walkero
/
cppcheck
1
0
Fork 0
Code Issues Pull Requests Projects Releases 1 Wiki Activity
cppcheck/lib/valueflow.cpp

9600 lines
394 KiB
C++
Raw Permalink Normal View History

Add new experimental value flow analysis
2014-01-04 20:57:02 +01:00
/*
* Cppcheck - A tool for static C/C++ code analysis
Update copyright year
2023-01-28 10:16:34 +01:00
* Copyright (C) 2007-2023 Cppcheck team.
Add new experimental value flow analysis
2014-01-04 20:57:02 +01:00
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
ValueFlow: Wrote a few basic comments
2018-05-05 23:03:04 +02:00
/**
* @brief This is the ValueFlow component in Cppcheck.
*
Fix comment
2018-05-07 22:06:23 +02:00
* Each @sa Token in the token list has a list of values. These are
ValueFlow: Wrote a few basic comments
2018-05-05 23:03:04 +02:00
* the "possible" values for the Token at runtime.
*
* In the --debug and --debug-normal output you can see the ValueFlow data. For example:
*
* int f()
* {
* int x = 10;
* return 4 * x + 2;
* }
*
* The --debug-normal output says:
*
* ##Value flow
* Line 3
* 10 always 10
* Line 4
* 4 always 4
* * always 40
* x always 10
* + always 42
* 2 always 2
*
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
* All value flow analysis is executed in the ValueFlow::setValues() function. The ValueFlow analysis is executed after
* the tokenizer/ast/symboldatabase/etc.. The ValueFlow analysis is done in a series of valueFlow* function calls, where
* each such function call can only use results from previous function calls. The function calls should be arranged so
* that valueFlow* that do not require previous ValueFlow information should be first.
ValueFlow: Wrote a few basic comments
2018-05-05 23:03:04 +02:00
*
* Type of analysis
* ================
*
* This is "flow sensitive" value flow analysis. We _usually_ track the value for 1 variable at a time.
*
* How are calculations handled
* ============================
*
* Here is an example code:
*
* x = 3 + 4;
*
* The valueFlowNumber set the values for the "3" and "4" tokens by calling setTokenValue().
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
* The setTokenValue() handle the calculations automatically. When both "3" and "4" have values, the "+" can be
* calculated. setTokenValue() recursively calls itself when parents in calculations can be calculated.
ValueFlow: Wrote a few basic comments
2018-05-05 23:03:04 +02:00
*
* Forward / Reverse flow analysis
* ===============================
*
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
* In forward value flow analysis we know a value and see what happens when we are stepping the program forward. Like
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
* normal execution. The valueFlowForward is used in this analysis.
ValueFlow: Wrote a few basic comments
2018-05-05 23:03:04 +02:00
*
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
* In reverse value flow analysis we know the value of a variable at line X. And try to "execute backwards" to determine
* possible values before line X. The valueFlowReverse is used in this analysis.
ValueFlow: Wrote a few basic comments
2018-05-05 23:03:04 +02:00
*
*
*/
Add new experimental value flow analysis
2014-01-04 20:57:02 +01:00
#include "valueflow.h"
iwyu - include what you use
2017-05-27 04:33:47 +02:00
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
#include "analyzer.h"
Fixed #7006 (False positive Mismatching assignment and comparison (variable is changed in loop))
2015-11-11 13:45:28 +01:00
#include "astutils.h"
Refactor: Use ValueFlow::Value for ProgramMemory execute instead of integers (#3477)
2021-10-04 07:53:58 +02:00
#include "calculate.h"
Fixed #10327 (ValueFlow; Wrong Uninit value in called function)
2021-07-01 22:08:00 +02:00
#include "checkuninitvar.h"
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
#include "config.h"
Value flow: refactorings, write debug warning if iterating too far
2014-01-05 20:06:46 +01:00
#include "errorlogger.h"
Fix issue 8871: improve check: mismatching container size conditions (#2988)
2021-01-10 13:30:00 +01:00
#include "errortypes.h"
Fix 11983: False positive: uninitialized variable (#5443)
2023-09-13 23:27:08 +02:00
#include "findtoken.h"
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
#include "forwardanalyzer.h"
Refactor: Use interval analysis for symbolic values for inferCondtion (#3488)
2021-10-09 16:19:06 +02:00
#include "infer.h"
iwyu - include what you use
2017-05-27 04:33:47 +02:00
#include "library.h"
Add new experimental value flow analysis
2014-01-04 20:57:02 +01:00
#include "mathlib.h"
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
#include "path.h"
iwyu - include what you use
2017-05-27 04:33:47 +02:00
#include "platform.h"
Refactor ProgramMemory and PathAnalysis (#2311) * Traverse conditions for container size * Move program memory to seperate file * Revert "Traverse conditions for container size" This reverts commit 914783769f25391a3c49fab73be478383ec8f920. * Move pathanalysis to seperate files
2019-10-30 17:57:46 +01:00
#include "programmemory.h"
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
#include "reverseanalyzer.h"
Value flow: refactorings, write debug warning if iterating too far
2014-01-05 20:06:46 +01:00
#include "settings.h"
cleaned up includes based on `include-what-you-use` (#4599)
2023-03-02 21:50:14 +01:00
#include "smallvector.h"
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
#include "sourcelocation.h"
iwyu - include what you use
2017-05-27 04:33:47 +02:00
#include "standards.h"
Value flow: refactorings, write debug warning if iterating too far
2014-01-05 20:06:46 +01:00
#include "symboldatabase.h"
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
#include "timer.h"
Value flow: refactorings, write debug warning if iterating too far
2014-01-05 20:06:46 +01:00
#include "token.h"
#include "tokenlist.h"
ValueFlow: Use getOrdinalText()
2017-05-23 15:01:56 +02:00
#include "utils.h"
cleaned up includes based on include-what-you-use (#2632) * cleaned up includes based on include-what-you-use * token.cpp: fixed -Wextra-semi-stmt warning
2020-05-10 16:45:45 +02:00
#include "valueptr.h"
extracted `ValueFlow::Value` to `vfvalue.{cpp|h}` (#4642)
2023-01-26 22:23:22 +01:00
#include "vfvalue.h"
iwyu - include what you use
2017-05-27 04:33:47 +02:00
#include <algorithm>
Use static array to store iterator infer models instead of constructing a vector everytime (#3539)
2021-11-01 19:18:18 +01:00
#include <array>
Fix issue 8785: ValueFlow: Track pointer alias This fixes the issue by making `ProgramMemory` keep track of values based on the conditions. It also removes the `deadpointer` check since it duplicates the `invalidLifetime` check.
2019-09-03 17:15:58 +02:00
#include <cassert>
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
#include <chrono>
avoid dependency on transitive includes - based on include-what-you-use (#3757)
2022-01-27 19:03:20 +01:00
#include <climits>
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
#include <cstdlib>
optimized non-matchcompiled Token::simpleMatch() a bit (#2640)
2020-05-26 20:13:56 +02:00
#include <cstring>
avoid dependency on transitive includes - based on include-what-you-use (#3757)
2022-01-27 19:03:20 +01:00
#include <exception>
Fix issue 8369: False negative: Condition 'condition' is always true (#1325) * Fix issue 8369: False negative: Condition 'condition' is always true * Use simpleMatch * Add iterator header * Cleanup * Remove unused variable
2018-08-10 18:05:23 +02:00
#include <functional>
avoid dependency on transitive includes - based on include-what-you-use (#3757)
2022-01-27 19:03:20 +01:00
#include <initializer_list>
Fix issue 8369: False negative: Condition 'condition' is always true (#1325) * Fix issue 8369: False negative: Condition 'condition' is always true * Use simpleMatch * Add iterator header * Cleanup * Remove unused variable
2018-08-10 18:05:23 +02:00
#include <iterator>
iwyu - include what you use
2017-05-27 04:33:47 +02:00
#include <limits>
#include <map>
avoid dependency on transitive includes - based on include-what-you-use (#3757)
2022-01-27 19:03:20 +01:00
#include <memory>
iwyu - include what you use
2017-05-27 04:33:47 +02:00
#include <set>
extracted `ValueFlow::Value` to `vfvalue.{cpp|h}` (#4642)
2023-01-26 22:23:22 +01:00
#include <sstream> // IWYU pragma: keep
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
#include <string>
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
#include <type_traits>
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
#include <unordered_map>
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
#include <unordered_set>
iwyu - include what you use
2017-05-27 04:33:47 +02:00
#include <vector>
value flow: added experimental subfunction handling
2014-01-06 16:37:52 +01:00
Fix #12208 FN constParameterReference with nested struct/class (#5685)
2023-11-20 22:01:22 +01:00
static void bailoutInternal(const std::string& type, const TokenList &tokenlist, ErrorLogger *errorLogger, const Token *tok, const std::string &what, const std::string &file, int line, std::string function)
value flow: added bailouts for global variables and assignments
2014-01-06 07:44:58 +01:00
{
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
if (function.find("operator") != std::string::npos)
function = "(valueFlow)";
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
std::list<ErrorMessage::FileLocation> callstack(1, ErrorMessage::FileLocation(tok, &tokenlist));
ValueFlow: omit unnecessary location information from `valueFlowBailoutIncompleteVar` (#5583) This is unnecessary since we only issue it from a single location. It also leads to a lot of unnecessary noise in the daca diff reports.
2023-10-23 10:13:10 +02:00
const std::string location = Path::stripDirectoryPart(file) + ":" + std::to_string(line) + ":";
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
ErrorMessage errmsg(callstack, tokenlist.getSourceFilePath(), Severity::debug,
ValueFlow: omit unnecessary location information from `valueFlowBailoutIncompleteVar` (#5583) This is unnecessary since we only issue it from a single location. It also leads to a lot of unnecessary noise in the daca diff reports.
2023-10-23 10:13:10 +02:00
(file.empty() ? "" : location) + function + " bailout: " + what, type, Certainty::normal);
value flow: added bailouts for global variables and assignments
2014-01-06 07:44:58 +01:00
errorLogger->reportErr(errmsg);
}
split "valueFlowBailoutIncompleteVar" from more generic "valueFlowBailout" (#2976)
2020-12-26 13:48:22 +01:00
#define bailout2(type, tokenlist, errorLogger, tok, what) bailoutInternal(type, tokenlist, errorLogger, tok, what, __FILE__, __LINE__, __func__)
pull request for ticket 8180 (better diagnostic output for bailouts) (#964) * sync build instructions from readme.txt * refactored the patch from ticket 8180. Moved logic from macros to the bailoutInternal function * adapt to new bailout message format * adapt to new bailout message format * adapt to new bailout message format * compile fix for Microsoft platform * remove directory part from file locations in bailout message (normalize) * remove directory part from valueflow message filter * adapt tests to file format without directory part * adapt tests to file format without directory part * new line number agnostic assert_equals methods * new line number agnostic assert_equals methods * adapt to new method assertEqualsWithoutLineNumbers() * adapt to new method assertEqualsWithoutLineNumbers() * Bugfix: do not replace line number with spaces, remove it * review changes: const char * -> std::string, size_t -> int, std::to_string() -> MathLib::toString() * set #line at the beginning to guard against insertions from match compiler * Bugfix: counting lines can be difficult :-) #line 1 -> #line 2 * added method stripDirectoryPart() * added method stripDirectoryPart() * used new method Path::stripDirectoryPart() * new dependency path.h in lib/valueFlow.cpp * code cleanup, removing redundant temporary objects and casts
2017-10-05 23:03:13 +02:00
split "valueFlowBailoutIncompleteVar" from more generic "valueFlowBailout" (#2976)
2020-12-26 13:48:22 +01:00
#define bailout(tokenlist, errorLogger, tok, what) bailout2("valueFlowBailout", tokenlist, errorLogger, tok, what)
ValueFlow: omit unnecessary location information from `valueFlowBailoutIncompleteVar` (#5583) This is unnecessary since we only issue it from a single location. It also leads to a lot of unnecessary noise in the daca diff reports.
2023-10-23 10:13:10 +02:00
#define bailoutIncompleteVar(tokenlist, errorLogger, tok, what) bailoutInternal("valueFlowBailoutIncompleteVar", tokenlist, errorLogger, tok, what, "", 0, __func__)
split "valueFlowBailoutIncompleteVar" from more generic "valueFlowBailout" (#2976)
2020-12-26 13:48:22 +01:00
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
static std::string debugString(const ValueFlow::Value& v)
{
std::string kind;
switch (v.valueKind) {
case ValueFlow::Value::ValueKind::Impossible:
case ValueFlow::Value::ValueKind::Known:
kind = "always";
break;
case ValueFlow::Value::ValueKind::Inconclusive:
kind = "inconclusive";
break;
case ValueFlow::Value::ValueKind::Possible:
kind = "possible";
break;
}
return kind + " " + v.toString();
}
static void setSourceLocation(ValueFlow::Value& v,
SourceLocation ctx,
const Token* tok,
SourceLocation local = SourceLocation::current())
{
std::string file = ctx.file_name();
if (file.empty())
return;
fixed #6316 (Use std::to_string() in place of MathLib::toString() ...) - deleted default implementation of `Mathlib::toString()` (#5341) It was also used inconsistently and seemed to imply there is some special handling which wasn't the case. It was just an alias for `std::to_string()` for non-`double` types. So there was no need for it. --------- Co-authored-by: Robert Reif <reif@earthlink.net>
2023-08-17 16:46:32 +02:00
std::string s = Path::stripDirectoryPart(file) + ":" + std::to_string(ctx.line()) + ": " + ctx.function_name() +
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
" => " + local.function_name() + ": " + debugString(v);
avoid unnecessary copies with `emplace_back()` (#4450) * avoid unnecessary copies with `emplace_back()` * cmdlineparser.cpp: suppress `accessMoved` selfcheck false positives
2022-09-10 11:25:15 +02:00
v.debugPath.emplace_back(tok, std::move(s));
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
}
Fix issue 9305: False positive uninitvar - struct initialized via function (#2123)
2019-08-30 18:32:45 +02:00
static void changeKnownToPossible(std::list<ValueFlow::Value> &values, int indirect=-1)
Fixed #8246 (ValueFlow: known value, function pointer argument)
2017-11-17 23:04:54 +01:00
{
Fix issue 9305: False positive uninitvar - struct initialized via function (#2123)
2019-08-30 18:32:45 +02:00
for (ValueFlow::Value& v: values) {
if (indirect >= 0 && v.indirect != indirect)
continue;
v.changeKnownToPossible();
}
Fixed #8246 (ValueFlow: known value, function pointer argument)
2017-11-17 23:04:54 +01:00
}
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
static void removeImpossible(std::list<ValueFlow::Value>& values, int indirect = -1)
{
values.remove_if([&](const ValueFlow::Value& v) {
if (indirect >= 0 && v.indirect != indirect)
return false;
return v.isImpossible();
});
}
static void lowerToPossible(std::list<ValueFlow::Value>& values, int indirect = -1)
{
changeKnownToPossible(values, indirect);
removeImpossible(values, indirect);
}
static void changePossibleToKnown(std::list<ValueFlow::Value>& values, int indirect = -1)
{
for (ValueFlow::Value& v : values) {
if (indirect >= 0 && v.indirect != indirect)
continue;
if (!v.isPossible())
continue;
if (v.bound != ValueFlow::Value::Bound::Point)
continue;
v.setKnown();
}
}
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
static bool isNonConditionalPossibleIntValue(const ValueFlow::Value& v)
{
if (v.conditional)
return false;
if (v.condition)
return false;
if (!v.isPossible())
return false;
if (!v.isIntValue())
return false;
return true;
}
Fix gcc compiler warnings
2019-09-28 20:50:56 +02:00
static void setValueUpperBound(ValueFlow::Value& value, bool upper)
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
{
if (upper)
value.bound = ValueFlow::Value::Bound::Upper;
else
value.bound = ValueFlow::Value::Bound::Lower;
}
Fix gcc compiler warnings
2019-09-28 20:50:56 +02:00
static void setValueBound(ValueFlow::Value& value, const Token* tok, bool invert)
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
{
if (Token::Match(tok, "<|<=")) {
setValueUpperBound(value, !invert);
} else if (Token::Match(tok, ">|>=")) {
setValueUpperBound(value, invert);
}
}
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
static void setConditionalValue(ValueFlow::Value& value, const Token* tok, MathLib::bigint i)
{
assert(value.isIntValue());
value.intvalue = i;
value.assumeCondition(tok);
value.setPossible();
}
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
static void setConditionalValues(const Token* tok,
bool lhs,
Fix issue 8785: ValueFlow: Track pointer alias This fixes the issue by making `ProgramMemory` keep track of values based on the conditions. It also removes the `deadpointer` check since it duplicates the `invalidLifetime` check.
2019-09-03 17:15:58 +02:00
MathLib::bigint value,
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
ValueFlow::Value& true_value,
ValueFlow::Value& false_value)
Fix issue 8785: ValueFlow: Track pointer alias This fixes the issue by making `ProgramMemory` keep track of values based on the conditions. It also removes the `deadpointer` check since it duplicates the `invalidLifetime` check.
2019-09-03 17:15:58 +02:00
{
if (Token::Match(tok, "==|!=|>=|<=")) {
Fix 11114: FP knownConditionTrueFalse across functions (#4163) * Fix 11114: FP knownConditionTrueFalse across functions * Format
2022-06-02 23:24:11 +02:00
setConditionalValue(true_value, tok, value);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
const char* greaterThan = ">=";
const char* lessThan = "<=";
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
if (lhs)
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
std::swap(greaterThan, lessThan);
optimized non-matchcompiled Token::simpleMatch() a bit (#2640)
2020-05-26 20:13:56 +02:00
if (Token::simpleMatch(tok, greaterThan, strlen(greaterThan))) {
Fix 11114: FP knownConditionTrueFalse across functions (#4163) * Fix 11114: FP knownConditionTrueFalse across functions * Format
2022-06-02 23:24:11 +02:00
setConditionalValue(false_value, tok, value - 1);
optimized non-matchcompiled Token::simpleMatch() a bit (#2640)
2020-05-26 20:13:56 +02:00
} else if (Token::simpleMatch(tok, lessThan, strlen(lessThan))) {
Fix 11114: FP knownConditionTrueFalse across functions (#4163) * Fix 11114: FP knownConditionTrueFalse across functions * Format
2022-06-02 23:24:11 +02:00
setConditionalValue(false_value, tok, value + 1);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
} else {
Fix 11114: FP knownConditionTrueFalse across functions (#4163) * Fix 11114: FP knownConditionTrueFalse across functions * Format
2022-06-02 23:24:11 +02:00
setConditionalValue(false_value, tok, value);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
}
} else {
const char* greaterThan = ">";
const char* lessThan = "<";
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
if (lhs)
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
std::swap(greaterThan, lessThan);
optimized non-matchcompiled Token::simpleMatch() a bit (#2640)
2020-05-26 20:13:56 +02:00
if (Token::simpleMatch(tok, greaterThan, strlen(greaterThan))) {
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
setConditionalValue(true_value, tok, value + 1);
setConditionalValue(false_value, tok, value);
optimized non-matchcompiled Token::simpleMatch() a bit (#2640)
2020-05-26 20:13:56 +02:00
} else if (Token::simpleMatch(tok, lessThan, strlen(lessThan))) {
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
setConditionalValue(true_value, tok, value - 1);
setConditionalValue(false_value, tok, value);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
}
}
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
setValueBound(true_value, tok, lhs);
setValueBound(false_value, tok, !lhs);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
}
static bool isSaturated(MathLib::bigint value)
{
return value == std::numeric_limits<MathLib::bigint>::max() || value == std::numeric_limits<MathLib::bigint>::min();
Fix issue 8785: ValueFlow: Track pointer alias This fixes the issue by making `ProgramMemory` keep track of values based on the conditions. It also removes the `deadpointer` check since it duplicates the `invalidLifetime` check.
2019-09-03 17:15:58 +02:00
}
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
static void parseCompareEachInt(
const Token* tok,
const std::function<void(const Token* varTok, ValueFlow::Value true_value, ValueFlow::Value false_value)>& each,
const std::function<std::vector<ValueFlow::Value>(const Token*)>& evaluate)
Fix issue 8785: ValueFlow: Track pointer alias This fixes the issue by making `ProgramMemory` keep track of values based on the conditions. It also removes the `deadpointer` check since it duplicates the `invalidLifetime` check.
2019-09-03 17:15:58 +02:00
{
if (!tok->astOperand1() || !tok->astOperand2())
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
return;
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
if (tok->isComparisonOp()) {
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
std::vector<ValueFlow::Value> value1 = evaluate(tok->astOperand1());
std::vector<ValueFlow::Value> value2 = evaluate(tok->astOperand2());
Fix 10294: ValueFlow: Wrong <Uninit> value below loop (#3291)
2021-06-09 09:20:43 +02:00
if (!value1.empty() && !value2.empty()) {
if (tok->astOperand1()->hasKnownIntValue())
value2.clear();
if (tok->astOperand2()->hasKnownIntValue())
value1.clear();
}
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
for (const ValueFlow::Value& v1 : value1) {
ValueFlow::Value true_value = v1;
ValueFlow::Value false_value = v1;
if (isSaturated(v1.intvalue) || astIsFloat(tok->astOperand2(), /*unknown*/ false))
continue;
setConditionalValues(tok, true, v1.intvalue, true_value, false_value);
each(tok->astOperand2(), std::move(true_value), std::move(false_value));
}
for (const ValueFlow::Value& v2 : value2) {
ValueFlow::Value true_value = v2;
ValueFlow::Value false_value = v2;
if (isSaturated(v2.intvalue) || astIsFloat(tok->astOperand1(), /*unknown*/ false))
continue;
setConditionalValues(tok, false, v2.intvalue, true_value, false_value);
each(tok->astOperand1(), std::move(true_value), std::move(false_value));
Fix issue 8785: ValueFlow: Track pointer alias This fixes the issue by making `ProgramMemory` keep track of values based on the conditions. It also removes the `deadpointer` check since it duplicates the `invalidLifetime` check.
2019-09-03 17:15:58 +02:00
}
}
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
}
static void parseCompareEachInt(
const Token* tok,
const std::function<void(const Token* varTok, ValueFlow::Value true_value, ValueFlow::Value false_value)>& each)
{
parseCompareEachInt(tok, each, [](const Token* t) -> std::vector<ValueFlow::Value> {
if (t->hasKnownIntValue())
return {t->values().front()};
std::vector<ValueFlow::Value> result;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(t->values().cbegin(), t->values().cend(), std::back_inserter(result), [&](const ValueFlow::Value& v) {
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
if (v.path < 1)
return false;
if (!isNonConditionalPossibleIntValue(v))
return false;
return true;
});
return result;
});
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Token* ValueFlow::parseCompareInt(const Token* tok,
ValueFlow::Value& true_value,
ValueFlow::Value& false_value,
const std::function<std::vector<MathLib::bigint>(const Token*)>& evaluate)
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
{
const Token* result = nullptr;
parseCompareEachInt(
tok,
[&](const Token* vartok, ValueFlow::Value true_value2, ValueFlow::Value false_value2) {
if (result)
return;
result = vartok;
true_value = std::move(true_value2);
false_value = std::move(false_value2);
},
[&](const Token* t) -> std::vector<ValueFlow::Value> {
std::vector<ValueFlow::Value> r;
std::vector<MathLib::bigint> v = evaluate(t);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::transform(v.cbegin(), v.cend(), std::back_inserter(r), [&](MathLib::bigint i) {
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
return ValueFlow::Value{i};
});
return r;
});
return result;
Fix issue 8785: ValueFlow: Track pointer alias This fixes the issue by making `ProgramMemory` keep track of values based on the conditions. It also removes the `deadpointer` check since it duplicates the `invalidLifetime` check.
2019-09-03 17:15:58 +02:00
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Token *ValueFlow::parseCompareInt(const Token *tok, ValueFlow::Value &true_value, ValueFlow::Value &false_value)
Infer variables from conditions in valueFlowSubfunction (#3037)
2021-01-11 08:00:13 +01:00
{
return parseCompareInt(tok, true_value, false_value, [](const Token* t) -> std::vector<MathLib::bigint> {
if (t->hasKnownIntValue())
return {t->values().front().intvalue};
return std::vector<MathLib::bigint>{};
});
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static bool isEscapeScope(const Token* tok, const Settings* settings, bool unknown = false)
Add a pass in valueflow for terminating conditions (#1323) * Add valueflow for terminating conditions * Add valueflow test * Dont check for same expressions for now to avoid double diagnostics * Check nesting * Add more tests * Ensure conditions happen in order * Check for null * Add error path * Support same expression check as well * Use early continue * Skip checking the same token * Avoid double condtion diagnosis * Fix FP when in switch statements * Fix FP when time function * Skip conditional escapes * Use simpleMatch * Fix naming * Fix typo
2018-11-07 06:49:07 +01:00
{
if (!Token::simpleMatch(tok, "{"))
return false;
Added TODO comment
2019-08-26 06:56:29 +02:00
// TODO this search for termTok in all subscopes. It should check the end of the scope.
Add a pass in valueflow for terminating conditions (#1323) * Add valueflow for terminating conditions * Add valueflow test * Dont check for same expressions for now to avoid double diagnostics * Check nesting * Add more tests * Ensure conditions happen in order * Check for null * Add error path * Support same expression check as well * Use early continue * Skip checking the same token * Avoid double condtion diagnosis * Fix FP when in switch statements * Fix FP when time function * Skip conditional escapes * Use simpleMatch * Fix naming * Fix typo
2018-11-07 06:49:07 +01:00
const Token * termTok = Token::findmatch(tok, "return|continue|break|throw|goto", tok->link());
astyle formatting [ci skip]
2018-11-12 06:32:02 +01:00
if (termTok && termTok->scope() == tok->scope())
Fix issue 8841: FP knownConditionTrueFalse - Dont treat unknown function as noreturn (#1474) * Fix issue 8841: Dont treat unknown function as noreturn * Add a parameter to set default value when the function is unknown
2018-11-11 08:04:01 +01:00
return true;
std::string unknownFunction;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (settings->library.isScopeNoReturn(tok->link(), &unknownFunction))
Fix issue 8841: FP knownConditionTrueFalse - Dont treat unknown function as noreturn (#1474) * Fix issue 8841: Dont treat unknown function as noreturn * Add a parameter to set default value when the function is unknown
2018-11-11 08:04:01 +01:00
return unknownFunction.empty() || unknown;
return false;
Add a pass in valueflow for terminating conditions (#1323) * Add valueflow for terminating conditions * Add valueflow test * Dont check for same expressions for now to avoid double diagnostics * Check nesting * Add more tests * Ensure conditions happen in order * Check for null * Add error path * Support same expression check as well * Use early continue * Skip checking the same token * Avoid double condtion diagnosis * Fix FP when in switch statements * Fix FP when time function * Skip conditional escapes * Use simpleMatch * Fix naming * Fix typo
2018-11-07 06:49:07 +01:00
}
Replace 'unsigned' with 'nonneg' in valueflow
2019-07-15 13:47:17 +02:00
static ValueFlow::Value castValue(ValueFlow::Value value, const ValueType::Sign sign, nonneg int bit)
ValueFlow: Better handling of casts
2016-12-20 19:32:21 +01:00
{
if (value.isFloatValue()) {
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::INT;
Fix UB when converting float to int (#984)
2017-11-03 14:05:23 +01:00
if (value.floatValue >= std::numeric_limits<int>::min() && value.floatValue <= std::numeric_limits<int>::max()) {
value.intvalue = value.floatValue;
} else { // don't perform UB
value.intvalue = 0;
}
ValueFlow: Better handling of casts
2016-12-20 19:32:21 +01:00
}
Fixed #8247 (False positive knownConditionTrueFalse)
2017-10-20 17:31:58 +02:00
if (bit < MathLib::bigint_bits) {
fixed some "Variable can be made constexpr" Rider warnings (#5615)
2023-11-03 09:55:44 +01:00
constexpr MathLib::biguint one = 1;
Use MathLib::bigint_bits
2017-10-21 22:08:34 +02:00
value.intvalue &= (one << bit) - 1;
if (sign == ValueType::Sign::SIGNED && value.intvalue & (one << (bit - 1))) {
value.intvalue |= ~((one << bit) - 1ULL);
ValueFlow: Better handling of casts
2016-12-20 19:32:21 +01:00
}
}
return value;
}
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
static bool isNumeric(const ValueFlow::Value& value) {
return value.isIntValue() || value.isFloatValue();
}
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
void ValueFlow::combineValueProperties(const ValueFlow::Value &value1, const ValueFlow::Value &value2, ValueFlow::Value &result)
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
{
if (value1.isKnown() && value2.isKnown())
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.setKnown();
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
else if (value1.isImpossible() || value2.isImpossible())
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.setImpossible();
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
else if (value1.isInconclusive() || value2.isInconclusive())
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.setInconclusive();
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
else
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.setPossible();
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
if (value1.tokvalue)
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.tokvalue = value1.tokvalue;
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
else if (value2.tokvalue)
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.tokvalue = value2.tokvalue;
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
if (value1.isSymbolicValue()) {
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.valueType = value1.valueType;
result.tokvalue = value1.tokvalue;
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
}
if (value2.isSymbolicValue()) {
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.valueType = value2.valueType;
result.tokvalue = value2.tokvalue;
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
}
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
if (value1.isIteratorValue())
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.valueType = value1.valueType;
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
if (value2.isIteratorValue())
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.valueType = value2.valueType;
result.condition = value1.condition ? value1.condition : value2.condition;
result.varId = (value1.varId != 0) ? value1.varId : value2.varId;
result.varvalue = (result.varId == value1.varId) ? value1.varvalue : value2.varvalue;
result.errorPath = (value1.errorPath.empty() ? value2 : value1).errorPath;
result.safe = value1.safe || value2.safe;
Fix issue 6890: ValueFlow: min/max value for variable, after condition (#2460) * Set bounds when combining values * Adust bounds when they are negated * Try to infer conditional values * Switch false and true * Fix checking of conditions * Fix compare * Fix remaining tests * Fix overflows
2019-12-26 15:47:53 +01:00
if (value1.bound == ValueFlow::Value::Bound::Point || value2.bound == ValueFlow::Value::Bound::Point) {
if (value1.bound == ValueFlow::Value::Bound::Upper || value2.bound == ValueFlow::Value::Bound::Upper)
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.bound = ValueFlow::Value::Bound::Upper;
Fix issue 6890: ValueFlow: min/max value for variable, after condition (#2460) * Set bounds when combining values * Adust bounds when they are negated * Try to infer conditional values * Switch false and true * Fix checking of conditions * Fix compare * Fix remaining tests * Fix overflows
2019-12-26 15:47:53 +01:00
if (value1.bound == ValueFlow::Value::Bound::Lower || value2.bound == ValueFlow::Value::Bound::Lower)
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.bound = ValueFlow::Value::Bound::Lower;
Fix issue 6890: ValueFlow: min/max value for variable, after condition (#2460) * Set bounds when combining values * Adust bounds when they are negated * Try to infer conditional values * Switch false and true * Fix checking of conditions * Fix compare * Fix remaining tests * Fix overflows
2019-12-26 15:47:53 +01:00
}
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
if (value1.path != value2.path)
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.path = -1;
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
else
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
result.path = value1.path;
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
}
Fix #11449 Function call not recognized with extra parentheses / FP nullPointer (#4703)
2023-01-18 20:38:37 +01:00
static const Token *getCastTypeStartToken(const Token *parent, const Settings* settings)
Fixed #8863 (false positive: (warning) Accessing an item in container 's'. Either the condition 's.empty()' is redundant or 's' can be empty.)
2019-01-06 12:21:47 +01:00
{
// TODO: This might be a generic utility function?
Fix 10578: Value not impossible after check (#3549)
2021-11-07 18:19:56 +01:00
if (!Token::Match(parent, "{|("))
return nullptr;
// Functional cast
if (parent->isBinaryOp() && Token::Match(parent->astOperand1(), "%type% (|{") &&
parent->astOperand1()->tokType() == Token::eType && astIsPrimitive(parent))
return parent->astOperand1();
if (parent->str() != "(")
Fixed #8863 (false positive: (warning) Accessing an item in container 's'. Either the condition 's.empty()' is redundant or 's' can be empty.)
2019-01-06 12:21:47 +01:00
return nullptr;
Amend fix for #11449 Function call not recognized (#4838)
2023-03-02 21:45:15 +01:00
if (!parent->astOperand2() && Token::Match(parent, "( %name%|::")) {
const Token* ftok = parent->next();
if (ftok->isStandardType())
return ftok;
if (Token::simpleMatch(ftok, "::"))
ftok = ftok->next();
while (Token::Match(ftok, "%name% ::"))
ftok = ftok->tokAt(2);
if (settings->library.isNotLibraryFunction(ftok))
return parent->next();
}
Fixed #8863 (false positive: (warning) Accessing an item in container 's'. Either the condition 's.empty()' is redundant or 's' can be empty.)
2019-01-06 12:21:47 +01:00
if (parent->astOperand2() && Token::Match(parent->astOperand1(), "const_cast|dynamic_cast|reinterpret_cast|static_cast <"))
return parent->astOperand1()->tokAt(2);
return nullptr;
}
Fix #9549 FP knownConditionTrueFalse (bitshift) (#3616)
2021-12-14 07:30:57 +01:00
// does the operation cause a loss of information?
static bool isNonInvertibleOperation(const Token* tok)
{
Fix 10981: ValueFlow: multiplication with 0 should have known value 0 (#4023)
2022-04-14 18:13:04 +02:00
return !Token::Match(tok, "+|-");
Fix #9549 FP knownConditionTrueFalse (bitshift) (#3616)
2021-12-14 07:30:57 +01:00
}
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
static bool isComputableValue(const Token* parent, const ValueFlow::Value& value)
{
Fix #9549 FP knownConditionTrueFalse (bitshift) (#3616)
2021-12-14 07:30:57 +01:00
const bool noninvertible = isNonInvertibleOperation(parent);
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
if (noninvertible && value.isImpossible())
return false;
if (!value.isIntValue() && !value.isFloatValue() && !value.isTokValue() && !value.isIteratorValue())
return false;
if (value.isIteratorValue() && !Token::Match(parent, "+|-"))
return false;
Fix 11647: FN knownConditionTrueFalse with strings of same length (#4936) * Fix 11647: FN knownConditionTrueFalse with strings of same length * Format * Remove extra size * Use simpleMatch
2023-04-06 18:42:24 +02:00
if (value.isTokValue() && (!parent->isComparisonOp() || !Token::Match(value.tokvalue, "{|%str%")))
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
return false;
return true;
}
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
static Library::Container::Yield getContainerYield(Token* tok, const Settings* settings, Token** parent = nullptr)
{
if (Token::Match(tok, ". %name% (") && tok->astParent() == tok->tokAt(2) && tok->astOperand1() &&
tok->astOperand1()->valueType()) {
const Library::Container* c = getLibraryContainer(tok->astOperand1());
if (parent)
*parent = tok->astParent();
return c ? c->getYield(tok->strAt(1)) : Library::Container::Yield::NO_YIELD;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
if (Token::Match(tok->previous(), "%name% (")) {
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
if (parent)
*parent = tok;
if (const Library::Function* f = settings->library.getFunction(tok->previous())) {
return f->containerYield;
}
}
return Library::Container::Yield::NO_YIELD;
}
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
/** Set token value for cast */
static void setTokenValueCast(Token *parent, const ValueType &valueType, const ValueFlow::Value &value, const Settings *settings);
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
static bool isCompatibleValueTypes(ValueFlow::Value::ValueType x, ValueFlow::Value::ValueType y)
{
static const std::unordered_map<ValueFlow::Value::ValueType,
std::unordered_set<ValueFlow::Value::ValueType, EnumClassHash>,
EnumClassHash>
compatibleTypes = {
{ValueFlow::Value::ValueType::INT,
{ValueFlow::Value::ValueType::FLOAT,
ValueFlow::Value::ValueType::SYMBOLIC,
ValueFlow::Value::ValueType::TOK}},
{ValueFlow::Value::ValueType::FLOAT, {ValueFlow::Value::ValueType::INT}},
{ValueFlow::Value::ValueType::TOK, {ValueFlow::Value::ValueType::INT}},
{ValueFlow::Value::ValueType::ITERATOR_START, {ValueFlow::Value::ValueType::INT}},
{ValueFlow::Value::ValueType::ITERATOR_END, {ValueFlow::Value::ValueType::INT}},
};
if (x == y)
return true;
auto it = compatibleTypes.find(x);
if (it == compatibleTypes.end())
return false;
return it->second.count(y) > 0;
}
Fix 10289: ValueFlow; Wrong known value 'size_t - uint16_t > 0' (#3273)
2021-05-24 08:28:21 +02:00
static bool isCompatibleValues(const ValueFlow::Value& value1, const ValueFlow::Value& value2)
{
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
if (value1.isSymbolicValue() && value2.isSymbolicValue() && value1.tokvalue->exprId() != value2.tokvalue->exprId())
return false;
if (!isCompatibleValueTypes(value1.valueType, value2.valueType))
return false;
Fix 10289: ValueFlow; Wrong known value 'size_t - uint16_t > 0' (#3273)
2021-05-24 08:28:21 +02:00
if (value1.isKnown() || value2.isKnown())
return true;
if (value1.isImpossible() || value2.isImpossible())
return false;
if (value1.varId == 0 || value2.varId == 0)
return true;
if (value1.varId == value2.varId && value1.varvalue == value2.varvalue && value1.isIntValue() && value2.isIntValue())
return true;
return false;
}
Fix 10298: ValueFlow: Wrong known value, 'x == -1' implicit unsigned cast for rhs (#3277)
2021-06-04 17:17:41 +02:00
static ValueFlow::Value truncateImplicitConversion(Token* parent, const ValueFlow::Value& value, const Settings* settings)
{
if (!value.isIntValue() && !value.isFloatValue())
return value;
if (!parent)
return value;
if (!parent->isBinaryOp())
return value;
if (!parent->isConstOp())
return value;
if (!astIsIntegral(parent->astOperand1(), false))
return value;
if (!astIsIntegral(parent->astOperand2(), false))
return value;
const ValueType* vt1 = parent->astOperand1()->valueType();
const ValueType* vt2 = parent->astOperand2()->valueType();
// If the sign is the same there is no truncation
if (vt1->sign == vt2->sign)
return value;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const size_t n1 = ValueFlow::getSizeOf(*vt1, settings);
const size_t n2 = ValueFlow::getSizeOf(*vt2, settings);
Fix 10298: ValueFlow: Wrong known value, 'x == -1' implicit unsigned cast for rhs (#3277)
2021-06-04 17:17:41 +02:00
ValueType::Sign sign = ValueType::Sign::UNSIGNED;
if (n1 < n2)
sign = vt2->sign;
else if (n1 > n2)
sign = vt1->sign;
ValueFlow::Value v = castValue(value, sign, std::max(n1, n2) * 8);
v.wideintvalue = value.intvalue;
return v;
}
ValueFlow: Refactoring setTokenValue()
2015-07-17 09:46:31 +02:00
/** set ValueFlow value and perform calculations if possible */
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
static void setTokenValue(Token* tok,
ValueFlow::Value value,
const Settings* settings,
SourceLocation loc = SourceLocation::current())
ValueFlow: Refactoring setTokenValue()
2015-07-17 09:46:31 +02:00
{
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
// Skip setting values that are too big since its ambiguous
if (!value.isImpossible() && value.isIntValue() && value.intvalue < 0 && astIsUnsigned(tok) &&
ValueFlow::getSizeOf(*tok->valueType(), settings) >= sizeof(MathLib::bigint))
return;
Fix 10298: ValueFlow: Wrong known value, 'x == -1' implicit unsigned cast for rhs (#3277)
2021-06-04 17:17:41 +02:00
if (!value.isImpossible() && value.isIntValue())
value = truncateImplicitConversion(tok->astParent(), value, settings);
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
if (settings->debugnormal)
setSourceLocation(value, loc, tok);
Refactorization: Allocate Token::_values (ValueFlow information) dynamically, reducing size of each token by around 10%
2017-03-27 18:48:34 +02:00
if (!tok->addValue(value))
ValueFlow: Refactoring setTokenValue()
2015-07-17 09:46:31 +02:00
return;
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
if (value.path < 0)
return;
Cleanup some const_cast of Token* (#1886) * Add non const version of some methods of Token The aim is to reduce the (ab)use of const_cast. * Cleanup some more const_cast in valueflow * Remove useless const_cast * Remove some const_cast from templatesimplifier * Remove some const_cast from valueflow
2019-06-16 10:09:38 +02:00
Token *parent = tok->astParent();
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
if (!parent)
return;
value flow: improved handling of cast
2014-01-20 22:26:55 +01:00
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
if (Token::simpleMatch(parent, ",") && !parent->isInitComma() && astIsRHS(tok)) {
Fix 11250: FN: bufferAccessOutOfBounds (comma operator: int x = (3,4) ) (#4636) * Fix 11250: FN: bufferAccessOutOfBounds (comma operator: int x = (3,4) ) * Format
2022-12-13 07:52:58 +01:00
const Token* callParent = findParent(parent, [](const Token* p) {
return !Token::simpleMatch(p, ",");
});
Typos found by running "codespell" (#4702)
2023-01-10 15:15:27 +01:00
// Ensure that the comma isn't a function call
Fix #11449 Function call not recognized with extra parentheses / FP nullPointer (#4703)
2023-01-18 20:38:37 +01:00
if (!callParent || (!Token::Match(callParent->previous(), "%name%|> (") && !Token::simpleMatch(callParent, "{") &&
Partial fix for #11894 FP knownArgument with function pointer (#5366)
2023-08-26 00:37:10 +02:00
(!Token::Match(callParent, "( %name%") || settings->library.isNotLibraryFunction(callParent->next())) &&
Fix FP knownArgument (f'up to #11927) (#5434)
2023-09-11 20:02:00 +02:00
!(callParent->str() == "(" && (Token::simpleMatch(callParent->astOperand1(), "*") || Token::Match(callParent->astOperand1(), "%name%|("))))) {
Fix 11250: FN: bufferAccessOutOfBounds (comma operator: int x = (3,4) ) (#4636) * Fix 11250: FN: bufferAccessOutOfBounds (comma operator: int x = (3,4) ) * Format
2022-12-13 07:52:58 +01:00
setTokenValue(parent, std::move(value), settings);
return;
}
}
Add special function to match lifetimes (#5320) This also removes the termination checking in `valueFlowUninit` as this causes a lot of FNs.
2023-08-14 10:27:00 +02:00
if (Token::simpleMatch(parent, "=") && astIsRHS(tok)) {
setTokenValue(parent, value, settings);
if (!value.isUninitValue())
return;
Fix issue 10106: FP: nullPointerRedundantCheck (#3044)
2021-01-13 12:36:26 +01:00
}
Fix 11162: FP: knownConditionTrueFalse (#4254) * Fix 11162: FP: knownConditionTrueFalse * Format
2022-07-09 00:57:25 +02:00
if (value.isContainerSizeValue() && astIsContainer(tok)) {
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
// .empty, .size, +"abc", +'a'
Fix issue 8871: improve check: mismatching container size conditions (#2988)
2021-01-10 13:30:00 +01:00
if (Token::Match(parent, "+|==|!=") && parent->astOperand1() && parent->astOperand2()) {
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
for (const ValueFlow::Value &value1 : parent->astOperand1()->values()) {
Fix issue 10111: FP knownConditionTrueFalse (#3110)
2021-02-03 10:21:47 +01:00
if (value1.isImpossible())
continue;
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
for (const ValueFlow::Value &value2 : parent->astOperand2()->values()) {
Fix issue 10111: FP knownConditionTrueFalse (#3110)
2021-02-03 10:21:47 +01:00
if (value2.isImpossible())
continue;
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
if (value1.path != value2.path)
continue;
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
ValueFlow::Value result;
Fix issue 8871: improve check: mismatching container size conditions (#2988)
2021-01-10 13:30:00 +01:00
if (Token::Match(parent, "%comp%"))
result.valueType = ValueFlow::Value::ValueType::INT;
else
result.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
if (value1.isContainerSizeValue() && value2.isContainerSizeValue())
Fix issue 8871: improve check: mismatching container size conditions (#2988)
2021-01-10 13:30:00 +01:00
result.intvalue = calculate(parent->str(), value1.intvalue, value2.intvalue);
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
else if (value1.isContainerSizeValue() && value2.isTokValue() && value2.tokvalue->tokType() == Token::eString)
Fixed GCC compiler warnings
2021-01-10 15:27:42 +01:00
result.intvalue = calculate(parent->str(), value1.intvalue, MathLib::bigint(Token::getStrLength(value2.tokvalue)));
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
else if (value2.isContainerSizeValue() && value1.isTokValue() && value1.tokvalue->tokType() == Token::eString)
Fixed GCC compiler warnings
2021-01-10 15:27:42 +01:00
result.intvalue = calculate(parent->str(), MathLib::bigint(Token::getStrLength(value1.tokvalue)), value2.intvalue);
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
else
continue;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
combineValueProperties(value1, value2, result);
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
Fix issue 8871: improve check: mismatching container size conditions (#2988)
2021-01-10 13:30:00 +01:00
if (Token::simpleMatch(parent, "==") && result.intvalue)
continue;
if (Token::simpleMatch(parent, "!=") && !result.intvalue)
continue;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(result), settings);
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
}
}
}
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
Token* next = nullptr;
const Library::Container::Yield yields = getContainerYield(parent, settings, &next);
if (yields == Library::Container::Yield::SIZE) {
ValueFlow::Value v(value);
v.valueType = ValueFlow::Value::ValueType::INT;
setTokenValue(next, std::move(v), settings);
} else if (yields == Library::Container::Yield::EMPTY) {
ValueFlow::Value v(value);
v.valueType = ValueFlow::Value::ValueType::INT;
v.bound = ValueFlow::Value::Bound::Point;
if (value.isImpossible()) {
if (value.intvalue == 0)
Improve valueflow after pushing to container (#4803)
2023-02-23 18:05:31 +01:00
v.setKnown();
Fix issue 11867: Assert failure in valueFlowContainerSize() (#5317)
2023-08-13 22:31:38 +02:00
else if ((value.bound == ValueFlow::Value::Bound::Upper && value.intvalue > 0) ||
(value.bound == ValueFlow::Value::Bound::Lower && value.intvalue < 0)) {
v.intvalue = 0;
v.setKnown();
} else
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
v.setPossible();
} else {
v.intvalue = !v.intvalue;
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
}
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
setTokenValue(next, std::move(v), settings);
ValueFlow: Better handling of container size values
2018-11-02 18:28:32 +01:00
}
return;
}
astyle formatting [ci skip]
2018-11-12 10:08:57 +01:00
if (value.isLifetimeValue()) {
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
if (!ValueFlow::isLifetimeBorrowed(parent, settings))
Fix issue 9317: False positive returnDanglingLifetime when using reference to constant inside if statement (#2241)
2019-10-05 16:32:20 +02:00
return;
Refactoring: Use enum class
2019-07-16 10:51:07 +02:00
if (value.lifetimeKind == ValueFlow::Value::LifetimeKind::Iterator && astIsIterator(parent)) {
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent,std::move(value),settings);
Fix 10406: FP danglingLifetime with pointer-to-pointer (#3401)
2021-08-14 21:37:17 +02:00
} else if (astIsPointer(tok) && astIsPointer(parent) && !parent->isUnaryOp("*") &&
Fix 10308: danglingTemporaryLifetime confused by function parameter (#3292)
2021-06-09 09:21:03 +02:00
(parent->isArithmeticalOp() || parent->isCast())) {
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent,std::move(value),settings);
Extend lifetime analysis to pointer usage (#1477) * Use lifetime analysis for pointers as well * Fix issue 1143: Pointer to local array * Update message when using pointers * Avoid infinite loop in tracing lifetimes
2018-11-12 10:08:17 +01:00
}
return;
}
Fix issue 8825: ValueFlow: uninitialized struct member (#2087) * Pass uninit value across pointers * Add more testing
2019-08-15 10:44:55 +02:00
if (value.isUninitValue()) {
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
if (Token::Match(tok, ". %var%"))
setTokenValue(tok->next(), value, settings);
Fix 6577: Detect pointer to uninitialised memory with clock_settime() (#3993) * Fix 6577: Detect pointer to uninitialised memory with clock_settime() * Format
2022-04-11 07:23:44 +02:00
if (parent->isCast()) {
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(value), settings);
Fix 6577: Detect pointer to uninitialised memory with clock_settime() (#3993) * Fix 6577: Detect pointer to uninitialised memory with clock_settime() * Format
2022-04-11 07:23:44 +02:00
return;
}
Fix FP: Unitialized variable when using a pointer This fixes the FP in cases like this: ```cpp void f() { bool b; bool * x = &b; if (x != nullptr) x = 1; } ``` It tracks the indirection of the uninit value in valueflow.
2019-08-17 07:36:41 +02:00
ValueFlow::Value pvalue = value;
Fix 9735 for valueFlowUninit (#3538)
2021-11-06 19:06:07 +01:00
if (!value.subexpressions.empty() && Token::Match(parent, ". %var%")) {
if (contains(value.subexpressions, parent->next()->str()))
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
pvalue.subexpressions.clear();
Fix 9735 for valueFlowUninit (#3538)
2021-11-06 19:06:07 +01:00
else
return;
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
}
Fix FP: Unitialized variable when using a pointer This fixes the FP in cases like this: ```cpp void f() { bool b; bool * x = &b; if (x != nullptr) x = 1; } ``` It tracks the indirection of the uninit value in valueflow.
2019-08-17 07:36:41 +02:00
if (parent->isUnaryOp("&")) {
pvalue.indirect++;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(pvalue), settings);
Improvement: Set varId for variables with global scope operator :: Refactorization: Moved internal class from tokenize.h to tokenize.cpp (#4184) Merged from LCppC.
2022-06-11 08:11:16 +02:00
} else if (Token::Match(parent, ". %var%") && parent->astOperand1() == tok && parent->astOperand2()) {
Fix issue 6010: Uninitialized inner struct (#2098) * Fix issue 6010: Uninitialized inner struct * Show to root variable that is unitialized * Warn on pointer dereferences
2019-08-23 06:23:21 +02:00
if (parent->originalName() == "->" && pvalue.indirect > 0)
Fix FP: Unitialized variable when using a pointer This fixes the FP in cases like this: ```cpp void f() { bool b; bool * x = &b; if (x != nullptr) x = 1; } ``` It tracks the indirection of the uninit value in valueflow.
2019-08-17 07:36:41 +02:00
pvalue.indirect--;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent->astOperand2(), std::move(pvalue), settings);
Fix issue 6010: Uninitialized inner struct (#2098) * Fix issue 6010: Uninitialized inner struct * Show to root variable that is unitialized * Warn on pointer dereferences
2019-08-23 06:23:21 +02:00
} else if (Token::Match(parent->astParent(), ". %var%") && parent->astParent()->astOperand1() == parent) {
if (parent->astParent()->originalName() == "->" && pvalue.indirect > 0)
pvalue.indirect--;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent->astParent()->astOperand2(), std::move(pvalue), settings);
Fix FP: Unitialized variable when using a pointer This fixes the FP in cases like this: ```cpp void f() { bool b; bool * x = &b; if (x != nullptr) x = 1; } ``` It tracks the indirection of the uninit value in valueflow.
2019-08-17 07:36:41 +02:00
} else if (parent->isUnaryOp("*") && pvalue.indirect > 0) {
pvalue.indirect--;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(pvalue), settings);
Fix FP: Unitialized variable when using a pointer This fixes the FP in cases like this: ```cpp void f() { bool b; bool * x = &b; if (x != nullptr) x = 1; } ``` It tracks the indirection of the uninit value in valueflow.
2019-08-17 07:36:41 +02:00
}
Fix issue 8825: ValueFlow: uninitialized struct member (#2087) * Pass uninit value across pointers * Add more testing
2019-08-15 10:44:55 +02:00
return;
}
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
// cast..
Fix #11449 Function call not recognized with extra parentheses / FP nullPointer (#4703)
2023-01-18 20:38:37 +01:00
if (const Token *castType = getCastTypeStartToken(parent, settings)) {
Fix #11037 FP knownConditionTrueFalse with dynamic_cast (#4297)
2022-07-20 20:48:17 +02:00
if (contains({ValueFlow::Value::ValueType::INT, ValueFlow::Value::ValueType::SYMBOLIC}, value.valueType) &&
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
Token::simpleMatch(parent->astOperand1(), "dynamic_cast"))
return;
fixes #11104 (avoid C++-only parsing when processing C code in parsedecl()) / also avoid remaining `Library::detect*()` calls (#5346)
2023-08-18 22:48:24 +02:00
const ValueType &valueType = ValueType::parseDecl(castType, *settings);
Fix 10288: ValueFlow; False positives because of wrong known value when there is sign cast (#3268)
2021-05-23 10:20:29 +02:00
if (value.isImpossible() && value.isIntValue() && value.intvalue < 0 && astIsUnsigned(tok) &&
valueType.sign == ValueType::SIGNED && tok->valueType() &&
ValueFlow::getSizeOf(*tok->valueType(), settings) >= ValueFlow::getSizeOf(valueType, settings))
return;
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
setTokenValueCast(parent, valueType, value, settings);
ValueFlow: Better handling of casts
2016-12-20 19:32:21 +01:00
}
value flow: improved handling of cast
2014-01-20 22:26:55 +01:00
ValueFlow: Better handling of casts
2016-12-20 19:32:21 +01:00
else if (parent->str() == ":") {
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
setTokenValue(parent,value,settings);
Fixed #6811 (ValueFlow: result of ?:)
2015-07-02 20:11:27 +02:00
}
Fixed crash on garbage code (#7699)
2016-08-21 11:06:48 +02:00
else if (parent->str() == "?" && tok->str() == ":" && tok == parent->astOperand2() && parent->astOperand1()) {
ValueFlow: better handling of ? when condition result is known
2016-08-15 14:19:35 +02:00
// is condition always true/false?
