/* This file is part of solidity. solidity is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. solidity is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with solidity. If not, see . */ // SPDX-License-Identifier: GPL-3.0 #include #include #include #include #include #include #ifdef HAVE_Z3_DLOPEN #include #endif using namespace std; using namespace solidity; using namespace solidity::util; using namespace solidity::langutil; using namespace solidity::frontend; BMC::BMC( smt::EncodingContext& _context, UniqueErrorReporter& _errorReporter, UniqueErrorReporter& _unsupportedErrorReporter, map const& _smtlib2Responses, ReadCallback::Callback const& _smtCallback, ModelCheckerSettings _settings, CharStreamProvider const& _charStreamProvider ): SMTEncoder(_context, _settings, _errorReporter, _unsupportedErrorReporter, _charStreamProvider), m_interface(make_unique( _smtlib2Responses, _smtCallback, _settings.solvers, _settings.timeout, _settings.printQuery )) { solAssert(!_settings.printQuery || _settings.solvers == smtutil::SMTSolverChoice::SMTLIB2(), "Only SMTLib2 solver can be enabled to print queries"); #if defined (HAVE_Z3) || defined (HAVE_CVC4) if (m_settings.solvers.cvc4 || m_settings.solvers.z3) if (!_smtlib2Responses.empty()) m_errorReporter.warning( 5622_error, "SMT-LIB2 query responses were given in the auxiliary input, " "but this Solidity binary uses an SMT solver (Z3/CVC4) directly." "These responses will be ignored." "Consider disabling Z3/CVC4 at compilation time in order to use SMT-LIB2 responses." ); #endif } void BMC::analyze(SourceUnit const& _source, map, smt::EncodingContext::IdCompare> _solvedTargets) { // At this point every enabled solver is available. if (!m_settings.solvers.cvc4 && !m_settings.solvers.smtlib2 && !m_settings.solvers.z3) { m_errorReporter.warning( 7710_error, SourceLocation(), "BMC analysis was not possible since no SMT solver was found and enabled." " The accepted solvers for BMC are cvc4 and z3." ); return; } SMTEncoder::resetSourceAnalysis(); state().prepareForSourceUnit(_source, false); m_solvedTargets = std::move(_solvedTargets); m_context.setSolver(m_interface.get()); m_context.reset(); m_context.setAssertionAccumulation(true); m_variableUsage.setFunctionInlining(shouldInlineFunctionCall); createFreeConstants(sourceDependencies(_source)); m_unprovedAmt = 0; _source.accept(*this); if (m_unprovedAmt > 0 && !m_settings.showUnproved) m_errorReporter.warning( 2788_error, {}, "BMC: " + to_string(m_unprovedAmt) + " verification condition(s) could not be proved." + " Enable the model checker option \"show unproved\" to see all of them." + " Consider choosing a specific contract to be verified in order to reduce the solving problems." + " Consider increasing the timeout per query." ); if (!m_settings.showProvedSafe && !m_safeTargets.empty()) m_errorReporter.info( 6002_error, "BMC: " + to_string(m_safeTargets.size()) + " verification condition(s) proved safe!" + " Enable the model checker option \"show proved safe\" to see all of them." ); else if (m_settings.showProvedSafe) for (auto const& [node, targets]: m_safeTargets) for (auto const& target: targets) m_errorReporter.info( 2961_error, node->location(), "BMC: " + targetDescription(target) + " check is safe!" ); // If this check is true, Z3 and CVC4 are not available // and the query answers were not provided, since SMTPortfolio // guarantees that SmtLib2Interface is the first solver, if enabled. if ( !m_interface->unhandledQueries().empty() && m_interface->solvers() == 1 && m_settings.solvers.smtlib2 ) m_errorReporter.warning( 8084_error, SourceLocation(), "BMC analysis was not possible. No SMT solver (Z3 or CVC4) was available." " None of the installed solvers was enabled." #ifdef HAVE_Z3_DLOPEN " Install libz3.so." + to_string(Z3_MAJOR_VERSION) + "." + to_string(Z3_MINOR_VERSION) + " to enable Z3." #endif ); } bool BMC::shouldInlineFunctionCall( FunctionCall const& _funCall, ContractDefinition const* _scopeContract, ContractDefinition const* _contextContract ) { auto funDef = functionCallToDefinition(_funCall, _scopeContract, _contextContract); if (!funDef || !funDef->isImplemented()) return false; FunctionType const& funType = dynamic_cast(*_funCall.expression().annotation().type); if (funType.kind() == FunctionType::Kind::External) return isExternalCallToThis(&_funCall.expression()); else if (funType.kind() != FunctionType::Kind::Internal) return false; return true; } /// AST visitors. bool BMC::visit(ContractDefinition const& _contract) { initContract(_contract); SMTEncoder::visit(_contract); return false; } void BMC::endVisit(ContractDefinition const& _contract) { if (auto constructor = _contract.constructor()) constructor->accept(*this); else { /// Visiting implicit constructor - we need a dummy callstack frame pushCallStack({nullptr, nullptr}); inlineConstructorHierarchy(_contract); popCallStack(); /// Check targets created by state variable initialization. checkVerificationTargets(); m_verificationTargets.clear(); } SMTEncoder::endVisit(_contract); } bool BMC::visit(FunctionDefinition const& _function) { // Free functions need to be visited in the context of a contract. if (!m_currentContract) return false; auto contract = dynamic_cast(_function.scope()); auto const& hierarchy = m_currentContract->annotation().linearizedBaseContracts; if (contract && find(hierarchy.begin(), hierarchy.end(), contract) == hierarchy.end()) createStateVariables(*contract); if (m_callStack.empty()) { reset(); initFunction(_function); if (_function.isConstructor() || _function.isPublic()) m_context.addAssertion(state().txTypeConstraints() && state().txFunctionConstraints(_function)); resetStateVariables(); } if (_function.isConstructor()) { solAssert(contract, ""); inlineConstructorHierarchy(*contract); } /// Already visits the children. SMTEncoder::visit(_function); return false; } void BMC::endVisit(FunctionDefinition const& _function) { // Free functions need to be visited in the context of a contract. if (!m_currentContract) return; if (isRootFunction()) { checkVerificationTargets(); m_verificationTargets.clear(); m_pathConditions.clear(); } SMTEncoder::endVisit(_function); } bool BMC::visit(IfStatement const& _node) { auto indicesBeforePush = copyVariableIndices(); // This check needs to be done in its own context otherwise // constraints from the If body might influence it. m_context.pushSolver(); _node.condition().accept(*this); // We ignore called functions here because they have // specific input values. if (isRootFunction() && !isInsideLoop()) addVerificationTarget( VerificationTargetType::ConstantCondition, expr(_node.condition()), &_node.condition() ); m_context.popSolver(); resetVariableIndices(std::move(indicesBeforePush)); _node.condition().accept(*this); auto conditionExpr = expr(_node.condition()); // visit true branch auto [indicesEndTrue, trueEndPathCondition] = visitBranch(&_node.trueStatement(), conditionExpr); // visit false branch decltype(indicesEndTrue) indicesEndFalse; auto falseEndPathCondition = currentPathConditions() && !conditionExpr; if (_node.falseStatement()) std::tie(indicesEndFalse, falseEndPathCondition) = visitBranch(_node.falseStatement(), !conditionExpr); else indicesEndFalse = copyVariableIndices(); // merge the information from branches setPathCondition(trueEndPathCondition || falseEndPathCondition); mergeVariables(expr(_node.condition()), indicesEndTrue, indicesEndFalse); return false; } bool BMC::visit(Conditional const& _op) { auto indicesBeforePush = copyVariableIndices(); m_context.pushSolver(); _op.condition().accept(*this); if (isRootFunction() && !isInsideLoop()) addVerificationTarget( VerificationTargetType::ConstantCondition, expr(_op.condition()), &_op.condition() ); m_context.popSolver(); resetVariableIndices(std::move(indicesBeforePush)); SMTEncoder::visit(_op); return false; } // Unrolls while or do-while loop bool BMC::visit(WhileStatement const& _node) { unsigned int bmcLoopIterations = m_settings.bmcLoopIterations.value_or(1); smtutil::Expression broke(false); smtutil::Expression loopCondition(true); if (_node.isDoWhile()) { for (unsigned int i = 0; i < bmcLoopIterations; ++i) { m_loopCheckpoints.emplace(); auto indicesBefore = copyVariableIndices(); _node.body().accept(*this); auto brokeInCurrentIteration = mergeVariablesFromLoopCheckpoints(); auto indicesBreak = copyVariableIndices(); _node.condition().accept(*this); mergeVariables( !brokeInCurrentIteration, copyVariableIndices(), indicesBreak ); mergeVariables( broke || !loopCondition, indicesBefore, copyVariableIndices() ); loopCondition = loopCondition && expr(_node.condition()); broke = broke || brokeInCurrentIteration; m_loopCheckpoints.pop(); } if (bmcLoopIterations > 0) m_context.addAssertion(!loopCondition || broke); } else { smtutil::Expression loopConditionOnPreviousIterations(true); for (unsigned int i = 0; i < bmcLoopIterations; ++i) { m_loopCheckpoints.emplace(); auto indicesBefore = copyVariableIndices(); _node.condition().accept(*this); loopCondition = expr(_node.condition()); auto indicesAfterCondition = copyVariableIndices(); pushPathCondition(loopCondition); _node.body().accept(*this); popPathCondition(); auto brokeInCurrentIteration = mergeVariablesFromLoopCheckpoints(); // merges indices modified when accepting loop condition that no longer holds mergeVariables( !loopCondition, indicesAfterCondition, copyVariableIndices() ); // handles breaks in previous iterations // breaks in current iterations are handled when traversing loop checkpoints // handles case when the loop condition no longer holds but bmc loop iterations still unrolls the loop mergeVariables( broke || !loopConditionOnPreviousIterations, indicesBefore, copyVariableIndices() ); m_loopCheckpoints.pop(); broke = broke || brokeInCurrentIteration; loopConditionOnPreviousIterations = loopConditionOnPreviousIterations && loopCondition; } if (bmcLoopIterations > 0) { //after loop iterations are done, we check the loop condition last final time auto indices = copyVariableIndices(); _node.condition().accept(*this); loopCondition = expr(_node.condition()); // asseert that the loop is complete m_context.addAssertion(!loopCondition || broke || !loopConditionOnPreviousIterations); mergeVariables( broke || !loopConditionOnPreviousIterations, indices, copyVariableIndices() ); } } m_loopExecutionHappened = true; return false; } // Unrolls for loop bool BMC::visit(ForStatement const& _node) { if (_node.initializationExpression()) _node.initializationExpression()->accept(*this); smtutil::Expression broke(false); smtutil::Expression forCondition(true); smtutil::Expression forConditionOnPreviousIterations(true); unsigned int bmcLoopIterations = m_settings.bmcLoopIterations.value_or(1); for (unsigned int i = 0; i < bmcLoopIterations; ++i) { auto indicesBefore = copyVariableIndices(); if (_node.condition()) { _node.condition()->accept(*this); // values in loop condition might change during loop iteration forCondition = expr(*_node.condition()); } m_loopCheckpoints.emplace(); auto indicesAfterCondition = copyVariableIndices(); pushPathCondition(forCondition); _node.body().accept(*this); auto brokeInCurrentIteration = mergeVariablesFromLoopCheckpoints(); // accept loop expression if there was no break if (_node.loopExpression()) { auto indicesBreak = copyVariableIndices(); _node.loopExpression()->accept(*this); mergeVariables( !brokeInCurrentIteration, copyVariableIndices(), indicesBreak ); } popPathCondition(); // merges indices modified when accepting loop condition that does no longer hold mergeVariables( !forCondition, indicesAfterCondition, copyVariableIndices() ); // handles breaks in previous iterations // breaks in current iterations are handled when traversing loop checkpoints // handles case when the loop condition no longer holds but bmc loop iterations still unrolls the loop mergeVariables( broke || !forConditionOnPreviousIterations, indicesBefore, copyVariableIndices() ); m_loopCheckpoints.pop(); broke = broke || brokeInCurrentIteration; forConditionOnPreviousIterations = forConditionOnPreviousIterations && forCondition; } if (bmcLoopIterations > 0) { //after loop iterations are done, we check the loop condition last final time auto indices = copyVariableIndices(); if (_node.condition()) { _node.condition()->accept(*this); forCondition = expr(*_node.condition()); } // asseert that the loop is complete m_context.addAssertion(!forCondition || broke || !forConditionOnPreviousIterations); mergeVariables( broke || !forConditionOnPreviousIterations, indices, copyVariableIndices() ); } m_loopExecutionHappened = true; return false; } // merges variables based on loop control statements // returns expression indicating whether