simplifier: type remaining methods for unary expressions

This improves memory safety.

Author: Daniel Kroening

src/util/simplify_expr.cpp

@@ -2026,7 +2026,8 @@ simplify_exprt::simplify_byte_update(const byte_update_exprt &expr)
   return unchanged(expr);
 }
 
-simplify_exprt::resultt<> simplify_exprt::simplify_complex(const exprt &expr)
+simplify_exprt::resultt<>
+simplify_exprt::simplify_complex(const unary_exprt &expr)
 {
   if(expr.id() == ID_complex_real)
   {
@@ -2140,7 +2141,7 @@ bool simplify_exprt::simplify_node(exprt &expr)
   }
   else if(expr.id()==ID_pointer_object)
   {
-    r = simplify_pointer_object(expr);
+    r = simplify_pointer_object(to_unary_expr(expr));
   }
   else if(expr.id() == ID_is_dynamic_object)
   {
@@ -2152,11 +2153,11 @@ bool simplify_exprt::simplify_node(exprt &expr)
   }
   else if(expr.id()==ID_object_size)
   {
-    r = simplify_object_size(expr);
+    r = simplify_object_size(to_unary_expr(expr));
   }
   else if(expr.id()==ID_good_pointer)
   {
-    r = simplify_good_pointer(expr);
+    r = simplify_good_pointer(to_unary_expr(expr));
   }
   else if(expr.id()==ID_div)
   {
@@ -2213,7 +2214,7 @@ bool simplify_exprt::simplify_node(exprt &expr)
   }
   else if(expr.id()==ID_unary_plus)
   {
-    r = simplify_unary_plus(expr);
+    r = simplify_unary_plus(to_unary_expr(expr));
   }
   else if(expr.id()==ID_not)
   {
@@ -2235,7 +2236,7 @@ bool simplify_exprt::simplify_node(exprt &expr)
   }
   else if(expr.id()==ID_pointer_offset)
   {
-    r = simplify_pointer_offset(expr);
+    r = simplify_pointer_offset(to_unary_expr(expr));
   }
   else if(expr.id()==ID_extractbit)
   {
@@ -2288,7 +2289,7 @@ bool simplify_exprt::simplify_node(exprt &expr)
   }
   else if(expr.id() == ID_complex_real || expr.id() == ID_complex_imag)
   {
-    r = simplify_complex(expr);
+    r = simplify_complex(to_unary_expr(expr));
   }
 
   if(r.has_changed())

src/util/simplify_expr_class.h

@@ -162,27 +162,27 @@ class simplify_exprt
   NODISCARD resultt<> simplify_member(const member_exprt &);
   NODISCARD resultt<> simplify_byte_update(const byte_update_exprt &);
   NODISCARD resultt<> simplify_byte_extract(const byte_extract_exprt &);
-  NODISCARD resultt<> simplify_pointer_object(const exprt &);
-  NODISCARD resultt<> simplify_object_size(const exprt &);
-  NODISCARD resultt<> simplify_dynamic_size(const exprt &);
+  NODISCARD resultt<> simplify_pointer_object(const unary_exprt &);
+  NODISCARD resultt<> simplify_object_size(const unary_exprt &);
+  NODISCARD resultt<> simplify_dynamic_size(const unary_exprt &);
   NODISCARD resultt<> simplify_is_dynamic_object(const exprt &expr);
   NODISCARD resultt<> simplify_is_invalid_pointer(const exprt &expr);
-  NODISCARD resultt<> simplify_same_object(const exprt &);
-  NODISCARD resultt<> simplify_good_pointer(const exprt &);
+  NODISCARD resultt<> simplify_same_object(const unary_exprt &);
+  NODISCARD resultt<> simplify_good_pointer(const unary_exprt &);
   NODISCARD resultt<> simplify_object(const exprt &);
   NODISCARD resultt<> simplify_unary_minus(const unary_minus_exprt &);
-  NODISCARD resultt<> simplify_unary_plus(const exprt &);
+  NODISCARD resultt<> simplify_unary_plus(const unary_exprt &);
   NODISCARD resultt<> simplify_dereference(const dereference_exprt &);
   NODISCARD resultt<> simplify_address_of(const address_of_exprt &);
-  NODISCARD resultt<> simplify_pointer_offset(const exprt &);
+  NODISCARD resultt<> simplify_pointer_offset(const unary_exprt &);
   NODISCARD resultt<> simplify_bswap(const bswap_exprt &);
   NODISCARD resultt<> simplify_isinf(const unary_exprt &);
   NODISCARD resultt<> simplify_isnan(const unary_exprt &);
   NODISCARD resultt<> simplify_isnormal(const unary_exprt &);
   NODISCARD resultt<> simplify_abs(const abs_exprt &);
   NODISCARD resultt<> simplify_sign(const sign_exprt &);
   NODISCARD resultt<> simplify_popcount(const popcount_exprt &);
-  NODISCARD resultt<> simplify_complex(const exprt &);
+  NODISCARD resultt<> simplify_complex(const unary_exprt &);
 
