Use bounds(unknown) rather than an locally-undefined variable copied from function parameter (#717)

* implement trivial fix for bounds
* change to bounds(unknown) and regenerate tests
* add test from issue

Author: kyleheadley

clang/lib/3C/CastPlacement.cpp

@@ -172,33 +172,30 @@ CastPlacementVisitor::getCastString(ConstraintVariable *Dst,
   case CAST_TO_WILD:
     return std::make_pair("((" + Dst->getRewritableOriginalTy() + ")", ")");
   case CAST_TO_CHECKED: {
+    // Needed as default to TypeVar branch below, reset otherwise.
+    std::string Type = "_Ptr<";
     std::string Suffix = ")";
     if (const auto *DstPVC = dyn_cast<PVConstraint>(Dst)) {
       assert("Checked cast not to a pointer" && !DstPVC->getCvars().empty());
       ConstAtom *CA =
           Info.getConstraints().getAssignment(DstPVC->getCvars().at(0));
 
-      // Writing an _Assume_bounds_cast to an array type requires inserting
-      // the bounds for destination array. These can come from the source
-      // code or the infered bounds. If neither source is available, use empty
-      // bounds.
-      if (isa<ArrAtom>(CA) || isa<NTArrAtom>(CA)) {
-        std::string Bounds = "";
-        if (DstPVC->srcHasBounds())
-          Bounds = DstPVC->getBoundsStr();
-        else if (DstPVC->hasBoundsKey())
-          Bounds = ABRewriter.getBoundsString(DstPVC, nullptr, true);
-        if (Bounds.empty())
-          Bounds = "byte_count(0)";
-
-        Suffix = ", " + Bounds + ")";
+      // TODO: Writing an _Assume_bounds_cast to an array type requires
+      // inserting the bounds for destination array. But the names used in src
+      // and dest may be different, so we need more sophisticated code to
+      // convert to local variable names. Use unknown bounds for now.
+      if (isa<ArrAtom>(CA)) {
+        Type = "_Array_ptr<";
+        Suffix = ", bounds(unknown))";
+      } else if (isa<NTArrAtom>(CA)) {
+        Type = "_Nt_array_ptr<";
+        Suffix = ", bounds(unknown))";
       }
     }
     // The destination's type may be generic, which would have an out-of-scope
     // type var, so use the already analysed local type var instead
-    std::string Type;
     if (TypeVar != nullptr) {
-      Type = "_Ptr<" +
+      Type +=
           TypeVar->mkString(Info.getConstraints(),
                             MKSTRING_OPTS(EmitName = false, EmitPointee = true)) +
           ">";

clang/test/3C/b_tests/b1_allsafe.c

@@ -31,7 +31,7 @@ int *foo() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = sus(x, y);
   //CHECK_NOALL: _Ptr<int> z = sus(x, y);
-  //CHECK_ALL: _Ptr<int> z = sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: _Ptr<int> z = sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -47,6 +47,6 @@ int *bar() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (sus(x, y));
   //CHECK_NOALL: _Ptr<int> z = (sus(x, y));
-  //CHECK_ALL: _Ptr<int> z = (sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y));
+  //CHECK_ALL: _Ptr<int> z = (sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y));
   return z;
 }

clang/test/3C/b_tests/b23_explicitunsafecast.c

@@ -30,7 +30,7 @@ int *foo() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (int *)sus(x, y);
   //CHECK_NOALL: _Ptr<int> z = (_Ptr<int>)sus(x, y);
-  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -45,6 +45,6 @@ char *bar() {
   //CHECK: _Ptr<int> y = &sy;
   char *z = (char *)(sus(x, y));
   //CHECK_NOALL: char *z = (char *)(((int *)sus(x, y)));
-  //CHECK_ALL: char *z = (char *)(((int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y)));
+  //CHECK_ALL: char *z = (char *)(((int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y)));
   return z;
 }

clang/test/3C/b_tests/b23_retswitchexplicit.c

@@ -30,7 +30,7 @@ char *foo() {
   //CHECK: _Ptr<int> y = &sy;
   char *z = (int *)sus(x, y);
   //CHECK_NOALL: char *z = (int *)sus(x, y);
-  //CHECK_ALL: char *z = (int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: char *z = (int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -45,6 +45,6 @@ int *bar() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (char *)(sus(x, y));
   //CHECK_NOALL: int *z = (char *)(sus(x, y));
-  //CHECK_ALL: int *z = (char *)(sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y));
+  //CHECK_ALL: int *z = (char *)(sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y));
   return z;
 }

