Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://clang.llvm.org/doxygen/BugReporterVisitors_8cpp_source.html below:

clang: lib/StaticAnalyzer/Core/BugReporterVisitors.cpp Source File

;

bugreporter;

*

= dyn_cast<Expr>(S);

(

*CE = dyn_cast<CastExpr>(

)) {

(CE->getCastKind() == CK_LValueToRValue) {

= CE->getSubExpr();

}

(

*B = dyn_cast<BinaryOperator>(

)) {

}

(B->isAssignmentOp()) {

}

(

*

= dyn_cast<UnaryOperator>(

)) {

(

->getOpcode() == UO_Deref ||

->getOpcode() == UO_AddrOf ||

(

->isIncrementDecrementOp() &&

->getType()->isPointerType())) {

=

->getSubExpr();

(

*ME = dyn_cast<MemberExpr>(

)) {

(ME->getMemberDecl()->getType()->isReferenceType())

}

(

*IvarRef = dyn_cast<ObjCIvarRefExpr>(

)) {

= IvarRef->getBase();

}

(

*AE = dyn_cast<ArraySubscriptExpr>(

)) {

}

(

*PE = dyn_cast<ParenExpr>(

)) {

= PE->getSubExpr();

}

(

*FE = dyn_cast<FullExpr>(

)) {

= FE->getSubExpr();

(

*CE = dyn_cast<ImplicitCastExpr>(

))

(CE->getCastKind() == CK_LValueToRValue)

= CE->getSubExpr();

(

*DR = dyn_cast<DeclRefExpr>(

))

dyn_cast<VarDecl>(DR->getDecl());

LookingForReference =

) {

(

*ME = dyn_cast<MemberExpr>(

)) {

*FD = dyn_cast<FieldDecl>(ME->getMemberDecl());

(FD->getType()->isReferenceType()) {

N->

()->getLValue(FD, StructSVal).getAsRegion();

(LeftVal == RightVal)

LLCV->

() == RLCV->getRegion() &&

LLCV->getStore() == LeftNode->

()->getStore() &&

RLCV->getStore() == RightNode->

()->getStore();

(

*DRE = dyn_cast<DeclRefExpr>(CondVarExpr))

(

*VD = dyn_cast<VarDecl>(DRE->getDecl()))

State->getSVal(State->getLValue(VD, LCtx));

(

*ME = dyn_cast<MemberExpr>(CondVarExpr))

(

*FD = dyn_cast<FieldDecl>(ME->getMemberDecl()))

(

FieldL = State->getSVal(ME, LCtx).getAs<

>())

State->getRawSVal(*FieldL, FD->getType());

std::optional<const llvm::APSInt *>

CI->getValue().get();

(std::optional<bugreporter::TrackingKind> K =

*K == bugreporter::TrackingKind::Condition;

(!

.isMacroID())

(

.isMacroArgExpansion(

))

=

.getImmediateExpansionRange(

).getBegin();

std::pair<FileID, unsigned> TLInfo =

.getDecomposedLoc(

);

(BO->isAssignmentOp() && RegionOfInterest->

(

ValueAtN = N->

()->getSVal(RegionOfInterest);

.

(State, ValueAtN, ValueAfter)

= std::make_shared<PathDiagnosticEventPiece>(

NoStateChangeFuncVisitor::isModifiedInFrame(

*N) {

(!FramesModifyingCalculated.count(SCtx))

findModifyingFrames(N);

FramesModifying.count(SCtx);

NoStateChangeFuncVisitor::markFrameAsModifying(

p = FramesModifying.insert(SCtx);

IsMatchingCallExitEnd = [OrigSCtx](

*N) {

(N && !IsMatchingCallExitEnd(N)) {

);

NoStateChangeFuncVisitor::findModifyingFrames(

*CurrCallExitBeginN = CallExitBeginN;

(

*CurrN = CallExitBeginN; CurrN;

CurrCallExitBeginN = CurrN;

FramesModifyingCalculated.insert(CurrentSCtx);

(

CE = CurrN->getLocationAs<

>()) {

markFrameAsModifying(CurrentSCtx);

(CE->getCalleeContext() == OriginalSCtx) {

markFrameAsModifying(CurrentSCtx);

markFrameAsModifying(CurrentSCtx);

(!CallExitLoc || isModifiedInFrame(N))

(

->isInSystemHeader()) {

(

*MC = dyn_cast<ObjCMethodCall>(

)) {

(

*CCall = dyn_cast<CXXConstructorCall>(

)) {

ast_matchers;

*IvarBind =

;

hasOperatorName(

),

hasLHS(ignoringParenImpCasts(

(IvarRef->isFreeIvar())

*

= IvarRef->getBase();

(

*ICE = dyn_cast<ImplicitCastExpr>(

))

= ICE->getSubExpr();

(

*DRE = dyn_cast<DeclRefExpr>(

))

(

*ID = dyn_cast<ImplicitParamDecl>(DRE->getDecl()))

std::optional<NoStoreFuncVisitor::RegionVector>

NoStoreFuncVisitor::findRegionOfInterestInRecord(

(depth == DEREFERENCE_LIMIT)

(

*RDX = dyn_cast<CXXRecordDecl>(RD))

(!RDX->hasDefinition())

(

*RDX = dyn_cast<CXXRecordDecl>(RD))

(

&II : RDX->bases())

(

*RRD = II.getType()->getAsRecordDecl())

(std::optional<RegionVector> Out =

findRegionOfInterestInRecord(RRD, State, R, Vec, depth))

= State->getSVal(FR);

RegionVector VecF = Vec;

(RegionOfInterest == VR)

findRegionOfInterestInRecord(RRD, State, FR, VecF, depth + 1))

(std::optional<RegionVector> Out =

findRegionOfInterestInRecord(RRD, State, VR, VecF, depth + 1))

(

*IvarR = dyn_cast<ObjCIvarRegion>(RegionOfInterest)) {

*SelfRegion =

.getReceiverSVal().getAsRegion();

maybeEmitNote(R,

, N, {}, SelfRegion,

,

*ThisR =

.getCXXThisVal().getAsRegion();

maybeEmitNote(R,

, N, {}, ThisR,

,

(

I = 0; I <

.getNumArgs() && I <

.size(); ++I) {

IndirectionLevel = 1;

(

*MR =

.getAsRegion()) {

maybeEmitNote(R,

, N, {}, MR, ParamName,

ParamIsReferenceType, IndirectionLevel);

(PT.isNull() || PT->isVoidType())

(

*RD = PT->getAsRecordDecl())

(std::optional<RegionVector>

=

findRegionOfInterestInRecord(RD, State, MR))

maybeEmitNote(R,

, N, *

, RegionOfInterest, ParamName,

ParamIsReferenceType, IndirectionLevel);

= State->getSVal(MR, PT);

NoStoreFuncVisitor::wasModifiedBeforeCallExit(

return ::wasRegionOfInterestModifiedAt(

RegionOfInterest, CurrN,

CallExitBeginN->

()->getSVal(RegionOfInterest));

;

RegionVector &FieldChain,

*MatchedRegion,

StringRef FirstElement,

FirstIsReferenceType,

IndirectionLevel) {

llvm::raw_svector_ostream os(sbuf);

os <<

;

(!prettyPrintRegionName(FieldChain, MatchedRegion, FirstElement,

FirstIsReferenceType, IndirectionLevel, os))

std::make_shared<PathDiagnosticEventPiece>(L, os.str());

NoStoreFuncVisitor::prettyPrintRegionName(

RegionVector &FieldChain,

StringRef FirstElement,

FirstIsReferenceType,

IndirectionLevel,

llvm::raw_svector_ostream &os) {

(FirstIsReferenceType)

RegionVector RegionSequence;

(R != MatchedRegion) {

RegionSequence.push_back(R);

R = cast<SubRegion>(R)->getSuperRegion();

std::reverse(RegionSequence.begin(), RegionSequence.end());

RegionSequence.append(FieldChain.begin(), FieldChain.end());

(

*R : RegionSequence) {

(isa<CXXBaseObjectRegion, CXXTempObjectRegion>(R))

Sep = prettyPrintFirstElement(FirstElement,

IndirectionLevel, os);

(!isa<DeclRegion>(R))

*DR = cast<DeclRegion>(R);

Sep = DR->getValueType()->isAnyPointerType() ?