Clarify code with Token::hasKnownValue()
2018-07-14 13:09:53 +02:00
if (parent->astOperand1()->hasKnownValue()) {
Refactorization: Allocate Token::_values (ValueFlow information) dynamically, reducing size of each token by around 10%
2017-03-27 18:48:34 +02:00
const ValueFlow::Value &condvalue = parent->astOperand1()->values().front();
ValueFlow: allow more value types
2016-11-13 22:33:39 +01:00
const bool cond(condvalue.isTokValue() || (condvalue.isIntValue() && condvalue.intvalue != 0));
Fixed #7688 (setTokenValue: crash when there is no 2nd operand for ternary operator)
2016-08-17 18:44:41 +02:00
if (cond && !tok->astOperand1()) { // true condition, no second operator
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
setTokenValue(parent, condvalue, settings);
Fixed #7688 (setTokenValue: crash when there is no 2nd operand for ternary operator)
2016-08-17 18:44:41 +02:00
} else {
const Token *op = cond ? tok->astOperand1() : tok->astOperand2();
#7769 segmentation fault at setTokenValue() on invalid code.
2016-11-06 14:20:58 +01:00
if (!op) // #7769 segmentation fault at setTokenValue()
return;
Refactorization: Allocate Token::_values (ValueFlow information) dynamically, reducing size of each token by around 10%
2017-03-27 18:48:34 +02:00
const std::list<ValueFlow::Value> &values = op->values();
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::find(values.cbegin(), values.cend(), value) != values.cend())
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
setTokenValue(parent, value, settings);
Fixed #7688 (setTokenValue: crash when there is no 2nd operand for ternary operator)
2016-08-17 18:44:41 +02:00
}
Fix 9765: FP: knownConditionTrueFalse handling of template function with ternary operator (#3443)
2021-09-04 19:55:36 +02:00
} else if (!value.isImpossible()) {
ValueFlow: better handling of ? when condition result is known
2016-08-15 14:19:35 +02:00
// is condition only depending on 1 variable?
Fix 10468: False positive; uninitialized variable. Loop is always executed at least once (#3462)
2021-09-18 22:23:05 +02:00
// cppcheck-suppress[variableScope] #8541
use nonneg int for varid and exprid (#3085)
2021-01-27 19:49:13 +01:00
nonneg int varId = 0;
Refactoring: Use visitAstNodes
2018-11-23 19:16:19 +01:00
bool ret = false;
visitAstNodes(parent->astOperand1(),
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
[&](const Token *t) {
ValueFlow: better handling of ? when condition result is known
2016-08-15 14:19:35 +02:00
if (t->varId()) {
use nonneg int for varid and exprid (#3085)
2021-01-27 19:49:13 +01:00
if (varId > 0 || value.varId != 0)
Refactoring: Use visitAstNodes
2018-11-23 19:16:19 +01:00
ret = true;
ValueFlow: better handling of ? when condition result is known
2016-08-15 14:19:35 +02:00
varId = t->varId();
} else if (t->str() == "(" && Token::Match(t->previous(), "%name%"))
Refactoring: Use visitAstNodes
2018-11-23 19:16:19 +01:00
ret = true; // function call
return ret ? ChildrenToVisit::done : ChildrenToVisit::op1_and_op2;
});
if (ret)
return;
Fixed #6811 (ValueFlow: result of ?:)
2015-07-02 20:11:27 +02:00
ValueFlow: better handling of ? when condition result is known
2016-08-15 14:19:35 +02:00
ValueFlow::Value v(value);
v.conditional = true;
v.changeKnownToPossible();
ValueFlow: result of ? is not 'known'
2015-07-17 15:22:24 +02:00
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
setTokenValue(parent, v, settings);
ValueFlow: better handling of ? when condition result is known
2016-08-15 14:19:35 +02:00
}
Fixed #6811 (ValueFlow: result of ?:)
2015-07-02 20:11:27 +02:00
}
9769: Improve value flow for ternary operator In some cases, the condition of the ternary operator is assigned a known value after the two possible results, and in such cases, we would not take the opportunity to assign a value to the ternary operator (and to the other parents in the ast). This patch adds this capability.
2020-06-19 22:19:03 +02:00
else if (parent->str() == "?" && value.isIntValue() && tok == parent->astOperand1() && value.isKnown() &&
parent->astOperand2() && parent->astOperand2()->astOperand1() && parent->astOperand2()->astOperand2()) {
const std::list<ValueFlow::Value> &values = (value.intvalue == 0
? parent->astOperand2()->astOperand2()->values()
: parent->astOperand2()->astOperand1()->values());
for (const ValueFlow::Value &v : values)
setTokenValue(parent, v, settings);
}
value flow: improved handling of cast
2014-01-20 22:26:55 +01:00
// Calculations..
Fixed #7668 (ValueFlow: return value from abs)
2016-10-17 13:05:19 +02:00
else if ((parent->isArithmeticalOp() || parent->isComparisonOp() || (parent->tokType() == Token::eBitOp) || (parent->tokType() == Token::eLogicalOp)) &&
CheckMemoryLeak: Fix handling of comparisons after simplifyIfNotNull is removed, detected problem with run_more_tests
2015-07-26 11:27:52 +02:00
parent->astOperand1() &&
parent->astOperand2()) {
Fixed #7350 (ValueFlow: Result of 'x & 0' is always 0)
2016-01-26 10:07:42 +01:00
Fix #9549 FP knownConditionTrueFalse (bitshift) (#3616)
2021-12-14 07:30:57 +01:00
const bool noninvertible = isNonInvertibleOperation(parent);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
Fix issue 9362: FP: (style) Condition '(v&1)==0' is always false (#2200)
2019-09-21 19:53:54 +02:00
// Skip operators with impossible values that are not invertible
Fix issue 9367: FP knownConditionTrueFalse (#2209)
2019-09-24 08:15:03 +02:00
if (noninvertible && value.isImpossible())
Fix issue 9362: FP: (style) Condition '(v&1)==0' is always false (#2200)
2019-09-21 19:53:54 +02:00
return;
Fixed #7350 (ValueFlow: Result of 'x & 0' is always 0)
2016-01-26 10:07:42 +01:00
// known result when a operand is 0.
Fix 8358: FP: Condition '(number*0)!=0' is always false (#4065)
2022-04-30 09:35:51 +02:00
if (Token::Match(parent, "[&*]") && astIsIntegral(parent, true) && value.isKnown() && value.isIntValue() &&
value.intvalue == 0) {
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(value), settings);
Fixed #7350 (ValueFlow: Result of 'x & 0' is always 0)
2016-01-26 10:07:42 +01:00
return;
}
Fix issue 470: Condition is always true or false on logical operators (#1294) * Fix issue 470: Condition is always true or false on logical operators * Dont warn on literals * Compute logical operators using valueflow * Fix FP when using literals * Always warn on subconditions that are always true * Use percent matches first * Add test for logical operators * Check if parent is null
2018-07-23 08:51:59 +02:00
// known result when a operand is true.
if (Token::simpleMatch(parent, "&&") && value.isKnown() && value.isIntValue() && value.intvalue==0) {
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(value), settings);
Fix issue 470: Condition is always true or false on logical operators (#1294) * Fix issue 470: Condition is always true or false on logical operators * Dont warn on literals * Compute logical operators using valueflow * Fix FP when using literals * Always warn on subconditions that are always true * Use percent matches first * Add test for logical operators * Check if parent is null
2018-07-23 08:51:59 +02:00
return;
}
// known result when a operand is false.
if (Token::simpleMatch(parent, "||") && value.isKnown() && value.isIntValue() && value.intvalue!=0) {
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(value), settings);
Fix issue 470: Condition is always true or false on logical operators (#1294) * Fix issue 470: Condition is always true or false on logical operators * Dont warn on literals * Compute logical operators using valueflow * Fix FP when using literals * Always warn on subconditions that are always true * Use percent matches first * Add test for logical operators * Check if parent is null
2018-07-23 08:51:59 +02:00
return;
}
Fixed #7350 (ValueFlow: Result of 'x & 0' is always 0)
2016-01-26 10:07:42 +01:00
Refactoring; Use range for
2018-04-24 18:02:36 +02:00
for (const ValueFlow::Value &value1 : parent->astOperand1()->values()) {
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
if (!isComputableValue(parent, value1))
Fixed #6911 (valueflow: comparison of string and NULL)
2015-08-02 18:12:03 +02:00
continue;
Refactoring; Use range for
2018-04-24 18:02:36 +02:00
for (const ValueFlow::Value &value2 : parent->astOperand2()->values()) {
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
if (value1.path != value2.path)
continue;
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
if (!isComputableValue(parent, value2))
Fix issue 9367: FP knownConditionTrueFalse (#2209)
2019-09-24 08:15:03 +02:00
continue;
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
if (value1.isIteratorValue() && value2.isIteratorValue())
Fixed #6911 (valueflow: comparison of string and NULL)
2015-08-02 18:12:03 +02:00
continue;
Fix 10289: ValueFlow; Wrong known value 'size_t - uint16_t > 0' (#3273)
2021-05-24 08:28:21 +02:00
if (!isCompatibleValues(value1, value2))
continue;
ValueFlow::Value result(0);
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
combineValueProperties(value1, value2, result);
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
if (astIsFloat(parent, false)) {
if (!result.isIntValue() && !result.isFloatValue())
continue;
result.valueType = ValueFlow::Value::ValueType::FLOAT;
}
const double floatValue1 = value1.isFloatValue() ? value1.floatValue : value1.intvalue;
const double floatValue2 = value2.isFloatValue() ? value2.floatValue : value2.intvalue;
Fix 11203: false positive: knownConditionTrueFalse 'always false' when comparing integer with floating-point (#4350)
2022-09-08 19:59:02 +02:00
const auto intValue1 = [&]() -> MathLib::bigint {
return value1.isFloatValue() ? static_cast<MathLib::bigint>(value1.floatValue) : value1.intvalue;
};
const auto intValue2 = [&]() -> MathLib::bigint {
return value2.isFloatValue() ? static_cast<MathLib::bigint>(value2.floatValue) : value2.intvalue;
};
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
if ((value1.isFloatValue() || value2.isFloatValue()) && Token::Match(parent, "&|^|%|<<|>>|==|!=|%or%"))
Fix 10289: ValueFlow; Wrong known value 'size_t - uint16_t > 0' (#3273)
2021-05-24 08:28:21 +02:00
continue;
if (Token::Match(parent, "==|!=")) {
if ((value1.isIntValue() && value2.isTokValue()) || (value1.isTokValue() && value2.isIntValue())) {
if (parent->str() == "==")
result.intvalue = 0;
else if (parent->str() == "!=")
result.intvalue = 1;
} else if (value1.isIntValue() && value2.isIntValue()) {
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
bool error = false;
Fix 11203: false positive: knownConditionTrueFalse 'always false' when comparing integer with floating-point (#4350)
2022-09-08 19:59:02 +02:00
result.intvalue = calculate(parent->str(), intValue1(), intValue2(), &error);
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
if (error)
continue;
Fix 11647: FN knownConditionTrueFalse with strings of same length (#4936) * Fix 11647: FN knownConditionTrueFalse with strings of same length * Format * Remove extra size * Use simpleMatch
2023-04-06 18:42:24 +02:00
} else if (value1.isTokValue() && value2.isTokValue() &&
(astIsContainer(parent->astOperand1()) || astIsContainer(parent->astOperand2()))) {
const Token* tok1 = value1.tokvalue;
const Token* tok2 = value2.tokvalue;
bool equal = false;
if (Token::Match(tok1, "%str%") && Token::Match(tok2, "%str%")) {
equal = tok1->str() == tok2->str();
} else if (Token::simpleMatch(tok1, "{") && Token::simpleMatch(tok2, "{")) {
std::vector<const Token*> args1 = getArguments(tok1);
std::vector<const Token*> args2 = getArguments(tok2);
if (args1.size() == args2.size()) {
if (!std::all_of(args1.begin(), args1.end(), std::mem_fn(&Token::hasKnownIntValue)))
continue;
if (!std::all_of(args2.begin(), args2.end(), std::mem_fn(&Token::hasKnownIntValue)))
continue;
equal = std::equal(args1.begin(),
args1.end(),
args2.begin(),
[&](const Token* atok, const Token* btok) {
return atok->values().front().intvalue ==
btok->values().front().intvalue;
});
} else {
equal = false;
}
} else {
continue;
}
result.intvalue = parent->str() == "==" ? equal : !equal;
Fix 10289: ValueFlow; Wrong known value 'size_t - uint16_t > 0' (#3273)
2021-05-24 08:28:21 +02:00
} else {
Fix issue 8871: improve check: mismatching container size conditions (#2988)
2021-01-10 13:30:00 +01:00
continue;
Fix 10289: ValueFlow; Wrong known value 'size_t - uint16_t > 0' (#3273)
2021-05-24 08:28:21 +02:00
}
setTokenValue(parent, result, settings);
} else if (Token::Match(parent, "%op%")) {
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
if (Token::Match(parent, "%comp%")) {
if (!result.isFloatValue() && !value1.isIntValue() && !value2.isIntValue())
continue;
Fix 10289: ValueFlow; Wrong known value 'size_t - uint16_t > 0' (#3273)
2021-05-24 08:28:21 +02:00
} else {
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
if (value1.isTokValue() || value2.isTokValue())
break;
valueflow: added setTokenValue that perform calculations using set value
2014-01-18 19:30:44 +01:00
}
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
bool error = false;
if (result.isFloatValue()) {
result.floatValue = calculate(parent->str(), floatValue1, floatValue2, &error);
} else {
Fix 11203: false positive: knownConditionTrueFalse 'always false' when comparing integer with floating-point (#4350)
2022-09-08 19:59:02 +02:00
result.intvalue = calculate(parent->str(), intValue1(), intValue2(), &error);
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
}
if (error)
continue;
Fix 10289: ValueFlow; Wrong known value 'size_t - uint16_t > 0' (#3273)
2021-05-24 08:28:21 +02:00
// If the bound comes from the second value then invert the bound when subtracting
if (Token::simpleMatch(parent, "-") && value2.bound == result.bound &&
value2.bound != ValueFlow::Value::Bound::Point)
result.invertBound();
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
setTokenValue(parent, result, settings);
valueflow: added setTokenValue that perform calculations using set value
2014-01-18 19:30:44 +01:00
}
}
}
}
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
ValueFlow: Restore handling of not
2015-07-16 21:17:44 +02:00
// !
else if (parent->str() == "!") {
Refactoring: Use range for loops
2018-07-14 13:19:41 +02:00
for (const ValueFlow::Value &val : tok->values()) {
if (!val.isIntValue())
ValueFlow: Restore handling of not
2015-07-16 21:17:44 +02:00
continue;
Fix issue 10306: FP knownConditionTrueFalse with modulo result converted to bool (#3282)
2021-06-03 07:26:36 +02:00
if (val.isImpossible() && val.intvalue != 0)
continue;
Refactoring: Use range for loops
2018-07-14 13:19:41 +02:00
ValueFlow::Value v(val);
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
if (val.isImpossible())
v.setKnown();
else
v.intvalue = !v.intvalue;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(v), settings);
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
}
}
// ~
else if (parent->str() == "~") {
Refactoring: Use range for loops
2018-07-14 13:19:41 +02:00
for (const ValueFlow::Value &val : tok->values()) {
if (!val.isIntValue())
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
continue;
Refactoring: Use range for loops
2018-07-14 13:19:41 +02:00
ValueFlow::Value v(val);
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
v.intvalue = ~v.intvalue;
Replace 'unsigned' with 'nonneg' in valueflow
2019-07-15 13:47:17 +02:00
int bits = 0;
Fix Coverity CID1490221 warning. settings is dereferenced and then checked.
2022-07-05 07:46:39 +02:00
if (tok->valueType() &&
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
tok->valueType()->sign == ValueType::Sign::UNSIGNED &&
tok->valueType()->pointer == 0) {
if (tok->valueType()->type == ValueType::Type::INT)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
bits = settings->platform.int_bit;
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
else if (tok->valueType()->type == ValueType::Type::LONG)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
bits = settings->platform.long_bit;
ValueFlow: handle ~ in setTokenValue
2016-11-05 09:29:22 +01:00
}
Fixed #8247 (False positive knownConditionTrueFalse)
2017-10-20 17:31:58 +02:00
if (bits > 0 && bits < MathLib::bigint_bits)
v.intvalue &= (((MathLib::biguint)1)<<bits) - 1;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(v), settings);
ValueFlow: Restore handling of not
2015-07-16 21:17:44 +02:00
}
}
ValueFlow: improve handling of unary minus
2016-08-14 22:19:06 +02:00
// unary minus
Refactoring: Use range for loops
2018-07-14 13:19:41 +02:00
else if (parent->isUnaryOp("-")) {
for (const ValueFlow::Value &val : tok->values()) {
if (!val.isIntValue() && !val.isFloatValue())
ValueFlow: improve handling of unary minus
2016-08-14 22:19:06 +02:00
continue;
Refactoring: Use range for loops
2018-07-14 13:19:41 +02:00
ValueFlow::Value v(val);
fix ubsan errors
2020-09-05 21:09:11 +02:00
if (v.isIntValue()) {
if (v.intvalue == LLONG_MIN)
// Value can't be inverted
continue;
ValueFlow: Extended handling of float values
2016-11-14 06:42:52 +01:00
v.intvalue = -v.intvalue;
astyle formatting
2020-09-06 07:47:17 +02:00
} else
ValueFlow: Extended handling of float values
2016-11-14 06:42:52 +01:00
v.floatValue = -v.floatValue;
Fix issue 6890: ValueFlow: min/max value for variable, after condition (#2460) * Set bounds when combining values * Adust bounds when they are negated * Try to infer conditional values * Switch false and true * Fix checking of conditions * Fix compare * Fix remaining tests * Fix overflows
2019-12-26 15:47:53 +01:00
v.invertBound();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(v), settings);
ValueFlow: improve handling of unary minus
2016-08-14 22:19:06 +02:00
}
}
Fix issue 7324: valueFlowForward : decrement (#2737)
2020-08-24 13:10:36 +02:00
// increment
else if (parent->str() == "++") {
for (const ValueFlow::Value &val : tok->values()) {
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
if (!val.isIntValue() && !val.isFloatValue() && !val.isSymbolicValue())
Fix issue 7324: valueFlowForward : decrement (#2737)
2020-08-24 13:10:36 +02:00
continue;
ValueFlow::Value v(val);
if (parent == tok->previous()) {
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
if (v.isIntValue() || v.isSymbolicValue())
Fix issue 7324: valueFlowForward : decrement (#2737)
2020-08-24 13:10:36 +02:00
v.intvalue = v.intvalue + 1;
else
v.floatValue = v.floatValue + 1.0;
}
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(v), settings);
Fix issue 7324: valueFlowForward : decrement (#2737)
2020-08-24 13:10:36 +02:00
}
}
// decrement
else if (parent->str() == "--") {
for (const ValueFlow::Value &val : tok->values()) {
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
if (!val.isIntValue() && !val.isFloatValue() && !val.isSymbolicValue())
Fix issue 7324: valueFlowForward : decrement (#2737)
2020-08-24 13:10:36 +02:00
continue;
ValueFlow::Value v(val);
if (parent == tok->previous()) {
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
if (v.isIntValue() || v.isSymbolicValue())
Fix issue 7324: valueFlowForward : decrement (#2737)
2020-08-24 13:10:36 +02:00
v.intvalue = v.intvalue - 1;
else
v.floatValue = v.floatValue - 1.0;
}
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(v), settings);
Fix issue 7324: valueFlowForward : decrement (#2737)
2020-08-24 13:10:36 +02:00
}
}
Fix #12182 (speedup valueFlow by only running valueFlowNumber once) (#5678)
2023-11-19 18:56:48 +01:00
// C++ init
else if (parent->str() == "{" && Token::simpleMatch(parent->previous(), "= {") && Token::simpleMatch(parent->link(), "} ;")) {
const Token* lhs = parent->previous()->astOperand1();
if (lhs && lhs->valueType()) {
if (lhs->valueType()->isIntegral() || lhs->valueType()->isFloat() || (lhs->valueType()->pointer > 0 && value.isIntValue())) {
setTokenValue(parent, value, settings);
}
}
}
ValueFlow: Set value for ::
2019-10-19 21:08:59 +02:00
else if (Token::Match(parent, ":: %name%") && parent->astOperand2() == tok) {
setTokenValue(parent, value, settings);
}
Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks (#3597) * Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks * Format
2021-12-04 08:54:04 +01:00
// Calling std::size or std::empty on an array
else if (value.isTokValue() && Token::simpleMatch(value.tokvalue, "{") && tok->variable() &&
tok->variable()->isArray() && Token::Match(parent->previous(), "%name% (") && astIsRHS(tok)) {
std::vector<const Token*> args = getArguments(value.tokvalue);
if (const Library::Function* f = settings->library.getFunction(parent->previous())) {
if (f->containerYield == Library::Container::Yield::SIZE) {
ValueFlow::Value v(value);
v.valueType = ValueFlow::Value::ValueType::INT;
v.intvalue = args.size();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(v), settings);
Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks (#3597) * Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks * Format
2021-12-04 08:54:04 +01:00
} else if (f->containerYield == Library::Container::Yield::EMPTY) {
ValueFlow::Value v(value);
v.intvalue = args.empty();
v.valueType = ValueFlow::Value::ValueType::INT;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(v), settings);
Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks (#3597) * Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks * Format
2021-12-04 08:54:04 +01:00
}
}
}
valueflow: added setTokenValue that perform calculations using set value
2014-01-18 19:30:44 +01:00
}
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
static void setTokenValueCast(Token *parent, const ValueType &valueType, const ValueFlow::Value &value, const Settings *settings)
{
Fix issue 10225: false positive: knownConditionTrueFalse (#3196)
2021-04-05 10:20:14 +02:00
if (valueType.pointer || value.isImpossible())
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
setTokenValue(parent,value,settings);
else if (valueType.type == ValueType::Type::CHAR)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
setTokenValue(parent, castValue(value, valueType.sign, settings->platform.char_bit), settings);
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
else if (valueType.type == ValueType::Type::SHORT)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
setTokenValue(parent, castValue(value, valueType.sign, settings->platform.short_bit), settings);
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
else if (valueType.type == ValueType::Type::INT)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
setTokenValue(parent, castValue(value, valueType.sign, settings->platform.int_bit), settings);
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
else if (valueType.type == ValueType::Type::LONG)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
setTokenValue(parent, castValue(value, valueType.sign, settings->platform.long_bit), settings);
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
else if (valueType.type == ValueType::Type::LONGLONG)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
setTokenValue(parent, castValue(value, valueType.sign, settings->platform.long_long_bit), settings);
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
else if (valueType.isFloat() && isNumeric(value)) {
Fix 10460: FP knownConditionTrueFalse 'fabs(x)<1/(double)16' is always false (#3445)
2021-09-05 07:10:58 +02:00
ValueFlow::Value floatValue = value;
floatValue.valueType = ValueFlow::Value::ValueType::FLOAT;
if (value.isIntValue())
floatValue.floatValue = value.intvalue;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(parent, std::move(floatValue), settings);
Fix 10464: FP: knownConditionTrueFalse (#3452)
2021-09-09 07:49:56 +02:00
} else if (value.isIntValue()) {
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
const long long charMax = settings->platform.signedCharMax();
const long long charMin = settings->platform.signedCharMin();
Fixed #7872 (ValueFlow: static_cast)
2018-12-27 21:33:01 +01:00
if (charMin <= value.intvalue && value.intvalue <= charMax) {
// unknown type, but value is small so there should be no truncation etc
setTokenValue(parent,value,settings);
}
}
}
Replace 'unsigned' with 'nonneg' in valueflow
2019-07-15 13:47:17 +02:00
static nonneg int getSizeOfType(const Token *typeTok, const Settings *settings)
Extract and reuse size computation
2017-10-18 23:20:04 +02:00
{
fixes #11104 (avoid C++-only parsing when processing C code in parsedecl()) / also avoid remaining `Library::detect*()` calls (#5346)
2023-08-18 22:48:24 +02:00
const ValueType &valueType = ValueType::parseDecl(typeTok, *settings);
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
Fix FP truncLongCastReturn on Windows (#5262)
2023-08-02 12:27:29 +02:00
return ValueFlow::getSizeOf(valueType, settings);
Extract and reuse size computation
2017-10-18 23:20:04 +02:00
}
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
Set correct type and size of string and char literals (#2275) * Set correct type and size of string and char literals Use that string and char literal tokens store the prefix. This makes it possible to distinghuish between different type of string literals (i.e., utf8 encoded strings, utf16, wide strings, etc) which have different type. When the tokens holding the string and character values have the correct type, it is possible to improve Token::getStrSize() to give the correct result for all string types. Previously, it would return the number of characters in the string, i.e., it would give the wrong size unless the type of the string was char*. Since strings now can have different size (in number of bytes) and length (in number of elements), add a new helper function that returns the number of characters. Checkers have been updated to use the correct functions. Having the size makes it possible to find more problems with prefixed strings, and to reduce false positives, for example in the buffer overflow checker. Also, improve the stringLiteralWrite error message to also print the prefix of the string (if there is one). * Add comment and update string length
2019-10-20 07:11:57 +02:00
size_t ValueFlow::getSizeOf(const ValueType &vt, const Settings *settings)
ValueFlow: fix handling of sizeof(*p)
2019-03-11 20:32:24 +01:00
{
if (vt.pointer)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_pointer;
Fix FP truncLongCastReturn on Windows (#5262)
2023-08-02 12:27:29 +02:00
if (vt.type == ValueType::Type::BOOL || vt.type == ValueType::Type::CHAR)
ValueFlow: fix handling of sizeof(*p)
2019-03-11 20:32:24 +01:00
return 1;
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
if (vt.type == ValueType::Type::SHORT)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_short;
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
if (vt.type == ValueType::Type::WCHAR_T)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_wchar_t;
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
if (vt.type == ValueType::Type::INT)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_int;
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
if (vt.type == ValueType::Type::LONG)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_long;
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
if (vt.type == ValueType::Type::LONGLONG)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_long_long;
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
if (vt.type == ValueType::Type::FLOAT)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_float;
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
if (vt.type == ValueType::Type::DOUBLE)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_double;
getSizeOf: Handle long double (#2888)
2020-11-11 22:51:17 +01:00
if (vt.type == ValueType::Type::LONGDOUBLE)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return settings->platform.sizeof_long_double;
ValueFlow: fix handling of sizeof(*p)
2019-03-11 20:32:24 +01:00
return 0;
}
Fix #11098 FP compare with negated constant (#4282)
2022-07-16 07:28:15 +02:00
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
static bool getMinMaxValues(const ValueType* vt, const Platform& platform, MathLib::bigint& minValue, MathLib::bigint& maxValue);
Fix #11098 FP compare with negated constant (#4282)
2022-07-16 07:28:15 +02:00
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
// Handle various constants..
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
static Token * valueFlowSetConstantValue(Token *tok, const Settings *settings, bool cpp)
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
{
if ((tok->isNumber() && MathLib::isInt(tok->str())) || (tok->tokType() == Token::eChar)) {
Fixed #10196 ("Unhandled char constant 'x'" with non-standard escape character)
2021-05-08 11:20:29 +02:00
try {
MathLib: renamed `to{U}LongNumber()` to `toBig{U}Number()` (#5503) The name was misleading as it was actually a `long long` and also if we ever move to an (optional) 128-bit value it wouldn't even less fitting. We should name it to match our alias type.
2023-10-05 19:21:42 +02:00
MathLib::bigint signedValue = MathLib::toBigNumber(tok->str());
Fix #11098 FP compare with negated constant (#4282)
2022-07-16 07:28:15 +02:00
const ValueType* vt = tok->valueType();
if (vt && vt->sign == ValueType::UNSIGNED && signedValue < 0 && ValueFlow::getSizeOf(*vt, settings) < sizeof(MathLib::bigint)) {
MathLib::bigint minValue{}, maxValue{};
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
if (getMinMaxValues(tok->valueType(), settings->platform, minValue, maxValue))
Fix #11098 FP compare with negated constant (#4282)
2022-07-16 07:28:15 +02:00
signedValue += maxValue + 1;
}
ValueFlow::Value value(signedValue);
Fixed #10196 ("Unhandled char constant 'x'" with non-standard escape character)
2021-05-08 11:20:29 +02:00
if (!tok->isTemplateArg())
value.setKnown();
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
setTokenValue(tok, std::move(value), settings);
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
} catch (const std::exception & /*e*/) {
Fixed #10196 ("Unhandled char constant 'x'" with non-standard escape character)
2021-05-08 11:20:29 +02:00
// Bad character literal
}
ValueFlow: Added float type
2016-11-13 22:59:56 +01:00
} else if (tok->isNumber() && MathLib::isFloat(tok->str())) {
ValueFlow::Value value;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::FLOAT;
ValueFlow: Added float type
2016-11-13 22:59:56 +01:00
value.floatValue = MathLib::toDoubleNumber(tok->str());
ValueFlow: Template arguments have 'possible' values
2018-01-11 14:22:27 +01:00
if (!tok->isTemplateArg())
value.setKnown();
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
setTokenValue(tok, std::move(value), settings);
Fixed #7513 (value flow of array dimension with enum doesn't always work)
2016-05-26 11:25:50 +02:00
} else if (tok->enumerator() && tok->enumerator()->value_known) {
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
ValueFlow::Value value(tok->enumerator()->value);
ValueFlow: Template arguments have 'possible' values
2018-01-11 14:22:27 +01:00
if (!tok->isTemplateArg())
value.setKnown();
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
setTokenValue(tok, std::move(value), settings);
Remove Tokenizer::simplifyNull()
2016-10-18 21:44:02 +02:00
} else if (tok->str() == "NULL" || (cpp && tok->str() == "nullptr")) {
ValueFlow::Value value(0);
ValueFlow: Template arguments have 'possible' values
2018-01-11 14:22:27 +01:00
if (!tok->isTemplateArg())
value.setKnown();
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
setTokenValue(tok, std::move(value), settings);
ValueFlow: Improved handling of sizeof
2016-12-18 14:03:48 +01:00
} else if (Token::simpleMatch(tok, "sizeof (")) {
Fixed #10347 (ValueFlow: No known value set for sizeof(a[0]))
2021-07-08 18:18:32 +02:00
if (tok->next()->astOperand2() && !tok->next()->astOperand2()->isLiteral() && tok->next()->astOperand2()->valueType() &&
Fix #2304 FN known strcpy parameter (#4396) * Fix #2304 FN known strcpy parameter * Parentheses * Format
2022-08-24 21:23:45 +02:00
(tok->next()->astOperand2()->valueType()->pointer == 0 || // <- TODO this is a bailout, abort when there are array->pointer conversions
(tok->next()->astOperand2()->variable() && !tok->next()->astOperand2()->variable()->isArray())) &&
Fixed #10347 (ValueFlow: No known value set for sizeof(a[0]))
2021-07-08 18:18:32 +02:00
!tok->next()->astOperand2()->valueType()->isEnum()) { // <- TODO this is a bailout, handle enum with non-int types
const size_t sz = ValueFlow::getSizeOf(*tok->next()->astOperand2()->valueType(), settings);
if (sz) {
ValueFlow::Value value(sz);
value.setKnown();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(value), settings);
Fixed #10347 (ValueFlow: No known value set for sizeof(a[0]))
2021-07-08 18:18:32 +02:00
return tok->linkAt(1);
}
}
ValueFlow: Fixed constant folding of sizeof(enum) and sizeof(enumerator) (#7564)
2016-07-08 20:39:34 +02:00
const Token *tok2 = tok->tokAt(2);
Fix #6367 and #8439 (improve sizeof value flow support) (#1132)
2018-03-23 08:28:12 +01:00
// skip over tokens to find variable or type
Fix #9931 FP zerodiv (daca@home) (#4379) * Fix #9931 FP zerodiv (daca@home) * Format * Parentheses * clang-tidy
2022-08-18 20:38:36 +02:00
while (tok2 && !tok2->isStandardType() && Token::Match(tok2, "%name% ::|.|[")) {
Fix #6367 and #8439 (improve sizeof value flow support) (#1132)
2018-03-23 08:28:12 +01:00
if (tok2->next()->str() == "[")
tok2 = tok2->linkAt(1)->next();
else
tok2 = tok2->tokAt(2);
}
Fix CheckInternal warnings (#1790)
2019-04-06 06:55:46 +02:00
if (Token::simpleMatch(tok, "sizeof ( *")) {
ValueFlow: fix handling of sizeof(*p)
2019-03-11 20:32:24 +01:00
const ValueType *vt = tok->tokAt(2)->valueType();
Set correct type and size of string and char literals (#2275) * Set correct type and size of string and char literals Use that string and char literal tokens store the prefix. This makes it possible to distinghuish between different type of string literals (i.e., utf8 encoded strings, utf16, wide strings, etc) which have different type. When the tokens holding the string and character values have the correct type, it is possible to improve Token::getStrSize() to give the correct result for all string types. Previously, it would return the number of characters in the string, i.e., it would give the wrong size unless the type of the string was char*. Since strings now can have different size (in number of bytes) and length (in number of elements), add a new helper function that returns the number of characters. Checkers have been updated to use the correct functions. Having the size makes it possible to find more problems with prefixed strings, and to reduce false positives, for example in the buffer overflow checker. Also, improve the stringLiteralWrite error message to also print the prefix of the string (if there is one). * Add comment and update string length
2019-10-20 07:11:57 +02:00
const size_t sz = vt ? ValueFlow::getSizeOf(*vt, settings) : 0;
ValueFlow: fix handling of sizeof(*p)
2019-03-11 20:32:24 +01:00
if (sz > 0) {
ValueFlow::Value value(sz);
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
if (!tok2->isTemplateArg() && settings->platform.type != Platform::Type::Unspecified)
ValueFlow: fix handling of sizeof(*p)
2019-03-11 20:32:24 +01:00
value.setKnown();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(value), settings);
ValueFlow: fix handling of sizeof(*p)
2019-03-11 20:32:24 +01:00
}
} else if (tok2->enumerator() && tok2->enumerator()->scope) {
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
long long size = settings->platform.sizeof_int;
ValueFlow: Fixed constant folding of sizeof(enum) and sizeof(enumerator) (#7564)
2016-07-08 20:39:34 +02:00
const Token * type = tok2->enumerator()->scope->enumType;
if (type) {
Extract and reuse size computation
2017-10-18 23:20:04 +02:00
size = getSizeOfType(type, settings);
Fixed #9741 (Wrong value for sizeof)
2020-05-28 21:24:48 +02:00
if (size == 0)
tok->linkAt(1);
ValueFlow: Fixed constant folding of sizeof(enum) and sizeof(enumerator) (#7564)
2016-07-08 20:39:34 +02:00
}
ValueFlow::Value value(size);
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
if (!tok2->isTemplateArg() && settings->platform.type != Platform::Type::Unspecified)
Fixed #7888 (false positive from knownConditionTrueFalse with sizeof(int) == sizeof(long))
2017-05-01 12:23:28 +02:00
value.setKnown();
Cleanup some const_cast of Token* (#1886) * Add non const version of some methods of Token The aim is to reduce the (ab)use of const_cast. * Cleanup some more const_cast in valueflow * Remove useless const_cast * Remove some const_cast from templatesimplifier * Remove some const_cast from valueflow
2019-06-16 10:09:38 +02:00
setTokenValue(tok, value, settings);
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(value), settings);
ValueFlow: Fixed constant folding of sizeof(enum) and sizeof(enumerator) (#7564)
2016-07-08 20:39:34 +02:00
} else if (tok2->type() && tok2->type()->isEnumType()) {
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
long long size = settings->platform.sizeof_int;
Fixed #7775 (crash at valueFlowSetConstantValue)
2016-10-26 10:36:02 +02:00
if (tok2->type()->classScope) {
const Token * type = tok2->type()->classScope->enumType;
if (type) {
Extract and reuse size computation
2017-10-18 23:20:04 +02:00
size = getSizeOfType(type, settings);
Fixed #7775 (crash at valueFlowSetConstantValue)
2016-10-26 10:36:02 +02:00
}
ValueFlow: Fixed constant folding of sizeof(enum) and sizeof(enumerator) (#7564)
2016-07-08 20:39:34 +02:00
}
ValueFlow::Value value(size);
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
if (!tok2->isTemplateArg() && settings->platform.type != Platform::Type::Unspecified)
Fixed #7888 (false positive from knownConditionTrueFalse with sizeof(int) == sizeof(long))
2017-05-01 12:23:28 +02:00
value.setKnown();
Cleanup some const_cast of Token* (#1886) * Add non const version of some methods of Token The aim is to reduce the (ab)use of const_cast. * Cleanup some more const_cast in valueflow * Remove useless const_cast * Remove some const_cast from templatesimplifier * Remove some const_cast from valueflow
2019-06-16 10:09:38 +02:00
setTokenValue(tok, value, settings);
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(value), settings);
Fix #11294 FP arrayIndexOutOfBoundsCond with extra parentheses (#4442)
2022-09-06 21:21:06 +02:00
} else if (Token::Match(tok, "sizeof ( %var% ) /") && tok->next()->astParent() == tok->tokAt(4) &&
tok->tokAt(4)->astOperand2() && Token::simpleMatch(tok->tokAt(4)->astOperand2()->previous(), "sizeof (")) {
ValueFlow: Improved handling of sizeof
2016-12-18 14:03:48 +01:00
// Get number of elements in array
const Token *sz1 = tok->tokAt(2);
Fix #11294 FP arrayIndexOutOfBoundsCond with extra parentheses (#4442)
2022-09-06 21:21:06 +02:00
const Token *sz2 = tok->tokAt(4)->astOperand2(); // left parenthesis of sizeof on rhs
use nonneg int for varid and exprid (#3085)
2021-01-27 19:49:13 +01:00
const nonneg int varid1 = sz1->varId();
ValueFlow: Improved handling of sizeof
2016-12-18 14:03:48 +01:00
if (varid1 &&
sz1->variable() &&
sz1->variable()->isArray() &&
!sz1->variable()->dimensions().empty() &&
sz1->variable()->dimensionKnown(0) &&
Fix Match pattern (#4025)
2022-04-15 08:48:49 +02:00
Token::Match(sz2->astOperand2(), "*|[") && Token::Match(sz2->astOperand2()->astOperand1(), "%varid%", varid1)) {
ValueFlow: Improved handling of sizeof
2016-12-18 14:03:48 +01:00
ValueFlow::Value value(sz1->variable()->dimension(0));
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
if (!tok2->isTemplateArg() && settings->platform.type != Platform::Type::Unspecified)
Fixed #7888 (false positive from knownConditionTrueFalse with sizeof(int) == sizeof(long))
2017-05-01 12:23:28 +02:00
value.setKnown();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->tokAt(4), std::move(value), settings);
ValueFlow: Improved handling of sizeof
2016-12-18 14:03:48 +01:00
}
Fix #6367 and #8439 (improve sizeof value flow support) (#1132)
2018-03-23 08:28:12 +01:00
} else if (Token::Match(tok2, "%var% )")) {
const Variable *var = tok2->variable();
// only look for single token types (no pointers or references yet)
if (var && var->typeStartToken() == var->typeEndToken()) {
// find the size of the type
size_t size = 0;
if (var->isEnumType()) {
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
size = settings->platform.sizeof_int;
Fix #6367 and #8439 (improve sizeof value flow support) (#1132)
2018-03-23 08:28:12 +01:00
if (var->type()->classScope && var->type()->classScope->enumType)
size = getSizeOfType(var->type()->classScope->enumType, settings);
ValueFlow: Fix sizeof for array of library type
2019-03-13 18:31:41 +01:00
} else if (var->valueType()) {
Set correct type and size of string and char literals (#2275) * Set correct type and size of string and char literals Use that string and char literal tokens store the prefix. This makes it possible to distinghuish between different type of string literals (i.e., utf8 encoded strings, utf16, wide strings, etc) which have different type. When the tokens holding the string and character values have the correct type, it is possible to improve Token::getStrSize() to give the correct result for all string types. Previously, it would return the number of characters in the string, i.e., it would give the wrong size unless the type of the string was char*. Since strings now can have different size (in number of bytes) and length (in number of elements), add a new helper function that returns the number of characters. Checkers have been updated to use the correct functions. Having the size makes it possible to find more problems with prefixed strings, and to reduce false positives, for example in the buffer overflow checker. Also, improve the stringLiteralWrite error message to also print the prefix of the string (if there is one). * Add comment and update string length
2019-10-20 07:11:57 +02:00
size = ValueFlow::getSizeOf(*var->valueType(), settings);
Fix #6367 and #8439 (improve sizeof value flow support) (#1132)
2018-03-23 08:28:12 +01:00
} else if (!var->type()) {
size = getSizeOfType(var->typeStartToken(), settings);
}
// find the number of elements
size_t count = 1;
for (size_t i = 0; i < var->dimensions().size(); ++i) {
if (var->dimensionKnown(i))
count *= var->dimension(i);
else
count = 0;
}
if (size && count > 0) {
ValueFlow::Value value(count * size);
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
if (settings->platform.type != Platform::Type::Unspecified)
Fix #6367 and #8439 (improve sizeof value flow support) (#1132)
2018-03-23 08:28:12 +01:00
value.setKnown();
Cleanup some const_cast of Token* (#1886) * Add non const version of some methods of Token The aim is to reduce the (ab)use of const_cast. * Cleanup some more const_cast in valueflow * Remove useless const_cast * Remove some const_cast from templatesimplifier * Remove some const_cast from valueflow
2019-06-16 10:09:38 +02:00
setTokenValue(tok, value, settings);
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(value), settings);
Fix #6367 and #8439 (improve sizeof value flow support) (#1132)
2018-03-23 08:28:12 +01:00
}
}
ValueFlow: sizeof string and char literals (#2285)
2019-10-20 21:02:28 +02:00
} else if (tok2->tokType() == Token::eString) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const size_t sz = Token::getStrSize(tok2, settings);
ValueFlow: sizeof string and char literals (#2285)
2019-10-20 21:02:28 +02:00
if (sz > 0) {
ValueFlow::Value value(sz);
value.setKnown();
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
setTokenValue(tok->next(), std::move(value), settings);
ValueFlow: sizeof string and char literals (#2285)
2019-10-20 21:02:28 +02:00
}
} else if (tok2->tokType() == Token::eChar) {
ValueFlow: handling of char literal size before ValueType has been set
2019-10-31 14:06:34 +01:00
nonneg int sz = 0;
if (cpp && settings->standards.cpp >= Standards::CPP20 && tok2->isUtf8())
sz = 1;
else if (tok2->isUtf16())
sz = 2;
else if (tok2->isUtf32())
sz = 4;
else if (tok2->isLong())
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
sz = settings->platform.sizeof_wchar_t;
ValueFlow: handling of char literal size before ValueType has been set
2019-10-31 14:06:34 +01:00
else if ((tok2->isCChar() && !cpp) || (tok2->isCMultiChar()))
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
sz = settings->platform.sizeof_int;
ValueFlow: handling of char literal size before ValueType has been set
2019-10-31 14:06:34 +01:00
else
sz = 1;
ValueFlow: sizeof string and char literals (#2285)
2019-10-20 21:02:28 +02:00
if (sz > 0) {
ValueFlow::Value value(sz);
value.setKnown();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(value), settings);
ValueFlow: sizeof string and char literals (#2285)
2019-10-20 21:02:28 +02:00
}
ValueFlow: Improved handling of sizeof
2016-12-18 14:03:48 +01:00
} else if (!tok2->type()) {
fixes #11104 (avoid C++-only parsing when processing C code in parsedecl()) / also avoid remaining `Library::detect*()` calls (#5346)
2023-08-18 22:48:24 +02:00
const ValueType& vt = ValueType::parseDecl(tok2, *settings);
Fix #9931 FP zerodiv (daca@home) (#4379) * Fix #9931 FP zerodiv (daca@home) * Format * Parentheses * clang-tidy
2022-08-18 20:38:36 +02:00
size_t sz = ValueFlow::getSizeOf(vt, settings);
const Token* brac = tok2->astParent();
while (Token::simpleMatch(brac, "[")) {
const Token* num = brac->astOperand2();
if (num && ((num->isNumber() && MathLib::isInt(num->str())) || num->tokType() == Token::eChar)) {
try {
MathLib: renamed `to{U}LongNumber()` to `toBig{U}Number()` (#5503) The name was misleading as it was actually a `long long` and also if we ever move to an (optional) 128-bit value it wouldn't even less fitting. We should name it to match our alias type.
2023-10-05 19:21:42 +02:00
const MathLib::biguint dim = MathLib::toBigUNumber(num->str());
Fix #9931 FP zerodiv (daca@home) (#4379) * Fix #9931 FP zerodiv (daca@home) * Format * Parentheses * clang-tidy
2022-08-18 20:38:36 +02:00
sz *= dim;
brac = brac->astParent();
continue;
}
catch (const std::exception& /*e*/) {
// Bad integer literal
}
}
sz = 0;
break;
}
ValueFlow: fix handling of sizeof(*p)
2019-03-11 20:32:24 +01:00
if (sz > 0) {
ValueFlow::Value value(sz);
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
if (!tok2->isTemplateArg() && settings->platform.type != Platform::Type::Unspecified)
Fixed #7888 (false positive from knownConditionTrueFalse with sizeof(int) == sizeof(long))
2017-05-01 12:23:28 +02:00
value.setKnown();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(value), settings);
ValueFlow: Improved handling of sizeof
2016-12-18 14:03:48 +01:00
}
ValueFlow: Fixed constant folding of sizeof(enum) and sizeof(enumerator) (#7564)
2016-07-08 20:39:34 +02:00
}
// skip over enum
tok = tok->linkAt(1);
Fix #10358 Bad ValueFlow depending on initialization (#5052)
2023-05-12 07:19:44 +02:00
} else if (Token::Match(tok, "%name% [{(] [)}]") && (tok->isStandardType() ||
(tok->variable() && tok->variable()->nameToken() == tok &&
(tok->variable()->isPointer() || (tok->variable()->valueType() && tok->variable()->valueType()->isIntegral()))))) {
ValueFlow::Value value(0);
if (!tok->isTemplateArg())
value.setKnown();
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
setTokenValue(tok->next(), std::move(value), settings);
Fix #12182 (speedup valueFlow by only running valueFlowNumber once) (#5678)
2023-11-19 18:56:48 +01:00
} else if (Token::simpleMatch(tok, "= { } ;")) {
const Token* lhs = tok->astOperand1();
if (lhs && lhs->valueType() && (lhs->valueType()->isIntegral() || lhs->valueType()->pointer > 0)) {
Set values when assigning init list (#5057) * Assign values to pointers with C++11 init * Handle assigning empty init list * Fix #10596 FN uninitdata with value initialization * Fix test * Set values when assigning init list
2023-05-14 17:01:07 +02:00
ValueFlow::Value value(0);
value.setKnown();
Fix #12182 (speedup valueFlow by only running valueFlowNumber once) (#5678)
2023-11-19 18:56:48 +01:00
setTokenValue(tok->next(), std::move(value), settings);
Set values when assigning init list (#5057) * Assign values to pointers with C++11 init * Handle assigning empty init list * Fix #10596 FN uninitdata with value initialization * Fix test * Set values when assigning init list
2023-05-14 17:01:07 +02:00
}
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
}
ValueFlow: Fixed constant folding of sizeof(enum) and sizeof(enumerator) (#7564)
2016-07-08 20:39:34 +02:00
return tok->next();
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowNumber(TokenList &tokenlist, const Settings* settings)
valueflow: added setTokenValue that perform calculations using set value
2014-01-18 19:30:44 +01:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok;) {
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
tok = valueFlowSetConstantValue(tok, settings, tokenlist.isCPP());
valueflow: added setTokenValue that perform calculations using set value
2014-01-18 19:30:44 +01:00
}
ValueFlow: set values for false/true
2015-07-14 18:02:26 +02:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (tokenlist.isCPP()) {
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
ValueFlow: Added Value::valueKind that says if value is known or possible
2015-07-16 17:33:16 +02:00
if (tok->isName() && !tok->varId() && Token::Match(tok, "false|true")) {
ValueFlow::Value value(tok->str() == "true");
ValueFlow: Template arguments have 'possible' values
2018-01-11 14:22:27 +01:00
if (!tok->isTemplateArg())
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Fixed #7310 (ValueFlow: Value of NULL in function call)
2016-01-26 16:53:01 +01:00
} else if (Token::Match(tok, "[(,] NULL [,)]")) {
// NULL function parameters are not simplified in the
// normal tokenlist
ValueFlow::Value value(0);
ValueFlow: Template arguments have 'possible' values
2018-01-11 14:22:27 +01:00
if (!tok->isTemplateArg())
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok->next(), std::move(value), settings);
ValueFlow: Added Value::valueKind that says if value is known or possible
2015-07-16 17:33:16 +02:00
}
ValueFlow: set values for false/true
2015-07-14 18:02:26 +02:00
}
}
valueflow: added setTokenValue that perform calculations using set value
2014-01-18 19:30:44 +01:00
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowString(TokenList &tokenlist, const Settings* settings)
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
Added pointer to Type to Token (similar to Token::Variable() and Token::function()): - Accessible via Token::type() - Renamed former Token::type() to Token::tokType() - Removed SymbolDatabase::isClassOrStruct()
2015-08-14 20:46:13 +02:00
if (tok->tokType() == Token::eString) {
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
ValueFlow::Value strvalue;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
strvalue.valueType = ValueFlow::Value::ValueType::TOK;
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
strvalue.tokvalue = tok;
simplified the code for ValueFlow Known/Possible values
2015-07-25 19:36:29 +02:00
strvalue.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(strvalue), settings);
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
}
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowArray(TokenList &tokenlist, const Settings *settings)
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
{
use nonneg int for varid and exprid (#3085)
2021-01-27 19:49:13 +01:00
std::map<nonneg int, const Token *> constantArrays;
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
use nonneg int for varid and exprid (#3085)
2021-01-27 19:49:13 +01:00
if (tok->varId() > 0) {
Fix issue 8829: Condition '...' is always true (int buf[42]; if(buf != NULL){}) This makes arrays non-null in valueflow, so it can catch comparisons against null that is always true: ```cpp void f(void) { int buf[42]; if( buf != 0) {;} // << always true } ```
2018-12-17 06:07:34 +01:00
// array
use nonneg int for varid and exprid (#3085)
2021-01-27 19:49:13 +01:00
const std::map<nonneg int, const Token *>::const_iterator it = constantArrays.find(tok->varId());
Treat matches as mutually exclusive
2015-08-28 14:27:56 +02:00
if (it != constantArrays.end()) {
ValueFlow::Value value;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::TOK;
Treat matches as mutually exclusive
2015-08-28 14:27:56 +02:00
value.tokvalue = it->second;
Fixed #6934 (False positive returnLocalVariable - assigning local array to function argument)
2015-11-07 15:07:26 +01:00
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Fixed #6934 (False positive returnLocalVariable - assigning local array to function argument)
2015-11-07 15:07:26 +01:00
}
Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks (#3640)
2021-12-17 21:48:29 +01:00
// const array decl
else if (tok->variable() && tok->variable()->isArray() && tok->variable()->isConst() &&
tok->variable()->nameToken() == tok && Token::Match(tok, "%var% [ %num%| ] = {")) {
Token: do not return non-`const` pointer from `const` methods - part 1 (#4761)
2023-02-08 21:07:16 +01:00
Token* rhstok = tok->next()->link()->tokAt(2);
Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks (#3640)
2021-12-17 21:48:29 +01:00
constantArrays[tok->varId()] = rhstok;
tok = rhstok->link();
}
Fixed #6934 (False positive returnLocalVariable - assigning local array to function argument)
2015-11-07 15:07:26 +01:00
// pointer = array
Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks (#3640)
2021-12-17 21:48:29 +01:00
else if (tok->variable() && tok->variable()->isArray() && Token::simpleMatch(tok->astParent(), "=") &&
astIsRHS(tok) && tok->astParent()->astOperand1() &&
Fixed #6934 (False positive returnLocalVariable - assigning local array to function argument)
2015-11-07 15:07:26 +01:00
tok->astParent()->astOperand1()->variable() &&
tok->astParent()->astOperand1()->variable()->isPointer()) {
ValueFlow::Value value;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::TOK;
Fixed #6934 (False positive returnLocalVariable - assigning local array to function argument)
2015-11-07 15:07:26 +01:00
value.tokvalue = tok;
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Treat matches as mutually exclusive
2015-08-28 14:27:56 +02:00
}
continue;
}
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
if (Token::Match(tok, "const %type% %var% [ %num%| ] = {")) {
Token: do not return non-`const` pointer from `const` methods - part 1 (#4761)
2023-02-08 21:07:16 +01:00
Token *vartok = tok->tokAt(2);
Token *rhstok = vartok->next()->link()->tokAt(2);
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
constantArrays[vartok->varId()] = rhstok;
tok = rhstok->link();
Treat matches as mutually exclusive
2015-08-28 14:27:56 +02:00
continue;
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
}
ValueFlow: Improved handling of strings
2015-02-07 18:14:22 +01:00
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
if (Token::Match(tok, "const char %var% [ %num%| ] = %str% ;")) {
Token: do not return non-`const` pointer from `const` methods - part 1 (#4761)
2023-02-08 21:07:16 +01:00
Token *vartok = tok->tokAt(2);
Token *strtok = vartok->next()->link()->tokAt(2);
ValueFlow: Improved when using '[' on arrays and strings
2015-02-24 15:57:39 +01:00
constantArrays[vartok->varId()] = strtok;
tok = strtok->next();
Treat matches as mutually exclusive
2015-08-28 14:27:56 +02:00
continue;
ValueFlow: Improved handling of strings
2015-02-07 18:14:22 +01:00
}
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
}
}
ValueFlow: Set arrays to true when converting to a boolean This sets it by checking the parent. It doesn't handle function parameters yet.
