<html>
    <head>
      <base href="https://bugs.llvm.org/">
    </head>
    <body><table border="1" cellspacing="0" cellpadding="8">
        <tr>
          <th>Bug ID</th>
          <td><a class="bz_bug_link 
          bz_status_NEW "
   title="NEW - malloc analyzer check crashes"
   href="https://bugs.llvm.org/show_bug.cgi?id=46253">46253</a>
          </td>
        </tr>

        <tr>
          <th>Summary</th>
          <td>malloc analyzer check crashes
          </td>
        </tr>

        <tr>
          <th>Product</th>
          <td>clang
          </td>
        </tr>

        <tr>
          <th>Version</th>
          <td>trunk
          </td>
        </tr>

        <tr>
          <th>Hardware</th>
          <td>PC
          </td>
        </tr>

        <tr>
          <th>OS</th>
          <td>Linux
          </td>
        </tr>

        <tr>
          <th>Status</th>
          <td>NEW
          </td>
        </tr>

        <tr>
          <th>Severity</th>
          <td>enhancement
          </td>
        </tr>

        <tr>
          <th>Priority</th>
          <td>P
          </td>
        </tr>

        <tr>
          <th>Component</th>
          <td>Static Analyzer
          </td>
        </tr>

        <tr>
          <th>Assignee</th>
          <td>dcoughlin@apple.com
          </td>
        </tr>

        <tr>
          <th>Reporter</th>
          <td>hokein@google.com
          </td>
        </tr>

        <tr>
          <th>CC</th>
          <td>dcoughlin@apple.com, llvm-bugs@lists.llvm.org
          </td>
        </tr></table>
      <p>
        <div>
        <pre>./clang-tidy -checks="-*,clang-analyzer*" /tmp/crash.cpp


crash.cpp:

class a {
  void realloc(int, bool = false) { realloc(1); }
};


assert.h assertion failed at
llvm-project/clang/lib/StaticAnalyzer/Core/SValBuilder.cpp:427 in
clang::ento::SVal
clang::ento::SValBuilder::evalBinOp(clang::ento::ProgramStateRef,
BinaryOperator::Opcode, clang::ento::SVal, clang::ento::SVal, clang::QualType):
op == BO_Add
*** Check failure stack trace: ***
    @     0x564aecc437c6  __assert_fail
    @     0x564aeb336cbf  clang::ento::SValBuilder::evalBinOp()
    @     0x564aeb336efc  clang::ento::SValBuilder::evalEQ()
    @     0x564aeb13e777  (anonymous namespace)::MallocChecker::ReallocMemAux()
    @     0x564aeb135ba2  (anonymous namespace)::MallocChecker::checkRealloc()
    @     0x564aeb1454bd  clang::ento::check::PostCall::_checkCall<>()
    @     0x564aeb29b3f2 
clang::ento::CheckerManager::runCheckersForCallEvent()
    @     0x564aeb2e067e  clang::ento::ExprEngine::evalCall()
    @     0x564aeb2e0333  clang::ento::ExprEngine::VisitCallExpr()
    @     0x564aeb2bfe8d  clang::ento::ExprEngine::Visit()
    @     0x564aeb2bb96c  clang::ento::ExprEngine::ProcessStmt()
    @     0x564aeb2bb648  clang::ento::ExprEngine::processCFGElement()</pre>
        </div>
      </p>


      <hr>
      <span>You are receiving this mail because:</span>

      <ul>
          <li>You are on the CC list for the bug.</li>
      </ul>
    </body>
</html>