[analyzer] Track null object lvalues back through C++ method calls. The expression 'a->b.c()' contains a call to the 'c' method of 'a->b'. We emit an error if 'a' is NULL, but previously didn't actually track the null value back through the 'a->b' expression, which caused us to miss important false-positive-suppression cases, including <rdar://problem/12676053>. llvm-svn: 173547

commit: aea020f04ec86ba9165ad701ad58cc467a0906fe [log] [tgz]
author: Jordan Rose <jordan_rose@apple.com> Sat Jan 26 01:28:23 2013 +0000
committer: Jordan Rose <jordan_rose@apple.com> Sat Jan 26 01:28:23 2013 +0000
tree: 8cb1df5caa1e0927e7c8db1552a4105eab6b8f4b
parent: c362edad85bfa1f143cc94ab58e16a0543b6c06a [diff] [blame]
diff --git a/clang/lib/StaticAnalyzer/Checkers/CallAndMessageChecker.cpp b/clang/lib/StaticAnalyzer/Checkers/CallAndMessageChecker.cpp
index 1285d32..e32091e 100644
--- a/clang/lib/StaticAnalyzer/Checkers/CallAndMessageChecker.cpp
+++ b/clang/lib/StaticAnalyzer/Checkers/CallAndMessageChecker.cpp

@@ -76,6 +76,8 @@
   BugReport *R = new BugReport(*BT, BT->getName(), N);
   if (BadE) {
     R->addRange(BadE->getSourceRange());
+    if (BadE->isGLValue())
+      BadE = bugreporter::getDerefExpr(BadE);
     bugreporter::trackNullOrUndefValue(N, BadE, *R);
   }
   C.emitReport(R);
commit	aea020f04ec86ba9165ad701ad58cc467a0906fe	[log] [tgz]
author	Jordan Rose <jordan_rose@apple.com>	Sat Jan 26 01:28:23 2013 +0000
committer	Jordan Rose <jordan_rose@apple.com>	Sat Jan 26 01:28:23 2013 +0000
tree	8cb1df5caa1e0927e7c8db1552a4105eab6b8f4b
parent	c362edad85bfa1f143cc94ab58e16a0543b6c06a [diff] [blame]