npm - svf-tools - Versions diffs - 1.0.892 → 1.0.894 - Mend

svf-tools 1.0.892 → 1.0.894

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (276) hide show

package/SVF-doxygen/html/AbstractExecution_8cpp.html +3 -3
package/SVF-doxygen/html/AbstractExecution_8cpp_source.html +1746 -1753
package/SVF-doxygen/html/AbstractExecution_8h.html +0 -2
package/SVF-doxygen/html/AbstractExecution_8h_source.html +284 -335
package/SVF-doxygen/html/BufOverflowChecker_8cpp_source.html +773 -791
package/SVF-doxygen/html/BufOverflowChecker_8h.html +0 -2
package/SVF-doxygen/html/BufOverflowChecker_8h_source.html +48 -81
package/SVF-doxygen/html/ae_8cpp.html +16 -19
package/SVF-doxygen/html/ae_8cpp_source.html +16 -19
package/SVF-doxygen/html/annotated.html +434 -436
package/SVF-doxygen/html/classSVF_1_1AEStat.html +168 -168
package/SVF-doxygen/html/classSVF_1_1AbstractExecution-members.html +49 -24
package/SVF-doxygen/html/classSVF_1_1AbstractExecution.html +2533 -1041
package/SVF-doxygen/html/classSVF_1_1BufOverflowChecker-members.html +71 -41
package/SVF-doxygen/html/classSVF_1_1BufOverflowChecker.html +777 -63
package/SVF-doxygen/html/classes.html +418 -421
package/SVF-doxygen/html/functions.html +8 -12
package/SVF-doxygen/html/functions_a.html +10 -11
package/SVF-doxygen/html/functions_b.html +5 -9
package/SVF-doxygen/html/functions_c.html +26 -28
package/SVF-doxygen/html/functions_d.html +2 -2
package/SVF-doxygen/html/functions_e.html +2 -2
package/SVF-doxygen/html/functions_enum.html +1 -1
package/SVF-doxygen/html/functions_eval_m.html +2 -2
package/SVF-doxygen/html/functions_eval_s.html +2 -2
package/SVF-doxygen/html/functions_eval_u.html +1 -1
package/SVF-doxygen/html/functions_func.html +9 -12
package/SVF-doxygen/html/functions_func_b.html +2 -5
package/SVF-doxygen/html/functions_func_c.html +25 -27
package/SVF-doxygen/html/functions_func_d.html +2 -2
package/SVF-doxygen/html/functions_func_g.html +15 -16
package/SVF-doxygen/html/functions_func_h.html +6 -6
package/SVF-doxygen/html/functions_func_i.html +9 -13
package/SVF-doxygen/html/functions_func_p.html +1 -1
package/SVF-doxygen/html/functions_func_s.html +19 -20
package/SVF-doxygen/html/functions_func_t.html +1 -1
package/SVF-doxygen/html/functions_func_~.html +0 -3
package/SVF-doxygen/html/functions_g.html +21 -22
package/SVF-doxygen/html/functions_h.html +6 -6
package/SVF-doxygen/html/functions_i.html +15 -19
package/SVF-doxygen/html/functions_l.html +5 -5
package/SVF-doxygen/html/functions_m.html +2 -2
package/SVF-doxygen/html/functions_o.html +15 -15
package/SVF-doxygen/html/functions_p.html +13 -13
package/SVF-doxygen/html/functions_r.html +4 -2
package/SVF-doxygen/html/functions_s.html +21 -22
package/SVF-doxygen/html/functions_t.html +5 -5
package/SVF-doxygen/html/functions_type_c.html +1 -1
package/SVF-doxygen/html/functions_u.html +1 -1
package/SVF-doxygen/html/functions_vars.html +8 -12
package/SVF-doxygen/html/functions_vars_b.html +0 -3
package/SVF-doxygen/html/functions_w.html +7 -13
