2 * sparse/smatch_slist.c
4 * Copyright (C) 2008,2009 Dan Carpenter.
6 * Licensed under the Open Software License version 1.1
14 #include "smatch_slist.h"
16 ALLOCATOR(sm_state
, "smatch state");
17 ALLOCATOR(named_slist
, "named slist");
21 void __print_slist(struct state_list
*slist
)
23 struct sm_state
*state
;
25 printf("dumping slist at %d\n", get_lineno());
26 FOR_EACH_PTR(slist
, state
) {
27 printf("%d '%s'=%s\n", state
->owner
, state
->name
,
28 show_state(state
->state
));
29 } END_FOR_EACH_PTR(state
);
33 void add_history(struct sm_state
*state
)
35 struct state_history
*tmp
;
39 tmp
= malloc(sizeof(*tmp
));
40 tmp
->loc
= get_lineno();
41 add_ptr_list(&state
->line_history
, tmp
);
44 static void add_possible(struct sm_state
*sm
, struct sm_state
*new)
48 FOR_EACH_PTR(sm
->possible
, tmp
) {
49 if (tmp
->state
< new->state
) {
51 } else if (tmp
->state
== new->state
) {
54 INSERT_CURRENT(new, tmp
);
57 } END_FOR_EACH_PTR(tmp
);
58 add_ptr_list(&sm
->possible
, new);
61 struct sm_state
*alloc_state(const char *name
, int owner
,
62 struct symbol
*sym
, struct smatch_state
*state
)
64 struct sm_state
*sm_state
= __alloc_sm_state(0);
66 sm_state
->name
= (char *)name
;
67 sm_state
->owner
= owner
;
69 sm_state
->state
= state
;
70 sm_state
->line_history
= NULL
;
71 add_history(sm_state
);
72 sm_state
->pools
= NULL
;
73 sm_state
->possible
= NULL
;
74 add_possible(sm_state
, sm_state
);
78 struct sm_state
*clone_state(struct sm_state
*s
)
82 tmp
= alloc_state(s
->name
, s
->owner
, s
->sym
, s
->state
);
83 tmp
->pools
= clone_stack(s
->pools
);
87 /* NULL states go at the end to simplify merge_slist */
88 static int cmp_sm_states(const struct sm_state
*a
, const struct sm_state
*b
)
99 if (a
->owner
> b
->owner
)
101 if (a
->owner
< b
->owner
)
104 ret
= strcmp(a
->name
, b
->name
);
108 if (!b
->sym
&& a
->sym
)
110 if (!a
->sym
&& b
->sym
)
120 int slist_has_state(struct state_list
*slist
, struct smatch_state
*state
)
122 struct sm_state
*tmp
;
124 FOR_EACH_PTR(slist
, tmp
) {
125 if (tmp
->state
== state
)
127 } END_FOR_EACH_PTR(tmp
);
132 static void check_order(struct state_list
*slist
)
134 struct sm_state
*state
;
135 struct sm_state
*last
= NULL
;
138 FOR_EACH_PTR(slist
, state
) {
139 if (last
&& cmp_sm_states(state
, last
) <= 0) {
140 printf("Error. Unsorted slist %d vs %d, %p vs %p, "
141 "%s vs %s\n", last
->owner
, state
->owner
,
142 last
->sym
, state
->sym
, last
->name
, state
->name
);
146 } END_FOR_EACH_PTR(state
);
153 struct state_list
*clone_slist(struct state_list
*from_slist
)
155 struct sm_state
*state
;
156 struct sm_state
*tmp
;
157 struct state_list
*to_slist
= NULL
;
159 FOR_EACH_PTR(from_slist
, state
) {
160 tmp
= clone_state(state
);
161 add_ptr_list(&to_slist
, tmp
);
162 } END_FOR_EACH_PTR(state
);
164 check_order(to_slist
);
169 struct state_list_stack
*clone_stack(struct state_list_stack
*from_stack
)
171 struct state_list
*slist
;
172 struct state_list_stack
*to_stack
= NULL
;
174 FOR_EACH_PTR(from_stack
, slist
) {
175 push_slist(&to_stack
, slist
);
176 } END_FOR_EACH_PTR(slist
);
180 // FIXME... shouldn't we free some of these state pointers?
