search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
flow, conditions: handle label statements correctly
[smatch.git] / smatch_slist.c
blobb45bd628c569266e22101b47e3735c04eff6458f
1 /*
2 * Copyright (C) 2008,2009 Dan Carpenter.
3 *
4 * This program is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU General Public License
6 * as published by the Free Software Foundation; either version 2
7 * of the License, or (at your option) any later version.
8 *
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
13 *
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, see http://www.gnu.org/copyleft/gpl.txt
16 */
17
18 #include <stdlib.h>
19 #include <stdio.h>
20 #include "smatch.h"
21 #include "smatch_slist.h"
22
23 #undef CHECKORDER
24
25 ALLOCATOR(smatch_state, "smatch state");
26 ALLOCATOR(sm_state, "sm state");
27 ALLOCATOR(named_stree, "named slist");
28 __DO_ALLOCATOR(char, 1, 4, "state names", sname);
29
30 static int sm_state_counter;
31
32 static struct stree_stack *all_pools;
33
34 char *show_sm(struct sm_state *sm)
35 {
36 static char buf[256];
37 struct sm_state *tmp;
38 int pos;
39 int i;
40
41 pos = snprintf(buf, sizeof(buf), "[%s] '%s' = '%s'",
42 check_name(sm->owner), sm->name, show_state(sm->state));
43 if (pos > sizeof(buf))
44 goto truncate;
45
46 if (ptr_list_size((struct ptr_list *)sm->possible) == 1)
47 return buf;
48
49 pos += snprintf(buf + pos, sizeof(buf) - pos, " (");
50 if (pos > sizeof(buf))
51 goto truncate;
52 i = 0;
53 FOR_EACH_PTR(sm->possible, tmp) {
54 if (i++)
55 pos += snprintf(buf + pos, sizeof(buf) - pos, ", ");
56 if (pos > sizeof(buf))
57 goto truncate;
58 pos += snprintf(buf + pos, sizeof(buf) - pos, "%s",
59 show_state(tmp->state));
60 if (pos > sizeof(buf))
61 goto truncate;
62 } END_FOR_EACH_PTR(tmp);
63 snprintf(buf + pos, sizeof(buf) - pos, ")");
64
65 return buf;
66
67 truncate:
68 for (i = 0; i < 3; i++)
69 buf[sizeof(buf) - 2 - i] = '.';
70 return buf;
71 }
72
73 void __print_stree(struct stree *stree)
74 {
75 struct sm_state *sm;
76
77 printf("dumping stree at %d\n", get_lineno());
78 FOR_EACH_SM(stree, sm) {
79 printf("%s\n", show_sm(sm));
80 } END_FOR_EACH_SM(sm);
81 printf("---\n");
82 }
83
84 /* NULL states go at the end to simplify merge_slist */
85 int cmp_tracker(const struct sm_state *a, const struct sm_state *b)
86 {
87 int ret;
88
89 if (a == b)
90 return 0;
91 if (!b)
92 return -1;
93 if (!a)
94 return 1;
95
96 if (a->owner > b->owner)
97 return -1;
98 if (a->owner < b->owner)
99 return 1;
100
101 ret = strcmp(a->name, b->name);
102 if (ret)
103 return ret;
104
105 if (!b->sym && a->sym)
106 return -1;
107 if (!a->sym && b->sym)
108 return 1;
109 if (a->sym > b->sym)
110 return -1;
111 if (a->sym < b->sym)
112 return 1;
113
114 return 0;
115 }
116
117 static int cmp_sm_states(const struct sm_state *a, const struct sm_state *b, int preserve)
118 {
119 int ret;
120
121 ret = cmp_tracker(a, b);
122 if (ret)
123 return ret;
124
125 /* todo: add hook for smatch_extra.c */
126 if (a->state > b->state)
127 return -1;
128 if (a->state < b->state)
129 return 1;
130 /* This is obviously a massive disgusting hack but we need to preserve
131 * the unmerged states for smatch extra because we use them in
132 * smatch_db.c. Meanwhile if we preserve all the other unmerged states
133 * then it uses a lot of memory and we don't use it. Hence this hack.
134 *
135 * Also sometimes even just preserving every possible SMATCH_EXTRA state
136 * takes too much resources so we have to cap that. Capping is probably
137 * not often a problem in real life.