package/SVF-doxygen/html/functions_~.html +0 -3
package/SVF-doxygen/html/hierarchy.html +629 -631
package/SVF-doxygen/html/namespaceSVF.html +5 -9
package/SVF-doxygen/html/search/all_0.js +11 -11
package/SVF-doxygen/html/search/all_1.js +5 -5
package/SVF-doxygen/html/search/all_10.js +325 -325
package/SVF-doxygen/html/search/all_11.js +226 -226
package/SVF-doxygen/html/search/all_12.js +570 -570
package/SVF-doxygen/html/search/all_13.js +207 -207
package/SVF-doxygen/html/search/all_14.js +70 -70
package/SVF-doxygen/html/search/all_15.js +176 -176
package/SVF-doxygen/html/search/all_16.js +77 -77
package/SVF-doxygen/html/search/all_17.js +1 -1
package/SVF-doxygen/html/search/all_18.js +1 -1
package/SVF-doxygen/html/search/all_19.js +26 -26
package/SVF-doxygen/html/search/all_1a.js +179 -180
package/SVF-doxygen/html/search/all_2.js +65 -66
package/SVF-doxygen/html/search/all_3.js +640 -640
package/SVF-doxygen/html/search/all_4.js +235 -235
package/SVF-doxygen/html/search/all_5.js +126 -126
package/SVF-doxygen/html/search/all_6.js +232 -232
package/SVF-doxygen/html/search/all_7.js +1047 -1047
package/SVF-doxygen/html/search/all_8.js +215 -215
package/SVF-doxygen/html/search/all_9.js +629 -630
package/SVF-doxygen/html/search/all_a.js +46 -46
package/SVF-doxygen/html/search/all_b.js +26 -26
package/SVF-doxygen/html/search/all_c.js +115 -115
package/SVF-doxygen/html/search/all_d.js +204 -204
package/SVF-doxygen/html/search/all_e.js +209 -209
package/SVF-doxygen/html/search/all_f.js +122 -122
package/SVF-doxygen/html/search/classes_0.js +28 -29
package/SVF-doxygen/html/search/classes_1.js +11 -12
package/SVF-doxygen/html/search/classes_10.js +74 -74
package/SVF-doxygen/html/search/classes_11.js +14 -14
package/SVF-doxygen/html/search/classes_12.js +2 -2
package/SVF-doxygen/html/search/classes_13.js +10 -10
package/SVF-doxygen/html/search/classes_14.js +19 -19
package/SVF-doxygen/html/search/classes_15.js +1 -1
package/SVF-doxygen/html/search/classes_2.js +73 -73
package/SVF-doxygen/html/search/classes_3.js +35 -35
package/SVF-doxygen/html/search/classes_4.js +8 -8
package/SVF-doxygen/html/search/classes_5.js +28 -28
package/SVF-doxygen/html/search/classes_6.js +98 -98
package/SVF-doxygen/html/search/classes_7.js +38 -38
package/SVF-doxygen/html/search/classes_8.js +59 -59
package/SVF-doxygen/html/search/classes_9.js +1 -1
package/SVF-doxygen/html/search/classes_a.js +12 -12
package/SVF-doxygen/html/search/classes_b.js +29 -29
package/SVF-doxygen/html/search/classes_c.js +6 -6
package/SVF-doxygen/html/search/classes_d.js +19 -19
package/SVF-doxygen/html/search/classes_e.js +36 -36
package/SVF-doxygen/html/search/classes_f.js +25 -25
package/SVF-doxygen/html/search/defines_0.js +3 -3
package/SVF-doxygen/html/search/defines_1.js +3 -3
package/SVF-doxygen/html/search/defines_10.js +2 -2
package/SVF-doxygen/html/search/defines_2.js +30 -30
package/SVF-doxygen/html/search/defines_3.js +20 -20
package/SVF-doxygen/html/search/defines_4.js +3 -3
