SVF-doxygen/html/ICFGBuilder_8cpp_source.html

//===- ICFGBuilder.cpp ----------------------------------------------------------------//

//

//                     SVF: Static Value-Flow Analysis

//

// Copyright (C) <2013->  <Yulei Sui>

//


// This program is free software: you can redistribute it and/or modify

// it under the terms of the GNU Affero General Public License as published by

// the Free Software Foundation, either version 3 of the License, or

// (at your option) any later version.


// This program is distributed in the hope that it will be useful,

// but WITHOUT ANY WARRANTY; without even the implied warranty of

// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

// GNU Affero General Public License for more details.


// You should have received a copy of the GNU Affero General Public License

// along with this program.  If not, see <http://www.gnu.org/licenses/>.

//

//===----------------------------------------------------------------------===//


/*

 * ICFGBuilder.cpp

 *

 *  Created on:

 *      Author: yulei

 */


#include "SVF-LLVM/ICFGBuilder.h"

#include "SVF-LLVM/CppUtil.h"

#include "SVF-LLVM/LLVMModule.h"

#include "SVF-LLVM/LLVMUtil.h"


using namespace SVF;

using namespace SVFUtil;


ICFG* ICFGBuilder::build()

{

    icfg = new ICFG();

    DBOUT(DGENERAL, outs() << pasMsg("\t Building ICFG ...\n"));

    // Add the unique global ICFGNode at the entry of a program (before the main method).

    addGlobalICFGNode();


    // Add function entry and exit

    for (Module &M : llvmModuleSet()->getLLVMModules())

    {

        for (Module::const_iterator F = M.begin(), E = M.end(); F != E; ++F)

        {

            const Function *fun = &*F;

            if (fun->isDeclaration())

                continue;

            addFunEntryBlock(fun);

            addFunExitBlock(fun);

        }


    }


    for (Module &M : llvmModuleSet()->getLLVMModules())

    {

        for (Module::const_iterator F = M.begin(), E = M.end(); F != E; ++F)

        {

            const Function *fun = &*F;

            if (fun->isDeclaration())

                continue;

            WorkList worklist;

            processFunEntry(fun,worklist);

            processUnreachableFromEntry(fun, worklist);

            processFunBody(worklist);

            processFunExit(fun);


            checkICFGNodesVisited(fun);

        }


    }

    connectGlobalToProgEntry();

    return icfg;

}


void ICFGBuilder::checkICFGNodesVisited(const Function* fun)

{

    for (const auto& bb: *fun)

    {

        for (const auto& inst: bb)

        {

            if(LLVMUtil::isIntrinsicInst(&inst))

                continue;

            assert(visited.count(&inst) && "inst never visited");

            assert(hasICFGNode(&inst) && "icfgnode not created");

        }

    }

}


void ICFGBuilder::processFunEntry(const Function*  fun, WorkList& worklist)

{

    FunEntryICFGNode* FunEntryICFGNode = getFunEntryICFGNode(fun);

    const Instruction* entryInst = &((fun->getEntryBlock()).front());


    InstVec insts;

    if (LLVMUtil::isIntrinsicInst(entryInst))

        LLVMUtil::getNextInsts(entryInst, insts);

    else

        insts.push_back(entryInst);

    for (InstVec::const_iterator nit = insts.begin(), enit = insts.end();

            nit != enit; ++nit)

    {

        visited.insert(*nit);

        ICFGNode* instNode = addBlockICFGNode(*nit);           //add interprocedural edge

        worklist.push(*nit);

        icfg->addIntraEdge(FunEntryICFGNode, instNode);

    }


}


void ICFGBuilder::processUnreachableFromEntry(const Function* fun, WorkList& worklist)

{

    SVFLoopAndDomInfo* pInfo =

        llvmModuleSet()->getSVFFunction(fun)->getLoopAndDomInfo();

    for (const auto& bb : *fun)

    {

        if (pInfo->isUnreachable(llvmModuleSet()->getSVFBasicBlock(&bb)) &&

                !visited.count(&bb.front()))

        {

            visited.insert(&bb.front());

