This is an archive of the discontinued LLVM Phabricator instance.

Differential D153469

[dataflow] Replace most BoolValue subclasses with references to Formula (and AtomicBoolValue => Atom and BoolValue => Formula where appropriate)
ClosedPublic

Authored by sammccall on Jun 21 2023, 2:31 PM.

Details

Reviewers
NoQ
mboehme
xazax.hun
gribozavr2
Commits
rGfc9821a877d4: Reland "[dataflow] Add dedicated representation of boolean formulas"
rG5e4ad816bf10: [dataflow] Replace most BoolValue subclasses with references to Formula (and…
Summary

This properly frees the Value hierarchy from managing boolean formulas.

We still distinguish AtomicBoolValue; this type is used in client code.
However we expect to convert such uses to BoolValue (where the
distinction is not needed) or Atom (where atomic identity is intended),
and then fold AtomicBoolValue into FormulaBoolValue.

We also distinguish TopBoolValue; this has distinct rules for
widen/join/equivalence, and top-ness is not represented in Formula.
It'd be nice to find a cleaner representation (e.g. the absence of a
formula), but no immediate plans.

For now, BoolValues with the same Formula are deduplicated. This doesn't
seem desirable, as Values are mutable by their creators (properties).
We can probably drop this for FormulaBoolValue immediately (not in this
patch, to isolate changes). For AtomicBoolValue we first need to update
clients to stop using value pointers for atom identity.

The data structures around flow conditions are updated:

  • flow condition tokens are Atom, rather than AtomicBoolValue*
  • conditions are Formula, rather than BoolValue

Most APIs were changed directly, some with many clients had a
new version added and the existing one deprecated.

The factories for BoolValues in Environment keep their existing
signatures for now (e.g. makeOr(BoolValue, BoolValue) => BoolValue)
and are not deprecated. These have very many clients and finding the
most ergonomic API & migration path still needs some thought.

Diff Detail

Event Timeline

sammccall created this revision.Jun 21 2023, 2:31 PM
Herald added a reviewer: NoQ. · View Herald TranscriptJun 21 2023, 2:31 PM
Herald added a project: Restricted Project. · View Herald Transcript
Herald added subscribers: martong, xazax.hun. · View Herald Transcript
sammccall requested review of this revision.Jun 21 2023, 2:31 PM
Herald added a project: Restricted Project. · View Herald TranscriptJun 21 2023, 2:31 PM
Herald added a subscriber: cfe-commits. · View Herald Transcript
sammccall added a parent revision: D153366: [dataflow] Add dedicated representation of boolean formulas.Jun 21 2023, 2:31 PM
sammccall added a child revision: D153485: [dataflow] use true/false literals in formulas, rather than variables.Jun 21 2023, 5:09 PM
sammccall added a child revision: D153488: [dataflow] HTMLLogger: meaningful names for flow condition variables.Jun 21 2023, 6:10 PM
sammccall mentioned this in D153366: [dataflow] Add dedicated representation of boolean formulas.Jun 21 2023, 8:42 PM
sammccall added reviewers: mboehme, xazax.hun, gribozavr2.Jun 21 2023, 8:49 PM

Here we start to see benefits: Value becomes less reliant on inheritance, flow conditions are no longer Values that can uselessly bear properties, atomic variables are numbered in order of creation, we'll soon be able to have distinct BoolValues with the same formula (but different properties).

I think I could separate the Value/Arena changes from the ones to use Atom/Formula in DAContext if you think it's useful (the drawback is some risk of ending up in merge hell...)

Harbormaster completed remote builds in B240354: Diff 533405.Jun 21 2023, 9:34 PM
mboehme added a comment.Jun 23 2023, 12:17 AM

Just some top-level comments to begin with.

In D153469#4439770, @sammccall wrote:

Here we start to see benefits: Value becomes less reliant on inheritance, flow conditions are no longer Values that can uselessly bear properties, atomic variables are numbered in order of creation, we'll soon be able to have distinct BoolValues with the same formula (but different properties).

I like where this is going. Specifically, I like that we will soon no longer be relying in BoolValue object identity and will be able to have different BoolValues with the same formula. I'm working on a similar change for StructValue, so I'm well aware of how problematic it is to share the same Value but then modify properties on it -- it seems like a potential source of really puzzling bugs.

I think I could separate the Value/Arena changes from the ones to use Atom/Formula in DAContext if you think it's useful (the drawback is some risk of ending up in merge hell...)

I don't think that's necessary -- this patch is large in terms of numbers of lines changed, but when you eliminate the mechanical changes, there's not too much going on.

gribozavr2 accepted this revision.Jun 30 2023, 11:49 AM
gribozavr2 added inline comments.
clang/include/clang/Analysis/FlowSensitive/Arena.h
61

Per our offline conversation, do you still believe in this fixme?

clang/include/clang/Analysis/FlowSensitive/Value.h
132
146
This revision is now accepted and ready to land.Jun 30 2023, 11:49 AM
sammccall marked 3 inline comments as done.Jul 5 2023, 4:53 AM
sammccall added inline comments.
clang/include/clang/Analysis/FlowSensitive/Arena.h
61

No, I'm no longer convinced "unsound" is true.

However, I do think there's something to be fixed: if we really believe in it, we should be interning other types of values too (or have a clear idea about why bools are special).

And I think I still lean towards removing it: it looks like a power-vs-complexity tradeoff in the Value concept, and I suspect the historical reason to intern values was to intern formulas, not because we needed the power.

Reworded the fixme to say we should decide and be more consistent - text doesn't take a position on which way we should decide.

This revision was landed with ongoing or failed builds.Jul 5 2023, 4:56 AM
Closed by commit rG5e4ad816bf10: [dataflow] Replace most BoolValue subclasses with references to Formula (and… (authored by sammccall). · Explain Why
This revision was automatically updated to reflect the committed changes.
sammccall marked an inline comment as done.
sammccall added a commit: rG5e4ad816bf10: [dataflow] Replace most BoolValue subclasses with references to Formula (and….
sammccall added a reverting change: rG2d8cd1951202: Revert "Reland "[dataflow] Add dedicated representation of boolean formulas"….Jul 5 2023, 5:33 AM
sammccall added a commit: rGfc9821a877d4: Reland "[dataflow] Add dedicated representation of boolean formulas".Jul 7 2023, 2:59 AM
uabelho added a subscriber: uabelho.Jul 7 2023, 3:20 AM
uabelho added inline comments.
clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h
521

There are still uses of this method in-tree. I get the following error (and many more) when I compile trunk now with -Werror:

../../clang/lib/Analysis/FlowSensitive/TypeErasedDataflowAnalysis.cpp:148:9: error: 'addToFlowCondition' is deprecated: Use Formula version instead [-Werror,-Wdeprecated-declarations]
    Env.addToFlowCondition(*Val);
        ^
../../clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h:532:3: note: 'addToFlowCondition' has been explicitly marked deprecated here
  LLVM_DEPRECATED("Use Formula version instead", "")
  ^
../include/llvm/Support/Compiler.h:155:50: note: expanded from macro 'LLVM_DEPRECATED'
#define LLVM_DEPRECATED(MSG, FIX) __attribute__((deprecated(MSG, FIX)))
                                                 ^
1 error generated.
sammccall added inline comments.Jul 7 2023, 4:58 AM
clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h
521

Sure, I plan to clean these up once this change sticks.

Do you think -Wdeprecated -Werror is a build config we should keep working at all times?
This would mean you we can't use deprecation to migrate internal callers over multiple patches, essentially

So building with -Wno-error=deprecated-declarations or so seems to make more sense to me, but I can't see anything written either way. (Nor buildbot mail)

uabelho added inline comments.Jul 7 2023, 5:08 AM
clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h
521

There are bots failing now at least:
https://lab.llvm.org/buildbot/#/builders/57
https://lab.llvm.org/buildbot/#/builders/214

I *think* deprecation is mainly used to let downstream adapt? And when deprecating stuff in-tree code is usually fixed at once?

sammccall mentioned this in rG9d5cfed2443a: [dataflow] Remove [[deprecated]] from deprecated functions.Jul 7 2023, 5:36 AM
sammccall added inline comments.Jul 7 2023, 5:36 AM
clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h
521

Fair enough, thanks for the bot links

I don't think expanding the scope of the change for now is a good idea.
9d5cfed2443aa294e67bea694d5aab02c40fa278 replaces [[deprecated]] with a comment.

uabelho added inline comments.Jul 7 2023, 5:58 AM
clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h
521

Thank you!

Revision Contents

PathSize
clang/
include/
clang/
Analysis/
FlowSensitive/
121 lines
29 lines
35 lines
155 lines
lib/
Analysis/
FlowSensitive/
123 lines
100 lines
48 lines
12 lines
39 lines
60 lines
unittests/
Analysis/
FlowSensitive/
74 lines
88 lines
48 lines
18 lines

Diff 533405

clang/include/clang/Analysis/FlowSensitive/Arena.h

Show All 10 Lines
#include "clang/Analysis/FlowSensitive/Formula.h" #include "clang/Analysis/FlowSensitive/Formula.h"
#include "clang/Analysis/FlowSensitive/StorageLocation.h" #include "clang/Analysis/FlowSensitive/StorageLocation.h"
#include "clang/Analysis/FlowSensitive/Value.h" #include "clang/Analysis/FlowSensitive/Value.h"
#include <vector> #include <vector>
namespace clang::dataflow { namespace clang::dataflow {
/// The Arena owns the objects that model data within an analysis. /// The Arena owns the objects that model data within an analysis.
/// For example, `Value` and `StorageLocation`. /// For example, `Value`, `StorageLocation`, `Atom`, and `Formula`.
class Arena { class Arena {
public: public:
Arena() Arena() : True(makeAtom()), False(makeAtom()) {}
: TrueVal(create<AtomicBoolValue>()),
FalseVal(create<AtomicBoolValue>()) {}
Arena(const Arena &) = delete; Arena(const Arena &) = delete;
Arena &operator=(const Arena &) = delete; Arena &operator=(const Arena &) = delete;
/// Creates a `T` (some subclass of `StorageLocation`), forwarding `args` to /// Creates a `T` (some subclass of `StorageLocation`), forwarding `args` to
/// the constructor, and returns a reference to it. /// the constructor, and returns a reference to it.
/// ///
/// The `DataflowAnalysisContext` takes ownership of the created object. The /// The `DataflowAnalysisContext` takes ownership of the created object. The
/// object will be destroyed when the `DataflowAnalysisContext` is destroyed. /// object will be destroyed when the `DataflowAnalysisContext` is destroyed.
Show All 19 Lines create(Args &&...args) {
// Note: If allocation of individual `Value`s turns out to be costly, // Note: If allocation of individual `Value`s turns out to be costly,
// consider creating specializations of `create<T>` for commonly used // consider creating specializations of `create<T>` for commonly used
// `Value` subclasses and make them use a `BumpPtrAllocator`. // `Value` subclasses and make them use a `BumpPtrAllocator`.
return *cast<T>( return *cast<T>(
Vals.emplace_back(std::make_unique<T>(std::forward<Args>(args)...)) Vals.emplace_back(std::make_unique<T>(std::forward<Args>(args)...))
.get()); .get());
} }
/// Returns a boolean value that represents the conjunction of `LHS` and /// Creates a BoolValue wrapping a particular formula.
/// `RHS`. Subsequent calls with the same arguments, regardless of their ///
/// order, will return the same result. If the given boolean values represent /// Passing in the same formula will result in the same BoolValue.
/// the same value, the result will be the value itself. /// FIXME: This canonicalization isn't sound e.g. if we create two BoolValues
gribozavr2Unsubmitted
Done
ReplyInline Actions

Per our offline conversation, do you still believe in this fixme?

gribozavr2: Per our offline conversation, do you still believe in this fixme?
sammccallAuthorUnsubmitted
Done
ReplyInline Actions

No, I'm no longer convinced "unsound" is true.

However, I do think there's something to be fixed: if we really believe in it, we should be interning other types of values too (or have a clear idea about why bools are special).

And I think I still lean towards removing it: it looks like a power-vs-complexity tradeoff in the Value concept, and I suspect the historical reason to intern values was to intern formulas, not because we needed the power.

Reworded the fixme to say we should decide and be more consistent - text doesn't take a position on which way we should decide.

