Example 16 with ValueBox
use of soot.ValueBox in project soot by Sable.
the class CombinedDUAnalysis method localsInBoxes.
private List<Value> localsInBoxes(List<ValueBox> boxes) {
List<Value> ret = new ArrayList<Value>();
for (ValueBox vb : boxes) {
Value v = vb.getValue();
if (!(v instanceof Local))
continue;
ret.add(v);
}
return ret;
}Example 17 with ValueBox
use of soot.ValueBox in project soot by Sable.
the class ConstantValueToInitializerTransformer method getOrCreateInitializer.
private SootMethod getOrCreateInitializer(SootClass sc, Set<SootField> alreadyInitialized) {
SootMethod smInit;
// Create a static initializer if we don't already have one
smInit = sc.getMethodByNameUnsafe("<clinit>");
if (smInit == null) {
smInit = Scene.v().makeSootMethod("<clinit>", Collections.<Type>emptyList(), VoidType.v());
smInit.setActiveBody(Jimple.v().newBody(smInit));
sc.addMethod(smInit);
smInit.setModifiers(Modifier.PUBLIC | Modifier.STATIC);
} else if (smInit.isPhantom())
return null;
else {
smInit.retrieveActiveBody();
// somewhere
for (Unit u : smInit.getActiveBody().getUnits()) {
Stmt s = (Stmt) u;
for (ValueBox vb : s.getDefBoxes()) if (vb.getValue() instanceof FieldRef)
alreadyInitialized.add(((FieldRef) vb.getValue()).getField());
}
}
return smInit;
}
Also used :
Type(soot.Type)
VoidType(soot.VoidType)
FieldRef(soot.jimple.FieldRef)
ValueBox(soot.ValueBox)
SootMethod(soot.SootMethod)
Unit(soot.Unit)
ReturnVoidStmt(soot.jimple.ReturnVoidStmt)
Stmt(soot.jimple.Stmt)
Example 18 with ValueBox
use of soot.ValueBox in project soot by Sable.
the class BadFields method handleMethod.
private void handleMethod(SootMethod m) {
if (!m.isConcrete())
return;
for (Iterator<ValueBox> bIt = m.retrieveActiveBody().getUseAndDefBoxes().iterator(); bIt.hasNext(); ) {
final ValueBox b = bIt.next();
Value v = b.getValue();
if (!(v instanceof StaticFieldRef))
continue;
StaticFieldRef sfr = (StaticFieldRef) v;
SootField f = sfr.getField();
if (!f.getDeclaringClass().getName().equals("java.lang.System"))
continue;
if (f.getName().equals("err")) {
logger.debug("" + "Use of System.err in " + m);
}
if (f.getName().equals("out")) {
logger.debug("" + "Use of System.out in " + m);
}
}
for (Iterator<Unit> sIt = m.getActiveBody().getUnits().iterator(); sIt.hasNext(); ) {
final Stmt s = (Stmt) sIt.next();
if (!s.containsInvokeExpr())
continue;
InvokeExpr ie = s.getInvokeExpr();
SootMethod target = ie.getMethod();
if (target.getDeclaringClass().getName().equals("java.lang.System") && target.getName().equals("exit")) {
warn("" + m + " calls System.exit");
}
}
if (m.getName().equals("<clinit>")) {
for (Iterator<Unit> sIt = m.getActiveBody().getUnits().iterator(); sIt.hasNext(); ) {
final Stmt s = (Stmt) sIt.next();
for (Iterator<ValueBox> bIt = s.getUseBoxes().iterator(); bIt.hasNext(); ) {
final ValueBox b = bIt.next();
Value v = b.getValue();
if (v instanceof FieldRef) {
warn(m.getName() + " reads field " + v);
}
}
if (!s.containsInvokeExpr())
continue;
InvokeExpr ie = s.getInvokeExpr();
SootMethod target = ie.getMethod();
calls(target);
}
}
}
Also used :
InvokeExpr(soot.jimple.InvokeExpr)
StaticFieldRef(soot.jimple.StaticFieldRef)
FieldRef(soot.jimple.FieldRef)
ValueBox(soot.ValueBox)
Value(soot.Value)
SootMethod(soot.SootMethod)
SootField(soot.SootField)
Unit(soot.Unit)
StaticFieldRef(soot.jimple.StaticFieldRef)
Stmt(soot.jimple.Stmt)
Example 19 with ValueBox
use of soot.ValueBox in project soot by Sable.
