relation_exprt &)
Definition: simplify_expr_pointer.cpp:428

simplify_exprt::simplify_prophecy_r_or_w_ok
resultt simplify_prophecy_r_or_w_ok(const prophecy_r_or_w_ok_exprt &)
Try to simplify prophecy_{r,w,rw}_ok to a constant expression.
Definition: simplify_expr_pointer.cpp:705

simplify_exprt::changed
static resultt changed(resultt<> result)
Definition: simplify_expr_class.h:142

simplify_exprt::simplify_unary_pointer_predicate_preorder
resultt simplify_unary_pointer_predicate_preorder(const unary_exprt &)
Definition: simplify_expr_pointer.cpp:56

simplify_exprt::simplify_address_of
resultt simplify_address_of(const address_of_exprt &)
Definition: simplify_expr_pointer.cpp:239

simplify_exprt::simplify_node
resultt simplify_node(const exprt &)
Definition: simplify_expr.cpp:2863

simplify_exprt::simplify_prophecy_pointer_in_range
resultt simplify_prophecy_pointer_in_range(const prophecy_pointer_in_range_exprt &)
Try to simplify prophecy_pointer_in_range to a constant expression.
Definition: simplify_expr_pointer.cpp:715

simplify_exprt::simplify_rec
resultt simplify_rec(const exprt &)
Definition: simplify_expr.cpp:3138

simplify_exprt::simplify_typecast
resultt simplify_typecast(const typecast_exprt &)
Definition: simplify_expr.cpp:757

simplify_exprt::simplify_pointer_object
resultt simplify_pointer_object(const pointer_object_exprt &)
Definition: simplify_expr_pointer.cpp:544

simplify_exprt::simplify_object
resultt simplify_object(const exprt &)
Definition: simplify_expr.cpp:1573

simplify_exprt::simplify_mult
resultt simplify_mult(const mult_exprt &)
Definition: simplify_expr_int.cpp:162

simplify_exprt::simplify_address_of_arg
resultt simplify_address_of_arg(const exprt &)
Definition: simplify_expr_pointer.cpp:82

simplify_exprt::simplify_inequality
resultt simplify_inequality(const binary_relation_exprt &)
simplifies inequalities !=, <=, <, >=, >, and also ==
Definition: simplify_expr_int.cpp:1325

simplify_exprt::simplify_inequality_pointer_object
resultt simplify_inequality_pointer_object(const binary_relation_exprt &)
Definition: simplify_expr_pointer.cpp:499

simplify_exprt::unchanged
static resultt unchanged(exprt expr)
Definition: simplify_expr_class.h:137

simplify_exprt::simplify_is_invalid_pointer
resultt simplify_is_invalid_pointer(const unary_exprt &)
Definition: simplify_expr_pointer.cpp:625

simplify_exprt::simplify_pointer_offset
resultt simplify_pointer_offset(const pointer_offset_exprt &)
Definition: simplify_expr_pointer.cpp:277

simplify_exprt::simplify_plus
resultt simplify_plus(const plus_exprt &)
Definition: simplify_expr_int.cpp:405

simplify_exprt::simplify_if_preorder
resultt simplify_if_preorder(const if_exprt &expr)
Definition: simplify_expr_if.cpp:241

simplify_exprt::simplify_is_dynamic_object
resultt simplify_is_dynamic_object(const unary_exprt &)
Definition: simplify_expr_pointer.cpp:576

simplify_exprt::simplify_object_size
resultt simplify_object_size(const object_size_exprt &)
Definition: simplify_expr_pointer.cpp:658

struct_typet
Structure type, corresponds to C style structs.
Definition: std_types.h:231

symbol_exprt::get_identifier
const irep_idt & get_identifier() const
Definition: std_expr.h:160

typecast_exprt
Semantic type conversion.
Definition: std_expr.h:2068

typecast_exprt::conditional_cast
static exprt conditional_cast(const exprt &expr, const typet &type)
Definition: std_expr.h:2076

typet
The type of an expression, extends irept.
Definition: type.h:29

unary_exprt
Generic base class for unary expressions.
Definition: std_expr.h:361

unary_exprt::op
const exprt & op() const
Definition: std_expr.h:391

config.h

make_boolean_expr
constant_exprt make_boolean_expr(bool value)
returns true_exprt if given true and false_exprt otherwise
Definition: expr_util.cpp:338

skip_typecast
const exprt & skip_typecast(const exprt &expr)
find the expression nested inside typecasts, if any
Definition: expr_util.cpp:219

lift_if
if_exprt lift_if(const exprt &src, std::size_t operand_number)
lift up an if_exprt one level
Definition: expr_util.cpp:203

is_null_pointer
bool is_null_pointer(const constant_exprt &expr)
Returns true if expr has a pointer type and a value NULL; it also returns true when expr has value ze...
Definition: expr_util.cpp:369

expr_util.h
Deprecated expression utility functions.

