pghs975uc
/
infer_clone
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f88164dae9'
${ noResults }
infer_clone/infer/src/checkers/checkers.ml

512 lines
22 KiB
Raw Normal View History Unescape

initial synchronization
10 years ago
(*
[whitespace] ocp-indent the code Summary: This commit is the result of `find infer/src -name '*.ml' -or -name '*.mli' -exec ocp-indent -i \{\} \;` and `INFER_CHECK_COPYRIGHT=1 InferPrint`
10 years ago
* Copyright (c) 2013 - present Facebook, Inc.
* All rights reserved.
*
* This source code is licensed under the BSD style license found in the
* LICENSE file in the root directory of this source tree. An additional grant
* of patent rights can be found in the PATENTS file in the same directory.
*)
initial synchronization
10 years ago
(** Module for user-defined checkers. *)
module L = Logging
module F = Format
open Utils
let verbose = ref true
(** Convenience functions for chechers to print information *)
module PP = struct
(** Print a range of lines of the source file in [loc], including [nbefore] lines before loc
[whitespace] indent .ml files as well
10 years ago
and [nafter] lines after [loc] *)
initial synchronization
10 years ago
let pp_loc_range linereader nbefore nafter fmt loc =
[backend][cleanup] move fields in common to Cfg.Procdes and Specs.summary to proc_attributes. Summary: There's a lot of overlap between the representation of a proc desc and a spec summary. This diff moves all the data in common to the single record proc_attributes defined in Sil. This gives a unified way of accessing most of the data carried by a procedure, whether it is contained in a proc desc or a spec. Also, it ensures that there is a single flow of information from proc desc to spec in the back-end, making sure that the information represented stays consistent.
9 years ago
let printline n =
match Printer.LineReader.from_loc linereader { loc with Location.line = n } with
| Some s -> F.fprintf fmt "%s%s@\n" (if n = loc.Location.line then "-->" else " ") s
initial synchronization
10 years ago
| _ -> () in
[backend][cleanup] move fields in common to Cfg.Procdes and Specs.summary to proc_attributes. Summary: There's a lot of overlap between the representation of a proc desc and a spec summary. This diff moves all the data in common to the single record proc_attributes defined in Sil. This gives a unified way of accessing most of the data carried by a procedure, whether it is contained in a proc desc or a spec. Also, it ensures that there is a single flow of information from proc desc to spec in the back-end, making sure that the information represented stays consistent.
9 years ago
F.fprintf fmt "%s:%d@\n" (DB.source_file_to_string loc.Location.file) loc.Location.line;
for n = loc.Location.line - nbefore to loc.Location.line + nafter do printline n done
initial synchronization
10 years ago
end (* PP *)
(** State that persists in the .specs files. *)
module ST = struct
let add summary key value =
[backend][cleanup] Move proc_attributes to a separate module. Summary: Move proc_attributes to a separate module. Field err_log, in common between proc desc and summary, can now be moved to ProcAttributes without creating cycles of dependencies.
9 years ago
proc_flags_add summary.Specs.attributes.ProcAttributes.proc_flags key value
initial synchronization
10 years ago
let pname_add proc_name key value =
[backend] Extend results directory with attributes for each procedure.
9 years ago
let summary = Specs.get_summary_unsafe "ST.pname_add" proc_name in
initial synchronization
10 years ago
add summary key value
let files_open = ref Procname.Set.empty
let pname_find proc_name key =
if Procname.Set.mem proc_name !files_open then
[backend] Extend results directory with attributes for each procedure.
9 years ago
let summary = Specs.get_summary_unsafe "ST.pname_find" proc_name in
[backend][cleanup] Move proc_attributes to a separate module. Summary: Move proc_attributes to a separate module. Field err_log, in common between proc desc and summary, can now be moved to ProcAttributes without creating cycles of dependencies.
9 years ago
proc_flags_find summary.Specs.attributes.ProcAttributes.proc_flags key
initial synchronization
10 years ago
else begin
match Specs.get_summary proc_name with
| None -> raise Not_found
| Some summary ->
begin
files_open := Procname.Set.add proc_name !files_open;
[backend][cleanup] Move proc_attributes to a separate module. Summary: Move proc_attributes to a separate module. Field err_log, in common between proc desc and summary, can now be moved to ProcAttributes without creating cycles of dependencies.
