- 8f4caf5 [analyzer] Warn when non pointer arguments are passed to scanf (only when running taint checker). by Anna Zaks · 13 years ago
- 01f2a1e [analyzer] The compiler warning was disabling the analyzer in this test. by Anna Zaks · 13 years ago
- 0d339d0 [analyzer] Do not conjure a symbol when we need to propagate taint. by Anna Zaks · 13 years ago
- 960809e Added missing ImplicitCastExpr around conversion operator call. by Abramo Bagnara · 13 years ago
- e42a0ab Fixed crash with initializer lists and unnamed bitfields in the RegionStore by Jim Goodnow II · 13 years ago
- 9b0970f [analyzer] Catch the first taint propagation implied buffer overflow. by Anna Zaks · 13 years ago
- b302996 Use Sema::RequireCompleteType to check for the completeness of by Douglas Gregor · 13 years ago
- 4c42bb7 [static analyzer] Tweak RetainCountChecker's diagnostics to correctly indicate if a message was due to a property access. This can by Ted Kremenek · 13 years ago
- 729aa06 [analyzer;Regionstore] handle loads from StringLiteral elements for StringLiterals representing wide strings. Fixes PR 11294. by Ted Kremenek · 13 years ago
- ccf1bfd [analyzer] teach AnalysisDeclContext::getSelfDecl() about blocks that capture the 'self' variable of the enclosing ObjC method decl. Fixes <rdar://problem/10380300>. by Ted Kremenek · 13 years ago
- 4b9c2d2 Change the AST representation of operations on Objective-C by John McCall · 13 years ago
- 129d924 Switch these two tests to use the Clang driver instead of CC1. They want by Chandler Carruth · 13 years ago
- 6a9065a Per discussion with John McCall, don't add OpaqueValueExprs to the CFG. by Ted Kremenek · 13 years ago
- 2d950b1 [analyzer] Fix PR11282 - an assert in markAsSink by Anna Zaks · 13 years ago
- cdcc653 [analyzer] BranchNodeBuilder should not generate autotransitions. by Anna Zaks · 13 years ago
- 4a037c7 [analyzer] ObjC message sends to nil receivers that return structs are now okay (compiler zeroes out the data). Fixes <rdar://problem/9151319>. by Ted Kremenek · 13 years ago
- 58f6f1e Add source-level dominators analysis. Patch by Guoping Long! by Ted Kremenek · 13 years ago
- 1d26f48 Rename AnalysisContext to AnalysisDeclContext. Not only is this name more accurate, but it frees up the name AnalysisContext for other uses. by Ted Kremenek · 13 years ago
- beedc5f Add test case for analyzer crash reported in <rdar://problem/10308201> (which is already fixed in mainline). by Ted Kremenek · 13 years ago
- 18c9bd3 Fix the signatures of vfork, __sigsetjmp and sigsetjmp. by Rafael Espindola · 13 years ago
- 762bb9d Update all tests other than Driver/std.cpp to use -std=c++11 rather than by Richard Smith · 13 years ago
- 6700415 Add returns_twice to functions that are known to return twice. This implements by Rafael Espindola · 13 years ago
- a7957ff [analyzer] Warn about the use of insecure, deprecated vfork() function PR11053 (http://llvm.org/bugs/show_bug.cgi?id=11053). by Anna Zaks · 13 years ago
- 46eaf77 [analyzer] Teach the static analyzer about CXXForRangeStmt. Patch by Jim Goodnow II! by Ted Kremenek · 13 years ago
- 744f1cd Provide basic static analyzer support for CXXTemporaryObjectExpr. Patch by Jim Goodnow II. by Ted Kremenek · 13 years ago
- c808503 [static analyzer] Fix crash in LiveVariables and Environment::getSVal() when analyzing C++ pointer-to-member calls. Fixes <rdar://problem/10243398>. by Ted Kremenek · 13 years ago
- 93edbc5 Fix major regression in RetainCountChecker. DefaultSummaries were not being used when they were meant to be. Fixes <rdar://problem/10241614>. by Ted Kremenek · 13 years ago
- d1e40d5 Make -fobjc-nonfragile-abi the -cc1 default, since it's the by John McCall · 13 years ago
