maxjhandsome
/
llvm-project
forked from OSchip/llvm-project
1
0
Fork 0
Code Issues Pull Requests Packages Releases Wiki Activity
llvm-project/clang/test/Analysis/simple-stream-checks.c

92 lines
2.2 KiB
C
Raw Normal View History

Reland 4: [analyzer] NFC: Update test infrastructure to support multiple constraint managers Summary: Replace calls to %clang/%clang_cc1 with %clang_analyze_cc1 when invoking static analyzer, and perform runtime substitution to select the appropriate constraint manager, per D28952. Reviewers: xazax.hun, NoQ, zaks.anna, dcoughlin Subscribers: mgorny, rgov, mikhail.ramalho, a.sidorin, cfe-commits Differential Revision: https://reviews.llvm.org/D30373 llvm-svn: 296895
2017-03-04 02:02:02 +08:00
// RUN: %clang_analyze_cc1 -analyzer-checker=core,alpha.unix.SimpleStream -verify %s
[analyzer] Add SimpleStreamChecker. This is an example checker for catching fopen fclose API misuses. llvm-svn: 166976
2012-10-30 06:51:50 +08:00
[analyzer] Add symbol escapes logic to the SimpleStreamChecker. llvm-svn: 167439
2012-11-06 12:20:57 +08:00
#include "Inputs/system-header-simulator-for-simple-stream.h"
[analyzer] Add SimpleStreamChecker. This is an example checker for catching fopen fclose API misuses. llvm-svn: 166976
2012-10-30 06:51:50 +08:00
void checkDoubleFClose(int *Data) {
FILE *F = fopen("myfile.txt", "w");
if (F != 0) {
fputs ("fopen example", F);
if (!Data)
fclose(F);
else
fputc(*Data, F);
fclose(F); // expected-warning {{Closing a previously closed file stream}}
}
}
int checkLeak(int *Data) {
FILE *F = fopen("myfile.txt", "w");
if (F != 0) {
fputs ("fopen example", F);
}
if (Data) // expected-warning {{Opened file is never closed; potential resource leak}}
return *Data;
else
return 0;
}
void checkLeakFollowedByAssert(int *Data) {
FILE *F = fopen("myfile.txt", "w");
if (F != 0) {
fputs ("fopen example", F);
if (!Data)
exit(0);
fclose(F);
}
}
[analyzer] SimpleStreamChecker - remove evalAssume and other refinements llvm-svn: 167099
2012-10-31 10:32:41 +08:00
void CloseOnlyOnValidFileHandle() {
FILE *F = fopen("myfile.txt", "w");
if (F)
fclose(F);
int x = 0; // no warning
}
[analyzer] Run remove dead on end of path. This will simplify checkers that need to register for leaks. Currently, they have to register for both: check dead and check end of path. I've modified the SymbolReaper to consider everything on the stack dead if the input StackLocationContext is 0. (This is a bit disruptive, so I'd like to flash out all the issues asap.) llvm-svn: 167352
2012-11-03 10:54:20 +08:00
void leakOnEnfOfPath1(int *Data) {
[analyzer] Report leaks at the closing brace of a function body. This fixes a few cases where we'd emit path notes like this: +---+ 1| v p = malloc(len); ^ |2 +---+ In general this should make path notes more consistent and more correct, especially in cases where the leak happens on the false branch of an if that jumps directly to the end of the function. There are a couple places where the leak is reported farther away from the cause; these are usually cases where there are several levels of nested braces before the end of the function. This still matches our current behavior for when there /is/ a statement after all the braces, though. llvm-svn: 168070
2012-11-16 03:11:43 +08:00
FILE *F = fopen("myfile.txt", "w");
} // expected-warning {{Opened file is never closed; potential resource leak}}
[analyzer] Run remove dead on end of path. This will simplify checkers that need to register for leaks. Currently, they have to register for both: check dead and check end of path. I've modified the SymbolReaper to consider everything on the stack dead if the input StackLocationContext is 0. (This is a bit disruptive, so I'd like to flash out all the issues asap.) llvm-svn: 167352
2012-11-03 10:54:20 +08:00
void leakOnEnfOfPath2(int *Data) {