138 */
139 if (a->owner == SMATCH_EXTRA && preserve) {
140 if (a == b)
141 return 0;
142 if (a->merged == 1 && b->merged == 0)
143 return -1;
144 if (a->merged == 0)
145 return 1;
146 }
147
148 return 0;
149 }
150
151 struct sm_state *alloc_sm_state(int owner, const char *name,
152 struct symbol *sym, struct smatch_state *state)
153 {
154 struct sm_state *sm_state = __alloc_sm_state(0);
155
156 sm_state_counter++;
157
158 sm_state->name = alloc_sname(name);
159 sm_state->owner = owner;
160 sm_state->sym = sym;
161 sm_state->state = state;
162 sm_state->line = get_lineno();
163 sm_state->merged = 0;
164 sm_state->implied = 0;
165 sm_state->pool = NULL;
166 sm_state->left = NULL;
167 sm_state->right = NULL;
168 sm_state->nr_children = 1;
169 sm_state->possible = NULL;
170 add_ptr_list(&sm_state->possible, sm_state);
171 return sm_state;
172 }
173
174 static struct sm_state *alloc_state_no_name(int owner, const char *name,
175 struct symbol *sym,
176 struct smatch_state *state)
177 {
178 struct sm_state *tmp;
179
180 tmp = alloc_sm_state(owner, NULL, sym, state);
181 tmp->name = name;
182 return tmp;
183 }
184
185 int too_many_possible(struct sm_state *sm)
186 {
187 if (ptr_list_size((struct ptr_list *)sm->possible) >= 100)
188 return 1;
189 return 0;
190 }
191
192 void add_possible_sm(struct sm_state *to, struct sm_state *new)
193 {
194 struct sm_state *tmp;
195 int preserve = 1;
196
197 if (too_many_possible(to))
198 preserve = 0;
199
200 FOR_EACH_PTR(to->possible, tmp) {
201 if (cmp_sm_states(tmp, new, preserve) < 0)
202 continue;
203 else if (cmp_sm_states(tmp, new, preserve) == 0) {
204 return;
205 } else {
206 INSERT_CURRENT(new, tmp);
207 return;
208 }
209 } END_FOR_EACH_PTR(tmp);
210 add_ptr_list(&to->possible, new);
211 }
212
213 static void copy_possibles(struct sm_state *to, struct sm_state *from)
214 {
215 struct sm_state *tmp;
216
217 FOR_EACH_PTR(from->possible, tmp) {
218 add_possible_sm(to, tmp);
219 } END_FOR_EACH_PTR(tmp);
220 }
221
222 char *alloc_sname(const char *str)
223 {
224 char *tmp;
225
226 if (!str)
227 return NULL;
228 tmp = __alloc_sname(strlen(str) + 1);
229 strcpy(tmp, str);
230 return tmp;
231 }
232
233 int out_of_memory(void)
234 {
235 /*
236 * I decided to use 50M here based on trial and error.
237 * It works out OK for the kernel and so it should work
238 * for most other projects as well.
239 */
240 if (sm_state_counter * sizeof(struct sm_state) >= 50000000)
241 return 1;
242 return 0;
243 }
244
245 int low_on_memory(void)
246 {
247 if (sm_state_counter * sizeof(struct sm_state) >= 25000000)
248 return 1;
249 return 0;
250 }
251
252 static void free_sm_state(struct sm_state *sm)
253 {
254 free_slist(&sm->possible);
255 /*
256 * fixme. Free the actual state.
257 * Right now we leave it until the end of the function
258 * because we don't want to double free it.
