This is an archive of the discontinued LLVM Phabricator instance.

Differential D117012

[clang][dataflow] Add transfer functions for data members and this pointers
ClosedPublic

Authored by sgatev on Jan 11 2022, 4:18 AM.

Details

Reviewers
ymandel
xazax.hun
gribozavr2
Commits
rG99f7d55eeeec: [clang][dataflow] Add transfer functions for data members and this pointers
Summary

This is part of the implementation of the dataflow analysis framework.
See "[RFC] A dataflow analysis framework for Clang AST" on cfe-dev.

Diff Detail

Event Timeline

sgatev created this revision.Jan 11 2022, 4:18 AM
Herald added a subscriber: rnkovacs. · View Herald TranscriptJan 11 2022, 4:18 AM
sgatev requested review of this revision.Jan 11 2022, 4:18 AM
Herald added a project: Restricted Project. · View Herald TranscriptJan 11 2022, 4:18 AM
sgatev updated this revision to Diff 398907.Jan 11 2022, 4:23 AM

Add missing include.

Harbormaster completed remote builds in B142629: Diff 398907.Jan 11 2022, 5:14 AM
ymandel retitled this revision from [clang][dataflow] Add transfer functions data members and this pointers to [clang][dataflow] Add transfer functions for data members and this pointers.Jan 11 2022, 9:15 AM
ymandel accepted this revision.Jan 11 2022, 11:10 AM

Thanks!

clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp
57

nit: invert the if and return?

clang/lib/Analysis/FlowSensitive/Transfer.cpp
145

nit: maybe comment to explain why we use this setting?

clang/unittests/Analysis/FlowSensitive/TransferTest.cpp
834

maybe dyn_cast with ASSERT? (or somesuch)

919

Why EXPECT here but ASSERT (as last line) in previous tests?

1040

dyn_cast and ASSERT (or somesuch)? I'd think that whether or not we have a registered this in the environment is something we want to test?

1059

why test a class distinct from a struct? Is there a meaningful difference between the two with regard to our model? if so, might it be worth instead testing explicit public vs private?

This revision is now accepted and ready to land.Jan 11 2022, 11:10 AM
xazax.hun added inline comments.Jan 11 2022, 11:41 AM
clang/include/clang/Analysis/FlowSensitive/DataflowAnalysisContext.h
120

It feels a bit wrong to have a separate ThisPointeeLoc here. But as far as I understand, this is an artifact of the AST representation we have. I think a superior AST representation would have an implicit ParmVarDecl to represent this, so we would not need to do any special handling at all, the general code path would do the right thing. I think the C++ language, with the deducing this started its approach in this direction officially. I really hope someone will have the time to fix all the mess and get rid of all the unnecessary corner cases in the foreseeable future :)

clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp
52

There might be an optimization opportunity for initValueInStorageLocation. If we initialize a class or struct, we will end up create locations for all of the fields recursively (unless self-referential) right? Actually, in many of the codebases we cannot even access many of those fields because they might be private/protected etc. Unfortunately, it might not be easy to query whether a field is accessible from this method, but I wonder if it is worth a TODO somewhere.

clang/lib/Analysis/FlowSensitive/Transfer.cpp
131

Nit: I got confused for a second what will happen in a loop. I wonder if createStorageLocation is better renamed to createOrGetStorageLocation to express the fact it will not always create a new location. But I don't have strong feelings about this, also feel free to defer to a later PR.

141–142

I wonder if we also want to create a non-null pointer value for these in the future so we can evaluate certain if statements.

clang/unittests/Analysis/FlowSensitive/TransferTest.cpp
813

I wonder if we can make the tests a bit more concise by merging some of them. E.g. we could have a single test with both a pointer, a reference, and a value param. Although I understand that some people like to keep most tests minimal, so feel free to ignore this.

1062

I'd love to see a test with multiple fields and a nested struct.

sgatev updated this revision to Diff 399094.Jan 11 2022, 2:58 PM
sgatev marked 12 inline comments as done.

Address reviewers' comments.

sgatev added a comment.Jan 11 2022, 3:00 PM

Thank you both for the reviews!

clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp
52

Right. I added a FIXME in initValueInStorageLocationUnlessSelfReferential.

57

I prefer to keep the block self-contained as we might end up adding code after the outer if statement.

clang/lib/Analysis/FlowSensitive/Transfer.cpp
131

Ack. I added a FIXME.

141–142

I added a FIXME.

clang/unittests/Analysis/FlowSensitive/TransferTest.cpp
813

I'll keep the tests separate for now, but I'll think about how to make them more concise.

919

My bad. I updated all tests to use ASSERT only where necessary.

1059

For completeness. Changing the isStructureOrClassType predicate in initValueInStorageLocationUnlessSelfReferential to isStructureType or isClassType should make one of these tests fail. I'll address public and private members in a follow up.

1062

I added a nested struct and an extra member.

Harbormaster completed remote builds in B142753: Diff 399094.Jan 11 2022, 3:41 PM
xazax.hun accepted this revision.Jan 11 2022, 3:52 PM
xazax.hun added inline comments.Jan 11 2022, 3:55 PM
clang/unittests/Analysis/FlowSensitive/TransferTest.cpp
1034

A chained access would be nice, like Qux.Baz.

sgatev updated this revision to Diff 399219.Jan 11 2022, 11:18 PM

Address reviewers' comments.

sgatev marked an inline comment as done.Jan 11 2022, 11:18 PM
This revision was landed with ongoing or failed builds.Jan 11 2022, 11:44 PM
Closed by commit rG99f7d55eeeec: [clang][dataflow] Add transfer functions for data members and this pointers (authored by sgatev). · Explain Why
This revision was automatically updated to reflect the committed changes.
sgatev added a commit: rG99f7d55eeeec: [clang][dataflow] Add transfer functions for data members and this pointers.
Harbormaster completed remote builds in B142845: Diff 399219.Jan 11 2022, 11:49 PM

Revision Contents

PathSize
clang/
include/
clang/
Analysis/
FlowSensitive/
18 lines
26 lines
lib/
Analysis/
FlowSensitive/
37 lines
43 lines
unittests/
Analysis/
FlowSensitive/
2 lines
664 lines

Diff 399226

clang/include/clang/Analysis/FlowSensitive/DataflowAnalysisContext.h

Show First 20 LinesShow All 82 Lines▼ Show 20 Linespublic:
/// Returns the storage location assigned to `E` or null if `E` has no /// Returns the storage location assigned to `E` or null if `E` has no
/// assigned storage location. /// assigned storage location.
StorageLocation *getStorageLocation(const Expr &E) const { StorageLocation *getStorageLocation(const Expr &E) const {
auto It = ExprToLoc.find(&E); auto It = ExprToLoc.find(&E);
return It == ExprToLoc.end() ? nullptr : It->second; return It == ExprToLoc.end() ? nullptr : It->second;
} }
/// Assigns `Loc` as the storage location of the `this` pointee.
///
/// Requirements:
///
/// The `this` pointee must not be assigned a storage location.
void setThisPointeeStorageLocation(StorageLocation &Loc) {
assert(ThisPointeeLoc == nullptr);
ThisPointeeLoc = &Loc;
}
/// Returns the storage location assigned to the `this` pointee or null if the
/// `this` pointee has no assigned storage location.
StorageLocation *getThisPointeeStorageLocation() const {
return ThisPointeeLoc;
}
private: private:
// Storage for the state of a program. // Storage for the state of a program.
std::vector<std::unique_ptr<StorageLocation>> Locs; std::vector<std::unique_ptr<StorageLocation>> Locs;
std::vector<std::unique_ptr<Value>> Vals; std::vector<std::unique_ptr<Value>> Vals;
// Maps from program declarations and statements to storage locations that are // Maps from program declarations and statements to storage locations that are
// assigned to them. These assignments are global (aggregated across all basic // assigned to them. These assignments are global (aggregated across all basic
// blocks) and are used to produce stable storage locations when the same // blocks) and are used to produce stable storage locations when the same
// basic blocks are evaluated multiple times. The storage locations that are // basic blocks are evaluated multiple times. The storage locations that are
// in scope for a particular basic block are stored in `Environment`. // in scope for a particular basic block are stored in `Environment`.
llvm::DenseMap<const ValueDecl *, StorageLocation *> DeclToLoc; llvm::DenseMap<const ValueDecl *, StorageLocation *> DeclToLoc;
llvm::DenseMap<const Expr *, StorageLocation *> ExprToLoc; llvm::DenseMap<const Expr *, StorageLocation *> ExprToLoc;
// FIXME: Add `StorageLocation` for `this`. StorageLocation *ThisPointeeLoc = nullptr;
xazax.hunUnsubmitted
Done
ReplyInline Actions

