typedef SwitchNodeBuilder::iterator iterator;
StateTy St = builder.getState();
- NonLValue CondV = cast<NonLValue>(GetValue(St, builder.getCondition()));
+ Expr* CondE = builder.getCondition();
+ NonLValue CondV = cast<NonLValue>(GetValue(St, CondE));
if (isa<UninitializedVal>(CondV)) {
NodeTy* N = builder.generateDefaultCaseNode(St, true);
// While most of this can be assumed (such as the signedness), having it
// just computed makes sure everything makes the same assumptions end-to-end.
- unsigned bits = getContext().getTypeSize(getContext().IntTy,SourceLocation());
+
+ unsigned bits = getContext().getTypeSize(CondE->getType(),
+ CondE->getExprLoc());
+
APSInt V1(bits, false);
APSInt V2 = V1;
NonLValue Res = EvalBinaryOp(ValMgr, BinaryOperator::EQ, CondV, CaseVal);
// Now "assume" that the case matches.
- bool isFeasible;
+ bool isFeasible = false;
StateTy StNew = Assume(St, Res, true, isFeasible);
// FIXME: Stop when dereferencing an uninitialized value.
// FIXME: Bifurcate when dereferencing a symbolic with no constraints?
- const RValue& V = GetValue(St, U->getSubExpr());
+ const RValue& V = GetValue(St, U->getSubExpr());
const LValue& L1 = cast<LValue>(V);
// After a dereference, one of two possible situations arise:
GetValue(StNotNull, L1, &T)));
}
+ if (V.isUnknown())
+ return;
+
bool isFeasibleNull;
// "Assume" that the pointer is NULL.
//===----------------------------------------------------------------------===//
GRExprEngine::StateTy GRExprEngine::Assume(StateTy St, LValue Cond,
- bool Assumption,
- bool& isFeasible) {
+ bool Assumption,
+ bool& isFeasible) {
+
+ assert (!isa<UninitializedVal>(Cond));
+
+ if (isa<UnknownVal>(Cond)) {
+ isFeasible = true;
+ return St;
+ }
switch (Cond.getSubKind()) {
default:
bool Assumption,
bool& isFeasible) {
+ assert (!isa<UninitializedVal>(Cond));
+
+ if (isa<UnknownVal>(Cond)) {
+ isFeasible = true;
+ return St;
+ }
+
switch (Cond.getSubKind()) {
default:
assert (false && "'Assume' not implemented for this NonLValue.");
GRExprEngine::StateTy
GRExprEngine::AssumeSymNE(StateTy St, SymbolID sym,
const llvm::APSInt& V, bool& isFeasible) {
-
+
// First, determine if sym == X, where X != V.
if (const llvm::APSInt* X = St.getSymVal(sym)) {
isFeasible = *X != V;
CheckerState->setTransferFunctions(GRSV);
// Execute the worklist algorithm.
- Engine.ExecuteWorkList(200);
+ Engine.ExecuteWorkList(10000);
// Look for explicit-Null dereferences and warn about them.
for (GRExprEngine::null_iterator I=CheckerState->null_begin(),
RValue GRSimpleVals::EvalCast(ValueManager& ValMgr, NonLValue X,
Expr* CastExpr) {
+ assert (!isa<UnknownVal>(X) && !isa<UninitializedVal>(X));
+
if (!isa<nonlval::ConcreteInt>(X))
return UnknownVal();
// Casts.
RValue GRSimpleVals::EvalCast(ValueManager& ValMgr, LValue X, Expr* CastExpr) {
+
+ assert (!isa<UnknownVal>(X) && !isa<UninitializedVal>(X));
if (CastExpr->getType()->isPointerType())
return X;
NonLValue GRSimpleVals::EvalMinus(ValueManager& ValMgr, UnaryOperator* U,
NonLValue X) {
+ assert (!isa<UnknownVal>(X) && !isa<UninitializedVal>(X));
+
switch (X.getSubKind()) {
case nonlval::ConcreteIntKind:
return cast<nonlval::ConcreteInt>(X).EvalMinus(ValMgr, U);
}
NonLValue GRSimpleVals::EvalComplement(ValueManager& ValMgr, NonLValue X) {
+
+ assert (!isa<UnknownVal>(X) && !isa<UninitializedVal>(X));
+
switch (X.getSubKind()) {
case nonlval::ConcreteIntKind:
return cast<nonlval::ConcreteInt>(X).EvalComplement(ValMgr);
BinaryOperator::Opcode Op,
NonLValue LHS, NonLValue RHS) {
- if (isa<UnknownVal>(LHS) || isa<UnknownVal>(RHS))
- return cast<NonLValue>(UnknownVal());
-
- if (isa<UninitializedVal>(LHS) || isa<UninitializedVal>(RHS))
- return cast<NonLValue>(UninitializedVal());
+ assert (!isa<UnknownVal>(LHS) && !isa<UninitializedVal>(LHS));