            (void)addBlockICFGNode(&bb.front());

            worklist.push(&bb.front());

        }

    }

}


void ICFGBuilder::processFunBody(WorkList& worklist)

{

    while (!worklist.empty())

    {

        const Instruction* inst = worklist.pop();

        ICFGNode* srcNode = getICFGNode(inst);

        if (SVFUtil::isa<ReturnInst>(inst))

        {

            FunExitICFGNode* FunExitICFGNode = getFunExitICFGNode(inst->getFunction());

            icfg->addIntraEdge(srcNode, FunExitICFGNode);

        }

        InstVec nextInsts;

        LLVMUtil::getNextInsts(inst, nextInsts);

        s64_t branchID = 0;

        for (InstVec::const_iterator nit = nextInsts.begin(), enit =

                    nextInsts.end(); nit != enit; ++nit)

        {

            const Instruction* succ = *nit;

            ICFGNode* dstNode;

            if (visited.find(succ) != visited.end())

            {

                dstNode = getICFGNode(succ);

            }

            else

            {

                visited.insert(succ);

                dstNode = addBlockICFGNode(succ);

                worklist.push(succ);

            }


            if (LLVMUtil::isNonInstricCallSite(inst))

            {

                RetICFGNode* retICFGNode = getRetICFGNode(inst);

                srcNode = retICFGNode;

            }


            if (const BranchInst* br = SVFUtil::dyn_cast<BranchInst>(inst))

            {

                assert(branchID <= 1 && "if/else has more than two branches?");

                if(br->isConditional())

                    icfg->addConditionalIntraEdge(srcNode, dstNode, 1 - branchID);

                else

                    icfg->addIntraEdge(srcNode, dstNode);

            }

            else if (const SwitchInst* si = SVFUtil::dyn_cast<SwitchInst>(inst))

            {

                const ConstantInt* condVal = const_cast<SwitchInst*>(si)->findCaseDest(const_cast<BasicBlock*>(succ->getParent()));

                s64_t val = -1;

                if (condVal && condVal->getBitWidth() <= 64)

                    val = condVal->getSExtValue();

                icfg->addConditionalIntraEdge(srcNode, dstNode,val);

            }

            else

                icfg->addIntraEdge(srcNode, dstNode);

            branchID++;

        }

    }

}


void ICFGBuilder::processFunExit(const Function*  f)

{

    FunExitICFGNode* FunExitICFGNode = getFunExitICFGNode(f);


    for (const auto& bb : *f)

    {

        for (const auto& inst : bb)

        {

            if (SVFUtil::isa<ReturnInst>(&inst))

            {

                icfg->addIntraEdge(getICFGNode(&inst), FunExitICFGNode);

            }

        }

    }

}


InterICFGNode* ICFGBuilder::addInterBlockICFGNode(const Instruction* inst)

{

    assert(LLVMUtil::isCallSite(inst) && "not a call instruction?");

    assert(LLVMUtil::isNonInstricCallSite(inst) && "associating an intrinsic debug instruction with an ICFGNode!");

    assert(llvmModuleSet()->getCallBlock(inst)==nullptr && "duplicate CallICFGNode");

    const CallBase* cb = SVFUtil::dyn_cast<CallBase>(inst);

    bool isvcall = cppUtil::isVirtualCallSite(cb);

    SVFFunction* calledFunc = nullptr;

    auto called_llvmval = cb->getCalledOperand()->stripPointerCasts();

    if (const Function* called_llvmfunc = SVFUtil::dyn_cast<Function>(called_llvmval))

    {

        calledFunc = llvmModuleSet()->getSVFFunction(called_llvmfunc);

    }

    else

    {

        calledFunc = SVFUtil::dyn_cast<SVFFunction>(

                         llvmModuleSet()->getSVFValue(called_llvmval));

    }


    SVFBasicBlock* bb = llvmModuleSet()->getSVFBasicBlock(inst->getParent());