clang/test/3C/b_tests/b24_implicitunsafecast.c

@@ -30,7 +30,7 @@ int *foo() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (int *)sus(x, y);
   //CHECK_NOALL: _Ptr<int> z = (_Ptr<int>)sus(x, y);
-  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -45,6 +45,6 @@ char *bar() {
   //CHECK: _Ptr<int> y = &sy;
   char *z = sus(x, y);
   //CHECK_NOALL: char *z = ((int *)sus(x, y));
-  //CHECK_ALL: char *z = ((int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y));
+  //CHECK_ALL: char *z = ((int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y));
   return z;
 }

clang/test/3C/b_tests/b24_retswitchimplicit.c

@@ -30,7 +30,7 @@ char *foo() {
   //CHECK: _Ptr<int> y = &sy;
   char *z = (int *)sus(x, y);
   //CHECK_NOALL: char *z = (int *)sus(x, y);
-  //CHECK_ALL: char *z = (int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: char *z = (int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -45,6 +45,6 @@ int *bar() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = sus(x, y);
   //CHECK_NOALL: int *z = ((char *)sus(x, y));
-  //CHECK_ALL: int *z = ((char *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y));
+  //CHECK_ALL: int *z = ((char *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y));
   return z;
 }

clang/test/3C/b_tests/b25_castprotosafe.c

@@ -23,7 +23,7 @@ int *foo() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (int *)sus(x, y);
   //CHECK_NOALL: _Ptr<int> z = (_Ptr<int>)sus(x, y);
-  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -38,7 +38,7 @@ int *bar() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (int *)(sus(x, y));
   //CHECK_NOALL: _Ptr<int> z = (_Ptr<int>)(sus(x, y));
-  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)(sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y));
+  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)(sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y));
   return z;
 }
 

clang/test/3C/b_tests/b26_castprotounsafe.c

@@ -23,7 +23,7 @@ int *foo() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (int *)sus(x, y);
   //CHECK_NOALL: _Ptr<int> z = (_Ptr<int>)sus(x, y);
-  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -38,7 +38,7 @@ char *bar() {
   //CHECK: _Ptr<int> y = &sy;
   char *z = (char *)(sus(x, y));
   //CHECK_NOALL: char *z = (char *)(((int *)sus(x, y)));
-  //CHECK_ALL: char *z = (char *)(((int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y)));
+  //CHECK_ALL: char *z = (char *)(((int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y)));
   return z;
 }
 

clang/test/3C/b_tests/b26_castprotounsafeimplicit.c

@@ -23,7 +23,7 @@ int *foo() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (int *)sus(x, y);
   //CHECK_NOALL: _Ptr<int> z = (_Ptr<int>)sus(x, y);
-  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: _Ptr<int> z = (_Ptr<int>)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -38,7 +38,7 @@ char *bar() {
   //CHECK: _Ptr<int> y = &sy;
   char *z = (sus(x, y));
   //CHECK_NOALL: char *z = (((int *)sus(x, y)));
-  //CHECK_ALL: char *z = (((int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y)));
+  //CHECK_ALL: char *z = (((int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y)));
   return z;
 }
 

clang/test/3C/b_tests/b26_castprotounsafeimplicitretswitch.c

@@ -23,7 +23,7 @@ char *foo() {
   //CHECK: _Ptr<int> y = &sy;
   char *z = (int *)sus(x, y);
   //CHECK_NOALL: char *z = (int *)sus(x, y);
-  //CHECK_ALL: char *z = (int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y);
+  //CHECK_ALL: char *z = (int *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y);
   *z = *z + 1;
   return z;
 }
@@ -38,7 +38,7 @@ int *bar() {
   //CHECK: _Ptr<int> y = &sy;
   int *z = (sus(x, y));
   //CHECK_NOALL: int *z = (((char *)sus(x, y)));
-  //CHECK_ALL: int *z = (((char *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, byte_count(0)), y)));
+  //CHECK_ALL: int *z = (((char *)sus(_Assume_bounds_cast<_Array_ptr<int>>(x, bounds(unknown)), y)));
   return z;
 }