documentation/doxygen/symbolicExpression_8cpp_source.html

/*

**  Copyright (C) - Triton

**

**  This program is under the terms of the Apache License 2.0.

*/


#include <iosfwd>

#include <string>

#include <sstream>


#include <triton/ast.hpp>

#include <triton/astContext.hpp>

#include <triton/astRepresentation.hpp>

#include <triton/exceptions.hpp>

#include <triton/symbolicEnums.hpp>

#include <triton/symbolicExpression.hpp>

#include <triton/tritonTypes.hpp>


namespace triton {

  namespace engines {

    namespace symbolic {


      SymbolicExpression::SymbolicExpression(const triton::ast::SharedAbstractNode& node, triton::usize id, triton::engines::symbolic::expression_e type, const std::string& comment)

        : originMemory(),

          originRegister() {

        this->ast           = node;

        this->comment       = comment;

        this->address       = -1;

        this->id            = id;

        this->isTainted     = false;

        this->type          = type;

      }


      SymbolicExpression::SymbolicExpression(const SymbolicExpression& other) {

        this->ast            = other.ast;

        this->comment        = other.comment;

        this->id             = other.id;

        this->isTainted      = other.isTainted;

        this->originMemory   = other.originMemory;

        this->originRegister = other.originRegister;

        this->type           = other.type;

        this->address        = other.address;

      }


      SymbolicExpression& SymbolicExpression::operator=(const SymbolicExpression& other) {

        this->ast            = other.ast;

        this->comment        = other.comment;

        this->id             = other.id;

        this->isTainted      = other.isTainted;

        this->originMemory   = other.originMemory;

        this->originRegister = other.originRegister;

        this->type           = other.type;

        this->address        = other.address;

        return *this;

      }


      const triton::ast::SharedAbstractNode& SymbolicExpression::getAst(void) const {

        if (this->ast == nullptr)

          throw triton::exceptions::SymbolicExpression("SymbolicExpression::getAst(): No AST defined.");

        return this->ast;

      }


      triton::ast::SharedAbstractNode SymbolicExpression::getNewAst(void) const {

        if (this->ast == nullptr)

          throw triton::exceptions::SymbolicExpression("SymbolicExpression::getNewAst(): No AST defined.");

        return triton::ast::newInstance(this->ast.get());

      }


      const std::string& SymbolicExpression::getComment(void) const {

        return this->comment;

      }


      triton::usize SymbolicExpression::getId(void) const {

        return this->id;

      }


      std::string SymbolicExpression::getFormattedId(void) const {

        if (this->ast == nullptr)

          throw triton::exceptions::SymbolicExpression("SymbolicExpression::getFormattedId(): No AST defined.");


        if (ast->getContext()->getRepresentationMode() == triton::ast::representations::SMT_REPRESENTATION)

          return "ref!" + std::to_string(this->id);


        else if (ast->getContext()->getRepresentationMode() == triton::ast::representations::PYTHON_REPRESENTATION)

          return "ref_" + std::to_string(this->id);


        else if (ast->getContext()->getRepresentationMode() == triton::ast::representations::PCODE_REPRESENTATION) {

          if (this->isMemory()) {

            auto mem = this->getOriginMemory();

            std::ostringstream ss;

            ss << "@[0x" << std::hex << mem.getAddress() << ":" << std::dec << mem.getBitSize() << "]";

            return ss.str();

          }

          else if (this->isRegister()) {

            auto reg = this->getOriginRegister();

            return reg.getName() + "_" + std::to_string(this->id);

          }

          else {

            return "tmp_" + std::to_string(this->id);

          }

        }


        else

          throw triton::exceptions::SymbolicExpression("SymbolicExpression::getFormattedId(): Invalid AST representation mode.");

      }


      std::string SymbolicExpression::getFormattedComment(void) const {

        if (this->ast == nullptr)

          throw triton::exceptions::SymbolicExpression("SymbolicExpression::getFormattedComment(): No AST defined.");


        if (this->getComment().empty())

          return "";


        switch (ast->getContext()->getRepresentationMode()) {

          case triton::ast::representations::SMT_REPRESENTATION:

          case triton::ast::representations::PCODE_REPRESENTATION:

            return "; " + this->getComment();


          case triton::ast::representations::PYTHON_REPRESENTATION:

            return "# " + this->getComment();


          default:

            throw triton::exceptions::SymbolicExpression("SymbolicExpression::getFormattedComment(): Invalid AST representation mode.");

        };

      }


      std::string SymbolicExpression::getBitvectorDefine(void) const {

        std::ostringstream stream;

        stream << "(define-fun " << this->getFormattedId() << " () (_ BitVec " << std::dec << this->getAst()->getBitvectorSize() << ") " << this->getAst() << ")";

        return stream.str();

