Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / external / clang / 0015541bcfd2f3282fa3ce50f1e840681fad0853 / . / Analysis / GRSimpleVals.cpp
blob: 549aa0bb4ff3334f0420a1136f0584969ac30fef [file] [log] [blame]
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]1// GRSimpleVals.cpp - Transfer functions for tracking simple values -*- C++ -*--
2//
3// The LLVM Compiler Infrastructure
4//
5// This file is distributed under the University of Illinois Open Source
6// License. See LICENSE.TXT for details.
7//
8//===----------------------------------------------------------------------===//
9//
10// This files defines GRSimpleVals, a sub-class of GRTransferFuncs that
11// provides transfer functions for performing simple value tracking with
12// limited support for symbolics.
13//
14//===----------------------------------------------------------------------===//
15
16#include "GRSimpleVals.h"
Ted Kremeneke01c9872008-02-14 22:36:46 +0000[diff] [blame]17#include "clang/Basic/Diagnostic.h"
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]18
19using namespace clang;
20
Ted Kremeneke01c9872008-02-14 22:36:46 +0000[diff] [blame]21namespace clang {
Ted Kremenekd87a3212008-02-26 21:31:18 +0000[diff] [blame]22
23template <typename ITERATOR>
24static void EmitWarning(Diagnostic& Diag, SourceManager& SrcMgr,
25 ITERATOR I, ITERATOR E, const char* msg) {
26
27 bool isFirst;
28 unsigned ErrorDiag;
29
30 for (; I != E; ++I) {
31
32 if (isFirst) {
33 isFirst = false;
34 ErrorDiag = Diag.getCustomDiagID(Diagnostic::Warning, msg);
35 }
36
37 const PostStmt& L = cast<PostStmt>((*I)->getLocation());
38 Expr* Exp = cast<Expr>(L.getStmt());
39
40 Diag.Report(FullSourceLoc(Exp->getExprLoc(), SrcMgr), ErrorDiag);
41 }
42}
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]43
44unsigned RunGRSimpleVals(CFG& cfg, FunctionDecl& FD, ASTContext& Ctx,
45 Diagnostic& Diag, bool Visualize) {
46
47 if (Diag.hasErrorOccurred())
48 return 0;
49
50 GRCoreEngine<GRExprEngine> Engine(cfg, FD, Ctx);
51 GRExprEngine* CheckerState = &Engine.getCheckerState();
52 GRSimpleVals GRSV;
53 CheckerState->setTransferFunctions(GRSV);
54
55 // Execute the worklist algorithm.
Ted Kremenekd87a3212008-02-26 21:31:18 +0000[diff] [blame]56 Engine.ExecuteWorkList(20000);
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]57
Ted Kremenekd87a3212008-02-26 21:31:18 +0000[diff] [blame]58 SourceManager& SrcMgr = Ctx.getSourceManager();
59
60 EmitWarning(Diag, SrcMgr,
61 CheckerState->null_derefs_begin(),
62 CheckerState->null_derefs_end(),
63 "NULL pointer is dereferenced after it is checked for NULL.");
64
65 EmitWarning(Diag, SrcMgr,
66 CheckerState->uninit_derefs_begin(),
67 CheckerState->uninit_derefs_end(),
68 "Dereference of uninitialized value.");
69
70 EmitWarning(Diag, SrcMgr,
71 CheckerState->uninit_derefs_begin(),
72 CheckerState->uninit_derefs_end(),
73 "Dereference of uninitialized value.");
74
75 EmitWarning(Diag, SrcMgr,
76 CheckerState->bad_divides_begin(),
77 CheckerState->bad_divides_end(),
78 "Division by zero/uninitialized value.");
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]79
80#ifndef NDEBUG
81 if (Visualize) CheckerState->ViewGraph();
82#endif
83
84 return Engine.getGraph().size();
85}
86
Ted Kremeneke01c9872008-02-14 22:36:46 +0000[diff] [blame]87} // end clang namespace
88
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]89//===----------------------------------------------------------------------===//
90// Transfer function for Casts.