181 struct smatch_state
*merge_states(const char *name
, int owner
,
183 struct smatch_state
*state1
,
184 struct smatch_state
*state2
)
186 struct smatch_state
*ret
;
188 if (state1
== state2
)
190 else if (__has_merge_function(owner
))
191 ret
= __client_merge_function(owner
, name
, sym
, state1
, state2
);
195 SM_DEBUG("%d merge name='%s' owner=%d: %s + %s => %s\n",
196 get_lineno(), name
, owner
, show_state(state1
),
197 show_state(state2
), show_state(ret
));
202 struct sm_state
*get_sm_state_slist(struct state_list
*slist
, const char *name
,
203 int owner
, struct symbol
*sym
)
205 struct sm_state
*state
;
210 FOR_EACH_PTR(slist
, state
) {
211 if (state
->owner
== owner
&& state
->sym
== sym
212 && !strcmp(state
->name
, name
))
214 } END_FOR_EACH_PTR(state
);
218 struct smatch_state
*get_state_slist(struct state_list
*slist
,
219 const char *name
, int owner
,
222 struct sm_state
*state
;
224 state
= get_sm_state_slist(slist
, name
, owner
, sym
);
230 static void overwrite_sm_state(struct state_list
**slist
,
231 struct sm_state
*state
)
233 struct sm_state
*tmp
;
234 struct sm_state
*new = clone_state(state
); //fixme. why?
236 FOR_EACH_PTR(*slist
, tmp
) {
237 if (cmp_sm_states(tmp
, new) < 0)
239 else if (cmp_sm_states(tmp
, new) == 0) {
240 tmp
->state
= new->state
;
241 tmp
->pools
= new->pools
;
242 tmp
->possible
= new->possible
;
243 __free_sm_state(new);
246 INSERT_CURRENT(new, tmp
);
249 } END_FOR_EACH_PTR(tmp
);
250 add_ptr_list(slist
, new);
253 void set_state_slist(struct state_list
**slist
, const char *name
, int owner
,
254 struct symbol
*sym
, struct smatch_state
*state
)
256 struct sm_state
*tmp
;
257 struct sm_state
*new = alloc_state(name
, owner
, sym
, state
);
259 FOR_EACH_PTR(*slist
, tmp
) {
260 if (cmp_sm_states(tmp
, new) < 0)
262 else if (cmp_sm_states(tmp
, new) == 0) {
265 tmp
->possible
= new->possible
;
266 __free_sm_state(new);
269 INSERT_CURRENT(new, tmp
);
272 } END_FOR_EACH_PTR(tmp
);
273 add_ptr_list(slist
, new);
276 void delete_state_slist(struct state_list
**slist
, const char *name
, int owner
,
279 struct sm_state
*state
;
281 FOR_EACH_PTR(*slist
, state
) {
282 if (state
->owner
== owner
&& state
->sym
== sym
283 && !strcmp(state
->name
, name
)){
284 delete_ptr_list_entry((struct ptr_list
**)slist
,
286 __free_sm_state(state
);
289 } END_FOR_EACH_PTR(state
);
293 void push_slist(struct state_list_stack
**list_stack
, struct state_list
*slist
)
295 add_ptr_list(list_stack
, slist
);
298 struct state_list
*pop_slist(struct state_list_stack
**list_stack
)
300 struct state_list
*slist
;
302 slist
= last_ptr_list((struct ptr_list
*)*list_stack
);
303 delete_ptr_list_last((struct ptr_list
**)list_stack
);
307 void del_slist(struct state_list
**slist
)
309 __free_ptr_list((struct ptr_list
**)slist
);
312 void del_slist_stack(struct state_list_stack
**slist_stack
)
314 struct state_list
*slist
;
316 FOR_EACH_PTR(*slist_stack
, slist
) {
317 __free_ptr_list((struct ptr_list
**)&slist
);
318 } END_FOR_EACH_PTR(slist
);
319 __free_ptr_list((struct ptr_list
**)slist_stack
);
323 * set_state_stack() sets the state for the top slist on the stack.
325 void set_state_stack(struct state_list_stack
**stack
, const char *name
,
326 int owner
, struct symbol
*sym
, struct smatch_state
*state
)
328 struct state_list
*slist
;
330 slist
= pop_slist(stack
);
331 set_state_slist(&slist
, name
, owner
, sym
, state
);
332 push_slist(stack
, slist
);
336 * get_state_stack() gets the state for the top slist on the stack.
338 struct smatch_state
*get_state_stack(struct state_list_stack
*stack
,
339 const char *name
, int owner
,
342 struct state_list
*slist
;
343 struct smatch_state
*ret
;
345 slist
= pop_slist(&stack
);
346 ret
= get_state_slist(slist
, name
, owner
, sym
);
347 push_slist(&stack
, slist
);
352 * add_pool() adds a slist to ->pools. If the slist has already been
353 * added earlier then it doesn't get added a second time.