      }


      std::string SymbolicExpression::getArrayDefine(void) const {

        std::ostringstream stream;


        if (this->getAst()->getType() == triton::ast::ARRAY_NODE) {

          stream << "(declare-fun " << this->getFormattedId() << " () (Array (_ BitVec " << std::dec << triton::ast::getIndexSize(this->getAst()) << ") (_ BitVec 8)))";

        }

        else {

          stream << "(define-fun " << this->getFormattedId() << " () (Array (_ BitVec " << std::dec << triton::ast::getIndexSize(this->getAst()) << ") (_ BitVec 8)) " << this->getAst() << ")";

        }


        return stream.str();

      }


      std::string SymbolicExpression::getFormattedExpression(void) const {

        std::ostringstream stream;


        if (this->ast == nullptr)

          throw triton::exceptions::SymbolicExpression("SymbolicExpression::getFormattedExpression(): No AST defined.");


        switch (ast->getContext()->getRepresentationMode()) {

          case triton::ast::representations::SMT_REPRESENTATION:

            stream << (this->getAst()->isArray() ? this->getArrayDefine() : this->getBitvectorDefine());

            break;

          case triton::ast::representations::PCODE_REPRESENTATION:

          case triton::ast::representations::PYTHON_REPRESENTATION:

            stream << this->getFormattedId() << " = " << this->getAst();

            break;


          default:

            throw triton::exceptions::SymbolicExpression("SymbolicExpression::getFormattedExpression(): Invalid AST representation mode.");

        }


        if (!this->getComment().empty()) {

          stream << " " << this->getFormattedComment();

        }


        return stream.str();

      }


      triton::engines::symbolic::expression_e SymbolicExpression::getType(void) const {

        return this->type;

      }


      const triton::arch::MemoryAccess& SymbolicExpression::getOriginMemory(void) const {

        return this->originMemory;

      }


      const triton::arch::Register& SymbolicExpression::getOriginRegister(void) const {

        return this->originRegister;

      }


      void SymbolicExpression::setAst(const triton::ast::SharedAbstractNode& node) {

        triton::ast::SharedAbstractNode old = this->ast;


        /* If node is the same as the old one, just do not set the ast. */

        if (node == old)

          return;


        if (old) {

          /* Link old parents with the new node */

          for (auto sp : old->getParents()) {

            node->setParent(sp.get());

          }

        }


        /* Set the new ast */

        this->ast = node;


        /* Do not init parents if the new node has same properties that the old one */

        if (!old || !old->canReplaceNodeWithoutUpdate(ast)) {

          this->ast->initParents();

        }

      }


      void SymbolicExpression::setComment(const std::string& comment) {

        this->comment = comment;

      }


      void SymbolicExpression::setAddress(triton::uint64 address) {

        this->address = address;

      }


      triton::uint64 SymbolicExpression::getAddress(void) const {

        return this->address;

      }


      void SymbolicExpression::setType(triton::engines::symbolic::expression_e type) {

        this->type = type;

      }


      void SymbolicExpression::setOriginMemory(const triton::arch::MemoryAccess& mem) {

        this->originMemory = mem;

      }


      void SymbolicExpression::setOriginRegister(const triton::arch::Register& reg) {

        this->originRegister = reg;

      }


      bool SymbolicExpression::isRegister(void) const {

        return (this->type == triton::engines::symbolic::REGISTER_EXPRESSION);

      }


      bool SymbolicExpression::isMemory(void) const {

        return (this->type == triton::engines::symbolic::MEMORY_EXPRESSION);

      }


      bool SymbolicExpression::isSymbolized(void) const {

        if (this->ast == nullptr)

          return false;

        return this->ast->isSymbolized();

      }


      void SymbolicExpression::writeBackDisassembly(const std::string& disassembly) {

        this->disassembly = disassembly;

      }


      const std::string& SymbolicExpression::getDisassembly(void) {

        return this->disassembly;

      }


      std::ostream& operator<<(std::ostream& stream, const SymbolicExpression& symExpr) {

        stream << symExpr.getFormattedExpression();

        return stream;

      }


      std::ostream& operator<<(std::ostream& stream, const SymbolicExpression* symExpr) {

        stream << *symExpr;

        return stream;

