No-assertions should not affect assertions in built-ins

[peterschrammel]

This PR includes a clean-up of various checks whether something is a built-in.

[kroening]

Is there then any way at all to disable the built-in checks?

[peterschrammel]

Currently not. Shall we distinguish between no-assertions at all and no-user-assertions?

[martin-cs]

On Thu, 2017-03-23 at 01:50 -0700, Peter Schrammel wrote: Shall we distinguish between no-assertions at all and no-user-assertions?

I can see a possible use for this in other languages which have some assertions added as part of the semantics, but, on the other hand, I can see that this could lead to a proliferation of flags. What is the original need / use case for this?

[peterschrammel]

It's a customer request who wants to disable his own assertions while keeping the checks in built-ins (Eg memory checks in free()).

[tautschnig]

I believe a user's assertions can be disabled by compiling/running with -DNDEBUG. So maybe more fine-grained control to permit disabled built-in assertions is required.

[tautschnig]

Overall, the first two commits are great, the third one seems debatable.

[tautschnig]

I believe we'll need an additional flag no-built-in-assertions if this is to go in. See my earlier comments in the conversation for further thoughts.

[peterschrammel]

The third commit was the actual reason for the PR ;)

The current description of the option --no-assertion says "ignore user assertions", which is confusing because it also disables built-in assertions. A user cannot really understand the difference between an instrumented assertion and a built-in assertion. The user only understands what her own assertions are and then sees assertions being added by CBMC.

Suggestion:

• --no-assertions ignores user assertions only
• Adding --no-built-in-assertions to disable built-in assertions

More fine-grained control over the latter can be introduced if requested.

[peterschrammel]

@tautschnig, this is green now.