Function_symbol (p.codex.1.0~rc4.doc.codex.operator.Operator.Function

The Codex static analysis library
- Quick start: verifying C code using Frama-C/Codex
- Tutorials
- Spatial Memory Safety with Dependent Types in Codex
- Extending Codex to a simple while language
- Overview: The While Language
- Lattices and Single Value Abstractions
- Interval Analysis on While Language
- Interval Analysis using Codex
- Library Type_parser
  - Type_parser
- Library codex
  - Codex
- Library codex.bdd
  - Bdd
- Library codex.binarytrace
  - Binarytrace
- Library codex.cfg
  - Cfg
- Library codex.codex_config
  - Codex_config
- Library codex.codex_log
  - Codex_log
- Library codex.compressor
  - Compressor
- Library codex.condition_map
  - Condition_map
- Library codex.datatype_sig
  - Datatype_sig
- Library codex.domains
  - Domains
- Library codex.emit_alarm
  - Emit_alarm
- Library codex.extstdlib
  - Extstdlib
- Library codex.file_to_html
  - File_to_html
- Library codex.fixpoint
  - Fixpoint
- Library codex.framac_ival
  - Framac_ival
- Library codex.gui
  - Gui
- Library codex.hashing
  - Hashing
- Library codex.het-hashtbl
  - HetHashtbl
- Library codex.hook
  - Hook
- Library codex.int_builtins
  - Int_builtins
- Library codex.interval_map
  - Interval_map
- Library codex.lattices
  - Lattices
- Library codex.online_nearest_common_ancestor_skiplist
  - Online_nearest_common_ancestor_skiplist
- Library codex.operator
  - Operator
- Library codex.record_time
  - Record_time
- Library codex.single_value_abstraction
  - Single_value_abstraction
- Library codex.smallmap
  - Smallmap
- Library codex.smtbackend
  - Smtbackend
- Library codex.stats
  - Stats
- Library codex.syntax_tree
  - Syntax_tree
- Library codex.terms
  - Terms
- Library codex.tracelog
  - Tracelog
- Library codex.treemap
  - Treemap
- Library codex.types
  - Types
- Library codex.union_find
  - Union_Find
- Library codex.units
  - Units
- Library codex.utils
- Library codex.while_ast
  - While_ast
- Library codex.whilelib
  - Whilelib
- Library immutable_array
  - Immutable_array
- Library interface
  - Interface
- Library ppx_while
  - Ppx_while
- Library type_parse_tree
  - Type_parse_tree
- Sources

Function symbol: Reusable tags that allow a building a term, i.e. a tagged representation of an expressions that composes transfer functions.

Sourcetype case = int

Some aliases for legibility

The case number of an enum

Phantom type parameters

These types are never instanciated as values. They are used as phantom parameters in GADTs to distinguish terms and function symboles based on the concrete value they represent.

Sourcetype boolean = private

| TypeBoolean

A boolean value, e.g. true or false

Sourcetype integer = private

| TypeInteger

An unbounded integer value, often represented by Z.t in the concrete

Sourcetype enum = private

| TypeEnum

An enum value: can take a fixed number of values depending on the enum type being considered.

Sourcetype bitvector = private

| TypeBitvector

A bitvector of size size We generally do not store the size; instead, most operation have a ~size parameter specifying the number of bits of the underlying operation.

Sourcetype binary = bitvector

Sourcetype memory = private

| TypeMemory

Arities

Sourcetype ar0 = private

| Ar0

A term of arity 0 is just a constant

Sourcetype 'a ar1 = private

| Ar1

A term of arity 1 is a unary operation (ex: boolean not). The 'a parameter represents the type of the argument.

Sourcetype ('a, 'b) ar2 = private

| Ar2

A term of arity 2 is a binary operation (ex: addition) The 'a parameter represents the type of the arguments.

Types

Sourcetype 'a typ =

| Boolean : boolean typ
| Integer : integer typ
| Enum : enum typ
| Binary : Units.In_bits.t -> binary typ
| Memory : memory typ

A GADT regrouping all our phantom type parameters

Sourcetype any_type =

| Any_type : 'a typ -> any_type

Existential wrapper for typ.

Function symbols

The type of function symbols takes two parameters:

'arg is the arity, i.e. the type of arguments needed to build this term. The arity should be either ar0, 'a ar1 or ('a, 'b) ar2.

'ret it the return type of the function symbol, i.e. the type of the term whose head is this function symbol.

Sourcetype ('arg, 'ret) function_symbol =

| True : (ar0, boolean) function_symbol
| False : (ar0, boolean) function_symbol
| And : ((boolean, boolean) ar2, boolean) function_symbol
| Or : ((boolean, boolean) ar2, boolean) function_symbol
| Not : (boolean ar1, boolean) function_symbol
| BoolUnion : ((boolean, boolean) ar2, boolean) function_symbol
| Biconst : Units.In_bits.t * Z.t -> (ar0, binary) function_symbol
(*
Bitvector constant with the given size and value.
*)
| Biadd : {
1. size : Units.In_bits.t;
2. flags : Flags.Biadd.t;
} -> ((binary, binary) ar2, binary) function_symbol
(*
Addition on bitvectors of size size. See biadd for the flag meanings.
*)
| Bisub : {
1. size : Units.In_bits.t;
2. flags : Flags.Biadd.t;
} -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector subtraction See biadd for the flag meanings.
*)
| Bimul : {
1. size : Units.In_bits.t;
2. flags : Flags.Bimul.t;
} -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector multiplication, See biadd for the flag meanings.
*)
| Biudiv : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector unsigned division.
*)
| Bisdiv : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector signed division. This is truncated (C99-like) integer division.
*)
| Biumod : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector unsigned modulo.
*)
| Bismod : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector signed modulo.
*)
| Bshl : {
1. size : Units.In_bits.t;
2. flags : Flags.Bshl.t;
} -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector left-shift
*)
| Bashr : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector arithmetic right shift (pad with top-bit)
*)
| Blshr : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector logical right shift (pad with zeros)
*)
| Band : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector bitwise and
*)
| Bor : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector bitwise or
*)
| Bxor : Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector bitwise xor
*)
| Beq : Units.In_bits.t -> ((binary, binary) ar2, boolean) function_symbol
(*
Bitvector equality
*)
| Bisle : Units.In_bits.t -> ((binary, binary) ar2, boolean) function_symbol
(*
Signed comparison between two bitvectors (using less-or-equal <=). Bitvectors are interpreted as integers in $[-2^{size-1}..-2^{size-1}-1]$ using two's complement.
*)
| Biule : Units.In_bits.t -> ((binary, binary) ar2, boolean) function_symbol
(*
Unsigned comparison between two bitvectors (using less-or-equal <=). Bitvectors are interpreted as positive integers in $[0..-2^{size}-1]$ .
*)
| Bconcat : Units.In_bits.t * Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
(*
Bitvector concatenation: the new bitvector's size is the sum of the sizes of the arguments. The first argument becomes the most significant bits.
*)
| Bextract : {
1. size : Units.In_bits.t;
2. index : Units.In_bits.t;
3. oldsize : Units.In_bits.t;
} -> (binary ar1, binary) function_symbol
(*
Extract a size of a bitvector of total size oldsize, starting at index. Should satisfy index + size <= oldsize.
*)
| Bsext : Units.In_bits.t -> (binary ar1, binary) function_symbol
(*
Sign-extend (pad left with topbit) the argument bitvector until it reaches the specified size.
*)
| Buext : Units.In_bits.t -> (binary ar1, binary) function_symbol
(*
Unsngned-extend (pad left with zero) the argument bitvector until it reaches the specified size.
*)
| Bofbool : Units.In_bits.t -> (boolean ar1, binary) function_symbol
(*
Turn a boolean into a bitvector: false is 0 and true is 1.
*)
| Bunion : int * Units.In_bits.t -> ((binary, binary) ar2, binary) function_symbol
| Bchoose : int * Units.In_bits.t -> (binary ar1, binary) function_symbol
| Iconst : Z.t -> (ar0, integer) function_symbol
(*
Integer constant
*)
| Iadd : ((integer, integer) ar2, integer) function_symbol
| Isub : ((integer, integer) ar2, integer) function_symbol
| Imul : ((integer, integer) ar2, integer) function_symbol
| Idiv : ((integer, integer) ar2, integer) function_symbol
(*
This is truncated (C99-like) integer division
*)
| Imod : ((integer, integer) ar2, integer) function_symbol
| Ishl : ((integer, integer) ar2, integer) function_symbol
| Ishr : ((integer, integer) ar2, integer) function_symbol
| Ior : ((integer, integer) ar2, integer) function_symbol
(*
Bitwise or, where negative integers are seen as prefixed by infinite ones
*)
| Ixor : ((integer, integer) ar2, integer) function_symbol
| Iand : ((integer, integer) ar2, integer) function_symbol
(*
Bitwise and, where negative integers are seen as prefixed by infinite ones
*)
| Ieq : ((integer, integer) ar2, boolean) function_symbol
| Ile : ((integer, integer) ar2, boolean) function_symbol
| Itimes : Z.t -> (integer ar1, integer) function_symbol
(*
Multiply an integer by a constant
*)
| EnumConst : case -> (ar0, enum) function_symbol
(*
An enum case with the given value
*)
| CaseOf : case -> (enum ar1, boolean) function_symbol
(*
true if the argument matches the given case, false otherwise.
*)

Sourcemodule Build : sig ... end

Builder for these terms. Note that we do not perform any hash-consing here.

Sourceval type_of : ('a, 'b) function_symbol -> 'b typ

Sourceval hash : ('a, 'b) function_symbol -> int

Sourceval equal : ('a, 'b) function_symbol -> ('c, 'd) function_symbol -> bool

Sourcemodule type PRETTY_ARG = sig ... end

Helper to build pretty-printers. We can pretty print a term if we have access to the tag (representing the operation) and we know how to pretty-print the arguments.

Sourcemodule type PRETTY_RESULT = sig ... end

Source

module Pretty
  (M : PRETTY_ARG) : 
  PRETTY_RESULT with type 'a t = 'a M.t and type 'a pack = 'a M.pack