[analyzer] Fix a false positive in Secure Keychain API checker.

author Anna Zaks <ganna@apple.com>

Mon, 7 Jan 2013 19:13:00 +0000 (19:13 +0000)

committer Anna Zaks <ganna@apple.com>

Mon, 7 Jan 2013 19:13:00 +0000 (19:13 +0000)
author Anna Zaks <ganna@apple.com>
Mon, 7 Jan 2013 19:13:00 +0000 (19:13 +0000)
committer Anna Zaks <ganna@apple.com>
Mon, 7 Jan 2013 19:13:00 +0000 (19:13 +0000)
diff --git a/lib/StaticAnalyzer/Checkers/Checkers.td b/lib/StaticAnalyzer/Checkers/Checkers.td

index ef9e17d47834a19d2a931fdd7f3eadb779783758..f4ea9ebbad9086ab1e634c8a3e41ab9e8802cae4 100644 (file)
--- a/lib/StaticAnalyzer/Checkers/Checkers.td
+++ b/lib/StaticAnalyzer/Checkers/Checkers.td
@@ -351,7 +351,7 @@ def MacOSKeychainAPIChecker : Checker<"SecKeychainAPI">,
    HelpText<"Check for proper uses of Secure Keychain APIs">,
    DescFile<"MacOSKeychainAPIChecker.cpp">;
  
-} // end "macosx"
+} // end "osx"
  
  let ParentPackage = Cocoa in {
  
diff --git a/lib/StaticAnalyzer/Checkers/MacOSKeychainAPIChecker.cpp b/lib/StaticAnalyzer/Checkers/MacOSKeychainAPIChecker.cpp

index bb5d4f66f202a6f768021d2462e30c09620e1819..b899b6f9b74096622bc64c3402eb120213a7f2f7 100644 (file)
--- a/lib/StaticAnalyzer/Checkers/MacOSKeychainAPIChecker.cpp
+++ b/lib/StaticAnalyzer/Checkers/MacOSKeychainAPIChecker.cpp
@@ -393,16 +393,18 @@ void MacOSKeychainAPIChecker::checkPreStmt(const CallExpr *CE,
            return;
          }
          // If kCFAllocatorNull, which does not deallocate, we still have to
-        // find the deallocator. Otherwise, assume that the user had written a
-        // custom deallocator which does the right thing.
-        if (DE->getFoundDecl()->getName() != "kCFAllocatorNull") {
-          State = State->remove<AllocatedData>(ArgSM);
-          C.addTransition(State);
+        // find the deallocator.
+        if (DE->getFoundDecl()->getName() == "kCFAllocatorNull")
            return;
-        }
        }
+      // In all other cases, assume the user supplied a correct deallocator
+      // that will free memory so stop tracking.
+      State = State->remove<AllocatedData>(ArgSM);
+      C.addTransition(State);
+      return;
      }
-    return;
+
+    llvm_unreachable("We know of no other possible APIs.");
    }
  
    // The call is deallocating a value we previously allocated, so remove it
diff --git a/test/Analysis/keychainAPI.m b/test/Analysis/keychainAPI.m

index 6eca8003d93774857ddc58f8175e840194f152d0..4fc48c066f9dff0f4ef4ecf365333a89f48c65b7 100644 (file)
--- a/test/Analysis/keychainAPI.m
+++ b/test/Analysis/keychainAPI.m
@@ -305,6 +305,25 @@ void DellocWithCFStringCreate4(CFAllocatorRef alloc) {
    }
  }
  
+static CFAllocatorRef gKeychainDeallocator = 0;
+
+static CFAllocatorRef GetKeychainDeallocator() {  
+  return gKeychainDeallocator;
+}
+
+CFStringRef DellocWithCFStringCreate5(CFAllocatorRef alloc) {
+  unsigned int *ptr = 0;
+  OSStatus st = 0;
+  UInt32 length;
+  void *bytes;
+  char * x;
+  st = SecKeychainItemCopyContent(2, ptr, ptr, &length, &bytes);
+  if (st == noErr) {
+    return CFStringCreateWithBytesNoCopy(alloc, bytes, length, 5, 0, GetKeychainDeallocator()); // no-warning
+  }
+  return 0;
+}
+
  void radar10508828() {
    UInt32 pwdLen = 0;
    void*  pwdBytes = 0;
author	Anna Zaks <ganna@apple.com>
	Mon, 7 Jan 2013 19:13:00 +0000 (19:13 +0000)
committer	Anna Zaks <ganna@apple.com>
	Mon, 7 Jan 2013 19:13:00 +0000 (19:13 +0000)
lib/StaticAnalyzer/Checkers/Checkers.td		patch \| blob \| history
lib/StaticAnalyzer/Checkers/MacOSKeychainAPIChecker.cpp		patch \| blob \| history
test/Analysis/keychainAPI.m		patch \| blob \| history