search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
db: move function_ptr to raw SQL
[smatch.git] / smatch_flow.c
blob26cb5d8bb304b468070d8e7e31a46e86b22cf42b
1 /*
2 * sparse/smatch_flow.c
3 *
4 * Copyright (C) 2006,2008 Dan Carpenter.
5 *
6 * Licensed under the Open Software License version 1.1
7 *
8 */
9
10 #define _GNU_SOURCE 1
11 #include <unistd.h>
12 #include <stdio.h>
13 #include "token.h"
14 #include "smatch.h"
15 #include "smatch_expression_stacks.h"
16 #include "smatch_extra.h"
17 #include "smatch_slist.h"
18
19 int final_pass;
20
21 static int __smatch_lineno = 0;
22
23 static char *base_file;
24 static const char *filename;
25 static char *pathname;
26 static char *full_filename;
27 static char *cur_func;
28 static int line_func_start;
29 static int loop_count;
30 int __expr_stmt_count;
31 static struct expression_list *switch_expr_stack = NULL;
32
33 struct expression_list *big_expression_stack;
34 struct statement_list *big_statement_stack;
35 int __in_pre_condition = 0;
36 int __bail_on_rest_of_function = 0;
37 char *get_function(void) { return cur_func; }
38 int get_lineno(void) { return __smatch_lineno; }
39 int inside_loop(void) { return !!loop_count; }
40 struct expression *get_switch_expr(void) { return top_expression(switch_expr_stack); }
41 int in_expression_statement(void) { return !!__expr_stmt_count; }
42
43 static void split_symlist(struct symbol_list *sym_list);
44 static void split_declaration(struct symbol_list *sym_list);
45 static void split_expr_list(struct expression_list *expr_list);
46 static void add_inline_function(struct symbol *sym);
47
48 int option_assume_loops = 0;
49 int option_known_conditions = 0;
50 int option_two_passes = 0;
51 struct symbol *cur_func_sym = NULL;
52
53 const char *get_filename(void)
54 {
55 if (option_info)
56 return base_file;
57 if (option_full_path)
58 return full_filename;
59 return filename;
60 }
61
62 static void set_position(struct position pos)
63 {
64 int len;
65 static int prev_stream = -1;
66
67 __smatch_lineno = pos.line;
68
69 if (pos.stream == prev_stream)
70 return;
71
72 filename = stream_name(pos.stream);
73
74 free(full_filename);
75 pathname = getcwd(NULL, 0);
76 if (pathname) {
77 len = strlen(pathname) + 1 + strlen(filename) + 1;
78 full_filename = malloc(len);
79 snprintf(full_filename, len, "%s/%s", pathname, filename);
80 } else {
81 full_filename = alloc_string(filename);
82 }
83 free(pathname);
84 }
85
86 static int is_inline_func(struct expression *expr)
87 {
88 if (expr->type != EXPR_SYMBOL || !expr->symbol)
89 return 0;
90 if (expr->symbol->ctype.modifiers & MOD_INLINE)
91 return 1;
92 return 0;
93 }
94
95 static int is_noreturn_func(struct expression *expr)
96 {
97 if (expr->type != EXPR_SYMBOL || !expr->symbol)
98 return 0;
99 if (expr->symbol->ctype.modifiers & MOD_NORETURN)
100 return 1;
101 return 0;
102 }
103
104 void __split_expr(struct expression *expr)
105 {
106 if (!expr)
107 return;
108
109 // sm_msg(" Debug expr_type %d %s", expr->type, show_special(expr->op));
110
111 push_expression(&big_expression_stack, expr);
112 set_position(expr->pos);
113 __pass_to_client(expr, EXPR_HOOK);
114
115 switch (expr->type) {
116 case EXPR_PREOP:
117 if (expr->op == '*')
118 __pass_to_client(expr, DEREF_HOOK);
119 case EXPR_POSTOP:
120 __pass_to_client(expr, OP_HOOK);
121 __split_expr(expr->unop);
122 break;
123 case EXPR_STATEMENT:
124 __expr_stmt_count++;
125 __split_stmt(expr->statement);
126 __expr_stmt_count--;
127 break;
128 case EXPR_LOGICAL:
129 case EXPR_COMPARE:
