[cfe-dev] provide a hint to clang-analyzer-optin.portability.UnixAPI?
Artem Dergachev via cfe-dev
cfe-dev at lists.llvm.org
Mon Mar 16 12:22:31 PDT 2020
Yeah but it doesn't help much, i'm more interested in intermediate
events across the path.
On 3/16/20 8:50 PM, Balázs Benics wrote:
> I might be wrong, but probably this is the line which triggered the
> warning.
> https://github.com/robertu94/libpressio/blob/master/include/libpressio_ext/cpp/data.h#L247
>
>
> On Mon, Mar 16, 2020, 05:35 Artem Dergachev via cfe-dev
> <cfe-dev at lists.llvm.org <mailto:cfe-dev at lists.llvm.org>> wrote:
>
> It looks like we don't understand that size_in_bytes() always returns
> the same value. There may be multiple reasons for this. I'd like
> to see
> the whole code in order to understand what's going on. Could you
> produce
> a preprocessed file and attach it together with the analyzer
> invocation?
>
> As a workaround / suppression you should be able to do something
> like this:
>
> static void *make_data_ptr(RHS rhs) {
> if (!rhs.has_data())
> return nullptr;
>
> size_t size = rhs.size_in_bytes();
> return size ? malloc(size) : nullptr;
> }
>
> Ctor(RHS rhs): data_ptr(make_data_ptr(rhs)) {}
>
> This would prevent the analyzer (and, well, your actual generated
> code)
> from calling size_in_bytes() twice and believing that it may
> return two
> different values.
>
> On 2/28/20 5:41 PM, Robert Underwood via cfe-dev wrote:
> >
> > To whom it may concern,
> >
> > tl;dr I think I found a bug in the clang static analyzer. Could
> > someone please help me find a workaround/where to properly
> report the bug?
> >
> > I have a statement in a class initializer list:
> >
> > |data_ptr((rhs.has_data() && rhs.size_in_bytes() > 0)?
> > malloc(rhs.size_in_bytes()) : nullptr)|
> >
> > rhs.has_data() is a const function that returns t/f if
> rhs.data_ptr !=
> > null
> >
> > rhs.size_in_bytes() a const function that returns the number of
> bytes
> > in the structure *if has_data was true*
> >
> > i.e. it is possible that rhs.has_data() is false, and
> > rhs.size_in_bytes() > 0
> >
> > However the clang static analyzer seems to get a false positive
> here.
> >
> >
> |/usr/lib/gcc/x86_64-pc-linux-gnu/8.3.0/include/g++-v8/bits/unique_ptr.h:831:34:
>
> > note: Calling copy constructor for 'pressio_data'
> > ../include/libpressio_ext/cpp/data.h:247:15: note: Left side of
> '&&'
> > is true data_ptr((rhs.has_data() && rhs.size_in_bytes() > 0)?
> > malloc(rhs.size_in_bytes()) : nullptr), ^
> > ../include/libpressio_ext/cpp/data.h:247:33: note: Assuming the
> > condition is true data_ptr((rhs.has_data() && rhs.size_in_bytes() >
> > 0)? malloc(rhs.size_in_bytes()) : nullptr), ^
> > ../include/libpressio_ext/cpp/data.h:247:14: note: '?' condition is
> > true data_ptr((rhs.has_data() && rhs.size_in_bytes() > 0)?
> > malloc(rhs.size_in_bytes()) : nullptr), ^
> > ../include/libpressio_ext/cpp/data.h:247:66: note: Calling
> > 'pressio_data::size_in_bytes' data_ptr((rhs.has_data() &&
> > rhs.size_in_bytes() > 0)? malloc(rhs.size_in_bytes()) : nullptr), ^
> > ../include/libpressio_ext/cpp/data.h:384:12: note: Calling
> > 'data_size_in_bytes<unsigned long>' return
> > data_size_in_bytes(data_dtype, num_dimensions(), dims.data()); ^
> > ../include/libpressio_ext/cpp/data.h:31:5: note: Returning zero
> return
> > data_size_in_elements(dimensions, dims) *
> pressio_dtype_size(type); ^
> > ../include/libpressio_ext/cpp/data.h:384:12: note: Returning from
> > 'data_size_in_bytes<unsigned long>' return
> > data_size_in_bytes(data_dtype, num_dimensions(), dims.data()); ^
> > ../include/libpressio_ext/cpp/data.h:384:5: note: Returning zero
> > return data_size_in_bytes(data_dtype, num_dimensions(),
> dims.data());
> > ^ ../include/libpressio_ext/cpp/data.h:247:66: note: Returning from
> > 'pressio_data::size_in_bytes' data_ptr((rhs.has_data() &&
> > rhs.size_in_bytes() > 0)? malloc(rhs.size_in_bytes()) : nullptr), ^
> > ../include/libpressio_ext/cpp/data.h:247:59: note: Call to 'malloc'
> > has an allocation size of 0 bytes data_ptr((rhs.has_data() &&
> > rhs.size_in_bytes() > 0)? malloc(rhs.size_in_bytes()) : nullptr), |
> >
> > Is there a way to instruct the static analyzer that malloc
> cannot be
> > called with size_in_bytes == 0 because saying
> (rhs.size_in_bytes() >
> > 0) isn’t enough. I’m using clang-9.0.1 on gentoo.
> >
> > Respectfully,
> > Robert Underwood
> >
> >
> > _______________________________________________
> > cfe-dev mailing list
> > cfe-dev at lists.llvm.org <mailto:cfe-dev at lists.llvm.org>
> > https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-dev
>
> _______________________________________________
> cfe-dev mailing list
> cfe-dev at lists.llvm.org <mailto:cfe-dev at lists.llvm.org>
> https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-dev
>
More information about the cfe-dev
mailing list