package/SVF-doxygen/html/search/defines_5.js +4 -4
package/SVF-doxygen/html/search/defines_6.js +2 -2
package/SVF-doxygen/html/search/defines_7.js +5 -5
package/SVF-doxygen/html/search/defines_8.js +11 -11
package/SVF-doxygen/html/search/defines_9.js +9 -9
package/SVF-doxygen/html/search/defines_a.js +2 -2
package/SVF-doxygen/html/search/defines_b.js +1 -1
package/SVF-doxygen/html/search/defines_c.js +4 -4
package/SVF-doxygen/html/search/defines_d.js +2 -2
package/SVF-doxygen/html/search/defines_e.js +8 -8
package/SVF-doxygen/html/search/defines_f.js +4 -4
package/SVF-doxygen/html/search/enums_0.js +4 -4
package/SVF-doxygen/html/search/enums_1.js +2 -2
package/SVF-doxygen/html/search/enums_10.js +1 -1
package/SVF-doxygen/html/search/enums_11.js +1 -1
package/SVF-doxygen/html/search/enums_2.js +8 -8
package/SVF-doxygen/html/search/enums_3.js +1 -1
package/SVF-doxygen/html/search/enums_4.js +4 -4
package/SVF-doxygen/html/search/enums_5.js +1 -1
package/SVF-doxygen/html/search/enums_6.js +2 -2
package/SVF-doxygen/html/search/enums_7.js +2 -2
package/SVF-doxygen/html/search/enums_8.js +4 -4
package/SVF-doxygen/html/search/enums_9.js +1 -1
package/SVF-doxygen/html/search/enums_a.js +1 -1
package/SVF-doxygen/html/search/enums_b.js +7 -7
package/SVF-doxygen/html/search/enums_c.js +1 -1
package/SVF-doxygen/html/search/enums_d.js +4 -4
package/SVF-doxygen/html/search/enums_e.js +2 -2
package/SVF-doxygen/html/search/enums_f.js +4 -4
package/SVF-doxygen/html/search/enumvalues_0.js +15 -15
package/SVF-doxygen/html/search/enumvalues_1.js +15 -15
package/SVF-doxygen/html/search/enumvalues_10.js +35 -35
package/SVF-doxygen/html/search/enumvalues_11.js +4 -4
package/SVF-doxygen/html/search/enumvalues_12.js +10 -10
package/SVF-doxygen/html/search/enumvalues_13.js +1 -1
package/SVF-doxygen/html/search/enumvalues_14.js +1 -1
package/SVF-doxygen/html/search/enumvalues_15.js +3 -3
package/SVF-doxygen/html/search/enumvalues_2.js +36 -36
package/SVF-doxygen/html/search/enumvalues_3.js +13 -13
package/SVF-doxygen/html/search/enumvalues_4.js +2 -2
package/SVF-doxygen/html/search/enumvalues_5.js +47 -47
package/SVF-doxygen/html/search/enumvalues_6.js +6 -6
package/SVF-doxygen/html/search/enumvalues_7.js +8 -8
package/SVF-doxygen/html/search/enumvalues_8.js +23 -23
package/SVF-doxygen/html/search/enumvalues_9.js +6 -6
package/SVF-doxygen/html/search/enumvalues_a.js +17 -17
package/SVF-doxygen/html/search/enumvalues_b.js +11 -11
package/SVF-doxygen/html/search/enumvalues_c.js +5 -5
package/SVF-doxygen/html/search/enumvalues_d.js +18 -18
package/SVF-doxygen/html/search/enumvalues_e.js +9 -9
package/SVF-doxygen/html/search/enumvalues_f.js +47 -47
package/SVF-doxygen/html/search/files_0.js +16 -16
package/SVF-doxygen/html/search/files_1.js +9 -9
package/SVF-doxygen/html/search/files_10.js +8 -8
package/SVF-doxygen/html/search/files_11.js +8 -8
package/SVF-doxygen/html/search/files_12.js +2 -2
package/SVF-doxygen/html/search/files_2.js +53 -53
package/SVF-doxygen/html/search/files_3.js +14 -14
