• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1 // SValBuilder.h - Construction of SVals from evaluating expressions -*- C++ -*-
2 //
3 //                     The LLVM Compiler Infrastructure
4 //
5 // This file is distributed under the University of Illinois Open Source
6 // License. See LICENSE.TXT for details.
7 //
8 //===----------------------------------------------------------------------===//
9 //
10 //  This file defines SValBuilder, a class that defines the interface for
11 //  "symbolical evaluators" which construct an SVal from an expression.
12 //
13 //===----------------------------------------------------------------------===//
14 
15 #ifndef LLVM_CLANG_GR_SVALBUILDER
16 #define LLVM_CLANG_GR_SVALBUILDER
17 
18 #include "clang/AST/Expr.h"
19 #include "clang/AST/ExprCXX.h"
20 #include "clang/StaticAnalyzer/Core/PathSensitive/SVals.h"
21 #include "clang/StaticAnalyzer/Core/PathSensitive/BasicValueFactory.h"
22 #include "clang/StaticAnalyzer/Core/PathSensitive/MemRegion.h"
23 
24 namespace clang {
25 
26 namespace ento {
27 
28 class GRState;
29 
30 class SValBuilder {
31 protected:
32   ASTContext &Context;
33 
34   /// Manager of APSInt values.
35   BasicValueFactory BasicVals;
36 
37   /// Manages the creation of symbols.
38   SymbolManager SymMgr;
39 
40   /// Manages the creation of memory regions.
41   MemRegionManager MemMgr;
42 
43   GRStateManager &StateMgr;
44 
45   /// The scalar type to use for array indices.
46   const QualType ArrayIndexTy;
47 
48   /// The width of the scalar type used for array indices.
49   const unsigned ArrayIndexWidth;
50 
51 public:
52   // FIXME: Make these protected again once RegionStoreManager correctly
53   // handles loads from different bound value types.
54   virtual SVal evalCastFromNonLoc(NonLoc val, QualType castTy) = 0;
55   virtual SVal evalCastFromLoc(Loc val, QualType castTy) = 0;
56 
57 public:
SValBuilder(llvm::BumpPtrAllocator & alloc,ASTContext & context,GRStateManager & stateMgr)58   SValBuilder(llvm::BumpPtrAllocator &alloc, ASTContext &context,
59               GRStateManager &stateMgr)
60     : Context(context), BasicVals(context, alloc),
61       SymMgr(context, BasicVals, alloc),
62       MemMgr(context, alloc),
63       StateMgr(stateMgr),
64       ArrayIndexTy(context.IntTy),
65       ArrayIndexWidth(context.getTypeSize(ArrayIndexTy)) {}
66 
~SValBuilder()67   virtual ~SValBuilder() {}
68 
69   SVal evalCast(SVal val, QualType castTy, QualType originalType);
70 
71   virtual SVal evalMinus(NonLoc val) = 0;
72 
73   virtual SVal evalComplement(NonLoc val) = 0;
74 
75   virtual SVal evalBinOpNN(const GRState *state, BinaryOperator::Opcode op,
76                            NonLoc lhs, NonLoc rhs, QualType resultTy) = 0;
77 
78   virtual SVal evalBinOpLL(const GRState *state, BinaryOperator::Opcode op,
79                            Loc lhs, Loc rhs, QualType resultTy) = 0;
80 
81   virtual SVal evalBinOpLN(const GRState *state, BinaryOperator::Opcode op,
82                            Loc lhs, NonLoc rhs, QualType resultTy) = 0;
83 
84   /// getKnownValue - evaluates a given SVal. If the SVal has only one possible
85   ///  (integer) value, that value is returned. Otherwise, returns NULL.
