#include "clang/StaticAnalyzer/Core/BugReporter/BugReporterVisitors.h"#include "clang/AST/ASTContext.h"#include "clang/AST/Decl.h"#include "clang/AST/DeclBase.h"#include "clang/AST/DeclCXX.h"#include "clang/AST/Expr.h"#include "clang/AST/ExprCXX.h"#include "clang/AST/ExprObjC.h"#include "clang/AST/Stmt.h"#include "clang/AST/Type.h"#include "clang/Analysis/AnalysisDeclContext.h"#include "clang/Analysis/CFG.h"#include "clang/Analysis/CFGStmtMap.h"#include "clang/Analysis/ProgramPoint.h"#include "clang/Basic/IdentifierTable.h"#include "clang/Basic/LLVM.h"#include "clang/Basic/SourceLocation.h"#include "clang/Basic/SourceManager.h"#include "clang/Lex/Lexer.h"#include "clang/StaticAnalyzer/Core/AnalyzerOptions.h"#include "clang/StaticAnalyzer/Core/BugReporter/BugReporter.h"#include "clang/StaticAnalyzer/Core/BugReporter/PathDiagnostic.h"#include "clang/StaticAnalyzer/Core/PathSensitive/AnalysisManager.h"#include "clang/StaticAnalyzer/Core/PathSensitive/CallEvent.h"#include "clang/StaticAnalyzer/Core/PathSensitive/ExplodedGraph.h"#include "clang/StaticAnalyzer/Core/PathSensitive/ExprEngine.h"#include "clang/StaticAnalyzer/Core/PathSensitive/MemRegion.h"#include "clang/StaticAnalyzer/Core/PathSensitive/ProgramState.h"#include "clang/StaticAnalyzer/Core/PathSensitive/ProgramState_Fwd.h"#include "clang/StaticAnalyzer/Core/PathSensitive/SValBuilder.h"#include "clang/StaticAnalyzer/Core/PathSensitive/SVals.h"#include "clang/StaticAnalyzer/Core/PathSensitive/SubEngine.h"#include "llvm/ADT/ArrayRef.h"#include "llvm/ADT/None.h"#include "llvm/ADT/Optional.h"#include "llvm/ADT/STLExtras.h"#include "llvm/ADT/SmallPtrSet.h"#include "llvm/ADT/SmallString.h"#include "llvm/ADT/SmallVector.h"#include "llvm/ADT/StringExtras.h"#include "llvm/ADT/StringRef.h"#include "llvm/Support/Casting.h"#include "llvm/Support/ErrorHandling.h"#include "llvm/Support/raw_ostream.h"#include <cassert>#include <deque>#include <memory>#include <string>#include <utility>
Go to the source code of this file.
Functions | |
| static const Expr * | peelOffPointerArithmetic (const BinaryOperator *B) |
| static StringRef | getMacroName (SourceLocation Loc, BugReporterContext &BRC) |
| static bool | isFunctionMacroExpansion (SourceLocation Loc, const SourceManager &SM) |
| static bool | isInitializationOfVar (const ExplodedNode *N, const VarRegion *VR) |
Returns true if N represents the DeclStmt declaring and initializing VR. More... | |
| static void | showBRDiagnostics (const char *action, llvm::raw_svector_ostream &os, const MemRegion *R, SVal V, const DeclStmt *DS) |
Show diagnostics for initializing or declaring a region R with a bad value. More... | |
| static void | showBRParamDiagnostics (llvm::raw_svector_ostream &os, const VarRegion *VR, SVal V) |
| Display diagnostics for passing bad region as a parameter. More... | |
| static void | showBRDefaultDiagnostics (llvm::raw_svector_ostream &os, const MemRegion *R, SVal V) |
| Show default diagnostics for storing bad region. More... | |
| static const MemRegion * | getLocationRegionIfReference (const Expr *E, const ExplodedNode *N) |
| static const Expr * | peelOffOuterExpr (const Expr *Ex, const ExplodedNode *N) |
| static const ExplodedNode * | findNodeForStatement (const ExplodedNode *N, const Stmt *S, const Expr *Inner) |
| Walk through nodes until we get one that matches the statement exactly. More... | |
| static const ExplodedNode * | findNodeForExpression (const ExplodedNode *N, const Expr *Inner) |
| Find the ExplodedNode where the lvalue (the value of 'Ex') was computed. More... | |
| static const Expr * | peelOfOuterAddrOf (const Expr *Ex) |
| Performing operator `&' on an lvalue expression is essentially a no-op. More... | |
Function Documentation
◆ findNodeForExpression()
|
static |
Find the ExplodedNode where the lvalue (the value of 'Ex') was computed.
Definition at line 1448 of file BugReporterVisitors.cpp.
◆ findNodeForStatement()
|
static |
Walk through nodes until we get one that matches the statement exactly.
Alternately, if we hit a known lvalue for the statement, we know we've gone too far (though we can likely track the lvalue better anyway).
