SVF-doxygen/html/CHGBuilder_8cpp_source.html

//===----- CHGBuilder.cpp -- Class hierarchy graph builder ---------------------------//

//

//                     SVF: Static Value-Flow Analysis

//

// Copyright (C) <2013->  <Yulei Sui>

//


// This program is free software: you can redistribute it and/or modify

// it under the terms of the GNU Affero General Public License as published by

// the Free Software Foundation, either version 3 of the License, or

// (at your option) any later version.


// This program is distributed in the hope that it will be useful,

// but WITHOUT ANY WARRANTY; without even the implied warranty of

// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

// GNU Affero General Public License for more details.


// You should have received a copy of the GNU Affero General Public License

// along with this program.  If not, see <http://www.gnu.org/licenses/>.

//

//===----------------------------------------------------------------------===//


/*

 * CHGBuilder.cpp

 *

 *  Created on: Jun 4, 2021

 *      Author: Yulei Sui

 */


#include <set>

#include <vector>

#include <map>

#include <fstream>

#include <iostream>

#include <iomanip>   // setw() for formatting cout

#include <assert.h>

#include <stack>


#include "SVF-LLVM/CHGBuilder.h"

#include "Util/Options.h"

#include "SVF-LLVM/CppUtil.h"

#include "SVFIR/ObjTypeInfo.h"

#include "Util/SVFUtil.h"

#include "SVF-LLVM/LLVMUtil.h"

#include "Util/PTAStat.h"

#include "SVF-LLVM/LLVMModule.h"

#include "SVF-LLVM/ObjTypeInference.h"


using namespace SVF;

using namespace SVFUtil;

using namespace cppUtil;

using namespace LLVMUtil;

using namespace std;


const string pureVirtualFunName = "__cxa_pure_virtual";


const string ztiLabel = "_ZTI";


LLVMModuleSet* CHGBuilder::llvmModuleSet()

{

    return LLVMModuleSet::getLLVMModuleSet();

}


void CHGBuilder::buildCHG()

{


    double timeStart, timeEnd;

    timeStart = PTAStat::getClk(true);

    for (Module &M : llvmModuleSet()->getLLVMModules())

    {

        DBOUT(DGENERAL, outs() << SVFUtil::pasMsg("construct CHGraph From module "

                + M.getName().str() + "...\n"));

        readInheritanceMetadataFromModule(M);

        for (Module::const_global_iterator I = M.global_begin(), E = M.global_end(); I != E; ++I)

            buildCHGNodes(&(*I));

        for (Module::const_iterator F = M.begin(), E = M.end(); F != E; ++F)

            buildCHGNodes(&(*F));

        for (Module::const_iterator F = M.begin(), E = M.end(); F != E; ++F)

            buildCHGEdges(&(*F));


        analyzeVTables(M);

    }


    DBOUT(DGENERAL, outs() << SVFUtil::pasMsg("build Internal Maps ...\n"));

    buildInternalMaps();


    timeEnd = PTAStat::getClk(true);

    chg->buildingCHGTime = (timeEnd - timeStart) / TIMEINTERVAL;


    if (Options::DumpCHA())

        chg->dump("cha");

}


void CHGBuilder::buildCHGNodes(const GlobalValue *globalvalue)

{

    if (cppUtil::isValVtbl(globalvalue) && globalvalue->getNumOperands() > 0)

    {

        const ConstantStruct *vtblStruct = cppUtil::getVtblStruct(globalvalue);

        string className = getClassNameFromVtblObj(globalvalue->getName().str());

        if (!chg->getNode(className))

            createNode(className);


        for (unsigned int ei = 0; ei < vtblStruct->getNumOperands(); ++ei)

        {

            const ConstantArray *vtbl = SVFUtil::dyn_cast<ConstantArray>(vtblStruct->getOperand(ei));

            assert(vtbl && "Element of initializer not an array?");

            for (u32_t i = 0; i < vtbl->getNumOperands(); ++i)

            {

                if(const ConstantExpr *ce = isCastConstantExpr(vtbl->getOperand(i)))

                {

                    const Value* bitcastValue = ce->getOperand(0);

                    if (const  Function* func = SVFUtil::dyn_cast<Function>(bitcastValue))

                    {

                        struct DemangledName dname = demangle(func->getName().str());

                        if (!chg->getNode(dname.className))

                            createNode(dname.className);

                    }

                }

            }

        }

    }

}


void CHGBuilder::buildCHGNodes(const Function* F)

{

    if (isConstructor(F) || isDestructor(F))

    {

        struct DemangledName dname = demangle(F->getName().str());

        DBOUT(DCHA, outs() << "\t build CHANode for class " + dname.className + "...\n");

        if (!chg->getNode(dname.className))

            createNode(dname.className);

    }

}


void CHGBuilder::buildCHGEdges(const Function* F)

{

    if (isConstructor(F) || isDestructor(F))

    {

        for (Function::const_iterator B = F->begin(), E = F->end(); B != E; ++B)

        {

            for (BasicBlock::const_iterator I = B->begin(), E = B->end(); I != E; ++I)

            {

                if (LLVMUtil::isCallSite(&(*I)))

