Ghidra 11.4.2
Ghidra internal decompiler documentation.
|
Class for merging low-level Varnodes into high-level HighVariables. More...
#include <merge.hh>
Public Member Functions | |
Merge (Funcdata &fd) | |
Construct given a specific function. | |
void | clear (void) |
Clear the any cached data from the last merge process. | |
bool | inflateTest (Varnode *a, HighVariable *high) |
Test if we can inflate the Cover of the given Varnode without incurring intersections. | |
bool | mergeTest (HighVariable *high, vector< HighVariable * > &tmplist) |
Test for intersections between a given HighVariable and a list of other HighVariables. | |
void | mergeOpcode (OpCode opc) |
Try to force merges of input to output for all p-code ops of a given type. | |
void | mergeByDatatype (VarnodeLocSet::const_iterator startiter, VarnodeLocSet::const_iterator enditer) |
Try to merge all HighVariables in the given range that have the same data-type. | |
void | mergeAddrTied (void) |
Force the merge of address tried Varnodes. | |
void | mergeMarker (void) |
Force the merge of input and output Varnodes to MULTIEQUAL and INDIRECT ops. | |
void | groupPartials (void) |
Run through CONCAT tree roots and group each tree. | |
void | mergeAdjacent (void) |
Speculatively merge Varnodes that are input/output to the same p-code op. | |
void | mergeMultiEntry (void) |
Merge together Varnodes mapped to SymbolEntrys from the same Symbol. | |
bool | hideShadows (HighVariable *high) |
Hide shadow Varnodes related to the given HighVariable by consolidating COPY chains. | |
void | processCopyTrims (void) |
Try to reduce/eliminate COPYs produced by the merge trimming process. | |
void | markInternalCopies (void) |
Mark redundant/internal COPY PcodeOps. | |
void | registerProtoPartialRoot (Varnode *vn) |
Register an unmapped CONCAT stack with the merge process. | |
Static Public Member Functions | |
static void | markImplied (Varnode *vn) |
Mark the given Varnode as implied. | |
Private Member Functions | |
void | collectInputs (HighVariable *high, vector< PcodeOpNode > &oplist, PcodeOp *op) |
Collect Varnode instances or pieces from a specific HighVariable that are inputs to a given PcodeOp. | |
PcodeOp * | allocateCopyTrim (Varnode *inVn, const Address &addr, PcodeOp *trimOp) |
Allocate COPY PcodeOp designed to trim an overextended Cover. | |
void | snipReads (Varnode *vn, list< PcodeOp * > &markedop) |
Snip off set of read p-code ops for a given Varnode. | |
bool | snipOutputInterference (PcodeOp *indop) |
Snip instances of the output of an INDIRECT that are also inputs to the underlying PcodeOp. | |
void | eliminateIntersect (Varnode *vn, const vector< BlockVarnode > &blocksort) |
Eliminate intersections of given Varnode with other Varnodes in a list. | |
void | unifyAddress (VarnodeLocSet::const_iterator startiter, VarnodeLocSet::const_iterator enditer) |
Make sure all Varnodes with the same storage address and size can be merged. | |
void | trimOpOutput (PcodeOp *op) |
Trim the output HighVariable of the given PcodeOp so that its Cover is tiny. | |
void | trimOpInput (PcodeOp *op, int4 slot) |
Trim the input HighVariable of the given PcodeOp so that its Cover is tiny. | |
void | mergeRangeMust (VarnodeLocSet::const_iterator startiter, VarnodeLocSet::const_iterator enditer) |
Force the merge of a ranges of Varnodes with the same size and storage address. | |
void | mergeOp (PcodeOp *op) |
Force the merge of all input and output Varnodes for the given PcodeOp. | |
void | mergeIndirect (PcodeOp *indop) |
Force the merge of all input and output Varnodes to a given INDIRECT op. | |
void | mergeLinear (vector< HighVariable * > &highvec) |
Speculatively merge all HighVariables in the given list as well as possible. | |
bool | merge (HighVariable *high1, HighVariable *high2, bool isspeculative) |
Perform low-level details of merging two HighVariables if possible. | |
bool | checkCopyPair (HighVariable *high, PcodeOp *domOp, PcodeOp *subOp) |
Check if the given PcodeOp COPYs are redundant. | |
void | buildDominantCopy (HighVariable *high, vector< PcodeOp * > ©, int4 pos, int4 size) |
Try to replace a set of COPYs from the same Varnode with a single dominant COPY. | |
void | markRedundantCopies (HighVariable *high, vector< PcodeOp * > ©, int4 pos, int4 size) |
Search for and mark redundant COPY ops into the given high as non-printing. | |
void | processHighDominantCopy (HighVariable *high) |
Try to replace COPYs into the given HighVariable with a single dominant COPY. | |
void | processHighRedundantCopy (HighVariable *high) |
Mark COPY ops into the given HighVariable that are redundant. | |
void | groupPartialRoot (Varnode *vn) |
Group the different nodes of a CONCAT tree into a VariableGroup. | |
Static Private Member Functions | |
static bool | mergeTestRequired (HighVariable *high_out, HighVariable *high_in) |
Required tests to merge HighVariables that are not Cover related. | |
static bool | mergeTestAdjacent (HighVariable *high_out, HighVariable *high_in) |
Adjacency tests for merging Varnodes that are input or output to the same p-code op. | |
static bool | mergeTestSpeculative (HighVariable *high_out, HighVariable *high_in) |
Speculative tests for merging HighVariables that are not Cover related. | |
static void | mergeTestMust (Varnode *vn) |
Test if the given Varnode that must be merged, can be merged. | |
static bool | mergeTestBasic (Varnode *vn) |
Test if the given Varnode can ever be merged. | |
