pghs975uc
/
infer_clone
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'bf2a0cfc53'
${ noResults }
infer_clone/infer/src/absint/AbstractDomain.ml

286 lines
6.7 KiB
Raw Normal View History Unescape

type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
(*
* Copyright (c) 2016 - present Facebook, Inc.
* All rights reserved.
*
* This source code is licensed under the BSD style license found in the
* LICENSE file in the root directory of this source tree. An additional grant
* of patent rights can be found in the PATENTS file in the same directory.
*)
Divide Utils into Utils, Pp, and IStd Summary: Utils contains definitions intended to be in the global namespace for all of the infer code-base, as well as pretty-printing functions, and assorted utility functions mostly for dealing with files and processes. This diff changes the module opened into the global namespace to IStd (Std conflict with extlib), and moves the pretty-printing definitions from Utils to Pp. Reviewed By: jvillard Differential Revision: D4232457 fbshipit-source-id: 1e070e0
8 years ago
open! IStd
Remove -open(Utils) compile flag hack Summary:public Eliminate the use of the -open Utils command line option passed to the compiler in favor of `open! Utils` in each source file. While slightly convenient, this option causes more headaches than it is worth with other tools e.g. merlin. Reviewed By: jvillard Differential Revision: D3168193 fb-gh-sync-id: 4285ef6 fbshipit-source-id: 4285ef6
9 years ago
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
module F = Format
better names in AbstractDomain and TransferFunctions modules Reviewed By: jeremydubreil Differential Revision: D3140288 fb-gh-sync-id: 0bc08a4 fbshipit-source-id: 0bc08a4
9 years ago
module type S = sig
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
type astate
more consistency with abbreviated functions names in abstract domain signature Reviewed By: dkgi Differential Revision: D3012533 fb-gh-sync-id: 89d749c shipit-source-id: 89d749c
9 years ago
val (<=) : lhs:astate -> rhs:astate -> bool (* fst \sqsubseteq snd? *)
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
val join : astate -> astate -> astate
adding generic abstract interpreter Reviewed By: dkgi Differential Revision: D2997068 fb-gh-sync-id: 265c0b9 shipit-source-id: 265c0b9
9 years ago
val widen : prev:astate -> next:astate -> num_iters:int -> astate
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
val pp : F.formatter -> astate -> unit
end
[absint] don't require domains to define their initial state Summary: A domain should not definite its initial state, since distinct users of the domain may want to choose different initial values. For example, one user might want to bind all of the formals to some special values, and one user might want the initial domain to be an empty map This diff makes this distinction clear in the types by (a) requiring the initial state to be passed to the abstract interpreter and (b) lifting the requirement that abstract domains define `initial`. Reviewed By: jberdine Differential Revision: D4359629 fbshipit-source-id: cbcee28
8 years ago
module type WithBottom = sig
include S
val empty : astate
end
[infer][absint] Functor to create a domain with Top Reviewed By: sblackshear Differential Revision: D5081605 fbshipit-source-id: 07d19ed
8 years ago
module type WithTop = sig
include S
val top : astate
end
better names in AbstractDomain and TransferFunctions modules Reviewed By: jeremydubreil Differential Revision: D3140288 fb-gh-sync-id: 0bc08a4 fbshipit-source-id: 0bc08a4
9 years ago
module BottomLifted (Domain : S) = struct
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
type astate =
more consistency with abbreviated functions names in abstract domain signature Reviewed By: dkgi Differential Revision: D3012533 fb-gh-sync-id: 89d749c shipit-source-id: 89d749c
9 years ago
| Bottom
better names in AbstractDomain and TransferFunctions modules Reviewed By: jeremydubreil Differential Revision: D3140288 fb-gh-sync-id: 0bc08a4 fbshipit-source-id: 0bc08a4
9 years ago
| NonBottom of Domain.astate
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