package/SVF-doxygen/html/search/files_4.js +5 -5
package/SVF-doxygen/html/search/files_5.js +13 -13
package/SVF-doxygen/html/search/files_6.js +10 -10
package/SVF-doxygen/html/search/files_7.js +17 -17
package/SVF-doxygen/html/search/files_8.js +13 -13
package/SVF-doxygen/html/search/files_9.js +18 -18
package/SVF-doxygen/html/search/files_a.js +3 -3
package/SVF-doxygen/html/search/files_b.js +4 -4
package/SVF-doxygen/html/search/files_c.js +20 -20
package/SVF-doxygen/html/search/files_d.js +4 -4
package/SVF-doxygen/html/search/files_e.js +62 -62
package/SVF-doxygen/html/search/files_f.js +8 -8
package/SVF-doxygen/html/search/functions_0.js +13 -13
package/SVF-doxygen/html/search/functions_1.js +368 -369
package/SVF-doxygen/html/search/functions_10.js +140 -140
package/SVF-doxygen/html/search/functions_11.js +140 -140
package/SVF-doxygen/html/search/functions_12.js +299 -299
package/SVF-doxygen/html/search/functions_13.js +73 -73
package/SVF-doxygen/html/search/functions_14.js +41 -41
package/SVF-doxygen/html/search/functions_15.js +72 -72
package/SVF-doxygen/html/search/functions_16.js +38 -38
package/SVF-doxygen/html/search/functions_17.js +3 -3
package/SVF-doxygen/html/search/functions_18.js +179 -180
package/SVF-doxygen/html/search/functions_2.js +94 -95
package/SVF-doxygen/html/search/functions_3.js +261 -261
package/SVF-doxygen/html/search/functions_4.js +84 -84
package/SVF-doxygen/html/search/functions_5.js +57 -57
package/SVF-doxygen/html/search/functions_6.js +65 -65
package/SVF-doxygen/html/search/functions_7.js +863 -863
package/SVF-doxygen/html/search/functions_8.js +162 -162
package/SVF-doxygen/html/search/functions_9.js +438 -439
package/SVF-doxygen/html/search/functions_a.js +30 -30
package/SVF-doxygen/html/search/functions_b.js +2 -2
package/SVF-doxygen/html/search/functions_c.js +25 -25
package/SVF-doxygen/html/search/functions_d.js +82 -82
package/SVF-doxygen/html/search/functions_e.js +36 -36
package/SVF-doxygen/html/search/functions_f.js +58 -58
package/SVF-doxygen/html/search/namespaces_0.js +1 -1
package/SVF-doxygen/html/search/namespaces_1.js +7 -7
package/SVF-doxygen/html/search/related_0.js +4 -4
package/SVF-doxygen/html/search/related_1.js +2 -2
package/SVF-doxygen/html/search/related_2.js +2 -2
package/SVF-doxygen/html/search/related_3.js +2 -2
package/SVF-doxygen/html/search/related_4.js +2 -2
package/SVF-doxygen/html/search/related_5.js +1 -1
package/SVF-doxygen/html/search/related_6.js +2 -2
package/SVF-doxygen/html/search/related_7.js +5 -5
package/SVF-doxygen/html/search/related_8.js +2 -2
package/SVF-doxygen/html/search/related_9.js +4 -4
package/SVF-doxygen/html/search/related_a.js +19 -19
package/SVF-doxygen/html/search/related_b.js +4 -4
package/SVF-doxygen/html/search/related_c.js +2 -2
package/SVF-doxygen/html/search/related_d.js +12 -12
package/SVF-doxygen/html/search/related_e.js +2 -2
package/SVF-doxygen/html/search/related_f.js +2 -2
package/SVF-doxygen/html/search/typedefs_0.js +19 -19