259 * Use the freelist to not double free things
260 */
261 }
262
263 static void free_all_sm_states(struct allocation_blob *blob)
264 {
265 unsigned int size = sizeof(struct sm_state);
266 unsigned int offset = 0;
267
268 while (offset < blob->offset) {
269 free_sm_state((struct sm_state *)(blob->data + offset));
270 offset += size;
271 }
272 }
273
274 /* At the end of every function we free all the sm_states */
275 void free_every_single_sm_state(void)
276 {
277 struct allocator_struct *desc = &sm_state_allocator;
278 struct allocation_blob *blob = desc->blobs;
279
280 desc->blobs = NULL;
281 desc->allocations = 0;
282 desc->total_bytes = 0;
283 desc->useful_bytes = 0;
284 desc->freelist = NULL;
285 while (blob) {
286 struct allocation_blob *next = blob->next;
287 free_all_sm_states(blob);
288 blob_free(blob, desc->chunking);
289 blob = next;
290 }
291 clear_sname_alloc();
292 clear_smatch_state_alloc();
293
294 free_stack_and_strees(&all_pools);
295 sm_state_counter = 0;
296 }
297
298 struct sm_state *clone_sm(struct sm_state *s)
299 {
300 struct sm_state *ret;
301
302 ret = alloc_state_no_name(s->owner, s->name, s->sym, s->state);
303 ret->merged = s->merged;
304 ret->implied = s->implied;
305 ret->line = s->line;
306 /* clone_sm() doesn't copy the pools. Each state needs to have
307 only one pool. */
308 ret->possible = clone_slist(s->possible);
309 ret->left = s->left;
310 ret->right = s->right;
311 ret->nr_children = s->nr_children;
312 return ret;
313 }
314
315 int is_merged(struct sm_state *sm)
316 {
317 return sm->merged;
318 }
319
320 int is_implied(struct sm_state *sm)
321 {
322 return sm->implied;
323 }
324
325 int slist_has_state(struct state_list *slist, struct smatch_state *state)
326 {
327 struct sm_state *tmp;
328
329 FOR_EACH_PTR(slist, tmp) {
330 if (tmp->state == state)
331 return 1;
332 } END_FOR_EACH_PTR(tmp);
333 return 0;
334 }
335
336 struct state_list *clone_slist(struct state_list *from_slist)
337 {
338 struct sm_state *sm;
339 struct state_list *to_slist = NULL;
340
341 FOR_EACH_PTR(from_slist, sm) {
342 add_ptr_list(&to_slist, sm);
343 } END_FOR_EACH_PTR(sm);
344 return to_slist;
345 }
346
347 struct smatch_state *merge_states(int owner, const char *name,
348 struct symbol *sym,
349 struct smatch_state *state1,
350 struct smatch_state *state2)
351 {
352 struct smatch_state *ret;
353
354 if (state1 == state2)
355 ret = state1;
356 else if (__has_merge_function(owner))
357 ret = __client_merge_function(owner, state1, state2);
358 else if (state1 == &ghost)
359 ret = state2;
360 else if (state2 == &ghost)
361 ret = state1;
362 else if (!state1 || !state2)
363 ret = &undefined;
364 else
365 ret = &merged;
366 return ret;
367 }
368
369 struct sm_state *merge_sm_states(struct sm_state *one, struct sm_state *two)
370 {
371 struct smatch_state *s;
372 struct sm_state *result;
373
374 if (one == two)
375 return one;
376 s = merge_states(one->owner, one->name, one->sym, one->state, two->state);
377 result = alloc_state_no_name(one->owner, one->name, one->sym, s);
378 result->merged = 1;
379 result->left = one;
380 result->right = two;
381 result->nr_children = one->nr_children + two->nr_children;
382 copy_possibles(result, one);
383 copy_possibles(result, two);
384
385 if (option_debug ||
386 strcmp(check_name(one->owner), option_debug_check) == 0) {
387 struct sm_state *tmp;
388 int i = 0;
389
390 printf("%s:%d %s() merge [%s] '%s' %s(L %d) + %s(L %d) => %s (",
391 get_filename(), get_lineno(), get_function(),
392 check_name(one->owner), one->name,
393 show_state(one->state), one->line,
394 show_state(two->state), two->line,
395 show_state(s));
396
397 FOR_EACH_PTR(result->possible, tmp) {
398 if (i++)
399 printf(", ");
400 printf("%s", show_state(tmp->state));
401 } END_FOR_EACH_PTR(tmp);
402 printf(")\n");
403 }
404
405 return result;
406 }
407