2019-01-21 20:05:35 +01:00
static bool isNonZero(const Token *tok)
{
return tok && (!tok->hasKnownIntValue() || tok->values().front().intvalue != 0);
}
static const Token *getOtherOperand(const Token *tok)
{
if (!tok)
return nullptr;
if (!tok->astParent())
return nullptr;
if (tok->astParent()->astOperand1() != tok)
return tok->astParent()->astOperand1();
if (tok->astParent()->astOperand2() != tok)
return tok->astParent()->astOperand2();
return nullptr;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowArrayBool(TokenList &tokenlist, const Settings *settings)
ValueFlow: Set arrays to true when converting to a boolean This sets it by checking the parent. It doesn't handle function parameters yet.
2019-01-21 20:05:35 +01:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
ValueFlow: Set arrays to true when converting to a boolean This sets it by checking the parent. It doesn't handle function parameters yet.
2019-01-21 20:05:35 +01:00
if (tok->hasKnownIntValue())
continue;
const Variable *var = nullptr;
bool known = false;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const std::list<ValueFlow::Value>::const_iterator val =
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::find_if(tok->values().cbegin(), tok->values().cend(), std::mem_fn(&ValueFlow::Value::isTokValue));
ValueFlow: Set arrays to true when converting to a boolean This sets it by checking the parent. It doesn't handle function parameters yet.
2019-01-21 20:05:35 +01:00
if (val == tok->values().end()) {
var = tok->variable();
known = true;
} else {
var = val->tokvalue->variable();
known = val->isKnown();
}
if (!var)
continue;
if (!var->isArray() || var->isArgument() || var->isStlType())
continue;
if (isNonZero(getOtherOperand(tok)) && Token::Match(tok->astParent(), "%comp%"))
continue;
// TODO: Check for function argument
if ((astIsBool(tok->astParent()) && !Token::Match(tok->astParent(), "(|%name%")) ||
(tok->astParent() && Token::Match(tok->astParent()->previous(), "if|while|for ("))) {
ValueFlow::Value value{1};
if (known)
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
ValueFlow: Set arrays to true when converting to a boolean This sets it by checking the parent. It doesn't handle function parameters yet.
2019-01-21 20:05:35 +01:00
}
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowArrayElement(TokenList& tokenlist, const Settings* settings)
Fix 10944: FN: knownConditionTrueFalse (#4124) * Fix 10944: FN: knownConditionTrueFalse * Use or * Format
2022-05-23 23:22:08 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token* tok = tokenlist.front(); tok; tok = tok->next()) {
Fix 10944: FN: knownConditionTrueFalse (#4124) * Fix 10944: FN: knownConditionTrueFalse * Use or * Format
2022-05-23 23:22:08 +02:00
if (tok->hasKnownIntValue())
continue;
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
const Token* indexTok = nullptr;
const Token* arrayTok = nullptr;
if (Token::simpleMatch(tok, "[") && tok->isBinaryOp()) {
indexTok = tok->astOperand2();
arrayTok = tok->astOperand1();
} else if (Token::Match(tok->tokAt(-2), ". %name% (") && astIsContainer(tok->tokAt(-2)->astOperand1())) {
arrayTok = tok->tokAt(-2)->astOperand1();
const Library::Container* container = getLibraryContainer(arrayTok);
if (!container || container->stdAssociativeLike)
continue;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const Library::Container::Yield yield = container->getYield(tok->strAt(-1));
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
if (yield != Library::Container::Yield::AT_INDEX)
continue;
indexTok = tok->astOperand2();
}
if (!indexTok || !arrayTok)
continue;
Fix 10944: FN: knownConditionTrueFalse (#4124) * Fix 10944: FN: knownConditionTrueFalse * Use or * Format
2022-05-23 23:22:08 +02:00
for (const ValueFlow::Value& arrayValue : arrayTok->values()) {
if (!arrayValue.isTokValue())
continue;
Fix 6370: ValueFlow: array element with known value (#4447) * Fix 6370: ValueFlow: array element with known value * Format * Move comment
2022-09-07 19:16:07 +02:00
if (arrayValue.isImpossible())
continue;
Fix 10944: FN: knownConditionTrueFalse (#4124) * Fix 10944: FN: knownConditionTrueFalse * Use or * Format
2022-05-23 23:22:08 +02:00
for (const ValueFlow::Value& indexValue : indexTok->values()) {
if (!indexValue.isIntValue())
continue;
Fix 6370: ValueFlow: array element with known value (#4447) * Fix 6370: ValueFlow: array element with known value * Format * Move comment
2022-09-07 19:16:07 +02:00
if (indexValue.isImpossible())
continue;
if (!arrayValue.isKnown() && !indexValue.isKnown() && arrayValue.varId != 0 && indexValue.varId != 0 &&
Fix 10944: FN: knownConditionTrueFalse (#4124) * Fix 10944: FN: knownConditionTrueFalse * Use or * Format
2022-05-23 23:22:08 +02:00
!(arrayValue.varId == indexValue.varId && arrayValue.varvalue == indexValue.varvalue))
continue;
ValueFlow::Value result(0);
result.condition = arrayValue.condition ? arrayValue.condition : indexValue.condition;
Fix 6370: ValueFlow: array element with known value (#4447) * Fix 6370: ValueFlow: array element with known value * Format * Move comment
2022-09-07 19:16:07 +02:00
result.setInconclusive(arrayValue.isInconclusive() || indexValue.isInconclusive());
Fix 10944: FN: knownConditionTrueFalse (#4124) * Fix 10944: FN: knownConditionTrueFalse * Use or * Format
2022-05-23 23:22:08 +02:00
result.varId = (arrayValue.varId != 0) ? arrayValue.varId : indexValue.varId;
result.varvalue = (result.varId == arrayValue.varId) ? arrayValue.intvalue : indexValue.intvalue;
if (arrayValue.valueKind == indexValue.valueKind)
result.valueKind = arrayValue.valueKind;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
result.errorPath.insert(result.errorPath.end(), arrayValue.errorPath.cbegin(), arrayValue.errorPath.cend());
result.errorPath.insert(result.errorPath.end(), indexValue.errorPath.cbegin(), indexValue.errorPath.cend());
Fix 10944: FN: knownConditionTrueFalse (#4124) * Fix 10944: FN: knownConditionTrueFalse * Use or * Format
2022-05-23 23:22:08 +02:00
const MathLib::bigint index = indexValue.intvalue;
if (arrayValue.tokvalue->tokType() == Token::eString) {
const std::string s = arrayValue.tokvalue->strValue();
if (index == s.size()) {
result.intvalue = 0;
setTokenValue(tok, result, settings);
} else if (index >= 0 && index < s.size()) {
result.intvalue = s[index];
setTokenValue(tok, result, settings);
}
} else if (Token::simpleMatch(arrayValue.tokvalue, "{")) {
std::vector<const Token*> args = getArguments(arrayValue.tokvalue);
if (index < 0 || index >= args.size())
continue;
const Token* arg = args[index];
if (!arg->hasKnownIntValue())
continue;
const ValueFlow::Value& v = arg->values().front();
result.intvalue = v.intvalue;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
result.errorPath.insert(result.errorPath.end(), v.errorPath.cbegin(), v.errorPath.cend());
Fix 10944: FN: knownConditionTrueFalse (#4124) * Fix 10944: FN: knownConditionTrueFalse * Use or * Format
2022-05-23 23:22:08 +02:00
setTokenValue(tok, result, settings);
}
}
}
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowPointerAlias(TokenList &tokenlist, const Settings* settings)
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
// not address of
Clarify code with Token::isUnaryOp()
2018-07-14 22:36:08 +02:00
if (!tok->isUnaryOp("&"))
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
continue;
// parent should be a '='
if (!Token::simpleMatch(tok->astParent(), "="))
continue;
// child should be some buffer or variable
Fixed #7135 (ValueFlow: Wrong pointer alias set for 'p = &p[x];')
2015-11-15 23:38:23 +01:00
const Token *vartok = tok->astOperand1();
while (vartok) {
if (vartok->str() == "[")
vartok = vartok->astOperand1();
else if (vartok->str() == "." || vartok->str() == "::")
vartok = vartok->astOperand2();
else
break;
}
if (!(vartok && vartok->variable() && !vartok->variable()->isPointer()))
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
continue;
ValueFlow::Value value;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::TOK;
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
value.tokvalue = tok;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
ValueFlow: start adding valueflow handling of strings and pointer aliases
2014-08-03 20:11:22 +02:00
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowBitAnd(TokenList &tokenlist, const Settings* settings)
ValueFlow: Improved handling of bitand against a single-bit integer literal
2014-04-14 06:45:39 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
ValueFlow: Improved handling of bitand against a single-bit integer literal
2014-04-14 06:45:39 +02:00
if (tok->str() != "&")
continue;
Clarify code with Token::hasKnownValue()
2018-07-14 13:09:53 +02:00
if (tok->hasKnownValue())
Fixed #7573 (Tokenizer: FP caused by constant folding)
2016-08-28 19:11:05 +02:00
continue;
ValueFlow: Improved handling of bitand against a single-bit integer literal
2014-04-14 06:45:39 +02:00
if (!tok->astOperand1() || !tok->astOperand2())
continue;
MathLib::bigint number;
if (MathLib::isInt(tok->astOperand1()->str()))
MathLib: renamed `to{U}LongNumber()` to `toBig{U}Number()` (#5503) The name was misleading as it was actually a `long long` and also if we ever move to an (optional) 128-bit value it wouldn't even less fitting. We should name it to match our alias type.
2023-10-05 19:21:42 +02:00
number = MathLib::toBigNumber(tok->astOperand1()->str());
ValueFlow: Improved handling of bitand against a single-bit integer literal
2014-04-14 06:45:39 +02:00
else if (MathLib::isInt(tok->astOperand2()->str()))
MathLib: renamed `to{U}LongNumber()` to `toBig{U}Number()` (#5503) The name was misleading as it was actually a `long long` and also if we ever move to an (optional) 128-bit value it wouldn't even less fitting. We should name it to match our alias type.
2023-10-05 19:21:42 +02:00
number = MathLib::toBigNumber(tok->astOperand2()->str());
ValueFlow: Improved handling of bitand against a single-bit integer literal
2014-04-14 06:45:39 +02:00
else
continue;
int bit = 0;
Use MathLib::bigint_bits
2017-10-21 22:08:34 +02:00
while (bit <= (MathLib::bigint_bits - 2) && ((((MathLib::bigint)1) << bit) < number))
ValueFlow: Improved handling of bitand against a single-bit integer literal
2014-04-14 06:45:39 +02:00
++bit;
Fix syntax error
2017-10-21 22:17:07 +02:00
if ((((MathLib::bigint)1) << bit) == number) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, ValueFlow::Value(0), settings);
setTokenValue(tok, ValueFlow::Value(number), settings);
ValueFlow: Improved handling of bitand against a single-bit integer literal
2014-04-14 06:45:39 +02:00
}
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowSameExpressions(TokenList &tokenlist, const Settings* settings)
Add isSameExpression to valueflow analysis Check for same expressions in valueflow analysis.
2018-12-16 07:35:27 +01:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
if (tok->hasKnownIntValue())
Add isSameExpression to valueflow analysis Check for same expressions in valueflow analysis.
2018-12-16 07:35:27 +01:00
continue;
if (!tok->astOperand1() || !tok->astOperand2())
continue;
if (tok->astOperand1()->isLiteral() || tok->astOperand2()->isLiteral())
continue;
Fix issue 8932: False positive knownConditionTrueFalse - valueflow ignores operator < (#1584)
2019-01-11 08:39:23 +01:00
if (!astIsIntegral(tok->astOperand1(), false) && !astIsIntegral(tok->astOperand2(), false))
Add isSameExpression to valueflow analysis Check for same expressions in valueflow analysis.
2018-12-16 07:35:27 +01:00
continue;
ValueFlow::Value val;
if (Token::Match(tok, "==|>=|<=|/")) {
val = ValueFlow::Value(1);
val.setKnown();
}
if (Token::Match(tok, "!=|>|<|%|-")) {
val = ValueFlow::Value(0);
val.setKnown();
}
if (!val.isKnown())
continue;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (isSameExpression(tokenlist.isCPP(), false, tok->astOperand1(), tok->astOperand2(), settings->library, true, true, &val.errorPath)) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(val), settings);
Add isSameExpression to valueflow analysis Check for same expressions in valueflow analysis.
2018-12-16 07:35:27 +01:00
}
}
}
ValueFlow: getExpressionRange, valueFlowRightShift
2018-11-03 23:25:46 +01:00
static bool getExpressionRange(const Token *expr, MathLib::bigint *minvalue, MathLib::bigint *maxvalue)
{
if (expr->hasKnownIntValue()) {
if (minvalue)
*minvalue = expr->values().front().intvalue;
if (maxvalue)
*maxvalue = expr->values().front().intvalue;
return true;
}
if (expr->str() == "&" && expr->astOperand1() && expr->astOperand2()) {
MathLib::bigint vals[4];
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const bool lhsHasKnownRange = getExpressionRange(expr->astOperand1(), &vals[0], &vals[1]);
const bool rhsHasKnownRange = getExpressionRange(expr->astOperand2(), &vals[2], &vals[3]);
ValueFlow: getExpressionRange, valueFlowRightShift
2018-11-03 23:25:46 +01:00
if (!lhsHasKnownRange && !rhsHasKnownRange)
return false;
if (!lhsHasKnownRange || !rhsHasKnownRange) {
if (minvalue)
*minvalue = lhsHasKnownRange ? vals[0] : vals[2];
if (maxvalue)
*maxvalue = lhsHasKnownRange ? vals[1] : vals[3];
} else {
if (minvalue)
*minvalue = vals[0] & vals[2];
if (maxvalue)
*maxvalue = vals[1] & vals[3];
}
return true;
}
if (expr->str() == "%" && expr->astOperand1() && expr->astOperand2()) {
MathLib::bigint vals[4];
if (!getExpressionRange(expr->astOperand2(), &vals[2], &vals[3]))
return false;
if (vals[2] <= 0)
return false;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const bool lhsHasKnownRange = getExpressionRange(expr->astOperand1(), &vals[0], &vals[1]);
ValueFlow: getExpressionRange, valueFlowRightShift
2018-11-03 23:25:46 +01:00
if (lhsHasKnownRange && vals[0] < 0)
return false;
// If lhs has unknown value, it must be unsigned
if (!lhsHasKnownRange && (!expr->astOperand1()->valueType() || expr->astOperand1()->valueType()->sign != ValueType::Sign::UNSIGNED))
return false;
if (minvalue)
*minvalue = 0;
if (maxvalue)
*maxvalue = vals[3] - 1;
return true;
}
return false;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowRightShift(TokenList &tokenList, const Settings* settings)
ValueFlow: getExpressionRange, valueFlowRightShift
2018-11-03 23:25:46 +01:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenList.front(); tok; tok = tok->next()) {
ValueFlow: getExpressionRange, valueFlowRightShift
2018-11-03 23:25:46 +01:00
if (tok->str() != ">>")
continue;
if (tok->hasKnownValue())
continue;
if (!tok->astOperand1() || !tok->astOperand2())
continue;
if (!tok->astOperand2()->hasKnownValue())
continue;
valueFlowRightShift: Do not perform analysis when rhs is negative
2018-11-04 17:13:23 +01:00
const MathLib::bigint rhsvalue = tok->astOperand2()->values().front().intvalue;
if (rhsvalue < 0)
continue;
ValueFlow: getExpressionRange, valueFlowRightShift
2018-11-03 23:25:46 +01:00
if (!tok->astOperand1()->valueType() || !tok->astOperand1()->valueType()->isIntegral())
continue;
if (!tok->astOperand2()->valueType() || !tok->astOperand2()->valueType()->isIntegral())
continue;
MathLib::bigint lhsmax=0;
if (!getExpressionRange(tok->astOperand1(), nullptr, &lhsmax))
continue;
if (lhsmax < 0)
continue;
Valueflow: Fix right shift with more than 31 bits (#1553) When comparing if the shift is large enough to make the result zero, use an unsigned long long to make sure the result fits. Also, a check that avoids setting the value if the shift is equal to or larger than the number of bits in the operand (this is undefined behaviour). Finally, add a check to make sure the calculated value is not too large to store. Add test cases to cover this. This was detected by an MSVC warning. valueflow.cpp(1350): warning C4334: '<<' : result of 32-bit shift implicitly converted to 64 bits (was 64-bit shift intended?)
2019-01-01 14:15:50 +01:00
int lhsbits;
if ((tok->astOperand1()->valueType()->type == ValueType::Type::CHAR) ||
(tok->astOperand1()->valueType()->type == ValueType::Type::SHORT) ||
Set wchar_t type (#1807) This is necessary for valueflow to know the size, for example when calculating sizeof(wchar_t).
2019-05-01 16:34:28 +02:00
(tok->astOperand1()->valueType()->type == ValueType::Type::WCHAR_T) ||
Valueflow: Fix right shift with more than 31 bits (#1553) When comparing if the shift is large enough to make the result zero, use an unsigned long long to make sure the result fits. Also, a check that avoids setting the value if the shift is equal to or larger than the number of bits in the operand (this is undefined behaviour). Finally, add a check to make sure the calculated value is not too large to store. Add test cases to cover this. This was detected by an MSVC warning. valueflow.cpp(1350): warning C4334: '<<' : result of 32-bit shift implicitly converted to 64 bits (was 64-bit shift intended?)
2019-01-01 14:15:50 +01:00
(tok->astOperand1()->valueType()->type == ValueType::Type::BOOL) ||
(tok->astOperand1()->valueType()->type == ValueType::Type::INT))
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
lhsbits = settings->platform.int_bit;
Valueflow: Fix right shift with more than 31 bits (#1553) When comparing if the shift is large enough to make the result zero, use an unsigned long long to make sure the result fits. Also, a check that avoids setting the value if the shift is equal to or larger than the number of bits in the operand (this is undefined behaviour). Finally, add a check to make sure the calculated value is not too large to store. Add test cases to cover this. This was detected by an MSVC warning. valueflow.cpp(1350): warning C4334: '<<' : result of 32-bit shift implicitly converted to 64 bits (was 64-bit shift intended?)
2019-01-01 14:15:50 +01:00
else if (tok->astOperand1()->valueType()->type == ValueType::Type::LONG)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
lhsbits = settings->platform.long_bit;
Valueflow: Fix right shift with more than 31 bits (#1553) When comparing if the shift is large enough to make the result zero, use an unsigned long long to make sure the result fits. Also, a check that avoids setting the value if the shift is equal to or larger than the number of bits in the operand (this is undefined behaviour). Finally, add a check to make sure the calculated value is not too large to store. Add test cases to cover this. This was detected by an MSVC warning. valueflow.cpp(1350): warning C4334: '<<' : result of 32-bit shift implicitly converted to 64 bits (was 64-bit shift intended?)
2019-01-01 14:15:50 +01:00
else if (tok->astOperand1()->valueType()->type == ValueType::Type::LONGLONG)
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
lhsbits = settings->platform.long_long_bit;
Valueflow: Fix right shift with more than 31 bits (#1553) When comparing if the shift is large enough to make the result zero, use an unsigned long long to make sure the result fits. Also, a check that avoids setting the value if the shift is equal to or larger than the number of bits in the operand (this is undefined behaviour). Finally, add a check to make sure the calculated value is not too large to store. Add test cases to cover this. This was detected by an MSVC warning. valueflow.cpp(1350): warning C4334: '<<' : result of 32-bit shift implicitly converted to 64 bits (was 64-bit shift intended?)
2019-01-01 14:15:50 +01:00
else
continue;
if (rhsvalue >= lhsbits || rhsvalue >= MathLib::bigint_bits || (1ULL << rhsvalue) <= lhsmax)
ValueFlow: getExpressionRange, valueFlowRightShift
2018-11-03 23:25:46 +01:00
continue;
ValueFlow::Value val(0);
val.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(val), settings);
ValueFlow: getExpressionRange, valueFlowRightShift
2018-11-03 23:25:46 +01:00
}
}
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
static std::vector<MathLib::bigint> minUnsignedValue(const Token* tok, int depth = 8)
{
Refactoring: use init list, redundant init (#5552)
2023-10-15 14:51:12 +02:00
std::vector<MathLib::bigint> result;
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
if (!tok)
return result;
if (depth < 0)
return result;
if (tok->hasKnownIntValue()) {
result = {tok->values().front().intvalue};
Fix 10354: FP knownConditionTrueFalse after bitwise and/xor (#3360)
2021-07-26 22:22:50 +02:00
} else if (!Token::Match(tok, "-|%|&|^") && tok->isConstOp() && tok->astOperand1() && tok->astOperand2()) {
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
std::vector<MathLib::bigint> op1 = minUnsignedValue(tok->astOperand1(), depth - 1);
std::vector<MathLib::bigint> op2 = minUnsignedValue(tok->astOperand2(), depth - 1);
if (!op1.empty() && !op2.empty()) {
result = calculate<std::vector<MathLib::bigint>>(tok->str(), op1.front(), op2.front());
}
}
if (result.empty() && astIsUnsigned(tok))
result = {0};
return result;
}
ValueFlow: Assume constant is nonzero when its negated (#4041) * ValueFlow: Assume constant is nonzero when its negated * Format * Format
2022-04-23 06:19:07 +02:00
static bool isConvertedToIntegral(const Token* tok, const Settings* settings)
{
if (!tok)
return false;
std::vector<ValueType> parentTypes = getParentValueTypes(tok, settings);
if (parentTypes.empty())
return false;
const ValueType& vt = parentTypes.front();
return vt.type != ValueType::UNKNOWN_INT && vt.isIntegral();
}
Fix 11349: FP negativeIndex for clamped array index (#4627) * Fix 11349: FP negativeIndex for clamped array index * Format * Use emplace_back * Use default constructor
2022-12-13 07:50:01 +01:00
static bool isSameToken(const Token* tok1, const Token* tok2)
{
Fix crash on ternary with omitted operand (#4673) * Fix MSVC compiler warning * Fix crash on incomplete ternary operator * Revert "Fix crash on incomplete ternary operator" This reverts commit 28df0f0ab6ff794e733617447f847a97c1a7a609. * Handle ternary with omitted operand
2023-01-02 17:44:17 +01:00
if (!tok1 || !tok2)
return false;
Fix 11349: FP negativeIndex for clamped array index (#4627) * Fix 11349: FP negativeIndex for clamped array index * Format * Use emplace_back * Use default constructor
2022-12-13 07:50:01 +01:00
if (tok1->exprId() != 0 && tok1->exprId() == tok2->exprId())
return true;
if (tok1->hasKnownIntValue() && tok2->hasKnownIntValue())
return tok1->values().front().intvalue == tok2->values().front().intvalue;
return false;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowImpossibleValues(TokenList& tokenList, const Settings* settings)
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token* tok = tokenList.front(); tok; tok = tok->next()) {
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
if (tok->hasKnownIntValue())
continue;
Fix 10647: FN knownConditionTrueFalse for impossible Boolean value (#3968) * Add impossible values for bool * Fix valueflow tests * Fix assertion failure * Add test * Format
2022-04-03 20:04:05 +02:00
if (Token::Match(tok, "true|false"))
continue;
if (astIsBool(tok) || Token::Match(tok, "%comp%")) {
ValueFlow::Value lower{-1};
lower.bound = ValueFlow::Value::Bound::Upper;
lower.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(lower), settings);
Fix 10647: FN knownConditionTrueFalse for impossible Boolean value (#3968) * Add impossible values for bool * Fix valueflow tests * Fix assertion failure * Add test * Format
2022-04-03 20:04:05 +02:00
ValueFlow::Value upper{2};
upper.bound = ValueFlow::Value::Bound::Lower;
upper.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(upper), settings);
Fix 10647: FN knownConditionTrueFalse for impossible Boolean value (#3968) * Add impossible values for bool * Fix valueflow tests * Fix assertion failure * Add test * Format
2022-04-03 20:04:05 +02:00
} else if (astIsUnsigned(tok) && !astIsPointer(tok)) {
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
std::vector<MathLib::bigint> minvalue = minUnsignedValue(tok);
if (minvalue.empty())
continue;
ValueFlow::Value value{std::max<MathLib::bigint>(0, minvalue.front()) - 1};
value.bound = ValueFlow::Value::Bound::Upper;
value.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
}
Fix 11349: FP negativeIndex for clamped array index (#4627) * Fix 11349: FP negativeIndex for clamped array index * Format * Use emplace_back * Use default constructor
2022-12-13 07:50:01 +01:00
if (Token::simpleMatch(tok, "?") && Token::Match(tok->astOperand1(), "<|<=|>|>=")) {
const Token* condTok = tok->astOperand1();
const Token* branchesTok = tok->astOperand2();
auto tokens = makeArray(condTok->astOperand1(), condTok->astOperand2());
auto branches = makeArray(branchesTok->astOperand1(), branchesTok->astOperand2());
bool flipped = false;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::equal(tokens.cbegin(), tokens.cend(), branches.crbegin(), &isSameToken))
Fix 11349: FP negativeIndex for clamped array index (#4627) * Fix 11349: FP negativeIndex for clamped array index * Format * Use emplace_back * Use default constructor
2022-12-13 07:50:01 +01:00
flipped = true;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
else if (!std::equal(tokens.cbegin(), tokens.cend(), branches.cbegin(), &isSameToken))
Fix 11349: FP negativeIndex for clamped array index (#4627) * Fix 11349: FP negativeIndex for clamped array index * Format * Use emplace_back * Use default constructor
2022-12-13 07:50:01 +01:00
continue;
const bool isMin = Token::Match(condTok, "<|<=") ^ flipped;
std::vector<ValueFlow::Value> values;
for (const Token* tok2 : tokens) {
if (tok2->hasKnownIntValue()) {
Fix #12039 FP knownConditionTrueFalse (#5513)
2023-10-06 09:53:24 +02:00
values.emplace_back(tok2->values().front());
Fix 11349: FP negativeIndex for clamped array index (#4627) * Fix 11349: FP negativeIndex for clamped array index * Format * Use emplace_back * Use default constructor
2022-12-13 07:50:01 +01:00
} else {
ValueFlow::Value symValue{};
symValue.valueType = ValueFlow::Value::ValueType::SYMBOLIC;
symValue.tokvalue = tok2;
values.push_back(symValue);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(tok2->values().cbegin(),
tok2->values().cend(),
Fix 11349: FP negativeIndex for clamped array index (#4627) * Fix 11349: FP negativeIndex for clamped array index * Format * Use emplace_back * Use default constructor
2022-12-13 07:50:01 +01:00
std::back_inserter(values),
[](const ValueFlow::Value& v) {
if (!v.isKnown())
return false;
return v.isSymbolicValue();
});
}
}
for (ValueFlow::Value& value : values) {
value.setImpossible();
if (isMin) {
value.intvalue++;
value.bound = ValueFlow::Value::Bound::Lower;
} else {
value.intvalue--;
value.bound = ValueFlow::Value::Bound::Upper;
}
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
Fix 11349: FP negativeIndex for clamped array index (#4627) * Fix 11349: FP negativeIndex for clamped array index * Format * Use emplace_back * Use default constructor
2022-12-13 07:50:01 +01:00
}
} else if (Token::simpleMatch(tok, "%") && tok->astOperand2() && tok->astOperand2()->hasKnownIntValue()) {
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
ValueFlow::Value value{tok->astOperand2()->values().front()};
value.bound = ValueFlow::Value::Bound::Lower;
value.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
Fix 7843 and 7844: ValueFlow for abs (#3373) * Refactor: Use valueFlowForward to forward values in condition expression * Formattting * Make known when using bools as well * Set abs function as always positive * Add test * Add valueFlowSymbolicAbs * Set impossible values * Fix test case * Fix error messages * Merge
2021-08-03 06:31:28 +02:00
} else if (Token::Match(tok, "abs|labs|llabs|fabs|fabsf|fabsl (")) {
ValueFlow::Value value{-1};
value.bound = ValueFlow::Value::Bound::Upper;
value.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(value), settings);
Fix 10537: FN: knownConditionTrueFalse (std::string::c_str() never returns nullptr) (#3498)
2021-10-11 19:16:12 +02:00
} else if (Token::Match(tok, ". data|c_str (") && astIsContainerOwned(tok->astOperand1())) {
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
const Library::Container* container = getLibraryContainer(tok->astOperand1());
Fix 10537: FN: knownConditionTrueFalse (std::string::c_str() never returns nullptr) (#3498)
2021-10-11 19:16:12 +02:00
if (!container)
continue;
if (!container->stdStringLike)
continue;
if (container->view)
continue;
ValueFlow::Value value{0};
value.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->tokAt(2), std::move(value), settings);
Fix 10537: FN: knownConditionTrueFalse (std::string::c_str() never returns nullptr) (#3498)
2021-10-11 19:16:12 +02:00
} else if (Token::Match(tok, "make_shared|make_unique <") && Token::simpleMatch(tok->linkAt(1), "> (")) {
ValueFlow::Value value{0};
value.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->linkAt(1)->next(), std::move(value), settings);
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
} else if ((tokenList.isCPP() && Token::simpleMatch(tok, "this")) || tok->isUnaryOp("&")) {
Fix 10537: FN: knownConditionTrueFalse (std::string::c_str() never returns nullptr) (#3498)
2021-10-11 19:16:12 +02:00
ValueFlow::Value value{0};
value.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
ValueFlow: Assume constant is nonzero when its negated (#4041) * ValueFlow: Assume constant is nonzero when its negated * Format * Format
2022-04-23 06:19:07 +02:00
} else if (tok->isIncompleteVar() && tok->astParent() && tok->astParent()->isUnaryOp("-") &&
isConvertedToIntegral(tok->astParent(), settings)) {
ValueFlow::Value value{0};
value.setImpossible();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
}
}
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowEnumValue(SymbolDatabase & symboldatabase, const Settings * settings)
Fix #9647: Set correct enum value (#2856) * Tokenize: Set varId for variables in enum Set varIds in enum values. It was previously disabled in 5119ae84b879fad to avoid issues with enums named the same as global variables. Take care to only set varids to variables used to set the value of an enumerator, not the enumerator itself. This is somewhat complicated by the fact that at the time this happens, astOperand1(), astOperand2(), astParent() etc are not set. The current implementation is not perfect, for example in the code below, y will not have a varid set, but x and z will. This is deemed sufficient for now. int x, y, z; enum E { a = f(x, y, z); }; * Fix #9647: Value of enums with variables as init values C++ allows enum values to be set using constexprs, which cppcheck did not handle before. To solve this, add a new pass to valueflow to update enum values after global consts have been processed. In order to do so, I moved all settings of enum values to valueflow. After setting the enum values, we need another call to valueFlowNumber() to actually set users of the enums. There is still room for improvements, since each pass of valueFlowGlobalConstVar() and valueFlowEnumValue() only sets variables that are possible to set directly, and not if setting the value of a variable allows us to set the value of another. For example constexpr int a = 5; constexpr int b = a + 5; enum E { X = a }; constexpr E e = X; Here both b and e will not have their values set, even though cppcheck should be possible to figure out their values. That's for another PR though. This was tested by running test-my-pr.py with 500 packages. The only difference was one error message in fairy-stockfish_11.1, where cppcheck now printed the correct size of an array instead of 2147483648 which I assume is some kind of default value. In that package, using a constexpr when setting enum values is common, but as mentioned, there was no change in the number of warnings.
2020-10-22 07:45:04 +02:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (Scope & scope : symboldatabase.scopeList) {
Fix #9647: Set correct enum value (#2856) * Tokenize: Set varId for variables in enum Set varIds in enum values. It was previously disabled in 5119ae84b879fad to avoid issues with enums named the same as global variables. Take care to only set varids to variables used to set the value of an enumerator, not the enumerator itself. This is somewhat complicated by the fact that at the time this happens, astOperand1(), astOperand2(), astParent() etc are not set. The current implementation is not perfect, for example in the code below, y will not have a varid set, but x and z will. This is deemed sufficient for now. int x, y, z; enum E { a = f(x, y, z); }; * Fix #9647: Value of enums with variables as init values C++ allows enum values to be set using constexprs, which cppcheck did not handle before. To solve this, add a new pass to valueflow to update enum values after global consts have been processed. In order to do so, I moved all settings of enum values to valueflow. After setting the enum values, we need another call to valueFlowNumber() to actually set users of the enums. There is still room for improvements, since each pass of valueFlowGlobalConstVar() and valueFlowEnumValue() only sets variables that are possible to set directly, and not if setting the value of a variable allows us to set the value of another. For example constexpr int a = 5; constexpr int b = a + 5; enum E { X = a }; constexpr E e = X; Here both b and e will not have their values set, even though cppcheck should be possible to figure out their values. That's for another PR though. This was tested by running test-my-pr.py with 500 packages. The only difference was one error message in fairy-stockfish_11.1, where cppcheck now printed the correct size of an array instead of 2147483648 which I assume is some kind of default value. In that package, using a constexpr when setting enum values is common, but as mentioned, there was no change in the number of warnings.
2020-10-22 07:45:04 +02:00
if (scope.type != Scope::eEnum)
continue;
MathLib::bigint value = 0;
bool prev_enum_is_known = true;
for (Enumerator & enumerator : scope.enumeratorList) {
if (enumerator.start) {
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
Token* rhs = const_cast<Token*>(enumerator.start->previous()->astOperand2());
Fix #9647: Set correct enum value (#2856) * Tokenize: Set varId for variables in enum Set varIds in enum values. It was previously disabled in 5119ae84b879fad to avoid issues with enums named the same as global variables. Take care to only set varids to variables used to set the value of an enumerator, not the enumerator itself. This is somewhat complicated by the fact that at the time this happens, astOperand1(), astOperand2(), astParent() etc are not set. The current implementation is not perfect, for example in the code below, y will not have a varid set, but x and z will. This is deemed sufficient for now. int x, y, z; enum E { a = f(x, y, z); }; * Fix #9647: Value of enums with variables as init values C++ allows enum values to be set using constexprs, which cppcheck did not handle before. To solve this, add a new pass to valueflow to update enum values after global consts have been processed. In order to do so, I moved all settings of enum values to valueflow. After setting the enum values, we need another call to valueFlowNumber() to actually set users of the enums. There is still room for improvements, since each pass of valueFlowGlobalConstVar() and valueFlowEnumValue() only sets variables that are possible to set directly, and not if setting the value of a variable allows us to set the value of another. For example constexpr int a = 5; constexpr int b = a + 5; enum E { X = a }; constexpr E e = X; Here both b and e will not have their values set, even though cppcheck should be possible to figure out their values. That's for another PR though. This was tested by running test-my-pr.py with 500 packages. The only difference was one error message in fairy-stockfish_11.1, where cppcheck now printed the correct size of an array instead of 2147483648 which I assume is some kind of default value. In that package, using a constexpr when setting enum values is common, but as mentioned, there was no change in the number of warnings.
2020-10-22 07:45:04 +02:00
ValueFlow::valueFlowConstantFoldAST(rhs, settings);
if (rhs && rhs->hasKnownIntValue()) {
enumerator.value = rhs->values().front().intvalue;
enumerator.value_known = true;
value = enumerator.value + 1;
prev_enum_is_known = true;
} else
prev_enum_is_known = false;
} else if (prev_enum_is_known) {
enumerator.value = value++;
enumerator.value_known = true;
}
}
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowGlobalConstVar(TokenList& tokenList, const Settings *settings)
Implement #7597 - valueflow: global constant (#1802) * Implement const global value flow * Tabs to spaces
2019-04-21 06:54:32 +02:00
{
// Get variable values...
std::map<const Variable*, ValueFlow::Value> vars;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (const Token* tok = tokenList.front(); tok; tok = tok->next()) {
Implement #7597 - valueflow: global constant (#1802) * Implement const global value flow * Tabs to spaces
2019-04-21 06:54:32 +02:00
if (!tok->variable())
continue;
// Initialization...
if (tok == tok->variable()->nameToken() &&
Fix issue 9099 and 9102: Incorrect valueflow for global variables (#1832)
2019-05-14 08:58:27 +02:00
!tok->variable()->isVolatile() &&
!tok->variable()->isArgument() &&
Implement #7597 - valueflow: global constant (#1802) * Implement const global value flow * Tabs to spaces
2019-04-21 06:54:32 +02:00
tok->variable()->isConst() &&
tok->valueType() &&
tok->valueType()->isIntegral() &&
tok->valueType()->pointer == 0 &&
tok->valueType()->constness == 1 &&
Token::Match(tok, "%name% =") &&
tok->next()->astOperand2() &&
tok->next()->astOperand2()->hasKnownIntValue()) {
vars[tok->variable()] = tok->next()->astOperand2()->values().front();
}
}
// Set values..
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token* tok = tokenList.front(); tok; tok = tok->next()) {
Implement #7597 - valueflow: global constant (#1802) * Implement const global value flow * Tabs to spaces
2019-04-21 06:54:32 +02:00
if (!tok->variable())
continue;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const std::map<const Variable*, ValueFlow::Value>::const_iterator var = vars.find(tok->variable());
Implement #7597 - valueflow: global constant (#1802) * Implement const global value flow * Tabs to spaces
2019-04-21 06:54:32 +02:00
if (var == vars.end())
continue;
setTokenValue(tok, var->second, settings);
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowGlobalStaticVar(TokenList &tokenList, const Settings *settings)
Fixed #8221 (ValueFlow: value for static variable that is not written)
2017-09-15 15:58:19 +02:00
{
// Get variable values...
std::map<const Variable *, ValueFlow::Value> vars;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (const Token *tok = tokenList.front(); tok; tok = tok->next()) {
Fixed #8221 (ValueFlow: value for static variable that is not written)
2017-09-15 15:58:19 +02:00
if (!tok->variable())
continue;
// Initialization...
if (tok == tok->variable()->nameToken() &&
tok->variable()->isStatic() &&
!tok->variable()->isConst() &&
tok->valueType() &&
tok->valueType()->isIntegral() &&
tok->valueType()->pointer == 0 &&
tok->valueType()->constness == 0 &&
Token::Match(tok, "%name% =") &&
tok->next()->astOperand2() &&
tok->next()->astOperand2()->hasKnownIntValue()) {
vars[tok->variable()] = tok->next()->astOperand2()->values().front();
} else {
// If variable is written anywhere in TU then remove it from vars
if (!tok->astParent())
continue;
if (Token::Match(tok->astParent(), "++|--|&") && !tok->astParent()->astOperand2())
vars.erase(tok->variable());
Fixed #8288 (valueFlowGlobalVar: compound assignments)
2018-03-18 19:53:33 +01:00
else if (tok->astParent()->isAssignmentOp()) {
Fixed #8221 (ValueFlow: value for static variable that is not written)
2017-09-15 15:58:19 +02:00
if (tok == tok->astParent()->astOperand1())
vars.erase(tok->variable());
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
else if (tokenList.isCPP() && Token::Match(tok->astParent()->tokAt(-2), "& %name% ="))
Fixed #8221 (ValueFlow: value for static variable that is not written)
2017-09-15 15:58:19 +02:00
vars.erase(tok->variable());
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
} else if (isLikelyStreamRead(tokenList.isCPP(), tok->astParent())) {
Refactoring; reuse isLikelyStreamRead
2018-04-17 19:51:27 +02:00
vars.erase(tok->variable());
Fixed #8221 (ValueFlow: value for static variable that is not written)
2017-09-15 15:58:19 +02:00
} else if (Token::Match(tok->astParent(), "[(,]"))
vars.erase(tok->variable());
}
}
// Set values..
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenList.front(); tok; tok = tok->next()) {
Fixed #8221 (ValueFlow: value for static variable that is not written)
2017-09-15 15:58:19 +02:00
if (!tok->variable())
continue;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const std::map<const Variable *, ValueFlow::Value>::const_iterator var = vars.find(tok->variable());
Fixed #8221 (ValueFlow: value for static variable that is not written)
2017-09-15 15:58:19 +02:00
if (var == vars.end())
continue;
setTokenValue(tok, var->second, settings);
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static ValuePtr<Analyzer> makeAnalyzer(const Token* exprTok, ValueFlow::Value value, const TokenList& tokenlist, const Settings* settings);
static ValuePtr<Analyzer> makeReverseAnalyzer(const Token* exprTok, ValueFlow::Value value, const TokenList& tokenlist, const Settings* settings);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
static Analyzer::Result valueFlowForward(Token* startToken,
const Token* endToken,
const Token* exprTok,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
ValueFlow::Value value,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
const TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current())
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
if (settings->debugnormal)
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
setSourceLocation(value, loc, startToken);
return valueFlowGenericForward(startToken,
endToken,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
makeAnalyzer(exprTok, std::move(value), tokenlist, settings),
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
*settings);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
static Analyzer::Result valueFlowForward(Token* startToken,
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
const Token* endToken,
const Token* exprTok,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
std::list<ValueFlow::Value> values,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
const TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current())
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
Analyzer::Result result{};
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
for (ValueFlow::Value& v : values) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
result.update(valueFlowForward(startToken, endToken, exprTok, std::move(v), tokenlist, settings, loc));
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
return result;
}
template<class ValueOrValues>
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
static Analyzer::Result valueFlowForward(Token* startToken,
const Token* exprTok,
ValueOrValues v,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current())
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
const Token* endToken = nullptr;
const Function* f = Scope::nestedInFunction(startToken->scope());
if (f && f->functionScope)
endToken = f->functionScope->bodyEnd;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return valueFlowForward(startToken, endToken, exprTok, std::move(v), tokenlist, settings, loc);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
static Analyzer::Result valueFlowForwardRecursive(Token* top,
const Token* exprTok,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
std::list<ValueFlow::Value> values,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
const TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current())
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
Analyzer::Result result{};
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
for (ValueFlow::Value& v : values) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
if (settings->debugnormal)
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
setSourceLocation(v, loc, top);
result.update(
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
valueFlowGenericForward(top, makeAnalyzer(exprTok, std::move(v), tokenlist, settings), *settings));
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
return result;
}
static void valueFlowReverse(Token* tok,
const Token* const endToken,
const Token* const varToken,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
std::list<ValueFlow::Value> values,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
const TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current())
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
for (ValueFlow::Value& v : values) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
if (settings->debugnormal)
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
setSourceLocation(v, loc, tok);
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
valueFlowGenericReverse(tok, endToken, makeReverseAnalyzer(varToken, std::move(v), tokenlist, settings), *settings);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
}
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
// Deprecated
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowReverse(const TokenList& tokenlist,
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
Token* tok,
const Token* const varToken,
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
ValueFlow::Value val,
fixed some clang-tidy warnings (#3080)
2022-05-08 20:42:06 +02:00
const ValueFlow::Value& val2,
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
ErrorLogger* /*errorLogger*/,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings = nullptr,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current())
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
mitigated and enabled more clang-tidy warnings (#4470) * fixed some `performance-inefficient-string-concatenation` clang-tidy warnings * fixed and enabled `modernize-replace-random-shuffle` clang-tidy warning * fixed and enabled `bugprone-suspicious-string-compare` clang-tidy warning * mitigated and enabled `readability-non-const-parameter` clang-tidy warnings * clang-tidy.md: documented some disabled checks * mitigated and enabled `performance-unnecessary-value-param` clang-tidy warnings
2022-09-16 18:58:59 +02:00
std::list<ValueFlow::Value> values = {std::move(val)};
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
if (val2.varId != 0)
values.push_back(val2);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowReverse(tok, nullptr, varToken, std::move(values), tokenlist, settings, loc);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
Forward values after assignment in valueFlowReverse (#2226) * Forward values after assignment in valueFlowReverse * Rename variables * Format
2019-10-03 09:58:57 +02:00
static bool isConditionKnown(const Token* tok, bool then)
{
const char* op = "||";
if (then)
op = "&&";
const Token* parent = tok->astParent();
Fix 11296: FN: knownConditionTrueFalse ( a !=0 && b != 0 && a == 0) (#4444)
2022-09-06 07:31:48 +02:00
while (parent && (parent->str() == op || parent->str() == "!" || parent->isCast()))
Forward values after assignment in valueFlowReverse (#2226) * Forward values after assignment in valueFlowReverse * Rename variables * Format
2019-10-03 09:58:57 +02:00
parent = parent->astParent();
Fix 11296: FN: knownConditionTrueFalse ( a !=0 && b != 0 && a == 0) (#4444)
2022-09-06 07:31:48 +02:00
const Token* top = tok->astTop();
if (top && Token::Match(top->previous(), "if|while|for ("))
return parent == top || Token::simpleMatch(parent, ";");
return parent && parent->str() != op;
Forward values after assignment in valueFlowReverse (#2226) * Forward values after assignment in valueFlowReverse * Rename variables * Format
2019-10-03 09:58:57 +02:00
}
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
static const std::string& invertAssign(const std::string& assign)
{
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
static std::unordered_map<std::string, std::string> lookup = {{"=", "="},
{"+=", "-="},
{"-=", "+="},
{"*=", "/="},
{"/=", "*="},
{"<<=", ">>="},
{">>=", "<<="},
{"^=", "^="}};
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
auto it = lookup.find(assign);
Fix #10888 FN variableScope with enum and struct (#3920) * Fix #10888 FN variableScope with enum and struct * Scope reduction * Scope reduction
2022-03-21 16:05:38 +01:00
if (it == lookup.end()) {
some cleanups (#4308)
2022-07-26 08:28:55 +02:00
return emptyString;
Fix #10888 FN variableScope with enum and struct (#3920) * Fix #10888 FN variableScope with enum and struct * Scope reduction * Scope reduction
2022-03-21 16:05:38 +01:00
}
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
return it->second;
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
}
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
static std::string removeAssign(const std::string& assign) {
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
return std::string{assign.cbegin(), assign.cend() - 1};
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
}
template<class T, class U>
static T calculateAssign(const std::string& assign, const T& x, const U& y, bool* error = nullptr)
ValueFlowForward: Refactoring handling of compound assignments
2017-09-20 11:45:28 +02:00
{
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
if (assign.empty() || assign.back() != '=') {
if (error)
*error = true;
return T{};
}
if (assign == "=")
return y;
return calculate<T, T>(removeAssign(assign), x, y, error);
}
template<class T, class U>
static void assignValueIfMutable(T& x, const U& y)
{
x = y;
}
template<class T, class U>
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
static void assignValueIfMutable(const T& /*unused*/, const U& /*unused*/)
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
{}
template<class Value, REQUIRES("Value must ValueFlow::Value", std::is_convertible<Value&, const ValueFlow::Value&> )>
static bool evalAssignment(Value& lhsValue, const std::string& assign, const ValueFlow::Value& rhsValue)
{
bool error = false;
if (lhsValue.isSymbolicValue() && rhsValue.isIntValue()) {
if (assign != "+=" && assign != "-=")
ValueFlowForward: Refactoring handling of compound assignments
2017-09-20 11:45:28 +02:00
return false;
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
assignValueIfMutable(lhsValue.intvalue, calculateAssign(assign, lhsValue.intvalue, rhsValue.intvalue, &error));
} else if (lhsValue.isIntValue() && rhsValue.isIntValue()) {
assignValueIfMutable(lhsValue.intvalue, calculateAssign(assign, lhsValue.intvalue, rhsValue.intvalue, &error));
} else if (lhsValue.isFloatValue() && rhsValue.isIntValue()) {
assignValueIfMutable(lhsValue.floatValue,
calculateAssign(assign, lhsValue.floatValue, rhsValue.intvalue, &error));
ValueFlowForward: Refactoring handling of compound assignments
2017-09-20 11:45:28 +02:00
} else {
return false;
}
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
return !error;
ValueFlowForward: Refactoring handling of compound assignments
2017-09-20 11:45:28 +02:00
}
Fix 9135: Access of moved variable not detected in loop (#4215) * Fix 9135: Access of moved variable not detected in loop * Format * Fix issue with pushing back on container * Format * Fix null pointer * Remove yeild for now
2022-06-16 17:40:09 +02:00
static ValueFlow::Value::MoveKind isMoveOrForward(const Token* tok)
{
if (!tok)
return ValueFlow::Value::MoveKind::NonMovedVariable;
const Token* parent = tok->astParent();
if (!Token::simpleMatch(parent, "("))
return ValueFlow::Value::MoveKind::NonMovedVariable;
const Token* ftok = parent->astOperand1();
if (!ftok)
return ValueFlow::Value::MoveKind::NonMovedVariable;
if (Token::simpleMatch(ftok->astOperand1(), "std :: move"))
return ValueFlow::Value::MoveKind::MovedVariable;
if (Token::simpleMatch(ftok->astOperand1(), "std :: forward"))
return ValueFlow::Value::MoveKind::ForwardedVariable;
// TODO: Check for cast
return ValueFlow::Value::MoveKind::NonMovedVariable;
}
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
template<class T>
struct SingleRange {
T* x;
T* begin() const {
return x;
}
T* end() const {
return x+1;
}
};
template<class T>
CI: Add selfcheck using Cppcheck Premium. Activates Misra C++ 2008 and Cert C++ 2016 checkers. (#5623)
2023-11-06 15:31:47 +01:00
static SingleRange<T> MakeSingleRange(T& x)
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
{
return {&x};
}
class SelectValueFromVarIdMapRange {
using M = std::unordered_map<nonneg int, ValueFlow::Value>;
struct Iterator {
using iterator_category = std::forward_iterator_tag;
using value_type = const ValueFlow::Value;
using pointer = value_type *;
using reference = value_type &;
Update the isVariableChanged to correctly check the const bit (#4912)
2023-03-26 15:12:49 +02:00
using difference_type = std::ptrdiff_t;
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
Add std::*begin and std::*end cfg (#4796)
2023-03-09 17:06:53 +01:00
explicit Iterator(const M::const_iterator & it)
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
: mIt(it) {}
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
reference operator*() const {
return mIt->second;
}
enabled functionConst and functionStatic in selfcheck (#3862) * fixed functionConst findings and enabled it in selfcheck * fixed functionStatic findings and enabled it in selfcheck * .travis_suppressions: adjusted comment * testimportproject.cpp: added missing asserts
2022-03-02 07:46:47 +01:00
pointer operator->() const {
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
return &mIt->second;
}
Iterator &operator++() {
// cppcheck-suppress postfixOperator - forward iterator needs to perform post-increment
mIt++;
return *this;
}
friend bool operator==(const Iterator &a, const Iterator &b) {
return a.mIt == b.mIt;
}
friend bool operator!=(const Iterator &a, const Iterator &b) {
return a.mIt != b.mIt;
}
private:
M::const_iterator mIt;
};
public:
explicit SelectValueFromVarIdMapRange(const M *m)
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
: mMap(m) {}
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
Iterator begin() const {
return Iterator(mMap->begin());
}
Iterator end() const {
return Iterator(mMap->end());
}
private:
const M *mMap;
};
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
// Check if its an alias of the variable or is being aliased to this variable
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
template<typename V>
static bool isAliasOf(const Variable * var, const Token *tok, nonneg int varid, const V& values, bool* inconclusive = nullptr)
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
{
if (tok->varId() == varid)
return false;
if (tok->varId() == 0)
return false;
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
if (isAliasOf(tok, varid, inconclusive))
Fix issue 9302: FP uninitvar - struct accessed via pointer (#2121)
2019-08-29 08:38:50 +02:00
return true;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
if (var && !var->isPointer())
Fix issue 9302: FP uninitvar - struct accessed via pointer (#2121)
2019-08-29 08:38:50 +02:00
return false;
// Search through non value aliases
Update the isVariableChanged to correctly check the const bit (#4912)
2023-03-26 15:12:49 +02:00
return std::any_of(values.begin(), values.end(), [&](const ValueFlow::Value& val) {
Fix issue 9302: FP uninitvar - struct accessed via pointer (#2121)
2019-08-29 08:38:50 +02:00
if (!val.isNonValue())
Update the isVariableChanged to correctly check the const bit (#4912)
2023-03-26 15:12:49 +02:00
return false;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (val.isInconclusive())
Update the isVariableChanged to correctly check the const bit (#4912)
2023-03-26 15:12:49 +02:00
return false;
Fix issue 9302: FP uninitvar - struct accessed via pointer (#2121)
2019-08-29 08:38:50 +02:00
if (val.isLifetimeValue() && !val.isLocalLifetimeValue())
Update the isVariableChanged to correctly check the const bit (#4912)
2023-03-26 15:12:49 +02:00
return false;
Fix issue 9302: FP uninitvar - struct accessed via pointer (#2121)
2019-08-29 08:38:50 +02:00
if (val.isLifetimeValue() && val.lifetimeKind != ValueFlow::Value::LifetimeKind::Address)
Update the isVariableChanged to correctly check the const bit (#4912)
2023-03-26 15:12:49 +02:00
return false;
Fix issue 9302: FP uninitvar - struct accessed via pointer (#2121)
2019-08-29 08:38:50 +02:00
if (!Token::Match(val.tokvalue, ".|&|*|%var%"))
Update the isVariableChanged to correctly check the const bit (#4912)
2023-03-26 15:12:49 +02:00
return false;
return astHasVar(val.tokvalue, tok->varId());
});
Fix issue 9302: FP uninitvar - struct accessed via pointer (#2121)
2019-08-29 08:38:50 +02:00
}
Fix issue 9030: ValueFlow: Possible value after conditional assignment in for loop (#3059)
2021-01-18 10:12:07 +01:00
static bool bifurcate(const Token* tok, const std::set<nonneg int>& varids, const Settings* settings, int depth = 20);
static bool bifurcateVariableChanged(const Variable* var,
const std::set<nonneg int>& varids,
const Token* start,
const Token* end,
const Settings* settings,
int depth = 20)
{
bool result = false;
const Token* tok = start;
while ((tok = findVariableChanged(
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
tok->next(), end, var->isPointer(), var->declarationId(), var->isGlobal(), settings, true))) {
Fix issue 9030: ValueFlow: Possible value after conditional assignment in for loop (#3059)
2021-01-18 10:12:07 +01:00
if (Token::Match(tok->astParent(), "%assign%")) {
if (!bifurcate(tok->astParent()->astOperand2(), varids, settings, depth - 1))
return true;
} else {
result = true;
}
}
return result;
}
static bool bifurcate(const Token* tok, const std::set<nonneg int>& varids, const Settings* settings, int depth)
Fix issue 9541: false negative: knownConditionTrueFalse (#2473) * Fix issue 9541: false negative: knownConditionTrueFalse * Add another test case * Add another test * Fix FPs * Format * Fix compile error * Remove double conditions * Fix compile error
2020-01-05 16:25:33 +01:00
{
if (depth < 0)
return false;
if (!tok)
return true;
if (tok->hasKnownIntValue())
return true;
LCppC backport: Various optimizations (#4182) * Optimization: Use Token::eIncDecOp instead of expensive Token::Match calls Merged from LCppC. * Small Optimizations: - Moved a std::set that is only need during initialization of SymbolDatabase to function scope - Use std::vector instead of std::list Merged from LCppC. * Optimization: Refactorized various Token::Match calls and surrounding conditions Merged from LCppC. * Refactorization: Cleanup usage of std::multimap Merged from LCppC.
