[analyzer] Allow pointers escape through calls containing callback args. (Since we don't have a generic pointer escape callback, modify ExprEngineCallAndReturn as well as the malloc checker.) git-svn-id: https://llvm.org/svn/llvm-project/cfe/trunk@156134 91177308-0d34-0410-b5e6-96231b3b80d8

commit: aca0ac58d2ae80d764e3832456667d7322445e0c [log] [tgz]
author: Anna Zaks <ganna@apple.com> Thu May 03 23:50:28 2012 +0000
committer: Anna Zaks <ganna@apple.com> Thu May 03 23:50:28 2012 +0000
tree: 1567017774e9dd2a48fc094f2eb507521458934a
parent: d964d6380945e0505b623050fe6a3f428008fc2a [diff] [blame]
diff --git a/lib/StaticAnalyzer/Checkers/MallocChecker.cpp b/lib/StaticAnalyzer/Checkers/MallocChecker.cpp
index 55c32ec..1415184 100644
--- a/lib/StaticAnalyzer/Checkers/MallocChecker.cpp
+++ b/lib/StaticAnalyzer/Checkers/MallocChecker.cpp

@@ -1285,6 +1285,11 @@
     if (FName.startswith("NS") && (FName.find("Insert") != StringRef::npos))
       return false;
 
+    // If the call has a callback as an argument, assume the memory
+    // can be freed.
+    if (Call->hasNonZeroCallbackArg())
+      return false;
+
     // Otherwise, assume that the function does not free memory.
     // Most system calls, do not free the memory.
     return true;
@@ -1312,6 +1317,11 @@
       return false;
     }
 
+    // If the call has a callback as an argument, assume the memory
+    // can be freed.
+    if (Call->hasNonZeroCallbackArg())
+      return false;
+
     // Otherwise, assume that the function does not free memory.
     // Most system calls, do not free the memory.
     return true;
commit	aca0ac58d2ae80d764e3832456667d7322445e0c	[log] [tgz]
author	Anna Zaks <ganna@apple.com>	Thu May 03 23:50:28 2012 +0000
committer	Anna Zaks <ganna@apple.com>	Thu May 03 23:50:28 2012 +0000
tree	1567017774e9dd2a48fc094f2eb507521458934a
parent	d964d6380945e0505b623050fe6a3f428008fc2a [diff] [blame]