Translate asserts and throws to PRECONDITIONS and INVARIANTS

Author: NlightNFotis

src/goto-symex/build_goto_trace.cpp

@@ -92,9 +92,7 @@ exprt build_full_lhs_rec(
           id==ID_byte_extract_big_endian)
   {
     exprt tmp=src_original;
-    DATA_INVARIANT(
-      tmp.operands().size() == 2,
-      "byte_extract_exprt should have two operands.");
+    PRECONDITION(tmp.operands().size() == 2);
     tmp.op0()=build_full_lhs_rec(prop_conv, ns, tmp.op0(), src_ssa.op0());
 
     // re-write into big case-split
@@ -224,7 +222,7 @@ void build_goto_trace(
       else if(it->is_atomic_end() && current_time<0)
         current_time*=-1;
 
-      assert(current_time>=0);
+      PRECONDITION(current_time>=0);
       // move any steps gathered in an atomic section
 
       if(time_before<0)

src/goto-symex/goto_symex_state.cpp

@@ -51,8 +51,7 @@ void goto_symex_statet::level0t::operator()(
 
   const symbolt *s;
   const bool found_l0 = !ns.lookup(obj_identifier, s);
-  DATA_INVARIANT(
-    found_l0, "level0: failed to find " + id2string(obj_identifier));
+  INVARIANT(found_l0, "level0: failed to find " + id2string(obj_identifier));
 
   // don't rename shared variables or functions
   if(s->type.id()==ID_code ||
@@ -187,8 +186,7 @@ bool goto_symex_statet::constant_propagation_reference(const exprt &expr) const
   }
   else if(expr.id()==ID_member)
   {
-    DATA_INVARIANT(
-      expr.operands().size() == 1, "member_exprt takes one operand.");
+    PRECONDITION(expr.operands().size() == 1);
 
     return constant_propagation_reference(expr.op0());
   }
@@ -495,12 +493,9 @@ void goto_symex_statet::rename(
   }
   else if(expr.id()==ID_address_of)
   {
-    DATA_INVARIANT(
-      expr.operands().size() == 1, "address_of should have a single operand");
+    PRECONDITION(expr.operands().size() == 1);
     rename_address(expr.op0(), ns, level);
-    DATA_INVARIANT(
-      expr.type().id() == ID_pointer,
-      "type of address_of should be ID_pointer");
+    PRECONDITION(expr.type().id() == ID_pointer);
     expr.type().subtype()=expr.op0().type();
   }
   else

src/goto-symex/partial_order_concurrency.cpp

@@ -198,7 +198,7 @@ exprt partial_order_concurrencyt::before(
         binary_relation_exprt(clock(e1, ax), ID_lt, clock(e2, ax)));
   }
 
-  assert(!ops.empty());
+  POSTCONDITION(!ops.empty());
 
   return conjunction(ops);
 }

src/goto-symex/postcondition.cpp

@@ -76,23 +76,19 @@ bool postconditiont::is_used_address_of(
   }
   else if(expr.id()==ID_index)
   {
-    DATA_INVARIANT(
-      expr.operands().size() == 2, "index_exprt takes two operands.");
-
+    PRECONDITION(expr.operands().size() == 2);
     return
       is_used_address_of(expr.op0(), identifier) ||
       is_used(expr.op1(), identifier);
   }
   else if(expr.id()==ID_member)
   {
-    DATA_INVARIANT(
-      expr.operands().size() == 1, "member_exprt takes one operand.");
+    PRECONDITION(expr.operands().size() == 1);
     return is_used_address_of(expr.op0(), identifier);
   }
   else if(expr.id()==ID_dereference)
   {
-    DATA_INVARIANT(
-      expr.operands().size() == 1, "dereference_exprt takes one operand.");
+    PRECONDITION(expr.operands().size() == 1);
     return is_used(expr.op0(), identifier);
   }
 
@@ -158,8 +154,7 @@ bool postconditiont::is_used(
   if(expr.id()==ID_address_of)
   {
     // only do index!
-    DATA_INVARIANT(
-      expr.operands().size() == 1, "address_of_exprt takes one operand.");
+    PRECONDITION(expr.operands().size() == 1);
     return is_used_address_of(expr.op0(), identifier);
   }
   else if(expr.id()==ID_symbol &&
@@ -173,8 +168,7 @@ bool postconditiont::is_used(
   }
   else if(expr.id()==ID_dereference)
   {
-    DATA_INVARIANT(
-      expr.operands().size() == 1, "dereference_exprt takes one operand.");
+    PRECONDITION(expr.operands().size() == 1);
 
