commit 08780078183ae4b2534c69a3e0ded596cdb695ba
author Ted Kremenek <kremenek@apple.com> Mon Aug 24 22:47:34 2009 +0000
committer Ted Kremenek <kremenek@apple.com> Mon Aug 24 22:47:34 2009 +0000
tree 9d9a525039c97146dc5c70cf807c4e93cc59c7bf
parent c3a94151d12e3821f760e1e342f719ddeebeea19

ConstraintManager::AssumeDual now accepts a 'DefinedSVal' instead of 'SVal' for
the condition. This eliminates a source of bugs where the client doesn't
correctly reason about undefined or unknown values. This fixes PR 4759.


git-svn-id: https://llvm.org/svn/llvm-project/cfe/trunk@79952 91177308-0d34-0410-b5e6-96231b3b80d8

include/clang/Analysis/PathSensitive/ConstraintManager.h

diff --git a/include/clang/Analysis/PathSensitive/ConstraintManager.h b/include/clang/Analysis/PathSensitive/ConstraintManager.h
index 4b17f57..e3b6489 100644
--- a/include/clang/Analysis/PathSensitive/ConstraintManager.h
+++ b/include/clang/Analysis/PathSensitive/ConstraintManager.h
@@ -37,7 +37,7 @@
                                        SVal UpperBound, bool Assumption) = 0;
   
   std::pair<const GRState*, const GRState*> AssumeDual(const GRState *state,
-                                                       SVal Cond) {
+                                                       DefinedSVal Cond) {
     return std::make_pair(Assume(state, Cond, true),
                           Assume(state, Cond, false));    
   }

include/clang/Analysis/PathSensitive/SVals.h

diff --git a/include/clang/Analysis/PathSensitive/SVals.h b/include/clang/Analysis/PathSensitive/SVals.h
index 4371e31..1dd6906 100644
--- a/include/clang/Analysis/PathSensitive/SVals.h
+++ b/include/clang/Analysis/PathSensitive/SVals.h
@@ -177,7 +177,7 @@
 protected:
   DefinedSVal(const void* d, bool isLoc, unsigned ValKind)
     : SVal(d, isLoc, ValKind) {}
-  
+public:
   // Implement isa<T> support.
   static inline bool classof(const SVal *V) {
     return !V->isUnknownOrUndef();

lib/Analysis/GRExprEngineInternalChecks.cpp

diff --git a/lib/Analysis/GRExprEngineInternalChecks.cpp b/lib/Analysis/GRExprEngineInternalChecks.cpp
index d22f276..1b2fd1c 100644
--- a/lib/Analysis/GRExprEngineInternalChecks.cpp
+++ b/lib/Analysis/GRExprEngineInternalChecks.cpp
@@ -575,10 +575,15 @@
       if (!Att->isNonNull(idx))
         continue;
       
+      const SVal &V = state->getSVal(*I);
+      const DefinedSVal *DV = dyn_cast<DefinedSVal>(&V);
+      
+      if (!DV)
+        continue;
+      
       ConstraintManager &CM = C.getConstraintManager();
       const GRState *stateNotNull, *stateNull;
-      llvm::tie(stateNotNull, stateNull) = CM.AssumeDual(state,
-                                                         state->getSVal(*I));
+      llvm::tie(stateNotNull, stateNull) = CM.AssumeDual(state, *DV);
       
       if (stateNull && !stateNotNull) {
         // Generate an error node.  Check for a null node in case