                {

                    connectInheritEdgeViaCall(F, SVFUtil::cast<CallBase>(&(*I)));

                }

                else if (const StoreInst *store = SVFUtil::dyn_cast<StoreInst>(&(*I)))

                {

                    connectInheritEdgeViaStore(F, store);

                }

            }

        }

    }

}


void CHGBuilder::buildInternalMaps()

{

    buildClassNameToAncestorsDescendantsMap();

    buildVirtualFunctionToIDMap();

    buildCSToCHAVtblsAndVfnsMap();

}


void CHGBuilder::connectInheritEdgeViaCall(const Function* caller, const CallBase* cs)

{

    if (getCallee(cs) == nullptr)

        return;


    const Function* callee = getCallee(cs);


    struct DemangledName dname = demangle(caller->getName().str());

    if ((isConstructor(caller) && isConstructor(callee)) || (isDestructor(caller) && isDestructor(callee)))

    {

        if (cs->arg_size() < 1 || (cs->arg_size() < 2 && cs->paramHasAttr(0, llvm::Attribute::StructRet)))

            return;

        const Value* csThisPtr = cppUtil::getVCallThisPtr(cs);

        //const Argument* consThisPtr = getConstructorThisPtr(caller);

        //bool samePtr = isSameThisPtrInConstructor(consThisPtr, csThisPtr);

        bool samePtrTrue = true;

        if (csThisPtr != nullptr && samePtrTrue)

        {

            struct DemangledName basename = demangle(callee->getName().str());

            if (!LLVMUtil::isCallSite(csThisPtr)  &&

                    basename.className.size() > 0)

            {

                chg->addEdge(dname.className, basename.className, CHEdge::INHERITANCE);

            }

        }

    }

}


void CHGBuilder::connectInheritEdgeViaStore(const Function* caller, const StoreInst* storeInst)

{

    struct DemangledName dname = demangle(caller->getName().str());

    if (const ConstantExpr *ce = SVFUtil::dyn_cast<ConstantExpr>(storeInst->getValueOperand()))

    {

        if (ce->getOpcode() == Instruction::BitCast)

        {

            const Value* bitcastval = ce->getOperand(0);

            if (const ConstantExpr *bcce = SVFUtil::dyn_cast<ConstantExpr>(bitcastval))

            {

                if (bcce->getOpcode() == Instruction::GetElementPtr)

                {

                    const Value* gepval = bcce->getOperand(0);

                    if (cppUtil::isValVtbl(gepval))

                    {

                        string vtblClassName = getClassNameFromVtblObj(gepval->getName().str());

                        if (vtblClassName.size() > 0 && dname.className.compare(vtblClassName) != 0)

                        {

                            chg->addEdge(dname.className, vtblClassName, CHEdge::INHERITANCE);

                        }

                    }

                }

            }

        }

    }

}


void CHGBuilder::readInheritanceMetadataFromModule(const Module &M)

{

    for (Module::const_named_metadata_iterator mdit = M.named_metadata_begin(),

            mdeit = M.named_metadata_end(); mdit != mdeit; ++mdit)

    {

        const NamedMDNode *md = &*mdit;

        string mdname = md->getName().str();

        if (mdname.compare(0, 15, "__cxx_bases_of_") != 0)

            continue;

        string className = mdname.substr(15);

        for (NamedMDNode::const_op_iterator opit = md->op_begin(),

                opeit = md->op_end(); opit != opeit; ++opit)

        {

            const MDNode *N = *opit;

            const MDString* mdstr = SVFUtil::cast<MDString>(N->getOperand(0).get());

            string baseName = mdstr->getString().str();

            chg->addEdge(className, baseName, CHEdge::INHERITANCE);

        }

    }

}


CHNode *CHGBuilder::createNode(const std::string& className)

{

    assert(!chg->getNode(className) && "this node should never be created before!");

    CHNode * node = new CHNode(className, chg->classNum++);

    chg->classNameToNodeMap[className] = node;

    chg->addGNode(node->getId(), node);

    if (className.size() > 0 && className[className.size() - 1] == '>')

    {

        string templateName = getBeforeBrackets(className);

        CHNode* templateNode = chg->getNode(templateName);

        if (!templateNode)

        {

            DBOUT(DCHA, outs() << "\t Create Template CHANode " + templateName + " for class " + className + "...\n");

            templateNode = createNode(templateName);

            templateNode->setTemplate();

        }

        chg->addEdge(className, templateName, CHEdge::INSTANTCE);

        chg->addInstances(templateName,node);

    }

    return node;

}


/*

 * build the following two maps:

 * classNameToDescendantsMap

 * chg->classNameToAncestorsMap

 */


void CHGBuilder::buildClassNameToAncestorsDescendantsMap()

{


    for (CHGraph::const_iterator it = chg->begin(), eit = chg->end();

            it != eit; ++it)

    {

        const CHNode *node = it->second;

        WorkList worklist;

        CHNodeSetTy visitedNodes;

        worklist.push(node);

        while (!worklist.empty())

        {

            const CHNode *curnode = worklist.pop();

            if (visitedNodes.find(curnode) == visitedNodes.end())

