Mercurial > hg > CbC > CbC_gcc

annotate gcc/analyzer/sm.cc @ 158:494b0b89df80 default tip

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
...
author Shinji KONO <kono@ie.u-ryukyu.ac.jp>
date Mon, 25 May 2020 18:13:55 +0900
parents 1830386684a0
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
145
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
1 /* Modeling API uses and misuses via state machines.
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
2 Copyright (C) 2019-2020 Free Software Foundation, Inc.
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
3 Contributed by David Malcolm <dmalcolm@redhat.com>.
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
4
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
5 This file is part of GCC.
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
6
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
7 GCC is free software; you can redistribute it and/or modify it
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
8 under the terms of the GNU General Public License as published by
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
9 the Free Software Foundation; either version 3, or (at your option)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
10 any later version.
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
11
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
12 GCC is distributed in the hope that it will be useful, but
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
13 WITHOUT ANY WARRANTY; without even the implied warranty of
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
15 General Public License for more details.
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
16
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
17 You should have received a copy of the GNU General Public License
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
18 along with GCC; see the file COPYING3. If not see
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
19 <http://www.gnu.org/licenses/>. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
20
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
21 #include "config.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
22 #include "system.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
23 #include "coretypes.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
24 #include "tree.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
25 #include "function.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
26 #include "basic-block.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
27 #include "gimple.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
28 #include "options.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
29 #include "function.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
30 #include "diagnostic-core.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
31 #include "pretty-print.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
32 #include "analyzer/analyzer.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
33 #include "analyzer/analyzer-logging.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
34 #include "analyzer/sm.h"
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
35
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
36 #if ENABLE_ANALYZER
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
37
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
38 /* If STMT is an assignment from zero, return the LHS. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
39
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
40 tree
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
41 is_zero_assignment (const gimple *stmt)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
42 {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
43 const gassign *assign_stmt = dyn_cast <const gassign *> (stmt);
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
44 if (!assign_stmt)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
45 return NULL_TREE;
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
46
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
47 enum tree_code op = gimple_assign_rhs_code (assign_stmt);
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
48 if (TREE_CODE_CLASS (op) != tcc_constant)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
49 return NULL_TREE;
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
50
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
51 if (!zerop (gimple_assign_rhs1 (assign_stmt)))
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
52 return NULL_TREE;
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
53
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
54 return gimple_assign_lhs (assign_stmt);
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
55 }
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
56
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
57 /* Return true if VAR has pointer or reference type. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
58
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
59 bool
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
60 any_pointer_p (tree var)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
61 {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
62 return POINTER_TYPE_P (TREE_TYPE (var));
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
63 }
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
64
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
65 namespace ana {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
66
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
67 /* Add a state with name NAME to this state_machine.
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
68 The string is required to outlive the state_machine.
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
69
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
70 Return the state_t for the new state. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
71
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
72 state_machine::state_t
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
73 state_machine::add_state (const char *name)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
74 {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
75 m_state_names.safe_push (name);
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
76 return m_state_names.length () - 1;
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
77 }
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
78
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
79 /* Get the name of state S within this state_machine. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
80
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
81 const char *
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
82 state_machine::get_state_name (state_t s) const
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
83 {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
84 return m_state_names[s];
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
85 }
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
86
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
87 /* Assert that S is a valid state for this state_machine. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
88
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
89 void
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
90 state_machine::validate (state_t s) const
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
91 {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
92 gcc_assert (s < m_state_names.length ());
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
93 }
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
94
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
95 /* Dump a multiline representation of this state machine to PP. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
96
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
97 void
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
98 state_machine::dump_to_pp (pretty_printer *pp) const
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
99 {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
100 unsigned i;
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
101 const char *name;
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
102 FOR_EACH_VEC_ELT (m_state_names, i, name)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
103 pp_printf (pp, " state %i: %qs\n", i, name);
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
104 }
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
105
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
106 /* Create instances of the various state machines, each using LOGGER,
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
107 and populate OUT with them. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
108
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
109 void
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
110 make_checkers (auto_delete_vec <state_machine> &out, logger *logger)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
111 {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
112 out.safe_push (make_malloc_state_machine (logger));
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
113 out.safe_push (make_fileptr_state_machine (logger));
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
114 out.safe_push (make_taint_state_machine (logger));
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
115 out.safe_push (make_sensitive_state_machine (logger));
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
116 out.safe_push (make_signal_state_machine (logger));
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
117
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
118 /* We only attempt to run the pattern tests if it might have been manually
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
119 enabled (for DejaGnu purposes). */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
120 if (flag_analyzer_checker)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
121 out.safe_push (make_pattern_test_state_machine (logger));
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
122
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
123 if (flag_analyzer_checker)
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
124 {
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
125 unsigned read_index, write_index;
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
126 state_machine **sm;
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
127
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
128 /* TODO: this leaks the machines
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
129 Would be nice to log the things that were removed. */
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
130 VEC_ORDERED_REMOVE_IF (out, read_index, write_index, sm,
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
131 0 != strcmp (flag_analyzer_checker,
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
132 (*sm)->get_name ()));
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
133 }
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
134 }
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
135
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
136 } // namespace ana
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
137
1830386684a0 gcc-9.2.0
anatofuz
parents:
diff changeset
138 #endif /* #if ENABLE_ANALYZER */