|
clang 20.0.0git
|
#include "clang/StaticAnalyzer/Core/BugReporter/BugReporter.h"#include "clang/AST/ASTTypeTraits.h"#include "clang/AST/Attr.h"#include "clang/AST/Decl.h"#include "clang/AST/DeclBase.h"#include "clang/AST/DeclObjC.h"#include "clang/AST/Expr.h"#include "clang/AST/ExprCXX.h"#include "clang/AST/ParentMap.h"#include "clang/AST/ParentMapContext.h"#include "clang/AST/Stmt.h"#include "clang/AST/StmtCXX.h"#include "clang/AST/StmtObjC.h"#include "clang/Analysis/AnalysisDeclContext.h"#include "clang/Analysis/CFG.h"#include "clang/Analysis/CFGStmtMap.h"#include "clang/Analysis/PathDiagnostic.h"#include "clang/Analysis/ProgramPoint.h"#include "clang/Basic/LLVM.h"#include "clang/Basic/SourceLocation.h"#include "clang/Basic/SourceManager.h"#include "clang/StaticAnalyzer/Core/AnalyzerOptions.h"#include "clang/StaticAnalyzer/Core/BugReporter/BugReporterVisitors.h"#include "clang/StaticAnalyzer/Core/BugReporter/BugType.h"#include "clang/StaticAnalyzer/Core/BugReporter/Z3CrosscheckVisitor.h"#include "clang/StaticAnalyzer/Core/Checker.h"#include "clang/StaticAnalyzer/Core/CheckerManager.h"#include "clang/StaticAnalyzer/Core/CheckerRegistryData.h"#include "clang/StaticAnalyzer/Core/PathSensitive/ExplodedGraph.h"#include "clang/StaticAnalyzer/Core/PathSensitive/ExprEngine.h"#include "clang/StaticAnalyzer/Core/PathSensitive/MemRegion.h"#include "clang/StaticAnalyzer/Core/PathSensitive/ProgramState.h"#include "clang/StaticAnalyzer/Core/PathSensitive/SMTConv.h"#include "clang/StaticAnalyzer/Core/PathSensitive/SVals.h"#include "clang/StaticAnalyzer/Core/PathSensitive/SymbolManager.h"#include "llvm/ADT/ArrayRef.h"#include "llvm/ADT/DenseMap.h"#include "llvm/ADT/DenseSet.h"#include "llvm/ADT/FoldingSet.h"#include "llvm/ADT/STLExtras.h"#include "llvm/ADT/SmallPtrSet.h"#include "llvm/ADT/SmallString.h"#include "llvm/ADT/SmallVector.h"#include "llvm/ADT/Statistic.h"#include "llvm/ADT/StringExtras.h"#include "llvm/ADT/StringRef.h"#include "llvm/ADT/iterator_range.h"#include "llvm/Support/Casting.h"#include "llvm/Support/Compiler.h"#include "llvm/Support/ErrorHandling.h"#include "llvm/Support/MemoryBuffer.h"#include "llvm/Support/raw_ostream.h"#include <algorithm>#include <cassert>#include <cstddef>#include <iterator>#include <memory>#include <optional>#include <queue>#include <string>#include <tuple>#include <utility>#include <vector>Go to the source code of this file.