91//===----------------------------------------------------------------------===//
92
Ted Kremenek9ef1ec92008-02-21 18:43:30 +0000[diff] [blame]93RVal GRSimpleVals::EvalCast(ValueManager& ValMgr, NonLVal X, QualType T) {
Ted Kremenek692416c2008-02-18 22:57:02 +0000[diff] [blame]94
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]95 if (!isa<nonlval::ConcreteInt>(X))
96 return UnknownVal();
97
98 llvm::APSInt V = cast<nonlval::ConcreteInt>(X).getValue();
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]99 V.setIsUnsigned(T->isUnsignedIntegerType() || T->isPointerType());
Ted Kremenek9ef1ec92008-02-21 18:43:30 +0000[diff] [blame]100 V.extOrTrunc(ValMgr.getContext().getTypeSize(T, SourceLocation()));
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]101
Ted Kremenek9ef1ec92008-02-21 18:43:30 +0000[diff] [blame]102 if (T->isPointerType())
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]103 return lval::ConcreteInt(ValMgr.getValue(V));
104 else
105 return nonlval::ConcreteInt(ValMgr.getValue(V));
106}
107
108// Casts.
109
Ted Kremenek9ef1ec92008-02-21 18:43:30 +0000[diff] [blame]110RVal GRSimpleVals::EvalCast(ValueManager& ValMgr, LVal X, QualType T) {
Ted Kremenek692416c2008-02-18 22:57:02 +0000[diff] [blame]111
Ted Kremenek9ef1ec92008-02-21 18:43:30 +0000[diff] [blame]112 if (T->isPointerType())
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]113 return X;
114
Ted Kremenek9ef1ec92008-02-21 18:43:30 +0000[diff] [blame]115 assert (T->isIntegerType());
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]116
117 if (!isa<lval::ConcreteInt>(X))
118 return UnknownVal();
119
120 llvm::APSInt V = cast<lval::ConcreteInt>(X).getValue();
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]121 V.setIsUnsigned(T->isUnsignedIntegerType() || T->isPointerType());
Ted Kremenek9ef1ec92008-02-21 18:43:30 +0000[diff] [blame]122 V.extOrTrunc(ValMgr.getContext().getTypeSize(T, SourceLocation()));
Ted Kremenekd59cccc2008-02-14 18:28:23 +0000[diff] [blame]123
124 return nonlval::ConcreteInt(ValMgr.getValue(V));
Ted Kremenekc3f261d2008-02-14 18:40:24 +0000[diff] [blame]125}
126
127// Unary operators.
128
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]129RVal GRSimpleVals::EvalMinus(ValueManager& ValMgr, UnaryOperator* U, NonLVal X){
Ted Kremenek692416c2008-02-18 22:57:02 +0000[diff] [blame]130
Ted Kremenekc3f261d2008-02-14 18:40:24 +0000[diff] [blame]131 switch (X.getSubKind()) {
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]132
Ted Kremenekc3f261d2008-02-14 18:40:24 +0000[diff] [blame]133 case nonlval::ConcreteIntKind:
134 return cast<nonlval::ConcreteInt>(X).EvalMinus(ValMgr, U);
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]135
Ted Kremenekc3f261d2008-02-14 18:40:24 +0000[diff] [blame]136 default:
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]137 return UnknownVal();
Ted Kremenekc3f261d2008-02-14 18:40:24 +0000[diff] [blame]138 }
139}
140
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]141RVal GRSimpleVals::EvalComplement(ValueManager& ValMgr, NonLVal X) {
142
Ted Kremenek90e42032008-02-20 04:12:31 +0000[diff] [blame]143 switch (X.getSubKind()) {
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]144
Ted Kremenekc3f261d2008-02-14 18:40:24 +0000[diff] [blame]145 case nonlval::ConcreteIntKind:
146 return cast<nonlval::ConcreteInt>(X).EvalComplement(ValMgr);
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]147
Ted Kremenekc3f261d2008-02-14 18:40:24 +0000[diff] [blame]148 default:
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]149 return UnknownVal();
Ted Kremenekc3f261d2008-02-14 18:40:24 +0000[diff] [blame]150 }
151}
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]152
153// Binary operators.
