Home Explore Help
Register Sign In
FangSoftSoft
/
clang
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 04291a7c76
Branches Tags
clang
/
lib
/
StaticAnalyzer
/
Checkers
/
UndefinedAssignmentChecker.cpp

UndefinedAssignmentChecker.cpp 2.6 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. //===--- UndefinedAssignmentChecker.h ---------------------------*- C++ -*--==//
    2. 

  2. //
    3. 

  3. //                     The LLVM Compiler Infrastructure
    4. 

  4. //
    5. 

  5. // This file is distributed under the University of Illinois Open Source
    6. 

  6. // License. See LICENSE.TXT for details.
    7. 

  7. //
    8. 

  8. //===----------------------------------------------------------------------===//
    9. 

  9. //
    10. 

  10. // This defines UndefinedAssginmentChecker, a builtin check in ExprEngine that
    11. 

  11. // checks for assigning undefined values.
    12. 

  12. //
    13. 

  13. //===----------------------------------------------------------------------===//
    14. 

  14. 

  15. #include "InternalChecks.h"
    16. 

  16. #include "clang/StaticAnalyzer/BugReporter/BugType.h"
    17. 

  17. #include "clang/StaticAnalyzer/PathSensitive/CheckerVisitor.h"
    18. 

  18. 

  19. using namespace clang;
    20. 

  20. using namespace ento;
    21. 

  21. 

  22. namespace {
    23. 

  23. class UndefinedAssignmentChecker
    24. 

  24.   : public CheckerVisitor<UndefinedAssignmentChecker> {
    25. 

  25.   BugType *BT;
    26. 

  26. public:
    27. 

  27.   UndefinedAssignmentChecker() : BT(0) {}
    28. 

  28.   static void *getTag();
    29. 

  29.   virtual void PreVisitBind(CheckerContext &C, const Stmt *StoreE,
    30. 

  30.                             SVal location, SVal val);
    31. 

  31. };
    32. 

  32. }
    33. 

  33. 

  34. void ento::RegisterUndefinedAssignmentChecker(ExprEngine &Eng){
    35. 

  35.   Eng.registerCheck(new UndefinedAssignmentChecker());
    36. 

  36. }
    37. 

  37. 

  38. void *UndefinedAssignmentChecker::getTag() {
    39. 

  39.   static int x = 0;
    40. 

  40.   return &x;
    41. 

  41. }
    42. 

  42. 

  43. void UndefinedAssignmentChecker::PreVisitBind(CheckerContext &C,
    44. 

  44.                                               const Stmt *StoreE,
    45. 

  45.                                               SVal location,
    46. 

  46.                                               SVal val) {
    47. 

  47.   if (!val.isUndef())
    48. 

  48.     return;
    49. 

  49. 

  50.   ExplodedNode *N = C.generateSink();
    51. 

  51. 

  52.   if (!N)
    53. 

  53.     return;
    54. 

  54. 

  55.   const char *str = "Assigned value is garbage or undefined";
    56. 

  56. 

  57.   if (!BT)
    58. 

  58.     BT = new BuiltinBug(str);
    59. 

  59. 

  60.   // Generate a report for this bug.
    61. 

  61.   const Expr *ex = 0;
    62. 

  62. 

  63.   while (StoreE) {
    64. 

  64.     if (const BinaryOperator *B = dyn_cast<BinaryOperator>(StoreE)) {
    65. 

  65.       if (B->isCompoundAssignmentOp()) {
    66. 

  66.         const GRState *state = C.getState();
    67. 

  67.         if (state->getSVal(B->getLHS()).isUndef()) {
    68. 

  68.           str = "The left expression of the compound assignment is an "
    69. 

  69.                 "uninitialized value. The computed value will also be garbage";
    70. 

  70.           ex = B->getLHS();
    71. 

  71.           break;
    72. 

  72.         }
    73. 

  73.       }
    74. 

  74. 

  75.       ex = B->getRHS();
    76. 

  76.       break;
    77. 

  77.     }
    78. 

  78. 

  79.     if (const DeclStmt *DS = dyn_cast<DeclStmt>(StoreE)) {
    80. 

  80.       const VarDecl* VD = dyn_cast<VarDecl>(DS->getSingleDecl());
    81. 

  81.       ex = VD->getInit();
    82. 

  82.     }
    83. 

  83. 

  84.     break;
    85. 

  85.   }
    86. 

  86. 

  87.   EnhancedBugReport *R = new EnhancedBugReport(*BT, str, N);
    88. 

  88.   if (ex) {
    89. 

  89.     R->addRange(ex->getSourceRange());
    90. 

  90.     R->addVisitorCreator(bugreporter::registerTrackNullOrUndefValue, ex);
    91. 

  91.   }
    92. 

  92.   C.EmitReport(R);
    93. 

  93. }
    94. 

  94.