Implemented parsing and type checking for loop variants

Long Pham · Long Pham · commit 08060b4b3152 · 2021-06-16T20:07:25.000Z
diff --git a/src/ansi-c/c_typecheck_base.h b/src/ansi-c/c_typecheck_base.h
@@ -120,6 +120,13 @@ class c_typecheck_baset:
     implicit_typecast(expr, bool_typet());
   }
 
+  /* This function is necessary for the implementation of loop variants. 
+  We want to cast loop variants to integers. */
+  virtual void implicit_typecast_int(exprt &expr)
+  {
+    implicit_typecast(expr, int_typet());
+  }
+
   // code
   virtual void start_typecheck_code();
   virtual void typecheck_code(codet &code);
diff --git a/src/ansi-c/c_typecheck_code.cpp b/src/ansi-c/c_typecheck_code.cpp
@@ -485,6 +485,7 @@ void c_typecheck_baset::typecheck_for(codet &code)
   }
 
   typecheck_spec_expr(code, ID_C_spec_loop_invariant);
+  typecheck_spec_expr(code, ID_C_spec_loop_variant);
 }
 
 void c_typecheck_baset::typecheck_label(code_labelt &code)
@@ -773,6 +774,7 @@ void c_typecheck_baset::typecheck_while(code_whilet &code)
   continue_is_allowed=old_continue_is_allowed;
 
   typecheck_spec_expr(code, ID_C_spec_loop_invariant);
+  typecheck_spec_expr(code, ID_C_spec_loop_variant);
 }
 
 void c_typecheck_baset::typecheck_dowhile(code_dowhilet &code)
@@ -806,6 +808,7 @@ void c_typecheck_baset::typecheck_dowhile(code_dowhilet &code)
   continue_is_allowed=old_continue_is_allowed;
 
   typecheck_spec_expr(code, ID_C_spec_loop_invariant);
+  typecheck_spec_expr(code, ID_C_spec_loop_variant);
 }
 
 void c_typecheck_baset::typecheck_spec_expr(codet &code, const irep_idt &spec)
@@ -815,6 +818,11 @@ void c_typecheck_baset::typecheck_spec_expr(codet &code, const irep_idt &spec)
     exprt &constraint = static_cast<exprt &>(code.add(spec));
 
     typecheck_expr(constraint);
-    implicit_typecast_bool(constraint);
+    if (spec == ID_C_spec_loop_invariant) {
+      implicit_typecast_bool(constraint);
+    }
+    else if (spec == ID_C_spec_loop_variant) {
+      implicit_typecast_int(constraint);
+    }
   }
 }
diff --git a/src/ansi-c/c_typecheck_expr.cpp b/src/ansi-c/c_typecheck_expr.cpp
@@ -51,7 +51,7 @@ void c_typecheck_baset::typecheck_expr(exprt &expr)
     return;
   }
 
-  // fist do sub-nodes
+  // first do sub-nodes
   typecheck_expr_operands(expr);
 
   // now do case-split
diff --git a/src/ansi-c/parser.y b/src/ansi-c/parser.y
@@ -28,6 +28,8 @@ extern char *yyansi_ctext;
 
 #include <util/mathematical_expr.h>
 
+#include <iostream>
+
 #ifdef _MSC_VER
 // possible loss of data
 #pragma warning(disable:4242)
@@ -203,6 +205,7 @@ extern char *yyansi_ctext;
 %token TOK_CPROVER_FINALLY "__CPROVER_finally"
 %token TOK_CPROVER_ID  "__CPROVER_ID"
 %token TOK_CPROVER_LOOP_INVARIANT  "__CPROVER_loop_invariant"
+%token TOK_CPROVER_LOOP_VARIANT "__CPROVER_loop_variant"
 %token TOK_CPROVER_REQUIRES  "__CPROVER_requires"
 %token TOK_CPROVER_ENSURES  "__CPROVER_ensures"
 %token TOK_CPROVER_ASSIGNS "__CPROVER_assigns"
@@ -497,6 +500,13 @@ loop_invariant_opt:
         { $$=$3; }
         ;
 