130 __pass_to_client(expr, LOGIC_HOOK);
131 __handle_logic(expr);
132 break;
133 case EXPR_BINOP:
134 __pass_to_client(expr, BINOP_HOOK);
135 case EXPR_COMMA:
136 __split_expr(expr->left);
137 __split_expr(expr->right);
138 break;
139 case EXPR_ASSIGNMENT: {
140 struct expression *tmp;
141
142 if (!expr->right)
143 break;
144
145 __pass_to_client(expr, RAW_ASSIGNMENT_HOOK);
146
147 /* foo = !bar() */
148 if (__handle_condition_assigns(expr))
149 break;
150 /* foo = (x < 5 ? foo : 5); */
151 if (__handle_select_assigns(expr))
152 break;
153 /* foo = ({frob(); frob(); frob(); 1;}) */
154 if (__handle_expr_statement_assigns(expr))
155 break;
156
157 __split_expr(expr->right);
158 __pass_to_client(expr, ASSIGNMENT_HOOK);
159 tmp = strip_expr(expr->right);
160 if (tmp->type == EXPR_CALL)
161 __pass_to_client(expr, CALL_ASSIGNMENT_HOOK);
162 if (get_macro_name(tmp->pos) &&
163 get_macro_name(expr->pos) != get_macro_name(tmp->pos))
164 __pass_to_client(expr, MACRO_ASSIGNMENT_HOOK);
165 __split_expr(expr->left);
166 break;
167 }
168 case EXPR_DEREF:
169 __pass_to_client(expr, DEREF_HOOK);
170 __split_expr(expr->deref);
171 break;
172 case EXPR_SLICE:
173 __split_expr(expr->base);
174 break;
175 case EXPR_CAST:
176 case EXPR_FORCE_CAST:
177 __pass_to_client(expr, CAST_HOOK);
178 __split_expr(expr->cast_expression);
179 break;
180 case EXPR_SIZEOF:
181 if (expr->cast_expression)
182 __pass_to_client(strip_parens(expr->cast_expression),
183 SIZEOF_HOOK);
184 break;
185 case EXPR_OFFSETOF:
186 case EXPR_ALIGNOF:
187 evaluate_expression(expr);
188 break;
189 case EXPR_CONDITIONAL:
190 case EXPR_SELECT:
191 if (known_condition_true(expr->conditional)) {
192 __split_expr(expr->cond_true);
193 break;
194 }
195 if (known_condition_false(expr->conditional)) {
196 __split_expr(expr->cond_false);
197 break;
198 }
199 __pass_to_client(expr, SELECT_HOOK);
200 __split_whole_condition(expr->conditional);
201 __split_expr(expr->cond_true);
202 __push_true_states();
203 __use_false_states();
204 __split_expr(expr->cond_false);
205 __merge_true_states();
206 break;
207 case EXPR_CALL:
208 if (sym_name_is("__builtin_constant_p", expr->fn))
209 break;
210 split_expr_list(expr->args);
211 __split_expr(expr->fn);
212 if (is_inline_func(expr->fn))
213 add_inline_function(expr->fn->symbol);
214 __pass_to_client(expr, FUNCTION_CALL_HOOK);
215 if (is_noreturn_func(expr->fn))
216 nullify_path();
217 break;
218 case EXPR_INITIALIZER:
219 split_expr_list(expr->expr_list);
220 break;
221 case EXPR_IDENTIFIER:
222 __split_expr(expr->ident_expression);
223 break;
224 case EXPR_INDEX:
225 __split_expr(expr->idx_expression);
226 break;
227 case EXPR_POS:
228 __split_expr(expr->init_expr);
229 break;
230 case EXPR_SYMBOL:
231 __pass_to_client(expr, SYM_HOOK);
232 break;
233 case EXPR_STRING:
234 __pass_to_client(expr, STRING_HOOK);
235 break;
236 default:
237 break;
238 };
239 pop_expression(&big_expression_stack);
240 }
241
242 static int is_forever_loop(struct statement *stmt)
243 {
244 struct expression *expr;
245
246 expr = strip_expr(stmt->iterator_pre_condition);
247 if (!expr)
248 expr = stmt->iterator_post_condition;
249 if (!expr) {
250 /* this is a for(;;) loop... */
251 return 1;
252 }
253
254 if (expr->type == EXPR_VALUE && expr->value == 1)
255 return 1;
256
257 return 0;
258 }
259
260 static int loop_num;
261 static char *get_loop_name(int num)
262 {
263 char buf[256];
264
265 snprintf(buf, 255, "-loop%d", num);
266 buf[255] = '\0';
267 return alloc_sname(buf);
268 }
269
270 /*
271 * Pre Loops are while and for loops.
