diff options
| author |  wuestholz <unknown> | 2015-01-09 15:52:37 +0100 |
|---|---|---|
| committer | wuestholz <unknown> | 2015-01-09 15:52:37 +0100 |
| commit | 62f2f66e8d5fce4e9c80c0eebabd369ee0cc22d9 (patch) | |
| tree | abd262bb335d9e4e213e6afafc7f77941886e531 | |
| parent | b1d0db908bb3cfe22f6162eb7930492f3c548e01 (diff) | |
Made invariant of class 'StmtList' robust by:
- adding private field
- exposing read-only list
- copying incoming list
(with help from David Rohr)
| -rw-r--r-- | Source/Core/AbsyCmd.cs | 20 |
1 files changed, 15 insertions, 5 deletions
diff --git a/Source/Core/AbsyCmd.cs b/Source/Core/AbsyCmd.cs index 6bc41b5f..9b73ffa7 100644 --- a/Source/Core/AbsyCmd.cs +++ b/Source/Core/AbsyCmd.cs @@ -74,7 +74,18 @@ namespace Microsoft.Boogie { public class StmtList {
[Rep]
- public readonly List<BigBlock/*!*/>/*!*/ BigBlocks;
+ private readonly List<BigBlock/*!*/>/*!*/ bigBlocks;
+
+ public IList<BigBlock/*!*/>/*!*/ BigBlocks
+ {
+ get
+ {
+ Contract.Ensures(Contract.Result<IList<BigBlock>>() != null);
+ Contract.Ensures(Contract.Result<IList<BigBlock>>().IsReadOnly);
+ return this.bigBlocks.AsReadOnly();
+ }
+ }
+
public List<Cmd> PrefixCommands;
public readonly IToken/*!*/ EndCurly;
public StmtList ParentContext;
@@ -83,16 +94,15 @@ namespace Microsoft.Boogie { [ContractInvariantMethod]
void ObjectInvariant() {
Contract.Invariant(EndCurly != null);
- Contract.Invariant(cce.NonNullElements(BigBlocks));
+ Contract.Invariant(cce.NonNullElements(this.bigBlocks));
Contract.Invariant(cce.NonNullElements(Labels));
}
-
- public StmtList([Captured] List<BigBlock/*!*/>/*!*/ bigblocks, IToken endCurly) {
+ public StmtList(IList<BigBlock/*!*/>/*!*/ bigblocks, IToken endCurly) {
Contract.Requires(endCurly != null);
Contract.Requires(cce.NonNullElements(bigblocks));
Contract.Requires(bigblocks.Count > 0);
- this.BigBlocks = bigblocks;
+ this.bigBlocks = new List<BigBlock>(bigblocks);
this.EndCurly = endCurly;
}
|