:

;

DR->getDecl()->getDeclName().print(os, PP);

prettyPrintFirstElement(FirstElement,

, IndirectionLevel, os);

StringRef NoStoreFuncVisitor::prettyPrintFirstElement(

StringRef FirstElement,

MoreItemsExpected,

IndirectionLevel,

llvm::raw_svector_ostream &os) {

StringRef Out =

;

(IndirectionLevel > 0 && MoreItemsExpected) {

(IndirectionLevel > 0 && MoreItemsExpected)

(

i = 0; i < IndirectionLevel; i++)

(IndirectionLevel > 0 && MoreItemsExpected)

ValueAtDereference;

WasModified =

;

MacroNullReturnSuppressionVisitor(

*R,

)

: RegionOfInterest(R), ValueAtDereference(

) {}

(

= matchAssignment(N)) {

addMacroVisitorIfNecessary(

(EnableNullFPSuppression && Options.ShouldSuppressNullReturnPaths &&

* getTag()

{

*

(&

);

Profile(llvm::FoldingSetNodeID &

)

{

.AddPointer(getTag());

std::optional<SourceLocation> matchAssignment(

*N) {

(

*DS = dyn_cast<DeclStmt>(S)) {

(

*VD = dyn_cast<VarDecl>(DS->getSingleDecl()))

(

*RHS = VD->getInit())

(RegionOfInterest->isSubRegionOf(

State->getLValue(VD, LCtx).getAsRegion()))

RHS->getBeginLoc();

}

(

*BO = dyn_cast<BinaryOperator>(S)) {

*RHS = BO->getRHS();

(BO->isAssignmentOp() && RegionOfInterest->isSubRegionOf(R)) {

EnableNullFPSuppression;

ShouldInvalidate =

;

EnableNullFPSuppression(Suppressed), Options(Options), TKind(TKind) {}

*getTag() {

*

(&

);

Profile(llvm::FoldingSetNodeID &

)

{

.AddPointer(ReturnVisitor::getTag());

.AddPointer(CalleeSFC);

.AddBoolean(EnableNullFPSuppression);

*

= dyn_cast<ReturnStmt>(SP->getStmt());

= State->getSVal(Ret, CalleeSFC);

(

.isUnknownOrUndef())

*RetE =

->getRetValue();

assert(RetE &&

);

std::optional<Loc> LValue;

((LValue =

.getAs<

>())) {

RValue = State->getRawSVal(*LValue, RetE->

());

(isa<DefinedSVal>(RValue))

(isa<nonloc::LazyCompoundVal, nonloc::CompoundVal>(

))

getParentTracker().track(RetE, N, {TKind, EnableNullFPSuppression});

llvm::raw_svector_ostream Out(Msg);

WouldEventBeMeaningless =

;

(State->isNull(

).isConstrainedTrue()) {

(EnableNullFPSuppression &&

Options.ShouldAvoidSuppressingNullArgumentPaths)

Mode = MaybeUnsuppress;

Out <<

;

Out <<

;

Out <<

;

Out <<

<< CI->getValue();

WouldEventBeMeaningless =

;

Out << (isa<Loc>(

) ?

:

);

(

*MR = LValue->getAsRegion()) {

(MR->canPrintPretty()) {

Out <<

;

MR->printPretty(Out);

(

*DR = dyn_cast<DeclRefExpr>(RetE))

(

*DD = dyn_cast<DeclaratorDecl>(DR->getDecl()))

Out <<

<< *DD <<

;

(!L.isValid() || !L.asLocation().isValid())

(TKind == bugreporter::TrackingKind::Condition)

EventPiece = std::make_shared<PathDiagnosticEventPiece>(L, Out.str());

(WouldEventBeMeaningless)

EventPiece->setPrunable(

);

assert(Options.ShouldAvoidSuppressingNullArgumentPaths);

(CE->getCalleeContext() != CalleeSFC)

(

I = 0,

=

->getNumArgs(); I !=

; ++I) {

std::optional<Loc> ArgV =

->getArgSVal(I).getAs<

>();

*ArgE =

->getArgExpr(I);

(!State->isNull(*ArgV).isConstrainedTrue())

(getParentTracker()

.track(ArgE, N, {TKind, EnableNullFPSuppression})

.FoundSomethingToTrack)

ShouldInvalidate =

;

visitNodeInitial(N, BRC, BR);

MaybeUnsuppress:

visitNodeMaybeUnsuppress(N, BRC, BR);

llvm_unreachable(

);

(EnableNullFPSuppression && ShouldInvalidate)

BR.

(ReturnVisitor::getTag(), CalleeSFC);

Satisfied =

;

OriginSFC(OriginSFC) {

Profile(llvm::FoldingSetNodeID &

)

;

StoreSiteFinder::Profile(llvm::FoldingSetNodeID &ID)

{

.AddPointer(&tag);

.AddInteger(

(Options.Kind));

.AddBoolean(Options.EnableNullFPSuppression);

*FrameSpace = dyn_cast<StackSpaceRegion>(VarSpace);

[[maybe_unused]]

IsLocalStaticOrLocalExtern =

assert(IsLocalStaticOrLocalExtern &&

);

(

*TR = dyn_cast<TypedValueRegion>(R))

TR->getValueType()->isObjCObjectPointerType();

->getType()->isObjCObjectPointerType();

*Action =

;

Action = HasPrefix ?

:

;

Action = HasPrefix ?

:

;

llvm_unreachable(

);

(isa<loc::ConcreteInt>(SI.

)) {

<< Action << CVal->getValue();

<< Action <<

;

(isa<VarRegion>(SI.

)) {

*VD = cast<VarDecl>(DS->getSingleDecl());

(VD->getInit()) {

<< (HasPrefix ?

:

)

<<

;

<< (HasPrefix ?

:

)

<<

;

<< (HasPrefix ?

:

) <<

;

*VR = cast<VarRegion>(SI.

);

*

= VR->getDecl();

(isa<loc::ConcreteInt>(SI.

)) {

<< (

(

) ?

:

);

<<

;

<<

<< CI->getValue();

(

*Param = dyn_cast<ParmVarDecl>(VR->getDecl())) {

Idx = Param->getFunctionScopeIndex() + 1;

<<

<< Idx << llvm::getOrdinalSuffix(Idx) <<

;

}

(

*ImplParam = dyn_cast<ImplicitParamDecl>(

)) {

<<

;

(isa<loc::ConcreteInt>(SI.

)) {

: (HasSuffix ?

:

));

<< (HasSuffix ?

:

);

<<

<< CV->getValue() <<

;

<<

<< CV->getValue();

<<

;

<<

;

<<

;

<< (HasSuffix ?

