doxygen/SimpleConstraintManager_8cpp_source.html

//== SimpleConstraintManager.cpp --------------------------------*- C++ -*--==//

//

// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.

// See https://llvm.org/LICENSE.txt for license information.

// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception

//

//===----------------------------------------------------------------------===//

//

//  This file defines SimpleConstraintManager, a class that provides a

//  simplified constraint manager interface, compared to ConstraintManager.

//

//===----------------------------------------------------------------------===//


#include "clang/StaticAnalyzer/Core/PathSensitive/SimpleConstraintManager.h"

#include "clang/StaticAnalyzer/Core/PathSensitive/APSIntType.h"

#include "clang/StaticAnalyzer/Core/PathSensitive/ExprEngine.h"

#include "clang/StaticAnalyzer/Core/PathSensitive/ProgramState.h"

#include <optional>


namespace clang {


namespace ento {


SimpleConstraintManager::~SimpleConstraintManager() {}


ProgramStateRef SimpleConstraintManager::assumeInternal(ProgramStateRef State,

                                                        DefinedSVal Cond,

                                                        bool Assumption) {

  // If we have a Loc value, cast it to a bool NonLoc first.

  if (std::optional<Loc> LV = Cond.getAs<Loc>()) {

    SValBuilder &SVB = State->getStateManager().getSValBuilder();

    QualType T;

    const MemRegion *MR = LV->getAsRegion();

    if (const TypedRegion *TR = dyn_cast_or_null<TypedRegion>(MR))

      T = TR->getLocationType();

    else

      T = SVB.getContext().VoidPtrTy;


    Cond = SVB.evalCast(*LV, SVB.getContext().BoolTy, T).castAs<DefinedSVal>();

  }


  return assume(State, Cond.castAs<NonLoc>(), Assumption);

}


ProgramStateRef SimpleConstraintManager::assume(ProgramStateRef State,

                                                NonLoc Cond, bool Assumption) {

  State = assumeAux(State, Cond, Assumption);

  if (EE)

    return EE->processAssume(State, Cond, Assumption);

  return State;

}


ProgramStateRef SimpleConstraintManager::assumeAux(ProgramStateRef State,

                                                   NonLoc Cond,

                                                   bool Assumption) {


  // We cannot reason about SymSymExprs, and can only reason about some

  // SymIntExprs.

  if (!canReasonAbout(Cond)) {

    // Just add the constraint to the expression without trying to simplify.

    SymbolRef Sym = Cond.getAsSymbol();

    assert(Sym);

    return assumeSymUnsupported(State, Sym, Assumption);

  }


  switch (Cond.getKind()) {

  default:

    llvm_unreachable("'Assume' not implemented for this NonLoc");


  case nonloc::SymbolValKind: {

    nonloc::SymbolVal SV = Cond.castAs<nonloc::SymbolVal>();

    SymbolRef Sym = SV.getSymbol();

    assert(Sym);

    return assumeSym(State, Sym, Assumption);

  }


  case nonloc::ConcreteIntKind: {

    bool b = Cond.castAs<nonloc::ConcreteInt>().getValue() != 0;

    bool isFeasible = b ? Assumption : !Assumption;

    return isFeasible ? State : nullptr;

  }


  case nonloc::PointerToMemberKind: {

    bool IsNull = !Cond.castAs<nonloc::PointerToMember>().isNullMemberPointer();

    bool IsFeasible = IsNull ? Assumption : !Assumption;

    return IsFeasible ? State : nullptr;

  }


  case nonloc::LocAsIntegerKind:

    return assumeInternal(State, Cond.castAs<nonloc::LocAsInteger>().getLoc(),

                          Assumption);

  } // end switch

}


ProgramStateRef SimpleConstraintManager::assumeInclusiveRangeInternal(

    ProgramStateRef State, NonLoc Value, const llvm::APSInt &From,

    const llvm::APSInt &To, bool InRange) {


  assert(From.isUnsigned() == To.isUnsigned() &&

         From.getBitWidth() == To.getBitWidth() &&

         "Values should have same types!");


  if (!canReasonAbout(Value)) {

    // Just add the constraint to the expression without trying to simplify.

    SymbolRef Sym = Value.getAsSymbol();

    assert(Sym);

    return assumeSymInclusiveRange(State, Sym, From, To, InRange);

  }


  switch (Value.getKind()) {

  default:

    llvm_unreachable("'assumeInclusiveRange' is not implemented"

                     "for this NonLoc");


  case nonloc::LocAsIntegerKind:

  case nonloc::SymbolValKind: {

    if (SymbolRef Sym = Value.getAsSymbol())

      return assumeSymInclusiveRange(State, Sym, From, To, InRange);

    return State;

  } // end switch


  case nonloc::ConcreteIntKind: {

    const llvm::APSInt &IntVal = Value.castAs<nonloc::ConcreteInt>().getValue();

    bool IsInRange = IntVal >= From && IntVal <= To;

    bool isFeasible = (IsInRange == InRange);

    return isFeasible ? State : nullptr;