            {

                for (CHEdge::CHEdgeSetTy::const_iterator it =

                            curnode->getOutEdges().begin(), eit =

                            curnode->getOutEdges().end(); it != eit; ++it)

                {

                    if ((*it)->getEdgeType() == CHEdge::INHERITANCE)

                    {

                        CHNode *succnode = (*it)->getDstNode();

                        chg->classNameToAncestorsMap[node->getName()].insert(succnode);

                        chg->classNameToDescendantsMap[succnode->getName()].insert(node);

                        worklist.push(succnode);

                    }

                }

                visitedNodes.insert(curnode);

            }

        }

    }

}


const CHGraph::CHNodeSetTy& CHGBuilder::getInstancesAndDescendants(

    const string& className)

{


    CHGraph::NameToCHNodesMap::const_iterator it = chg->classNameToInstAndDescsMap.find(className);

    if (it != chg->classNameToInstAndDescsMap.end())

    {

        return it->second;

    }

    else

    {

        chg->classNameToInstAndDescsMap[className] = chg->getDescendants(className);

        if (chg->getNode(className)->isTemplate())

        {

            const CHNodeSetTy& instances = chg->getInstances(className);

            for (CHNodeSetTy::const_iterator it = instances.begin(), eit = instances.end(); it != eit; ++it)

            {

                const CHNode *node = *it;

                chg->classNameToInstAndDescsMap[className].insert(node);

                const CHNodeSetTy& instance_descendants = chg->getDescendants(node->getName());

                for (CHNodeSetTy::const_iterator dit =

                            instance_descendants.begin(), deit =

                            instance_descendants.end(); dit != deit; ++dit)

                {

                    chg->classNameToInstAndDescsMap[className].insert(*dit);

                }

            }

        }

        return chg->classNameToInstAndDescsMap[className];

    }

}


/*

 * do the following things:

 * 1. initialize virtualFunctions for each class

 * 2. mark multi-inheritance classes

 * 3. mark pure abstract classes

 *

 * Layout of VTables:

 *

 * 1. single inheritance

 * class A {...};

 * class B: public A {...};

 * B's vtable: {i8 *null, _ZTI1B, ...}

 *

 * 2. normal multiple inheritance

 * class A {...};

 * class B {...};

 * class C: public A, public B {...};

 * C's vtable: {i8 *null, _ZTI1C, ..., inttoptr xxx, _ZTI1C, ...}

 * "inttoptr xxx" servers as a delimiter for dividing virtual methods inherited

 * from "class A" and "class B"

 *

 * 3. virtual diamond inheritance

 * class A {...};

 * class B: public virtual A {...};

 * class C: public virtual A {...};

 * class D: public B, public C {...};

 * D's vtable: {i8 *null, _ZTI1C, ..., inttoptr xxx, _ZTI1C, i8 *null, ...}

 * there will several "i8 *null" following "inttoptr xxx, _ZTI1C,", and the

 * number of "i8 *null" is the same as the number of virtual methods in

 * "class A"

 */


void CHGBuilder::analyzeVTables(const Module &M)

{

    for (Module::const_global_iterator I = M.global_begin(),

            E = M.global_end(); I != E; ++I)

    {

        const GlobalValue *globalvalue = SVFUtil::dyn_cast<const GlobalValue>(&(*I));

        if (cppUtil::isValVtbl(globalvalue) && globalvalue->getNumOperands() > 0)

        {

            const ConstantStruct *vtblStruct = cppUtil::getVtblStruct(globalvalue);


            string vtblClassName = getClassNameFromVtblObj(globalvalue->getName().str());

            CHNode *node = chg->getNode(vtblClassName);

            assert(node && "node not found?");

            NodeID i = llvmModuleSet()->getObjectNode(globalvalue);

            SVFVar* pVar = PAG::getPAG()->getGNode(i);

            GlobalObjVar* globalObjVar = SVFUtil::cast<GlobalObjVar>(pVar);

            globalObjVar->setName(vtblClassName);

            node->setVTable(globalObjVar);


            for (unsigned int ei = 0; ei < vtblStruct->getNumOperands(); ++ei)

            {

                const ConstantArray *vtbl =

                    SVFUtil::dyn_cast<ConstantArray>(vtblStruct->getOperand(ei));

                assert(vtbl && "Element of initializer not an array?");


                /*

                 * items in vtables can be classified into 3 categories:

                 * 1. i8* null

                 * 2. i8* inttoptr xxx

                 * 3. i8* bitcast xxx

                 */

                bool pure_abstract = true;

                u32_t i = 0;

                while (i < vtbl->getNumOperands())

                {

                    CHNode::FuncVector virtualFunctions;

                    bool is_virtual = false; // virtual inheritance

                    int null_ptr_num = 0;

                    for (; i < vtbl->getNumOperands(); ++i)

                    {

                        Constant* operand = vtbl->getOperand(i);

                        if (SVFUtil::isa<ConstantPointerNull>(operand))

                        {

                            if (i > 0 && !SVFUtil::isa<ConstantPointerNull>(vtbl->getOperand(i-1)))

                            {

                                auto foo = [&is_virtual, &null_ptr_num, &vtbl, &i](const Value* val)

                                {

                                    if (val->getName().str().compare(0, ztiLabel.size(), ztiLabel) == 0)

