shylie/llvm-project
1
0
Fork 0
Code Issues Pull Requests Actions 6 Packages Projects Releases Wiki Activity
llvm-project/clang/lib/StaticAnalyzer/Checkers/AssumeModeling.cpp
Balazs Benics 0a1eff2ece
[analyzer] Drop assertion enforcing that assume args are known constants (#151908) 
We sometimes don't know if the operand of [[assume]] is true/false, and
that's okay. We can just ignore the attribute in that case.

If we wanted something more fancy, we could bring the assumption to the
constraints, but dropping them should be just as fine for now.

Fixes #151854
2025-08-05 17:03:53 +02:00

86 lines
2.7 KiB
C++
Raw Permalink Blame History

//=== AssumeModeling.cpp --------------------------------------------------===//
//
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
//
//===----------------------------------------------------------------------===//
//
// This checker evaluates the builting assume functions.
// This checker also sinks execution paths leaving [[assume]] attributes with
// false assumptions.
//
//===----------------------------------------------------------------------===//
#include "clang/AST/AttrIterator.h"
#include "clang/Basic/Builtins.h"
#include "clang/StaticAnalyzer/Checkers/BuiltinCheckerRegistration.h"
#include "clang/StaticAnalyzer/Core/Checker.h"
#include "clang/StaticAnalyzer/Core/PathSensitive/CallEvent.h"
#include "clang/StaticAnalyzer/Core/PathSensitive/CheckerContext.h"
#include "llvm/ADT/STLExtras.h"
using namespace clang;
using namespace ento;
namespace {
class AssumeModelingChecker
: public Checker<eval::Call, check::PostStmt<AttributedStmt>> {
public:
void checkPostStmt(const AttributedStmt *A, CheckerContext &C) const;
bool evalCall(const CallEvent &Call, CheckerContext &C) const;
};
} // namespace
void AssumeModelingChecker::checkPostStmt(const AttributedStmt *A,
CheckerContext &C) const {
if (!hasSpecificAttr<CXXAssumeAttr>(A->getAttrs()))
return;
for (const auto *Attr : getSpecificAttrs<CXXAssumeAttr>(A->getAttrs())) {
SVal AssumptionVal = C.getSVal(Attr->getAssumption());
// The assumption is not evaluated at all if it had sideffects; skip them.
if (AssumptionVal.isUnknown())
continue;
const auto *Assumption = AssumptionVal.getAsInteger();
if (Assumption && Assumption->isZero()) {
C.addSink();
}
}
}
bool AssumeModelingChecker::evalCall(const CallEvent &Call,
CheckerContext &C) const {
ProgramStateRef State = C.getState();
const auto *FD = dyn_cast_or_null<FunctionDecl>(Call.getDecl());
if (!FD)
return false;
if (!llvm::is_contained({Builtin::BI__builtin_assume, Builtin::BI__assume},
FD->getBuiltinID())) {
return false;
}
assert(Call.getNumArgs() > 0);
SVal Arg = Call.getArgSVal(0);
if (Arg.isUndef())
return true; // Return true to model purity.
State = State->assume(Arg.castAs<DefinedOrUnknownSVal>(), true);
if (!State) {
C.addSink();
return true;
}
C.addTransition(State);
return true;
}
void ento::registerAssumeModeling(CheckerManager &Mgr) {
Mgr.registerChecker<AssumeModelingChecker>();
}
bool ento::shouldRegisterAssumeModeling(const CheckerManager &) { return true; }
Reference in New Issue View Git Blame Copy Permalink