doxygen/CheckerContext_8cpp_source.html

 //== CheckerContext.cpp - Context info for path-sensitive checkers-----------=//
 //
 //                     The LLVM Compiler Infrastructure
 //
 // This file is distributed under the University of Illinois Open Source
 // License. See LICENSE.TXT for details.
 //
 //===----------------------------------------------------------------------===//
 //
 //  This file defines CheckerContext that provides contextual info for
 //  path-sensitive checkers.
 //
 //===----------------------------------------------------------------------===//

 #include "clang/StaticAnalyzer/Core/PathSensitive/CheckerContext.h"
 #include "clang/Basic/Builtins.h"
 #include "clang/Lex/Lexer.h"

 using namespace clang;
 using namespace ento;

 const FunctionDecl *CheckerContext::getCalleeDecl(const CallExpr *CE) const {
   const Expr *Callee = CE->getCallee();
   SVal L = Pred->getSVal(Callee);
   return L.getAsFunctionDecl();
 }

 StringRef CheckerContext::getCalleeName(const FunctionDecl *FunDecl) const {
   if (!FunDecl)
     return StringRef();
   IdentifierInfo *funI = FunDecl->getIdentifier();
   if (!funI)
     return StringRef();
   return funI->getName();
 }

 StringRef CheckerContext::getDeclDescription(const Decl *D) {
   if (isa<ObjCMethodDecl>(D) || isa<CXXMethodDecl>(D))
     return "method";
   if (isa<BlockDecl>(D))
     return "anonymous block";
   return "function";
 }

 bool CheckerContext::isCLibraryFunction(const FunctionDecl *FD,
                                         StringRef Name) {
   // To avoid false positives (Ex: finding user defined functions with
   // similar names), only perform fuzzy name matching when it's a builtin.
   // Using a string compare is slow, we might want to switch on BuiltinID here.
   unsigned BId = FD->getBuiltinID();
   if (BId != 0) {
     if (Name.empty())
       return true;
     StringRef BName = FD->getASTContext().BuiltinInfo.getName(BId);
     if (BName.find(Name) != StringRef::npos)
       return true;
   }

   const IdentifierInfo *II = FD->getIdentifier();
   // If this is a special C++ name without IdentifierInfo, it can't be a
   // C library function.
   if (!II)
     return false;

   // Look through 'extern "C"' and anything similar invented in the future.
   // If this function is not in TU directly, it is not a C library function.
   if (!FD->getDeclContext()->getRedeclContext()->isTranslationUnit())
     return false;

   // If this function is not externally visible, it is not a C library function.
   // Note that we make an exception for inline functions, which may be
   // declared in header files without external linkage.
   if (!FD->isInlined() && !FD->isExternallyVisible())
     return false;

   if (Name.empty())
     return true;

   StringRef FName = II->getName();
   if (FName.equals(Name))
     return true;

   if (FName.startswith("__inline") && (FName.find(Name) != StringRef::npos))
     return true;

   if (FName.startswith("__") && FName.endswith("_chk") &&
       FName.find(Name) != StringRef::npos)
     return true;

   return false;
 }

 StringRef CheckerContext::getMacroNameOrSpelling(SourceLocation &Loc) {
   if (Loc.isMacroID())
     return Lexer::getImmediateMacroName(Loc, getSourceManager(),
                                              getLangOpts());
   SmallVector<char, 16> buf;
   return Lexer::getSpelling(Loc, buf, getSourceManager(), getLangOpts());
 }

 /// Evaluate comparison and return true if it's known that condition is true
 static bool evalComparison(SVal LHSVal, BinaryOperatorKind ComparisonOp,
                            SVal RHSVal, ProgramStateRef State) {
   if (LHSVal.isUnknownOrUndef())
     return false;
   ProgramStateManager &Mgr = State->getStateManager();
   if (!LHSVal.getAs<NonLoc>()) {
     LHSVal = Mgr.getStoreManager().getBinding(State->getStore(),
                                               LHSVal.castAs<Loc>());
     if (LHSVal.isUnknownOrUndef() || !LHSVal.getAs<NonLoc>())
       return false;
   }

