search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
extra: handle loops like: while (--i >= 0) {
[smatch.git] / smatch_modification_hooks.c
blobe245a85efeb2a3534e4887b05cec50abdce7e159
1 /*
2 * Copyright (C) 2009 Dan Carpenter.
3 *
4 * This program is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU General Public License
6 * as published by the Free Software Foundation; either version 2
7 * of the License, or (at your option) any later version.
8 *
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
13 *
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, see http://www.gnu.org/copyleft/gpl.txt
16 */
17
18 /*
19 * There are a number of ways that variables are modified:
20 * 1) assignment
21 * 2) increment/decrement
22 * 3) assembly
23 * 4) inside functions.
24 *
25 * For setting stuff inside a function then, of course, it's more accurate if
26 * you have the cross function database built. Otherwise we are super
27 * aggressive about marking things as modified and if you have "frob(foo);" then
28 * we assume "foo->bar" is modified.
29 */
30
31 #include <stdlib.h>
32 #include <stdio.h>
33 #include "smatch.h"
34 #include "smatch_extra.h"
35 #include "smatch_slist.h"
36
37 enum {
38 EARLY = 0,
39 LATE = 1,
40 BOTH = 2
41 };
42
43 static modification_hook **hooks;
44 static modification_hook **hooks_late;
45
46 ALLOCATOR(modification_data, "modification data");
47
48 static int my_id;
49 static struct smatch_state *alloc_my_state(struct expression *expr, struct smatch_state *prev)
50 {
51 struct smatch_state *state;
52 struct modification_data *data;
53 char *name;
54
55 state = __alloc_smatch_state(0);
56 expr = strip_expr(expr);
57 name = expr_to_str(expr);
58 state->name = alloc_sname(name);
59 free_string(name);
60
61 data = __alloc_modification_data(0);
62 data->prev = prev;
63 data->cur = expr;
64 state->data = data;
65
66 return state;
67 }
68
69 void add_modification_hook(int owner, modification_hook *call_back)
70 {
71 hooks[owner] = call_back;
72 }
73
74 void add_modification_hook_late(int owner, modification_hook *call_back)
75 {
76 hooks_late[owner] = call_back;
77 }
78
79 static int matches(char *name, struct symbol *sym, struct sm_state *sm)
80 {
81 int len;
82
83 if (sym != sm->sym)
84 return false;
85
86 len = strlen(name);
87 if (strncmp(sm->name, name, len) == 0) {
88 if (sm->name[len] == '\0')
89 return true;
90 if (sm->name[len] == '-' || sm->name[len] == '.')
91 return true;
92 }
93 if (sm->name[0] != '*')
94 return false;
95 if (strncmp(sm->name + 1, name, len) == 0) {
96 if (sm->name[len + 1] == '\0')
97 return true;
98 if (sm->name[len + 1] == '-' || sm->name[len + 1] == '.')
99 return true;
100 }
101 return false;
102 }
103
104 static void call_modification_hooks_name_sym(char *name, struct symbol *sym, struct expression *mod_expr, int late)
105 {
106 struct sm_state *sm;
107 struct smatch_state *prev;
108 int match;
109
110 prev = get_state(my_id, name, sym);
111
112 if (!__in_fake_assign)
113 set_state(my_id, name, sym, alloc_my_state(mod_expr, prev));
114
115 FOR_EACH_SM(__get_cur_stree(), sm) {
116 if (sm->owner > num_checks)
117 continue;
118 match = matches(name, sym, sm);
119 if (!match)
120 continue;
121
122 if (late == EARLY || late == BOTH) {
123 if (hooks[sm->owner])
124 (hooks[sm->owner])(sm, mod_expr);
125 }
126 if (late == LATE || late == BOTH) {
127 if (hooks_late[sm->owner])
128 (hooks_late[sm->owner])(sm, mod_expr);
129 }
130
131 } END_FOR_EACH_SM(sm);
132 }
133
134 static void call_modification_hooks(struct expression *expr, struct expression *mod_expr, int late)
135 {
136 char *name;
137 struct symbol *sym;
138
139 name = expr_to_known_chunk_sym(expr, &sym);