86   virtual const llvm::APSInt *getKnownValue(const GRState *state, SVal val) = 0;
87 
88   SVal evalBinOp(const GRState *state, BinaryOperator::Opcode op,
89                  SVal lhs, SVal rhs, QualType type);
90 
91   DefinedOrUnknownSVal evalEQ(const GRState *state, DefinedOrUnknownSVal lhs,
92                               DefinedOrUnknownSVal rhs);
93 
getContext()94   ASTContext &getContext() { return Context; }
getContext()95   const ASTContext &getContext() const { return Context; }
96 
getStateManager()97   GRStateManager &getStateManager() { return StateMgr; }
98 
getConditionType()99   QualType getConditionType() const {
100     return  getContext().IntTy;
101   }
102 
getArrayIndexType()103   QualType getArrayIndexType() const {
104     return ArrayIndexTy;
105   }
106 
getBasicValueFactory()107   BasicValueFactory &getBasicValueFactory() { return BasicVals; }
getBasicValueFactory()108   const BasicValueFactory &getBasicValueFactory() const { return BasicVals; }
109 
getSymbolManager()110   SymbolManager &getSymbolManager() { return SymMgr; }
getSymbolManager()111   const SymbolManager &getSymbolManager() const { return SymMgr; }
112 
getRegionManager()113   MemRegionManager &getRegionManager() { return MemMgr; }
getRegionManager()114   const MemRegionManager &getRegionManager() const { return MemMgr; }
115 
116   // Forwarding methods to SymbolManager.
117 
118   const SymbolConjured* getConjuredSymbol(const Stmt* stmt, QualType type,
119                                           unsigned visitCount,
120                                           const void* symbolTag = 0) {
121     return SymMgr.getConjuredSymbol(stmt, type, visitCount, symbolTag);
122   }
123 
124   const SymbolConjured* getConjuredSymbol(const Expr* expr, unsigned visitCount,
125                                           const void* symbolTag = 0) {
126     return SymMgr.getConjuredSymbol(expr, visitCount, symbolTag);
127   }
128 
129   /// makeZeroVal - Construct an SVal representing '0' for the specified type.
130   DefinedOrUnknownSVal makeZeroVal(QualType type);
131 
132   /// getRegionValueSymbolVal - make a unique symbol for value of region.
133   DefinedOrUnknownSVal getRegionValueSymbolVal(const TypedRegion *region);
134 
135   DefinedOrUnknownSVal getConjuredSymbolVal(const void *symbolTag,
136                                             const Expr *expr, unsigned count);
137   DefinedOrUnknownSVal getConjuredSymbolVal(const void *symbolTag,
138                                             const Expr *expr, QualType type,
139                                             unsigned count);
140 
141   DefinedOrUnknownSVal getDerivedRegionValueSymbolVal(
142       SymbolRef parentSymbol, const TypedRegion *region);
143 
144   DefinedSVal getMetadataSymbolVal(
145       const void *symbolTag, const MemRegion *region,
146       const Expr *expr, QualType type, unsigned count);
147 
148   DefinedSVal getFunctionPointer(const FunctionDecl *func);
149 
150   DefinedSVal getBlockPointer(const BlockDecl *block, CanQualType locTy,
151                               const LocationContext *locContext);
152 
makeCompoundVal(QualType type,llvm::ImmutableList<SVal> vals)153   NonLoc makeCompoundVal(QualType type, llvm::ImmutableList<SVal> vals) {
154     return nonloc::CompoundVal(BasicVals.getCompoundValData(type, vals));
155   }
156 
makeLazyCompoundVal(const StoreRef & store,const TypedRegion * region)157   NonLoc makeLazyCompoundVal(const StoreRef &store, const TypedRegion *region) {
158     return nonloc::LazyCompoundVal(
159         BasicVals.getLazyCompoundValData(store, region));
160   }
161 
makeZeroArrayIndex()162   NonLoc makeZeroArrayIndex() {
163     return nonloc::ConcreteInt(BasicVals.getValue(0, ArrayIndexTy));
164   }
165 
makeArrayIndex(uint64_t idx)166   NonLoc makeArrayIndex(uint64_t idx) {
167     return nonloc::ConcreteInt(BasicVals.getValue(idx, ArrayIndexTy));