Macros | |
| #define | DEBUG_TYPE "BugReporter" |
Typedefs | |
| using | OptimizedCallsSet = llvm::DenseSet< const PathDiagnosticCallPiece * > |
Functions | |
| STATISTIC (MaxBugClassSize, "The maximum number of bug reports in the same equivalence class") | |
| STATISTIC (MaxValidBugClassSize, "The maximum number of bug reports in the same equivalence class " "where at least one report is valid (not suppressed)") | |
| STATISTIC (NumTimesReportPassesZ3, "Number of reports passed Z3") | |
| STATISTIC (NumTimesReportRefuted, "Number of reports refuted by Z3") | |
| STATISTIC (NumTimesReportEQClassAborted, "Number of times a report equivalence class was aborted by the Z3 " "oracle heuristic") | |
| STATISTIC (NumTimesReportEQClassWasExhausted, "Number of times all reports of an equivalence class was refuted") | |
| static PathDiagnosticEventPiece * | eventsDescribeSameCondition (PathDiagnosticEventPiece *X, PathDiagnosticEventPiece *Y) |
| static void | removeRedundantMsgs (PathPieces &path) |
| An optimization pass over PathPieces that removes redundant diagnostics generated by both ConditionBRVisitor and TrackConstraintBRVisitor. | |
| static bool | removeUnneededCalls (const PathDiagnosticConstruct &C, PathPieces &pieces, const PathSensitiveBugReport *R, bool IsInteresting=false) |
| Recursively scan through a path and prune out calls and macros pieces that aren't needed. | |
| static void | removePopUpNotes (PathPieces &Path) |
| Same logic as above to remove extra pieces. | |
| static bool | hasImplicitBody (const Decl *D) |
| Returns true if the given decl has been implicitly given a body, either by the analyzer or by the compiler proper. | |
| static void | adjustCallLocations (PathPieces &Pieces, PathDiagnosticLocation *LastCallLocation=nullptr) |
| Recursively scan through a path and make sure that all call pieces have valid locations. | |
| static void | removeEdgesToDefaultInitializers (PathPieces &Pieces) |
| Remove edges in and out of C++ default initializer expressions. | |
| static void | removePiecesWithInvalidLocations (PathPieces &Pieces) |
| Remove all pieces with invalid locations as these cannot be serialized. | |
| static const Stmt * | getEnclosingParent (const Stmt *S, const ParentMap &PM) |
| static PathDiagnosticLocation | getEnclosingStmtLocation (const Stmt *S, const LocationContext *LC, bool allowNestedContexts=false) |
| static void | CompactMacroExpandedPieces (PathPieces &path, const SourceManager &SM) |
| CompactMacroExpandedPieces - This function postprocesses a PathDiagnostic object and collapses PathDiagosticPieces that are expanded by macros. | |
| static bool | isLoop (const Stmt *Term) |
| static bool | isJumpToFalseBranch (const BlockEdge *BE) |
| static bool | isContainedByStmt (const ParentMap &PM, const Stmt *S, const Stmt *SubS) |
| static const Stmt * | getStmtBeforeCond (const ParentMap &PM, const Stmt *Term, const ExplodedNode *N) |
| static bool | isInLoopBody (const ParentMap &PM, const Stmt *S, const Stmt *Term) |
| static void | addEdgeToPath (PathPieces &path, PathDiagnosticLocation &PrevLoc, PathDiagnosticLocation NewLoc) |
| Adds a sanitized control-flow diagnostic edge to a path. | |
| static const Stmt * | getTerminatorCondition (const CFGBlock *B) |
| A customized wrapper for CFGBlock::getTerminatorCondition() which returns the element for ObjCForCollectionStmts. | |
| static std::unique_ptr< FilesToLineNumsMap > | findExecutedLines (const SourceManager &SM, const ExplodedNode *N) |
| static std::unique_ptr< PathDiagnostic > | generateDiagnosticForBasicReport (const BasicBugReport *R, const Decl *AnalysisEntryPoint) |
| static std::unique_ptr< PathDiagnostic > | generateEmptyDiagnosticForReport (const PathSensitiveBugReport *R, const SourceManager &SM, const Decl *AnalysisEntryPoint) |
| static const Stmt * | getStmtParent (const Stmt *S, const ParentMap &PM) |
| static bool | isConditionForTerminator (const Stmt *S, const Stmt *Cond) |