It feels a bit wrong to have a separate ThisPointeeLoc here. But as far as I understand, this is an artifact of the AST representation we have. I think a superior AST representation would have an implicit ParmVarDecl to represent this, so we would not need to do any special handling at all, the general code path would do the right thing. I think the C++ language, with the deducing this started its approach in this direction officially. I really hope someone will have the time to fix all the mess and get rid of all the unnecessary corner cases in the foreseeable future :)

xazax.hun: It feels a bit wrong to have a separate `ThisPointeeLoc` here. But as far as I understand, this…
// FIXME: Add support for boolean expressions. // FIXME: Add support for boolean expressions.
}; };
} // namespace dataflow } // namespace dataflow
} // namespace clang } // namespace clang
#endif // LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_DATAFLOWANALYSISCONTEXT_H #endif // LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_DATAFLOWANALYSISCONTEXT_H

clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h

Show All 10 Lines
// program at given program points. // program at given program points.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#ifndef LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_DATAFLOWENVIRONMENT_H #ifndef LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_DATAFLOWENVIRONMENT_H
#define LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_DATAFLOWENVIRONMENT_H #define LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_DATAFLOWENVIRONMENT_H
#include "clang/AST/Decl.h" #include "clang/AST/Decl.h"
#include "clang/AST/DeclBase.h"
#include "clang/AST/Expr.h" #include "clang/AST/Expr.h"
#include "clang/AST/Type.h" #include "clang/AST/Type.h"
#include "clang/AST/TypeOrdering.h" #include "clang/AST/TypeOrdering.h"
#include "clang/Analysis/FlowSensitive/DataflowAnalysisContext.h" #include "clang/Analysis/FlowSensitive/DataflowAnalysisContext.h"
#include "clang/Analysis/FlowSensitive/DataflowLattice.h" #include "clang/Analysis/FlowSensitive/DataflowLattice.h"
#include "clang/Analysis/FlowSensitive/StorageLocation.h" #include "clang/Analysis/FlowSensitive/StorageLocation.h"
#include "clang/Analysis/FlowSensitive/Value.h" #include "clang/Analysis/FlowSensitive/Value.h"
#include "llvm/ADT/DenseMap.h" #include "llvm/ADT/DenseMap.h"
#include "llvm/ADT/DenseSet.h" #include "llvm/ADT/DenseSet.h"
namespace clang { namespace clang {
namespace dataflow { namespace dataflow {
/// Indicates what kind of indirections should be skipped past when retrieving /// Indicates what kind of indirections should be skipped past when retrieving
/// storage locations or values. /// storage locations or values.
/// ///
/// FIXME: Consider renaming this or replacing it with a more appropriate model. /// FIXME: Consider renaming this or replacing it with a more appropriate model.
/// See the discussion in https://reviews.llvm.org/D116596 for context. /// See the discussion in https://reviews.llvm.org/D116596 for context.
enum class SkipPast { enum class SkipPast {
/// No indirections should be skipped past. /// No indirections should be skipped past.
None, None,
/// An optional reference should be skipped past. /// An optional reference should be skipped past.
Reference, Reference,
/// An optional reference should be skipped past, then an optional pointer
/// should be skipped past.
ReferenceThenPointer,
}; };
/// Holds the state of the program (store and heap) at a given program point. /// Holds the state of the program (store and heap) at a given program point.
class Environment { class Environment {
public: public:
Environment(DataflowAnalysisContext &DACtx) : DACtx(&DACtx) {} /// Creates an environment that uses `DACtx` to store objects that encompass
/// the state of a program.
explicit Environment(DataflowAnalysisContext &DACtx) : DACtx(&DACtx) {}
/// Creates an environment that uses `DACtx` to store objects that encompass
/// the state of a program.
///
/// If `DeclCtx` is a function, initializes the environment with symbolic
/// representations of the function parameters.
///
/// If `DeclCtx` is a non-static member function, initializes the environment
/// with a symbolic representation of the `this` pointee.
Environment(DataflowAnalysisContext &DACtx, const DeclContext &DeclCtx);
bool operator==(const Environment &) const; bool operator==(const Environment &) const;
LatticeJoinEffect join(const Environment &); LatticeJoinEffect join(const Environment &);
// FIXME: Rename `createOrGetStorageLocation` to `getOrCreateStorageLocation`,
// `getStableStorageLocation`, or something more appropriate.
/// Creates a storage location appropriate for `Type`. Does not assign a value /// Creates a storage location appropriate for `Type`. Does not assign a value
/// to the returned storage location in the environment. /// to the returned storage location in the environment.
/// ///
/// Requirements: /// Requirements:
/// ///
/// `Type` must not be null. /// `Type` must not be null.
StorageLocation &createStorageLocation(QualType Type); StorageLocation &createStorageLocation(QualType Type);
Show All 26 Linespublic:
/// `E` must not be assigned a storage location in the environment. /// `E` must not be assigned a storage location in the environment.
void setStorageLocation(const Expr &E, StorageLocation &Loc); void setStorageLocation(const Expr &E, StorageLocation &Loc);
/// Returns the storage location assigned to `E` in the environment, applying /// Returns the storage location assigned to `E` in the environment, applying
/// the `SP` policy for skipping past indirections, or null if `E` isn't /// the `SP` policy for skipping past indirections, or null if `E` isn't
/// assigned a storage location in the environment. /// assigned a storage location in the environment.
StorageLocation *getStorageLocation(const Expr &E, SkipPast SP) const; StorageLocation *getStorageLocation(const Expr &E, SkipPast SP) const;
/// Returns the storage location assigned to the `this` pointee in the
/// environment or null if the `this` pointee has no assigned storage location
/// in the environment.
StorageLocation *getThisPointeeStorageLocation() const;
/// Creates a value appropriate for `Type`, assigns it to `Loc`, and returns /// Creates a value appropriate for `Type`, assigns it to `Loc`, and returns
/// it, if `Type` is supported, otherwise return null. If `Type` is a pointer /// it, if `Type` is supported, otherwise return null. If `Type` is a pointer
/// or reference type, creates all the necessary storage locations and values /// or reference type, creates all the necessary storage locations and values
/// for indirections until it finds a non-pointer/non-reference type. /// for indirections until it finds a non-pointer/non-reference type.
/// ///
/// Requirements: /// Requirements:
/// ///
/// `Type` must not be null. /// `Type` must not be null.
▲ Show 20 LinesShow All 63 LinesShow Last 20 Lines

clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp

//===-- DataflowEnvironment.cpp ---------------------------------*- C++ -*-===// //===-- DataflowEnvironment.cpp ---------------------------------*- C++ -*-===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// //
// This file defines an Environment class that is used by dataflow analyses // This file defines an Environment class that is used by dataflow analyses
// that run over Control-Flow Graphs (CFGs) to keep track of the state of the // that run over Control-Flow Graphs (CFGs) to keep track of the state of the
// program at given program points. // program at given program points.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "clang/Analysis/FlowSensitive/DataflowEnvironment.h" #include "clang/Analysis/FlowSensitive/DataflowEnvironment.h"
#include "clang/AST/Decl.h" #include "clang/AST/Decl.h"
#include "clang/AST/DeclCXX.h"
#include "clang/AST/Type.h" #include "clang/AST/Type.h"
#include "clang/Analysis/FlowSensitive/DataflowLattice.h" #include "clang/Analysis/FlowSensitive/DataflowLattice.h"
#include "clang/Analysis/FlowSensitive/StorageLocation.h" #include "clang/Analysis/FlowSensitive/StorageLocation.h"
#include "clang/Analysis/FlowSensitive/Value.h" #include "clang/Analysis/FlowSensitive/Value.h"
#include "llvm/ADT/DenseMap.h" #include "llvm/ADT/DenseMap.h"
#include "llvm/ADT/DenseSet.h" #include "llvm/ADT/DenseSet.h"
#include "llvm/Support/ErrorHandling.h" #include "llvm/Support/ErrorHandling.h"
#include <memory> #include <memory>
Show All 10 Linesllvm::DenseMap<K, V> intersectDenseMaps(const llvm::DenseMap<K, V> &Map1,
for (auto &Entry : Map1) { for (auto &Entry : Map1) {
auto It = Map2.find(Entry.first); auto It = Map2.find(Entry.first);
if (It != Map2.end() && Entry.second == It->second) if (It != Map2.end() && Entry.second == It->second)
Result.insert({Entry.first, Entry.second}); Result.insert({Entry.first, Entry.second});
} }
return Result; return Result;
} }
Environment::Environment(DataflowAnalysisContext &DACtx,
const DeclContext &DeclCtx)
: Environment(DACtx) {
if (const auto *FuncDecl = dyn_cast<FunctionDecl>(&DeclCtx)) {
for (const auto *ParamDecl : FuncDecl->parameters()) {
assert(ParamDecl != nullptr);
auto &ParamLoc = createStorageLocation(*ParamDecl);
setStorageLocation(*ParamDecl, ParamLoc);
initValueInStorageLocation(ParamLoc, ParamDecl->getType());
xazax.hunUnsubmitted
Done
ReplyInline Actions

There might be an optimization opportunity for initValueInStorageLocation. If we initialize a class or struct, we will end up create locations for all of the fields recursively (unless self-referential) right? Actually, in many of the codebases we cannot even access many of those fields because they might be private/protected etc. Unfortunately, it might not be easy to query whether a field is accessible from this method, but I wonder if it is worth a TODO somewhere.

xazax.hun: There might be an optimization opportunity for `initValueInStorageLocation`. If we initialize a…
sgatevAuthorUnsubmitted
Done
ReplyInline Actions

Right. I added a FIXME in initValueInStorageLocationUnlessSelfReferential.

sgatev: Right. I added a FIXME in `initValueInStorageLocationUnlessSelfReferential`.
}
}
if (const auto *MethodDecl = dyn_cast<CXXMethodDecl>(&DeclCtx)) {
if (!MethodDecl->isStatic()) {
ymandelUnsubmitted
Done
ReplyInline Actions

nit: invert the if and return?

