doxygen/UncheckedOptionalAccessModel_8h_source.html

//===-- UncheckedOptionalAccessModel.h --------------------------*- C++ -*-===//

//

// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.

// See https://llvm.org/LICENSE.txt for license information.

// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception

//

//===----------------------------------------------------------------------===//

//

//  This file defines a dataflow analysis that detects unsafe uses of optional

//  values.

//

//===----------------------------------------------------------------------===//


#ifndef CLANG_ANALYSIS_FLOWSENSITIVE_MODELS_UNCHECKEDOPTIONALACCESSMODEL_H

#define CLANG_ANALYSIS_FLOWSENSITIVE_MODELS_UNCHECKEDOPTIONALACCESSMODEL_H


#include "clang/AST/ASTContext.h"

#include "clang/Analysis/CFG.h"

#include "clang/Analysis/FlowSensitive/CFGMatchSwitch.h"

#include "clang/Analysis/FlowSensitive/CachedConstAccessorsLattice.h"

#include "clang/Analysis/FlowSensitive/DataflowAnalysis.h"

#include "clang/Analysis/FlowSensitive/DataflowEnvironment.h"

#include "clang/Analysis/FlowSensitive/MatchSwitch.h"

#include "clang/Analysis/FlowSensitive/NoopLattice.h"

#include "clang/Basic/SourceLocation.h"

#include "llvm/ADT/SmallVector.h"


namespace clang {

namespace dataflow {


// FIXME: Explore using an allowlist-approach, where constructs supported by the

// analysis are always enabled and additional constructs are enabled through the

// `Options`.


struct UncheckedOptionalAccessModelOptions {

  /// In generating diagnostics, ignore optionals reachable through overloaded

  /// `operator*` or `operator->` (other than those of the optional type

  /// itself). The analysis does not equate the results of such calls, so it

  /// can't identify when their results are used safely (across calls),

  /// resulting in false positives in all such cases. Note: this option does not

  /// cover access through `operator[]`.

  ///

  /// FIXME: we now cache and equate the result of const accessors

  /// that look like unique_ptr, have both `->` (returning a pointer type) and

  /// `*` (returning a reference type). This includes mixing `->` and

  /// `*` in a sequence of calls as long as the object is not modified. Once we

  /// are confident in this const accessor caching, we shouldn't need the

  /// IgnoreSmartPointerDereference option anymore.

  bool IgnoreSmartPointerDereference = false;

};


using UncheckedOptionalAccessLattice = CachedConstAccessorsLattice<NoopLattice>;


/// Dataflow analysis that models whether optionals hold values or not.

///

/// Models the `std::optional`, `absl::optional`, and `base::Optional` types.


class UncheckedOptionalAccessModel

    : public DataflowAnalysis<UncheckedOptionalAccessModel,

                              UncheckedOptionalAccessLattice> {

public:

  UncheckedOptionalAccessModel(ASTContext &Ctx, dataflow::Environment &Env);


  /// Returns a matcher for the optional classes covered by this model.

  static ast_matchers::DeclarationMatcher optionalClassDecl();


  static UncheckedOptionalAccessLattice initialElement() { return {}; }


  void transfer(const CFGElement &Elt, UncheckedOptionalAccessLattice &L,

                Environment &Env);


private:

  CFGMatchSwitch<TransferState<UncheckedOptionalAccessLattice>>

      TransferMatchSwitch;

};


/// Diagnostic information for an unchecked optional access.


struct UncheckedOptionalAccessDiagnostic {

  CharSourceRange Range;

};


class UncheckedOptionalAccessDiagnoser {

public:

  UncheckedOptionalAccessDiagnoser(

      UncheckedOptionalAccessModelOptions Options = {});


  llvm::SmallVector<UncheckedOptionalAccessDiagnostic>


  operator()(const CFGElement &Elt, ASTContext &Ctx,

             const TransferStateForDiagnostics<UncheckedOptionalAccessLattice>

                 &State) {

    return DiagnoseMatchSwitch(Elt, Ctx, State.Env);

  }


private:

  CFGMatchSwitch<const Environment,

                 llvm::SmallVector<UncheckedOptionalAccessDiagnostic>>

      DiagnoseMatchSwitch;

};


} // namespace dataflow

} // namespace clang


#endif // CLANG_ANALYSIS_FLOWSENSITIVE_MODELS_UNCHECKEDOPTIONALACCESSMODEL_H

ASTContext.h
Defines the clang::ASTContext interface.

