4 * Copyright (C) 2006,2008 Dan Carpenter.
6 * Licensed under the Open Software License version 1.1
14 int __smatch_lineno
= 0;
16 static char *filename
;
17 static char *cur_func
;
18 static int line_func_start
;
19 static unsigned int path_id
= 0;
20 static unsigned int path_id_next
= 1;
22 char *get_filename() { return filename
; }
23 char *get_function() { return cur_func
; }
24 int get_lineno() { return __smatch_lineno
; }
25 int get_func_pos() { return __smatch_lineno
- line_func_start
; }
27 static void split_statements(struct statement
*stmt
);
28 static void split_symlist(struct symbol_list
*sym_list
);
29 static void split_expr_list(struct expression_list
*expr_list
);
31 unsigned int get_path_id()
36 unsigned int __split_path_id()
40 path_id
= path_id_next
++;
44 void __restore_path_id(int old_id
)
51 void __split_expr(struct expression
*expr
)
56 __smatch_lineno
= expr
->pos
.line
;
57 __pass_to_client(expr
, EXPR_HOOK
);
59 // printf("%d Debug expr_type %d\n", get_lineno(), expr->type);
65 __pass_to_client(expr
, DEREF_HOOK
);
66 __split_expr(expr
->unop
);
69 split_statements(expr
->statement
);
76 if (expr
->type
== EXPR_ASSIGNMENT
)
77 __pass_to_client(expr
, ASSIGNMENT_HOOK
);
78 __split_expr(expr
->left
);
79 __split_expr(expr
->right
);
80 if (expr
->type
== EXPR_ASSIGNMENT
)
81 __pass_to_client(expr
, ASSIGNMENT_AFTER_HOOK
);
84 __pass_to_client(expr
, DEREF_HOOK
);
85 __split_expr(expr
->deref
);
88 __split_expr(expr
->base
);
91 __split_expr(expr
->cast_expression
);
94 /* there isn't anything to pass a client from inside a sizeof() */
96 case EXPR_CONDITIONAL
:
98 __split_true_false_paths();
99 __pass_to_client(expr
->conditional
, WHOLE_CONDITION_HOOK
);
100 __split_whole_condition(expr
->conditional
);
102 __split_expr(expr
->cond_true
);
103 __use_false_states();
104 __split_expr(expr
->cond_false
);
105 __merge_true_states();
108 __pass_to_client(expr
, FUNCTION_CALL_HOOK
);
109 __split_expr(expr
->fn
);
110 split_expr_list(expr
->args
);
111 __pass_to_client(expr
, FUNCTION_CALL_AFTER_HOOK
);
113 if (expr
->fn
->type
== EXPR_SYMBOL
&&
114 !strcmp(expr
->fn
->symbol_name
->name
, "panic"))
118 case EXPR_INITIALIZER
:
119 split_expr_list(expr
->expr_list
);
121 case EXPR_IDENTIFIER
:
122 __split_expr(expr
->ident_expression
);
125 __split_expr(expr
->idx_expression
);
128 __split_expr(expr
->init_expr
);
135 static int is_forever_loop(struct statement
*stmt
)
138 struct expression
*expr
;
140 expr
= stmt
->iterator_pre_condition
;
142 expr
= stmt
->iterator_post_condition
;
144 // this is a for(;;) loop...
148 if (expr
->type
== EXPR_VALUE
&& expr
->value
== 1) {
156 * Pre Loops are while and for loops.
159 static void handle_pre_loop(struct statement
*stmt
)
161 unsigned int path_orig
;
163 split_statements(stmt
->iterator_pre_statement
);
165 __split_true_false_paths();
168 if (stmt
->iterator_pre_condition
) {
169 __pass_to_client(stmt
->iterator_pre_condition
, WHOLE_CONDITION_HOOK
);
170 __split_whole_condition(stmt
->iterator_pre_condition
);
172 path_orig
= __split_path_id();
175 split_statements(stmt
->iterator_statement
);
176 split_statements(stmt
->iterator_post_statement
);
177 if (is_forever_loop(stmt
)) {
179 __pop_false_states();
182 __merge_false_states();
186 __restore_path_id(path_orig
);
190 * Post loops are do {} while();
192 static void handle_post_loop(struct statement
*stmt
)
196 split_statements(stmt
->iterator_statement
);
198 __split_true_false_paths();
199 __pass_to_client(stmt
->iterator_post_condition
, WHOLE_CONDITION_HOOK
);
200 __split_whole_condition(stmt
->iterator_post_condition
);
201 /* It would prossibly be cleaner to make this all one function */
203 __use_false_states();
206 if (is_forever_loop(stmt
)) {
215 static void split_statements(struct statement
*stmt
)
217 unsigned int path_orig
;
222 __smatch_lineno
= stmt
->pos
.line
;
223 __pass_to_client(stmt
, STMT_HOOK
);
225 switch (stmt
->type
) {
226 case STMT_DECLARATION
:
227 __pass_declarations_to_client(stmt
->declaration
);
228 split_symlist(stmt
->declaration
);
231 __pass_to_client(stmt
, RETURN_HOOK
);
232 __split_expr(stmt
->ret_value
);
235 case STMT_EXPRESSION
:
236 __split_expr(stmt
->expression
);
238 case STMT_COMPOUND
: {
240 FOR_EACH_PTR(stmt
->stmts
, s
) {
242 } END_FOR_EACH_PTR(s
);
246 __split_true_false_paths();
247 __pass_to_client(stmt
->if_conditional
, WHOLE_CONDITION_HOOK
);
248 __split_whole_condition(stmt
->if_conditional
);
249 path_orig
= __split_path_id();
251 split_statements(stmt
->if_true
);
253 __use_false_states();
254 split_statements(stmt
->if_false
);
255 __merge_true_states();
256 __restore_path_id(path_orig
);
259 if (stmt
->iterator_pre_condition
)
260 handle_pre_loop(stmt
);
261 else if (stmt
->iterator_post_condition
)
262 handle_post_loop(stmt
);
264 // these are for(;;) type loops.