sammccall: No, I'm no longer convinced "unsound" is true. However, I do think there's something to be…
BoolValue &makeAnd(BoolValue &LHS, BoolValue &RHS); /// with the same formula but attach different properties.
/// Stop relying on pointer identity of BoolValues and remove it.
/// Returns a boolean value that represents the disjunction of `LHS` and BoolValue &makeBoolValue(const Formula &);
/// `RHS`. Subsequent calls with the same arguments, regardless of their
/// order, will return the same result. If the given boolean values represent /// Creates a fresh atom and wraps in in an AtomicBoolValue.
/// the same value, the result will be the value itself. /// FIXME: For now, identical-address AtomicBoolValue <=> identical atom.
BoolValue &makeOr(BoolValue &LHS, BoolValue &RHS); /// Stop relying on pointer identity and remove this guarantee.
AtomicBoolValue &makeAtomValue() {
/// Returns a boolean value that represents the negation of `Val`. Subsequent return cast<AtomicBoolValue>(makeBoolValue(makeAtomRef(makeAtom())));
/// calls with the same argument will return the same result. }
BoolValue &makeNot(BoolValue &Val);
/// Creates a fresh Top boolean value.
/// Returns a boolean value that represents `LHS => RHS`. Subsequent calls TopBoolValue &makeTopValue() {
/// with the same arguments, will return the same result. If the given boolean // No need for deduplicating: there's no way to create aliasing Tops.
/// values represent the same value, the result will be a value that return create<TopBoolValue>(makeAtomRef(makeAtom()));
/// represents the true boolean literal. }
BoolValue &makeImplies(BoolValue &LHS, BoolValue &RHS);
/// Returns a boolean value that represents `LHS <=> RHS`. Subsequent calls
/// with the same arguments, regardless of their order, will return the same
/// result. If the given boolean values represent the same value, the result
/// will be a value that represents the true boolean literal.
BoolValue &makeEquals(BoolValue &LHS, BoolValue &RHS);
/// Returns a symbolic integer value that models an integer literal equal to /// Returns a symbolic integer value that models an integer literal equal to
/// `Value`. These literals are the same every time. /// `Value`. These literals are the same every time.
/// Integer literals are not typed; the type is determined by the `Expr` that /// Integer literals are not typed; the type is determined by the `Expr` that
/// an integer literal is associated with. /// an integer literal is associated with.
IntegerValue &makeIntLiteral(llvm::APInt Value); IntegerValue &makeIntLiteral(llvm::APInt Value);
/// Returns a symbolic boolean value that models a boolean literal equal to // Factories for boolean formulas.
/// `Value`. These literals are the same every time. // Formulas are interned: passing the same arguments return the same result.
AtomicBoolValue &makeLiteral(bool Value) const { // For commutative operations like And/Or, interning ignores order.
return Value ? TrueVal : FalseVal; // Simplifications are applied: makeOr(X, X) => X, etc.
/// Returns a formula for the conjunction of `LHS` and `RHS`.
const Formula &makeAnd(const Formula &LHS, const Formula &RHS);
/// Returns a formula for the disjunction of `LHS` and `RHS`.
const Formula &makeOr(const Formula &LHS, const Formula &RHS);
/// Returns a formula for the negation of `Val`.
const Formula &makeNot(const Formula &Val);
/// Returns a formula for `LHS => RHS`.
const Formula &makeImplies(const Formula &LHS, const Formula &RHS);
/// Returns a formula for `LHS <=> RHS`.
const Formula &makeEquals(const Formula &LHS, const Formula &RHS);
/// Returns a formula for the variable A.
const Formula &makeAtomRef(Atom A);
/// Returns a formula for a literal true/false.
const Formula &makeLiteral(bool Value) {
return makeAtomRef(Value ? True : False);
} }
/// Returns a new atomic boolean variable, distinct from any other.
Atom makeAtom() { return static_cast<Atom>(NextAtom++); };
/// Creates a fresh flow condition and returns a token that identifies it. The /// Creates a fresh flow condition and returns a token that identifies it. The
/// token can be used to perform various operations on the flow condition such /// token can be used to perform various operations on the flow condition such
/// as adding constraints to it, forking it, joining it with another flow /// as adding constraints to it, forking it, joining it with another flow
/// condition, or checking implications. /// condition, or checking implications.
AtomicBoolValue &makeFlowConditionToken() { Atom makeFlowConditionToken() { return makeAtom(); }
return create<AtomicBoolValue>();
}
/// Gets the boolean formula equivalent of a BoolValue.
/// Each unique Top values is translated to an Atom.
/// TODO: migrate to storing Formula directly in Values instead.
const Formula &getFormula(const BoolValue &);
/// Returns a new atomic boolean variable, distinct from any other.
Atom makeAtom() { return static_cast<Atom>(NextAtom++); };
private: private:
llvm::BumpPtrAllocator Alloc; llvm::BumpPtrAllocator Alloc;
// Storage for the state of a program. // Storage for the state of a program.
std::vector<std::unique_ptr<StorageLocation>> Locs; std::vector<std::unique_ptr<StorageLocation>> Locs;
std::vector<std::unique_ptr<Value>> Vals; std::vector<std::unique_ptr<Value>> Vals;
// Indices that are used to avoid recreating the same integer literals and // Indices that are used to avoid recreating the same integer literals and
// composite boolean values. // composite boolean values.
llvm::DenseMap<llvm::APInt, IntegerValue *> IntegerLiterals; llvm::DenseMap<llvm::APInt, IntegerValue *> IntegerLiterals;
llvm::DenseMap<std::pair<BoolValue *, BoolValue *>, ConjunctionValue *> using FormulaPair = std::pair<const Formula *, const Formula *>;
ConjunctionVals; llvm::DenseMap<FormulaPair, const Formula *> Ands;
llvm::DenseMap<std::pair<BoolValue *, BoolValue *>, DisjunctionValue *> llvm::DenseMap<FormulaPair, const Formula *> Ors;
DisjunctionVals; llvm::DenseMap<const Formula *, const Formula *> Nots;
llvm::DenseMap<BoolValue *, NegationValue *> NegationVals; llvm::DenseMap<FormulaPair, const Formula *> Implies;
llvm::DenseMap<std::pair<BoolValue *, BoolValue *>, ImplicationValue *> llvm::DenseMap<FormulaPair, const Formula *> Equals;
ImplicationVals; llvm::DenseMap<Atom, const Formula *> AtomRefs;
llvm::DenseMap<std::pair<BoolValue *, BoolValue *>, BiconditionalValue *>
BiconditionalVals;
llvm::DenseMap<const BoolValue *, const Formula *> ValToFormula; llvm::DenseMap<const Formula *, BoolValue *> FormulaValues;
unsigned NextAtom = 0; unsigned NextAtom = 0;
AtomicBoolValue &TrueVal; Atom True, False;
AtomicBoolValue &FalseVal;
}; };
} // namespace clang::dataflow } // namespace clang::dataflow
#endif // LLVM_CLANG_ANALYSIS_FLOWSENSITIVE__ARENA_H #endif // LLVM_CLANG_ANALYSIS_FLOWSENSITIVE__ARENA_H

clang/include/clang/Analysis/FlowSensitive/DataflowAnalysisContext.h

Show First 20 LinesShow All 131 Lines▼ Show 20 Linespublic:
} }
/// Returns a pointer value that represents a null pointer. Calls with /// Returns a pointer value that represents a null pointer. Calls with
/// `PointeeType` that are canonically equivalent will return the same result. /// `PointeeType` that are canonically equivalent will return the same result.
/// A null `PointeeType` can be used for the pointee of `std::nullptr_t`. /// A null `PointeeType` can be used for the pointee of `std::nullptr_t`.
PointerValue &getOrCreateNullPointerValue(QualType PointeeType); PointerValue &getOrCreateNullPointerValue(QualType PointeeType);
/// Adds `Constraint` to the flow condition identified by `Token`. /// Adds `Constraint` to the flow condition identified by `Token`.
void addFlowConditionConstraint(AtomicBoolValue &Token, void addFlowConditionConstraint(Atom Token, const Formula &Constraint);
BoolValue &Constraint);
/// Creates a new flow condition with the same constraints as the flow /// Creates a new flow condition with the same constraints as the flow
/// condition identified by `Token` and returns its token. /// condition identified by `Token` and returns its token.
AtomicBoolValue &forkFlowCondition(AtomicBoolValue &Token); Atom forkFlowCondition(Atom Token);
/// Creates a new flow condition that represents the disjunction of the flow /// Creates a new flow condition that represents the disjunction of the flow
/// conditions identified by `FirstToken` and `SecondToken`, and returns its /// conditions identified by `FirstToken` and `SecondToken`, and returns its
/// token. /// token.
AtomicBoolValue &joinFlowConditions(AtomicBoolValue &FirstToken, Atom joinFlowConditions(Atom FirstToken, Atom SecondToken);
AtomicBoolValue &SecondToken);
/// Returns true if and only if the constraints of the flow condition /// Returns true if and only if the constraints of the flow condition
/// identified by `Token` imply that `Val` is true. /// identified by `Token` imply that `Val` is true.
bool flowConditionImplies(AtomicBoolValue &Token, BoolValue &Val); bool flowConditionImplies(Atom Token, const Formula &);
/// Returns true if and only if the constraints of the flow condition /// Returns true if and only if the constraints of the flow condition
/// identified by `Token` are always true. /// identified by `Token` are always true.
bool flowConditionIsTautology(AtomicBoolValue &Token); bool flowConditionIsTautology(Atom Token);
/// Returns true if `Val1` is equivalent to `Val2`. /// Returns true if `Val1` is equivalent to `Val2`.
/// Note: This function doesn't take into account constraints on `Val1` and /// Note: This function doesn't take into account constraints on `Val1` and
/// `Val2` imposed by the flow condition. /// `Val2` imposed by the flow condition.
bool equivalentBoolValues(BoolValue &Val1, BoolValue &Val2); bool equivalentFormulas(const Formula &Val1, const Formula &Val2);
LLVM_DUMP_METHOD void dumpFlowCondition(AtomicBoolValue &Token, LLVM_DUMP_METHOD void dumpFlowCondition(Atom Token,
llvm::raw_ostream &OS = llvm::dbgs()); llvm::raw_ostream &OS = llvm::dbgs());
/// Returns the `ControlFlowContext` registered for `F`, if any. Otherwise, /// Returns the `ControlFlowContext` registered for `F`, if any. Otherwise,
/// returns null. /// returns null.
const ControlFlowContext *getControlFlowContext(const FunctionDecl *F); const ControlFlowContext *getControlFlowContext(const FunctionDecl *F);
const Options &getOptions() { return Opts; } const Options &getOptions() { return Opts; }
Show All 20 Linesprivate:
/// context. /// context.
llvm::DenseSet<const FieldDecl *> getReferencedFields(QualType Type); llvm::DenseSet<const FieldDecl *> getReferencedFields(QualType Type);
/// Adds all constraints of the flow condition identified by `Token` and all /// Adds all constraints of the flow condition identified by `Token` and all
/// of its transitive dependencies to `Constraints`. `VisitedTokens` is used /// of its transitive dependencies to `Constraints`. `VisitedTokens` is used
/// to track tokens of flow conditions that were already visited by recursive /// to track tokens of flow conditions that were already visited by recursive
/// calls. /// calls.
void addTransitiveFlowConditionConstraints( void addTransitiveFlowConditionConstraints(
AtomicBoolValue &Token, llvm::DenseSet<BoolValue *> &Constraints, Atom Token, llvm::DenseSet<const Formula *> &Constraints,
llvm::DenseSet<AtomicBoolValue *> &VisitedTokens); llvm::DenseSet<Atom> &VisitedTokens);
/// Returns the outcome of satisfiability checking on `Constraints`. /// Returns the outcome of satisfiability checking on `Constraints`.
/// Possible outcomes are: /// Possible outcomes are:
/// - `Satisfiable`: A satisfying assignment exists and is returned. /// - `Satisfiable`: A satisfying assignment exists and is returned.
/// - `Unsatisfiable`: A satisfying assignment does not exist. /// - `Unsatisfiable`: A satisfying assignment does not exist.
/// - `TimedOut`: The search for a satisfying assignment was not completed. /// - `TimedOut`: The search for a satisfying assignment was not completed.
Solver::Result querySolver(llvm::DenseSet<BoolValue *> Constraints); Solver::Result querySolver(llvm::DenseSet<const Formula *> Constraints);
/// Returns true if the solver is able to prove that there is no satisfying /// Returns true if the solver is able to prove that there is no satisfying
/// assignment for `Constraints` /// assignment for `Constraints`
bool isUnsatisfiable(llvm::DenseSet<BoolValue *> Constraints) { bool isUnsatisfiable(llvm::DenseSet<const Formula *> Constraints) {
return querySolver(std::move(Constraints)).getStatus() == return querySolver(std::move(Constraints)).getStatus() ==
Solver::Result::Status::Unsatisfiable; Solver::Result::Status::Unsatisfiable;
} }
std::unique_ptr<Solver> S; std::unique_ptr<Solver> S;
std::unique_ptr<Arena> A; std::unique_ptr<Arena> A;
// Maps from program declarations and statements to storage locations that are // Maps from program declarations and statements to storage locations that are
Show All 22 Linesprivate:
// token (an atomic boolean) and `Ci`s are the set of constraints in the flow // token (an atomic boolean) and `Ci`s are the set of constraints in the flow
// flow condition clause. The set of constraints (C1 ^ C2 ^ ...) are stored in // flow condition clause. The set of constraints (C1 ^ C2 ^ ...) are stored in
// the `FlowConditionConstraints` map, keyed by the token of the flow // the `FlowConditionConstraints` map, keyed by the token of the flow
// condition. // condition.
// //
// Flow conditions depend on other flow conditions if they are created using // Flow conditions depend on other flow conditions if they are created using
// `forkFlowCondition` or `joinFlowConditions`. The graph of flow condition // `forkFlowCondition` or `joinFlowConditions`. The graph of flow condition
// dependencies is stored in the `FlowConditionDeps` map. // dependencies is stored in the `FlowConditionDeps` map.
llvm::DenseMap<AtomicBoolValue *, llvm::DenseSet<AtomicBoolValue *>> llvm::DenseMap<Atom, llvm::DenseSet<Atom>> FlowConditionDeps;
FlowConditionDeps; llvm::DenseMap<Atom, const Formula *> FlowConditionConstraints;
llvm::DenseMap<AtomicBoolValue *, BoolValue *> FlowConditionConstraints;
llvm::DenseMap<const FunctionDecl *, ControlFlowContext> FunctionContexts; llvm::DenseMap<const FunctionDecl *, ControlFlowContext> FunctionContexts;
// Fields modeled by environments covered by this context. // Fields modeled by environments covered by this context.
llvm::DenseSet<const FieldDecl *> ModeledFields; llvm::DenseSet<const FieldDecl *> ModeledFields;
std::unique_ptr<Logger> LogOwner; // If created via flags. std::unique_ptr<Logger> LogOwner; // If created via flags.
}; };
} // namespace dataflow } // namespace dataflow
} // namespace clang } // namespace clang
#endif // LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_DATAFLOWANALYSISCONTEXT_H #endif // LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_DATAFLOWANALYSISCONTEXT_H

clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h

Show First 20 LinesShow All 439 Lines▼ Show 20 Linespublic:
/// Creates a `T` (some subclass of `Value`), forwarding `args` to the /// Creates a `T` (some subclass of `Value`), forwarding `args` to the
/// constructor, and returns a reference to it. /// constructor, and returns a reference to it.
/// ///
/// The analysis context takes ownership of the created object. The object /// The analysis context takes ownership of the created object. The object
/// will be destroyed when the analysis context is destroyed. /// will be destroyed when the analysis context is destroyed.
template <typename T, typename... Args> template <typename T, typename... Args>
std::enable_if_t<std::is_base_of<Value, T>::value, T &> std::enable_if_t<std::is_base_of<Value, T>::value, T &>
create(Args &&...args) { create(Args &&...args) {
return DACtx->arena().create<T>(std::forward<Args>(args)...); return arena().create<T>(std::forward<Args>(args)...);
} }
/// Returns a symbolic integer value that models an integer literal equal to /// Returns a symbolic integer value that models an integer literal equal to
/// `Value` /// `Value`
IntegerValue &getIntLiteralValue(llvm::APInt Value) const { IntegerValue &getIntLiteralValue(llvm::APInt Value) const {
return DACtx->arena().makeIntLiteral(Value); return arena().makeIntLiteral(Value);
} }
/// Returns a symbolic boolean value that models a boolean literal equal to /// Returns a symbolic boolean value that models a boolean literal equal to
/// `Value` /// `Value`
AtomicBoolValue &getBoolLiteralValue(bool Value) const { AtomicBoolValue &getBoolLiteralValue(bool Value) const {
return DACtx->arena().makeLiteral(Value); return cast<AtomicBoolValue>(
arena().makeBoolValue(arena().makeLiteral(Value)));
} }
/// Returns an atomic boolean value. /// Returns an atomic boolean value.
BoolValue &makeAtomicBoolValue() const { BoolValue &makeAtomicBoolValue() const {
return DACtx->arena().create<AtomicBoolValue>(); return arena().makeAtomValue();
} }
/// Returns a unique instance of boolean Top. /// Returns a unique instance of boolean Top.
BoolValue &makeTopBoolValue() const { BoolValue &makeTopBoolValue() const {
return DACtx->arena().create<TopBoolValue>(); return arena().makeTopValue();
} }
/// Returns a boolean value that represents the conjunction of `LHS` and /// Returns a boolean value that represents the conjunction of `LHS` and
/// `RHS`. Subsequent calls with the same arguments, regardless of their /// `RHS`. Subsequent calls with the same arguments, regardless of their
/// order, will return the same result. If the given boolean values represent /// order, will return the same result. If the given boolean values represent
/// the same value, the result will be the value itself. /// the same value, the result will be the value itself.
BoolValue &makeAnd(BoolValue &LHS, BoolValue &RHS) const { BoolValue &makeAnd(BoolValue &LHS, BoolValue &RHS) const {
return DACtx->arena().makeAnd(LHS, RHS); return arena().makeBoolValue(
arena().makeAnd(LHS.formula(), RHS.formula()));
} }
/// Returns a boolean value that represents the disjunction of `LHS` and /// Returns a boolean value that represents the disjunction of `LHS` and
/// `RHS`. Subsequent calls with the same arguments, regardless of their /// `RHS`. Subsequent calls with the same arguments, regardless of their
/// order, will return the same result. If the given boolean values represent /// order, will return the same result. If the given boolean values represent
/// the same value, the result will be the value itself. /// the same value, the result will be the value itself.
BoolValue &makeOr(BoolValue &LHS, BoolValue &RHS) const { BoolValue &makeOr(BoolValue &LHS, BoolValue &RHS) const {
return DACtx->arena().makeOr(LHS, RHS); return arena().makeBoolValue(
arena().makeOr(LHS.formula(), RHS.formula()));
} }
/// Returns a boolean value that represents the negation of `Val`. Subsequent /// Returns a boolean value that represents the negation of `Val`. Subsequent
/// calls with the same argument will return the same result. /// calls with the same argument will return the same result.
BoolValue &makeNot(BoolValue &Val) const { BoolValue &makeNot(BoolValue &Val) const {
return DACtx->arena().makeNot(Val); return arena().makeBoolValue(arena().makeNot(Val.formula()));
} }
/// Returns a boolean value represents `LHS` => `RHS`. Subsequent calls with /// Returns a boolean value represents `LHS` => `RHS`. Subsequent calls with
/// the same arguments, will return the same result. If the given boolean /// the same arguments, will return the same result. If the given boolean
/// values represent the same value, the result will be a value that /// values represent the same value, the result will be a value that
/// represents the true boolean literal. /// represents the true boolean literal.
BoolValue &makeImplication(BoolValue &LHS, BoolValue &RHS) const { BoolValue &makeImplication(BoolValue &LHS, BoolValue &RHS) const {
return DACtx->arena().makeImplies(LHS, RHS); return arena().makeBoolValue(
arena().makeImplies(LHS.formula(), RHS.formula()));
} }
/// Returns a boolean value represents `LHS` <=> `RHS`. Subsequent calls with /// Returns a boolean value represents `LHS` <=> `RHS`. Subsequent calls with
/// the same arguments, regardless of their order, will return the same /// the same arguments, regardless of their order, will return the same
/// result. If the given boolean values represent the same value, the result /// result. If the given boolean values represent the same value, the result
/// will be a value that represents the true boolean literal. /// will be a value that represents the true boolean literal.
BoolValue &makeIff(BoolValue &LHS, BoolValue &RHS) const { BoolValue &makeIff(BoolValue &LHS, BoolValue &RHS) const {
return DACtx->arena().makeEquals(LHS, RHS); return arena().makeBoolValue(
arena().makeEquals(LHS.formula(), RHS.formula()));
} }
/// Returns the token that identifies the flow condition of the environment. /// Returns the token that identifies the flow condition of the environment.
AtomicBoolValue &getFlowConditionToken() const { return *FlowConditionToken; } Atom getFlowConditionToken() const { return FlowConditionToken; }
/// Adds `Val` to the set of clauses that constitute the flow condition. /// Adds `Val` to the set of clauses that constitute the flow condition.
void addToFlowCondition(const Formula &);
LLVM_DEPRECATED("Use Formula version instead", "")
uabelhoUnsubmitted
Not Done
ReplyInline Actions