    CallICFGNode* callICFGNode = icfg->addCallICFGNode(

                                     bb, llvmModuleSet()->getSVFType(inst->getType()),

                                     calledFunc, cb->getFunctionType()->isVarArg(), isvcall,

                                     isvcall ? cppUtil::getVCallIdx(cb) : 0,

                                     isvcall ? cppUtil::getFunNameOfVCallSite(cb) : "");

    llvmModuleSet()->addInstructionMap(inst, callICFGNode);


    assert(llvmModuleSet()->getRetBlock(inst)==nullptr && "duplicate RetICFGNode");

    RetICFGNode* retICFGNode = icfg->addRetICFGNode(callICFGNode);

    llvmModuleSet()->addInstructionMap(inst, retICFGNode);


    addICFGInterEdges(inst, LLVMUtil::getCallee(SVFUtil::cast<CallBase>(inst)));    //creating interprocedural edges

    return callICFGNode;

}


void ICFGBuilder::addICFGInterEdges(const Instruction* cs, const Function* callee)

{


    CallICFGNode* callICFGNode = getCallICFGNode(cs);

    RetICFGNode* retBlockNode = getRetICFGNode(cs);


    if(callee)

    {

        SVFFunction* svfFun =

            llvmModuleSet()->getSVFFunction(callee);

        if (SVFUtil::isExtCall(svfFun))

        {

            icfg->addIntraEdge(callICFGNode, retBlockNode);

        }

        else

        {

            FunEntryICFGNode* calleeEntryNode = getFunEntryICFGNode(callee);

            FunExitICFGNode* calleeExitNode = getFunExitICFGNode(callee);

            icfg->addCallEdge(callICFGNode, calleeEntryNode);

            icfg->addRetEdge(calleeExitNode, retBlockNode);

        }

    }

    else

    {

        icfg->addIntraEdge(callICFGNode, retBlockNode);

    }

}


/*

* Add the global initialization statements immediately after the function entry of main

*/


void ICFGBuilder::connectGlobalToProgEntry()

{

    for (Module &M : llvmModuleSet()->getLLVMModules())

    {

        if (const Function* mainFunc = LLVMUtil::getProgEntryFunction(M))

        {

            // main function

            FunEntryICFGNode* entryNode = getFunEntryICFGNode(mainFunc);

            GlobalICFGNode* globalNode = getGlobalICFGNode();

            IntraCFGEdge* intraEdge = new IntraCFGEdge(globalNode, entryNode);

            icfg->addICFGEdge(intraEdge);

        }

        else

        {

            // not main function

        }

    }

}


inline ICFGNode* ICFGBuilder::addBlockICFGNode(const Instruction* inst)

{

    ICFGNode* node;

    if(LLVMUtil::isNonInstricCallSite(inst))

        node = addInterBlockICFGNode(inst);

    else

        node = addIntraBlockICFGNode(inst);

    const_cast<SVFBasicBlock*>(

        llvmModuleSet()->getSVFBasicBlock(inst->getParent()))

    ->addICFGNode(node);

    return node;

}


IntraICFGNode* ICFGBuilder::addIntraBlockICFGNode(const Instruction* inst)

{

    IntraICFGNode* node = llvmModuleSet()->getIntraBlock(inst);

    assert (node==nullptr && "no IntraICFGNode for this instruction?");

    IntraICFGNode* sNode = icfg->addIntraICFGNode(

                               llvmModuleSet()->getSVFBasicBlock(inst->getParent()), SVFUtil::isa<ReturnInst>(inst));

    llvmModuleSet()->addInstructionMap(inst, sNode);

    return sNode;

}


FunEntryICFGNode* ICFGBuilder::addFunEntryBlock(const Function* fun)

{

    return llvmModuleSet()->FunToFunEntryNodeMap[fun] =

               icfg->addFunEntryICFGNode(llvmModuleSet()->getSVFFunction(fun));

}


inline FunExitICFGNode* ICFGBuilder::addFunExitBlock(const Function* fun)

{

    return llvmModuleSet()->FunToFunExitNodeMap[fun] =

               icfg->addFunExitICFGNode(llvmModuleSet()->getSVFFunction(fun));

