File: foo_bar.h

package info (click to toggle)
cbmc 6.6.0-4
  • links: PTS
  • area: main
  • in suites: forky, sid, trixie
  • size: 153,852 kB
  • sloc: cpp: 386,459; ansic: 114,466; java: 28,405; python: 6,003; yacc: 4,552; makefile: 4,041; lex: 2,487; xml: 2,388; sh: 2,050; perl: 557; pascal: 184; javascript: 163; ada: 36
file content (25 lines) | stat: -rw-r--r-- 1,022 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
 
#include <stdlib.h>

void bar(int **x) __CPROVER_assigns(*x)
  __CPROVER_requires(__CPROVER_is_fresh(x, sizeof(*x)))
    __CPROVER_ensures(__CPROVER_is_fresh(*x, sizeof(**x)))
{
  __CPROVER_assert(__CPROVER_r_ok(x, sizeof(*x)), "x is r_ok");
  *x = malloc(sizeof(**x));
  __CPROVER_assert(__CPROVER_r_ok(*x, sizeof(**x)), "deref x is r_ok");
}

void foo(int *x1, int **x2) __CPROVER_assigns(*x2)
  __CPROVER_requires(__CPROVER_is_fresh(x1, sizeof(*x1)))
    __CPROVER_requires(__CPROVER_is_fresh(x2, sizeof(*x2)))
      __CPROVER_requires(__CPROVER_is_fresh(*x2, sizeof(**x2)))
        __CPROVER_ensures(__CPROVER_is_fresh(*x2, sizeof(**x2)))
{
  __CPROVER_assert(__CPROVER_r_ok(x1, sizeof(*x1)), "x1 r_ok");
  __CPROVER_assert(__CPROVER_r_ok(x2, sizeof(*x2)), "x2 r_ok");
  __CPROVER_assert(__CPROVER_r_ok(*x2, sizeof(**x2)), "deref x2 r_ok");
  int *old_x2 = *x2;
  bar(x2);
  __CPROVER_assert(__CPROVER_r_ok(*x2, sizeof(**x2)), "deref x2 r_ok");
  __CPROVER_assert(!__CPROVER_same_object(*x2, old_x2), "x2 updated");
}