Merge pull request #1265 from rdmarsh2/rdmarsh/cpp/gvn-string-pooling

C++: string pooling in IR value numbering

Author: rdmarsh2

cpp/ql/src/semmle/code/cpp/ir/implementation/aliased_ssa/gvn/ValueNumbering.qll

@@ -31,6 +31,9 @@ newtype TValueNumber =
   TConstantValueNumber(IRFunction irFunc, Type type, string value) {
     constantValueNumber(_, irFunc, type, value)
   } or
+  TStringConstantValueNumber(IRFunction irFunc, Type type, string value) {
+    stringConstantValueNumber(_, irFunc, type, value)
+  } or
   TFieldAddressValueNumber(IRFunction irFunc, Field field, ValueNumber objectAddress) {
     fieldAddressValueNumber(_, irFunc, field, objectAddress)
   } or
@@ -127,6 +130,7 @@ private predicate numberableInstruction(Instruction instr) {
   instr instanceof InitializeParameterInstruction or
   instr instanceof InitializeThisInstruction or
   instr instanceof ConstantInstruction or
+  instr instanceof StringConstantInstruction or
   instr instanceof FieldAddressInstruction or
   instr instanceof BinaryInstruction or
   instr instanceof UnaryInstruction or
@@ -157,6 +161,13 @@ private predicate constantValueNumber(ConstantInstruction instr, IRFunction irFu
   instr.getValue() = value
 }
 
+private predicate stringConstantValueNumber(StringConstantInstruction instr, IRFunction irFunc, Type type,
+    string value) {
+  instr.getEnclosingIRFunction() = irFunc and
+  instr.getResultType() = type and
+  instr.getValue().getValue() = value
+}
+
 private predicate fieldAddressValueNumber(FieldAddressInstruction instr, IRFunction irFunc,
     Field field, ValueNumber objectAddress) {
   instr.getEnclosingIRFunction() = irFunc and
@@ -255,6 +266,10 @@ private ValueNumber nonUniqueValueNumber(Instruction instr) {
         constantValueNumber(instr, irFunc, type, value) and
         result = TConstantValueNumber(irFunc, type, value)
       ) or
+      exists(Type type, string value |
+        stringConstantValueNumber(instr, irFunc, type, value) and
+        result = TStringConstantValueNumber(irFunc, type, value)
+      ) or
       exists(Field field, ValueNumber objectAddress |
         fieldAddressValueNumber(instr, irFunc, field, objectAddress) and
         result = TFieldAddressValueNumber(irFunc, field, objectAddress)

cpp/ql/src/semmle/code/cpp/ir/implementation/raw/gvn/ValueNumbering.qll

@@ -31,6 +31,9 @@ newtype TValueNumber =
   TConstantValueNumber(IRFunction irFunc, Type type, string value) {
     constantValueNumber(_, irFunc, type, value)
   } or
+  TStringConstantValueNumber(IRFunction irFunc, Type type, string value) {
+    stringConstantValueNumber(_, irFunc, type, value)
+  } or
   TFieldAddressValueNumber(IRFunction irFunc, Field field, ValueNumber objectAddress) {
     fieldAddressValueNumber(_, irFunc, field, objectAddress)
   } or
@@ -127,6 +130,7 @@ private predicate numberableInstruction(Instruction instr) {
   instr instanceof InitializeParameterInstruction or
   instr instanceof InitializeThisInstruction or
   instr instanceof ConstantInstruction or
+  instr instanceof StringConstantInstruction or
   instr instanceof FieldAddressInstruction or
   instr instanceof BinaryInstruction or
   instr instanceof UnaryInstruction or
@@ -157,6 +161,13 @@ private predicate constantValueNumber(ConstantInstruction instr, IRFunction irFu
   instr.getValue() = value
 }
 
+private predicate stringConstantValueNumber(StringConstantInstruction instr, IRFunction irFunc, Type type,
+    string value) {
+  instr.getEnclosingIRFunction() = irFunc and
+  instr.getResultType() = type and
+  instr.getValue().getValue() = value
+}
+
 private predicate fieldAddressValueNumber(FieldAddressInstruction instr, IRFunction irFunc,
     Field field, ValueNumber objectAddress) {
   instr.getEnclosingIRFunction() = irFunc and
@@ -255,6 +266,10 @@ private ValueNumber nonUniqueValueNumber(Instruction instr) {
         constantValueNumber(instr, irFunc, type, value) and
         result = TConstantValueNumber(irFunc, type, value)
       ) or
+      exists(Type type, string value |
+        stringConstantValueNumber(instr, irFunc, type, value) and
+        result = TStringConstantValueNumber(irFunc, type, value)
+      ) or
       exists(Field field, ValueNumber objectAddress |
         fieldAddressValueNumber(instr, irFunc, field, objectAddress) and
         result = TFieldAddressValueNumber(irFunc, field, objectAddress)

cpp/ql/src/semmle/code/cpp/ir/implementation/unaliased_ssa/gvn/ValueNumbering.qll