9 years ago
proc_flags_find summary.Specs.attributes.ProcAttributes.proc_flags key
initial synchronization
10 years ago
end
end
let store_summary proc_name =
Option.may
(fun summary ->
Let on-demand control whether to start at all the analysis of a procedure. Reviewed By: @dulmarod Differential Revision: D2507562
9 years ago
let summary' =
{ summary with
Specs.timestamp = summary.Specs.timestamp + 1 } in
try Specs.store_summary proc_name summary' with Sys_error s -> L.err "%s@." s)
initial synchronization
10 years ago
(Specs.get_summary proc_name)
let report_error
proc_name
proc_desc
kind
loc
?(advice = None)
?(field_name = None)
?(origin_loc = None)
?(exception_kind = fun k d -> Exceptions.Checkers (k, d))
?(always_report = false)
description =
let localized_description = Localise.custom_desc_with_advice
description
(Option.default "" advice)
[("always_report", string_of_bool always_report)] in
let exn = exception_kind kind localized_description in
[backend] Reorganize the resolution of procedure attributes, fixing a bug where annotations of overridden procedures via spec files were not found.
9 years ago
let proc_attributes = Specs.pdesc_resolve_attributes proc_desc in
initial synchronization
10 years ago
(* Errors can be suppressed with annotations. An error of kind CHECKER_ERROR_NAME can be
[whitespace] indent .ml files as well
10 years ago
suppressed with the following annotations:
- @android.annotation.SuppressLint("checker-error-name")
- @some.PrefixErrorName
where the kind matching is case - insensitive and ignores '-' and '_' characters. *)
initial synchronization
10 years ago
let suppressed =
let annotation_matches a =
let normalize str =
Str.global_replace (Str.regexp "[_-]") "" (String.lowercase str) in
let drop_prefix str =
Str.replace_first (Str.regexp "^[A-Za-z]+_") "" str in
let normalized_equal s1 s2 =
string_equal (normalize s1) (normalize s2) in
let is_parameter_suppressed =
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
IList.mem string_equal a.Sil.class_name [Annotations.suppressLint] &&
IList.mem normalized_equal kind a.Sil.parameters in
initial synchronization
10 years ago
let is_annotation_suppressed =
string_is_suffix (normalize (drop_prefix kind)) (normalize a.Sil.class_name) in
is_parameter_suppressed || is_annotation_suppressed in
let is_method_suppressed =
Annotations.ma_has_annotation_with
[backend] Reorganize the resolution of procedure attributes, fixing a bug where annotations of overridden procedures via spec files were not found.
9 years ago
proc_attributes.ProcAttributes.method_annotation
initial synchronization
10 years ago
annotation_matches in
let is_field_suppressed =
[backend] Reorganize the resolution of procedure attributes, fixing a bug where annotations of overridden procedures via spec files were not found.
9 years ago
match field_name, PatternMatch.get_this_type proc_attributes with
initial synchronization
10 years ago
| Some field_name, Some t -> begin
[whitespace] indent .ml files as well
10 years ago
match (Annotations.get_field_type_and_annotation field_name t) with
| Some (_, ia) -> Annotations.ia_has_annotation_with ia annotation_matches
| None -> false
end
initial synchronization
10 years ago
| _ -> false in
let is_class_suppressed =
[backend] Reorganize the resolution of procedure attributes, fixing a bug where annotations of overridden procedures via spec files were not found.