2022-06-08 16:58:57 +02:00
if (tok->isConstOp())
Fix 9577 (endless recursion in Valueflow::bifurcate()) (#2492) Ensure bifurcate() does not recurse endlessly where a variable is initialized recursively, or a variable is initialized as x(0) or x{0} followed by a recursive assignment (for example int x(0); x = x / 1;). The first case is solved by bailing out if there initialization is done using x(0) or x{0}, the second by adding a missing depth argument to a recursive call.
2020-01-17 03:17:26 +01:00
return bifurcate(tok->astOperand1(), varids, settings, depth) && bifurcate(tok->astOperand2(), varids, settings, depth);
LCppC backport: Various optimizations (#4182) * Optimization: Use Token::eIncDecOp instead of expensive Token::Match calls Merged from LCppC. * Small Optimizations: - Moved a std::set that is only need during initialization of SymbolDatabase to function scope - Use std::vector instead of std::list Merged from LCppC. * Optimization: Refactorized various Token::Match calls and surrounding conditions Merged from LCppC. * Refactorization: Cleanup usage of std::multimap Merged from LCppC.
2022-06-08 16:58:57 +02:00
if (tok->varId() != 0) {
Fix issue 9541: false negative: knownConditionTrueFalse (#2473) * Fix issue 9541: false negative: knownConditionTrueFalse * Add another test case * Add another test * Fix FPs * Format * Fix compile error * Remove double conditions * Fix compile error
2020-01-05 16:25:33 +01:00
if (varids.count(tok->varId()) > 0)
return true;
const Variable* var = tok->variable();
if (!var)
return false;
const Token* start = var->declEndToken();
if (!start)
return false;
Fix 9577 (endless recursion in Valueflow::bifurcate()) (#2492) Ensure bifurcate() does not recurse endlessly where a variable is initialized recursively, or a variable is initialized as x(0) or x{0} followed by a recursive assignment (for example int x(0); x = x / 1;). The first case is solved by bailing out if there initialization is done using x(0) or x{0}, the second by adding a missing depth argument to a recursive call.
2020-01-17 03:17:26 +01:00
if (start->strAt(-1) == ")" || start->strAt(-1) == "}")
return false;
Fix issue 9541: false negative: knownConditionTrueFalse (#2473) * Fix issue 9541: false negative: knownConditionTrueFalse * Add another test case * Add another test * Fix FPs * Format * Fix compile error * Remove double conditions * Fix compile error
2020-01-05 16:25:33 +01:00
if (Token::Match(start, "; %varid% =", var->declarationId()))
start = start->tokAt(2);
Fix issue 9030: ValueFlow: Possible value after conditional assignment in for loop (#3059)
2021-01-18 10:12:07 +01:00
if (var->isConst() || !bifurcateVariableChanged(var, varids, start, tok, settings, depth))
Fix issue 9541: false negative: knownConditionTrueFalse (#2473) * Fix issue 9541: false negative: knownConditionTrueFalse * Add another test case * Add another test * Fix FPs * Format * Fix compile error * Remove double conditions * Fix compile error
2020-01-05 16:25:33 +01:00
return var->isArgument() || bifurcate(start->astOperand2(), varids, settings, depth - 1);
return false;
}
return false;
}
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
struct ValueFlowAnalyzer : Analyzer {
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
const TokenList& tokenlist;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings;
Fix issue 7804: ValueFlow: possible value in second if body (#2543)
2020-02-19 07:55:04 +01:00
ProgramMemoryState pms;
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
explicit ValueFlowAnalyzer(const TokenList& t, const Settings* s = nullptr) : tokenlist(t), settings(s), pms(settings) {}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
virtual const ValueFlow::Value* getValue(const Token* tok) const = 0;
virtual ValueFlow::Value* getValue(const Token* tok) = 0;
virtual void makeConditional() = 0;
virtual void addErrorPath(const Token* tok, const std::string& s) = 0;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
virtual bool match(const Token* tok) const = 0;
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
virtual bool internalMatch(const Token* /*tok*/) const {
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
return false;
}
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
virtual bool isAlias(const Token* tok, bool& inconclusive) const = 0;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
using ProgramState = ProgramMemory::Map;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
virtual ProgramState getProgramState() const = 0;
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
virtual int getIndirect(const Token* tok) const {
const ValueFlow::Value* value = getValue(tok);
if (value)
return value->indirect;
return 0;
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
virtual bool isGlobal() const {
return false;
}
Running astyle [ci skip]
2021-07-18 10:01:22 +02:00
virtual bool dependsOnThis() const {
return false;
}
Dont stop analysis when an unrelated class variable is changed (#3518)
2021-10-23 14:47:10 +02:00
virtual bool isVariable() const {
return false;
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
bool isCPP() const {
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
return tokenlist.isCPP();
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
}
const Settings* getSettings() const {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return settings;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
}
Add special function to match lifetimes (#5320) This also removes the termination checking in `valueFlowUninit` as this causes a lot of FNs.
2023-08-14 10:27:00 +02:00
// Returns Action::Match if its an exact match, return Action::Read if it partially matches the lifetime
Action analyzeLifetime(const Token* tok) const
{
if (!tok)
return Action::None;
if (match(tok))
return Action::Match;
if (Token::simpleMatch(tok, ".") && analyzeLifetime(tok->astOperand1()) != Action::None)
return Action::Read;
if (astIsRHS(tok) && Token::simpleMatch(tok->astParent(), "."))
return analyzeLifetime(tok->astParent());
return Action::None;
}
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
struct ConditionState {
bool dependent = true;
bool unknown = true;
bool isUnknownDependent() const {
return unknown && dependent;
}
};
std::unordered_map<nonneg int, const Token*> getSymbols(const Token* tok) const
{
std::unordered_map<nonneg int, const Token*> result;
if (!tok)
return result;
for (const ValueFlow::Value& v : tok->values()) {
if (!v.isSymbolicValue())
continue;
if (v.isImpossible())
continue;
if (!v.tokvalue)
continue;
if (v.tokvalue->exprId() == 0)
continue;
if (match(v.tokvalue))
continue;
result[v.tokvalue->exprId()] = v.tokvalue;
}
return result;
}
ConditionState analyzeCondition(const Token* tok, int depth = 20) const
{
ConditionState result;
if (!tok)
return result;
if (depth < 0)
return result;
depth--;
if (analyze(tok, Direction::Forward).isRead()) {
result.dependent = true;
result.unknown = false;
return result;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
if (tok->hasKnownIntValue() || tok->isLiteral()) {
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
result.dependent = false;
result.unknown = false;
return result;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
if (Token::Match(tok, "%cop%")) {
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
if (isLikelyStream(isCPP(), tok->astOperand1())) {
result.dependent = false;
return result;
}
ConditionState lhs = analyzeCondition(tok->astOperand1(), depth - 1);
if (lhs.isUnknownDependent())
return lhs;
ConditionState rhs = analyzeCondition(tok->astOperand2(), depth - 1);
if (rhs.isUnknownDependent())
return rhs;
if (Token::Match(tok, "%comp%"))
result.dependent = lhs.dependent && rhs.dependent;
else
result.dependent = lhs.dependent || rhs.dependent;
result.unknown = lhs.unknown || rhs.unknown;
return result;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
if (Token::Match(tok->previous(), "%name% (")) {
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
std::vector<const Token*> args = getArguments(tok->previous());
if (Token::Match(tok->tokAt(-2), ". %name% (")) {
args.push_back(tok->tokAt(-2)->astOperand1());
}
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
result.dependent = std::any_of(args.cbegin(), args.cend(), [&](const Token* arg) {
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
ConditionState cs = analyzeCondition(arg, depth - 1);
return cs.dependent;
});
if (result.dependent) {
// Check if we can evaluate the function
if (!evaluate(Evaluate::Integral, tok).empty())
result.unknown = false;
}
return result;
}
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
std::unordered_map<nonneg int, const Token*> symbols = getSymbols(tok);
result.dependent = false;
for (auto&& p : symbols) {
const Token* arg = p.second;
ConditionState cs = analyzeCondition(arg, depth - 1);
result.dependent = cs.dependent;
if (result.dependent)
break;
}
if (result.dependent) {
// Check if we can evaluate the token
if (!evaluate(Evaluate::Integral, tok).empty())
result.unknown = false;
}
return result;
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
virtual Action isModified(const Token* tok) const {
Minor tweaking of constness
2023-06-15 19:41:47 +02:00
const Action read = Action::Read;
Fix 9135: Access of moved variable not detected in loop (#4215) * Fix 9135: Access of moved variable not detected in loop * Format * Fix issue with pushing back on container * Format * Fix null pointer * Remove yeild for now
2022-06-16 17:40:09 +02:00
const ValueFlow::Value* value = getValue(tok);
if (value) {
Typos found by running "codespell" (#4260)
2022-07-10 22:40:05 +02:00
// Moving a moved value won't change the moved value
Fix 9135: Access of moved variable not detected in loop (#4215) * Fix 9135: Access of moved variable not detected in loop * Format * Fix issue with pushing back on container * Format * Fix null pointer * Remove yeild for now
2022-06-16 17:40:09 +02:00
if (value->isMovedValue() && isMoveOrForward(tok) != ValueFlow::Value::MoveKind::NonMovedVariable)
return read;
Typos found by running "codespell" (#4260)
2022-07-10 22:40:05 +02:00
// Inserting elements to container won't change the lifetime
Fix 9135: Access of moved variable not detected in loop (#4215) * Fix 9135: Access of moved variable not detected in loop * Format * Fix issue with pushing back on container * Format * Fix null pointer * Remove yeild for now
2022-06-16 17:40:09 +02:00
if (astIsContainer(tok) && value->isLifetimeValue() &&
contains({Library::Container::Action::PUSH,
Library::Container::Action::INSERT,
Library::Container::Action::CHANGE_INTERNAL},
astContainerAction(tok)))
return read;
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
bool inconclusive = false;
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (isVariableChangedByFunctionCall(tok, getIndirect(tok), getSettings(), &inconclusive))
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
return read | Action::Invalid;
if (inconclusive)
return read | Action::Inconclusive;
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (isVariableChanged(tok, getIndirect(tok), getSettings(), isCPP())) {
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
if (Token::Match(tok->astParent(), "*|[|.|++|--"))
return read | Action::Invalid;
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
// Check if its assigned to the same value
if (value && !value->isImpossible() && Token::simpleMatch(tok->astParent(), "=") && astIsLHS(tok) &&
astIsIntegral(tok->astParent()->astOperand2(), false)) {
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
std::vector<MathLib::bigint> result = evaluateInt(tok->astParent()->astOperand2());
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
if (!result.empty() && value->equalTo(result.front()))
return Action::Idempotent;
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
return Action::Invalid;
}
return read;
}
Fix #11862 FN constParameterPointer with increment (#5291)
2023-08-08 10:38:03 +02:00
virtual Action isAliasModified(const Token* tok, int indirect = -1) const {
Fix 10456: FP identicalConditionAfterEarlyExit with variable captured by reference (#3439)
2021-09-04 19:05:41 +02:00
// Lambda function call
if (Token::Match(tok, "%var% ("))
// TODO: Check if modified in the lambda function
return Action::Invalid;
Fix #11862 FN constParameterPointer with increment (#5291)
2023-08-08 10:38:03 +02:00
if (indirect == -1) {
indirect = 0;
if (const ValueType* vt = tok->valueType()) {
indirect = vt->pointer;
if (vt->type == ValueType::ITERATOR)
++indirect;
}
Fix #11404 FP knownConditionTrueFalse with iterator (#4619) * Fix wrong value set in valueFlowSameExpressions() * Fix #11404 FP knownConditionTrueFalse with iterator
2022-12-08 10:40:55 +01:00
}
Fix #11862 FN constParameterPointer with increment (#5291)
2023-08-08 10:38:03 +02:00
for (int i = 0; i <= indirect; ++i)
if (isVariableChanged(tok, i, getSettings(), isCPP()))
return Action::Invalid;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
return Action::None;
astyle formatting [ci skip]
2020-02-13 17:04:05 +01:00
}
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
Running astyle [ci skip]
2021-07-18 10:01:22 +02:00
virtual Action isThisModified(const Token* tok) const {
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
if (isThisChanged(tok, 0, getSettings(), isCPP()))
return Action::Invalid;
return Action::None;
}
Fix 10605: FP containerOutOfBounds with empty() check (#3572)
2021-11-25 22:34:00 +01:00
Action isGlobalModified(const Token* tok) const
{
if (tok->function()) {
if (!tok->function()->isConstexpr() && !isConstFunctionCall(tok, getSettings()->library))
return Action::Invalid;
} else if (getSettings()->library.getFunction(tok)) {
// Assume library function doesn't modify user-global variables
return Action::None;
Fix #10526 FP: negativeIndex if function call is made after index check (#4052) * Fix #10526 FP: negativeIndex if function call is made after index check * Improve container check * Format
2022-04-27 14:08:44 +02:00
} else if (Token::simpleMatch(tok->astParent(), ".") && astIsContainer(tok->astParent()->astOperand1())) {
// Assume container member function doesn't modify user-global variables
return Action::None;
Fix 10605: FP containerOutOfBounds with empty() check (#3572)
2021-11-25 22:34:00 +01:00
} else if (tok->tokType() == Token::eType && astIsPrimitive(tok->next())) {
Fix #10526 FP: negativeIndex if function call is made after index check (#4052) * Fix #10526 FP: negativeIndex if function call is made after index check * Improve container check * Format
2022-04-27 14:08:44 +02:00
// Function cast does not modify global variables
Fix 10605: FP containerOutOfBounds with empty() check (#3572)
2021-11-25 22:34:00 +01:00
return Action::None;
Fix #10526 FP: negativeIndex if function call is made after index check (#4052) * Fix #10526 FP: negativeIndex if function call is made after index check * Improve container check * Format
2022-04-27 14:08:44 +02:00
} else if (!tok->isKeyword() && Token::Match(tok, "%name% (")) {
Fix 10605: FP containerOutOfBounds with empty() check (#3572)
2021-11-25 22:34:00 +01:00
return Action::Invalid;
}
return Action::None;
}
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
static const std::string& getAssign(const Token* tok, Direction d)
{
if (d == Direction::Forward)
return tok->str();
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
return invertAssign(tok->str());
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
}
astyle formatting
2020-11-11 09:15:36 +01:00
virtual Action isWritable(const Token* tok, Direction d) const {
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
const ValueFlow::Value* value = getValue(tok);
if (!value)
return Action::None;
Refactor: Use getEndOfExprScope instead of getEndOfVarScope (#3855)
2022-02-24 06:50:34 +01:00
if (!(value->isIntValue() || value->isFloatValue() || value->isSymbolicValue() || value->isLifetimeValue()))
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
return Action::None;
const Token* parent = tok->astParent();
Fix 10148: False positive: knownConditionTrueFalse in for loop due to &= (#3425)
2021-08-28 09:28:29 +02:00
// Only if its invertible
if (value->isImpossible() && !Token::Match(parent, "+=|-=|*=|++|--"))
return Action::None;
Refactor: Use getEndOfExprScope instead of getEndOfVarScope (#3855)
2022-02-24 06:50:34 +01:00
if (value->isLifetimeValue()) {
if (value->lifetimeKind != ValueFlow::Value::LifetimeKind::Iterator)
return Action::None;
if (!Token::Match(parent, "++|--|+="))
return Action::None;
return Action::Read | Action::Write;
}
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
if (parent && parent->isAssignmentOp() && astIsLHS(tok)) {
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
const Token* rhs = parent->astOperand2();
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
std::vector<MathLib::bigint> result = evaluateInt(rhs);
if (!result.empty()) {
ValueFlow::Value rhsValue{result.front()};
Action a;
if (!evalAssignment(*value, getAssign(parent, d), rhsValue))
a = Action::Invalid;
else
a = Action::Write;
if (parent->str() != "=") {
a |= Action::Read | Action::Incremental;
} else {
if (!value->isImpossible() && value->equalValue(rhsValue))
a = Action::Idempotent;
if (tok->exprId() != 0 &&
findAstNode(rhs, [&](const Token* child) {
return tok->exprId() == child->exprId();
}))
a |= Action::Incremental;
}
return a;
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
}
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
// increment/decrement
Fix 10284: False positive; valueFlowBeforeCondition does not seem to care about increment (#3287)
2021-06-04 21:40:57 +02:00
if (Token::Match(tok->astParent(), "++|--")) {
Fix issue 10120: FP: containerOutOfBounds, regression (#3064)
2021-01-21 19:50:57 +01:00
return Action::Read | Action::Write | Action::Incremental;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
return Action::None;
}
astyle formatting
2020-11-11 09:15:36 +01:00
virtual void writeValue(ValueFlow::Value* value, const Token* tok, Direction d) const {
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
if (!value)
return;
if (!tok->astParent())
return;
Refactor: Use getEndOfExprScope instead of getEndOfVarScope (#3855)
2022-02-24 06:50:34 +01:00
// Lifetime value doesn't change
if (value->isLifetimeValue())
return;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
if (tok->astParent()->isAssignmentOp()) {
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
const Token* rhs = tok->astParent()->astOperand2();
std::vector<MathLib::bigint> result = evaluateInt(rhs);
assert(!result.empty());
ValueFlow::Value rhsValue{result.front()};
if (evalAssignment(*value, getAssign(tok->astParent(), d), rhsValue)) {
valueflow.cpp: avoid some copies related to `ErrorPath` (#4160)
2022-07-20 10:57:49 +02:00
std::string info("Compound assignment '" + tok->astParent()->str() + "', assigned value is " +
value->infoString());
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
if (tok->astParent()->str() == "=")
value->errorPath.clear();
valueflow.cpp: avoid some copies related to `ErrorPath` (#4160)
2022-07-20 10:57:49 +02:00
value->errorPath.emplace_back(tok, std::move(info));
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
} else {
Fix 10404: FP knownConditionTrueFalse after subtraction (#3390)
2021-08-09 07:45:41 +02:00
assert(false && "Writable value cannot be evaluated");
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
// TODO: Don't set to zero
value->intvalue = 0;
}
} else if (tok->astParent()->tokType() == Token::eIncDecOp) {
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
bool inc = tok->astParent()->str() == "++";
valueflow.cpp: avoid some copies related to `ErrorPath` (#4160)
2022-07-20 10:57:49 +02:00
const std::string opName(inc ? "incremented" : "decremented");
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
if (d == Direction::Reverse)
inc = !inc;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
value->intvalue += (inc ? 1 : -1);
valueflow.cpp: avoid some copies related to `ErrorPath` (#4160)
2022-07-20 10:57:49 +02:00
value->errorPath.emplace_back(tok, tok->str() + " is " + opName + "', new value is " + value->infoString());
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
}
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
virtual bool useSymbolicValues() const {
return true;
}
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
const Token* findMatch(const Token* tok) const
{
return findAstNode(tok, [&](const Token* child) {
return match(child);
});
}
bool isSameSymbolicValue(const Token* tok, ValueFlow::Value* value = nullptr) const
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
{
if (!useSymbolicValues())
return false;
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
if (Token::Match(tok, "%assign%"))
return false;
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
const ValueFlow::Value* currValue = getValue(tok);
if (!currValue)
return false;
Fix 10800: Hang / memory exhaustion on numerical code (#3822) * Fix 10800: Hang / memory exhaustion on numerical code * Format * Add another test * Format
2022-02-11 06:52:28 +01:00
// If the same symbolic value is already there then skip
if (currValue->isSymbolicValue() &&
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::any_of(tok->values().cbegin(), tok->values().cend(), [&](const ValueFlow::Value& v) {
Fix 10800: Hang / memory exhaustion on numerical code (#3822) * Fix 10800: Hang / memory exhaustion on numerical code * Format * Add another test * Format
2022-02-11 06:52:28 +01:00
return v.isSymbolicValue() && currValue->equalValue(v);
}))
return false;
Fix 10956: ValueFlow: Incorrect value when assigned to two variables (#4019) * Fix 10956: ValueFlow: Incorrect value when assigned to two variables * Format
2022-04-14 07:35:07 +02:00
const bool isPoint = currValue->bound == ValueFlow::Value::Bound::Point && currValue->isIntValue();
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
const bool exact = !currValue->isIntValue() || currValue->isImpossible();
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
for (const ValueFlow::Value& v : tok->values()) {
if (!v.isSymbolicValue())
continue;
Fix 10800: Hang / memory exhaustion on numerical code (#3822) * Fix 10800: Hang / memory exhaustion on numerical code * Format * Add another test * Format
2022-02-11 06:52:28 +01:00
if (currValue->equalValue(v))
continue;
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
const bool toImpossible = v.isImpossible() && currValue->isKnown();
if (!v.isKnown() && !toImpossible)
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
continue;
Fix 10956: ValueFlow: Incorrect value when assigned to two variables (#4019) * Fix 10956: ValueFlow: Incorrect value when assigned to two variables * Format
2022-04-14 07:35:07 +02:00
if (exact && v.intvalue != 0 && !isPoint)
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
continue;
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
std::vector<MathLib::bigint> r;
ValueFlow::Value::Bound bound = currValue->bound;
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
if (match(v.tokvalue)) {
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
r = {currValue->intvalue};
} else if (!exact && findMatch(v.tokvalue)) {
r = evaluate(Evaluate::Integral, v.tokvalue, tok);
if (bound == ValueFlow::Value::Bound::Point)
bound = v.bound;
}
if (!r.empty()) {
if (value) {
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
value->errorPath.insert(value->errorPath.end(), v.errorPath.cbegin(), v.errorPath.cend());
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
value->intvalue = r.front() + v.intvalue;
if (toImpossible)
value->setImpossible();
value->bound = bound;
}
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
return true;
}
}
return false;
}
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
Action analyzeMatch(const Token* tok, Direction d) const {
const Token* parent = tok->astParent();
Fix 10605: FP containerOutOfBounds with empty() check (#3572)
2021-11-25 22:34:00 +01:00
if (d == Direction::Reverse && isGlobal() && !dependsOnThis() && Token::Match(parent, ". %name% (")) {
Action a = isGlobalModified(parent->next());
if (a != Action::None)
return a;
}
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
if ((astIsPointer(tok) || astIsSmartPointer(tok)) &&
(Token::Match(parent, "*|[") || (parent && parent->originalName() == "->")) && getIndirect(tok) <= 0)
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
return Action::Read;
Action w = isWritable(tok, d);
if (w != Action::None)
return w;
// Check for modifications by function calls
return isModified(tok);
}
astyle formatting [ci skip]
2021-02-10 11:42:00 +01:00
Action analyzeToken(const Token* ref, const Token* tok, Direction d, bool inconclusiveRef) const {
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
if (!ref)
return Action::None;
// If its an inconclusiveRef then ref != tok
assert(!inconclusiveRef || ref != tok);
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
bool inconclusive = false;
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
if (match(ref)) {
if (inconclusiveRef) {
Action a = isModified(tok);
if (a.isModified() || a.isInconclusive())
return Action::Inconclusive;
} else {
return analyzeMatch(tok, d) | Action::Match;
}
valueFlowUninit: Handle arrays and pod types (#3917) * valueFlowUninit: Handle arrays and pod types * Format * Catch another array case
2022-03-24 06:35:44 +01:00
} else if (ref->isUnaryOp("*") && !match(ref->astOperand1())) {
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
const Token* lifeTok = nullptr;
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
for (const ValueFlow::Value& v:ref->astOperand1()->values()) {
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
if (!v.isLocalLifetimeValue())
continue;
if (lifeTok)
return Action::None;
lifeTok = v.tokvalue;
}
Add special function to match lifetimes (#5320) This also removes the termination checking in `valueFlowUninit` as this causes a lot of FNs.
2023-08-14 10:27:00 +02:00
if (!lifeTok)
return Action::None;
Action la = analyzeLifetime(lifeTok);
if (la.matches()) {
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
Action a = Action::Read;
if (isModified(tok).isModified())
a = Action::Invalid;
if (Token::Match(tok->astParent(), "%assign%") && astIsLHS(tok))
Fix issue 9030: ValueFlow: Possible value after conditional assignment in for loop (#3059)
2021-01-18 10:12:07 +01:00
a |= Action::Invalid;
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
if (inconclusiveRef && a.isModified())
return Action::Inconclusive;
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
return a;
}
Add special function to match lifetimes (#5320) This also removes the termination checking in `valueFlowUninit` as this causes a lot of FNs.
2023-08-14 10:27:00 +02:00
if (la.isRead()) {
return isAliasModified(tok);
}
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
return Action::None;
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
} else if (isAlias(ref, inconclusive)) {
inconclusive |= inconclusiveRef;
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
Action a = isAliasModified(tok);
if (inconclusive && a.isModified())
return Action::Inconclusive;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
return a;
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
}
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
if (isSameSymbolicValue(ref))
return Action::Read | Action::SymbolicMatch;
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
return Action::None;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
Action analyze(const Token* tok, Direction d) const override {
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
if (invalid())
return Action::Invalid;
// Follow references
return `SmallVector` from `followAllReferences()` (#3925)
2022-09-29 21:41:32 +02:00
auto refs = followAllReferences(tok);
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
const bool inconclusiveRefs = refs.size() != 1;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::none_of(refs.cbegin(), refs.cend(), [&](const ReferenceToken& ref) {
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
return tok == ref.token;
}))
fixed some `modernize-use-emplace` false negatives and some `bugprone-assignment-in-if-condition` warnings (#4311)
2022-07-28 22:53:59 +02:00
refs.emplace_back(ReferenceToken{tok, {}});
astyle formatting [ci skip]
2021-02-10 11:42:00 +01:00
for (const ReferenceToken& ref:refs) {
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
Action a = analyzeToken(ref.token, tok, d, inconclusiveRefs && ref.token != tok);
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
if (internalMatch(ref.token))
a |= Action::Internal;
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
if (a != Action::None)
return a;
}
Dont stop analysis when an unrelated class variable is changed (#3518)
2021-10-23 14:47:10 +02:00
if (dependsOnThis() && exprDependsOnThis(tok, !isVariable()))
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
return isThisModified(tok);
// bailout: global non-const variables
Fix 10210: FN: nullPointerRedundantCheck regression in member function (#3512)
2021-10-15 10:57:40 +02:00
if (isGlobal() && !dependsOnThis() && Token::Match(tok, "%name% (") &&
!Token::simpleMatch(tok->linkAt(1), ") {")) {
Fix 10605: FP containerOutOfBounds with empty() check (#3572)
2021-11-25 22:34:00 +01:00
return isGlobalModified(tok);
Fixed #5947 (valueFlowForward: forward conditions not handled properly)
2014-06-25 16:00:56 +02:00
}
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
return Action::None;
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
Fix 10851: False positive: known variable value below for loop (#3891) * Fix 10851: False positive: known variable value below for loop * Format * Add test for 10863 * Format
2022-03-12 06:15:35 +01:00
template<class F>
std::vector<MathLib::bigint> evaluateInt(const Token* tok, F getProgramMemory) const
{
if (tok->hasKnownIntValue())
return {static_cast<int>(tok->values().front().intvalue)};
std::vector<MathLib::bigint> result;
ProgramMemory pm = getProgramMemory();
if (Token::Match(tok, "&&|%oror%")) {
if (conditionIsTrue(tok, pm, getSettings()))
result.push_back(1);
if (conditionIsFalse(tok, pm, getSettings()))
result.push_back(0);
} else {
MathLib::bigint out = 0;
bool error = false;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
execute(tok, pm, &out, &error, getSettings());
Fix 10851: False positive: known variable value below for loop (#3891) * Fix 10851: False positive: known variable value below for loop * Format * Add test for 10863 * Format
2022-03-12 06:15:35 +01:00
if (!error)
result.push_back(out);
}
return result;
}
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
std::vector<MathLib::bigint> evaluateInt(const Token* tok) const
{
return evaluateInt(tok, [&] {
return ProgramMemory{getProgramState()};
});
}
Fix 10851: False positive: known variable value below for loop (#3891) * Fix 10851: False positive: known variable value below for loop * Format * Add test for 10863 * Format
2022-03-12 06:15:35 +01:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
std::vector<MathLib::bigint> evaluate(Evaluate e, const Token* tok, const Token* ctx = nullptr) const override
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
{
Evaluate container sizes in forward analysis (#3338)
2021-07-16 18:49:07 +02:00
if (e == Evaluate::Integral) {
Fix 10851: False positive: known variable value below for loop (#3891) * Fix 10851: False positive: known variable value below for loop * Format * Add test for 10863 * Format
2022-03-12 06:15:35 +01:00
return evaluateInt(tok, [&] {
return pms.get(tok, ctx, getProgramState());
});
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
if (e == Evaluate::ContainerEmpty) {
Evaluate container sizes in forward analysis (#3338)
2021-07-16 18:49:07 +02:00
const ValueFlow::Value* value = ValueFlow::findValue(tok->values(), nullptr, [](const ValueFlow::Value& v) {
return v.isKnown() && v.isContainerSizeValue();
});
if (value)
return {value->intvalue == 0};
ProgramMemory pm = pms.get(tok, ctx, getProgramState());
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
MathLib::bigint out = 0;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
if (pm.getContainerEmptyValue(tok->exprId(), out))
Evaluate container sizes in forward analysis (#3338)
2021-07-16 18:49:07 +02:00
return {static_cast<int>(out)};
return {};
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
}
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
return {};
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
}
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
void assume(const Token* tok, bool state, unsigned int flags) override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
// Update program state
pms.removeModifiedVars(tok);
pms.addState(tok, getProgramState());
Evaluate container sizes in forward analysis (#3338)
2021-07-16 18:49:07 +02:00
pms.assume(tok, state, flags & Assume::ContainerEmpty);
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
Fix 10294: ValueFlow: Wrong <Uninit> value below loop (#3291)
2021-06-09 09:20:43 +02:00
bool isCondBlock = false;
const Token* parent = tok->astParent();
if (parent) {
isCondBlock = Token::Match(parent->previous(), "if|while (");
}
if (isCondBlock) {
const Token* startBlock = parent->link()->next();
Fix 10348: FP knownConditionTrueFalse with condition variable in do ... while loop (#3422)
2021-08-27 05:46:57 +02:00
if (Token::simpleMatch(startBlock, ";") && Token::simpleMatch(parent->tokAt(-2), "} while ("))
startBlock = parent->linkAt(-2);
Fix 10294: ValueFlow: Wrong <Uninit> value below loop (#3291)
2021-06-09 09:20:43 +02:00
const Token* endBlock = startBlock->link();
Fix 11412: False positive: uninitvar (#4624) * Dont remove modified variables from dead code * Add test for 11412 * Format
2022-12-09 07:15:47 +01:00
if (state) {
pms.removeModifiedVars(endBlock);
Fix 10294: ValueFlow: Wrong <Uninit> value below loop (#3291)
2021-06-09 09:20:43 +02:00
pms.addState(endBlock->previous(), getProgramState());
Fix 11412: False positive: uninitvar (#4624) * Dont remove modified variables from dead code * Add test for 11412 * Format
2022-12-09 07:15:47 +01:00
} else {
if (Token::simpleMatch(endBlock, "} else {"))
pms.addState(endBlock->linkAt(2)->previous(), getProgramState());
}
Fix 10294: ValueFlow: Wrong <Uninit> value below loop (#3291)
2021-06-09 09:20:43 +02:00
}
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
Fix 10294: ValueFlow: Wrong <Uninit> value below loop (#3291)
2021-06-09 09:20:43 +02:00
if (!(flags & Assume::Quiet)) {
Evaluate container sizes in forward analysis (#3338)
2021-07-16 18:49:07 +02:00
if (flags & Assume::ContainerEmpty) {
std::string s = state ? "empty" : "not empty";
addErrorPath(tok, "Assuming container is " + s);
} else {
changed `bool_to_string()` to return `const char*` instead and use it in more cases (#5385)
2023-09-11 11:34:22 +02:00
std::string s = bool_to_string(state);
Evaluate container sizes in forward analysis (#3338)
2021-07-16 18:49:07 +02:00
addErrorPath(tok, "Assuming condition is " + s);
}
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
}
Fix 10294: ValueFlow: Wrong <Uninit> value below loop (#3291)
2021-06-09 09:20:43 +02:00
if (!(flags & Assume::Absolute))
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
makeConditional();
}
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
virtual void internalUpdate(Token* /*tok*/, const ValueFlow::Value& /*v*/, Direction /*d*/)
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
{
assert(false && "Internal update unimplemented.");
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
void update(Token* tok, Action a, Direction d) override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
ValueFlow::Value* value = getValue(tok);
if (!value)
return;
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
ValueFlow::Value localValue;
if (a.isSymbolicMatch()) {
// Make a copy of the value to modify it
localValue = *value;
value = &localValue;
Evaluate symbolic values (#3495)
2021-10-11 19:10:37 +02:00
isSameSymbolicValue(tok, &localValue);
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
}
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
if (a.isInternal())
internalUpdate(tok, *value, d);
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
// Read first when moving forward
if (d == Direction::Forward && a.isRead())
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
setTokenValue(tok, *value, getSettings());
if (a.isInconclusive())
lowerToInconclusive();
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
if (a.isWrite() && tok->astParent()) {
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
writeValue(value, tok, d);
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
}
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
// Read last when moving in reverse
if (d == Direction::Reverse && a.isRead())
setTokenValue(tok, *value, getSettings());
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
}
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
ValuePtr<Analyzer> reanalyze(Token* /*tok*/, const std::string& /*msg*/) const override {
astyle formatting
2020-11-11 09:15:36 +01:00
return {};
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
};
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
struct SingleValueFlowAnalyzer : ValueFlowAnalyzer {
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
std::unordered_map<nonneg int, const Variable*> varids;
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
std::unordered_map<nonneg int, const Variable*> aliases;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
ValueFlow::Value value;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
SingleValueFlowAnalyzer(ValueFlow::Value v, const TokenList& t, const Settings* s) : ValueFlowAnalyzer(t, s), value(std::move(v)) {}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
const std::unordered_map<nonneg int, const Variable*>& getVars() const {
return varids;
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
const std::unordered_map<nonneg int, const Variable*>& getAliasedVars() const {
return aliases;
}
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
const ValueFlow::Value* getValue(const Token* /*tok*/) const override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
return &value;
}
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
ValueFlow::Value* getValue(const Token* /*tok*/) override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
return &value;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
void makeConditional() override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
value.conditional = true;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool useSymbolicValues() const override
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
{
if (value.isUninitValue())
return false;
Fix 10589: False positive: danglingLifetime for moved unique ptr (#3547)
2021-11-06 19:08:19 +01:00
if (value.isLifetimeValue())
return false;
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
return true;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
void addErrorPath(const Token* tok, const std::string& s) override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
value.errorPath.emplace_back(tok, s);
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool isAlias(const Token* tok, bool& inconclusive) const override {
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
if (value.isLifetimeValue())
return false;
astyle formatting [ci skip]
2020-07-23 10:09:06 +02:00
for (const auto& m: {
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
std::ref(getVars()), std::ref(getAliasedVars())
astyle formatting [ci skip]
2020-07-23 10:09:06 +02:00
}) {
Use refs
2020-07-21 20:18:45 +02:00
for (const auto& p:m.get()) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
nonneg int const varid = p.first;
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
const Variable* var = p.second;
if (tok->varId() == varid)
return true;
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
if (isAliasOf(var, tok, varid, MakeSingleRange(value), &inconclusive))
Track reading aliases during valueflow forward
2020-07-20 06:25:35 +02:00
return true;
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
}
return false;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool isGlobal() const override {
enabled `readability-use-anyofallof` clang-tidy warning / added more checks to evaluate (#5339)
2023-08-31 09:04:51 +02:00
const auto& vars = getVars();
return std::any_of(vars.cbegin(), vars.cend(), [] (const std::pair<nonneg int, const Variable*>& p) {
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
const Variable* var = p.second;
enabled `readability-use-anyofallof` clang-tidy warning / added more checks to evaluate (#5339)
2023-08-31 09:04:51 +02:00
return !var->isLocal() && !var->isArgument() && !var->isConst();
});
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool lowerToPossible() override {
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
if (value.isImpossible())
ValueFlow: extend aftercondition analysis below conditional code
2014-06-18 05:51:23 +02:00
return false;
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
value.changeKnownToPossible();
return true;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool lowerToInconclusive() override {
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
if (value.isImpossible())
ValueFlow: extend aftercondition analysis below conditional code
2014-06-18 05:51:23 +02:00
return false;
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
value.setInconclusive();
return true;
}
Fixed #5916 (ValueFlow: Add a valueFlowAfterCondition() function)
2014-06-15 16:47:01 +02:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool isConditional() const override {
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
if (value.conditional)
return true;
if (value.condition)
Fix issue 9890: ValueFlow: known value not found (variable is changed in path that returns) (#3010)
2021-01-05 16:49:08 +01:00
return !value.isKnown() && !value.isImpossible();
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
return false;
}
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool stopOnCondition(const Token* condTok) const override
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
{
if (value.isNonValue())
return false;
if (value.isImpossible())
return false;
if (isConditional() && !value.isKnown() && !value.isImpossible())
return true;
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
if (value.isSymbolicValue())
return false;
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
ConditionState cs = analyzeCondition(condTok);
return cs.isUnknownDependent();
}
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
bool updateScope(const Token* endBlock, bool /*modified*/) const override {
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
const Scope* scope = endBlock->scope();
if (!scope)
return false;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
if (scope->type == Scope::eLambda)
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
return value.isLifetimeValue();
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
if (scope->type == Scope::eIf || scope->type == Scope::eElse || scope->type == Scope::eWhile ||
scope->type == Scope::eFor) {
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
if (value.isKnown() || value.isImpossible())
return true;
if (value.isLifetimeValue())
return true;
if (isConditional())
Fix issue 9302: FP uninitvar - struct accessed via pointer (#2121)
2019-08-29 08:38:50 +02:00
return false;
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
const Token* condTok = getCondTokFromEnd(endBlock);
Fixed Cppcheck warnings
2020-05-19 21:55:28 +02:00
std::set<nonneg int> varids2;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::transform(getVars().cbegin(), getVars().cend(), std::inserter(varids2, varids2.begin()), SelectMapKeys{});
Fixed Cppcheck warnings
2020-05-19 21:55:28 +02:00
return bifurcate(condTok, varids2, getSettings());
Fixed #5916 (ValueFlow: Add a valueFlowAfterCondition() function)
2014-06-15 16:47:01 +02:00
}
Fixed #6876 (valueFlowForward: lambda function)
2015-07-26 19:28:42 +02:00
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
return false;
}
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ValuePtr<Analyzer> reanalyze(Token* tok, const std::string& msg) const override {
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
ValueFlow::Value newValue = value;
newValue.errorPath.emplace_back(tok, msg);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return makeAnalyzer(tok, std::move(newValue), tokenlist, settings);
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
}
Add generic valueflow forward analysis (#2511)
2020-02-13 16:27:06 +01:00
};
Fix issue 9190: FP uninitvar for struct member (#2112) * Fix issue 9190: FP uninitvar for struct member * Add more test cases * Fix false negative
2019-08-24 11:27:47 +02:00
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
struct ExpressionAnalyzer : SingleValueFlowAnalyzer {
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
const Token* expr;
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
bool local = true;
bool unknown{};
bool dependOnThis{};
bool uniqueExprId{};
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
ExpressionAnalyzer(const Token* e, ValueFlow::Value val, const TokenList& t, const Settings* s)
Revert "Revert "Skip forwarding values for unique expressions (#5103)"" (#5124)
2023-06-07 11:11:48 +02:00
: SingleValueFlowAnalyzer(std::move(val), t, s),
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
expr(e)
Revert "Revert "Skip forwarding values for unique expressions (#5103)"" (#5124)
2023-06-07 11:11:48 +02:00
{
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
Refactor: Assert an expression has an id and fix assertion failures (#3377) * Fix 10390: FP: knownConditionTrueFalse * Assert expression has an ID * Fix assertion errors * Format
2021-08-03 06:31:52 +02:00
assert(e && e->exprId() != 0 && "Not a valid expression");
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
dependOnThis = exprDependsOnThis(expr);
setupExprVarIds(expr);
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
if (value.isSymbolicValue()) {
dependOnThis |= exprDependsOnThis(value.tokvalue);
setupExprVarIds(value.tokvalue);
Fix 11100: FP knownConditionTrueFalse with getter/setter member functions (#4198) * Fix 11100: FP knownConditionTrueFalse with getter/setter member functions * Format
2022-06-11 11:00:40 +02:00
}
Revert "Revert "Skip forwarding values for unique expressions (#5103)"" (#5124)
2023-06-07 11:11:48 +02:00
uniqueExprId =
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
expr->isUniqueExprId() && (Token::Match(expr, "%cop%") || !isVariableChanged(expr, 0, s, t.isCPP()));
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
}
Run dmake and astyle
2020-02-16 19:58:09 +01:00
static bool nonLocal(const Variable* var, bool deref) {
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
return !var || (!var->isLocal() && !var->isArgument()) || (deref && var->isArgument() && var->isPointer()) ||
var->isStatic() || var->isReference() || var->isExtern();
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
}
Running astyle [ci skip]
2021-07-18 10:01:22 +02:00
void setupExprVarIds(const Token* start, int depth = 0) {
fixed some "Variable can be made constexpr" Rider warnings (#5615)
2023-11-03 09:55:44 +01:00
constexpr int maxDepth = 4;
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
if (depth > maxDepth)
return;
visitAstNodes(start, [&](const Token* tok) {
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
const bool top = depth == 0 && tok == start;
Fix 10429: Regression: invalidIterator (#3603)
2021-12-05 15:46:52 +01:00
const bool ispointer = astIsPointer(tok) || astIsSmartPointer(tok) || astIsIterator(tok);
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
if (!top || !ispointer || value.indirect != 0) {
for (const ValueFlow::Value& v : tok->values()) {
if (!(v.isLocalLifetimeValue() || (ispointer && v.isSymbolicValue() && v.isKnown())))
continue;
if (!v.tokvalue)
continue;
if (v.tokvalue == tok)
continue;
setupExprVarIds(v.tokvalue, depth + 1);
}
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
}
Fix 11006: FP uninitvar with unknown constant (#4056)
2022-04-28 10:48:37 +02:00
if (depth == 0 && tok->isIncompleteVar()) {
// TODO: Treat incomplete var as global, but we need to update
// the alias variables to just expr ids instead of requiring
// Variable
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
unknown = true;
return ChildrenToVisit::none;
}
if (tok->varId() > 0) {
varids[tok->varId()] = tok->variable();
if (!Token::simpleMatch(tok->previous(), ".")) {
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
const Variable* var = tok->variable();
if (var && var->isReference() && var->isLocal() && Token::Match(var->nameToken(), "%var% [=(]") &&
!isGlobalData(var->nameToken()->next()->astOperand2(), isCPP()))
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
return ChildrenToVisit::none;
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
const bool deref = tok->astParent() &&
(tok->astParent()->isUnaryOp("*") ||
(tok->astParent()->str() == "[" && tok == tok->astParent()->astOperand1()));
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
local &= !nonLocal(tok->variable(), deref);
}
}
return ChildrenToVisit::op1_and_op2;
});
}
Revert "Revert "Skip forwarding values for unique expressions (#5103)"" (#5124)
2023-06-07 11:11:48 +02:00
virtual bool skipUniqueExprIds() const {
return true;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool invalid() const override {
Revert "Revert "Skip forwarding values for unique expressions (#5103)"" (#5124)
2023-06-07 11:11:48 +02:00
if (skipUniqueExprIds() && uniqueExprId)
return true;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
return unknown;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ProgramState getProgramState() const override {
Extend ProgramMemory to handle expressions (#3069)
2021-01-21 19:49:37 +01:00
ProgramState ps;
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
ps[expr] = value;
Extend ProgramMemory to handle expressions (#3069)
2021-01-21 19:49:37 +01:00
return ps;
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool match(const Token* tok) const override {
Running astyle [ci skip]
2021-07-18 10:01:22 +02:00
return tok->exprId() == expr->exprId();
}
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool dependsOnThis() const override {
Running astyle [ci skip]
2021-07-18 10:01:22 +02:00
return dependOnThis;
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool isGlobal() const override {
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
return !local;
}
Dont stop analysis when an unrelated class variable is changed (#3518)
2021-10-23 14:47:10 +02:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool isVariable() const override {
Dont stop analysis when an unrelated class variable is changed (#3518)
2021-10-23 14:47:10 +02:00
return expr->varId() > 0;
}
Fix #11862 FN constParameterPointer with increment (#5291)
2023-08-08 10:38:03 +02:00
Action isAliasModified(const Token* tok, int indirect) const override {
if (value.isSymbolicValue() && tok->exprId() == value.tokvalue->exprId())
indirect = 0;
return SingleValueFlowAnalyzer::isAliasModified(tok, indirect);
}
Use valueFlowGeneric for valueFlowForwardExpression (#2537)
2020-02-16 16:02:22 +01:00
};
Partial fix 11154: FN: knownConditionTrueFalse (#4453) * Partial fix 11154: FN: knownConditionTrueFalse * Formay * Add more tests * FOrmat * Fix FP * Add test * Check for side effects * Format * Update tests * Format
2022-09-08 22:08:38 +02:00
struct SameExpressionAnalyzer : ExpressionAnalyzer {
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
SameExpressionAnalyzer(const Token* e, ValueFlow::Value val, const TokenList& t, const Settings* s)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
: ExpressionAnalyzer(e, std::move(val), t, s)
Partial fix 11154: FN: knownConditionTrueFalse (#4453) * Partial fix 11154: FN: knownConditionTrueFalse * Formay * Add more tests * FOrmat * Fix FP * Add test * Check for side effects * Format * Update tests * Format
2022-09-08 22:08:38 +02:00
{}
Revert "Revert "Skip forwarding values for unique expressions (#5103)"" (#5124)
2023-06-07 11:11:48 +02:00
bool skipUniqueExprIds() const override {
return false;
}
Partial fix 11154: FN: knownConditionTrueFalse (#4453) * Partial fix 11154: FN: knownConditionTrueFalse * Formay * Add more tests * FOrmat * Fix FP * Add test * Check for side effects * Format * Update tests * Format
2022-09-08 22:08:38 +02:00
bool match(const Token* tok) const override
{
return isSameExpression(isCPP(), true, expr, tok, getSettings()->library, true, true);
}
};
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
struct OppositeExpressionAnalyzer : ExpressionAnalyzer {
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
bool isNot{};
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
OppositeExpressionAnalyzer(bool pIsNot, const Token* e, ValueFlow::Value val, const TokenList& t, const Settings* s)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
: ExpressionAnalyzer(e, std::move(val), t, s), isNot(pIsNot)
astyle formatting [ci skip]
2021-01-12 21:28:56 +01:00
{}
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
Revert "Revert "Skip forwarding values for unique expressions (#5103)"" (#5124)
2023-06-07 11:11:48 +02:00
bool skipUniqueExprIds() const override {
return false;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool match(const Token* tok) const override {
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
return isOppositeCond(isNot, isCPP(), expr, tok, getSettings()->library, true, true);
}
};
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
struct SubExpressionAnalyzer : ExpressionAnalyzer {
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
using PartialReadContainer = std::vector<std::pair<Token *, ValueFlow::Value>>;
// A shared_ptr is used so partial reads can be captured even after forking
std::shared_ptr<PartialReadContainer> partialReads;
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
SubExpressionAnalyzer(const Token* e, ValueFlow::Value val, const TokenList& t, const Settings* s)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
: ExpressionAnalyzer(e, std::move(val), t, s), partialReads(std::make_shared<PartialReadContainer>())
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
{}
virtual bool submatch(const Token* tok, bool exact = true) const = 0;
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool isAlias(const Token* tok, bool& inconclusive) const override
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
{
if (tok->exprId() == expr->exprId() && tok->astParent() && submatch(tok->astParent(), false))
return false;
return ExpressionAnalyzer::isAlias(tok, inconclusive);
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool match(const Token* tok) const override
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
{
return tok->astOperand1() && tok->astOperand1()->exprId() == expr->exprId() && submatch(tok);
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool internalMatch(const Token* tok) const override
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
{
return tok->exprId() == expr->exprId() && !(astIsLHS(tok) && submatch(tok->astParent(), false));
}
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
void internalUpdate(Token* tok, const ValueFlow::Value& v, Direction /*d*/) override
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
{
fixed some `modernize-use-emplace` false negatives and some `bugprone-assignment-in-if-condition` warnings (#4311)
2022-07-28 22:53:59 +02:00
partialReads->emplace_back(tok, v);
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
}
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
fixed some typos (#5562)
2023-10-17 18:32:07 +02:00
// No reanalysis for subexpression
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
ValuePtr<Analyzer> reanalyze(Token* /*tok*/, const std::string& /*msg*/) const override {
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
return {};
}
};
struct MemberExpressionAnalyzer : SubExpressionAnalyzer {
std::string varname;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
MemberExpressionAnalyzer(std::string varname, const Token* e, ValueFlow::Value val, const TokenList& t, const Settings* s)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
: SubExpressionAnalyzer(e, std::move(val), t, s), varname(std::move(varname))
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
{}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool submatch(const Token* tok, bool exact) const override
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
{
if (!Token::Match(tok, ". %var%"))
return false;
if (!exact)
return true;
return tok->next()->str() == varname;
}
};
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
enum class LifetimeCapture { Undefined, ByValue, ByReference };
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
static std::string lifetimeType(const Token *tok, const ValueFlow::Value *val)
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
{
std::string result;
if (!val)
return "object";
switch (val->lifetimeKind) {
Refactoring: Use enum class
2019-07-16 10:51:07 +02:00
case ValueFlow::Value::LifetimeKind::Lambda:
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
result = "lambda";
break;
Refactoring: Use enum class
2019-07-16 10:51:07 +02:00
case ValueFlow::Value::LifetimeKind::Iterator:
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
result = "iterator";
break;
Refactoring: Use enum class
2019-07-16 10:51:07 +02:00
case ValueFlow::Value::LifetimeKind::Object:
Fix issue 9780: FP: invalidContainer calling push_back after getting the address of the vector
2020-08-07 04:08:30 +02:00
case ValueFlow::Value::LifetimeKind::SubObject:
Refactoring: Use enum class
2019-07-16 10:51:07 +02:00
case ValueFlow::Value::LifetimeKind::Address:
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
if (astIsPointer(tok))
result = "pointer";
Add special function to match lifetimes (#5320) This also removes the termination checking in `valueFlowUninit` as this causes a lot of FNs.
