Merge pull request #841 from MarcMil/faster-sysclass

Minor optimization: Omit some method calls

Author: StevenArzt

soot-infoflow/src/soot/jimple/infoflow/problems/InfoflowProblem.java

@@ -13,6 +13,7 @@
 import java.util.Collection;
 import java.util.Collections;
 import java.util.HashSet;
+import java.util.Iterator;
 import java.util.Set;
 
 import heros.FlowFunction;
@@ -49,6 +50,7 @@
 import soot.jimple.infoflow.InfoflowConfiguration.StaticFieldTrackingMode;
 import soot.jimple.infoflow.InfoflowManager;
 import soot.jimple.infoflow.aliasing.Aliasing;
+import soot.jimple.infoflow.aliasing.IAliasingStrategy;
 import soot.jimple.infoflow.callmappers.CallerCalleeManager;
 import soot.jimple.infoflow.callmappers.ICallerCalleeArgumentMapper;
 import soot.jimple.infoflow.cfg.FlowDroidSinkStatement;
@@ -130,8 +132,7 @@ private void addTaintViaStmt(final Abstraction d1, final AssignStmt assignStmt,
 				if (!source.getAccessPath().isEmpty()) {
 					// Special handling for array construction
 					if (leftValue instanceof ArrayRef && targetType != null) {
-						ArrayRef arrayRef = (ArrayRef) leftValue;
-						targetType = TypeUtils.buildArrayOrAddDimension(targetType, arrayRef.getType().getArrayType());
+						targetType = TypeUtils.buildArrayOrAddDimension(targetType, leftValue.getType().getArrayType());
 					}
 
 					// If this is an unrealizable typecast, drop the abstraction
@@ -310,10 +311,11 @@ else if (rightVal instanceof InstanceFieldRef) {
 						// y = x && x.f tainted --> y.f, x.f tainted
 						// y.g = x && x.f tainted --> y.g.f, x.f tainted
 						else if (rightVal instanceof Local && newSource.getAccessPath().isInstanceFieldRef()) {
-							Local base = newSource.getAccessPath().getPlainValue();
+							AccessPath ap = newSource.getAccessPath();
+							Local base = ap.getPlainValue();
 							if (aliasing.mayAlias(rightVal, base)) {
 								addLeftValue = true;
-								targetType = newSource.getAccessPath().getBaseType();
+								targetType = ap.getBaseType();
 							}
 						}
 						// generic case, is true for Locals, ArrayRefs that are
@@ -432,8 +434,9 @@ public FlowFunction<Abstraction> getCallFlowFunction(final Unit src, final SootM
 					public Set<Abstraction> computeTargets(Abstraction d1, Abstraction source) {
 						Set<Abstraction> res = computeTargetsInternal(d1, source);
 						if (res != null && !res.isEmpty() && d1 != null) {
+							final IAliasingStrategy strategy = aliasing.getAliasingStrategy();
 							for (Abstraction abs : res)
-								aliasing.getAliasingStrategy().injectCallingContext(abs, solver, dest, src, source, d1);
+								strategy.injectCallingContext(abs, solver, dest, src, source, d1);
 						}
 						return notifyOutFlowHandlers(stmt, d1, source, res, FlowFunctionType.CallFlowFunction);
 					}
@@ -567,24 +570,24 @@ private Set<Abstraction> computeTargetsInternal(Abstraction source, Abstraction
 						if (callSite == null)
 							return null;
 
+						final AccessPath newSourceAP = newSource.getAccessPath();
 						// Do we need to retain all the taints?
-						if (aliasing.getAliasingStrategy().isLazyAnalysis()
-								&& Aliasing.canHaveAliases(newSource.getAccessPath()))
+						if (aliasing.getAliasingStrategy().isLazyAnalysis() && Aliasing.canHaveAliases(newSourceAP))
 							res.add(newSource);
 
 						// Static fields are handled in a rule
-						if (!newSource.getAccessPath().isStaticFieldRef() && !callee.isStaticInitializer()) {
+						if (!newSourceAP.isStaticFieldRef() && !callee.isStaticInitializer()) {
 							// if we have a returnStmt we have to look at the
 							// returned value:
 							if (returnStmt != null && callSite instanceof DefinitionStmt) {
 								Value retLocal = returnStmt.getOp();
 								DefinitionStmt defnStmt = (DefinitionStmt) callSite;
 								Value leftOp = defnStmt.getLeftOp();
 
-								if (aliasing.mayAlias(retLocal, newSource.getAccessPath().getPlainValue())
+								if (aliasing.mayAlias(retLocal, newSourceAP.getPlainValue())
 										&& !isExceptionHandler(retSite)) {
-									AccessPath ap = manager.getAccessPathFactory()
-											.copyWithNewValue(newSource.getAccessPath(), leftOp);
+									AccessPath ap = manager.getAccessPathFactory().copyWithNewValue(newSourceAP,
+											leftOp);
 									Abstraction abs = newSource.deriveNewAbstraction(ap, (Stmt) exitStmt);
 									if (abs != null) {
 										res.add(abs);
@@ -600,7 +603,7 @@ private Set<Abstraction> computeTargetsInternal(Abstraction source, Abstraction
 							}
 