package/SVF-doxygen/html/search/typedefs_1.js +27 -27
package/SVF-doxygen/html/search/typedefs_10.js +63 -63
package/SVF-doxygen/html/search/typedefs_11.js +13 -13
package/SVF-doxygen/html/search/typedefs_12.js +11 -11
package/SVF-doxygen/html/search/typedefs_13.js +40 -40
package/SVF-doxygen/html/search/typedefs_14.js +11 -11
package/SVF-doxygen/html/search/typedefs_2.js +125 -125
package/SVF-doxygen/html/search/typedefs_3.js +39 -39
package/SVF-doxygen/html/search/typedefs_4.js +17 -17
package/SVF-doxygen/html/search/typedefs_5.js +42 -42
package/SVF-doxygen/html/search/typedefs_6.js +54 -54
package/SVF-doxygen/html/search/typedefs_7.js +47 -47
package/SVF-doxygen/html/search/typedefs_8.js +1 -1
package/SVF-doxygen/html/search/typedefs_9.js +6 -6
package/SVF-doxygen/html/search/typedefs_a.js +29 -29
package/SVF-doxygen/html/search/typedefs_b.js +29 -29
package/SVF-doxygen/html/search/typedefs_c.js +41 -41
package/SVF-doxygen/html/search/typedefs_d.js +15 -15
package/SVF-doxygen/html/search/typedefs_e.js +52 -52
package/SVF-doxygen/html/search/typedefs_f.js +14 -14
package/SVF-doxygen/html/search/variables_0.js +177 -177
package/SVF-doxygen/html/search/variables_1.js +76 -76
package/SVF-doxygen/html/search/variables_10.js +98 -98
package/SVF-doxygen/html/search/variables_11.js +46 -46
package/SVF-doxygen/html/search/variables_12.js +93 -93
package/SVF-doxygen/html/search/variables_13.js +76 -76
package/SVF-doxygen/html/search/variables_14.js +14 -14
package/SVF-doxygen/html/search/variables_15.js +49 -49
package/SVF-doxygen/html/search/variables_16.js +11 -11
package/SVF-doxygen/html/search/variables_17.js +1 -1
package/SVF-doxygen/html/search/variables_18.js +17 -17
package/SVF-doxygen/html/search/variables_2.js +40 -41
package/SVF-doxygen/html/search/variables_3.js +142 -142
package/SVF-doxygen/html/search/variables_4.js +51 -51
package/SVF-doxygen/html/search/variables_5.js +39 -39
package/SVF-doxygen/html/search/variables_6.js +66 -66
package/SVF-doxygen/html/search/variables_7.js +34 -34
package/SVF-doxygen/html/search/variables_8.js +8 -8
package/SVF-doxygen/html/search/variables_9.js +79 -79
package/SVF-doxygen/html/search/variables_a.js +4 -4
package/SVF-doxygen/html/search/variables_b.js +10 -10
package/SVF-doxygen/html/search/variables_c.js +45 -45
package/SVF-doxygen/html/search/variables_d.js +57 -57
package/SVF-doxygen/html/search/variables_e.js +123 -123
package/SVF-doxygen/html/search/variables_f.js +31 -31
package/package.json +1 -1
package/setup.sh +1 -1
package/svf/include/AE/Svfexe/AbstractExecution.h +55 -102
package/svf/include/AE/Svfexe/BufOverflowChecker.h +12 -33
package/svf/lib/AE/Svfexe/AbstractExecution.cpp +59 -64
package/svf/lib/AE/Svfexe/BufOverflowChecker.cpp +44 -59
package/svf-llvm/tools/AE/ae.cpp +1 -2

package/svf/include/AE/Svfexe/AbstractExecution.h CHANGED Viewed

@@ -43,10 +43,6 @@ class ExeState;
 template<typename T> class FILOWorkList;
 enum class AEKind
 {
     AbstractExecution,