2023-08-14 10:27:00 +02:00
else if (Token::simpleMatch(tok, "=") && astIsPointer(tok->astOperand2()))
result = "pointer";
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
else
result = "object";
break;
}
return result;
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
std::string ValueFlow::lifetimeMessage(const Token *tok, const ValueFlow::Value *val, ErrorPath &errorPath)
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
{
const Token *tokvalue = val ? val->tokvalue : nullptr;
const Variable *tokvar = tokvalue ? tokvalue->variable() : nullptr;
const Token *vartok = tokvar ? tokvar->nameToken() : nullptr;
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
const bool classVar = tokvar ? (!tokvar->isLocal() && !tokvar->isArgument() && !tokvar->isGlobal()) : false;
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
std::string type = lifetimeType(tok, val);
std::string msg = type;
if (vartok) {
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
if (!classVar)
errorPath.emplace_back(vartok, "Variable created here.");
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
const Variable * var = vartok->variable();
if (var) {
Fix #10888 FN variableScope with enum and struct (#3920) * Fix #10888 FN variableScope with enum and struct * Scope reduction * Scope reduction
2022-03-21 16:05:38 +01:00
std::string submessage;
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
switch (val->lifetimeKind) {
Fix issue 9780: FP: invalidContainer calling push_back after getting the address of the vector
2020-08-07 04:08:30 +02:00
case ValueFlow::Value::LifetimeKind::SubObject:
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
case ValueFlow::Value::LifetimeKind::Object:
case ValueFlow::Value::LifetimeKind::Address:
if (type == "pointer")
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
submessage = " to local variable";
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
else
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
submessage = " that points to local variable";
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
break;
case ValueFlow::Value::LifetimeKind::Lambda:
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
submessage = " that captures local variable";
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
break;
case ValueFlow::Value::LifetimeKind::Iterator:
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
submessage = " to local container";
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
break;
}
Fix 10033: false negative: danglingTemporaryLifetime with usage of reference from nested object not detected (#3542)
2021-11-01 19:23:15 +01:00
if (classVar)
submessage.replace(submessage.find("local"), 5, "member");
msg += submessage + " '" + var->name() + "'";
Switch to use lifetime analysis for iterators and pointers to invalid containers This will diagnose more issues such as: ```cpp void f(std::vector<int> &v) { auto v0 = v.begin(); v.push_back(123); std::cout << *v0 << std::endl; } ```
2019-07-18 10:56:44 +02:00
}
}
return msg;
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
std::vector<ValueFlow::Value> ValueFlow::getLifetimeObjValues(const Token* tok, bool inconclusive, MathLib::bigint path)
Fix issue 6821: New check: access heap/stack data using address of variable This fixes errors with: ```cpp int f() { int i; return (&i)[1]; } ``` It uses the lifetime analysis to detect the issues.
2019-05-31 11:16:04 +02:00
{
Fix issue 8650: ValueFlow: Track if pointer is created by '&' operator (#3011)
2021-01-05 16:56:38 +01:00
std::vector<ValueFlow::Value> result;
Fix 10728: Crash in CheckStl::checkDereferenceInvalidIterator2 (#3721) * Fix 10728: Crash in CheckStl::checkDereferenceInvalidIterator2 * Format
2022-01-18 14:48:02 +01:00
auto pred = [&](const ValueFlow::Value& v) {
if (!v.isLocalLifetimeValue() && !(path != 0 && v.isSubFunctionLifetimeValue()))
Fix issue 6821: New check: access heap/stack data using address of variable This fixes errors with: ```cpp int f() { int i; return (&i)[1]; } ``` It uses the lifetime analysis to detect the issues.
2019-05-31 11:16:04 +02:00
return false;
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
if (!inconclusive && v.isInconclusive())
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return false;
Fix 10590: container access out of bounds not found (#3560) * Refactor container bounds check * Use symbolic values * Add test case * Format
2021-11-13 07:45:29 +01:00
if (!v.tokvalue)
Fix issue 6821: New check: access heap/stack data using address of variable This fixes errors with: ```cpp int f() { int i; return (&i)[1]; } ``` It uses the lifetime analysis to detect the issues.
2019-05-31 11:16:04 +02:00
return false;
Fix 10728: Crash in CheckStl::checkDereferenceInvalidIterator2 (#3721) * Fix 10728: Crash in CheckStl::checkDereferenceInvalidIterator2 * Format
2022-01-18 14:48:02 +01:00
if (path >= 0 && v.path != 0 && v.path != path)
return false;
Fix issue 6821: New check: access heap/stack data using address of variable This fixes errors with: ```cpp int f() { int i; return (&i)[1]; } ``` It uses the lifetime analysis to detect the issues.
2019-05-31 11:16:04 +02:00
return true;
};
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(tok->values().cbegin(), tok->values().cend(), std::back_inserter(result), pred);
Fix issue 8650: ValueFlow: Track if pointer is created by '&' operator (#3011)
2021-01-05 16:56:38 +01:00
return result;
}
Fix 11087: false negative: usage of reference to member of temporary object not detected (#4217) * Fix 11087: false negative: usage of reference to member of temporary object not detected * Format * Add another test case * Fix FP with pointer * Format
2022-06-16 19:26:36 +02:00
static bool hasUniqueOwnership(const Token* tok)
{
Refactor to use derefShared (#4220)
2022-06-19 08:16:27 +02:00
if (!tok)
return false;
const Variable* var = tok->variable();
if (var && var->isArray() && !var->isArgument())
return true;
Fix 11087: false negative: usage of reference to member of temporary object not detected (#4217) * Fix 11087: false negative: usage of reference to member of temporary object not detected * Format * Add another test case * Fix FP with pointer * Format
2022-06-16 19:26:36 +02:00
if (astIsPointer(tok))
return false;
if (astIsUniqueSmartPointer(tok))
return true;
if (astIsContainerOwned(tok))
return true;
return false;
}
// Check if dereferencing an object that doesn't have unique ownership
static bool derefShared(const Token* tok)
{
if (!tok)
return false;
Refactor to use derefShared (#4220)
2022-06-19 08:16:27 +02:00
if (!tok->isUnaryOp("*") && tok->str() != "[" && tok->str() != ".")
Fix 11087: false negative: usage of reference to member of temporary object not detected (#4217) * Fix 11087: false negative: usage of reference to member of temporary object not detected * Format * Add another test case * Fix FP with pointer * Format
2022-06-16 19:26:36 +02:00
return false;
Refactor to use derefShared (#4220)
2022-06-19 08:16:27 +02:00
if (tok->str() == "." && tok->originalName() != "->")
Fix 11087: false negative: usage of reference to member of temporary object not detected (#4217) * Fix 11087: false negative: usage of reference to member of temporary object not detected * Format * Add another test case * Fix FP with pointer * Format
2022-06-16 19:26:36 +02:00
return false;
const Token* ptrTok = tok->astOperand1();
return !hasUniqueOwnership(ptrTok);
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
ValueFlow::Value ValueFlow::getLifetimeObjValue(const Token *tok, bool inconclusive)
Fix issue 8650: ValueFlow: Track if pointer is created by '&' operator (#3011)
2021-01-05 16:56:38 +01:00
{
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
std::vector<ValueFlow::Value> values = ValueFlow::getLifetimeObjValues(tok, inconclusive);
Fix issue 6821: New check: access heap/stack data using address of variable This fixes errors with: ```cpp int f() { int i; return (&i)[1]; } ``` It uses the lifetime analysis to detect the issues.
2019-05-31 11:16:04 +02:00
// There should only be one lifetime
Fix issue 8650: ValueFlow: Track if pointer is created by '&' operator (#3011)
2021-01-05 16:56:38 +01:00
if (values.size() != 1)
Fix issue 9550: False positive: Same iterator is used with containers 'x' that are defined in different scopes (#2463)
2019-12-31 08:09:04 +01:00
return ValueFlow::Value{};
Fix issue 8650: ValueFlow: Track if pointer is created by '&' operator (#3011)
2021-01-05 16:56:38 +01:00
return values.front();
Fix issue 6821: New check: access heap/stack data using address of variable This fixes errors with: ```cpp int f() { int i; return (&i)[1]; } ``` It uses the lifetime analysis to detect the issues.
2019-05-31 11:16:04 +02:00
}
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
template<class Predicate>
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
static std::vector<ValueFlow::LifetimeToken> getLifetimeTokens(const Token* tok,
bool escape,
ValueFlow::Value::ErrorPath errorPath,
Predicate pred,
int depth = 20)
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
{
Extend lifetime checking for references This will use the lifetime checker for dangling references. It will find these cases for indirectly assigned reference: ```cpp int &foo() { int s = 0; int& x = s; return x; } ``` This will also fix issue 510 as well: ```cpp int &f( int k ) { static int &r = k; return r; } ```
2019-01-23 07:29:16 +01:00
if (!tok)
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return std::vector<ValueFlow::LifetimeToken> {};
Fix 10784: False positive: returnDanglingLifetime using std::tie with variadic template parameters (#3805)
2022-02-08 09:03:51 +01:00
if (Token::simpleMatch(tok, "..."))
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return std::vector<ValueFlow::LifetimeToken>{};
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
const Variable *var = tok->variable();
Fix issue 10086: false positive: (style) constVariable: Variable 'x' can be declared with const (#3219)
2021-04-30 17:47:08 +02:00
if (pred(tok))
return {{tok, std::move(errorPath)}};
Avoid infinite recursion in getLifetimeVariable (#1634) * Fix direct recursion * Limit depth of getLifetimeVariable
2019-01-31 10:34:41 +01:00
if (depth < 0)
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return {{tok, std::move(errorPath)}};
Lifetime: Follow functions that return references This will now warn for cases like this: ```cpp int& f(int& a) { return a; } int& hello() { int x = 0; return f(x); } ```
2019-01-26 11:03:57 +01:00
if (var && var->declarationId() == tok->varId()) {
if (var->isReference() || var->isRValueReference()) {
avoid redundant `Token::declEndToken()` calls (#4363)
2022-08-20 20:50:14 +02:00
const Token * const varDeclEndToken = var->declEndToken();
if (!varDeclEndToken)
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return {{tok, true, std::move(errorPath)}};
Lifetime: Follow functions that return references This will now warn for cases like this: ```cpp int& f(int& a) { return a; } int& hello() { int x = 0; return f(x); } ```
2019-01-26 11:03:57 +01:00
if (var->isArgument()) {
avoid redundant `Token::declEndToken()` calls (#4363)
2022-08-20 20:50:14 +02:00
errorPath.emplace_back(varDeclEndToken, "Passed to reference.");
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return {{tok, true, std::move(errorPath)}};
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
Partial fix for #12153 FN returnReference (#5629)
2023-11-06 20:29:13 +01:00
if (Token::Match(varDeclEndToken, "=|{")) {
avoid redundant `Token::declEndToken()` calls (#4363)
2022-08-20 20:50:14 +02:00
errorPath.emplace_back(varDeclEndToken, "Assigned to reference.");
const Token *vartok = varDeclEndToken->astOperand2();
Fix issue 10214: FP: danglingTempReference doesn't account for reference lifetime extension (#3220) * Fix issue 10214: FP: danglingTempReference doesn't account for reference lifetime extension
2021-04-19 14:20:29 +02:00
const bool temporary = isTemporary(true, vartok, nullptr, true);
Fix issue 9939: False positive: Reference to temporary returned (static variable) (#2840)
2020-10-06 09:16:54 +02:00
const bool nonlocal = var->isStatic() || var->isGlobal();
Fix issue 10214: FP: danglingTempReference doesn't account for reference lifetime extension (#3220) * Fix issue 10214: FP: danglingTempReference doesn't account for reference lifetime extension
2021-04-19 14:20:29 +02:00
if (vartok == tok || (nonlocal && temporary) ||
(!escape && (var->isConst() || var->isRValueReference()) && temporary))
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return {{tok, true, std::move(errorPath)}};
Lifetime: Follow functions that return references This will now warn for cases like this: ```cpp int& f(int& a) { return a; } int& hello() { int x = 0; return f(x); } ```
2019-01-26 11:03:57 +01:00
if (vartok)
Fix issue 10086: false positive: (style) constVariable: Variable 'x' can be declared with const (#3219)
2021-04-30 17:47:08 +02:00
return getLifetimeTokens(vartok, escape, std::move(errorPath), pred, depth - 1);
Fix issue 9587: False positive: parameter can be declared with const (#2667)
2020-05-31 10:10:10 +02:00
} else if (Token::simpleMatch(var->nameToken()->astParent(), ":") &&
var->nameToken()->astParent()->astParent() &&
Token::simpleMatch(var->nameToken()->astParent()->astParent()->previous(), "for (")) {
errorPath.emplace_back(var->nameToken(), "Assigned to reference.");
const Token* vartok = var->nameToken();
if (vartok == tok)
return {{tok, true, std::move(errorPath)}};
const Token* contok = var->nameToken()->astParent()->astOperand2();
Fix 10163: false positive: lifetime for r is not same as for seq 'for (auto& r: seq)' (#3442)
2021-09-04 19:53:14 +02:00
if (astIsContainer(contok))
Fix issue 10086: false positive: (style) constVariable: Variable 'x' can be declared with const (#3219)
2021-04-30 17:47:08 +02:00
return getLifetimeTokens(contok, escape, std::move(errorPath), pred, depth - 1);
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
return std::vector<ValueFlow::LifetimeToken>{};
Lifetime: Follow functions that return references This will now warn for cases like this: ```cpp int& f(int& a) { return a; } int& hello() { int x = 0; return f(x); } ```
2019-01-26 11:03:57 +01:00
} else {
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return std::vector<ValueFlow::LifetimeToken> {};
Lifetime: Follow functions that return references This will now warn for cases like this: ```cpp int& f(int& a) { return a; } int& hello() { int x = 0; return f(x); } ```
2019-01-26 11:03:57 +01:00
}
}
} else if (Token::Match(tok->previous(), "%name% (")) {
const Function *f = tok->previous()->function();
Fix issue 4845: alias to vector element invalid after vector is changed (#2113) * Try harder to track ref lifetimes * Dont add lifetimes for references * Use correct token * Check for front and back as well * Improve handling of addresses * Formatting * Fix FP
2019-09-02 06:58:09 +02:00
if (f) {
if (!Function::returnsReference(f))
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return {{tok, std::move(errorPath)}};
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
std::vector<ValueFlow::LifetimeToken> result;
Fix issue 9587: False positive: parameter can be declared with const (#2667)
2020-05-31 10:10:10 +02:00
std::vector<const Token*> returns = Function::findReturns(f);
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
for (const Token* returnTok : returns) {
if (returnTok == tok)
continue;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
for (ValueFlow::LifetimeToken& lt : getLifetimeTokens(returnTok, escape, errorPath, pred, depth - returns.size())) {
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
const Token* argvarTok = lt.token;
const Variable* argvar = argvarTok->variable();
if (!argvar)
continue;
Fix 11087: false negative: usage of reference to member of temporary object not detected (#4217) * Fix 11087: false negative: usage of reference to member of temporary object not detected * Format * Add another test case * Fix FP with pointer * Format
2022-06-16 19:26:36 +02:00
const Token* argTok = nullptr;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (argvar->isArgument() && (argvar->isReference() || argvar->isRValueReference())) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const int n = getArgumentPos(argvar, f);
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (n < 0)
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return std::vector<ValueFlow::LifetimeToken> {};
Fix issue 9551: Out-of-bounds in getLifetimeTokens() (#2461)
2019-12-29 08:23:58 +01:00
std::vector<const Token*> args = getArguments(tok->previous());
// TODO: Track lifetimes of default parameters
if (n >= args.size())
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return std::vector<ValueFlow::LifetimeToken> {};
Fix 11087: false negative: usage of reference to member of temporary object not detected (#4217) * Fix 11087: false negative: usage of reference to member of temporary object not detected * Format * Add another test case * Fix FP with pointer * Format
2022-06-16 19:26:36 +02:00
argTok = args[n];
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
lt.errorPath.emplace_back(returnTok, "Return reference.");
Fix issue 9835: False negative: Return reference to temporary with const reference
2020-09-09 01:30:45 +02:00
lt.errorPath.emplace_back(tok->previous(), "Called function passing '" + argTok->expressionString() + "'.");
Fix 11087: false negative: usage of reference to member of temporary object not detected (#4217) * Fix 11087: false negative: usage of reference to member of temporary object not detected * Format * Add another test case * Fix FP with pointer * Format
2022-06-16 19:26:36 +02:00
} else if (Token::Match(tok->tokAt(-2), ". %name% (") && !derefShared(tok->tokAt(-2)) &&
exprDependsOnThis(argvarTok)) {
argTok = tok->tokAt(-2)->astOperand1();
lt.errorPath.emplace_back(returnTok, "Return reference that depends on 'this'.");
lt.errorPath.emplace_back(tok->previous(),
"Calling member function on '" + argTok->expressionString() + "'.");
}
if (argTok) {
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
std::vector<ValueFlow::LifetimeToken> arglts = ValueFlow::LifetimeToken::setInconclusive(
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
getLifetimeTokens(argTok, escape, std::move(lt.errorPath), pred, depth - returns.size()),
returns.size() > 1);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
result.insert(result.end(), arglts.cbegin(), arglts.cend());
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
}
}
Fix issue 4845: alias to vector element invalid after vector is changed (#2113) * Try harder to track ref lifetimes * Dont add lifetimes for references * Use correct token * Check for front and back as well * Improve handling of addresses * Formatting * Fix FP
2019-09-02 06:58:09 +02:00
}
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return result;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
if (Token::Match(tok->tokAt(-2), ". %name% (") && tok->tokAt(-2)->originalName() != "->" && astIsContainer(tok->tokAt(-2)->astOperand1())) {
Fix issue 4845: alias to vector element invalid after vector is changed (#2113) * Try harder to track ref lifetimes * Dont add lifetimes for references * Use correct token * Check for front and back as well * Improve handling of addresses * Formatting * Fix FP
2019-09-02 06:58:09 +02:00
const Library::Container* library = getLibraryContainer(tok->tokAt(-2)->astOperand1());
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const Library::Container::Yield y = library->getYield(tok->previous()->str());
Fix issue 4845: alias to vector element invalid after vector is changed (#2113) * Try harder to track ref lifetimes * Dont add lifetimes for references * Use correct token * Check for front and back as well * Improve handling of addresses * Formatting * Fix FP
2019-09-02 06:58:09 +02:00
if (y == Library::Container::Yield::AT_INDEX || y == Library::Container::Yield::ITEM) {
errorPath.emplace_back(tok->previous(), "Accessing container.");
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return ValueFlow::LifetimeToken::setAddressOf(
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
getLifetimeTokens(tok->tokAt(-2)->astOperand1(), escape, std::move(errorPath), pred, depth - 1),
false);
Fix issue 4845: alias to vector element invalid after vector is changed (#2113) * Try harder to track ref lifetimes * Dont add lifetimes for references * Use correct token * Check for front and back as well * Improve handling of addresses * Formatting * Fix FP
2019-09-02 06:58:09 +02:00
}
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
}
Find reference to dangling unique ptr (#3344)
2021-07-20 21:30:27 +02:00
} else if (Token::Match(tok, ".|::|[") || tok->isUnaryOp("*")) {
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
const Token *vartok = tok;
while (vartok) {
Refactor to use derefShared (#4220)
2022-06-19 08:16:27 +02:00
if (vartok->str() == "[" || vartok->originalName() == "->" || vartok->isUnaryOp("*"))
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
vartok = vartok->astOperand1();
else if (vartok->str() == "." || vartok->str() == "::")
vartok = vartok->astOperand2();
else
break;
}
if (!vartok)
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return {{tok, std::move(errorPath)}};
Refactor to use derefShared (#4220)
2022-06-19 08:16:27 +02:00
if (derefShared(vartok->astParent())) {
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
for (const ValueFlow::Value &v : vartok->values()) {
if (!v.isLocalLifetimeValue())
continue;
Fix issue 9883: endless recursion in getLifetimeTokens
2020-09-08 18:33:29 +02:00
if (v.tokvalue == tok)
continue;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
errorPath.insert(errorPath.end(), v.errorPath.cbegin(), v.errorPath.cend());
Fix issue 10086: false positive: (style) constVariable: Variable 'x' can be declared with const (#3219)
2021-04-30 17:47:08 +02:00
return getLifetimeTokens(v.tokvalue, escape, std::move(errorPath), pred, depth - 1);
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
}
} else {
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return ValueFlow::LifetimeToken::setAddressOf(getLifetimeTokens(vartok, escape, std::move(errorPath), pred, depth - 1),
!(astIsContainer(vartok) && Token::simpleMatch(vartok->astParent(), "[")));
Lifetime: Follow functions that return references This will now warn for cases like this: ```cpp int& f(int& a) { return a; } int& hello() { int x = 0; return f(x); } ```
2019-01-26 11:03:57 +01:00
}
Fix 11057: FP danglingTemporaryLifetime with reference member (#4103) * Fix 11057: FP danglingTemporaryLifetime with reference member * Add test * Format * Use ast for number of arguments * Get number of arguments using ast * Skip aggregate constructor when there are too many arguments * Format
2022-05-13 06:51:07 +02:00
} else if (Token::simpleMatch(tok, "{") && getArgumentStart(tok) &&
!Token::simpleMatch(getArgumentStart(tok), ",") && getArgumentStart(tok)->valueType()) {
const Token* vartok = getArgumentStart(tok);
auto vts = getParentValueTypes(tok);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
auto it = std::find_if(vts.cbegin(), vts.cend(), [&](const ValueType& vt) {
Fix #10412 FN useStlAlgorithm with iterators (#4157)
2022-10-16 13:46:26 +02:00
return vt.isTypeEqual(vartok->valueType());
});
if (it != vts.end())
return getLifetimeTokens(vartok, escape, std::move(errorPath), pred, depth - 1);
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
}
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return {{tok, std::move(errorPath)}};
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
std::vector<ValueFlow::LifetimeToken> ValueFlow::getLifetimeTokens(const Token* tok, bool escape, ValueFlow::Value::ErrorPath errorPath)
Fix issue 10086: false positive: (style) constVariable: Variable 'x' can be declared with const (#3219)
2021-04-30 17:47:08 +02:00
{
astyle formatting
2021-05-01 07:35:03 +02:00
return getLifetimeTokens(tok, escape, std::move(errorPath), [](const Token*) {
return false;
});
Fix issue 10086: false positive: (style) constVariable: Variable 'x' can be declared with const (#3219)
2021-04-30 17:47:08 +02:00
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
bool ValueFlow::hasLifetimeToken(const Token* tok, const Token* lifetime)
Fix issue 10086: false positive: (style) constVariable: Variable 'x' can be declared with const (#3219)
2021-04-30 17:47:08 +02:00
{
bool result = false;
getLifetimeTokens(tok, false, ValueFlow::Value::ErrorPath{}, [&](const Token* tok2) {
result = tok2->exprId() == lifetime->exprId();
return result;
});
return result;
}
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
static const Token* getLifetimeToken(const Token* tok, ValueFlow::Value::ErrorPath& errorPath, bool* addressOf = nullptr)
{
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
std::vector<ValueFlow::LifetimeToken> lts = ValueFlow::getLifetimeTokens(tok);
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (lts.size() != 1)
return nullptr;
if (lts.front().inconclusive)
return nullptr;
if (addressOf)
*addressOf = lts.front().addressOf;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
errorPath.insert(errorPath.end(), lts.front().errorPath.cbegin(), lts.front().errorPath.cend());
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
return lts.front().token;
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Variable* ValueFlow::getLifetimeVariable(const Token* tok, ValueFlow::Value::ErrorPath& errorPath, bool* addressOf)
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
{
Fix issue 4845: alias to vector element invalid after vector is changed (#2113) * Try harder to track ref lifetimes * Dont add lifetimes for references * Use correct token * Check for front and back as well * Improve handling of addresses * Formatting * Fix FP
2019-09-02 06:58:09 +02:00
const Token* tok2 = getLifetimeToken(tok, errorPath, addressOf);
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
if (tok2 && tok2->variable())
return tok2->variable();
return nullptr;
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Variable* ValueFlow::getLifetimeVariable(const Token* tok)
Fix issue 9587: False positive: parameter can be declared with const (#2667)
2020-05-31 10:10:10 +02:00
{
ValueFlow::Value::ErrorPath errorPath;
return getLifetimeVariable(tok, errorPath, nullptr);
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
static bool isNotLifetimeValue(const ValueFlow::Value& val)
{
return !val.isLifetimeValue();
}
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
static bool isLifetimeOwned(const ValueType* vtParent)
{
if (vtParent->container)
return !vtParent->container->view;
return vtParent->type == ValueType::CONTAINER;
}
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
static bool isLifetimeOwned(const ValueType *vt, const ValueType *vtParent)
{
if (!vtParent)
return false;
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (isLifetimeOwned(vtParent))
return true;
if (!vt)
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
return false;
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
// If converted from iterator to pointer then the iterator is most likely a pointer
if (vtParent->pointer == 1 && vt->pointer == 0 && vt->type == ValueType::ITERATOR)
return false;
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
if (vt->type != ValueType::UNKNOWN_TYPE && vtParent->type != ValueType::UNKNOWN_TYPE) {
if (vt->pointer != vtParent->pointer)
return true;
if (vt->type != vtParent->type) {
if (vtParent->type == ValueType::RECORD)
return true;
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
if (isLifetimeOwned(vtParent))
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
return true;
}
}
return false;
}
static bool isLifetimeBorrowed(const ValueType *vt, const ValueType *vtParent)
{
if (!vtParent)
return false;
if (!vt)
return false;
Fix todo test for returning a dangling reference (#3284)
2021-06-04 17:15:39 +02:00
if (vt->pointer > 0 && vt->pointer == vtParent->pointer)
return true;
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
if (vtParent->container && vtParent->container->view)
return true;
Fix issue 9770: FP returnDanglingLifetime for class method taking const char* and returning std::string
2020-08-06 06:17:35 +02:00
if (vt->type != ValueType::UNKNOWN_TYPE && vtParent->type != ValueType::UNKNOWN_TYPE && vtParent->container == vt->container) {
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
if (vtParent->pointer > vt->pointer)
return true;
if (vtParent->pointer < vt->pointer && vtParent->isIntegral())
return true;
Fix issue 9712: False positive: Returning pointer to local variable when return line implicitly cast to return type (#2662)
2020-05-23 23:12:00 +02:00
if (vtParent->str() == vt->str())
return true;
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
}
return false;
}
Fix issue 9712: False positive: Returning pointer to local variable when return line implicitly cast to return type (#2662)
2020-05-23 23:12:00 +02:00
static const Token* skipCVRefs(const Token* tok, const Token* endTok)
{
astyle formatting [ci skip]
2020-05-24 10:52:58 +02:00
while (tok != endTok && Token::Match(tok, "const|volatile|auto|&|&&"))
Fix issue 9712: False positive: Returning pointer to local variable when return line implicitly cast to return type (#2662)
2020-05-23 23:12:00 +02:00
tok = tok->next();
return tok;
}
static bool isNotEqual(std::pair<const Token*, const Token*> x, std::pair<const Token*, const Token*> y)
{
const Token* start1 = x.first;
const Token* start2 = y.first;
if (start1 == nullptr || start2 == nullptr)
return false;
astyle formatting [ci skip]
2020-05-24 10:52:58 +02:00
while (start1 != x.second && start2 != y.second) {
Fix issue 9712: False positive: Returning pointer to local variable when return line implicitly cast to return type (#2662)
2020-05-23 23:12:00 +02:00
const Token* tok1 = skipCVRefs(start1, x.second);
if (tok1 != start1) {
start1 = tok1;
continue;
}
const Token* tok2 = skipCVRefs(start2, y.second);
if (tok2 != start2) {
start2 = tok2;
continue;
}
if (start1->str() != start2->str())
return true;
start1 = start1->next();
start2 = start2->next();
}
start1 = skipCVRefs(start1, x.second);
start2 = skipCVRefs(start2, y.second);
return !(start1 == x.second && start2 == y.second);
}
Fix issue 9783: wrong lifetime analysis temporary assigned to object (#2711)
2020-09-02 07:13:15 +02:00
static bool isNotEqual(std::pair<const Token*, const Token*> x, const std::string& y)
{
TokenList tokenList(nullptr);
std::istringstream istr(y);
tokenList.createTokens(istr);
return isNotEqual(x, std::make_pair(tokenList.front(), tokenList.back()));
}
static bool isNotEqual(std::pair<const Token*, const Token*> x, const ValueType* y)
{
if (y == nullptr)
return false;
if (y->originalTypeName.empty())
return false;
return isNotEqual(x, y->originalTypeName);
}
Fix issue 9712: False positive: Returning pointer to local variable when return line implicitly cast to return type (#2662)
2020-05-23 23:12:00 +02:00
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
static bool isDifferentType(const Token* src, const Token* dst)
{
const Type* t = Token::typeOf(src);
const Type* parentT = Token::typeOf(dst);
if (t && parentT) {
if (t->classDef && parentT->classDef && t->classDef != parentT->classDef)
return true;
} else {
std::pair<const Token*, const Token*> decl = Token::typeDecl(src);
std::pair<const Token*, const Token*> parentdecl = Token::typeDecl(dst);
if (isNotEqual(decl, parentdecl))
return true;
if (isNotEqual(decl, dst->valueType()))
return true;
if (isNotEqual(parentdecl, src->valueType()))
return true;
}
return false;
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
bool ValueFlow::isLifetimeBorrowed(const Token *tok, const Settings *settings)
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
{
if (!tok)
return true;
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
if (tok->str() == ",")
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
return true;
if (!tok->astParent())
return true;
Fix 10843: FP: danglingTemporaryLifetime (#3908) * Fix 10843: FP: danglingTemporaryLifetime * Format
2022-03-16 17:11:49 +01:00
const Token* parent = nullptr;
const ValueType* vt = tok->valueType();
std::vector<ValueType> vtParents = getParentValueTypes(tok, settings, &parent);
Fix 10954: False positive: returnDanglingLifetime when using c_str() (#4006)
2022-04-12 08:09:13 +02:00
for (const ValueType& vtParent : vtParents) {
if (isLifetimeBorrowed(vt, &vtParent))
return true;
if (isLifetimeOwned(vt, &vtParent))
return false;
Fix 10843: FP: danglingTemporaryLifetime (#3908) * Fix 10843: FP: danglingTemporaryLifetime * Format
2022-03-16 17:11:49 +01:00
}
if (parent) {
if (isDifferentType(tok, parent))
Fix issue 9077: False positive: Returning pointer to local variable (#1821) * Avoid implicit conversion for lifetimes * Fix issue 9077 * Add more tests * Rename function * Fix implicit conversion with containers * Format * Fix crash
2019-05-05 11:40:59 +02:00
return false;
}
return true;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowLifetimeFunction(Token *tok, TokenList &tokenlist, ErrorLogger *errorLogger, const Settings *settings);
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
Fix issue 8996: False positive duplicateCondition This fixes issue 8996 by improving the alias checking by using lifetime analysis. It also extends the lifetime checker to handle constructors and initializer lists for containers and arrays.
2019-03-19 06:25:10 +01:00
static void valueFlowLifetimeConstructor(Token *tok,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList &tokenlist,
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
ErrorLogger *errorLogger,
const Settings *settings);
Fix issue 8996: False positive duplicateCondition This fixes issue 8996 by improving the alias checking by using lifetime analysis. It also extends the lifetime checker to handle constructors and initializer lists for containers and arrays.
2019-03-19 06:25:10 +01:00
Fix 11142: FP nullPointer before assignment (#4319) * Fix 11142: FP nullPointer before assignment * Format * Use simpleMatch
2022-08-03 19:05:07 +02:00
static bool isRangeForScope(const Scope* scope)
{
if (!scope)
return false;
if (scope->type != Scope::eFor)
return false;
if (!scope->bodyStart)
return false;
if (!Token::simpleMatch(scope->bodyStart->previous(), ") {"))
return false;
return Token::simpleMatch(scope->bodyStart->linkAt(-1)->astOperand2(), ":");
}
Fix 10768: performance regression (#3788)
2022-02-02 13:01:44 +01:00
static const Token* getEndOfVarScope(const Variable* var)
{
if (!var)
return nullptr;
const Scope* innerScope = var->scope();
const Scope* outerScope = innerScope;
if (var->typeStartToken() && var->typeStartToken()->scope())
outerScope = var->typeStartToken()->scope();
if (!innerScope && outerScope)
innerScope = outerScope;
if (!innerScope || !outerScope)
return nullptr;
if (!innerScope->isExecutable())
return nullptr;
// If the variable is defined in a for/while initializer then we want to
// pick one token after the end so forward analysis can analyze the exit
// conditions
Fix 11142: FP nullPointer before assignment (#4319) * Fix 11142: FP nullPointer before assignment * Format * Use simpleMatch
2022-08-03 19:05:07 +02:00
if (innerScope != outerScope && outerScope->isExecutable() && innerScope->isLoopScope() &&
!isRangeForScope(innerScope))
Fix 10768: performance regression (#3788)
2022-02-02 13:01:44 +01:00
return innerScope->bodyEnd->next();
return innerScope->bodyEnd;
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Token* ValueFlow::getEndOfExprScope(const Token* tok, const Scope* defaultScope, bool smallest)
Fix 10768: performance regression (#3788)
2022-02-02 13:01:44 +01:00
{
const Token* end = nullptr;
bool local = false;
visitAstNodes(tok, [&](const Token* child) {
if (const Variable* var = child->variable()) {
local |= var->isLocal();
if (var->isLocal() || var->isArgument()) {
const Token* varEnd = getEndOfVarScope(var);
Fix #7908 FN: redundant assignment in loop (#3650)
2022-02-22 09:51:44 +01:00
if (!end || (smallest ? precedes(varEnd, end) : succeeds(varEnd, end)))
Fix 10768: performance regression (#3788)
2022-02-02 13:01:44 +01:00
end = varEnd;
Fix #11788 False positive: unreadVariable in else (#5248)
2023-07-18 21:11:03 +02:00
const Token* top = var->nameToken()->astTop();
if (top && Token::simpleMatch(top->tokAt(-1), "if (")) { // variable declared in if (...)
const Token* elseTok = top->link()->linkAt(1);
if (Token::simpleMatch(elseTok, "} else {") && tok->scope()->isNestedIn(elseTok->tokAt(2)->scope()))
end = tok->scope()->bodyEnd;
}
Fix 10768: performance regression (#3788)
2022-02-02 13:01:44 +01:00
}
}
return ChildrenToVisit::op1_and_op2;
});
if (!end && defaultScope)
end = defaultScope->bodyEnd;
if (!end) {
const Scope* scope = tok->scope();
if (scope)
end = scope->bodyEnd;
// If there is no local variables then pick the function scope
if (!local) {
while (scope && scope->isLocal())
scope = scope->nestedIn;
if (scope && scope->isExecutable())
end = scope->bodyEnd;
}
}
return end;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowForwardLifetime(Token * tok, TokenList &tokenlist, ErrorLogger *errorLogger, const Settings *settings)
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
{
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
// Forward lifetimes to constructed variable
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (Token::Match(tok->previous(), "%var% {|(") && isVariableDecl(tok->previous())) {
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
std::list<ValueFlow::Value> values = tok->values();
values.remove_if(&isNotLifetimeValue);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(nextAfterAstRightmostLeaf(tok), ValueFlow::getEndOfExprScope(tok), tok->previous(), values, tokenlist, settings);
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
return;
}
Cleanup some const_cast of Token* (#1886) * Add non const version of some methods of Token The aim is to reduce the (ab)use of const_cast. * Cleanup some more const_cast in valueflow * Remove useless const_cast * Remove some const_cast from templatesimplifier * Remove some const_cast from valueflow
2019-06-16 10:09:38 +02:00
Token *parent = tok->astParent();
Fix 10318: iterator converted to type, wrong scope check (#3433)
2021-08-31 09:48:23 +02:00
while (parent && parent->str() == ",")
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
parent = parent->astParent();
if (!parent)
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
return;
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
// Assignment
Forward lifetimes in "for" loops (#1682) * Forward lifetimes in for loops * Format
2019-02-22 06:37:02 +01:00
if (parent->str() == "=" && (!parent->astParent() || Token::simpleMatch(parent->astParent(), ";"))) {
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
// Rhs values..
if (!parent->astOperand2() || parent->astOperand2()->values().empty())
return;
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
if (!ValueFlow::isLifetimeBorrowed(parent->astOperand2(), settings))
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
return;
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Refactor: Use getEndOfExprScope instead of getEndOfVarScope (#3855)
2022-02-24 06:50:34 +01:00
const Token* expr = getLHSVariableToken(parent);
Fix #10838 Crash/nullptr deref in getEndOfExprScope() (#3870) * Fix #10838 Crash/nullptr deref in getEndOfExprScope() * Format
2022-03-03 17:08:23 +01:00
if (!expr)
return;
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Fix 11040: FP nullPointer after loop (#4085)
2022-05-05 06:55:02 +02:00
if (expr->exprId() == 0)
return;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Token* endOfVarScope = ValueFlow::getEndOfExprScope(expr);
Fix issue 9554: False positive: The address of local variable 'x' is accessed at non-zero index. (#2470) * Fix issue 9554: False positive: The address of local variable 'x' is accessed at non-zero index. * Format * Remove unnecesary condition check
2020-01-04 11:39:52 +01:00
// Only forward lifetime values
std::list<ValueFlow::Value> values = parent->astOperand2()->values();
values.remove_if(&isNotLifetimeValue);
Fix 11040: FP nullPointer after loop (#4085)
2022-05-05 06:55:02 +02:00
// Dont forward lifetimes that overlap
values.remove_if([&](const ValueFlow::Value& value) {
return findAstNode(value.tokvalue, [&](const Token* child) {
return child->exprId() == expr->exprId();
});
});
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
// Skip RHS
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
Token* nextExpression = nextAfterAstRightmostLeaf(parent);
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
Refactor: Use getEndOfExprScope instead of getEndOfVarScope (#3855)
2022-02-24 06:50:34 +01:00
if (expr->exprId() > 0) {
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
valueFlowForward(nextExpression, endOfVarScope->next(), expr, values, tokenlist, settings);
Fix issue 9554: False positive: The address of local variable 'x' is accessed at non-zero index. (#2470) * Fix issue 9554: False positive: The address of local variable 'x' is accessed at non-zero index. * Format * Remove unnecesary condition check
2020-01-04 11:39:52 +01:00
for (ValueFlow::Value& val : values) {
if (val.lifetimeKind == ValueFlow::Value::LifetimeKind::Address)
Fix issue 9780: FP: invalidContainer calling push_back after getting the address of the vector
2020-08-07 04:08:30 +02:00
val.lifetimeKind = ValueFlow::Value::LifetimeKind::SubObject;
Fix issue 9554: False positive: The address of local variable 'x' is accessed at non-zero index. (#2470) * Fix issue 9554: False positive: The address of local variable 'x' is accessed at non-zero index. * Format * Remove unnecesary condition check
2020-01-04 11:39:52 +01:00
}
Refactor: Use getEndOfExprScope instead of getEndOfVarScope (#3855)
2022-02-24 06:50:34 +01:00
// TODO: handle `[`
if (Token::simpleMatch(parent->astOperand1(), ".")) {
const Token* parentLifetime =
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
getParentLifetime(tokenlist.isCPP(), parent->astOperand1()->astOperand2(), &settings->library);
Refactor: Use getEndOfExprScope instead of getEndOfVarScope (#3855)
2022-02-24 06:50:34 +01:00
if (parentLifetime && parentLifetime->exprId() > 0) {
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
valueFlowForward(nextExpression, endOfVarScope, parentLifetime, values, tokenlist, settings);
Refactor: Use getEndOfExprScope instead of getEndOfVarScope (#3855)
2022-02-24 06:50:34 +01:00
}
Fix issue 9554: False positive: The address of local variable 'x' is accessed at non-zero index. (#2470) * Fix issue 9554: False positive: The address of local variable 'x' is accessed at non-zero index. * Format * Remove unnecesary condition check
2020-01-04 11:39:52 +01:00
}
Forward lifetimes in "for" loops (#1682) * Forward lifetimes in for loops * Format
2019-02-22 06:37:02 +01:00
}
Fix issue 8996: False positive duplicateCondition This fixes issue 8996 by improving the alias checking by using lifetime analysis. It also extends the lifetime checker to handle constructors and initializer lists for containers and arrays.
2019-03-19 06:25:10 +01:00
// Constructor
Fix issue 9311: False positive duplicateCondition "same if condition" with pointer inside array of struct (#2166) * Check for typeOf through an array * Handle array constructors * Format * Fix compile error on gcc 4.8
2019-09-10 19:41:35 +02:00
} else if (Token::simpleMatch(parent, "{") && !isScopeBracket(parent)) {
Cleanup some const_cast of Token* (#1886) * Add non const version of some methods of Token The aim is to reduce the (ab)use of const_cast. * Cleanup some more const_cast in valueflow * Remove useless const_cast * Remove some const_cast from templatesimplifier * Remove some const_cast from valueflow
2019-06-16 10:09:38 +02:00
valueFlowLifetimeConstructor(parent, tokenlist, errorLogger, settings);
Fix issue 9311: False positive duplicateCondition "same if condition" with pointer inside array of struct (#2166) * Check for typeOf through an array * Handle array constructors * Format * Fix compile error on gcc 4.8
2019-09-10 19:41:35 +02:00
valueFlowForwardLifetime(parent, tokenlist, errorLogger, settings);
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
// Function call
} else if (Token::Match(parent->previous(), "%name% (")) {
Cleanup some const_cast of Token* (#1886) * Add non const version of some methods of Token The aim is to reduce the (ab)use of const_cast. * Cleanup some more const_cast in valueflow * Remove useless const_cast * Remove some const_cast from templatesimplifier * Remove some const_cast from valueflow
2019-06-16 10:09:38 +02:00
valueFlowLifetimeFunction(parent->previous(), tokenlist, errorLogger, settings);
Fix issue 9311: False positive duplicateCondition "same if condition" with pointer inside array of struct (#2166) * Check for typeOf through an array * Handle array constructors * Format * Fix compile error on gcc 4.8
2019-09-10 19:41:35 +02:00
valueFlowForwardLifetime(parent, tokenlist, errorLogger, settings);
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
// Variable
Fix crash in valueFlowForwardLifetime() (#4891)
2023-03-18 14:53:49 +01:00
} else if (tok->variable() && tok->variable()->scope()) {
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
const Variable *var = tok->variable();
ValueFlow; Refactoring
2020-01-11 09:17:32 +01:00
const Token *endOfVarScope = var->scope()->bodyEnd;
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
std::list<ValueFlow::Value> values = tok->values();
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
Token *nextExpression = nextAfterAstRightmostLeaf(parent);
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
// Only forward lifetime values
values.remove_if(&isNotLifetimeValue);
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
valueFlowForward(nextExpression, endOfVarScope, tok, values, tokenlist, settings);
Fix issue 10037: False positive when passing variables to functions by address (#2957)
2020-12-19 08:29:37 +01:00
// Cast
} else if (parent->isCast()) {
std::list<ValueFlow::Value> values = tok->values();
// Only forward lifetime values
values.remove_if(&isNotLifetimeValue);
avoid some unnecessary copies (#4589)
2022-12-18 19:38:29 +01:00
for (ValueFlow::Value& value:values)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(parent, std::move(value), settings);
Fix issue 10037: False positive when passing variables to functions by address (#2957)
2020-12-19 08:29:37 +01:00
valueFlowForwardLifetime(parent, tokenlist, errorLogger, settings);
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
}
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
struct LifetimeStore {
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
const Token* argtok{};
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
std::string message;
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
ValueFlow::Value::LifetimeKind type = ValueFlow::Value::LifetimeKind::Object;
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
ErrorPath errorPath;
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
bool inconclusive{};
bool forward = true;
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
struct Context {
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
Token* tok{};
TokenList* tokenlist{};
ErrorLogger* errorLogger{};
const Settings* settings{};
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
};
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
LifetimeStore() = default;
Improve propogation of lifetimes of function arguments This will now warn for cases like this: ```cpp int* f(int * x) { return x; } int * g(int x) { return f(&x); } ````
2019-07-26 07:02:07 +02:00
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
LifetimeStore(const Token* argtok,
enabled and fixed `modernize-pass-by-value` clang-tidy warnings (#4169)
2022-07-28 22:51:45 +02:00
std::string message,
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
ValueFlow::Value::LifetimeKind type = ValueFlow::Value::LifetimeKind::Object,
bool inconclusive = false)
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
: argtok(argtok),
enabled and fixed `modernize-pass-by-value` clang-tidy warnings (#4169)
2022-07-28 22:51:45 +02:00
message(std::move(message)),
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
type(type),
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
inconclusive(inconclusive)
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
{}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
template<class F>
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
static void forEach(const std::vector<const Token*>& argtoks,
const std::string& message,
ValueFlow::Value::LifetimeKind type,
astyle formatting [ci skip]
2020-10-03 11:02:11 +02:00
F f) {
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
std::map<const Token*, Context> forwardToks;
for (const Token* arg : argtoks) {
LifetimeStore ls{arg, message, type};
Context c{};
ls.mContext = &c;
ls.forward = false;
f(ls);
if (c.tok)
forwardToks[c.tok] = c;
}
for (const auto& p : forwardToks) {
const Context& c = p.second;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
valueFlowForwardLifetime(c.tok, *c.tokenlist, c.errorLogger, c.settings);
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
}
}
Fix #12208 FN constParameterReference with nested struct/class (#5685)
2023-11-20 22:01:22 +01:00
static LifetimeStore fromFunctionArg(const Function * f, const Token *tok, const Variable *var, const TokenList &tokenlist, const Settings* settings, ErrorLogger *errorLogger) {
Improve propogation of lifetimes of function arguments This will now warn for cases like this: ```cpp int* f(int * x) { return x; } int * g(int x) { return f(&x); } ````
2019-07-26 07:02:07 +02:00
if (!var)
return LifetimeStore{};
if (!var->isArgument())
return LifetimeStore{};
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const int n = getArgumentPos(var, f);
Improve propogation of lifetimes of function arguments This will now warn for cases like this: ```cpp int* f(int * x) { return x; } int * g(int x) { return f(&x); } ````
2019-07-26 07:02:07 +02:00
if (n < 0)
return LifetimeStore{};
std::vector<const Token *> args = getArguments(tok);
if (n >= args.size()) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
if (settings->debugwarnings)
Improve propogation of lifetimes of function arguments This will now warn for cases like this: ```cpp int* f(int * x) { return x; } int * g(int x) { return f(&x); } ````
2019-07-26 07:02:07 +02:00
bailout(tokenlist,
errorLogger,
tok,
"Argument mismatch: Function '" + tok->str() + "' returning lifetime from argument index " +
std::to_string(n) + " but only " + std::to_string(args.size()) +
" arguments are available.");
return LifetimeStore{};
}
const Token *argtok2 = args[n];
Fix issue 9835: False negative: Return reference to temporary with const reference
2020-09-09 01:30:45 +02:00
return LifetimeStore{argtok2, "Passed to '" + tok->expressionString() + "'.", ValueFlow::Value::LifetimeKind::Object};
Improve propogation of lifetimes of function arguments This will now warn for cases like this: ```cpp int* f(int * x) { return x; } int * g(int x) { return f(&x); } ````
2019-07-26 07:02:07 +02:00
}
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
template<class Predicate>
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
bool byRef(Token* tok,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
ErrorLogger* errorLogger,
const Settings* settings,
Predicate pred,
SourceLocation loc = SourceLocation::current()) const
{
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (!argtok)
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return false;
bool update = false;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
for (const ValueFlow::LifetimeToken& lt : ValueFlow::getLifetimeTokens(argtok)) {
Refactorization: Improved internal implementation of severity and certainty levels Backported from LCppC.
2021-02-24 22:00:06 +01:00
if (!settings->certainty.isEnabled(Certainty::inconclusive) && lt.inconclusive)
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
continue;
ErrorPath er = errorPath;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
er.insert(er.end(), lt.errorPath.cbegin(), lt.errorPath.cend());
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (!lt.token)
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return false;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (!pred(lt.token))
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return false;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
er.emplace_back(argtok, message);
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
ValueFlow::Value value;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::LIFETIME;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
value.lifetimeScope = ValueFlow::Value::LifetimeScope::Local;
value.tokvalue = lt.token;
value.errorPath = std::move(er);
value.lifetimeKind = type;
value.setInconclusive(lt.inconclusive || inconclusive);
// Don't add the value a second time
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::find(tok->values().cbegin(), tok->values().cend(), value) != tok->values().cend())
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return false;
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
if (settings->debugnormal)
setSourceLocation(value, loc, tok);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
update = true;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
}
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
if (update && forward)
Restore references (#5303)
2023-08-08 17:50:08 +02:00
forwardLifetime(tok, tokenlist, errorLogger, settings);
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return update;
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
}
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
bool byRef(Token* tok,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
ErrorLogger* errorLogger,
const Settings* settings,
SourceLocation loc = SourceLocation::current()) const
{
return byRef(
tok,
tokenlist,
errorLogger,
settings,
[](const Token*) {
astyle formatting [ci skip]
2020-10-03 11:02:11 +02:00
return true;
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
},
loc);
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
}
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
template<class Predicate>
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
bool byVal(Token* tok,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
ErrorLogger* errorLogger,
const Settings* settings,
Predicate pred,
SourceLocation loc = SourceLocation::current()) const
{
Improve propogation of lifetimes of function arguments This will now warn for cases like this: ```cpp int* f(int * x) { return x; } int * g(int x) { return f(&x); } ````
2019-07-26 07:02:07 +02:00
if (!argtok)
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return false;
bool update = false;
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
if (argtok->values().empty()) {
ErrorPath er;
er.emplace_back(argtok, message);
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
for (const ValueFlow::LifetimeToken& lt : ValueFlow::getLifetimeTokens(argtok)) {
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
if (!settings->certainty.isEnabled(Certainty::inconclusive) && lt.inconclusive)
continue;
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
ValueFlow::Value value;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::LIFETIME;
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
value.tokvalue = lt.token;
Fix 10984: False positive: invalidContainer when explictly capturing vector by reference (#4064)
2022-04-30 09:36:28 +02:00
value.capturetok = argtok;
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
value.errorPath = er;
value.lifetimeKind = type;
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
value.setInconclusive(inconclusive || lt.inconclusive);
const Variable* var = lt.token->variable();
if (var && var->isArgument()) {
value.lifetimeScope = ValueFlow::Value::LifetimeScope::Argument;
} else {
continue;
}
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
// Don't add the value a second time
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::find(tok->values().cbegin(), tok->values().cend(), value) != tok->values().cend())
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
continue;
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
if (settings->debugnormal)
setSourceLocation(value, loc, tok);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
update = true;
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
}
}
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
for (const ValueFlow::Value &v : argtok->values()) {
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
if (!v.isLifetimeValue())
continue;
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
const Token *tok3 = v.tokvalue;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
for (const ValueFlow::LifetimeToken& lt : ValueFlow::getLifetimeTokens(tok3)) {
Refactorization: Improved internal implementation of severity and certainty levels Backported from LCppC.
2021-02-24 22:00:06 +01:00
if (!settings->certainty.isEnabled(Certainty::inconclusive) && lt.inconclusive)
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
continue;
ErrorPath er = v.errorPath;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
er.insert(er.end(), lt.errorPath.cbegin(), lt.errorPath.cend());
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (!lt.token)
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return false;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (!pred(lt.token))
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return false;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
er.emplace_back(argtok, message);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
er.insert(er.end(), errorPath.cbegin(), errorPath.cend());
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
ValueFlow::Value value;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::LIFETIME;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
value.lifetimeScope = v.lifetimeScope;
Fix issue 9880: False positive: danglingLifetime (#2810)
2020-09-17 07:23:38 +02:00
value.path = v.path;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
value.tokvalue = lt.token;
Fix 10984: False positive: invalidContainer when explictly capturing vector by reference (#4064)
2022-04-30 09:36:28 +02:00
value.capturetok = argtok;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
value.errorPath = std::move(er);
value.lifetimeKind = type;
value.setInconclusive(lt.inconclusive || v.isInconclusive() || inconclusive);
// Don't add the value a second time
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::find(tok->values().cbegin(), tok->values().cend(), value) != tok->values().cend())
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
continue;
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
if (settings->debugnormal)
setSourceLocation(value, loc, tok);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
update = true;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
}
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
}
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
if (update && forward)
Restore references (#5303)
2023-08-08 17:50:08 +02:00
forwardLifetime(tok, tokenlist, errorLogger, settings);
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
return update;
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
}
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
bool byVal(Token* tok,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
ErrorLogger* errorLogger,
const Settings* settings,
SourceLocation loc = SourceLocation::current()) const
{
return byVal(
tok,
tokenlist,
errorLogger,
settings,
[](const Token*) {
astyle formatting [ci skip]
2020-10-03 11:02:11 +02:00
return true;
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
},
loc);
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
}
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
template<class Predicate>
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
bool byDerefCopy(Token* tok,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
ErrorLogger* errorLogger,
const Settings* settings,
Predicate pred,
SourceLocation loc = SourceLocation::current()) const
{
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
bool update = false;
Refactorization: Improved internal implementation of severity and certainty levels Backported from LCppC.
