| Age | Commit message (Collapse) | Author | 
|---|
|  | assertion entirely? | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  | - Mostly fixed by removing unnecessary references. | 
|  |  | 
|  |  | 
|  | - This makes KCachegrind output look nicer, as otherwise it assumes
   instructions without debug info were inlined and shows some message to that
   effect.
 - This does however we might be lying a bit about the source line that an
   instruction came from.
 - This also adds a test case for our istats output, yay! | 
|  | - This allows us to build in +Asserts mode even when LLVM isn't (by disabling
   the checks in that mode).
 - Eventually it would be nice to just move off of LLVM's DEBUG infrastructure
   entirely and just have our own copy, but this works for now.
 - Fixes #150. | 
|  | - The change in 6829fb9 caused us to not allocation InstructionInfo objects for
   instructions without source-level debug info, however, that means that all
   such instructions end up sharing the one dummy InstructionInfo object, which
   really breaks statistics tracking.
 - This commit basically reverts that change, and also changes the code so we
   don't ever use the dummy InstructionInfo object for instructions, so that
   this problem can't be hit in other ways (e.g., if someone modifies the module
   after the InstructionInfoTable construction). There is a FIXME for checking
   the same thing for functions.
 - Fixes #144. | 
|  | iostream injects static constructor function into every compilation unit.
Remove this to avoid it. | 
|  | According to LLVM: lightweight and simpler implementation of streams. | 
|  | it has been removed. From the LLVM 3.4 release notes:
"
The library call simplification pass has been removed. Its functionality
has been integrated into the instruction combiner and function attribute
marking passes.
" | 
|  | of old V1 path API.
LLVM2.9 supports LLVM's V2 path API. Because that is the minimum
version we support we should just use this API everywhere so we
reduce the number of #if LLVM_VERSION_CODE macros and duplicated
code. | 
|  |  | 
|  | Old Path API was removed | 
|  | of modules left because this information is no longer correct
(we no longer shrink the vector). | 
|  | then clean up is performed. | 
|  | because "RemovedSymbols" implies that the symbols have already been
removed which is misleading because we don't remove until the end. | 
|  |  | 
|  | Iterators get invalidated after elements of std::vector/set are
deleted. Avoid this by remembering which elements need to be
deleted and do it after iterating over the data structure. | 
|  | KLEE intrinsics as undefined symbols | 
|  | bitcode archive linker. | 
|  | LLVM >= 3.3 by effectively reimplementing the linking algorithm
used in LLVM <= 3.2.
The LLVM specific bitcode archive format has been removed
from LLVM >= 3.3 . Now archives are normal system archives that can
contain LLVM bitcode modules as well as regular binary object files.
The previous commit implemented an approach where ALL the bitcode
modules get linked in which can be terribly slow when klee-uclibc gets
linked (~600 LLVM modules).
Here are the options that I considered to address this:
* Use LD with LLVM gold plug-in and call as an external program.
  I Don't really want to add another dependency to KLEE. It already
  has enough!
* Use the upcomming LLVM linker (lld). Not really an option
  because at the time of writing there is no support for linking
  archives of bitcode modules.
* Don't use archives at all and just work with modules (i.e.
  replace uses of llvm-ar with llvm-link and tinker with the
  flags a little). This isn't so great because the resulting
  LLVM bitcode module we execute is bigger than it should be.
* Reimpelent bitcode archive linking ourselves in a slightly
  better way.
I've gone for the last option
This implementation unfortunately loads all bitcode modules into memory
first so we can query the module symbols tables. I would prefer to read
the archive's index and link in modules on demand but unfortunately
although the new Object::Archive interface in LLVM allows iteration over
symbols it doesn't provide a way of knowing if that symbol is
defined/undefined.
This implementation is far from perfect! | 
|  | With LLVM 3.3 the linker does not support reading of
archive files directly. This brings the support back
(based on llvm-mn).
Furthermore, linking single bc files or archives with
bc and object files mixed is supported as well. | 
|  | In case linking of external libraries failed, user would
only be informed if KLEE is compiled with assertions enabled.
This fix lets KLEE always fail. | 
|  | Existence of main() function is checked with assertion.
This check fails if KLEE is compiled in Release mode. | 
|  | Feature klee internal functions | 
|  |  | 
|  | is actually available.
In addition if doing a DEBUG build then the command line flag
-debug-only=klee_missing_debug
shows the instructions missing debug information
and
-debug-only=klee_obtained_debug
show the instructions with debug information. | 
|  | debug information is attached directly to most instructions so
the simpler algorithm added in  5ecfd6e2fd5becc10be355b3a20d014e76e40518
can be used.
Since support for LLVM version < 2.9 has been removed the old algorithm
should be removed.
This has been tested with LLVM 2.9 and LLVM 3.3 | 
|  | * Just iterate over the instructions which use the function to be inlined
* Handle each callsite (e.g. CallInst and InvokeInst) | 
|  |  | 
|  | KLEE provides runtime library functions to do detection of bugs (e.g. overflow).
This runtime functions are not the location of the bugs but it is
the next non-runtime library function from the stack.
Use the caller inside that function to indicate where the bug is. | 
|  | LLVM versions
With newer LLVM versions (starting with LLVM 2.7) debug information are directly associated
as meta data with each instruction.
Therefore, debug information can be acquired directly from each instruction. | 
|  |  | 
|  |  | 
|  |  | 
|  | Fixes memleak | 
|  | Fixed bug where divide by zero bugs would only be detected once in a program | 
|  | Bugfix: Remove llvm.trap declaration after cleaning all uses. | 
|  |  | 
|  | Replace current implementation of linkWithLibrary() | 
|  |  | 
|  |  | 
|  |  | 
|  | Make KLEE compile with LLVM 2.3. | 
|  | command line argument).
Overshift is where a Shl, AShr or LShr has a shift width greater
than the bit width of the first operand. This is undefined behaviour
in LLVM so we report this as an error. | 
|  | even if there were many divide by zero bugs.
The fix basically inlines all function calls to klee_div_zero_check()
so that each call to klee_report_error() is a unique instruction
for each instrumentation of a divide operation.
It also seems that inlining the call "magically" fixed the debug information
(file and line number) of the instruction so that the debug information on the
inlined instructions matches that of the instrumented division instruction.
Note that the command line option -emit-all-errors could be used to
workaround the bug fixed in this commit. |