| static bool | isIncrementOrInitInForLoop (const Stmt *S, const Stmt *FL) |
| static void | addContextEdges (PathPieces &pieces, const LocationContext *LC) |
| Adds synthetic edges from top-level statements to their subexpressions. | |
| static void | simplifySimpleBranches (PathPieces &pieces) |
| Move edges from a branch condition to a branch target when the condition is simple. | |
| static std::optional< size_t > | getLengthOnSingleLine (const SourceManager &SM, SourceRange Range) |
| Returns the number of bytes in the given (character-based) SourceRange. | |
| static std::optional< size_t > | getLengthOnSingleLine (const SourceManager &SM, const Stmt *S) |
| static void | removeContextCycles (PathPieces &Path, const SourceManager &SM) |
| Eliminate two-edge cycles created by addContextEdges(). | |
| static bool | lexicalContains (const ParentMap &PM, const Stmt *X, const Stmt *Y) |
| Return true if X is contained by Y. | |
| static void | removePunyEdges (PathPieces &path, const SourceManager &SM, const ParentMap &PM) |
| static void | removeIdenticalEvents (PathPieces &path) |
| static bool | optimizeEdges (const PathDiagnosticConstruct &C, PathPieces &path, OptimizedCallsSet &OCS) |
| static void | dropFunctionEntryEdge (const PathDiagnosticConstruct &C, PathPieces &Path) |
| Drop the very first edge in a path, which should be a function entry edge. | |
| static void | updateExecutedLinesWithDiagnosticPieces (PathDiagnostic &PD) |
| Populate executes lines with lines containing at least one diagnostics. | |
| static LLVM_ATTRIBUTE_USED bool | isDependency (const CheckerRegistryData &Registry, StringRef CheckerName) |
| static LLVM_ATTRIBUTE_USED bool | isHidden (const CheckerRegistryData &Registry, StringRef CheckerName) |
| template<class T > | |
| static void | insertToInterestingnessMap (llvm::DenseMap< T, bugreporter::TrackingKind > &InterestingnessMap, T Val, bugreporter::TrackingKind TKind) |
| static std::unique_ptr< VisitorsDiagnosticsTy > | generateVisitorsDiagnostics (PathSensitiveBugReport *R, const ExplodedNode *ErrorNode, BugReporterContext &BRC) |
| Generate notes from all visitors. | |
| static void | populateExecutedLinesWithFunctionSignature (const Decl *Signature, const SourceManager &SM, FilesToLineNumsMap &ExecutedLines) |
Insert all lines participating in the function signature Signature into ExecutedLines. | |
| static void | populateExecutedLinesWithStmt (const Stmt *S, const SourceManager &SM, FilesToLineNumsMap &ExecutedLines) |
| static PathDiagnosticCallPiece * | getFirstStackedCallToHeaderFile (PathDiagnosticCallPiece *CP, const SourceManager &SMgr) |
| static void | resetDiagnosticLocationToMainFile (PathDiagnostic &PD) |
Variables | |
| constexpr llvm::StringLiteral | StrEnteringLoop = "Entering loop body" |
| constexpr llvm::StringLiteral | StrLoopBodyZero = "Loop body executed 0 times" |
| constexpr llvm::StringLiteral | StrLoopRangeEmpty |
| constexpr llvm::StringLiteral | StrLoopCollectionEmpty |
| #define DEBUG_TYPE "BugReporter" |
Definition at line 82 of file BugReporter.cpp.
| using OptimizedCallsSet = llvm::DenseSet<const PathDiagnosticCallPiece *> |
Definition at line 1427 of file BugReporter.cpp.
|
static |
Adds synthetic edges from top-level statements to their subexpressions.
This avoids a "swoosh" effect, where an edge from a top-level statement A points to a sub-expression B.1 that's not at the start of B. In these cases, we'd like to see an edge from A to B, then another one from B to B.1.
Definition at line 1434 of file BugReporter.cpp.
References clang::ento::PathDiagnosticLocation::asStmt(), E, getEnclosingStmtLocation(), clang::LocationContext::getParentMap(), clang::ento::PathDiagnosticLocation::getStmtOrNull(), getStmtParent(), clang::ento::PathDiagnosticLocation::isValid(), and P.
Referenced by optimizeEdges().
|
static |
Adds a sanitized control-flow diagnostic edge to a path.
Definition at line 1091 of file BugReporter.cpp.