265 handle_pre_loop(stmt
);
269 __split_expr(stmt
->switch_expression
);
270 __save_switch_states();
274 path_orig
= get_path_id();
275 split_statements(stmt
->switch_statement
);
276 if (!__pop_default())
280 __restore_path_id(path_orig
);
285 if (!stmt
->case_expression
)
287 __split_expr(stmt
->case_expression
);
288 __split_expr(stmt
->case_to
);
289 split_statements(stmt
->case_statement
);
293 stmt
->label
->type
== SYM_LABEL
&&
294 stmt
->label
->ident
) {
295 __merge_gotos(stmt
->label
->ident
->name
);
297 split_statements(stmt
->label_statement
);
300 __split_expr(stmt
->goto_expression
);
301 if (stmt
->goto_label
&& stmt
->goto_label
->type
== SYM_NODE
) {
302 if (!strcmp(stmt
->goto_label
->ident
->name
, "break")) {
304 } else if (!strcmp(stmt
->goto_label
->ident
->name
,
306 __process_continues();
308 } else if (stmt
->goto_label
&&
309 stmt
->goto_label
->type
== SYM_LABEL
&&
310 stmt
->goto_label
->ident
) {
311 __save_gotos(stmt
->goto_label
->ident
->name
);
318 __split_expr(stmt
->asm_string
);
319 //__split_expr(stmt->asm_outputs);
320 //__split_expr(stmt->asm_inputs);
321 //__split_expr(stmt->asm_clobbers);
326 __split_expr(stmt
->range_expression
);
327 __split_expr(stmt
->range_low
);
328 __split_expr(stmt
->range_high
);
333 static void split_expr_list(struct expression_list
*expr_list
)
335 struct expression
*expr
;
336 FOR_EACH_PTR(expr_list
, expr
) {
338 } END_FOR_EACH_PTR(expr
);
342 static void split_sym(struct symbol
*sym
)
346 if (!(sym
->namespace & NS_SYMBOL
))
349 __pass_to_client(sym
, SYM_HOOK
);
350 split_statements(sym
->stmt
);
351 __split_expr(sym
->array_size
);
352 split_symlist(sym
->arguments
);
353 split_symlist(sym
->symbol_list
);
354 split_statements(sym
->inline_stmt
);
355 split_symlist(sym
->inline_symbol_list
);
356 __split_expr(sym
->initializer
);
359 static void split_symlist(struct symbol_list
*sym_list
)
363 FOR_EACH_PTR(sym_list
, sym
) {
365 } END_FOR_EACH_PTR(sym
);
368 static void split_functions(struct symbol_list
*sym_list
)
372 FOR_EACH_PTR(sym_list
, sym
) {
373 struct symbol
*base_type
;
374 base_type
= get_base_type(sym
);
375 if (sym
->type
== SYM_NODE
&& base_type
->type
== SYM_FN
) {
377 line_func_start
= base_type
->stmt
->pos
.line
;
379 cur_func
= sym
->ident
->name
;
380 __smatch_lineno
= sym
->pos
.line
;
381 __pass_to_client(sym
, FUNC_DEF_HOOK
);
382 split_statements(base_type
->stmt
);
383 __pass_to_client(sym
, END_FUNC_HOOK
);
389 __pass_to_client(sym
, BASE_HOOK
);
391 } END_FOR_EACH_PTR(sym
);
394 void smatch (int argc
, char **argv
)
397 struct string_list
*filelist
= NULL
;
398 struct symbol_list
*sym_list
;
401 printf("Usage: smatch <filename.c>\n");
404 sparse_initialize(argc
, argv
, &filelist
);
405 FOR_EACH_PTR_NOTAG(filelist
, filename
) {
406 sym_list
= __sparse(filename
);
407 split_functions(sym_list
);
408 } END_FOR_EACH_PTR_NOTAG(filename
);
