Factor loop init out of gen_nondet_array_init

Joel Allred · Joel Allred · commit 32e4ac7ebeaa · 2018-12-21T15:16:12.000Z
Makes gen_nondet_array_init smaller and clarifies process.
diff --git a/jbmc/src/java_bytecode/java_object_factory.cpp b/jbmc/src/java_bytecode/java_object_factory.cpp
@@ -166,6 +166,16 @@ class java_object_factoryt
     code_blockt &assignments,
     const exprt &instance_expr,
     const irep_idt &method_name);
+
+  void array_loop_init_code(
+    code_blockt &assignments,
+    const exprt &init_array_expr,
+    const exprt &length_expr,
+    const typet &element_type,
+    const exprt &max_length_expr,
+    size_t depth,
+    update_in_placet update_in_place,
+    const source_locationt &location);
 };
 
 /// Returns a codet that assigns \p expr, of type \p ptr_type, a NULL value.
@@ -1210,55 +1220,51 @@ codet make_allocate_code(const symbol_exprt &lhs, const exprt &size)
   return code_assignt(lhs, alloc);
 }
 
-/// Create code to initialize a Java array whose size will be at most
-/// `max_nondet_array_length`. The code is emitted to \p assignments does as
-/// follows:
-/// 1. non-deterministically choose a length for the array
-/// 2. assume that such length is >=0 and <= max_length
-/// 3. loop through all elements of the array and initialize them
-void java_object_factoryt::gen_nondet_array_init(
+/// Create code to nondeterministically initialise each element of an array in a
+/// loop.
+/// The code produced is of the form (supposing an array of type OBJ):
+/// ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+///        struct java.lang.Integer **array_data_init;
+///        int array_init_iter;
+///        array_data_init = (struct OBJ **)init_array_expr;
+///        array_init_iter = 0;
+///     2: IF array_init_iter == length_expr THEN GOTO 5
+///        IF array_init_iter == max_length_expr THEN GOTO 5
+///        IF !NONDET(__CPROVER_bool) THEN GOTO 3
+///        array_data_init[array_init_iter] = null;
+///        GOTO 4
+///     3: malloc_site = ALLOCATE(...);
+///        array_data_init[array_init_iter] = (struct OBJ *)malloc_site;
+///        *malloc_site = {...};
+///        malloc_site->value = NONDET(int);
+///     4: array_init_iter = array_init_iter + 1;
+///        GOTO 2
+///     5: ...
+/// ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+/// \param [out] assignments : Code block to which the initializing assignments
+///   will be appended.
+/// \param init_array_expr : array data
+/// \param length_expr : array length
+/// \param element_type: type of array elements
+/// \param max_length_expr : max length, as specified by max-nondet-array-length
+/// \param depth: Number of times that a pointer has been dereferenced from the
+///   root of the object tree that we are initializing.
+/// \param update_in_place:
+///   NO_UPDATE_IN_PLACE: initialize `expr` from scratch
+///   MAY_UPDATE_IN_PLACE: generate a runtime nondet branch between the NO_
+///   and MUST_ cases.
+///   MUST_UPDATE_IN_PLACE: reinitialize an existing object
+/// \param location: Source location associated with nondet-initialization.
+void java_object_factoryt::array_loop_init_code(
   code_blockt &assignments,
-  const exprt &expr,
+  const exprt &init_array_expr,
+  const exprt &length_expr,
+  const typet &element_type,
+  const exprt &max_length_expr,
   size_t depth,
   update_in_placet update_in_place,
   const source_locationt &location)
 {
-  PRECONDITION(expr.type().id()==ID_pointer);
-  PRECONDITION(expr.type().subtype().id() == ID_struct_tag);
-  PRECONDITION(update_in_place!=update_in_placet::MAY_UPDATE_IN_PLACE);
-
-  const typet &type=ns.follow(expr.type().subtype());
-  const struct_typet &struct_type=to_struct_type(type);
-  const typet &element_type =
-    static_cast<const typet &>(expr.type().subtype().find(ID_element_type));
-
-  auto max_length_expr=from_integer(
-    object_factory_parameters.max_nondet_array_length, java_int_type());
-
-  // In NO_UPDATE_IN_PLACE mode we allocate a new array and recursively
-  // initialize its elements
-  if(update_in_place==update_in_placet::NO_UPDATE_IN_PLACE)
-  {
-    allocate_nondet_length_array(
-      assignments, expr, max_length_expr, element_type, location);
-  }
-
-  // Otherwise we're updating the array in place, and use the
-  // existing array allocation and length.
-
-  INVARIANT(
-    is_valid_java_array(struct_type),
-    "Java struct array does not conform to expectations");
-
-  dereference_exprt deref_expr(expr, expr.type().subtype());
-  const auto &comps=struct_type.components();
-  const member_exprt length_expr(deref_expr, "length", comps[1].type());
-  exprt init_array_expr=member_exprt(deref_expr, "data", comps[2].type());
-
-  if(init_array_expr.type()!=pointer_type(element_type))
-    init_array_expr=
-      typecast_exprt(init_array_expr, pointer_type(element_type));
-
   const symbol_exprt &array_init_symexpr =
     allocate_objects.allocate_automatic_local_object(
       init_array_expr.type(), "array_data_init");
@@ -1334,6 +1340,67 @@ void java_object_factoryt::gen_nondet_array_init(
   assignments.add(std::move(init_done_label));
 }
 