}


CppUtil.h

ICFGBuilder.h

LLVMModule.h

LLVMUtil.h

F
#define F(f)

DBOUT
#define DBOUT(TYPE, X)
LLVM debug macros, define type of your DBUG model of each pass.
Definition SVFType.h:484

DGENERAL
#define DGENERAL
Definition SVFType.h:490

SVF::CallICFGNode
Definition ICFGNode.h:423

SVF::FIFOWorkList
Definition WorkList.h:138

SVF::FIFOWorkList::push
bool push(const Data &data)
Definition WorkList.h:165

SVF::FIFOWorkList::empty
bool empty() const
Definition WorkList.h:146

SVF::FIFOWorkList::pop
Data pop()
Definition WorkList.h:200

SVF::FunEntryICFGNode
Definition ICFGNode.h:279

SVF::FunExitICFGNode
Definition ICFGNode.h:352

SVF::GlobalICFGNode
Definition ICFGNode.h:159

SVF::ICFGBuilder::getICFGNode
ICFGNode * getICFGNode(const Instruction *inst)
Definition ICFGBuilder.h:93

SVF::ICFGBuilder::addFunEntryBlock
FunEntryICFGNode * addFunEntryBlock(const Function *fun)
Definition ICFGBuilder.cpp:352

SVF::ICFGBuilder::connectGlobalToProgEntry
void connectGlobalToProgEntry()
Definition ICFGBuilder.cpp:310

SVF::ICFGBuilder::getFunEntryICFGNode
FunEntryICFGNode * getFunEntryICFGNode(const Function *fun)
get a function entry node
Definition ICFGBuilder.h:120

SVF::ICFGBuilder::getFunExitICFGNode
FunExitICFGNode * getFunExitICFGNode(const Function *fun)
get a function exit node
Definition ICFGBuilder.h:125

SVF::ICFGBuilder::addIntraBlockICFGNode
IntraICFGNode * addIntraBlockICFGNode(const Instruction *inst)
Add and get IntraBlock ICFGNode.
Definition ICFGBuilder.cpp:342

SVF::ICFGBuilder::getCallICFGNode
CallICFGNode * getCallICFGNode(const Instruction *cs)
get a call node
Definition ICFGBuilder.h:104

SVF::ICFGBuilder::InstVec
std::vector< const Instruction * > InstVec
Definition ICFGBuilder.h:46

SVF::ICFGBuilder::llvmModuleSet
LLVMModuleSet * llvmModuleSet()
Definition ICFGBuilder.h:67

SVF::ICFGBuilder::addGlobalICFGNode
void addGlobalICFGNode()
Definition ICFGBuilder.h:148

SVF::ICFGBuilder::processUnreachableFromEntry
void processUnreachableFromEntry(const Function *fun, WorkList &worklist)
Definition ICFGBuilder.cpp:127

SVF::ICFGBuilder::build
ICFG * build()
Definition ICFGBuilder.cpp:43

SVF::ICFGBuilder::visited
BBSet visited
Definition ICFGBuilder.h:155

SVF::ICFGBuilder::addInterBlockICFGNode
InterICFGNode * addInterBlockICFGNode(const Instruction *inst)
Add/Get an inter block ICFGNode.
Definition ICFGBuilder.cpp:237

SVF::ICFGBuilder::hasICFGNode
bool hasICFGNode(const Instruction *inst)
Definition ICFGBuilder.h:98

SVF::ICFGBuilder::processFunBody
void processFunBody(WorkList &worklist)
Definition ICFGBuilder.cpp:146

SVF::ICFGBuilder::getGlobalICFGNode
GlobalICFGNode * getGlobalICFGNode() const
Definition ICFGBuilder.h:130

SVF::ICFGBuilder::checkICFGNodesVisited
void checkICFGNodesVisited(const Function *fun)
Definition ICFGBuilder.cpp:85

SVF::ICFGBuilder::processFunEntry
void processFunEntry(const Function *fun, WorkList &worklist)
Definition ICFGBuilder.cpp:101

SVF::ICFGBuilder::addFunExitBlock
FunExitICFGNode * addFunExitBlock(const Function *fun)
Definition ICFGBuilder.cpp:358