     // aliasing may happen here
 

src/goto-symex/precondition.cpp

@@ -78,21 +78,18 @@ void preconditiont::compute_address_of(exprt &dest)
   }
   else if(dest.id()==ID_index)
   {
-    DATA_INVARIANT(
-      dest.operands().size() == 2, "index_exprt takes two operands.");
+    PRECONDITION(dest.operands().size() == 2);
     compute_address_of(dest.op0());
     compute(dest.op1());
   }
   else if(dest.id()==ID_member)
   {
-    DATA_INVARIANT(
-      dest.operands().size() == 1, "member_exprt takes one operand.");
+    PRECONDITION(dest.operands().size() == 1);
     compute_address_of(dest.op0());
   }
   else if(dest.id()==ID_dereference)
   {
-    DATA_INVARIANT(
-      dest.operands().size() == 1, "dereference_exprt takes one operand.");
+    PRECONDITION(dest.operands().size() == 1);
     compute(dest.op0());
   }
 }
@@ -107,14 +104,12 @@ void preconditiont::compute_rec(exprt &dest)
   if(dest.id()==ID_address_of)
   {
     // only do index!
-    DATA_INVARIANT(
-      dest.operands().size() == 1, "address_of_exprt takes one operand.");
+    PRECONDITION(dest.operands().size() == 1);
     compute_address_of(dest.op0());
   }
   else if(dest.id()==ID_dereference)
   {
-    DATA_INVARIANT(
-      dest.operands().size() == 1, "dereference_exprt takes one operand.");
+    PRECONDITION(dest.operands().size() == 1);
 
     const irep_idt &lhs_identifier=SSA_step.ssa_lhs.get_object_name();
 

src/goto-symex/slice_by_trace.cpp

@@ -79,6 +79,13 @@ void symex_slice_by_tracet::slice_by_trace(
   {
     exprt g_copy(*i);
 
+    INVARIANT(
+    	g_copy.id() == ID_symbol || 
+    	g_copy.id() == ID_not ||
+    	g_copy.id() == ID_and ||
+    	g_copy.id() == ID_constant,
+    	"guards should only be and, symbol, constant, or `not'");
+
     if(g_copy.id()==ID_symbol || g_copy.id() == ID_not)
     {
       g_copy.make_not();
@@ -94,7 +101,7 @@ void symex_slice_by_tracet::slice_by_trace(
     }
     else if(!(g_copy.id()==ID_constant))
     {
-      throw "guards should only be and, symbol, constant, or `not'";
+      UNHANDLED_CASE;
     }
   }
 
@@ -219,9 +226,9 @@ void symex_slice_by_tracet::parse_events(std::string read_line)
     const std::string::size_type vnext=read_line.find(",", vidx);
     std::string event=read_line.substr(vidx, vnext - vidx);
     eis.insert(event);
-    if((!alphabet.empty()) &&
-       ((alphabet.count(event)!=0)!=alphabet_parity))
-      throw "trace uses symbol not in alphabet: "+event;
+    PRECONDITION(!alphabet.empty());
+    INVARIANT((alphabet.count(event) != 0) == alphabet_parity, 
+    	"trace uses symbol not in alphabet: " + event);
     if(vnext==std::string::npos)
       break;
     vidx=vnext;

src/goto-symex/symex_assign.cpp

@@ -37,7 +37,7 @@ void goto_symext::symex_assign(
 
     if(statement==ID_function_call)
     {
-      assert(!side_effect_expr.operands().empty());
+      PRECONDITION(!side_effect_expr.operands().empty());
 
       if(side_effect_expr.op0().id()!=ID_symbol)
         throw "symex_assign: expected symbol as function";
@@ -96,7 +96,7 @@ exprt goto_symext::add_to_lhs(
 
   if(tmp_what.id()!=ID_symbol)
   {
-    assert(tmp_what.operands().size()>=1);
+    PRECONDITION(tmp_what.operands().size() >= 1);
     tmp_what.op0().make_nil();
   }
 