the class PointsToAnalysis method getLocals.
private static Map getLocals(SootClass sc, String methodname, String typename) {
Map res = new HashMap();
Iterator mi = sc.getMethods().iterator();
while (mi.hasNext()) {
SootMethod sm = (SootMethod) mi.next();
System.err.println(sm.getName());
if (true && sm.getName().equals(methodname) && sm.isConcrete()) {
JimpleBody jb = (JimpleBody) sm.retrieveActiveBody();
Iterator ui = jb.getUnits().iterator();
while (ui.hasNext()) {
Stmt s = (Stmt) ui.next();
int line = getLineNumber(s);
// find definitions
Iterator bi = s.getDefBoxes().iterator();
while (bi.hasNext()) {
Object o = bi.next();
if (o instanceof ValueBox) {
Value v = ((ValueBox) o).getValue();
if (v.getType().toString().equals(typename) && v instanceof Local)
res.put(new Integer(line), v);
}
}
}
}
}
return res;
}
Also used :
HashMap(java.util.HashMap)
ValueBox(soot.ValueBox)
Iterator(java.util.Iterator)
Value(soot.Value)
SootMethod(soot.SootMethod)
Local(soot.Local)
HashMap(java.util.HashMap)
Map(java.util.Map)
JimpleBody(soot.jimple.JimpleBody)
Stmt(soot.jimple.Stmt)
Example 20 with ValueBox
use of soot.ValueBox in project soot by Sable.
the class DexNullTransformer method internalTransform.
@Override
protected void internalTransform(final Body body, String phaseName, Map<String, String> options) {
final DexDefUseAnalysis localDefs = new DexDefUseAnalysis(body);
AbstractStmtSwitch checkDef = new // Alex: should also end as
AbstractStmtSwitch() {
// soon as detected as not
// used as an object
@Override
public void caseAssignStmt(AssignStmt stmt) {
Value r = stmt.getRightOp();
if (r instanceof FieldRef) {
usedAsObject = isObject(((FieldRef) r).getFieldRef().type());
doBreak = true;
return;
} else if (r instanceof ArrayRef) {
ArrayRef ar = (ArrayRef) r;
if (ar.getType() instanceof UnknownType) {
// isObject
usedAsObject = stmt.hasTag("ObjectOpTag");
// (findArrayType
// (g,
// localDefs,
// localUses,
// stmt));
} else {
usedAsObject = isObject(ar.getType());
}
doBreak = true;
return;
} else if (r instanceof StringConstant || r instanceof NewExpr || r instanceof NewArrayExpr) {
usedAsObject = true;
doBreak = true;
return;
} else if (r instanceof CastExpr) {
usedAsObject = isObject(((CastExpr) r).getCastType());
doBreak = true;
return;
} else if (r instanceof InvokeExpr) {
usedAsObject = isObject(((InvokeExpr) r).getType());
doBreak = true;
return;
} else if (r instanceof LengthExpr) {
usedAsObject = false;
doBreak = true;
return;
// introduces alias
}
}
@Override
public void caseIdentityStmt(IdentityStmt stmt) {
if (stmt.getLeftOp() == l) {
usedAsObject = isObject(stmt.getRightOp().getType());
doBreak = true;
return;
}
}
};
AbstractStmtSwitch checkUse = new AbstractStmtSwitch() {
private boolean examineInvokeExpr(InvokeExpr e) {
List<Value> args = e.getArgs();
List<Type> argTypes = e.getMethodRef().parameterTypes();
assert args.size() == argTypes.size();
for (int i = 0; i < args.size(); i++) {
if (args.get(i) == l && isObject(argTypes.get(i))) {
return true;
}