static void | findSingleCopy (HighVariable *high, vector< Varnode * > &singlelist) |
Find instance Varnodes that copied to from outside the given HighVariable. | |
static bool | compareHighByBlock (const HighVariable *a, const HighVariable *b) |
Compare HighVariables by the blocks they cover. | |
static bool | compareCopyByInVarnode (PcodeOp *op1, PcodeOp *op2) |
Compare COPY ops first by Varnode input, then by block containing the op. | |
static bool | shadowedVarnode (const Varnode *vn) |
Determine if given Varnode is shadowed by another Varnode in the same HighVariable. | |
static void | findAllIntoCopies (HighVariable *high, vector< PcodeOp * > ©Ins, bool filterTemps) |
Find all the COPY ops into the given HighVariable. | |
Private Attributes | |
Funcdata & | data |
The function containing the Varnodes to be merged. | |
StackAffectingOps | stackAffectingOps |
Set of CALL and STORE ops indirectly affecting stack variables. | |
HighIntersectTest | testCache |
Cached intersection tests. | |
vector< PcodeOp * > | copyTrims |
COPY ops inserted to facilitate merges. | |
vector< PcodeOp * > | protoPartial |
Roots of unmapped CONCAT trees. | |
Class for merging low-level Varnodes into high-level HighVariables.
As a node in Single Static Assignment (SSA) form, a Varnode has at most one defining operation. To get a suitable notion of a single high-level variable (HighVariable) that may be reassigned at multiple places in a single function, individual Varnode objects can be merged into a HighVariable object. Varnode objects may be merged in this way if there is no pairwise intersection between each Varnode's Cover, the ranges of code where the Varnode holds its value.
For a given function, this class attempts to merge Varnodes using various strategies and keeps track of Cover intersections to facilitate the process. Merge strategies break up into two general categories: forced merges, and speculative merges. Forced merges must happen, and extra Varnodes may be added to split up problematic covers to enforce it. Forced merges include:
Speculative merges are attempted to reduce the overall number of variables defined by a function, but any given merge attempt is abandoned if there are Cover intersections. No modification is made to the data-flow to force the merge. Speculative merges include:
|
private |
Allocate COPY PcodeOp designed to trim an overextended Cover.
A COPY is allocated with the given input and data-type. A unique space output is created.
inVn | is the given input Varnode for the new COPY |
addr | is the address associated with the new COPY |
trimOp | is an exemplar PcodeOp whose read is being trimmed |
References copyTrims, ghidra::CPUI_COPY, data, ghidra::Funcdata::forceFacingType(), ghidra::Varnode::getDef(), ghidra::ResolvedUnion::getFieldNum(), ghidra::Varnode::getSize(), ghidra::PcodeOp::getSlot(), ghidra::Varnode::getType(), ghidra::Funcdata::getUnionField(), ghidra::Funcdata::inheritResolution(), ghidra::Varnode::isWritten(), ghidra::Datatype::needsResolution(), ghidra::Funcdata::newOp(), ghidra::Funcdata::newUnique(), ghidra::Funcdata::opSetInput(), ghidra::Funcdata::opSetOpcode(), and ghidra::Funcdata::opSetOutput().
Referenced by mergeIndirect(), snipOutputInterference(), snipReads(), and trimOpInput().
|
private |
Try to replace a set of COPYs from the same Varnode with a single dominant COPY.
All the COPY outputs must be instances of the same HighVariable (not the same Varnode). Either an existing COPY dominates all the others, or a new dominating COPY is constructed. The read locations of all other COPY outputs are replaced with the output of the dominating COPY, if it does not cause intersections in the HighVariable's Cover. Because of intersections, replacement may fail or partially succeed. Replacement only happens with COPY outputs that are temporary registers. The cover of the HighVariable may be extended because of a new COPY output instance.
high | is the HighVariable being copied to |
copy | is the list of COPY ops into the HighVariable |
pos | is the index of the first COPY from the specific input Varnode |
size | is the number of COPYs (in sequence) from the same specific Varnode |
References ghidra::Cover::addDefPoint(), ghidra::Cover::addRefPoint(), ghidra::Varnode::beginDescend(), ghidra::PcodeOp::clearMark(), ghidra::PcodeOp::code(), ghidra::Varnode::copyShadow(), ghidra::CPUI_COPY, data, ghidra::Varnode::endDescend(), ghidra::FlowBlock::findCommonBlock(), ghidra::Funcdata::forceFacingType(), ghidra::Varnode::getCover(), ghidra::Varnode::getDef(), ghidra::ResolvedUnion::getFieldNum(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::HighVariable::getInstance(), ghidra::Datatype::getMetatype(), ghidra::PcodeOp::getOut(), ghidra::PcodeOp::getParent(), ghidra::Varnode::getSize(), ghidra::BlockBasic::getStop(), ghidra::Varnode::getType(), ghidra::Varnode::getTypeReadFacing(), ghidra::Funcdata::getUnionField(), ghidra::Cover::intersect(), ghidra::PcodeOp::isMark(), ghidra::Varnode::isWritten(), ghidra::Cover::merge(), ghidra::HighVariable::merge(), ghidra::Datatype::needsResolution(), ghidra::Funcdata::newOp(), ghidra::Funcdata::newUnique(), ghidra::HighVariable::numInstances(), ghidra::Funcdata::opDestroy(), ghidra::Funcdata::opInsertEnd(), ghidra::Funcdata::opSetInput(), ghidra::Funcdata::opSetOpcode(), ghidra::Funcdata::opSetOutput(), ghidra::HighVariable::remove(), ghidra::PcodeOp::setMark(), ghidra::Funcdata::totalReplace(), and ghidra::TYPE_PARTIALUNION.