 							// Check parameters
-							Value sourceBase = newSource.getAccessPath().getPlainValue();
+							Value sourceBase = newSourceAP.getPlainValue();
 							boolean parameterAliases = false;
 							{
 								Value originalCallArg = null;
@@ -660,17 +663,16 @@ private Set<Abstraction> computeTargetsInternal(Abstraction source, Abstraction
 										if (interproceduralCFG().methodWritesValue(callee, paramLocals[i]))
 											continue;
 
-										AccessPath ap = manager.getAccessPathFactory().copyWithNewValue(
-												newSource.getAccessPath(), originalCallArg,
-												isReflectiveCallSite ? null : newSource.getAccessPath().getBaseType(),
-												false);
+										AccessPath ap = manager.getAccessPathFactory().copyWithNewValue(newSourceAP,
+												originalCallArg,
+												isReflectiveCallSite ? null : newSourceAP.getBaseType(), false);
 										Abstraction abs = newSource.deriveNewAbstraction(ap, (Stmt) exitStmt);
 
 										if (abs != null) {
 											res.add(abs);
+											final Aliasing aliasing = manager.getAliasing();
 											for (Abstraction callerD1 : callerD1s)
-												manager.getAliasing().computeAliases(callerD1, iCallStmt,
-														originalCallArg, res,
+												aliasing.computeAliases(callerD1, iCallStmt, originalCallArg, res,
 														interproceduralCFG().getMethodOf(callSite), abs);
 										}
 									}
@@ -717,22 +719,28 @@ private Set<Abstraction> computeTargetsInternal(Abstraction source, Abstraction
 								}
 							}
 						}
+						Iterator<Abstraction> rit = res.iterator();
+						if (rit.hasNext()) {
+							SootMethod methodOfCallsite = interproceduralCFG().getMethodOf(callSite);
+
+							while (rit.hasNext()) {
+								final Abstraction abs = rit.next();
+
+								// Aliases of implicitly tainted variables must be
+								// mapped back into the caller's context on return
+								// when we leave the last implicitly-called method
+								if ((abs.isImplicit() && !callerD1sConditional)
+										|| aliasing.getAliasingStrategy().requiresAnalysisOnReturn()) {
+									for (Abstraction d1 : callerD1s) {
 
-						for (Abstraction abs : res) {
-							// Aliases of implicitly tainted variables must be
-							// mapped back into the caller's context on return
-							// when we leave the last implicitly-called method
-							if ((abs.isImplicit() && !callerD1sConditional)
-									|| aliasing.getAliasingStrategy().requiresAnalysisOnReturn()) {
-								for (Abstraction d1 : callerD1s) {
-									aliasing.computeAliases(d1, iCallStmt, null, res,
-											interproceduralCFG().getMethodOf(callSite), abs);
+										aliasing.computeAliases(d1, iCallStmt, null, res, methodOfCallsite, abs);
+									}
 								}
-							}
 
-							// Set the corresponding call site
-							if (abs != newSource) {
-								abs.setCorrespondingCallSite(iCallStmt);
+								// Set the corresponding call site
+								if (abs != newSource) {
+									abs.setCorrespondingCallSite(iCallStmt);
+								}
 							}
 						}
 						return res;

soot-infoflow/src/soot/jimple/infoflow/solver/fastSolver/IFDSSolver.java

@@ -40,7 +40,6 @@
 import heros.solver.Pair;
 import heros.solver.PathEdge;
 import soot.SootMethod;
-import soot.Unit;
 import soot.jimple.infoflow.collect.MyConcurrentHashMap;
 import soot.jimple.infoflow.memory.IMemoryBoundedSolver;
 import soot.jimple.infoflow.memory.ISolverTerminationReason;
@@ -514,13 +513,13 @@ protected void processExit(PathEdge<N, D> edge) {
 		// conditionally generated values should only be propagated into callers that
 		// have an incoming edge for this condition
 		if (followReturnsPastSeeds && d1 == zeroValue && (inc == null || inc.isEmpty())) {
+			final Set<D> zeroValueSingleton = Collections.singleton(zeroValue);
 			Collection<N> callers = icfg.getCallersOf(methodThatNeedsSummary);
 			for (N c : callers) {
 				for (N retSiteC : icfg.getReturnSitesOfCallAt(c)) {
 					FlowFunction<D> retFunction = flowFunctions.getReturnFlowFunction(c, methodThatNeedsSummary, n,
 							retSiteC);
-					Set<D> targets = computeReturnFlowFunction(retFunction, d1, d2, c,
-							Collections.singleton(zeroValue));
+					Set<D> targets = computeReturnFlowFunction(retFunction, d1, d2, c, zeroValueSingleton);
 					if (targets != null && !targets.isEmpty()) {
 						for (D d5 : targets) {
 							if (memoryManager != null)