• Top
    • Documentation
    • Books
    • Boolean-reasoning
    • Projects
      • Apt
      • Acre
      • Milawa
      • Smtlink
      • Aleobft
      • Abnf
      • Vwsim
      • Isar
      • Wp-gen
      • Dimacs-reader
      • Pfcs
      • Legacy-defrstobj
      • Proof-checker-array
      • Soft
      • Farray
      • Rp-rewriter
      • Instant-runoff-voting
      • Imp-language
      • Sidekick
      • Leftist-trees
      • C
        • Syntax-for-tools
        • Atc
        • Language
          • Abstract-syntax
          • Integer-ranges
          • Dynamic-semantics
            • Exec
            • Exec-arrsub
            • Exec-expr-pure
            • Exec-expr-asg
            • Init-value-to-value
            • Exec-memberp
            • Exec-address
              • Apconvert-expr-value
              • Exec-member
              • Exec-unary
              • Init-scope
              • Exec-fun
              • Eval-iconst
              • Exec-block-item
              • Exec-binary-strict-pure
              • Exec-expr-pure-list
              • Eval-binary-strict-pure
              • Exec-expr-call-or-pure
              • Exec-block-item-list
              • Exec-stmt-while
              • Exec-indir
              • Exec-stmt
              • Exec-ident
              • Eval-cast
              • Exec-cast
              • Eval-unary
              • Exec-const
              • Exec-initer
              • Exec-expr-call-or-asg
              • Eval-const
              • Exec-expr-call
            • Static-semantics
            • Grammar
            • Integer-formats
            • Types
            • Portable-ascii-identifiers
            • Values
            • Integer-operations
            • Computation-states
            • Object-designators
            • Implementation-environments
            • Operations
            • Errors
            • Tag-environments
            • Function-environments
            • Character-sets
            • Flexible-array-member-removal
            • Arithmetic-operations
            • Pointer-operations
            • Bytes
            • Keywords
            • Real-operations
            • Array-operations
            • Scalar-operations
            • Structure-operations
          • Representation
          • Transformation-tools
          • Pack
        • Java
        • Taspi
        • Bitcoin
        • Des
        • Ethereum
        • X86isa
        • Sha-2
        • Yul
        • Riscv
        • Zcash
        • Proof-checker-itp13
        • Regex
        • ACL2-programming-language
        • Json
        • Jfkr
        • Equational
        • Cryptography
        • Poseidon
        • Where-do-i-place-my-book
        • Bigmems
        • Builtins
        • Axe
        • Execloader
        • Solidity
        • Leo
        • Paco
        • Concurrent-programs
      • Debugging
      • Std
      • Proof-automation
      • Macro-libraries
      • ACL2
      • Interfacing-tools
      • Hardware-verification
      • Software-verification
      • Math
      • Testing-utilities
    • Dynamic-semantics

    Exec-address

    Execute & on an expression value [C:6.5.3.2/1] [C:6.5.3.2/3].

    Signature
    (exec-address arg) → eval
    Arguments
    arg — Guard (expr-valuep arg).
    Returns
    eval — Type (expr-value-resultp eval).

    The expression that the operator & is applied to must be an lvalue [C:6.5.3.2/1], which in our formalization means that we apply this operator to an expression value (returned by the lvalue). The expression value must contain an object designator, because otherwise the argument expression was not an lvalue. We extract the object designator and we return a pointer value, whose type is determined by the value in the expression value. We return the value as an expression value without object designator, for uniformity with other ACL2 functions for expression execution.

    Here we formalize the actual application of & to the expression value returned by an expression. We do not formalize here the fact that &*E is the same as E in the sense in that case neither * nor & are evaluated [C:6.5.3.2/4], whether the * is explicit or implied by []; we formalize that elsewhere, while here we assume that the argument expression of & has been evaluated (because the special cases above do not hold), and the resulting expression value is passed here.

    We perform no array-to-pointer conversion, because that conversion is not performed for the operand of & [C:6.3.2.1/3].

    Definitions and Theorems

    Function: exec-address

    (defun exec-address (arg)
  (declare (xargs :guard (expr-valuep arg)))
  (let ((__function__ 'exec-address))
    (declare (ignorable __function__))
    (b* ((objdes (expr-value->object arg))
         ((unless objdes)
          (error (list :not-lvalue-result (expr-value-fix arg))))
         (type (type-of-value (expr-value->value arg))))
      (make-expr-value
           :value (make-value-pointer :core (pointer-valid objdes)
                                      :reftype type)
           :object nil))))

    Theorem: expr-value-resultp-of-exec-address

    (defthm expr-value-resultp-of-exec-address
  (b* ((eval (exec-address arg)))
    (expr-value-resultp eval))
  :rule-classes :rewrite)

    Theorem: exec-address-of-expr-value-fix-arg

    (defthm exec-address-of-expr-value-fix-arg
  (equal (exec-address (expr-value-fix arg))
         (exec-address arg)))

    Theorem: exec-address-expr-value-equiv-congruence-on-arg

    (defthm exec-address-expr-value-equiv-congruence-on-arg
  (implies (expr-value-equiv arg arg-equiv)
           (equal (exec-address arg)
                  (exec-address arg-equiv)))
  :rule-classes :congruence)