Skip to content
GitLab
Explore
Sign in
Primary navigation
Search or go to…
Project
F
frama-c
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Wiki
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Deploy
Releases
Container Registry
Model registry
Monitor
Incidents
Analyze
Value stream analytics
Contributor analytics
Repository analytics
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
pub
frama-c
Commits
e3848a65
Commit
e3848a65
authored
2 years ago
by
Valentin Perrelle
Committed by
David Bühler
2 years ago
Browse files
Options
Downloads
Patches
Plain Diff
[Dive] Effectively evaluate the arguments values at start of their defining function
parent
3b5c79e8
No related branches found
Branches containing commit
No related tags found
Tags containing commit
No related merge requests found
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
src/plugins/dive/build.ml
+14
-25
14 additions, 25 deletions
src/plugins/dive/build.ml
src/plugins/dive/tests/dive/oracle/unfocused_callers.dot
+2
-1
2 additions, 1 deletion
src/plugins/dive/tests/dive/oracle/unfocused_callers.dot
with
16 additions
and
26 deletions
src/plugins/dive/build.ml
+
14
−
25
View file @
e3848a65
...
@@ -87,9 +87,10 @@ module Eval =
...
@@ -87,9 +87,10 @@ module Eval =
struct
struct
open
Eva
.
Results
open
Eva
.
Results
let
rq
kinstr
=
let
at_start_of
=
at_start_of
match
kinstr
with
let
after
=
after
|
Kglobal
->
at_start
let
after_kinstr
=
function
|
Kglobal
->
at_start
(* After global initialization *)
|
Kstmt
stmt
->
after
stmt
|
Kstmt
stmt
->
after
stmt
let
to_kf_list
kinstr
callee
=
let
to_kf_list
kinstr
callee
=
...
@@ -146,28 +147,14 @@ end
...
@@ -146,28 +147,14 @@ end
(* --- Precision evaluation --- *)
(* --- Precision evaluation --- *)
let
kf_contains_kinstr
kf
=
function
|
Kglobal
->
false
|
Kstmt
stmt
->
Kernel_function
.(
equal
(
find_englobing_kf
stmt
)
kf
)
(* For folded bases, lval may be strictly included in the node zone *)
(* For folded bases, lval may be strictly included in the node zone *)
let
update_node_values
node
?
(
lval
=
Node_kind
.
to_lval
node
.
node_kind
)
kinst
r
=
let
update_node_values
node
?
(
lval
=
Node_kind
.
to_lval
node
.
node_kind
)
r
q
=
match
lval
with
match
lval
with
|
None
->
()
(* can't evaluate node *)
|
None
->
()
(* can't evaluate node *)
|
Some
lval
->
|
Some
lval
->
(* Evaluate parameters inside their functions rather than at call sites. *)
let
request
=
match
lval
with
|
(
Var
vi
,_
)
when
vi
.
vformal
->
let
kf
=
Option
.
get
(
Kernel_function
.
find_defining_kf
vi
)
in
if
kf_contains_kinstr
kf
kinstr
then
Eval
.
rq
kinstr
else
Eva
.
Results
.
at_start_of
kf
|
_
->
Eval
.
rq
kinstr
in
let
typ
=
Cil
.
typeOfLval
lval
let
typ
=
Cil
.
typeOfLval
lval
and
cvalue
=
Eval
.
to_cvalue
r
equest
lval
and
cvalue
=
Eval
.
to_cvalue
r
q
lval
and
taint
=
Eval
.
is_tainted
r
equest
lval
in
and
taint
=
Eval
.
is_tainted
r
q
lval
in
Graph
.
update_node_values
node
~
typ
~
cvalue
~
taint
Graph
.
update_node_values
node
~
typ
~
cvalue
~
taint
...
@@ -292,7 +279,7 @@ let build_var context callstack varinfo =
...
@@ -292,7 +279,7 @@ let build_var context callstack varinfo =
let
build_lval
context
callstack
kinstr
lval
=
let
build_lval
context
callstack
kinstr
lval
=
let
node
=
build_node
context
callstack
lval
kinstr
in
let
node
=
build_node
context
callstack
lval
kinstr
in
update_node_values
~
lval
:
(
Some
lval
)
node
kinstr
;
update_node_values
~
lval
:
(
Some
lval
)
node
(
Eval
.
after_kinstr
kinstr
)
;
node
node
let
build_const
context
callstack
exp
=
let
build_const
context
callstack
exp
=
...
@@ -316,16 +303,16 @@ let build_node_writes context node =
...