  }

  } // end switch

}


} // end of namespace ento


} // end of namespace clang

APSIntType.h

ExprEngine.h

NullConstraint::IsNull
@ IsNull

ProgramState.h

SimpleConstraintManager.h

b
__device__ __2f16 b
Definition: __clang_hip_libdevice_declares.h:303

clang::ASTContext::VoidPtrTy
CanQualType VoidPtrTy
Definition: ASTContext.h:1146

clang::ASTContext::BoolTy
CanQualType BoolTy
Definition: ASTContext.h:1120

clang::QualType
A (possibly-)qualified type.
Definition: Type.h:941

clang::Value
Definition: Value.h:93

clang::Value::getKind
Kind getKind() const
Definition: Value.h:136

clang::ento::ConstraintManager::canReasonAbout
virtual bool canReasonAbout(SVal X) const =0
canReasonAbout - Not all ConstraintManagers can accurately reason about all SVal values.

clang::ento::DefinedSVal
Definition: SVals.h:220

clang::ento::ExprEngine::processAssume
ProgramStateRef processAssume(ProgramStateRef state, SVal cond, bool assumption)
evalAssume - Callback function invoked by the ConstraintManager when making assumptions about state v...
Definition: ExprEngine.cpp:667

clang::ento::Loc
Definition: SVals.h:252

clang::ento::MemRegion
MemRegion - The root abstract class for all memory regions.
Definition: MemRegion.h:97

clang::ento::NonLoc
Definition: SVals.h:235

clang::ento::SValBuilder
Definition: SValBuilder.h:53

clang::ento::SValBuilder::getContext
ASTContext & getContext()
Definition: SValBuilder.h:148

clang::ento::SValBuilder::evalCast
SVal evalCast(SVal V, QualType CastTy, QualType OriginalTy)
Cast a given SVal to another SVal using given QualType's.
Definition: SValBuilder.cpp:1104

clang::ento::SVal::getAs
std::optional< T > getAs() const
Convert to the specified SVal type, returning std::nullopt if this SVal is not of the desired type.
Definition: SVals.h:86

clang::ento::SVal::castAs
T castAs() const
Convert to the specified SVal type, asserting that this SVal is of the desired type.
Definition: SVals.h:82

clang::ento::SimpleConstraintManager::assumeInclusiveRangeInternal
ProgramStateRef assumeInclusiveRangeInternal(ProgramStateRef State, NonLoc Value, const llvm::APSInt &From, const llvm::APSInt &To, bool InRange) override
Definition: SimpleConstraintManager.cpp:95

clang::ento::SimpleConstraintManager::assumeSym
virtual ProgramStateRef assumeSym(ProgramStateRef State, SymbolRef Sym, bool Assumption)=0
Given a symbolic expression that can be reasoned about, assume that it is true/false and generate the...

clang::ento::SimpleConstraintManager::~SimpleConstraintManager
~SimpleConstraintManager() override
Definition: SimpleConstraintManager.cpp:24

clang::ento::SimpleConstraintManager::assumeSymUnsupported
virtual ProgramStateRef assumeSymUnsupported(ProgramStateRef State, SymbolRef Sym, bool Assumption)=0
Given a symbolic expression that cannot be reasoned about, assume that it is zero/nonzero and add it ...

clang::ento::SimpleConstraintManager::assumeSymInclusiveRange
virtual ProgramStateRef assumeSymInclusiveRange(ProgramStateRef State, SymbolRef Sym, const llvm::APSInt &From, const llvm::APSInt &To, bool InRange)=0
Given a symbolic expression within the range [From, To], assume that it is true/false and generate th...

clang::ento::SimpleConstraintManager::assumeInternal
ProgramStateRef assumeInternal(ProgramStateRef State, DefinedSVal Cond, bool Assumption) override
Ensures that the DefinedSVal conditional is expressed as a NonLoc by creating boolean casts to handle...
Definition: SimpleConstraintManager.cpp:26

clang::ento::SymExpr
Symbolic value.
Definition: SymExpr.h:30

clang::ento::TypedRegion
TypedRegion - An abstract class representing regions that are typed.
Definition: MemRegion.h:511

clang::ento::nonloc::ConcreteInt
Value representing integer constant.
Definition: SVals.h:297

llvm::IntrusiveRefCntPtr< const ProgramState >

clang::ento::ProgramStateRef
IntrusiveRefCntPtr< const ProgramState > ProgramStateRef
Definition: ProgramState_Fwd.h:37

clang::ento::SymbolRef
const SymExpr * SymbolRef
Definition: SymExpr.h:113

clang
The JSON file list parser is used to communicate input to InstallAPI.
Definition: CalledOnceCheck.h:17

clang::T
const FunctionProtoType * T
Definition: RecursiveASTVisitor.h:1359