:

);

*TVR = dyn_cast_or_null<TypedValueRegion>(R);

std::stack<const TypedValueRegion *> TVRStack;

(isa<FieldRegion>(TVR) || isa<ElementRegion>(TVR)) {

(ITy == TVR->getValueType().getCanonicalType())

TVR = cast<TypedValueRegion>(TVR->getSuperRegion());

(ITy != TVR->getValueType().getCanonicalType())

(!TVRStack.empty()) {

TVR = TVRStack.top();

(!isa<InitListExpr>(

))

ILE = cast<InitListExpr>(

);

(

*FR = dyn_cast<FieldRegion>(TVR)) {

*FD = FR->

();

(FD->getFieldIndex() >= NumInits)

}

(

*ER = dyn_cast<ElementRegion>(TVR)) {

Ind = ER->getIndex();

(!Ind.isConstant())

IndVal = Ind.getAsInteger()->getLimitedValue();

(IndVal >= NumInits)

*InitE =

;

IsParam =

;

(

*VR = dyn_cast<VarRegion>(R)) {

InitE = VR->getDecl()->getInit();

(std::optional<PostInitializer> PIP =

(FieldReg == R) {

InitE = PIP->getInitializer()->getInit();

(Succ->

()->getSVal(R) !=

)

(!PS || PS->getLocationValue() != R)

(BO->isAssignmentOp())

InitE = BO->getRHS();

(

*DS =

->getStmtAs<

>()) {

*

= DS->getSingleDecl();

(isa<VarDecl>(

)) {

*VD = cast<VarDecl>(

);

(

*ILE = dyn_cast<InitListExpr>(VD->getInit()))

State = Succ->

();

std::stack<const SubRegion *> SRStack;

*SR = cast<SubRegion>(R);

(isa<FieldRegion>(SR) || isa<ElementRegion>(SR)) {

*OriginEx = CE->getArg(0);

OriginVal =

OriginField = OriginVal;

(!SRStack.empty()) {

*TopR = SRStack.top();

(

*FR = dyn_cast<FieldRegion>(TopR)) {

OriginField = State->getLValue(FR->

(), OriginField);

}

(

*ER = dyn_cast<ElementRegion>(TopR)) {

OriginField = State->getLValue(ER->getElementType(),

ER->getIndex(), OriginField);

getParentTracker().track(

, OriginField.

(), Options);

(

*ILE =

->getStmtAs<

>()) {

(

*VR = dyn_cast<VarRegion>(R)) {

(

*Param = dyn_cast<ParmVarDecl>(VR->getDecl())) {

InitE =

->getArgExpr(Param->getFunctionScopeIndex());

assert(isa<ImplicitParamDecl>(VR->getDecl()));

InitE = cast<ObjCMessageExpr>(CE->getCalleeContext()->getCallSite())

(

*TmpR = dyn_cast<CXXTempObjectRegion>(R))

InitE = TmpR->getExpr();

getParentTracker().track(InitE, StoreSite, Options);

(

.includedInBindings(N->

()->getStore(), Candidate)) {

(N->

()->getSVal(Candidate) ==

) {

OldRegion = Candidate;

(!OldRegion && StoreSite->

()->getSVal(R) ==

) {

NodeWithoutBinding && NodeWithoutBinding->

()->getSVal(R) ==

;

NodeWithoutBinding = NodeWithoutBinding->

()) {

(NodeWithoutBinding) {

OldRegion = FB.getRegion();

(Options.Kind == TrackingKind::Condition && OriginSFC &&

llvm::raw_svector_ostream os(sbuf);

*S = PS->getStmt();

*DS = dyn_cast<DeclStmt>(S);

*VR = dyn_cast<VarRegion>(R);

}

(isa<BlockExpr>(S)) {

(

*BDR =

dyn_cast_or_null<BlockDataRegion>(

.getAsRegion())) {

(

*OriginalR = BDR->getOriginalRegion(VR)) {

getParentTracker().track(State->getSVal(OriginalR), OriginalR,

Options, OriginSFC);

isa<VarRegion>(SI.

)) {

getParentTracker().handle(SI, BRC, Options);

ID.AddPointer(&tag);

ID.AddString(Message);

ID.AddBoolean(Assumption);

;

TrackConstraintBRVisitor::isZeroCheck()

{

!Assumption && Constraint.

<

>();

TrackConstraintBRVisitor::isUnderconstrained(

*N)

{

N->

()->isNull(Constraint).isUnderconstrained();

(

)N->

()->assume(Constraint, !Assumption);

(!IsTrackingTurnedOn)

(!isUnderconstrained(N))

IsTrackingTurnedOn =

;

(!IsTrackingTurnedOn)

(isUnderconstrained(PrevN)) {

IsSatisfied =

;

assert(!isUnderconstrained(N));

(isa_and_nonnull<NoteTag>(

.getTag()))

= std::make_shared<PathDiagnosticEventPiece>(L, Message);

std::move(

);

(!Options.ShouldSuppressInlinedDefensiveChecks)

IsSatisfied =

;

llvm::FoldingSetNodeID &ID)

{

ID.AddPointer(&

);

;

(!IsTrackingTurnedOn)

(Succ->

()->isNull(

).isConstrainedTrue())

IsTrackingTurnedOn =

;

(!IsTrackingTurnedOn)

(!Pred->

()->isNull(

).isConstrainedTrue() &&

Succ->

()->isNull(

).isConstrainedTrue()) {

IsSatisfied =

;

(CurLC != ReportLC && !CurLC->

(ReportLC)) {

*CurTerminatorStmt =

;

CurTerminatorStmt = BE->getSrc()->getTerminator().getStmt();

*CurStmt = SP->getStmt();

(!CurTerminatorStmt)

TrackControlDependencyCondBRVisitor final

llvm::SmallSet<const CFGBlock *, 32> VisitedBlocks;

TrackControlDependencyCondBRVisitor(

ParentTracker,

ControlDeps(&O->getCFG()) {}

Profile(llvm::FoldingSetNodeID &

)

{

std::shared_ptr<PathDiagnosticEventPiece>

std::make_shared<PathDiagnosticEventPiece>(

(Twine() +

+ ConditionText +

).str());

(

*BinOp = dyn_cast<BinaryOperator>(ElseCond))

(BinOp->isLogicalOp())

TrackControlDependencyCondBRVisitor::VisitNode(

*N,

(!VisitedBlocks.insert(NB).second)

(!OriginB || !NB)

(ControlDeps.isControlDependent(OriginB, NB)) {

(isa<CallExpr>(InnerExpr))

getParentTracker().track(InnerExpr, N,

(

*FE = dyn_cast<FullExpr>(Ex))

(

*OVE = dyn_cast<OpaqueValueExpr>(Ex))

(

*POE = dyn_cast<PseudoObjectExpr>(Ex)) {

*PropRef = dyn_cast<ObjCPropertyRefExpr>(POE->getSyntacticForm());

(PropRef && PropRef->isMessagingGetter()) {

*GetterMessageSend =

POE->getSemanticExpr(POE->getNumSemanticExprs() - 1);

(

*CO = dyn_cast<ConditionalOperator>(Ex)) {

(std::optional<BlockEdge> BE = ProgPoint.

<

>()) {

*srcBlk = BE->getSrc();

TookTrueBranch = (*(srcBlk->

()) == BE->getDst());

(

*BO = dyn_cast<BinaryOperator>(Ex))

(

*UO = dyn_cast<UnaryOperator>(Ex)) {

(UO->getOpcode() == UO_LNot)

(UO->getOpcode() == UO_AddrOf && UO->getSubExpr()->isLValue())

*Inner) {

StringRef NodeText) {

.getLocationContext());

std::make_shared<PathDiagnosticEventPiece>(L, NodeText);

llvm::raw_svector_ostream OS(Buffer);

(Opts.