ymandel: nit: invert the if and return?
sgatevAuthorUnsubmitted
Done
ReplyInline Actions

I prefer to keep the block self-contained as we might end up adding code after the outer if statement.

sgatev: I prefer to keep the block self-contained as we might end up adding code after the outer if…
QualType ThisPointeeType = MethodDecl->getThisObjectType();
// FIXME: Add support for union types.
if (!ThisPointeeType->isUnionType()) {
auto &ThisPointeeLoc = createStorageLocation(ThisPointeeType);
DACtx.setThisPointeeStorageLocation(ThisPointeeLoc);
initValueInStorageLocation(ThisPointeeLoc, ThisPointeeType);
}
}
}
}
bool Environment::operator==(const Environment &Other) const { bool Environment::operator==(const Environment &Other) const {
assert(DACtx == Other.DACtx); assert(DACtx == Other.DACtx);
return DeclToLoc == Other.DeclToLoc && LocToVal == Other.LocToVal; return DeclToLoc == Other.DeclToLoc && LocToVal == Other.LocToVal;
} }
LatticeJoinEffect Environment::join(const Environment &Other) { LatticeJoinEffect Environment::join(const Environment &Other) {
assert(DACtx == Other.DACtx); assert(DACtx == Other.DACtx);
▲ Show 20 LinesShow All 68 Lines▼ Show 20 Lines
} }
StorageLocation *Environment::getStorageLocation(const Expr &E, StorageLocation *Environment::getStorageLocation(const Expr &E,
SkipPast SP) const { SkipPast SP) const {
auto It = ExprToLoc.find(&E); auto It = ExprToLoc.find(&E);
return It == ExprToLoc.end() ? nullptr : &skip(*It->second, SP); return It == ExprToLoc.end() ? nullptr : &skip(*It->second, SP);
} }
StorageLocation *Environment::getThisPointeeStorageLocation() const {
return DACtx->getThisPointeeStorageLocation();
}
void Environment::setValue(const StorageLocation &Loc, Value &Value) { void Environment::setValue(const StorageLocation &Loc, Value &Value) {
LocToVal[&Loc] = &Value; LocToVal[&Loc] = &Value;
} }
Value *Environment::getValue(const StorageLocation &Loc) const { Value *Environment::getValue(const StorageLocation &Loc) const {
auto It = LocToVal.find(&Loc); auto It = LocToVal.find(&Loc);
return It == LocToVal.end() ? nullptr : It->second; return It == LocToVal.end() ? nullptr : It->second;
} }
▲ Show 20 LinesShow All 59 Lines▼ Show 20 Lines if (Type->isPointerType()) {
auto &Val = takeOwnership(std::make_unique<PointerValue>(PointeeLoc)); auto &Val = takeOwnership(std::make_unique<PointerValue>(PointeeLoc));
setValue(Loc, Val); setValue(Loc, Val);
return &Val; return &Val;
} }
if (Type->isStructureOrClassType()) { if (Type->isStructureOrClassType()) {
auto *AggregateLoc = cast<AggregateStorageLocation>(&Loc); auto *AggregateLoc = cast<AggregateStorageLocation>(&Loc);
// FIXME: Initialize only fields that are accessed in the context that is
// being analyzed.
llvm::DenseMap<const ValueDecl *, Value *> FieldValues; llvm::DenseMap<const ValueDecl *, Value *> FieldValues;
for (const FieldDecl *Field : Type->getAsRecordDecl()->fields()) { for (const FieldDecl *Field : Type->getAsRecordDecl()->fields()) {
assert(Field != nullptr); assert(Field != nullptr);
QualType FieldType = Field->getType(); QualType FieldType = Field->getType();
if (Visited.contains(FieldType.getCanonicalType())) if (Visited.contains(FieldType.getCanonicalType()))
continue; continue;
Show All 27 LinesStorageLocation &Environment::skip(StorageLocation &Loc, SkipPast SP) const {
case SkipPast::None: case SkipPast::None:
return Loc; return Loc;
case SkipPast::Reference: case SkipPast::Reference:
// References cannot be chained so we only need to skip past one level of // References cannot be chained so we only need to skip past one level of
// indirection. // indirection.
if (auto *Val = dyn_cast_or_null<ReferenceValue>(getValue(Loc))) if (auto *Val = dyn_cast_or_null<ReferenceValue>(getValue(Loc)))
return Val->getPointeeLoc(); return Val->getPointeeLoc();
return Loc; return Loc;
case SkipPast::ReferenceThenPointer:
StorageLocation &LocPastRef = skip(Loc, SkipPast::Reference);
if (auto *Val = dyn_cast_or_null<PointerValue>(getValue(LocPastRef)))
return Val->getPointeeLoc();
return LocPastRef;
} }
llvm_unreachable("bad SkipPast kind"); llvm_unreachable("bad SkipPast kind");
} }
const StorageLocation &Environment::skip(const StorageLocation &Loc, const StorageLocation &Environment::skip(const StorageLocation &Loc,
SkipPast SP) const { SkipPast SP) const {
return skip(*const_cast<StorageLocation *>(&Loc), SP); return skip(*const_cast<StorageLocation *>(&Loc), SP);
} }
} // namespace dataflow } // namespace dataflow
} // namespace clang } // namespace clang

clang/lib/Analysis/FlowSensitive/Transfer.cpp

Show All 9 Lines
// update an environment accordingly. // update an environment accordingly.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "clang/Analysis/FlowSensitive/Transfer.h" #include "clang/Analysis/FlowSensitive/Transfer.h"
#include "clang/AST/Decl.h" #include "clang/AST/Decl.h"
#include "clang/AST/DeclBase.h" #include "clang/AST/DeclBase.h"
#include "clang/AST/Expr.h" #include "clang/AST/Expr.h"
#include "clang/AST/ExprCXX.h"
#include "clang/AST/OperationKinds.h" #include "clang/AST/OperationKinds.h"
#include "clang/AST/Stmt.h" #include "clang/AST/Stmt.h"
#include "clang/AST/StmtVisitor.h" #include "clang/AST/StmtVisitor.h"
#include "clang/Analysis/FlowSensitive/DataflowEnvironment.h" #include "clang/Analysis/FlowSensitive/DataflowEnvironment.h"
#include "clang/Basic/OperatorKinds.h" #include "clang/Basic/OperatorKinds.h"
#include "llvm/Support/Casting.h" #include "llvm/Support/Casting.h"
#include <cassert> #include <cassert>
#include <memory> #include <memory>
▲ Show 20 LinesShow All 92 Lines▼ Show 20 Lines if (S->getOpcode() == UO_Deref) {
auto &Loc = Env.createStorageLocation(*S); auto &Loc = Env.createStorageLocation(*S);
Env.setStorageLocation(*S, Loc); Env.setStorageLocation(*S, Loc);
Env.setValue(Loc, Env.takeOwnership(std::make_unique<ReferenceValue>( Env.setValue(Loc, Env.takeOwnership(std::make_unique<ReferenceValue>(
SubExprVal->getPointeeLoc()))); SubExprVal->getPointeeLoc())));
} }
// FIXME: Add support for UO_AddrOf, UO_LNot. // FIXME: Add support for UO_AddrOf, UO_LNot.
} }
void VisitCXXThisExpr(const CXXThisExpr *S) {
auto *ThisPointeeLoc = Env.getThisPointeeStorageLocation();
assert(ThisPointeeLoc != nullptr);
auto &Loc = Env.createStorageLocation(*S);
xazax.hunUnsubmitted
Done
ReplyInline Actions

Nit: I got confused for a second what will happen in a loop. I wonder if createStorageLocation is better renamed to createOrGetStorageLocation to express the fact it will not always create a new location. But I don't have strong feelings about this, also feel free to defer to a later PR.

xazax.hun: Nit: I got confused for a second what will happen in a loop. I wonder if…
sgatevAuthorUnsubmitted
Done
ReplyInline Actions

Ack. I added a FIXME.

sgatev: Ack. I added a FIXME.
Env.setStorageLocation(*S, Loc);
Env.setValue(Loc, Env.takeOwnership(
std::make_unique<PointerValue>(*ThisPointeeLoc)));
}
void VisitMemberExpr(const MemberExpr *S) {
ValueDecl *Member = S->getMemberDecl();
assert(Member != nullptr);
// FIXME: Consider assigning pointer values to function member expressions.
if (Member->isFunctionOrFunctionTemplate())
xazax.hunUnsubmitted
Done
ReplyInline Actions

I wonder if we also want to create a non-null pointer value for these in the future so we can evaluate certain if statements.

xazax.hun: I wonder if we also want to create a non-null pointer value for these in the future so we can…
sgatevAuthorUnsubmitted
Done
ReplyInline Actions

I added a FIXME.

sgatev: I added a FIXME.
return;
// The receiver can be either a value or a pointer to a value. Skip past the
ymandelUnsubmitted
Done
ReplyInline Actions

nit: maybe comment to explain why we use this setting?