355 static void add_pool(struct sm_state
*to
, struct state_list
*new)
357 struct state_list
*tmp
;
359 FOR_EACH_PTR(to
->pools
, tmp
) {
362 else if (tmp
== new) {
365 INSERT_CURRENT(new, tmp
);
368 } END_FOR_EACH_PTR(tmp
);
369 add_ptr_list(&to
->pools
, new);
372 static void copy_pools(struct sm_state
*to
, struct sm_state
*sm
)
374 struct state_list
*tmp
;
376 FOR_EACH_PTR(sm
->pools
, tmp
) {
378 } END_FOR_EACH_PTR(tmp
);
382 * merge_slist() is called whenever paths merge, such as after
383 * an if statement. It takes the two slists and creates one.
385 void merge_slist(struct state_list
**to
, struct state_list
*slist
)
387 struct sm_state
*to_state
, *state
, *tmp
;
388 struct state_list
*results
= NULL
;
389 struct smatch_state
*s
;
390 struct state_list
*implied_to
= NULL
;
391 struct state_list
*implied_from
= NULL
;
398 /* merging a null and nonnull path gives you only the nonnull path */
403 *to
= clone_slist(slist
);
407 PREPARE_PTR_LIST(*to
, to_state
);
408 PREPARE_PTR_LIST(slist
, state
);
410 if (!to_state
&& !state
)
412 if (cmp_sm_states(to_state
, state
) < 0) {
413 s
= merge_states(to_state
->name
, to_state
->owner
,
414 to_state
->sym
, to_state
->state
, NULL
);
415 tmp
= alloc_state(to_state
->name
, to_state
->owner
,
417 copy_pools(tmp
, to_state
);
419 add_ptr_list(&implied_to
, to_state
);
420 add_pool(tmp
, implied_to
);
422 add_ptr_list(&results
, tmp
);
423 NEXT_PTR_LIST(to_state
);
424 } else if (cmp_sm_states(to_state
, state
) == 0) {
425 if (to_state
->state
== state
->state
) {
427 tmp
= alloc_state(to_state
->name
,
430 copy_pools(tmp
, to_state
);
431 copy_pools(tmp
, state
);
434 s
= merge_states(to_state
->name
,
436 to_state
->sym
, to_state
->state
,
439 tmp
= alloc_state(to_state
->name
,
442 copy_pools(tmp
, to_state
);
443 copy_pools(tmp
, state
);
445 add_ptr_list(&implied_to
, to_state
);
446 add_pool(tmp
, implied_to
);
448 add_ptr_list(&implied_from
, state
);
449 add_pool(tmp
, implied_from
);
451 add_ptr_list(&results
, tmp
);
452 NEXT_PTR_LIST(to_state
);
453 NEXT_PTR_LIST(state
);
455 s
= merge_states(state
->name
, state
->owner
,
456 state
->sym
, state
->state
, NULL
);
457 tmp
= alloc_state(state
->name
, state
->owner
,
459 copy_pools(tmp
, state
);
461 add_ptr_list(&implied_from
, state
);
462 add_pool(tmp
, implied_from
);
464 add_ptr_list(&results
, tmp
);
465 NEXT_PTR_LIST(state
);
468 FINISH_PTR_LIST(state
);
469 FINISH_PTR_LIST(to_state
);
475 push_slist(&implied_pools
, implied_from
);
477 push_slist(&implied_pools
, implied_to
);
481 * is_currently_in_pool() is used because we remove states from pools.
482 * When set_state() is called then we set ->pools to NULL, but on
483 * other paths the state is still a member of those pools.
494 static int is_currently_in_pool(struct sm_state
*sm
, struct state_list
*pool
,
495 struct state_list
*cur_slist
)
497 struct sm_state
*cur_state
;
498 struct state_list
*tmp
;
500 cur_state
= get_sm_state_slist(cur_slist
, sm
->name
, sm
->owner
, sm
->sym
);
504 FOR_EACH_PTR(cur_state
->pools
, tmp
) {
507 } END_FOR_EACH_PTR(tmp
);
511 struct state_list
*clone_states_in_pool(struct state_list
*pool
,
512 struct state_list
*cur_slist
)
514 struct sm_state
*state
;
515 struct sm_state
*tmp
;
516 struct state_list
*to_slist
= NULL
;
518 FOR_EACH_PTR(pool
, state
) {
519 if (is_currently_in_pool(state
, pool
, cur_slist
)) {
520 tmp
= clone_state(state
);
521 add_ptr_list(&to_slist
, tmp
);
523 } END_FOR_EACH_PTR(state
);
525 check_order(to_slist
);
531 * filter() is used to find what states are the same across
532 * a series of slists.
533 * It takes a **slist and a *filter.
534 * It removes everything from **slist that isn't in *filter.
535 * The reason you would want to do this is if you want to
536 * know what other states are true if one state is true. (smatch_implied).