+ assert (!isa<UnknownVal>(RHS) && !isa<UninitializedVal>(RHS));
while(1) {
BinaryOperator::Opcode Op,
LValue LHS, LValue RHS) {
+ assert (!isa<UnknownVal>(LHS) && !isa<UninitializedVal>(LHS));
+ assert (!isa<UnknownVal>(RHS) && !isa<UninitializedVal>(RHS));
+
switch (Op) {
default:
return UnknownVal();
LValue GRSimpleVals::EvalBinaryOp(ValueManager& ValMgr,
BinaryOperator::Opcode Op,
LValue LHS, NonLValue RHS) {
+
+ assert (!isa<UnknownVal>(LHS) && !isa<UninitializedVal>(LHS));
+ assert (!isa<UnknownVal>(RHS) && !isa<UninitializedVal>(RHS));
+
return cast<LValue>(UnknownVal());
}
NonLValue GRSimpleVals::EvalEQ(ValueManager& ValMgr, LValue LHS, LValue RHS) {
+ assert (!isa<UnknownVal>(LHS) && !isa<UninitializedVal>(LHS));
+ assert (!isa<UnknownVal>(RHS) && !isa<UninitializedVal>(RHS));
+
switch (LHS.getSubKind()) {
default:
assert(false && "EQ not implemented for this LValue.");
}
NonLValue GRSimpleVals::EvalNE(ValueManager& ValMgr, LValue LHS, LValue RHS) {
+
+ assert (!isa<UnknownVal>(LHS) && !isa<UninitializedVal>(LHS));
+ assert (!isa<UnknownVal>(RHS) && !isa<UninitializedVal>(RHS));
switch (LHS.getSubKind()) {
default:
if (isa<UnknownVal>(LV))
return UnknownVal();
+ assert (!isa<UninitializedVal>(LV));
+
switch (LV.getSubKind()) {
case lval::DeclValKind: {
ValueState::VarBindingsTy::TreeTy* T =
ValueState
ValueStateManager::SetValue(ValueState St, const LValue& LV, const RValue& V) {
+ assert (!isa<UnknownVal>(LV));
+ assert (!isa<UninitializedVal>(LV));
+
switch (LV.getSubKind()) {
case lval::DeclValKind:
return V.isKnown() // FIXME: Have DeclVal only contain VarDecl
void VisitUnaryOperator(UnaryOperator* B, NodeTy* Pred, NodeSet& Dst);
- inline RValue EvalCast(ValueManager& ValMgr, RValue R, Expr* CastExpr) {
- return TF->EvalCast(ValMgr, R, CastExpr);
+ inline RValue EvalCast(ValueManager& ValMgr, RValue X, Expr* CastExpr) {
+ if (isa<UnknownVal>(X) || isa<UninitializedVal>(X))
+ return X;
+
+ return TF->EvalCast(ValMgr, X, CastExpr);
}
inline NonLValue EvalMinus(ValueManager& ValMgr, UnaryOperator* U,
NonLValue X) {
+ if (isa<UnknownVal>(X) || isa<UninitializedVal>(X))
+ return X;
+
return TF->EvalMinus(ValMgr, U, X);
}
inline NonLValue EvalComplement(ValueManager& ValMgr, NonLValue X) {
+ if (isa<UnknownVal>(X) || isa<UninitializedVal>(X))
+ return X;
+
return TF->EvalComplement(ValMgr, X);
}
inline NonLValue EvalBinaryOp(ValueManager& ValMgr, BinaryOperator::Opcode Op,
NonLValue LHS, NonLValue RHS) {
+
+ if (isa<UninitializedVal>(LHS) || isa<UninitializedVal>(RHS))
+ return cast<NonLValue>(UninitializedVal());
+
+ if (isa<UnknownVal>(LHS) || isa<UnknownVal>(RHS))
+ return cast<NonLValue>(UnknownVal());
+
return TF->EvalBinaryOp(ValMgr, Op, LHS, RHS);
}
inline RValue EvalBinaryOp(ValueManager& ValMgr, BinaryOperator::Opcode Op,
LValue LHS, LValue RHS) {
+
+ if (isa<UninitializedVal>(LHS) || isa<UninitializedVal>(RHS))
+ return UninitializedVal();
+
+ if (isa<UnknownVal>(LHS) || isa<UnknownVal>(RHS))
+ return UnknownVal();
+
return TF->EvalBinaryOp(ValMgr, Op, LHS, RHS);
}
inline RValue EvalBinaryOp(ValueManager& ValMgr, BinaryOperator::Opcode Op,
LValue LHS, NonLValue RHS) {
+
+ if (isa<UninitializedVal>(LHS) || isa<UninitializedVal>(RHS))
+ return UninitializedVal();
+
+ if (isa<UnknownVal>(LHS) || isa<UnknownVal>(RHS))
+ return UnknownVal();
+
return TF->EvalBinaryOp(ValMgr, Op, LHS, RHS);
}
inline RValue EvalBinaryOp(ValueManager& ValMgr, BinaryOperator::Opcode Op,
RValue LHS, RValue RHS) {
+
+ if (isa<UninitializedVal>(LHS) || isa<UninitializedVal>(RHS))
+ return UninitializedVal();
+
+ if (isa<UnknownVal>(LHS) || isa<UnknownVal>(RHS))
+ return UnknownVal();
+
return TF->EvalBinaryOp(ValMgr, Op, LHS, RHS);
}
};
projects / clang / commitdiff