Referenced by processHighDominantCopy().
|
private |
Check if the given PcodeOp COPYs are redundant.
Both the given COPYs assign to the same HighVariable. One is redundant if there is no other assignment to the HighVariable between the first COPY and the second COPY. The first COPY must come from a block with a smaller or equal index to the second COPY. If the indices are equal, the first COPY must come before the second within the block.
high | is the HighVariable being assigned to |
domOp | is the first COPY |
subOp | is the second COPY |
References ghidra::Cover::addDefPoint(), ghidra::Cover::addRefPoint(), ghidra::PcodeOp::code(), ghidra::Cover::contain(), ghidra::CPUI_COPY, ghidra::FlowBlock::dominates(), ghidra::Varnode::getDef(), ghidra::PcodeOp::getIn(), ghidra::HighVariable::getInstance(), ghidra::PcodeOp::getOut(), ghidra::PcodeOp::getParent(), ghidra::Varnode::isWritten(), and ghidra::HighVariable::numInstances().
Referenced by markRedundantCopies().
void ghidra::Merge::clear | ( | void | ) |
Clear the any cached data from the last merge process.
Free up resources used by cached intersection tests etc.
References ghidra::PcodeOpSet::clear(), ghidra::HighIntersectTest::clear(), copyTrims, protoPartial, stackAffectingOps, and testCache.
Referenced by ghidra::Funcdata::clear().
|
private |
Collect Varnode instances or pieces from a specific HighVariable that are inputs to a given PcodeOp.
A Varnode is considered an input if it is a direct input to the PcodeOp or if it is indirectly affected by the PcodeOp. The specific read of the Varnode is passed back as a PcodeOp and slot pair (PcodeOpNode). The passed back PcodeOp will either be the given PcodeOp or an INDIRECT caused by the given PcodeOp.
high | is the specific HighVariable through which to search for input instances |
oplist | will hold the PcodeOpNodes being passed back |
op | is the given PcodeOp |
References ghidra::PcodeOp::code(), ghidra::CPUI_INDIRECT, ghidra::VariablePiece::getGroup(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::Varnode::isAnnotation(), ghidra::PcodeOp::numInput(), ghidra::HighVariable::piece, and ghidra::PcodeOp::previousOp().
Referenced by snipOutputInterference().
Compare COPY ops first by Varnode input, then by block containing the op.
A sort designed to group COPY ops from the same Varnode together. Then within a group, COPYs are sorted by their containing basic block (so that dominating ops come first).
References ghidra::Varnode::getCreateIndex(), ghidra::PcodeOp::getIn(), ghidra::FlowBlock::getIndex(), ghidra::SeqNum::getOrder(), ghidra::PcodeOp::getParent(), and ghidra::PcodeOp::getSeqNum().
Referenced by findAllIntoCopies().
|
inlinestaticprivate |
Compare HighVariables by the blocks they cover.
This comparator sorts, based on:
a | is the first HighVariable to compare |
b | is the second HighVariable |
References ghidra::Cover::compareTo(), ghidra::PcodeOp::getAddr(), ghidra::Varnode::getAddr(), ghidra::HighVariable::getCover(), ghidra::Varnode::getDef(), and ghidra::HighVariable::getInstance().
Referenced by mergeLinear().
|
private |
Eliminate intersections of given Varnode with other Varnodes in a list.
Both the given Varnode and those in the list are assumed to be at the same storage address. For any intersection, identify the PcodeOp reading the given Varnode which causes the intersection and snip the read by inserting additional COPY ops.
vn | is the given Varnode |
blocksort | is the list of other Varnodes sorted by their defining basic block |
References ghidra::Cover::addDefPoint(), ghidra::Cover::addRefPoint(), ghidra::Cover::begin(), ghidra::Varnode::beginDescend(), ghidra::Varnode::characterizeOverlap(), ghidra::PcodeOp::code(), ghidra::Cover::containVarnodeDef(), ghidra::Varnode::copyShadow(), ghidra::CPUI_INDIRECT, ghidra::Cover::end(), ghidra::Varnode::endDescend(), ghidra::BlockVarnode::findFront(), ghidra::Varnode::getAddr(), ghidra::Varnode::getDef(), ghidra::PcodeOp::getIn(), ghidra::Varnode::getOffset(), ghidra::PcodeOp::getOpFromConst(), ghidra::SeqNum::getOrder(), ghidra::PcodeOp::getSeqNum(), ghidra::Varnode::isAddrForce(), ghidra::Varnode::isWritten(), ghidra::Varnode::partialCopyShadow(), and snipReads().