9 years ago
match PatternMatch.get_this_type proc_attributes with
initial synchronization
10 years ago
| Some t -> begin
[whitespace] indent .ml files as well
10 years ago
match (PatternMatch.type_get_annotation t) with
| Some ia -> Annotations.ia_has_annotation_with ia annotation_matches
| None -> false
end
initial synchronization
10 years ago
| None -> false in
is_method_suppressed || is_field_suppressed || is_class_suppressed in
let trace =
let make_trace_element loc description =
[{
Errlog.lt_level = 0;
Errlog.lt_loc = loc;
Errlog.lt_description = description;
Errlog.lt_node_tags = []
}] in
let origin_elements =
match origin_loc with
| Some oloc -> make_trace_element oloc "origin"
| None -> [] in
origin_elements @ (make_trace_element loc description) in
if not suppressed then
begin
if !verbose then
begin
[backend][cleanup] move fields in common to Cfg.Procdes and Specs.summary to proc_attributes. Summary: There's a lot of overlap between the representation of a proc desc and a spec summary. This diff moves all the data in common to the single record proc_attributes defined in Sil. This gives a unified way of accessing most of the data carried by a procedure, whether it is contained in a proc desc or a spec. Also, it ensures that there is a single flow of information from proc desc to spec in the back-end, making sure that the information represented stays consistent.
9 years ago
let file = DB.source_file_to_string loc.Location.file in
initial synchronization
10 years ago
L.stdout "%s: %s: %s@."
kind
file
(Procname.to_string proc_name);
L.stdout "%s@." description
end;
Reporting.log_error proc_name ~loc: (Some loc) ~ltr: (Some trace) exn
end
end
let report_calls_and_accesses callback node instr =
let proc_desc = Cfg.Node.get_proc_desc node in
let proc_name = Cfg.Procdesc.get_proc_name proc_desc in
let callee = Procname.to_string proc_name in
match PatternMatch.get_java_field_access_signature instr with
| Some (bt, fn, ft) ->
ST.report_error
proc_name
proc_desc
(callback ^ "_CALLBACK")
(Cfg.Procdesc.get_loc proc_desc)
(Format.sprintf "field access %s.%s:%s in %s@." bt fn ft callee)
| None ->
match PatternMatch.get_java_method_call_formal_signature instr with
| Some (bt, fn, ats, rt) ->
ST.report_error
proc_name
proc_desc
(callback ^ "_CALLBACK")
(Cfg.Procdesc.get_loc proc_desc)
(Format.sprintf "method call %s.%s(%s):%s in %s@." bt fn "..." rt callee)
| None -> ()
(** Report all field accesses and method calls of a procedure. *)
let callback_check_access all_procs get_proc_desc idenv tenv proc_name proc_desc =
Cfg.Procdesc.iter_instrs (report_calls_and_accesses "PROC") proc_desc
(** Report all field accesses and method calls of a class. *)
let callback_check_cluster_access all_procs get_proc_desc proc_definitions =
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
IList.iter
initial synchronization
10 years ago
(Option.may (fun d -> Cfg.Procdesc.iter_instrs (report_calls_and_accesses "CLUSTER") d))
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
(IList.map get_proc_desc all_procs)
initial synchronization
10 years ago
(** Looks for writeToParcel methods and checks whether read is in reverse *)
let callback_check_write_to_parcel all_procs get_proc_desc idenv tenv proc_name proc_desc =
let verbose = ref false in
let is_write_to_parcel this_expr this_type =
let method_match () = Procname.java_get_method proc_name = "writeToParcel" in
let expr_match () = Sil.exp_is_this this_expr in
let type_match () = PatternMatch.is_direct_subtype_of this_type "android.os.Parcelable" in
method_match () && expr_match () && type_match () in
