ROSE_HTML_Reference/Partitioner2_2DataFlow_8h_source.html

 #ifndef ROSE_BinaryAnalysis_Partitioner2_DataFlow_H

 #define ROSE_BinaryAnalysis_Partitioner2_DataFlow_H

 #include <featureTests.h>

 #ifdef ROSE_ENABLE_BINARY_ANALYSIS

 #include <Rose/BinaryAnalysis/Partitioner2/BasicTypes.h>

 #include <Rose/BinaryAnalysis/InstructionSemantics/BaseSemantics/BasicTypes.h>


 #include <Rose/BinaryAnalysis/DataFlow.h>

 #include <Rose/BinaryAnalysis/Variables.h>

 #include <Sawyer/Graph.h>


 #include <ostream>

 #include <string>


 namespace Rose {

 namespace BinaryAnalysis {

 namespace Partitioner2 {


 namespace DataFlow {


 //                                      Control Flow Graph


 class DfCfgVertex {

 public:

     enum Type {

         BBLOCK,

         FAKED_CALL,

         FUNCRET,

         INDET,

     };


 private:

     Type type_;

     BasicBlockPtr bblock_;                              // attached to BBLOCK vertices

     FunctionPtr callee_;                                // function represented by FAKED_CALL

     FunctionPtr parentFunction_;                        // function "owning" this vertex

     size_t inliningId_;                                 // invocation ID for inlining functions during inter-procedural


 public:

     ~DfCfgVertex();


     DfCfgVertex(const BasicBlockPtr&, const FunctionPtr &parentFunction, size_t inliningId);


     DfCfgVertex(const FunctionPtr &function, const FunctionPtr &parentFunction, size_t inliningId);


     DfCfgVertex(Type type, const FunctionPtr &parentFunction, size_t inliningId);


     Type type() const;


     const BasicBlockPtr& bblock() const;


     const FunctionPtr& callee() const;


     FunctionPtr parentFunction() const;


     size_t inliningId() const;


     Sawyer::Optional<rose_addr_t> address() const;


     void print(std::ostream&) const;


     std::string toString() const;

 };


 using DfCfg = Sawyer::Container::Graph<DfCfgVertex>;


 class InterproceduralPredicate {

 public:

     virtual ~InterproceduralPredicate() {}

     virtual bool operator()(const ControlFlowGraph&, const ControlFlowGraph::ConstEdgeIterator&, size_t depth) = 0;

 };


 class NotInterprocedural: public InterproceduralPredicate {

 public:

     bool operator()(const ControlFlowGraph&, const ControlFlowGraph::ConstEdgeIterator&, size_t /*depth*/) override {

         return false;

     }

 };

 extern NotInterprocedural NOT_INTERPROCEDURAL;


 std::vector<SgAsmInstruction*> vertexUnpacker(const DfCfgVertex&);


 DfCfg buildDfCfg(const PartitionerConstPtr&, const ControlFlowGraph&, const ControlFlowGraph::ConstVertexIterator &startVertex,

                  InterproceduralPredicate &predicate = NOT_INTERPROCEDURAL);


 void dumpDfCfg(std::ostream&, const DfCfg&);


 FunctionPtr bestSummaryFunction(const FunctionSet &functions);


 template<class DfCfg>

 typename Sawyer::Container::GraphTraits<DfCfg>::VertexIterator

 findReturnVertex(DfCfg &dfCfg) {

     using namespace Sawyer::Container;

     typename GraphTraits<DfCfg>::VertexIterator retval = dfCfg.vertices().end();

     for (typename GraphTraits<DfCfg>::VertexIterator vi = dfCfg.vertices().begin(); vi != dfCfg.vertices().end(); ++vi) {

         if (vi->value().type() == DfCfgVertex::FUNCRET) {

             ASSERT_require(retval == dfCfg.vertices().end());

             retval = vi;

         }

     }

     return retval;

 }


 //                                      Transfer function

 //

 // The transfer function is reponsible for taking a CFG vertex and an initial state and producing the next state, the final

 // state for that vertex.  Users can use whatever transfer function they want; this one is based on the DfCfg and an

 // instruction semantics state.


 class TransferFunction {

     InstructionSemantics::BaseSemantics::DispatcherPtr cpu_;

     InstructionSemantics::BaseSemantics::SValuePtr callRetAdjustment_;

     const RegisterDescriptor STACK_POINTER_REG;

     const RegisterDescriptor INSN_POINTER_REG;

     CallingConvention::DefinitionPtr defaultCallingConvention_;

     bool ignoringSemanticFailures_;


 public:

     ~TransferFunction();


     explicit TransferFunction(const InstructionSemantics::BaseSemantics::DispatcherPtr&);


     InstructionSemantics::BaseSemantics::StatePtr initialState() const;


     InstructionSemantics::BaseSemantics::DispatcherPtr cpu() const;


     CallingConvention::DefinitionPtr defaultCallingConvention() const;

     void defaultCallingConvention(const CallingConvention::DefinitionPtr&);

     bool ignoringSemanticFailures() const;

     void ignoringSemanticFailures(bool);

     // Required by data-flow engine

     std::string toString(const InstructionSemantics::BaseSemantics::StatePtr &state);


     // Required by data-flow engine: compute new output state given a vertex and input state.