272 */
273 static void handle_pre_loop(struct statement *stmt)
274 {
275 int once_through; /* we go through the loop at least once */
276 struct sm_state *extra_sm = NULL;
277 int unchanged = 0;
278 char *loop_name;
279 struct state_list *slist = NULL;
280 struct sm_state *sm = NULL;
281
282 loop_name = get_loop_name(loop_num);
283 loop_num++;
284
285 __split_stmt(stmt->iterator_pre_statement);
286
287 once_through = implied_condition_true(stmt->iterator_pre_condition);
288
289 loop_count++;
290 __push_continues();
291 __push_breaks();
292
293 __merge_gotos(loop_name);
294
295 extra_sm = __extra_handle_canonical_loops(stmt, &slist);
296 __in_pre_condition++;
297 __pass_to_client(stmt, PRELOOP_HOOK);
298 __split_whole_condition(stmt->iterator_pre_condition);
299 __in_pre_condition--;
300 FOR_EACH_PTR(slist, sm) {
301 set_state(sm->owner, sm->name, sm->sym, sm->state);
302 } END_FOR_EACH_PTR(sm);
303 free_slist(&slist);
304 if (extra_sm)
305 extra_sm = get_sm_state(extra_sm->owner, extra_sm->name, extra_sm->sym);
306
307 if (option_assume_loops)
308 once_through = 1;
309
310 __split_stmt(stmt->iterator_statement);
311 __warn_on_silly_pre_loops();
312 if (is_forever_loop(stmt)) {
313 struct state_list *slist;
314
315 __save_gotos(loop_name);
316
317 __push_fake_cur_slist();
318 __split_stmt(stmt->iterator_post_statement);
319 slist = __pop_fake_cur_slist();
320
321 __discard_continues();
322 __discard_false_states();
323 __use_breaks();
324
325 if (!__path_is_null())
326 __merge_slist_into_cur(slist);
327 free_slist(&slist);
328 } else {
329 __merge_continues();
330 unchanged = __iterator_unchanged(extra_sm);
331 __split_stmt(stmt->iterator_post_statement);
332 __save_gotos(loop_name);
333 __split_whole_condition(stmt->iterator_pre_condition);
334 nullify_path();
335 __merge_false_states();
336 if (once_through)
337 __discard_false_states();
338 else
339 __merge_false_states();
340
341 if (extra_sm && unchanged)
342 __extra_pre_loop_hook_after(extra_sm,
343 stmt->iterator_post_statement,
344 stmt->iterator_pre_condition);
345 __merge_breaks();
346 }
347 loop_count--;
348 }
349
350 /*
351 * Post loops are do {} while();
352 */
353 static void handle_post_loop(struct statement *stmt)
354 {
355 char *loop_name;
356
357 loop_name = get_loop_name(loop_num);
358 loop_num++;
359 loop_count++;
360
361 __push_continues();
362 __push_breaks();
363 __merge_gotos(loop_name);
364 __split_stmt(stmt->iterator_statement);
365 __merge_continues();
366 if (!is_zero(stmt->iterator_post_condition))
367 __save_gotos(loop_name);
368
369 if (is_forever_loop(stmt)) {
370 __use_breaks();
371 } else {
372 __split_whole_condition(stmt->iterator_post_condition);
373 __use_false_states();
374 __merge_breaks();
375 }
376 loop_count--;
377 }
378
379 static int empty_statement(struct statement *stmt)
380 {
381 if (!stmt)
382 return 0;
383 if (stmt->type == STMT_EXPRESSION && !stmt->expression)
384 return 1;
385 return 0;
386 }
387
388 static int last_stmt_on_same_line()
389 {
390 struct statement *stmt;
391 int i = 0;
392
393 FOR_EACH_PTR_REVERSE(big_statement_stack, stmt) {
394 if (!i++)
395 continue;
396 if (stmt->pos.line == get_lineno())
397 return 1;
398 return 0;
399 } END_FOR_EACH_PTR_REVERSE(stmt);
400 return 0;
401 }
402
403 static struct statement *last_stmt;
404 static int is_last_stmt(struct statement *stmt)
405 {
406 if (stmt == last_stmt)
