escaping of locals

michael-schwarz · michael-schwarz · commit 739ef9c4945e · 2022-05-24T14:46:27.000+02:00
diff --git a/src/analyses/apron/apronPriv.apron.ml b/src/analyses/apron/apronPriv.apron.ml
@@ -533,21 +533,10 @@ struct
     {st with apr = apr_local}
 
   let escape node ask getg sideg (st:apron_components_t) escaped : apron_components_t =
-    let apr = st.apr in
-    let esc_vars = List.filter (fun var -> match AV.find_metadata var with
-        | Some (Global _) -> false
-        | Some Local ->
-          (let fundec = Node.find_fundec node in
-           let r = AV.to_cil_varinfo fundec var in
-           match r with
-           | Some r -> EscapeDomain.EscapedVars.mem r escaped
-           | _ -> false)
-        | _ -> false
-      ) (AD.vars apr) in
-    let apr_side = AD.keep_vars apr esc_vars in
-    sideg V.mutex_inits apr_side;
-    let apr_local = AD.remove_vars apr esc_vars in
-    { st with apr = apr_local }
+    let esc_vars = EscapeDomain.EscapedVars.elements escaped in
+    let esc_vars = List.filter (fun v -> not v.vglob && AD.varinfo_tracked v && AD.mem_var st.apr (AV.local v)) esc_vars in
+    let escape_one (x:varinfo) st = write_global ask getg sideg st x x in
+    List.fold_left (fun st v -> escape_one v st) st esc_vars
 
   let threadenter ask getg (st: apron_components_t): apron_components_t =
     {apr = AD.bot (); priv = startstate ()}
@@ -1066,24 +1055,10 @@ struct
       st
 
   let escape node ask getg sideg (st: apron_components_t) escaped: apron_components_t =
-    let apr = st.apr in
-    let esc_vars = List.filter (fun var -> match AV.find_metadata var with
-        | Some (Global _) -> false
-        | Some Local ->
-          (let fundec = Node.find_fundec node in
-           let r = AV.to_cil_varinfo fundec var in
-           match r with
-           | Some r -> EscapeDomain.EscapedVars.mem r escaped
-           | _ -> false)
-        | _ -> false
-      ) (AD.vars apr) in
-    let apr_side = AD.keep_vars apr esc_vars in
-    let apr_side = Cluster.unlock (W.top ()) apr_side in (* top W to avoid any filtering *)
-    let tid = ThreadId.get_current ask in
-    let sidev = GMutex.singleton tid apr_side in
-    sideg V.mutex_inits (G.create_mutex sidev);
-    let apr_local = AD.remove_vars apr esc_vars in
-    { st with apr = apr_local }
+    let esc_vars = EscapeDomain.EscapedVars.elements escaped in
+    let esc_vars = List.filter (fun v -> not v.vglob && AD.varinfo_tracked v && AD.mem_var st.apr (AV.local v)) esc_vars in
+    let escape_one (x:varinfo) st = write_global ask getg sideg st x x in
+    List.fold_left (fun st v -> escape_one v st) st esc_vars
 
   let enter_multithreaded (ask:Q.ask) getg sideg (st: apron_components_t): apron_components_t =
     let apr = st.apr in
diff --git a/tests/regression/46-apron2/12-escape-local-in-pthread-simple.c b/tests/regression/46-apron2/12-escape-local-in-pthread-simple.c
@@ -4,7 +4,7 @@
 #include <assert.h>
 #include <stdio.h>
 #include <unistd.h>
-
+int g = 8;
 
 void *foo(void* p){
     sleep(2);
@@ -22,6 +22,8 @@ int main(){
     sleep(4); // to make sure that we actually fail the assert when running.
     assert(x == 42); //UNKNOWN!
     assert(x == 0); //UNKNOWN!
+    assert(x <= 50);
+    assert(g == 8);
     pthread_join(thread, NULL);
     return 0;
 }