CFGMatchSwitch.h

CFG.h

CachedConstAccessorsLattice.h

DataflowAnalysis.h

DataflowEnvironment.h

MatchSwitch.h

NoopLattice.h

SourceLocation.h
Defines the clang::SourceLocation class and associated facilities.

clang::ASTContext
Holds long-lived AST nodes (such as types and decls) that can be referred to throughout the semantic ...
Definition ASTContext.h:188

clang::CFGElement
Represents a top-level expression in a basic block.
Definition CFG.h:55

clang::CharSourceRange
Represents a character-granular source range.
Definition SourceLocation.h:258

clang::dataflow::CachedConstAccessorsLattice
A mixin for a lattice that additionally maintains a cache of stable method call return values to mode...
Definition CachedConstAccessorsLattice.h:50

clang::dataflow::DataflowAnalysis< UncheckedOptionalAccessModel, UncheckedOptionalAccessLattice >::DataflowAnalysis
DataflowAnalysis(ASTContext &Context)
Definition DataflowAnalysis.h:85

clang::dataflow::Environment
Holds the state of the program (store and heap) at a given program point.
Definition DataflowEnvironment.h:65

clang::dataflow::UncheckedOptionalAccessDiagnoser::UncheckedOptionalAccessDiagnoser
UncheckedOptionalAccessDiagnoser(UncheckedOptionalAccessModelOptions Options={})
Definition UncheckedOptionalAccessModel.cpp:1208

clang::dataflow::UncheckedOptionalAccessDiagnoser::operator()
llvm::SmallVector< UncheckedOptionalAccessDiagnostic > operator()(const CFGElement &Elt, ASTContext &Ctx, const TransferStateForDiagnostics< UncheckedOptionalAccessLattice > &State)
Definition UncheckedOptionalAccessModel.h:86

clang::dataflow::UncheckedOptionalAccessModel::UncheckedOptionalAccessModel
UncheckedOptionalAccessModel(ASTContext &Ctx, dataflow::Environment &Env)
Definition UncheckedOptionalAccessModel.cpp:1185

clang::dataflow::UncheckedOptionalAccessModel::transfer
void transfer(const CFGElement &Elt, UncheckedOptionalAccessLattice &L, Environment &Env)
Definition UncheckedOptionalAccessModel.cpp:1201

clang::dataflow::UncheckedOptionalAccessModel::initialElement
static UncheckedOptionalAccessLattice initialElement()
Definition UncheckedOptionalAccessModel.h:65

clang::dataflow::UncheckedOptionalAccessModel::optionalClassDecl
static ast_matchers::DeclarationMatcher optionalClassDecl()
Returns a matcher for the optional classes covered by this model.
Definition UncheckedOptionalAccessModel.cpp:1181

llvm::SmallVector
Definition LLVM.h:35

clang::ast_matchers::DeclarationMatcher
internal::Matcher< Decl > DeclarationMatcher
Types of matchers for the top-level classes in the AST class hierarchy.
Definition ASTMatchers.h:145

clang::dataflow
Dataflow Directional Tag Classes.
Definition AdornedCFG.h:29

clang::dataflow::UncheckedOptionalAccessLattice
CachedConstAccessorsLattice< NoopLattice > UncheckedOptionalAccessLattice
Definition UncheckedOptionalAccessModel.h:51

clang::dataflow::CFGMatchSwitch
std::function< Result(const CFGElement &, ASTContext &, State &)> CFGMatchSwitch
Definition CFGMatchSwitch.h:33

clang
The JSON file list parser is used to communicate input to InstallAPI.
Definition CalledOnceCheck.h:17

clang::dataflow::TransferStateForDiagnostics
A read-only version of TransferState.
Definition MatchSwitch.h:55

clang::dataflow::UncheckedOptionalAccessDiagnostic
Diagnostic information for an unchecked optional access.
Definition UncheckedOptionalAccessModel.h:76

clang::dataflow::UncheckedOptionalAccessDiagnostic::Range
CharSourceRange Range
Definition UncheckedOptionalAccessModel.h:77

clang::dataflow::UncheckedOptionalAccessModelOptions
Definition UncheckedOptionalAccessModel.h:34

clang::dataflow::UncheckedOptionalAccessModelOptions::IgnoreSmartPointerDereference
bool IgnoreSmartPointerDereference
In generating diagnostics, ignore optionals reachable through overloaded operator* or operator-> (oth...
Definition UncheckedOptionalAccessModel.h:48