CHC: Add command-line argument handling to a number of checkers

The logic was already in both cCHPOCheckNotNull.ml and in
cCHPOQuery.ml, although cCHPOCheckNotNull.ml was using
its own function instead of the one in the POQuery object.

This adds calls to the util function in the POQuery object and
nukes the private function in CheckNotNull.

With these changes, a simple hello world program no longer gets a
ton of open POs:

```
int main(int argc, char **argv) {
  if (argc != 2) {
    printf("ERROR: usage: %s <name>\n", argv[0]);
    return 1;
  }
  printf("Hello world %s\n", argv[1]);
--------------------------------------------------------------------------------
|  initialized-range((*(argv + 1):((char *) *)), len:cnapp(ntp((*(argv + 1):((char *) *))))|
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
|  valid-mem((*(argv + 1):((char *) *)))                                       |
|  [augv[call]:$fn-entry$(-1):calls]:none                                      |
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
|  null-terminated((*(argv + 1):((char *) *)))                                 |
|  no invariants found for *(((lval (argv) +i 1):((char*)*))                   |
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
|  upper-bound(char,(*(argv + 1):((char *) *)))                                |
|  no invariants for *(((lval (argv) +i 1):((char*)*))                         |
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
|  lower-bound(char,(*(argv + 1):((char *) *)))                                |
|  no invariants found for *(((lval (argv) +i 1):((char*)*))                   |
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
|  ptr-upper-bound((*(argv + 1):((char *) *)), cnapp(ntp((*(argv + 1):((char *) *))), op:pluspi, typ: char)|
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
|  in-scope((*(argv + 1):((char *) *)))                                        |
|  no invariants found for *(((lval (argv) +i 1):((char*)*))                   |
--------------------------------------------------------------------------------
```

There's still one open pre-condition that I haven't figured out how to
close:
--------------------------------------------------------------------------------
|  Preconditions:                                                              |
|    ptr-upper-bound-deref(argv, 1, op:indexpi, typ: (char *))                 |
--------------------------------------------------------------------------------

Author: waskyo

CodeHawk/CHC/cchanalyze/cCHPOCheckInScope.ml

@@ -230,6 +230,21 @@ object (self)
     r
 
   method check_safe =
+    let safemsg = fun index arg_count -> ("command-line argument"
+                                          ^ (string_of_int index)
+                                          ^ " is guaranteed to be in scope"
+                                          ^ " for argument count "
+                                          ^ (string_of_int arg_count)) in
+    let vmsg = fun index arg_count -> ("command-line argument "
+                                       ^ (string_of_int index)
+                                       ^ " is not included in argument count of "
+                                       ^ (string_of_int arg_count)) in
+    let dmsg = fun index -> ("no invariant found for argument count; "
+                             ^ "unable to validate scope of "
+                             ^ "command-line argument "
+                             ^ (string_of_int index)) in
+
+    poq#check_command_line_argument e safemsg vmsg dmsg ||
     match invs with
     | [] ->
        begin

CodeHawk/CHC/cchanalyze/cCHPOCheckInitializedRange.ml

@@ -320,6 +320,20 @@ object (self)
     | _ -> None
 
   method check_safe =
+    let safemsg = fun index arg_count -> ("command-line argument"
+                                          ^ (string_of_int index)
+                                          ^ " is guaranteed initialized for argument count "
+                                          ^ (string_of_int arg_count)) in
+    let vmsg = fun index arg_count -> ("command-line argument "
+                                       ^ (string_of_int index)
+                                       ^ " is not included in argument count of "
+                                       ^ (string_of_int arg_count)) in
+    let dmsg = fun index -> ("no invariant found for argument count; "
+                             ^ "unable to validate initialization of "
+                             ^ "command-line argument "
+                             ^ (string_of_int index)) in
+
+    poq#check_command_line_argument e1 safemsg vmsg dmsg ||
     match self#unsigned_length_conflict with
     | Some _ -> false
     | _ ->

CodeHawk/CHC/cchanalyze/cCHPOCheckLowerBound.ml

@@ -198,6 +198,21 @@ object (self)
           | _ -> None
 
   method check_safe =
+    let safemsg = fun index arg_count -> ("command-line argument"
+                                          ^ (string_of_int index)
+                                          ^ " is guaranteed to be valid to access"
+                                          ^ " for argument count "
+                                          ^ (string_of_int arg_count)) in
+    let vmsg = fun index arg_count -> ("command-line argument "
+                                       ^ (string_of_int index)
+                                       ^ " is not included in argument count of "
+                                       ^ (string_of_int arg_count)) in
+    let dmsg = fun index -> ("no invariant found for argument count; "
+                             ^ "unable to validate access of "
+                             ^ "command-line argument "
+                             ^ (string_of_int index)) in
+
+    poq#check_command_line_argument e safemsg vmsg dmsg ||
     match invs with
     | [] ->
        begin

CodeHawk/CHC/cchanalyze/cCHPOCheckNotNull.ml

@@ -76,43 +76,6 @@ object (self)
 
   (* ----------------------------- safe ------------------------------------- *)
 