                                    {

                                        is_virtual = true;

                                        null_ptr_num = 1;

                                        while (i+null_ptr_num < vtbl->getNumOperands())

                                        {

                                            if (SVFUtil::isa<ConstantPointerNull>(vtbl->getOperand(i+null_ptr_num)))

                                                null_ptr_num++;

                                            else

                                                break;

                                        }

                                    }

                                };

                                if (const ConstantExpr *ce =

                                            SVFUtil::dyn_cast<ConstantExpr>(vtbl->getOperand(i-1)))

                                {

                                    if(ce->getOpcode() == Instruction::BitCast)

                                        foo(ce->getOperand(0));

                                }

                                else

                                {

                                    // opaque pointer mode

                                    foo(vtbl->getOperand(i - 1));

                                }

                            }

                            continue;

                        }


                        auto foo = [this, &virtualFunctions, &pure_abstract, &vtblClassName](const Value* operand)

                        {

                            if (const Function* f = SVFUtil::dyn_cast<Function>(operand))

                            {

                                addFuncToFuncVector(virtualFunctions, f);

                                if (f->getName().str().compare(pureVirtualFunName) == 0)

                                {

                                    pure_abstract &= true;

                                }

                                else

                                {

                                    pure_abstract &= false;

                                }

                                struct DemangledName dname = demangle(f->getName().str());

                                if (dname.className.size() > 0 &&

                                        vtblClassName.compare(dname.className) != 0)

                                {

                                    if(!chg->getNode(dname.className)) createNode(dname.className);

                                    chg->addEdge(vtblClassName, dname.className, CHEdge::INHERITANCE);

                                }

                            }

                            else

                            {

                                if (const GlobalAlias *alias =

                                            SVFUtil::dyn_cast<GlobalAlias>(operand))

                                {

                                    const Constant *aliasValue = alias->getAliasee();

                                    if (const Function* aliasFunc =

                                                SVFUtil::dyn_cast<Function>(aliasValue))

                                    {

                                        addFuncToFuncVector(virtualFunctions, aliasFunc);

                                    }

                                    else if (const ConstantExpr *aliasconst =

                                                 SVFUtil::dyn_cast<ConstantExpr>(aliasValue))

                                    {

                                        (void)aliasconst; // Suppress warning of unused variable under release build

                                        assert(aliasconst->getOpcode() == Instruction::BitCast &&

                                               "aliased constantexpr in vtable not a bitcast");

                                        const Function* aliasbitcastfunc =

                                            SVFUtil::dyn_cast<Function>(aliasconst->getOperand(0));

                                        assert(aliasbitcastfunc &&

                                               "aliased bitcast in vtable not a function");

                                        addFuncToFuncVector(virtualFunctions, aliasbitcastfunc);

                                    }

                                    else

                                    {

                                        assert(false && "alias not function or bitcast");

                                    }


                                    pure_abstract &= false;

                                }

                                else if (operand->getName().str().compare(0, ztiLabel.size(),

                                         ztiLabel) == 0)

                                {

                                }

                                else

                                {

                                    assert("what else can be in bitcast of a vtable?");

                                }

                            }

                        };


                        if (const ConstantExpr *ce =

                                    SVFUtil::dyn_cast<ConstantExpr>(operand))

                        {

                            u32_t opcode = ce->getOpcode();

                            assert(opcode == Instruction::IntToPtr);

                            assert(ce->getNumOperands() == 1 &&

                                   "inttptr operand num not 1");

                            if (opcode == Instruction::IntToPtr)

                            {

                                node->setMultiInheritance();

                                ++i;

                                break;

                            }

                        }

                        else

                        {

                            foo(operand);

                        }

                    }

                    if (is_virtual && virtualFunctions.size() > 0)

                    {

                        for (int i = 0; i < null_ptr_num; ++i)

                        {

                            const FunObjVar* fun = virtualFunctions[i];

                            virtualFunctions.insert(virtualFunctions.begin(), fun);

                        }

                    }

                    if (virtualFunctions.size() > 0)

                        node->addVirtualFunctionVector(virtualFunctions);

                }

                if (pure_abstract == true)

                {

                    node->setPureAbstract();

                }

            }

        }

    }

}


void CHGBuilder::buildVirtualFunctionToIDMap()

{

    /*

     * 1. Divide classes into groups

     * 2. Get all virtual functions in a group

     * 3. Assign consecutive IDs to virtual functions that have

     * the same name (after demangling) in a group

     */

    CHGraph::CHNodeSetTy visitedNodes;

    for (CHGraph::const_iterator nit = chg->begin(),

            neit = chg->end(); nit != neit; ++nit)

    {

        CHNode *node = nit->second;

        if (visitedNodes.find(node) != visitedNodes.end())

            continue;


        string className = node->getName();


        /*

         * get all the classes in a specific group

         */

        CHGraph::CHNodeSetTy group;

        stack<const CHNode*> nodeStack;

        nodeStack.push(node);

        while (!nodeStack.empty())

