WIP Address thomas comments

Author: hannes-steffenhagen-diffblue

regression/goto-instrument/generate-function-body/test.desc

@@ -5,4 +5,4 @@ main.c
 ^SIGNAL=0$
 ^VERIFICATION FAILED$
 ^\[main.assertion.1\] assertion does_not_get_reached: SUCCESS$
-^\[should_be_generated.assertion.1\] assertion FALSE: FAILURE$
+^\[should_be_generated.assertion.1\] assertion FALSE: FAILURE$

src/goto-instrument/goto_instrument_parse_options.cpp

@@ -1464,7 +1464,8 @@ void goto_instrument_parse_optionst::instrument_goto_program()
     std::regex function_regex = std::regex(
       only_generate ? cmdline.get_value("generate-function-body")
                     : cmdline.get_value("replace-function-body"));
-    status() << "Replacing function bodies" << eom;
+    status() << (only_generate ? "Generating" : "Replacing")
+             << " function bodies" << eom;
     replace_function_bodies(
       goto_model.goto_functions,
       goto_model.symbol_table,
@@ -1551,18 +1552,9 @@ void goto_instrument_parse_optionst::help()
     " --undefined-function-is-assume-false\n"
     // NOLINTNEXTLINE(whitespace/line_length)
     "                              convert each call to an undefined function to assume(false)\n"
-    " --replace-function-body <regex>\n"
-    // NOLINTNEXTLINE(whitespace/line_length)
-    "                              Replace bodies of function matching regex\n"
-    " --generate-function-body <regex>\n"
-    // NOLINTNEXTLINE(whitespace/line_length)
-    "                              Like replace-function-body, but ignore functions that already have bodies\n"
-    " --replace-function-body-options <option>\n"
-    // NOLINTNEXTLINE(whitespace/line_length)
-    "                              One of empty, assert-false, assume-false, nondet-return\n"
-    "                              assert-false-assume-false and\n"
-    // NOLINTNEXTLINE(whitespace/line_length)
-    "                              havoc[,params:<regex>][,globals:<regex>]"
+    HELP_REPLACE_FUNCTION_BODY
+    HELP_GENERATE_FUNCTION_BODY
+    HELP_REPLACE_FUNCTION_BODY_OPTIONS
     "\n"
     "Loop transformations:\n"
     " --k-induction <k>            check loops with k-induction\n"

src/goto-instrument/goto_instrument_parse_options.h

@@ -24,6 +24,8 @@ Author: Daniel Kroening, [email protected]
 
 #include <analyses/goto_check.h>
 
+#include <goto-instrument/replace_function_bodies.h>
+
 // clang-format off
 #define GOTO_INSTRUMENT_OPTIONS \
   "(all)" \
@@ -87,9 +89,9 @@ Author: Daniel Kroening, [email protected]
   "(remove-function-body):"\
   "(splice-call):" \
   OPT_REMOVE_CALLS_NO_BODY \
-  "(replace-function-body):" \
-  "(generate-function-body):" \
-  "(replace-function-body-options):"
+  OPT_REPLACE_FUNCTION_BODY \
+  OPT_GENERATE_FUNCTION_BODY \
+  OPT_REPLACE_FUNCTION_BODY_OPTIONS
 
 // clang-format on
 

src/goto-instrument/replace_function_bodies.cpp

@@ -16,10 +16,18 @@ Author: DiffBlue Limited.
 #include <util/make_unique.h>
 #include <util/message.h>
 #include <langapi/language_util.h>
+#include <util/string_utils.h>
 
+/// Base class for replace_function_body implementations
 class replace_function_bodiest
 {
 protected:
+  /// Produce a body for the passed function
+  /// At this point the body of function is always empty,
+  /// and all function parameters have identifiers
+  /// @param function whose body to generate
+  /// @param symbol_table of the current goto program
+  /// @param function_name Identifier of function
   virtual void generate_function_body(
     goto_functiont &function,
     symbol_tablet &symbol_table,
@@ -28,6 +36,11 @@ class replace_function_bodiest
 public:
   virtual ~replace_function_bodiest() = default;
 