407 return 1;
408 return 0;
409 }
410
411 static void print_unreached_initializers(struct symbol_list *sym_list)
412 {
413 struct symbol *sym;
414
415 FOR_EACH_PTR(sym_list, sym) {
416 if (sym->initializer)
417 sm_msg("info: '%s' is not actually initialized (unreached code).",
418 (sym->ident ? sym->ident->name : "this variable"));
419 } END_FOR_EACH_PTR(sym);
420 }
421
422 static void print_unreached(struct statement *stmt)
423 {
424 static int print = 1;
425
426 if (!__path_is_null()) {
427 print = 1;
428 return;
429 }
430 if (!print)
431 return;
432
433 switch (stmt->type) {
434 case STMT_COMPOUND: /* after a switch before a case stmt */
435 case STMT_RANGE:
436 case STMT_CASE:
437 case STMT_LABEL:
438 return;
439 case STMT_DECLARATION: /* switch (x) { int a; case foo: ... */
440 print_unreached_initializers(stmt->declaration);
441 return;
442 case STMT_RETURN: /* gcc complains if you don't have a return statement */
443 if (is_last_stmt(stmt))
444 return;
445 break;
446 case STMT_GOTO:
447 if (!option_spammy)
448 return;
449 break;
450 default:
451 break;
452 }
453 if (!option_spammy && empty_statement(stmt))
454 return;
455 sm_msg("info: ignoring unreachable code.");
456 print = 0;
457 }
458
459 static void split_asm_constraints(struct expression_list *expr_list)
460 {
461 struct expression *expr;
462 int state = 0;
463
464 FOR_EACH_PTR(expr_list, expr) {
465 switch (state) {
466 case 0: /* identifier */
467 case 1: /* constraint */
468 state++;
469 continue;
470 case 2: /* expression */
471 state = 0;
472 __split_expr(expr);
473 continue;
474 }
475 } END_FOR_EACH_PTR(expr);
476 }
477
478 static int is_case_val(struct statement *stmt, sval_t sval)
479 {
480 sval_t case_sval;
481
482 if (stmt->type != STMT_CASE)
483 return 0;
484 if (!stmt->case_expression) {
485 __set_default();
486 return 1;
487 }
488 if (!get_value(stmt->case_expression, &case_sval))
489 return 0;
490 if (case_sval.value == sval.value)
491 return 1;
492 return 0;
493 }
494
495 static void split_known_switch(struct statement *stmt, sval_t sval)
496 {
497 struct statement *tmp;
498
499 __split_expr(stmt->switch_expression);
500
501 push_expression(&switch_expr_stack, stmt->switch_expression);
502 __save_switch_states(top_expression(switch_expr_stack));
503 nullify_path();
504 __push_default();
505 __push_breaks();
506
507 stmt = stmt->switch_statement;
508
509 if (!last_stmt)
510 last_stmt = last_ptr_list((struct ptr_list *)stmt->stmts);
511
512 __push_scope_hooks();
513 FOR_EACH_PTR(stmt->stmts, tmp) {
514 __smatch_lineno = tmp->pos.line;
515 if (is_case_val(tmp, sval)) {
516 __merge_switches(top_expression(switch_expr_stack),
517 stmt->case_expression);
518 __pass_case_to_client(top_expression(switch_expr_stack),
519 stmt->case_expression);
520 }
521 if (__path_is_null())
522 continue;
523 __split_stmt(tmp);
524 if (__path_is_null()) {
525 __set_default();
526 goto out;
527 }
528 } END_FOR_EACH_PTR(tmp);
529 out:
530 __call_scope_hooks();
531 if (!__pop_default())
532 __merge_switches(top_expression(switch_expr_stack),
533 NULL);
534 __discard_switches();
535 __merge_breaks();
536 pop_expression(&switch_expr_stack);
537 }
538
539 void __split_stmt(struct statement *stmt)
540 {
541 sval_t sval;
542
543 if (!stmt)
544 return;
545
546 if (out_of_memory() || __bail_on_rest_of_function) {
547 static char *printed = NULL;
548