}
// check for base
SootMethodRef sm = e.getMethodRef();
if (!sm.isStatic()) {
if (e instanceof AbstractInvokeExpr) {
AbstractInstanceInvokeExpr aiiexpr = (AbstractInstanceInvokeExpr) e;
Value b = aiiexpr.getBase();
if (b == l) {
return true;
}
}
}
return false;
}
@Override
public void caseInvokeStmt(InvokeStmt stmt) {
InvokeExpr e = stmt.getInvokeExpr();
usedAsObject = examineInvokeExpr(e);
doBreak = true;
return;
}
@Override
public void caseAssignStmt(AssignStmt stmt) {
Value left = stmt.getLeftOp();
Value r = stmt.getRightOp();
if (left instanceof ArrayRef) {
ArrayRef ar = (ArrayRef) left;
if (ar.getIndex() == l) {
doBreak = true;
return;
} else if (ar.getBase() == l) {
usedAsObject = true;
doBreak = true;
return;
}
}
if (left instanceof InstanceFieldRef) {
InstanceFieldRef ifr = (InstanceFieldRef) left;
if (ifr.getBase() == l) {
usedAsObject = true;
doBreak = true;
return;
}
}
// used to assign
if (stmt.getRightOp() == l) {
Value l = stmt.getLeftOp();
if (l instanceof StaticFieldRef && isObject(((StaticFieldRef) l).getFieldRef().type())) {
usedAsObject = true;
doBreak = true;
return;
} else if (l instanceof InstanceFieldRef && isObject(((InstanceFieldRef) l).getFieldRef().type())) {
usedAsObject = true;
doBreak = true;
return;
} else if (l instanceof ArrayRef) {
Type aType = ((ArrayRef) l).getType();
if (aType instanceof UnknownType) {
usedAsObject = stmt.hasTag(// isObject(
"ObjectOpTag");
// findArrayType(g,
// localDefs,
// localUses,
// stmt));
} else {
usedAsObject = isObject(aType);
}
doBreak = true;
return;
}
}
// is used as value (does not exclude assignment)
if (r instanceof FieldRef) {
// isObject(((FieldRef)
usedAsObject = true;
// r).getFieldRef().type());
doBreak = true;
return;
} else if (r instanceof ArrayRef) {
ArrayRef ar = (ArrayRef) r;
if (ar.getBase() == l) {
usedAsObject = true;
} else {
// used as index
usedAsObject = false;
}
doBreak = true;
return;
} else if (r instanceof StringConstant || r instanceof NewExpr) {
throw new RuntimeException("NOT POSSIBLE StringConstant or NewExpr at " + stmt);
} else if (r instanceof NewArrayExpr) {
usedAsObject = false;
doBreak = true;
return;
} else if (r instanceof CastExpr) {
usedAsObject = isObject(((CastExpr) r).getCastType());
doBreak = true;
return;
} else if (r instanceof InvokeExpr) {
usedAsObject = examineInvokeExpr((InvokeExpr) stmt.getRightOp());
doBreak = true;
return;
} else if (r instanceof LengthExpr) {
usedAsObject = true;
doBreak = true;
return;
} else if (r instanceof BinopExpr) {
usedAsObject = false;
doBreak = true;
return;
}
}
@Override
public void caseIdentityStmt(IdentityStmt stmt) {
if (stmt.getLeftOp() == l)
throw new RuntimeException("IMPOSSIBLE 0");
}
@Override
public void caseEnterMonitorStmt(EnterMonitorStmt stmt) {
usedAsObject = stmt.getOp() == l;
doBreak = true;
return;
}
@Override
public void caseExitMonitorStmt(ExitMonitorStmt stmt) {
usedAsObject = stmt.getOp() == l;
doBreak = true;
return;
}
@Override
public void caseReturnStmt(ReturnStmt stmt) {
