SMV: reject CTL in LTLSPEC, and LTL in CTLSPEC

kroening · kroening · commit 9f214812641b · 2024-09-18T22:17:07.000-04:00
The SMV typechecker now rejects CTL when checking LTLSPEC, and LTL when
checking CTLSPEC.
diff --git a/regression/ebmc/smv/smv_ctlspec1.desc b/regression/ebmc/smv/smv_ctlspec1.desc
@@ -0,0 +1,7 @@
+CORE
+smv_ctlspec1.smv
+
+^file .* line 4: LTL operator not permitted here$
+^EXIT=2$
+^SIGNAL=0$
+--
diff --git a/regression/ebmc/smv/smv_ctlspec1.smv b/regression/ebmc/smv/smv_ctlspec1.smv
@@ -0,0 +1,4 @@
+MODULE main
+
+-- error, this is LTL
+SPEC F FALSE
diff --git a/regression/ebmc/smv/smv_ltlspec5.desc b/regression/ebmc/smv/smv_ltlspec5.desc
@@ -0,0 +1,7 @@
+CORE
+smv_ltlspec5.smv
+
+^file .* line 4: CTL operator not permitted here$
+^EXIT=2$
+^SIGNAL=0$
+--
diff --git a/regression/ebmc/smv/smv_ltlspec5.smv b/regression/ebmc/smv/smv_ltlspec5.smv
@@ -0,0 +1,4 @@
+MODULE main
+
+-- error, this is CTL
+LTLSPEC AF FALSE
diff --git a/src/smvlang/smv_typecheck.cpp b/src/smvlang/smv_typecheck.cpp
@@ -41,7 +41,7 @@ class smv_typecheckt:public typecheckt
 
   virtual ~smv_typecheckt() { }
 
-  typedef enum { INIT, TRANS, OTHER } modet;
+  typedef enum { INIT, TRANS, OTHER, LTL, CTL } modet;
 
   void convert(smv_parse_treet::modulet &smv_module);
   void convert(smv_parse_treet::mc_varst &vars);
@@ -936,25 +936,35 @@ void smv_typecheckt::typecheck(
   }
   else if(
     expr.id() == ID_AG || expr.id() == ID_AX || expr.id() == ID_AF ||
-    expr.id() == ID_EG || expr.id() == ID_EX || expr.id() == ID_EF ||
-    expr.id() == ID_X || expr.id() == ID_F || expr.id() == ID_G)
+    expr.id() == ID_EG || expr.id() == ID_EX || expr.id() == ID_EF)
   {
-    if(expr.operands().size()!=1)
-    {
-      error().source_location=expr.find_source_location();
-      error() << "Expected one operand for " << expr.id()
-              << " operator" << eom;
-      throw 0;
-    }
-
+    if(mode != CTL)
+      throw errort().with_location(expr.source_location()) << "CTL operator not permitted here";
+    expr.type()=bool_typet();
+    typecheck(to_unary_expr(expr).op(), expr.type(), mode);
+  }
+  else if(expr.id() == ID_X || expr.id() == ID_F || expr.id() == ID_G)
+  {
+    if(mode != LTL)
+      throw errort().with_location(expr.source_location()) << "LTL operator not permitted here";
     expr.type()=bool_typet();
-
     typecheck(to_unary_expr(expr).op(), expr.type(), mode);
   }
   else if(
     expr.id() == ID_EU || expr.id() == ID_ER || expr.id() == ID_AU ||
-    expr.id() == ID_AR || expr.id() == ID_U || expr.id() == ID_R)
+    expr.id() == ID_AR)
+  {
+    if(mode != CTL)
+      throw errort().with_location(expr.source_location()) << "CTL operator not permitted here";
+    auto &binary_expr = to_binary_expr(expr);
+    expr.type() = bool_typet();
+    typecheck(binary_expr.lhs(), expr.type(), mode);
+    typecheck(binary_expr.rhs(), expr.type(), mode);
+  }
+  else if(expr.id() == ID_U || expr.id() == ID_R)
   {
+    if(mode != LTL)
+      throw errort().with_location(expr.source_location()) << "LTL operator not permitted here";
     auto &binary_expr = to_binary_expr(expr);
     expr.type() = bool_typet();
     typecheck(binary_expr.lhs(), expr.type(), mode);
@@ -1194,11 +1204,17 @@ void smv_typecheckt::typecheck(
     mode=TRANS;
     break;
 
+  case smv_parse_treet::modulet::itemt::CTLSPEC:
+    mode = CTL;
+    break;
+
+  case smv_parse_treet::modulet::itemt::LTLSPEC:
+    mode = LTL;
+    break;
+
   case smv_parse_treet::modulet::itemt::DEFINE:
   case smv_parse_treet::modulet::itemt::INVAR:
   case smv_parse_treet::modulet::itemt::FAIRNESS:
-  case smv_parse_treet::modulet::itemt::CTLSPEC:
-  case smv_parse_treet::modulet::itemt::LTLSPEC:
   default:
     mode=OTHER;
   }