- 6a835dd Fix LiveVariables analysis bug with MaterializeTemporaryExpr and fix handling in ExprEngine. Fixes <rdar://problem/10201666>. by Ted Kremenek · 13 years ago
- b459cf3 Address PR10616. The crash has already been fixed by Ted in r140725, so just refactor to use existing API + test case. by Anna Zaks · 13 years ago
- 7df2ff4 Tweak the interface for analyzing the CF conventions for a name by John McCall · 13 years ago
- e4c6675 Fix crash when analyzing C++ code involving constant enums and switch statements (<rdar://problem/10202899>). by Ted Kremenek · 13 years ago
- 0658879 [analyzer] Fix a bug in RetainReleaseChecker diagnostics. It gives more precise error message on the modified test case (and prevents duplicate diagnostics when we purge at block granularity). by Anna Zaks · 13 years ago
- d309528 [analyzer] Add -analyzer-purge option which can take on multiple values, remove -analyzer-purge=none. (Small refactor as well: move the work of constructing AnalysisManager from the callers to the class itself.) by Anna Zaks · 13 years ago
- 7e5f112 Fix a crash in MallocOverflowSecurityChecker. Patch by Lei Zhang. by Anna Zaks · 13 years ago
- 6479c66 [analyzer] Remove target triple from the malloc overflow test. by Anna Zaks · 13 years ago
- 09ca9ef [analyzer] Fix a bug where PathDiagnosticLocation did not generate a valid range and add asserts to check validity of locations early on. Ignore invalid ranges in PathDiagnosticPiece (they could be added by checker writers). by Anna Zaks · 13 years ago
- 0cd5948 [analyzer] Refactor: make PathDiagnosticLocation responsible for validation of SourceLocations (commit 5 of ?): by Anna Zaks · 13 years ago
- f2b4e66 [analyzer] Refactor: make PathDiagnosticLocation responsible for validation of SourceLocations (commit 4 of ?): by Anna Zaks · 13 years ago
- 4d353eb [analyzer] After CFG has been linearized, we can have a situation where an ExpoledNode has an invalid SourceLocation (which has no correspondence in the source code). This commit is the first step to solve this problem. by Anna Zaks · 13 years ago
- 773d847 [analyzer] Simplify the test, use generic/more descriptive names. by Anna Zaks · 13 years ago
- 7a75646 [analyzer] Fix a failure encountered while analyzing bind (radar://10105448). by Anna Zaks · 13 years ago
- f7afe4a [analyzer] Fix a new failure encountered while building Adium exposed as a result of r138196(radar://10087620). ObjectiveC property of type int has a value of type ObjCPropRef, which is a Loc. by Anna Zaks · 13 years ago
- 0047ed1 [analyzer] Test for -analyze-function on ObjectiveC to accompany r139439. by Anna Zaks · 13 years ago
- 822eeb5 Stop cluttering the test directory with temporary files. by Benjamin Kramer · 13 years ago
- 17a38e2 [analyzer] Move the knowledge of whether or not GC is enabled for the current analysis from CFRefCount to ExprEngine. by Jordy Rose · 13 years ago
- d56763f If size was equal to 0, either NULL or a pointer suitable to be passed to by Zhongxing Xu · 13 years ago
- 8b6eb7c Fix: Bug 10798 - [analyzer] Crash when analyzing ICU. (A slight improvement on the previous commit.) by Anna Zaks · 13 years ago
- 5c96f86 Fix bug 10797: Crash: "cast<Ty>() argument of incompatible type!" assert when analyzing ICU. by Anna Zaks · 13 years ago
- 05a4652 [analyzer] Add test case for handling of __bridge_transfer that previously resulted in a 'stack address' warning (that was fixed in r138616). Fixes <rdar://problem/10018376>. by Ted Kremenek · 13 years ago
- 782f63e Handle CXXTempObjectRegion in StackAddrEscapeChecker. by Jeffrey Yasskin · 13 years ago
- 9840111 [analyzer] MacOSKeychainAPIChecker: Provide reacher diagnostic trace by pointing to the allocation site when reporting a leak. by Anna Zaks · 13 years ago