        {

            const CHNode *curnode = nodeStack.top();

            nodeStack.pop();

            group.insert(curnode);

            if (visitedNodes.find(curnode) != visitedNodes.end())

                continue;

            for (CHEdge::CHEdgeSetTy::const_iterator it = curnode->getOutEdges().begin(),

                    eit = curnode->getOutEdges().end(); it != eit; ++it)

            {

                CHNode *tmpnode = (*it)->getDstNode();

                nodeStack.push(tmpnode);

                group.insert(tmpnode);

            }

            for (CHEdge::CHEdgeSetTy::const_iterator it = curnode->getInEdges().begin(),

                    eit = curnode->getInEdges().end(); it != eit; ++it)

            {

                CHNode *tmpnode = (*it)->getSrcNode();

                nodeStack.push(tmpnode);

                group.insert(tmpnode);

            }

            visitedNodes.insert(curnode);

        }


        /*

         * get all virtual functions in a specific group

         */

        set<const FunObjVar*> virtualFunctions;

        for (CHGraph::CHNodeSetTy::iterator it = group.begin(),

                eit = group.end(); it != eit; ++it)

        {

            const vector<CHNode::FuncVector> &vecs = (*it)->getVirtualFunctionVectors();

            for (vector<CHNode::FuncVector>::const_iterator vit = vecs.begin(),

                    veit = vecs.end(); vit != veit; ++vit)

            {

                for (vector<const FunObjVar*>::const_iterator fit = (*vit).begin(),

                        feit = (*vit).end(); fit != feit; ++fit)

                {

                    virtualFunctions.insert(*fit);

                }

            }

        }


        /*

         * build a set of pairs of demangled function name and function in a

         * specific group, items in the set will be sort by the first item of the

         * pair, so all the virtual functions in a group will be sorted by the

         * demangled function name

         * <f, A::f>

         * <f, B::f>

         * <g, A::g>

         * <g, B::g>

         * <g, C::g>

         * <~A, A::~A>

         * <~B, B::~B>

         * <~C, C::~C>

         * ...

         */

        set<pair<string, const FunObjVar*> > fNameSet;

        for (set<const FunObjVar*>::iterator fit = virtualFunctions.begin(),

                feit = virtualFunctions.end(); fit != feit; ++fit)

        {

            const FunObjVar* f = *fit;

            struct DemangledName dname = demangle(f->getName());

            fNameSet.insert(pair<string, const FunObjVar*>(dname.funcName, f));

        }

        for (set<pair<string, const FunObjVar*>>::iterator it = fNameSet.begin(),

                eit = fNameSet.end(); it != eit; ++it)

        {

            chg->virtualFunctionToIDMap[it->second] = chg->vfID++;

        }

    }

}


void CHGBuilder::buildCSToCHAVtblsAndVfnsMap()

{


    for (Module &M : llvmModuleSet()->getLLVMModules())

    {

        for (Module::const_iterator F = M.begin(), E = M.end(); F != E; ++F)

        {

            for (const_inst_iterator II = inst_begin(*F), E = inst_end(*F); II != E; ++II)

            {

                if(const CallBase* callInst = SVFUtil::dyn_cast<CallBase>(&*II))

                {

                    if (cppUtil::isVirtualCallSite(callInst) == false)

                        continue;


                    VTableSet vtbls;

                    const CHNodeSetTy& chClasses = getCSClasses(callInst);

                    for (CHNodeSetTy::const_iterator it = chClasses.begin(), eit = chClasses.end(); it != eit; ++it)

                    {

                        const CHNode *child = *it;

                        const GlobalObjVar *vtbl = child->getVTable();

                        if (vtbl != nullptr)

                        {

                            vtbls.insert(vtbl);

                        }

                    }

                    if (vtbls.size() > 0)

                    {

                        ICFGNode* icfgNode =

                            llvmModuleSet()->getICFGNode(callInst);

                        chg->callNodeToCHAVtblsMap[icfgNode] = vtbls;

                        VFunSet virtualFunctions;

                        chg->getVFnsFromVtbls(SVFUtil::cast<CallICFGNode>(icfgNode), vtbls, virtualFunctions);

                        if (virtualFunctions.size() > 0)

                            chg->callNodeToCHAVFnsMap[icfgNode] = virtualFunctions;

                    }

                }

            }

        }

    }

}


const CHGraph::CHNodeSetTy& CHGBuilder::getCSClasses(const CallBase* cs)

{

    assert(cppUtil::isVirtualCallSite(cs) && "not virtual callsite!");


    ICFGNode* icfgNode = llvmModuleSet()->getICFGNode(cs);


    CHGraph::CallNodeToCHNodesMap::const_iterator it = chg->callNodeToClassesMap.find(icfgNode);

    if (it != chg->callNodeToClassesMap.end())

    {

        return it->second;

    }

    else

    {

        Set<string> thisPtrClassNames = getClassNameOfThisPtr(cs);


        if(thisPtrClassNames.empty())

        {

            // if we cannot infer classname, conservatively push all class nodes

            for (const auto &node: *chg)

            {

                chg->callNodeToClassesMap[icfgNode].insert(node.second);

            }

            return chg->callNodeToClassesMap[icfgNode];

        }


        for (const auto &thisPtrClassName: thisPtrClassNames)

        {

            if (const CHNode* thisNode = chg->getNode(thisPtrClassName))

