multi_ary_exprt::opX with precondtion

Daniel Kroening · Daniel Kroening · commit 139637c14320 · 2019-01-26T11:53:33.000Z
This prevents out-of-bound accesses to operands().
diff --git a/src/util/std_expr.h b/src/util/std_expr.h
@@ -974,6 +974,56 @@ class multi_ary_exprt:public exprt
   {
     add_to_operands(_lhs, _rhs);
   }
+
+  // In contrast to exprt::opX, the methods
+  // below check the size.
+  exprt &op0()
+  {
+    PRECONDITION(operands().size() >= 1);
+    return operands().front();
+  }
+
+  exprt &op1()
+  {
+    PRECONDITION(operands().size() >= 2);
+    return operands()[1];
+  }
+
+  exprt &op2()
+  {
+    PRECONDITION(operands().size() >= 3);
+    return operands()[2];
+  }
+
+  exprt &op3()
+  {
+    PRECONDITION(operands().size() >= 4);
+    return operands()[3];
+  }
+
+  const exprt &op0() const
+  {
+    PRECONDITION(operands().size() >= 1);
+    return operands().front();
+  }
+
+  const exprt &op1() const
+  {
+    PRECONDITION(operands().size() >= 2);
+    return operands()[1];
+  }
+
+  const exprt &op2() const
+  {
+    PRECONDITION(operands().size() >= 3);
+    return operands()[2];
+  }
+
+  const exprt &op3() const
+  {
+    PRECONDITION(operands().size() >= 4);
+    return operands()[3];
+  }
 };
 
 /// \brief Cast an exprt to a \ref multi_ary_exprt