there was a break in current loop unroll iteration smtutil::Expression BMC::mergeVariablesFromLoopCheckpoints() { smtutil::Expression continues(false); smtutil::Expression brokeInCurrentIteration(false); for (auto const& loopControl: m_loopCheckpoints.top()) { // use SSAs associated with this break statement only if // loop didn't break or continue earlier in the iteration // loop condition is included in break path conditions mergeVariables( !brokeInCurrentIteration && !continues && loopControl.pathConditions, loopControl.variableIndices, copyVariableIndices() ); if (loopControl.kind == LoopControlKind::Break) brokeInCurrentIteration = brokeInCurrentIteration || loopControl.pathConditions; else if (loopControl.kind == LoopControlKind::Continue) continues = continues || loopControl.pathConditions; } return brokeInCurrentIteration; } bool BMC::visit(TryStatement const& _tryStatement) { FunctionCall const* externalCall = dynamic_cast(&_tryStatement.externalCall()); solAssert(externalCall && externalCall->annotation().tryCall, ""); externalCall->accept(*this); if (_tryStatement.successClause()->parameters()) expressionToTupleAssignment(_tryStatement.successClause()->parameters()->parameters(), *externalCall); smtutil::Expression clauseId = m_context.newVariable("clause_choice_" + to_string(m_context.newUniqueId()), smtutil::SortProvider::uintSort); auto const& clauses = _tryStatement.clauses(); m_context.addAssertion(clauseId >= 0 && clauseId < clauses.size()); solAssert(clauses[0].get() == _tryStatement.successClause(), "First clause of TryStatement should be the success clause"); vector> clausesVisitResults; for (size_t i = 0; i < clauses.size(); ++i) clausesVisitResults.push_back(visitBranch(clauses[i].get())); // merge the information from all clauses smtutil::Expression pathCondition = clausesVisitResults.front().second; auto currentIndices = clausesVisitResults[0].first; for (size_t i = 1; i < clauses.size(); ++i) { mergeVariables(clauseId == i, clausesVisitResults[i].first, currentIndices); currentIndices = copyVariableIndices(); pathCondition = pathCondition || clausesVisitResults[i].second; } setPathCondition(pathCondition); return false; } bool BMC::visit(Break const&) { LoopControl control = { LoopControlKind::Break, currentPathConditions(), copyVariableIndices() }; m_loopCheckpoints.top().emplace_back(control); return false; } bool BMC::visit(Continue const&) { LoopControl control = { LoopControlKind::Continue, currentPathConditions(), copyVariableIndices() }; m_loopCheckpoints.top().emplace_back(control); return false; } void BMC::endVisit(UnaryOperation const& _op) { SMTEncoder::endVisit(_op); if ( _op.annotation().type->category() == Type::Category::RationalNumber || _op.annotation().type->category() == Type::Category::FixedPoint ) return; if (_op.getOperator() == Token::Sub && smt::isInteger(*_op.annotation().type)) addVerificationTarget( VerificationTargetType::UnderOverflow, expr(_op), &_op ); } void BMC::endVisit(FunctionCall const& _funCall) { auto functionCallKind = *_funCall.annotation().kind; if (functionCallKind != FunctionCallKind::FunctionCall) { SMTEncoder::endVisit(_funCall); return; } FunctionType const& funType = dynamic_cast(*_funCall.expression().annotation().type); switch (funType.kind()) { case FunctionType::Kind::Assert: visitAssert(_funCall); SMTEncoder::endVisit(_funCall); break; case FunctionType::Kind::Require: visitRequire(_funCall); SMTEncoder::endVisit(_funCall); break; case FunctionType::Kind::Internal: case FunctionType::Kind::External: case FunctionType::Kind::DelegateCall: case FunctionType::Kind::BareCall: case FunctionType::Kind::BareCallCode: case FunctionType::Kind::BareDelegateCall: case FunctionType::Kind::BareStaticCall: case FunctionType::Kind::Creation: SMTEncoder::endVisit(_funCall); internalOrExternalFunctionCall(_funCall); break; case FunctionType::Kind::Send: case FunctionType::Kind::Transfer: { auto value = _funCall.arguments().front(); solAssert(value, ""); smtutil::Expression thisBalance = state().balance(); addVerificationTarget( VerificationTargetType::Balance, thisBalance < expr(*value), &_funCall ); SMTEncoder::endVisit(_funCall); break; } case FunctionType::Kind::KECCAK256: case FunctionType::Kind::ECRecover: case FunctionType::Kind::SHA256: case FunctionType::Kind::RIPEMD160: case FunctionType::Kind::BlockHash: case FunctionType::Kind::AddMod: case FunctionType::Kind::MulMod: case FunctionType::Kind::Unwrap: case FunctionType::Kind::Wrap: [[fallthrough]]; default: SMTEncoder::endVisit(_funCall); break; } } void BMC::endVisit(Return const& _return) { SMTEncoder::endVisit(_return); setPathCondition(smtutil::Expression(false)); } /// Visitor helpers. void BMC::visitAssert(FunctionCall const& _funCall) { auto const& args = _funCall.arguments(); solAssert(args.size() == 1, ""); solAssert(args.front()->annotation().type->category() == Type::Category::Bool, ""); addVerificationTarget( VerificationTargetType::Assert, expr(*args.front()), &_funCall ); } void BMC::visitRequire(FunctionCall const& _funCall) { auto const& args = _funCall.arguments(); solAssert(args.size() >= 1, ""); solAssert(args.front()->annotation().type->category() == Type::Category::Bool, ""); if (isRootFunction() && !isInsideLoop()) addVerificationTarget( VerificationTargetType::ConstantCondition, expr(*args.front()), args.front().get() ); } void BMC::visitAddMulMod(FunctionCall const& _funCall) { solAssert(_funCall.arguments().at(2), ""); addVerificationTarget( VerificationTargetType::DivByZero, expr(*_funCall.arguments().at(2)), &_funCall ); SMTEncoder::visitAddMulMod(_funCall); } void BMC::inlineFunctionCall(FunctionCall const& _funCall) { solAssert(shouldInlineFunctionCall(_funCall, currentScopeContract(), m_currentContract), ""); auto funDef = functionCallToDefinition(_funCall, currentScopeContract(), m_currentContract); solAssert(funDef, ""); if (visitedFunction(funDef)) { auto const& returnParams = funDef->returnParameters(); for (auto param: returnParams) { m_context.newValue(*param); m_context.setUnknownValue(*param); } } else { initializeFunctionCallParameters(*funDef, symbolicArguments(_funCall, m_currentContract)); // The reason why we need to pushCallStack here instead of visit(FunctionDefinition) // is that there we don't have `_funCall`. pushCallStack({funDef, &_funCall}); pushPathCondition(currentPathConditions()); auto oldChecked = std::exchange(m_checked, true); funDef->accept(*this); m_checked = oldChecked; popPathCondition(); } createReturnedExpressions(_funCall, m_currentContract); } void BMC::internalOrExternalFunctionCall(FunctionCall const& _funCall) { auto const& funType = dynamic_cast(*_funCall.expression().annotation().type); if (shouldInlineFunctionCall(_funCall, currentScopeContract(), m_currentContract)) inlineFunctionCall(_funCall); else if (publicGetter(_funCall.expression())) { // Do nothing here. // The processing happens in SMT Encoder, but we need to prevent the resetting of the state variables. } else if (funType.kind() == FunctionType::Kind::Internal) m_unsupportedErrors.warning( 5729_error, _funCall.location(), "BMC does not yet implement this type of function call." ); else if (funType.kind() == FunctionType::Kind::BareStaticCall) { // Do nothing here. // Neither storage nor balances should be modified. } else { m_externalFunctionCallHappened = true; resetStorageVariables(); resetBalances(); } } pair BMC::arithmeticOperation( Token _op, smtutil::Expression const& _left, smtutil::Expression const& _right, Type const* _commonType, Expression const& _expression ) { // Unchecked does not disable div by 0 checks. if (_op == Token::Div || _op == Token::Mod) addVerificationTarget( VerificationTargetType::DivByZero, _right, &_expression ); auto values = SMTEncoder::arithmeticOperation(_op, _left, _right, _commonType, _expression); if (!m_checked) return values; auto const* intType = dynamic_cast(_commonType); if (!intType) intType = TypeProvider::uint256(); // Mod does not need underflow/overflow checks. if (_op == Token::Mod) return values; VerificationTargetType type; // The order matters here: // If _op is Div and intType is signed, we only care about overflow. if (_op == Token::Div) { if (intType->isSigned()) // Signed division can only overflow. type = VerificationTargetType::Overflow; else // Unsigned division cannot underflow/overflow. return values; } else if (intType->isSigned()) type = VerificationTargetType::UnderOverflow; else if (_op == Token::Sub) type = VerificationTargetType::Underflow; else if (_op == Token::Add || _op == Token::Mul) type = VerificationTargetType::Overflow; else solAssert(false, ""); addVerificationTarget( type, values.second, &_expression ); return values; } void BMC::reset() { m_externalFunctionCallHappened = false; m_loopExecutionHappened = false; } pair, vector> BMC::modelExpressions() { vector expressionsToEvaluate; vector expressionNames; for (auto const& var: m_context.variables()) if (var.first->type()->isValueType()) { expressionsToEvaluate.emplace_back(currentValue(*var.first)); expressionNames.push_back(var.first->name()); } for (auto const& var: m_context.globalSymbols()) { auto const& type = var.second->type(); if ( type->isValueType() && smt::smtKind(*type) != smtutil::Kind::Function ) { expressionsToEvaluate.emplace_back(var.second->currentValue()); expressionNames.push_back(var.first); } } for (auto const& uf: m_uninterpretedTerms) if (uf->annotation().type->isValueType()) { expressionsToEvaluate.emplace_back(expr(*uf)); string expressionName; if (uf->location().hasText()) expressionName = m_charStreamProvider.charStream(*uf->location().sourceName).text( uf->location() ); expressionNames.push_back(std::move(expressionName)); } return {expressionsToEvaluate, expressionNames}; } /// Verification targets. string BMC::targetDescription(BMCVerificationTarget const& _target) { if ( _target.type == VerificationTargetType::Underflow || _target.type == VerificationTargetType::Overflow ) { auto const* intType = dynamic_cast(_target.expression->annotation().type); if (!intType) intType = TypeProvider::uint256(); if (_target.type == VerificationTargetType::Underflow) return "Underflow (resulting value less than " + formatNumberReadable(intType->minValue()) + ")"; return "Overflow (resulting value larger than " + formatNumberReadable(intType->maxValue()) + ")"; } else if (_target.type == VerificationTargetType::DivByZero) return "Division by zero"; else if (_target.type == VerificationTargetType::Assert) return "Assertion violation"; else if (_target.type == VerificationTargetType::Balance) return "Insufficient funds"; solAssert(false); } void BMC::checkVerificationTargets() { for (auto& target: m_verificationTargets) checkVerificationTarget(target); } void BMC::checkVerificationTarget(BMCVerificationTarget& _target) { switch (_target.type) { case VerificationTargetType::ConstantCondition: checkConstantCondition(_target); break; case VerificationTargetType::Underflow: checkUnderflow(_target); break; case VerificationTargetType::Overflow: checkOverflow(_target); break; case VerificationTargetType::UnderOverflow: checkUnderflow(_target); checkOverflow(_target); break; case VerificationTargetType::DivByZero: checkDivByZero(_target); break; case VerificationTargetType::Balance: checkBalance(_target); break; case VerificationTargetType::Assert: checkAssert(_target); break; default: solAssert(false, ""); } } void BMC::checkConstantCondition(BMCVerificationTarget& _target) { checkBooleanNotConstant( *_target.expression, _target.constraints, _target.value, _target.callStack ); } void BMC::checkUnderflow(BMCVerificationTarget& _target) { solAssert( _target.type == VerificationTargetType::Underflow || _target.type == VerificationTargetType::UnderOverflow, "" ); if ( m_solvedTargets.count(_target.expression) && ( m_solvedTargets.at(_target.expression).count(VerificationTargetType::Underflow) || m_solvedTargets.at(_target.expression).count(VerificationTargetType::UnderOverflow) ) ) return; auto const* intType = dynamic_cast(_target.expression->annotation().type); if (!intType) intType = TypeProvider::uint256(); checkCondition( _target, _target.constraints && _target.value < smt::minValue(*intType), _target.callStack, _target.modelExpressions, _target.expression->location(), 4144_error, 8312_error, "", &_target.value ); } void BMC::checkOverflow(BMCVerificationTarget& _target) { solAssert( _target.type == VerificationTargetType::Overflow || _target.type == VerificationTargetType::UnderOverflow, "" ); if ( m_solvedTargets.count(_target.expression) && ( m_solvedTargets.at(_target.expression).count(VerificationTargetType::Overflow) || m_solvedTargets.at(_target.expression).count(VerificationTargetType::UnderOverflow) ) ) return; auto