File: intra.i

package info (click to toggle)
frama-c 20161101%2Bsilicon%2Bdfsg-5
  • links: PTS, VCS
  • area: main
  • in suites: stretch
  • size: 42,324 kB
  • ctags: 35,695
  • sloc: ml: 200,142; ansic: 31,465; makefile: 2,334; sh: 1,643; lisp: 259; python: 85; asm: 26
file content (117 lines) | stat: -rw-r--r-- 2,623 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
 
/* run.config
   EXECNOW: make -s tests/journal/intra.cmxs
   EXECNOW: BIN intra_journal.ml @frama-c@ -load-module ./tests/journal/intra -journal-enable -journal-name tests/journal/result/intra_journal.ml tests/journal/intra.i > /dev/null 2> /dev/null
   CMD: @frama-c@ -load-module ./tests/journal/intra
   OPT: -load-script tests/journal/result/intra_journal -journal-disable
*/

/* Waiting for results such as:
 * spare code analysis removes statements having variables with
 * prefix "spare_"
 *
 * slicing analysis removes statement having variables with
 * prefix "spare_" and "any_"
 */

int G;

int tmp (int a) {
  int x = a;
  //@ assert x == a ;
  int w = 1;
  //@ assert w == 1 ; // w is not spare or else
                      // the assertion should be removed !
  int spare_z = 1;
  int spare_y = a+spare_z;
  return x;
}

int param (int a, int spare_b) {
  return a;
}

int spare_called_fct (int a) {
  return a;
}

int two_outputs (int a, int b) {
  G += b;
  return a;
}

int call_two_outputs (void) {
  int x, spare_y;
  int any_b = 1;
  int any_a = 2;
  int a = 1;
  int b = any_b;
  x = two_outputs (a, b);
  G = 1; /* don't use b = any_b; */
  b = 2;
  a = any_a;
  spare_y = two_outputs (a, b);
      /* don't use spare_y so don't use a = any_a */
  return x;
}

void assign (int *p, int *q) {
  *p = *q ;
}

int loop (int x, int y, int z) {
  int i = 0;
  //@ assert i < z ;
  //@ loop invariant i < y ;
  /* should keep y in sparecode analysis even if it is not used in the function */
  while (i < x) {
    i ++;
  }
  return i;
}

void stop(void) __attribute__ ((noreturn)) ;

int main (int noreturn, int halt) {
  int res = 0;
  int spare_tmp = 3;
  int spare_param = 2 + spare_tmp;
  int spare_ref = 3;
  int x = 1;
  int y = 2;
  res += param (2, spare_param);
  res += tmp (4);
  spare_called_fct (5);
  res += call_two_outputs ();
  res += loop (10, 15, 20);
  assign (&x, &spare_ref) ; /* <- Here, best can be done for spare analysis */
  assign (&x, &y) ;
  if (noreturn) {
    if (halt)
      stop () ;
    else
      while (1);
    //@ assert \false ; // What should be done with
                        // assertions related to dead code?
    }

  return res + G + x;
}

/*-------------------------------------*/
struct { struct { int x; int y; } a; int b; } X10;
int Y10;
int f10 (int x) {
  //@ slice pragma expr X10;
  //@ slice pragma expr X10.a;
  //@ slice pragma expr X10.a.x;
  //@ slice pragma expr Y10;
  //@ assert X10.a.x >= 0;
  return x;
}
int main2 () {
  Y10 = 0;
  X10.b = 0;
  X10.a.y += f10 (3);
  return X10.a.x + X10.a.y;
}
/*-------------------------------------*/