== bugreporter::TrackingKind::Condition)

constructNote(SI, BRC, OS.str());

->getAnalysisManager()

.getAnalyzerOptions()

.ShouldTrackConditions) {

.addVisitor<TrackControlDependencyCondBRVisitor>(

&getParentTracker(), InputNode);

(

*Receiver =

getParentTracker().track(Receiver, LVNode, Opts);

(

*Arr = dyn_cast<ArraySubscriptExpr>(Inner))

getParentTracker().track(

Arr->getIdx(), LVNode,

{Opts.Kind,

false});

LVIsNull = LVState->isNull(LVal).isConstrainedTrue();

(RR && !LVIsNull)

Result.combineWith(getParentTracker().track(LVal, RR, Opts, SFC));

Result.FoundSomethingToTrack =

;

Result.WasInterrupted =

;

MacroNullReturnSuppressionVisitor::addMacroVisitorIfNecessary(

(

.getAsLocSymbol(

))

(LVState->isNull(

).isConstrainedTrue())

,

);

getParentTracker().track(

, R, Opts, SFC);

BypassCXXNewExprEval = isa<CXXNewExpr>(

);

(std::optional<CallExitEnd> CEE =

(CEE->getCalleeContext()->getCallSite() ==

)

(!BypassCXXNewExprEval)

(SP->getStmt() ==

&& CurrentSFC == PredSFC)

CurrentSFC = PredSFC;

(cast<Expr>(

)->isGLValue())

(std::optional<Loc> LValue = RetVal.

<

>())

RetVal = State->getSVal(*LValue);

EnableNullFPSuppression =

;

(std::optional<Loc> RetLoc = RetVal.

<

>())

EnableNullFPSuppression = State->isNull(*RetLoc).isConstrainedTrue();

.addVisitor<ReturnVisitor>(&getParentTracker(), CalleeContext,

EnableNullFPSuppression, Options,

CanDereference =

;

(SR->getPointeeStaticType()->isVoidType())

CanDereference =

;

CanDereference =

;

RVal = LVState->getRawSVal(*L, Inner->getType());

(CanDereference)

RVal = LVState->getSVal(L->getRegion());

(CanDereference) {

Result.FoundSomethingToTrack =

;

getParentTracker().track(RVal, L->getRegion(), Opts, SFC));

(isa_and_nonnull<SymbolicRegion>(RegionRVal)) {

.markInteresting(RegionRVal, Opts.

);

,

);

Result.FoundSomethingToTrack =

;

track = [&CombinedResult, &

, ExprNode,

Opts](

*Inner) {

(

*ILE = dyn_cast<InitListExpr>(

)) {

(ILE->getNumInits() == 1) {

track(ILE->getInit(0));

CombinedResult;

*BO = dyn_cast<BinaryOperator>(

);

(!BO || !BO->isMultiplicativeOp() || !

.isZeroConstant())

(BO->getOpcode() == BO_Mul) {

track(BO->getLHS());

track(BO->getRHS());

track(BO->getLHS());

CombinedResult;

addLowPriorityHandler<ControlDependencyHandler>();

addLowPriorityHandler<NilReceiverHandler>();

addLowPriorityHandler<ArrayIndexHandler>();

addLowPriorityHandler<InterestingLValueHandler>();

addLowPriorityHandler<InlinedFunctionCallHandler>();

addLowPriorityHandler<DefaultExpressionHandler>();

addLowPriorityHandler<PRValueHandler>();

addHighPriorityHandler<DefaultStoreHandler>();

(ExpressionHandlerPtr &Handler : ExpressionHandlers) {

CombinedResult.

(Handler->handle(Inner, N, LVNode, Opts));

CombinedResult;

(!

.isUnknown()) {

.addVisitor<StoreSiteFinder>(

,

, R, Opts, Origin);

(StoreHandlerPtr &Handler : StoreHandlers) {

->track(

, InputNode, Opts)

.FoundSomethingToTrack;

*ME = dyn_cast<ObjCMessageExpr>(S);

(

*Receiver = ME->getInstanceReceiver()) {

(state->isNull(

).isConstrainedTrue())

*S =

->getStmt();

*Receiver = getNilReceiver(S, N);

llvm::raw_svector_ostream

(Buf);

(

*ME = dyn_cast<ObjCMessageExpr>(S)) {

ME->getSelector().print(

);

<<

;

<<

;

<<

;

std::make_shared<PathDiagnosticEventPiece>(L,

.str());

piece = VisitNodeImpl(N, BRC, BR);

piece->setTag(getTag());

(

*ev = dyn_cast<PathDiagnosticEventPiece>(piece.get()))

ev->setPrunable(

,

);

std::pair<const ProgramPointTag *, const ProgramPointTag *> &Tags =

(std::optional<BlockEdge> BE = ProgPoint.

<

>()) {

*SrcBlock = BE->getSrc();

(PreviousNodeTag == Tags.first || PreviousNodeTag == Tags.second)

VisitTerminator(Term, N, SrcBlock, BE->getDst(), BR, BRC);

(std::optional<PostStmt> PS = ProgPoint.

<

>()) {

(CurrentNodeTag != Tags.first && CurrentNodeTag != Tags.second)

TookTrue = CurrentNodeTag == Tags.first;

VisitTrueTest(cast<Expr>(PS->getStmt()), BRC, BR, N, TookTrue);

*Cond =

;

Stmt::IfStmtClass:

Cond = cast<IfStmt>(Term)->getCond();

Stmt::ConditionalOperatorClass:

Cond = cast<ConditionalOperator>(Term)->getCond();

Stmt::BinaryOperatorClass:

*BO = cast<BinaryOperator>(Term);

assert(BO->isLogicalOp() &&

);

Cond = BO->getLHS();

(

*InnerBO = dyn_cast<BinaryOperator>(Cond)) {

(!InnerBO->isLogicalOp())

TookTrue = *(srcBlk->

()) == dstBlk;

VisitTrueTest(Cond, BRC, R, N, TookTrue);

CurrentState->getSVal(Cond, LCtx).isUnknownOrUndef();

*CondTmp = Cond;

TookTrueTmp = TookTrue;

Stmt::BinaryOperatorClass:

(

= VisitTrueTest(Cond, cast<BinaryOperator>(CondTmp),

BRC, R, N, TookTrueTmp, IsAssuming))

Stmt::DeclRefExprClass:

(

= VisitTrueTest(Cond, cast<DeclRefExpr>(CondTmp),

BRC, R, N, TookTrueTmp, IsAssuming))

Stmt::MemberExprClass:

(

= VisitTrueTest(Cond, cast<MemberExpr>(CondTmp),

BRC, R, N, TookTrueTmp, IsAssuming))

Stmt::UnaryOperatorClass: {

*UO = cast<UnaryOperator>(CondTmp);

(UO->getOpcode() == UO_LNot) {

TookTrueTmp = !TookTrueTmp;

CondTmp = UO->getSubExpr();

std::make_shared<PathDiagnosticEventPiece>(

, TookTrue ? GenericTrueMessage : GenericFalseMessage);

std::optional<bool> &prunable,

IsSameFieldName) {

*OriginalExpr = Ex;

(

*DR = dyn_cast<DeclRefExpr>(Ex)) {

quotes = isa<VarDecl>(DR->getDecl());

Out << DR->getDecl()->getDeclName().getAsString();

(

*IL = dyn_cast<IntegerLiteral>(Ex)) {

(IL->getValue() == 0) {

(IL->getValue() == 0) {

Out << IL->getValue();

(

*ME = dyn_cast<MemberExpr>(Ex)) {

(!IsSameFieldName)

Out <<

<< ME->getMemberDecl()->getName() <<

;

shouldInvert =

;

std::optional<bool> shouldPrune;

IsSameFieldName =

;

LhsME->getMemberDecl()->getName() == RhsME->getMemberDecl()->getName();

llvm::raw_svector_ostream OutLHS(LhsString), OutRHS(RhsString);

isVarLHS = patternMatch(BExpr->

(), BExpr, OutLHS, BRC, R,

N, shouldPrune, IsSameFieldName);

isVarRHS = patternMatch(BExpr->

(), BExpr, OutRHS, BRC, R,

N, shouldPrune, IsSameFieldName);

shouldInvert = !isVarLHS && isVarRHS;

VisitConditionVariable(LhsString, BExpr->

(), BRC, R, N,

(LhsString.empty() || RhsString.empty() ||

llvm::raw_svector_ostream Out(buf);

Out << (IsAssuming ?