const* intType = dynamic_cast(_target.expression->annotation().type); if (!intType) intType = TypeProvider::uint256(); checkCondition( _target, _target.constraints && _target.value > smt::maxValue(*intType), _target.callStack, _target.modelExpressions, _target.expression->location(), 2661_error, 8065_error, "", &_target.value ); } void BMC::checkDivByZero(BMCVerificationTarget& _target) { solAssert(_target.type == VerificationTargetType::DivByZero, ""); if ( m_solvedTargets.count(_target.expression) && m_solvedTargets.at(_target.expression).count(VerificationTargetType::DivByZero) ) return; checkCondition( _target, _target.constraints && (_target.value == 0), _target.callStack, _target.modelExpressions, _target.expression->location(), 3046_error, 5272_error, "", &_target.value ); } void BMC::checkBalance(BMCVerificationTarget& _target) { solAssert(_target.type == VerificationTargetType::Balance, ""); checkCondition( _target, _target.constraints && _target.value, _target.callStack, _target.modelExpressions, _target.expression->location(), 1236_error, 4010_error, "address(this).balance" ); } void BMC::checkAssert(BMCVerificationTarget& _target) { solAssert(_target.type == VerificationTargetType::Assert, ""); if ( m_solvedTargets.count(_target.expression) && m_solvedTargets.at(_target.expression).count(_target.type) ) return; checkCondition( _target, _target.constraints && !_target.value, _target.callStack, _target.modelExpressions, _target.expression->location(), 4661_error, 7812_error ); } void BMC::addVerificationTarget( VerificationTargetType _type, smtutil::Expression const& _value, Expression const* _expression ) { if (!m_settings.targets.has(_type) || (m_currentContract && !shouldAnalyze(*m_currentContract))) return; BMCVerificationTarget target{ { _type, _value, currentPathConditions() && m_context.assertions() }, _expression, m_callStack, modelExpressions() }; if (_type == VerificationTargetType::ConstantCondition) checkVerificationTarget(target); else m_verificationTargets.emplace_back(std::move(target)); } /// Solving. void BMC::checkCondition( BMCVerificationTarget const& _target, smtutil::Expression _condition, vector const& _callStack, pair, vector> const& _modelExpressions, SourceLocation const& _location, ErrorId _errorHappens, ErrorId _errorMightHappen, string const& _additionalValueName, smtutil::Expression const* _additionalValue ) { m_interface->push(); m_interface->addAssertion(_condition); vector expressionsToEvaluate; vector expressionNames; tie(expressionsToEvaluate, expressionNames) = _modelExpressions; if (!_callStack.empty()) if (_additionalValue) { expressionsToEvaluate.emplace_back(*_additionalValue); expressionNames.push_back(_additionalValueName); } smtutil::CheckResult result; vector values; tie(result, values) = checkSatisfiableAndGenerateModel(expressionsToEvaluate); string extraComment = SMTEncoder::extraComment(); if (m_loopExecutionHappened) extraComment += "False negatives are possible when unrolling loops.\n" "This is due to the possibility that the BMC loop iteration setting is" " smaller than the actual number of iterations needed to complete a loop."; if (m_externalFunctionCallHappened) extraComment += "\nNote that external function calls are not inlined," " even if the source code of the function is available." " This is due to the possibility that the actual called contract" " has the same ABI but implements the function differently."; SecondarySourceLocation secondaryLocation{}; secondaryLocation.append(extraComment, SourceLocation{}); switch (result) { case smtutil::CheckResult::SATISFIABLE: { solAssert(!