CBMC
string_constraint_generator_indexof.cpp
Go to the documentation of this file.
1 /*******************************************************************\
2 
3 Module: Generates string constraints for the family of indexOf and
4  lastIndexOf java functions
5 
6 Author: Romain Brenguier, romain.brenguier@diffblue.com
7 
8 \*******************************************************************/
9 
13 
14 #include "string_constraint_generator.h"
15 
16 #include <util/mathematical_expr.h>
17 
18 #include "string_refinement_invariant.h"
19 
40 std::pair<exprt, string_constraintst>
41 string_constraint_generatort::add_axioms_for_index_of(
42  const array_string_exprt &str,
43  const exprt &c,
44  const exprt &from_index)
45 {
46  string_constraintst constraints;
47  const typet &index_type = str.length_type();
48  symbol_exprt index = fresh_symbol("index_of", index_type);
49  symbol_exprt contains = fresh_symbol("contains_in_index_of");
50 
51  exprt minus1 = from_integer(-1, index_type);
52  and_exprt a1(
53  binary_relation_exprt(index, ID_ge, minus1),
54  binary_relation_exprt(index, ID_lt, array_pool.get_or_create_length(str)));
55  constraints.existential.push_back(a1);
56 
57  equal_exprt a2(not_exprt(contains), equal_exprt(index, minus1));
58  constraints.existential.push_back(a2);
59 
60  implies_exprt a3(
61  contains,
62  and_exprt(
63  binary_relation_exprt(from_index, ID_le, index),
64  equal_exprt(str[index], c)));
65  constraints.existential.push_back(a3);
66 
67  const exprt lower_bound(zero_if_negative(from_index));
68 
69  symbol_exprt n = fresh_symbol("QA_index_of", index_type);
70  string_constraintt a4(
71  n,
72  lower_bound,
73  zero_if_negative(index),
74  implies_exprt(contains, notequal_exprt(str[n], c)),
75  message_handler);
76  constraints.universal.push_back(a4);
77 
78  symbol_exprt m = fresh_symbol("QA_index_of", index_type);
79  string_constraintt a5(
80  m,
81  lower_bound,
82  zero_if_negative(array_pool.get_or_create_length(str)),
83  implies_exprt(not_exprt(contains), not_exprt(equal_exprt(str[m], c))),
84  message_handler);
85  constraints.universal.push_back(a5);
86 
87  return {index, std::move(constraints)};
88 }
89 
114 std::pair<exprt, string_constraintst>
115 string_constraint_generatort::add_axioms_for_index_of_string(
116  const array_string_exprt &haystack,
117  const array_string_exprt &needle,
118  const exprt &from_index)
119 {
120  string_constraintst constraints;
121  const typet &index_type = haystack.length_type();
122  symbol_exprt offset = fresh_symbol("index_of", index_type);
123  symbol_exprt contains = fresh_symbol("contains_substring");
124 
125  implies_exprt a1(
126  contains,
127  and_exprt(
128  binary_relation_exprt(from_index, ID_le, offset),
129  binary_relation_exprt(
130  offset,
131  ID_le,
132  minus_exprt(
133  array_pool.get_or_create_length(haystack),
134  array_pool.get_or_create_length(needle)))));
135  constraints.existential.push_back(a1);
136 
137  equal_exprt a2(
138  not_exprt(contains), equal_exprt(offset, from_integer(-1, index_type)));
139  constraints.existential.push_back(a2);
140 
141  symbol_exprt qvar = fresh_symbol("QA_index_of_string", index_type);
142  string_constraintt a3(
143  qvar,
144  zero_if_negative(array_pool.get_or_create_length(needle)),
145  implies_exprt(
146  contains, equal_exprt(haystack[plus_exprt(qvar, offset)], needle[qvar])),
147  message_handler);
148  constraints.universal.push_back(a3);
149 
150  // string_not contains_constraintt are formulas of the form:
151  // forall x in [lb,ub[. p(x) => exists y in [lb,ub[. s1[x+y] != s2[y]
152  const string_not_contains_constraintt a4 = {
153  from_index,
154  offset,
155  contains,
156  from_integer(0, index_type),
157  array_pool.get_or_create_length(needle),
158  haystack,
159  needle};
160  constraints.not_contains.push_back(a4);
161 
162  const string_not_contains_constraintt a5 = {
163  from_index,
164  plus_exprt( // Add 1 for inclusive upper bound.