-  method private command_line_argument =
-    if poq#is_command_line_argument e then
-      let index = poq#get_command_line_argument_index e in
-      match poq#get_command_line_argument_count with
-      | Some (inv, i) ->
-         if index < i then
-           begin
-             poq#record_safe_result
-               (DLocal [inv])
-               ("command-line argument "
-                ^ (string_of_int index)
-                ^ " is guaranteed not null for argument count "
-                ^ (string_of_int i));
-             true
-           end
-         else
-           begin
-             poq#record_violation_result
-               (DLocal [inv])
-               ("command-line argument "
-                ^ (string_of_int index)
-                ^ " is not included in argument count of "
-                ^ (string_of_int i));
-             true
-           end
-      | _ ->
-         begin
-           poq#set_diagnostic
-             ("no invariant found for argument count; "
-                ^ "unable to validate access of "
-                ^ "command-line argument "
-                ^ (string_of_int index));
-           false
-         end
-    else
-      false
-
   method private global_expression_safe (invindex: int) (x: xpr_t) =
     let pred = PNotNull (poq#get_global_expression x) in
     match poq#check_implied_by_assumptions pred with
@@ -314,7 +277,21 @@ object (self)
     r
 
   method check_safe =
-    self#command_line_argument
+    let safemsg = fun index arg_count -> ("command-line argument"
+                                          ^ (string_of_int index)
+                                          ^ " is guaranteed not null"
+                                          ^ " for argument count "
+                                          ^ (string_of_int arg_count)) in
+    let vmsg = fun index arg_count -> ("command-line argument "
+                                       ^ (string_of_int index)
+                                       ^ " is not included in argument count of "
+                                       ^ (string_of_int arg_count)) in
+    let dmsg = fun index -> ("no invariant found for argument count; "
+                             ^ "unable to validate not-null of "
+                             ^ "command-line argument "
+                             ^ (string_of_int index)) in
+
+    poq#check_command_line_argument e safemsg vmsg dmsg
     || (List.fold_left (fun acc inv ->
             acc ||
               match self#inv_implies_safe inv with

CodeHawk/CHC/cchanalyze/cCHPOCheckNullTerminated.ml

@@ -166,6 +166,21 @@ object (self)
     | _ -> None
 
   method check_safe =
+    let safemsg = fun index arg_count -> ("command-line argument"
+                                          ^ (string_of_int index)
+                                          ^ " is guaranteed to be null-termianted"
+                                          ^ " for argument count "
+                                          ^ (string_of_int arg_count)) in
+    let vmsg = fun index arg_count -> ("command-line argument "
+                                       ^ (string_of_int index)
+                                       ^ " is not included in argument count of "
+                                       ^ (string_of_int arg_count)) in
+    let dmsg = fun index -> ("no invariant found for argument count; "
+                             ^ "unable to validate null-termination of "
+                             ^ "command-line argument "
+                             ^ (string_of_int index)) in
+
+    poq#check_command_line_argument e safemsg vmsg dmsg ||
     match invs with
     | [] ->
        begin

CodeHawk/CHC/cchanalyze/cCHPOCheckPtrUpperBound.ml

@@ -455,6 +455,21 @@ object (self)
                    | _ -> false) acc1 invs2) false invs1
 
   method check_safe =
+    let safemsg = fun index arg_count -> ("command-line argument"
+                                          ^ (string_of_int index)
+                                          ^ " is guaranteed to be valid to access"
+                                          ^ " for argument count "
+                                          ^ (string_of_int arg_count)) in
+    let vmsg = fun index arg_count -> ("command-line argument "
+                                       ^ (string_of_int index)
+                                       ^ " is not included in argument count of "
+                                       ^ (string_of_int arg_count)) in
+    let dmsg = fun index -> ("no invariant found for argument count; "
+                             ^ "unable to validate access of "
+                             ^ "command-line argument "
+                             ^ (string_of_int index)) in
+
+    poq#check_command_line_argument e1 safemsg vmsg dmsg ||
     match self#null_terminated_string_implies_pluspi_safe with
     | Some (deps,msg) ->
        begin

CodeHawk/CHC/cchanalyze/cCHPOCheckUpperBound.ml

@@ -181,6 +181,21 @@ object (self)
        | Some l -> self#xprlist_implies_safe inv#index l
 
   method check_safe =
+    let safemsg = fun index arg_count -> ("command-line argument"
+                                          ^ (string_of_int index)
+                                          ^ " is guaranteed to be valid to access"
+                                          ^ " for argument count "
+                                          ^ (string_of_int arg_count)) in
+    let vmsg = fun index arg_count -> ("command-line argument "
+                                       ^ (string_of_int index)
+                                       ^ " is not included in argument count of "
+                                       ^ (string_of_int arg_count)) in
+    let dmsg = fun index -> ("no invariant found for argument count; "
+                             ^ "unable to validate access of "
+                             ^ "command-line argument "
+                             ^ (string_of_int index)) in
+
+    poq#check_command_line_argument e safemsg vmsg dmsg ||
     match invs with
     | [] ->
        begin

CodeHawk/CHC/cchanalyze/cCHPOCheckValidMem.ml

@@ -447,7 +447,22 @@ object (self)
     r
 
   method check_safe =
-    self#global_free
+    let safemsg = fun index arg_count -> ("command-line argument"
+                                          ^ (string_of_int index)
+                                          ^ " is guaranteed to have valid memory"
+                                          ^ " for argument count "
+                                          ^ (string_of_int arg_count)) in
+    let vmsg = fun index arg_count -> ("command-line argument "
+                                       ^ (string_of_int index)
+                                       ^ " is not included in argument count of "
+                                       ^ (string_of_int arg_count)) in
+    let dmsg = fun index -> ("no invariant found for argument count; "
+                             ^ "unable to validate memory validity of "
+                             ^ "command-line argument "
+                             ^ (string_of_int index)) in
+
+    poq#check_command_line_argument e safemsg vmsg dmsg
+    || self#global_free
     || (match invs with
         | [] -> false
         | _  ->