538 void filter(struct state_list
**slist
, struct state_list
*filter
,
539 struct state_list
*cur_slist
)
541 struct sm_state
*s_one
, *s_two
;
542 struct state_list
*results
= NULL
;
549 PREPARE_PTR_LIST(*slist
, s_one
);
550 PREPARE_PTR_LIST(filter
, s_two
);
552 if (!s_one
|| !s_two
)
554 if (cmp_sm_states(s_one
, s_two
) < 0) {
555 NEXT_PTR_LIST(s_one
);
556 } else if (cmp_sm_states(s_one
, s_two
) == 0) {
557 /* todo. pointer comparison works fine for most things
558 except smatch_extra. we may need a hook here. */
559 if (s_one
->state
== s_two
->state
&&
560 is_currently_in_pool(s_two
, filter
, cur_slist
)) {
561 add_ptr_list(&results
, s_one
);
563 NEXT_PTR_LIST(s_one
);
564 NEXT_PTR_LIST(s_two
);
566 NEXT_PTR_LIST(s_two
);
569 FINISH_PTR_LIST(s_two
);
570 FINISH_PTR_LIST(s_one
);
577 * and_slist_stack() is basically the same as popping the top two slists,
578 * overwriting the one with the other and pushing it back on the stack.
579 * The difference is that it checks to see that a mutually exclusive
580 * state isn't included in both stacks. If smatch sees something like
581 * "if (a && !a)" it prints a warning.
583 void and_slist_stack(struct state_list_stack
**slist_stack
)
585 struct sm_state
*tmp
;
586 struct smatch_state
*tmp_state
;
587 struct state_list
*tmp_slist
= pop_slist(slist_stack
);
589 FOR_EACH_PTR(tmp_slist
, tmp
) {
590 tmp_state
= get_state_stack(*slist_stack
, tmp
->name
,
591 tmp
->owner
, tmp
->sym
);
592 if (tmp_state
&& tmp_state
!= tmp
->state
) {
593 smatch_msg("mutually exclusive 'and' conditions states "
595 tmp
->name
, show_state(tmp_state
),
596 show_state(tmp
->state
));
597 tmp
->state
= merge_states(tmp
->name
, tmp
->owner
,
598 tmp
->sym
, tmp
->state
,
601 set_state_stack(slist_stack
, tmp
->name
, tmp
->owner
, tmp
->sym
,
603 } END_FOR_EACH_PTR(tmp
);
604 del_slist(&tmp_slist
);
608 * or_slist_stack() is for if we have: if (foo || bar) { foo->baz;
609 * It pops the two slists from the top of the stack and merges them
610 * together in a way that preserves the things they have in common
611 * but creates a merged state for most of the rest.
612 * You could have code that had: if (foo || foo) { foo->baz;
613 * It's this function which ensures smatch does the right thing.
615 void or_slist_stack(struct state_list_stack
**slist_stack
)
617 struct state_list
*one
;
618 struct state_list
*two
;
619 struct state_list
*res
= NULL
;
620 struct sm_state
*tmp
;
621 struct smatch_state
*s
;
623 one
= pop_slist(slist_stack
);
624 two
= pop_slist(slist_stack
);
626 FOR_EACH_PTR(one
, tmp
) {
627 s
= get_state_slist(two
, tmp
->name
, tmp
->owner
, tmp
->sym
);
628 s
= merge_states(tmp
->name
, tmp
->owner
, tmp
->sym
,
630 set_state_slist(&res
, tmp
->name
, tmp
->owner
, tmp
->sym
, s
);
631 } END_FOR_EACH_PTR(tmp
);
633 FOR_EACH_PTR(two
, tmp
) {
634 s
= get_state_slist(one
, tmp
->name
, tmp
->owner
, tmp
->sym
);
635 s
= merge_states(tmp
->name
, tmp
->owner
, tmp
->sym
,
637 set_state_slist(&res
, tmp
->name
, tmp
->owner
, tmp
->sym
, s
);
638 } END_FOR_EACH_PTR(tmp
);
640 push_slist(slist_stack
, res
);
647 * get_slist_from_named_stack() is only used for gotos.
649 struct state_list
**get_slist_from_named_stack(struct named_stack
*stack
,
652 struct named_slist
*tmp
;
654 FOR_EACH_PTR(stack
, tmp
) {
655 if (!strcmp(tmp
->name
, name
))
657 } END_FOR_EACH_PTR(tmp
);
661 void overwrite_slist(struct state_list
*from
, struct state_list
**to
)
663 struct sm_state
*tmp
;
665 FOR_EACH_PTR(from
, tmp
) {
666 overwrite_sm_state(to
, tmp
);
667 } END_FOR_EACH_PTR(tmp
);