+loop_variant_opt:
+        /* nothing */
+        { init($$); parser_stack($$).make_nil(); }
+        | TOK_CPROVER_LOOP_VARIANT '(' ACSL_binding_expression ')'
+        { $$=$3; std::cout<<"Loop variant has been parsed.\n"; }
+        ;
+
 statement_expression: '(' compound_statement ')'
         { 
           $$=$1;
@@ -2418,24 +2428,31 @@ declaration_or_expression_statement:
 
 iteration_statement:
         TOK_WHILE '(' comma_expression_opt ')'
-          loop_invariant_opt statement
+          loop_invariant_opt loop_variant_opt 
+          statement
         {
           $$=$1;
           statement($$, ID_while);
-          parser_stack($$).add_to_operands(std::move(parser_stack($3)), std::move(parser_stack($6)));
+          parser_stack($$).add_to_operands(std::move(parser_stack($3)), std::move(parser_stack($7)));
 
           if(parser_stack($5).is_not_nil())
             parser_stack($$).add(ID_C_spec_loop_invariant).swap(parser_stack($5));
+
+          if(parser_stack($6).is_not_nil())
+            parser_stack($$).add(ID_C_spec_loop_variant).swap(parser_stack($6));
         }
         | TOK_DO statement TOK_WHILE '(' comma_expression ')'
-          loop_invariant_opt ';'
+          loop_invariant_opt loop_variant_opt ';'
         {
           $$=$1;
           statement($$, ID_dowhile);
           parser_stack($$).add_to_operands(std::move(parser_stack($5)), std::move(parser_stack($2)));
 
           if(parser_stack($7).is_not_nil())
             parser_stack($$).add(ID_C_spec_loop_invariant).swap(parser_stack($7));
+
+          if(parser_stack($8).is_not_nil())
+            parser_stack($$).add(ID_C_spec_loop_variant).swap(parser_stack($8));
         }
         | TOK_FOR
           {
@@ -2449,7 +2466,7 @@ iteration_statement:
           '(' declaration_or_expression_statement
               comma_expression_opt ';'
               comma_expression_opt ')'
-              loop_invariant_opt
+              loop_invariant_opt loop_variant_opt
           statement
         {
           $$=$1;
@@ -2458,11 +2475,14 @@ iteration_statement:
           mto($$, $4);
           mto($$, $5);
           mto($$, $7);
-          mto($$, $10);
+          mto($$, $11);
 
           if(parser_stack($9).is_not_nil())
             parser_stack($$).add(ID_C_spec_loop_invariant).swap(parser_stack($9));
 
+          if(parser_stack($10).is_not_nil())
+            parser_stack($$).add(ID_C_spec_loop_variant).swap(parser_stack($10));
+
           if(PARSER.for_has_scope)
             PARSER.pop_scope(); // remove the C99 for-scope
         }
diff --git a/src/ansi-c/scanner.l b/src/ansi-c/scanner.l
@@ -1281,6 +1281,7 @@ __decltype          { if(PARSER.cpp98 &&
 {CPROVER_PREFIX}"finally"      { loc(); return TOK_CPROVER_FINALLY; }
 {CPROVER_PREFIX}"ID"           { loc(); return TOK_CPROVER_ID; }
 {CPROVER_PREFIX}"loop_invariant" { loc(); return TOK_CPROVER_LOOP_INVARIANT; }
+{CPROVER_PREFIX}"loop_variant" { loc(); return TOK_CPROVER_LOOP_VARIANT; }
 {CPROVER_PREFIX}"requires"     { loc(); return TOK_CPROVER_REQUIRES; }
 {CPROVER_PREFIX}"ensures"      { loc(); return TOK_CPROVER_ENSURES; }
 {CPROVER_PREFIX}"assigns"      { loc(); return TOK_CPROVER_ASSIGNS; }
diff --git a/src/goto-instrument/loop_utils.cpp b/src/goto-instrument/loop_utils.cpp
@@ -116,6 +116,7 @@ void get_modifies_lhs(
     const pointer_arithmetict ptr(to_dereference_expr(lhs).pointer());
     for(const auto &mod : local_may_alias.get(t, ptr.pointer))
     {
+      if(mod.id() == ID_unknown) continue;
       if(ptr.offset.is_nil())
         modifies.insert(dereference_exprt{mod});
       else
diff --git a/src/util/irep_ids.def b/src/util/irep_ids.def
@@ -572,6 +572,7 @@ IREP_ID_ONE(is_weak)
 IREP_ID_ONE(used)
 IREP_ID_ONE(is_used)
 IREP_ID_TWO(C_spec_loop_invariant, #spec_loop_invariant)
+IREP_ID_TWO(C_spec_loop_variant, #spec_loop_variant)
 IREP_ID_TWO(C_spec_requires, #spec_requires)
 IREP_ID_TWO(C_spec_ensures, #spec_ensures)
 IREP_ID_TWO(C_spec_assigns, #spec_assigns)
diff --git a/src/util/std_types.h b/src/util/std_types.h
@@ -40,6 +40,17 @@ class bool_typet:public typet
   }
 };
 