[absint] don't require domains to define their initial state Summary: A domain should not definite its initial state, since distinct users of the domain may want to choose different initial values. For example, one user might want to bind all of the formals to some special values, and one user might want the initial domain to be an empty map This diff makes this distinction clear in the types by (a) requiring the initial state to be passed to the abstract interpreter and (b) lifting the requirement that abstract domains define `initial`. Reviewed By: jberdine Differential Revision: D4359629 fbshipit-source-id: cbcee28
8 years ago
let empty = Bottom
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
let (<=) ~lhs ~rhs =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal lhs rhs
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
then true
else
match lhs, rhs with
| Bottom, _ -> true
| _ , Bottom -> false
| NonBottom lhs, NonBottom rhs -> Domain.(<=) ~lhs ~rhs
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
let join astate1 astate2 =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal astate1 astate2
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
then astate1
else
match astate1, astate2 with
| Bottom, _ -> astate2
| _, Bottom -> astate1
| NonBottom a1, NonBottom a2 -> NonBottom (Domain.join a1 a2)
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
adding generic abstract interpreter Reviewed By: dkgi Differential Revision: D2997068 fb-gh-sync-id: 265c0b9 shipit-source-id: 265c0b9
9 years ago
let widen ~prev ~next ~num_iters =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal prev next
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
then prev
else
match prev, next with
| Bottom, _ -> next
| _, Bottom -> prev
| NonBottom prev, NonBottom next -> NonBottom (Domain.widen ~prev ~next ~num_iters)
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
let pp fmt = function
more consistency with abbreviated functions names in abstract domain signature Reviewed By: dkgi Differential Revision: D3012533 fb-gh-sync-id: 89d749c shipit-source-id: 89d749c
9 years ago
| Bottom -> F.fprintf fmt "_|_"
better names in AbstractDomain and TransferFunctions modules Reviewed By: jeremydubreil Differential Revision: D3140288 fb-gh-sync-id: 0bc08a4 fbshipit-source-id: 0bc08a4
9 years ago
| NonBottom astate -> Domain.pp fmt astate
type signatures for abstract domains and transfer functions Reviewed By: dkgi Differential Revision: D2996626 fb-gh-sync-id: 997531b shipit-source-id: 997531b
9 years ago
end
address-taken analysis and tests Reviewed By: jeremydubreil Differential Revision: D3066722 fb-gh-sync-id: 0239cc7 shipit-source-id: 0239cc7
9 years ago
[infer][absint] Functor to create a domain with Top Reviewed By: sblackshear Differential Revision: D5081605 fbshipit-source-id: 07d19ed
8 years ago
module TopLifted (Domain: S) = struct
type astate =
| Top
| NonTop of Domain.astate
let top = Top
let (<=) ~lhs ~rhs =
if phys_equal lhs rhs
then true
else
match lhs, rhs with
| _, Top -> true
| Top, _ -> false
| NonTop lhs, NonTop rhs -> Domain.(<=) ~lhs ~rhs
let join astate1 astate2 =
if phys_equal astate1 astate2
then astate1
else
match astate1, astate2 with
| Top, _
| _, Top -> Top
| NonTop a1, NonTop a2 -> NonTop (Domain.join a1 a2)
let widen ~prev ~next ~num_iters =
if phys_equal prev next
then prev
else
match prev, next with
| Top, _
| _, Top -> Top
| NonTop prev, NonTop next -> NonTop (Domain.widen ~prev ~next ~num_iters)
let pp fmt = function
| Top -> F.fprintf fmt "T"
| NonTop astate -> Domain.pp fmt astate
end
pair domain Reviewed By: dkgi Differential Revision: D3154564 fb-gh-sync-id: daa4046 fbshipit-source-id: daa4046
9 years ago
module Pair (Domain1 : S) (Domain2 : S) = struct
type astate = Domain1.astate * Domain2.astate
let (<=) ~lhs ~rhs =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal lhs rhs
pair domain Reviewed By: dkgi Differential Revision: D3154564 fb-gh-sync-id: daa4046 fbshipit-source-id: daa4046
9 years ago
then true
else
killing is_bottom Reviewed By: jberdine Differential Revision: D3719406 fbshipit-source-id: fdc97f9
9 years ago
Domain1.(<=) ~lhs:(fst lhs) ~rhs:(fst rhs) && Domain2.(<=) ~lhs:(snd lhs) ~rhs:(snd rhs)
pair domain Reviewed By: dkgi Differential Revision: D3154564 fb-gh-sync-id: daa4046 fbshipit-source-id: daa4046
9 years ago
let join astate1 astate2 =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal astate1 astate2
pair domain Reviewed By: dkgi Differential Revision: D3154564 fb-gh-sync-id: daa4046 fbshipit-source-id: daa4046