ymandel: nit: maybe comment to explain why we use this setting?
// indirection to handle both cases.
auto *BaseLoc = cast_or_null<AggregateStorageLocation>(
Env.getStorageLocation(*S->getBase(), SkipPast::ReferenceThenPointer));
if (BaseLoc == nullptr)
return;
// FIXME: Add support for union types.
if (BaseLoc->getType()->isUnionType())
return;
auto &MemberLoc = BaseLoc->getChild(*Member);
if (MemberLoc.getType()->isReferenceType()) {
Env.setStorageLocation(*S, MemberLoc);
} else {
auto &Loc = Env.createStorageLocation(*S);
Env.setStorageLocation(*S, Loc);
Env.setValue(
Loc, Env.takeOwnership(std::make_unique<ReferenceValue>(MemberLoc)));
}
}
// FIXME: Add support for: // FIXME: Add support for:
// - CallExpr // - CallExpr
// - CXXBindTemporaryExpr // - CXXBindTemporaryExpr
// - CXXBoolLiteralExpr // - CXXBoolLiteralExpr
// - CXXConstructExpr // - CXXConstructExpr
// - CXXFunctionalCastExpr // - CXXFunctionalCastExpr
// - CXXOperatorCallExpr // - CXXOperatorCallExpr
// - CXXStaticCastExpr // - CXXStaticCastExpr
// - CXXThisExpr
// - MaterializeTemporaryExpr // - MaterializeTemporaryExpr
// - MemberExpr
private: private:
void visitVarDecl(const VarDecl &D) { void visitVarDecl(const VarDecl &D) {
auto &Loc = Env.createStorageLocation(D); auto &Loc = Env.createStorageLocation(D);
Env.setStorageLocation(D, Loc); Env.setStorageLocation(D, Loc);
const Expr *InitExpr = D.getInit(); const Expr *InitExpr = D.getInit();
if (InitExpr == nullptr) { if (InitExpr == nullptr) {
▲ Show 20 LinesShow All 42 LinesShow Last 20 Lines

clang/unittests/Analysis/FlowSensitive/TestingSupport.h

Show First 20 LinesShow All 93 Lines▼ Show 20 Lines const FunctionDecl *F = ast_matchers::selectFirst<FunctionDecl>(
.bind("target"), .bind("target"),
Context)); Context));
ASSERT_TRUE(F != nullptr) << "Could not find target function."; ASSERT_TRUE(F != nullptr) << "Could not find target function.";
auto CFCtx = ControlFlowContext::build(F, F->getBody(), &F->getASTContext()); auto CFCtx = ControlFlowContext::build(F, F->getBody(), &F->getASTContext());
ASSERT_TRUE((bool)CFCtx) << "Could not build ControlFlowContext."; ASSERT_TRUE((bool)CFCtx) << "Could not build ControlFlowContext.";
DataflowAnalysisContext DACtx; DataflowAnalysisContext DACtx;
Environment Env(DACtx); Environment Env(DACtx, *F);
auto Analysis = MakeAnalysis(Context, Env); auto Analysis = MakeAnalysis(Context, Env);
llvm::Expected<llvm::DenseMap<const clang::Stmt *, std::string>> llvm::Expected<llvm::DenseMap<const clang::Stmt *, std::string>>
StmtToAnnotations = buildStatementToAnnotationMapping(F, AnnotatedCode); StmtToAnnotations = buildStatementToAnnotationMapping(F, AnnotatedCode);
if (auto E = StmtToAnnotations.takeError()) { if (auto E = StmtToAnnotations.takeError()) {
FAIL() << "Failed to build annotation map: " FAIL() << "Failed to build annotation map: "
<< llvm::toString(std::move(E)); << llvm::toString(std::move(E));
return; return;
▲ Show 20 LinesShow All 59 LinesShow Last 20 Lines