namespace.h

pointer_expr.h
API to expression classes for Pointers.

to_dereference_expr
const dereference_exprt & to_dereference_expr(const exprt &expr)
Cast an exprt to a dereference_exprt.
Definition: pointer_expr.h:890

to_pointer_type
const pointer_typet & to_pointer_type(const typet &type)
Cast a typet to a pointer_typet.
Definition: pointer_expr.h:93

to_pointer_object_expr
const pointer_object_exprt & to_pointer_object_expr(const exprt &expr)
Cast an exprt to a pointer_object_exprt.
Definition: pointer_expr.h:1378

to_dynamic_object_expr
const dynamic_object_exprt & to_dynamic_object_expr(const exprt &expr)
Cast an exprt to a dynamic_object_exprt.
Definition: pointer_expr.h:315

to_address_of_expr
const address_of_exprt & to_address_of_expr(const exprt &expr)
Cast an exprt to an address_of_exprt.
Definition: pointer_expr.h:577

compute_pointer_offset
std::optional< mp_integer > compute_pointer_offset(const exprt &expr, const namespacet &ns)
Definition: pointer_offset_size.cpp:514

pointer_offset_bits
std::optional< mp_integer > pointer_offset_bits(const typet &type, const namespacet &ns)
Definition: pointer_offset_size.cpp:102

size_of_expr
std::optional< exprt > size_of_expr(const typet &type, const namespacet &ns)
Definition: pointer_offset_size.cpp:287

member_offset
std::optional< mp_integer > member_offset(const struct_typet &type, const irep_idt &member, const namespacet &ns)
Definition: pointer_offset_size.cpp:25

pointer_offset_size
std::optional< mp_integer > pointer_offset_size(const typet &type, const namespacet &ns)
Compute the size of a type in bytes, rounding up to full bytes.
Definition: pointer_offset_size.cpp:91

pointer_offset_size.h
Pointer Logic.

pointer_predicates.h
Various predicates over pointers in programs.

SYMEX_DYNAMIC_PREFIX
#define SYMEX_DYNAMIC_PREFIX
Definition: pointer_predicates.h:17

simplify_expr_class.h

is_dereference_integer_object
static bool is_dereference_integer_object(const exprt &expr, mp_integer &address)
Definition: simplify_expr_pointer.cpp:22

mp_integer
BigInt mp_integer
Definition: smt_terms.h:17

PRECONDITION
#define PRECONDITION(CONDITION)
Definition: invariant.h:463

std_expr.h
API to expression classes.

to_if_expr
const if_exprt & to_if_expr(const exprt &expr)
Cast an exprt to an if_exprt.
Definition: std_expr.h:2450

to_constant_expr
const constant_exprt & to_constant_expr(const exprt &expr)
Cast an exprt to a constant_exprt.
Definition: std_expr.h:3037

to_symbol_expr
const symbol_exprt & to_symbol_expr(const exprt &expr)
Cast an exprt to a symbol_exprt.
Definition: std_expr.h:272

to_typecast_expr
const typecast_exprt & to_typecast_expr(const exprt &expr)
Cast an exprt to a typecast_exprt.
Definition: std_expr.h:2102

to_plus_expr
const plus_exprt & to_plus_expr(const exprt &expr)
Cast an exprt to a plus_exprt.
Definition: std_expr.h:1041

to_member_expr
const member_exprt & to_member_expr(const exprt &expr)
Cast an exprt to a member_exprt.
Definition: std_expr.h:2933

to_index_expr
const index_exprt & to_index_expr(const exprt &expr)
Cast an exprt to an index_exprt.
Definition: std_expr.h:1533

to_struct_type
const struct_typet & to_struct_type(const typet &type)
Cast a typet to a struct_typet.
Definition: std_types.h:308

is_constant
bool is_constant(const typet &type)
This method tests, if the given typet is a constant.
Definition: std_types.h:29

to_struct_tag_type
const struct_tag_typet & to_struct_tag_type(const typet &type)
Cast a typet to a struct_tag_typet.
Definition: std_types.h:518

string_constant.h

to_string_constant
const string_constantt & to_string_constant(const exprt &expr)
Definition: string_constant.h:60

configt::bv_encodingt::object_bits
std::size_t object_bits
Definition: config.h:351

simplify_exprt::resultt
Definition: simplify_expr_class.h:104