   /// Attempt to simplify mathematical function applications if we have
   /// enough information to do so. Currently focused on constant comparisons.

src/util/simplify_expr_int.cpp

@@ -1110,13 +1110,11 @@ simplify_exprt::simplify_extractbits(const extractbits_exprt &expr)
   return unchanged(expr);
 }
 
-simplify_exprt::resultt<> simplify_exprt::simplify_unary_plus(const exprt &expr)
+simplify_exprt::resultt<>
+simplify_exprt::simplify_unary_plus(const unary_exprt &expr)
 {
-  if(expr.operands().size()!=1)
-    return unchanged(expr);
-
   // simply remove, this is always 'nop'
-  return expr.op0();
+  return expr.op();
 }
 
 simplify_exprt::resultt<>

src/util/simplify_expr_pointer.cpp

@@ -244,18 +244,17 @@ simplify_exprt::simplify_address_of(const address_of_exprt &expr)
 }
 
 simplify_exprt::resultt<>
-simplify_exprt::simplify_pointer_offset(const exprt &expr)
+simplify_exprt::simplify_pointer_offset(const unary_exprt &expr)
 {
-  if(expr.operands().size()!=1)
-    return unchanged(expr);
-
-  const exprt &ptr = expr.op0();
+  const exprt &ptr = expr.op();
 
   if(ptr.id()==ID_if && ptr.operands().size()==3)
   {
     if_exprt if_expr=lift_if(expr, 0);
-    if_expr.true_case() = simplify_pointer_offset(if_expr.true_case());
-    if_expr.false_case() = simplify_pointer_offset(if_expr.false_case());
+    if_expr.true_case() =
+      simplify_pointer_offset(to_unary_expr(if_expr.true_case()));
+    if_expr.false_case() =
+      simplify_pointer_offset(to_unary_expr(if_expr.false_case()));
     return changed(simplify_if(if_expr));
   }
 
@@ -284,7 +283,7 @@ simplify_exprt::simplify_pointer_offset(const exprt &expr)
       // Cast from pointer to pointer.
       // This just passes through, remove typecast.
       auto new_expr = expr;
-      new_expr.op0() = ptr.op0();
+      new_expr.op() = ptr.op0();
 
       simplify_node(new_expr); // recursive call
       return new_expr;
@@ -537,12 +536,9 @@ simplify_exprt::simplify_inequality_pointer_object(const exprt &expr)
 }
 
 simplify_exprt::resultt<>
-simplify_exprt::simplify_pointer_object(const exprt &expr)
+simplify_exprt::simplify_pointer_object(const unary_exprt &expr)
 {
-  if(expr.operands().size()!=1)
-    return unchanged(expr);
-
-  const exprt &op = expr.op0();
+  const exprt &op = expr.op();
 
   auto op_result = simplify_object(op);
 
@@ -564,7 +560,7 @@ simplify_exprt::simplify_pointer_object(const exprt &expr)
   if(op_result.has_changed())
   {
     auto new_expr = expr;
-    new_expr.op0() = op_result;
+    new_expr.op() = op_result;
     return std::move(new_expr);
   }
   else
@@ -714,14 +710,11 @@ tvt simplify_exprt::objects_equal_address_of(const exprt &a, const exprt &b)
 }
 
 simplify_exprt::resultt<>
-simplify_exprt::simplify_object_size(const exprt &expr)
+simplify_exprt::simplify_object_size(const unary_exprt &expr)
 {
-  if(expr.operands().size()!=1)
-    return unchanged(expr);
-
   auto new_expr = expr;
   bool no_change = true;
-  exprt &op = new_expr.op0();
+  exprt &op = new_expr.op();
   auto op_result = simplify_object(op);
 
   if(op_result.has_changed())
@@ -766,13 +759,10 @@ simplify_exprt::simplify_object_size(const exprt &expr)
 }
 
 simplify_exprt::resultt<>
-simplify_exprt::simplify_good_pointer(const exprt &expr)
+simplify_exprt::simplify_good_pointer(const unary_exprt &expr)
 {
-  if(expr.operands().size()!=1)
-    return unchanged(expr);
-
   // we expand the definition
-  exprt def=good_pointer_def(expr.op0(), ns);
+  exprt def = good_pointer_def(expr.op(), ns);
 
   // recursive call
   simplify_node(def);