Constrain target of addrof operator to PTR (#380)

john-h-kastner · web-flow · commit e778223b59dd · 2021-01-17T18:10:17.000-05:00
Adds an edge PTR -&gt; x for expressions &amp;x. Previously, only the result
of the addrof expression had this constraint, but CheckedC prohibits
taking the address of pointers with bounds. It is possible to take the
address of an _Array_ptr when the pointer doesn't have bounds declared.
With this constraint added however, 3C will not let this happen.
diff --git a/clang/lib/3C/ConstraintResolver.cpp b/clang/lib/3C/ConstraintResolver.cpp
@@ -373,9 +373,18 @@ CVarSet ConstraintResolver::getExprConstraintVars(Expr *E) {
                        dyn_cast<ArraySubscriptExpr>(UOExpr)) {
           Ret = getExprConstraintVars(ASE->getBase());
         } else {
-          // add a VarAtom to UOExpr's PVConstraint, for &
           CVarSet T = getExprConstraintVars(UOExpr);
           assert("Empty constraint vars in AddrOf!" && !T.empty());
+          // CheckedC prohibits taking the address of a variable with bounds. To
+          // avoid doing this, constrain the target of AddrOf expressions to
+          // PTR. This prevents it from solving to either ARR or NTARR. CheckedC
+          // does permit taking the address of an _Array_ptr when the array
+          // pointer has no declared bounds. With this constraint added however,
+          // 3C will not generate such code.
+          for (auto *CV : T)
+            if (auto *PCV = dyn_cast<PVConstraint>(CV))
+              PCV->constrainOuterTo(CS, CS.getPtr(), true);
+          // add a VarAtom to UOExpr's PVConstraint, for &
           Ret = addAtomAll(T, CS.getPtr(), CS);
         }
         break;