2021-02-24 22:00:06 +01:00
if (!settings->certainty.isEnabled(Certainty::inconclusive) && inconclusive)
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
return update;
Improve propogation of lifetimes of function arguments This will now warn for cases like this: ```cpp int* f(int * x) { return x; } int * g(int x) { return f(&x); } ````
2019-07-26 07:02:07 +02:00
if (!argtok)
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
return update;
avoid redundant `Token::declEndToken()` calls (#4363)
2022-08-20 20:50:14 +02:00
if (!tok)
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
return update;
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
for (const ValueFlow::Value &v : argtok->values()) {
if (!v.isLifetimeValue())
continue;
const Token *tok2 = v.tokvalue;
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
ErrorPath er = v.errorPath;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Variable *var = ValueFlow::getLifetimeVariable(tok2, er);
valueflow.cpp: avoid some copies related to `ErrorPath` (#4160)
2022-07-20 10:57:49 +02:00
// TODO: the inserted data is never used
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
er.insert(er.end(), errorPath.cbegin(), errorPath.cend());
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
if (!var)
continue;
avoid redundant `Token::declEndToken()` calls (#4363)
2022-08-20 20:50:14 +02:00
const Token * const varDeclEndToken = var->declEndToken();
for (const Token *tok3 = tok; tok3 && tok3 != varDeclEndToken; tok3 = tok3->previous()) {
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
if (tok3->varId() == var->declarationId()) {
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
update |= LifetimeStore{tok3, message, type, inconclusive}
.byVal(tok, tokenlist, errorLogger, settings, pred, loc);
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
break;
}
}
}
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
return update;
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
}
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
bool byDerefCopy(Token* tok,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
ErrorLogger* errorLogger,
const Settings* settings,
SourceLocation loc = SourceLocation::current()) const
{
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
return byDerefCopy(
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
tok,
tokenlist,
errorLogger,
settings,
[](const Token*) {
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
return true;
Add source traces when using LifetimeStore (#4678)
2023-01-03 22:02:48 +01:00
},
loc);
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
}
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
astyle formatting [ci skip]
2020-10-03 11:02:11 +02:00
private:
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
Context* mContext{};
Restore references (#5303)
2023-08-08 17:50:08 +02:00
void forwardLifetime(Token* tok, TokenList& tokenlist, ErrorLogger* errorLogger, const Settings* settings) const {
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
if (mContext) {
mContext->tok = tok;
Restore references (#5303)
2023-08-08 17:50:08 +02:00
mContext->tokenlist = &tokenlist;
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
mContext->errorLogger = errorLogger;
mContext->settings = settings;
}
Restore references (#5303)
2023-08-08 17:50:08 +02:00
valueFlowForwardLifetime(tok, tokenlist, errorLogger, settings);
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
}
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
};
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
static bool hasBorrowingVariables(const std::list<Variable>& vars, const std::vector<const Token*>& args, int depth = 10)
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
{
if (depth < 0)
Fix #11875: hang in hasBorrowingVariables() (#5337)
2023-08-18 21:02:08 +02:00
return true;
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
return std::any_of(vars.cbegin(), vars.cend(), [&](const Variable& var) {
Fix #11875: hang in hasBorrowingVariables() (#5337)
2023-08-18 21:02:08 +02:00
if (const ValueType* vt = var.valueType()) {
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
if (vt->pointer > 0 &&
std::none_of(args.begin(), args.end(), [vt](const Token* arg) {
return arg->valueType() && arg->valueType()->type == vt->type;
}))
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
return false;
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
if (vt->pointer > 0)
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
return true;
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
if (vt->reference != Reference::None)
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
return true;
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
if (vt->isPrimitive())
return false;
if (vt->isEnum())
return false;
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
// TODO: Check container inner type
if (vt->type == ValueType::CONTAINER && vt->container)
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
return vt->container->view;
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
if (vt->typeScope)
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
return hasBorrowingVariables(vt->typeScope->varlist, args, depth - 1);
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
}
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
return true;
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
});
}
Fix 11028: False positive: invalidContainer (#4083) * Fix 11028: False positive: invalidContainer * Format
2022-05-05 06:54:36 +02:00
static void valueFlowLifetimeUserConstructor(Token* tok,
const Function* constructor,
const std::string& name,
Fix #12086 FN passedByValue with index operator and namespaced function call (#5574)
2023-10-21 12:41:39 +02:00
const std::vector<const Token*>& args,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Fix 11028: False positive: invalidContainer (#4083) * Fix 11028: False positive: invalidContainer * Format
2022-05-05 06:54:36 +02:00
ErrorLogger* errorLogger,
const Settings* settings)
Fix 10975: false negative: dangling reference in class (#4024) * Fix 10975: false negative: dangling reference in class * Format
2022-04-14 18:59:12 +02:00
{
if (!constructor)
return;
std::unordered_map<const Token*, const Variable*> argToParam;
for (std::size_t i = 0; i < args.size(); i++)
argToParam[args[i]] = constructor->getArgumentVar(i);
if (const Token* initList = constructor->constructorMemberInitialization()) {
std::unordered_map<const Variable*, LifetimeCapture> paramCapture;
for (const Token* tok2 : astFlatten(initList->astOperand2(), ",")) {
if (!Token::simpleMatch(tok2, "("))
continue;
if (!tok2->astOperand1())
continue;
if (!tok2->astOperand2())
continue;
const Variable* var = tok2->astOperand1()->variable();
const Token* expr = tok2->astOperand2();
if (!var)
continue;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
if (!ValueFlow::isLifetimeBorrowed(expr, settings))
Fix 11024: FP returnDanglingLifetime with c_str() passed to constructor (#4072)
2022-05-03 11:42:32 +02:00
continue;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Variable* argvar = ValueFlow::getLifetimeVariable(expr);
Fix 10975: false negative: dangling reference in class (#4024) * Fix 10975: false negative: dangling reference in class * Format
2022-04-14 18:59:12 +02:00
if (var->isReference() || var->isRValueReference()) {
if (argvar && argvar->isArgument() && (argvar->isReference() || argvar->isRValueReference())) {
paramCapture[argvar] = LifetimeCapture::ByReference;
}
} else {
bool found = false;
for (const ValueFlow::Value& v : expr->values()) {
if (!v.isLifetimeValue())
continue;
if (v.path > 0)
continue;
if (!v.tokvalue)
continue;
const Variable* lifeVar = v.tokvalue->variable();
if (!lifeVar)
continue;
LifetimeCapture c = LifetimeCapture::Undefined;
if (!v.isArgumentLifetimeValue() && (lifeVar->isReference() || lifeVar->isRValueReference()))
c = LifetimeCapture::ByReference;
else if (v.isArgumentLifetimeValue())
c = LifetimeCapture::ByValue;
if (c != LifetimeCapture::Undefined) {
paramCapture[lifeVar] = c;
found = true;
}
}
if (!found && argvar && argvar->isArgument())
paramCapture[argvar] = LifetimeCapture::ByValue;
}
}
// TODO: Use SubExpressionAnalyzer for members
LifetimeStore::forEach(args,
"Passed to constructor of '" + name + "'.",
ValueFlow::Value::LifetimeKind::SubObject,
[&](const LifetimeStore& ls) {
const Variable* paramVar = argToParam.at(ls.argtok);
if (paramCapture.count(paramVar) == 0)
return;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const LifetimeCapture c = paramCapture.at(paramVar);
Fix 10975: false negative: dangling reference in class (#4024) * Fix 10975: false negative: dangling reference in class * Format
2022-04-14 18:59:12 +02:00
if (c == LifetimeCapture::ByReference)
ls.byRef(tok, tokenlist, errorLogger, settings);
else
ls.byVal(tok, tokenlist, errorLogger, settings);
});
Fix #11546 FP danglingTemporaryLifetime with unknown member (#5256)
2023-08-14 14:32:35 +02:00
} else if (hasBorrowingVariables(constructor->nestedIn->varlist, args)) {
Fix 10975: false negative: dangling reference in class (#4024) * Fix 10975: false negative: dangling reference in class * Format
2022-04-14 18:59:12 +02:00
LifetimeStore::forEach(args,
"Passed to constructor of '" + name + "'.",
ValueFlow::Value::LifetimeKind::SubObject,
[&](LifetimeStore& ls) {
ls.inconclusive = true;
const Variable* var = argToParam.at(ls.argtok);
if (var && !var->isConst() && var->isReference())
ls.byRef(tok, tokenlist, errorLogger, settings);
else
ls.byVal(tok, tokenlist, errorLogger, settings);
});
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowLifetimeFunction(Token *tok, TokenList &tokenlist, ErrorLogger *errorLogger, const Settings *settings)
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
{
if (!Token::Match(tok, "%name% ("))
return;
Fix 7812: False negative: return pointer of local variable (#3583) * Fix 7812: False negative: return pointer of local variable * Format * Add test case for 3029 * Format
2021-11-28 15:25:21 +01:00
Token* memtok = nullptr;
if (Token::Match(tok->astParent(), ". %name% (") && astIsRHS(tok))
memtok = tok->astParent()->astOperand1();
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const int returnContainer = settings->library.returnValueContainer(tok);
Use lifetime analysis for checking mismatching containers (#2456) * Use lifetimes to check for mismatching containers * Fix error messages * Format * Remove unused variables * Fix configuration and track iterators through algorithms * Fix iterator value types in qt config * Fix library issue with QStringList * Remove unused functions * Fix cppcheck errors
2019-12-25 09:32:50 +01:00
if (returnContainer >= 0) {
std::vector<const Token *> args = getArguments(tok);
for (int argnr = 1; argnr <= args.size(); ++argnr) {
const Library::ArgumentChecks::IteratorInfo *i = settings->library.getArgIteratorInfo(tok, argnr);
if (!i)
continue;
if (i->container != returnContainer)
continue;
const Token * const argTok = args[argnr - 1];
Fix 10467: FP mismatchingContainers with array of vectors (#3453)
2021-09-09 20:43:46 +02:00
bool forward = false;
for (ValueFlow::Value val : argTok->values()) {
if (!val.isLifetimeValue())
continue;
val.errorPath.emplace_back(argTok, "Passed to '" + tok->str() + "'.");
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->next(), std::move(val), settings);
Fix 10467: FP mismatchingContainers with array of vectors (#3453)
2021-09-09 20:43:46 +02:00
forward = true;
}
Fix issue 9550: False positive: Same iterator is used with containers 'x' that are defined in different scopes (#2463)
2019-12-31 08:09:04 +01:00
// Check if lifetime is available to avoid adding the lifetime twice
Fix 10467: FP mismatchingContainers with array of vectors (#3453)
2021-09-09 20:43:46 +02:00
if (forward) {
valueFlowForwardLifetime(tok, tokenlist, errorLogger, settings);
Fix issue 9550: False positive: Same iterator is used with containers 'x' that are defined in different scopes (#2463)
2019-12-31 08:09:04 +01:00
break;
}
Use lifetime analysis for checking mismatching containers (#2456) * Use lifetimes to check for mismatching containers * Fix error messages * Format * Remove unused variables * Fix configuration and track iterators through algorithms * Fix iterator value types in qt config * Fix library issue with QStringList * Remove unused functions * Fix cppcheck errors
2019-12-25 09:32:50 +01:00
}
} else if (Token::Match(tok->tokAt(-2), "std :: ref|cref|tie|front_inserter|back_inserter")) {
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
for (const Token *argtok : getArguments(tok)) {
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
LifetimeStore{argtok, "Passed to '" + tok->str() + "'.", ValueFlow::Value::LifetimeKind::Object}.byRef(
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
tok->next(), tokenlist, errorLogger, settings);
}
Fix issue 9904: False positive: duplicateCondition when modifying variable in lambda (#2811)
2020-09-18 07:44:26 +02:00
} else if (Token::Match(tok->tokAt(-2), "std :: make_tuple|tuple_cat|make_pair|make_reverse_iterator|next|prev|move|bind")) {
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
for (const Token *argtok : getArguments(tok)) {
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
LifetimeStore{argtok, "Passed to '" + tok->str() + "'.", ValueFlow::Value::LifetimeKind::Object}.byVal(
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
tok->next(), tokenlist, errorLogger, settings);
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
Fix 7812: False negative: return pointer of local variable (#3583) * Fix 7812: False negative: return pointer of local variable * Format * Add test case for 3029 * Format
2021-11-28 15:25:21 +01:00
} else if (memtok && Token::Match(tok->astParent(), ". push_back|push_front|insert|push|assign") &&
astIsContainer(memtok)) {
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
std::vector<const Token *> args = getArguments(tok);
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const std::size_t n = args.size();
Fix FP with lifetime containers (#1865)
2019-06-02 10:14:48 +02:00
if (n > 1 && Token::typeStr(args[n - 2]) == Token::typeStr(args[n - 1]) &&
Fix FPs and crashes with byDerefCopy (#1503) * Fix FP when inserting a range into a container * Formatting * Fix crash
2018-12-02 14:31:31 +01:00
(((astIsIterator(args[n - 2]) && astIsIterator(args[n - 1])) ||
(astIsPointer(args[n - 2]) && astIsPointer(args[n - 1]))))) {
Fix 7812: False negative: return pointer of local variable (#3583) * Fix 7812: False negative: return pointer of local variable * Format * Add test case for 3029 * Format
2021-11-28 15:25:21 +01:00
LifetimeStore{
args.back(), "Added to container '" + memtok->str() + "'.", ValueFlow::Value::LifetimeKind::Object}
.byDerefCopy(memtok, tokenlist, errorLogger, settings);
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
} else if (!args.empty() && ValueFlow::isLifetimeBorrowed(args.back(), settings)) {
Fix 7812: False negative: return pointer of local variable (#3583) * Fix 7812: False negative: return pointer of local variable * Format * Add test case for 3029 * Format
2021-11-28 15:25:21 +01:00
LifetimeStore{
args.back(), "Added to container '" + memtok->str() + "'.", ValueFlow::Value::LifetimeKind::Object}
.byVal(memtok, tokenlist, errorLogger, settings);
Issue 6175: Check lifetime of a variables stored in containers and member variables Cppcheck will now warn for all cases here: ```cpp #include <vector> class CCluster {}; class MyClass { public: std::vector<CCluster*> m_cluster; void createCluster() { CCluster cl; CCluster* pcl=&cl; m_cluster.push_back(pcl); } void createCluster2() { CCluster cl; m_cluster.push_back(&cl); } CCluster* Cluster() { CCluster cl; CCluster* pcl=&cl; return pcl; } CCluster* Cluster2() { CCluster cl; return &cl; } }; ```
2018-11-21 08:43:57 +01:00
}
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
} else if (tok->function()) {
const Function *f = tok->function();
Fix 10975: false negative: dangling reference in class (#4024) * Fix 10975: false negative: dangling reference in class * Format
2022-04-14 18:59:12 +02:00
if (f->isConstructor()) {
Fix 11028: False positive: invalidContainer (#4083) * Fix 11028: False positive: invalidContainer * Format
2022-05-05 06:54:36 +02:00
valueFlowLifetimeUserConstructor(tok->next(), f, tok->str(), getArguments(tok), tokenlist, errorLogger, settings);
Fix 10975: false negative: dangling reference in class (#4024) * Fix 10975: false negative: dangling reference in class * Format
2022-04-14 18:59:12 +02:00
return;
}
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
if (Function::returnsReference(f))
return;
Fix issue 9587: False positive: parameter can be declared with const (#2667)
2020-05-31 10:10:10 +02:00
std::vector<const Token*> returns = Function::findReturns(f);
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
const bool inconclusive = returns.size() > 1;
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
bool update = false;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
for (const Token* returnTok : returns) {
if (returnTok == tok)
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
continue;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Variable *returnVar = ValueFlow::getLifetimeVariable(returnTok);
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (returnVar && returnVar->isArgument() && (returnVar->isConst() || !isVariableChanged(returnVar, settings, tokenlist.isCPP()))) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
LifetimeStore ls = LifetimeStore::fromFunctionArg(f, tok, returnVar, tokenlist, settings, errorLogger);
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
ls.inconclusive = inconclusive;
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
ls.forward = false;
update |= ls.byVal(tok->next(), tokenlist, errorLogger, settings);
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
}
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
for (const ValueFlow::Value &v : returnTok->values()) {
if (!v.isLifetimeValue())
continue;
if (!v.tokvalue)
continue;
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
if (memtok &&
(contains({ValueFlow::Value::LifetimeScope::ThisPointer, ValueFlow::Value::LifetimeScope::ThisValue},
v.lifetimeScope) ||
exprDependsOnThis(v.tokvalue))) {
Fix 7812: False negative: return pointer of local variable (#3583) * Fix 7812: False negative: return pointer of local variable * Format * Add test case for 3029 * Format
2021-11-28 15:25:21 +01:00
LifetimeStore ls = LifetimeStore{memtok,
"Passed to member function '" + tok->expressionString() + "'.",
ValueFlow::Value::LifetimeKind::Object};
ls.inconclusive = inconclusive;
ls.forward = false;
ls.errorPath = v.errorPath;
ls.errorPath.emplace_front(returnTok, "Return " + lifetimeType(returnTok, &v) + ".");
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
int thisIndirect = v.lifetimeScope == ValueFlow::Value::LifetimeScope::ThisValue ? 0 : 1;
if (derefShared(memtok->astParent()))
thisIndirect--;
if (thisIndirect == -1)
update |= ls.byDerefCopy(tok->next(), tokenlist, errorLogger, settings);
else if (thisIndirect == 0)
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
update |= ls.byVal(tok->next(), tokenlist, errorLogger, settings);
Fix 11468: false positive danglingTempReference warning (#4679)
2023-01-07 23:44:22 +01:00
else if (thisIndirect == 1)
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
update |= ls.byRef(tok->next(), tokenlist, errorLogger, settings);
Fix 7812: False negative: return pointer of local variable (#3583) * Fix 7812: False negative: return pointer of local variable * Format * Add test case for 3029 * Format
2021-11-28 15:25:21 +01:00
continue;
}
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
const Variable *var = v.tokvalue->variable();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
LifetimeStore ls = LifetimeStore::fromFunctionArg(f, tok, var, tokenlist, settings, errorLogger);
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
if (!ls.argtok)
continue;
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
ls.forward = false;
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
ls.inconclusive = inconclusive;
ls.errorPath = v.errorPath;
ls.errorPath.emplace_front(returnTok, "Return " + lifetimeType(returnTok, &v) + ".");
Fix issue 9880: False positive: danglingLifetime (#2810)
2020-09-17 07:23:38 +02:00
if (!v.isArgumentLifetimeValue() && (var->isReference() || var->isRValueReference())) {
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
update |= ls.byRef(tok->next(), tokenlist, errorLogger, settings);
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
} else if (v.isArgumentLifetimeValue()) {
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
update |= ls.byVal(tok->next(), tokenlist, errorLogger, settings);
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
}
}
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
}
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
if (update)
valueFlowForwardLifetime(tok->next(), tokenlist, errorLogger, settings);
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
} else if (tok->valueType()) {
// TODO: Propagate lifetimes with library functions
if (settings->library.getFunction(tok->previous()))
return;
// Assume constructing the valueType
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
valueFlowLifetimeConstructor(tok->next(), tokenlist, errorLogger, settings);
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
valueFlowForwardLifetime(tok->next(), tokenlist, errorLogger, settings);
Fix #11753 FN: invalidLifetime (#5128) * Fix #11753 FN: invalidLifetime * Format * Format * Only forward for local variables * Format * Format
2023-06-08 07:45:59 +02:00
} else {
const std::string& retVal = settings->library.returnValue(tok);
utils.h: added `startsWith()` and started using it (#5381) This makes the code much more readable. It also makes it less prone to errors because we do not need to specify the length of the string to match and the returnvalue is clear. The code with the bad returnvalue check was never executed and I added a test to show that.
2023-09-08 19:30:25 +02:00
if (startsWith(retVal, "arg")) {
Fix #11753 FN: invalidLifetime (#5128) * Fix #11753 FN: invalidLifetime * Format * Format * Only forward for local variables * Format * Format
2023-06-08 07:45:59 +02:00
std::size_t iArg{};
try {
iArg = strToInt<std::size_t>(retVal.substr(3));
} catch (...) {
return;
}
std::vector<const Token*> args = getArguments(tok);
if (iArg > 0 && iArg <= args.size()) {
const Token* varTok = args[iArg - 1];
if (varTok->variable() && varTok->variable()->isLocal())
LifetimeStore{ varTok, "Passed to '" + tok->str() + "'.", ValueFlow::Value::LifetimeKind::Address }.byRef(
tok->next(), tokenlist, errorLogger, settings);
}
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
}
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
static bool isScope(const Token* tok)
{
if (!tok)
return false;
if (!Token::simpleMatch(tok, "{"))
return false;
const Scope* scope = tok->scope();
if (!scope)
return false;
if (!scope->bodyStart)
return false;
return scope->bodyStart == tok;
}
static const Function* findConstructor(const Scope* scope, const Token* tok, const std::vector<const Token*>& args)
{
if (!tok)
return nullptr;
const Function* f = tok->function();
if (!f && tok->astOperand1())
f = tok->astOperand1()->function();
// Search for a constructor
if (!f || !f->isConstructor()) {
f = nullptr;
std::vector<const Function*> candidates;
for (const Function& function : scope->functionList) {
Fix #11091 FP: Using object that is a temporary (#4754)
2023-02-06 22:04:27 +01:00
if (function.minArgCount() > args.size())
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
continue;
if (!function.isConstructor())
continue;
candidates.push_back(&function);
}
// TODO: Narrow the candidates
if (candidates.size() == 1)
f = candidates.front();
}
if (!f)
return nullptr;
return f;
}
Fix 11028: False positive: invalidContainer (#4083) * Fix 11028: False positive: invalidContainer * Format
2022-05-05 06:54:36 +02:00
static void valueFlowLifetimeClassConstructor(Token* tok,
const Type* t,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Fix 11028: False positive: invalidContainer (#4083) * Fix 11028: False positive: invalidContainer * Format
2022-05-05 06:54:36 +02:00
ErrorLogger* errorLogger,
const Settings* settings)
Fix issue 8996: False positive duplicateCondition This fixes issue 8996 by improving the alias checking by using lifetime analysis. It also extends the lifetime checker to handle constructors and initializer lists for containers and arrays.
2019-03-19 06:25:10 +01:00
{
if (!Token::Match(tok, "(|{"))
return;
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (isScope(tok))
return;
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
if (!t) {
if (tok->valueType() && tok->valueType()->type != ValueType::RECORD)
return;
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (tok->str() != "{" && !Token::Match(tok->previous(), "%var% (") && !isVariableDecl(tok->previous()))
return;
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
// If the type is unknown then assume it captures by value in the
// constructor, but make each lifetime inconclusive
std::vector<const Token*> args = getArguments(tok);
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
LifetimeStore::forEach(args,
"Passed to initializer list.",
ValueFlow::Value::LifetimeKind::SubObject,
[&](LifetimeStore& ls) {
astyle formatting [ci skip]
2020-10-03 11:02:11 +02:00
ls.inconclusive = true;
ls.byVal(tok, tokenlist, errorLogger, settings);
});
Fix issue 9711: FP knownConditionTrueFalse for variable modified via pointer (#2813)
2020-09-20 14:27:09 +02:00
return;
}
Fix issue 9311: False positive duplicateCondition "same if condition" with pointer inside array of struct (#2166) * Check for typeOf through an array * Handle array constructors * Format * Fix compile error on gcc 4.8
2019-09-10 19:41:35 +02:00
const Scope* scope = t->classScope;
if (!scope)
return;
Fix 11298: FP danglingTemporaryLifetime when constructing from const char* (#4479) * Fix 11298: FP danglingTemporaryLifetime when constructing from const char* * Format
2022-09-18 08:30:58 +02:00
// Aggregate constructor
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (t->derivedFrom.empty() && (t->isClassType() || t->isStructType())) {
Fix issue 9311: False positive duplicateCondition "same if condition" with pointer inside array of struct (#2166) * Check for typeOf through an array * Handle array constructors * Format * Fix compile error on gcc 4.8
2019-09-10 19:41:35 +02:00
std::vector<const Token*> args = getArguments(tok);
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (scope->numConstructors == 0) {
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
auto it = scope->varlist.cbegin();
Fix 11666: FP returnDanglingLifetime with specializations and ptr to member (#5003) * Fix 11666: FP returnDanglingLifetime with specializations and ptr to member * Format
2023-04-23 14:38:28 +02:00
LifetimeStore::forEach(
args,
"Passed to constructor of '" + t->name() + "'.",
ValueFlow::Value::LifetimeKind::SubObject,
[&](const LifetimeStore& ls) {
// Skip static variable
it = std::find_if(it, scope->varlist.cend(), [](const Variable& var) {
return !var.isStatic();
});
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (it == scope->varlist.cend())
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
return;
const Variable& var = *it;
if (var.isReference() || var.isRValueReference()) {
ls.byRef(tok, tokenlist, errorLogger, settings);
Fix 11980: False positive returnDanglingLifetime returning pointer to stack array as std::string (by way of struct return value constructor) (#5445)
2023-09-13 21:26:37 +02:00
} else if (ValueFlow::isLifetimeBorrowed(ls.argtok, settings)) {
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
ls.byVal(tok, tokenlist, errorLogger, settings);
}
it++;
});
} else {
const Function* constructor = findConstructor(scope, tok, args);
Fix 11028: False positive: invalidContainer (#4083) * Fix 11028: False positive: invalidContainer * Format
2022-05-05 06:54:36 +02:00
valueFlowLifetimeUserConstructor(tok, constructor, t->name(), args, tokenlist, errorLogger, settings);
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
}
Fix issue 9311: False positive duplicateCondition "same if condition" with pointer inside array of struct (#2166) * Check for typeOf through an array * Handle array constructors * Format * Fix compile error on gcc 4.8
2019-09-10 19:41:35 +02:00
}
}
Fix issue 9437: Dont assume init list constructor for strings (#2366) * Fix issue 9437: Dont assume init list constuctor for strings * Update the schema * Add documentation
2019-11-17 03:22:04 +01:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowLifetimeConstructor(Token* tok, TokenList& tokenlist, ErrorLogger* errorLogger, const Settings* settings)
Fix issue 9311: False positive duplicateCondition "same if condition" with pointer inside array of struct (#2166) * Check for typeOf through an array * Handle array constructors * Format * Fix compile error on gcc 4.8
2019-09-10 19:41:35 +02:00
{
if (!Token::Match(tok, "(|{"))
return;
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (isScope(tok))
return;
Fix 11028: False positive: invalidContainer (#4083) * Fix 11028: False positive: invalidContainer * Format
2022-05-05 06:54:36 +02:00
std::vector<ValueType> vts;
if (tok->valueType()) {
vts = {*tok->valueType()};
} else if (Token::Match(tok->previous(), "%var% {|(") && isVariableDecl(tok->previous()) &&
tok->previous()->valueType()) {
vts = {*tok->previous()->valueType()};
} else if (Token::simpleMatch(tok, "{") && !Token::Match(tok->previous(), "%name%")) {
vts = getParentValueTypes(tok, settings);
}
for (const ValueType& vt : vts) {
Fix 11057: FP danglingTemporaryLifetime with reference member (#4103) * Fix 11057: FP danglingTemporaryLifetime with reference member * Add test * Format * Use ast for number of arguments * Get number of arguments using ast * Skip aggregate constructor when there are too many arguments * Format
2022-05-13 06:51:07 +02:00
if (vt.pointer > 0) {
std::vector<const Token*> args = getArguments(tok);
LifetimeStore::forEach(args,
"Passed to initializer list.",
ValueFlow::Value::LifetimeKind::SubObject,
[&](const LifetimeStore& ls) {
ls.byVal(tok, tokenlist, errorLogger, settings);
});
} else if (vt.container && vt.type == ValueType::CONTAINER) {
Fix 11028: False positive: invalidContainer (#4083) * Fix 11028: False positive: invalidContainer * Format
2022-05-05 06:54:36 +02:00
std::vector<const Token*> args = getArguments(tok);
if (args.size() == 1 && vt.container->view && astIsContainerOwned(args.front())) {
LifetimeStore{args.front(), "Passed to container view.", ValueFlow::Value::LifetimeKind::SubObject}
.byRef(tok, tokenlist, errorLogger, settings);
} else if (args.size() == 2 && astIsIterator(args[0]) && astIsIterator(args[1])) {
LifetimeStore::forEach(
args,
"Passed to initializer list.",
ValueFlow::Value::LifetimeKind::SubObject,
[&](const LifetimeStore& ls) {
ls.byDerefCopy(tok, tokenlist, errorLogger, settings);
});
} else if (vt.container->hasInitializerListConstructor) {
LifetimeStore::forEach(args,
"Passed to initializer list.",
ValueFlow::Value::LifetimeKind::SubObject,
[&](const LifetimeStore& ls) {
ls.byVal(tok, tokenlist, errorLogger, settings);
});
}
Fix issue 9608: False Positive: returnDanglingLifetime with braced-init-list (#2583)
2020-04-02 10:17:58 +02:00
} else {
Fix 11057: FP danglingTemporaryLifetime with reference member (#4103) * Fix 11057: FP danglingTemporaryLifetime with reference member * Add test * Format * Use ast for number of arguments * Get number of arguments using ast * Skip aggregate constructor when there are too many arguments * Format
2022-05-13 06:51:07 +02:00
const Type* t = nullptr;
if (vt.typeScope && vt.typeScope->definedType)
t = vt.typeScope->definedType;
else
t = Token::typeOf(tok->previous());
valueFlowLifetimeClassConstructor(tok, t, tokenlist, errorLogger, settings);
Fix issue 8996: False positive duplicateCondition This fixes issue 8996 by improving the alias checking by using lifetime analysis. It also extends the lifetime checker to handle constructors and initializer lists for containers and arrays.
2019-03-19 06:25:10 +01:00
}
}
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
struct Lambda {
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
explicit Lambda(const Token* tok)
{
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
if (!Token::simpleMatch(tok, "[") || !tok->link())
return;
capture = tok;
if (Token::simpleMatch(capture->link(), "] (")) {
arguments = capture->link()->next();
}
const Token * afterArguments = arguments ? arguments->link()->next() : capture->link()->next();
if (afterArguments && afterArguments->originalName() == "->") {
returnTok = afterArguments->next();
bodyTok = Token::findsimplematch(returnTok, "{");
} else if (Token::simpleMatch(afterArguments, "{")) {
bodyTok = afterArguments;
}
astyle formatting
2020-09-05 08:00:51 +02:00
for (const Token* c:getCaptures()) {
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
if (Token::Match(c, "this !!.")) {
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
explicitCaptures[c->variable()] = std::make_pair(c, LifetimeCapture::ByReference);
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
} else if (Token::simpleMatch(c, "* this")) {
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
explicitCaptures[c->next()->variable()] = std::make_pair(c->next(), LifetimeCapture::ByValue);
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
} else if (c->variable()) {
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
explicitCaptures[c->variable()] = std::make_pair(c, LifetimeCapture::ByValue);
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
} else if (c->isUnaryOp("&") && Token::Match(c->astOperand1(), "%var%")) {
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
explicitCaptures[c->astOperand1()->variable()] =
std::make_pair(c->astOperand1(), LifetimeCapture::ByReference);
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
} else {
const std::string& s = c->expressionString();
if (s == "=")
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
implicitCapture = LifetimeCapture::ByValue;
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
else if (s == "&")
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
implicitCapture = LifetimeCapture::ByReference;
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
}
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
const Token* capture{};
const Token* arguments{};
const Token* returnTok{};
const Token* bodyTok{};
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
std::unordered_map<const Variable*, std::pair<const Token*, LifetimeCapture>> explicitCaptures;
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
LifetimeCapture implicitCapture = LifetimeCapture::Undefined;
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
fixed some clang-tidy warnings (#4435)
2022-09-08 20:01:41 +02:00
std::vector<const Token*> getCaptures() const {
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
return getArguments(capture);
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
bool isLambda() const {
return capture && bodyTok;
}
};
ValueFlow: Remove unused argument (#2442)
2019-12-10 17:48:27 +01:00
static bool isDecayedPointer(const Token *tok)
Fix issue 8899: False positive returnDanglingLifetime when returning by value This fixes the FP from: ```cpp #include <string> class MyString { public: MyString(char* source) { length = strlen( source ); buffer = new char[length+1]; if( buffer ) { strcpy( buffer, source ); } } char* buffer; int length; }; MyString Foo() { char arr[20]; sprintf(arr, "hello world"); return arr; } void main() { MyString str = Foo(); printf(str.buffer); } ```
2018-12-15 17:58:45 +01:00
{
if (!tok)
return false;
Fix crash in addons/test/test-misra.py (#2652)
2020-05-20 16:02:13 +02:00
if (!tok->astParent())
return false;
Fix issue 8899: False positive returnDanglingLifetime when returning by value This fixes the FP from: ```cpp #include <string> class MyString { public: MyString(char* source) { length = strlen( source ); buffer = new char[length+1]; if( buffer ) { strcpy( buffer, source ); } } char* buffer; int length; }; MyString Foo() { char arr[20]; sprintf(arr, "hello world"); return arr; } void main() { MyString str = Foo(); printf(str.buffer); } ```
2018-12-15 17:58:45 +01:00
if (astIsPointer(tok->astParent()) && !Token::simpleMatch(tok->astParent(), "return"))
return true;
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
if (tok->astParent()->isConstOp())
Fix issue 1777: Undefined Behavior: Comparing pointers to different objects This uses the lifetime analysis to check when comparing pointer that point to different objects: ```cpp int main(void) { int foo[10]; int bar[10]; int diff; if(foo > bar) // Undefined Behavior { diff = 1; } return 0; } ```
2019-02-23 08:32:08 +01:00
return true;
Fix issue 8899: False positive returnDanglingLifetime when returning by value This fixes the FP from: ```cpp #include <string> class MyString { public: MyString(char* source) { length = strlen( source ); buffer = new char[length+1]; if( buffer ) { strcpy( buffer, source ); } } char* buffer; int length; }; MyString Foo() { char arr[20]; sprintf(arr, "hello world"); return arr; } void main() { MyString str = Foo(); printf(str.buffer); } ```
2018-12-15 17:58:45 +01:00
if (!Token::simpleMatch(tok->astParent(), "return"))
return false;
Move necessary code into valuetype (#2265) * Fix parsing of smart pointers * Improve deduction of return type * Valuetype computation for decayed pointers
2019-10-12 11:40:02 +02:00
return astIsPointer(tok->astParent());
Fix issue 8899: False positive returnDanglingLifetime when returning by value This fixes the FP from: ```cpp #include <string> class MyString { public: MyString(char* source) { length = strlen( source ); buffer = new char[length+1]; if( buffer ) { strcpy( buffer, source ); } } char* buffer; int length; }; MyString Foo() { char arr[20]; sprintf(arr, "hello world"); return arr; } void main() { MyString str = Foo(); printf(str.buffer); } ```
2018-12-15 17:58:45 +01:00
}
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
static bool isConvertedToView(const Token* tok, const Settings* settings)
{
std::vector<ValueType> vtParents = getParentValueTypes(tok, settings);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
return std::any_of(vtParents.cbegin(), vtParents.cend(), [&](const ValueType& vt) {
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
if (!vt.container)
return false;
return vt.container->view;
});
}
Fix FP#11508 (#4774) * Add tests to cover the issue * Set lifetime of pointer to data passed as view to SubFunction * Move isContainerOfPointers to separate function * Revert "Set lifetime of pointer to data passed as view to SubFunction" This reverts commit 30dafe23e40354606776d2573653608025cae754. * Skip propagating lifetime of iterators/pointers for views * Add indents to test cases * Skip all non-local values in container view lifetime
2023-02-18 17:38:51 +01:00
static bool isContainerOfPointers(const Token* tok, const Settings* settings)
{
if (!tok)
{
return true;
}
fixes #11104 (avoid C++-only parsing when processing C code in parsedecl()) / also avoid remaining `Library::detect*()` calls (#5346)
2023-08-18 22:48:24 +02:00
ValueType vt = ValueType::parseDecl(tok, *settings);
Fix FP#11508 (#4774) * Add tests to cover the issue * Set lifetime of pointer to data passed as view to SubFunction * Move isContainerOfPointers to separate function * Revert "Set lifetime of pointer to data passed as view to SubFunction" This reverts commit 30dafe23e40354606776d2573653608025cae754. * Skip propagating lifetime of iterators/pointers for views * Add indents to test cases * Skip all non-local values in container view lifetime
2023-02-18 17:38:51 +01:00
return vt.pointer > 0;
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowLifetime(TokenList &tokenlist, ErrorLogger *errorLogger, const Settings *settings)
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
Lifetime: Support analysis with functions that do not return a reference (#1632) * Initial support for function return * Add test case * Add support for reference parameters * Format
2019-01-29 09:47:52 +01:00
if (!tok->scope())
continue;
if (tok->scope()->type == Scope::eGlobal)
continue;
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Lambda lam(tok);
Typos found by running "codespell" (#3907) Co-authored-by: Armin Müller <mueller.armin@foestergroup.de>
2022-03-16 15:28:44 +01:00
// Lambdas
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
if (lam.isLambda()) {
const Scope * bodyScope = lam.bodyTok->scope();
std::set<const Scope *> scopes;
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
// Avoid capturing a variable twice
std::set<nonneg int> varids;
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
bool capturedThis = false;
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
auto isImplicitCapturingVariable = [&](const Token *varTok) {
Improvement to lifetime tracking of addressof and derefencing This will now warn for cases like this: ```cpp auto& f() { std::vector<int> x; return x[0]; } ``` It also improves the handling of address of operator, so it can now warn across some function calls, like this: ```cpp int& f(int& a) { return a; } int* hello() { int x = 0; return &f(x); } ```
2019-02-22 06:38:56 +01:00
const Variable *var = varTok->variable();
if (!var)
return false;
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
if (varids.count(var->declarationId()) > 0)
return false;
Fix issue 9201: FP: returnDanglingLifetime on pointer to variable of static struct (#2303) * Fix issue 9201: FP: returnDanglingLifetime on pointer to variable of static struct * Fix capture of non-local variables in lambdas
2019-11-05 07:10:32 +01:00
if (!var->isLocal() && !var->isArgument())
return false;
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
const Scope *scope = var->scope();
Fix 8872: Crash in LifetimeStore when there is no scope for variable This fixes crash in: ```cpp struct edit_line_paste_over { void operator()(agi::Context *c) override { paste_lines(c, true, [&](AssDialogue *new_line) -> AssDialogue * { AssDialogue *ret = paste_over(c->parent, pasteOverOptions, new_line, static_cast<AssDialogue*>(&*pos)); return ret; }); } }; ```
2018-12-01 19:11:26 +01:00
if (!scope)
return false;
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
if (scopes.count(scope) > 0)
return false;
if (scope->isNestedIn(bodyScope))
return false;
scopes.insert(scope);
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
varids.insert(var->declarationId());
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
return true;
};
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
bool update = false;
mitigated and enabled more clang-tidy warnings (#4470) * fixed some `performance-inefficient-string-concatenation` clang-tidy warnings * fixed and enabled `modernize-replace-random-shuffle` clang-tidy warning * fixed and enabled `bugprone-suspicious-string-compare` clang-tidy warning * mitigated and enabled `readability-non-const-parameter` clang-tidy warnings * clang-tidy.md: documented some disabled checks * mitigated and enabled `performance-unnecessary-value-param` clang-tidy warnings
2022-09-16 18:58:59 +02:00
auto captureVariable = [&](const Token* tok2, LifetimeCapture c, const std::function<bool(const Token*)> &pred) {
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
if (varids.count(tok->varId()) > 0)
return;
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (c == LifetimeCapture::ByReference) {
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
LifetimeStore ls{
tok2, "Lambda captures variable by reference here.", ValueFlow::Value::LifetimeKind::Lambda};
ls.forward = false;
update |= ls.byRef(tok, tokenlist, errorLogger, settings, pred);
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
} else if (c == LifetimeCapture::ByValue) {
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
LifetimeStore ls{
tok2, "Lambda captures variable by value here.", ValueFlow::Value::LifetimeKind::Lambda};
ls.forward = false;
update |= ls.byVal(tok, tokenlist, errorLogger, settings, pred);
Fix 10425: False positive: returnDanglingLifetime when taking address of captured variable (#3415)
2021-08-25 04:06:03 +02:00
pred(tok2);
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
};
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
auto captureThisVariable = [&](const Token* tok2, LifetimeCapture c) {
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
ValueFlow::Value value;
value.valueType = ValueFlow::Value::ValueType::LIFETIME;
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
if (c == LifetimeCapture::ByReference)
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
value.lifetimeScope = ValueFlow::Value::LifetimeScope::ThisPointer;
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
else if (c == LifetimeCapture::ByValue)
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
value.lifetimeScope = ValueFlow::Value::LifetimeScope::ThisValue;
value.tokvalue = tok2;
valueflow.cpp: avoid some copies related to `ErrorPath` (#4160)
2022-07-20 10:57:49 +02:00
value.errorPath.emplace_back(tok2, "Lambda captures the 'this' variable here.");
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
value.lifetimeKind = ValueFlow::Value::LifetimeKind::Lambda;
capturedThis = true;
// Don't add the value a second time
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::find(tok->values().cbegin(), tok->values().cend(), value) != tok->values().cend())
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
return;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
update |= true;
};
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
// Handle explicit capture
astyle formatting
2020-09-05 08:00:51 +02:00
for (const auto& p:lam.explicitCaptures) {
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
const Variable* var = p.first;
const Token* tok2 = p.second.first;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const LifetimeCapture c = p.second.second;
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
if (Token::Match(tok2, "this !!.")) {
captureThisVariable(tok2, c);
} else if (var) {
captureVariable(tok2, c, [](const Token*) {
return true;
});
varids.insert(var->declarationId());
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
auto isImplicitCapturingThis = [&](const Token* tok2) {
if (capturedThis)
return false;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
if (Token::simpleMatch(tok2, "this"))
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
return true;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
if (tok2->variable()) {
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
if (Token::simpleMatch(tok2->previous(), "."))
return false;
const Variable* var = tok2->variable();
if (var->isLocal())
return false;
if (var->isArgument())
return false;
return exprDependsOnThis(tok2);
}
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
if (Token::simpleMatch(tok2, "("))
return exprDependsOnThis(tok2);
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
return false;
};
Track lifetime for lambdas with explicit capture (#2776)
2020-09-05 07:56:01 +02:00
for (const Token * tok2 = lam.bodyTok; tok2 != lam.bodyTok->link(); tok2 = tok2->next()) {
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
if (isImplicitCapturingThis(tok2)) {
Fix 10702: FP knownConditionTrueFalse - Member variable modified (#3857) * Fix 10702: FP knownConditionTrueFalse - Member variable modified * Format * Make parameter const * Fix FP * Fix FP * Update * Format
2022-02-28 18:54:55 +01:00
captureThisVariable(tok2, LifetimeCapture::ByReference);
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
} else if (tok2->variable()) {
captureVariable(tok2, lam.implicitCapture, isImplicitCapturingVariable);
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
Fix issue 9930: valueFlowLifetime hang
2020-10-03 11:01:53 +02:00
if (update)
valueFlowForwardLifetime(tok, tokenlist, errorLogger, settings);
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
// address of
else if (tok->isUnaryOp("&")) {
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
for (const ValueFlow::LifetimeToken& lt : ValueFlow::getLifetimeTokens(tok->astOperand1())) {
Refactorization: Improved internal implementation of severity and certainty levels Backported from LCppC.
2021-02-24 22:00:06 +01:00
if (!settings->certainty.isEnabled(Certainty::inconclusive) && lt.inconclusive)
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
continue;
ErrorPath errorPath = lt.errorPath;
errorPath.emplace_back(tok, "Address of variable taken here.");
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
ValueFlow::Value value;
value.valueType = ValueFlow::Value::ValueType::LIFETIME;
value.lifetimeScope = ValueFlow::Value::LifetimeScope::Local;
value.tokvalue = lt.token;
value.errorPath = std::move(errorPath);
Fix issue 9742: FP iterators3 for address of reference to vector in struct (#2668)
2020-06-01 08:53:08 +02:00
if (lt.addressOf || astIsPointer(lt.token) || !Token::Match(lt.token->astParent(), ".|["))
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
value.lifetimeKind = ValueFlow::Value::LifetimeKind::Address;
value.setInconclusive(lt.inconclusive);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Track lifetime across multiple returns This will now warn when doing something like this: ```cpp template <class T, class K, class V> const V& get_default(const T& t, const K& k, const V& v) { auto it = t.find(k); if (it == t.end()) return v; return it->second; } const int& bar(const std::unordered_map<int, int>& m, int k) { auto x = 0; return get_default(m, k, x); } ``` The lifetime warning is considered inconclusive in this case. I also updated valueflow to no tinject inconclusive values unless `--inconclusive` flag is passed. This creates some false negatives because library functions are not configured to not modify their input parameters, and there are some checks that do not check if the value is inconclusive or not.
2019-09-11 19:25:09 +02:00
valueFlowForwardLifetime(tok, tokenlist, errorLogger, settings);
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
// Converting to container view
else if (astIsContainerOwned(tok) && isConvertedToView(tok, settings)) {
LifetimeStore ls =
LifetimeStore{tok, "Converted to container view", ValueFlow::Value::LifetimeKind::SubObject};
ls.byRef(tok, tokenlist, errorLogger, settings);
valueFlowForwardLifetime(tok, tokenlist, errorLogger, settings);
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
// container lifetimes
Use library to track container lifetimes
2019-08-15 21:14:27 +02:00
else if (astIsContainer(tok)) {
Token * parent = astParentSkipParens(tok);
Fix 11630 and 11620 lifetime issues (#4913)
2023-03-24 13:29:43 +01:00
if (!parent)
continue;
if (!Token::Match(parent, ". %name% (") && !Token::Match(parent->previous(), "%name% ("))
continue;
// Skip if its a free function that doesnt yield an iterator to the container
if (Token::Match(parent->previous(), "%name% (") &&
!contains({Library::Container::Yield::START_ITERATOR, Library::Container::Yield::END_ITERATOR},
astFunctionYield(parent->previous(), settings)))
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
continue;
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
ValueFlow::Value master;
master.valueType = ValueFlow::Value::ValueType::LIFETIME;
master.lifetimeScope = ValueFlow::Value::LifetimeScope::Local;
if (astIsIterator(parent->tokAt(2))) {
master.errorPath.emplace_back(parent->tokAt(2), "Iterator to container is created here.");
master.lifetimeKind = ValueFlow::Value::LifetimeKind::Iterator;
Fix 11609: False positive: Returning iterator to local container 'k' that will be invalid when returning where 'k' is an iterator. (#4907)
2023-03-21 23:18:01 +01:00
} else if (astIsIterator(parent) && Token::Match(parent->previous(), "%name% (") &&
contains({Library::Container::Yield::START_ITERATOR, Library::Container::Yield::END_ITERATOR},
astFunctionYield(parent->previous(), settings))) {
Add std::*begin and std::*end cfg (#4796)
2023-03-09 17:06:53 +01:00
master.errorPath.emplace_back(parent, "Iterator to container is created here.");
master.lifetimeKind = ValueFlow::Value::LifetimeKind::Iterator;
Fix 11609: False positive: Returning iterator to local container 'k' that will be invalid when returning where 'k' is an iterator. (#4907)
2023-03-21 23:18:01 +01:00
} else if ((astIsPointer(parent->tokAt(2)) &&
!isContainerOfPointers(tok->valueType()->containerTypeToken, settings)) ||
Token::Match(parent->next(), "data|c_str")) {
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
master.errorPath.emplace_back(parent->tokAt(2), "Pointer to container is created here.");
master.lifetimeKind = ValueFlow::Value::LifetimeKind::Object;
} else {
Use library to track container lifetimes
2019-08-15 21:14:27 +02:00
continue;
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Refactoring: use init list, redundant init (#5552)
2023-10-15 14:51:12 +02:00
std::vector<const Token*> toks;
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
if (tok->isUnaryOp("*") || parent->originalName() == "->") {
for (const ValueFlow::Value& v : tok->values()) {
Fix 10683: FP danglingTemporaryLifetime with pointer to vector (#3685)
2022-01-10 07:34:26 +01:00
if (!v.isLocalLifetimeValue())
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
continue;
Fix 10683: FP danglingTemporaryLifetime with pointer to vector (#3685)
2022-01-10 07:34:26 +01:00
if (v.lifetimeKind != ValueFlow::Value::LifetimeKind::Address)
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
continue;
if (!v.tokvalue)
continue;
toks.push_back(v.tokvalue);
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
}
} else if (astIsContainerView(tok)) {
for (const ValueFlow::Value& v : tok->values()) {
Fix FP#11508 (#4774) * Add tests to cover the issue * Set lifetime of pointer to data passed as view to SubFunction * Move isContainerOfPointers to separate function * Revert "Set lifetime of pointer to data passed as view to SubFunction" This reverts commit 30dafe23e40354606776d2573653608025cae754. * Skip propagating lifetime of iterators/pointers for views * Add indents to test cases * Skip all non-local values in container view lifetime
2023-02-18 17:38:51 +01:00
if (!v.isLocalLifetimeValue())
Add support for string_view (#3480)
2021-10-05 08:28:19 +02:00
continue;
if (!v.tokvalue)
continue;
if (!astIsContainerOwned(v.tokvalue))
continue;
toks.push_back(v.tokvalue);
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
}
} else {
toks = {tok};
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
for (const Token* tok2 : toks) {
for (const ReferenceToken& rt : followAllReferences(tok2, false)) {
ValueFlow::Value value = master;
value.tokvalue = rt.token;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
value.errorPath.insert(value.errorPath.begin(), rt.errors.cbegin(), rt.errors.cend());
Add std::*begin and std::*end cfg (#4796)
2023-03-09 17:06:53 +01:00
if (Token::simpleMatch(parent, "("))
setTokenValue(parent, value, settings);
else
setTokenValue(parent->tokAt(2), value, settings);
Fix 10450: regression, FP : Iterator 'iter' from different container 'l' are used together (#3436)
2021-09-05 07:35:33 +02:00
if (!rt.token->variable()) {
LifetimeStore ls = LifetimeStore{
rt.token, master.errorPath.back().second, ValueFlow::Value::LifetimeKind::Object};
ls.byRef(parent->tokAt(2), tokenlist, errorLogger, settings);
}
}
}
valueFlowForwardLifetime(parent->tokAt(2), tokenlist, errorLogger, settings);
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
Fix issue 8996: False positive duplicateCondition This fixes issue 8996 by improving the alias checking by using lifetime analysis. It also extends the lifetime checker to handle constructors and initializer lists for containers and arrays.
2019-03-19 06:25:10 +01:00
// Check constructors
Fix 11057: FP danglingTemporaryLifetime with reference member (#4103) * Fix 11057: FP danglingTemporaryLifetime with reference member * Add test * Format * Use ast for number of arguments * Get number of arguments using ast * Skip aggregate constructor when there are too many arguments * Format
2022-05-13 06:51:07 +02:00
else if (Token::Match(tok, "=|return|%name%|{|,|> {") && !isScope(tok->next())) {
Fix issue 8996: False positive duplicateCondition This fixes issue 8996 by improving the alias checking by using lifetime analysis. It also extends the lifetime checker to handle constructors and initializer lists for containers and arrays.