549 if (printed != cur_func)
550 sm_msg("Function too hairy. Giving up.");
551 final_pass = 0; /* turn off sm_msg() from here */
552 printed = cur_func;
553 return;
554 }
555
556 add_ptr_list(&big_statement_stack, stmt);
557 free_expression_stack(&big_expression_stack);
558 set_position(stmt->pos);
559 print_unreached(stmt);
560 __pass_to_client(stmt, STMT_HOOK);
561
562 switch (stmt->type) {
563 case STMT_DECLARATION:
564 split_declaration(stmt->declaration);
565 return;
566 case STMT_RETURN:
567 __split_expr(stmt->ret_value);
568 __pass_to_client(stmt->ret_value, RETURN_HOOK);
569 nullify_path();
570 return;
571 case STMT_EXPRESSION:
572 __split_expr(stmt->expression);
573 return;
574 case STMT_COMPOUND: {
575 struct statement *tmp;
576
577 if (!last_stmt)
578 last_stmt = last_ptr_list((struct ptr_list *)stmt->stmts);
579 __push_scope_hooks();
580 FOR_EACH_PTR(stmt->stmts, tmp) {
581 __split_stmt(tmp);
582 } END_FOR_EACH_PTR(tmp);
583 __call_scope_hooks();
584 return;
585 }
586 case STMT_IF:
587 if (known_condition_true(stmt->if_conditional)) {
588 __split_stmt(stmt->if_true);
589 return;
590 }
591 if (known_condition_false(stmt->if_conditional)) {
592 __split_stmt(stmt->if_false);
593 return;
594 }
595 if (option_known_conditions &&
596 implied_condition_true(stmt->if_conditional)) {
597 sm_info("this condition is true.");
598 __split_stmt(stmt->if_true);
599 return;
600 }
601 if (option_known_conditions &&
602 implied_condition_false(stmt->if_conditional)) {
603 sm_info("this condition is false.");
604 __split_stmt(stmt->if_false);
605 return;
606 }
607 __split_whole_condition(stmt->if_conditional);
608 __split_stmt(stmt->if_true);
609 if (empty_statement(stmt->if_true) &&
610 last_stmt_on_same_line() &&
611 !get_macro_name(stmt->if_true->pos))
612 sm_msg("warn: if();");
613 __push_true_states();
614 __use_false_states();
615 __split_stmt(stmt->if_false);
616 __merge_true_states();
617 return;
618 case STMT_ITERATOR:
619 if (stmt->iterator_pre_condition)
620 handle_pre_loop(stmt);
621 else if (stmt->iterator_post_condition)
622 handle_post_loop(stmt);
623 else {
624 // these are for(;;) type loops.
625 handle_pre_loop(stmt);
626 }
627 return;
628 case STMT_SWITCH:
629 if (get_value(stmt->switch_expression, &sval)) {
630 split_known_switch(stmt, sval);
631 return;
632 }
633 __split_expr(stmt->switch_expression);
634 push_expression(&switch_expr_stack, stmt->switch_expression);
635 __save_switch_states(top_expression(switch_expr_stack));
636 nullify_path();
637 __push_default();
638 __push_breaks();
639 __split_stmt(stmt->switch_statement);
640 if (!__pop_default())
641 __merge_switches(top_expression(switch_expr_stack),
642 NULL);
643 __discard_switches();
644 __merge_breaks();
645 pop_expression(&switch_expr_stack);
646 return;
647 case STMT_CASE:
648 __merge_switches(top_expression(switch_expr_stack),
649 stmt->case_expression);
650 __pass_case_to_client(top_expression(switch_expr_stack),
651 stmt->case_expression);
652 if (!stmt->case_expression)
653 __set_default();
654 __split_expr(stmt->case_expression);
655 __split_expr(stmt->case_to);
656 __split_stmt(stmt->case_statement);
657 return;
658 case STMT_LABEL:
659 if (stmt->label_identifier &&
660 stmt->label_identifier->type == SYM_LABEL &&
661 stmt->label_identifier->ident) {
662 loop_count = 1000000;
663 __merge_gotos(stmt->label_identifier->ident->name);