There are still uses of this method in-tree. I get the following error (and many more) when I compile trunk now with -Werror:

../../clang/lib/Analysis/FlowSensitive/TypeErasedDataflowAnalysis.cpp:148:9: error: 'addToFlowCondition' is deprecated: Use Formula version instead [-Werror,-Wdeprecated-declarations]
    Env.addToFlowCondition(*Val);
        ^
../../clang/include/clang/Analysis/FlowSensitive/DataflowEnvironment.h:532:3: note: 'addToFlowCondition' has been explicitly marked deprecated here
  LLVM_DEPRECATED("Use Formula version instead", "")
  ^
../include/llvm/Support/Compiler.h:155:50: note: expanded from macro 'LLVM_DEPRECATED'
#define LLVM_DEPRECATED(MSG, FIX) __attribute__((deprecated(MSG, FIX)))
                                                 ^
1 error generated.
uabelho: There are still uses of this method in-tree. I get the following error (and many more) when I…
sammccallAuthorUnsubmitted
Done
ReplyInline Actions

Sure, I plan to clean these up once this change sticks.

Do you think -Wdeprecated -Werror is a build config we should keep working at all times?
This would mean you we can't use deprecation to migrate internal callers over multiple patches, essentially

So building with -Wno-error=deprecated-declarations or so seems to make more sense to me, but I can't see anything written either way. (Nor buildbot mail)

sammccall: Sure, I plan to clean these up once this change sticks. Do you think -Wdeprecated -Werror is a…
uabelhoUnsubmitted
Not Done
ReplyInline Actions

There are bots failing now at least:
https://lab.llvm.org/buildbot/#/builders/57
https://lab.llvm.org/buildbot/#/builders/214

I *think* deprecation is mainly used to let downstream adapt? And when deprecating stuff in-tree code is usually fixed at once?

uabelho: There are bots failing now at least: https://lab.llvm.org/buildbot/#/builders/57 https://lab.
sammccallAuthorUnsubmitted
Done
ReplyInline Actions

Fair enough, thanks for the bot links

I don't think expanding the scope of the change for now is a good idea.
9d5cfed2443aa294e67bea694d5aab02c40fa278 replaces [[deprecated]] with a comment.

sammccall: Fair enough, thanks for the bot links I don't think expanding the scope of the change for now…
uabelhoUnsubmitted
Not Done
ReplyInline Actions

Thank you!

uabelho: Thank you!
void addToFlowCondition(BoolValue &Val); void addToFlowCondition(BoolValue &Val);
/// Returns true if and only if the clauses that constitute the flow condition /// Returns true if and only if the clauses that constitute the flow condition
/// imply that `Val` is true. /// imply that `Val` is true.
bool flowConditionImplies(const Formula &) const;
LLVM_DEPRECATED("Use Formula version instead", "")
bool flowConditionImplies(BoolValue &Val) const; bool flowConditionImplies(BoolValue &Val) const;
/// Returns the `DeclContext` of the block being analysed, if any. Otherwise, /// Returns the `DeclContext` of the block being analysed, if any. Otherwise,
/// returns null. /// returns null.
const DeclContext *getDeclCtx() const { return CallStack.back(); } const DeclContext *getDeclCtx() const { return CallStack.back(); }
/// Returns the function currently being analyzed, or null if the code being /// Returns the function currently being analyzed, or null if the code being
/// analyzed isn't part of a function. /// analyzed isn't part of a function.
const FunctionDecl *getCurrentFunc() const { const FunctionDecl *getCurrentFunc() const {
return dyn_cast<FunctionDecl>(getDeclCtx()); return dyn_cast<FunctionDecl>(getDeclCtx());
} }
/// Returns whether this `Environment` can be extended to analyze the given /// Returns whether this `Environment` can be extended to analyze the given
/// `Callee` (i.e. if `pushCall` can be used), with recursion disallowed and a /// `Callee` (i.e. if `pushCall` can be used), with recursion disallowed and a
/// given `MaxDepth`. /// given `MaxDepth`.
bool canDescend(unsigned MaxDepth, const DeclContext *Callee) const; bool canDescend(unsigned MaxDepth, const DeclContext *Callee) const;
/// Returns the `DataflowAnalysisContext` used by the environment. /// Returns the `DataflowAnalysisContext` used by the environment.
DataflowAnalysisContext &getDataflowAnalysisContext() const { return *DACtx; } DataflowAnalysisContext &getDataflowAnalysisContext() const { return *DACtx; }
Arena &arena() const { return DACtx->arena(); }
LLVM_DUMP_METHOD void dump() const; LLVM_DUMP_METHOD void dump() const;
LLVM_DUMP_METHOD void dump(raw_ostream &OS) const; LLVM_DUMP_METHOD void dump(raw_ostream &OS) const;
private: private:
/// Creates a value appropriate for `Type`, if `Type` is supported, otherwise /// Creates a value appropriate for `Type`, if `Type` is supported, otherwise
/// return null. /// return null.
/// ///
/// Recursively initializes storage locations and values until it sees a /// Recursively initializes storage locations and values until it sees a
▲ Show 20 LinesShow All 51 Lines▼ Show 20 Linesprivate:
llvm::DenseMap<const StorageLocation *, Value *> LocToVal; llvm::DenseMap<const StorageLocation *, Value *> LocToVal;
// Maps locations of struct members to symbolic values of the structs that own // Maps locations of struct members to symbolic values of the structs that own
// them and the decls of the struct members. // them and the decls of the struct members.
llvm::DenseMap<const StorageLocation *, llvm::DenseMap<const StorageLocation *,
std::pair<StructValue *, const ValueDecl *>> std::pair<StructValue *, const ValueDecl *>>
MemberLocToStruct; MemberLocToStruct;
AtomicBoolValue *FlowConditionToken; Atom FlowConditionToken;
}; };
/// Returns the storage location for the implicit object of a /// Returns the storage location for the implicit object of a
/// `CXXMemberCallExpr`, or null if none is defined in the environment. /// `CXXMemberCallExpr`, or null if none is defined in the environment.
/// Dereferences the pointer if the member call expression was written using /// Dereferences the pointer if the member call expression was written using
/// `->`. /// `->`.
AggregateStorageLocation * AggregateStorageLocation *
getImplicitObjectLocation(const CXXMemberCallExpr &MCE, const Environment &Env); getImplicitObjectLocation(const CXXMemberCallExpr &MCE, const Environment &Env);
Show All 11 Lines

clang/include/clang/Analysis/FlowSensitive/Value.h

Show All 9 Lines
// during dataflow analysis. // during dataflow analysis.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#ifndef LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_VALUE_H #ifndef LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_VALUE_H
#define LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_VALUE_H #define LLVM_CLANG_ANALYSIS_FLOWSENSITIVE_VALUE_H
#include "clang/AST/Decl.h" #include "clang/AST/Decl.h"
#include "clang/Analysis/FlowSensitive/Formula.h"
#include "clang/Analysis/FlowSensitive/StorageLocation.h" #include "clang/Analysis/FlowSensitive/StorageLocation.h"
#include "llvm/ADT/DenseMap.h" #include "llvm/ADT/DenseMap.h"
#include "llvm/ADT/StringMap.h" #include "llvm/ADT/StringMap.h"
#include "llvm/ADT/StringRef.h" #include "llvm/ADT/StringRef.h"
#include "llvm/Support/raw_ostream.h"
#include <cassert> #include <cassert>
#include <utility> #include <utility>
namespace clang { namespace clang {
namespace dataflow { namespace dataflow {
/// Base class for all values computed by abstract interpretation. /// Base class for all values computed by abstract interpretation.
/// ///
/// Don't use `Value` instances by value. All `Value` instances are allocated /// Don't use `Value` instances by value. All `Value` instances are allocated
/// and owned by `DataflowAnalysisContext`. /// and owned by `DataflowAnalysisContext`.
class Value { class Value {
public: public:
enum class Kind { enum class Kind {
Integer, Integer,
Reference, Reference,
Pointer, Pointer,
Struct, Struct,
// Synthetic boolean values are either atomic values or logical connectives. // TODO: Top values should not be need to be type-specific.
TopBool, TopBool,
AtomicBool, AtomicBool,
Conjunction, FormulaBool,
Disjunction,
Negation,
Implication,
Biconditional,
}; };
explicit Value(Kind ValKind) : ValKind(ValKind) {} explicit Value(Kind ValKind) : ValKind(ValKind) {}
// Non-copyable because addresses of values are used as their identities // Non-copyable because addresses of values are used as their identities
// throughout framework and user code. The framework is responsible for // throughout framework and user code. The framework is responsible for
// construction and destruction of values. // construction and destruction of values.
Value(const Value &) = delete; Value(const Value &) = delete;
Show All 33 Lines
/// compute deep equality of `Value` at said location. /// compute deep equality of `Value` at said location.
/// * TopBoolValue -- both are `TopBoolValue`s. /// * TopBoolValue -- both are `TopBoolValue`s.
/// ///
/// Otherwise, falls back to pointer equality. /// Otherwise, falls back to pointer equality.
bool areEquivalentValues(const Value &Val1, const Value &Val2); bool areEquivalentValues(const Value &Val1, const Value &Val2);
/// Models a boolean. /// Models a boolean.
class BoolValue : public Value { class BoolValue : public Value {
const Formula *F;
public: public:
explicit BoolValue(Kind ValueKind) : Value(ValueKind) {} explicit BoolValue(Kind ValueKind, const Formula &F)
: Value(ValueKind), F(&F) {}
static bool classof(const Value *Val) { static bool classof(const Value *Val) {
return Val->getKind() == Kind::TopBool || return Val->getKind() == Kind::TopBool ||
Val->getKind() == Kind::AtomicBool || Val->getKind() == Kind::AtomicBool ||
Val->getKind() == Kind::Conjunction || Val->getKind() == Kind::FormulaBool;
Val->getKind() == Kind::Disjunction ||
Val->getKind() == Kind::Negation ||
Val->getKind() == Kind::Implication ||
Val->getKind() == Kind::Biconditional;
} }
const Formula &formula() const { return *F; }
}; };
/// Models the trivially true formula, which is Top in the lattice of boolean /// A TopBoolValue represents a boolean that is explicitly unconstrained.
/// formulas. ///
/// This is equivalent to an AtomicBoolValue that does not appear anywhere
/// else in a system of formula.
/// Knowing the value is unconstrained is useful when e.g. reasoning about
/// convergence.
class TopBoolValue final : public BoolValue { class TopBoolValue final : public BoolValue {
public: public:
TopBoolValue() : BoolValue(Kind::TopBool) {} TopBoolValue(const Formula &F) : BoolValue(Kind::TopBool, F) {
assert(F.kind() == Formula::AtomRef);
}
static bool classof(const Value *Val) { static bool classof(const Value *Val) {
return Val->getKind() == Kind::TopBool; return Val->getKind() == Kind::TopBool;
} }
Atom atom() const { return formula().atom(); }
}; };
/// Models an atomic boolean. /// Models an atomic boolean.
///
/// FIXME: Merge this class into FormulaBoolValue.
/// When we want to specify atom identity, use Atom.
class AtomicBoolValue : public BoolValue { class AtomicBoolValue : public BoolValue {
gribozavr2Unsubmitted
Done
ReplyInline Actions
/// When we want to specify atom identity, use Atom.
- class AtomicBoolValue : public BoolValue {
+ class AtomicBoolValue final : public BoolValue {
public:
gribozavr2:
public: public:
explicit AtomicBoolValue() : BoolValue(Kind::AtomicBool) {} explicit AtomicBoolValue(const Formula &F) : BoolValue(Kind::AtomicBool, F) {
assert(F.kind() == Formula::AtomRef);
static bool classof(const Value *Val) {
return Val->getKind() == Kind::AtomicBool;
}
};
/// Models a boolean conjunction.
// FIXME: Consider representing binary and unary boolean operations similar
// to how they are represented in the AST. This might become more pressing
// when such operations need to be added for other data types.
class ConjunctionValue : public BoolValue {
public:
explicit ConjunctionValue(BoolValue &LeftSubVal, BoolValue &RightSubVal)
: BoolValue(Kind::Conjunction), LeftSubVal(LeftSubVal),
RightSubVal(RightSubVal) {}
static bool classof(const Value *Val) {
return Val->getKind() == Kind::Conjunction;
}
/// Returns the left sub-value of the conjunction.
BoolValue &getLeftSubValue() const { return LeftSubVal; }
/// Returns the right sub-value of the conjunction.
BoolValue &getRightSubValue() const { return RightSubVal; }
private:
BoolValue &LeftSubVal;
BoolValue &RightSubVal;
};
/// Models a boolean disjunction.
class DisjunctionValue : public BoolValue {
public:
explicit DisjunctionValue(BoolValue &LeftSubVal, BoolValue &RightSubVal)
: BoolValue(Kind::Disjunction), LeftSubVal(LeftSubVal),
RightSubVal(RightSubVal) {}
static bool classof(const Value *Val) {
return Val->getKind() == Kind::Disjunction;
} }
/// Returns the left sub-value of the disjunction.
BoolValue &getLeftSubValue() const { return LeftSubVal; }
/// Returns the right sub-value of the disjunction.
BoolValue &getRightSubValue() const { return RightSubVal; }
private:
BoolValue &LeftSubVal;
BoolValue &RightSubVal;
};
/// Models a boolean negation.
class NegationValue : public BoolValue {
public:
explicit NegationValue(BoolValue &SubVal)
: BoolValue(Kind::Negation), SubVal(SubVal) {}
static bool classof(const Value *Val) { static bool classof(const Value *Val) {
return Val->getKind() == Kind::Negation; return Val->getKind() == Kind::AtomicBool;
} }
/// Returns the sub-value of the negation. Atom atom() const { return formula().atom(); }
BoolValue &getSubVal() const { return SubVal; }
private:
BoolValue &SubVal;
}; };
/// Models a boolean implication. /// Models a compound boolean formula.
/// class FormulaBoolValue : public BoolValue {
gribozavr2Unsubmitted
Done
ReplyInline Actions
/// Models a compound boolean formula.
- class FormulaBoolValue : public BoolValue {
+ class FormulaBoolValue final : public BoolValue {
public:
gribozavr2:
/// Equivalent to `!LHS v RHS`.
class ImplicationValue : public BoolValue {
public: public:
explicit ImplicationValue(BoolValue &LeftSubVal, BoolValue &RightSubVal) explicit FormulaBoolValue(const Formula &F)
: BoolValue(Kind::Implication), LeftSubVal(LeftSubVal), : BoolValue(Kind::FormulaBool, F) {
RightSubVal(RightSubVal) {} assert(F.kind() != Formula::AtomRef && "For now, use AtomicBoolValue");
static bool classof(const Value *Val) {
return Val->getKind() == Kind::Implication;
} }
/// Returns the left sub-value of the implication.
BoolValue &getLeftSubValue() const { return LeftSubVal; }
/// Returns the right sub-value of the implication.
BoolValue &getRightSubValue() const { return RightSubVal; }
private:
BoolValue &LeftSubVal;
BoolValue &RightSubVal;
};
/// Models a boolean biconditional.
///
/// Equivalent to `(LHS ^ RHS) v (!LHS ^ !RHS)`.
class BiconditionalValue : public BoolValue {
public:
explicit BiconditionalValue(BoolValue &LeftSubVal, BoolValue &RightSubVal)
: BoolValue(Kind::Biconditional), LeftSubVal(LeftSubVal),
RightSubVal(RightSubVal) {}
static bool classof(const Value *Val) { static bool classof(const Value *Val) {
return Val->getKind() == Kind::Biconditional; return Val->getKind() == Kind::FormulaBool;
} }
/// Returns the left sub-value of the biconditional.
BoolValue &getLeftSubValue() const { return LeftSubVal; }
/// Returns the right sub-value of the biconditional.
BoolValue &getRightSubValue() const { return RightSubVal; }
private:
BoolValue &LeftSubVal;
BoolValue &RightSubVal;
}; };
/// Models an integer. /// Models an integer.
class IntegerValue : public Value { class IntegerValue : public Value {
public: public:
explicit IntegerValue() : Value(Kind::Integer) {} explicit IntegerValue() : Value(Kind::Integer) {}
static bool classof(const Value *Val) { static bool classof(const Value *Val) {
▲ Show 20 LinesShow All 74 LinesShow Last 20 Lines