9 years ago
then astate1
killing is_bottom Reviewed By: jberdine Differential Revision: D3719406 fbshipit-source-id: fdc97f9
9 years ago
else Domain1.join (fst astate1) (fst astate2), Domain2.join (snd astate1) (snd astate2)
pair domain Reviewed By: dkgi Differential Revision: D3154564 fb-gh-sync-id: daa4046 fbshipit-source-id: daa4046
9 years ago
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
let widen ~prev ~next ~num_iters =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal prev next
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
then prev
else
Domain1.widen ~prev:(fst prev) ~next:(fst next) ~num_iters,
Domain2.widen ~prev:(snd prev) ~next:(snd next) ~num_iters
pair domain Reviewed By: dkgi Differential Revision: D3154564 fb-gh-sync-id: daa4046 fbshipit-source-id: daa4046
9 years ago
let pp fmt (astate1, astate2) =
F.fprintf fmt "(%a, %a)" Domain1.pp astate1 Domain2.pp astate2
end
[absint] make Set and Map functors take an ordered type Reviewed By: jeremydubreil Differential Revision: D5080742 fbshipit-source-id: 19245a8
8 years ago
module FiniteSet (Element : PrettyPrintable.PrintableOrderedType) = struct
include PrettyPrintable.MakePPSet(Element)
address-taken analysis and tests Reviewed By: jeremydubreil Differential Revision: D3066722 fb-gh-sync-id: 0239cc7 shipit-source-id: 0239cc7
9 years ago
type astate = t
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
let (<=) ~lhs ~rhs =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal lhs rhs
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
then true
else subset lhs rhs
let join astate1 astate2 =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal astate1 astate2
using address equality optimization in all abstract domains Reviewed By: dkgi Differential Revision: D3164574 fb-gh-sync-id: 1fab1d2 fbshipit-source-id: 1fab1d2
9 years ago
then astate1
else union astate1 astate2
let widen ~prev ~next ~num_iters:_ =
join prev next
address-taken analysis and tests Reviewed By: jeremydubreil Differential Revision: D3066722 fb-gh-sync-id: 0239cc7 shipit-source-id: 0239cc7
9 years ago
end
adding map domain Reviewed By: jeremydubreil Differential Revision: D3294902 fbshipit-source-id: cd0db90
9 years ago
[absint] add inverted set domain Reviewed By: jberdine Differential Revision: D4320020 fbshipit-source-id: f2810ae
8 years ago
module InvertedSet (S : PrettyPrintable.PPSet) = struct
include S
type astate = t
let (<=) ~lhs ~rhs =
if phys_equal lhs rhs
then true
else subset rhs lhs
let join astate1 astate2 =
if phys_equal astate1 astate2
then astate1
else inter astate1 astate2
let widen ~prev ~next ~num_iters:_ =
join prev next
end
[absint] make Set and Map functors take an ordered type Reviewed By: jeremydubreil Differential Revision: D5080742 fbshipit-source-id: 19245a8
8 years ago
module Map (Key : PrettyPrintable.PrintableOrderedType) (ValueDomain : S) = struct
module M = PrettyPrintable.MakePPMap(Key)
adding map domain Reviewed By: jeremydubreil Differential Revision: D3294902 fbshipit-source-id: cd0db90
9 years ago
include M
type astate = ValueDomain.astate M.t
(** true if all keys in [lhs] are in [rhs], and each lhs value <= corresponding rhs value *)
let (<=) ~lhs ~rhs =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal lhs rhs
adding map domain Reviewed By: jeremydubreil Differential Revision: D3294902 fbshipit-source-id: cd0db90
9 years ago
then true
else
M.for_all
(fun k lhs_v ->
try ValueDomain.(<=) ~lhs:lhs_v ~rhs:(M.find k rhs)
with Not_found -> false)
lhs
let join astate1 astate2 =
Silence deprecation warnings Summary: Use In_channel and Out_channel operations instead of those in Pervasives. Don't use physical equality on values that aren't heap-allocated since it doesn't help the compiler generate faster code and the semantics is unspecified. Also use phys_equal for physical equality. Reviewed By: sblackshear Differential Revision: D4232459 fbshipit-source-id: 36fcfa8
8 years ago
if phys_equal astate1 astate2
adding map domain Reviewed By: jeremydubreil Differential Revision: D3294902 fbshipit-source-id: cd0db90
9 years ago
then astate1
else
M.merge
(fun _ v1_opt v2_opt -> match v1_opt, v2_opt with
| Some v1, Some v2 -> Some (ValueDomain.join v1 v2)
| Some v, _ | _, Some v -> Some v
| None, None -> None)
astate1
astate2