165  minus_exprt(
166  array_pool.get_or_create_length(haystack),
167  array_pool.get_or_create_length(needle)),
168  from_integer(1, index_type)),
169  not_exprt(contains),
170  from_integer(0, index_type),
171  array_pool.get_or_create_length(needle),
172  haystack,
173  needle};
174  constraints.not_contains.push_back(a5);
175 
176  const implies_exprt a6(
177  equal_exprt(
178  array_pool.get_or_create_length(needle), from_integer(0, index_type)),
179  equal_exprt(offset, from_index));
180  constraints.existential.push_back(a6);
181 
182  return {offset, std::move(constraints)};
183 }
184 
215 std::pair<exprt, string_constraintst>
216 string_constraint_generatort::add_axioms_for_last_index_of_string(
217  const array_string_exprt &haystack,
218  const array_string_exprt &needle,
219  const exprt &from_index)
220 {
221  string_constraintst constraints;
222  const typet &index_type = haystack.length_type();
223  symbol_exprt offset = fresh_symbol("index_of", index_type);
224  symbol_exprt contains = fresh_symbol("contains_substring");
225 
226  implies_exprt a1(
227  contains,
228  and_exprt(
229  binary_relation_exprt(from_integer(-1, index_type), ID_le, offset),
230  binary_relation_exprt(
231  offset,
232  ID_le,
233  minus_exprt(
234  array_pool.get_or_create_length(haystack),
235  array_pool.get_or_create_length(needle))),
236  binary_relation_exprt(offset, ID_le, from_index)));
237  constraints.existential.push_back(a1);
238 
239  equal_exprt a2(
240  not_exprt(contains), equal_exprt(offset, from_integer(-1, index_type)));
241  constraints.existential.push_back(a2);
242 
243  symbol_exprt qvar = fresh_symbol("QA_index_of_string", index_type);
244  equal_exprt constr3(haystack[plus_exprt(qvar, offset)], needle[qvar]);
245  const string_constraintt a3(
246  qvar,
247  zero_if_negative(array_pool.get_or_create_length(needle)),
248  implies_exprt(contains, constr3),
249  message_handler);
250  constraints.universal.push_back(a3);
251 
252  // end_index is min(from_index, |str| - |substring|)
253  minus_exprt length_diff(
254  array_pool.get_or_create_length(haystack),
255  array_pool.get_or_create_length(needle));
256  if_exprt end_index(
257  binary_relation_exprt(from_index, ID_le, length_diff),
258  from_index,
259  length_diff);
260 
261  const string_not_contains_constraintt a4 = {
262  plus_exprt(offset, from_integer(1, index_type)),
263  plus_exprt(end_index, from_integer(1, index_type)),
264  contains,
265  from_integer(0, index_type),
266  array_pool.get_or_create_length(needle),
267  haystack,
268  needle};
269  constraints.not_contains.push_back(a4);
270 
271  string_not_contains_constraintt a5 = {
272  from_integer(0, index_type),
273  plus_exprt(end_index, from_integer(1, index_type)),
274  not_exprt(contains),
275  from_integer(0, index_type),
276  array_pool.get_or_create_length(needle),
277  haystack,
278  needle};
279  constraints.not_contains.push_back(a5);
280 
281  const implies_exprt a6(
282  equal_exprt(
283  array_pool.get_or_create_length(needle), from_integer(0, index_type)),
284  equal_exprt(offset, from_index));
285  constraints.existential.push_back(a6);
286 
287  return {offset, std::move(constraints)};
288 }
289 
293 // NOLINTNEXTLINE
295 // NOLINTNEXTLINE
308 std::pair<exprt, string_constraintst>
309 string_constraint_generatort::add_axioms_for_index_of(
310  const function_application_exprt &f)
311 {
312  const function_application_exprt::argumentst &args = f.arguments();
313  PRECONDITION(args.size() == 2 || args.size() == 3);
314  const array_string_exprt str = get_string_expr(array_pool, args[0]);
315  const exprt &c = args[1];
316  const typet &index_type = str.length_type();
317  const typet &char_type = to_type_with_subtype(str.content().type()).subtype();
318  PRECONDITION(f.type() == index_type);
319  const exprt from_index =
320  args.size() == 2 ? from_integer(0, index_type) : args[2];
321 
322  if(c.type().id() == ID_unsignedbv || c.type().id() == ID_signedbv)
323  {
324  return add_axioms_for_index_of(
325  str, typecast_exprt(c, char_type), from_index);
326  }
327  else
328  {
329  INVARIANT(
330  is_refined_string_type(c.type()),
331  string_refinement_invariantt(
332  "c can only be a (un)signedbv or a refined "
333  "string and the (un)signedbv case is already handled"));