- 6cf0ed0 [analyzer] MacOSKeychainAPIChecker: Add reasoning about functions which MIGHT deallocate the memory region allocated with SecKeychain APIs. Specifically, when the buffer is passed to CFStringCreateWithBytesNoCopy along with a custom deallocator, which might potentially correctly release the memory. by Anna Zaks · 13 years ago
- 540dda6 Fix regression in -Wuninitialized involving VLAs. It turns out that we were modeling sizeof(VLAs) by Ted Kremenek · 13 years ago
- 7bbd166 [analyzer] MacOSKeychainAPIChecker: Users of KeyChain API often use free() to deallocate the password. Catch this error explicitly and generate the error message at the place where free() is called. by Anna Zaks · 13 years ago
- e62e87b [analyzer] Move handling of hardcoded noreturn ("panic") methods from CFRefCount to NoReturnFunctionChecker. No functionality change intended. by Jordy Rose · 13 years ago
- 647a751 Add a test for checking that custom diagnostic visitors are working. by Anna Zaks · 13 years ago
- 5bd0495 [analyzer] teach ExprEngine about loads from static C++ class fields. Fixes <rdar://problem/9948787>. by Ted Kremenek · 13 years ago
- b1a1950 MacOSKeychainAPIChecker: Turn it on by default. by Anna Zaks · 13 years ago
- f0c7fe5 MacOSKeychainAPIChecker: Do not report double allocation if first allocation returned an error. by Anna Zaks · 13 years ago
- f7ce52b MacOSKeychainAPIChecker: Test all APIs. by Anna Zaks · 13 years ago
- 79c9c75 MacOSKeychainAPIChecker: If the allocated data address entered as an enclosing function parameter, skip it to avoid false positives. by Anna Zaks · 13 years ago
- 703ffb1 MacOSKeychainAPIChecker: by Anna Zaks · 13 years ago
- ddddd48 De-Unicode-ify. by NAKAMURA Takumi · 13 years ago
- 7d11c3f [analyzer] add more buffer overflow tests to show we handle sizeof(VLA) in obstruse ways... by Ted Kremenek · 13 years ago
- ca0b57e KeychainAPI checker: Generate an error on double allocation. Pull out getAsPointeeMemoryRegion so that it could be reused. by Anna Zaks · 13 years ago
- 62a811d KeychainAPI checker: forgot to commit the test with r136930. This should fix the bot. by Anna Zaks · 13 years ago
- 03826aa KeychainAPI checker: Add basic diagnostics. Track MemoryRegion istead of SymbolicRef since the address might not be a symbolic value in some cases, for example in fooOnlyFree() test. by Anna Zaks · 13 years ago
- 033a07e [analyzer] rename all experimental checker packages to have 'experimental' be the common root package. by Ted Kremenek · 13 years ago
- 17f7bdd [analyzer] Introduce MallocOverflowSecurityChecker, a simple flow-sensitive checker that may be useful for security auditing. This checker is currently too noisy to be on by default. by Ted Kremenek · 13 years ago
- e68b5f1 KeychainAPI checker: only check the paths on which the allocator function returned noErr. (+ minor cleanup) by Anna Zaks · 13 years ago
- f57be28 Add a skeleton for the Keychain Services API Checker. Register it as OSX experimental for now. Note, the checker still does not handle tracking of escaped values, taking into account the return value of the allocator functions, nor the actual bug reporting.. by Anna Zaks · 13 years ago
- a4c7a43 Really remove FlatStoreManager and BasicStoreManager, this time from the driver. Also remove associated tests. Sorry for the messy commits; this is the result of a botched Git merge. by Ted Kremenek · 13 years ago
- fc5b21d Remove flat store tests. by Ted Kremenek · 13 years ago
- 8829989 [analyzer] Overhaul how the static analyzer expects CFGs by forcing CFGs to be linearized only when used by the static analyzer. This required a rewrite of LiveVariables, and exposed a ton of subtle bugs. by Ted Kremenek · 13 years ago
- eea72a9 [analyzer] fix handling of MaterializeTemporaryExpr by binding the result value to by Ted Kremenek · 13 years ago
