doxygen/UncheckedOptionalAccessModel_8h_source.html

//===-- UncheckedOptionalAccessModel.h --------------------------*- C++ -*-===//

//

// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.

// See https://llvm.org/LICENSE.txt for license information.

// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception

//

//===----------------------------------------------------------------------===//

//

//  This file defines a dataflow analysis that detects unsafe uses of optional

//  values.

//

//===----------------------------------------------------------------------===//


#ifndef CLANG_ANALYSIS_FLOWSENSITIVE_MODELS_UNCHECKEDOPTIONALACCESSMODEL_H

#define CLANG_ANALYSIS_FLOWSENSITIVE_MODELS_UNCHECKEDOPTIONALACCESSMODEL_H


#include "clang/AST/ASTContext.h"

#include "clang/Analysis/CFG.h"

#include "clang/Analysis/FlowSensitive/CFGMatchSwitch.h"

#include "clang/Analysis/FlowSensitive/DataflowAnalysis.h"

#include "clang/Analysis/FlowSensitive/DataflowEnvironment.h"

#include "clang/Analysis/FlowSensitive/NoopLattice.h"

#include "clang/Basic/SourceLocation.h"

#include <vector>


namespace clang {

namespace dataflow {


// FIXME: Explore using an allowlist-approach, where constructs supported by the

// analysis are always enabled and additional constructs are enabled through the

// `Options`.

struct UncheckedOptionalAccessModelOptions {

  /// In generating diagnostics, ignore optionals reachable through overloaded

  /// `operator*` or `operator->` (other than those of the optional type

  /// itself). The analysis does not equate the results of such calls, so it

  /// can't identify when their results are used safely (across calls),

  /// resulting in false positives in all such cases. Note: this option does not

  /// cover access through `operator[]`.

  bool IgnoreSmartPointerDereference = false;

};


/// Dataflow analysis that models whether optionals hold values or not.

///

/// Models the `std::optional`, `absl::optional`, and `base::Optional` types.

class UncheckedOptionalAccessModel

    : public DataflowAnalysis<UncheckedOptionalAccessModel, NoopLattice> {

public:

  UncheckedOptionalAccessModel(ASTContext &Ctx);


  /// Returns a matcher for the optional classes covered by this model.

  static ast_matchers::DeclarationMatcher optionalClassDecl();


  static NoopLattice initialElement() { return {}; }


  void transfer(const CFGElement &Elt, NoopLattice &L, Environment &Env);


  ComparisonResult compare(QualType Type, const Value &Val1,

                           const Environment &Env1, const Value &Val2,

                           const Environment &Env2) override;


  bool merge(QualType Type, const Value &Val1, const Environment &Env1,

             const Value &Val2, const Environment &Env2, Value &MergedVal,

             Environment &MergedEnv) override;


  Value *widen(QualType Type, Value &Prev, const Environment &PrevEnv,

               Value &Current, Environment &CurrentEnv) override;


private:

  CFGMatchSwitch<TransferState<NoopLattice>> TransferMatchSwitch;

};


class UncheckedOptionalAccessDiagnoser {

public:

  UncheckedOptionalAccessDiagnoser(

      UncheckedOptionalAccessModelOptions Options = {});


  std::vector<SourceLocation> diagnose(ASTContext &Ctx, const CFGElement *Elt,

                                       const Environment &Env);


private:

  CFGMatchSwitch<const Environment, std::vector<SourceLocation>>

      DiagnoseMatchSwitch;

};


} // namespace dataflow

} // namespace clang


#endif // CLANG_ANALYSIS_FLOWSENSITIVE_MODELS_UNCHECKEDOPTIONALACCESSMODEL_H

ASTContext.h
Defines the clang::ASTContext interface.