664 }
665 __split_stmt(stmt->label_statement);
666 return;
667 case STMT_GOTO:
668 __split_expr(stmt->goto_expression);
669 if (stmt->goto_label && stmt->goto_label->type == SYM_NODE) {
670 if (!strcmp(stmt->goto_label->ident->name, "break")) {
671 __process_breaks();
672 } else if (!strcmp(stmt->goto_label->ident->name,
673 "continue")) {
674 __process_continues();
675 }
676 } else if (stmt->goto_label &&
677 stmt->goto_label->type == SYM_LABEL &&
678 stmt->goto_label->ident) {
679 __save_gotos(stmt->goto_label->ident->name);
680 }
681 nullify_path();
682 return;
683 case STMT_NONE:
684 return;
685 case STMT_ASM:
686 __pass_to_client(stmt, ASM_HOOK);
687 __split_expr(stmt->asm_string);
688 split_asm_constraints(stmt->asm_outputs);
689 split_asm_constraints(stmt->asm_inputs);
690 split_asm_constraints(stmt->asm_clobbers);
691 return;
692 case STMT_CONTEXT:
693 return;
694 case STMT_RANGE:
695 __split_expr(stmt->range_expression);
696 __split_expr(stmt->range_low);
697 __split_expr(stmt->range_high);
698 return;
699 }
700 }
701
702 static void split_expr_list(struct expression_list *expr_list)
703 {
704 struct expression *expr;
705
706 FOR_EACH_PTR(expr_list, expr) {
707 __split_expr(expr);
708 } END_FOR_EACH_PTR(expr);
709 }
710
711 static void split_sym(struct symbol *sym)
712 {
713 if (!sym)
714 return;
715 if (!(sym->namespace & NS_SYMBOL))
716 return;
717
718 __split_stmt(sym->stmt);
719 __split_expr(sym->array_size);
720 split_symlist(sym->arguments);
721 split_symlist(sym->symbol_list);
722 __split_stmt(sym->inline_stmt);
723 split_symlist(sym->inline_symbol_list);
724 }
725
726 static void split_symlist(struct symbol_list *sym_list)
727 {
728 struct symbol *sym;
729
730 FOR_EACH_PTR(sym_list, sym) {
731 split_sym(sym);
732 } END_FOR_EACH_PTR(sym);
733 }
734
735 static void fake_member_assigns(struct symbol *sym)
736 {
737 struct expression *symbol, *deref, *assign, *tmp;
738
739 symbol = symbol_expression(sym);
740 FOR_EACH_PTR(sym->initializer->expr_list, tmp) {
741 if (tmp->type != EXPR_IDENTIFIER) /* how to handle arrays?? */
742 continue;
743 deref = member_expression(symbol, '.', tmp->expr_ident);
744 assign = assign_expression(deref, tmp->ident_expression);
745 __split_expr(assign);
746 } END_FOR_EACH_PTR(tmp);
747 }
748
749 static void fake_assign_expr(struct symbol *sym)
750 {
751 struct expression *assign, *symbol;
752
753 symbol = symbol_expression(sym);
754 assign = assign_expression(symbol, sym->initializer);
755 __split_expr(assign);
756 }
757
758 static void do_initializer_stuff(struct symbol *sym)
759 {
760 if (!sym->initializer)
761 return;
762 if (sym->initializer->type == EXPR_INITIALIZER)
763 fake_member_assigns(sym);
764 else
765 fake_assign_expr(sym);
766 }
767
768 static void split_declaration(struct symbol_list *sym_list)
769 {
770 struct symbol *sym;
771
772 FOR_EACH_PTR(sym_list, sym) {
773 __pass_to_client(sym, DECLARATION_HOOK);
774 do_initializer_stuff(sym);
775 split_sym(sym);
776 } END_FOR_EACH_PTR(sym);
777 }
778
779 static void fake_global_assign(struct symbol *sym)
780 {
781 struct expression *assign, *symbol;
782
783 if (!sym->initializer)
784 return;
785 if (sym->initializer->type == EXPR_INITIALIZER) {
786 struct expression *deref, *tmp;
787
788 symbol = symbol_expression(sym);
789 FOR_EACH_PTR(sym->initializer->expr_list, tmp) {