Referenced by unifyAddress().
|
staticprivate |
Find all the COPY ops into the given HighVariable.
Collect all the COPYs whose output is the given HighVariable but the input is from a different HighVariable. Returned COPYs are sorted first by the input Varnode then by block order.
high | is the given HighVariable |
copyIns | will hold the list of COPYs |
filterTemps | is true if COPYs must have a temporary output |
References ghidra::PcodeOp::code(), compareCopyByInVarnode(), ghidra::CPUI_COPY, ghidra::Varnode::getDef(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::HighVariable::getInstance(), ghidra::PcodeOp::getOut(), ghidra::Varnode::getSpace(), ghidra::AddrSpace::getType(), ghidra::IPTR_INTERNAL, ghidra::Varnode::isWritten(), and ghidra::HighVariable::numInstances().
Referenced by processHighDominantCopy(), and processHighRedundantCopy().
|
staticprivate |
Find instance Varnodes that copied to from outside the given HighVariable.
Find all Varnodes in the HighVariable which are defined by a COPY from another Varnode which is not part of the same HighVariable.
high | is the given HighVariable |
singlelist | will hold the resulting list of copied instances |
References ghidra::PcodeOp::code(), ghidra::CPUI_COPY, ghidra::Varnode::getDef(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::HighVariable::getInstance(), ghidra::Varnode::isWritten(), and ghidra::HighVariable::numInstances().
Referenced by hideShadows().
|
private |
Group the different nodes of a CONCAT tree into a VariableGroup.
This formally labels all the Varnodes in the tree as overlapping pieces of the same variable. The tree is reconstructed from the root Varnode.
vn | is the root Varnode |
References ghidra::Varnode::clearProtoPartial(), ghidra::PieceNode::gatherPieces(), ghidra::Varnode::getDef(), ghidra::Varnode::getHigh(), ghidra::SymbolEntry::getOffset(), ghidra::Varnode::getSymbolEntry(), ghidra::HighVariable::groupWith(), ghidra::Varnode::isProtoPartial(), and ghidra::HighVariable::numInstances().
Referenced by groupPartials().
bool ghidra::Merge::hideShadows | ( | HighVariable * | high | ) |
Hide shadow Varnodes related to the given HighVariable by consolidating COPY chains.
If two Varnodes are copied from the same common ancestor then they will always contain the same value and can be considered shadows of the same variable. If the paths from the ancestor to the two Varnodes aren't properly nested, the two Varnodes will still look like distinct variables. This routine searches for this situation, relative to a single HighVariable, and alters data-flow so that copying from ancestor to first Varnode to second Varnode becomes a single path. Both Varnodes then ultimately become instances of the same HighVariable.
high | is the given HighVariable to search near |
References ghidra::Cover::containVarnodeDef(), ghidra::Varnode::copyShadow(), data, findSingleCopy(), ghidra::Varnode::getCover(), ghidra::Varnode::getDef(), and ghidra::Funcdata::opSetInput().
Referenced by ghidra::ActionHideShadow::apply().
bool ghidra::Merge::inflateTest | ( | Varnode * | a, |
HighVariable * | high | ||
) |
Test if we can inflate the Cover of the given Varnode without incurring intersections.
This routine tests whether an expression involving a HighVariable can be propagated to all the read sites of the output Varnode of the expression. This is possible only if the Varnode Cover can be inflated to include the Cover of the HighVariable, even though the Varnode is not part of the HighVariable.
a | is the given Varnode to inflate |
high | is the HighVariable being propagated |
References ghidra::Varnode::copyShadow(), ghidra::Varnode::getCover(), ghidra::VariablePiece::getHigh(), ghidra::Varnode::getHigh(), ghidra::HighVariable::getInstance(), ghidra::VariablePiece::getIntersection(), ghidra::VariablePiece::getOffset(), ghidra::HighVariable::internalCover, ghidra::Cover::intersect(), ghidra::HighVariable::numInstances(), ghidra::VariablePiece::numIntersection(), ghidra::Varnode::partialCopyShadow(), ghidra::HighVariable::piece, testCache, ghidra::HighIntersectTest::updateHigh(), and ghidra::VariablePiece::updateIntersections().
Referenced by ghidra::ActionMarkImplied::checkImpliedCover().
|
static |
Mark the given Varnode as implied.
The covers of the immediate Varnodes involved in the expression are marked as dirty. This assumes covers for the whole expression are ultimately marked because all its internal Varnodes are passed to this method.
vn | is the given Varnode being marked as implied |
References ghidra::Varnode::coverdirty, ghidra::Varnode::getDef(), ghidra::PcodeOp::getIn(), ghidra::Varnode::hasCover(), ghidra::PcodeOp::numInput(), ghidra::Varnode::setFlags(), and ghidra::Varnode::setImplied().
Referenced by ghidra::ActionMarkImplied::apply().
void ghidra::Merge::markInternalCopies | ( | void | ) |
Mark redundant/internal COPY PcodeOps.