clang/unittests/Analysis/FlowSensitive/TransferTest.cpp

Show First 20 LinesShow All 61 Lines▼ Show 20 Linesstatic const ValueDecl *findValueDecl(ASTContext &ASTCtx,
auto *const Result = ast_matchers::selectFirst<ValueDecl>("v", TargetNodes); auto *const Result = ast_matchers::selectFirst<ValueDecl>("v", TargetNodes);
assert(Result != nullptr); assert(Result != nullptr);
return Result; return Result;
} }
TEST_F(TransferTest, IntVarDecl) { TEST_F(TransferTest, IntVarDecl) {
std::string Code = R"( std::string Code = R"(
void target() { void target() {
int foo; int Foo;
// [[p]] // [[p]]
} }
)"; )";
runDataflow( runDataflow(
Code, [](llvm::ArrayRef< Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const StorageLocation *FooLoc = const StorageLocation *FooLoc =
Env.getStorageLocation(*FooDecl, SkipPast::None); Env.getStorageLocation(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc)); ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc));
const Value *FooVal = Env.getValue(*FooLoc); const Value *FooVal = Env.getValue(*FooLoc);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal)); EXPECT_TRUE(isa_and_nonnull<IntegerValue>(FooVal));
}); });
} }
TEST_F(TransferTest, StructVarDecl) { TEST_F(TransferTest, StructVarDecl) {
std::string Code = R"( std::string Code = R"(
struct Foo { struct A {
int Bar; int Bar;
}; };
void target() { void target() {
Foo foo; A Foo;
// [[p]] // [[p]]
} }
)"; )";
runDataflow( runDataflow(
Code, [](llvm::ArrayRef< Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
ASSERT_TRUE(FooDecl->getType()->isStructureType()); ASSERT_TRUE(FooDecl->getType()->isStructureType());
auto FooFields = FooDecl->getType()->getAsRecordDecl()->fields(); auto FooFields = FooDecl->getType()->getAsRecordDecl()->fields();
FieldDecl *BarDecl = nullptr; FieldDecl *BarDecl = nullptr;
for (FieldDecl *Field : FooFields) { for (FieldDecl *Field : FooFields) {
if (Field->getNameAsString() == "Bar") { if (Field->getNameAsString() == "Bar") {
BarDecl = Field; BarDecl = Field;
} else { } else {
FAIL() << "Unexpected field: " << Field->getNameAsString(); FAIL() << "Unexpected field: " << Field->getNameAsString();
} }
} }
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
const auto *FooLoc = cast<AggregateStorageLocation>( const auto *FooLoc = cast<AggregateStorageLocation>(
Env.getStorageLocation(*FooDecl, SkipPast::None)); Env.getStorageLocation(*FooDecl, SkipPast::None));
const auto *BarLoc = const auto *BarLoc =
cast<ScalarStorageLocation>(&FooLoc->getChild(*BarDecl)); cast<ScalarStorageLocation>(&FooLoc->getChild(*BarDecl));
const auto *FooVal = cast<StructValue>(Env.getValue(*FooLoc)); const auto *FooVal = cast<StructValue>(Env.getValue(*FooLoc));
const auto *BarVal = cast<IntegerValue>(&FooVal->getChild(*BarDecl)); const auto *BarVal = cast<IntegerValue>(&FooVal->getChild(*BarDecl));
ASSERT_EQ(Env.getValue(*BarLoc), BarVal); EXPECT_EQ(Env.getValue(*BarLoc), BarVal);
}); });
} }
TEST_F(TransferTest, ClassVarDecl) { TEST_F(TransferTest, ClassVarDecl) {
std::string Code = R"( std::string Code = R"(
class Foo { class A {
int Bar; int Bar;
}; };
void target() { void target() {
Foo foo; A Foo;
// [[p]] // [[p]]
} }
)"; )";
runDataflow( runDataflow(
Code, [](llvm::ArrayRef< Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
ASSERT_TRUE(FooDecl->getType()->isClassType()); ASSERT_TRUE(FooDecl->getType()->isClassType());
auto FooFields = FooDecl->getType()->getAsRecordDecl()->fields(); auto FooFields = FooDecl->getType()->getAsRecordDecl()->fields();
FieldDecl *BarDecl = nullptr; FieldDecl *BarDecl = nullptr;
for (FieldDecl *Field : FooFields) { for (FieldDecl *Field : FooFields) {
if (Field->getNameAsString() == "Bar") { if (Field->getNameAsString() == "Bar") {
BarDecl = Field; BarDecl = Field;
} else { } else {
FAIL() << "Unexpected field: " << Field->getNameAsString(); FAIL() << "Unexpected field: " << Field->getNameAsString();
} }
} }
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
const auto *FooLoc = cast<AggregateStorageLocation>( const auto *FooLoc = cast<AggregateStorageLocation>(
Env.getStorageLocation(*FooDecl, SkipPast::None)); Env.getStorageLocation(*FooDecl, SkipPast::None));
const auto *BarLoc = const auto *BarLoc =
cast<ScalarStorageLocation>(&FooLoc->getChild(*BarDecl)); cast<ScalarStorageLocation>(&FooLoc->getChild(*BarDecl));
const auto *FooVal = cast<StructValue>(Env.getValue(*FooLoc)); const auto *FooVal = cast<StructValue>(Env.getValue(*FooLoc));
const auto *BarVal = cast<IntegerValue>(&FooVal->getChild(*BarDecl)); const auto *BarVal = cast<IntegerValue>(&FooVal->getChild(*BarDecl));
ASSERT_EQ(Env.getValue(*BarLoc), BarVal); EXPECT_EQ(Env.getValue(*BarLoc), BarVal);
}); });
} }
TEST_F(TransferTest, ReferenceVarDecl) { TEST_F(TransferTest, ReferenceVarDecl) {
std::string Code = R"( std::string Code = R"(
struct Foo {}; struct A {};
Foo& getFoo(); A &getA();
void target() { void target() {
Foo& foo = getFoo(); A &Foo = getA();
// [[p]] // [[p]]
} }
)"; )";
runDataflow( runDataflow(
Code, [](llvm::ArrayRef< Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const StorageLocation *FooLoc = const StorageLocation *FooLoc =
Env.getStorageLocation(*FooDecl, SkipPast::None); Env.getStorageLocation(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc)); ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc));
const ReferenceValue *FooVal = const ReferenceValue *FooVal =
cast<ReferenceValue>(Env.getValue(*FooLoc)); cast<ReferenceValue>(Env.getValue(*FooLoc));
const StorageLocation &FooPointeeLoc = FooVal->getPointeeLoc(); const StorageLocation &FooPointeeLoc = FooVal->getPointeeLoc();
ASSERT_TRUE(isa<AggregateStorageLocation>(&FooPointeeLoc)); EXPECT_TRUE(isa<AggregateStorageLocation>(&FooPointeeLoc));
const Value *FooPointeeVal = Env.getValue(FooPointeeLoc); const Value *FooPointeeVal = Env.getValue(FooPointeeLoc);
ASSERT_TRUE(isa_and_nonnull<StructValue>(FooPointeeVal)); EXPECT_TRUE(isa_and_nonnull<StructValue>(FooPointeeVal));
}); });
} }
TEST_F(TransferTest, SelfReferentialReferenceVarDecl) { TEST_F(TransferTest, SelfReferentialReferenceVarDecl) {
std::string Code = R"( std::string Code = R"(
struct Foo; struct A;
struct Baz {}; struct B {};
struct Bar { struct C {
Foo& FooRef; A &FooRef;
Foo* FooPtr; A *FooPtr;
Baz& BazRef; B &BazRef;
Baz* BazPtr; B *BazPtr;
}; };
struct Foo { struct A {
Bar& Bar; C &Bar;
}; };
Foo& getFoo(); A &getA();
void target() { void target() {
Foo& foo = getFoo(); A &Foo = getA();
// [[p]] // [[p]]
} }
)"; )";
runDataflow(Code, [](llvm::ArrayRef<std::pair< runDataflow(Code, [](llvm::ArrayRef<std::pair<
std::string, DataflowAnalysisState<NoopLattice>>> std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
ASSERT_TRUE(FooDecl->getType()->isReferenceType()); ASSERT_TRUE(FooDecl->getType()->isReferenceType());
ASSERT_TRUE(FooDecl->getType().getNonReferenceType()->isStructureType()); ASSERT_TRUE(FooDecl->getType().getNonReferenceType()->isStructureType());
const auto FooFields = const auto FooFields =
FooDecl->getType().getNonReferenceType()->getAsRecordDecl()->fields(); FooDecl->getType().getNonReferenceType()->getAsRecordDecl()->fields();
FieldDecl *BarDecl = nullptr; FieldDecl *BarDecl = nullptr;
▲ Show 20 LinesShow All 42 Lines▼ Show 20 Lines runDataflow(Code, [](llvm::ArrayRef<std::pair<
const auto *BarVal = const auto *BarVal =
cast<ReferenceValue>(&FooPointeeVal->getChild(*BarDecl)); cast<ReferenceValue>(&FooPointeeVal->getChild(*BarDecl));
const auto *BarPointeeVal = const auto *BarPointeeVal =
cast<StructValue>(Env.getValue(BarVal->getPointeeLoc())); cast<StructValue>(Env.getValue(BarVal->getPointeeLoc()));
const auto *FooRefVal = const auto *FooRefVal =
cast<ReferenceValue>(&BarPointeeVal->getChild(*FooRefDecl)); cast<ReferenceValue>(&BarPointeeVal->getChild(*FooRefDecl));
const StorageLocation &FooRefPointeeLoc = FooRefVal->getPointeeLoc(); const StorageLocation &FooRefPointeeLoc = FooRefVal->getPointeeLoc();
ASSERT_THAT(Env.getValue(FooRefPointeeLoc), IsNull()); EXPECT_THAT(Env.getValue(FooRefPointeeLoc), IsNull());
const auto *FooPtrVal = const auto *FooPtrVal =
cast<PointerValue>(&BarPointeeVal->getChild(*FooPtrDecl)); cast<PointerValue>(&BarPointeeVal->getChild(*FooPtrDecl));
const StorageLocation &FooPtrPointeeLoc = FooPtrVal->getPointeeLoc(); const StorageLocation &FooPtrPointeeLoc = FooPtrVal->getPointeeLoc();
ASSERT_THAT(Env.getValue(FooPtrPointeeLoc), IsNull()); EXPECT_THAT(Env.getValue(FooPtrPointeeLoc), IsNull());
const auto *BazRefVal = const auto *BazRefVal =
cast<ReferenceValue>(&BarPointeeVal->getChild(*BazRefDecl)); cast<ReferenceValue>(&BarPointeeVal->getChild(*BazRefDecl));
const StorageLocation &BazRefPointeeLoc = BazRefVal->getPointeeLoc(); const StorageLocation &BazRefPointeeLoc = BazRefVal->getPointeeLoc();
ASSERT_THAT(Env.getValue(BazRefPointeeLoc), NotNull()); EXPECT_THAT(Env.getValue(BazRefPointeeLoc), NotNull());
const auto *BazPtrVal = const auto *BazPtrVal =
cast<PointerValue>(&BarPointeeVal->getChild(*BazPtrDecl)); cast<PointerValue>(&BarPointeeVal->getChild(*BazPtrDecl));
const StorageLocation &BazPtrPointeeLoc = BazPtrVal->getPointeeLoc(); const StorageLocation &BazPtrPointeeLoc = BazPtrVal->getPointeeLoc();
ASSERT_THAT(Env.getValue(BazPtrPointeeLoc), NotNull()); EXPECT_THAT(Env.getValue(BazPtrPointeeLoc), NotNull());
}); });
} }
TEST_F(TransferTest, PointerVarDecl) { TEST_F(TransferTest, PointerVarDecl) {
std::string Code = R"( std::string Code = R"(
struct Foo {}; struct A {};
Foo* getFoo(); A *getA();
void target() { void target() {
Foo* foo = getFoo(); A *Foo = getA();
// [[p]] // [[p]]
} }
)"; )";
runDataflow( runDataflow(
Code, [](llvm::ArrayRef< Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const StorageLocation *FooLoc = const StorageLocation *FooLoc =
Env.getStorageLocation(*FooDecl, SkipPast::None); Env.getStorageLocation(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc)); ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc));
const PointerValue *FooVal = cast<PointerValue>(Env.getValue(*FooLoc)); const PointerValue *FooVal = cast<PointerValue>(Env.getValue(*FooLoc));
const StorageLocation &FooPointeeLoc = FooVal->getPointeeLoc(); const StorageLocation &FooPointeeLoc = FooVal->getPointeeLoc();
ASSERT_TRUE(isa<AggregateStorageLocation>(&FooPointeeLoc)); EXPECT_TRUE(isa<AggregateStorageLocation>(&FooPointeeLoc));
const Value *FooPointeeVal = Env.getValue(FooPointeeLoc); const Value *FooPointeeVal = Env.getValue(FooPointeeLoc);
ASSERT_TRUE(isa_and_nonnull<StructValue>(FooPointeeVal)); EXPECT_TRUE(isa_and_nonnull<StructValue>(FooPointeeVal));
}); });
} }
TEST_F(TransferTest, SelfReferentialPointerVarDecl) { TEST_F(TransferTest, SelfReferentialPointerVarDecl) {
std::string Code = R"( std::string Code = R"(
struct Foo; struct A;
struct Baz {}; struct B {};
struct Bar { struct C {
Foo& FooRef; A &FooRef;
Foo* FooPtr; A *FooPtr;
Baz& BazRef; B &BazRef;
Baz* BazPtr; B *BazPtr;
}; };
struct Foo { struct A {
Bar* Bar; C *Bar;
}; };
Foo* getFoo(); A *getA();
void target() { void target() {
Foo* foo = getFoo(); A *Foo = getA();
// [[p]] // [[p]]
} }
)"; )";
runDataflow( runDataflow(
Code, [](llvm::ArrayRef< Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
ASSERT_TRUE(FooDecl->getType()->isPointerType()); ASSERT_TRUE(FooDecl->getType()->isPointerType());
ASSERT_TRUE(FooDecl->getType() ASSERT_TRUE(FooDecl->getType()
->getAs<PointerType>() ->getAs<PointerType>()
->getPointeeType() ->getPointeeType()
->isStructureType()); ->isStructureType());
const auto FooFields = FooDecl->getType() const auto FooFields = FooDecl->getType()
▲ Show 20 LinesShow All 54 Lines▼ Show 20 Lines runDataflow(
const auto *BarVal = const auto *BarVal =
cast<PointerValue>(&FooPointeeVal->getChild(*BarDecl)); cast<PointerValue>(&FooPointeeVal->getChild(*BarDecl));
const auto *BarPointeeVal = const auto *BarPointeeVal =
cast<StructValue>(Env.getValue(BarVal->getPointeeLoc())); cast<StructValue>(Env.getValue(BarVal->getPointeeLoc()));
const auto *FooRefVal = const auto *FooRefVal =
cast<ReferenceValue>(&BarPointeeVal->getChild(*FooRefDecl)); cast<ReferenceValue>(&BarPointeeVal->getChild(*FooRefDecl));
const StorageLocation &FooRefPointeeLoc = FooRefVal->getPointeeLoc(); const StorageLocation &FooRefPointeeLoc = FooRefVal->getPointeeLoc();
ASSERT_THAT(Env.getValue(FooRefPointeeLoc), IsNull()); EXPECT_THAT(Env.getValue(FooRefPointeeLoc), IsNull());
const auto *FooPtrVal = const auto *FooPtrVal =
cast<PointerValue>(&BarPointeeVal->getChild(*FooPtrDecl)); cast<PointerValue>(&BarPointeeVal->getChild(*FooPtrDecl));
const StorageLocation &FooPtrPointeeLoc = FooPtrVal->getPointeeLoc(); const StorageLocation &FooPtrPointeeLoc = FooPtrVal->getPointeeLoc();
ASSERT_THAT(Env.getValue(FooPtrPointeeLoc), IsNull()); EXPECT_THAT(Env.getValue(FooPtrPointeeLoc), IsNull());