            {

                const CHGraph::CHNodeSetTy& instAndDesces = getInstancesAndDescendants(thisPtrClassName);

                chg->callNodeToClassesMap[icfgNode].insert(thisNode);

                for (CHGraph::CHNodeSetTy::const_iterator it2 = instAndDesces.begin(), eit = instAndDesces.end(); it2 != eit; ++it2)

                    chg->callNodeToClassesMap[icfgNode].insert(*it2);

            }

        }

        return chg->callNodeToClassesMap[icfgNode];

    }

}


void CHGBuilder::addFuncToFuncVector(CHNode::FuncVector &v, const Function *lf)

{

    if (cppUtil::isCPPThunkFunction(lf))

    {

        if (const auto* tf = cppUtil::getThunkTarget(lf))

        {

            const FunObjVar* pFunction =

                llvmModuleSet()->getFunObjVar(tf);

            v.push_back(pFunction);

        }

    }

    else

    {

        const FunObjVar* pFunction =

            llvmModuleSet()->getFunObjVar(lf);

        v.push_back(pFunction);

    }

}


ztiLabel
const string ztiLabel
Definition CHGBuilder.cpp:57

pureVirtualFunName
const string pureVirtualFunName
Definition CHGBuilder.cpp:55

CHGBuilder.h

CppUtil.h

LLVMModule.h

LLVMUtil.h

ObjTypeInference.h

ObjTypeInfo.h

Options.h

PTAStat.h

DBOUT
#define DBOUT(TYPE, X)
LLVM debug macros, define type of your DBUG model of each pass.
Definition SVFType.h:498

TIMEINTERVAL
#define TIMEINTERVAL
Definition SVFType.h:526

DCHA
#define DCHA
Definition SVFType.h:520

DGENERAL
#define DGENERAL
Definition SVFType.h:504

SVFUtil.h

set
set(THREADS_PREFER_PTHREAD_FLAG ON) find_package(Threads REQUIRED) add_llvm_executable(wpa wpa.cpp) target_link_libraries(wpa PUBLIC $
Definition CMakeLists.txt:1

child
cJSON * child
Definition cJSON.cpp:2723

SVF::CHEdge::INHERITANCE
@ INHERITANCE
Definition CHG.h:86

SVF::CHEdge::INSTANTCE
@ INSTANTCE
Definition CHG.h:87

SVF::CHGBuilder::analyzeVTables
void analyzeVTables(const Module &M)
Definition CHGBuilder.cpp:366

SVF::CHGBuilder::connectInheritEdgeViaStore
void connectInheritEdgeViaStore(const Function *caller, const StoreInst *store)
Definition CHGBuilder.cpp:192

SVF::CHGBuilder::llvmModuleSet
LLVMModuleSet * llvmModuleSet()
Definition CHGBuilder.cpp:59

SVF::CHGBuilder::readInheritanceMetadataFromModule
void readInheritanceMetadataFromModule(const Module &M)
Definition CHGBuilder.cpp:219

SVF::CHGBuilder::buildCHGNodes
void buildCHGNodes(const GlobalValue *V)
Definition CHGBuilder.cpp:94

SVF::CHGBuilder::getInstancesAndDescendants
const CHGraph::CHNodeSetTy & getInstancesAndDescendants(const std::string &className)
Definition CHGBuilder.cpp:300

SVF::CHGBuilder::WorkList
CHGraph::WorkList WorkList
Definition CHGBuilder.h:46

SVF::CHGBuilder::addFuncToFuncVector
void addFuncToFuncVector(CHNode::FuncVector &v, const Function *f)
Definition CHGBuilder.cpp:738

SVF::CHGBuilder::buildCHGEdges
void buildCHGEdges(const Function *F)
Definition CHGBuilder.cpp:135

SVF::CHGBuilder::buildCHG
void buildCHG()
Definition CHGBuilder.cpp:64

SVF::CHGBuilder::buildVirtualFunctionToIDMap
void buildVirtualFunctionToIDMap()
Definition CHGBuilder.cpp:558

SVF::CHGBuilder::chg
CHGraph * chg
Definition CHGBuilder.h:42

SVF::CHGBuilder::buildCSToCHAVtblsAndVfnsMap
void buildCSToCHAVtblsAndVfnsMap()
Definition CHGBuilder.cpp:657

SVF::CHGBuilder::buildInternalMaps
void buildInternalMaps()
Definition CHGBuilder.cpp:157

SVF::CHGBuilder::CHNodeSetTy
CHGraph::CHNodeSetTy CHNodeSetTy
Definition CHGBuilder.h:45

SVF::CHGBuilder::getCSClasses
const CHNodeSetTy & getCSClasses(const CallBase *cs)
Definition CHGBuilder.cpp:699

SVF::CHGBuilder::createNode
CHNode * createNode(const std::string &name)
Definition CHGBuilder.cpp:240

SVF::CHGBuilder::connectInheritEdgeViaCall
void connectInheritEdgeViaCall(const Function *caller, const CallBase *cs)
Definition CHGBuilder.cpp:164

SVF::CHGBuilder::buildClassNameToAncestorsDescendantsMap
void buildClassNameToAncestorsDescendantsMap()
Definition CHGBuilder.cpp:267