Run through all COPY, SUBPIECE, and PIECE operations (PcodeOps that copy data) and characterize those that are internal (copy data between storage locations representing the same variable) or redundant (perform the same copy as an earlier operation). These, as a result, are not printed in the final source code representation.
References ghidra::Funcdata::beginOpAlive(), ghidra::HighVariable::clearCopyIns(), ghidra::Varnode::clearImplied(), ghidra::PcodeOp::code(), ghidra::CPUI_COPY, ghidra::CPUI_PIECE, ghidra::CPUI_SUBPIECE, data, ghidra::Funcdata::endOpAlive(), ghidra::VariablePiece::getGroup(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::Funcdata::getMerge(), ghidra::VariablePiece::getOffset(), ghidra::Varnode::getOffset(), ghidra::PcodeOp::getOut(), ghidra::Varnode::getSize(), ghidra::Varnode::getSpace(), ghidra::HighVariable::hasCopyIn1(), ghidra::HighVariable::hasCopyIn2(), ghidra::Varnode::hasNoDescend(), ghidra::AddrSpace::isBigEndian(), ghidra::Varnode::isImplied(), ghidra::Funcdata::opMarkNonPrinting(), ghidra::HighVariable::piece, processHighRedundantCopy(), ghidra::HighVariable::setCopyIn1(), ghidra::HighVariable::setCopyIn2(), ghidra::Varnode::setExplicit(), and shadowedVarnode().
Referenced by ghidra::ActionCopyMarker::apply().
|
private |
Search for and mark redundant COPY ops into the given high as non-printing.
Trimming during the merge process can insert multiple COPYs from the same source. In some cases, one or more COPYs may be redundant and shouldn't be printed. This method searches for redundancy among COPY ops that assign to the given HighVariable.
high | is the given HighVariable |
copy | is the list of COPYs coming from the same source HighVariable |
pos | is the starting index of a set of COPYs coming from the same Varnode |
size | is the number of Varnodes in the set coming from the same Varnode |
References checkCopyPair(), data, ghidra::PcodeOp::isDead(), and ghidra::Funcdata::opMarkNonPrinting().
Referenced by processHighRedundantCopy().
|
private |
Perform low-level details of merging two HighVariables if possible.
This routine only fails (returning false) if there is a Cover intersection between the two variables. Otherwise, all the Varnode instances from the second HighVariable are merged into the first and its Cover is updated. The second variable is deleted. The cached intersection tests are also updated to reflect the merge.
high1 | is the first HighVariable being merged |
high2 | is the second |
isspeculative | is true if the desired merge is speculative |
References ghidra::HighIntersectTest::intersection(), ghidra::HighVariable::merge(), testCache, and ghidra::HighVariable::updateCover().
Referenced by mergeAdjacent(), mergeIndirect(), mergeLinear(), mergeMultiEntry(), mergeOp(), mergeOpcode(), and mergeRangeMust().
void ghidra::Merge::mergeAddrTied | ( | void | ) |
Force the merge of address tried Varnodes.
For each set of address tied Varnodes with the same size and storage address, merge them into a single HighVariable. The merges are forced, so any Cover intersections must be resolved by altering data-flow, which involves inserting additional COPY ops and unique Varnodes.
References ghidra::Varnode::addrtied, ghidra::Funcdata::beginLoc(), data, ghidra::Funcdata::endLoc(), ghidra::Varnode::getAddr(), ghidra::Varnode::getHigh(), ghidra::Varnode::getOffset(), ghidra::Varnode::getSize(), ghidra::AddrSpace::getType(), ghidra::HighVariable::groupWith(), ghidra::IPTR_PROCESSOR, ghidra::IPTR_SPACEBASE, ghidra::Varnode::isFree(), mergeRangeMust(), ghidra::Funcdata::overlapLoc(), and unifyAddress().
Referenced by ghidra::ActionMergeRequired::apply().
void ghidra::Merge::mergeAdjacent | ( | void | ) |
Speculatively merge Varnodes that are input/output to the same p-code op.
If a single p-code op has an input and output HighVariable that share the same data-type, attempt to merge them. Each merge is speculative and is skipped if it would introduce Cover intersections.
References ghidra::Funcdata::beginOpAlive(), data, ghidra::Funcdata::endOpAlive(), ghidra::Varnode::getDef(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::PcodeOp::getOut(), ghidra::Varnode::getSize(), ghidra::PcodeOp::inputTypeLocal(), ghidra::HighIntersectTest::intersection(), ghidra::PcodeOp::isCall(), ghidra::Varnode::isInput(), merge(), mergeTestAdjacent(), mergeTestBasic(), ghidra::PcodeOp::numInput(), ghidra::PcodeOp::outputTypeLocal(), and testCache.
Referenced by ghidra::ActionMergeAdjacent::apply().
void ghidra::Merge::mergeByDatatype | ( | VarnodeLocSet::const_iterator | startiter, |
VarnodeLocSet::const_iterator | enditer | ||
) |
Try to merge all HighVariables in the given range that have the same data-type.
HighVariables that have an instance within the given Varnode range are sorted into groups based on their data-type. Then an attempt is made to merge all the HighVariables within a group. If a particular merge causes Cover intersection, it is skipped.
startiter | is the start of the given range of Varnodes |
enditer | is the end of the given range |
References ghidra::HighVariable::getType(), ghidra::Varnode::isFree(), ghidra::HighVariable::isMark(), mergeLinear(), mergeTestBasic(), and ghidra::HighVariable::setMark().