Fix the widening operator of the Map functor Summary: This commit avoids using the join operator for the widening of the Map functor in ```abstractDomain.ml``` and ensures termination when ```ValueDomain``` is infinite by using ```ValueDomain.widen```. Closes https://github.com/facebook/infer/pull/535 Differential Revision: D4319797 Pulled By: sblackshear fbshipit-source-id: 16f15e4
8 years ago
let widen ~prev ~next ~num_iters =
if phys_equal prev next
then prev
else
M.merge
(fun _ v1_opt v2_opt -> match v1_opt, v2_opt with
| Some v1, Some v2 -> Some (ValueDomain.widen ~prev:v1 ~next:v2 ~num_iters)
| Some v, _ | _, Some v -> Some v
| None, None -> None)
[absint] add inverted map domain Reviewed By: jberdine Differential Revision: D4523126 fbshipit-source-id: dee2894
8 years ago
prev
next
adding map domain Reviewed By: jeremydubreil Differential Revision: D3294902 fbshipit-source-id: cd0db90
9 years ago
let pp fmt astate =
M.pp ~pp_value:ValueDomain.pp fmt astate
end
[thread-safety] use boolean domain to track locks Summary: Before, we were using a set domain of strings to model a boolean domain. An explicit boolean domain makes it a bit clear what's going on. There are two things to note here: (1) This actually changed the semantics from the old set domain. The set domain wouldn't warn if the lock is held on only one side of a branch, which isn't what we want. (2) We can't actually test this because the modeling for `Lock.lock()` etc doesn't work :(. The reason is that the models (which do things like adding attributes for `Lock.lock`) are analyzed for Infer, but not for the checkers. We'll have to add separate models for thread safety. Reviewed By: peterogithub Differential Revision: D4242487 fbshipit-source-id: 9fc599d
8 years ago
[absint] add inverted map domain Reviewed By: jberdine Differential Revision: D4523126 fbshipit-source-id: dee2894
8 years ago
module InvertedMap (M : PrettyPrintable.PPMap) (ValueDomain : S) = struct
include M
type astate = ValueDomain.astate M.t
let (<=) ~lhs ~rhs =
if phys_equal lhs rhs
then true
else
try M.for_all (fun k rhs_v -> ValueDomain.(<=) ~lhs:(M.find k lhs) ~rhs:rhs_v) rhs
with Not_found -> false
let join astate1 astate2 =
if phys_equal astate1 astate2
then astate1
else
M.merge
(fun _ v1_opt v2_opt -> match v1_opt, v2_opt with
| Some v1, Some v2 -> Some (ValueDomain.join v1 v2)
| _ -> None)
astate1
astate2
let widen ~prev ~next ~num_iters =
if phys_equal prev next
then prev
else
M.merge
(fun _ v1_opt v2_opt -> match v1_opt, v2_opt with
| Some v1, Some v2 -> Some (ValueDomain.widen ~prev:v1 ~next:v2 ~num_iters)
| _ -> None)
prev
next
let pp fmt astate =
M.pp ~pp_value:ValueDomain.pp fmt astate
(* hide empty so we don't accidentally satisfy the WithBottom signature *)
let empty = `This_domain_is_not_pointed
end
[thread-safety] use boolean domain to track locks Summary: Before, we were using a set domain of strings to model a boolean domain. An explicit boolean domain makes it a bit clear what's going on. There are two things to note here: (1) This actually changed the semantics from the old set domain. The set domain wouldn't warn if the lock is held on only one side of a branch, which isn't what we want. (2) We can't actually test this because the modeling for `Lock.lock()` etc doesn't work :(. The reason is that the models (which do things like adding attributes for `Lock.lock`) are analyzed for Infer, but not for the checkers. We'll have to add separate models for thread safety. Reviewed By: peterogithub Differential Revision: D4242487 fbshipit-source-id: 9fc599d
8 years ago
module BooleanAnd = struct
type astate = bool
let (<=) ~lhs ~rhs = lhs || not rhs
let join = (&&)
let widen ~prev ~next ~num_iters:_ =
join prev next
let pp fmt astate =
F.fprintf fmt "%b" astate
end
[infer][threadsafety] Use disjunction in the join for threaded Summary: There are false positives in the current analysis due to the use of conjunction in the treatment of threaded. Changing conjunction to disjunction removes these false positives. Some new false negatives arise, but all the old tests pass. This is a stopgap towards a better solution being planned. Reviewed By: sblackshear Differential Revision: D4883280 fbshipit-source-id: c2a7e6e
8 years ago
module BooleanOr = struct
type astate = bool
let (<=) ~lhs ~rhs = not lhs || rhs
let join = (||)
let widen ~prev ~next ~num_iters:_ =
join prev next
let pp fmt astate =
F.fprintf fmt "%b" astate
end