334  array_string_exprt sub = get_string_expr(array_pool, c);
335  return add_axioms_for_index_of_string(str, sub, from_index);
336  }
337 }
338 
362 std::pair<exprt, string_constraintst>
363 string_constraint_generatort::add_axioms_for_last_index_of(
364  const array_string_exprt &str,
365  const exprt &c,
366  const exprt &from_index)
367 {
368  string_constraintst constraints;
369  const typet &index_type = str.length_type();
370  const symbol_exprt index = fresh_symbol("last_index_of", index_type);
371  const symbol_exprt contains = fresh_symbol("contains_in_last_index_of");
372 
373  const exprt minus1 = from_integer(-1, index_type);
374  const and_exprt a1(
375  binary_relation_exprt(index, ID_ge, minus1),
376  binary_relation_exprt(index, ID_le, from_index),
377  binary_relation_exprt(index, ID_lt, array_pool.get_or_create_length(str)));
378  constraints.existential.push_back(a1);
379 
380  const notequal_exprt a2(contains, equal_exprt(index, minus1));
381  constraints.existential.push_back(a2);
382 
383  const implies_exprt a3(contains, equal_exprt(str[index], c));
384  constraints.existential.push_back(a3);
385 
386  const exprt index1 = from_integer(1, index_type);
387  const plus_exprt from_index_plus_one(from_index, index1);
388  const if_exprt end_index(
389  binary_relation_exprt(
390  from_index_plus_one, ID_le, array_pool.get_or_create_length(str)),
391  from_index_plus_one,
392  array_pool.get_or_create_length(str));
393 
394  const symbol_exprt n = fresh_symbol("QA_last_index_of1", index_type);
395  const string_constraintt a4(
396  n,
397  zero_if_negative(plus_exprt(index, index1)),
398  zero_if_negative(end_index),
399  implies_exprt(contains, notequal_exprt(str[n], c)),
400  message_handler);
401  constraints.universal.push_back(a4);
402 
403  const symbol_exprt m = fresh_symbol("QA_last_index_of2", index_type);
404  const string_constraintt a5(
405  m,
406  zero_if_negative(end_index),
407  implies_exprt(not_exprt(contains), notequal_exprt(str[m], c)),
408  message_handler);
409  constraints.universal.push_back(a5);
410 
411  return {index, std::move(constraints)};
412 }
413 
417 // NOLINTNEXTLINE
419 // NOLINTNEXTLINE
432 std::pair<exprt, string_constraintst>
433 string_constraint_generatort::add_axioms_for_last_index_of(
434  const function_application_exprt &f)
435 {
436  const function_application_exprt::argumentst &args = f.arguments();
437  PRECONDITION(args.size() == 2 || args.size() == 3);
438  const array_string_exprt str = get_string_expr(array_pool, args[0]);
439  const exprt c = args[1];
440  const typet &index_type = str.length_type();
441  const typet &char_type = to_type_with_subtype(str.content().type()).subtype();
442  PRECONDITION(f.type() == index_type);
443 
444  const exprt from_index =
445  args.size() == 2 ? array_pool.get_or_create_length(str) : args[2];
446 
447  if(c.type().id() == ID_unsignedbv || c.type().id() == ID_signedbv)
448  {
449  return add_axioms_for_last_index_of(
450  str, typecast_exprt(c, char_type), from_index);
451  }
452  else
453  {
454  const array_string_exprt sub = get_string_expr(array_pool, c);
455  return add_axioms_for_last_index_of_string(str, sub, from_index);
456  }
457 }
from_integer
constant_exprt from_integer(const mp_integer &int_value, const typet &type)
Definition: arith_tools.cpp:100
get_string_expr
array_string_exprt get_string_expr(array_poolt &array_pool, const exprt &expr)
Fetch the string_exprt corresponding to the given refined_string_exprt.
Definition: array_pool.cpp:199
char_type
bitvector_typet char_type()
Definition: c_types.cpp:106
and_exprt
Boolean AND.
Definition: std_expr.h:2120
array_poolt::get_or_create_length
exprt get_or_create_length(const array_string_exprt &s)
Get the length of an array_string_exprt from the array_pool.
Definition: array_pool.cpp:26
array_string_exprt
Definition: string_expr.h:68
array_string_exprt::length_type
const typet & length_type() const
Definition: string_expr.h:70
array_string_exprt::content
exprt & content()
Definition: string_expr.h:75
binary_relation_exprt
A base class for relations, i.e., binary predicates whose two operands have the same type.
Definition: std_expr.h:762
equal_exprt
Equality.
Definition: std_expr.h:1361
exprt
Base class for all expressions.