- eee3ef1 objc: clang should warn if redeclaration of methods by Fariborz Jahanian · 13 years ago
- 6c2c250 In Objective-C, pull arbitrary attributes from overridden by John McCall · 13 years ago
- dcb1d5d [analysis] Add checks for double-locking and lock order reversal bugs for by Jordy Rose · 13 years ago
- 797a7be [analyzer] Per discussions with the Cocoa team, extend CF naming conventions to extend to camel case functions instead of just title case functions. Fixes <rdar://problem/9732321>. by Ted Kremenek · 13 years ago
- deefaf6 Update retain-release.m to match updated warnings from r135310 by Jordy Rose · 13 years ago
- 5b5402b Add tests for CFRefReport's path notes, and fix a few typos and non-standard terminology ('+0 retain counts') caught by the tests. by Jordy Rose · 13 years ago
- 8f08426 [analyzer] GNU __null is a pointer-sized integer, not a pointer. Fixes PR10372. by Jordy Rose · 13 years ago
- 786dcd9 Teach the static analyzer's interpretation of Cocoa conventions to by Douglas Gregor · 13 years ago
- 0fa6bf7 [analyzer] strnlen isn't a builtin, don't test for it by Jordy Rose · 13 years ago
- eda3687 [analyzer] Use UnknownVal when default-initializing arrays whose element types we don't model, to distinguish them from uninitialized arrays (PR10163). by Jordy Rose · 13 years ago
- 8912aae [analyzer] Finish size argument checking for strncat (and strncpy). by Jordy Rose · 13 years ago
- 5e5f150 [analyzer] Re-enable checking for strncpy, along with a new validation of the size argument. strncat is not yet up-to-date, but I'm leaving it enabled for now (there shouldn't be any false positives, at least...) by Jordy Rose · 13 years ago
- 9e49d9f [analyzer] Eliminate "byte string function" from CStringChecker's diagnostics, and make it easier to provide custom messages for overflow checking, in preparation for re-enabling strncpy checking. by Jordy Rose · 13 years ago
- adc42d4 [analyzer] Clean up modeling of strcmp, including cases where a string literal has an embedded null character, and where both arguments are the same buffer. Also use nested ifs rather than early returns; in this case early returns will lose any assumptions we've made earlier in the function. by Jordy Rose · 13 years ago
- f85e193 Automatic Reference Counting. by John McCall · 13 years ago
- d5af0e1 [analyzer] Revise CStringChecker's modelling of strcpy() and strcat(): by Jordy Rose · 13 years ago
- 467f7c8 [analyzer] CStringChecker checks functions in the C standard library, not C++. Its external name is now unix.experimental.CString. by Jordy Rose · 13 years ago
- 793bff3 [analyzer] Fix modeling of strnlen to be more conservative. Move tests we can't properly model (yet?) to string-fail.c. by Jordy Rose · 13 years ago
- 4c4efee Eliminate the -f[no]objc-infer-related-result-type flags; there's no by Douglas Gregor · 13 years ago
- ac73ea8 [analyzer] PR8962 again. Ban ParenExprs (and friends) from block-level expressions (by calling IgnoreParens before adding expressions to blocks). Undo 132769 (LiveVariables' local IgnoreParens), since it's no longer necessary. by Jordy Rose · 13 years ago
- 7fead31 [analyzer] Ignore parentheses around block-level expressions when computing liveness. Fixes the other half of PR8962. by Jordy Rose · 13 years ago
- 22043b5 [analyzer] Look through __extension__ expressions in a GRState's Environment. Fixes PR8962. by Jordy Rose · 13 years ago
- 3f8bb2f [analyzer] Don't crash when copying an unknown number of bytes with memcpy(). Also handle all memcpy-family return values in evalCopyCommon(), rather than having some outside and some inside. by Jordy Rose · 13 years ago
- 22d2717 [analyzer] Fix handling of "copy zero bytes" for memcpy and friends. by Jordy Rose · 13 years ago