2019-03-19 06:25:10 +01:00
valueFlowLifetimeConstructor(tok->next(), tokenlist, errorLogger, settings);
}
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
// Check function calls
Track lifetimes of lambdas that capture the 'this' variable (#3594)
2021-12-04 17:00:55 +01:00
else if (Token::Match(tok, "%name% (") && !Token::simpleMatch(tok->next()->link(), ") {")) {
Track variable lifetime through function calls (#1481)
2018-11-16 06:12:28 +01:00
valueFlowLifetimeFunction(tok, tokenlist, errorLogger, settings);
}
Find dangling pointers to unique_ptr (#3486)
2021-10-06 08:46:25 +02:00
// Unique pointer lifetimes
Fix 10592: False positive: returnDanglingLifetime (#3557)
2021-11-11 08:00:05 +01:00
else if (astIsUniqueSmartPointer(tok) && astIsLHS(tok) && Token::simpleMatch(tok->astParent(), ". get ( )")) {
Find dangling pointers to unique_ptr (#3486)
2021-10-06 08:46:25 +02:00
Token* ptok = tok->astParent()->tokAt(2);
ErrorPath errorPath = {{ptok, "Raw pointer to smart pointer created here."}};
ValueFlow::Value value;
value.valueType = ValueFlow::Value::ValueType::LIFETIME;
value.lifetimeScope = ValueFlow::Value::LifetimeScope::Local;
value.lifetimeKind = ValueFlow::Value::LifetimeKind::SubObject;
value.tokvalue = tok;
value.errorPath = errorPath;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(ptok, std::move(value), settings);
Find dangling pointers to unique_ptr (#3486)
2021-10-06 08:46:25 +02:00
valueFlowForwardLifetime(ptok, tokenlist, errorLogger, settings);
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
// Check variables
else if (tok->variable()) {
ErrorPath errorPath;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Variable * var = ValueFlow::getLifetimeVariable(tok, errorPath);
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
if (!var)
continue;
Fix issue 8899: False positive returnDanglingLifetime when returning by value This fixes the FP from: ```cpp #include <string> class MyString { public: MyString(char* source) { length = strlen( source ); buffer = new char[length+1]; if( buffer ) { strcpy( buffer, source ); } } char* buffer; int length; }; MyString Foo() { char arr[20]; sprintf(arr, "hello world"); return arr; } void main() { MyString str = Foo(); printf(str.buffer); } ```
2018-12-15 17:58:45 +01:00
if (var->nameToken() == tok)
continue;
ValueFlow: Remove unused argument (#2442)
2019-12-10 17:48:27 +01:00
if (var->isArray() && !var->isStlType() && !var->isArgument() && isDecayedPointer(tok)) {
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
errorPath.emplace_back(tok, "Array decayed to pointer here.");
ValueFlow::Value value;
Refactoring: Use enum class
2019-07-16 11:12:35 +02:00
value.valueType = ValueFlow::Value::ValueType::LIFETIME;
value.lifetimeScope = ValueFlow::Value::LifetimeScope::Local;
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
value.tokvalue = var->nameToken();
value.errorPath = errorPath;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
valueFlowForwardLifetime(tok, tokenlist, errorLogger, settings);
}
}
Extend lifetimes to subfunctions
2020-09-04 18:56:34 +02:00
// Forward any lifetimes
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
else if (std::any_of(tok->values().cbegin(), tok->values().cend(), std::mem_fn(&ValueFlow::Value::isLifetimeValue))) {
Extend lifetimes to subfunctions
2020-09-04 18:56:34 +02:00
valueFlowForwardLifetime(tok, tokenlist, errorLogger, settings);
}
Fix FP when copying pointer to string (#1479)
2018-11-14 06:59:25 +01:00
}
}
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
static bool isStdMoveOrStdForwarded(Token * tok, ValueFlow::Value::MoveKind * moveKind, Token ** varTok = nullptr)
{
if (tok->str() != "std")
return false;
Refactoring: enum class
2019-07-10 15:27:07 +02:00
ValueFlow::Value::MoveKind kind = ValueFlow::Value::MoveKind::NonMovedVariable;
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
Token * variableToken = nullptr;
if (Token::Match(tok, "std :: move ( %var% )")) {
variableToken = tok->tokAt(4);
Refactoring: enum class
2019-07-10 15:27:07 +02:00
kind = ValueFlow::Value::MoveKind::MovedVariable;
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
} else if (Token::simpleMatch(tok, "std :: forward <")) {
Token: do not return non-`const` pointer from `const` methods - part 1 (#4761)
2023-02-08 21:07:16 +01:00
Token * const leftAngle = tok->tokAt(3);
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
Token * rightAngle = leftAngle->link();
if (Token::Match(rightAngle, "> ( %var% )")) {
variableToken = rightAngle->tokAt(2);
Refactoring: enum class
2019-07-10 15:27:07 +02:00
kind = ValueFlow::Value::MoveKind::ForwardedVariable;
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
}
}
Remove redundant variable
2017-09-01 17:19:25 +02:00
if (!variableToken)
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
return false;
if (variableToken->strAt(2) == ".") // Only partially moved
return false;
Fixed #8419 (False positive accessMoved on int)
2019-12-21 07:39:14 +01:00
if (variableToken->valueType() && variableToken->valueType()->type >= ValueType::Type::VOID)
return false;
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
if (moveKind != nullptr)
*moveKind = kind;
if (varTok != nullptr)
*varTok = variableToken;
return true;
}
Replace 'unsigned' with 'nonneg' in valueflow
2019-07-15 13:47:17 +02:00
static bool isOpenParenthesisMemberFunctionCallOfVarId(const Token * openParenthesisToken, nonneg int varId)
Improve Fix #6180 (Do not warn about move if it is part of a reassignment of the variable)
2016-12-11 22:32:57 +01:00
{
Cache and reuse value
2017-09-01 17:16:08 +02:00
const Token * varTok = openParenthesisToken->tokAt(-3);
return Token::Match(varTok, "%varid% . %name% (", varId) &&
use std::string::empty() (#3910)
2022-04-09 19:02:37 +02:00
varTok->next()->originalName().empty();
Improve Fix #6180 (Do not warn about move if it is part of a reassignment of the variable)
2016-12-11 22:32:57 +01:00
}
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
static Token* findOpenParentesisOfMove(Token* moveVarTok)
Improve Fix #6180 (Access of moved variable still allowed until function is called)
2016-12-12 21:46:05 +01:00
{
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
Token* tok = moveVarTok;
Improve Fix #6180 (Access of moved variable still allowed until function is called)
2016-12-12 21:46:05 +01:00
while (tok && tok->str() != "(")
tok = tok->previous();
return tok;
}
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
static Token* findEndOfFunctionCallForParameter(Token* parameterToken)
Improve Fix #6180 (Access of moved variable still allowed until function is called)
2016-12-12 21:46:05 +01:00
{
if (!parameterToken)
return nullptr;
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
Token* parent = parameterToken->astParent();
Fix #11440 FN Moved value when using {} to initialize (#5479)
2023-09-26 10:04:22 +02:00
while (parent && !parent->isOp() && !Token::Match(parent, "[({]"))
Improve Fix #6180 (Access of moved variable still allowed until function is called)
2016-12-12 21:46:05 +01:00
parent = parent->astParent();
if (!parent)
return nullptr;
return nextAfterAstRightmostLeaf(parent);
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowAfterMove(TokenList& tokenlist, const SymbolDatabase& symboldatabase, const Settings* settings)
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (!tokenlist.isCPP() || settings->standards.cpp < Standards::CPP11)
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
return;
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope * scope : symboldatabase.functionScopes) {
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
if (!scope)
continue;
Refactoring; Renamed Scope::classStart and Scope::classEnd
2018-04-27 22:36:30 +02:00
const Token * start = scope->bodyStart;
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
if (scope->function) {
const Token * memberInitializationTok = scope->function->constructorMemberInitialization();
if (memberInitializationTok)
start = memberInitializationTok;
}
Refactoring; Renamed Scope::classStart and Scope::classEnd
2018-04-27 22:36:30 +02:00
for (Token* tok = const_cast<Token*>(start); tok != scope->bodyEnd; tok = tok->next()) {
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
Token * varTok;
use std::string::empty() (#3910)
2022-04-09 19:02:37 +02:00
if (Token::Match(tok, "%var% . reset|clear (") && tok->next()->originalName().empty()) {
Improve Fix #6180 ("reset" and "clear" clears the move status)
2016-12-12 14:29:27 +01:00
varTok = tok;
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
const Variable *var = tok->variable();
if (!var || (!var->isLocal() && !var->isArgument()))
continue;
Improve Fix #6180 ("reset" and "clear" clears the move status)
2016-12-12 14:29:27 +01:00
ValueFlow::Value value;
Refactoring: enum class
2019-07-10 15:27:07 +02:00
value.valueType = ValueFlow::Value::ValueType::MOVED;
value.moveKind = ValueFlow::Value::MoveKind::NonMovedVariable;
Refactorizations: - Replace several push_back-calls by emplace_back - Replace some x = x.substr(0, y) calls by x.erase(y)
2018-04-11 09:44:35 +02:00
value.errorPath.emplace_back(tok, "Calling " + tok->next()->expressionString() + " makes " + tok->str() + " 'non-moved'");
Improve Fix #6180 ("reset" and "clear" clears the move status)
2016-12-12 14:29:27 +01:00
value.setKnown();
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
setTokenValue(tok, value, settings);
Fix ValueFlow crash (#4461)
2022-09-13 12:25:15 +02:00
if (var->scope()) {
const Token* const endOfVarScope = var->scope()->bodyEnd;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(tok->next(), endOfVarScope, tok, std::move(value), tokenlist, settings);
Fix ValueFlow crash (#4461)
2022-09-13 12:25:15 +02:00
}
Improve Fix #6180 ("reset" and "clear" clears the move status)
2016-12-12 14:29:27 +01:00
continue;
}
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
ValueFlow::Value::MoveKind moveKind;
if (!isStdMoveOrStdForwarded(tok, &moveKind, &varTok))
continue;
use nonneg int for varid and exprid (#3085)
2021-01-27 19:49:13 +01:00
const nonneg int varId = varTok->varId();
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
// x is not MOVED after assignment if code is: x = ... std::move(x) .. ;
const Token *parent = tok->astParent();
Improve Fix #6180 (Do not warn about move if it is part of a reassignment of the variable)
2016-12-11 22:32:57 +01:00
while (parent && parent->str() != "=" && parent->str() != "return" &&
!(parent->str() == "(" && isOpenParenthesisMemberFunctionCallOfVarId(parent, varId)))
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
parent = parent->astParent();
Improve Fix #6180 (Do not warn about move if it is part of a reassignment of the variable)
2016-12-11 22:32:57 +01:00
if (parent &&
(parent->str() == "return" || // MOVED in return statement
parent->str() == "(")) // MOVED in self assignment, isOpenParenthesisMemberFunctionCallOfVarId == true
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
continue;
Add null pointer check to fix SEGFAULT (#1499) * Add null pointer check to fix segfault * Add first test case to reproduce problem
2018-12-02 14:36:01 +01:00
if (parent && parent->astOperand1() && parent->astOperand1()->varId() == varId)
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
continue;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Token* const endOfVarScope = ValueFlow::getEndOfExprScope(varTok);
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
Token* openParentesisOfMove = findOpenParentesisOfMove(varTok);
Token* endOfFunctionCall = findEndOfFunctionCallForParameter(openParentesisOfMove);
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
if (endOfFunctionCall) {
ValueFlow::Value value;
value.valueType = ValueFlow::Value::ValueType::MOVED;
value.moveKind = moveKind;
if (moveKind == ValueFlow::Value::MoveKind::MovedVariable)
value.errorPath.emplace_back(tok, "Calling std::move(" + varTok->str() + ")");
else // if (moveKind == ValueFlow::Value::ForwardedVariable)
value.errorPath.emplace_back(tok, "Calling std::forward(" + varTok->str() + ")");
value.setKnown();
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
valueFlowForward(endOfFunctionCall, endOfVarScope, varTok, std::move(value), tokenlist, settings);
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
}
Fixed #6180 (Usage of variable after std::move or std::forward)
2016-11-20 15:14:49 +01:00
}
}
}
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
static const Token* findIncompleteVar(const Token* start, const Token* end)
{
for (const Token* tok = start; tok != end; tok = tok->next()) {
if (tok->isIncompleteVar())
return tok;
}
return nullptr;
}
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
static ValueFlow::Value makeConditionValue(long long val,
const Token* condTok,
bool assume,
Fix #11558 FP knownConditionTrueFalse when checking for zero character (#4794) * Fix #11558 FP knownConditionTrueFalse when checking for zero characte * Fix test * Set impossible value only for non-Boolean conditions, rename * Fix condition
2023-02-18 17:35:12 +01:00
bool impossible = false,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
const Settings* settings = nullptr,
SourceLocation loc = SourceLocation::current())
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
{
ValueFlow::Value v(val);
v.setKnown();
Fix #11558 FP knownConditionTrueFalse when checking for zero character (#4794) * Fix #11558 FP knownConditionTrueFalse when checking for zero characte * Fix test * Set impossible value only for non-Boolean conditions, rename * Fix condition
2023-02-18 17:35:12 +01:00
if (impossible) {
v.intvalue = !v.intvalue;
v.setImpossible();
}
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
v.condition = condTok;
if (assume)
v.errorPath.emplace_back(condTok, "Assuming condition '" + condTok->expressionString() + "' is true");
else
v.errorPath.emplace_back(condTok, "Assuming condition '" + condTok->expressionString() + "' is false");
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
if (settings && settings->debugnormal)
setSourceLocation(v, loc, condTok);
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
return v;
}
Refactor: Assert an expression has an id and fix assertion failures (#3377) * Fix 10390: FP: knownConditionTrueFalse * Assert expression has an ID * Fix assertion errors * Format
2021-08-03 06:31:52 +02:00
static std::vector<const Token*> getConditions(const Token* tok, const char* op)
{
std::vector<const Token*> conds = {tok};
if (tok->str() == op) {
std::vector<const Token*> args = astFlatten(tok, op);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(args.cbegin(), args.cend(), std::back_inserter(conds), [&](const Token* tok2) {
Refactor: Assert an expression has an id and fix assertion failures (#3377) * Fix 10390: FP: knownConditionTrueFalse * Assert expression has an ID * Fix assertion errors * Format
2021-08-03 06:31:52 +02:00
if (tok2->exprId() == 0)
return false;
if (tok2->hasKnownIntValue())
return false;
Fix 10708: Assertion "!maxValue->isKnown()" from valueFlowInferCondition (#3736) * Fix 10708: Assertion "!maxValue->isKnown()" from valueFlowInferCondition * Format
2022-01-21 09:56:24 +01:00
if (Token::Match(tok2, "%var%|.") && !astIsBool(tok2))
Fix 10677: crash during valueFlowInferCondition (#3687)
2022-01-09 22:43:08 +01:00
return false;
Refactor: Assert an expression has an id and fix assertion failures (#3377) * Fix 10390: FP: knownConditionTrueFalse * Assert expression has an ID * Fix assertion errors * Format
2021-08-03 06:31:52 +02:00
return true;
});
}
return conds;
}
Fix 11096: FP knownConditionTrueFalse in do while loop (#4192) * Check for loop * Improve handling of exit values * Add more checks to test * Simplify * Remove unnecessary test * Fix typo * Format * Use simpleMatch
2022-06-10 20:42:02 +02:00
static bool isBreakOrContinueScope(const Token* endToken)
{
if (!Token::simpleMatch(endToken, "}"))
return false;
return Token::Match(endToken->tokAt(-2), "break|continue ;");
}
static const Scope* getLoopScope(const Token* tok)
{
if (!tok)
return nullptr;
const Scope* scope = tok->scope();
while (scope && scope->type != Scope::eWhile && scope->type != Scope::eFor && scope->type != Scope::eDo)
scope = scope->nestedIn;
return scope;
}
astyle formatting [ci skip]
2021-01-25 22:51:50 +01:00
//
Fix #12214 FN constParameterReference / #12216 FP constParameterReference (#5691)
2023-11-25 22:58:16 +01:00
static void valueFlowConditionExpressions(const TokenList &tokenlist, const SymbolDatabase& symboldatabase, ErrorLogger *errorLogger, const Settings &settings)
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope * scope : symboldatabase.functionScopes) {
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
if (const Token* incompleteTok = findIncompleteVar(scope->bodyStart, scope->bodyEnd)) {
Add test for simplecpp#314 (#5438)
2023-09-14 09:41:39 +02:00
if (settings.debugwarnings)
bailoutIncompleteVar(tokenlist, errorLogger, incompleteTok, "Skipping function due to incomplete variable " + incompleteTok->str());
break;
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
}
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
for (Token* tok = const_cast<Token*>(scope->bodyStart); tok != scope->bodyEnd; tok = tok->next()) {
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
if (!Token::simpleMatch(tok, "if ("))
continue;
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
Token* parenTok = tok->next();
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
if (!Token::simpleMatch(parenTok->link(), ") {"))
continue;
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
Token * blockTok = parenTok->link()->tokAt(1);
const Token* condTok = parenTok->astOperand2();
Refactor: Assert an expression has an id and fix assertion failures (#3377) * Fix 10390: FP: knownConditionTrueFalse * Assert expression has an ID * Fix assertion errors * Format
2021-08-03 06:31:52 +02:00
if (condTok->exprId() == 0)
continue;
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
if (condTok->hasKnownIntValue())
Revert 14365ffc7 and f1cc3ada8, there was a performance regression
2021-01-22 10:51:46 +01:00
continue;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (!isConstExpression(condTok, settings.library, tokenlist.isCPP()))
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
continue;
Fix 10323: Wrong known value. x!=0 does not mean that x==1 (#3308)
2021-06-26 09:16:45 +02:00
const bool is1 = (condTok->isComparisonOp() || condTok->tokType() == Token::eLogicalOp || astIsBool(condTok));
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
Token* startTok = blockTok;
// Inner condition
{
Refactor: Assert an expression has an id and fix assertion failures (#3377) * Fix 10390: FP: knownConditionTrueFalse * Assert expression has an ID * Fix assertion errors * Format
2021-08-03 06:31:52 +02:00
for (const Token* condTok2 : getConditions(condTok, "&&")) {
Fix 10323: Wrong known value. x!=0 does not mean that x==1 (#3308)
2021-06-26 09:16:45 +02:00
if (is1) {
Fix #11558 FP knownConditionTrueFalse when checking for zero character (#4794) * Fix #11558 FP knownConditionTrueFalse when checking for zero characte * Fix test * Set impossible value only for non-Boolean conditions, rename * Fix condition
2023-02-18 17:35:12 +01:00
const bool isBool = astIsBool(condTok2) || Token::Match(condTok2, "%comp%|%oror%|&&");
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
SameExpressionAnalyzer a1(condTok2, makeConditionValue(1, condTok2, /*assume*/ true, !isBool), tokenlist, &settings); // don't set '1' for non-boolean expressions
Fix 10323: Wrong known value. x!=0 does not mean that x==1 (#3308)
2021-06-26 09:16:45 +02:00
valueFlowGenericForward(startTok, startTok->link(), a1, settings);
}
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
OppositeExpressionAnalyzer a2(true, condTok2, makeConditionValue(0, condTok2, true), tokenlist, &settings);
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
valueFlowGenericForward(startTok, startTok->link(), a2, settings);
}
}
Refactor: Assert an expression has an id and fix assertion failures (#3377) * Fix 10390: FP: knownConditionTrueFalse * Assert expression has an ID * Fix assertion errors * Format
2021-08-03 06:31:52 +02:00
std::vector<const Token*> conds = getConditions(condTok, "||");
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
// Check else block
if (Token::simpleMatch(startTok->link(), "} else {")) {
startTok = startTok->link()->tokAt(2);
astyle formatting [ci skip]
2021-01-25 22:51:50 +01:00
for (const Token* condTok2:conds) {
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
SameExpressionAnalyzer a1(condTok2, makeConditionValue(0, condTok2, false), tokenlist, &settings);
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
valueFlowGenericForward(startTok, startTok->link(), a1, settings);
Fix 10323: Wrong known value. x!=0 does not mean that x==1 (#3308)
2021-06-26 09:16:45 +02:00
if (is1) {
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
OppositeExpressionAnalyzer a2(true, condTok2, makeConditionValue(1, condTok2, false), tokenlist, &settings);
Fix 10323: Wrong known value. x!=0 does not mean that x==1 (#3308)
2021-06-26 09:16:45 +02:00
valueFlowGenericForward(startTok, startTok->link(), a2, settings);
}
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
}
}
// Check if the block terminates early
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (isEscapeScope(blockTok, &settings)) {
Fix 11096: FP knownConditionTrueFalse in do while loop (#4192) * Check for loop * Improve handling of exit values * Add more checks to test * Simplify * Remove unnecessary test * Fix typo * Format * Use simpleMatch
2022-06-10 20:42:02 +02:00
const Scope* scope2 = scope;
// If escaping a loop then only use the loop scope
if (isBreakOrContinueScope(blockTok->link())) {
scope2 = getLoopScope(blockTok->link());
if (!scope2)
continue;
}
astyle formatting [ci skip]
2021-01-25 22:51:50 +01:00
for (const Token* condTok2:conds) {
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
SameExpressionAnalyzer a1(condTok2, makeConditionValue(0, condTok2, false), tokenlist, &settings);
Fix 11096: FP knownConditionTrueFalse in do while loop (#4192) * Check for loop * Improve handling of exit values * Add more checks to test * Simplify * Remove unnecessary test * Fix typo * Format * Use simpleMatch
2022-06-10 20:42:02 +02:00
valueFlowGenericForward(startTok->link()->next(), scope2->bodyEnd, a1, settings);
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
Fix 10323: Wrong known value. x!=0 does not mean that x==1 (#3308)
2021-06-26 09:16:45 +02:00
if (is1) {
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
OppositeExpressionAnalyzer a2(true, condTok2, makeConditionValue(1, condTok2, false), tokenlist, &settings);
Fix 11096: FP knownConditionTrueFalse in do while loop (#4192) * Check for loop * Improve handling of exit values * Add more checks to test * Simplify * Remove unnecessary test * Fix typo * Format * Use simpleMatch
2022-06-10 20:42:02 +02:00
valueFlowGenericForward(startTok->link()->next(), scope2->bodyEnd, a2, settings);
Fix 10323: Wrong known value. x!=0 does not mean that x==1 (#3308)
2021-06-26 09:16:45 +02:00
}
Reapply f1cc3ad and fix performance regression (#3076)
2021-01-23 08:47:39 +01:00
}
}
Fix issue 10102: False positive: knownConditionTrueFalse in for loop (#3038)
2021-01-11 07:56:16 +01:00
}
}
}
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
static bool isTruncated(const ValueType* src, const ValueType* dst, const Settings* settings)
{
if (src->pointer > 0 || dst->pointer > 0)
return src->pointer != dst->pointer;
if (src->smartPointer && dst->smartPointer)
return false;
if ((src->isIntegral() && dst->isIntegral()) || (src->isFloat() && dst->isFloat())) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const size_t srcSize = ValueFlow::getSizeOf(*src, settings);
const size_t dstSize = ValueFlow::getSizeOf(*dst, settings);
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
if (srcSize > dstSize)
return true;
if (srcSize == dstSize && src->sign != dst->sign)
return true;
} else if (src->type == dst->type) {
if (src->type == ValueType::Type::RECORD)
return src->typeScope != dst->typeScope;
} else {
return true;
}
return false;
}
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
static void setSymbolic(ValueFlow::Value& value, const Token* tok)
{
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
assert(tok && tok->exprId() > 0 && "Missing expr id for symbolic value");
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
value.valueType = ValueFlow::Value::ValueType::SYMBOLIC;
value.tokvalue = tok;
}
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
static ValueFlow::Value makeSymbolic(const Token* tok, MathLib::bigint delta = 0)
{
ValueFlow::Value value;
value.setKnown();
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
setSymbolic(value, tok);
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
value.intvalue = delta;
return value;
}
Fix 10649: False positive: wrong known value after reassignment (#3631)
2021-12-15 19:37:25 +01:00
static std::set<nonneg int> getVarIds(const Token* tok)
{
std::set<nonneg int> result;
visitAstNodes(tok, [&](const Token* child) {
if (child->varId() > 0)
result.insert(child->varId());
return ChildrenToVisit::op1_and_op2;
});
return result;
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowSymbolic(const TokenList& tokenlist, const SymbolDatabase& symboldatabase, const Settings* settings)
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope* scope : symboldatabase.functionScopes) {
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
for (Token* tok = const_cast<Token*>(scope->bodyStart); tok != scope->bodyEnd; tok = tok->next()) {
if (!Token::simpleMatch(tok, "="))
continue;
Fix 10394 and 10395: FP knownConditionTrueFalse: loop variable (#3381)
2021-08-04 21:07:55 +02:00
if (tok->astParent())
continue;
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
if (!tok->astOperand1())
continue;
if (!tok->astOperand2())
continue;
if (tok->astOperand1()->hasKnownIntValue())
continue;
if (tok->astOperand2()->hasKnownIntValue())
continue;
Fix 10390: FP: knownConditionTrueFalse (#3374)
2021-08-02 10:49:39 +02:00
if (tok->astOperand1()->exprId() == 0)
continue;
if (tok->astOperand2()->exprId() == 0)
continue;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (!isConstExpression(tok->astOperand2(), settings->library, tokenlist.isCPP()))
Fix FP for symbolic values when the expression is not const (#3370)
2021-07-31 14:19:37 +02:00
continue;
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
if (tok->astOperand1()->valueType() && tok->astOperand2()->valueType()) {
if (isTruncated(
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
tok->astOperand2()->valueType(), tok->astOperand1()->valueType(), settings))
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
continue;
} else if (isDifferentType(tok->astOperand2(), tok->astOperand1())) {
continue;
}
Fix 10649: False positive: wrong known value after reassignment (#3631)
2021-12-15 19:37:25 +01:00
const std::set<nonneg int> rhsVarIds = getVarIds(tok->astOperand2());
Fix 10543: FP knownConditionTrueFalse with static variable (#3491)
2021-10-09 16:20:04 +02:00
const std::vector<const Variable*> vars = getLHSVariables(tok);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::any_of(vars.cbegin(), vars.cend(), [&](const Variable* var) {
Fix 10649: False positive: wrong known value after reassignment (#3631)
2021-12-15 19:37:25 +01:00
if (rhsVarIds.count(var->declarationId()) > 0)
return true;
Fix 10543: FP knownConditionTrueFalse with static variable (#3491)
2021-10-09 16:20:04 +02:00
if (var->isLocal())
return var->isStatic();
return !var->isArgument();
}))
continue;
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
Fix 11006: FP uninitvar with unknown constant (#4056)
2022-04-28 10:48:37 +02:00
if (findAstNode(tok, [](const Token* child) {
return child->isIncompleteVar();
}))
continue;
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
Token* start = nextAfterAstRightmostLeaf(tok);
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Token* end = ValueFlow::getEndOfExprScope(tok->astOperand1(), scope);
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
ValueFlow::Value rhs = makeSymbolic(tok->astOperand2());
rhs.errorPath.emplace_back(tok,
tok->astOperand1()->expressionString() + " is assigned '" +
astyle formatting [ci skip]
2021-08-01 14:05:30 +02:00
tok->astOperand2()->expressionString() + "' here.");
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(start, end, tok->astOperand1(), rhs, tokenlist, settings);
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
ValueFlow::Value lhs = makeSymbolic(tok->astOperand1());
lhs.errorPath.emplace_back(tok,
tok->astOperand1()->expressionString() + " is assigned '" +
astyle formatting [ci skip]
2021-08-01 14:05:30 +02:00
tok->astOperand2()->expressionString() + "' here.");
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(start, end, tok->astOperand2(), lhs, tokenlist, settings);
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
}
}
}
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
static const Token* isStrlenOf(const Token* tok, const Token* expr, int depth = 10)
Propagate symbolic values for identity operators (#3497)
2021-10-14 16:46:36 +02:00
{
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
if (depth < 0)
return nullptr;
if (!tok)
return nullptr;
if (!expr)
return nullptr;
if (expr->exprId() == 0)
return nullptr;
if (Token::simpleMatch(tok->previous(), "strlen (")) {
if (tok->astOperand2()->exprId() == expr->exprId())
return tok;
} else {
for (const ValueFlow::Value& v : tok->values()) {
Propagate symbolic values for identity operators (#3497)
2021-10-14 16:46:36 +02:00
if (!v.isSymbolicValue())
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
continue;
if (!v.isKnown())
continue;
if (v.intvalue != 0)
continue;
if (const Token* next = isStrlenOf(v.tokvalue, expr, depth - 1))
return next;
}
Propagate symbolic values for identity operators (#3497)
2021-10-14 16:46:36 +02:00
}
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
return nullptr;
Propagate symbolic values for identity operators (#3497)
2021-10-14 16:46:36 +02:00
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
static ValueFlow::Value inferCondition(const std::string& op, const Token* varTok, MathLib::bigint val);
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowSymbolicOperators(const SymbolDatabase& symboldatabase, const Settings* settings)
Fix 7843 and 7844: ValueFlow for abs (#3373) * Refactor: Use valueFlowForward to forward values in condition expression * Formattting * Make known when using bools as well * Set abs function as always positive * Add test * Add valueFlowSymbolicAbs * Set impossible values * Fix test case * Fix error messages * Merge
2021-08-03 06:31:28 +02:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope* scope : symboldatabase.functionScopes) {
Fix 7843 and 7844: ValueFlow for abs (#3373) * Refactor: Use valueFlowForward to forward values in condition expression * Formattting * Make known when using bools as well * Set abs function as always positive * Add test * Add valueFlowSymbolicAbs * Set impossible values * Fix test case * Fix error messages * Merge
2021-08-03 06:31:28 +02:00
for (Token* tok = const_cast<Token*>(scope->bodyStart); tok != scope->bodyEnd; tok = tok->next()) {
if (tok->hasKnownIntValue())
continue;
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
if (Token::Match(tok, "abs|labs|llabs|fabs|fabsf|fabsl (")) {
const Token* arg = tok->next()->astOperand2();
if (!arg)
continue;
Fix 11865: Assert failure in setSymbolic() (#5318)
2023-08-12 19:58:09 +02:00
if (arg->exprId() == 0)
continue;
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
ValueFlow::Value c = inferCondition(">=", arg, 0);
if (!c.isKnown())
continue;
Fix 7843 and 7844: ValueFlow for abs (#3373) * Refactor: Use valueFlowForward to forward values in condition expression * Formattting * Make known when using bools as well * Set abs function as always positive * Add test * Add valueFlowSymbolicAbs * Set impossible values * Fix test case * Fix error messages * Merge
2021-08-03 06:31:28 +02:00
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
ValueFlow::Value v = makeSymbolic(arg);
v.errorPath = c.errorPath;
v.errorPath.emplace_back(tok, "Passed to " + tok->str());
if (c.intvalue == 0)
v.setImpossible();
else
v.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok->next(), std::move(v), settings);
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
} else if (Token::Match(tok, "*|/|<<|>>|^|+|-|%or%")) {
if (!tok->astOperand1())
continue;
if (!tok->astOperand2())
continue;
if (!astIsIntegral(tok->astOperand1(), false) && !astIsIntegral(tok->astOperand2(), false))
continue;
const ValueFlow::Value* constant = nullptr;
const Token* vartok = nullptr;
if (tok->astOperand1()->hasKnownIntValue()) {
constant = &tok->astOperand1()->values().front();
vartok = tok->astOperand2();
}
if (tok->astOperand2()->hasKnownIntValue()) {
constant = &tok->astOperand2()->values().front();
vartok = tok->astOperand1();
}
if (!constant)
continue;
if (!vartok)
continue;
if (vartok->exprId() == 0)
continue;
if (Token::Match(tok, "<<|>>|/") && !astIsLHS(vartok))
continue;
if (Token::Match(tok, "<<|>>|^|+|-|%or%") && constant->intvalue != 0)
continue;
if (Token::Match(tok, "*|/") && constant->intvalue != 1)
continue;
std::vector<ValueFlow::Value> values = {makeSymbolic(vartok)};
std::unordered_set<nonneg int> ids = {vartok->exprId()};
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(vartok->values().cbegin(),
vartok->values().cend(),
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
std::back_inserter(values),
[&](const ValueFlow::Value& v) {
if (!v.isSymbolicValue())
return false;
if (!v.tokvalue)
return false;
return ids.insert(v.tokvalue->exprId()).second;
});
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
for (ValueFlow::Value& v : values)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(v), settings);
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
} else if (Token::simpleMatch(tok, "[")) {
const Token* arrayTok = tok->astOperand1();
const Token* indexTok = tok->astOperand2();
if (!arrayTok)
continue;
if (!indexTok)
continue;
for (const ValueFlow::Value& value : indexTok->values()) {
if (!value.isSymbolicValue())
continue;
if (value.intvalue != 0)
continue;
const Token* strlenTok = isStrlenOf(value.tokvalue, arrayTok);
if (!strlenTok)
continue;
ValueFlow::Value v = value;
Fix 11306: FP knownConditionTrueFalse with strlen() (#4477) * Fix 11306: FP knownConditionTrueFalse with strlen() * Add another test
2022-09-18 08:29:10 +02:00
v.bound = ValueFlow::Value::Bound::Point;
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
v.valueType = ValueFlow::Value::ValueType::INT;
Fix #11886 performance regression (hang) in 2.12dev (#5355) Or maybe we should just limit the recursion depth.
2023-08-22 21:01:52 +02:00
v.errorPath.emplace_back(strlenTok, "Return index of first '\\0' character in string");
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(v), settings);
Fix 11194: FN: knownConditionTrueFalse (#4452) * Fix 11194: FN: knownConditionTrueFalse * Format
2022-09-08 18:51:44 +02:00
}
}
Fix 7843 and 7844: ValueFlow for abs (#3373) * Refactor: Use valueFlowForward to forward values in condition expression * Formattting * Make known when using bools as well * Set abs function as always positive * Add test * Add valueFlowSymbolicAbs * Set impossible values * Fix test case * Fix error messages * Merge
2021-08-03 06:31:28 +02:00
}
}
}
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
struct SymbolicInferModel : InferModel {
const Token* expr;
explicit SymbolicInferModel(const Token* tok) : expr(tok) {
assert(expr->exprId() != 0);
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool match(const ValueFlow::Value& value) const override
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
{
return value.isSymbolicValue() && value.tokvalue && value.tokvalue->exprId() == expr->exprId();
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ValueFlow::Value yield(MathLib::bigint value) const override
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
{
ValueFlow::Value result(value);
result.valueType = ValueFlow::Value::ValueType::SYMBOLIC;
result.tokvalue = expr;
result.setKnown();
return result;
}
};
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowSymbolicInfer(const SymbolDatabase& symboldatabase, const Settings* settings)
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope* scope : symboldatabase.functionScopes) {
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
for (Token* tok = const_cast<Token*>(scope->bodyStart); tok != scope->bodyEnd; tok = tok->next()) {
if (!Token::Match(tok, "-|%comp%"))
continue;
if (tok->hasKnownIntValue())
continue;
if (!tok->astOperand1())
continue;
if (!tok->astOperand2())
continue;
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
if (tok->astOperand1()->exprId() == 0)
continue;
if (tok->astOperand2()->exprId() == 0)
continue;
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
if (tok->astOperand1()->hasKnownIntValue())
continue;
if (tok->astOperand2()->hasKnownIntValue())
continue;
Fix 10390: FP: knownConditionTrueFalse (#3374)
2021-08-02 10:49:39 +02:00
if (astIsFloat(tok->astOperand1(), false))
continue;
if (astIsFloat(tok->astOperand2(), false))
continue;
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
SymbolicInferModel leftModel{tok->astOperand1()};
std::vector<ValueFlow::Value> values = infer(leftModel, tok->str(), 0, tok->astOperand2()->values());
if (values.empty()) {
SymbolicInferModel rightModel{tok->astOperand2()};
values = infer(rightModel, tok->str(), tok->astOperand1()->values(), 0);
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
}
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
for (ValueFlow::Value& value : values) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
setTokenValue(tok, std::move(value), settings);
Fix 7843 and 7844: ValueFlow for abs (#3373) * Refactor: Use valueFlowForward to forward values in condition expression * Formattting * Make known when using bools as well * Set abs function as always positive * Add test * Add valueFlowSymbolicAbs * Set impossible values * Fix test case * Fix error messages * Merge
2021-08-03 06:31:28 +02:00
}
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
}
}
}
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
template<class ContainerOfValue>
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
static void valueFlowForwardConst(Token* start,
const Token* end,
const Variable* var,
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
const ContainerOfValue& values,
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
const Settings* const settings,
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
int /*unused*/ = 0)
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
{
Throw internal error when tokens are not in order (#4623) * Throw internal error when tokens are not in order * Add semicolon
2022-12-09 07:17:16 +01:00
if (!precedes(start, end))
throw InternalError(var->nameToken(), "valueFlowForwardConst: start token does not precede the end token.");
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
for (Token* tok = start; tok != end; tok = tok->next()) {
if (tok->varId() == var->declarationId()) {
for (const ValueFlow::Value& value : values)
setTokenValue(tok, value, settings);
} else {
[&] {
// Follow references
return `SmallVector` from `followAllReferences()` (#3925)
2022-09-29 21:41:32 +02:00
auto refs = followAllReferences(tok);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
auto it = std::find_if(refs.cbegin(), refs.cend(), [&](const ReferenceToken& ref) {
Fix #10412 FN useStlAlgorithm with iterators (#4157)
2022-10-16 13:46:26 +02:00
return ref.token->varId() == var->declarationId();
});
if (it != refs.end()) {
for (ValueFlow::Value value : values) {
if (refs.size() > 1)
value.setInconclusive();
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
value.errorPath.insert(value.errorPath.end(), it->errors.cbegin(), it->errors.cend());
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
}
Fix #10412 FN useStlAlgorithm with iterators (#4157)
2022-10-16 13:46:26 +02:00
return;
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
}
Typos found by running "codespell" (#4702)
2023-01-10 15:15:27 +01:00
// Follow symbolic values
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
for (const ValueFlow::Value& v : tok->values()) {
if (!v.isSymbolicValue())
continue;
if (!v.tokvalue)
continue;
if (v.tokvalue->varId() != var->declarationId())
continue;
for (ValueFlow::Value value : values) {
Fix 12116: FP negativeContainerIndex with redundant assignment (regression) (#5602)
2023-10-29 00:11:03 +02:00
if (!v.isKnown() && value.isImpossible())
continue;
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
if (v.intvalue != 0) {
if (!value.isIntValue())
continue;
value.intvalue += v.intvalue;
}
Fix 12116: FP negativeContainerIndex with redundant assignment (regression) (#5602)
2023-10-29 00:11:03 +02:00
if (!value.isImpossible())
value.valueKind = v.valueKind;
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
value.bound = v.bound;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
value.errorPath.insert(value.errorPath.end(), v.errorPath.cbegin(), v.errorPath.cend());
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
}
}
}();
}
}
}
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
static void valueFlowForwardConst(Token* start,
const Token* end,
const Variable* var,
const std::initializer_list<ValueFlow::Value>& values,
const Settings* const settings)
{
valueFlowForwardConst(start, end, var, values, settings, 0);
}
Set the lower and upper bounds for variable that are only incremented or decremented (#5523) Also, changed `isExpressionChanged` and `isThisChanged` to return the token that is being modified and renamed the functions to `findExpressionChanged` and `findThisChanged`.
2023-10-19 18:42:52 +02:00
static ValueFlow::Value::Bound findVarBound(const Variable* var,
const Token* start,
const Token* end,
const Settings* settings)
{
ValueFlow::Value::Bound result = ValueFlow::Value::Bound::Point;
const Token* next = start;
while ((next = findExpressionChangedSkipDeadCode(
var->nameToken(), next->next(), end, settings, true, &evaluateKnownValues))) {
ValueFlow::Value::Bound b = ValueFlow::Value::Bound::Point;
if (next->varId() != var->declarationId())
return ValueFlow::Value::Bound::Point;
if (Token::simpleMatch(next->astParent(), "++"))
b = ValueFlow::Value::Bound::Lower;
else if (Token::simpleMatch(next->astParent(), "--"))
b = ValueFlow::Value::Bound::Upper;
else
return ValueFlow::Value::Bound::Point;
if (result == ValueFlow::Value::Bound::Point)
result = b;
else if (result != b)
return ValueFlow::Value::Bound::Point;
}
return result;
}
static bool isInitialVarAssign(const Token* tok)
{
if (!tok)
return false;
if (!tok->variable())
return false;
if (tok->variable()->nameToken() == tok)
return true;
const Token* prev = tok->tokAt(2);
if (!Token::Match(prev, "%var% ; %var%"))
return false;
return tok->varId() == prev->varId() && tok->variable()->nameToken() == prev;
}
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
static void valueFlowForwardAssign(Token* const tok,
const Token* expr,
std::vector<const Variable*> vars,
astyle formatting [ci skip]
2019-04-26 11:30:35 +02:00
std::list<ValueFlow::Value> values,
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
const bool init,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
ErrorLogger* const errorLogger,
const Settings* const settings)
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
{
Fix 10408: FP nullPointer on 'return x.release()' (#3404)
2021-08-15 07:43:50 +02:00
if (Token::simpleMatch(tok->astParent(), "return"))
return;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Token* endOfVarScope = ValueFlow::getEndOfExprScope(expr);
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::any_of(values.cbegin(), values.cend(), std::mem_fn(&ValueFlow::Value::isLifetimeValue))) {
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
valueFlowForwardLifetime(tok, tokenlist, errorLogger, settings);
values.remove_if(std::mem_fn(&ValueFlow::Value::isLifetimeValue));
}
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
if (std::all_of(
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
vars.cbegin(), vars.cend(), [&](const Variable* var) {
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
return !var->isPointer() && !var->isSmartPointer();
astyle formatting [ci skip]
2021-01-25 22:51:50 +01:00
}))
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
values.remove_if(std::mem_fn(&ValueFlow::Value::isTokValue));
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
if (tok->astParent()) {
fixed some modernize-loop-convert clang-tidy warnings (#2815)
2020-09-21 19:30:47 +02:00
for (ValueFlow::Value& value : values) {
ValueFlow: Clarify note when impossible value is assigned (#10297)
2021-06-24 17:10:06 +02:00
std::string valueKind;
if (value.valueKind == ValueFlow::Value::ValueKind::Impossible) {
if (value.bound == ValueFlow::Value::Bound::Point)
valueKind = "never ";
else if (value.bound == ValueFlow::Value::Bound::Lower)
valueKind = "less than ";
else if (value.bound == ValueFlow::Value::Bound::Upper)
valueKind = "greater than ";
}
avoid unnecessary copies with `emplace_back()` (#4450) * avoid unnecessary copies with `emplace_back()` * cmdlineparser.cpp: suppress `accessMoved` selfcheck false positives
2022-09-10 11:25:15 +02:00
std::string info = "Assignment '" + tok->astParent()->expressionString() + "', assigned value is " + valueKind + value.infoString();
value.errorPath.emplace_back(tok, std::move(info));
astyle formatting [ci skip]
2019-04-26 11:30:35 +02:00
}
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (tokenlist.isCPP() && vars.size() == 1 && Token::Match(vars.front()->typeStartToken(), "bool|_Bool")) {
Fix 10430: FP knownConditionTrueFalse with bool from unsigned char (#3416)
2021-08-25 04:51:54 +02:00
for (ValueFlow::Value& value : values) {
if (value.isImpossible())
continue;
if (value.isIntValue())
value.intvalue = (value.intvalue != 0);
if (value.isTokValue())
value.intvalue = (value.tokvalue != nullptr);
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
}
}
// Static variable initialisation?
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
if (vars.size() == 1 && vars.front()->isStatic() && init)
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
lowerToPossible(values);
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
Fix 10223: ValueFlow; known value for a volatile variable (#3658)
2022-01-01 23:15:14 +01:00
// is volatile
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::any_of(vars.cbegin(), vars.cend(), [&](const Variable* var) {
Fix 10223: ValueFlow; known value for a volatile variable (#3658)
2022-01-01 23:15:14 +01:00
return var->isVolatile();
}))
lowerToPossible(values);
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
// Skip RHS
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
Token* nextExpression = tok->astParent() ? nextAfterAstRightmostLeaf(tok->astParent()) : tok->next();
ValueFlow: Fix crash
2022-03-02 21:12:37 +01:00
if (!nextExpression)
return;
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
for (ValueFlow::Value& value : values) {
if (value.isSymbolicValue())
continue;
if (value.isTokValue())
continue;
Fix issue 8785: ValueFlow: Track pointer alias This fixes the issue by making `ProgramMemory` keep track of values based on the conditions. It also removes the `deadpointer` check since it duplicates the `invalidLifetime` check.
2019-09-03 17:15:58 +02:00
value.tokvalue = tok;
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
}
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
// Const variable
if (expr->variable() && expr->variable()->isConst() && !expr->variable()->isReference()) {
auto it = std::remove_if(values.begin(), values.end(), [](const ValueFlow::Value& value) {
if (!value.isKnown())
return false;
if (value.isIntValue())
return true;
if (value.isFloatValue())
return true;
if (value.isContainerSizeValue())
return true;
if (value.isIteratorValue())
return true;
return false;
});
std::list<ValueFlow::Value> constValues;
constValues.splice(constValues.end(), values, it, values.end());
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
valueFlowForwardConst(nextExpression, endOfVarScope, expr->variable(), constValues, settings);
ValueFlow: Propagate const variables more aggressively (#3606) * ValueFlow: Propagate const variables more aggressively * Format * Fix incorrect addition
2021-12-06 09:16:42 +01:00
}
Set the lower and upper bounds for variable that are only incremented or decremented (#5523) Also, changed `isExpressionChanged` and `isThisChanged` to return the token that is being modified and renamed the functions to `findExpressionChanged` and `findThisChanged`.
2023-10-19 18:42:52 +02:00
if (isInitialVarAssign(expr)) {
// Check if variable is only incremented or decremented
ValueFlow::Value::Bound b = findVarBound(expr->variable(), nextExpression, endOfVarScope, settings);
if (b != ValueFlow::Value::Bound::Point) {
auto knownValueIt = std::find_if(values.begin(), values.end(), [](const ValueFlow::Value& value) {
if (!value.isKnown())
return false;
return value.isIntValue();
});
if (knownValueIt != values.end()) {
ValueFlow::Value value = *knownValueIt;
value.bound = b;
value.invertRange();
value.setImpossible();
valueFlowForwardConst(nextExpression, endOfVarScope, expr->variable(), {value}, settings);
}
}
}
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
valueFlowForward(nextExpression, endOfVarScope, expr, values, tokenlist, settings);
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
}
static void valueFlowForwardAssign(Token* const tok,
const Variable* const var,
const std::list<ValueFlow::Value>& values,
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
const bool /*unused*/,
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
const bool init,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
ErrorLogger* const errorLogger,
const Settings* const settings)
{
valueFlowForwardAssign(tok, var->nameToken(), {var}, values, init, tokenlist, errorLogger, settings);
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
}
Fix 10297: Regression; ValueFlow known value, sign conversion (#3307)
2021-06-26 09:16:04 +02:00
static std::list<ValueFlow::Value> truncateValues(std::list<ValueFlow::Value> values,
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
const ValueType* dst,
const ValueType* src,
const Settings* settings)
Fixed #6317 (wrong simplification: int i = 1.5; return i; get simplified to: return 1.5;)
2019-05-01 17:05:16 +02:00
{
Fix 10297: Regression; ValueFlow known value, sign conversion (#3307)
2021-06-26 09:16:04 +02:00
if (!dst || !dst->isIntegral())
Fixed #6317 (wrong simplification: int i = 1.5; return i; get simplified to: return 1.5;)
2019-05-01 17:05:16 +02:00
return values;
Fix 10297: Regression; ValueFlow known value, sign conversion (#3307)
2021-06-26 09:16:04 +02:00
const size_t sz = ValueFlow::getSizeOf(*dst, settings);
if (src) {
const size_t osz = ValueFlow::getSizeOf(*src, settings);
if (osz >= sz && dst->sign == ValueType::Sign::SIGNED && src->sign == ValueType::Sign::UNSIGNED) {
values.remove_if([&](const ValueFlow::Value& value) {
if (!value.isIntValue())
return false;
if (!value.isImpossible())
return false;
if (value.bound != ValueFlow::Value::Bound::Upper)
return false;
if (osz == sz && value.intvalue < 0)
return true;
if (osz > sz)
return true;
return false;
});
}
}
Fixed #6317 (wrong simplification: int i = 1.5; return i; get simplified to: return 1.5;)
2019-05-01 17:05:16 +02:00
for (ValueFlow::Value &value : values) {
Typos found by running "codespell" (#3251)
2021-05-19 11:49:19 +02:00
// Don't truncate impossible values since those can be outside of the valid range
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
if (value.isImpossible())
continue;
Fixed #6317 (wrong simplification: int i = 1.5; return i; get simplified to: return 1.5;)
2019-05-01 17:05:16 +02:00
if (value.isFloatValue()) {
value.intvalue = value.floatValue;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
value.valueType = ValueFlow::Value::ValueType::INT;
Fixed #6317 (wrong simplification: int i = 1.5; return i; get simplified to: return 1.5;)
2019-05-01 17:05:16 +02:00
}
if (value.isIntValue() && sz > 0 && sz < 8) {
const MathLib::biguint unsignedMaxValue = (1ULL << (sz * 8)) - 1ULL;
const MathLib::biguint signBit = 1ULL << (sz * 8 - 1);
value.intvalue &= unsignedMaxValue;
Fix 10297: Regression; ValueFlow known value, sign conversion (#3307)
2021-06-26 09:16:04 +02:00
if (dst->sign == ValueType::Sign::SIGNED && (value.intvalue & signBit))
Fixed #6317 (wrong simplification: int i = 1.5; return i; get simplified to: return 1.5;)
2019-05-01 17:05:16 +02:00
value.intvalue |= ~unsignedMaxValue;
}
}
return values;
}
valueFlowAfterAssign: variable initialization
2020-06-14 21:14:05 +02:00
static bool isVariableInit(const Token *tok)
{
Partial fix for #10358: set value for int s{ 4 }; (#3506)
2021-10-15 20:05:42 +02:00
return (tok->str() == "(" || tok->str() == "{") &&
Fix #10358 Bad ValueFlow depending on initialization (#5052)
2023-05-12 07:19:44 +02:00
(tok->isBinaryOp() || (tok->astOperand1() && tok->link() == tok->next())) &&
valueFlowAfterAssign: variable initialization
2020-06-14 21:14:05 +02:00
tok->astOperand1()->variable() &&
tok->astOperand1()->variable()->nameToken() == tok->astOperand1() &&
tok->astOperand1()->variable()->valueType() &&
tok->astOperand1()->variable()->valueType()->type >= ValueType::Type::VOID &&
!Token::simpleMatch(tok->astOperand2(), ",");
}
Fix 10800: Hang / memory exhaustion on numerical code (#3822) * Fix 10800: Hang / memory exhaustion on numerical code * Format * Add another test * Format
2022-02-11 06:52:28 +01:00
// Return true if two associative containers intersect
template<class C1, class C2>
static bool intersects(const C1& c1, const C2& c2)
{
if (c1.size() > c2.size())
return intersects(c2, c1);
enabled `readability-use-anyofallof` clang-tidy warning / added more checks to evaluate (#5339)
2023-08-31 09:04:51 +02:00
// NOLINTNEXTLINE(readability-use-anyofallof) - TODO: fix if possible / also Cppcheck false negative
Fix 10800: Hang / memory exhaustion on numerical code (#3822) * Fix 10800: Hang / memory exhaustion on numerical code * Format * Add another test * Format
2022-02-11 06:52:28 +01:00
for (auto&& x : c1) {
if (c2.find(x) != c2.end())
return true;
}
return false;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowAfterAssign(TokenList &tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
const SymbolDatabase& symboldatabase,
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
ErrorLogger *errorLogger,
const Settings *settings,
const std::set<const Scope*>& skippedFunctions)
value flow: start implementing value flow analysis of assigned value
2014-01-21 21:13:49 +01:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope * scope : symboldatabase.functionScopes) {
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
if (skippedFunctions.count(scope))
continue;
Fix 10800: Hang / memory exhaustion on numerical code (#3822) * Fix 10800: Hang / memory exhaustion on numerical code * Format * Add another test * Format
2022-02-11 06:52:28 +01:00
std::unordered_map<nonneg int, std::unordered_set<nonneg int>> backAssigns;
Refactoring; Renamed Scope::classStart and Scope::classEnd
2018-04-27 22:36:30 +02:00
for (Token* tok = const_cast<Token*>(scope->bodyStart); tok != scope->bodyEnd; tok = tok->next()) {
Refactorization: Use SymbolDatabase scope information in ValueFlow
2015-02-01 12:10:20 +01:00
// Assignment
Fix #10358 Bad ValueFlow depending on initialization (#5052)
2023-05-12 07:19:44 +02:00
bool isInit = false;
if (tok->str() != "=" && !(isInit = isVariableInit(tok)))
Fix 10570: Improve check; condition then pointer dereference, different pointers (#4216) * Try to use after assign in loop * Update valueflow forward to handle init tokens * Fix tests * Make test TODO * Format * Add tests * Format * Fix ubsan error * Use simpleMatch
2022-06-16 19:26:23 +02:00
continue;
Assign values to pointers with C++11 init (#5055) * Assign values to pointers with C++11 init * Handle assigning empty init list
2023-05-13 14:09:47 +02:00
if (tok->astParent() && !((tok->astParent()->str() == ";" && astIsLHS(tok)) || tok->astParent()->str() == "*"))
Refactorization: Use SymbolDatabase scope information in ValueFlow
2015-02-01 12:10:20 +01:00
continue;
value flow: start implementing value flow analysis of assigned value
2014-01-21 21:13:49 +01:00
Refactorization: Use SymbolDatabase scope information in ValueFlow
2015-02-01 12:10:20 +01:00
// Lhs should be a variable
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
if (!tok->astOperand1() || !tok->astOperand1()->exprId())
Fixed #7778 (valueFlowAfterAssign: alias)
2016-11-21 17:26:36 +01:00
continue;
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
std::vector<const Variable*> vars = getLHSVariables(tok);
ValueFlow: Small cleanups
2014-07-15 10:36:13 +02:00
Refactorization: Use SymbolDatabase scope information in ValueFlow
2015-02-01 12:10:20 +01:00
// Rhs values..
