GTIRB  v2.2.0
GrammaTech Intermediate Representation for Binaries
cfg-paths.cpp

Open an IR and print every path from some point to some other point.

// An example program which opens an IR and prints every control-flow path
// from some basic block to another basic block.
#include <gtirb/gtirb.hpp>
#include <fstream>
#include <iomanip>
#include <iostream>
#include <set>
#include <vector>
using namespace gtirb;
// Print Addrs in hex format
std::ostream& operator<<(std::ostream& Os, Addr A) {
auto Flags = Os.flags();
Os << "0x" << std::hex << std::setw(8) << std::setfill('0') << uint64_t(A);
Os.flags(Flags);
return Os;
}
// Depth-first search of a graph, printing all paths between two given vertices.
// boost::graph::depth_first_search is not a good fit for this, because we
// need to visit nodes multiple times (while still avoiding cycles). So we
// have to implement our own.
class PrintPathsVisitor {
public:
using Vertex = CFG::vertex_descriptor;
PrintPathsVisitor(const CFG& G, const CodeBlock& B)
: Graph(G), Target(*getVertex(&B, G)) {}
void visit(Vertex V) {
// Mark as visited to avoid cycles
Visited.insert(V);
// At target, print the path
if (V == Target) {
for (auto U : Path) {
std::cout << dyn_cast<CodeBlock>(Graph[U])->getAddress() << ", ";
}
std::cout << dyn_cast<CodeBlock>(Graph[Target])->getAddress() << "\n";
} else {
// Otherwise, extend the path and keep searching.
Path.push_back(V);
// Check all outgoing edges from this vertex
auto [Begin, End] = out_edges(V, Graph);
for (auto It = Begin; It != End; It++) {
// If edge target has not been visited, do so now
auto T = target(*It, Graph);
if (Visited.find(T) == Visited.end()) {
visit(T);
}
}
Path.pop_back();
}
// Unmark the node so it can be visited again in other paths.
Visited.erase(V);
}
const CFG& Graph;
Vertex Target;
std::vector<Vertex> Path;
std::set<Vertex> Visited;
};
int main(int argc, char** argv) {
// Create a context to manage memory for gtirb objects
Context C;
// Load the IR
IR* I = nullptr;
if (argc == 4) {
std::ifstream in(argv[1]);
if (auto IoE = IR::load(C, in); IoE)
I = *IoE;
}
if (!I)
return EXIT_FAILURE;
// Addresses of source and target blocks
Addr Source(std::stoul(argv[2], nullptr, 16));
Addr Target(std::stoul(argv[3], nullptr, 16));
// Search for the requested blocks in the first module
const auto& Mod = *I->modules_begin();
const auto& Cfg = I->getCFG();
const CodeBlock *SourceBlock, *TargetBlock;
if (auto Range = Mod.findCodeBlocksAt(Source); !Range.empty()) {
SourceBlock = &*Range.begin();
} else {
std::cerr << "No block at source address " << Source << "\n";
exit(EXIT_FAILURE);
}
if (auto Range = Mod.findCodeBlocksAt(Target); !Range.empty()) {
TargetBlock = &*Range.begin();
} else {
std::cerr << "No block at target address " << Target << "\n";
exit(EXIT_FAILURE);
}
std::cout << "Paths from " << SourceBlock->getAddress() << " to "
<< TargetBlock->getAddress() << "\n";
// Print paths
PrintPathsVisitor(Cfg, *TargetBlock).visit(*getVertex(SourceBlock, Cfg));
return EXIT_SUCCESS;
}
gtirb::CodeBlock
gtirb::Addr
gtirb::getVertex
GTIRB_EXPORT_API std::optional< CFG::vertex_descriptor > getVertex(const CfgNode *N, const CFG &Cfg)
gtirb::IR::load
static ErrorOr< IR * > load(Context &C, std::istream &In)
gtirb::Context
gtirb.hpp
gtirb::IR::getCFG
CFG & getCFG()
gtirb
gtirb::IR::modules_begin
module_iterator modules_begin()
gtirb::IR
gtirb::CodeBlock::getAddress
std::optional< Addr > getAddress() const
gtirb::operator<<
std::ostream & operator<<(std::basic_ostream< CharT, Traits > &os, const ErrorInfo &Info)
CFG
CfgBuilder< boost::listS, boost::listS, boost::bidirectionalS >::type CFG
Generated by   doxygen 1.8.17