+  /// Replace the function body with one based on the implementation
+  /// This will work the same whether or not the function already has a body
+  /// @param function whose body to replace
+  /// @param symbol_table of the current goto program
+  /// @param function_name Identifier of function
   void replace_function_body(
     goto_functiont &function,
     symbol_tablet &symbol_table,
@@ -51,37 +64,29 @@ class replace_function_bodiest
     int param_counter = 0;
     for(auto &parameter : function.type.parameters())
     {
-      if(
-        parameter.type().id() == ID_pointer &&
-        !is_constant_or_has_constant_components(parameter.type(), ns))
+      if(parameter.get_identifier().empty())
       {
-        if(parameter.get_identifier().empty())
-        {
-          const std::string param_base_name =
-            parameter.get_base_name().empty()
-              ? "__param$" + std::to_string(param_counter++)
-              : id2string(parameter.get_base_name());
-          irep_idt new_param_identifier =
-            id2string(function_name) + "::" + param_base_name;
-          parameter.set_base_name(param_base_name);
-          parameter.set_identifier(new_param_identifier);
-          parameter_symbolt new_param_sym;
-          new_param_sym.name = new_param_identifier;
-          new_param_sym.type = parameter.type();
-          new_param_sym.base_name = param_base_name;
-          new_param_sym.is_parameter = true;
-          new_param_sym.mode = ID_C;
-          const symbolt *function_symbol = symbol_table.lookup(function_name);
-          new_param_sym.module = function_symbol->module;
-          new_param_sym.location = function_symbol->location;
-          symbol_table.add(new_param_sym);
-        }
-        auto function_symbol = *symbol_table.lookup(function_name);
-        function_symbol.type = function.type;
-        symbol_table.remove(function_name);
-        symbol_table.insert(function_symbol);
+        const std::string param_base_name =
+          parameter.get_base_name().empty()
+            ? "__param$" + std::to_string(param_counter++)
+            : id2string(parameter.get_base_name());
+        irep_idt new_param_identifier =
+          id2string(function_name) + "::" + param_base_name;
+        parameter.set_base_name(param_base_name);
+        parameter.set_identifier(new_param_identifier);
+        parameter_symbolt new_param_sym;
+        new_param_sym.name = new_param_identifier;
+        new_param_sym.type = parameter.type();
+        new_param_sym.base_name = param_base_name;
+        new_param_sym.mode = ID_C;
+        auto &function_symbol = symbol_table.lookup_ref(function_name);
+        new_param_sym.module = function_symbol.module;
+        new_param_sym.location = function_symbol.location;
+        symbol_table.add(new_param_sym);
       }
     }
+    auto &function_symbol = symbol_table.get_writeable_ref(function_name);
+    function_symbol.type = function.type;
   }
 };
 
@@ -184,7 +189,8 @@ class havoc_replace_function_bodiest : public replace_function_bodiest
     {
       if(
         parameter.type().id() == ID_pointer &&
-        !parameter.type().subtype().get_bool(ID_C_constant) &&
+        !is_constant_or_has_constant_components(
+          parameter.type().subtype(), ns) &&
         std::regex_match(
           id2string(parameter.get_base_name()), parameters_to_havoc))
       {
@@ -222,44 +228,20 @@ class havoc_replace_function_bodiest : public replace_function_bodiest
   std::regex parameters_to_havoc;
 };
 
-static std::vector<std::string>
-tokenize(const std::string &base, char separator)
+class replace_function_bodies_errort : public std::runtime_error
 {
-  std::vector<std::string> tokens;
-  tokens.push_back("");
-  for(char c : base)
+public:
+  replace_function_bodies_errort(
+    const std::string &file,
+    int line,
+    const std::string &reason)
+    : runtime_error(file + ":" + std::to_string(line) + ": " + reason)
   {
-    if(c == separator)
-    {
-      tokens.push_back("");
-    }
-    else
-    {
-      tokens.back().push_back(c);
-    }
   }
-  return tokens;
-}
-
-static void write_to_stream(std::ostream &out)
-{
-}
-
-template <typename T, typename... Ts>
-void write_to_stream(std::ostream &out, const T &arg, const Ts &... args)
-{
-  out << arg;
-  write_to_stream(out, args...);
-}
+};
 
-template <typename... Ts>
-std::string replace_function_body_parse_error(const Ts &... args)
-{
-  std::ostringstream out;
-  write_to_stream(
-    out, "parse error for --replace-function-body-options: ", args...);
-  return out.str();
-}
+#define REPLACE_FUNCTION_BODIES_ERROR(reason)                                  \
+  replace_function_bodies_errort(__FILE__, __LINE__, (reason))
 
 std::unique_ptr<replace_function_bodiest> replace_function_body_options_factory(
   const std::string &options,
@@ -292,17 +274,18 @@ std::unique_ptr<replace_function_bodiest> replace_function_body_options_factory(
     return util_make_unique<empty_replace_function_bodiest>();
   }
 