@@ -58,7 +54,7 @@ class AEStat : public SVFStat
 {
 public:
     void countStateSize();
-    AEStat(AbstractExecution *ae): _ae(ae)
+    AEStat(AbstractExecution* ae) : _ae(ae)
     {
         startTime = getClk(true);
     }
@@ -76,7 +72,7 @@ public:
     void reportBug();
 public:
-    AbstractExecution *_ae;
+    AbstractExecution* _ae;
     s32_t count{0};
     std::string memory_usage;
     std::string memUsage;
@@ -107,7 +103,6 @@ public:
         }
         return generalNumMap["ICFG_Node_Trace"];
     }
 };
 class AbstractExecution
@@ -116,12 +111,11 @@ class AbstractExecution
     friend class AEAPI;
 public:
-    typedef SCCDetection<PTACallGraph *> CallGraphSCC;
+    enum ExtAPIType { UNCLASSIFIED, MEMCPY, MEMSET, STRCPY, STRCAT };
+    typedef SCCDetection<PTACallGraph*> CallGraphSCC;
     /// Constructor
     AbstractExecution();
-    virtual void initExtAPI();
     virtual void runOnModule(ICFG* icfg);
     /// Destructor
@@ -153,7 +147,7 @@ protected:
      * @param node The ICFGNode to analyse
      * @return if this node has preceding execution state
      */
-    bool hasInEdgesES(const ICFGNode *node);
+    bool hasInEdgesES(const ICFGNode* node);
     /**
      * Check if execution state exist at the branch edge
@@ -175,7 +169,7 @@ protected:
      *
      * @param node ICFGNode which has a single instruction
      */
-    virtual void handleICFGNode(const ICFGNode *node);
+    virtual void handleICFGNode(const ICFGNode* node);
     /**
      * handle call node in ICFGNode
@@ -189,35 +183,35 @@ protected:
      *
      * @param cycle WTOCycle which has weak topo order of basic blocks and nested cycles
      */
-    virtual void handleCycle(const ICFGWTOCycle *cycle);
+    virtual void handleCycle(const ICFGWTOCycle* cycle);
     /**
      * handle user defined function, ext function is not included.
      *
      * @param func SVFFunction which has a series of basic blocks
      */
-    virtual void handleFunc(const SVFFunction *func);
+    virtual void handleFunc(const SVFFunction* func);
     /**
      * handle SVF Statement like CmpStmt, CallStmt, GepStmt, LoadStmt, StoreStmt, etc.
      *
      * @param stmt SVFStatement which is a value flow of instruction
      */
-    virtual void handleSVFStatement(const SVFStmt *stmt);
+    virtual void handleSVFStatement(const SVFStmt* stmt);
     /**
      * Check if this callnode is recursive call and skip it.
      *
      * @param callnode CallICFGNode which calls a recursive function
      */
-    virtual void SkipRecursiveCall(const CallICFGNode *callnode);
+    virtual void SkipRecursiveCall(const CallICFGNode* callnode);
     /**
     * Check if this function is recursive function and skip it.
     *
     * @param func SVFFunction is a recursive function
-    */
-    virtual void SkipRecursiveFunc(const SVFFunction *func);
+     */
+    virtual void SkipRecursiveFunc(const SVFFunction* func);
     /**
     * Check if this cmpStmt and succ are satisfiable to the execution state.