154
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]155RVal GRSimpleVals::EvalBinOp(ValueManager& ValMgr, BinaryOperator::Opcode Op,
156 NonLVal L, NonLVal R) {
157 while (1) {
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]158
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]159 switch (L.getSubKind()) {
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]160 default:
Ted Kremenek9258a642008-02-21 19:10:12 +0000[diff] [blame]161 return UnknownVal();
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]162
163 case nonlval::ConcreteIntKind:
164
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]165 if (isa<nonlval::ConcreteInt>(R)) {
166 const nonlval::ConcreteInt& L_CI = cast<nonlval::ConcreteInt>(L);
167 const nonlval::ConcreteInt& R_CI = cast<nonlval::ConcreteInt>(R);
168 return L_CI.EvalBinOp(ValMgr, Op, R_CI);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]169 }
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]170 else {
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]171 NonLVal tmp = R;
172 R = L;
173 L = tmp;
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]174 continue;
175 }
176
177 case nonlval::SymbolValKind: {
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]178
179 if (isa<nonlval::ConcreteInt>(R)) {
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]180 const SymIntConstraint& C =
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]181 ValMgr.getConstraint(cast<nonlval::SymbolVal>(L).getSymbol(), Op,
182 cast<nonlval::ConcreteInt>(R).getValue());
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]183
184 return nonlval::SymIntConstraintVal(C);
185 }
186 else
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]187 return UnknownVal();
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]188 }
189 }
190 }
191}
192
Ted Kremenekb640b3b2008-02-15 00:52:26 +0000[diff] [blame]193
Ted Kremenekc6fbdcd2008-02-15 23:15:23 +0000[diff] [blame]194// Binary Operators (except assignments and comma).
195
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]196RVal GRSimpleVals::EvalBinOp(ValueManager& ValMgr, BinaryOperator::Opcode Op,
197 LVal L, LVal R) {
Ted Kremenek692416c2008-02-18 22:57:02 +0000[diff] [blame]198
Ted Kremenekc6fbdcd2008-02-15 23:15:23 +0000[diff] [blame]199 switch (Op) {
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]200
Ted Kremenekc6fbdcd2008-02-15 23:15:23 +0000[diff] [blame]201 default:
202 return UnknownVal();
203
204 case BinaryOperator::EQ:
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]205 return EvalEQ(ValMgr, L, R);
Ted Kremenekc6fbdcd2008-02-15 23:15:23 +0000[diff] [blame]206
207 case BinaryOperator::NE:
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]208 return EvalNE(ValMgr, L, R);
Ted Kremenekc6fbdcd2008-02-15 23:15:23 +0000[diff] [blame]209 }
210}
211
Ted Kremenekb640b3b2008-02-15 00:52:26 +0000[diff] [blame]212// Pointer arithmetic.
213
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]214RVal GRSimpleVals::EvalBinOp(ValueManager& ValMgr, BinaryOperator::Opcode Op,
215 LVal L, NonLVal R) {
216 return UnknownVal();
Ted Kremenekb640b3b2008-02-15 00:52:26 +0000[diff] [blame]217}
218
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]219// Equality operators for LVals.