-  const std::vector<std::string> tokens = tokenize(options, ',');
-  if(!tokens.empty() && tokens[0] == "havoc")
+  const std::vector<std::string> option_components = split_string(options, ',');
+  if(!option_components.empty() && option_components[0] == "havoc")
   {
     std::regex globals_regex;
     std::regex params_regex;
-    for(std::size_t i = 1; i < tokens.size(); ++i)
+    for(std::size_t i = 1; i < option_components.size(); ++i)
     {
-      const std::vector<std::string> key_value_pair = tokenize(tokens[i], ':');
+      const std::vector<std::string> key_value_pair =
+        split_string(option_components[i], ':');
       if(key_value_pair.size() != 2)
       {
-        throw replace_function_body_parse_error(
+        throw REPLACE_FUNCTION_BODIES_ERROR(
           "Expected key_value_pair of form argument:value");
       }
       if(key_value_pair[0] == "globals")
@@ -315,8 +298,8 @@ std::unique_ptr<replace_function_bodiest> replace_function_body_options_factory(
       }
       else
       {
-        throw replace_function_body_parse_error(
-          "Unknown option \"", key_value_pair[0], "\"");
+        throw REPLACE_FUNCTION_BODIES_ERROR(
+          "Unknown option \"" + key_value_pair[0] + "\"");
       }
     }
     std::vector<irep_idt> globals_to_havoc;
@@ -333,7 +316,7 @@ std::unique_ptr<replace_function_bodiest> replace_function_body_options_factory(
     return util_make_unique<havoc_replace_function_bodiest>(
       globals_to_havoc, params_regex);
   }
-  throw replace_function_body_parse_error("Can't parse \"", options, "\"");
+  throw REPLACE_FUNCTION_BODIES_ERROR("Can't parse \"" + options + "\"");
 }
 
 void replace_function_bodies(

src/goto-instrument/replace_function_bodies.h

@@ -18,6 +18,43 @@ Author: DiffBlue Limited.
 #include <util/std_types.h>
 #include <util/message.h>
 
+/// Replace function bodies with some default behavior
+/// Can generate the following types of function bodies:
+///
+/// assert-false: { __CPROVER_assert(false); }
+///
+/// assume-false: { __CPROVER_assume(false); }
+///
+/// assert-false-assume-false: {
+///   __CPROVER_assert(false);
+///   __CPROVER_assume(false); }
+///
+/// havoc[,params:<regex>][,globals:<regex>]:
+/// Assign nondet to the targets of pointer-to-non-const parameters
+/// matching regex, and non-const globals matching regex and then
+/// return nondet for non-void functions, e.g.:
+///
+/// int global; const int c_global;
+/// int function(int *param, const int *const_param);
+///
+/// havoc,params:(?!__).*,globals:(?!__).* (where (?!__) means
+/// "not preceded by __", which is recommended to avoid overwrite
+/// internal symbols), leads to
+///
+/// int function(int *param, consnt int *const_param) {
+///   *param = nondet_int();
+///   global = nondet_int();
+///   return nondet_int();
+/// }
+///
+/// nondet-return return nondet for non-void functions
+///
+/// @param functions The function container whose functions should be replaced
+/// @param symbol_table The symbol table of the goto program
+/// @param functions_regex Replace bodies of functions whose names matches regex
+/// @param only_generate When true, skip functions that already have a body
+/// @param replace_options Options string indicating what body to generate
+/// @param messages Destination for status/warning messages
 void replace_function_bodies(
   goto_functionst &functions,
   symbol_tablet &symbol_table,
@@ -26,4 +63,25 @@ void replace_function_bodies(
   const std::string &replace_options,
   messaget &messages);
 
+#define OPT_REPLACE_FUNCTION_BODY "(replace-function-body):"
+#define OPT_GENERATE_FUNCTION_BODY "(generate-function-body):"
+#define OPT_REPLACE_FUNCTION_BODY_OPTIONS "(replace-function-body-options):"
+
+#define HELP_REPLACE_FUNCTION_BODY                                             \
+  " --replace-function-body <regex>\n"                                         \
+  "                              Replace bodies of function matching regex\n"
+
+#define HELP_GENERATE_FUNCTION_BODY                                            \
+  " --generate-function-body <regex>\n"                                        \
+  "                              Like replace-function-body, but ignore "      \
+  "functions that already have bodies\n"
+
+#define HELP_REPLACE_FUNCTION_BODY_OPTIONS                                     \
+  " --replace-function-body-options <option>\n"                                \
+  "                              One of empty, assert-false, assume-false, "   \
+  "nondet-return\n"                                                            \
+  "                              assert-false-assume-false and\n"              \
+  "                              havoc[,params:<regex>][,globals:<regex>]\n"   \
+  "                              (default: nondet-return)"
+
 #endif // CPROVER_GOTO_INSTRUMENT_REPLACE_FUNCTION_BODIES_H

src/util/string_utils.cpp

@@ -99,6 +99,13 @@ void split_string(
   right=result[1];
 }
 
+std::vector<std::string> split_string(const std::string &s, char delim)
+{
+  std::vector<std::string> result;
+  split_string(s, delim, result);
+  return result;
+}
+
 std::string trim_from_last_delimiter(
   const std::string &s,
   const char delim)

src/util/string_utils.h

@@ -30,6 +30,8 @@ void split_string(
   std::string &right,
   bool strip=false);
 
+std::vector<std::string> split_string(const std::string &s, char delim);
+
 std::string trim_from_last_delimiter(
   const std::string &s,
   const char delim);