References clang::ento::PathDiagnosticLocation::asLocation(), clang::ento::PathDiagnosticLocation::asStmt(), clang::SourceLocation::isInvalid(), clang::ento::PathDiagnosticLocation::isValid(), and clang::SourceLocation::isValid().
|
static |
Recursively scan through a path and make sure that all call pieces have valid locations.
Definition at line 506 of file BugReporter.cpp.
References adjustCallLocations(), clang::Call, and hasImplicitBody().
Referenced by adjustCallLocations().
|
static |
CompactMacroExpandedPieces - This function postprocesses a PathDiagnostic object and collapses PathDiagosticPieces that are expanded by macros.
Definition at line 2693 of file BugReporter.cpp.
References CompactMacroExpandedPieces(), clang::ento::PathDiagnosticLocation::createSingleLocation(), E, clang::SourceLocation::isFileID(), clang::SourceLocation::isMacroID(), and SM.
Referenced by CompactMacroExpandedPieces().
|
static |
Drop the very first edge in a path, which should be a function entry edge.
If the first edge is not a function entry edge (say, because the first statement had an invalid source location), this function does nothing.
Definition at line 1958 of file BugReporter.cpp.
References clang::C, clang::ento::PathDiagnosticLocation::createBegin(), D, and Path.
|
static |
Definition at line 358 of file BugReporter.cpp.
References clang::ento::PathDiagnosticSpotPiece::getLocation(), clang::ento::TrackConstraintBRVisitor::getTag(), clang::ento::ConditionBRVisitor::getTag(), clang::ento::PathDiagnosticPiece::getTag(), clang::ento::ConditionBRVisitor::isPieceMessageGeneric(), and X.
Referenced by removeRedundantMsgs().
|
static |
N. Definition at line 3211 of file BugReporter.cpp.
References D, clang::LocationContext::getDecl(), clang::ento::ExplodedNode::getFirstPred(), clang::ento::ExplodedNode::getLocationAs(), clang::ento::ExplodedNode::getLocationContext(), clang::ParentMap::getParent(), clang::ento::ExplodedNode::getParentMap(), clang::ento::ExplodedNode::getStmtForDiagnostics(), P, populateExecutedLinesWithFunctionSignature(), populateExecutedLinesWithStmt(), and SM.
Referenced by generateEmptyDiagnosticForReport().
|
static |
Definition at line 1336 of file BugReporter.cpp.
References clang::ento::BugReport::getBugType(), clang::ento::BugType::getCategory(), clang::ento::BugType::getCheckerName(), clang::ento::BasicBugReport::getDeclWithIssue(), clang::ento::BugReport::getDescription(), clang::ento::BugType::getDescription(), clang::ento::BugReport::getShortDescription(), clang::ento::BasicBugReport::getUniqueingDecl(), and clang::ento::BasicBugReport::getUniqueingLocation().
Referenced by clang::ento::BugReporter::generateDiagnosticForConsumerMap().
|
static |
Definition at line 1347 of file BugReporter.cpp.
References findExecutedLines(), clang::ento::BugReport::getBugType(), clang::ento::BugType::getCategory(), clang::ento::BugType::getCheckerName(), clang::ento::PathSensitiveBugReport::getDeclWithIssue(), clang::ento::BugReport::getDescription(), clang::ento::BugType::getDescription(), clang::ento::PathSensitiveBugReport::getErrorNode(), clang::ento::BugReport::getShortDescription(), clang::ento::PathSensitiveBugReport::getUniqueingDecl(), clang::ento::PathSensitiveBugReport::getUniqueingLocation(), and SM.
|
static |
Generate notes from all visitors.
Notes associated with ErrorNode are generated using getEndPath, and the rest are generated with VisitNode.
Definition at line 2788 of file BugReporter.cpp.
References clang::ento::PathSensitiveBugReport::clearVisitors(), clang::ento::PathDiagnosticPiece::Event, clang::ento::ExplodedNode::getFirstPred(), clang::ento::PathSensitiveBugReport::isValid(), P, V, and clang::ento::PathSensitiveBugReport::visitors().