_callStack.empty(), ""); std::ostringstream message; message << "BMC: " << targetDescription(_target) << " happens here."; std::ostringstream modelMessage; // Sometimes models have complex smtlib2 expressions that SMTLib2Interface fails to parse. if (values.size() == expressionNames.size()) { modelMessage << "Counterexample:\n"; map sortedModel; for (size_t i = 0; i < values.size(); ++i) if (expressionsToEvaluate.at(i).name != values.at(i)) sortedModel[expressionNames.at(i)] = values.at(i); for (auto const& eval: sortedModel) modelMessage << " " << eval.first << " = " << eval.second << "\n"; } m_errorReporter.warning( _errorHappens, _location, message.str(), SecondarySourceLocation().append(modelMessage.str(), SourceLocation{}) .append(SMTEncoder::callStackMessage(_callStack)) .append(std::move(secondaryLocation)) ); break; } case smtutil::CheckResult::UNSATISFIABLE: { m_safeTargets[_target.expression].insert(_target); break; } case smtutil::CheckResult::UNKNOWN: { ++m_unprovedAmt; if (m_settings.showUnproved) m_errorReporter.warning(_errorMightHappen, _location, "BMC: " + targetDescription(_target) + " might happen here.", secondaryLocation); break; } case smtutil::CheckResult::CONFLICTING: m_errorReporter.warning(1584_error, _location, "BMC: At least two SMT solvers provided conflicting answers. Results might not be sound."); break; case smtutil::CheckResult::ERROR: m_errorReporter.warning(1823_error, _location, "BMC: Error trying to invoke SMT solver."); break; } m_interface->pop(); } void BMC::checkBooleanNotConstant( Expression const& _condition, smtutil::Expression const& _constraints, smtutil::Expression const& _value, vector const& _callStack ) { // Do not check for const-ness if this is a constant. if (dynamic_cast(&_condition)) return; m_interface->push(); m_interface->addAssertion(_constraints && _value); auto positiveResult = checkSatisfiable(); m_interface->pop(); m_interface->push(); m_interface->addAssertion(_constraints && !_value); auto negatedResult = checkSatisfiable(); m_interface->pop(); if (positiveResult == smtutil::CheckResult::ERROR || negatedResult == smtutil::CheckResult::ERROR) m_errorReporter.warning(8592_error, _condition.location(), "BMC: Error trying to invoke SMT solver."); else if (positiveResult == smtutil::CheckResult::CONFLICTING || negatedResult == smtutil::CheckResult::CONFLICTING) m_errorReporter.warning(3356_error, _condition.location(), "BMC: At least two SMT solvers provided conflicting answers. Results might not be sound."); else if (positiveResult == smtutil::CheckResult::SATISFIABLE && negatedResult == smtutil::CheckResult::SATISFIABLE) { // everything fine. } else if (positiveResult == smtutil::CheckResult::UNKNOWN || negatedResult == smtutil::CheckResult::UNKNOWN) { // can't do anything. } else if (positiveResult == smtutil::CheckResult::UNSATISFIABLE && negatedResult == smtutil::CheckResult::UNSATISFIABLE) m_errorReporter.warning(2512_error, _condition.location(), "BMC: Condition unreachable.", SMTEncoder::callStackMessage(_callStack)); else { string description; if (positiveResult == smtutil::CheckResult::SATISFIABLE) { solAssert(negatedResult == smtutil::CheckResult::UNSATISFIABLE, ""); description = "BMC: Condition is always true."; } else { solAssert(positiveResult == smtutil::CheckResult::UNSATISFIABLE, ""); solAssert(negatedResult == smtutil::CheckResult::SATISFIABLE, ""); description = "BMC: Condition is always false."; } m_errorReporter.warning( 6838_error, _condition.location(), description, SMTEncoder::callStackMessage(_callStack) ); } } pair> BMC::checkSatisfiableAndGenerateModel(vector const& _expressionsToEvaluate) { smtutil::CheckResult result; vector values; try { if (m_settings.printQuery) { auto portfolio = dynamic_cast(m_interface.get()); string smtlibCode = portfolio->dumpQuery(_expressionsToEvaluate); m_errorReporter.info( 6240_error, "BMC: Requested query:\n" + smtlibCode ); } tie(result, values) = m_interface->check(_expressionsToEvaluate); } catch (smtutil::SolverError const& _e) { string description("BMC: Error querying SMT solver"); if (_e.comment()) description += ": " + *_e.comment(); m_errorReporter.warning(8140_error, description); result = smtutil::CheckResult::ERROR; } for (string& value: values) { try { // Parse and re-format nicely value = formatNumberReadable(bigint(value)); } catch (...) { } } return make_pair(result, values); } smtutil::CheckResult BMC::checkSatisfiable() { return checkSatisfiableAndGenerateModel({}).first; } void BMC::assignment(smt::SymbolicVariable& _symVar, smtutil::Expression const& _value) { auto oldVar = _symVar.currentValue(); auto newVar = _symVar.increaseIndex(); m_context.addAssertion(smtutil::Expression::ite( currentPathConditions(), newVar == _value, newVar == oldVar )); } bool BMC::isInsideLoop() const { return !m_loopCheckpoints.empty(); }