let is_parcel_constructor proc_name =
Procname.is_constructor proc_name &&
PatternMatch.has_formal_method_argument_type_names proc_desc proc_name ["android.os.Parcel"] in
let parcel_constructors = function
| Sil.Tptr (Sil.Tstruct (_, _, _, _, _, methods, _), _) ->
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
IList.filter is_parcel_constructor methods
initial synchronization
10 years ago
| _ -> [] in
let check r_name r_desc w_name w_desc =
let is_serialization_node node =
match Cfg.Node.get_callees node with
| [] -> false
| [proc_name] ->
let class_name = Procname.java_get_class proc_name in
let method_name = Procname.java_get_method proc_name in
(try
[whitespace] indent .ml files as well
10 years ago
class_name = "android.os.Parcel" && (String.sub method_name 0 5 = "write" || String.sub method_name 0 4 = "read")
with Invalid_argument _ -> false)
initial synchronization
10 years ago
| _ -> assert false in
let is_inverse rc wc =
let rn = Procname.java_get_method rc in
let wn = Procname.java_get_method wc in
let postfix_length = String.length wn - 5 in (* covers writeList <-> readArrayList etc. *)
try
String.sub rn (String.length rn - postfix_length) postfix_length = String.sub wn 5 postfix_length
with Invalid_argument _ -> false in
let node_to_call_desc node =
match Cfg.Node.get_callees node with
| [desc] -> desc
| _ -> assert false in
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
let r_call_descs = IList.map node_to_call_desc (IList.filter is_serialization_node (Cfg.Procdesc.get_sliced_slope r_desc is_serialization_node)) in
let w_call_descs = IList.map node_to_call_desc (IList.filter is_serialization_node (Cfg.Procdesc.get_sliced_slope w_desc is_serialization_node)) in
initial synchronization
10 years ago
let rec check_match = function
| rc:: rcs, wc:: wcs ->
if not (is_inverse rc wc) then
L.stdout "Serialization missmatch in %a for %a and %a@." Procname.pp proc_name Procname.pp rc Procname.pp wc
else
check_match (rcs, wcs)
| rc:: rcs, [] ->
L.stdout "Missing write in %a: for %a@." Procname.pp proc_name Procname.pp rc
| _, wc:: wcs ->
L.stdout "Missing read in %a: for %a@." Procname.pp proc_name Procname.pp wc
| _ -> () in
check_match (r_call_descs, w_call_descs) in
let do_instr node instr = match instr with
| Sil.Call (ret_ids, Sil.Const (Sil.Cfun pn), (_this_exp, this_type):: args, loc, cf) ->
let this_exp = Idenv.expand_expr idenv _this_exp in
if is_write_to_parcel this_exp this_type then begin
if !verbose then L.stdout "Serialization check for %a@." Procname.pp proc_name;
try
match parcel_constructors this_type with
| x :: xs ->
(match get_proc_desc x with
[whitespace] indent .ml files as well
10 years ago
| Some x_proc_desc ->
check x x_proc_desc proc_name proc_desc
| None -> raise Not_found)
initial synchronization
10 years ago
| _ -> L.stdout "No parcel constructor found for %a@." Procname.pp proc_name
with Not_found -> if !verbose then L.stdout "Methods not available@."
end
| _ -> () in
Cfg.Procdesc.iter_instrs do_instr proc_desc
(** Monitor calls to Preconditions.checkNotNull and detect inconsistent uses. *)
let callback_monitor_nullcheck all_procs get_proc_desc idenv tenv proc_name proc_desc =
let verbose = ref false in
let class_formal_names = lazy (
[whitespace] indent .ml files as well
10 years ago
let formals = Cfg.Procdesc.get_formals proc_desc in
let class_formals =
let is_class_type = function
| "this", Sil.Tptr _ -> false (* no need to null check 'this' *)
| _, Sil.Tstruct _ -> true
| _, Sil.Tptr (Sil.Tstruct _, _) -> true
| _ -> false in
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
IList.filter is_class_type formals in