SVF::ICFGBuilder::addBlockICFGNode
ICFGNode * addBlockICFGNode(const Instruction *inst)
Add/Get a basic block ICFGNode.
Definition ICFGBuilder.cpp:329

SVF::ICFGBuilder::icfg
ICFG * icfg
Definition ICFGBuilder.h:56

SVF::ICFGBuilder::getRetICFGNode
RetICFGNode * getRetICFGNode(const Instruction *cs)
get a return node
Definition ICFGBuilder.h:109

SVF::ICFGBuilder::addICFGInterEdges
void addICFGInterEdges(const Instruction *cs, const Function *callee)
Create edges between ICFG nodes across functions.
Definition ICFGBuilder.cpp:276

SVF::ICFGBuilder::processFunExit
void processFunExit(const Function *fun)
Definition ICFGBuilder.cpp:214

SVF::ICFGNode
Definition ICFGNode.h:55

SVF::ICFG
Definition ICFG.h:48

SVF::ICFG::addICFGEdge
bool addICFGEdge(ICFGEdge *edge)
Add ICFG edge, only used by addIntraEdge, addCallEdge, addRetEdge etc.
Definition ICFG.h:277

SVF::ICFG::addRetICFGNode
virtual RetICFGNode * addRetICFGNode(CallICFGNode *call)
Definition ICFG.h:196

SVF::ICFG::addFunEntryICFGNode
virtual FunEntryICFGNode * addFunEntryICFGNode(const SVFFunction *svfFunc)
Definition ICFG.h:204

SVF::ICFG::addCallICFGNode
virtual CallICFGNode * addCallICFGNode(const SVFBasicBlock *bb, const SVFType *ty, const SVFFunction *calledFunc, bool isVararg, bool isvcall, s32_t vcallIdx, const std::string &funNameOfVcall)
Definition ICFG.h:183

SVF::ICFG::addIntraICFGNode
virtual IntraICFGNode * addIntraICFGNode(const SVFBasicBlock *bb, bool isRet)
Definition ICFG.h:175

SVF::ICFG::addCallEdge
ICFGEdge * addCallEdge(ICFGNode *srcNode, ICFGNode *dstNode)
Definition ICFG.cpp:366

SVF::ICFG::addRetEdge
ICFGEdge * addRetEdge(ICFGNode *srcNode, ICFGNode *dstNode)
Definition ICFG.cpp:384

SVF::ICFG::addConditionalIntraEdge
ICFGEdge * addConditionalIntraEdge(ICFGNode *srcNode, ICFGNode *dstNode, s64_t branchCondVal)
Definition ICFG.cpp:344

SVF::ICFG::addFunExitICFGNode
virtual FunExitICFGNode * addFunExitICFGNode(const SVFFunction *svfFunc)
Definition ICFG.h:211

SVF::ICFG::addIntraEdge
ICFGEdge * addIntraEdge(ICFGNode *srcNode, ICFGNode *dstNode)
Add intraprocedural and interprocedural control-flow edges.
Definition ICFG.cpp:325

SVF::InterICFGNode
Definition ICFGNode.h:239

SVF::IntraCFGEdge
Definition ICFGEdge.h:114

SVF::IntraICFGNode
Definition ICFGNode.h:196

SVF::LLVMModuleSet::getIntraBlock
IntraICFGNode * getIntraBlock(const Instruction *inst)
Definition LLVMModule.h:455

SVF::LLVMModuleSet::addInstructionMap
void addInstructionMap(const Instruction *inst, SVFInstruction *svfInst)
Definition LLVMModule.h:185

SVF::LLVMModuleSet::getSVFBasicBlock
SVFBasicBlock * getSVFBasicBlock(const BasicBlock *bb) const
Definition LLVMModule.h:267

SVF::LLVMModuleSet::getSVFFunction
SVFFunction * getSVFFunction(const Function *fun) const
Definition LLVMModule.h:260

SVF::LLVMModuleSet::getLLVMModules
const std::vector< std::reference_wrapper< Module > > & getLLVMModules() const
Definition LLVMModule.h:153