FILE *F = fopen("myfile.txt", "w");
return; // expected-warning {{Opened file is never closed; potential resource leak}}
}
FILE *leakOnEnfOfPath3(int *Data) {
FILE *F = fopen("myfile.txt", "w");
return F;
}
[analyzer] Add symbol escapes logic to the SimpleStreamChecker. llvm-svn: 167439
2012-11-06 12:20:57 +08:00
void myfclose(FILE *F);
void SymbolEscapedThroughFunctionCall() {
FILE *F = fopen("myfile.txt", "w");
myfclose(F);
return; // no warning
}
FILE *GlobalF;
Correcting a typo; NFC. llvm-svn: 299094
2017-03-31 02:11:20 +08:00
void SymbolEscapedThroughAssignmentToGlobal() {
[analyzer] Add symbol escapes logic to the SimpleStreamChecker. llvm-svn: 167439
2012-11-06 12:20:57 +08:00
FILE *F = fopen("myfile.txt", "w");
GlobalF = F;
return; // no warning
}
void SymbolDoesNotEscapeThoughStringAPIs(char *Data) {
FILE *F = fopen("myfile.txt", "w");
fputc(*Data, F);
return; // expected-warning {{Opened file is never closed; potential resource leak}}
}
[analyzer] Add pointer escape type param to checkPointerEscape callback The checkPointerEscape callback previously did not specify how a pointer escaped. This change includes an enum which describes the different ways a pointer may escape. This enum is passed to the checkPointerEscape callback when a pointer escapes. If the escape is due to a function call, the call is passed. This changes previous behavior where the call is passed as NULL if the escape was due to indirectly invalidating the region the pointer referenced. A patch by Branden Archer! llvm-svn: 174677
2013-02-08 07:05:43 +08:00
void passConstPointer(const FILE * F);
void testPassConstPointer() {
FILE *F = fopen("myfile.txt", "w");
passConstPointer(F);
return; // expected-warning {{Opened file is never closed; potential resource leak}}
}
void testPassToSystemHeaderFunctionIndirectly() {
FileStruct fs;
fs.p = fopen("myfile.txt", "w");
[analyzer] Indirect invalidation counts as an escape for leak checkers. Consider this example: char *p = malloc(sizeof(char)); systemFunction(&p); free(p); In this case, when we call systemFunction, we know (because it's a system function) that it won't free 'p'. However, we /don't/ know whether or not it will /change/ 'p', so the analyzer is forced to invalidate 'p', wiping out any bindings it contains. But now the malloc'd region looks like a leak, since there are no more bindings pointing to it, and we'll get a spurious leak warning. The fix for this is to notice when something is becoming inaccessible due to invalidation (i.e. an imperfect model, as opposed to being explicitly overwritten) and stop tracking it at that point. Currently, the best way to determine this for a call is the "indirect escape" pointer-escape kind. In practice, all the patch does is take the "system functions don't free memory" special case and limit it to direct parameters, i.e. just the arguments to a call and not other regions accessible to them. This is a conservative change that should only cause us to escape regions more eagerly, which means fewer leak warnings. This isn't perfect for several reasons, the main one being that this example is treated the same as the one above: char **p = malloc(sizeof(char *)); systemFunction(p + 1); // leak Currently, "addresses accessible by offsets of the starting region" and "addresses accessible through bindings of the starting region" are both considered "indirect" regions, hence this uniform treatment. Another issue is our longstanding problem of not distinguishing const and non-const bindings; if in the first example systemFunction's parameter were a char * const *, we should know that the function will not overwrite 'p', and thus we can safely report the leak. <rdar://problem/13758386> llvm-svn: 181607
2013-05-11 01:07:16 +08:00
fakeSystemHeaderCall(&fs); // invalidates fs, making fs.p unreachable
} // no-warning