clang/lib/Analysis/FlowSensitive/Arena.cpp

//===-- Arena.cpp ---------------------------------------------------------===// //===-- Arena.cpp ---------------------------------------------------------===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "clang/Analysis/FlowSensitive/Arena.h" #include "clang/Analysis/FlowSensitive/Arena.h"
#include "clang/Analysis/FlowSensitive/Value.h"
namespace clang::dataflow { namespace clang::dataflow {
static std::pair<BoolValue *, BoolValue *> static std::pair<const Formula *, const Formula *>
makeCanonicalBoolValuePair(BoolValue &LHS, BoolValue &RHS) { canonicalFormulaPair(const Formula &LHS, const Formula &RHS) {
auto Res = std::make_pair(&LHS, &RHS); auto Res = std::make_pair(&LHS, &RHS);
if (&RHS < &LHS) if (&RHS < &LHS) // FIXME: use a deterministic order instead
std::swap(Res.first, Res.second); std::swap(Res.first, Res.second);
return Res; return Res;
} }
BoolValue &Arena::makeAnd(BoolValue &LHS, BoolValue &RHS) { const Formula &Arena::makeAtomRef(Atom A) {
auto [It, Inserted] = AtomRefs.try_emplace(A);
if (Inserted)
It->second =
&Formula::create(Alloc, Formula::AtomRef, {}, static_cast<unsigned>(A));
return *It->second;
}
const Formula &Arena::makeAnd(const Formula &LHS, const Formula &RHS) {
if (&LHS == &RHS) if (&LHS == &RHS)
return LHS; return LHS;
auto Res = ConjunctionVals.try_emplace(makeCanonicalBoolValuePair(LHS, RHS), auto [It, Inserted] =
nullptr); Ands.try_emplace(canonicalFormulaPair(LHS, RHS), nullptr);
if (Res.second) if (Inserted)
Res.first->second = &create<ConjunctionValue>(LHS, RHS); It->second = &Formula::create(Alloc, Formula::And, {&LHS, &RHS});
return *Res.first->second; return *It->second;
} }
BoolValue &Arena::makeOr(BoolValue &LHS, BoolValue &RHS) { const Formula &Arena::makeOr(const Formula &LHS, const Formula &RHS) {
if (&LHS == &RHS) if (&LHS == &RHS)
return LHS; return LHS;
auto Res = DisjunctionVals.try_emplace(makeCanonicalBoolValuePair(LHS, RHS), auto [It, Inserted] =
nullptr); Ors.try_emplace(canonicalFormulaPair(LHS, RHS), nullptr);
if (Res.second) if (Inserted)
Res.first->second = &create<DisjunctionValue>(LHS, RHS); It->second = &Formula::create(Alloc, Formula::Or, {&LHS, &RHS});
return *Res.first->second; return *It->second;
} }
BoolValue &Arena::makeNot(BoolValue &Val) { const Formula &Arena::makeNot(const Formula &Val) {
auto Res = NegationVals.try_emplace(&Val, nullptr); auto [It, Inserted] = Nots.try_emplace(&Val, nullptr);
if (Res.second) if (Inserted)
Res.first->second = &create<NegationValue>(Val); It->second = &Formula::create(Alloc, Formula::Not, {&Val});
return *Res.first->second; return *It->second;
} }
BoolValue &Arena::makeImplies(BoolValue &LHS, BoolValue &RHS) { const Formula &Arena::makeImplies(const Formula &LHS, const Formula &RHS) {
if (&LHS == &RHS) if (&LHS == &RHS)
return makeLiteral(true); return makeLiteral(true);
auto Res = ImplicationVals.try_emplace(std::make_pair(&LHS, &RHS), nullptr); auto [It, Inserted] =
if (Res.second) Implies.try_emplace(std::make_pair(&LHS, &RHS), nullptr);
Res.first->second = &create<ImplicationValue>(LHS, RHS); if (Inserted)
return *Res.first->second; It->second = &Formula::create(Alloc, Formula::Implies, {&LHS, &RHS});
return *It->second;
} }
BoolValue &Arena::makeEquals(BoolValue &LHS, BoolValue &RHS) { const Formula &Arena::makeEquals(const Formula &LHS, const Formula &RHS) {
if (&LHS == &RHS) if (&LHS == &RHS)
return makeLiteral(true); return makeLiteral(true);
auto Res = BiconditionalVals.try_emplace(makeCanonicalBoolValuePair(LHS, RHS), auto [It, Inserted] =
nullptr); Equals.try_emplace(canonicalFormulaPair(LHS, RHS), nullptr);
if (Res.second) if (Inserted)
Res.first->second = &create<BiconditionalValue>(LHS, RHS); It->second = &Formula::create(Alloc, Formula::Equal, {&LHS, &RHS});
return *Res.first->second; return *It->second;
} }
IntegerValue &Arena::makeIntLiteral(llvm::APInt Value) { IntegerValue &Arena::makeIntLiteral(llvm::APInt Value) {
auto [It, Inserted] = IntegerLiterals.try_emplace(Value, nullptr); auto [It, Inserted] = IntegerLiterals.try_emplace(Value, nullptr);
if (Inserted) if (Inserted)
It->second = &create<IntegerValue>(); It->second = &create<IntegerValue>();
return *It->second; return *It->second;
} }
const Formula &Arena::getFormula(const BoolValue &B) { BoolValue &Arena::makeBoolValue(const Formula &F) {
auto It = ValToFormula.find(&B); auto [It, Inserted] = FormulaValues.try_emplace(&F);
if (It != ValToFormula.end()) if (Inserted)
return *It->second; It->second = (F.kind() == Formula::AtomRef)
Formula &F = [&]() -> Formula & { ? (BoolValue *)&create<AtomicBoolValue>(F)
switch (B.getKind()) { : &create<FormulaBoolValue>(F);
case Value::Kind::Integer: return *It->second;
case Value::Kind::Reference:
case Value::Kind::Pointer:
case Value::Kind::Struct:
llvm_unreachable("not a boolean");
case Value::Kind::TopBool:
case Value::Kind::AtomicBool:
// TODO: assign atom numbers on creation rather than in getFormula(), so
// they will be deterministic and maybe even meaningful.
return Formula::create(Alloc, Formula::AtomRef, {},
static_cast<unsigned>(makeAtom()));
case Value::Kind::Conjunction:
return Formula::create(
Alloc, Formula::And,
{&getFormula(cast<ConjunctionValue>(B).getLeftSubValue()),
&getFormula(cast<ConjunctionValue>(B).getRightSubValue())});
case Value::Kind::Disjunction:
return Formula::create(
Alloc, Formula::Or,
{&getFormula(cast<DisjunctionValue>(B).getLeftSubValue()),
&getFormula(cast<DisjunctionValue>(B).getRightSubValue())});
case Value::Kind::Negation:
return Formula::create(Alloc, Formula::Not,
{&getFormula(cast<NegationValue>(B).getSubVal())});
case Value::Kind::Implication:
return Formula::create(
Alloc, Formula::Implies,
{&getFormula(cast<ImplicationValue>(B).getLeftSubValue()),
&getFormula(cast<ImplicationValue>(B).getRightSubValue())});
case Value::Kind::Biconditional:
return Formula::create(
Alloc, Formula::Equal,
{&getFormula(cast<BiconditionalValue>(B).getLeftSubValue()),
&getFormula(cast<BiconditionalValue>(B).getRightSubValue())});
}
}();
ValToFormula.try_emplace(&B, &F);
return F;
} }
} // namespace clang::dataflow } // namespace clang::dataflow