SVF::LLVMModuleSet::FunToFunEntryNodeMap
FunToFunEntryNodeMapTy FunToFunEntryNodeMap
map a function to its FunExitICFGNode
Definition LLVMModule.h:108

SVF::LLVMModuleSet::FunToFunExitNodeMap
FunToFunExitNodeMapTy FunToFunExitNodeMap
map a function to its FunEntryICFGNode
Definition LLVMModule.h:109

SVF::RetICFGNode
Definition ICFGNode.h:599

SVF::SVFBasicBlock
Definition SVFValue.h:530

SVF::SVFFunction
Definition SVFValue.h:298

SVF::SVFFunction::getLoopAndDomInfo
SVFLoopAndDomInfo * getLoopAndDomInfo()
Definition SVFValue.h:373

SVF::SVFFunction::getFunctionType
const SVFFunctionType * getFunctionType() const
Returns the FunctionType.
Definition SVFValue.h:393

SVF::SVFLoopAndDomInfo
Definition SVFValue.h:51

SVF::LLVMUtil::isIntrinsicInst
bool isIntrinsicInst(const Instruction *inst)
Return true if it is an intrinsic instruction.
Definition LLVMUtil.cpp:203

SVF::LLVMUtil::isCallSite
bool isCallSite(const Instruction *inst)
Whether an instruction is a call or invoke instruction.
Definition LLVMUtil.h:45

SVF::LLVMUtil::getNextInsts
void getNextInsts(const Instruction *curInst, std::vector< const Instruction * > &instList)
Get the next instructions following control flow.
Definition LLVMUtil.cpp:550

SVF::LLVMUtil::getProgEntryFunction
const Function * getProgEntryFunction(Module &module)
Get program entry function from module.
Definition LLVMUtil.h:380

SVF::LLVMUtil::getCallee
const Function * getCallee(const CallBase *cs)
Definition LLVMUtil.h:63

SVF::LLVMUtil::isNonInstricCallSite
bool isNonInstricCallSite(const Instruction *inst)
Whether an instruction is a callsite in the application code, excluding llvm intrinsic calls.
Definition LLVMUtil.cpp:707

SVF::SVFUtil::isExtCall
bool isExtCall(const SVFFunction *fun)
Definition SVFUtil.h:278

SVF::SVFUtil::pasMsg
std::string pasMsg(const std::string &msg)
Print each pass/phase message by converting a string into blue string output.
Definition SVFUtil.cpp:100

SVF::SVFUtil::outs
std::ostream & outs()
Overwrite llvm::outs()
Definition SVFUtil.h:50

SVF::cppUtil::getFunNameOfVCallSite
std::string getFunNameOfVCallSite(const CallBase *cs)
Definition CppUtil.cpp:635

SVF::cppUtil::getVCallIdx
s32_t getVCallIdx(const CallBase *cs)
Definition CppUtil.cpp:646

SVF::cppUtil::isVirtualCallSite
bool isVirtualCallSite(const CallBase *cs)
Definition CppUtil.cpp:352

SVF
for isBitcode
Definition BasicTypes.h:68

SVF::CallBase
llvm::CallBase CallBase
Definition BasicTypes.h:146

SVF::BasicBlock
llvm::BasicBlock BasicBlock
Definition BasicTypes.h:86

SVF::SwitchInst
llvm::SwitchInst SwitchInst
Definition BasicTypes.h:155

SVF::Function
llvm::Function Function
Definition BasicTypes.h:85

SVF::Instruction
llvm::Instruction Instruction
Definition BasicTypes.h:87

SVF::IRBuilder
llvm::IRBuilder IRBuilder
Definition BasicTypes.h:74

SVF::Module
llvm::Module Module
Definition BasicTypes.h:84

SVF::BranchInst
llvm::BranchInst BranchInst
Definition BasicTypes.h:154

SVF::s64_t
signed long long s64_t
Definition GeneralType.h:49

SVF::ConstantInt
llvm::ConstantInt ConstantInt
Definition BasicTypes.h:125