Definition: expr.h:56
exprt::type
typet & type()
Return the type of the expression.
Definition: expr.h:84
function_application_exprt
Application of (mathematical) function.
Definition: mathematical_expr.h:197
function_application_exprt::argumentst
exprt::operandst argumentst
Definition: mathematical_expr.h:199
function_application_exprt::arguments
argumentst & arguments()
Definition: mathematical_expr.h:218
if_exprt
The trinary if-then-else operator.
Definition: std_expr.h:2370
implies_exprt
Boolean implication.
Definition: std_expr.h:2183
irept::id
const irep_idt & id() const
Definition: irep.h:384
minus_exprt
Binary minus.
Definition: std_expr.h:1061
not_exprt
Boolean negation.
Definition: std_expr.h:2327
notequal_exprt
Disequality.
Definition: std_expr.h:1420
plus_exprt
The plus expression Associativity is not specified.
Definition: std_expr.h:1002
string_constraint_generatort::add_axioms_for_last_index_of
std::pair< exprt, string_constraintst > add_axioms_for_last_index_of(const array_string_exprt &str, const exprt &c, const exprt &from_index)
Add axioms stating that the returned value is the index within haystack (str) of the last occurrence ...
Definition: string_constraint_generator_indexof.cpp:363
string_constraint_generatort::add_axioms_for_last_index_of_string
std::pair< exprt, string_constraintst > add_axioms_for_last_index_of_string(const array_string_exprt &haystack, const array_string_exprt &needle, const exprt &from_index)
Add axioms stating that the returned value is the index within haystack of the last occurrence of nee...
Definition: string_constraint_generator_indexof.cpp:216
string_constraint_generatort::add_axioms_for_index_of
std::pair< exprt, string_constraintst > add_axioms_for_index_of(const array_string_exprt &str, const exprt &c, const exprt &from_index)
Add axioms stating that the returned value is the index within haystack (str) of the first occurrence...
Definition: string_constraint_generator_indexof.cpp:41
string_constraint_generatort::message_handler
message_handlert & message_handler
Definition: string_constraint_generator.h:75
string_constraint_generatort::add_axioms_for_index_of_string
std::pair< exprt, string_constraintst > add_axioms_for_index_of_string(const array_string_exprt &haystack, const array_string_exprt &needle, const exprt &from_index)
Add axioms stating that the returned value index is the index within haystack of the first occurrence...
Definition: string_constraint_generator_indexof.cpp:115
string_constraint_generatort::fresh_symbol
symbol_generatort fresh_symbol
Definition: string_constraint_generator.h:61
string_constraint_generatort::array_pool
array_poolt array_pool
Definition: string_constraint_generator.h:63
string_constraintt
Definition: string_constraint.h:56
symbol_exprt
Expression to hold a symbol (variable)
Definition: std_expr.h:131
type_with_subtypet::subtype
const typet & subtype() const
Definition: type.h:187
typecast_exprt
Semantic type conversion.
Definition: std_expr.h:2068
typet
The type of an expression, extends irept.
Definition: type.h:29
mathematical_expr.h
API to expression classes for 'mathematical' expressions.
is_refined_string_type
bool is_refined_string_type(const typet &type)
Definition: refined_string_type.h:54
PRECONDITION
#define PRECONDITION(CONDITION)
Definition: invariant.h:463
string_constraint_generator.h
Generates string constraints to link results from string functions with their arguments.
zero_if_negative
exprt zero_if_negative(const exprt &expr)
Returns a non-negative version of the argument.
Definition: string_constraint_generator_main.cpp:412
contains
static bool contains(const exprt &index, const symbol_exprt &qvar)
Look for symbol qvar in the expression index and return true if found.
Definition: string_constraint_instantiation.cpp:26
string_refinement_invariant.h
string_refinement_invariantt
#define string_refinement_invariantt(reason)
Definition: string_refinement_invariant.h:12
string_constraintst
Collection of constraints of different types: existential formulas, universal formulas,...
Definition: string_constraint_generator.h:39
string_constraintst::not_contains
std::vector< string_not_contains_constraintt > not_contains
Definition: string_constraint_generator.h:42
string_constraintst::existential
std::vector< exprt > existential
Definition: string_constraint_generator.h:40
string_constraintst::universal
std::vector< string_constraintt > universal
Definition: string_constraint_generator.h:41
string_not_contains_constraintt
Constraints to encode non containement of strings.
Definition: string_constraint.h:127
to_type_with_subtype
const type_with_subtypet & to_type_with_subtype(const typet &type)
Definition: type.h:208
validation_modet::INVARIANT
@ INVARIANT