408 struct sm_state *get_sm_state_stree(struct stree *stree, int owner, const char *name,
409 struct symbol *sym)
410 {
411 struct tracker tracker = {
412 .owner = owner,
413 .name = (char *)name,
414 .sym = sym,
415 };
416
417 if (!name)
418 return NULL;
419
420
421 return avl_lookup(stree, (struct sm_state *)&tracker);
422 }
423
424 struct smatch_state *get_state_stree(struct stree *stree,
425 int owner, const char *name,
426 struct symbol *sym)
427 {
428 struct sm_state *sm;
429
430 sm = get_sm_state_stree(stree, owner, name, sym);
431 if (sm)
432 return sm->state;
433 return NULL;
434 }
435
436 /* FIXME: this is almost exactly the same as set_sm_state_slist() */
437 void overwrite_sm_state_stree(struct stree **stree, struct sm_state *new)
438 {
439 avl_insert(stree, new);
440 }
441
442 void overwrite_sm_state_stree_stack(struct stree_stack **stack,
443 struct sm_state *sm)
444 {
445 struct stree *stree;
446
447 stree = pop_stree(stack);
448 overwrite_sm_state_stree(&stree, sm);
449 push_stree(stack, stree);
450 }
451
452 void set_sm_state_stree_stack_if_not_already_set(struct stree_stack **stack,
453 struct sm_state *sm)
454 {
455 struct stree *stree;
456
457 stree = pop_stree(stack);
458 if (get_state_stree(stree, sm->owner, sm->name, sm->sym))
459 goto push;
460 overwrite_sm_state_stree(&stree, sm);
461 push:
462 push_stree(stack, stree);
463 }
464
465 struct sm_state *set_state_stree(struct stree **stree, int owner, const char *name,
466 struct symbol *sym, struct smatch_state *state)
467 {
468 struct sm_state *new = alloc_sm_state(owner, name, sym, state);
469
470 avl_insert(stree, new);
471 return new;
472 }
473
474 void set_state_stree_perm(struct stree **stree, int owner, const char *name,
475 struct symbol *sym, struct smatch_state *state)
476 {
477 struct sm_state *sm;
478
479 sm = malloc(sizeof(*sm) + strlen(name) + 1);
480 memset(sm, 0, sizeof(*sm));
481 sm->owner = owner;
482 sm->name = (char *)(sm + 1);
483 strcpy((char *)sm->name, name);
484 sm->sym = sym;
485 sm->state = state;
486
487 overwrite_sm_state_stree(stree, sm);
488 }
489
490 void delete_state_stree(struct stree **stree, int owner, const char *name,
491 struct symbol *sym)
492 {
493 struct tracker tracker = {
494 .owner = owner,
495 .name = (char *)name,
496 .sym = sym,
497 };
498
499 avl_remove(stree, (struct sm_state *)&tracker);
500 }
501
502 void delete_state_stree_stack(struct stree_stack **stack, int owner, const char *name,
503 struct symbol *sym)
504 {
505 struct stree *stree;
506
507 stree = pop_stree(stack);
508 delete_state_stree(&stree, owner, name, sym);
509 push_stree(stack, stree);
510 }
511
512 void push_stree(struct stree_stack **stack, struct stree *stree)
513 {
514 add_ptr_list(stack, stree);
515 }
516
517 struct stree *pop_stree(struct stree_stack **stack)
518 {
519 struct stree *stree;
520
521 stree = last_ptr_list((struct ptr_list *)*stack);
522 delete_ptr_list_last((struct ptr_list **)stack);
523 return stree;
524 }
525
526 void free_slist(struct state_list **slist)
527 {
528 __free_ptr_list((struct ptr_list **)slist);
529 }
530
531 void free_stree_stack(struct stree_stack **stack)
532 {
533 __free_ptr_list((struct ptr_list **)stack);
534 }
535
536 void free_stack_and_strees(struct stree_stack **stree_stack)
537 {
538 struct stree *stree;
539
540 FOR_EACH_PTR(*stree_stack, stree) {
541 free_stree(&stree);
542 } END_FOR_EACH_PTR(stree);
543 free_stree_stack(stree_stack);
544 }
545
546 struct sm_state *set_state_stree_stack(struct stree_stack **stack, int owner, const char *name,
547 struct symbol *sym, struct smatch_state *state)
548 {
549 struct stree *stree;
550 struct sm_state *sm;
551
552 stree = pop_stree(stack);
553 sm = set_state_stree(&stree, owner, name, sym, state);
554 push_stree(stack, stree);
555
556 return sm;
557 }
558
559 /*
560 * get_sm_state_stack() gets the state for the top slist on the stack.
