-Original file line number
+Diff line change
@@ Expand Up / @@ -54,11 +54,6 @@ predicate constantGuard( @@
       Guards::Guards::Guard g, string msg, Guards::Guards::Guard reason, string reasonMsg
     ) {
       ConstCondImpl::problems(g, msg, reason, reasonMsg) and
-      // conditional qualified expressions sit at an akward place in the CFG, which
-      // leads to FPs
-      not g.(QualifiableExpr).getQualifier() = reason and
-      // and if they're extension method calls, the syntactic qualifier is actually argument 0
-      not g.(ExtensionMethodCall).getArgument(0) = reason and
       // if a logical connective is constant, one of its operands is constant, so
       // we report that instead
       not g instanceof LogicalNotExpr and
@@ Expand Down @@

-Original file line number
+Diff line change
@@ Expand Up @@
       private import Cfg
       private import Input
+      /**
+       * Holds if the edge from `bb1` to `bb2` implies both that `def` evaluates
+       * to `v` and that `g` evaluates to `gv`. The latter implication is also a
+       * biimplication in most cases, except when `g` is a short-circuiting
+       * side-effecting construct.
+       *
+       * Checking that `bb1` to `bb2` is a dominating edge is sufficient to ensure
+       * that the biimplication holds.
+       */
       private predicate ssaControlsGuardEdge(
         SsaDefinition def, GuardValue v, Guard g, BasicBlock bb1, BasicBlock bb2, GuardValue gv
       ) {
@@ Expand All @@
       private predicate impossibleValue(
         Guard g, GuardValue gv, SsaDefinition def, BasicBlock bb, GuardValue v2
       ) {
-        exists(GuardValue dual, GuardValue v1 |
-          // If `g` in `bb` evaluates to `gv` then `def` has value `v1`,
-          ssaControlsGuardEdge(def, v1, g, bb, _, gv) and
+        exists(GuardValue dual, GuardValue v1, BasicBlock bb2 |
+          // If `g` evaluates to `gv` and its branch edge `(bb, bb2)` is a dominating edge then `def` has value `v1`,
+          ssaControlsGuardEdge(def, v1, g, bb, bb2, gv) and
+          dominatingEdge(bb, bb2) and
           dual = gv.getDualValue() and
           not gv.isThrowsException() and
           not dual.isThrowsException() and
@@ Expand Down @@

C#: Make a more principled fix in ConstantCondition. #21272

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft

aschackmull wants to merge 1 commit into github:main from aschackmull:csharp/constantcondition-fix

+13 −8

-Original file line number
+Diff line change
@@ Expand Up / @@ -54,11 +54,6 @@ predicate constantGuard( @@
       Guards::Guards::Guard g, string msg, Guards::Guards::Guard reason, string reasonMsg
     ) {
       ConstCondImpl::problems(g, msg, reason, reasonMsg) and
-      // conditional qualified expressions sit at an akward place in the CFG, which
-      // leads to FPs
-      not g.(QualifiableExpr).getQualifier() = reason and
-      // and if they're extension method calls, the syntactic qualifier is actually argument 0
-      not g.(ExtensionMethodCall).getArgument(0) = reason and
       // if a logical connective is constant, one of its operands is constant, so
       // we report that instead
       not g instanceof LogicalNotExpr and
@@ Expand Down @@

-Original file line number
+Diff line change
@@ Expand Up @@
       private import Cfg
       private import Input
+      /**
+       * Holds if the edge from `bb1` to `bb2` implies both that `def` evaluates
+       * to `v` and that `g` evaluates to `gv`. The latter implication is also a
+       * biimplication in most cases, except when `g` is a short-circuiting
+       * side-effecting construct.
+       *
+       * Checking that `bb1` to `bb2` is a dominating edge is sufficient to ensure
+       * that the biimplication holds.
+       */
       private predicate ssaControlsGuardEdge(
         SsaDefinition def, GuardValue v, Guard g, BasicBlock bb1, BasicBlock bb2, GuardValue gv
       ) {
@@ Expand All @@
       private predicate impossibleValue(
         Guard g, GuardValue gv, SsaDefinition def, BasicBlock bb, GuardValue v2
       ) {
-        exists(GuardValue dual, GuardValue v1 |
-          // If `g` in `bb` evaluates to `gv` then `def` has value `v1`,
-          ssaControlsGuardEdge(def, v1, g, bb, _, gv) and
+        exists(GuardValue dual, GuardValue v1, BasicBlock bb2 |
+          // If `g` evaluates to `gv` and its branch edge `(bb, bb2)` is a dominating edge then `def` has value `v1`,
+          ssaControlsGuardEdge(def, v1, g, bb, bb2, gv) and
+          dominatingEdge(bb, bb2) and
           dual = gv.getDualValue() and
           not gv.isThrowsException() and
           not dual.isThrowsException() and
@@ Expand Down @@

Provide feedback