CFGMatchSwitch.h

CFG.h

DataflowAnalysis.h

DataflowEnvironment.h

Env
const Environment & Env
Definition: HTMLLogger.cpp:170

NoopLattice.h

SourceLocation.h
Defines the clang::SourceLocation class and associated facilities.

clang::ASTContext
Holds long-lived AST nodes (such as types and decls) that can be referred to throughout the semantic ...
Definition: ASTContext.h:182

clang::CFGElement
Represents a top-level expression in a basic block.
Definition: CFG.h:54

clang::QualType
A (possibly-)qualified type.
Definition: Type.h:736

clang::Type
The base class of the type hierarchy.
Definition: Type.h:1568

clang::dataflow::DataflowAnalysis
Base class template for dataflow analyses built on a single lattice type.
Definition: DataflowAnalysis.h:76

clang::dataflow::Environment
Holds the state of the program (store and heap) at a given program point.
Definition: DataflowEnvironment.h:64

clang::dataflow::NoopLattice
Trivial lattice for dataflow analysis with exactly one element.
Definition: NoopLattice.h:25

clang::dataflow::UncheckedOptionalAccessDiagnoser
Definition: UncheckedOptionalAccessModel.h:72

clang::dataflow::UncheckedOptionalAccessDiagnoser::diagnose
std::vector< SourceLocation > diagnose(ASTContext &Ctx, const CFGElement *Elt, const Environment &Env)
Definition: UncheckedOptionalAccessModel.cpp:1007

clang::dataflow::UncheckedOptionalAccessModel
Dataflow analysis that models whether optionals hold values or not.
Definition: UncheckedOptionalAccessModel.h:46

clang::dataflow::UncheckedOptionalAccessModel::compare
ComparisonResult compare(QualType Type, const Value &Val1, const Environment &Env1, const Value &Val2, const Environment &Env2) override
Returns: Same: Val1 is equivalent to Val2, according to the model.
Definition: UncheckedOptionalAccessModel.cpp:934

clang::dataflow::UncheckedOptionalAccessModel::merge
bool merge(QualType Type, const Value &Val1, const Environment &Env1, const Value &Val2, const Environment &Env2, Value &MergedVal, Environment &MergedEnv) override
Modifies MergedVal to approximate both Val1 and Val2.
Definition: UncheckedOptionalAccessModel.cpp:953

clang::dataflow::UncheckedOptionalAccessModel::transfer
void transfer(const CFGElement &Elt, NoopLattice &L, Environment &Env)
Definition: UncheckedOptionalAccessModel.cpp:928

clang::dataflow::UncheckedOptionalAccessModel::widen
Value * widen(QualType Type, Value &Prev, const Environment &PrevEnv, Value &Current, Environment &CurrentEnv) override
This function may widen the current value – replace it with an approximation that can reach a fixed p...
Definition: UncheckedOptionalAccessModel.cpp:978

clang::dataflow::UncheckedOptionalAccessModel::initialElement
static NoopLattice initialElement()
Definition: UncheckedOptionalAccessModel.h:53

clang::dataflow::UncheckedOptionalAccessModel::optionalClassDecl
static ast_matchers::DeclarationMatcher optionalClassDecl()
Returns a matcher for the optional classes covered by this model.
Definition: UncheckedOptionalAccessModel.cpp:920

clang::dataflow::Value
Base class for all values computed by abstract interpretation.
Definition: Value.h:33

clang::ast_matchers::DeclarationMatcher
internal::Matcher< Decl > DeclarationMatcher
Types of matchers for the top-level classes in the AST class hierarchy.
Definition: ASTMatchers.h:142

clang::dataflow::ComparisonResult
ComparisonResult
Indicates the result of a tentative comparison.
Definition: DataflowEnvironment.h:52

clang::dataflow::CFGMatchSwitch
std::function< Result(const CFGElement &, ASTContext &, State &)> CFGMatchSwitch
Definition: CFGMatchSwitch.h:34

clang
Definition: CalledOnceCheck.h:17

clang::dataflow::UncheckedOptionalAccessModelOptions
Definition: UncheckedOptionalAccessModel.h:32

clang::dataflow::UncheckedOptionalAccessModelOptions::IgnoreSmartPointerDereference
bool IgnoreSmartPointerDereference
In generating diagnostics, ignore optionals reachable through overloaded operator* or operator-> (oth...
Definition: UncheckedOptionalAccessModel.h:39