Field sensitivity: using apply is now always safe

tautschnig · tautschnig · commit 3ba0bc158faa · 2022-10-21T09:59:56.000Z
With the changes from 6193534 it is safe to call `apply` even when doing field assignments: the right-hand side will not be a divisible compound (which we previously sought to protect from field expansion). This makes field sensitivity stateless, and all methods are `const`. They are not static, however, as the constructor initialises configuration options (which would otherwise need to be passed to each call). We can then also avoid a level of indirection through `apply` and call `get_fields` directly in two cases.
diff --git a/src/goto-symex/field_sensitivity.cpp b/src/goto-symex/field_sensitivity.cpp
@@ -23,7 +23,7 @@ exprt field_sensitivityt::apply(
   ssa_exprt ssa_expr,
   bool write) const
 {
-  if(!run_apply || write)
+  if(write)
     return std::move(ssa_expr);
   else
     return get_fields(ns, state, ssa_expr);
@@ -35,9 +35,6 @@ exprt field_sensitivityt::apply(
   exprt expr,
   bool write) const
 {
-  if(!run_apply)
-    return expr;
-
   if(expr.id() != ID_address_of)
   {
     Forall_operands(it, expr)
@@ -46,7 +43,7 @@ exprt field_sensitivityt::apply(
 
   if(!write && is_ssa_expr(expr))
   {
-    return apply(ns, state, to_ssa_expr(expr), write);
+    return get_fields(ns, state, to_ssa_expr(expr));
   }
   else if(
     !write && expr.id() == ID_member &&
@@ -231,17 +228,14 @@ void field_sensitivityt::field_assignments(
   const ssa_exprt &lhs,
   const exprt &rhs,
   symex_targett &target,
-  bool allow_pointer_unsoundness)
+  bool allow_pointer_unsoundness) const
 {
-  const exprt lhs_fs = apply(ns, state, lhs, false);
+  const exprt lhs_fs = get_fields(ns, state, lhs);
 
   if(lhs != lhs_fs)
   {
-    bool run_apply_bak = run_apply;
-    run_apply = false;
     field_assignments_rec(
       ns, state, lhs_fs, rhs, target, allow_pointer_unsoundness);
-    run_apply = run_apply_bak;
   }
 }
 
@@ -261,7 +255,7 @@ void field_sensitivityt::field_assignments_rec(
   const exprt &lhs_fs,
   const exprt &ssa_rhs,
   symex_targett &target,
-  bool allow_pointer_unsoundness)
+  bool allow_pointer_unsoundness) const
 {
   if(is_ssa_expr(lhs_fs))
   {
diff --git a/src/goto-symex/field_sensitivity.h b/src/goto-symex/field_sensitivity.h
@@ -108,7 +108,7 @@ class field_sensitivityt
     const ssa_exprt &lhs,
     const exprt &rhs,
     symex_targett &target,
-    bool allow_pointer_unsoundness);
+    bool allow_pointer_unsoundness) const;
 
   /// Turn an expression \p expr into a field-sensitive SSA expression.
   /// Field-sensitive SSA expressions have individual symbols for each
@@ -154,12 +154,10 @@ class field_sensitivityt
   /// \param expr: the expression to evaluate
   /// \return False, if and only if, \p expr would be a single field-sensitive
   /// SSA expression.
+  NODISCARD
   bool is_divisible(const ssa_exprt &expr) const;
 
 private:
-  /// whether or not to invoke \ref field_sensitivityt::apply
-  bool run_apply = true;
-
   const std::size_t max_field_sensitivity_array_size;
 
   const bool should_simplify;
@@ -170,7 +168,7 @@ class field_sensitivityt
     const exprt &lhs_fs,
     const exprt &ssa_rhs,
     symex_targett &target,
-    bool allow_pointer_unsoundness);
+    bool allow_pointer_unsoundness) const;
 
   exprt simplify_opt(exprt e, const namespacet &ns) const;
 };

Original file line number	Diff line number	Diff line change
`@@ -23,7 +23,7 @@ exprt field_sensitivityt::apply(`
`23`	`23`	`ssa_exprt ssa_expr,`
`24`	`24`	`bool write) const`
`25`	`25`	`{`
`26`		`- if(!run_apply \|\| write)`
	`26`	`+ if(write)`
`27`	`27`	`return std::move(ssa_expr);`
`28`	`28`	`else`
`29`	`29`	`return get_fields(ns, state, ssa_expr);`
`@@ -35,9 +35,6 @@ exprt field_sensitivityt::apply(`
`35`	`35`	`exprt expr,`
`36`	`36`	`bool write) const`
`37`	`37`	`{`
`38`		`- if(!run_apply)`
`39`		`- return expr;`
`40`		`-`
`41`	`38`	`if(expr.id() != ID_address_of)`
`42`	`39`	`{`
`43`	`40`	`Forall_operands(it, expr)`
`@@ -46,7 +43,7 @@ exprt field_sensitivityt::apply(`
`46`	`43`
`47`	`44`	`if(!write && is_ssa_expr(expr))`
`48`	`45`	`{`
`49`		`- return apply(ns, state, to_ssa_expr(expr), write);`
	`46`	`+ return get_fields(ns, state, to_ssa_expr(expr));`
`50`	`47`	`}`
`51`	`48`	`else if(`
`52`	`49`	`!write && expr.id() == ID_member &&`
`@@ -231,17 +228,14 @@ void field_sensitivityt::field_assignments(`
`231`	`228`	`const ssa_exprt &lhs,`
`232`	`229`	`const exprt &rhs,`
`233`	`230`	`symex_targett &target,`
`234`		`- bool allow_pointer_unsoundness)`
	`231`	`+ bool allow_pointer_unsoundness) const`
`235`	`232`	`{`
`236`		`- const exprt lhs_fs = apply(ns, state, lhs, false);`
	`233`	`+ const exprt lhs_fs = get_fields(ns, state, lhs);`
`237`	`234`
`238`	`235`	`if(lhs != lhs_fs)`
`239`	`236`	`{`
`240`		`- bool run_apply_bak = run_apply;`
`241`		`- run_apply = false;`
`242`	`237`	`field_assignments_rec(`
`243`	`238`	`ns, state, lhs_fs, rhs, target, allow_pointer_unsoundness);`
`244`		`- run_apply = run_apply_bak;`
`245`	`239`	`}`
`246`	`240`	`}`
`247`	`241`
`@@ -261,7 +255,7 @@ void field_sensitivityt::field_assignments_rec(`
`261`	`255`	`const exprt &lhs_fs,`
`262`	`256`	`const exprt &ssa_rhs,`
`263`	`257`	`symex_targett &target,`
`264`		`- bool allow_pointer_unsoundness)`
	`258`	`+ bool allow_pointer_unsoundness) const`
`265`	`259`	`{`
`266`	`260`	`if(is_ssa_expr(lhs_fs))`
`267`	`261`	`{`