commit f87111b2aca298812a5a4c7982ce1faeb4c9a15c
author Ted Kremenek <kremenek@apple.com> Fri Sep 28 21:08:51 2007 +0000
committer Ted Kremenek <kremenek@apple.com> Fri Sep 28 21:08:51 2007 +0000
tree 26f36a1114e15c238f1e2c1dd278d2894f796eb1
parent 4f2005400d5a679b89727c81eb476599f74a3589

Fixed UninitializedValues to properly propagate uninitialized "taint"
in assignment operations of the form +=, -=, *=, etc.


git-svn-id: https://llvm.org/svn/llvm-project/cfe/trunk@42449 91177308-0d34-0410-b5e6-96231b3b80d8

Analysis/UninitializedValues.cpp

diff --git a/Analysis/UninitializedValues.cpp b/Analysis/UninitializedValues.cpp
index a7c7ccb..58b95fcf 100644
--- a/Analysis/UninitializedValues.cpp
+++ b/Analysis/UninitializedValues.cpp
@@ -106,10 +106,20 @@
 }
 
 bool TransferFuncs::VisitBinaryOperator(BinaryOperator* B) {
-  if (B->isAssignmentOp())
-    if (BlockVarDecl* VD = FindBlockVarDecl(B->getLHS()))
-      return V(VD,AD) = AD.FullUninitTaint ? Visit(B->getRHS()) : Initialized;
-  
+  if (BlockVarDecl* VD = FindBlockVarDecl(B->getLHS()))
+    if (B->isAssignmentOp()) {
+      if (AD.FullUninitTaint) {
+        if (B->getOpcode() == BinaryOperator::Assign)
+          return V(VD,AD) = Visit(B->getRHS());
+        else // Handle +=, -=, *=, etc.  We do want '&', not '&&'.
+          return V(VD,AD) = Visit(B->getLHS()) & Visit(B->getRHS());
+      }
+      else {
+        Visit(B->getLHS()); Visit(B->getRHS());
+        return Initialized;
+      }
+    }
+
   return VisitStmt(B);
 }