[LLVMbugs] [Bug 16085] New: Dominator analysis does not handle NULL successors
bugzilla-daemon at llvm.org
bugzilla-daemon at llvm.org
Tue May 21 03:53:05 PDT 2013
http://llvm.org/bugs/show_bug.cgi?id=16085
Bug ID: 16085
Summary: Dominator analysis does not handle NULL successors
Product: clang
Version: trunk
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P
Component: Static Analyzer
Assignee: kremenek at apple.com
Reporter: thomas.pani at gmail.com
CC: llvmbugs at cs.uiuc.edu
Classification: Unclassified
CFGBuilder introduces NULL successors if the terminator condition can be
evaluated to a boolean value.
These NULL successors are unexpected / unhandled elsewhere, including:
- clang::DominatorTree::dump() [DT->getNode(*I) may evaluate to 0]
- llvm::DFSPass() [Succ may evaluate to 0]
E.g.
$ echo "int main() { return 0 ? 0 : 0; }" | clang -cc1 -analyze
-analyzer-checker=debug.DumpDominators -x c -
segfaults with a null ptr dereference.
PS: This could be unhandled in code other than the dominator analysis as well.
--
You are receiving this mail because:
You are on the CC list for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/llvm-bugs/attachments/20130521/644a0543/attachment.html>
More information about the llvm-bugs
mailing list