C++: Performance fix for large basic blocks

jbj · jbj · commit bbc57878dd8a · 2020-03-02T08:46:58.000+01:00
The code is now quadratic in the number of statements in a basic block,
whereas before it was quadratic in the number of _control-flow nodes_ in
a basic block.
diff --git a/cpp/ql/src/semmle/code/cpp/security/Overflow.qll b/cpp/ql/src/semmle/code/cpp/security/Overflow.qll
@@ -13,12 +13,16 @@ predicate guardedAbs(Operation e, Expr use) {
   )
 }
 
+/** This is `BasicBlock.getNode`, restricted to `Stmt` for performance. */
+pragma[noinline]
+private int getStmtIndexInBlock(BasicBlock block, Stmt stmt) { block.getNode(result) = stmt }
+
 pragma[inline]
 private predicate stmtDominates(Stmt dominator, Stmt dominated) {
   // In same block
   exists(BasicBlock block, int dominatorIndex, int dominatedIndex |
-    block.getNode(dominatorIndex) = dominator and
-    block.getNode(dominatedIndex) = dominated and
+    dominatorIndex = getStmtIndexInBlock(block, dominator) and
+    dominatedIndex = getStmtIndexInBlock(block, dominated) and
     dominatedIndex >= dominatorIndex
   )
   or

Original file line number	Diff line number	Diff line change
`@@ -13,12 +13,16 @@ predicate guardedAbs(Operation e, Expr use) {`
`13`	`13`	`)`
`14`	`14`	`}`
`15`	`15`
	`16`	+/** This is `BasicBlock.getNode`, restricted to `Stmt` for performance. */
	`17`	`+pragma[noinline]`
	`18`	`+private int getStmtIndexInBlock(BasicBlock block, Stmt stmt) { block.getNode(result) = stmt }`
	`19`	`+`
`16`	`20`	`pragma[inline]`
`17`	`21`	`private predicate stmtDominates(Stmt dominator, Stmt dominated) {`
`18`	`22`	`// In same block`
`19`	`23`	`exists(BasicBlock block, int dominatorIndex, int dominatedIndex \|`
`20`		`- block.getNode(dominatorIndex) = dominator and`
`21`		`- block.getNode(dominatedIndex) = dominated and`
	`24`	`+ dominatorIndex = getStmtIndexInBlock(block, dominator) and`
	`25`	`+ dominatedIndex = getStmtIndexInBlock(block, dominated) and`
`22`	`26`	`dominatedIndex >= dominatorIndex`
`23`	`27`	`)`
`24`	`28`	`or`