const auto *BazRefVal = const auto *BazRefVal =
cast<ReferenceValue>(&BarPointeeVal->getChild(*BazRefDecl)); cast<ReferenceValue>(&BarPointeeVal->getChild(*BazRefDecl));
const StorageLocation &BazRefPointeeLoc = BazRefVal->getPointeeLoc(); const StorageLocation &BazRefPointeeLoc = BazRefVal->getPointeeLoc();
ASSERT_THAT(Env.getValue(BazRefPointeeLoc), NotNull()); EXPECT_THAT(Env.getValue(BazRefPointeeLoc), NotNull());
const auto *BazPtrVal = const auto *BazPtrVal =
cast<PointerValue>(&BarPointeeVal->getChild(*BazPtrDecl)); cast<PointerValue>(&BarPointeeVal->getChild(*BazPtrDecl));
const StorageLocation &BazPtrPointeeLoc = BazPtrVal->getPointeeLoc(); const StorageLocation &BazPtrPointeeLoc = BazPtrVal->getPointeeLoc();
ASSERT_THAT(Env.getValue(BazPtrPointeeLoc), NotNull()); EXPECT_THAT(Env.getValue(BazPtrPointeeLoc), NotNull());
}); });
} }
TEST_F(TransferTest, JoinVarDecl) { TEST_F(TransferTest, JoinVarDecl) {
std::string Code = R"( std::string Code = R"(
void target(bool b) { void target(bool B) {
int foo; int Foo;
// [[p1]] // [[p1]]
if (b) { if (B) {
int bar; int Bar;
// [[p2]] // [[p2]]
} else { } else {
int baz; int Baz;
// [[p3]] // [[p3]]
} }
(void)0; (void)0;
// [[p4]] // [[p4]]
} }
)"; )";
runDataflow(Code, [](llvm::ArrayRef<std::pair< runDataflow(Code, [](llvm::ArrayRef<std::pair<
std::string, DataflowAnalysisState<NoopLattice>>> std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p4", _), Pair("p3", _), ASSERT_THAT(Results, ElementsAre(Pair("p4", _), Pair("p3", _),
Pair("p2", _), Pair("p1", _))); Pair("p2", _), Pair("p1", _)));
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "bar"); const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "baz"); const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull()); ASSERT_THAT(BazDecl, NotNull());
const Environment &Env1 = Results[3].second.Env; const Environment &Env1 = Results[3].second.Env;
const StorageLocation *FooLoc = const StorageLocation *FooLoc =
Env1.getStorageLocation(*FooDecl, SkipPast::None); Env1.getStorageLocation(*FooDecl, SkipPast::None);
ASSERT_THAT(FooLoc, NotNull()); EXPECT_THAT(FooLoc, NotNull());
ASSERT_THAT(Env1.getStorageLocation(*BarDecl, SkipPast::None), IsNull()); EXPECT_THAT(Env1.getStorageLocation(*BarDecl, SkipPast::None), IsNull());
ASSERT_THAT(Env1.getStorageLocation(*BazDecl, SkipPast::None), IsNull()); EXPECT_THAT(Env1.getStorageLocation(*BazDecl, SkipPast::None), IsNull());
const Environment &Env2 = Results[2].second.Env; const Environment &Env2 = Results[2].second.Env;
ASSERT_EQ(Env2.getStorageLocation(*FooDecl, SkipPast::None), FooLoc); EXPECT_EQ(Env2.getStorageLocation(*FooDecl, SkipPast::None), FooLoc);
ASSERT_THAT(Env2.getStorageLocation(*BarDecl, SkipPast::None), NotNull()); EXPECT_THAT(Env2.getStorageLocation(*BarDecl, SkipPast::None), NotNull());
ASSERT_THAT(Env2.getStorageLocation(*BazDecl, SkipPast::None), IsNull()); EXPECT_THAT(Env2.getStorageLocation(*BazDecl, SkipPast::None), IsNull());
const Environment &Env3 = Results[1].second.Env; const Environment &Env3 = Results[1].second.Env;
ASSERT_EQ(Env3.getStorageLocation(*FooDecl, SkipPast::None), FooLoc); EXPECT_EQ(Env3.getStorageLocation(*FooDecl, SkipPast::None), FooLoc);
ASSERT_THAT(Env3.getStorageLocation(*BarDecl, SkipPast::None), IsNull()); EXPECT_THAT(Env3.getStorageLocation(*BarDecl, SkipPast::None), IsNull());
ASSERT_THAT(Env3.getStorageLocation(*BazDecl, SkipPast::None), NotNull()); EXPECT_THAT(Env3.getStorageLocation(*BazDecl, SkipPast::None), NotNull());
const Environment &Env4 = Results[0].second.Env; const Environment &Env4 = Results[0].second.Env;
ASSERT_EQ(Env4.getStorageLocation(*FooDecl, SkipPast::None), FooLoc); EXPECT_EQ(Env4.getStorageLocation(*FooDecl, SkipPast::None), FooLoc);
ASSERT_THAT(Env4.getStorageLocation(*BarDecl, SkipPast::None), IsNull()); EXPECT_THAT(Env4.getStorageLocation(*BarDecl, SkipPast::None), IsNull());
ASSERT_THAT(Env4.getStorageLocation(*BazDecl, SkipPast::None), IsNull()); EXPECT_THAT(Env4.getStorageLocation(*BazDecl, SkipPast::None), IsNull());
}); });
} }
TEST_F(TransferTest, BinaryOperatorAssign) { TEST_F(TransferTest, BinaryOperatorAssign) {
std::string Code = R"( std::string Code = R"(
void target() { void target() {
int foo; int Foo;
int bar; int Bar;
(bar) = (foo); (Bar) = (Foo);
// [[p]] // [[p]]
} }
)"; )";
runDataflow(Code, runDataflow(Code,
[](llvm::ArrayRef< [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const Value *FooVal = Env.getValue(*FooDecl, SkipPast::None); const Value *FooVal = Env.getValue(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal)); ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal));
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "bar"); const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
EXPECT_EQ(Env.getValue(*BarDecl, SkipPast::None), FooVal); EXPECT_EQ(Env.getValue(*BarDecl, SkipPast::None), FooVal);
}); });
} }
TEST_F(TransferTest, VarDeclInitAssign) { TEST_F(TransferTest, VarDeclInitAssign) {
std::string Code = R"( std::string Code = R"(
void target() { void target() {
int foo; int Foo;
int bar = foo; int Bar = Foo;
// [[p]] // [[p]]
} }
)"; )";
runDataflow(Code, runDataflow(Code,
[](llvm::ArrayRef< [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const Value *FooVal = Env.getValue(*FooDecl, SkipPast::None); const Value *FooVal = Env.getValue(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal)); ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal));
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "bar"); const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
EXPECT_EQ(Env.getValue(*BarDecl, SkipPast::None), FooVal); EXPECT_EQ(Env.getValue(*BarDecl, SkipPast::None), FooVal);
}); });
} }
TEST_F(TransferTest, VarDeclInitAssignChained) { TEST_F(TransferTest, VarDeclInitAssignChained) {
std::string Code = R"( std::string Code = R"(
void target() { void target() {
int foo; int Foo;
int bar; int Bar;
int baz = (bar = foo); int Baz = (Bar = Foo);
// [[p]] // [[p]]
} }
)"; )";
runDataflow(Code, runDataflow(Code,
[](llvm::ArrayRef< [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const Value *FooVal = Env.getValue(*FooDecl, SkipPast::None); const Value *FooVal = Env.getValue(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal)); ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal));
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "bar"); const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "baz"); const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull()); ASSERT_THAT(BazDecl, NotNull());
EXPECT_EQ(Env.getValue(*BarDecl, SkipPast::None), FooVal); EXPECT_EQ(Env.getValue(*BarDecl, SkipPast::None), FooVal);
EXPECT_EQ(Env.getValue(*BazDecl, SkipPast::None), FooVal); EXPECT_EQ(Env.getValue(*BazDecl, SkipPast::None), FooVal);
}); });
} }
TEST_F(TransferTest, VarDeclInitAssignPtrDeref) { TEST_F(TransferTest, VarDeclInitAssignPtrDeref) {
std::string Code = R"( std::string Code = R"(
void target() { void target() {
int foo; int Foo;
int *bar; int *Bar;
*(bar) = foo; *(Bar) = Foo;
int baz = *(bar); int Baz = *(Bar);
// [[p]] // [[p]]
} }
)"; )";
runDataflow(Code, runDataflow(Code,
[](llvm::ArrayRef< [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _))); ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env; const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const Value *FooVal = Env.getValue(*FooDecl, SkipPast::None); const Value *FooVal = Env.getValue(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal)); ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal));
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "bar"); const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
const auto *BarVal = const auto *BarVal =
cast<PointerValue>(Env.getValue(*BarDecl, SkipPast::None)); cast<PointerValue>(Env.getValue(*BarDecl, SkipPast::None));
EXPECT_EQ(Env.getValue(BarVal->getPointeeLoc()), FooVal); EXPECT_EQ(Env.getValue(BarVal->getPointeeLoc()), FooVal);
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "baz"); const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull()); ASSERT_THAT(BazDecl, NotNull());
EXPECT_EQ(Env.getValue(*BazDecl, SkipPast::None), FooVal); EXPECT_EQ(Env.getValue(*BazDecl, SkipPast::None), FooVal);
}); });
} }
TEST_F(TransferTest, AssignToAndFromReference) { TEST_F(TransferTest, AssignToAndFromReference) {
std::string Code = R"( std::string Code = R"(
void target() { void target() {
int foo; int Foo;
int bar; int Bar;
int& baz = foo; int &Baz = Foo;
// [[p1]] // [[p1]]
baz = bar; Baz = Bar;
int qux = baz; int Qux = Baz;
int& quux = baz; int &Quux = Baz;
// [[p2]] // [[p2]]
} }
)"; )";
runDataflow( runDataflow(
Code, [](llvm::ArrayRef< Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>> std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results, Results,
ASTContext &ASTCtx) { ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p1", _), Pair("p2", _))); ASSERT_THAT(Results, ElementsAre(Pair("p1", _), Pair("p2", _)));
const Environment &Env1 = Results[0].second.Env; const Environment &Env1 = Results[0].second.Env;
const Environment &Env2 = Results[1].second.Env; const Environment &Env2 = Results[1].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const Value *FooVal = Env1.getValue(*FooDecl, SkipPast::None); const Value *FooVal = Env1.getValue(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal)); ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal));
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "bar"); const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
const Value *BarVal = Env1.getValue(*BarDecl, SkipPast::None); const Value *BarVal = Env1.getValue(*BarDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(BarVal)); ASSERT_TRUE(isa_and_nonnull<IntegerValue>(BarVal));
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "baz"); const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull()); ASSERT_THAT(BazDecl, NotNull());
EXPECT_EQ(Env1.getValue(*BazDecl, SkipPast::Reference), FooVal); EXPECT_EQ(Env1.getValue(*BazDecl, SkipPast::Reference), FooVal);
EXPECT_EQ(Env2.getValue(*BazDecl, SkipPast::Reference), BarVal); EXPECT_EQ(Env2.getValue(*BazDecl, SkipPast::Reference), BarVal);
EXPECT_EQ(Env2.getValue(*FooDecl, SkipPast::None), BarVal); EXPECT_EQ(Env2.getValue(*FooDecl, SkipPast::None), BarVal);
const ValueDecl *QuxDecl = findValueDecl(ASTCtx, "qux"); const ValueDecl *QuxDecl = findValueDecl(ASTCtx, "Qux");
ASSERT_THAT(QuxDecl, NotNull()); ASSERT_THAT(QuxDecl, NotNull());
EXPECT_EQ(Env2.getValue(*QuxDecl, SkipPast::None), BarVal); EXPECT_EQ(Env2.getValue(*QuxDecl, SkipPast::None), BarVal);
const ValueDecl *QuuxDecl = findValueDecl(ASTCtx, "quux"); const ValueDecl *QuuxDecl = findValueDecl(ASTCtx, "Quux");
ASSERT_THAT(QuuxDecl, NotNull()); ASSERT_THAT(QuuxDecl, NotNull());
EXPECT_EQ(Env2.getValue(*QuuxDecl, SkipPast::Reference), BarVal); EXPECT_EQ(Env2.getValue(*QuuxDecl, SkipPast::Reference), BarVal);
}); });
} }
TEST_F(TransferTest, MultipleParamDecls) {
std::string Code = R"(
void target(int Foo, int Bar) {
(void)0;
// [[p]]
}
)";
runDataflow(Code,
[](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull());
const StorageLocation *FooLoc =
Env.getStorageLocation(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc));
const Value *FooVal = Env.getValue(*FooLoc);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(FooVal));
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull());
const StorageLocation *BarLoc =
Env.getStorageLocation(*BarDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(BarLoc));
const Value *BarVal = Env.getValue(*BarLoc);
EXPECT_TRUE(isa_and_nonnull<IntegerValue>(BarVal));
});
}
TEST_F(TransferTest, StructParamDecl) {
std::string Code = R"(
struct A {
int Bar;
};
void target(A Foo) {
(void)0;
// [[p]]
}
)";
runDataflow(
Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull());
ASSERT_TRUE(FooDecl->getType()->isStructureType());
auto FooFields = FooDecl->getType()->getAsRecordDecl()->fields();
FieldDecl *BarDecl = nullptr;
for (FieldDecl *Field : FooFields) {
if (Field->getNameAsString() == "Bar") {
BarDecl = Field;
} else {
FAIL() << "Unexpected field: " << Field->getNameAsString();
}
}
ASSERT_THAT(BarDecl, NotNull());
const auto *FooLoc = cast<AggregateStorageLocation>(
Env.getStorageLocation(*FooDecl, SkipPast::None));
const auto *BarLoc =
cast<ScalarStorageLocation>(&FooLoc->getChild(*BarDecl));
const auto *FooVal = cast<StructValue>(Env.getValue(*FooLoc));
const auto *BarVal = cast<IntegerValue>(&FooVal->getChild(*BarDecl));
EXPECT_EQ(Env.getValue(*BarLoc), BarVal);
});
}
TEST_F(TransferTest, ReferenceParamDecl) {
std::string Code = R"(
struct A {};
void target(A &Foo) {
xazax.hunUnsubmitted
Done
ReplyInline Actions

