Frama-C API - Frama_c_kernel

Functors for generic lattices implementations.

ACSL extensions registration module

Alarms Database.

Generation of default allocates \nothing clauses.

Alpha conversion.

Annotations in the AST. The AST should be computed before calling functions of this module.

Code transformation for inferring contracts from information given in GNU's extended assembly syntax. Registered as a transformation occurring after annotations table are filled.

Access to the CIL AST which must be used from Frama-C.

Compute diff information from an existing project.

AST manipulation utilities.

Module dedicated to asynchronous actions.

List with constant-time concat operation.

Abstraction of the base of an addressable memory zone, together with the validity of the zone.

Very low-level abstract functorial caches. Do not use them unless you understand what happens in this module, and do not forget that those caches are not aware of projects.

Some bit manipulations.

Bitvectors.

Untyped AST.

Helper functions for Cabs

Code to compute the control-flow graph of a function or file. This will fill in the preds and succs fields of Cil_types.stmt

CIL main API.

This module is meant to build C or ACSL expressions in a unified way. Compared to "classic" Cil functions it also avoid the necessity to provide a location everywhere.

Datatypes of some useful CIL types.

Internal printer for Cabs2cil.

Internal Cil printer.

Functors for building computations which use kernel datatypes.

The Abstract Syntax of CIL.

Reading and storing configuration files from the filesystem. Currently only used in Frama-C's GUI.

The C Lexer.

Experimental module

Command line parsing.

Useful high-level system operations.

Representation of Value's abstract memory.

Implementation of data flow analyses over user-supplied domains.

Implementation of data flow analyses over user-supplied domains.

A datatype provides useful values for types. It is a high-level API on top of module Type.

Type descriptor for safe unmarshalling.

Describe items of Source and Properties.

retrieve local variables with __fc_destructor attribute and add the appropriate calls to the corresponding destructor function when we exit the scope of the variable.

Module to perform dominators and postdominators analyses. This module was completely redesigned and provides many new functions.

Helper for Printing Dot-graphs.

Value accesses through dynamic typing.

Emitter. An emitter is the Frama-C entity which is able to emit annotations and property status. Thus you have to create (at least) one of your own if you want to do such tasks.

The module stores the current file,line, and working directory in a hidden internal state, modified by the three following functions.

Lattice signatures using the Bottom type: these lattices do not include a bottom element, and return `Bottom instead when needed. Except that, they are identical to the module signatures in Lattice_type.

Manages information related to possible exceptions thrown by each function in the AST.

Useful operations. This module does not depend of any of frama-c module.

Extension of OCaml's Hashtbl module.

Implementation of floating-point values of different precision, using the standard ocaml floating-point numbers in double precision. Long_Double and Real are inexact.

Frama-c preprocessing and Cil AST initialization.

This file performs various consistency checks over a cil file. Code may vary depending on current development of the kernel and/or identified bugs.

Functions manipulating filepaths. In these functions, references to the current working directory refer to the result given by function Sys.getcwd.

Filter helps to build a new cilfile from an old one by removing some of its elements. One can even build several functions from a source function by specifying different names for each of them.

Signature for the floating-point interval semantics.

Interface of floating-point numbers of different precisions.

Floating-point operations.

Floating-point intervals, used to construct arithmetic lattices. The interfaces of this module may change between Frama-C versions. Contact us if you need stable APIs.

Operations on globals.

Hook builder. A hook is a bunch of functions which can be extended and applied at any program point.

Efficient maps from hash-consed trees to values, implemented as Patricia trees.

Signature for the Hptmap module

Sets over ordered types.

Indexer implements ordered collection of items with random access. It is suitable for building fast access operations in GUI tree and list widgets.

Generation of possible assigns from the C prototype of a function.

transforms requires and ensures of statement contracts into assert. This transformation is done after cleanup

Big integers with an additional top element.

Sets of intervals with a lattice structure. Consecutive intervals are automatically fused.

Sets of intervals with a lattice structure. Consecutive intervals are automatically fused.

Integer intervals with congruence. An interval defined by min, max, rem, modu represents all integers between the bounds min and max and congruent to rem modulo modu. A value of None for min (resp. max) represents -infinity (resp. +infinity). modu is > 0, and 0 <= rem < modu.

Small sets of integers.

Integer values abstractions: an abstraction represents a set of integers. Provided with a lattice structure and over-approximations of arithmetic operations.

Extension of Big_int compatible with Zarith.

An interpreted automaton is a convenient formalization of programs for abstract interpretation. It is a control flow graph where states are control point and edges are transitions. It keeps track of conditions on which a transition can be taken (guards) as well as actions which are computed when a transition is taken. It can then be interpreted w.r.t. the operational semantics to reproduce the behavior of the program or w.r.t. to the collection semantics to compute a set of reachable states.