:

)

<< (shouldInvert ? RhsString : LhsString) <<

;

BO_LT: Op = BO_GT;

;

BO_GT: Op = BO_LT;

;

BO_LE: Op = BO_GE;

;

BO_GE: Op = BO_LE;

;

BO_EQ: Op = BO_NE;

;

BO_NE: Op = BO_EQ;

;

BO_LT: Op = BO_GE;

;

BO_GT: Op = BO_LE;

;

BO_LE: Op = BO_GT;

;

BO_GE: Op = BO_LT;

;

Out <<

;

Out <<

;

Out << (shouldInvert ? LhsString : RhsString);

std::string Message = std::string(Out.str());

Message[0] = toupper(Message[0]);

(!shouldInvert) {

(LhsME && LhsME->getMemberLoc().isValid())

(RhsME && RhsME->getMemberLoc().isValid())

std::make_shared<PathDiagnosticPopUpPiece>(

, Message);

= std::make_shared<PathDiagnosticEventPiece>(

, Message);

->setPrunable(*shouldPrune);

llvm::raw_svector_ostream Out(buf);

Out <<

<< LhsString <<

;

(!printValue(CondVarExpr, Out, N, TookTrue,

))

= std::make_shared<PathDiagnosticEventPiece>(

, Out.str());

->setPrunable(

);

*VD = dyn_cast<VarDecl>(DRE->

());

llvm::raw_svector_ostream Out(Buf);

Out << (IsAssuming ?

:

) << VD->getDeclName() <<

;

(!printValue(DRE, Out, N, TookTrue, IsAssuming))

std::make_shared<PathDiagnosticPopUpPiece>(

, Out.str());

= std::make_shared<PathDiagnosticEventPiece>(

, Out.str());

->setPrunable(

);

std::move(event);

llvm::raw_svector_ostream Out(Buf);

Out << (IsAssuming ?

:

)

(!printValue(ME, Out, N, TookTrue, IsAssuming))

std::make_shared<PathDiagnosticPopUpPiece>(

, Out.str());

= std::make_shared<PathDiagnosticEventPiece>(

, Out.str());

->setPrunable(

);

Out << (TookTrue ?

:

);

Out << (TookTrue ?

:

);

std::optional<const llvm::APSInt *> IntValue;

(IsAssuming || !IntValue) {

Out << (TookTrue ?

:

);

Out << (TookTrue ?

:

);

Out << ((*IntValue)->getBoolValue() ?

:

);

llvm::StringLiteral ConditionBRVisitor::GenericTrueMessage;

llvm::StringLiteral ConditionBRVisitor::GenericFalseMessage;

Piece->

() == GenericTrueMessage ||

Piece->

() == GenericFalseMessage;

(Options.ShouldSuppressFromCXXStandardLibrary) {

(

*MD = dyn_cast<CXXMethodDecl>(

)) {

(CD->

() ==

) {

(

*MD = dyn_cast<CXXConstructorDecl>(

)) {

(CD->

() ==

) {

*MD = dyn_cast<CXXMethodDecl>(LCtx->getDecl());

(CD->

() ==

) {

(CD->

() ==

) {

(

.isMacroID()) {

=

.getSpellingLoc();

(

.getFilename(

).ends_with(

)) {

std::optional<CallEnter> CEnter = ProgLoc.

<

>();

(

ParamDecl : parms) {

*ArgReg =

->getArgSVal(Idx).getAsRegion();

assert(ParamDecl &&

);

BoundVal = State->getSVal(R);

NoteTag::Kind = 0;

ID.AddPointer(&Tag);

(std::optional<std::string> Msg =

->generateMessage(BRC, R)) {

Piece = std::make_shared<PathDiagnosticEventPiece>(

, *Msg);

Piece->setPrunable(

->isPrunable());

Defines the clang::ASTContext interface.

This file defines AnalysisDeclContext, a class that manages the analysis context data for context sen...

static bool isInterestingExpr(const Expr *E, const ExplodedNode *N, const PathSensitiveBugReport *B)

static const ExplodedNode * findNodeForExpression(const ExplodedNode *N, const Expr *Inner)

Find the ExplodedNode where the lvalue (the value of 'Ex') was computed.

static void showBRParamDiagnostics(llvm::raw_svector_ostream &OS, StoreInfo SI)

Display diagnostics for passing bad region as a parameter.

static const Expr * peelOffPointerArithmetic(const BinaryOperator *B)

static const Expr * tryExtractInitializerFromList(const InitListExpr *ILE, const MemRegion *R)

static bool wasRegionOfInterestModifiedAt(const SubRegion *RegionOfInterest, const ExplodedNode *N, SVal ValueAfter)

static llvm::StringLiteral WillBeUsedForACondition

static bool isFunctionMacroExpansion(SourceLocation Loc, const SourceManager &SM)

static std::shared_ptr< PathDiagnosticEventPiece > constructDebugPieceForTrackedCondition(const Expr *Cond, const ExplodedNode *N, BugReporterContext &BRC)

static const MemRegion * getLocationRegionIfReference(const Expr *E, const ExplodedNode *N, bool LookingForReference=true)

static bool hasVisibleUpdate(const ExplodedNode *LeftNode, SVal LeftVal, const ExplodedNode *RightNode, SVal RightVal)

Comparing internal representations of symbolic values (via SVal::operator==()) is a valid way to chec...

static bool potentiallyWritesIntoIvar(const Decl *Parent, const ObjCIvarDecl *Ivar)

static std::optional< const llvm::APSInt * > getConcreteIntegerValue(const Expr *CondVarExpr, const ExplodedNode *N)

static bool isVarAnInterestingCondition(const Expr *CondVarExpr, const ExplodedNode *N, const PathSensitiveBugReport *B)

static void showBRDefaultDiagnostics(llvm::raw_svector_ostream &OS, StoreInfo SI)

Show default diagnostics for storing bad region.

static std::optional< SVal > getSValForVar(const Expr *CondVarExpr, const ExplodedNode *N)

static const Expr * peelOffOuterExpr(const Expr *Ex, const ExplodedNode *N)

static const VarDecl * getVarDeclForExpression(const Expr *E)

static bool isTrivialCopyOrMoveCtor(const CXXConstructExpr *CE)

static StringRef getMacroName(SourceLocation Loc, BugReporterContext &BRC)

static bool isObjCPointer(const MemRegion *R)

static bool isAssertlikeBlock(const CFGBlock *B, ASTContext &Context)

static bool isInitializationOfVar(const ExplodedNode *N, const VarRegion *VR)

Returns true if N represents the DeclStmt declaring and initializing VR.

static const ExplodedNode * getMatchingCallExitEnd(const ExplodedNode *N)

static void showBRDiagnostics(llvm::raw_svector_ostream &OS, StoreInfo SI)

Show diagnostics for initializing or declaring a region R with a bad value.

Defines the C++ Decl subclasses, other than those for templates (found in DeclTemplate....