clang/lib/Analysis/FlowSensitive/DataflowAnalysisContext.cpp

Show First 20 LinesShow All 92 Lines▼ Show 20 LinesDataflowAnalysisContext::getOrCreateNullPointerValue(QualType PointeeType) {
if (Res.second) { if (Res.second) {
auto &PointeeLoc = createStorageLocation(CanonicalPointeeType); auto &PointeeLoc = createStorageLocation(CanonicalPointeeType);
Res.first->second = &arena().create<PointerValue>(PointeeLoc); Res.first->second = &arena().create<PointerValue>(PointeeLoc);
} }
return *Res.first->second; return *Res.first->second;
} }
void DataflowAnalysisContext::addFlowConditionConstraint( void DataflowAnalysisContext::addFlowConditionConstraint(
AtomicBoolValue &Token, BoolValue &Constraint) { Atom Token, const Formula &Constraint) {
auto Res = FlowConditionConstraints.try_emplace(&Token, &Constraint); auto Res = FlowConditionConstraints.try_emplace(Token, &Constraint);
if (!Res.second) { if (!Res.second) {
Res.first->second = Res.first->second =
&arena().makeAnd(*Res.first->second, Constraint); &arena().makeAnd(*Res.first->second, Constraint);
} }
} }
AtomicBoolValue & Atom DataflowAnalysisContext::forkFlowCondition(Atom Token) {
DataflowAnalysisContext::forkFlowCondition(AtomicBoolValue &Token) { Atom ForkToken = arena().makeFlowConditionToken();
auto &ForkToken = arena().makeFlowConditionToken(); FlowConditionDeps[ForkToken].insert(Token);
FlowConditionDeps[&ForkToken].insert(&Token); addFlowConditionConstraint(ForkToken, arena().makeAtomRef(Token));
addFlowConditionConstraint(ForkToken, Token);
return ForkToken; return ForkToken;
} }
AtomicBoolValue & Atom
DataflowAnalysisContext::joinFlowConditions(AtomicBoolValue &FirstToken, DataflowAnalysisContext::joinFlowConditions(Atom FirstToken,
AtomicBoolValue &SecondToken) { Atom SecondToken) {
auto &Token = arena().makeFlowConditionToken(); Atom Token = arena().makeFlowConditionToken();
FlowConditionDeps[&Token].insert(&FirstToken); FlowConditionDeps[Token].insert(FirstToken);
FlowConditionDeps[&Token].insert(&SecondToken); FlowConditionDeps[Token].insert(SecondToken);
addFlowConditionConstraint( addFlowConditionConstraint(Token,
Token, arena().makeOr(FirstToken, SecondToken)); arena().makeOr(arena().makeAtomRef(FirstToken),
arena().makeAtomRef(SecondToken)));
return Token; return Token;
} }
Solver::Result Solver::Result DataflowAnalysisContext::querySolver(
DataflowAnalysisContext::querySolver(llvm::DenseSet<BoolValue *> Constraints) { llvm::DenseSet<const Formula *> Constraints) {
Constraints.insert(&arena().makeLiteral(true)); Constraints.insert(&arena().makeLiteral(true));
Constraints.insert( Constraints.insert(&arena().makeNot(arena().makeLiteral(false)));
&arena().makeNot(arena().makeLiteral(false))); return S->solve(Constraints);
llvm::DenseSet<const Formula *> Formulas;
for (const BoolValue * Constraint : Constraints)
Formulas.insert(&arena().getFormula(*Constraint));
return S->solve(Formulas);
} }
bool DataflowAnalysisContext::flowConditionImplies(AtomicBoolValue &Token, bool DataflowAnalysisContext::flowConditionImplies(Atom Token,
BoolValue &Val) { const Formula &Val) {
// Returns true if and only if truth assignment of the flow condition implies // Returns true if and only if truth assignment of the flow condition implies
// that `Val` is also true. We prove whether or not this property holds by // that `Val` is also true. We prove whether or not this property holds by
// reducing the problem to satisfiability checking. In other words, we attempt // reducing the problem to satisfiability checking. In other words, we attempt
// to show that assuming `Val` is false makes the constraints induced by the // to show that assuming `Val` is false makes the constraints induced by the
// flow condition unsatisfiable. // flow condition unsatisfiable.
llvm::DenseSet<BoolValue *> Constraints = {&Token, llvm::DenseSet<const Formula *> Constraints = {&arena().makeAtomRef(Token),
&arena().makeNot(Val)}; &arena().makeNot(Val)};
llvm::DenseSet<AtomicBoolValue *> VisitedTokens; llvm::DenseSet<Atom> VisitedTokens;
addTransitiveFlowConditionConstraints(Token, Constraints, VisitedTokens); addTransitiveFlowConditionConstraints(Token, Constraints, VisitedTokens);
return isUnsatisfiable(std::move(Constraints)); return isUnsatisfiable(std::move(Constraints));
} }
bool DataflowAnalysisContext::flowConditionIsTautology(AtomicBoolValue &Token) { bool DataflowAnalysisContext::flowConditionIsTautology(Atom Token) {
// Returns true if and only if we cannot prove that the flow condition can // Returns true if and only if we cannot prove that the flow condition can
// ever be false. // ever be false.
llvm::DenseSet<BoolValue *> Constraints = { llvm::DenseSet<const Formula *> Constraints = {
&arena().makeNot(Token)}; &arena().makeNot(arena().makeAtomRef(Token))};
llvm::DenseSet<AtomicBoolValue *> VisitedTokens; llvm::DenseSet<Atom> VisitedTokens;
addTransitiveFlowConditionConstraints(Token, Constraints, VisitedTokens); addTransitiveFlowConditionConstraints(Token, Constraints, VisitedTokens);
return isUnsatisfiable(std::move(Constraints)); return isUnsatisfiable(std::move(Constraints));
} }
bool DataflowAnalysisContext::equivalentBoolValues(BoolValue &Val1, bool DataflowAnalysisContext::equivalentFormulas(const Formula &Val1,
BoolValue &Val2) { const Formula &Val2) {
llvm::DenseSet<BoolValue *> Constraints = { llvm::DenseSet<const Formula *> Constraints = {
&arena().makeNot(arena().makeEquals(Val1, Val2))}; &arena().makeNot(arena().makeEquals(Val1, Val2))};
return isUnsatisfiable(Constraints); return isUnsatisfiable(std::move(Constraints));
} }
void DataflowAnalysisContext::addTransitiveFlowConditionConstraints( void DataflowAnalysisContext::addTransitiveFlowConditionConstraints(
AtomicBoolValue &Token, llvm::DenseSet<BoolValue *> &Constraints, Atom Token, llvm::DenseSet<const Formula *> &Constraints,
llvm::DenseSet<AtomicBoolValue *> &VisitedTokens) { llvm::DenseSet<Atom> &VisitedTokens) {
auto Res = VisitedTokens.insert(&Token); auto Res = VisitedTokens.insert(Token);
if (!Res.second) if (!Res.second)
return; return;
auto ConstraintsIt = FlowConditionConstraints.find(&Token); auto ConstraintsIt = FlowConditionConstraints.find(Token);
if (ConstraintsIt == FlowConditionConstraints.end()) { if (ConstraintsIt == FlowConditionConstraints.end()) {
Constraints.insert(&Token); Constraints.insert(&arena().makeAtomRef(Token));
} else { } else {
// Bind flow condition token via `iff` to its set of constraints: // Bind flow condition token via `iff` to its set of constraints:
// FC <=> (C1 ^ C2 ^ ...), where Ci are constraints // FC <=> (C1 ^ C2 ^ ...), where Ci are constraints
Constraints.insert(&arena().makeEquals(Token, *ConstraintsIt->second)); Constraints.insert(&arena().makeEquals(arena().makeAtomRef(Token),
*ConstraintsIt->second));
} }
auto DepsIt = FlowConditionDeps.find(&Token); auto DepsIt = FlowConditionDeps.find(Token);
if (DepsIt != FlowConditionDeps.end()) { if (DepsIt != FlowConditionDeps.end()) {
for (AtomicBoolValue *DepToken : DepsIt->second) { for (Atom DepToken : DepsIt->second) {
addTransitiveFlowConditionConstraints(*DepToken, Constraints, addTransitiveFlowConditionConstraints(DepToken, Constraints,
VisitedTokens); VisitedTokens);
} }
} }
} }
void DataflowAnalysisContext::dumpFlowCondition(AtomicBoolValue &Token, void DataflowAnalysisContext::dumpFlowCondition(Atom Token,
llvm::raw_ostream &OS) { llvm::raw_ostream &OS) {
// TODO: accumulate formulas directly instead llvm::DenseSet<const Formula *> Constraints = {&arena().makeAtomRef(Token)};
llvm::DenseSet<BoolValue *> Constraints = {&Token}; llvm::DenseSet<Atom> VisitedTokens;
llvm::DenseSet<AtomicBoolValue *> VisitedTokens;
addTransitiveFlowConditionConstraints(Token, Constraints, VisitedTokens); addTransitiveFlowConditionConstraints(Token, Constraints, VisitedTokens);
// TODO: have formulas know about true/false directly instead // TODO: have formulas know about true/false directly instead
auto &True = arena().getFormula(arena().makeLiteral(true)); auto &True = arena().makeLiteral(true);
auto &False = arena().getFormula(arena().makeLiteral(false)); auto &False = arena().makeLiteral(false);
auto Delegate = [&](llvm::raw_ostream &OS, const Formula &F) { auto Delegate = [&](llvm::raw_ostream &OS, const Formula &F) {
if (&F == &True) { if (&F == &True) {
OS << "True"; OS << "True";
return true; return true;
} }
if (&F == &False) { if (&F == &False) {
OS << "False"; OS << "False";
return true; return true;
} }
return false; return false;
}; };
std::vector<std::string> Lines; std::vector<std::string> Lines;
for (const auto *Constraint : Constraints) { for (const auto *Constraint : Constraints) {
Lines.emplace_back(); Lines.emplace_back();
llvm::raw_string_ostream LineOS(Lines.back()); llvm::raw_string_ostream LineOS(Lines.back());
arena().getFormula(*Constraint).print(LineOS, Delegate); Constraint->print(LineOS, Delegate);
} }
llvm::sort(Lines); llvm::sort(Lines);
for (const auto &Line : Lines) for (const auto &Line : Lines)
OS << Line << "\n"; OS << Line << "\n";
} }
const ControlFlowContext * const ControlFlowContext *
DataflowAnalysisContext::getControlFlowContext(const FunctionDecl *F) { DataflowAnalysisContext::getControlFlowContext(const FunctionDecl *F) {
▲ Show 20 LinesShow All 112 LinesShow Last 20 Lines

clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp

Show First 20 LinesShow All 101 Lines▼ Show 20 Lines if (isa<BoolValue>(&Val1) && isa<BoolValue>(&Val2)) {
// bool in the other. // bool in the other.
// For example: // For example:
// ``` // ```
// std::optional<bool> o; // std::optional<bool> o;
// int x; // int x;
// if (o.has_value()) // if (o.has_value())
// x = o.value(); // x = o.value();
// ``` // ```
auto *Expr1 = cast<BoolValue>(&Val1); auto &Expr1 = cast<BoolValue>(Val1).formula();
auto *Expr2 = cast<BoolValue>(&Val2); auto &Expr2 = cast<BoolValue>(Val2).formula();
auto &MergedVal = MergedEnv.makeAtomicBoolValue(); auto &A = MergedEnv.arena();
MergedEnv.addToFlowCondition(MergedEnv.makeOr( auto &MergedVal = A.makeAtomRef(A.makeAtom());
MergedEnv.makeAnd(Env1.getFlowConditionToken(), MergedEnv.addToFlowCondition(
MergedEnv.makeIff(MergedVal, *Expr1)), A.makeOr(A.makeAnd(A.makeAtomRef(Env1.getFlowConditionToken()),
MergedEnv.makeAnd(Env2.getFlowConditionToken(), A.makeEquals(MergedVal, Expr1)),
MergedEnv.makeIff(MergedVal, *Expr2)))); A.makeAnd(A.makeAtomRef(Env2.getFlowConditionToken()),
return &MergedVal; A.makeEquals(MergedVal, Expr2))));
return &A.makeBoolValue(MergedVal);
} }
// FIXME: Consider destroying `MergedValue` immediately if `ValueModel::merge` // FIXME: Consider destroying `MergedValue` immediately if `ValueModel::merge`
// returns false to avoid storing unneeded values in `DACtx`. // returns false to avoid storing unneeded values in `DACtx`.
// FIXME: Creating the value based on the type alone creates misshapen values // FIXME: Creating the value based on the type alone creates misshapen values
// for lvalues, since the type does not reflect the need for `ReferenceValue`. // for lvalues, since the type does not reflect the need for `ReferenceValue`.
if (Value *MergedVal = MergedEnv.createValue(Type)) if (Value *MergedVal = MergedEnv.createValue(Type))
if (Model.merge(Type, Val1, Env1, Val2, Env2, *MergedVal, MergedEnv)) if (Model.merge(Type, Val1, Env1, Val2, Env2, *MergedVal, MergedEnv))
▲ Show 20 LinesShow All 131 Lines▼ Show 20 Lines if (getStorageLocation(*FD) != nullptr)
continue; continue;
auto &Loc = createStorageLocation(FD->getType()); auto &Loc = createStorageLocation(FD->getType());
setStorageLocation(*FD, Loc); setStorageLocation(*FD, Loc);
} }
} }
Environment::Environment(DataflowAnalysisContext &DACtx) Environment::Environment(DataflowAnalysisContext &DACtx)
: DACtx(&DACtx), : DACtx(&DACtx),
FlowConditionToken(&DACtx.arena().makeFlowConditionToken()) {} FlowConditionToken(DACtx.arena().makeFlowConditionToken()) {}
Environment::Environment(const Environment &Other) Environment::Environment(const Environment &Other)
: DACtx(Other.DACtx), CallStack(Other.CallStack), : DACtx(Other.DACtx), CallStack(Other.CallStack),
ReturnVal(Other.ReturnVal), ReturnLoc(Other.ReturnLoc), ReturnVal(Other.ReturnVal), ReturnLoc(Other.ReturnLoc),
ThisPointeeLoc(Other.ThisPointeeLoc), DeclToLoc(Other.DeclToLoc), ThisPointeeLoc(Other.ThisPointeeLoc), DeclToLoc(Other.DeclToLoc),
ExprToLoc(Other.ExprToLoc), LocToVal(Other.LocToVal), ExprToLoc(Other.ExprToLoc), LocToVal(Other.LocToVal),
MemberLocToStruct(Other.MemberLocToStruct), MemberLocToStruct(Other.MemberLocToStruct),
FlowConditionToken(&DACtx->forkFlowCondition(*Other.FlowConditionToken)) { FlowConditionToken(DACtx->forkFlowCondition(Other.FlowConditionToken)) {}
}
Environment &Environment::operator=(const Environment &Other) { Environment &Environment::operator=(const Environment &Other) {
Environment Copy(Other); Environment Copy(Other);
*this = std::move(Copy); *this = std::move(Copy);
return *this; return *this;
} }
Environment::Environment(DataflowAnalysisContext &DACtx, Environment::Environment(DataflowAnalysisContext &DACtx,
▲ Show 20 LinesShow All 309 Lines▼ Show 20 LinesLatticeJoinEffect Environment::join(const Environment &Other,
JoinedEnv.MemberLocToStruct = JoinedEnv.MemberLocToStruct =
intersectDenseMaps(MemberLocToStruct, Other.MemberLocToStruct); intersectDenseMaps(MemberLocToStruct, Other.MemberLocToStruct);
if (MemberLocToStruct.size() != JoinedEnv.MemberLocToStruct.size()) if (MemberLocToStruct.size() != JoinedEnv.MemberLocToStruct.size())
Effect = LatticeJoinEffect::Changed; Effect = LatticeJoinEffect::Changed;
// FIXME: set `Effect` as needed. // FIXME: set `Effect` as needed.
// FIXME: update join to detect backedges and simplify the flow condition // FIXME: update join to detect backedges and simplify the flow condition
// accordingly. // accordingly.
JoinedEnv.FlowConditionToken = &DACtx->joinFlowConditions( JoinedEnv.FlowConditionToken =
*FlowConditionToken, *Other.FlowConditionToken); DACtx->joinFlowConditions(FlowConditionToken, Other.FlowConditionToken);
for (auto &Entry : LocToVal) { for (auto &Entry : LocToVal) {
const StorageLocation *Loc = Entry.first; const StorageLocation *Loc = Entry.first;
assert(Loc != nullptr); assert(Loc != nullptr);
Value *Val = Entry.second; Value *Val = Entry.second;
assert(Val != nullptr); assert(Val != nullptr);
▲ Show 20 LinesShow All 203 Lines▼ Show 20 Lines if (Type->isBooleanType()) {
return &makeAtomicBoolValue(); return &makeAtomicBoolValue();
} }
if (Type->isIntegerType()) { if (Type->isIntegerType()) {
// FIXME: consider instead `return nullptr`, given that we do nothing useful // FIXME: consider instead `return nullptr`, given that we do nothing useful
// with integers, and so distinguishing them serves no purpose, but could // with integers, and so distinguishing them serves no purpose, but could
// prevent convergence. // prevent convergence.
CreatedValuesCount++; CreatedValuesCount++;
return &DACtx->arena().create<IntegerValue>(); return &arena().create<IntegerValue>();
} }
if (Type->isReferenceType() || Type->isPointerType()) { if (Type->isReferenceType() || Type->isPointerType()) {
CreatedValuesCount++; CreatedValuesCount++;
QualType PointeeType = Type->getPointeeType(); QualType PointeeType = Type->getPointeeType();
auto &PointeeLoc = createStorageLocation(PointeeType); auto &PointeeLoc = createStorageLocation(PointeeType);
if (Visited.insert(PointeeType.getCanonicalType()).second) { if (Visited.insert(PointeeType.getCanonicalType()).second) {
Value *PointeeVal = createValueUnlessSelfReferential( Value *PointeeVal = createValueUnlessSelfReferential(
PointeeType, Visited, Depth, CreatedValuesCount); PointeeType, Visited, Depth, CreatedValuesCount);
Visited.erase(PointeeType.getCanonicalType()); Visited.erase(PointeeType.getCanonicalType());
if (PointeeVal != nullptr) if (PointeeVal != nullptr)
setValue(PointeeLoc, *PointeeVal); setValue(PointeeLoc, *PointeeVal);
} }
if (Type->isReferenceType()) if (Type->isReferenceType())
return &DACtx->arena().create<ReferenceValue>(PointeeLoc); return &arena().create<ReferenceValue>(PointeeLoc);
else else
return &DACtx->arena().create<PointerValue>(PointeeLoc); return &arena().create<PointerValue>(PointeeLoc);
} }
if (Type->isRecordType()) { if (Type->isRecordType()) {
CreatedValuesCount++; CreatedValuesCount++;
llvm::DenseMap<const ValueDecl *, Value *> FieldValues; llvm::DenseMap<const ValueDecl *, Value *> FieldValues;
for (const FieldDecl *Field : DACtx->getReferencedFields(Type)) { for (const FieldDecl *Field : DACtx->getReferencedFields(Type)) {
assert(Field != nullptr); assert(Field != nullptr);
QualType FieldType = Field->getType(); QualType FieldType = Field->getType();
if (Visited.contains(FieldType.getCanonicalType())) if (Visited.contains(FieldType.getCanonicalType()))
continue; continue;
Visited.insert(FieldType.getCanonicalType()); Visited.insert(FieldType.getCanonicalType());
if (auto *FieldValue = createValueUnlessSelfReferential( if (auto *FieldValue = createValueUnlessSelfReferential(
FieldType, Visited, Depth + 1, CreatedValuesCount)) FieldType, Visited, Depth + 1, CreatedValuesCount))
FieldValues.insert({Field, FieldValue}); FieldValues.insert({Field, FieldValue});
Visited.erase(FieldType.getCanonicalType()); Visited.erase(FieldType.getCanonicalType());
} }
return &DACtx->arena().create<StructValue>(std::move(FieldValues)); return &arena().create<StructValue>(std::move(FieldValues));
} }
return nullptr; return nullptr;
} }
StorageLocation &Environment::skip(StorageLocation &Loc, SkipPast SP) const { StorageLocation &Environment::skip(StorageLocation &Loc, SkipPast SP) const {
switch (SP) { switch (SP) {
case SkipPast::None: case SkipPast::None:
return Loc; return Loc;
case SkipPast::Reference: case SkipPast::Reference:
// References cannot be chained so we only need to skip past one level of // References cannot be chained so we only need to skip past one level of
// indirection. // indirection.
if (auto *Val = dyn_cast_or_null<ReferenceValue>(getValue(Loc))) if (auto *Val = dyn_cast_or_null<ReferenceValue>(getValue(Loc)))
return Val->getReferentLoc(); return Val->getReferentLoc();
return Loc; return Loc;
} }
llvm_unreachable("bad SkipPast kind"); llvm_unreachable("bad SkipPast kind");
} }
const StorageLocation &Environment::skip(const StorageLocation &Loc, const StorageLocation &Environment::skip(const StorageLocation &Loc,
SkipPast SP) const { SkipPast SP) const {
return skip(*const_cast<StorageLocation *>(&Loc), SP); return skip(*const_cast<StorageLocation *>(&Loc), SP);
} }
void Environment::addToFlowCondition(const Formula &Val) {
DACtx->addFlowConditionConstraint(FlowConditionToken, Val);
}
void Environment::addToFlowCondition(BoolValue &Val) { void Environment::addToFlowCondition(BoolValue &Val) {
DACtx->addFlowConditionConstraint(*FlowConditionToken, Val); addToFlowCondition(Val.formula());
} }
bool Environment::flowConditionImplies(const Formula &Val) const {
return DACtx->flowConditionImplies(FlowConditionToken, Val);
}
bool Environment::flowConditionImplies(BoolValue &Val) const { bool Environment::flowConditionImplies(BoolValue &Val) const {
return DACtx->flowConditionImplies(*FlowConditionToken, Val); return flowConditionImplies(Val.formula());
} }
void Environment::dump(raw_ostream &OS) const { void Environment::dump(raw_ostream &OS) const {
// FIXME: add printing for remaining fields and allow caller to decide what // FIXME: add printing for remaining fields and allow caller to decide what
// fields are printed. // fields are printed.
OS << "DeclToLoc:\n"; OS << "DeclToLoc:\n";
for (auto [D, L] : DeclToLoc) for (auto [D, L] : DeclToLoc)
OS << " [" << D->getNameAsString() << ", " << L << "]\n"; OS << " [" << D->getNameAsString() << ", " << L << "]\n";
OS << "ExprToLoc:\n"; OS << "ExprToLoc:\n";
for (auto [E, L] : ExprToLoc) for (auto [E, L] : ExprToLoc)
OS << " [" << E << ", " << L << "]\n"; OS << " [" << E << ", " << L << "]\n";
OS << "LocToVal:\n"; OS << "LocToVal:\n";
for (auto [L, V] : LocToVal) { for (auto [L, V] : LocToVal) {
OS << " [" << L << ", " << V << ": " << *V << "]\n"; OS << " [" << L << ", " << V << ": " << *V << "]\n";
} }
OS << "FlowConditionToken:\n"; OS << "FlowConditionToken:\n";
DACtx->dumpFlowCondition(*FlowConditionToken, OS); DACtx->dumpFlowCondition(FlowConditionToken, OS);
} }
void Environment::dump() const { void Environment::dump() const {
dump(llvm::dbgs()); dump(llvm::dbgs());
} }
AggregateStorageLocation * AggregateStorageLocation *
getImplicitObjectLocation(const CXXMemberCallExpr &MCE, getImplicitObjectLocation(const CXXMemberCallExpr &MCE,
Show All 34 Lines