Definition at line 629 of file BugReporter.cpp.
References clang::ParentMap::getParentIgnoreParens(), clang::ParentMap::isConsumedExpr(), and Parent.
Referenced by getEnclosingStmtLocation().
|
static |
Definition at line 652 of file BugReporter.cpp.
References clang::Decl::getASTContext(), clang::LocationContext::getDecl(), getEnclosingParent(), clang::LocationContext::getParentMap(), clang::ASTContext::getSourceManager(), and Parent.
Referenced by addContextEdges().
|
static |
Definition at line 3259 of file BugReporter.cpp.
References clang::ento::PathDiagnosticLocation::asLocation(), clang::ento::PathDiagnosticCallPiece::callEnter, clang::ento::PathDiagnosticCallPiece::callEnterWithin, getFirstStackedCallToHeaderFile(), clang::ento::AnalysisManager::isInCodeFile(), clang::SourceLocation::isMacroID(), clang::ento::PathDiagnosticCallPiece::path, and Path.
Referenced by getFirstStackedCallToHeaderFile(), and resetDiagnosticLocationToMainFile().
|
static |
Definition at line 1614 of file BugReporter.cpp.
References getLengthOnSingleLine(), and SM.
|
static |
Returns the number of bytes in the given (character-based) SourceRange.
If the locations in the range are not on the same line, returns std::nullopt.
Note that this does not do a precise user-visible character or column count.
Definition at line 1585 of file BugReporter.cpp.
References clang::SourceRange::getBegin(), clang::SourceRange::getEnd(), and SM.
Referenced by getLengthOnSingleLine(), optimizeEdges(), removeContextCycles(), and removePunyEdges().
|
static |
Definition at line 1043 of file BugReporter.cpp.
References clang::ProgramPoint::getAs(), clang::ento::ExplodedNode::getFirstPred(), clang::ento::ExplodedNode::getLocation(), and isContainedByStmt().
Definition at line 1358 of file BugReporter.cpp.
References clang::ParentMap::getParentIgnoreParens().
Referenced by addContextEdges(), and optimizeEdges().
A customized wrapper for CFGBlock::getTerminatorCondition() which returns the element for ObjCForCollectionStmts.
Definition at line 1118 of file BugReporter.cpp.
References clang::CFGBlock::getTerminatorCondition().
Returns true if the given decl has been implicitly given a body, either by the analyzer or by the compiler proper.
Definition at line 498 of file BugReporter.cpp.
References D, clang::Decl::hasBody(), and clang::Decl::isImplicit().
Referenced by adjustCallLocations().
|
static |
Definition at line 2237 of file BugReporter.cpp.
References clang::ento::bugreporter::Condition, clang::Result, and clang::ento::bugreporter::Thorough.
Referenced by clang::ento::PathSensitiveBugReport::markInteresting().
Definition at line 1377 of file BugReporter.cpp.
Referenced by optimizeEdges(), removePunyEdges(), and simplifySimpleBranches().
Definition at line 1033 of file BugReporter.cpp.
References clang::ParentMap::getParent().
Referenced by getStmtBeforeCond(), and isInLoopBody().
|
static |
Definition at line 2124 of file BugReporter.cpp.
References clang::ento::CheckerRegistryData::Dependencies.
Referenced by clang::ento::PathSensitiveBugReport::PathSensitiveBugReport().
|
static |
Definition at line 2132 of file BugReporter.cpp.
References clang::ento::CheckerRegistryData::Checkers.
Referenced by clang::ento::PathSensitiveBugReport::PathSensitiveBugReport().
Definition at line 1418 of file BugReporter.cpp.
Referenced by optimizeEdges().
Definition at line 1057 of file BugReporter.cpp.
References clang::Stmt::getStmtClass(), and isContainedByStmt().
Definition at line 1027 of file BugReporter.cpp.
References clang::BlockEdge::getDst(), clang::BlockEdge::getSrc(), clang::CFGBlock::succ_begin(), and clang::CFGBlock::succ_size().
