If the symbol has not been tracked, do not free it. This is possible when free is called on a pointer that does not get its value directly from malloc. llvm-svn: 93706

commit: e2bdb9a6e22764ac45649b7f3af09789aa08998d [log] [tgz]
author: Zhongxing Xu <xuzhongxing@gmail.com> Mon Jan 18 03:27:34 2010 +0000
committer: Zhongxing Xu <xuzhongxing@gmail.com> Mon Jan 18 03:27:34 2010 +0000
tree: 7208868df4604a553f5daaa187a213275b97595d
parent: 7430a9861948ecbfe531034e71f7e077b40015e4 [diff] [blame]
diff --git a/clang/lib/Analysis/MallocChecker.cpp b/clang/lib/Analysis/MallocChecker.cpp
index fab73ee..5bd2791 100644
--- a/clang/lib/Analysis/MallocChecker.cpp
+++ b/clang/lib/Analysis/MallocChecker.cpp

@@ -170,7 +170,12 @@
   assert(Sym);
 
   const RefState *RS = state->get<RegionState>(Sym);
-  assert(RS);
+
+  // If the symbol has not been tracked, return. This is possible when free() is
+  // called on a pointer that does not get its pointee directly from malloc(). 
+  // Full support of this requires inter-procedural analysis.
+  if (!RS)
+    return state;
 
   // Check double free.
   if (RS->isReleased()) {
commit	e2bdb9a6e22764ac45649b7f3af09789aa08998d	[log] [tgz]
author	Zhongxing Xu <xuzhongxing@gmail.com>	Mon Jan 18 03:27:34 2010 +0000
committer	Zhongxing Xu <xuzhongxing@gmail.com>	Mon Jan 18 03:27:34 2010 +0000
tree	7208868df4604a553f5daaa187a213275b97595d
parent	7430a9861948ecbfe531034e71f7e077b40015e4 [diff] [blame]