Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / clang / f94e215e4a67e5439d56a67bbe470c7860d4b9a6 / . / test / Analysis / array-struct.c
blob: 60a3d3118d73a328174c5c9e93af2987beff66e8 [file] [log] [blame]
Ted Kremenek9457a802009-02-17 23:32:18 +0000[diff] [blame]1// RUN: clang -analyze -checker-simple -analyzer-store=basic -analyzer-constraints=basic -verify %s &&
2// RUN: clang -analyze -checker-cfref -analyzer-store=basic -analyzer-constraints=basic -verify %s &&
3// RUN: clang -analyze -checker-cfref -analyzer-store=basic -analyzer-constraints=range -verify %s &&
4// RUN: clang -analyze -checker-cfref -analyzer-store=region -analyzer-constraints=basic -verify %s &&
5// RUN: clang -analyze -checker-cfref -analyzer-store=region -analyzer-constraints=range -verify %s
Zhongxing Xuef8b28e2008-10-17 05:19:52 +0000[diff] [blame]6
Zhongxing Xu72e16822008-10-24 08:51:58 +0000[diff] [blame]7struct s {
8 int data;
9 int data_array[10];
10};
Zhongxing Xuef8b28e2008-10-17 05:19:52 +0000[diff] [blame]11
Zhongxing Xu234a7d22008-10-27 09:19:25 +0000[diff] [blame]12typedef struct {
13 int data;
14} STYPE;
15
Zhongxing Xu04b90bc2008-11-02 13:17:44 +0000[diff] [blame]16void g1(struct s* p);
17
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]18// Array to pointer conversion. Array in the struct field.
Zhongxing Xuef8b28e2008-10-17 05:19:52 +0000[diff] [blame]19void f(void) {
20 int a[10];
21 int (*p)[10];
22 p = &a;
23 (*p)[3] = 1;
24
25 struct s d;
26 struct s *q;
27 q = &d;
Zhongxing Xu72e16822008-10-24 08:51:58 +0000[diff] [blame]28 q->data = 3;
29 d.data_array[9] = 17;
Zhongxing Xuef8b28e2008-10-17 05:19:52 +0000[diff] [blame]30}
Zhongxing Xu2e971202008-10-25 14:11:23 +0000[diff] [blame]31
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]32// StringLiteral in lvalue context and pointer to array type.
33// p: ElementRegion, q: StringRegion
Zhongxing Xu2e971202008-10-25 14:11:23 +0000[diff] [blame]34void f2() {
35 char *p = "/usr/local";
36 char (*q)[4];
37 q = &"abc";
38}
Zhongxing Xu234a7d22008-10-27 09:19:25 +0000[diff] [blame]39
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]40// Typedef'ed struct definition.
Zhongxing Xu234a7d22008-10-27 09:19:25 +0000[diff] [blame]41void f3() {
42 STYPE s;
43}
Zhongxing Xudf2aa1e2008-10-31 10:23:14 +0000[diff] [blame]44
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]45// Initialize array with InitExprList.
Zhongxing Xudf2aa1e2008-10-31 10:23:14 +0000[diff] [blame]46void f4() {
47 int a[] = { 1, 2, 3};
48 int b[3] = { 1, 2 };
Zhongxing Xub61f49c2009-01-23 10:23:13 +0000[diff] [blame]49 struct s c[] = {{1,{1}}};
Zhongxing Xudf2aa1e2008-10-31 10:23:14 +0000[diff] [blame]50}
Zhongxing Xu04b90bc2008-11-02 13:17:44 +0000[diff] [blame]51
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]52// Struct variable in lvalue context.
Zhongxing Xu5834ed62009-01-13 01:49:57 +0000[diff] [blame]53// Assign UnknownVal to the whole struct.
Zhongxing Xu04b90bc2008-11-02 13:17:44 +0000[diff] [blame]54void f5() {
55 struct s data;
56 g1(&data);
57}
Zhongxing Xub6701332008-11-13 07:59:15 +0000[diff] [blame]58
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]59// AllocaRegion test.
Zhongxing Xub6701332008-11-13 07:59:15 +0000[diff] [blame]60void f6() {
61 char *p;
62 p = __builtin_alloca(10);
63 p[1] = 'a';
64}
Zhongxing Xufb75b252008-11-13 08:44:52 +0000[diff] [blame]65
66struct s2;
67
68void g2(struct s2 *p);
69
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]70// Incomplete struct pointer used as function argument.
Zhongxing Xufb75b252008-11-13 08:44:52 +0000[diff] [blame]71void f7() {
72 struct s2 *p = __builtin_alloca(10);
73 g2(p);
74}
Zhongxing Xu26134a12008-11-13 09:20:05 +0000[diff] [blame]75
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]76// sizeof() is unsigned while -1 is signed in array index.
Zhongxing Xu26134a12008-11-13 09:20:05 +0000[diff] [blame]77void f8() {
78 int a[10];
Zhongxing Xu33d7cbf2008-11-24 23:45:56 +0000[diff] [blame]79 a[sizeof(a)/sizeof(int) - 1] = 1; // no-warning
Zhongxing Xu26134a12008-11-13 09:20:05 +0000[diff] [blame]80}
Zhongxing Xu617ff312008-11-18 13:30:46 +0000[diff] [blame]81
Zhongxing Xu661fc392008-11-25 01:45:11 +0000[diff] [blame]82// Initialization of struct array elements.
Zhongxing Xu617ff312008-11-18 13:30:46 +0000[diff] [blame]83void f9() {
84 struct s a[10];
85}
Zhongxing Xu27cae9e2008-11-30 05:51:19 +0000[diff] [blame]86
87// Initializing array with string literal.
88void f10() {
89 char a1[4] = "abc";
Zhongxing Xu27cae9e2008-11-30 05:51:19 +0000[diff] [blame]90 char a3[6] = "abc";
91}
Zhongxing Xu562c4d92009-01-23 11:22:12 +0000[diff] [blame]92
93// Retrieve the default value of element/field region.
94void f11() {
95 struct s a;
96 g(&a);
97 if (a.data == 0) // no-warning
98 a.data = 1;
99}
Zhongxing Xu3450a552009-02-19 08:42:43 +0000[diff] [blame]100
101// Convert unsigned offset to signed when creating ElementRegion from
102// SymbolicRegion.
103void f12(int *list) {
104 unsigned i = 0;
105 list[i] = 1;
106}
Zhongxing Xuc57bc592009-03-18 02:07:30 +0000[diff] [blame]107
108struct s1 {
109 struct s2 {
110 int d;
111 } e;
112};
113
114// The binding of a.e.d should not be removed. Test recursive subregion map
115// building: a->e, e->d. Only then 'a' could be added to live region roots.
116void f13(double timeout) {
117 struct s1 a;
118 a.e.d = (long) timeout;
119 if (a.e.d == 10)
120 a.e.d = 4;
121}