clang/lib/Analysis/FlowSensitive/DebugSupport.cpp

Show All 30 Linesllvm::StringRef debugString(Value::Kind Kind) {
case Value::Kind::Pointer: case Value::Kind::Pointer:
return "Pointer"; return "Pointer";
case Value::Kind::Struct: case Value::Kind::Struct:
return "Struct"; return "Struct";
case Value::Kind::AtomicBool: case Value::Kind::AtomicBool:
return "AtomicBool"; return "AtomicBool";
case Value::Kind::TopBool: case Value::Kind::TopBool:
return "TopBool"; return "TopBool";
case Value::Kind::Conjunction: case Value::Kind::FormulaBool:
return "Conjunction"; return "FormulaBool";
case Value::Kind::Disjunction:
return "Disjunction";
case Value::Kind::Negation:
return "Negation";
case Value::Kind::Implication:
return "Implication";
case Value::Kind::Biconditional:
return "Biconditional";
} }
llvm_unreachable("Unhandled value kind"); llvm_unreachable("Unhandled value kind");
} }
llvm::raw_ostream &operator<<(llvm::raw_ostream &OS, llvm::raw_ostream &operator<<(llvm::raw_ostream &OS,
Solver::Result::Assignment Assignment) { Solver::Result::Assignment Assignment) {
switch (Assignment) { switch (Assignment) {
case Solver::Result::Assignment::AssignedFalse: case Solver::Result::Assignment::AssignedFalse:
Show All 33 Lines

clang/lib/Analysis/FlowSensitive/HTMLLogger.cpp

Show First 20 LinesShow All 105 Lines▼ Show 20 Lines case Value::Kind::Pointer:
JOS.attributeObject( JOS.attributeObject(
"pointee", [&] { dump(cast<PointerValue>(V).getPointeeLoc()); }); "pointee", [&] { dump(cast<PointerValue>(V).getPointeeLoc()); });
break; break;
case Value::Kind::Struct: case Value::Kind::Struct:
for (const auto &Child : cast<StructValue>(V).children()) for (const auto &Child : cast<StructValue>(V).children())
JOS.attributeObject("f:" + Child.first->getNameAsString(), JOS.attributeObject("f:" + Child.first->getNameAsString(),
[&] { dump(*Child.second); }); [&] { dump(*Child.second); });
break; break;
case Value::Kind::Disjunction: { case Value::Kind::FormulaBool: {
auto &VV = cast<DisjunctionValue>(V); auto &VV = cast<FormulaBoolValue>(V);
JOS.attributeObject("lhs", [&] { dump(VV.getLeftSubValue()); }); JOS.attribute("formula", llvm::to_string(VV.formula()));
JOS.attributeObject("rhs", [&] { dump(VV.getRightSubValue()); });
break;
}
case Value::Kind::Conjunction: {
auto &VV = cast<ConjunctionValue>(V);
JOS.attributeObject("lhs", [&] { dump(VV.getLeftSubValue()); });
JOS.attributeObject("rhs", [&] { dump(VV.getRightSubValue()); });
break;
}
case Value::Kind::Negation: {
auto &VV = cast<NegationValue>(V);
JOS.attributeObject("not", [&] { dump(VV.getSubVal()); });
break;
}
case Value::Kind::Implication: {
auto &VV = cast<ImplicationValue>(V);
JOS.attributeObject("if", [&] { dump(VV.getLeftSubValue()); });
JOS.attributeObject("then", [&] { dump(VV.getRightSubValue()); });
break;
}
case Value::Kind::Biconditional: {
auto &VV = cast<BiconditionalValue>(V);
JOS.attributeObject("lhs", [&] { dump(VV.getLeftSubValue()); });
JOS.attributeObject("rhs", [&] { dump(VV.getRightSubValue()); });
break; break;
} }
} }
for (const auto& Prop : V.properties()) for (const auto& Prop : V.properties())
JOS.attributeObject(("p:" + Prop.first()).str(), JOS.attributeObject(("p:" + Prop.first()).str(),
[&] { dump(*Prop.second); }); [&] { dump(*Prop.second); });
// Running the SAT solver is expensive, but knowing which booleans are // Running the SAT solver is expensive, but knowing which booleans are
// guaranteed true/false here is valuable and hard to determine by hand. // guaranteed true/false here is valuable and hard to determine by hand.
if (auto *B = llvm::dyn_cast<BoolValue>(&V)) { if (auto *B = llvm::dyn_cast<BoolValue>(&V)) {
JOS.attribute("truth", Env.flowConditionImplies(*B) ? "true" JOS.attribute(
: Env.flowConditionImplies(Env.makeNot(*B)) "truth", Env.flowConditionImplies(B->formula()) ? "true"
: Env.flowConditionImplies(Env.arena().makeNot(B->formula()))
? "false" ? "false"
: "unknown"); : "unknown");
} }
} }
void dump(const StorageLocation &L) { void dump(const StorageLocation &L) {
JOS.attribute("location", llvm::to_string(&L)); JOS.attribute("location", llvm::to_string(&L));
if (!Visited.insert(&L).second) if (!Visited.insert(&L).second)
return; return;
JOS.attribute("type", L.getType().getAsString()); JOS.attribute("type", L.getType().getAsString());
▲ Show 20 LinesShow All 395 LinesShow Last 20 Lines

clang/lib/Analysis/FlowSensitive/Transfer.cpp

Show First 20 LinesShow All 55 Lines▼ Show 20 Linesstatic BoolValue &evaluateBooleanEquality(const Expr &LHS, const Expr &RHS,
if (auto *LHSBool = dyn_cast_or_null<BoolValue>(LHSValue)) if (auto *LHSBool = dyn_cast_or_null<BoolValue>(LHSValue))
if (auto *RHSBool = dyn_cast_or_null<BoolValue>(RHSValue)) if (auto *RHSBool = dyn_cast_or_null<BoolValue>(RHSValue))
return Env.makeIff(*LHSBool, *RHSBool); return Env.makeIff(*LHSBool, *RHSBool);
return Env.makeAtomicBoolValue(); return Env.makeAtomicBoolValue();
} }
// Functionally updates `V` such that any instances of `TopBool` are replaced
// with fresh atomic bools. Note: This implementation assumes that `B` is a
// tree; if `B` is a DAG, it will lose any sharing between subvalues that was
// present in the original .
static BoolValue &unpackValue(BoolValue &V, Environment &Env);
template <typename Derived, typename M>
BoolValue &unpackBinaryBoolValue(Environment &Env, BoolValue &B, M build) {
auto &V = *cast<Derived>(&B);
BoolValue &Left = V.getLeftSubValue();
BoolValue &Right = V.getRightSubValue();
BoolValue &ULeft = unpackValue(Left, Env);
BoolValue &URight = unpackValue(Right, Env);
if (&ULeft == &Left && &URight == &Right)
return V;
return (Env.*build)(ULeft, URight);
}
static BoolValue &unpackValue(BoolValue &V, Environment &Env) { static BoolValue &unpackValue(BoolValue &V, Environment &Env) {
switch (V.getKind()) { if (auto *Top = llvm::dyn_cast<TopBoolValue>(&V)) {
case Value::Kind::Integer: auto &A = Env.getDataflowAnalysisContext().arena();
case Value::Kind::Reference: return A.makeBoolValue(A.makeAtomRef(Top->atom()));
case Value::Kind::Pointer:
case Value::Kind::Struct:
llvm_unreachable("BoolValue cannot have any of these kinds.");
case Value::Kind::AtomicBool:
return V;
case Value::Kind::TopBool:
// Unpack `TopBool` into a fresh atomic bool.
return Env.makeAtomicBoolValue();
case Value::Kind::Negation: {
auto &N = *cast<NegationValue>(&V);
BoolValue &Sub = N.getSubVal();
BoolValue &USub = unpackValue(Sub, Env);
if (&USub == &Sub)
return V;
return Env.makeNot(USub);
}
case Value::Kind::Conjunction:
return unpackBinaryBoolValue<ConjunctionValue>(Env, V,
&Environment::makeAnd);
case Value::Kind::Disjunction:
return unpackBinaryBoolValue<DisjunctionValue>(Env, V,
&Environment::makeOr);
case Value::Kind::Implication:
return unpackBinaryBoolValue<ImplicationValue>(
Env, V, &Environment::makeImplication);
case Value::Kind::Biconditional:
return unpackBinaryBoolValue<BiconditionalValue>(Env, V,
&Environment::makeIff);
} }
llvm_unreachable("All reachable cases in switch return"); return V;
} }
// Unpacks the value (if any) associated with `E` and updates `E` to the new // Unpacks the value (if any) associated with `E` and updates `E` to the new
// value, if any unpacking occured. Also, does the lvalue-to-rvalue conversion, // value, if any unpacking occured. Also, does the lvalue-to-rvalue conversion,
// by skipping past the reference. // by skipping past the reference.
static Value *maybeUnpackLValueExpr(const Expr &E, Environment &Env) { static Value *maybeUnpackLValueExpr(const Expr &E, Environment &Env) {
auto *Loc = Env.getStorageLocationStrict(E); auto *Loc = Env.getStorageLocationStrict(E);
if (Loc == nullptr) if (Loc == nullptr)
▲ Show 20 LinesShow All 756 LinesShow Last 20 Lines