   SValBuilder &Bldr = Mgr.getSValBuilder();
   SVal Eval = Bldr.evalBinOp(State, ComparisonOp, LHSVal, RHSVal,
                              Bldr.getConditionType());
   if (Eval.isUnknownOrUndef())
     return false;
   ProgramStateRef StTrue, StFalse;
   std::tie(StTrue, StFalse) = State->assume(Eval.castAs<DefinedSVal>());
   return StTrue && !StFalse;
 }

 bool CheckerContext::isGreaterOrEqual(const Expr *E, unsigned long long Val) {
   DefinedSVal V = getSValBuilder().makeIntVal(Val, getASTContext().LongLongTy);
   return evalComparison(getSVal(E), BO_GE, V, getState());
 }

 bool CheckerContext::isNegative(const Expr *E) {
   DefinedSVal V = getSValBuilder().makeIntVal(0, false);
   return evalComparison(getSVal(E), BO_LT, V, getState());
 }
clang::ento::DefinedSVal
Definition: SVals.h:260

ento

clang::Lexer::getSpelling
static unsigned getSpelling(const Token &Tok, const char *&Buffer, const SourceManager &SourceMgr, const LangOptions &LangOpts, bool *Invalid=nullptr)
getSpelling - This method is used to get the spelling of a token into a preallocated buffer...
Definition: Lexer.cpp:389

clang::FunctionDecl
Represents a function declaration or definition.
Definition: Decl.h:1717

clang::ento::SValBuilder::makeIntVal
nonloc::ConcreteInt makeIntVal(const IntegerLiteral *integer)
Definition: SValBuilder.h:279

clang::Decl
Decl - This represents one declaration (or definition), e.g.
Definition: DeclBase.h:87

clang::ento::ProgramStateRef
IntrusiveRefCntPtr< const ProgramState > ProgramStateRef
Definition: ProgramState_Fwd.h:38

clang::ento::CheckerContext::getDeclDescription
StringRef getDeclDescription(const Decl *D)
Returns the word that should be used to refer to the declaration in the report.
Definition: CheckerContext.cpp:37

clang::ento::CheckerContext::getCalleeDecl
const FunctionDecl * getCalleeDecl(const CallExpr *CE) const
Get the declaration of the called function (path-sensitive).
Definition: CheckerContext.cpp:22

clang::ento::CheckerContext::getSVal
SVal getSVal(const Stmt *S) const
Get the value of arbitrary expressions at this point in the path.
Definition: CheckerContext.h:191

clang::NamedDecl::getIdentifier
IdentifierInfo * getIdentifier() const
Get the identifier that names this declaration, if there is one.
Definition: Decl.h:269

clang::ento::CheckerContext::getCalleeName
StringRef getCalleeName(const FunctionDecl *FunDecl) const
Get the name of the called function (path-sensitive).
Definition: CheckerContext.cpp:28

clang::IdentifierInfo
One of these records is kept for each identifier that is lexed.
Definition: IdentifierTable.h:58

clang::ento::CheckerContext::isGreaterOrEqual
bool isGreaterOrEqual(const Expr *E, unsigned long long Val)
Returns true if the value of E is greater than or equal to Val under unsigned comparison.
Definition: CheckerContext.cpp:124

State
LineState State
Definition: UnwrappedLineFormatter.cpp:877

clang::BinaryOperatorKind
BinaryOperatorKind
Definition: OperationKinds.h:26

clang::Builtin::Context::getName
const char * getName(unsigned ID) const
Return the identifier name for the specified builtin, e.g.
Definition: Builtins.h:86

clang::Expr
This represents one expression.
Definition: Expr.h:105

clang::ento::CheckerContext::isCLibraryFunction
static bool isCLibraryFunction(const FunctionDecl *FD, StringRef Name=StringRef())
Returns true if the callee is an externally-visible function in the top-level namespace, such as malloc.
Definition: CheckerContext.cpp:45

clang::CallExpr::getCallee
const Expr * getCallee() const
Definition: Expr.h:2325

clang::Decl::getDeclContext
DeclContext * getDeclContext()
Definition: DeclBase.h:427