I wonder if we can make the tests a bit more concise by merging some of them. E.g. we could have a single test with both a pointer, a reference, and a value param. Although I understand that some people like to keep most tests minimal, so feel free to ignore this.

xazax.hun: I wonder if we can make the tests a bit more concise by merging some of them. E.g. we could…
sgatevAuthorUnsubmitted
Done
ReplyInline Actions

I'll keep the tests separate for now, but I'll think about how to make them more concise.

sgatev: I'll keep the tests separate for now, but I'll think about how to make them more concise.
(void)0;
// [[p]]
}
)";
runDataflow(Code,
[](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull());
const StorageLocation *FooLoc =
Env.getStorageLocation(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc));
const ReferenceValue *FooVal =
dyn_cast<ReferenceValue>(Env.getValue(*FooLoc));
ymandelUnsubmitted
Done
ReplyInline Actions

maybe dyn_cast with ASSERT? (or somesuch)

ymandel: maybe dyn_cast with ASSERT? (or somesuch)
ASSERT_THAT(FooVal, NotNull());
const StorageLocation &FooPointeeLoc = FooVal->getPointeeLoc();
EXPECT_TRUE(isa<AggregateStorageLocation>(&FooPointeeLoc));
const Value *FooPointeeVal = Env.getValue(FooPointeeLoc);
EXPECT_TRUE(isa_and_nonnull<StructValue>(FooPointeeVal));
});
}
TEST_F(TransferTest, PointerParamDecl) {
std::string Code = R"(
struct A {};
void target(A *Foo) {
(void)0;
// [[p]]
}
)";
runDataflow(
Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull());
const StorageLocation *FooLoc =
Env.getStorageLocation(*FooDecl, SkipPast::None);
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(FooLoc));
const PointerValue *FooVal = cast<PointerValue>(Env.getValue(*FooLoc));
const StorageLocation &FooPointeeLoc = FooVal->getPointeeLoc();
EXPECT_TRUE(isa<AggregateStorageLocation>(&FooPointeeLoc));
const Value *FooPointeeVal = Env.getValue(FooPointeeLoc);
EXPECT_TRUE(isa_and_nonnull<StructValue>(FooPointeeVal));
});
}
TEST_F(TransferTest, StructMember) {
std::string Code = R"(
struct A {
int Bar;
};
void target(A Foo) {
int Baz = Foo.Bar;
// [[p]]
}
)";
runDataflow(
Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull());
ASSERT_TRUE(FooDecl->getType()->isStructureType());
auto FooFields = FooDecl->getType()->getAsRecordDecl()->fields();
FieldDecl *BarDecl = nullptr;
for (FieldDecl *Field : FooFields) {
if (Field->getNameAsString() == "Bar") {
BarDecl = Field;
} else {
FAIL() << "Unexpected field: " << Field->getNameAsString();
}
}
ASSERT_THAT(BarDecl, NotNull());
const auto *FooLoc = cast<AggregateStorageLocation>(
Env.getStorageLocation(*FooDecl, SkipPast::None));
const auto *FooVal = cast<StructValue>(Env.getValue(*FooLoc));
const auto *BarVal = cast<IntegerValue>(&FooVal->getChild(*BarDecl));
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull());
ymandelUnsubmitted
Done
ReplyInline Actions