IList.map (fun (s, _) -> Mangled.from_string s) class_formals) in
initial synchronization
10 years ago
let equal_formal_param exp formal_name = match exp with
| Sil.Lvar pvar ->
let name = Sil.pvar_get_name pvar in
Mangled.equal name formal_name
| _ -> false in
let is_formal_param exp =
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
IList.exists (equal_formal_param exp) (Lazy.force class_formal_names) in
initial synchronization
10 years ago
let is_nullcheck pn =
PatternMatch.java_proc_name_with_class_method
pn "com.google.common.base.Preconditions" "checkNotNull" in
let checks_to_formals = ref Sil.ExpSet.empty in
let handle_check_of_formal e =
let repeated = Sil.ExpSet.mem e !checks_to_formals in
if repeated && !verbose then L.stdout "Repeated Null Check of Formal: %a@." (Sil.pp_exp pe_text) e
else begin
checks_to_formals := Sil.ExpSet.add e !checks_to_formals;
if !verbose then L.stdout "Null Check of Formal: %a@." (Sil.pp_exp pe_text) e
end in
let summary_checks_of_formals () =
let formal_names = Lazy.force class_formal_names in
let nchecks = Sil.ExpSet.cardinal !checks_to_formals in
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
let nformals = IList.length formal_names in
initial synchronization
10 years ago
if (nchecks > 0 && nchecks < nformals) then
begin
let was_not_found formal_name =
not (Sil.ExpSet.exists (fun exp -> equal_formal_param exp formal_name) !checks_to_formals) in
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
let missing = IList.filter was_not_found formal_names in
initial synchronization
10 years ago
let loc = Cfg.Procdesc.get_loc proc_desc in
[backend][cleanup] move fields in common to Cfg.Procdes and Specs.summary to proc_attributes. Summary: There's a lot of overlap between the representation of a proc desc and a spec summary. This diff moves all the data in common to the single record proc_attributes defined in Sil. This gives a unified way of accessing most of the data carried by a procedure, whether it is contained in a proc desc or a spec. Also, it ensures that there is a single flow of information from proc desc to spec in the back-end, making sure that the information represented stays consistent.
9 years ago
let pp_file_loc fmt () =
F.fprintf fmt "%s:%d" (DB.source_file_to_string loc.Location.file) loc.Location.line in
L.stdout "Null Checks of Formal Parameters: ";
L.stdout "%d out of %d parameters checked (missing checks on: %a)[%a]@."
nchecks nformals (pp_seq Mangled.pp) missing pp_file_loc ();
initial synchronization
10 years ago
let linereader = Printer.LineReader.create () in
L.stdout "%a@." (PP.pp_loc_range linereader 10 10) loc
end in
let do_instr node instr = match instr with
| Sil.Call (ret_ids, Sil.Const (Sil.Cfun pn), (_arg1, t1):: arg_ts, loc, cf) when is_nullcheck pn ->
let arg1 = Idenv.expand_expr idenv _arg1 in
if is_formal_param arg1 then handle_check_of_formal arg1;
if !verbose then L.stdout "call in %s %s: %a with first arg: %a@." (Procname.java_get_class proc_name) (Procname.java_get_method proc_name) (Sil.pp_instr pe_text) instr (Sil.pp_exp pe_text) arg1
| _ -> () in
Cfg.Procdesc.iter_instrs do_instr proc_desc;
summary_checks_of_formals ()
(** Test persistent state. *)
let callback_test_state all_procs get_proc_desc idenv tenv proc_name proc_desc =
ST.pname_add proc_name "somekey" "somevalue"
(** Check the uses of VisibleForTesting *)
let callback_checkVisibleForTesting all_procs get_proc_desc idenv tenv proc_name proc_desc =
[backend] Reorganize the resolution of procedure attributes, fixing a bug where annotations of overridden procedures via spec files were not found.