usedAsObject = stmt.getOp() == l && isObject(body.getMethod().getReturnType());
doBreak = true;
return;
}
@Override
public void caseThrowStmt(ThrowStmt stmt) {
usedAsObject = stmt.getOp() == l;
doBreak = true;
return;
}
};
for (Local loc : getNullCandidates(body)) {
usedAsObject = false;
Set<Unit> defs = localDefs.collectDefinitionsWithAliases(loc);
// process normally
doBreak = false;
for (Unit u : defs) {
// put correct local in l
if (u instanceof DefinitionStmt) {
l = (Local) ((DefinitionStmt) u).getLeftOp();
} else if (u instanceof IfStmt) {
throw new RuntimeException("ERROR: def can not be something else than Assign or Identity statement! (def: " + u + " class: " + u.getClass() + "");
}
// check defs
u.apply(checkDef);
if (doBreak)
break;
// check uses
for (Unit use : localDefs.getUsesOf(l)) {
use.apply(checkUse);
if (doBreak)
break;
}
// for uses
if (doBreak)
break;
}
// change values
if (usedAsObject) {
for (Unit u : defs) {
replaceWithNull(u);
Set<Value> defLocals = new HashSet<Value>();
for (ValueBox vb : u.getDefBoxes()) defLocals.add(vb.getValue());
Local l = (Local) ((DefinitionStmt) u).getLeftOp();
for (Unit uuse : localDefs.getUsesOf(l)) {
Stmt use = (Stmt) uuse;
// If we have a[x] = 0 and a is an object, we may not conclude 0 -> null
if (!use.containsArrayRef() || !defLocals.contains(use.getArrayRef().getBase()))
replaceWithNull(use);
}
}
}
// end if
}
// Check for inlined zero values
AbstractStmtSwitch inlinedZeroValues = new AbstractStmtSwitch() {
final NullConstant nullConstant = NullConstant.v();
@Override
public void caseAssignStmt(AssignStmt stmt) {
// Case a = 0 with a being an object
if (isObject(stmt.getLeftOp().getType()) && isConstZero(stmt.getRightOp())) {
stmt.setRightOp(nullConstant);
return;
}
// Case a = (Object) 0
if (stmt.getRightOp() instanceof CastExpr) {
CastExpr ce = (CastExpr) stmt.getRightOp();
if (isObject(ce.getCastType()) && isConstZero(ce.getOp())) {
stmt.setRightOp(nullConstant);
}
}
// Case a[0] = 0
if (stmt.getLeftOp() instanceof ArrayRef && isConstZero(stmt.getRightOp())) {
ArrayRef ar = (ArrayRef) stmt.getLeftOp();
if (isObjectArray(ar.getBase(), body) || stmt.hasTag("ObjectOpTag")) {
stmt.setRightOp(nullConstant);
}
}
}
private boolean isConstZero(Value rightOp) {
if (rightOp instanceof IntConstant && ((IntConstant) rightOp).value == 0)
return true;
if (rightOp instanceof LongConstant && ((LongConstant) rightOp).value == 0)
return true;
return false;
}
@Override
public void caseReturnStmt(ReturnStmt stmt) {
if (stmt.getOp() instanceof IntConstant && isObject(body.getMethod().getReturnType())) {
IntConstant iconst = (IntConstant) stmt.getOp();
assert iconst.value == 0;
stmt.setOp(nullConstant);
}
}
@Override
public void caseEnterMonitorStmt(EnterMonitorStmt stmt) {
if (stmt.getOp() instanceof IntConstant && ((IntConstant) stmt.getOp()).value == 0)
stmt.setOp(nullConstant);
}
@Override
public void caseExitMonitorStmt(ExitMonitorStmt stmt) {
if (stmt.getOp() instanceof IntConstant && ((IntConstant) stmt.getOp()).value == 0)