SVF::CHGraph::classNameToAncestorsMap
NameToCHNodesMap classNameToAncestorsMap
Definition CHG.h:325

SVF::CHGraph::callNodeToClassesMap
CallNodeToCHNodesMap callNodeToClassesMap
Definition CHG.h:328

SVF::CHGraph::callNodeToCHAVFnsMap
CallNodeToVFunSetMap callNodeToCHAVFnsMap
Definition CHG.h:333

SVF::CHGraph::dump
void dump(const std::string &filename)
Definition CHG.cpp:242

SVF::CHGraph::getInstances
const CHNodeSetTy & getInstances(const std::string className)
Definition CHG.h:303

SVF::CHGraph::addEdge
void addEdge(const std::string className, const std::string baseClassName, CHEdge::CHEDGETYPE edgeType)
Definition CHG.cpp:97

SVF::CHGraph::virtualFunctionToIDMap
Map< const FunObjVar *, u32_t > virtualFunctionToIDMap
Definition CHG.h:330

SVF::CHGraph::addInstances
void addInstances(const std::string templateName, CHNode *node)
Definition CHG.h:290

SVF::CHGraph::getVFnsFromVtbls
void getVFnsFromVtbls(const CallICFGNode *cs, const VTableSet &vtbls, VFunSet &virtualFunctions) override
Definition CHG.cpp:124

SVF::CHGraph::getNode
CHNode * getNode(const std::string name) const
Definition CHG.cpp:112

SVF::CHGraph::classNameToInstAndDescsMap
NameToCHNodesMap classNameToInstAndDescsMap
Definition CHG.h:326

SVF::CHGraph::vfID
u32_t vfID
Definition CHG.h:321

SVF::CHGraph::buildingCHGTime
double buildingCHGTime
Definition CHG.h:322

SVF::CHGraph::classNameToDescendantsMap
NameToCHNodesMap classNameToDescendantsMap
Definition CHG.h:324

SVF::CHGraph::CHNodeSetTy
Set< const CHNode * > CHNodeSetTy
Definition CHG.h:240

SVF::CHGraph::classNum
u32_t classNum
Definition CHG.h:320

SVF::CHGraph::classNameToNodeMap
Map< std::string, CHNode * > classNameToNodeMap
Definition CHG.h:323

SVF::CHGraph::callNodeToCHAVtblsMap
CallNodeToVTableSetMap callNodeToCHAVtblsMap
Definition CHG.h:332

SVF::CHGraph::getDescendants
const CHNodeSetTy & getDescendants(const std::string className)
Definition CHG.h:299

SVF::CHNode
Definition CHG.h:109

SVF::CHNode::getName
virtual const std::string & getName() const
Definition CHG.h:130

SVF::CHNode::setVTable
void setVTable(const GlobalObjVar *vtbl)
Definition CHG.h:189

SVF::CHNode::setMultiInheritance
void setMultiInheritance()
Definition CHG.h:152

SVF::CHNode::addVirtualFunctionVector
void addVirtualFunctionVector(FuncVector vfuncvec)
Definition CHG.h:174

SVF::CHNode::getVirtualFunctionVectors
const std::vector< FuncVector > & getVirtualFunctionVectors() const
Definition CHG.h:178

SVF::CHNode::setPureAbstract
void setPureAbstract()
Attribute.
Definition CHG.h:148

SVF::CHNode::FuncVector
std::vector< const FunObjVar * > FuncVector
Definition CHG.h:121

SVF::CHNode::isTemplate
bool isTemplate() const
Definition CHG.h:168

SVF::FunObjVar
Definition SVFVariables.h:954

SVF::GenericGraph::addGNode
void addGNode(NodeID id, NodeType *node)
Add a Node.
Definition GenericGraph.h:396

SVF::GenericGraph::begin
iterator begin()
Iterators.
Definition GenericGraph.h:377

SVF::GenericGraph::end
iterator end()
Definition GenericGraph.h:381

SVF::GenericGraph::const_iterator
IDToNodeMapTy::const_iterator const_iterator
Definition GenericGraph.h:357

SVF::GenericGraph::getGNode
NodeType * getGNode(NodeID id) const
Get a node.
Definition GenericGraph.h:403

SVF::GlobalObjVar
Definition SVFVariables.h:1635

SVF::ICFGNode
Definition ICFGNode.h:55

SVF::LLVMModuleSet
Definition LLVMModule.h:43

SVF::LLVMModuleSet::getFunObjVar
const FunObjVar * getFunObjVar(const Function *fun) const
Definition LLVMModule.h:260

SVF::LLVMModuleSet::getLLVMModuleSet
static LLVMModuleSet * getLLVMModuleSet()
Definition LLVMModule.h:129

SVF::LLVMModuleSet::getICFGNode
ICFGNode * getICFGNode(const Instruction *inst)
Get a basic block ICFGNode.
Definition LLVMModule.cpp:1118

SVF::LLVMModuleSet::getObjectNode
NodeID getObjectNode(const Value *V)
Definition LLVMModule.cpp:1007

SVF::LLVMModuleSet::getLLVMModules
const std::vector< std::reference_wrapper< Module > > & getLLVMModules() const
Definition LLVMModule.h:155