561 */
562 struct sm_state *get_sm_state_stree_stack(struct stree_stack *stack,
563 int owner, const char *name,
564 struct symbol *sym)
565 {
566 struct stree *stree;
567 struct sm_state *ret;
568
569 stree = pop_stree(&stack);
570 ret = get_sm_state_stree(stree, owner, name, sym);
571 push_stree(&stack, stree);
572 return ret;
573 }
574
575 struct smatch_state *get_state_stree_stack(struct stree_stack *stack,
576 int owner, const char *name,
577 struct symbol *sym)
578 {
579 struct sm_state *sm;
580
581 sm = get_sm_state_stree_stack(stack, owner, name, sym);
582 if (sm)
583 return sm->state;
584 return NULL;
585 }
586
587 static void match_states_stree(struct stree **one, struct stree **two)
588 {
589 struct smatch_state *tmp_state;
590 struct sm_state *sm;
591 struct state_list *add_to_one = NULL;
592 struct state_list *add_to_two = NULL;
593 AvlIter one_iter;
594 AvlIter two_iter;
595
596 avl_iter_begin(&one_iter, *one, FORWARD);
597 avl_iter_begin(&two_iter, *two, FORWARD);
598
599 for (;;) {
600 if (!one_iter.sm && !two_iter.sm)
601 break;
602 if (cmp_tracker(one_iter.sm, two_iter.sm) < 0) {
603 __set_fake_cur_stree_fast(*two);
604 tmp_state = __client_unmatched_state_function(one_iter.sm);
605 __pop_fake_cur_stree_fast();
606 sm = alloc_state_no_name(one_iter.sm->owner, one_iter.sm->name,
607 one_iter.sm->sym, tmp_state);
608 add_ptr_list(&add_to_two, sm);
609 avl_iter_next(&one_iter);
610 } else if (cmp_tracker(one_iter.sm, two_iter.sm) == 0) {
611 avl_iter_next(&one_iter);
612 avl_iter_next(&two_iter);
613 } else {
614 __set_fake_cur_stree_fast(*one);
615 tmp_state = __client_unmatched_state_function(two_iter.sm);
616 __pop_fake_cur_stree_fast();
617 sm = alloc_state_no_name(two_iter.sm->owner, two_iter.sm->name,
618 two_iter.sm->sym, tmp_state);
619 add_ptr_list(&add_to_one, sm);
620 avl_iter_next(&two_iter);
621 }
622 }
623
624 FOR_EACH_PTR(add_to_one, sm) {
625 avl_insert(one, sm);
626 } END_FOR_EACH_PTR(sm);
627
628 FOR_EACH_PTR(add_to_two, sm) {
629 avl_insert(two, sm);
630 } END_FOR_EACH_PTR(sm);
631
632 free_slist(&add_to_one);
633 free_slist(&add_to_two);
634 }
635
636 static void call_pre_merge_hooks(struct stree **one, struct stree **two)
637 {
638 struct sm_state *sm;
639
640 save_all_states();
641
642 __swap_cur_stree(*one);
643 FOR_EACH_SM(*two, sm) {
644 call_pre_merge_hook(sm);
645 } END_FOR_EACH_SM(sm);
646 *one = clone_stree(__get_cur_stree());
647
648 __swap_cur_stree(*two);
649 FOR_EACH_SM(*one, sm) {
650 call_pre_merge_hook(sm);
651 } END_FOR_EACH_SM(sm);
652 *two = clone_stree(__get_cur_stree());
653
654 restore_all_states();
655 }
656
657 static void clone_pool_havers_stree(struct stree **stree)
658 {
659 struct sm_state *sm, *tmp;
660 struct state_list *slist = NULL;
661
662 FOR_EACH_SM(*stree, sm) {
663 if (sm->pool) {
664 tmp = clone_sm(sm);
665 add_ptr_list(&slist, tmp);
666 }
667 } END_FOR_EACH_SM(sm);
668
669 FOR_EACH_PTR(slist, sm) {
670 avl_insert(stree, sm);
671 } END_FOR_EACH_PTR(sm);
672
673 free_slist(&slist);
674 }
675
676 int __stree_id;
677
678 /*
679 * merge_slist() is called whenever paths merge, such as after
680 * an if statement. It takes the two slists and creates one.