+/// The int type. 
+/// This is necessary for the type checking of loop variants, which should have
+/// some kind of integer type.
+class int_typet:public typet
+{
+public:
+  int_typet():typet(ID_integer)
+  {
+  }
+};
+
 /// The empty type
 class empty_typet:public typet
 {

Original file line number	Diff line number	Diff line change
`@@ -485,6 +485,7 @@ void c_typecheck_baset::typecheck_for(codet &code)`
`485`	`485`	`}`
`486`	`486`
`487`	`487`	`typecheck_spec_expr(code, ID_C_spec_loop_invariant);`
	`488`	`+ typecheck_spec_expr(code, ID_C_spec_loop_variant);`
`488`	`489`	`}`
`489`	`490`
`490`	`491`	`void c_typecheck_baset::typecheck_label(code_labelt &code)`
`@@ -773,6 +774,7 @@ void c_typecheck_baset::typecheck_while(code_whilet &code)`
`773`	`774`	`continue_is_allowed=old_continue_is_allowed;`
`774`	`775`
`775`	`776`	`typecheck_spec_expr(code, ID_C_spec_loop_invariant);`
	`777`	`+ typecheck_spec_expr(code, ID_C_spec_loop_variant);`
`776`	`778`	`}`
`777`	`779`
`778`	`780`	`void c_typecheck_baset::typecheck_dowhile(code_dowhilet &code)`
`@@ -806,6 +808,7 @@ void c_typecheck_baset::typecheck_dowhile(code_dowhilet &code)`
`806`	`808`	`continue_is_allowed=old_continue_is_allowed;`
`807`	`809`
`808`	`810`	`typecheck_spec_expr(code, ID_C_spec_loop_invariant);`
	`811`	`+ typecheck_spec_expr(code, ID_C_spec_loop_variant);`
`809`	`812`	`}`
`810`	`813`
`811`	`814`	`void c_typecheck_baset::typecheck_spec_expr(codet &code, const irep_idt &spec)`
`@@ -815,6 +818,11 @@ void c_typecheck_baset::typecheck_spec_expr(codet &code, const irep_idt &spec)`
`815`	`818`	`exprt &constraint = static_cast<exprt &>(code.add(spec));`
`816`	`819`
`817`	`820`	`typecheck_expr(constraint);`
`818`		`- implicit_typecast_bool(constraint);`
	`821`	`+ if (spec == ID_C_spec_loop_invariant) {`
	`822`	`+ implicit_typecast_bool(constraint);`
	`823`	`+ }`
	`824`	`+ else if (spec == ID_C_spec_loop_variant) {`
	`825`	`+ implicit_typecast_int(constraint);`
	`826`	`+ }`
`819`	`827`	`}`
`820`	`828`	`}`
Original file line number	Diff line number	Diff line change
`@@ -51,7 +51,7 @@ void c_typecheck_baset::typecheck_expr(exprt &expr)`
`51`	`51`	`return;`
`52`	`52`	`}`
`53`	`53`
`54`		`- // fist do sub-nodes`
	`54`	`+ // first do sub-nodes`
`55`	`55`	`typecheck_expr_operands(expr);`
`56`	`56`
`57`	`57`	`// now do case-split`
Original file line number	Diff line number	Diff line change
`@@ -116,6 +116,7 @@ void get_modifies_lhs(`
`116`	`116`	`const pointer_arithmetict ptr(to_dereference_expr(lhs).pointer());`
`117`	`117`	`for(const auto &mod : local_may_alias.get(t, ptr.pointer))`
`118`	`118`	`{`
	`119`	`+ if(mod.id() == ID_unknown) continue;`
`119`	`120`	`if(ptr.offset.is_nil())`
`120`	`121`	`modifies.insert(dereference_exprt{mod});`
`121`	`122`	`else`