168   }
169 
170   SVal convertToArrayIndex(SVal val);
171 
makeIntVal(const IntegerLiteral * integer)172   nonloc::ConcreteInt makeIntVal(const IntegerLiteral* integer) {
173     return nonloc::ConcreteInt(
174         BasicVals.getValue(integer->getValue(),
175                      integer->getType()->isUnsignedIntegerOrEnumerationType()));
176   }
177 
makeBoolVal(const CXXBoolLiteralExpr * boolean)178   nonloc::ConcreteInt makeBoolVal(const CXXBoolLiteralExpr *boolean) {
179     return makeTruthVal(boolean->getValue());
180   }
181 
makeIntVal(const llvm::APSInt & integer)182   nonloc::ConcreteInt makeIntVal(const llvm::APSInt& integer) {
183     return nonloc::ConcreteInt(BasicVals.getValue(integer));
184   }
185 
makeIntLocVal(const llvm::APSInt & integer)186   loc::ConcreteInt makeIntLocVal(const llvm::APSInt &integer) {
187     return loc::ConcreteInt(BasicVals.getValue(integer));
188   }
189 
makeIntVal(const llvm::APInt & integer,bool isUnsigned)190   NonLoc makeIntVal(const llvm::APInt& integer, bool isUnsigned) {
191     return nonloc::ConcreteInt(BasicVals.getValue(integer, isUnsigned));
192   }
193 
makeIntVal(uint64_t integer,QualType type)194   DefinedSVal makeIntVal(uint64_t integer, QualType type) {
195     if (Loc::isLocType(type))
196       return loc::ConcreteInt(BasicVals.getValue(integer, type));
197 
198     return nonloc::ConcreteInt(BasicVals.getValue(integer, type));
199   }
200 
makeIntVal(uint64_t integer,bool isUnsigned)201   NonLoc makeIntVal(uint64_t integer, bool isUnsigned) {
202     return nonloc::ConcreteInt(BasicVals.getIntValue(integer, isUnsigned));
203   }
204 
makeIntValWithPtrWidth(uint64_t integer,bool isUnsigned)205   NonLoc makeIntValWithPtrWidth(uint64_t integer, bool isUnsigned) {
206     return nonloc::ConcreteInt(
207         BasicVals.getIntWithPtrWidth(integer, isUnsigned));
208   }
209 
makeIntVal(uint64_t integer,unsigned bitWidth,bool isUnsigned)210   NonLoc makeIntVal(uint64_t integer, unsigned bitWidth, bool isUnsigned) {
211     return nonloc::ConcreteInt(
212         BasicVals.getValue(integer, bitWidth, isUnsigned));
213   }
214 
makeLocAsInteger(Loc loc,unsigned bits)215   NonLoc makeLocAsInteger(Loc loc, unsigned bits) {
216     return nonloc::LocAsInteger(BasicVals.getPersistentSValWithData(loc, bits));
217   }
218 
219   NonLoc makeNonLoc(const SymExpr *lhs, BinaryOperator::Opcode op,
220                     const llvm::APSInt& rhs, QualType type);
221 
222   NonLoc makeNonLoc(const SymExpr *lhs, BinaryOperator::Opcode op,
223                     const SymExpr *rhs, QualType type);
224 
makeTruthVal(bool b,QualType type)225   nonloc::ConcreteInt makeTruthVal(bool b, QualType type) {
226     return nonloc::ConcreteInt(BasicVals.getTruthValue(b, type));
227   }
228 
makeTruthVal(bool b)229   nonloc::ConcreteInt makeTruthVal(bool b) {
230     return nonloc::ConcreteInt(BasicVals.getTruthValue(b));
231   }
232 
makeNull()233   Loc makeNull() {
234     return loc::ConcreteInt(BasicVals.getZeroWithPtrWidth());
235   }
236 
makeLoc(SymbolRef sym)237   Loc makeLoc(SymbolRef sym) {
238     return loc::MemRegionVal(MemMgr.getSymbolicRegion(sym));
239   }
240 
makeLoc(const MemRegion * region)241   Loc makeLoc(const MemRegion* region) {
242     return loc::MemRegionVal(region);
243   }
244 
makeLoc(const AddrLabelExpr * expr)245   Loc makeLoc(const AddrLabelExpr *expr) {
246     return loc::GotoLabel(expr->getLabel());
247   }
248 
makeLoc(const llvm::APSInt & integer)249   Loc makeLoc(const llvm::APSInt& integer) {
250     return loc::ConcreteInt(BasicVals.getValue(integer));
251   }
252 
253 };
254 
255 SValBuilder* createSimpleSValBuilder(llvm::BumpPtrAllocator &alloc,
256                                      ASTContext &context,
257                                      GRStateManager &stateMgr);
258 
259 } // end GR namespace
260 
261 } // end clang namespace
262 
263 #endif
264