package frama-c
Platform dedicated to the analysis of source code written in C
Install
Dune Dependency
Authors
-
MMichele Alberti
-
TThibaud Antignac
-
GGergö Barany
-
PPatrick Baudin
-
NNicolas Bellec
-
TThibaut Benjamin
-
AAllan Blanchard
-
LLionel Blatter
-
FFrançois Bobot
-
RRichard Bonichon
-
VVincent Botbol
-
QQuentin Bouillaguet
-
DDavid Bühler
-
ZZakaria Chihani
-
LLoïc Correnson
-
JJulien Crétin
-
PPascal Cuoq
-
ZZaynah Dargaye
-
BBasile Desloges
-
JJean-Christophe Filliâtre
-
PPhilippe Herrmann
-
MMaxime Jacquemin
-
FFlorent Kirchner
-
AAlexander Kogtenkov
-
RRemi Lazarini
-
TTristan Le Gall
-
JJean-Christophe Léchenet
-
MMatthieu Lemerre
-
DDara Ly
-
DDavid Maison
-
CClaude Marché
-
AAndré Maroneze
-
TThibault Martin
-
FFonenantsoa Maurica
-
MMelody Méaulle
-
BBenjamin Monate
-
YYannick Moy
-
PPierre Nigron
-
AAnne Pacalet
-
VValentin Perrelle
-
GGuillaume Petiot
-
DDario Pinto
-
VVirgile Prevosto
-
AArmand Puccetti
-
FFélix Ridoux
-
VVirgile Robles
-
JJan Rochel
-
MMuriel Roger
-
JJulien Signoles
-
NNicolas Stouls
-
KKostyantyn Vorobyov
-
BBoris Yakobowski
Maintainers
Sources
frama-c-29.0-Copper.tar.gz
sha256=d2fbb3b8d0ff83945872e9e6fa258e934a706360e698dae3b4d5f971addf7493
doc/src/frama-c-wp.core/TacHavoc.ml.html
Source file TacHavoc.ml
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220(**************************************************************************) (* *) (* This file is part of WP plug-in of Frama-C. *) (* *) (* Copyright (C) 2007-2024 *) (* CEA (Commissariat a l'energie atomique et aux energies *) (* alternatives) *) (* *) (* you can redistribute it and/or modify it under the terms of the GNU *) (* Lesser General Public License as published by the Free Software *) (* Foundation, version 2.1. *) (* *) (* It is distributed in the hope that it will be useful, *) (* but WITHOUT ANY WARRANTY; without even the implied warranty of *) (* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *) (* GNU Lesser General Public License for more details. *) (* *) (* See the GNU Lesser General Public License version 2.1 *) (* for more details (enclosed in the file licenses/LGPLv2.1). *) (* *) (**************************************************************************) open Lang open Tactical open Conditions module L = Qed.Logic (* -------------------------------------------------------------------------- *) (* --- Havoc --- *) (* -------------------------------------------------------------------------- *) let lookup_havoc e = match F.repr e with | L.Aget( m , p ) -> begin match F.repr m with | L.Fun( f , [m_undef;m_sep;a;n] ) when f == MemMemory.f_havoc -> Some( m_undef , m_sep , a , n , p ) | _ -> None end | _ -> None class havoc = object inherit Tactical.make ~id:"Wp.havoc" ~title:"Havoc" ~descr:"Go through assigns." ~params:[] method select _feedback sel = let at = Tactical.at sel in let e = Tactical.selected sel in match lookup_havoc e with | None -> Not_applicable | Some(mr,m0,a,n,p) -> let separated = F.p_call MemAddr.p_separated [ p ; F.e_int 1 ; a ; n ] in let process = Tactical.rewrite ?at [ "Unassigned" , separated , e , F.e_get m0 p ; "Assigned" , F.p_not separated , e , F.e_get mr p ; ] in Applicable process end (* -------------------------------------------------------------------------- *) (* --- Separated --- *) (* -------------------------------------------------------------------------- *) let separated ?at property = match F.e_expr property with | L.Fun( f , [p;n;q;m] ) when f == MemAddr.p_separated -> let base_p = MemAddr.base p in let ofs_p = MemAddr.offset p in let base_q = MemAddr.base q in let ofs_q = MemAddr.offset q in let eq_base = F.p_equal base_p base_q in let on_left = F.p_leq (F.e_add ofs_p n) ofs_q in let on_right = F.p_leq (F.e_add ofs_q m) ofs_p in let overlap = F.p_not (F.p_and on_left on_right) in let pattern = F.e_prop property in let cases = [ "WrongBase" , F.p_neq base_p base_q , pattern , F.e_true ; "OnLeft" , F.p_and eq_base on_left , pattern , F.e_true ; "OnRight" , F.p_and eq_base on_right , pattern , F.e_true ; "OverLap" , F.p_and eq_base overlap , pattern , F.e_false ] in Applicable (Tactical.rewrite ?at cases) | _ -> Not_applicable class separated = object inherit Tactical.make ~id:"Wp.separated" ~title:"Separated" ~descr:"Split over separated and overlapping cases." ~params:[] method select _feedback sel = match sel with | Clause (Goal p) -> separated p | Clause (Step s) -> separated ~at:s.id (Conditions.head s) | Inside (_,p) when F.is_prop p -> separated ?at:(Tactical.at sel) (F.p_bool p) | _ -> Not_applicable end (* -------------------------------------------------------------------------- *) (* --- Included, Validity, Invalidity --- *) (* -------------------------------------------------------------------------- *) let invalid m p n = let base = MemAddr.base p in let offset = MemAddr.offset p in let malloc = F.e_get m base in "Invalid", F.p_imply (F.p_lt F.e_zero n) (F.p_or (F.p_leq malloc offset) (F.p_leq (F.e_add offset n) F.e_zero)) let valid_rd m p n = let base = MemAddr.base p in let offset = MemAddr.offset p in let malloc = F.e_get m base in "Valid (Read)", F.p_imply (F.p_lt F.e_zero n) (F.p_and (F.p_leq F.e_zero offset) (F.p_leq (F.e_add offset n) malloc)) let valid_rw m p n = let base = MemAddr.base p in let offset = MemAddr.offset p in let malloc = F.e_get m base in "Valid (Read & Write)", F.p_imply (F.p_lt F.e_zero n) (F.p_conj [ F.p_lt F.e_zero base ; F.p_leq F.e_zero offset ; F.p_leq (F.e_add offset n) malloc ; ]) let included p a q b = let p_base = MemAddr.base p in let q_base = MemAddr.base q in let p_offset = MemAddr.offset p in let q_offset = MemAddr.offset q in "Included", F.p_imply (F.p_lt F.e_zero a) (F.p_imply (F.p_leq F.e_zero b) (F.p_conj [ F.p_equal p_base q_base ; F.p_leq q_offset p_offset ; F.p_leq (F.e_add p_offset a) (F.e_add q_offset b) ; ])) let lookup f = function | [p;a;q;b] when f == MemAddr.p_included -> included p a q b | [m;p;n] when MemAddr.is_p_invalid f -> invalid m p n | [m;p;n] when MemAddr.is_p_valid_rd f -> valid_rd m p n | [m;p;n] when MemAddr.is_p_valid_rw f -> valid_rw m p n | _ -> raise Not_found let unfold ?at e f es = let descr,q = lookup f es in Applicable (Tactical.rewrite ?at [descr,F.p_true,e,F.e_prop q]) class validity = object inherit Tactical.make ~id:"Wp.valid" ~title:"Validity Range" ~descr:"Unfold validity and range definitions." ~params:[] method select _feedback (s : Tactical.selection) = let at = Tactical.at s in let e = Tactical.selected s in match F.repr e with | Qed.Logic.Fun(f,es) -> unfold ?at e f es | _ -> Not_applicable end (* -------------------------------------------------------------------------- *) (* --- Exported API --- *) (* -------------------------------------------------------------------------- *) module Havoc = struct let tactical = Tactical.export (new havoc) let strategy ?(priority=1.0) havoc = Strategy.{ priority ; tactical ; selection = havoc ; arguments = [] ; } end module Separated = struct let tactical = Tactical.export (new separated) let strategy = Strategy.make tactical ~arguments:[] end module Validity = struct let tactical = Tactical.export (new validity) let strategy = Strategy.make tactical ~arguments:[] end (* -------------------------------------------------------------------------- *)