681 */
682 static void __merge_stree(struct stree **to, struct stree *stree, int add_pool)
683 {
684 struct stree *results = NULL;
685 struct stree *implied_one = NULL;
686 struct stree *implied_two = NULL;
687 AvlIter one_iter;
688 AvlIter two_iter;
689 struct sm_state *tmp_sm;
690
691 if (out_of_memory())
692 return;
693
694 /* merging a null and nonnull path gives you only the nonnull path */
695 if (!stree)
696 return;
697 if (*to == stree)
698 return;
699
700 if (!*to) {
701 *to = clone_stree(stree);
702 return;
703 }
704
705 implied_one = clone_stree(*to);
706 implied_two = clone_stree(stree);
707
708 match_states_stree(&implied_one, &implied_two);
709 call_pre_merge_hooks(&implied_one, &implied_two);
710
711 if (add_pool) {
712 clone_pool_havers_stree(&implied_one);
713 clone_pool_havers_stree(&implied_two);
714
715 set_stree_id(&implied_one, ++__stree_id);
716 set_stree_id(&implied_two, ++__stree_id);
717 }
718
719 push_stree(&all_pools, implied_one);
720 push_stree(&all_pools, implied_two);
721
722 avl_iter_begin(&one_iter, implied_one, FORWARD);
723 avl_iter_begin(&two_iter, implied_two, FORWARD);
724
725 for (;;) {
726 if (!one_iter.sm && !two_iter.sm)
727 break;
728 if (cmp_tracker(one_iter.sm, two_iter.sm) < 0) {
729 sm_msg("error: Internal smatch error.");
730 avl_iter_next(&one_iter);
731 } else if (cmp_tracker(one_iter.sm, two_iter.sm) == 0) {
732 if (add_pool && one_iter.sm != two_iter.sm) {
733 one_iter.sm->pool = implied_one;
734 two_iter.sm->pool = implied_two;
735 }
736 tmp_sm = merge_sm_states(one_iter.sm, two_iter.sm);
737 add_possible_sm(tmp_sm, one_iter.sm);
738 add_possible_sm(tmp_sm, two_iter.sm);
739 avl_insert(&results, tmp_sm);
740 avl_iter_next(&one_iter);
741 avl_iter_next(&two_iter);
742 } else {
743 sm_msg("error: Internal smatch error.");
744 avl_iter_next(&two_iter);
745 }
746 }
747
748 free_stree(to);
749 *to = results;
750 }
751
752 void merge_stree(struct stree **to, struct stree *stree)
753 {
754 __merge_stree(to, stree, 1);
755 }
756
757 void merge_stree_no_pools(struct stree **to, struct stree *stree)
758 {
759 __merge_stree(to, stree, 0);
760 }
761
762 /*
763 * This is unfortunately a bit subtle... The problem is that if a
764 * state is set on one fake stree but not the other then we should
765 * look up the the original state and use that as the unset state.
766 * Fortunately, after you pop your fake stree then the cur_slist should
767 * reflect the original state.
768 */
769 void merge_fake_stree(struct stree **to, struct stree *stree)
770 {
771 struct stree *one = *to;
772 struct stree *two = stree;
773 struct sm_state *sm;
774 struct state_list *add_to_one = NULL;
775 struct state_list *add_to_two = NULL;
776 AvlIter one_iter;
777 AvlIter two_iter;
778
779 if (!stree)
780 return;
781 if (*to == stree)
782 return;
783 if (!*to) {
784 *to = clone_stree(stree);
785 return;
786 }
787
788 avl_iter_begin(&one_iter, one, FORWARD);
789 avl_iter_begin(&two_iter, two, FORWARD);
790
791 for (;;) {
792 if (!one_iter.sm && !two_iter.sm)
793 break;
794 if (cmp_tracker(one_iter.sm, two_iter.sm) < 0) {
795 sm = get_sm_state(one_iter.sm->owner, one_iter.sm->name,
796 one_iter.sm->sym);
797 if (sm)
798 add_ptr_list(&add_to_two, sm);
799 avl_iter_next(&one_iter);
800 } else if (cmp_tracker(one_iter.sm, two_iter.sm) == 0) {
801 avl_iter_next(&one_iter);
802 avl_iter_next(&two_iter);
803 } else {
804 sm = get_sm_state(two_iter.sm->owner, two_iter.sm->name,
805 two_iter.sm->sym);
806 if (sm)
807 add_ptr_list(&add_to_one, sm);