SVF::Options::DumpCHA
static const Option< bool > DumpCHA
Definition Options.h:176

SVF::SVFIR::getPAG
static SVFIR * getPAG(bool buildFromFile=false)
Singleton design here to make sure we only have one instance during any analysis.
Definition SVFIR.h:116

SVF::SVFStat::getClk
static double getClk(bool mark=false)
Definition SVFStat.cpp:48

SVF::SVFValue::getId
NodeID getId() const
Get ID.
Definition SVFValue.h:158

SVF::SVFVar
Definition SVFVariables.h:47

SVF::LLVMUtil::isCallSite
bool isCallSite(const Instruction *inst)
Whether an instruction is a call or invoke instruction.
Definition LLVMUtil.h:44

SVF::LLVMUtil::isCastConstantExpr
const ConstantExpr * isCastConstantExpr(const Value *val)
Definition LLVMUtil.h:245

SVF::LLVMUtil::getCallee
const Function * getCallee(const CallBase *cs)
Definition LLVMUtil.h:97

SVF::SVFUtil::pasMsg
std::string pasMsg(const std::string &msg)
Print each pass/phase message by converting a string into blue string output.
Definition SVFUtil.cpp:101

SVF::SVFUtil::outs
std::ostream & outs()
Overwrite llvm::outs()
Definition SVFUtil.h:52

SVF::cppUtil::getBeforeBrackets
std::string getBeforeBrackets(const std::string &name)
Definition CppUtil.cpp:127

SVF::cppUtil::getVCallThisPtr
const Value * getVCallThisPtr(const CallBase *cs)
Definition CppUtil.cpp:411

SVF::cppUtil::demangle
struct DemangledName demangle(const std::string &name)
Definition CppUtil.cpp:195

SVF::cppUtil::getClassNameOfThisPtr
Set< std::string > getClassNameOfThisPtr(const CallBase *cs)
Definition CppUtil.cpp:601

SVF::cppUtil::isCPPThunkFunction
bool isCPPThunkFunction(const Function *F)
Definition CppUtil.cpp:383

SVF::cppUtil::isVirtualCallSite
bool isVirtualCallSite(const CallBase *cs)
Definition CppUtil.cpp:352

SVF::cppUtil::getThunkTarget
const Function * getThunkTarget(const Function *F)
Definition CppUtil.cpp:389

SVF::cppUtil::getVtblStruct
const ConstantStruct * getVtblStruct(const GlobalValue *vtbl)
Definition CppUtil.cpp:323

SVF::cppUtil::isConstructor
bool isConstructor(const Function *F)
Definition CppUtil.cpp:489

SVF::cppUtil::getClassNameFromVtblObj
std::string getClassNameFromVtblObj(const std::string &vtblName)
Definition CppUtil.cpp:304

SVF::cppUtil::isValVtbl
bool isValVtbl(const Value *val)
Definition CppUtil.cpp:336

SVF::cppUtil::isDestructor
bool isDestructor(const Function *F)
Definition CppUtil.cpp:509

SVF
for isBitcode
Definition BasicTypes.h:68

SVF::const_inst_iterator
llvm::const_inst_iterator const_inst_iterator
Definition BasicTypes.h:250

SVF::GlobalAlias
llvm::GlobalAlias GlobalAlias
Definition BasicTypes.h:128

SVF::CallBase
llvm::CallBase CallBase
Definition BasicTypes.h:146

SVF::MDString
llvm::MDString MDString
Definition BasicTypes.h:101

SVF::ConstantStruct
llvm::ConstantStruct ConstantStruct
Definition BasicTypes.h:106

SVF::NamedMDNode
llvm::NamedMDNode NamedMDNode
LLVM metadata and debug information.
Definition BasicTypes.h:111

SVF::NodeID
u32_t NodeID
Definition GeneralType.h:56

SVF::VTableSet
Set< const GlobalObjVar * > VTableSet
Definition CHG.h:46

SVF::ConstantArray
llvm::ConstantArray ConstantArray
Definition BasicTypes.h:123

SVF::Function
llvm::Function Function
Definition BasicTypes.h:85

SVF::GlobalValue
llvm::GlobalValue GlobalValue
Definition BasicTypes.h:88

SVF::Constant
llvm::Constant Constant
Definition BasicTypes.h:124

SVF::Value
llvm::Value Value
LLVM Basic classes.
Definition BasicTypes.h:82

SVF::ConstantExpr
llvm::ConstantExpr ConstantExpr
Definition BasicTypes.h:120

SVF::IRBuilder
llvm::IRBuilder IRBuilder
Definition BasicTypes.h:74

SVF::Module
llvm::Module Module
Definition BasicTypes.h:84

SVF::StoreInst
llvm::StoreInst StoreInst
Definition BasicTypes.h:148

SVF::MDNode
llvm::MDNode MDNode
Definition BasicTypes.h:112

SVF::u32_t
unsigned u32_t
Definition GeneralType.h:47

SVF::VFunSet
Set< const FunObjVar * > VFunSet
Definition CHG.h:47

SVF::cppUtil::DemangledName
Definition CppUtil.h:48