Defines the clang::Expr interface and subclasses for C++ expressions.

Defines the clang::IdentifierInfo, clang::IdentifierTable, and clang::Selector interfaces.

Forward-declares and imports various common LLVM datatypes that clang wants to use unqualified.

Defines the clang::SourceLocation class and associated facilities.

Defines the SourceManager interface.

C Language Family Type Representation.

static bool isPointerToConst(const QualType &QT)

Holds long-lived AST nodes (such as types and decls) that can be referred to throughout the semantic ...

const LangOptions & getLangOpts() const

CFGStmtMap * getCFGStmtMap()

static bool isInStdNamespace(const Decl *D)

Stores options for the analyzer from the command line.

AnalysisDiagClients AnalysisDiagOpt

A builtin binary operation expression such as "x + y" or "x <= y".

bool isComparisonOp() const

StringRef getOpcodeStr() const

static bool isAdditiveOp(Opcode Opc)

bool isAssignmentOp() const

Represents a single basic block in a source-level CFG.

bool isInevitablySinking() const

Returns true if the block would eventually end with a sink (a noreturn node).

succ_iterator succ_begin()

Stmt * getTerminatorStmt()

const Expr * getLastCondition() const

Stmt * getTerminatorCondition(bool StripParens=true)

unsigned succ_size() const

CFGBlock * getBlock(Stmt *S)

Returns the CFGBlock the specified Stmt* appears in.

unsigned size() const

Return the total number of CFGBlocks within the CFG This is simply a renaming of the getNumBlockIDs()...

bool isLinear() const

Returns true if the CFG has no branches.

A boolean literal, per ([C++ lex.bool] Boolean literals).

Represents a call to a C++ constructor.

CXXConstructorDecl * getConstructor() const

Get the constructor that this expression will (ultimately) call.

bool isCopyOrMoveConstructor(unsigned &TypeQuals) const

Determine whether this is a copy or move constructor.

Represents a C++ struct/union/class.

Represents a point when we begin processing an inlined call.

Represents a point when we start the call exit sequence (for inlined call).

Represents a point when we finish the call exit sequence (for inlined call).

Represents a character-granular source range.

static CharSourceRange getTokenRange(SourceRange R)

DeclContext * getParent()

getParent - Returns the containing DeclContext.

A reference to a declared variable, function, enum, etc.

DeclStmt - Adaptor class for mixing declarations with statements and expressions.

const Decl * getSingleDecl() const

Decl - This represents one declaration (or definition), e.g.

bool isLocalExternDecl() const

Determine whether this is a block-scope declaration with linkage.

This represents one expression.

Expr * IgnoreParenCasts() LLVM_READONLY

Skip past any parentheses and casts which might surround this expression until reaching a fixed point...

Expr * IgnoreParens() LLVM_READONLY

Skip past any parentheses which might surround this expression until reaching a fixed point.

Expr * IgnoreImpCasts() LLVM_READONLY

Skip past any implicit casts which might surround this expression until reaching a fixed point.

Represents a member of a struct/union/class.

A SourceLocation and its associated SourceManager.

GNUNullExpr - Implements the GNU __null extension, which is a name for a null pointer constant that h...

Describes an C or C++ initializer list.

unsigned getNumInits() const

const Expr * getInit(unsigned Init) const

Keeps track of the various options that can be enabled, which controls the dialect of C or C++ that i...

static StringRef getSourceText(CharSourceRange Range, const SourceManager &SM, const LangOptions &LangOpts, bool *Invalid=nullptr)

Returns a string for the source that the range encompasses.

static StringRef getImmediateMacroName(SourceLocation Loc, const SourceManager &SM, const LangOptions &LangOpts)

Retrieve the name of the immediate macro expansion.

static CharSourceRange getAsCharRange(SourceRange Range, const SourceManager &SM, const LangOptions &LangOpts)

Given a token range, produce a corresponding CharSourceRange that is not a token range.

static bool isAtStartOfMacroExpansion(SourceLocation loc, const SourceManager &SM, const LangOptions &LangOpts, SourceLocation *MacroBegin=nullptr)

Returns true if the given MacroID location points at the first token of the macro expansion.

static bool isAtEndOfMacroExpansion(SourceLocation loc, const SourceManager &SM, const LangOptions &LangOpts, SourceLocation *MacroEnd=nullptr)

Returns true if the given MacroID location points at the last token of the macro expansion.

It wraps the AnalysisDeclContext to represent both the call stack with the help of StackFrameContext ...

bool isParentOf(const LocationContext *LC) const

const Decl * getDecl() const

LLVM_ATTRIBUTE_RETURNS_NONNULL AnalysisDeclContext * getAnalysisDeclContext() const

const LocationContext * getParent() const

It might return null.

const StackFrameContext * getStackFrame() const

MemberExpr - [C99 6.5.2.3] Structure and Union Members.

SourceLocation getMemberLoc() const

getMemberLoc - Return the location of the "member", in X->F, it is the location of 'F'.

ValueDecl * getMemberDecl() const

Retrieve the member declaration to which this expression refers.

StringRef getName() const

Get the name of identifier for this declaration as a StringRef.

std::string getNameAsString() const

Get a human-readable name for the declaration, even if it is one of the special kinds of names (C++ c...

ObjCBoolLiteralExpr - Objective-C Boolean Literal.

ObjCIvarDecl - Represents an ObjC instance variable.

ObjCIvarRefExpr - A reference to an ObjC instance variable.

Represents a parameter to a function.

Represents a program point after a store evaluation.

ProgramPoints can be "tagged" as representing points specific to a given analysis entity.

const ProgramPointTag * getTag() const

std::optional< T > getAs() const

Convert to the specified ProgramPoint type, returning std::nullopt if this ProgramPoint is not of the...

A (possibly-)qualified type.

bool isNull() const

Return true if this QualType doesn't point to a type yet.

QualType getCanonicalType() const

bool isConstQualified() const

Determine whether this type is const-qualified.

Represents a struct/union/class.

field_range fields() const

Encodes a location in the source.

bool isValid() const

Return true if this is a valid SourceLocation object.

This class handles loading and caching of source files into memory.

A trivial tuple used to represent a source range.

Each ExpansionInfo encodes the expansion location - where the token was ultimately expanded,...

bool isFunctionMacroExpansion() const

This is a discriminated union of FileInfo and ExpansionInfo.

const ExpansionInfo & getExpansion() const

It represents a stack frame of the call stack (based on CallEvent).

const Stmt * getCallSite() const

bool inTopFrame() const override

const Stmt * getStmt() const

Stmt - This represents one statement.

SourceLocation getEndLoc() const LLVM_READONLY

StmtClass getStmtClass() const

SourceRange getSourceRange() const LLVM_READONLY

SourceLocation tokens are not useful in isolation - they are low level value objects created/interpre...

SourceLocation getBeginLoc() const LLVM_READONLY

bool isBooleanType() const

bool isPointerType() const

bool isReferenceType() const

QualType getPointeeType() const

If this is a pointer, ObjC object pointer, or block pointer, this returns the respective pointee.

bool isIntegralOrEnumerationType() const

Determine whether this type is an integral or enumeration type.

bool isObjCObjectPointerType() const

bool isAnyPointerType() const

RecordDecl * getAsRecordDecl() const

Retrieves the RecordDecl this type refers to.

Represent the declaration of a variable (in which case it is an lvalue) a function (in which case it ...

Represents a variable declaration or definition.

bool isStaticLocal() const

Returns true if a variable with function scope is a static local variable.

bool hasLocalStorage() const

Returns true if a variable with function scope is a non-static local variable.