808 avl_iter_next(&two_iter);
809 }
810 }
811
812 FOR_EACH_PTR(add_to_one, sm) {
813 avl_insert(&one, sm);
814 } END_FOR_EACH_PTR(sm);
815
816 FOR_EACH_PTR(add_to_two, sm) {
817 avl_insert(&two, sm);
818 } END_FOR_EACH_PTR(sm);
819
820 free_slist(&add_to_one);
821 free_slist(&add_to_two);
822
823 __merge_stree(&one, two, 1);
824
825 *to = one;
826 }
827
828 /*
829 * filter_slist() removes any sm states "slist" holds in common with "filter"
830 */
831 void filter_stree(struct stree **stree, struct stree *filter)
832 {
833 struct stree *results = NULL;
834 AvlIter one_iter;
835 AvlIter two_iter;
836
837 avl_iter_begin(&one_iter, *stree, FORWARD);
838 avl_iter_begin(&two_iter, filter, FORWARD);
839
840 /* FIXME: This should probably be re-written with trees in mind */
841
842 for (;;) {
843 if (!one_iter.sm && !two_iter.sm)
844 break;
845 if (cmp_tracker(one_iter.sm, two_iter.sm) < 0) {
846 avl_insert(&results, one_iter.sm);
847 avl_iter_next(&one_iter);
848 } else if (cmp_tracker(one_iter.sm, two_iter.sm) == 0) {
849 if (one_iter.sm != two_iter.sm)
850 avl_insert(&results, one_iter.sm);
851 avl_iter_next(&one_iter);
852 avl_iter_next(&two_iter);
853 } else {
854 avl_iter_next(&two_iter);
855 }
856 }
857
858 free_stree(stree);
859 *stree = results;
860 }
861
862
863 /*
864 * and_slist_stack() pops the top two slists, overwriting the one with
865 * the other and pushing it back on the stack.
866 */
867 void and_stree_stack(struct stree_stack **stack)
868 {
869 struct sm_state *tmp;
870 struct stree *right_stree = pop_stree(stack);
871
872 FOR_EACH_SM(right_stree, tmp) {
873 overwrite_sm_state_stree_stack(stack, tmp);
874 } END_FOR_EACH_SM(tmp);
875 free_stree(&right_stree);
876 }
877
878 /*
879 * or_slist_stack() is for if we have: if (foo || bar) { foo->baz;
880 * It pops the two slists from the top of the stack and merges them
881 * together in a way that preserves the things they have in common
882 * but creates a merged state for most of the rest.
883 * You could have code that had: if (foo || foo) { foo->baz;
884 * It's this function which ensures smatch does the right thing.
885 */
886 void or_stree_stack(struct stree_stack **pre_conds,
887 struct stree *cur_stree,
888 struct stree_stack **stack)
889 {
890 struct stree *new;
891 struct stree *old;
892 struct stree *pre_stree;
893 struct stree *res;
894 struct stree *tmp_stree;
895
896 new = pop_stree(stack);
897 old = pop_stree(stack);
898
899 pre_stree = pop_stree(pre_conds);
900 push_stree(pre_conds, clone_stree(pre_stree));
901
902 res = clone_stree(pre_stree);
903 overwrite_stree(old, &res);
904
905 tmp_stree = clone_stree(cur_stree);
906 overwrite_stree(new, &tmp_stree);
907
908 merge_stree(&res, tmp_stree);
909 filter_stree(&res, pre_stree);
910
911 push_stree(stack, res);
912 free_stree(&tmp_stree);
913 free_stree(&pre_stree);
914 free_stree(&new);
915 free_stree(&old);
916 }
917
918 /*
919 * get_named_stree() is only used for gotos.
920 */
921 struct stree **get_named_stree(struct named_stree_stack *stack,
922 const char *name)
923 {
924 struct named_stree *tmp;
925
926 FOR_EACH_PTR(stack, tmp) {
927 if (!strcmp(tmp->name, name))
928 return &tmp->stree;
929 } END_FOR_EACH_PTR(tmp);
930 return NULL;
931 }
932
933 /* FIXME: These parameters are in a different order from expected */
934 void overwrite_stree(struct stree *from, struct stree **to)
935 {
936 struct sm_state *tmp;
937
938 FOR_EACH_SM(from, tmp) {
939 overwrite_sm_state_stree(to, tmp);
940 } END_FOR_EACH_SM(tmp);
941 }
942
Static analysis for C