Why EXPECT here but ASSERT (as last line) in previous tests?

ymandel: Why EXPECT here but ASSERT (as last line) in previous tests?
sgatevAuthorUnsubmitted
Done
ReplyInline Actions

My bad. I updated all tests to use ASSERT only where necessary.

sgatev: My bad. I updated all tests to use ASSERT only where necessary.
EXPECT_EQ(Env.getValue(*BazDecl, SkipPast::None), BarVal);
});
}
TEST_F(TransferTest, ClassMember) {
std::string Code = R"(
class A {
public:
int Bar;
};
void target(A Foo) {
int Baz = Foo.Bar;
// [[p]]
}
)";
runDataflow(
Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull());
ASSERT_TRUE(FooDecl->getType()->isClassType());
auto FooFields = FooDecl->getType()->getAsRecordDecl()->fields();
FieldDecl *BarDecl = nullptr;
for (FieldDecl *Field : FooFields) {
if (Field->getNameAsString() == "Bar") {
BarDecl = Field;
} else {
FAIL() << "Unexpected field: " << Field->getNameAsString();
}
}
ASSERT_THAT(BarDecl, NotNull());
const auto *FooLoc = cast<AggregateStorageLocation>(
Env.getStorageLocation(*FooDecl, SkipPast::None));
const auto *FooVal = cast<StructValue>(Env.getValue(*FooLoc));
const auto *BarVal = cast<IntegerValue>(&FooVal->getChild(*BarDecl));
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull());
EXPECT_EQ(Env.getValue(*BazDecl, SkipPast::None), BarVal);
});
}
TEST_F(TransferTest, ReferenceMember) {
std::string Code = R"(
struct A {
int &Bar;
};
void target(A Foo) {
int Baz = Foo.Bar;
// [[p]]
}
)";
runDataflow(
Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull());
ASSERT_TRUE(FooDecl->getType()->isStructureType());
auto FooFields = FooDecl->getType()->getAsRecordDecl()->fields();
FieldDecl *BarDecl = nullptr;
for (FieldDecl *Field : FooFields) {
if (Field->getNameAsString() == "Bar") {
BarDecl = Field;
} else {
FAIL() << "Unexpected field: " << Field->getNameAsString();
}
}
ASSERT_THAT(BarDecl, NotNull());
const auto *FooLoc = cast<AggregateStorageLocation>(
Env.getStorageLocation(*FooDecl, SkipPast::None));
const auto *FooVal = cast<StructValue>(Env.getValue(*FooLoc));
const auto *BarVal = cast<ReferenceValue>(&FooVal->getChild(*BarDecl));
const auto *BarPointeeVal =
cast<IntegerValue>(Env.getValue(BarVal->getPointeeLoc()));
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull());
EXPECT_EQ(Env.getValue(*BazDecl, SkipPast::None), BarPointeeVal);
});
}
TEST_F(TransferTest, StructThisMember) {
std::string Code = R"(
struct A {
int Bar;
struct B {
int Baz;
};
B Qux;
void target() {
int Foo = Bar;
xazax.hunUnsubmitted
Done
ReplyInline Actions

A chained access would be nice, like Qux.Baz.

xazax.hun: A chained access would be nice, like `Qux.Baz`.
int Quux = Qux.Baz;
// [[p]]
}
};
)";
runDataflow(
ymandelUnsubmitted
Done
ReplyInline Actions

dyn_cast and ASSERT (or somesuch)? I'd think that whether or not we have a registered this in the environment is something we want to test?

ymandel: dyn_cast and ASSERT (or somesuch)? I'd think that whether or not we have a registered `this` in…
Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const auto *ThisLoc = dyn_cast<AggregateStorageLocation>(
Env.getThisPointeeStorageLocation());
ASSERT_THAT(ThisLoc, NotNull());
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull());
const auto *BarLoc =
cast<ScalarStorageLocation>(&ThisLoc->getChild(*BarDecl));
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(BarLoc));
const Value *BarVal = Env.getValue(*BarLoc);
ymandelUnsubmitted
Done
ReplyInline Actions

why test a class distinct from a struct? Is there a meaningful difference between the two with regard to our model? if so, might it be worth instead testing explicit public vs private?

ymandel: why test a class distinct from a struct? Is there a meaningful difference between the two with…
sgatevAuthorUnsubmitted
Done
ReplyInline Actions

For completeness. Changing the isStructureOrClassType predicate in initValueInStorageLocationUnlessSelfReferential to isStructureType or isClassType should make one of these tests fail. I'll address public and private members in a follow up.

sgatev: For completeness. Changing the `isStructureOrClassType` predicate in…
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(BarVal));
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
xazax.hunUnsubmitted
Done
ReplyInline Actions

I'd love to see a test with multiple fields and a nested struct.

xazax.hun: I'd love to see a test with multiple fields and a nested struct.
sgatevAuthorUnsubmitted
Done
ReplyInline Actions

I added a nested struct and an extra member.

sgatev: I added a nested struct and an extra member.
ASSERT_THAT(FooDecl, NotNull());
EXPECT_EQ(Env.getValue(*FooDecl, SkipPast::None), BarVal);
const ValueDecl *QuxDecl = findValueDecl(ASTCtx, "Qux");
ASSERT_THAT(QuxDecl, NotNull());
ASSERT_TRUE(QuxDecl->getType()->isStructureType());
auto QuxFields = QuxDecl->getType()->getAsRecordDecl()->fields();
FieldDecl *BazDecl = nullptr;
for (FieldDecl *Field : QuxFields) {
if (Field->getNameAsString() == "Baz") {
BazDecl = Field;
} else {
FAIL() << "Unexpected field: " << Field->getNameAsString();
}
}
ASSERT_THAT(BazDecl, NotNull());
const auto *QuxLoc =
cast<AggregateStorageLocation>(&ThisLoc->getChild(*QuxDecl));
const auto *QuxVal = dyn_cast<StructValue>(Env.getValue(*QuxLoc));
ASSERT_THAT(QuxVal, NotNull());
const auto *BazLoc =
cast<ScalarStorageLocation>(&QuxLoc->getChild(*BazDecl));
const auto *BazVal = cast<IntegerValue>(&QuxVal->getChild(*BazDecl));
EXPECT_EQ(Env.getValue(*BazLoc), BazVal);
const ValueDecl *QuuxDecl = findValueDecl(ASTCtx, "Quux");
ASSERT_THAT(QuuxDecl, NotNull());
EXPECT_EQ(Env.getValue(*QuuxDecl, SkipPast::None), BazVal);
});
}
TEST_F(TransferTest, ClassThisMember) {
std::string Code = R"(
class A {
int Bar;
class B {
public:
int Baz;
};
B Qux;
void target() {
int Foo = Bar;
int Quux = Qux.Baz;
// [[p]]
}
};
)";
runDataflow(
Code, [](llvm::ArrayRef<
std::pair<std::string, DataflowAnalysisState<NoopLattice>>>
Results,
ASTContext &ASTCtx) {
ASSERT_THAT(Results, ElementsAre(Pair("p", _)));
const Environment &Env = Results[0].second.Env;
const auto *ThisLoc =
cast<AggregateStorageLocation>(Env.getThisPointeeStorageLocation());
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull());
const auto *BarLoc =
cast<ScalarStorageLocation>(&ThisLoc->getChild(*BarDecl));
ASSERT_TRUE(isa_and_nonnull<ScalarStorageLocation>(BarLoc));
const Value *BarVal = Env.getValue(*BarLoc);
ASSERT_TRUE(isa_and_nonnull<IntegerValue>(BarVal));
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull());
EXPECT_EQ(Env.getValue(*FooDecl, SkipPast::None), BarVal);
const ValueDecl *QuxDecl = findValueDecl(ASTCtx, "Qux");
ASSERT_THAT(QuxDecl, NotNull());
ASSERT_TRUE(QuxDecl->getType()->isClassType());
auto QuxFields = QuxDecl->getType()->getAsRecordDecl()->fields();
FieldDecl *BazDecl = nullptr;
for (FieldDecl *Field : QuxFields) {
if (Field->getNameAsString() == "Baz") {
BazDecl = Field;
} else {
FAIL() << "Unexpected field: " << Field->getNameAsString();
}
}
ASSERT_THAT(BazDecl, NotNull());
const auto *QuxLoc =
cast<AggregateStorageLocation>(&ThisLoc->getChild(*QuxDecl));
const auto *QuxVal = dyn_cast<StructValue>(Env.getValue(*QuxLoc));
ASSERT_THAT(QuxVal, NotNull());
const auto *BazLoc =
cast<ScalarStorageLocation>(&QuxLoc->getChild(*BazDecl));
const auto *BazVal = cast<IntegerValue>(&QuxVal->getChild(*BazDecl));
EXPECT_EQ(Env.getValue(*BazLoc), BazVal);
const ValueDecl *QuuxDecl = findValueDecl(ASTCtx, "Quux");
ASSERT_THAT(QuuxDecl, NotNull());
EXPECT_EQ(Env.getValue(*QuuxDecl, SkipPast::None), BazVal);
});
}
} // namespace } // namespace