140 if (!name)
141 goto free;
142 call_modification_hooks_name_sym(name, sym, mod_expr, late);
143 free:
144 free_string(name);
145 }
146
147 static void db_param_add(struct expression *expr, int param, char *key, char *value)
148 {
149 struct expression *arg;
150 char *name, *other_name;
151 struct symbol *sym, *other_sym;
152
153 while (expr->type == EXPR_ASSIGNMENT)
154 expr = strip_expr(expr->right);
155 if (expr->type != EXPR_CALL)
156 return;
157
158 arg = get_argument_from_call_expr(expr->args, param);
159 if (!arg)
160 return;
161
162 name = get_variable_from_key(arg, key, &sym);
163 if (!name || !sym)
164 goto free;
165
166 call_modification_hooks_name_sym(name, sym, expr, BOTH);
167
168 other_name = map_long_to_short_name_sym(name, sym, &other_sym);
169 if (other_name) {
170 call_modification_hooks_name_sym(other_name, other_sym, expr, BOTH);
171 free_string(other_name);
172 }
173
174 free:
175 free_string(name);
176 }
177
178 static void match_assign(struct expression *expr, int late)
179 {
180 call_modification_hooks(expr->left, expr, late);
181 }
182
183 static void unop_expr(struct expression *expr, int late)
184 {
185 if (expr->op != SPECIAL_DECREMENT && expr->op != SPECIAL_INCREMENT)
186 return;
187
188 call_modification_hooks(expr->unop, expr, late);
189 }
190
191 static void match_call(struct expression *expr)
192 {
193 struct expression *arg, *tmp;
194
195 FOR_EACH_PTR(expr->args, arg) {
196 tmp = strip_expr(arg);
197 if (tmp->type == EXPR_PREOP && tmp->op == '&')
198 call_modification_hooks(tmp->unop, expr, BOTH);
199 else if (option_no_db)
200 call_modification_hooks(deref_expression(tmp), expr, BOTH);
201 } END_FOR_EACH_PTR(arg);
202 }
203
204 static void asm_expr(struct statement *stmt, int late)
205 {
206 struct expression *expr;
207 int state = 0;
208
209 FOR_EACH_PTR(stmt->asm_outputs, expr) {
210 switch (state) {
211 case 0: /* identifier */
212 case 1: /* constraint */
213 state++;
214 continue;
215 case 2: /* expression */
216 state = 0;
217 call_modification_hooks(expr, NULL, late);
218 continue;
219 }
220 } END_FOR_EACH_PTR(expr);
221 }
222
223
224 static void match_assign_early(struct expression *expr)
225 {
226 match_assign(expr, EARLY);
227 }
228
229 static void unop_expr_early(struct expression *expr)
230 {
231 unop_expr(expr, EARLY);
232 }
233
234 static void asm_expr_early(struct statement *stmt)
235 {
236 asm_expr(stmt, EARLY);
237 }
238
239 static void match_assign_late(struct expression *expr)
240 {
241 match_assign(expr, LATE);
242 }
243
244 static void unop_expr_late(struct expression *expr)
245 {
246 unop_expr(expr, LATE);
247 }
248
249 static void asm_expr_late(struct statement *stmt)
250 {
251 asm_expr(stmt, LATE);
252 }
253
254 struct smatch_state *get_modification_state(struct expression *expr)
255 {
256 return get_state_expr(my_id, expr);
257 }
258
259 void register_modification_hooks(int id)
260 {
261 my_id = id;
262
263 hooks = malloc((num_checks + 1) * sizeof(*hooks));
264 memset(hooks, 0, (num_checks + 1) * sizeof(*hooks));
265 hooks_late = malloc((num_checks + 1) * sizeof(*hooks));
266 memset(hooks_late, 0, (num_checks + 1) * sizeof(*hooks));
267
268 add_hook(&match_assign_early, ASSIGNMENT_HOOK);
269 add_hook(&unop_expr_early, OP_HOOK);
270 add_hook(&asm_expr_early, ASM_HOOK);
271
272 select_return_states_hook(PARAM_ADD, &db_param_add);
273 select_return_states_hook(PARAM_SET, &db_param_add);
274 }
275
276 void register_modification_hooks_late(int id)
277 {
278 add_hook(&match_call, FUNCTION_CALL_HOOK);
279
280 add_hook(&match_assign_late, ASSIGNMENT_HOOK_AFTER);
281 add_hook(&unop_expr_late, OP_HOOK);
282 add_hook(&asm_expr_late, ASM_HOOK);
283 }
284
Static analysis for C