stmt.setOp(nullConstant);
}
};
final NullConstant nullConstant = NullConstant.v();
for (Unit u : body.getUnits()) {
u.apply(inlinedZeroValues);
if (u instanceof Stmt) {
Stmt stmt = (Stmt) u;
if (stmt.containsInvokeExpr()) {
InvokeExpr invExpr = stmt.getInvokeExpr();
for (int i = 0; i < invExpr.getArgCount(); i++) if (isObject(invExpr.getMethodRef().parameterType(i)))
if (invExpr.getArg(i) instanceof IntConstant) {
IntConstant iconst = (IntConstant) invExpr.getArg(i);
assert iconst.value == 0;
invExpr.setArg(i, nullConstant);
}
}
}
}
}
Also used :
ExitMonitorStmt(soot.jimple.ExitMonitorStmt)
InvokeStmt(soot.jimple.InvokeStmt)
AssignStmt(soot.jimple.AssignStmt)
Unit(soot.Unit)
InvokeStmt(soot.jimple.InvokeStmt)
ThrowStmt(soot.jimple.ThrowStmt)
IfStmt(soot.jimple.IfStmt)
IdentityStmt(soot.jimple.IdentityStmt)
EnterMonitorStmt(soot.jimple.EnterMonitorStmt)
ReturnStmt(soot.jimple.ReturnStmt)
ExitMonitorStmt(soot.jimple.ExitMonitorStmt)
Stmt(soot.jimple.Stmt)
AssignStmt(soot.jimple.AssignStmt)
DefinitionStmt(soot.jimple.DefinitionStmt)
ArrayRef(soot.jimple.ArrayRef)
AbstractInvokeExpr(soot.jimple.internal.AbstractInvokeExpr)
AbstractInstanceInvokeExpr(soot.jimple.internal.AbstractInstanceInvokeExpr)
AbstractInvokeExpr(soot.jimple.internal.AbstractInvokeExpr)
InvokeExpr(soot.jimple.InvokeExpr)
AbstractInstanceInvokeExpr(soot.jimple.internal.AbstractInstanceInvokeExpr)
AbstractStmtSwitch(soot.jimple.AbstractStmtSwitch)
CastExpr(soot.jimple.CastExpr)
InstanceFieldRef(soot.jimple.InstanceFieldRef)
IntConstant(soot.jimple.IntConstant)
IdentityStmt(soot.jimple.IdentityStmt)
EnterMonitorStmt(soot.jimple.EnterMonitorStmt)
HashSet(java.util.HashSet)
LongConstant(soot.jimple.LongConstant)
FieldRef(soot.jimple.FieldRef)
InstanceFieldRef(soot.jimple.InstanceFieldRef)
StaticFieldRef(soot.jimple.StaticFieldRef)
SootMethodRef(soot.SootMethodRef)
LengthExpr(soot.jimple.LengthExpr)
Local(soot.Local)
NullConstant(soot.jimple.NullConstant)
StaticFieldRef(soot.jimple.StaticFieldRef)
UnknownType(soot.UnknownType)
UnknownType(soot.UnknownType)
ArrayType(soot.ArrayType)
Type(soot.Type)
IfStmt(soot.jimple.IfStmt)
NewArrayExpr(soot.jimple.NewArrayExpr)
ValueBox(soot.ValueBox)
Value(soot.Value)
NewExpr(soot.jimple.NewExpr)
StringConstant(soot.jimple.StringConstant)
ReturnStmt(soot.jimple.ReturnStmt)
ThrowStmt(soot.jimple.ThrowStmt)
DefinitionStmt(soot.jimple.DefinitionStmt)
BinopExpr(soot.jimple.BinopExpr)
Aggregations
ValueBox (soot.ValueBox)58
Value (soot.Value)43
Local (soot.Local)36
Unit (soot.Unit)33
ArrayList (java.util.ArrayList)26
Type (soot.Type)20
Stmt (soot.jimple.Stmt)20
DefinitionStmt (soot.jimple.DefinitionStmt)17
InvokeExpr (soot.jimple.InvokeExpr)15
SootMethod (soot.SootMethod)13
RefType (soot.RefType)12
AssignStmt (soot.jimple.AssignStmt)11
IntConstant (soot.jimple.IntConstant)11
HashSet (java.util.HashSet)10
IntType (soot.IntType)10
SootClass (soot.SootClass)10
FieldRef (soot.jimple.FieldRef)10
HashMap (java.util.HashMap)9
LongType (soot.LongType)9
VoidType (soot.VoidType)9