     InstructionSemantics::BaseSemantics::StatePtr

     operator()(const DfCfg&, size_t vertexId, const InstructionSemantics::BaseSemantics::StatePtr &incomingState) const;

 };


 typedef Rose::BinaryAnalysis::DataFlow::SemanticsMerge MergeFunction;


 using Engine = Rose::BinaryAnalysis::DataFlow::Engine<DfCfg,

                                                       InstructionSemantics::BaseSemantics::StatePtr,

                                                       TransferFunction,

                                                       MergeFunction>;


 Variables::StackVariables findStackVariables(const FunctionPtr &function,

                                              const InstructionSemantics::BaseSemantics::RiscOperatorsPtr &ops,

                                              const InstructionSemantics::BaseSemantics::SValuePtr &initialStackPointer);


 Variables::StackVariables findLocalVariables(const FunctionPtr &function,

                                              const InstructionSemantics::BaseSemantics::RiscOperatorsPtr &ops,

                                              const InstructionSemantics::BaseSemantics::SValuePtr &initialStackPointer);


 Variables::StackVariables findFunctionArguments(const FunctionPtr &function,

                                                 const InstructionSemantics::BaseSemantics::RiscOperatorsPtr &ops,

                                                 const InstructionSemantics::BaseSemantics::SValuePtr &initialStackPointer);


 std::vector<AbstractLocation> findGlobalVariables(const InstructionSemantics::BaseSemantics::RiscOperatorsPtr &ops,

                                                   size_t wordNBytes);


 } // namespace

 } // namespace

 } // namespace

 } // namespace


 #endif

 #endif

Rose::BinaryAnalysis::Partitioner2::DataFlow::MergeFunction
Rose::BinaryAnalysis::DataFlow::SemanticsMerge MergeFunction
Data-flow merge function.
Definition: Partitioner2/DataFlow.h:254

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::type
Type type() const
Type of the vertex.

Sawyer::Container::Set< FunctionPtr >

Rose::BinaryAnalysis::Partitioner2::DataFlow::buildDfCfg
DfCfg buildDfCfg(const PartitionerConstPtr &, const ControlFlowGraph &, const ControlFlowGraph::ConstVertexIterator &startVertex, InterproceduralPredicate &predicate=NOT_INTERPROCEDURAL)
build a cfg useful for data-flow analysis.

Rose::BinaryAnalysis::Partitioner2::DataFlow::NotInterprocedural
Predicate that always returns false, preventing interprocedural analysis.
Definition: Partitioner2/DataFlow.h:137

Rose::BinaryAnalysis::Partitioner2::DataFlow::bestSummaryFunction
FunctionPtr bestSummaryFunction(const FunctionSet &functions)
Choose best function for data-flow summary vertex.

Sawyer::Container::IntervalMap< OffsetInterval, StackVariable >

Sawyer::Container::Graph
Graph containing user-defined vertices and edges.
Definition: Graph.h:625

Rose::BinaryAnalysis::DataFlow::Engine
Data-flow engine.
Definition: DataFlow.h:312

Rose::BinaryAnalysis::Partitioner2::DataFlow::findReturnVertex
Sawyer::Container::GraphTraits< DfCfg >::VertexIterator findReturnVertex(DfCfg &dfCfg)
Find the return vertex.
Definition: Partitioner2/DataFlow.h:174

Rose::BinaryAnalysis::DataFlow::SemanticsMerge
Basic merge operation for instruction semantics.
Definition: DataFlow.h:215

Rose::BinaryAnalysis::InstructionSemantics::BaseSemantics::RiscOperatorsPtr
boost::shared_ptr< RiscOperators > RiscOperatorsPtr
Shared-ownership pointer to a RISC operators object.
Definition: BinaryAnalysis/InstructionSemantics/BaseSemantics/BasicTypes.h:61

Rose::BinaryAnalysis::Partitioner2::DataFlow::TransferFunction
Data-Flow transfer functor.
Definition: Partitioner2/DataFlow.h:195

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::address
Sawyer::Optional< rose_addr_t > address() const
Virtual address of vertex.

Sawyer::Optional< rose_addr_t >

Sawyer::Container::Graph::vertices
boost::iterator_range< VertexIterator > vertices()
Iterators for all vertices.
Definition: Graph.h:1469

Rose
Main namespace for the ROSE library.
Definition: BinaryTutorial.dox:3

Sawyer::SharedPointer< BasicBlock >

Rose::BinaryAnalysis::InstructionSemantics::BaseSemantics::StatePtr
boost::shared_ptr< State > StatePtr
Shared-ownership pointer to a semantic state.
Definition: BinaryAnalysis/InstructionSemantics/BaseSemantics/BasicTypes.h:58

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::callee
const FunctionPtr & callee() const
Function represented by faked call.

