File: sizeof.res.oracle

package info (click to toggle)
frama-c 20161101%2Bsilicon%2Bdfsg-5
  • links: PTS, VCS
  • area: main
  • in suites: stretch
  • size: 42,324 kB
  • ctags: 35,695
  • sloc: ml: 200,142; ansic: 31,465; makefile: 2,334; sh: 1,643; lisp: 259; python: 85; asm: 26
file content (138 lines) | stat: -rw-r--r-- 4,329 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
 
[kernel] Parsing share/libc/__fc_builtin_for_normalization.i (no preprocessing)
[kernel] Parsing tests/value/sizeof.i (no preprocessing)
[value] Analyzing a complete application starting at main
[value] Computing initial state
[value] Initial state computed
[value:initial-state] Values of globals at initialization
  sz_str ∈ {0}
  sz_typ ∈ {0}
  align_str ∈ {0}
  align_typ ∈ {0}
  s1 ∈ {0}
  i ∈ [--..--]
[value] computing for function main1 <- main.
        Called from tests/value/sizeof.i:38.
tests/value/sizeof.i:10:[value] assertion got status valid.
tests/value/sizeof.i:14:[value] assertion got status valid.
tests/value/sizeof.i:17:[value] assertion got status valid.
[value] Recording results for main1
[value] Done for function main1
[value] computing for function main2 <- main.
        Called from tests/value/sizeof.i:39.
tests/value/sizeof.i:32:[value] Assigning imprecise value to p.
        The imprecision originates from Arithmetic {tests/value/sizeof.i:32}
tests/value/sizeof.i:33:[value] warning: accessing out of bounds index.
                 assert (unsigned int)(sizeof(s1.t) - (unsigned int)i) < 10;
tests/value/sizeof.i:33:[value] warning: out of bounds write.
                 assert \valid(&p->t[(unsigned int)(sizeof(s1.t) - (unsigned int)i)]);
tests/value/sizeof.i:34:[value] warning: accessing out of bounds index.
                 assert (unsigned int)(sizeof(s1.t) - (unsigned int)i) < 10;
tests/value/sizeof.i:34:[value] warning: out of bounds write.
                 assert \valid(&p->t[(unsigned int)(sizeof(s1.t) - (unsigned int)i)]);
[value] Recording results for main2
[value] Done for function main2
[value] Recording results for main
[value] done for function main
[scope:rm_asserts] removing 2 assertion(s)
[value] ====== VALUES COMPUTED ======
[value:final-states] Values at end of function main1:
  sz_str ∈ {4}
  sz_typ ∈ {1}
  align_str ∈ {1}
  align_typ ∈ {4}
[value:final-states] Values at end of function main2:
  s1 ∈ [--..--]
  p ∈ {{ &s1 + [-36..36] }}
[value:final-states] Values at end of function main:
  sz_str ∈ {4}
  sz_typ ∈ {1}
  align_str ∈ {1}
  align_typ ∈ {4}
  s1 ∈ [--..--]
[from] Computing for function main1
[from] Done for function main1
[from] Computing for function main2
[from] Done for function main2
[from] Computing for function main
[from] Done for function main
[from] ====== DEPENDENCIES COMPUTED ======
       These dependencies hold at termination for the executions that terminate:
[from] Function main1:
  sz_str FROM \nothing
  sz_typ FROM \nothing
  align_str FROM \nothing
  align_typ FROM \nothing
[from] Function main2:
  s1 FROM i (and SELF)
[from] Function main:
  sz_str FROM \nothing
  sz_typ FROM \nothing
  align_str FROM \nothing
  align_typ FROM \nothing
  s1 FROM i (and SELF)
[from] ====== END OF DEPENDENCIES ======
[inout] Out (internal) for function main1:
          sz_str; sz_typ; align_str; align_typ
[inout] Inputs for function main1:
          \nothing
[inout] Out (internal) for function main2:
          s1; p
[inout] Inputs for function main2:
          i
[inout] Out (internal) for function main:
          sz_str; sz_typ; align_str; align_typ; s1
[inout] Inputs for function main:
          i
/* Generated by Frama-C */
struct s {
   int t[10] ;
};
int sz_str;
int sz_typ;
int align_str;
int align_typ;
void main1(void)
{
  sz_str = (int)sizeof("ONE");
  /*@ assert sz_str ≡ sizeof("ONE"); */ ;
  align_str = (int)__alignof__("FOO");
  sz_typ = (int)sizeof(char);
  /*@ assert sz_typ ≡ sizeof(char); */ ;
  align_typ = (int)__alignof__(char *);
  /*@ assert sizeof("BLA") ≢ sizeof("FOOBAR"); */ ;
  return;
}

struct s s1;
int volatile i;
void main2(void)
{
  struct s *p;
  p = & s1 + (int)(& s1);
  /*@ assert
      Value: index_bound: (unsigned int)(sizeof(s1.t) - (unsigned int)i) < 10;
  */
  /*@ assert
      Value: mem_access:
        \valid(&p->t[(unsigned int)(sizeof(s1.t) - (unsigned int)i)]);
  */
  p->t[sizeof(s1.t) - (unsigned int)i] = 1;
  /*@ assert
      Value: index_bound: (unsigned int)(sizeof(s1.t) - (unsigned int)i) < 10;
  */
  /*@ assert
      Value: mem_access:
        \valid(&p->t[(unsigned int)(sizeof(s1.t) - (unsigned int)i)]);
  */
  p->t[sizeof(s1.t) - (unsigned int)i] = 2;
  return;
}

void main(void)
{
  main1();
  main2();
  return;
}