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]220
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]221RVal GRSimpleVals::EvalEQ(ValueManager& ValMgr, LVal L, LVal R) {
222
223 switch (L.getSubKind()) {
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]224
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]225 default:
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]226 assert(false && "EQ not implemented for this LVal.");
227 return UnknownVal();
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]228
229 case lval::ConcreteIntKind:
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]230
231 if (isa<lval::ConcreteInt>(R)) {
232 bool b = cast<lval::ConcreteInt>(L).getValue() ==
233 cast<lval::ConcreteInt>(R).getValue();
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]234
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]235 return NonLVal::MakeIntTruthVal(ValMgr, b);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]236 }
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]237 else if (isa<lval::SymbolVal>(R)) {
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]238
239 const SymIntConstraint& C =
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]240 ValMgr.getConstraint(cast<lval::SymbolVal>(R).getSymbol(),
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]241 BinaryOperator::EQ,
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]242 cast<lval::ConcreteInt>(L).getValue());
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]243
244 return nonlval::SymIntConstraintVal(C);
245 }
246
247 break;
248
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]249 case lval::SymbolValKind: {
250
251 if (isa<lval::ConcreteInt>(R)) {
252 const SymIntConstraint& C =
253 ValMgr.getConstraint(cast<lval::SymbolVal>(L).getSymbol(),
254 BinaryOperator::EQ,
255 cast<lval::ConcreteInt>(R).getValue());
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]256
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]257 return nonlval::SymIntConstraintVal(C);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]258 }
259
Ted Kremenekf700df22008-02-22 18:41:59 +0000[diff] [blame]260 // FIXME: Implement == for lval Symbols. This is mainly useful
261 // in iterator loops when traversing a buffer, e.g. while(z != zTerm).
262 // Since this is not useful for many checkers we'll punt on this for
263 // now.
264
265 return UnknownVal();
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]266 }
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]267
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]268 case lval::DeclValKind:
Ted Kremenekdc3936b2008-02-22 00:54:56 +0000[diff] [blame]269 case lval::FuncValKind:
270 case lval::GotoLabelKind:
271 return NonLVal::MakeIntTruthVal(ValMgr, L == R);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]272 }
273
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]274 return NonLVal::MakeIntTruthVal(ValMgr, false);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]275}
276
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]277RVal GRSimpleVals::EvalNE(ValueManager& ValMgr, LVal L, LVal R) {
Ted Kremenek692416c2008-02-18 22:57:02 +0000[diff] [blame]278
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]279 switch (L.getSubKind()) {
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]280
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]281 default:
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]282 assert(false && "NE not implemented for this LVal.");
283 return UnknownVal();
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]284
285 case lval::ConcreteIntKind:
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]286
287 if (isa<lval::ConcreteInt>(R)) {
288 bool b = cast<lval::ConcreteInt>(L).getValue() !=
289 cast<lval::ConcreteInt>(R).getValue();
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]290
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]291 return NonLVal::MakeIntTruthVal(ValMgr, b);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]292 }
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]293 else if (isa<lval::SymbolVal>(R)) {
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]294 const SymIntConstraint& C =
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]295 ValMgr.getConstraint(cast<lval::SymbolVal>(R).getSymbol(),
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]296 BinaryOperator::NE,
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]297 cast<lval::ConcreteInt>(L).getValue());
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]298
299 return nonlval::SymIntConstraintVal(C);
300 }
301
302 break;
303
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]304 case lval::SymbolValKind: {
305 if (isa<lval::ConcreteInt>(R)) {
306 const SymIntConstraint& C =
307 ValMgr.getConstraint(cast<lval::SymbolVal>(L).getSymbol(),
308 BinaryOperator::NE,
309 cast<lval::ConcreteInt>(R).getValue());
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]310
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]311 return nonlval::SymIntConstraintVal(C);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]312 }
313
Ted Kremenekf700df22008-02-22 18:41:59 +0000[diff] [blame]314 // FIXME: Implement != for lval Symbols. This is mainly useful
315 // in iterator loops when traversing a buffer, e.g. while(z != zTerm).
316 // Since this is not useful for many checkers we'll punt on this for
317 // now.
318
319 return UnknownVal();
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]320
321 break;
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]322 }
323
324 case lval::DeclValKind:
Ted Kremenekdc3936b2008-02-22 00:54:56 +0000[diff] [blame]325 case lval::FuncValKind:
326 case lval::GotoLabelKind:
327 return NonLVal::MakeIntTruthVal(ValMgr, L != R);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]328 }
329
Ted Kremenekaa1c4e52008-02-21 18:02:17 +0000[diff] [blame]330 return NonLVal::MakeIntTruthVal(ValMgr, true);
Ted Kremenek6cb0b542008-02-14 19:37:24 +0000[diff] [blame]331}