Merge pull request #5665 from tautschnig/_fdopen

kroening · web-flow · commit 750ab588c131 · 2020-12-15T14:11:01.000Z
C library: define _fopen for OS X
diff --git a/regression/cbmc-library/fopen-01/main.c b/regression/cbmc-library/fopen-01/main.c
@@ -1,9 +1,13 @@
-#include <assert.h>
 #include <stdio.h>
 
 int main()
 {
-  fopen();
-  assert(0);
+  FILE *f = fopen("some_file", "r");
+  if(!f)
+    return 1;
+
+  // fopen returns NULL or some pointer that is safe to dereference
+  (void)*f;
+
   return 0;
 }
diff --git a/regression/cbmc-library/fopen-01/test.desc b/regression/cbmc-library/fopen-01/test.desc
@@ -1,4 +1,4 @@
-KNOWNBUG
+CORE
 main.c
 --pointer-check --bounds-check
 ^EXIT=0$
diff --git a/src/ansi-c/library/stdio.c b/src/ansi-c/library/stdio.c
@@ -46,6 +46,18 @@ inline int puts(const char *s)
   return ret;
 }
 
+/* FUNCTION: fclose_cleanup */
+
+#ifdef __CPROVER_CUSTOM_BITVECTOR_ANALYSIS
+inline void fclose_cleanup(void *stream)
+{
+__CPROVER_HIDE:;
+  __CPROVER_assert(
+    !__CPROVER_get_must(stream, "open") || __CPROVER_get_must(stream, "closed"),
+    "resource leak: fopen file not closed");
+}
+#endif
+
 /* FUNCTION: fopen */
 
 #ifndef __CPROVER_STDIO_H_INCLUDED
@@ -58,16 +70,7 @@ inline int puts(const char *s)
 #define __CPROVER_STDLIB_H_INCLUDED
 #endif
 
-#ifdef __CPROVER_CUSTOM_BITVECTOR_ANALYSIS
-inline void fclose_cleanup(void *stream)
-{
-  __CPROVER_HIDE:;
-  __CPROVER_assert(!__CPROVER_get_must(stream, "open") ||
-                   __CPROVER_get_must(stream, "closed"),
-                   "resource leak: fopen file not closed");
-}
-#endif
-
+void fclose_cleanup(void *stream);
 __CPROVER_bool __VERIFIER_nondet___CPROVER_bool();
 
 inline FILE *fopen(const char *filename, const char *mode)
@@ -100,6 +103,55 @@ inline FILE *fopen(const char *filename, const char *mode)
   return fopen_result;
 }
 
+/* FUNCTION: _fopen */
+
+// This is for Apple; we cannot fall back to fopen as we need
+// header files to have a definition of FILE available; the same
+// header files rename fopen to _fopen and would thus yield
+// unbounded recursion.
+
+#ifndef __CPROVER_STDIO_H_INCLUDED
+#  include <stdio.h>
+#  define __CPROVER_STDIO_H_INCLUDED
+#endif
+
+#ifndef __CPROVER_STDLIB_H_INCLUDED
+#  include <stdlib.h>
+#  define __CPROVER_STDLIB_H_INCLUDED
+#endif
+
+void fclose_cleanup(void *stream);
+__CPROVER_bool __VERIFIER_nondet___CPROVER_bool();
+
+#ifdef __APPLE__
+inline FILE *_fopen(const char *filename, const char *mode)
+{
+__CPROVER_HIDE:;
+  (void)*filename;
+  (void)*mode;
+#  ifdef __CPROVER_STRING_ABSTRACTION
+  __CPROVER_assert(
+    __CPROVER_is_zero_string(filename),
+    "fopen zero-termination of 1st argument");
+  __CPROVER_assert(
+    __CPROVER_is_zero_string(mode), "fopen zero-termination of 2nd argument");
+#  endif
+
+  FILE *fopen_result;
+
+  __CPROVER_bool fopen_error = __VERIFIER_nondet___CPROVER_bool();
+
+  fopen_result = fopen_error ? NULL : malloc(sizeof(FILE));
+
+#  ifdef __CPROVER_CUSTOM_BITVECTOR_ANALYSIS
+  __CPROVER_set_must(fopen_result, "open");
+  __CPROVER_cleanup(fopen_result, fclose_cleanup);
+#  endif
+
+  return fopen_result;
+}
+#endif
+
 /* FUNCTION: freopen */
 
 #ifndef __CPROVER_STDIO_H_INCLUDED

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-KNOWNBUG`
	`1`	`+CORE`
`2`	`2`	`main.c`
`3`	`3`	`--pointer-check --bounds-check`
`4`	`4`	`^EXIT=0$`