Definition at line 1428 of file BugReporterVisitors.cpp.
◆ getLocationRegionIfReference()
|
static |
Definition at line 1357 of file BugReporterVisitors.cpp.
◆ getMacroName()
|
static |
- Returns
- name of the macro inside the location
Loc.
Definition at line 201 of file BugReporterVisitors.cpp.
References clang::ento::BugReporterContext::getASTContext(), clang::Lexer::getImmediateMacroName(), clang::ASTContext::getLangOpts(), and clang::ento::BugReporterContext::getSourceManager().
Referenced by clang::ento::SuppressInlineDefensiveChecksVisitor::VisitNode().
◆ isFunctionMacroExpansion()
|
static |
- Returns
- Whether given spelling location corresponds to an expansion of a function-like macro.
Definition at line 211 of file BugReporterVisitors.cpp.
References clang::ento::BugReporterContext::getASTContext(), clang::CharSourceRange::getBegin(), clang::CallEventManager::getCaller(), clang::ento::ProgramStateManager::getCallEventManager(), clang::LocationContext::getCurrentStackFrame(), clang::SourceManager::getDecomposedLoc(), clang::SrcMgr::SLocEntry::getExpansion(), clang::SourceManager::getImmediateExpansionRange(), clang::ento::ExplodedNode::getLocationAs(), clang::ento::ExplodedNode::getLocationContext(), clang::ASTContext::getPrintingPolicy(), clang::SourceManager::getSLocEntry(), clang::ento::BugReporterContext::getSourceManager(), clang::ento::ExplodedNode::getState(), clang::ento::BugReporterContext::getStateManager(), clang::SrcMgr::ExpansionInfo::isFunctionMacroExpansion(), clang::SourceManager::isMacroArgExpansion(), clang::SourceLocation::isMacroID(), clang::ento::BugReporterVisitor::Profile(), SM, State, and clang::ento::BugReporterVisitor::VisitNode().
◆ isInitializationOfVar()
|
static |
Returns true if N represents the DeclStmt declaring and initializing VR.
Definition at line 889 of file BugReporterVisitors.cpp.
References clang::LocationContext::getCurrentStackFrame(), clang::ento::VarRegion::getDecl(), clang::ento::ExplodedNode::getLocationAs(), clang::ento::ExplodedNode::getLocationContext(), clang::ento::MemRegion::getMemorySpace(), clang::DeclStmt::getSingleDecl(), clang::VarDecl::hasLocalStorage(), clang::VarDecl::isStaticLocal(), and P.
Referenced by clang::ento::FindLastStoreBRVisitor::VisitNode().
◆ peelOffOuterExpr()
|
static |
Definition at line 1378 of file BugReporterVisitors.cpp.
References clang::ProgramPoint::getAs(), clang::ento::ExplodedNode::getFirstPred(), clang::ento::ExplodedNode::getLocation(), clang::CFGBlock::getTerminator(), clang::Expr::IgnoreParenCasts(), peelOffPointerArithmetic(), and clang::CFGBlock::succ_begin().
◆ peelOffPointerArithmetic()
|
static |
Definition at line 78 of file BugReporterVisitors.cpp.
References clang::BinaryOperator::getLHS(), clang::BinaryOperator::getRHS(), clang::Expr::getType(), clang::BinaryOperator::isAdditiveOp(), and clang::Type::isPointerType().
Referenced by peelOffOuterExpr().
◆ peelOfOuterAddrOf()
Performing operator `&' on an lvalue expression is essentially a no-op.
Then, if we are taking addresses of fields or elements, these are also unlikely to matter.
Definition at line 1464 of file BugReporterVisitors.cpp.
References clang::ento::bugreporter::getDerefExpr(), and clang::Expr::IgnoreParenCasts().
◆ showBRDefaultDiagnostics()
|
static |
Show default diagnostics for storing bad region.
Definition at line 989 of file BugReporterVisitors.cpp.
References clang::ento::MemRegion::canPrintPretty(), clang::ento::SVal::getAs(), clang::ento::MemRegion::isBoundable(), clang::ento::SVal::isUndef(), and clang::ento::MemRegion::printPretty().
◆ showBRDiagnostics()
|
static |
Show diagnostics for initializing or declaring a region R with a bad value.
Definition at line 917 of file BugReporterVisitors.cpp.
References clang::ento::MemRegion::canPrintPretty(), clang::ento::SVal::getAs(), clang::DeclStmt::getSingleDecl(), clang::ento::MemRegion::isBoundable(), clang::ento::SVal::isUndef(), and clang::ento::MemRegion::printPretty().
◆ showBRParamDiagnostics()
|
static |
Display diagnostics for passing bad region as a parameter.
Definition at line 959 of file BugReporterVisitors.cpp.
References clang::ento::MemRegion::canPrintPretty(), clang::ento::SVal::getAs(), clang::ento::VarRegion::getDecl(), clang::ento::SVal::isUndef(), and clang::ento::MemRegion::printPretty().