Referenced by ghidra::ActionMergeType::apply().
|
private |
Force the merge of all input and output Varnodes to a given INDIRECT op.
Merging INDIRECTs take a little care if their output is address forced because by convention the value must be present at the address BEFORE the indirect effect operation takes place.
indop | is the given INDIRECT |
References allocateCopyTrim(), data, ghidra::PcodeOp::getAddr(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::PcodeOp::getOut(), ghidra::SymbolEntry::getSymbol(), ghidra::Varnode::getSymbolEntry(), ghidra::Symbol::getType(), ghidra::Funcdata::inheritResolution(), ghidra::Varnode::isAddrForce(), merge(), mergeOp(), mergeTestRequired(), ghidra::Datatype::needsResolution(), ghidra::Funcdata::opInsertBefore(), ghidra::Funcdata::opSetInput(), and snipOutputInterference().
Referenced by mergeMarker().
|
private |
Speculatively merge all HighVariables in the given list as well as possible.
The variables are first sorted by the index of the earliest block in their range. Then proceeding in order, an attempt is made to merge each variable with the first. The attempt fails if the speculative test doesn't pass or if there are Cover intersections, in which case that particular merge is skipped.
References compareHighByBlock(), merge(), mergeTestSpeculative(), testCache, and ghidra::HighIntersectTest::updateHigh().
Referenced by mergeByDatatype().
void ghidra::Merge::mergeMarker | ( | void | ) |
Force the merge of input and output Varnodes to MULTIEQUAL and INDIRECT ops.
Run through all MULTIEQUAL and INDIRECT ops in the function. Force the merge of each input Varnode with the output Varnode, doing data-flow modification if necessary to resolve Cover intersections.
References ghidra::Funcdata::beginOpAlive(), ghidra::PcodeOp::code(), ghidra::CPUI_INDIRECT, data, ghidra::Funcdata::endOpAlive(), ghidra::PcodeOp::isIndirectCreation(), ghidra::PcodeOp::isMarker(), mergeIndirect(), and mergeOp().
Referenced by ghidra::ActionMergeRequired::apply().
void ghidra::Merge::mergeMultiEntry | ( | void | ) |
Merge together Varnodes mapped to SymbolEntrys from the same Symbol.
Symbols that have more than one SymbolEntry may attach to more than one Varnode. These Varnodes need to be merged to properly represent a single variable.
References ghidra::ScopeInternal::beginMultiEntry(), data, ghidra::ScopeInternal::endMultiEntry(), ghidra::Funcdata::findLinkedVarnodes(), ghidra::Symbol::getMapEntry(), ghidra::Symbol::getName(), ghidra::Funcdata::getScopeLocal(), ghidra::SymbolEntry::getSize(), ghidra::Datatype::getSize(), ghidra::Symbol::getType(), merge(), mergeTestRequired(), ghidra::Symbol::numEntries(), ghidra::Symbol::setMergeProblems(), ghidra::HighVariable::setUnmerged(), testCache, ghidra::HighIntersectTest::updateHigh(), and ghidra::Funcdata::warningHeader().
Referenced by ghidra::ActionMergeMultiEntry::apply().
|
private |
Force the merge of all input and output Varnodes for the given PcodeOp.
Data-flow for specific input and output Varnodes are snipped until everything can be merged.
op | is the given PcodeOp |
References ghidra::PcodeOp::code(), ghidra::CPUI_INDIRECT, ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::PcodeOp::getOut(), ghidra::PcodeOp::getSeqNum(), merge(), mergeTest(), mergeTestRequired(), ghidra::PcodeOp::numInput(), trimOpInput(), and trimOpOutput().
Referenced by mergeIndirect(), and mergeMarker().
void ghidra::Merge::mergeOpcode | ( | OpCode | opc | ) |
Try to force merges of input to output for all p-code ops of a given type.
For a given opcode, run through all ops in the function in block/address order and try to merge each input HighVariable with the output HighVariable. If this would introduce Cover intersections, the merge is skipped. This is generally used to try to merge the input and output of COPY ops if possible.
opc | is the op-code type to merge |
References ghidra::BlockBasic::beginOp(), ghidra::PcodeOp::code(), data, ghidra::BlockBasic::endOp(), ghidra::Funcdata::getBasicBlocks(), ghidra::BlockGraph::getBlock(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::PcodeOp::getOut(), ghidra::BlockGraph::getSize(), merge(), mergeTestBasic(), mergeTestRequired(), and ghidra::PcodeOp::numInput().
Referenced by ghidra::ActionMergeCopy::apply().
|
private |
Force the merge of a ranges of Varnodes with the same size and storage address.
The list of Varnodes to be merged is provided as a range in the main location sorted container. Any Cover intersection is assumed to already be snipped, so any problems with merging cause an exception to be thrown.
startiter | is the beginning of the range of Varnodes with the same storage address |
enditer | is the end of the range |
References ghidra::Varnode::getHigh(), merge(), and mergeTestMust().
