diff options
| author |  0biha <unknown> | 2014-12-19 12:53:21 +0100 |
|---|---|---|
| committer | 0biha <unknown> | 2014-12-19 12:53:21 +0100 |
| commit | d79ab18b7b02634e78b7b189387f231a9ff311db (patch) | |
| tree | e5b92a3bce41901fa4138df6a24c794922d1b3e6 /Source/Core/AbsyCmd.cs | |
| parent | 9de8904eafe0bd9196ce49fec8bbce22bde96d27 (diff) | |
Made 2 invariants of type 'AssignCmd' robust by
-replacing public fields by private fields + getters/setters,
-making setters and constructor create a copy of the arguments,
-making getters return read-only lists.
Diffstat (limited to 'Source/Core/AbsyCmd.cs')
| -rw-r--r-- | Source/Core/AbsyCmd.cs | 38 |
1 files changed, 32 insertions, 6 deletions
diff --git a/Source/Core/AbsyCmd.cs b/Source/Core/AbsyCmd.cs index 3b369863..2c00bd8b 100644 --- a/Source/Core/AbsyCmd.cs +++ b/Source/Core/AbsyCmd.cs @@ -1269,12 +1269,38 @@ namespace Microsoft.Boogie { // class for parallel assignments, which subsumes both the old
// SimpleAssignCmd and the old MapAssignCmd
public class AssignCmd : Cmd {
- public List<AssignLhs/*!*/>/*!*/ Lhss;
- public List<Expr/*!*/>/*!*/ Rhss;
+ private List<AssignLhs/*!*/>/*!*/ _lhss;
+
+ public IList<AssignLhs/*!*/>/*!*/ Lhss {
+ get {
+ Contract.Ensures(cce.NonNullElements(Contract.Result<IList<AssignLhs>>()));
+ Contract.Ensures(Contract.Result<IList<AssignLhs>>().IsReadOnly);
+ return this._lhss.AsReadOnly();
+ }
+ set {
+ Contract.Requires(cce.NonNullElements(value));
+ this._lhss = new List<AssignLhs>(value);
+ }
+ } + + private List<Expr/*!*/>/*!*/ _rhss;
+
+ public IList<Expr/*!*/>/*!*/ Rhss {
+ get {
+ Contract.Ensures(cce.NonNullElements(Contract.Result<IList<Expr>>()));
+ Contract.Ensures(Contract.Result<IList<Expr>>().IsReadOnly);
+ return this._rhss.AsReadOnly();
+ }
+ set {
+ Contract.Requires(cce.NonNullElements(value));
+ this._rhss = new List<Expr>(value);
+ }
+ }
+
[ContractInvariantMethod]
void ObjectInvariant() {
- Contract.Invariant(cce.NonNullElements(Lhss));
- Contract.Invariant(cce.NonNullElements(Rhss));
+ Contract.Invariant(cce.NonNullElements(this._lhss));
+ Contract.Invariant(cce.NonNullElements(this._rhss));
}
@@ -1283,8 +1309,8 @@ namespace Microsoft.Boogie { Contract.Requires(tok != null);
Contract.Requires(cce.NonNullElements(rhss));
Contract.Requires(cce.NonNullElements(lhss));
- Lhss = lhss;
- Rhss = rhss;
+ this._lhss = lhss;
+ this._rhss = rhss;
}
public override void Emit(TokenTextWriter stream, int level) {
|