+/// Create code to initialize a Java array whose size will be at most
+/// `max_nondet_array_length`. The code is emitted to \p assignments does as
+/// follows:
+/// 1. non-deterministically choose a length for the array
+/// 2. assume that such length is >=0 and <= max_length
+/// 3. loop through all elements of the array and initialize them
+void java_object_factoryt::gen_nondet_array_init(
+  code_blockt &assignments,
+  const exprt &expr,
+  size_t depth,
+  update_in_placet update_in_place,
+  const source_locationt &location)
+{
+  PRECONDITION(expr.type().id() == ID_pointer);
+  PRECONDITION(expr.type().subtype().id() == ID_struct_tag);
+  PRECONDITION(update_in_place != update_in_placet::MAY_UPDATE_IN_PLACE);
+
+  const typet &type = ns.follow(expr.type().subtype());
+  const struct_typet &struct_type = to_struct_type(type);
+  const typet &element_type =
+    static_cast<const typet &>(expr.type().subtype().find(ID_element_type));
+
+  auto max_length_expr = from_integer(
+    object_factory_parameters.max_nondet_array_length, java_int_type());
+
+  // In NO_UPDATE_IN_PLACE mode we allocate a new array and recursively
+  // initialize its elements
+  if(update_in_place == update_in_placet::NO_UPDATE_IN_PLACE)
+  {
+    allocate_nondet_length_array(
+      assignments, expr, max_length_expr, element_type, location);
+  }
+
+  // Otherwise we're updating the array in place, and use the
+  // existing array allocation and length.
+
+  INVARIANT(
+    is_valid_java_array(struct_type),
+    "Java struct array does not conform to expectations");
+
+  dereference_exprt deref_expr(expr, expr.type().subtype());
+  const auto &comps = struct_type.components();
+  const member_exprt length_expr(deref_expr, "length", comps[1].type());
+  exprt init_array_expr = member_exprt(deref_expr, "data", comps[2].type());
+
+  if(init_array_expr.type() != pointer_type(element_type))
+    init_array_expr =
+      typecast_exprt(init_array_expr, pointer_type(element_type));
+
+  // Nondeterministically initialise each element of the array
+  array_loop_init_code(
+    assignments,
+    init_array_expr,
+    length_expr,
+    element_type,
+    max_length_expr,
+    depth,
+    update_in_place,
+    location);
+}
+
 /// We nondet-initialize enums to be equal to one of the constants defined
 /// for their type:
 ///     int i = nondet(int);