Definition at line 1014 of file BugReporter.cpp.
References clang::Stmt::getStmtClass().
Return true if X is contained by Y.
Definition at line 1690 of file BugReporter.cpp.
References clang::ParentMap::getParent(), and X.
Referenced by optimizeEdges().
|
static |
Definition at line 1776 of file BugReporter.cpp.
References addContextEdges(), clang::C, E, getLengthOnSingleLine(), clang::LocationContext::getParentMap(), getStmtParent(), isConditionForTerminator(), clang::ParentMap::isConsumedExpr(), isIncrementOrInitInForLoop(), lexicalContains(), optimizeEdges(), removeContextCycles(), removeIdenticalEvents(), removePunyEdges(), simplifySimpleBranches(), and SM.
Referenced by optimizeEdges().
|
static |
Insert all lines participating in the function signature Signature into ExecutedLines.
Definition at line 3171 of file BugReporter.cpp.
References clang::SourceRange::getBegin(), clang::Decl::getBody(), clang::SourceRange::getEnd(), clang::Stmt::getSourceRange(), clang::SourceLocation::isValid(), clang::Line, and SM.
Referenced by findExecutedLines().
|
static |
Definition at line 3196 of file BugReporter.cpp.
References clang::ento::DefinedSVal::isValid(), and SM.
Referenced by findExecutedLines().
|
static |
Eliminate two-edge cycles created by addContextEdges().
Once all the context edges are in place, there are plenty of cases where there's a single edge from a top-level statement to a subexpression, followed by a single path note, and then a reverse edge to get back out to the top level. If the statement is simple enough, the subexpression edges just add noise and make it harder to understand what's going on.
This function only removes edges in pairs, because removing only one edge might leave other edges dangling.
This will not remove edges in more complicated situations:
Definition at line 1635 of file BugReporter.cpp.
References E, getLengthOnSingleLine(), Path, and SM.
Referenced by optimizeEdges().
|
static |
Remove edges in and out of C++ default initializer expressions.
These are for fields that have in-class initializers, as opposed to being initialized explicitly in a constructor or braced list.
Definition at line 539 of file BugReporter.cpp.
References clang::C, clang::ento::CF, E, and removeEdgesToDefaultInitializers().
Referenced by removeEdgesToDefaultInitializers().
|
static |
|
static |
Remove all pieces with invalid locations as these cannot be serialized.
We might have pieces with invalid locations as a result of inlining Body Farm generated functions.
Definition at line 573 of file BugReporter.cpp.
References clang::C, E, and removePiecesWithInvalidLocations().
Referenced by removePiecesWithInvalidLocations().
|
static |
Same logic as above to remove extra pieces.
Definition at line 487 of file BugReporter.cpp.
References Path.
|
static |
Definition at line 1700 of file BugReporter.cpp.
References E, clang::Stmt::getBeginLoc(), getLengthOnSingleLine(), clang::ParentMap::getParent(), isConditionForTerminator(), and SM.
Referenced by optimizeEdges().
|
static |
An optimization pass over PathPieces that removes redundant diagnostics generated by both ConditionBRVisitor and TrackConstraintBRVisitor.
Both BugReporterVisitors use different methods to generate diagnostics, with one capable of emitting diagnostics in some cases but not in others. This can lead to redundant diagnostic pieces at the same point in a path.
Definition at line 384 of file BugReporter.cpp.
References clang::ento::PathDiagnosticPiece::Call, clang::ento::PathDiagnosticPiece::ControlFlow, clang::ento::PathDiagnosticPiece::Event, eventsDescribeSameCondition(), clang::ento::PathDiagnosticPiece::Macro, clang::ento::PathDiagnosticPiece::Note, clang::ento::PathDiagnosticPiece::PopUp, and removeRedundantMsgs().
Referenced by removeRedundantMsgs().
|
static |
Recursively scan through a path and prune out calls and macros pieces that aren't needed.
Return true if afterwards the path contains "interesting stuff" which means it shouldn't be pruned from the parent path.