9 years ago
let ma = (Specs.pdesc_resolve_attributes proc_desc).ProcAttributes.method_annotation in
initial synchronization
10 years ago
if Annotations.ma_contains ma [Annotations.visibleForTesting] then
begin
let loc = Cfg.Procdesc.get_loc proc_desc in
let linereader = Printer.LineReader.create () in
L.stdout "%a@." (PP.pp_loc_range linereader 10 10) loc
end
(** Check for readValue and readValueAs json deserialization *)
let callback_find_deserialization all_procs get_proc_desc idenv tenv proc_name proc_desc =
let verbose = true in
let ret_const_key = "return_const" in
let reverse_find_instr f node =
(** this is not really sound but for the moment a sufficient approximation *)
let has_instr node =
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
try ignore(IList.find f (Cfg.Node.get_instrs node)); true
initial synchronization
10 years ago
with Not_found -> false in
let preds = Cfg.Node.get_generated_slope node (fun n -> Cfg.Node.get_sliced_preds n has_instr) in
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
let instrs = IList.flatten (IList.map (fun n -> IList.rev (Cfg.Node.get_instrs n)) preds) in
initial synchronization
10 years ago
try
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
Some (IList.find f instrs)
initial synchronization
10 years ago
with Not_found -> None in
let get_return_const proc_name' =
try
ST.pname_find proc_name' ret_const_key
with Not_found ->
[whitespace] indent .ml files as well
10 years ago
match get_proc_desc proc_name' with
Some proc_desc' ->
let is_return_instr = function
| Sil.Set (Sil.Lvar p, _, _, _)
initial synchronization
10 years ago
when Sil.pvar_equal p (Cfg.Procdesc.get_ret_var proc_desc') -> true
[whitespace] indent .ml files as well
10 years ago
| _ -> false in
(match reverse_find_instr is_return_instr (Cfg.Procdesc.get_exit_node proc_desc') with
| Some (Sil.Set (_, _, Sil.Const (Sil.Cclass n), _)) -> Ident.name_to_string n
| _ -> "<" ^ (Procname.to_string proc_name') ^ ">")
| None -> "?" in
initial synchronization
10 years ago
let get_actual_arguments node instr = match instr with
| Sil.Call (ret_ids, Sil.Const (Sil.Cfun pn), (te, tt):: args, loc, cf) -> (try
[whitespace] indent .ml files as well
10 years ago
let find_const exp typ =
let expanded = Idenv.expand_expr idenv exp in
match expanded with
| Sil.Const (Sil.Cclass n) -> Ident.name_to_string n
| Sil.Lvar p -> (
let is_call_instr set call = match set, call with
| Sil.Set (_, _, Sil.Var (i1), _), Sil.Call (i2::[], _, _, _, _) when Ident.equal i1 i2 -> true
| _ -> false in
let is_set_instr = function
| Sil.Set (e1, t, e2, l) when Sil.exp_equal expanded e1 -> true
| _ -> false in
match reverse_find_instr is_set_instr node with (** Look for ivar := tmp *)
| Some s -> (
match reverse_find_instr (is_call_instr s) node with (** Look for tmp := foo() *)
| Some (Sil.Call (_, Sil.Const (Sil.Cfun pn), _, l, _)) -> get_return_const pn
| _ -> "?")
| _ -> "?")
| _ -> "?" in
let arg_name (exp, typ) = find_const exp typ in
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
Some (IList.map arg_name args)
[whitespace] indent .ml files as well
10 years ago
with _ -> None)
initial synchronization
10 years ago
| _ -> None in
let process_result instr result =
if verbose then (
let linereader = Printer.LineReader.create () in
L.stdout "%a@." (PP.pp_loc_range linereader 2 2) (Sil.instr_get_loc instr);
);
match result with
| str when (Str.string_match (Str.regexp "<\\(.*\\)>") str 0) -> (
[whitespace] indent .ml files as well
10 years ago
let missing_proc_name = Str.matched_group 1 str in
L.stdout "Deserialization of %s requires 2nd phase: " str;
L.stdout "missing: %s@." missing_proc_name)
initial synchronization
10 years ago
| "?" -> L.stdout "Unable to resolve deserialization\n\n@."
| _ -> L.stdout "Deserialization of %s\n\n@." result in
let do_instr node instr =
match PatternMatch.get_java_method_call_formal_signature instr with
| Some (_, "readValue", _, _) -> (
[whitespace] indent .ml files as well
10 years ago
match get_actual_arguments node instr with
| Some [_; cl] -> process_result instr cl
| _ -> process_result instr "?")
initial synchronization
10 years ago
| Some (_, "readValueAs", _, _) -> (
[whitespace] indent .ml files as well
10 years ago
match get_actual_arguments node instr with
| Some [cl] -> process_result instr cl
| _ -> process_result instr "?")