      }


    }; /* symbolic namespace */

  }; /* engines namespace */

}; /*triton namespace */

astContext.hpp

astRepresentation.hpp

ast.hpp

triton::arch::MemoryAccess
This class is used to represent a memory access.
Definition memoryAccess.hpp:40

triton::arch::Register
This class is used when an instruction has a register operand.
Definition register.hpp:44

triton::engines::symbolic::SymbolicExpression
The symbolic expression class.
Definition symbolicExpression.hpp:48

triton::engines::symbolic::SymbolicExpression::isMemory
TRITON_EXPORT bool isMemory(void) const
Returns true if the symbolic expression is assigned to a memory.
Definition symbolicExpression.cpp:261

triton::engines::symbolic::SymbolicExpression::getId
TRITON_EXPORT triton::usize getId(void) const
Returns the symbolic expression id.
Definition symbolicExpression.cpp:82

triton::engines::symbolic::SymbolicExpression::getAddress
TRITON_EXPORT triton::uint64 getAddress(void) const
Get the address of the symbolic expression, if any.
Definition symbolicExpression.cpp:236

triton::engines::symbolic::SymbolicExpression::getDisassembly
TRITON_EXPORT const std::string & getDisassembly(void)
Gets the instruction disassembly where the symbolic expression comes from.
Definition symbolicExpression.cpp:278

triton::engines::symbolic::SymbolicExpression::id
triton::usize id
The symbolic expression id. This id is unique.
Definition symbolicExpression.hpp:66

triton::engines::symbolic::SymbolicExpression::SymbolicExpression
TRITON_EXPORT SymbolicExpression(const triton::ast::SharedAbstractNode &node, triton::usize id, triton::engines::symbolic::expression_e type, const std::string &comment="")
Constructor.
Definition symbolicExpression.cpp:26

triton::engines::symbolic::SymbolicExpression::getFormattedId
TRITON_EXPORT std::string getFormattedId(void) const
Returns the id as string of the symbolic expression according the mode of the AST representation.
Definition symbolicExpression.cpp:87

triton::engines::symbolic::SymbolicExpression::getFormattedComment
TRITON_EXPORT std::string getFormattedComment(void) const
Returns the comment as string of the symbolic expression according the mode of the AST representation...
Definition symbolicExpression.cpp:118

triton::engines::symbolic::SymbolicExpression::setAddress
TRITON_EXPORT void setAddress(triton::uint64 address)
Sets the symbolic expression address.
Definition symbolicExpression.cpp:231

triton::engines::symbolic::SymbolicExpression::setAst
TRITON_EXPORT void setAst(const triton::ast::SharedAbstractNode &node)
Sets a root node.
Definition symbolicExpression.cpp:202

triton::engines::symbolic::SymbolicExpression::setType
TRITON_EXPORT void setType(triton::engines::symbolic::expression_e type)
Sets the kind of the symbolic expression.
Definition symbolicExpression.cpp:241

triton::engines::symbolic::SymbolicExpression::getAst
TRITON_EXPORT const triton::ast::SharedAbstractNode & getAst(void) const
Returns the SMT AST root node of the symbolic expression. This is the semantics.
Definition symbolicExpression.cpp:63

triton::engines::symbolic::SymbolicExpression::getFormattedExpression
TRITON_EXPORT std::string getFormattedExpression(void) const
Returns the symbolic expression representation as string according the mode of the AST representation...
Definition symbolicExpression.cpp:160

triton::engines::symbolic::SymbolicExpression::getOriginRegister
TRITON_EXPORT const triton::arch::Register & getOriginRegister(void) const
Returns the origin register if kind is equal to triton::engines::symbolic::REGISTER_EXPRESSION,...
Definition symbolicExpression.cpp:197

triton::engines::symbolic::SymbolicExpression::getComment
TRITON_EXPORT const std::string & getComment(void) const
Returns the comment of the symbolic expression.
Definition symbolicExpression.cpp:77

triton::engines::symbolic::SymbolicExpression::isTainted
bool isTainted
True if the symbolic expression is tainted.
Definition symbolicExpression.hpp:83

triton::engines::symbolic::SymbolicExpression::getOriginMemory
TRITON_EXPORT const triton::arch::MemoryAccess & getOriginMemory(void) const
Returns the origin memory access if kind is equal to triton::engines::symbolic::MEMORY_EXPRESSION,...
Definition symbolicExpression.cpp:192

triton::engines::symbolic::SymbolicExpression::setComment
TRITON_EXPORT void setComment(const std::string &comment)
Sets a comment to the symbolic expression.
Definition symbolicExpression.cpp:226

triton::engines::symbolic::SymbolicExpression::disassembly
std::string disassembly
The instruction disassembly where the symbolic expression comes from.
Definition symbolicExpression.hpp:63

triton::engines::symbolic::SymbolicExpression::isSymbolized
TRITON_EXPORT bool isSymbolized(void) const
Returns true if the expression contains a symbolic variable.
Definition symbolicExpression.cpp:266

triton::engines::symbolic::SymbolicExpression::originRegister
triton::arch::Register originRegister
The origin register if type is equal to triton::engines::symbolic::REG, REG_INVALID otherwise.
Definition symbolicExpression.hpp:72