790 if (tmp->type != EXPR_IDENTIFIER) /* how to handle arrays?? */
791 continue;
792 deref = member_expression(symbol, '.', tmp->expr_ident);
793 assign = assign_expression(deref, tmp->ident_expression);
794 __pass_to_client(assign, GLOBAL_ASSIGNMENT_HOOK);
795 } END_FOR_EACH_PTR(tmp);
796 } else {
797 symbol = symbol_expression(sym);
798 assign = assign_expression(symbol, sym->initializer);
799 __pass_to_client(assign, GLOBAL_ASSIGNMENT_HOOK);
800 }
801 }
802
803 static void split_function(struct symbol *sym)
804 {
805 struct symbol *base_type = get_base_type(sym);
806
807 cur_func_sym = sym;
808 if (base_type->stmt)
809 line_func_start = base_type->stmt->pos.line;
810 if (sym->ident)
811 cur_func = sym->ident->name;
812 __smatch_lineno = sym->pos.line;
813 last_stmt = NULL;
814 loop_count = 0;
815 sm_debug("new function: %s\n", cur_func);
816 __slist_id = 0;
817 if (option_two_passes) {
818 __unnullify_path();
819 loop_num = 0;
820 final_pass = 0;
821 __pass_to_client(sym, FUNC_DEF_HOOK);
822 __pass_to_client(sym, AFTER_DEF_HOOK);
823 __split_stmt(base_type->stmt);
824 __split_stmt(base_type->inline_stmt);
825 nullify_path();
826 }
827 __unnullify_path();
828 loop_num = 0;
829 final_pass = 1;
830 __pass_to_client(sym, FUNC_DEF_HOOK);
831 __pass_to_client(sym, AFTER_DEF_HOOK);
832 __split_stmt(base_type->stmt);
833 __split_stmt(base_type->inline_stmt);
834 __pass_to_client(sym, END_FUNC_HOOK);
835 cur_func = NULL;
836 line_func_start = 0;
837 clear_all_states();
838 free_data_info_allocs();
839 free_expression_stack(&switch_expr_stack);
840 __free_ptr_list((struct ptr_list **)&big_statement_stack);
841 __bail_on_rest_of_function = 0;
842 }
843
844 static struct symbol_list *inlines_called;
845 static void add_inline_function(struct symbol *sym)
846 {
847 static struct symbol_list *already_added;
848 struct symbol *tmp;
849
850 FOR_EACH_PTR(already_added, tmp) {
851 if (tmp == sym)
852 return;
853 } END_FOR_EACH_PTR(tmp);
854
855 add_ptr_list(&already_added, sym);
856 add_ptr_list(&inlines_called, sym);
857 }
858
859 static void process_inlines()
860 {
861 struct symbol *tmp;
862
863 FOR_EACH_PTR(inlines_called, tmp) {
864 split_function(tmp);
865 } END_FOR_EACH_PTR(tmp);
866 free_ptr_list(&inlines_called);
867 }
868
869 static void split_functions(struct symbol_list *sym_list)
870 {
871 struct symbol *sym;
872
873 FOR_EACH_PTR(sym_list, sym) {
874 set_position(sym->pos);
875 if (sym->type == SYM_NODE && get_base_type(sym)->type == SYM_FN) {
876 split_function(sym);
877 process_inlines();
878 } else {
879 __pass_to_client(sym, BASE_HOOK);
880 fake_global_assign(sym);
881 }
882 } END_FOR_EACH_PTR(sym);
883 __pass_to_client_no_data(END_FILE_HOOK);
884 }
885
886 void smatch(int argc, char **argv)
887 {
888
889 struct string_list *filelist = NULL;
890 struct symbol_list *sym_list;
891
892 if (argc < 2) {
893 printf("Usage: smatch [--debug] <filename.c>\n");
894 exit(1);
895 }
896 sparse_initialize(argc, argv, &filelist);
897 FOR_EACH_PTR_NOTAG(filelist, base_file) {
898 if (option_file_output) {
899 char buf[256];
900
901 snprintf(buf, sizeof(buf), "%s.smatch", base_file);
902 sm_outfd = fopen(buf, "w");
903 if (!sm_outfd) {
904 printf("Error: Cannot open %s\n", base_file);
905 exit(1);
906 }
907 }
908 sym_list = sparse_keep_tokens(base_file);
909 split_functions(sym_list);
910 } END_FOR_EACH_PTR_NOTAG(base_file);
911 }
Static analysis for C