@@ -106,12 +106,12 @@ exprt goto_symext::add_to_lhs(
 
   while(p->is_not_nil())
   {
-    assert(p->id()!=ID_symbol);
-    assert(p->operands().size()>=1);
+    PRECONDITION(p->id()!=ID_symbol);
+    PRECONDITION(p->operands().size()>=1);
     p=&p->op0();
   }
 
-  assert(p->is_nil());
+  PRECONDITION(p->is_nil());
 
   *p=tmp_what;
   return new_lhs;
@@ -172,9 +172,7 @@ void goto_symext::symex_assign_rec(
           lhs.id()==ID_complex_imag)
   {
     // this is stuff like __real__ x = 1;
-    DATA_INVARIANT(
-      lhs.operands().size() == 1,
-      "exprts with id ID_complex_real or ID_complex_imag take one operand.");
+    PRECONDITION(lhs.operands().size() == 1);
 
     exprt new_rhs=exprt(ID_complex, lhs.op0().type());
     new_rhs.operands().resize(2);
@@ -284,7 +282,6 @@ void goto_symext::symex_assign_typecast(
   assignment_typet assignment_type)
 {
   // these may come from dereferencing on the lhs
-
   PRECONDITION(lhs.operands().size() == 1);
 
   exprt rhs_typecasted=rhs;
@@ -307,7 +304,8 @@ void goto_symext::symex_assign_array(
   // lhs must be index operand
   // that takes two operands: the first must be an array
   // the second is the index
-  DATA_INVARIANT(lhs.operands().size() == 2, "index_exprt takes two operands");
+  DATA_INVARIANT(lhs.operands().size() == 2, 
+  	"index_exprt takes two operands: first must be array; second must be the index");
 
   const exprt &lhs_array=lhs.array();
   const exprt &lhs_index=lhs.index();
@@ -368,8 +366,7 @@ void goto_symext::symex_assign_struct_member(
   // typecasts involved? C++ does that for inheritance.
   if(lhs_struct.id()==ID_typecast)
   {
-    DATA_INVARIANT(
-      lhs_struct.operands().size() == 1, "typecast_exprt takes one operand.");
+    PRECONDITION(lhs_struct.operands().size() == 1);
 
     if(lhs_struct.op0().id() == ID_null_object)
     {

src/goto-symex/symex_atomic_section.cpp

@@ -17,9 +17,9 @@ void goto_symext::symex_atomic_begin(statet &state)
     return;
 
   // we don't allow any nesting of atomic sections
-  if(state.atomic_section_id!=0)
-    throw "nested atomic section detected at "+
-      state.source.pc->source_location.as_string();
+  INVARIANT(state.atomic_section_id == 0, 
+  	"nested atomic section detected at " +
+      state.source.pc->source_location.as_string());
 
   state.atomic_section_id=++atomic_section_counter;
   state.read_in_atomic_section.clear();
@@ -36,8 +36,7 @@ void goto_symext::symex_atomic_end(statet &state)
   if(state.guard.is_false())
     return;
 
-  if(state.atomic_section_id==0)
-    throw "ATOMIC_END unmatched"; // NOLINT(readability/throw)
+  INVARIANT(state.atomic_section_id != 0, "ATOMIC_END unmatched");
 
   const unsigned atomic_section_id=state.atomic_section_id;
   state.atomic_section_id=0;
@@ -51,7 +50,7 @@ void goto_symext::symex_atomic_end(statet &state)
     r.set_level_2(r_it->second.first);
 
     // guard is the disjunction over reads
-    assert(!r_it->second.second.empty());
+    PRECONDITION(!r_it->second.second.empty());
     guardt read_guard(r_it->second.second.front());
     for(std::list<guardt>::const_iterator
         it=++(r_it->second.second.begin());
@@ -77,7 +76,7 @@ void goto_symext::symex_atomic_end(statet &state)
     w.set_level_2(state.level2.current_count(w.get_identifier()));
 
     // guard is the disjunction over writes
-    assert(!w_it->second.empty());
+    PRECONDITION(!w_it->second.empty());
     guardt write_guard(w_it->second.front());
     for(std::list<guardt>::const_iterator
         it=++(w_it->second.begin());