Maps string IDs to AST nodes matched by parts of a matcher.

AllocaRegion - A region that represents an untyped blob of bytes created by a call to 'alloca'.

StringRef getDescription() const

A verbose warning message that is appropriate for displaying next to the source code that introduces ...

ASTContext & getASTContext() const

ProgramStateManager & getStateManager() const

const SourceManager & getSourceManager() const

const AnalyzerOptions & getAnalyzerOptions() const

BugReporterVisitors are used to add custom diagnostics along a path.

static PathDiagnosticPieceRef getDefaultEndPath(const BugReporterContext &BRC, const ExplodedNode *N, const PathSensitiveBugReport &BR)

Generates the default final diagnostic piece.

virtual PathDiagnosticPieceRef getEndPath(BugReporterContext &BRC, const ExplodedNode *N, PathSensitiveBugReport &BR)

Provide custom definition for the final diagnostic piece on the path - the piece, which is displayed ...

virtual void finalizeVisitor(BugReporterContext &BRC, const ExplodedNode *EndPathNode, PathSensitiveBugReport &BR)

Last function called on the visitor, no further calls to VisitNode would follow.

Represents a call to a C++ constructor.

Manages the lifetime of CallEvent objects.

CallEventRef getCaller(const StackFrameContext *CalleeCtx, ProgramStateRef State)

Gets an outside caller given a callee context.

Represents an abstract call to a function or method along a particular path.

static bool isCallStmt(const Stmt *S)

Returns true if this is a statement is a function or method call of some kind.

PathDiagnosticPieceRef VisitTerminator(const Stmt *Term, const ExplodedNode *N, const CFGBlock *SrcBlk, const CFGBlock *DstBlk, PathSensitiveBugReport &R, BugReporterContext &BRC)

bool printValue(const Expr *CondVarExpr, raw_ostream &Out, const ExplodedNode *N, bool TookTrue, bool IsAssuming)

Tries to print the value of the given expression.

PathDiagnosticPieceRef VisitNode(const ExplodedNode *N, BugReporterContext &BRC, PathSensitiveBugReport &BR) override

Return a diagnostic piece which should be associated with the given node.

bool patternMatch(const Expr *Ex, const Expr *ParentEx, raw_ostream &Out, BugReporterContext &BRC, PathSensitiveBugReport &R, const ExplodedNode *N, std::optional< bool > &prunable, bool IsSameFieldName)

static bool isPieceMessageGeneric(const PathDiagnosticPiece *Piece)

PathDiagnosticPieceRef VisitConditionVariable(StringRef LhsString, const Expr *CondVarExpr, BugReporterContext &BRC, PathSensitiveBugReport &R, const ExplodedNode *N, bool TookTrue)

PathDiagnosticPieceRef VisitTrueTest(const Expr *Cond, BugReporterContext &BRC, PathSensitiveBugReport &R, const ExplodedNode *N, bool TookTrue)

static const char * getTag()

Return the tag associated with this visitor.

PathDiagnosticPieceRef VisitNodeImpl(const ExplodedNode *N, BugReporterContext &BRC, PathSensitiveBugReport &BR)

bool isConstrainedTrue() const

Return true if the constraint is perfectly constrained to 'true'.

bool isValid() const =delete

static bool isInterestingLValueExpr(const Expr *Ex)

Returns true if nodes for the given expression kind are always kept around.

const CFGBlock * getCFGBlock() const

const ProgramStateRef & getState() const

const Stmt * getStmtForDiagnostics() const

If the node's program point corresponds to a statement, retrieve that statement.

ProgramPoint getLocation() const

getLocation - Returns the edge associated with the given node.

ExplodedNode * getFirstSucc()

const StackFrameContext * getStackFrame() const

SVal getSVal(const Stmt *S) const

Get the value of an arbitrary expression at this node.

const LocationContext * getLocationContext() const

std::optional< T > getLocationAs() const &

ExplodedNode * getFirstPred()

unsigned succ_size() const

static std::pair< const ProgramPointTag *, const ProgramPointTag * > getEagerlyAssumeBifurcationTags()

LLVM_ATTRIBUTE_RETURNS_NONNULL const FieldDecl * getDecl() const override

void finalizeVisitor(BugReporterContext &BRC, const ExplodedNode *N, PathSensitiveBugReport &BR) override

Last function called on the visitor, no further calls to VisitNode would follow.

const FieldRegion * getFieldRegion(const FieldDecl *fd, const SubRegion *superRegion)

getFieldRegion - Retrieve or create the memory region associated with a specified FieldDecl.

MemRegion - The root abstract class for all memory regions.

LLVM_ATTRIBUTE_RETURNS_NONNULL const MemSpaceRegion * getMemorySpace() const

virtual bool isBoundable() const

LLVM_ATTRIBUTE_RETURNS_NONNULL const MemRegion * StripCasts(bool StripBaseAndDerivedCasts=true) const

virtual bool isSubRegionOf(const MemRegion *R) const

Check if the region is a subregion of the given region.

virtual void printPretty(raw_ostream &os) const

Print the region for use in diagnostics.

const RegionTy * getAs() const

virtual bool canPrintPretty() const

Returns true if this region can be printed in a user-friendly way.

MemSpaceRegion - A memory region that represents a "memory space"; for example, the set of global var...

PathDiagnosticPieceRef VisitNode(const ExplodedNode *N, BugReporterContext &BRC, PathSensitiveBugReport &BR) override

Return a diagnostic piece which should be associated with the given node.

static const Expr * getNilReceiver(const Stmt *S, const ExplodedNode *N)

If the statement is a message send expression with nil receiver, returns the receiver expression.

virtual bool wasModifiedBeforeCallExit(const ExplodedNode *CurrN, const ExplodedNode *CallExitBeginN)

virtual PathDiagnosticPieceRef maybeEmitNoteForObjCSelf(PathSensitiveBugReport &R, const ObjCMethodCall &Call, const ExplodedNode *N)=0

Consume the information on the non-modifying stack frame in order to either emit a note or not.

virtual PathDiagnosticPieceRef maybeEmitNoteForCXXThis(PathSensitiveBugReport &R, const CXXConstructorCall &Call, const ExplodedNode *N)=0

Consume the information on the non-modifying stack frame in order to either emit a note or not.

bugreporter::TrackingKind TKind

virtual bool wasModifiedInFunction(const ExplodedNode *CallEnterN, const ExplodedNode *CallExitEndN)

PathDiagnosticPieceRef VisitNode(const ExplodedNode *N, BugReporterContext &BR, PathSensitiveBugReport &R) final

Return a diagnostic piece which should be associated with the given node.

virtual PathDiagnosticPieceRef maybeEmitNoteForParameters(PathSensitiveBugReport &R, const CallEvent &Call, const ExplodedNode *N)=0

Consume the information on the non-modifying stack frame in order to either emit a note or not.

Put a diagnostic on return statement of all inlined functions for which the region of interest Region...

The tag upon which the TagVisitor reacts.

Represents any expression that calls an Objective-C method.

static PathDiagnosticLocation createBegin(const Decl *D, const SourceManager &SM)

Create a location for the beginning of the declaration.

FullSourceLoc asLocation() const

static PathDiagnosticLocation create(const Decl *D, const SourceManager &SM)

Create a location corresponding to the given declaration.

bool hasValidLocation() const

StringRef getString() const

void markInteresting(SymbolRef sym, bugreporter::TrackingKind TKind=bugreporter::TrackingKind::Thorough)

Marks a symbol as interesting.

PathDiagnosticLocation getLocation() const override

The primary location of the bug report that points at the undesirable behavior in the code.