Lexer.h

clang::ento::Loc
Definition: SVals.h:318

clang::SourceLocation
Encodes a location in the source.
Definition: SourceLocation.h:88

evalComparison
static bool evalComparison(SVal LHSVal, BinaryOperatorKind ComparisonOp, SVal RHSVal, ProgramStateRef State)
Evaluate comparison and return true if it&#39;s known that condition is true.
Definition: CheckerContext.cpp:102

clang::Decl::getASTContext
ASTContext & getASTContext() const LLVM_READONLY
Definition: DeclBase.cpp:376

clang::ento::SVal
SVal - This represents a symbolic expression, which can be either an L-value or an R-value...
Definition: SVals.h:76

llvm::SmallVector
Definition: LLVM.h:36

clang::ento::ExplodedNode::getSVal
SVal getSVal(const Stmt *S) const
Get the value of an arbitrary expression at this node.
Definition: ExplodedGraph.h:172

clang::Lexer::getImmediateMacroName
static StringRef getImmediateMacroName(SourceLocation Loc, const SourceManager &SM, const LangOptions &LangOpts)
Retrieve the name of the immediate macro expansion.
Definition: Lexer.cpp:968

clang::IdentifierInfo::getName
StringRef getName() const
Return the actual identifier string.
Definition: IdentifierTable.h:168

clang
Dataflow Directional Tag Classes.
Definition: CFGReachabilityAnalysis.h:22

clang::ento::CheckerContext::getASTContext
ASTContext & getASTContext()
Definition: CheckerContext.h:130

clang::ento::CheckerContext::getMacroNameOrSpelling
StringRef getMacroNameOrSpelling(SourceLocation &Loc)
Depending on wither the location corresponds to a macro, return either the macro name or the token sp...
Definition: CheckerContext.cpp:93

clang::SourceLocation::isMacroID
bool isMacroID() const
Definition: SourceLocation.h:101

clang::ento::SVal::getAsFunctionDecl
const FunctionDecl * getAsFunctionDecl() const
getAsFunctionDecl - If this SVal is a MemRegionVal and wraps a CodeTextRegion wrapping a FunctionDecl...
Definition: SVals.cpp:63

clang::ento::CheckerContext::getState
const ProgramStateRef & getState() const
Definition: CheckerContext.h:118

clang::DeclContext::getRedeclContext
DeclContext * getRedeclContext()
getRedeclContext - Retrieve the context in which an entity conflicts with other entities of the same ...
Definition: DeclBase.cpp:1701

clang::FunctionDecl::isInlined
bool isInlined() const
Determine whether this function should be inlined, because it is either marked "inline" or "constexpr...
Definition: Decl.h:2333

clang::ento::CheckerContext::isNegative
bool isNegative(const Expr *E)
Returns true if the value of E is negative.
Definition: CheckerContext.cpp:129

clang::FunctionDecl::getBuiltinID
unsigned getBuiltinID() const
Returns a value indicating whether this function corresponds to a builtin function.
Definition: Decl.cpp:2958

clang::ento::CheckerContext::getSourceManager
SourceManager & getSourceManager()
Definition: CheckerContext.h:153

clang::ASTContext::BuiltinInfo
Builtin::Context & BuiltinInfo
Definition: ASTContext.h:567

clang::ento::CheckerContext::getSValBuilder
SValBuilder & getSValBuilder()
Definition: CheckerContext.h:157

clang::CallExpr
CallExpr - Represents a function call (C99 6.5.2.2, C++ [expr.call]).
Definition: Expr.h:2285

clang::DeclContext::isTranslationUnit
bool isTranslationUnit() const
Definition: DeclBase.h:1829

Builtins.h
Defines enum values for all the target-independent builtin functions.

CheckerContext.h

clang::ento::CheckerContext::getLangOpts
const LangOptions & getLangOpts() const
Definition: CheckerContext.h:134

clang::NamedDecl::isExternallyVisible
bool isExternallyVisible() const
Definition: Decl.h:379