@@ -316,16 +303,16 @@ let build_node_writes context node =
let
add_deps
=
function
let
add_deps
=
function
|
{
skind
=
Instr
instr
}
as
stmt
->
|
{
skind
=
Instr
instr
}
as
stmt
->
(* Update the values at the light of new discovered write *)
(* Update the values at the light of new discovered write *)
update_node_values
node
(
Kstmt
stmt
);
update_node_values
node
(
Eval
.
after
stmt
);
(* Add dependencies for each callstack *)
(* Add dependencies for each callstack *)
List
.
to_seq
(
find_compatible_callstacks
stmt
callstack
)
|>
List
.
to_seq
(
find_compatible_callstacks
stmt
callstack
)
|>
Seq
.
flat_map
(
fun
cs
->
build_instr_deps
cs
stmt
instr
)
Seq
.
flat_map
(
fun
cs
->
build_instr_deps
cs
stmt
instr
)
|
_
->
assert
false
(* Studia invariant *)
|
_
->
assert
false
(* Studia invariant *)
in
in
let
writes
=
Eval
.
writes
kinstr
lval
in
let
writes
=
Eval
.
writes
kinstr
lval
in
let
args_seq
,
call
ee
_stmts
=
build_arg_deps
callstack
in
let
args_seq
,
call_stmts
=
build_arg_deps
callstack
in
let
compare
=
Cil_datatype
.
Stmt_Id
.
compare
in
let
compare
=
Cil_datatype
.
Stmt_Id
.
compare
in
node
.
node_writes_stmts
<-
List
.
sort_uniq
compare
(
writes
@
call
ee
_stmts
);
node
.
node_writes_stmts
<-
List
.
sort_uniq
compare
(
writes
@
call_stmts
);
Seq
.
append
args_seq
(
Seq
.
flat_map
add_deps
(
List
.
to_seq
writes
))
Seq
.
append
args_seq
(
Seq
.
flat_map
add_deps
(
List
.
to_seq
writes
))
and
build_alarm_deps
callstack
stmt
alarm
:
deps_builder
=
and
build_alarm_deps
callstack
stmt
alarm
:
deps_builder
=
...
@@ -377,6 +364,8 @@ let build_node_writes context node =
...
@@ -377,6 +364,8 @@ let build_node_writes context node =
|
_
->
|
_
->
assert
false
(* Callsites can only be Call or ConsInit *)
assert
false
(* Callsites can only be Call or ConsInit *)
in
in
(* Evaluate the parameter values at the start of its defining function *)
update_node_values
node
(
Eval
.
at_start_of
kf
);
Seq
.
flat_map
add_deps
(
List
.
to_seq
callsites
)
,
List
.
map
fst
callsites
Seq
.
flat_map
add_deps
(
List
.
to_seq
callsites
)
,
List
.
map
fst
callsites
|
_
->
Seq
.
empty
,
[]
|
_
->
Seq
.
empty
,
[]
...
@@ -433,7 +422,7 @@ let build_node_writes context node =
...
@@ -433,7 +422,7 @@ let build_node_writes context node =
and
build_scattered_deps
callstack
kinstr
lval
:
deps_builder
=
and
build_scattered_deps
callstack
kinstr
lval
:
deps_builder
=
let
add_cell
node_kind
=
let
add_cell
node_kind
=
let
node'
=
add_or_update_node
context
callstack
node_kind
in
let
node'
=
add_or_update_node
context
callstack
node_kind
in
update_node_values
node
kinstr
;
update_node_values
node
(
Eval
.
after_kinstr
kinstr
)
;
Graph
.
create_dependency
graph
kinstr
node'
Composition
node
Graph
.
create_dependency
graph
kinstr
node'
Composition
node
in
in
enumerate_cells
~
is_folded_base
lval
kinstr
|>
Seq
.
map
add_cell
enumerate_cells
~
is_folded_base
lval
kinstr
|>
Seq
.
map
add_cell
...
...
This diff is collapsed.
Click to expand it.
src/plugins/dive/tests/dive/oracle/unfocused_callers.dot
+
2
−
1
View file @
e3848a65
digraph
G
{
digraph
G
{
cp2
[
label
=<
x
>,
shape
=
box
,
style
=
"bold"
,
]
;
cp2
[
label
=<
x
>,
shape
=
box
,
fillcolor
=
"#FFBBBB"
,
color
=
"#FF0000"
,
style
=
"filled,bold"
,
]
;
cp3
[
label
=<
x
>,
shape
=
box
,
fillcolor
=
"#FFBBBB"
,
color
=
"#FF0000"
,
cp3
[
label
=<
x
>,
shape
=
box
,
fillcolor
=
"#FFBBBB"
,
color
=
"#FF0000"
,
style
=
"filled"
,
]
;
style
=
"filled"
,
]
;
cp5
[
label
=<
x
>,
shape
=
box
,
fillcolor
=
"#FFBBBB"
,
color
=
"#FF0000"
,
cp5
[
label
=<
x
>,
shape
=
box
,
fillcolor
=
"#FFBBBB"
,
color
=
"#FF0000"
,
...
...
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment
