[analyzer] GNU __null is a pointer-sized integer, not a pointer. Fixes PR10372. llvm-svn: 135294

commit: b72bd53f7d046420fa64ff3e684b912b258a27f0 [log] [tgz]
author: Jordy Rose <jediknil@belkadan.com> Fri Jul 15 20:29:02 2011 +0000
committer: Jordy Rose <jediknil@belkadan.com> Fri Jul 15 20:29:02 2011 +0000
tree: 3099f6b32f4b134580c7b03bb83f6bae4f1bb0c1
parent: 063fd270ed6f6ba0a8b5807832d4a9460427ca48 [diff]
diff --git a/clang/lib/StaticAnalyzer/Core/ExprEngine.cpp b/clang/lib/StaticAnalyzer/Core/ExprEngine.cpp
index cdf76bfa..ffe5f0b 100644
--- a/clang/lib/StaticAnalyzer/Core/ExprEngine.cpp
+++ b/clang/lib/StaticAnalyzer/Core/ExprEngine.cpp

@@ -510,7 +510,10 @@
       break;
 
     case Stmt::GNUNullExprClass: {
-      MakeNode(Dst, S, Pred, GetState(Pred)->BindExpr(S, svalBuilder.makeNull()));
+      // GNU __null is a pointer-width integer, not an actual pointer.
+      const GRState *state = GetState(Pred);
+      state = state->BindExpr(S, svalBuilder.makeIntValWithPtrWidth(0, false));
+      MakeNode(Dst, S, Pred, state);
       break;
     }
 

diff --git a/clang/test/Analysis/nullptr.cpp b/clang/test/Analysis/nullptr.cpp
index b74a5ab..6f78bae 100644
--- a/clang/test/Analysis/nullptr.cpp
+++ b/clang/test/Analysis/nullptr.cpp

@@ -39,3 +39,11 @@
     *np = 0;  // no-warning
 }
 
+
+int pr10372(void *& x) {
+  // GNU null is a pointer-sized integer, not a pointer.
+  x = __null;
+  // This used to crash.
+  return __null;
+}
+
commit	b72bd53f7d046420fa64ff3e684b912b258a27f0	[log] [tgz]
author	Jordy Rose <jediknil@belkadan.com>	Fri Jul 15 20:29:02 2011 +0000
committer	Jordy Rose <jediknil@belkadan.com>	Fri Jul 15 20:29:02 2011 +0000
tree	3099f6b32f4b134580c7b03bb83f6bae4f1bb0c1
parent	063fd270ed6f6ba0a8b5807832d4a9460427ca48 [diff]