ArrayRef< SourceRange > getRanges() const override

Get the SourceRanges associated with the report.

const ExplodedNode * getErrorNode() const

bool addTrackedCondition(const ExplodedNode *Cond)

Notes that the condition of the CFGBlock associated with Cond is being tracked.

void markInvalid(const void *Tag, const void *Data)

Marks the current report as invalid, meaning that it is probably a false positive and should not be r...

void addVisitor(std::unique_ptr< BugReporterVisitor > visitor)

Add custom or predefined bug report visitors to this report.

std::optional< bugreporter::TrackingKind > getInterestingnessKind(SymbolRef sym) const

bool isInteresting(SymbolRef sym) const

SValBuilder & getSValBuilder()

CallEventManager & getCallEventManager()

bool haveEqualConstraints(ProgramStateRef S1, ProgramStateRef S2) const

void iterBindings(ProgramStateRef state, StoreManager::BindingsHandler &F)

StoreManager & getStoreManager()

ProgramState - This class encapsulates:

Loc getLValue(const CXXBaseSpecifier &BaseSpec, const SubRegion *Super) const

Get the lvalue for a base class object reference.

SVal getSVal(const Stmt *S, const LocationContext *LCtx) const

Returns the SVal bound to the statement 'S' in the state's environment.

A Range represents the closed range [from, to].

ConditionTruthVal areEqual(ProgramStateRef state, SVal lhs, SVal rhs)

SVal - This represents a symbolic expression, which can be either an L-value or an R-value.

bool isZeroConstant() const

std::optional< T > getAs() const

Convert to the specified SVal type, returning std::nullopt if this SVal is not of the desired type.

const MemRegion * getAsRegion() const

SubRegion - A region that subsets another larger region.

LLVM_ATTRIBUTE_RETURNS_NONNULL const MemRegion * getSuperRegion() const

bool isSubRegionOf(const MemRegion *R) const override

Check if the region is a subregion of the given region.

PathDiagnosticPieceRef VisitNode(const ExplodedNode *Succ, BugReporterContext &BRC, PathSensitiveBugReport &BR) override

Return a diagnostic piece which should be associated with the given node.

SuppressInlineDefensiveChecksVisitor(DefinedSVal Val, const ExplodedNode *N)

static const char * getTag()

Return the tag associated with this visitor.

void Profile(llvm::FoldingSetNodeID &ID) const override

SymbolicRegion - A special, "non-concrete" region.

void Profile(llvm::FoldingSetNodeID &ID) const override

PathDiagnosticPieceRef VisitNode(const ExplodedNode *N, BugReporterContext &BRC, PathSensitiveBugReport &R) override

Return a diagnostic piece which should be associated with the given node.

void Profile(llvm::FoldingSetNodeID &ID) const override

static const char * getTag()

Return the tag associated with this visitor.

PathDiagnosticPieceRef VisitNode(const ExplodedNode *N, BugReporterContext &BRC, PathSensitiveBugReport &BR) override

Return a diagnostic piece which should be associated with the given node.

When a region containing undefined value or '0' value is passed as an argument in a call,...

PathDiagnosticPieceRef VisitNode(const ExplodedNode *N, BugReporterContext &BRC, PathSensitiveBugReport &BR) override

Return a diagnostic piece which should be associated with the given node.

const VarDecl * getDecl() const override=0

Handles expressions during the tracking.

ExpressionHandler(Tracker &ParentTracker)

Handles stores during the tracking.

StoreHandler(Tracker &ParentTracker)

PathDiagnosticPieceRef constructNote(StoreInfo SI, BugReporterContext &BRC, StringRef NodeText)

A generalized component for tracking expressions, values, and stores.

static TrackerRef create(PathSensitiveBugReport &Report)

virtual PathDiagnosticPieceRef handle(StoreInfo SI, BugReporterContext &BRC, TrackingOptions Opts)

Handle the store operation and produce the note.

Tracker(PathSensitiveBugReport &Report)

virtual Result track(const Expr *E, const ExplodedNode *N, TrackingOptions Opts={})

Track expression value back to its point of origin.

Visitor that tracks expressions and values.

Value representing integer constant.

While nonloc::CompoundVal covers a few simple use cases, nonloc::LazyCompoundVal is a more performant...

LLVM_ATTRIBUTE_RETURNS_NONNULL const TypedValueRegion * getRegion() const

This function itself is immaterial.

const internal::VariadicDynCastAllOfMatcher< Stmt, ObjCIvarRefExpr > objcIvarRefExpr

Matches a reference to an ObjCIvar.

const internal::ArgumentAdaptingMatcherFunc< internal::HasDescendantMatcher > hasDescendant

Matches AST nodes that have descendant AST nodes that match the provided matcher.

SmallVector< BoundNodes, 1 > match(MatcherT Matcher, const NodeT &Node, ASTContext &Context)

Returns the results of matching Matcher on Node.

const internal::VariadicDynCastAllOfMatcher< Stmt, BinaryOperator > binaryOperator

Matches binary operator expressions.

internal::Matcher< Stmt > StatementMatcher

static std::string getMacroName(MacroType Macro, GtestCmp Cmp)

internal::PolymorphicMatcher< internal::HasDeclarationMatcher, void(internal::HasDeclarationSupportedTypes), internal::Matcher< Decl > > hasDeclaration(const internal::Matcher< Decl > &InnerMatcher)

Matches a node if the declaration associated with that node matches the given matcher.

const internal::VariadicAllOfMatcher< Stmt > stmt

Matches statements.

const Expr * getDerefExpr(const Stmt *S)

Given that expression S represents a pointer that would be dereferenced, try to find a sub-expression...

bool trackExpressionValue(const ExplodedNode *N, const Expr *E, PathSensitiveBugReport &R, TrackingOptions Opts={})

Attempts to add visitors to track expression value back to its point of origin.

void trackStoredValue(SVal V, const MemRegion *R, PathSensitiveBugReport &Report, TrackingOptions Opts={}, const StackFrameContext *Origin=nullptr)

Track how the value got stored into the given region and where it came from.

TrackingKind

Specifies the type of tracking for an expression.

@ Thorough

Default tracking kind – specifies that as much information should be gathered about the tracked expre...

@ Condition

Specifies that a more moderate tracking should be used for the expression value.

@ OS

Indicates that the tracking object is a descendant of a referenced-counted OSObject,...

std::shared_ptr< PathDiagnosticPiece > PathDiagnosticPieceRef

bool Ret(InterpState &S, CodePtr &PC)

The JSON file list parser is used to communicate input to InstallAPI.

bool isa(CodeGen::Address addr)

const FunctionProtoType * T

@ ObjCSelf

Parameter for Objective-C 'self' argument.

Describes an event when the value got stored into a memory region.

@ Assignment

The value got stored into the region during assignment: int x; x = 42;.

@ CallArgument

The value got stored into the parameter region as the result of a call.

@ BlockCapture

The value got stored into the region as block capture.

@ Initialization

The value got stored into the region during initialization: int x = 42;.

const Expr * SourceOfTheValue

The expression where the value comes from.

const ExplodedNode * StoreSite

The node where the store happened.

Kind StoreKind

The type of store operation.

SVal Value

Symbolic value that is being stored.

const MemRegion * Dest

Memory regions involved in the store operation.

Describes a tracking result with the most basic information of what was actually done (or not done).

void combineWith(const Result &Other)

Combines the current result with the given result.

bool WasInterrupted

Signifies that the tracking was interrupted at some point.

Defines a set of options altering tracking behavior.

bool EnableNullFPSuppression

Specifies whether we should employ false positive suppression (inlined defensive checks,...

TrackingKind Kind

Specifies the kind of tracking.

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4