@@ -31,6 +31,9 @@ newtype TValueNumber =
   TConstantValueNumber(IRFunction irFunc, Type type, string value) {
     constantValueNumber(_, irFunc, type, value)
   } or
+  TStringConstantValueNumber(IRFunction irFunc, Type type, string value) {
+    stringConstantValueNumber(_, irFunc, type, value)
+  } or
   TFieldAddressValueNumber(IRFunction irFunc, Field field, ValueNumber objectAddress) {
     fieldAddressValueNumber(_, irFunc, field, objectAddress)
   } or
@@ -127,6 +130,7 @@ private predicate numberableInstruction(Instruction instr) {
   instr instanceof InitializeParameterInstruction or
   instr instanceof InitializeThisInstruction or
   instr instanceof ConstantInstruction or
+  instr instanceof StringConstantInstruction or
   instr instanceof FieldAddressInstruction or
   instr instanceof BinaryInstruction or
   instr instanceof UnaryInstruction or
@@ -157,6 +161,13 @@ private predicate constantValueNumber(ConstantInstruction instr, IRFunction irFu
   instr.getValue() = value
 }
 
+private predicate stringConstantValueNumber(StringConstantInstruction instr, IRFunction irFunc, Type type,
+    string value) {
+  instr.getEnclosingIRFunction() = irFunc and
+  instr.getResultType() = type and
+  instr.getValue().getValue() = value
+}
+
 private predicate fieldAddressValueNumber(FieldAddressInstruction instr, IRFunction irFunc,
     Field field, ValueNumber objectAddress) {
   instr.getEnclosingIRFunction() = irFunc and
@@ -255,6 +266,10 @@ private ValueNumber nonUniqueValueNumber(Instruction instr) {
         constantValueNumber(instr, irFunc, type, value) and
         result = TConstantValueNumber(irFunc, type, value)
       ) or
+      exists(Type type, string value |
+        stringConstantValueNumber(instr, irFunc, type, value) and
+        result = TStringConstantValueNumber(irFunc, type, value)
+      ) or
       exists(Field field, ValueNumber objectAddress |
         fieldAddressValueNumber(instr, irFunc, field, objectAddress) and
         result = TFieldAddressValueNumber(irFunc, field, objectAddress)

cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ir_gvn.expected

@@ -744,3 +744,23 @@ test.cpp:
 #  104|     v0_28(void)             = ReturnValue                   : r0_27, m0_26
 #  104|     v0_29(void)             = UnmodeledUse                  : mu*
 #  104|     v0_30(void)             = ExitFunction                  : 
+
+#  112| void test06()
+#  112|   Block 0
+#  112|     v0_0(void)           = EnterFunction       : 
+#  112|     m0_1(unknown)        = AliasedDefinition   : 
+#  112|         valnum = unique
+#  112|     mu0_2(unknown)       = UnmodeledDefinition : 
+#  112|         valnum = unique
+#  113|     r0_3(glval<char[2]>) = StringConstant["a"] : 
+#  113|         valnum = r0_3
+#  114|     r0_4(glval<char[2]>) = StringConstant["b"] : 
+#  114|         valnum = unique
+#  115|     r0_5(glval<char[2]>) = StringConstant["a"] : 
+#  115|         valnum = r0_3
+#  116|     r0_6(glval<char[2]>) = StringConstant["c"] : 
+#  116|         valnum = unique
+#  117|     v0_7(void)           = NoOp                : 
+#  112|     v0_8(void)           = ReturnVoid          : 
+#  112|     v0_9(void)           = UnmodeledUse        : mu*
+#  112|     v0_10(void)          = ExitFunction        : 

cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/test.cpp

@@ -107,4 +107,11 @@ int inheritanceConversions(Derived* pd) {
   int y = pb->b;
 
   return y;
-}
+}
+
+void test06() {
+  "a";
+  "b";
+  "a";
+  "c";
+}