Referenced by mergeAddrTied().
bool ghidra::Merge::mergeTest | ( | HighVariable * | high, |
vector< HighVariable * > & | tmplist | ||
) |
Test for intersections between a given HighVariable and a list of other HighVariables.
If there is any Cover intersection between the given HighVariable and one in the list, this routine returns false. Otherwise, the given HighVariable is added to the end of the list and true is returned.
high | is the given HighVariable |
tmplist | is the list of HighVariables to test against |
References ghidra::HighVariable::hasCover(), ghidra::HighIntersectTest::intersection(), and testCache.
Referenced by mergeOp().
|
staticprivate |
Adjacency tests for merging Varnodes that are input or output to the same p-code op.
All the required tests (mergeTestRequired()) are performed, and then some additional tests are performed. This does not perform any Cover tests.
high_out | is the output HighVariable to test |
high_in | is the input HighVariable to test |
References ghidra::HighVariable::getInputVarnode(), ghidra::HighVariable::getSymbol(), ghidra::HighVariable::getType(), ghidra::Varnode::isIllegalInput(), ghidra::Varnode::isIndirectOnly(), ghidra::HighVariable::isInput(), ghidra::Symbol::isIsolated(), ghidra::HighVariable::isNameLock(), mergeTestRequired(), and ghidra::HighVariable::piece.
Referenced by mergeAdjacent(), and mergeTestSpeculative().
|
staticprivate |
Test if the given Varnode can ever be merged.
Some Varnodes (constants, annotations, implied, spacebase) are never merged with another Varnode.
vn | is the Varnode to test |
References ghidra::Varnode::hasCover(), ghidra::Varnode::isImplied(), ghidra::Varnode::isProtoPartial(), and ghidra::Varnode::isSpacebase().
Referenced by mergeAdjacent(), mergeByDatatype(), and mergeOpcode().
|
staticprivate |
Test if the given Varnode that must be merged, can be merged.
If it cannot be merged, throw an exception.
vn | is the given Varnode |
References ghidra::Varnode::hasCover(), and ghidra::Varnode::isImplied().
Referenced by mergeRangeMust().
|
staticprivate |
Required tests to merge HighVariables that are not Cover related.
This is designed to short circuit merge tests, when we know properties of the two HighVariables preclude merging. For example, you can't merge HighVariables if:
high_out | is the first HighVariable to test |
high_in | is the second HighVariable to test |
References ghidra::Varnode::getAddr(), ghidra::VariablePiece::getGroup(), ghidra::VariableGroup::getSize(), ghidra::VariablePiece::getSize(), ghidra::HighVariable::getSymbol(), ghidra::HighVariable::getSymbolOffset(), ghidra::HighVariable::getTiedVarnode(), ghidra::HighVariable::getType(), ghidra::HighVariable::isAddrTied(), ghidra::HighVariable::isExtraOut(), ghidra::HighVariable::isInput(), ghidra::HighVariable::isPersist(), ghidra::HighVariable::isProtoPartial(), ghidra::HighVariable::isTypeLock(), and ghidra::HighVariable::piece.
Referenced by mergeIndirect(), mergeMultiEntry(), mergeOp(), mergeOpcode(), and mergeTestAdjacent().
|
staticprivate |
Speculative tests for merging HighVariables that are not Cover related.
This does all the required and adjacency merge tests and then performs additional tests required for speculative merges.
high_out | is the first HighVariable to test |
high_in | is the second HighVariable to test |
References ghidra::HighVariable::isAddrTied(), ghidra::HighVariable::isInput(), ghidra::HighVariable::isPersist(), and mergeTestAdjacent().
Referenced by mergeLinear().
void ghidra::Merge::processCopyTrims | ( | void | ) |
Try to reduce/eliminate COPYs produced by the merge trimming process.
In order to force merging of certain Varnodes, extra COPY operations may be inserted to reduce their Cover ranges, and multiple COPYs from the same Varnode can be created this way. This method collects sets of COPYs generated in this way that have the same input Varnode and then tries to replace the COPYs with fewer or a single COPY.
References ghidra::HighVariable::clearCopyIns(), copyTrims, ghidra::HighVariable::hasCopyIn1(), ghidra::HighVariable::hasCopyIn2(), processHighDominantCopy(), ghidra::HighVariable::setCopyIn1(), and ghidra::HighVariable::setCopyIn2().
Referenced by ghidra::ActionDominantCopy::apply().
|
private |
Try to replace COPYs into the given HighVariable with a single dominant COPY.
Find groups of COPYs into the given HighVariable that come from a single source Varnode, then try to replace them with a COPY.
high | is the given HighVariable |
References buildDominantCopy(), and findAllIntoCopies().
Referenced by processCopyTrims().
|
private |
Mark COPY ops into the given HighVariable that are redundant.
A COPY is redundant if another COPY performs the same action and has dominant control flow. The redundant COPY is not removed but is marked so that it doesn't print in the final source output.
high | is the given HighVariable |
References findAllIntoCopies(), and markRedundantCopies().
Referenced by markInternalCopies().
void ghidra::Merge::registerProtoPartialRoot | ( | Varnode * | vn | ) |
Register an unmapped CONCAT stack with the merge process.
