goto_symex: rename type symbols only when needed [blocks: #3652] #3633
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -618,12 +618,63 @@ void goto_symex_statet::rename_address( | |
| } | ||
| } | ||
|
|
||
| static bool requires_renaming(const typet &type, const namespacet &ns) | ||
| { | ||
| if(type.id() == ID_array) | ||
| { | ||
| const auto &array_type = to_array_type(type); | ||
| return requires_renaming(array_type.subtype(), ns) || | ||
| !array_type.size().is_constant(); | ||
| } | ||
| else if( | ||
| type.id() == ID_struct || type.id() == ID_union || type.id() == ID_class) | ||
| { | ||
| const struct_union_typet &s_u_type = to_struct_union_type(type); | ||
| const struct_union_typet::componentst &components = s_u_type.components(); | ||
|
|
||
| for(auto &component : components) | ||
| { | ||
| // be careful, or it might get cyclic | ||
| if(component.type().id() != ID_pointer) | ||
| return requires_renaming(component.type(), ns); | ||
|
There was a problem hiding this comment. This only looks at the first non-pointer component of the struct, which is strange, but I cannot say whether this is correct because the function is not documented, so please document. There was a problem hiding this comment. Oooh, I missed that, @kroening pretty sure this is a real bug There was a problem hiding this comment. (suggests a new test -- AFAIK GCC allows such variable-size structs?) There was a problem hiding this comment. I think I've found a way to construct a failing test, I'll post a follow-up PR to include a test, a fix, and the suggested documentation. There was a problem hiding this comment. The failure I thought I had found was one caused by integer overflow - I haven't actually managed to produce a proper failure. See #3918 for my attempt and the cleanup. |
||
| } | ||
|
|
||
| return false; | ||
| } | ||
| else if(type.id() == ID_pointer) | ||
| { | ||
| return requires_renaming(to_pointer_type(type).subtype(), ns); | ||
| } | ||
| else if(type.id() == ID_symbol_type) | ||
| { | ||
| const symbolt &symbol = ns.lookup(to_symbol_type(type)); | ||
| return requires_renaming(symbol.type, ns); | ||
| } | ||
| else if(type.id() == ID_union_tag) | ||
| { | ||
| const symbolt &symbol = ns.lookup(to_union_tag_type(type)); | ||
| return requires_renaming(symbol.type, ns); | ||
| } | ||
| else if(type.id() == ID_struct_tag) | ||
| { | ||
| const symbolt &symbol = ns.lookup(to_struct_tag_type(type)); | ||
| return requires_renaming(symbol.type, ns); | ||
| } | ||
|
|
||
| return false; | ||
| } | ||
|
|
||
| void goto_symex_statet::rename( | ||
| typet &type, | ||
| const irep_idt &l1_identifier, | ||
| const namespacet &ns, | ||
| levelt level) | ||
| { | ||
| // check whether there are symbol expressions in the type; if not, there | ||
| // is no need to expand the struct/union tags in the type | ||
| if(!requires_renaming(type, ns)) | ||
| return; // no action | ||
|
|
||
| // rename all the symbols with their last known value | ||
| // to the given level | ||
|
|
||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I don't think
type.id() == ID_classshould ever evaluate to true. Aclassis represented asID_structwithID_C_classset totrue. If I'm wrong in saying this then we've got a lot more work to do elsewhere.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, these should be cleaned out.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
#3635