clang/unittests/Analysis/FlowSensitive/ArenaTest.cpp

Show All 14 Lines
namespace { namespace {
class ArenaTest : public ::testing::Test { class ArenaTest : public ::testing::Test {
protected: protected:
Arena A; Arena A;
}; };
TEST_F(ArenaTest, CreateAtomicBoolValueReturnsDistinctValues) { TEST_F(ArenaTest, CreateAtomicBoolValueReturnsDistinctValues) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomValue();
auto &Y = A.create<AtomicBoolValue>(); auto &Y = A.makeAtomValue();
EXPECT_NE(&X, &Y); EXPECT_NE(&X, &Y);
} }
TEST_F(ArenaTest, CreateTopBoolValueReturnsDistinctValues) { TEST_F(ArenaTest, CreateTopBoolValueReturnsDistinctValues) {
auto &X = A.create<TopBoolValue>(); auto &X = A.makeTopValue();
auto &Y = A.create<TopBoolValue>(); auto &Y = A.makeTopValue();
EXPECT_NE(&X, &Y); EXPECT_NE(&X, &Y);
} }
TEST_F(ArenaTest, GetOrCreateConjunctionReturnsSameExprGivenSameArgs) { TEST_F(ArenaTest, GetOrCreateConjunctionReturnsSameExprGivenSameArgs) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &XAndX = A.makeAnd(X, X); auto &XAndX = A.makeAnd(X, X);
EXPECT_EQ(&XAndX, &X); EXPECT_EQ(&XAndX, &X);
} }
TEST_F(ArenaTest, GetOrCreateConjunctionReturnsSameExprOnSubsequentCalls) { TEST_F(ArenaTest, GetOrCreateConjunctionReturnsSameExprOnSubsequentCalls) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &Y = A.create<AtomicBoolValue>(); auto &Y = A.makeAtomRef(A.makeAtom());
auto &XAndY1 = A.makeAnd(X, Y); auto &XAndY1 = A.makeAnd(X, Y);
auto &XAndY2 = A.makeAnd(X, Y); auto &XAndY2 = A.makeAnd(X, Y);
EXPECT_EQ(&XAndY1, &XAndY2); EXPECT_EQ(&XAndY1, &XAndY2);
auto &YAndX = A.makeAnd(Y, X); auto &YAndX = A.makeAnd(Y, X);
EXPECT_EQ(&XAndY1, &YAndX); EXPECT_EQ(&XAndY1, &YAndX);
auto &Z = A.create<AtomicBoolValue>(); auto &Z = A.makeAtomRef(A.makeAtom());
auto &XAndZ = A.makeAnd(X, Z); auto &XAndZ = A.makeAnd(X, Z);
EXPECT_NE(&XAndY1, &XAndZ); EXPECT_NE(&XAndY1, &XAndZ);
} }
TEST_F(ArenaTest, GetOrCreateDisjunctionReturnsSameExprGivenSameArgs) { TEST_F(ArenaTest, GetOrCreateDisjunctionReturnsSameExprGivenSameArgs) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &XOrX = A.makeOr(X, X); auto &XOrX = A.makeOr(X, X);
EXPECT_EQ(&XOrX, &X); EXPECT_EQ(&XOrX, &X);
} }
TEST_F(ArenaTest, GetOrCreateDisjunctionReturnsSameExprOnSubsequentCalls) { TEST_F(ArenaTest, GetOrCreateDisjunctionReturnsSameExprOnSubsequentCalls) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &Y = A.create<AtomicBoolValue>(); auto &Y = A.makeAtomRef(A.makeAtom());
auto &XOrY1 = A.makeOr(X, Y); auto &XOrY1 = A.makeOr(X, Y);
auto &XOrY2 = A.makeOr(X, Y); auto &XOrY2 = A.makeOr(X, Y);
EXPECT_EQ(&XOrY1, &XOrY2); EXPECT_EQ(&XOrY1, &XOrY2);
auto &YOrX = A.makeOr(Y, X); auto &YOrX = A.makeOr(Y, X);
EXPECT_EQ(&XOrY1, &YOrX); EXPECT_EQ(&XOrY1, &YOrX);
auto &Z = A.create<AtomicBoolValue>(); auto &Z = A.makeAtomRef(A.makeAtom());
auto &XOrZ = A.makeOr(X, Z); auto &XOrZ = A.makeOr(X, Z);
EXPECT_NE(&XOrY1, &XOrZ); EXPECT_NE(&XOrY1, &XOrZ);
} }
TEST_F(ArenaTest, GetOrCreateNegationReturnsSameExprOnSubsequentCalls) { TEST_F(ArenaTest, GetOrCreateNegationReturnsSameExprOnSubsequentCalls) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &NotX1 = A.makeNot(X); auto &NotX1 = A.makeNot(X);
auto &NotX2 = A.makeNot(X); auto &NotX2 = A.makeNot(X);
EXPECT_EQ(&NotX1, &NotX2); EXPECT_EQ(&NotX1, &NotX2);
auto &Y = A.makeAtomRef(A.makeAtom());
auto &Y = A.create<AtomicBoolValue>();
auto &NotY = A.makeNot(Y); auto &NotY = A.makeNot(Y);
EXPECT_NE(&NotX1, &NotY); EXPECT_NE(&NotX1, &NotY);
} }
TEST_F(ArenaTest, GetOrCreateImplicationReturnsTrueGivenSameArgs) { TEST_F(ArenaTest, GetOrCreateImplicationReturnsTrueGivenSameArgs) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &XImpliesX = A.makeImplies(X, X); auto &XImpliesX = A.makeImplies(X, X);
EXPECT_EQ(&XImpliesX, &A.makeLiteral(true)); EXPECT_EQ(&XImpliesX, &A.makeLiteral(true));
} }
TEST_F(ArenaTest, GetOrCreateImplicationReturnsSameExprOnSubsequentCalls) { TEST_F(ArenaTest, GetOrCreateImplicationReturnsSameExprOnSubsequentCalls) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &Y = A.create<AtomicBoolValue>(); auto &Y = A.makeAtomRef(A.makeAtom());
auto &XImpliesY1 = A.makeImplies(X, Y); auto &XImpliesY1 = A.makeImplies(X, Y);
auto &XImpliesY2 = A.makeImplies(X, Y); auto &XImpliesY2 = A.makeImplies(X, Y);
EXPECT_EQ(&XImpliesY1, &XImpliesY2); EXPECT_EQ(&XImpliesY1, &XImpliesY2);
auto &YImpliesX = A.makeImplies(Y, X); auto &YImpliesX = A.makeImplies(Y, X);
EXPECT_NE(&XImpliesY1, &YImpliesX); EXPECT_NE(&XImpliesY1, &YImpliesX);
auto &Z = A.create<AtomicBoolValue>(); auto &Z = A.makeAtomRef(A.makeAtom());
auto &XImpliesZ = A.makeImplies(X, Z); auto &XImpliesZ = A.makeImplies(X, Z);
EXPECT_NE(&XImpliesY1, &XImpliesZ); EXPECT_NE(&XImpliesY1, &XImpliesZ);
} }
TEST_F(ArenaTest, GetOrCreateIffReturnsTrueGivenSameArgs) { TEST_F(ArenaTest, GetOrCreateIffReturnsTrueGivenSameArgs) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &XIffX = A.makeEquals(X, X); auto &XIffX = A.makeEquals(X, X);
EXPECT_EQ(&XIffX, &A.makeLiteral(true)); EXPECT_EQ(&XIffX, &A.makeLiteral(true));
} }
TEST_F(ArenaTest, GetOrCreateIffReturnsSameExprOnSubsequentCalls) { TEST_F(ArenaTest, GetOrCreateIffReturnsSameExprOnSubsequentCalls) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &Y = A.create<AtomicBoolValue>(); auto &Y = A.makeAtomRef(A.makeAtom());
auto &XIffY1 = A.makeEquals(X, Y); auto &XIffY1 = A.makeEquals(X, Y);
auto &XIffY2 = A.makeEquals(X, Y); auto &XIffY2 = A.makeEquals(X, Y);
EXPECT_EQ(&XIffY1, &XIffY2); EXPECT_EQ(&XIffY1, &XIffY2);
auto &YIffX = A.makeEquals(Y, X); auto &YIffX = A.makeEquals(Y, X);
EXPECT_EQ(&XIffY1, &YIffX); EXPECT_EQ(&XIffY1, &YIffX);
auto &Z = A.create<AtomicBoolValue>(); auto &Z = A.makeAtomRef(A.makeAtom());
auto &XIffZ = A.makeEquals(X, Z); auto &XIffZ = A.makeEquals(X, Z);
EXPECT_NE(&XIffY1, &XIffZ); EXPECT_NE(&XIffY1, &XIffZ);
} }
TEST_F(ArenaTest, ValueToFormula) { TEST_F(ArenaTest, Interning) {
auto &X = A.create<AtomicBoolValue>(); Atom X = A.makeAtom();
auto &Y = A.create<AtomicBoolValue>(); Atom Y = A.makeAtom();
auto &XIffY = A.makeEquals(X, Y); const Formula &F1 = A.makeAnd(A.makeAtomRef(X), A.makeAtomRef(Y));
auto &XOrNotY = A.makeOr(X, A.makeNot(Y)); const Formula &F2 = A.makeAnd(A.makeAtomRef(Y), A.makeAtomRef(X));
auto &Implies = A.makeImplies(XIffY, XOrNotY); EXPECT_EQ(&F1, &F2);
BoolValue &B1 = A.makeBoolValue(F1);
EXPECT_EQ(llvm::to_string(A.getFormula(Implies)), BoolValue &B2 = A.makeBoolValue(F2);
"((V0 = V1) => (V0 | !V1))"); EXPECT_EQ(&B1, &B2);
} EXPECT_EQ(&B1.formula(), &F1);
TEST_F(ArenaTest, ValueToFormulaCached) {
auto &X = A.create<AtomicBoolValue>();
auto &Y = A.create<AtomicBoolValue>();
auto &XIffY = A.makeEquals(X, Y);
auto &Formula1 = A.getFormula(XIffY);
auto &Formula2 = A.getFormula(XIffY);
EXPECT_EQ(&Formula1, &Formula2);
} }
} // namespace } // namespace
} // namespace clang::dataflow } // namespace clang::dataflow

clang/unittests/Analysis/FlowSensitive/DataflowAnalysisContextTest.cpp

Show All 22 Lines DataflowAnalysisContextTest()
: Context(std::make_unique<WatchedLiteralsSolver>()), A(Context.arena()) { : Context(std::make_unique<WatchedLiteralsSolver>()), A(Context.arena()) {
} }
DataflowAnalysisContext Context; DataflowAnalysisContext Context;
Arena &A; Arena &A;
}; };
TEST_F(DataflowAnalysisContextTest, DistinctTopsNotEquivalent) { TEST_F(DataflowAnalysisContextTest, DistinctTopsNotEquivalent) {
auto &X = A.create<TopBoolValue>(); auto &X = A.makeTopValue();
auto &Y = A.create<TopBoolValue>(); auto &Y = A.makeTopValue();
EXPECT_FALSE(Context.equivalentBoolValues(X, Y)); EXPECT_FALSE(Context.equivalentFormulas(X.formula(), Y.formula()));
} }
TEST_F(DataflowAnalysisContextTest, EmptyFlowCondition) { TEST_F(DataflowAnalysisContextTest, EmptyFlowCondition) {
auto &FC = A.makeFlowConditionToken(); Atom FC = A.makeFlowConditionToken();
auto &C = A.create<AtomicBoolValue>(); auto &C = A.makeAtomRef(A.makeAtom());
EXPECT_FALSE(Context.flowConditionImplies(FC, C)); EXPECT_FALSE(Context.flowConditionImplies(FC, C));
} }
TEST_F(DataflowAnalysisContextTest, AddFlowConditionConstraint) { TEST_F(DataflowAnalysisContextTest, AddFlowConditionConstraint) {
auto &FC = A.makeFlowConditionToken(); Atom FC = A.makeFlowConditionToken();
auto &C = A.create<AtomicBoolValue>(); auto &C = A.makeAtomRef(A.makeAtom());
Context.addFlowConditionConstraint(FC, C); Context.addFlowConditionConstraint(FC, C);
EXPECT_TRUE(Context.flowConditionImplies(FC, C)); EXPECT_TRUE(Context.flowConditionImplies(FC, C));
} }
TEST_F(DataflowAnalysisContextTest, ForkFlowCondition) { TEST_F(DataflowAnalysisContextTest, ForkFlowCondition) {
auto &FC1 = A.makeFlowConditionToken(); Atom FC1 = A.makeFlowConditionToken();
auto &C1 = A.create<AtomicBoolValue>(); auto &C1 = A.makeAtomRef(A.makeAtom());
Context.addFlowConditionConstraint(FC1, C1); Context.addFlowConditionConstraint(FC1, C1);
// Forked flow condition inherits the constraints of its parent flow // Forked flow condition inherits the constraints of its parent flow
// condition. // condition.
auto &FC2 = Context.forkFlowCondition(FC1); Atom FC2 = Context.forkFlowCondition(FC1);
EXPECT_TRUE(Context.flowConditionImplies(FC2, C1)); EXPECT_TRUE(Context.flowConditionImplies(FC2, C1));
// Adding a new constraint to the forked flow condition does not affect its // Adding a new constraint to the forked flow condition does not affect its
// parent flow condition. // parent flow condition.
auto &C2 = A.create<AtomicBoolValue>(); auto &C2 = A.makeAtomRef(A.makeAtom());
Context.addFlowConditionConstraint(FC2, C2); Context.addFlowConditionConstraint(FC2, C2);
EXPECT_TRUE(Context.flowConditionImplies(FC2, C2)); EXPECT_TRUE(Context.flowConditionImplies(FC2, C2));
EXPECT_FALSE(Context.flowConditionImplies(FC1, C2)); EXPECT_FALSE(Context.flowConditionImplies(FC1, C2));
} }
TEST_F(DataflowAnalysisContextTest, JoinFlowConditions) { TEST_F(DataflowAnalysisContextTest, JoinFlowConditions) {
auto &C1 = A.create<AtomicBoolValue>(); auto &C1 = A.makeAtomRef(A.makeAtom());
auto &C2 = A.create<AtomicBoolValue>(); auto &C2 = A.makeAtomRef(A.makeAtom());
auto &C3 = A.create<AtomicBoolValue>(); auto &C3 = A.makeAtomRef(A.makeAtom());
auto &FC1 = A.makeFlowConditionToken(); Atom FC1 = A.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC1, C1); Context.addFlowConditionConstraint(FC1, C1);
Context.addFlowConditionConstraint(FC1, C3); Context.addFlowConditionConstraint(FC1, C3);
auto &FC2 = A.makeFlowConditionToken(); Atom FC2 = A.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC2, C2); Context.addFlowConditionConstraint(FC2, C2);
Context.addFlowConditionConstraint(FC2, C3); Context.addFlowConditionConstraint(FC2, C3);
auto &FC3 = Context.joinFlowConditions(FC1, FC2); Atom FC3 = Context.joinFlowConditions(FC1, FC2);
EXPECT_FALSE(Context.flowConditionImplies(FC3, C1)); EXPECT_FALSE(Context.flowConditionImplies(FC3, C1));
EXPECT_FALSE(Context.flowConditionImplies(FC3, C2)); EXPECT_FALSE(Context.flowConditionImplies(FC3, C2));
EXPECT_TRUE(Context.flowConditionImplies(FC3, C3)); EXPECT_TRUE(Context.flowConditionImplies(FC3, C3));
} }
TEST_F(DataflowAnalysisContextTest, FlowConditionTautologies) { TEST_F(DataflowAnalysisContextTest, FlowConditionTautologies) {
// Fresh flow condition with empty/no constraints is always true. // Fresh flow condition with empty/no constraints is always true.
auto &FC1 = A.makeFlowConditionToken(); Atom FC1 = A.makeFlowConditionToken();
EXPECT_TRUE(Context.flowConditionIsTautology(FC1)); EXPECT_TRUE(Context.flowConditionIsTautology(FC1));
// Literal `true` is always true. // Literal `true` is always true.
auto &FC2 = A.makeFlowConditionToken(); Atom FC2 = A.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC2, A.makeLiteral(true)); Context.addFlowConditionConstraint(FC2, A.makeLiteral(true));
EXPECT_TRUE(Context.flowConditionIsTautology(FC2)); EXPECT_TRUE(Context.flowConditionIsTautology(FC2));
// Literal `false` is never true. // Literal `false` is never true.
auto &FC3 = A.makeFlowConditionToken(); Atom FC3 = A.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC3, A.makeLiteral(false)); Context.addFlowConditionConstraint(FC3, A.makeLiteral(false));
EXPECT_FALSE(Context.flowConditionIsTautology(FC3)); EXPECT_FALSE(Context.flowConditionIsTautology(FC3));
// We can't prove that an arbitrary bool A is always true... // We can't prove that an arbitrary bool A is always true...
auto &C1 = A.create<AtomicBoolValue>(); auto &C1 = A.makeAtomRef(A.makeAtom());
auto &FC4 = A.makeFlowConditionToken(); Atom FC4 = A.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC4, C1); Context.addFlowConditionConstraint(FC4, C1);
EXPECT_FALSE(Context.flowConditionIsTautology(FC4)); EXPECT_FALSE(Context.flowConditionIsTautology(FC4));
// ... but we can prove A || !A is true. // ... but we can prove A || !A is true.
auto &FC5 = A.makeFlowConditionToken(); Atom FC5 = A.makeFlowConditionToken();
Context.addFlowConditionConstraint(FC5, A.makeOr(C1, A.makeNot(C1))); Context.addFlowConditionConstraint(FC5, A.makeOr(C1, A.makeNot(C1)));
EXPECT_TRUE(Context.flowConditionIsTautology(FC5)); EXPECT_TRUE(Context.flowConditionIsTautology(FC5));
} }
TEST_F(DataflowAnalysisContextTest, EquivBoolVals) { TEST_F(DataflowAnalysisContextTest, EquivBoolVals) {
auto &X = A.create<AtomicBoolValue>(); auto &X = A.makeAtomRef(A.makeAtom());
auto &Y = A.create<AtomicBoolValue>(); auto &Y = A.makeAtomRef(A.makeAtom());
auto &Z = A.create<AtomicBoolValue>(); auto &Z = A.makeAtomRef(A.makeAtom());
auto &True = A.makeLiteral(true); auto &True = A.makeLiteral(true);
auto &False = A.makeLiteral(false); auto &False = A.makeLiteral(false);
// X == X // X == X
EXPECT_TRUE(Context.equivalentBoolValues(X, X)); EXPECT_TRUE(Context.equivalentFormulas(X, X));
// X != Y // X != Y
EXPECT_FALSE(Context.equivalentBoolValues(X, Y)); EXPECT_FALSE(Context.equivalentFormulas(X, Y));
// !X != X // !X != X
EXPECT_FALSE(Context.equivalentBoolValues(A.makeNot(X), X)); EXPECT_FALSE(Context.equivalentFormulas(A.makeNot(X), X));
// !(!X) = X // !(!X) = X
EXPECT_TRUE(Context.equivalentBoolValues(A.makeNot(A.makeNot(X)), X)); EXPECT_TRUE(Context.equivalentFormulas(A.makeNot(A.makeNot(X)), X));
// (X || X) == X // (X || X) == X
EXPECT_TRUE(Context.equivalentBoolValues(A.makeOr(X, X), X)); EXPECT_TRUE(Context.equivalentFormulas(A.makeOr(X, X), X));
// (X || Y) != X // (X || Y) != X
EXPECT_FALSE(Context.equivalentBoolValues(A.makeOr(X, Y), X)); EXPECT_FALSE(Context.equivalentFormulas(A.makeOr(X, Y), X));
// (X || True) == True // (X || True) == True
EXPECT_TRUE(Context.equivalentBoolValues(A.makeOr(X, True), True)); EXPECT_TRUE(Context.equivalentFormulas(A.makeOr(X, True), True));
// (X || False) == X // (X || False) == X
EXPECT_TRUE(Context.equivalentBoolValues(A.makeOr(X, False), X)); EXPECT_TRUE(Context.equivalentFormulas(A.makeOr(X, False), X));
// (X && X) == X // (X && X) == X
EXPECT_TRUE(Context.equivalentBoolValues(A.makeAnd(X, X), X)); EXPECT_TRUE(Context.equivalentFormulas(A.makeAnd(X, X), X));
// (X && Y) != X // (X && Y) != X
EXPECT_FALSE(Context.equivalentBoolValues(A.makeAnd(X, Y), X)); EXPECT_FALSE(Context.equivalentFormulas(A.makeAnd(X, Y), X));
// (X && True) == X // (X && True) == X
EXPECT_TRUE(Context.equivalentBoolValues(A.makeAnd(X, True), X)); EXPECT_TRUE(Context.equivalentFormulas(A.makeAnd(X, True), X));
// (X && False) == False // (X && False) == False
EXPECT_TRUE(Context.equivalentBoolValues(A.makeAnd(X, False), False)); EXPECT_TRUE(Context.equivalentFormulas(A.makeAnd(X, False), False));
// (X || Y) == (Y || X) // (X || Y) == (Y || X)
EXPECT_TRUE(Context.equivalentBoolValues(A.makeOr(X, Y), A.makeOr(Y, X))); EXPECT_TRUE(Context.equivalentFormulas(A.makeOr(X, Y), A.makeOr(Y, X)));
// (X && Y) == (Y && X) // (X && Y) == (Y && X)
EXPECT_TRUE(Context.equivalentBoolValues(A.makeAnd(X, Y), A.makeAnd(Y, X))); EXPECT_TRUE(Context.equivalentFormulas(A.makeAnd(X, Y), A.makeAnd(Y, X)));
// ((X || Y) || Z) == (X || (Y || Z)) // ((X || Y) || Z) == (X || (Y || Z))
EXPECT_TRUE(Context.equivalentBoolValues(A.makeOr(A.makeOr(X, Y), Z), EXPECT_TRUE(Context.equivalentFormulas(A.makeOr(A.makeOr(X, Y), Z),
A.makeOr(X, A.makeOr(Y, Z)))); A.makeOr(X, A.makeOr(Y, Z))));
// ((X && Y) && Z) == (X && (Y && Z)) // ((X && Y) && Z) == (X && (Y && Z))
EXPECT_TRUE(Context.equivalentBoolValues(A.makeAnd(A.makeAnd(X, Y), Z), EXPECT_TRUE(Context.equivalentFormulas(A.makeAnd(A.makeAnd(X, Y), Z),
A.makeAnd(X, A.makeAnd(Y, Z)))); A.makeAnd(X, A.makeAnd(Y, Z))));
} }
} // namespace } // namespace

