diff options
| author | Sean Bartell <yotann@yotann.org> | 2015-04-28 20:21:10 -0500 |
|---|---|---|
| committer | Sean Bartell <yotann@yotann.org> | 2015-04-29 20:39:56 -0500 |
| commit | dff4069042e6f7b4bc7211b8e9ba3377ee01c33c (patch) | |
| tree | 7f5bbf264099b6a650bd92e6f25e79c2ed7e04a2 | |
| parent | 6118403fa4315388946babd25be38a9524a5e2c5 (diff) | |
| download | klee-dff4069042e6f7b4bc7211b8e9ba3377ee01c33c.tar.gz | |
Fix assertion failure in getDirectCallTarget
It failed when the function being called is a bitcasted alias.
| -rw-r--r-- | lib/Module/ModuleUtil.cpp | 2 | ||||
| -rw-r--r-- | test/Feature/BitcastAliasMD2U.ll | 34 |
2 files changed, 35 insertions, 1 deletions
diff --git a/lib/Module/ModuleUtil.cpp b/lib/Module/ModuleUtil.cpp index 5f7ed35e..1cf9c35c 100644 --- a/lib/Module/ModuleUtil.cpp +++ b/lib/Module/ModuleUtil.cpp @@ -446,7 +446,7 @@ Function *klee::getDirectCallTarget(CallSite cs) { return f; } else if (llvm::ConstantExpr *ce = dyn_cast<llvm::ConstantExpr>(v)) { if (ce->getOpcode()==Instruction::BitCast) - if (Function *f = dyn_cast<Function>(ce->getOperand(0))) + if (Function *f = dyn_cast<Function>(ce->getOperand(0)->stripPointerCasts())) return f; // NOTE: This assert may fire, it isn't necessarily a problem and diff --git a/test/Feature/BitcastAliasMD2U.ll b/test/Feature/BitcastAliasMD2U.ll new file mode 100644 index 00000000..24eabaa5 --- /dev/null +++ b/test/Feature/BitcastAliasMD2U.ll @@ -0,0 +1,34 @@ +; RUN: llvm-as %s -f -o %t1.bc +; RUN: rm -rf %t.klee-out +; RUN: %klee --output-dir=%t.klee-out -disable-opt -search=nurs:md2u %t1.bc > %t2 +; RUN: grep PASS %t2 + +target datalayout = "e-p:64:64:64-i1:8:8-i8:8:8-i16:16:16-i32:32:32-i64:64:64-f32:32:32-f64:64:64-v64:64:64-v128:128:128-a0:0:64-s0:64:64-f80:128:128-n8:16:32:64" +target triple = "x86_64-unknown-linux-gnu" + +@foo = alias i32 (i32)* @__foo + +define i32 @__foo(i32 %i) nounwind { +entry: + ret i32 %i +} + +declare i32 @puts(i8*) + +@.passstr = private constant [5 x i8] c"PASS\00", align 1 +@.failstr = private constant [5 x i8] c"FAIL\00", align 1 + +define i32 @main(i32 %argc, i8** nocapture %argv) nounwind readnone { +entry: + %call = call i32 (i64)* bitcast (i32 (i32)* @foo to i32 (i64)*)(i64 52) + %r = icmp eq i32 %call, 52 + br i1 %r, label %bbtrue, label %bbfalse + +bbtrue: + %0 = call i32 @puts(i8* getelementptr inbounds ([5 x i8]* @.passstr, i64 0, i64 0)) nounwind + ret i32 0 + +bbfalse: + %1 = call i32 @puts(i8* getelementptr inbounds ([5 x i8]* @.failstr, i64 0, i64 0)) nounwind + ret i32 0 +} |