triton::engines::symbolic::SymbolicExpression::setOriginRegister
TRITON_EXPORT void setOriginRegister(const triton::arch::Register &reg)
Sets the origin register.
Definition symbolicExpression.cpp:251

triton::engines::symbolic::SymbolicExpression::address
triton::uint64 address
The address of the instruction behind the symbolic expression. -1 if not defined.
Definition symbolicExpression.hpp:60

triton::engines::symbolic::SymbolicExpression::getType
TRITON_EXPORT triton::engines::symbolic::expression_e getType(void) const
Returns the type of the symbolic expression assignment.
Definition symbolicExpression.cpp:187

triton::engines::symbolic::SymbolicExpression::ast
triton::ast::SharedAbstractNode ast
The root node (AST) of the symbolic expression.
Definition symbolicExpression.hpp:54

triton::engines::symbolic::SymbolicExpression::originMemory
triton::arch::MemoryAccess originMemory
The origin memory address if type is equal to triton::engines::symbolic::MEM, invalid memory otherwis...
Definition symbolicExpression.hpp:69

triton::engines::symbolic::SymbolicExpression::getNewAst
TRITON_EXPORT triton::ast::SharedAbstractNode getNewAst(void) const
Returns a new SMT AST root node of the symbolic expression. This new instance is a duplicate of the o...
Definition symbolicExpression.cpp:70

triton::engines::symbolic::SymbolicExpression::isRegister
TRITON_EXPORT bool isRegister(void) const
Returns true if the symbolic expression is assigned to a register.
Definition symbolicExpression.cpp:256

triton::engines::symbolic::SymbolicExpression::setOriginMemory
TRITON_EXPORT void setOriginMemory(const triton::arch::MemoryAccess &mem)
Sets the origin memory acccess.
Definition symbolicExpression.cpp:246

triton::engines::symbolic::SymbolicExpression::type
triton::engines::symbolic::expression_e type
The type of the symbolic expression assignment.
Definition symbolicExpression.hpp:51

triton::engines::symbolic::SymbolicExpression::writeBackDisassembly
TRITON_EXPORT void writeBackDisassembly(const std::string &disassembly)
Writes back the instruction disassembly where the symbolic expression comes from.
Definition symbolicExpression.cpp:273

triton::engines::symbolic::SymbolicExpression::comment
std::string comment
The comment of the symbolic expression.
Definition symbolicExpression.hpp:57

triton::engines::symbolic::SymbolicExpression::operator=
TRITON_EXPORT SymbolicExpression & operator=(const SymbolicExpression &other)
Operator.
Definition symbolicExpression.cpp:50

triton::exceptions::SymbolicExpression
The exception class used by symbolic expressions.
Definition exceptions.hpp:89

exceptions.hpp

triton::ast::getIndexSize
triton::uint32 getIndexSize(const SharedAbstractNode &node)
Gets the index size of an array.
Definition ast.cpp:3755

triton::ast::SharedAbstractNode
std::shared_ptr< triton::ast::AbstractNode > SharedAbstractNode
Shared Abstract Node.
Definition ast.hpp:59

triton::ast::newInstance
SharedAbstractNode newInstance(AbstractNode *node, bool unroll)
AST C++ API - Duplicates the AST.
Definition ast.cpp:3604

triton::ast::ARRAY_NODE
@ ARRAY_NODE
Definition astEnums.hpp:84

triton::ast::representations::PCODE_REPRESENTATION
@ PCODE_REPRESENTATION
Definition astEnums.hpp:101

triton::ast::representations::SMT_REPRESENTATION
@ SMT_REPRESENTATION
Definition astEnums.hpp:99

triton::ast::representations::PYTHON_REPRESENTATION
@ PYTHON_REPRESENTATION
Definition astEnums.hpp:100

triton::engines::symbolic::expression_e
expression_e
Type of symbolic expressions.
Definition symbolicEnums.hpp:40

triton::engines::symbolic::operator<<
std::ostream & operator<<(std::ostream &stream, const SymbolicExpression &symExpr)
Displays a symbolic expression.
Definition symbolicExpression.cpp:283

triton::engines::symbolic::REGISTER_EXPRESSION
@ REGISTER_EXPRESSION
Assigned to a register expression.
Definition symbolicEnums.hpp:42

triton::engines::symbolic::MEMORY_EXPRESSION
@ MEMORY_EXPRESSION
Assigned to a memory expression.
Definition symbolicEnums.hpp:41

triton::usize
std::size_t usize
unsigned MAX_INT 32 or 64 bits according to the CPU.
Definition tritonTypes.hpp:106

triton::uint64
std::uint64_t uint64
unisgned 64-bits
Definition tritonTypes.hpp:42

triton
The Triton namespace.
Definition architecture.cpp:27

symbolicEnums.hpp

symbolicExpression.hpp

tritonTypes.hpp