if (DivUndef) {
DivUndef->markAsSink();
- BadDivides.insert(DivUndef);
+ ExplicitBadDivides.insert(DivUndef);
}
continue;
//
// First, "assume" that the denominator is 0 or undefined.
- bool isFeasible = false;
- ValueState* ZeroSt = Assume(St, RightV, false, isFeasible);
+ bool isFeasibleZero = false;
+ ValueState* ZeroSt = Assume(St, RightV, false, isFeasibleZero);
- if (isFeasible)
+ // Second, "assume" that the denominator cannot be 0.
+
+ bool isFeasibleNotZero = false;
+ St = Assume(St, RightV, true, isFeasibleNotZero);
+
+ // Create the node for the divide-by-zero (if it occurred).
+
+ if (isFeasibleZero)
if (NodeTy* DivZeroNode = Builder->generateNode(B, ZeroSt, N2)) {
DivZeroNode->markAsSink();
- BadDivides.insert(DivZeroNode);
+
+ if (isFeasibleNotZero)
+ ImplicitBadDivides.insert(DivZeroNode);
+ else
+ ExplicitBadDivides.insert(DivZeroNode);
+
}
- // Second, "assume" that the denominator cannot be 0.
-
- isFeasible = false;
- St = Assume(St, RightV, true, isFeasible);
-
- if (!isFeasible)
+ if (!isFeasibleNotZero)
continue;
}
if (DivUndef) {
DivUndef->markAsSink();
- BadDivides.insert(DivUndef);
+ ExplicitBadDivides.insert(DivUndef);
}
continue;
// First, "assume" that the denominator is 0.
- bool isFeasible = false;
- ValueState* ZeroSt = Assume(St, RightV, false, isFeasible);
+ bool isFeasibleZero = false;
+ ValueState* ZeroSt = Assume(St, RightV, false, isFeasibleZero);
- if (isFeasible) {
+ // Second, "assume" that the denominator cannot be 0.
+
+ bool isFeasibleNotZero = false;
+ St = Assume(St, RightV, true, isFeasibleNotZero);
+
+ // Create the node for the divide-by-zero error (if it occurred).
+
+ if (isFeasibleZero) {
NodeTy* DivZeroNode = Builder->generateNode(B, ZeroSt, N2);
if (DivZeroNode) {
DivZeroNode->markAsSink();
- BadDivides.insert(DivZeroNode);
+
+ if (isFeasibleNotZero)
+ ImplicitBadDivides.insert(DivZeroNode);
+ else
+ ExplicitBadDivides.insert(DivZeroNode);
}
}
- // Second, "assume" that the denominator cannot be 0.
-
- isFeasible = false;
- St = Assume(St, RightV, true, isFeasible);
-
- if (!isFeasible)
+ if (!isFeasibleNotZero)
continue;
// Fall-through. The logic below processes the divide.
GraphPrintCheckerState->isUndefDeref(N) ||
GraphPrintCheckerState->isUndefStore(N) ||
GraphPrintCheckerState->isUndefControlFlow(N) ||
- GraphPrintCheckerState->isBadDivide(N) ||
+ GraphPrintCheckerState->isExplicitBadDivide(N) ||
+ GraphPrintCheckerState->isImplicitBadDivide(N) ||
GraphPrintCheckerState->isUndefResult(N) ||
GraphPrintCheckerState->isBadCall(N) ||
GraphPrintCheckerState->isUndefArg(N))
Out << "\\|Dereference of undefialied value.\\l";
else if (GraphPrintCheckerState->isUndefStore(N))
Out << "\\|Store to Undefined LVal.";
- else if (GraphPrintCheckerState->isBadDivide(N))
- Out << "\\|Divide-by zero or undefined value.";
+ else if (GraphPrintCheckerState->isExplicitBadDivide(N))
+ Out << "\\|Explicit divide-by zero or undefined value.";
+ else if (GraphPrintCheckerState->isImplicitBadDivide(N))
+ Out << "\\|Implicit divide-by zero or undefined value.";
else if (GraphPrintCheckerState->isUndefResult(N))
Out << "\\|Result of operation is undefined.";
else if (GraphPrintCheckerState->isNoReturnCall(N))
/// taking a dereference on an undefined value.
BadDerefTy UndefDeref;
- /// BadDivides - Nodes in the ExplodedGraph that result from evaluating
- /// a divide-by-zero or divide-by-undefined.
- BadDividesTy BadDivides;
+ /// ImplicitBadDivides - Nodes in the ExplodedGraph that result from
+ /// evaluating a divide or modulo operation where the denominator
+ /// MAY be zero.
+ BadDividesTy ImplicitBadDivides;
+
+ /// ExplicitBadDivides - Nodes in the ExplodedGraph that result from
+ /// evaluating a divide or modulo operation where the denominator
+ /// MUST be zero or undefined.
+ BadDividesTy ExplicitBadDivides;
/// UndefResults - Nodes in the ExplodedGraph where the operands are defined
/// by the result is not. Excludes divide-by-zero errors.
return N->isSink() && UndefDeref.count(const_cast<NodeTy*>(N)) != 0;
}
- bool isBadDivide(const NodeTy* N) const {
- return N->isSink() && BadDivides.count(const_cast<NodeTy*>(N)) != 0;
+ bool isImplicitBadDivide(const NodeTy* N) const {
+ return N->isSink() && ImplicitBadDivides.count(const_cast<NodeTy*>(N)) != 0;
+ }
+
+ bool isExplicitBadDivide(const NodeTy* N) const {
+ return N->isSink() && ExplicitBadDivides.count(const_cast<NodeTy*>(N)) != 0;
}
bool isNoReturnCall(const NodeTy* N) const {
undef_deref_iterator undef_derefs_end() { return UndefDeref.end(); }
typedef BadDividesTy::iterator bad_divide_iterator;
- bad_divide_iterator bad_divides_begin() { return BadDivides.begin(); }
- bad_divide_iterator bad_divides_end() { return BadDivides.end(); }
+
+ bad_divide_iterator explicit_bad_divides_begin() {
+ return ExplicitBadDivides.begin();
+ }
+
+ bad_divide_iterator explicit_bad_divides_end() {
+ return ExplicitBadDivides.end();
+ }
+
+ bad_divide_iterator implicit_bad_divides_begin() {
+ return ImplicitBadDivides.begin();
+ }
+
+ bad_divide_iterator implicit_bad_divides_end() {
+ return ImplicitBadDivides.end();
+ }
typedef UndefResultsTy::iterator undef_result_iterator;
undef_result_iterator undef_results_begin() { return UndefResults.begin(); }
projects / clang / commitdiff