@@ -237,84 +231,6 @@ protected:
     */
     bool hasSwitchBranchES(const SVFVar* var, s64_t succ, IntervalExeState& es);
-    /// protected data members, also used in subclasses
-    SVFIR* _svfir;
-    PTACallGraph* _callgraph;
-    /// Execution State, used to store the Interval Value of every SVF variable
-    SVFIR2ItvExeState* _svfir2ExeState;
-    AEAPI* _api{nullptr};
-    ICFG* _icfg;
-    AEStat* _stat;
-    AEKind _kind;
-    Set<std::string> _bugLoc;
-    SVFBugReport _recoder;
-    std::vector<const CallICFGNode*> _callSiteStack;
-    Map<const ICFGNode *, std::string> _nodeToBugInfo;
-    AndersenWaveDiff *_ander;
-    Map<const SVFFunction*, ICFGWTO *> _funcToWTO;
-    Set<const SVFFunction*> _recursiveFuns;
-private:
-    // helper functions in handleCallSite
-    virtual bool isExtCall(const CallICFGNode* callNode);
-    virtual void extCallPass(const CallICFGNode* callNode);
-    virtual bool isRecursiveCall(const CallICFGNode* callNode);
-    virtual void recursiveCallPass(const CallICFGNode* callNode);
-    virtual bool isDirectCall(const CallICFGNode* callNode);
-    virtual void directCallFunPass(const CallICFGNode* callNode);
-    virtual bool isIndirectCall(const CallICFGNode* callNode);
-    virtual void indirectCallFunPass(const CallICFGNode* callNode);
-    // helper functions in hasInEdgesES
-    bool isFunEntry(const ICFGNode* node);
-    bool isGlobalEntry(const ICFGNode* node);
-    // helper functions in handleCycle
-    bool widenFixpointPass(const ICFGNode* cycle_head, IntervalExeState& pre_es);
-    bool narrowFixpointPass(const ICFGNode* cycle_head, IntervalExeState& pre_es);
-    // private data
-    Map<const ICFGNode*, IntervalExeState> _preES;
-    Map<const ICFGNode*, IntervalExeState> _postES;
-    std::string _moduleName;
-};
-class AEAPI
-{
-public:
-    enum ExtAPIType { UNCLASSIFIED, MEMCPY, MEMSET, STRCPY, STRCAT };
-    static bool classof(const AEAPI* api)
-    {
-        return api->getKind() == AEKind::AbstractExecution;
-    }
-    /**
-    * Constructor of AEAPI
-    *
-    * @param ae Abstract Execution or its subclass
-    * @param stat AEStat
-    */
-    AEAPI(AbstractExecution* ae, AEStat* stat): _ae(ae), _stat(stat)
-    {
-        initExtFunMap();
-        _kind = AEKind::AbstractExecution;
-    }
-    virtual ~AEAPI() {}
-    void setModule(SVFIR* svfModule)
-    {
-        _svfir = svfModule;
-    }
-    AEKind getKind() const
-    {
-        return _kind;
-    }
     /**
     * handle external function call
@@ -414,8 +330,6 @@ public:
     void collectCheckPoint();
     void checkPointAllSet();
-protected:
     // helper functions for traceMemoryAllocationSize and canSafelyAccessMemory
     void AccessMemoryViaRetNode(const CallICFGNode *callnode, SVF::FILOWorkList<const SVFValue *>& worklist, Set<const SVFValue *>& visited);
     void AccessMemoryViaCopyStmt(const CopyStmt *copy, SVF::FILOWorkList<const SVFValue *>& worklist, Set<const SVFValue *>& visited);
@@ -423,16 +337,55 @@ protected:
     void AccessMemoryViaCallArgs(const SVF::SVFArgument *arg, SVF::FILOWorkList<const SVFValue *>& worklist, Set<const SVFValue *>& visited);
-protected:
-    AbstractExecution* _ae;
-    AEStat* _stat;
+    /// protected data members, also used in subclasses
     SVFIR* _svfir;
+    PTACallGraph* _callgraph;
+    /// Execution State, used to store the Interval Value of every SVF variable
+    SVFIR2ItvExeState* _svfir2ExeState;
+    AEAPI* _api{nullptr};
+    ICFG* _icfg;
+    AEStat* _stat;
     AEKind _kind;
-    Map<std::string, std::function<void(const CallSite &)>> _func_map;
+    Set<std::string> _bugLoc;
+    SVFBugReport _recoder;
+    std::vector<const CallICFGNode*> _callSiteStack;
+    Map<const ICFGNode*, std::string> _nodeToBugInfo;
+    AndersenWaveDiff* _ander;
+    Map<const SVFFunction*, ICFGWTO*> _funcToWTO;
+    Set<const SVFFunction*> _recursiveFuns;
