RangeAnalysis: Improve bounds that rely on relative modulus.

aschackmull · aschackmull · commit 7bf271fb6c57 · 2023-11-02T12:51:48.000+01:00
diff --git a/cpp/ql/test/library-tests/ir/range-analysis/SimpleRangeAnalysis_tests.cpp b/cpp/ql/test/library-tests/ir/range-analysis/SimpleRangeAnalysis_tests.cpp
@@ -1077,9 +1077,8 @@ void mask_at_start(int len) {
   }
   // Do something with leftOver
   for (int index = leftOver; index < len; index+=64) {
-    range(index);  // $ range="<=InitializeParameter: len-1"
-    // This should be in bounds
-    range(index + 16); // $ range="<=InitializeParameter: len+15" range="==Phi: index+16" MISSING: range="<=InitializeParameter: len-1"
+    range(index);  // $ range="<=InitializeParameter: len-64" range=">=Store: ... & ... | Store: leftOver+0"
+    range(index + 63); // $ range="<=InitializeParameter: len-1" range="==Phi: index+63" range=">=Store: ... & ... | Store: leftOver+63"
   }
 }
 
@@ -1095,8 +1094,7 @@ void mod_at_start(int len) {
   }
   // Do something with leftOver
   for (int index = leftOver; index < len; index+=64) {
-    range(index);  // $ range="<=InitializeParameter: len-1"
-    // This should be in bounds 
-    range(index + 16); // $ range="<=InitializeParameter: len+15" range="==Phi: index+16" MISSING: range="<=InitializeParameter: len-49"
+    range(index);  // $ range="<=InitializeParameter: len-64" range=">=Store: ... % ... | Store: leftOver+0"
+    range(index + 63); // $ range="<=InitializeParameter: len-1" range="==Phi: index+63" range=">=Store: ... % ... | Store: leftOver+63"
   }
 }
diff --git a/shared/rangeanalysis/codeql/rangeanalysis/ModulusAnalysis.qll b/shared/rangeanalysis/codeql/rangeanalysis/ModulusAnalysis.qll
@@ -264,6 +264,13 @@ module ModulusAnalysis<
       val = remainder(val0 + delta, mod)
     )
     or
+    exists(Sem::Expr mid, int v, int m1, int m2 |
+      exprModulus(mid, b, v, m1) and
+      e = modExpr(mid, m2) and
+      mod = m1.gcd(m2) and
+      val = remainder(v, mod)
+    )
+    or
     exists(Sem::ConditionalExpr cond, int v1, int v2, int m1, int m2 |
       cond = e and
       condExprBranchModulus(cond, true, b, v1, m1) and

Original file line number	Diff line number	Diff line change
`@@ -1077,9 +1077,8 @@ void mask_at_start(int len) {`
`1077`	`1077`	`}`
`1078`	`1078`	`// Do something with leftOver`
`1079`	`1079`	`for (int index = leftOver; index < len; index+=64) {`
`1080`		`- range(index); // $ range="<=InitializeParameter: len-1"`
`1081`		`- // This should be in bounds`
`1082`		`- range(index + 16); // $ range="<=InitializeParameter: len+15" range="==Phi: index+16" MISSING: range="<=InitializeParameter: len-1"`
	`1080`	`+ range(index); // $ range="<=InitializeParameter: len-64" range=">=Store: ... & ... \| Store: leftOver+0"`
	`1081`	`+ range(index + 63); // $ range="<=InitializeParameter: len-1" range="==Phi: index+63" range=">=Store: ... & ... \| Store: leftOver+63"`
`1083`	`1082`	`}`
`1084`	`1083`	`}`
`1085`	`1084`
`@@ -1095,8 +1094,7 @@ void mod_at_start(int len) {`
`1095`	`1094`	`}`
`1096`	`1095`	`// Do something with leftOver`
`1097`	`1096`	`for (int index = leftOver; index < len; index+=64) {`
`1098`		`- range(index); // $ range="<=InitializeParameter: len-1"`
`1099`		`- // This should be in bounds`
`1100`		`- range(index + 16); // $ range="<=InitializeParameter: len+15" range="==Phi: index+16" MISSING: range="<=InitializeParameter: len-49"`
	`1097`	`+ range(index); // $ range="<=InitializeParameter: len-64" range=">=Store: ... % ... \| Store: leftOver+0"`
	`1098`	`+ range(index + 63); // $ range="<=InitializeParameter: len-1" range="==Phi: index+63" range=">=Store: ... % ... \| Store: leftOver+63"`
`1101`	`1099`	`}`
`1102`	`1100`	`}`