initial synchronization
10 years ago
| _ -> () in
let store_return () =
let ret_const = get_return_const proc_name in
ST.pname_add proc_name ret_const_key ret_const in
store_return ();
Cfg.Procdesc.iter_instrs do_instr proc_desc
(** Check field accesses. *)
let callback_check_field_access all_procs get_proc_desc idenv tenv proc_name proc_desc =
let rec do_exp is_read = function
| Sil.Var _ -> ()
| Sil.UnOp (_, e, _) ->
do_exp is_read e
| Sil.BinOp (_, e1, e2) ->
do_exp is_read e1;
do_exp is_read e2
| Sil.Const _ -> ()
| Sil.Cast (_, e) ->
do_exp is_read e
| Sil.Lvar _ -> ()
| Sil.Lfield (e, fn, t) ->
if not (Ident.java_fieldname_is_outer_instance fn) then
L.stdout "field %s %s@." (Ident.fieldname_to_string fn) (if is_read then "reading" else "writing");
do_exp is_read e
| Sil.Lindex (e1, e2) ->
do_exp is_read e1;
do_exp is_read e2
| Sil.Sizeof _ -> () in
let do_read_exp = do_exp true in
let do_write_exp = do_exp false in
let do_instr node = function
| Sil.Letderef (_, e, _, _) ->
do_read_exp e
| Sil.Set (e1, _, e2, _) ->
do_write_exp e1;
do_read_exp e2
| Sil.Prune (e, _, _, _) ->
do_read_exp e
| Sil.Call (_, e, etl, _, _) ->
do_read_exp e;
put Util.list_* functions into an IList module Summary: public modules are better for namespacing. How I made this diff: 1. moved list_* functions from utils.ml{,i} to iList.ml{,i} 2. shell commands: grep '^val ' infer/src/backend/iList.mli | cut -f 2 -d ' ' | tr '\n' ' ' # gives a list of former list_ functions that IList implements, fed into the loops below: LISTNAMES=" compare equal append combine exists filter flatten flatten_options find fold_left fold_left2 for_all for_all2 hd iter iter2 length fold_right map mem nth partition rev rev_append rev_map sort split stable_sort tl drop_first drop_last rev_with_acc remove_duplicates remove_irrelevant_duplicates merge_sorted_nodup intersect mem_assoc assoc map2 to_string" # replace " list_*" function calls with IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/ list_$i\b/ IList.$i/g" \{\} \; ; done # replace (list_* functions with (IList.* ones for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/(list_$i\b/(IList.$i/g" \{\} \; ; done # ditto with [ for i in $LISTNAMES; do find . -name '*.ml' -exec sed -i -e "s/\[list_$i\b/[IList.$i/g" \{\} \; ; done 3. Then fix up the rest by hand. In particular, stuff that called Utils.list_* explicitely, and stuff that used the "Fail" exception that has moved to IList. (may revisit this in the future) Reviewed By: jeremydubreil, cristianoc Differential Revision: D2550241 fb-gh-sync-id: cd64b10
9 years ago
IList.iter (fun (e, _) -> do_read_exp e) etl
initial synchronization
10 years ago
| Sil.Nullify _
| Sil.Abstract _
| Sil.Remove_temps _
| Sil.Stackop _
| Sil.Declare_locals _
| Sil.Goto_node _ ->
() in
Cfg.Procdesc.iter_instrs do_instr proc_desc
(** Print c method calls. *)
let callback_print_c_method_calls all_procs get_proc_desc idenv tenv proc_name proc_desc =
let do_instr node = function
| Sil.Call (ret_ids, Sil.Const (Sil.Cfun pn), (e, t):: args, loc, cf)
[whitespace] indent .ml files as well
10 years ago
when Procname.is_c_method pn ->
initial synchronization
10 years ago
let receiver = match Errdesc.exp_rv_dexp node e with
| Some de -> Sil.dexp_to_string de
| None -> "?" in
let description =
Printf.sprintf "['%s' %s]" receiver (Procname.to_string pn) in
ST.report_error
proc_name
proc_desc
"CHECKERS_PRINT_OBJC_METHOD_CALLS"
loc
description
| Sil.Call (_, Sil.Const (Sil.Cfun pn), _, loc, _) ->
let description =
Printf.sprintf "call to %s" (Procname.to_string pn) in
ST.report_error
proc_name
proc_desc
"CHECKERS_PRINT_C_CALL"
loc
description
| _ -> () in
Cfg.Procdesc.iter_instrs do_instr proc_desc