+private:
+    // helper functions in handleCallSite
+    virtual bool isExtCall(const CallICFGNode* callNode);
+    virtual void extCallPass(const CallICFGNode* callNode);
+    virtual bool isRecursiveCall(const CallICFGNode* callNode);
+    virtual void recursiveCallPass(const CallICFGNode* callNode);
+    virtual bool isDirectCall(const CallICFGNode* callNode);
+    virtual void directCallFunPass(const CallICFGNode* callNode);
+    virtual bool isIndirectCall(const CallICFGNode* callNode);
+    virtual void indirectCallFunPass(const CallICFGNode* callNode);
+    // helper functions in hasInEdgesES
+    bool isFunEntry(const ICFGNode* node);
+    bool isGlobalEntry(const ICFGNode* node);
+    // helper functions in handleCycle
+    bool widenFixpointPass(const ICFGNode* cycle_head,
+                           IntervalExeState& pre_es);
+    bool narrowFixpointPass(const ICFGNode* cycle_head,
+                            IntervalExeState& pre_es);
+protected:
+    // there data should be shared with subclasses
+    Map<std::string, std::function<void(const CallSite &)>> _func_map;
     Set<const CallICFGNode*> _checkpoints;
     Set<std::string> _checkpoint_names;
+private:
+    Map<const ICFGNode*, IntervalExeState> _preES;
+    Map<const ICFGNode*, IntervalExeState> _postES;
+    std::string _moduleName;
 };
 }

package/svf/include/AE/Svfexe/BufOverflowChecker.h CHANGED Viewed

@@ -100,27 +100,28 @@ protected:
     const SVFValue* _allocVar;
 };
-class BufOverflowCheckerAPI: public AEAPI
+class BufOverflowChecker: public AbstractExecution
 {
 public:
-    BufOverflowCheckerAPI() = delete;
-    BufOverflowCheckerAPI(AbstractExecution * ae, AEStat * stat): AEAPI(ae, stat)
+    BufOverflowChecker() : AbstractExecution()
     {
         initExtFunMap();
-        initExtAPIBufOverflowCheckRules();
         _kind = AEKind::BufOverflowChecker;
+        initExtAPIBufOverflowCheckRules();
     }
-    static bool classof(const AEAPI* api)
+    static bool classof(const AbstractExecution* ae)
     {
-        return api->getKind() == AEKind::BufOverflowChecker;
+        return ae->getKind() == AEKind::BufOverflowChecker;
     }
+protected:
     /**
     * the map of external function to its API type
     *
     * it initialize the ext apis about buffer overflow checking
     */
-    virtual void initExtFunMap();
+    virtual void initExtFunMap() override;
     /**
     * the map of ext apis of buffer overflow checking rules
@@ -136,7 +137,7 @@ public:
     *
     * @param call call node whose callee is external function
     */
-    void handleExtAPI(const CallICFGNode *call) ;
+    void handleExtAPI(const CallICFGNode *call) override;
     /**
     * detect buffer overflow from strcpy like apis
     * e.g. strcpy(dst, src), if dst is shorter than src, we will throw buffer overflow
@@ -165,31 +166,6 @@ public:
      */
     bool canSafelyAccessMemory(const SVFValue *value, const IntervalValue &len, const ICFGNode *curNode);
-    Map<NodeID, const GepStmt*> _addrToGep;
-    Map<std::string, std::vector<std::pair<u32_t, u32_t>>> _extAPIBufOverflowCheckRules;
-};
-class BufOverflowChecker: public AbstractExecution
-{
-    friend BufOverflowCheckerAPI;
-public:
-    BufOverflowChecker() : AbstractExecution()
-    {
-        _kind = AEKind::BufOverflowChecker;
-    }
-    static bool classof(const AbstractExecution* ae)
-    {
-        return ae->getKind() == AEKind::BufOverflowChecker;
-    }
-    void initExtAPI() override
-    {
-        _api = new BufOverflowCheckerAPI(this, _stat);
-    }
 private:
     /**
     * handle SVF statement regarding buffer overflow checking
@@ -221,6 +197,9 @@ private:
     */
     void addBugToRecoder(const BufOverflowException& e, const ICFGNode* node);
+private:
+    Map<NodeID, const GepStmt*> _addrToGep;
+    Map<std::string, std::vector<std::pair<u32_t, u32_t>>> _extAPIBufOverflowCheckRules;
 };
 }