Definition at line 434 of file BugReporter.cpp.
References clang::C, clang::ento::PathDiagnosticPiece::Call, clang::ento::PathDiagnosticPiece::ControlFlow, clang::ento::PathDiagnosticPiece::Event, clang::ento::PathSensitiveBugReport::isInteresting(), clang::ento::PathDiagnosticPiece::Macro, clang::ento::PathDiagnosticPiece::Note, clang::ento::PathDiagnosticPiece::PopUp, and removeUnneededCalls().
Referenced by removeUnneededCalls().
|
static |
Definition at line 3287 of file BugReporter.cpp.
References clang::ento::PathDiagnostic::appendToDesc(), clang::ento::PathDiagnosticCallPiece::getCallee(), clang::ento::PathDiagnosticCallPiece::getCaller(), getFirstStackedCallToHeaderFile(), clang::ento::PathDiagnosticPiece::getLocation(), clang::ento::PathDiagnosticCallPiece::getLocation(), clang::ento::PathDiagnosticLocation::getManager(), clang::ento::PathDiagnostic::path, clang::ento::PathDiagnosticPiece::setAsLastInMainSourceFile(), clang::ento::PathDiagnostic::setDeclWithIssue(), and clang::ento::PathDiagnostic::setLocation().
|
static |
Move edges from a branch condition to a branch target when the condition is simple.
This restructures some of the work of addContextEdges. That function creates edges this may destroy, but they work together to create a more aesthetically set of edges around branches. After the call to addContextEdges, we may have (1) an edge to the branch, (2) an edge from the branch to the branch condition, and (3) an edge from the branch condition to the branch target. We keep (1), but may wish to remove (2) and move the source of (3) to the branch if the branch condition is simple.
Definition at line 1515 of file BugReporter.cpp.
References E, clang::ento::PathDiagnosticControlFlowPiece::getEndLocation(), clang::ento::PathDiagnosticControlFlowPiece::getStartLocation(), clang::ento::PathDiagnosticLocation::getStmtOrNull(), clang::isa(), isConditionForTerminator(), clang::ento::PathDiagnosticControlFlowPiece::setStartLocation(), StrEnteringLoop, StrLoopBodyZero, StrLoopCollectionEmpty, and StrLoopRangeEmpty.
Referenced by optimizeEdges().
| STATISTIC | ( | MaxBugClassSize | , |
| "The maximum number of bug reports in the same equivalence class" | |||
| ) |
| STATISTIC | ( | MaxValidBugClassSize | , |
| "The maximum number of bug reports in the same equivalence class " "where at least one report is valid (not suppressed)" | |||
| ) |
| STATISTIC | ( | NumTimesReportEQClassAborted | , |
| "Number of times a report equivalence class was aborted by the Z3 " "oracle heuristic" | |||
| ) |
| STATISTIC | ( | NumTimesReportEQClassWasExhausted | , |
| "Number of times all reports of an equivalence class was refuted" | |||
| ) |
| STATISTIC | ( | NumTimesReportPassesZ3 | , |
| "Number of reports passed Z3" | |||
| ) |
| STATISTIC | ( | NumTimesReportRefuted | , |
| "Number of reports refuted by Z3" | |||
| ) |
|
static |
Populate executes lines with lines containing at least one diagnostics.
Definition at line 1975 of file BugReporter.cpp.
References clang::ento::PathPieces::flatten(), clang::ento::PathDiagnostic::getExecutedLines(), clang::FileID::isValid(), P, and clang::ento::PathDiagnostic::path.
|
constexpr |
Definition at line 1125 of file BugReporter.cpp.
Referenced by simplifySimpleBranches().
|
constexpr |
Definition at line 1126 of file BugReporter.cpp.
Referenced by simplifySimpleBranches().
|
constexpr |
Definition at line 1129 of file BugReporter.cpp.
Referenced by simplifySimpleBranches().
|
constexpr |
Definition at line 1127 of file BugReporter.cpp.
Referenced by simplifySimpleBranches().
1.9.6