Rose::BinaryAnalysis::InstructionSemantics::BaseSemantics::DispatcherPtr
boost::shared_ptr< Dispatcher > DispatcherPtr
Shared-ownership pointer to a semantics instruction dispatcher.
Definition: BinaryAnalysis/InstructionSemantics/BaseSemantics/BasicTypes.h:64

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex
CFG vertex for data-flow analysis.
Definition: Partitioner2/DataFlow.h:29

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::BBLOCK
Vertex represents a basic block.
Definition: Partitioner2/DataFlow.h:33

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::FUNCRET
Vertex represents returning to the caller.
Definition: Partitioner2/DataFlow.h:35

Rose::BinaryAnalysis::Partitioner2::DataFlow::findLocalVariables
Variables::StackVariables findLocalVariables(const FunctionPtr &function, const InstructionSemantics::BaseSemantics::RiscOperatorsPtr &ops, const InstructionSemantics::BaseSemantics::SValuePtr &initialStackPointer)
Returns the list of all known local variables.

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::Type
Type
Vertex type.
Definition: Partitioner2/DataFlow.h:32

Rose::BinaryAnalysis::Partitioner2::DataFlow::TransferFunction::initialState
InstructionSemantics::BaseSemantics::StatePtr initialState() const
Construct an initial state.

Sawyer::Container
Container classes that store user-defined values.
Definition: AddressMap.h:34

Rose::BinaryAnalysis::Partitioner2::DataFlow::TransferFunction::TransferFunction
TransferFunction(const InstructionSemantics::BaseSemantics::DispatcherPtr &)
Construct from a CPU.

Rose::BinaryAnalysis::RegisterDescriptor
Describes (part of) a physical CPU register.
Definition: RegisterDescriptor.h:27

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfg
Sawyer::Container::Graph< DfCfgVertex > DfCfg
Control flow graph used by data-flow analysis.
Definition: Partitioner2/DataFlow.h:123

Rose::BinaryAnalysis::Partitioner2::DataFlow::InterproceduralPredicate
Predicate that decides when to use inter-procedural data-flow.
Definition: Partitioner2/DataFlow.h:130

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::inliningId
size_t inliningId() const
Inlining invocation number.

Rose::BinaryAnalysis::Partitioner2::DataFlow::TransferFunction::cpu
InstructionSemantics::BaseSemantics::DispatcherPtr cpu() const
Property: Virtual CPU.

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::FAKED_CALL
Represents a whole called function.
Definition: Partitioner2/DataFlow.h:34

Rose::BinaryAnalysis::Partitioner2::DataFlow::vertexUnpacker
std::vector< SgAsmInstruction * > vertexUnpacker(const DfCfgVertex &)
Unpacks a vertex into a list of instructions.

Rose::BinaryAnalysis::Partitioner2::DataFlow::findGlobalVariables
std::vector< AbstractLocation > findGlobalVariables(const InstructionSemantics::BaseSemantics::RiscOperatorsPtr &ops, size_t wordNBytes)
Returns a list of global variables.

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::print
void print(std::ostream &) const
Print a short description of this vertex.

Rose::BinaryAnalysis::Partitioner2::DataFlow::findFunctionArguments
Variables::StackVariables findFunctionArguments(const FunctionPtr &function, const InstructionSemantics::BaseSemantics::RiscOperatorsPtr &ops, const InstructionSemantics::BaseSemantics::SValuePtr &initialStackPointer)
Returns the list of all known function arguments.

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::DfCfgVertex
DfCfgVertex(const BasicBlockPtr &, const FunctionPtr &parentFunction, size_t inliningId)
Construct a basic block vertex.

Sawyer::Container::GraphTraits::VertexIterator
G::VertexIterator VertexIterator
Const or non-const vertex iterator.
Definition: Graph.h:295

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::parentFunction
FunctionPtr parentFunction() const
Function owning this vertex.

Rose::BinaryAnalysis::Partitioner2::DataFlow::dumpDfCfg
void dumpDfCfg(std::ostream &, const DfCfg &)
Emit a data-flow CFG as a GraphViz file.

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::INDET
Indeterminate basic block where no information is available.
Definition: Partitioner2/DataFlow.h:36

Rose::BinaryAnalysis::Partitioner2::DataFlow::findStackVariables
Variables::StackVariables findStackVariables(const FunctionPtr &function, const InstructionSemantics::BaseSemantics::RiscOperatorsPtr &ops, const InstructionSemantics::BaseSemantics::SValuePtr &initialStackPointer)
Returns the list of all known stack variables.

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::bblock
const BasicBlockPtr & bblock() const
Basic block.

Rose::BinaryAnalysis::Partitioner2::DataFlow::TransferFunction::ignoringSemanticFailures
bool ignoringSemanticFailures() const
Property: Whether to ignore instructions with unknown semantics.

Rose::BinaryAnalysis::Partitioner2::DataFlow::DfCfgVertex::toString
std::string toString() const
Single-line description of this vertex.

Rose::BinaryAnalysis::Partitioner2::DataFlow::TransferFunction::defaultCallingConvention
CallingConvention::DefinitionPtr defaultCallingConvention() const
Property: Default calling convention.