[PATCH] D87043: [Analyzer] Fix for dereferece of smart pointer after branching on unknown inner pointer
Nithin VR via Phabricator via cfe-commits
cfe-commits at lists.llvm.org
Wed Sep 2 09:56:57 PDT 2020
vrnithinkumar created this revision.
Herald added subscribers: cfe-commits, steakhal, ASDenysPetrov, martong, Charusso, dkrupp, donat.nagy, Szelethus, mikhail.ramalho, a.sidorin, szepet, baloghadamsoftware, xazax.hun.
Herald added a project: clang.
vrnithinkumar requested review of this revision.
Repository:
rG LLVM Github Monorepo
https://reviews.llvm.org/D87043
Files:
clang/lib/StaticAnalyzer/Checkers/SmartPtrModeling.cpp
clang/test/Analysis/smart-ptr-text-output.cpp
clang/test/Analysis/smart-ptr.cpp
Index: clang/test/Analysis/smart-ptr.cpp
===================================================================
--- clang/test/Analysis/smart-ptr.cpp
+++ clang/test/Analysis/smart-ptr.cpp
@@ -333,7 +333,7 @@
void drefOnAssignedNullFromMethodPtrValidSmartPtr() {
std::unique_ptr<A> P(new A());
P = returnRValRefOfUniquePtr();
- P->foo(); // No warning.
+ P->foo(); // No warning.
}
void derefMoveConstructedWithValidPtr() {
@@ -374,7 +374,7 @@
void derefMoveConstructedWithRValueRefReturn() {
std::unique_ptr<A> P(functionReturnsRValueRef());
- P->foo(); // No warning.
+ P->foo(); // No warning.
}
void derefConditionOnNullPtr() {
@@ -450,3 +450,10 @@
else
return *P; // expected-warning {{Dereference of null smart pointer 'P' [alpha.cplusplus.SmartPtr]}}
}
+
+void derefAfterBranchingOnUnknownInnerPtr(std::unique_ptr<A> P) {
+ A *RP = P.get();
+ if (!RP) {
+ P->foo(); // expected-warning {{Dereference of null smart pointer 'P' [alpha.cplusplus.SmartPtr]}}
+ }
+}
Index: clang/test/Analysis/smart-ptr-text-output.cpp
===================================================================
--- clang/test/Analysis/smart-ptr-text-output.cpp
+++ clang/test/Analysis/smart-ptr-text-output.cpp
@@ -304,3 +304,12 @@
// expected-note at -1 {{Division by zero}}
}
};
+
+void derefAfterBranchingOnUnknownInnerPtr(std::unique_ptr<A> P) {
+ A *RP = P.get();
+ if (!RP) { // expected-note {{Assuming 'RP' is null}}
+ // expected-note at -1 {{Taking true branch}}
+ P->foo(); // expected-warning {{Dereference of null smart pointer 'P' [alpha.cplusplus.SmartPtr]}}
+ // expected-note at -1{{Dereference of null smart pointer 'P'}}
+ }
+}
Index: clang/lib/StaticAnalyzer/Checkers/SmartPtrModeling.cpp
===================================================================
--- clang/lib/StaticAnalyzer/Checkers/SmartPtrModeling.cpp
+++ clang/lib/StaticAnalyzer/Checkers/SmartPtrModeling.cpp
@@ -103,7 +103,7 @@
bool isNullSmartPtr(const ProgramStateRef State, const MemRegion *ThisRegion) {
const auto *InnerPointVal = State->get<TrackedRegionMap>(ThisRegion);
- return InnerPointVal && InnerPointVal->isZeroConstant();
+ return InnerPointVal && State->isNull(*InnerPointVal).isConstrainedTrue();
}
} // namespace smartptr
} // namespace ento
-------------- next part --------------
A non-text attachment was scrubbed...
Name: D87043.289501.patch
Type: text/x-patch
Size: 2287 bytes
Desc: not available
URL: <http://lists.llvm.org/pipermail/cfe-commits/attachments/20200902/002fc5b2/attachment.bin>
More information about the cfe-commits
mailing list