The given Varnode must be the root of a tree of CPUI_PIECE operations as produced by PieceNode::gatherPieces. These will be grouped together into a single variable.
vn | is the given root Varnode |
References ghidra::Varnode::getDef(), and protoPartial.
Referenced by ghidra::RulePieceStructure::applyOp(), and ghidra::SplitDatatype::buildOutConcats().
|
staticprivate |
Determine if given Varnode is shadowed by another Varnode in the same HighVariable.
vn | is the Varnode to check for shadowing |
References ghidra::Varnode::getCover(), ghidra::Varnode::getHigh(), ghidra::HighVariable::getInstance(), ghidra::Cover::intersect(), and ghidra::HighVariable::numInstances().
Referenced by markInternalCopies().
|
private |
Snip instances of the output of an INDIRECT that are also inputs to the underlying PcodeOp.
Examine the output HighVariable for the given INDIRECT op. Varnode instances (or pieces) that are also inputs to the underlying PcodeOp causing the INDIRECT are snipped by creating a new COPY op from the Varnode to a new temporary and then replacing the read with the temporary.
indop | is the given INDIRECT op |
References allocateCopyTrim(), collectInputs(), ghidra::PcodeOpNode::compareByHigh(), data, ghidra::PcodeOp::getAddr(), ghidra::Varnode::getAddr(), ghidra::Varnode::getHigh(), ghidra::PcodeOp::getIn(), ghidra::PcodeOp::getOpFromConst(), ghidra::PcodeOp::getOut(), ghidra::Funcdata::opInsertBefore(), and ghidra::Funcdata::opSetInput().
Referenced by mergeIndirect().
Snip off set of read p-code ops for a given Varnode.
The data-flow for the given Varnode is truncated by creating a COPY p-code from the Varnode into a new temporary Varnode, then replacing the Varnode reads for a specific set of p-code ops with the temporary.
References allocateCopyTrim(), ghidra::PcodeOp::code(), ghidra::CPUI_INDIRECT, data, ghidra::PcodeOp::getAddr(), ghidra::Varnode::getAddr(), ghidra::Funcdata::getBasicBlocks(), ghidra::BlockGraph::getBlock(), ghidra::Varnode::getDef(), ghidra::PcodeOp::getIn(), ghidra::PcodeOp::getOpFromConst(), ghidra::PcodeOp::getOut(), ghidra::PcodeOp::getParent(), ghidra::PcodeOp::getSlot(), ghidra::BlockBasic::getStart(), ghidra::Varnode::isInput(), ghidra::Funcdata::opInsertAfter(), ghidra::Funcdata::opInsertBegin(), and ghidra::Funcdata::opSetInput().
Referenced by eliminateIntersect().
|
private |
Trim the input HighVariable of the given PcodeOp so that its Cover is tiny.
The given PcodeOp is assumed to force merging so that input and output Covers shouldn't intersect. A new COPY is inserted right before the given PcodeOp with a new unique output that replaces the specified input, disassociating it from the other original inputs and output.
References allocateCopyTrim(), ghidra::PcodeOp::code(), ghidra::CPUI_MULTIEQUAL, data, ghidra::PcodeOp::getAddr(), ghidra::FlowBlock::getIn(), ghidra::PcodeOp::getIn(), ghidra::PcodeOp::getOut(), ghidra::PcodeOp::getParent(), ghidra::BlockBasic::getStop(), ghidra::Funcdata::opInsertBefore(), ghidra::Funcdata::opInsertEnd(), and ghidra::Funcdata::opSetInput().
Referenced by mergeOp().
|
private |
Trim the output HighVariable of the given PcodeOp so that its Cover is tiny.
The given PcodeOp is assumed to force merging so that input and output Covers shouldn't intersect. The original PcodeOp output is moved so that it becomes the output of a new COPY, disassociating the original output Varnode from the inputs.
op | is the given PcodeOp |
References ghidra::PcodeOp::code(), ghidra::CPUI_COPY, ghidra::CPUI_INDIRECT, data, ghidra::Funcdata::forceFacingType(), ghidra::PcodeOp::getAddr(), ghidra::Varnode::getAddr(), ghidra::PcodeOp::getIn(), ghidra::Datatype::getMetatype(), ghidra::PcodeOp::getOpFromConst(), ghidra::PcodeOp::getOut(), ghidra::Varnode::getSize(), ghidra::Varnode::getType(), ghidra::Varnode::getTypeDefFacing(), ghidra::Funcdata::inheritResolution(), ghidra::Datatype::needsResolution(), ghidra::Funcdata::newOp(), ghidra::Funcdata::newUnique(), ghidra::Funcdata::opInsertAfter(), ghidra::Funcdata::opSetInput(), ghidra::Funcdata::opSetOpcode(), ghidra::Funcdata::opSetOutput(), and ghidra::TYPE_PARTIALUNION.
Referenced by mergeOp().
|
private |
Make sure all Varnodes with the same storage address and size can be merged.
The list of Varnodes to be merged is provided as a range in the main location sorted container. Any discovered intersection is snipped by splitting data-flow for one of the Varnodes into two or more flows, which involves inserting new COPY ops and temporaries.
startiter | is the beginning of the range of Varnodes with the same storage address |
enditer | is the end of the range |
References eliminateIntersect(), and ghidra::Varnode::isFree().
Referenced by mergeAddrTied().