Arithmetic lattices. The interfaces of this module may change between Frama-C versions. Contact us if you need stable APIs.

Json Library

Provided services for kernel developers.

Operations to get info from a kernel function. This module does not give access to information about the set of all the registered kernel functions (like iterators over kernel functions). This kind of operations is stored in module Globals.Functions.

Types, monads and utilitary functions for lattices in which the bottom and/or the top are managed separately from other values.

Lattice signatures.

Maps from bases to memory maps. The memory maps are those of the Offsetmap module.

Functors making map indexed by zone.

Signature for maps from bases to memory maps. The memory maps are intended to be those of the Offsetmap module.

Memory locations.

Logging Services for Frama-C Kernel and Plugins.

Smart constructors for logic annotations.

Lexer for logic annotations

adds another preprocessing step in order to expand macros in annotations.

Pretty-printing of a parsed logic tree.

Logic typing and logic environment.

Utilities for ACSL constructs.

Operations on (natural) loops.

Managing machine-dependent information.

This module handle the machine configuration. Previous Frama-C versions handled this in Cil.

Maps equipped with a lattice structure.

Stored messages for persistence between sessions.

Maps from intervals to values.

Signature for Offsetmap_bitwise module, that implement efficient maps from intervals to values.

Type of the arguments of functor Offsetmap.Make

Signature for Offsetmap module, that implement efficient maps from intervals to arbitrary values.

This module is used to track the origin of very imprecise values (namely "garbled mix", created on imprecise or unsupported operations on addresses) propagated by an Eva analysis.

Functors for implementing new command line options.

Category for parameter collections. A category groups together a set of possible values of a given type for some parameters. It may be created once and used several times.

Configuration of command line options.

Signatures for command line options.

Plugin registration and general services.

This module is used to generate missing specifications. Options Kernel.GeneratedDefaultSpec, Kernel.GeneratedSpecMode and Kernel.GeneratedSpecCustom can be used to choose precisely which clause to generate in which case.

This module provides transient datastructures that may be more precise than an Ival.t, Locations.Location_Bits.t and Locations.location respectively, typically for l-values such as t[i][j], p->t[i], etc. Those structures do not have a lattice structure, and cannot be stored as an abstract domain. However, they can be use to model more precisely read or write accesses to semi-imprecise l-values.

Pretty-printer utilities.

AST's pretty-printer.

Type of AST's extensible printers.

Build a dynamic printer that bind all pretty-printers to the object obtained by (P())

Utilities to pretty print source with located Ast elements

Projects management.

This module should not be used outside of the Project library.

ACSL comparable property.

Status of properties.

Mutable stack in which it is possible to add data at the end (like a queue) and to handle non top elements. Current implementation is double linked list.

Association tables over ordered types.

Associative maps for _ranges_ to _values_ with overlapping.

Text with Tags

Compute services from a callgraph.

Nothing is exported: just register some special hooks for Frama-C.

A state is a project-compliant mutable value.

State builders. Provide ways to implement signature State_builder.S. Depending on the builder, also provide some additional useful information.

State Dependency Graph.

A state selection is a set of states with operations for easy handling of state dependencies.

Topological ordering over states.

Statuses of preconditions specialized at a given call-point.

Statements graph.

Internal representations of OCaml type as first class values. These values are called structural descriptors.

Information about the environment

High Level Interface to Command.

Reduction of a location (expressed as an Ival.t and a size) by a base validity. Only the locations in the trimmed result are valid. All offsets are expressed in bits.

Annotate files interpreting lightweight annotations.

Type value. A type value is a value representing a static ML monomorphic type. This API is quite low level. Prefer to use module Datatype instead whenever possible.

Parameter settable through a command line option. This is a low level API, internally used by the kernel. As a plug-in developer, you certainly prefer to use the API of Plugin instead.

Syntactic loop unfolding. Uses code transformation hook mechanism (after-cleanup phase) of File and exports nothing.

Handling unicode string.

Provides a function input_val, similar in functionality to the standard library function Marshal.from_channel. The main difference with Marshal.from_channel is that input_val is able to apply transformation functions on the values on the fly as they are read from the input channel.

UTF-8 string for logic symbols.

Extensible Arrays

Frama-C visitors dealing with projects.

Operations on visitor behaviors.

Widening hints for the Value Analysis datastructures.

Weak topological orderings (WTOs) are a hierarchical decomposition of the a graph where each layer is topologically ordered and strongly connected components are aggregated and ordered recursively. This is a very convenient representation to describe an evaluation order to reach a fixpoint.

Specialization of WTO for the CIL statement graph. See the Wto module for more details