package frama-c

  1. Overview
  2. Docs
Platform dedicated to the analysis of source code written in C

Install 

dune-project
 Dependency

frama-c.com Readme Edit opam file Versions (25)

Authors

  1. M
    Michele Alberti
  2. T
    Thibaud Antignac
  3. G
    Gergö Barany
  4. P
    Patrick Baudin
  5. T
    Thibaut Benjamin
  6. A
    Allan Blanchard
  7. L
    Lionel Blatter
  8. F
    François Bobot
  9. R
    Richard Bonichon
  10. Q
    Quentin Bouillaguet
  11. D
    David Bühler
  12. Z
    Zakaria Chihani
  13. L
    Loïc Correnson
  14. J
    Julien Crétin
  15. P
    Pascal Cuoq
  16. Z
    Zaynah Dargaye
  17. B
    Basile Desloges
  18. J
    Jean-Christophe Filliâtre
  19. P
    Philippe Herrmann
  20. M
    Maxime Jacquemin
  21. F
    Florent Kirchner
  22. A
    Alexander Kogtenkov
  23. T
    Tristan Le Gall
  24. J
    Jean-Christophe Léchenet
  25. M
    Matthieu Lemerre
  26. D
    Dara Ly
  27. D
    David Maison
  28. C
    Claude Marché
  29. A
    André Maroneze
  30. T
    Thibault Martin
  31. F
    Fonenantsoa Maurica
  32. M
    Melody Méaulle
  33. B
    Benjamin Monate
  34. Y
    Yannick Moy
  35. P
    Pierre Nigron
  36. A
    Anne Pacalet
  37. V
    Valentin Perrelle
  38. G
    Guillaume Petiot
  39. D
    Dario Pinto
  40. V
    Virgile Prevosto
  41. A
    Armand Puccetti
  42. F
    Félix Ridoux
  43. V
    Virgile Robles
  44. J
    Jan Rochel
  45. M
    Muriel Roger
  46. J
    Julien Signoles
  47. N
    Nicolas Stouls
  48. K
    Kostyantyn Vorobyov
  49. B
    Boris Yakobowski

Maintainers

  1. F
    frama-ci-bot@frama-c.com

Sources

frama-c-28.0-Nickel.tar.gz
sha256=29612882330ecb6eddd0b4ca3afc0492b70d0feb3379a1b8e893194c6e173983

doc/frama-c-wp.core/Wp/Sigs/index.html

Module Wp.SigsSource

Common Types and Signatures

General Definitions

Sourcetype 'a sequence = {
  1. pre : 'a;
  2. post : 'a;
}
Sourcetype 'a binder = {
  1. bind : 'b 'c. 'a -> ('b -> 'c) -> 'b -> 'c;
}
Sourcetype equation =
  1. | Set of Lang.F.term * Lang.F.term
    (*

    Set(a,b) is a := b.

    *)
  2. | Assert of Lang.F.pred

Oriented equality or arbitrary relation

Sourcetype acs =
  1. | RW
    (*

    Read-Write Access

    *)
  2. | RD
    (*

    Read-Only Access

    *)
  3. | OBJ
    (*

    Valid Object Pointer

    *)

Access conditions

Sourcetype 'a value =
  1. | Val of Lang.F.term
  2. | Loc of 'a

Abstract location or concrete value

Sourcetype 'a rloc =
  1. | Rloc of Ctypes.c_object * 'a
  2. | Rrange of 'a * Ctypes.c_object * Lang.F.term option * Lang.F.term option

Contiguous set of locations

Sourcetype 'a sloc =
  1. | Sloc of 'a
  2. | Sarray of 'a * Ctypes.c_object * int
    (*

    full sized range (optimized assigns)

    *)
  3. | Srange of 'a * Ctypes.c_object * Lang.F.term option * Lang.F.term option
  4. | Sdescr of Lang.F.var list * 'a * Lang.F.pred

Structured set of locations

Sourcetype 'a region = (Ctypes.c_object * 'a sloc) list

Typed set of locations

Sourcetype 'a logic =
  1. | Vexp of Lang.F.term
  2. | Vloc of 'a
  3. | Vset of Wp__.Vset.vset list
  4. | Lset of 'a sloc list

Logical values, locations, or sets of

Sourcetype scope =
  1. | Enter
  2. | Leave

Scope management for locals and formals

Sourcetype 'a result =
  1. | R_loc of 'a
  2. | R_var of Lang.F.var

Container for the returned value of a function

Sourcetype polarity = [
  1. | `Positive
  2. | `Negative
  3. | `NoPolarity
]

Polarity of predicate compilation

Sourcetype frame = string * Definitions.trigger list * Lang.F.pred list * Lang.F.term * Lang.F.term

Frame Conditions. Consider a function phi(m) over memory m, we want memories m1,m2 and condition p such that p(m1,m2) -> phi(m1) = phi(m2).

  • name used for generating lemma
  • triggers for the lemma
  • conditions for the frame lemma to hold
  • mem1,mem2 to two memories for which the lemma holds

Reversing Models

It is sometimes possible to reverse memory models abstractions into ACSL left-values via the definitions below.

Sourcetype s_lval = s_host * s_offset list

Reversed ACSL left-value

Sourceand s_host =
  1. | Mvar of Frama_c_kernel.Cil_types.varinfo
    (*

    Variable

    *)
  2. | Mmem of Lang.F.term
    (*

    Pointed value

    *)
  3. | Mval of s_lval
    (*

    Pointed value of another abstract left-value

    *)
Sourceand s_offset =
  1. | Mfield of Frama_c_kernel.Cil_types.fieldinfo
  2. | Mindex of Lang.F.term
Sourcetype mval =
  1. | Mterm
    (*

    Not a state-related value

    *)
  2. | Maddr of s_lval
    (*

    The value is the address of an l-value in current memory

    *)
  3. | Mlval of s_lval * Lang.datakind
    (*

    The value is the value of an l-value in current memory

    *)
  4. | Mchunk of string * Lang.datakind
    (*

    The value is an abstract memory chunk (description)

    *)

Reversed abstract value

Sourcetype update =
  1. | Mstore of s_lval * Lang.F.term
    (*

    An update of the ACSL left-value with the given value

    *)

Reversed update

Memory Models

Sourcemodule type Chunk = sig ... end

Memory Chunks.

Sourcemodule type Sigma = sig ... end

Memory Environments.

Sourcemodule type Model = sig ... end

Memory Models.

C and ACSL Compilers

Sourcemodule type CodeSemantics = sig ... end

Compiler for C expressions

Sourcemodule type LogicSemantics = sig ... end

Compiler for ACSL expressions

Sourcemodule type LogicAssigns = sig ... end

Compiler for Performing Assigns

Sourcemodule type Compiler = sig ... end

All Compilers Together