clang/unittests/Analysis/FlowSensitive/TransferTest.cpp

Show First 20 LinesShow All 2,902 Lines▼ Show 20 Lines runDataflow(
const auto *QuxVal = const auto *QuxVal =
dyn_cast_or_null<BoolValue>(Env.getValue(*QuxDecl)); dyn_cast_or_null<BoolValue>(Env.getValue(*QuxDecl));
ASSERT_THAT(QuxVal, NotNull()); ASSERT_THAT(QuxVal, NotNull());
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz"); const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull()); ASSERT_THAT(BazDecl, NotNull());
const auto *BazVal = const auto *BazVal =
dyn_cast_or_null<ConjunctionValue>(Env.getValue(*BazDecl)); dyn_cast_or_null<BoolValue>(Env.getValue(*BazDecl));
ASSERT_THAT(BazVal, NotNull()); ASSERT_THAT(BazVal, NotNull());
EXPECT_EQ(&BazVal->getLeftSubValue(), FooVal); auto &A = Env.arena();
EXPECT_EQ(&BazVal->formula(),
const auto *BazRightSubValVal = &A.makeAnd(FooVal->formula(),
cast<DisjunctionValue>(&BazVal->getRightSubValue()); A.makeOr(BarVal->formula(), QuxVal->formula())));
EXPECT_EQ(&BazRightSubValVal->getLeftSubValue(), BarVal);
EXPECT_EQ(&BazRightSubValVal->getRightSubValue(), QuxVal);
}); });
} }
{ {
std::string Code = R"( std::string Code = R"(
void target(bool Foo, bool Bar, bool Qux) { void target(bool Foo, bool Bar, bool Qux) {
bool Baz = (Foo && Qux) || (Bar); bool Baz = (Foo && Qux) || (Bar);
// [[p]] // [[p]]
Show All 26 Lines runDataflow(
const auto *QuxVal = const auto *QuxVal =
dyn_cast_or_null<BoolValue>(Env.getValue(*QuxDecl)); dyn_cast_or_null<BoolValue>(Env.getValue(*QuxDecl));
ASSERT_THAT(QuxVal, NotNull()); ASSERT_THAT(QuxVal, NotNull());
const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz"); const ValueDecl *BazDecl = findValueDecl(ASTCtx, "Baz");
ASSERT_THAT(BazDecl, NotNull()); ASSERT_THAT(BazDecl, NotNull());
const auto *BazVal = const auto *BazVal =
dyn_cast_or_null<DisjunctionValue>(Env.getValue(*BazDecl)); dyn_cast_or_null<BoolValue>(Env.getValue(*BazDecl));
ASSERT_THAT(BazVal, NotNull()); ASSERT_THAT(BazVal, NotNull());
auto &A = Env.arena();
const auto *BazLeftSubValVal = EXPECT_EQ(&BazVal->formula(),
cast<ConjunctionValue>(&BazVal->getLeftSubValue()); &A.makeOr(A.makeAnd(FooVal->formula(), QuxVal->formula()),
EXPECT_EQ(&BazLeftSubValVal->getLeftSubValue(), FooVal); BarVal->formula()));
EXPECT_EQ(&BazLeftSubValVal->getRightSubValue(), QuxVal);
EXPECT_EQ(&BazVal->getRightSubValue(), BarVal);
}); });
} }
{ {
std::string Code = R"( std::string Code = R"(
void target(bool A, bool B, bool C, bool D) { void target(bool A, bool B, bool C, bool D) {
bool Foo = ((A && B) && C) && D; bool Foo = ((A && B) && C) && D;
// [[p]] // [[p]]
Show All 29 Lines runDataflow(
const auto *DVal = dyn_cast_or_null<BoolValue>(Env.getValue(*DDecl)); const auto *DVal = dyn_cast_or_null<BoolValue>(Env.getValue(*DDecl));
ASSERT_THAT(DVal, NotNull()); ASSERT_THAT(DVal, NotNull());
const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo"); const ValueDecl *FooDecl = findValueDecl(ASTCtx, "Foo");
ASSERT_THAT(FooDecl, NotNull()); ASSERT_THAT(FooDecl, NotNull());
const auto *FooVal = const auto *FooVal =
dyn_cast_or_null<ConjunctionValue>(Env.getValue(*FooDecl)); dyn_cast_or_null<BoolValue>(Env.getValue(*FooDecl));
ASSERT_THAT(FooVal, NotNull()); ASSERT_THAT(FooVal, NotNull());
auto &A = Env.arena();
const auto &FooLeftSubVal = EXPECT_EQ(
cast<ConjunctionValue>(FooVal->getLeftSubValue()); &FooVal->formula(),
const auto &FooLeftLeftSubVal = &A.makeAnd(A.makeAnd(A.makeAnd(AVal->formula(), BVal->formula()),
cast<ConjunctionValue>(FooLeftSubVal.getLeftSubValue()); CVal->formula()),
EXPECT_EQ(&FooLeftLeftSubVal.getLeftSubValue(), AVal); DVal->formula()));
EXPECT_EQ(&FooLeftLeftSubVal.getRightSubValue(), BVal);
EXPECT_EQ(&FooLeftSubVal.getRightSubValue(), CVal);
EXPECT_EQ(&FooVal->getRightSubValue(), DVal);
}); });
} }
} }
TEST(TransferTest, AssignFromBoolNegation) { TEST(TransferTest, AssignFromBoolNegation) {
std::string Code = R"( std::string Code = R"(
void target() { void target() {
bool Foo = true; bool Foo = true;
Show All 14 Lines runDataflow(
const auto *FooVal = const auto *FooVal =
dyn_cast_or_null<AtomicBoolValue>(Env.getValue(*FooDecl)); dyn_cast_or_null<AtomicBoolValue>(Env.getValue(*FooDecl));
ASSERT_THAT(FooVal, NotNull()); ASSERT_THAT(FooVal, NotNull());
const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar"); const ValueDecl *BarDecl = findValueDecl(ASTCtx, "Bar");
ASSERT_THAT(BarDecl, NotNull()); ASSERT_THAT(BarDecl, NotNull());
const auto *BarVal = const auto *BarVal =
dyn_cast_or_null<NegationValue>(Env.getValue(*BarDecl)); dyn_cast_or_null<BoolValue>(Env.getValue(*BarDecl));
ASSERT_THAT(BarVal, NotNull()); ASSERT_THAT(BarVal, NotNull());
auto &A = Env.arena();
EXPECT_EQ(&BarVal->getSubVal(), FooVal); EXPECT_EQ(&BarVal->formula(), &A.makeNot(FooVal->formula()));
}); });
} }
TEST(TransferTest, BuiltinExpect) { TEST(TransferTest, BuiltinExpect) {
std::string Code = R"( std::string Code = R"(
void target(long Foo) { void target(long Foo) {
long Bar = __builtin_expect(Foo, true); long Bar = __builtin_expect(Foo, true);
/*[[p]]*/ /*[[p]]*/
▲ Show 20 LinesShow All 2,339 LinesShow Last 20 Lines

clang/unittests/Analysis/FlowSensitive/ValueTest.cpp

//===- unittests/Analysis/FlowSensitive/ValueTest.cpp ---===// //===- unittests/Analysis/FlowSensitive/ValueTest.cpp ---===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "clang/Analysis/FlowSensitive/Value.h" #include "clang/Analysis/FlowSensitive/Value.h"
#include "clang/Analysis/FlowSensitive/Arena.h"
#include "clang/Analysis/FlowSensitive/StorageLocation.h" #include "clang/Analysis/FlowSensitive/StorageLocation.h"
#include "gmock/gmock.h" #include "gmock/gmock.h"
#include "gtest/gtest.h" #include "gtest/gtest.h"
#include <memory> #include <memory>
namespace { namespace {
using namespace clang; using namespace clang;
Show All 16 LinesTEST(ValueTest, AliasedPointersEquivalent) {
auto L = ScalarStorageLocation(QualType()); auto L = ScalarStorageLocation(QualType());
PointerValue V1(L); PointerValue V1(L);
PointerValue V2(L); PointerValue V2(L);
EXPECT_TRUE(areEquivalentValues(V1, V2)); EXPECT_TRUE(areEquivalentValues(V1, V2));
EXPECT_TRUE(areEquivalentValues(V2, V1)); EXPECT_TRUE(areEquivalentValues(V2, V1));
} }
TEST(ValueTest, TopsEquivalent) { TEST(ValueTest, TopsEquivalent) {
TopBoolValue V1; Arena A;
TopBoolValue V2; TopBoolValue V1(A.makeAtomRef(Atom(0)));
TopBoolValue V2(A.makeAtomRef(Atom(1)));
EXPECT_TRUE(areEquivalentValues(V1, V2)); EXPECT_TRUE(areEquivalentValues(V1, V2));
EXPECT_TRUE(areEquivalentValues(V2, V1)); EXPECT_TRUE(areEquivalentValues(V2, V1));
} }
TEST(ValueTest, EquivalentValuesWithDifferentPropsEquivalent) { TEST(ValueTest, EquivalentValuesWithDifferentPropsEquivalent) {
TopBoolValue Prop1; Arena A;
TopBoolValue Prop2; TopBoolValue Prop1(A.makeAtomRef(Atom(0)));
TopBoolValue V1; TopBoolValue Prop2(A.makeAtomRef(Atom(1)));
TopBoolValue V2; TopBoolValue V1(A.makeAtomRef(Atom(2)));
TopBoolValue V2(A.makeAtomRef(Atom(3)));
V1.setProperty("foo", Prop1); V1.setProperty("foo", Prop1);
V2.setProperty("bar", Prop2); V2.setProperty("bar", Prop2);
EXPECT_TRUE(areEquivalentValues(V1, V2)); EXPECT_TRUE(areEquivalentValues(V1, V2));
EXPECT_TRUE(areEquivalentValues(V2, V1)); EXPECT_TRUE(areEquivalentValues(V2, V1));
} }
TEST(ValueTest, DifferentKindsNotEquivalent) { TEST(ValueTest, DifferentKindsNotEquivalent) {
Arena A;
auto L = ScalarStorageLocation(QualType()); auto L = ScalarStorageLocation(QualType());
ReferenceValue V1(L); ReferenceValue V1(L);
TopBoolValue V2; TopBoolValue V2(A.makeAtomRef(Atom(0)));
EXPECT_FALSE(areEquivalentValues(V1, V2)); EXPECT_FALSE(areEquivalentValues(V1, V2));
EXPECT_FALSE(areEquivalentValues(V2, V1)); EXPECT_FALSE(areEquivalentValues(V2, V1));
} }
TEST(ValueTest, NotAliasedReferencesNotEquivalent) { TEST(ValueTest, NotAliasedReferencesNotEquivalent) {
auto L1 = ScalarStorageLocation(QualType()); auto L1 = ScalarStorageLocation(QualType());
ReferenceValue V1(L1); ReferenceValue V1(L1);
auto L2 = ScalarStorageLocation(QualType()); auto L2 = ScalarStorageLocation(QualType());
Show All 15 Lines