Fix #10358 Bad ValueFlow depending on initialization (#5052)
2023-05-12 07:19:44 +02:00
Token* rhs = tok->astOperand2();
if (!rhs && isInit)
rhs = tok;
if (!rhs || rhs->values().empty())
Refactorization: Use SymbolDatabase scope information in ValueFlow
2015-02-01 12:10:20 +01:00
continue;
value flow: start implementing value flow analysis of assigned value
2014-01-21 21:13:49 +01:00
Fix 10297: Regression; ValueFlow known value, sign conversion (#3307)
2021-06-26 09:16:04 +02:00
std::list<ValueFlow::Value> values = truncateValues(
Fix #10358 Bad ValueFlow depending on initialization (#5052)
2023-05-12 07:19:44 +02:00
rhs->values(), tok->astOperand1()->valueType(), rhs->valueType(), settings);
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
// Remove known values
std::set<ValueFlow::Value::ValueType> types;
if (tok->astOperand1()->hasKnownValue()) {
astyle formatting
2020-08-28 19:29:33 +02:00
for (const ValueFlow::Value& value:tok->astOperand1()->values()) {
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
if (value.isKnown() && !value.isSymbolicValue())
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
types.insert(value.valueType);
}
}
astyle formatting
2020-08-28 19:29:33 +02:00
values.remove_if([&](const ValueFlow::Value& value) {
return types.count(value.valueType) > 0;
});
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
// Remove container size if its not a container
if (!astIsContainer(tok->astOperand2()))
astyle formatting
2020-08-28 19:29:33 +02:00
values.remove_if([&](const ValueFlow::Value& value) {
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
return value.valueType == ValueFlow::Value::ValueType::CONTAINER_SIZE;
});
Fix 10129: false negative: knownConditionTrueFalse (#3382) * Add symbolic matching * Check for truncated values * Dont propagate uninit values * Update errorpath test * Add test case for 10129 * Add test case for FP * Remove symbolic values that are the same as the token * Fix test messages * Fix cppcheck issue * Format
2021-08-04 21:07:31 +02:00
// Remove symbolic values that are the same as the LHS
values.remove_if([&](const ValueFlow::Value& value) {
if (value.isSymbolicValue() && value.tokvalue)
return value.tokvalue->exprId() == tok->astOperand1()->exprId();
return false;
});
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
// Find references to LHS in RHS
auto isIncremental = [&](const Token* tok2) -> bool {
return findAstNode(tok2,
[&](const Token* child) {
return child->exprId() == tok->astOperand1()->exprId();
});
};
// Check symbolic values as well
const bool incremental = isIncremental(tok->astOperand2()) ||
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::any_of(values.cbegin(), values.cend(), [&](const ValueFlow::Value& value) {
Fix 11158: FP zerodiv in loop (#4356) * Fix 11158: FP zerodiv in loop * Format * Add another test * Format * Fix FP * Format
2022-08-13 08:27:20 +02:00
if (!value.isSymbolicValue())
return false;
return isIncremental(value.tokvalue);
});
// Remove values from the same assignment if it is incremental
if (incremental) {
values.remove_if([&](const ValueFlow::Value& value) {
if (value.tokvalue)
return value.tokvalue == tok->astOperand2();
return false;
});
}
Fixed #10327 (ValueFlow; Wrong Uninit value in called function)
2021-07-01 22:08:00 +02:00
// If assignment copy by value, remove Uninit values..
if ((tok->astOperand1()->valueType() && tok->astOperand1()->valueType()->pointer == 0) ||
(tok->astOperand1()->variable() && tok->astOperand1()->variable()->isReference() && tok->astOperand1()->variable()->nameToken() == tok->astOperand1()))
values.remove_if([&](const ValueFlow::Value& value) {
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
return value.isUninitValue();
});
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
if (values.empty())
continue;
Fix #10248 FP knownConditionTrueFalse static variable with direct initialization (#3922)
2022-03-22 07:24:40 +01:00
const bool init = vars.size() == 1 && (vars.front()->nameToken() == tok->astOperand1() || tok->isSplittedVarDeclEq());
Remove valueFlowFwdAnalysis and update valueFlowAfterAssign to handle expressions (#3074)
2021-01-25 17:24:36 +01:00
valueFlowForwardAssign(
Fix #10358 Bad ValueFlow depending on initialization (#5052)
2023-05-12 07:19:44 +02:00
rhs, tok->astOperand1(), vars, values, init, tokenlist, errorLogger, settings);
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
// Back propagate symbolic values
if (tok->astOperand1()->exprId() > 0) {
Token* start = nextAfterAstRightmostLeaf(tok);
const Token* end = scope->bodyEnd;
Fix 10800: Hang / memory exhaustion on numerical code (#3822) * Fix 10800: Hang / memory exhaustion on numerical code * Format * Add another test * Format
2022-02-11 06:52:28 +01:00
// Collect symbolic ids
std::unordered_set<nonneg int> ids;
for (const ValueFlow::Value& value : values) {
if (!value.isSymbolicValue())
continue;
if (!value.tokvalue)
continue;
if (value.tokvalue->exprId() == 0)
continue;
ids.insert(value.tokvalue->exprId());
}
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
for (ValueFlow::Value value : values) {
if (!value.isSymbolicValue())
continue;
const Token* expr = value.tokvalue;
value.intvalue = -value.intvalue;
value.tokvalue = tok->astOperand1();
Fix 10800: Hang / memory exhaustion on numerical code (#3822) * Fix 10800: Hang / memory exhaustion on numerical code * Format * Add another test * Format
2022-02-11 06:52:28 +01:00
// Skip if it intersects with an already assigned symbol
auto& s = backAssigns[value.tokvalue->exprId()];
if (intersects(s, ids))
continue;
s.insert(expr->exprId());
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
value.errorPath.emplace_back(tok,
tok->astOperand1()->expressionString() + " is assigned '" +
tok->astOperand2()->expressionString() + "' here.");
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(start, end, expr, value, tokenlist, settings);
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
}
}
Refactorization: Use SymbolDatabase scope information in ValueFlow
2015-02-01 12:10:20 +01:00
}
Fixed #5916 (ValueFlow: Add a valueFlowAfterCondition() function)
2014-06-15 16:47:01 +02:00
}
}
Fixed #5301 (False positive: (error) Division by zero - variables read from input stream)
2014-02-22 12:09:54 +01:00
Fix 10538: FN: nullPointer (std::swap pointers) (#3504)
2021-10-15 10:58:16 +02:00
static std::vector<const Variable*> getVariables(const Token* tok)
{
std::vector<const Variable*> result;
visitAstNodes(tok, [&](const Token* child) {
if (child->variable())
result.push_back(child->variable());
return ChildrenToVisit::op1_and_op2;
});
return result;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowAfterSwap(TokenList& tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
const SymbolDatabase& symboldatabase,
Fix 10538: FN: nullPointer (std::swap pointers) (#3504)
2021-10-15 10:58:16 +02:00
ErrorLogger* errorLogger,
const Settings* settings)
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope* scope : symboldatabase.functionScopes) {
Fix 10538: FN: nullPointer (std::swap pointers) (#3504)
2021-10-15 10:58:16 +02:00
for (Token* tok = const_cast<Token*>(scope->bodyStart); tok != scope->bodyEnd; tok = tok->next()) {
if (!Token::simpleMatch(tok, "swap ("))
continue;
if (!Token::simpleMatch(tok->next()->astOperand2(), ","))
continue;
std::vector<Token*> args = astFlatten(tok->next()->astOperand2(), ",");
if (args.size() != 2)
continue;
Fix 10665: Crash in ExpressionAnalyzer (#3661)
2022-01-02 08:09:23 +01:00
if (args[0]->exprId() == 0)
continue;
if (args[1]->exprId() == 0)
continue;
Fix 10538: FN: nullPointer (std::swap pointers) (#3504)
2021-10-15 10:58:16 +02:00
for (int i = 0; i < 2; i++) {
std::vector<const Variable*> vars = getVariables(args[0]);
Fix #10704 FN redundantCopyLocalConst (#4115)
2022-07-10 11:33:24 +02:00
const std::list<ValueFlow::Value>& values = args[0]->values();
Fix 10538: FN: nullPointer (std::swap pointers) (#3504)
2021-10-15 10:58:16 +02:00
valueFlowForwardAssign(args[0], args[1], vars, values, false, tokenlist, errorLogger, settings);
std::swap(args[0], args[1]);
}
}
}
}
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
static void valueFlowSetConditionToKnown(const Token* tok, std::list<ValueFlow::Value>& values, bool then)
{
if (values.empty())
return;
if (then && !Token::Match(tok, "==|!|("))
return;
if (!then && !Token::Match(tok, "!=|%var%|("))
return;
if (isConditionKnown(tok, then))
changePossibleToKnown(values);
Fix issue 9207: Not detected 'always true' and unreachable code
2019-08-08 07:46:47 +02:00
}
static bool isBreakScope(const Token* const endToken)
{
if (!Token::simpleMatch(endToken, "}"))
return false;
if (!Token::simpleMatch(endToken->link(), "{"))
return false;
return Token::findmatch(endToken->link(), "break|goto", endToken);
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
ValueFlow::Value ValueFlow::asImpossible(ValueFlow::Value v)
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
{
v.invertRange();
v.setImpossible();
return v;
}
Fix gcc compiler warnings
2019-09-28 20:50:56 +02:00
static void insertImpossible(std::list<ValueFlow::Value>& values, const std::list<ValueFlow::Value>& input)
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
{
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
std::transform(input.cbegin(), input.cend(), std::back_inserter(values), &ValueFlow::asImpossible);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
}
Fix issue 9849: false positive: containerOutOfBounds (#2753)
2020-08-25 07:12:41 +02:00
static void insertNegateKnown(std::list<ValueFlow::Value>& values, const std::list<ValueFlow::Value>& input)
{
astyle formatting [ci skip]
2020-08-26 10:15:09 +02:00
for (ValueFlow::Value value:input) {
Fix issue 9849: false positive: containerOutOfBounds (#2753)
2020-08-25 07:12:41 +02:00
if (!value.isIntValue() && !value.isContainerSizeValue())
continue;
value.intvalue = !value.intvalue;
value.setKnown();
avoid unnecessary copies with `push_back()` and `push_front()` (#4451)
2022-09-08 09:21:35 +02:00
values.push_back(std::move(value));
Fix issue 9849: false positive: containerOutOfBounds (#2753)
2020-08-25 07:12:41 +02:00
}
}
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
struct ConditionHandler {
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
struct Condition {
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
const Token* vartok{};
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
std::list<ValueFlow::Value> true_values;
std::list<ValueFlow::Value> false_values;
Fix issue 9849: false positive: containerOutOfBounds (#2753)
2020-08-25 07:12:41 +02:00
bool inverted = false;
Fix 10409: FP 'Condition 's.size()<3' is always false' (#3396)
2021-08-14 06:48:38 +02:00
// Whether to insert impossible values for the condition or only use possible values
bool impossible = true;
Refactorization: Use SymbolDatabase scope information in ValueFlow
2015-02-01 12:10:20 +01:00
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
bool isBool() const {
return astIsBool(vartok);
}
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
static MathLib::bigint findPath(const std::list<ValueFlow::Value>& values)
{
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
auto it = std::find_if(values.cbegin(), values.cend(), [](const ValueFlow::Value& v) {
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
return v.path > 0;
});
if (it == values.end())
return 0;
assert(std::all_of(it, values.end(), [&](const ValueFlow::Value& v) {
return v.path == 0 || v.path == it->path;
}));
return it->path;
}
MathLib::bigint getPath() const
{
assert(std::abs(findPath(true_values) - findPath(false_values)) == 0);
return findPath(true_values) | findPath(false_values);
}
Fix 11557: FP derefInvalidIteratorRedundantCheck in and/or condition (#4892)
2023-03-16 15:00:27 +01:00
Token* getContextAndValues(Token* condTok,
std::list<ValueFlow::Value>& thenValues,
std::list<ValueFlow::Value>& elseValues,
bool known = false) const
{
const MathLib::bigint path = getPath();
const bool allowKnown = path == 0;
const bool allowImpossible = impossible && allowKnown;
bool inverted2 = inverted;
Token* ctx = skipNotAndCasts(condTok, &inverted2);
bool then = !inverted || !inverted2;
if (!Token::Match(condTok, "!=|=|(|.") && condTok != vartok) {
thenValues.insert(thenValues.end(), true_values.cbegin(), true_values.cend());
if (allowImpossible && (known || isConditionKnown(ctx, !then)))
insertImpossible(elseValues, false_values);
}
if (!Token::Match(condTok, "==|!")) {
elseValues.insert(elseValues.end(), false_values.cbegin(), false_values.cend());
if (allowImpossible && (known || isConditionKnown(ctx, then))) {
insertImpossible(thenValues, true_values);
if (isBool())
insertNegateKnown(thenValues, true_values);
}
}
if (inverted2)
std::swap(thenValues, elseValues);
return ctx;
}
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
};
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
virtual std::vector<Condition> parse(const Token* tok, const Settings* settings) const = 0;
Fix 10314: Possible nullPointerRedundantCheck false positive (#3298)
2021-06-19 13:59:48 +02:00
virtual Analyzer::Result forward(Token* start,
const Token* stop,
const Token* exprTok,
const std::list<ValueFlow::Value>& values,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current()) const
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return valueFlowForward(start->next(), stop, exprTok, values, tokenlist, settings, loc);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
Refactor: Use valueFlowForward to forward values in condition expression (#3369)
2021-08-01 10:13:14 +02:00
virtual Analyzer::Result forward(Token* top,
const Token* exprTok,
const std::list<ValueFlow::Value>& values,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current()) const
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return valueFlowForwardRecursive(top, exprTok, values, tokenlist, settings, loc);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
Refactor: Use valueFlowForward to forward values in condition expression (#3369)
2021-08-01 10:13:14 +02:00
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
virtual void reverse(Token* start,
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
const Token* endToken,
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
const Token* exprTok,
const std::list<ValueFlow::Value>& values,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
SourceLocation loc = SourceLocation::current()) const
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
{
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return valueFlowReverse(start, endToken, exprTok, values, tokenlist, settings, loc);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
void traverseCondition(const TokenList& tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
const SymbolDatabase& symboldatabase,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
const std::set<const Scope*>& skippedFunctions,
Refactor: ConditionHandler cleanup (#3394)
2021-08-11 08:37:37 +02:00
const std::function<void(const Condition& cond, Token* tok, const Scope* scope)>& f) const
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope *scope : symboldatabase.functionScopes) {
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
if (skippedFunctions.count(scope))
continue;
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
for (Token *tok = const_cast<Token *>(scope->bodyStart); tok != scope->bodyEnd; tok = tok->next()) {
Fix issue 2153: valueFlowAfterCondition: struct member (#2228) * Fix issue 2153: valueFlowAfterCondition: struct member * Fix null pointer dereference * Formatting * Check for another null pointer * Initialize variables * Remove redundant condition * Format * Add missing initialization to copy constructor * Format
2019-09-30 21:04:43 +02:00
if (Token::Match(tok, "if|while|for ("))
continue;
Fix 10605: FP containerOutOfBounds with empty() check (#3572)
2021-11-25 22:34:00 +01:00
if (Token::Match(tok, ":|;|,"))
continue;
Fix issue 2153: valueFlowAfterCondition: struct member (#2228) * Fix issue 2153: valueFlowAfterCondition: struct member * Fix null pointer dereference * Formatting * Check for another null pointer * Initialize variables * Remove redundant condition * Format * Add missing initialization to copy constructor * Format
2019-09-30 21:04:43 +02:00
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
const Token* top = tok->astTop();
if (!top)
continue;
Fix 10821: FN: containerOutOfBounds (#3856) * Fix 10821: FN: containerOutOfBounds * Format * Fix cppcheck warning * Add valueflow tests * Format * Fix some bugs * Format
2022-02-25 05:53:51 +01:00
if (!Token::Match(top->previous(), "if|while|for (") && !Token::Match(tok->astParent(), "&&|%oror%|?|!"))
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
continue;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
for (const Condition& cond : parse(tok, settings)) {
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
if (!cond.vartok)
continue;
Refactor: Assert an expression has an id and fix assertion failures (#3377) * Fix 10390: FP: knownConditionTrueFalse * Assert expression has an ID * Fix assertion errors * Format
2021-08-03 06:31:52 +02:00
if (cond.vartok->exprId() == 0)
continue;
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
if (cond.vartok->hasKnownIntValue())
continue;
if (cond.true_values.empty() || cond.false_values.empty())
continue;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (!isConstExpression(cond.vartok, settings->library, tokenlist.isCPP()))
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
continue;
Refactor: ConditionHandler cleanup (#3394)
2021-08-11 08:37:37 +02:00
f(cond, tok, scope);
Formatted the code, there are no functional changes [ci skip].
2019-10-01 08:39:08 +02:00
}
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
}
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
void beforeCondition(TokenList& tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
const SymbolDatabase& symboldatabase,
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
ErrorLogger* errorLogger,
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
const Settings* settings,
const std::set<const Scope*>& skippedFunctions) const {
traverseCondition(tokenlist, symboldatabase, settings, skippedFunctions, [&](const Condition& cond, Token* tok, const Scope*) {
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
if (cond.vartok->exprId() == 0)
return;
Improve valeflow analysis with comparison operators (#1131) * Improve valeflow analysis with comparison operators * Use simple match * Dont add 0 on comparisons * Check reverse comparisons * Use nullptr * Remove duplicate code tests
2018-04-05 06:51:31 +02:00
Typos found by running "codespell" (#3042)
2021-01-12 20:48:25 +01:00
// If condition is known then don't propagate value
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
if (tok->hasKnownIntValue())
return;
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
Token* top = tok->astTop();
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
if (Token::Match(top, "%assign%"))
return;
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
if (Token::Match(cond.vartok->astParent(), "%assign%|++|--"))
return;
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
if (Token::simpleMatch(tok->astParent(), "?") && tok->astParent()->isExpandedMacro()) {
if (settings->debugwarnings)
bailout(tokenlist,
errorLogger,
tok,
"variable '" + cond.vartok->expressionString() + "', condition is defined in macro");
return;
}
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
// if,macro => bailout
if (Token::simpleMatch(top->previous(), "if (") && top->previous()->isExpandedMacro()) {
if (settings->debugwarnings)
bailout(tokenlist,
errorLogger,
tok,
"variable '" + cond.vartok->expressionString() + "', condition is defined in macro");
return;
}
astyle formatting ci skip
2020-12-25 08:58:12 +01:00
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
std::list<ValueFlow::Value> values = cond.true_values;
if (cond.true_values != cond.false_values)
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
values.insert(values.end(), cond.false_values.cbegin(), cond.false_values.cend());
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
// extra logic for unsigned variables 'i>=1' => possible value can also be 0
Fix #11741 FP knownConditionTrueFalse minus/negation confuses check (#5766)
2023-12-16 17:03:56 +01:00
if (Token::Match(tok, "<|>|<=|>=")) {
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
values.remove_if([](const ValueFlow::Value& v) {
if (v.isIntValue())
return v.intvalue != 0;
return false;
});
if (cond.vartok->valueType() && cond.vartok->valueType()->sign != ValueType::Sign::UNSIGNED)
return;
}
if (values.empty())
return;
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
// bailout: for/while-condition, variable is changed in while loop
if (Token::Match(top->previous(), "for|while (") && Token::simpleMatch(top->link(), ") {")) {
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
// Variable changed in 3rd for-expression
if (Token::simpleMatch(top->previous(), "for (")) {
if (top->astOperand2() && top->astOperand2()->astOperand2() &&
Set the lower and upper bounds for variable that are only incremented or decremented (#5523) Also, changed `isExpressionChanged` and `isThisChanged` to return the token that is being modified and renamed the functions to `findExpressionChanged` and `findThisChanged`.
2023-10-19 18:42:52 +02:00
findExpressionChanged(
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
cond.vartok, top->astOperand2()->astOperand2(), top->link(), settings, tokenlist.isCPP())) {
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
if (settings->debugwarnings)
bailout(tokenlist,
errorLogger,
tok,
"variable '" + cond.vartok->expressionString() + "' used in loop");
return;
ValueFlow: analysis in condition.
2014-06-19 17:29:41 +02:00
}
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
}
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
// Variable changed in loop code
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
const Token* const start = top;
const Token* const block = top->link()->next();
const Token* const end = block->link();
Set the lower and upper bounds for variable that are only incremented or decremented (#5523) Also, changed `isExpressionChanged` and `isThisChanged` to return the token that is being modified and renamed the functions to `findExpressionChanged` and `findThisChanged`.
2023-10-19 18:42:52 +02:00
if (findExpressionChanged(cond.vartok, start, end, settings, tokenlist.isCPP())) {
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
// If its reassigned in loop then analyze from the end
if (!Token::Match(tok, "%assign%|++|--") &&
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
findExpression(cond.vartok->exprId(), start, end, [&](const Token* tok2) {
return Token::Match(tok2->astParent(), "%assign%") && astIsLHS(tok2);
astyle formatting [ci skip]
2021-01-25 22:51:50 +01:00
})) {
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
// Start at the end of the loop body
Token* bodyTok = top->link()->next();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
reverse(bodyTok->link(), bodyTok, cond.vartok, values, tokenlist, settings);
astyle formatting ci skip
2020-12-25 08:58:12 +01:00
}
Fix issue 8143: valueFlowCondition: before and inside while (#3045)
2021-01-23 17:52:01 +01:00
if (settings->debugwarnings)
bailout(tokenlist,
errorLogger,
tok,
"variable '" + cond.vartok->expressionString() + "' used in loop");
return;
ValueFlow: analysis in condition.
2014-06-19 17:29:41 +02:00
}
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
}
Fixed #5968 (False positive: 'Possible null pointer dereference' when checking null in negated conjuction)
2014-07-07 17:48:58 +02:00
Fix issue 10141: Errors with ref assignment (duplicateValueTenary and knownEmptyContainer) (#3093)
2021-02-09 15:27:46 +01:00
Token* startTok = nullptr;
if (astIsRHS(tok))
startTok = tok->astParent();
else if (astIsLHS(tok))
startTok = previousBeforeAstLeftmostLeaf(tok->astParent());
if (!startTok)
startTok = tok->previous();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
reverse(startTok, nullptr, cond.vartok, values, tokenlist, settings);
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
});
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
}
astyle formatting ci skip
2020-12-25 08:58:12 +01:00
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
static Token* skipNotAndCasts(Token* tok, bool* inverted = nullptr)
{
for (; tok->astParent(); tok = tok->astParent()) {
if (Token::simpleMatch(tok->astParent(), "!")) {
if (inverted)
*inverted ^= true;
continue;
}
if (Token::Match(tok->astParent(), "==|!=")) {
Fix FN constVariablePointer (#5076) * Fix FN constVariablePointer * Fix FP * Add const * Fix tests * Add const
2023-05-22 19:53:51 +02:00
const Token* sibling = tok->astSibling();
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (sibling->hasKnownIntValue() && (astIsBool(tok) || astIsBool(sibling))) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const bool value = sibling->values().front().intvalue;
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (inverted)
*inverted ^= value == Token::simpleMatch(tok->astParent(), "!=");
continue;
}
}
if (tok->astParent()->isCast() && astIsBool(tok->astParent()))
continue;
return tok;
}
return tok;
}
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
static void fillFromPath(ProgramMemory& pm, const Token* top, MathLib::bigint path)
{
if (path < 1)
return;
visitAstNodes(top, [&](const Token* tok) {
const ValueFlow::Value* v = ValueFlow::findValue(tok->values(), nullptr, [&](const ValueFlow::Value& v) {
return v.path == path && isNonConditionalPossibleIntValue(v);
});
if (v == nullptr)
return ChildrenToVisit::op1_and_op2;
pm.setValue(tok, *v);
return ChildrenToVisit::op1_and_op2;
});
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
void afterCondition(TokenList& tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
const SymbolDatabase& symboldatabase,
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
ErrorLogger* errorLogger,
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
const Settings* settings,
const std::set<const Scope*>& skippedFunctions) const {
traverseCondition(tokenlist, symboldatabase, settings, skippedFunctions, [&](const Condition& cond, Token* condTok, const Scope* scope) {
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
Token* top = condTok->astTop();
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
const MathLib::bigint path = cond.getPath();
const bool allowKnown = path == 0;
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
std::list<ValueFlow::Value> thenValues;
std::list<ValueFlow::Value> elseValues;
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
Fix 11557: FP derefInvalidIteratorRedundantCheck in and/or condition (#4892)
2023-03-16 15:00:27 +01:00
Token* ctx = cond.getContextAndValues(condTok, thenValues, elseValues);
astyle formatting ci skip
2020-12-25 08:58:12 +01:00
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (Token::Match(ctx->astParent(), "%oror%|&&")) {
Token* parent = ctx->astParent();
if (astIsRHS(ctx) && astIsLHS(parent) && parent->astParent() &&
Refactor: Use valueFlowForward to forward values in condition expression (#3369)
2021-08-01 10:13:14 +02:00
parent->str() == parent->astParent()->str())
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
parent = parent->astParent();
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
else if (!astIsLHS(ctx)) {
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
parent = nullptr;
}
if (parent) {
Fix 9948 and 10234: false negative: knownConditionTrueFalse and stlOutOfBounds (#3372)
2021-08-02 10:51:34 +02:00
std::vector<Token*> nextExprs = {parent->astOperand2()};
if (astIsLHS(parent) && parent->astParent() && parent->astParent()->str() == parent->str()) {
nextExprs.push_back(parent->astParent()->astOperand2());
}
Fix 11557: FP derefInvalidIteratorRedundantCheck in and/or condition (#4892)
2023-03-16 15:00:27 +01:00
std::list<ValueFlow::Value> andValues;
std::list<ValueFlow::Value> orValues;
cond.getContextAndValues(condTok, andValues, orValues, true);
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
const std::string& op(parent->str());
std::list<ValueFlow::Value> values;
if (op == "&&")
Fix 11557: FP derefInvalidIteratorRedundantCheck in and/or condition (#4892)
2023-03-16 15:00:27 +01:00
values = andValues;
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
else if (op == "||")
Fix 11557: FP derefInvalidIteratorRedundantCheck in and/or condition (#4892)
2023-03-16 15:00:27 +01:00
values = orValues;
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
if (allowKnown && (Token::Match(condTok, "==|!=") || cond.isBool()))
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
changePossibleToKnown(values);
Refactor: Use valueFlowForward to forward values in condition expression (#3369)
2021-08-01 10:13:14 +02:00
if (astIsFloat(cond.vartok, false) ||
(!cond.vartok->valueType() &&
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::all_of(values.cbegin(), values.cend(), [](const ValueFlow::Value& v) {
Refactor: ConditionHandler cleanup (#3394)
2021-08-11 08:37:37 +02:00
return v.isIntValue() || v.isFloatValue();
})))
values.remove_if([&](const ValueFlow::Value& v) {
return v.isImpossible();
});
for (Token* start:nextExprs) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
Analyzer::Result r = forward(start, cond.vartok, values, tokenlist, settings);
Fix 11384: FP knownConditionTrueFalse when variable is modified in return statement (#4625) * Fix 11384: FP knownConditionTrueFalse when variable is modified in return statement * Format
2022-12-09 07:15:15 +01:00
if (r.terminate != Analyzer::Terminate::None || r.action.isModified())
Fix 9948 and 10234: false negative: knownConditionTrueFalse and stlOutOfBounds (#3372)
2021-08-02 10:51:34 +02:00
return;
}
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
}
}
{
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
const Token* tok2 = condTok;
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
std::string op;
bool mixedOperators = false;
while (tok2->astParent()) {
const Token* parent = tok2->astParent();
if (Token::Match(parent, "%oror%|&&")) {
if (op.empty()) {
op = parent->str();
} else if (op != parent->str()) {
mixedOperators = true;
break;
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
}
}
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
if (parent->str() == "!") {
op = (op == "&&" ? "||" : "&&");
}
tok2 = parent;
}
if (mixedOperators) {
return;
}
}
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (!top)
return;
Fix false positives with condition with || and && The value of something in the middle of a condition with mixed || and && gives no information on which branch will be taken. For instance with: ``` int f(int a, int b, bool x) {\n" if (a == 1 && (!(b == 2 && x))) { } else { if (x) { } } return 0; } ``` We can enter the if part whether x is true or false, and similarly, enter the else part whether x is true or false. Same thing with the value of b. This fixes the following false positive with above code: ``` :4:13: style: Condition 'x' is always true [knownConditionTrueFalse] if (x) { ^ :2:33: note: Assuming that condition 'x' is not redundant if (a == 6 && (!(b == 21 && x))) { ^ ```
2020-09-10 16:18:30 +02:00
Fix 10617, 9824: conditions in expanded macro (#3578)
2021-11-25 18:40:15 +01:00
if (top->previous()->isExpandedMacro()) {
for (std::list<ValueFlow::Value>* values : {&thenValues, &elseValues}) {
for (ValueFlow::Value& v : *values)
v.macro = true;
}
}
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
Token* condTop = ctx->astParent();
Fix 10821: FN: containerOutOfBounds (#3856) * Fix 10821: FN: containerOutOfBounds * Format * Fix cppcheck warning * Add valueflow tests * Format * Fix some bugs * Format
2022-02-25 05:53:51 +01:00
{
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
bool inverted2 = false;
while (Token::Match(condTop, "%oror%|&&")) {
Token* parent = skipNotAndCasts(condTop, &inverted2)->astParent();
if (!parent)
break;
condTop = parent;
Fix 10821: FN: containerOutOfBounds (#3856) * Fix 10821: FN: containerOutOfBounds * Format * Fix cppcheck warning * Add valueflow tests * Format * Fix some bugs * Format
2022-02-25 05:53:51 +01:00
}
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (inverted2)
std::swap(thenValues, elseValues);
Fix 10821: FN: containerOutOfBounds (#3856) * Fix 10821: FN: containerOutOfBounds * Format * Fix cppcheck warning * Add valueflow tests * Format * Fix some bugs * Format
2022-02-25 05:53:51 +01:00
}
Fix 10957: Crash on valid code (#3991)
2022-04-10 22:47:58 +02:00
if (!condTop)
return;
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (Token::simpleMatch(condTop, "?")) {
Token* colon = condTop->astOperand2();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
forward(colon->astOperand1(), cond.vartok, thenValues, tokenlist, settings);
forward(colon->astOperand2(), cond.vartok, elseValues, tokenlist, settings);
Fix 10821: FN: containerOutOfBounds (#3856) * Fix 10821: FN: containerOutOfBounds * Format * Fix cppcheck warning * Add valueflow tests * Format * Fix some bugs * Format
2022-02-25 05:53:51 +01:00
// TODO: Handle after condition
return;
}
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (condTop != top && condTop->str() != ";")
return;
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (!Token::Match(top->previous(), "if|while|for ("))
return;
if (top->previous()->str() == "for") {
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (!Token::Match(condTok, "%comp%"))
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
return;
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (!Token::simpleMatch(condTok->astParent(), ";"))
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
return;
const Token* stepTok = getStepTok(top);
if (cond.vartok->varId() == 0)
return;
if (!cond.vartok->variable())
return;
if (!Token::Match(stepTok, "++|--"))
return;
std::set<ValueFlow::Value::Bound> bounds;
for (const ValueFlow::Value& v : thenValues) {
if (v.bound != ValueFlow::Value::Bound::Point && v.isImpossible())
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
continue;
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
bounds.insert(v.bound);
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
}
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (Token::simpleMatch(stepTok, "++") && bounds.count(ValueFlow::Value::Bound::Lower) > 0)
return;
if (Token::simpleMatch(stepTok, "--") && bounds.count(ValueFlow::Value::Bound::Upper) > 0)
return;
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
const Token* childTok = condTok->astOperand1();
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (!childTok)
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
childTok = condTok->astOperand2();
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (!childTok)
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
return;
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (childTok->varId() != cond.vartok->varId())
return;
const Token* startBlock = top->link()->next();
if (isVariableChanged(startBlock,
startBlock->link(),
cond.vartok->varId(),
cond.vartok->variable()->isGlobal(),
settings,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
tokenlist.isCPP()))
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
return;
// Check if condition in for loop is always false
const Token* initTok = getInitTok(top);
ProgramMemory pm;
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
fillFromPath(pm, initTok, path);
fillFromPath(pm, condTok, path);
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
execute(initTok, pm, nullptr, nullptr);
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
MathLib::bigint result = 1;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
execute(condTok, pm, &result, nullptr);
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (result == 0)
return;
// Remove condition since for condition is not redundant
for (std::list<ValueFlow::Value>* values : {&thenValues, &elseValues}) {
for (ValueFlow::Value& v : *values) {
v.condition = nullptr;
v.conditional = true;
}
}
}
bool deadBranch[] = {false, false};
// start token of conditional code
Token* startTokens[] = {nullptr, nullptr};
// determine startToken(s)
if (Token::simpleMatch(top->link(), ") {"))
startTokens[0] = top->link()->next();
if (Token::simpleMatch(top->link()->linkAt(1), "} else {"))
startTokens[1] = top->link()->linkAt(1)->tokAt(2);
int changeBlock = -1;
int bailBlock = -1;
for (int i = 0; i < 2; i++) {
const Token* const startToken = startTokens[i];
if (!startToken)
continue;
std::list<ValueFlow::Value>& values = (i == 0 ? thenValues : elseValues);
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
if (allowKnown)
valueFlowSetConditionToKnown(condTok, values, i == 0);
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
Analyzer::Result r = forward(startTokens[i], startTokens[i]->link(), cond.vartok, values, tokenlist, settings);
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
deadBranch[i] = r.terminate == Analyzer::Terminate::Escape;
if (r.action.isModified() && !deadBranch[i])
changeBlock = i;
if (r.terminate != Analyzer::Terminate::None && r.terminate != Analyzer::Terminate::Escape &&
r.terminate != Analyzer::Terminate::Modified)
bailBlock = i;
changeKnownToPossible(values);
}
if (changeBlock >= 0 && !Token::simpleMatch(top->previous(), "while (")) {
if (settings->debugwarnings)
bailout(tokenlist,
errorLogger,
startTokens[changeBlock]->link(),
"valueFlowAfterCondition: " + cond.vartok->expressionString() +
" is changed in conditional block");
return;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
if (bailBlock >= 0) {
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (settings->debugwarnings)
bailout(tokenlist,
errorLogger,
startTokens[bailBlock]->link(),
"valueFlowAfterCondition: bailing in conditional block");
return;
}
// After conditional code..
if (Token::simpleMatch(top->link(), ") {")) {
Token* after = top->link()->linkAt(1);
bool dead_if = deadBranch[0];
bool dead_else = deadBranch[1];
const Token* unknownFunction = nullptr;
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
if (condTok->astParent() && Token::Match(top->previous(), "while|for ("))
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
dead_if = !isBreakScope(after);
else if (!dead_if)
dead_if = isReturnScope(after, &settings->library, &unknownFunction);
if (!dead_if && unknownFunction) {
Fix 10331: wrong conditional value after assignment+return (#3461)
2021-09-21 19:25:41 +02:00
if (settings->debugwarnings)
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
bailout(tokenlist, errorLogger, unknownFunction, "possible noreturn scope");
Fix 10331: wrong conditional value after assignment+return (#3461)
2021-09-21 19:25:41 +02:00
return;
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
}
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (Token::simpleMatch(after, "} else {")) {
after = after->linkAt(2);
unknownFunction = nullptr;
if (!dead_else)
dead_else = isReturnScope(after, &settings->library, &unknownFunction);
if (!dead_else && unknownFunction) {
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
if (settings->debugwarnings)
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
bailout(tokenlist, errorLogger, unknownFunction, "possible noreturn scope");
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
return;
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
}
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
}
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (dead_if && dead_else)
return;
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
std::list<ValueFlow::Value> values;
if (dead_if) {
values = elseValues;
} else if (dead_else) {
values = thenValues;
} else {
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(thenValues.cbegin(),
thenValues.cend(),
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
std::back_inserter(values),
std::mem_fn(&ValueFlow::Value::isPossible));
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(elseValues.cbegin(),
elseValues.cend(),
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
std::back_inserter(values),
std::mem_fn(&ValueFlow::Value::isPossible));
}
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (values.empty())
return;
Fix issue 10088: ValueFlow: Array size, wrong known value (#3204)
2021-04-09 07:43:54 +02:00
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (dead_if || dead_else) {
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
const Token* parent = condTok->astParent();
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
// Skip the not operator
while (Token::simpleMatch(parent, "!"))
parent = parent->astParent();
bool possible = false;
if (Token::Match(parent, "&&|%oror%")) {
Fix #10704 FN redundantCopyLocalConst (#4115)
2022-07-10 11:33:24 +02:00
const std::string& op(parent->str());
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
while (parent && parent->str() == op)
Fix issue 10088: ValueFlow: Array size, wrong known value (#3204)
2021-04-09 07:43:54 +02:00
parent = parent->astParent();
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (Token::simpleMatch(parent, "!") || Token::simpleMatch(parent, "== false"))
possible = op == "||";
else
possible = op == "&&";
}
if (possible) {
values.remove_if(std::mem_fn(&ValueFlow::Value::isImpossible));
changeKnownToPossible(values);
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
} else if (allowKnown) {
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
valueFlowSetConditionToKnown(condTok, values, true);
valueFlowSetConditionToKnown(condTok, values, false);
Refactorization: Use SymbolDatabase scope information in ValueFlow
2015-02-01 12:10:20 +01:00
}
Fixed #6219 (valueFlowForward: better multivariable analysis needed to avoid FP)
2014-10-17 06:50:33 +02:00
}
Handle for loop conditions in afterCondition (#3561)
2021-11-14 18:30:36 +01:00
if (values.empty())
return;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
const bool isKnown = std::any_of(values.cbegin(), values.cend(), [&](const ValueFlow::Value& v) {
Fix 11096: FP knownConditionTrueFalse in do while loop (#4192) * Check for loop * Improve handling of exit values * Add more checks to test * Simplify * Remove unnecessary test * Fix typo * Format * Use simpleMatch
2022-06-10 20:42:02 +02:00
return v.isKnown() || v.isImpossible();
});
if (isKnown && isBreakOrContinueScope(after)) {
const Scope* loopScope = getLoopScope(cond.vartok);
if (loopScope) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
Analyzer::Result r = forward(after, loopScope->bodyEnd, cond.vartok, values, tokenlist, settings);
Fix 11096: FP knownConditionTrueFalse in do while loop (#4192) * Check for loop * Improve handling of exit values * Add more checks to test * Simplify * Remove unnecessary test * Fix typo * Format * Use simpleMatch
2022-06-10 20:42:02 +02:00
if (r.terminate != Analyzer::Terminate::None)
return;
if (r.action.isModified())
return;
Token* start = const_cast<Token*>(loopScope->bodyEnd);
if (Token::simpleMatch(start, "} while (")) {
start = start->tokAt(2);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
forward(start, start->link(), cond.vartok, values, tokenlist, settings);
Fix 11096: FP knownConditionTrueFalse in do while loop (#4192) * Check for loop * Improve handling of exit values * Add more checks to test * Simplify * Remove unnecessary test * Fix typo * Format * Use simpleMatch
2022-06-10 20:42:02 +02:00
start = start->link();
}
values.remove_if(std::mem_fn(&ValueFlow::Value::isImpossible));
changeKnownToPossible(values);
}
}
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
forward(after, ValueFlow::getEndOfExprScope(cond.vartok, scope), cond.vartok, values, tokenlist, settings);
astyle formatting [ci skip]
2021-01-10 14:46:19 +01:00
}
});
value flow: start implementing value flow analysis of assigned value
2014-01-21 21:13:49 +01:00
}
enabled and mitigated `modernize-use-equals-default` clang-tidy warnings / removed unnecessary default destructors (#5335)
2023-08-16 17:13:36 +02:00
virtual ~ConditionHandler() = default;
fixed some `-Wdeprecated-copy-dtor` Clang compiler warnings (#4836)
2023-03-02 21:02:29 +01:00
ConditionHandler(const ConditionHandler&) = default;
protected:
ConditionHandler() = default;
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
};
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
static void valueFlowCondition(const ValuePtr<ConditionHandler>& handler,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
SymbolDatabase& symboldatabase,
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
ErrorLogger* errorLogger,
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
const Settings* settings,
const std::set<const Scope*>& skippedFunctions)
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
{
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
handler->beforeCondition(tokenlist, symboldatabase, errorLogger, settings, skippedFunctions);
handler->afterCondition(tokenlist, symboldatabase, errorLogger, settings, skippedFunctions);
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
}
struct SimpleConditionHandler : ConditionHandler {
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
std::vector<Condition> parse(const Token* tok, const Settings* /*settings*/) const override {
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
std::vector<Condition> conds;
parseCompareEachInt(tok, [&](const Token* vartok, ValueFlow::Value true_value, ValueFlow::Value false_value) {
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
if (vartok->hasKnownIntValue())
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
return;
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
if (vartok->str() == "=" && vartok->astOperand1() && vartok->astOperand2())
vartok = vartok->astOperand1();
some cleanups (#4308)
2022-07-26 08:28:55 +02:00
Condition cond;
avoid unnecessary copies with `push_back()` and `push_front()` (#4451)
2022-09-08 09:21:35 +02:00
cond.true_values.push_back(std::move(true_value));
cond.false_values.push_back(std::move(false_value));
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
cond.vartok = vartok;
avoid unnecessary copies with `push_back()` and `push_front()` (#4451)
2022-09-08 09:21:35 +02:00
conds.push_back(std::move(cond));
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
});
if (!conds.empty())
return conds;
const Token* vartok = nullptr;
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
if (tok->str() == "!") {
vartok = tok->astOperand1();
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
} else if (tok->astParent() && (Token::Match(tok->astParent(), "%oror%|&&|?") ||
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
Token::Match(tok->astParent()->previous(), "if|while ("))) {
if (Token::simpleMatch(tok, "="))
vartok = tok->astOperand1();
else if (!Token::Match(tok, "%comp%|%assign%"))
vartok = tok;
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
}
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
if (!vartok)
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
return {};
some cleanups (#4308)
2022-07-26 08:28:55 +02:00
Condition cond;
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
cond.true_values.emplace_back(tok, 0LL);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
cond.false_values.emplace_back(tok, 0LL);
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
cond.vartok = vartok;
avoid some unnecessary object creations and copies (#4493)
2022-09-29 21:47:17 +02:00
return {std::move(cond)};
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
}
};
value flow: start implementing value flow analysis of assigned value
2014-01-21 21:13:49 +01:00
Refactor: Use interval analysis for symbolic values for inferCondtion (#3488)
2021-10-09 16:19:06 +02:00
struct IntegralInferModel : InferModel {
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool match(const ValueFlow::Value& value) const override {
Refactor: Use interval analysis for symbolic values for inferCondtion (#3488)
2021-10-09 16:19:06 +02:00
return value.isIntValue();
Fix issue 6890: ValueFlow: min/max value for variable, after condition (#2460) * Set bounds when combining values * Adust bounds when they are negated * Try to infer conditional values * Switch false and true * Fix checking of conditions * Fix compare * Fix remaining tests * Fix overflows
2019-12-26 15:47:53 +01:00
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ValueFlow::Value yield(MathLib::bigint value) const override
Refactor: Use interval analysis for symbolic values for inferCondtion (#3488)
2021-10-09 16:19:06 +02:00
{
ValueFlow::Value result(value);
result.valueType = ValueFlow::Value::ValueType::INT;
result.setKnown();
return result;
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
}
Refactor: Use interval analysis for symbolic values for inferCondtion (#3488)
2021-10-09 16:19:06 +02:00
};
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
ValuePtr<InferModel> ValueFlow::makeIntegralInferModel() {
Fix for 6597: false negative: uninitialized variable usage not detected (ValueFlow , multi variables) (#3535)
2021-10-30 22:13:58 +02:00
return IntegralInferModel{};
}
CI: Add selfcheck using Cppcheck Premium. Activates Misra C++ 2008 and Cert C++ 2016 checkers. (#5623)
2023-11-06 15:31:47 +01:00
static ValueFlow::Value inferCondition(const std::string& op, const Token* varTok, MathLib::bigint val)
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
{
if (!varTok)
return ValueFlow::Value{};
if (varTok->hasKnownIntValue())
return ValueFlow::Value{};
Refactor: Use interval analysis for symbolic values for inferCondtion (#3488)
2021-10-09 16:19:06 +02:00
std::vector<ValueFlow::Value> r = infer(IntegralInferModel{}, op, varTok->values(), val);
if (r.size() == 1 && r.front().isKnown())
return r.front();
return ValueFlow::Value{};
Fix issue 9979: false positive: containerOutOfBounds with conditional resize (#3136)
2021-03-30 14:02:28 +02:00
}
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
struct IteratorInferModel : InferModel {
virtual ValueFlow::Value::ValueType getType() const = 0;
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool match(const ValueFlow::Value& value) const override {
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
return value.valueType == getType();
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ValueFlow::Value yield(MathLib::bigint value) const override
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
{
ValueFlow::Value result(value);
result.valueType = getType();
result.setKnown();
return result;
}
};
struct EndIteratorInferModel : IteratorInferModel {
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ValueFlow::Value::ValueType getType() const override {
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
return ValueFlow::Value::ValueType::ITERATOR_END;
}
};
struct StartIteratorInferModel : IteratorInferModel {
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ValueFlow::Value::ValueType getType() const override {
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
return ValueFlow::Value::ValueType::ITERATOR_END;
}
};
Refactor knownConditionTrueFalse check and isUsedAsBool function (#4432) * Refactor knownConditionTrueFalse check and isUsedAsBool function * Format1 * Format * Skip assign
2022-09-04 10:24:45 +02:00
static bool isIntegralOnlyOperator(const Token* tok) {
return Token::Match(tok, "%|<<|>>|&|^|~|%or%");
}
Fix 11296: FN: knownConditionTrueFalse ( a !=0 && b != 0 && a == 0) (#4444)
2022-09-06 07:31:48 +02:00
static bool isIntegralOrPointer(const Token* tok)
Refactor knownConditionTrueFalse check and isUsedAsBool function (#4432) * Refactor knownConditionTrueFalse check and isUsedAsBool function * Format1 * Format * Skip assign
2022-09-04 10:24:45 +02:00
{
if (!tok)
return false;
if (astIsIntegral(tok, false))
return true;
Fix 11296: FN: knownConditionTrueFalse ( a !=0 && b != 0 && a == 0) (#4444)
2022-09-06 07:31:48 +02:00
if (astIsPointer(tok))
return true;
if (Token::Match(tok, "NULL|nullptr"))
return true;
Refactor knownConditionTrueFalse check and isUsedAsBool function (#4432) * Refactor knownConditionTrueFalse check and isUsedAsBool function * Format1 * Format * Skip assign
2022-09-04 10:24:45 +02:00
if (tok->valueType())
return false;
// These operators only work on integers
if (isIntegralOnlyOperator(tok))
return true;
if (isIntegralOnlyOperator(tok->astParent()))
return true;
if (Token::Match(tok, "+|-|*|/") && tok->isBinaryOp())
Fix 11296: FN: knownConditionTrueFalse ( a !=0 && b != 0 && a == 0) (#4444)
2022-09-06 07:31:48 +02:00
return isIntegralOrPointer(tok->astOperand1()) && isIntegralOrPointer(tok->astOperand2());
Refactor knownConditionTrueFalse check and isUsedAsBool function (#4432) * Refactor knownConditionTrueFalse check and isUsedAsBool function * Format1 * Format * Skip assign
2022-09-04 10:24:45 +02:00
return false;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowInferCondition(TokenList& tokenlist,
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
const Settings* settings)
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token* tok = tokenlist.front(); tok; tok = tok->next()) {
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
if (!tok->astParent())
continue;
Add symbolic values to ValueFlow (#3367)
2021-07-30 21:29:35 +02:00
if (tok->hasKnownIntValue())
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
continue;
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
if (Token::Match(tok, "%comp%|-") && tok->astOperand1() && tok->astOperand2()) {
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
if (astIsIterator(tok->astOperand1()) || astIsIterator(tok->astOperand2())) {
Use static array to store iterator infer models instead of constructing a vector everytime (#3539)
2021-11-01 19:18:18 +01:00
static const std::array<ValuePtr<InferModel>, 2> iteratorModels = {EndIteratorInferModel{},
StartIteratorInferModel{}};
for (const ValuePtr<InferModel>& model : iteratorModels) {
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
std::vector<ValueFlow::Value> result =
infer(model, tok->str(), tok->astOperand1()->values(), tok->astOperand2()->values());
for (ValueFlow::Value value : result) {
value.valueType = ValueFlow::Value::ValueType::INT;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
}
}
Fix 11296: FN: knownConditionTrueFalse ( a !=0 && b != 0 && a == 0) (#4444)
2022-09-06 07:31:48 +02:00
} else if (isIntegralOrPointer(tok->astOperand1()) && isIntegralOrPointer(tok->astOperand2())) {
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
std::vector<ValueFlow::Value> result =
infer(IntegralInferModel{}, tok->str(), tok->astOperand1()->values(), tok->astOperand2()->values());
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
for (ValueFlow::Value& value : result) {
setTokenValue(tok, std::move(value), settings);
Fix 10226: FN: knownConditionTrueFalse (#3537)
2021-10-31 14:51:07 +01:00
}
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
}
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
} else if (Token::Match(tok->astParent(), "?|&&|!|%oror%") ||
Fix 11579: false negative: knownConditionTrueFalse with non-bool as bool parameter (#5349) This adds a new checker to check for pointer to bool conversions that are always known. I removed the previous knownConditionTrueFalse checks since this was too noisy.
2023-08-20 22:32:41 +02:00
Token::Match(tok->astParent()->previous(), "if|while (") ||
(astIsPointer(tok) && isUsedAsBool(tok, settings))) {
Fix 11610: false negative: knownConditionTrueFalse with address of variable (#4883)
2023-03-12 19:57:11 +01:00
std::vector<ValueFlow::Value> result = infer(IntegralInferModel{}, "!=", tok->values(), 0);
if (result.size() != 1)
continue;
ValueFlow::Value value = result.front();
setTokenValue(tok, std::move(value), settings);
Add impossible values to ValueFlow (#2186) * Add impossible category * Replace values * Try to adjust known values * Add ! for impossible values * Add impossible with possible values * Remove contradictions * Add values when the branch is not dead * Only copy possible values * Dont bail on while loops * Load std lib in valueflow * Check for function calls * Fix stl errors * Fix incorrect impossible check * Fix heap-after-use error * Remove impossible values when they are lowered * Show the bound and remove overlaps * Infer conditions * Dont push pointer values through dynamic_cast * Add test for dynamic_cast issue * Add shifttoomanybits test * Add test for div by zero * Add a test for issue 9315 * Dont make impossible value inconclusive * Fix FP with shift operator * Improve handleKnownValuesInLoop for impossible values * Fix cppcheck warning * Fix impossible values for ctu * Bailout for streams * Check equality conditions * Fix overflows * Add regression test for 9332 * Remove duplicate conditions * Skip impossible values for invalid value * Check for null * Rename bound to range * Formatting
2019-09-20 15:06:37 +02:00
}
}
}
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
struct SymbolicConditionHandler : SimpleConditionHandler {
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
static bool isNegatedBool(const Token* tok)
{
if (!Token::simpleMatch(tok, "!"))
return false;
return (astIsBool(tok->astOperand1()));
}
static const Token* skipNot(const Token* tok)
{
if (!Token::simpleMatch(tok, "!"))
return tok;
return tok->astOperand1();
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
std::vector<Condition> parse(const Token* tok, const Settings* settings) const override
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
{
if (!Token::Match(tok, "%comp%"))
return {};
if (tok->hasKnownIntValue())
return {};
if (!tok->astOperand1() || tok->astOperand1()->hasKnownIntValue() || tok->astOperand1()->isLiteral())
return {};
if (!tok->astOperand2() || tok->astOperand2()->hasKnownIntValue() || tok->astOperand2()->isLiteral())
return {};
Fix FP useStlAlgorithm (don't suggest std::accumulate when nothing is accumulated) (#4647)
2022-12-18 16:52:04 +01:00
if (!isConstExpression(tok, settings->library, true))
Fix 11006: FP uninitvar with unknown constant (#4056)
2022-04-28 10:48:37 +02:00
return {};
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
std::vector<Condition> result;
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
auto addCond = [&](const Token* lhsTok, const Token* rhsTok, bool inverted) {
for (int i = 0; i < 2; i++) {
const bool lhs = i == 0;
const Token* vartok = lhs ? lhsTok : rhsTok;
const Token* valuetok = lhs ? rhsTok : lhsTok;
if (valuetok->exprId() == 0)
continue;
if (valuetok->hasKnownSymbolicValue(vartok))
continue;
if (vartok->hasKnownSymbolicValue(valuetok))
continue;
ValueFlow::Value true_value;
ValueFlow::Value false_value;
setConditionalValues(tok, !lhs, 0, true_value, false_value);
setSymbolic(true_value, valuetok);
setSymbolic(false_value, valuetok);
Condition cond;
avoid some unnecessary object creations and copies (#4493)
2022-09-29 21:47:17 +02:00
cond.true_values = {std::move(true_value)};
cond.false_values = {std::move(false_value)};
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
cond.vartok = vartok;
cond.inverted = inverted;
avoid unnecessary copies with `push_back()` and `push_front()` (#4451)
2022-09-08 09:21:35 +02:00
result.push_back(std::move(cond));
Fix 10418: false negative: knownConditionTrueFalse (#3981) * Improve handling inverted condition * Fix tests * Rename variables for clarity * Add initial test * Add another test * Format * Fix FP
2022-04-07 06:48:13 +02:00
}
};
addCond(tok->astOperand1(), tok->astOperand2(), false);
if (Token::Match(tok, "==|!=") && (isNegatedBool(tok->astOperand1()) || isNegatedBool(tok->astOperand2()))) {
const Token* lhsTok = skipNot(tok->astOperand1());
const Token* rhsTok = skipNot(tok->astOperand2());
addCond(lhsTok, rhsTok, !(isNegatedBool(tok->astOperand1()) && isNegatedBool(tok->astOperand2())));
Deduce symbolic values from conditions (#3406)
2021-08-19 22:01:55 +02:00
}
return result;
}
};
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
static bool valueFlowForLoop2(const Token *tok,
ValueFlow: Refactor 'ProgramMemory' so it can handle token * values also and not just int values. I believe this refactoring is needed before #6973 can be fixed.
2015-09-12 19:49:02 +02:00
ProgramMemory *memory1,
ProgramMemory *memory2,
ProgramMemory *memoryAfter)
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
{
Token::strValue: fixed handling of backslash
2015-06-07 11:25:33 +02:00
// for ( firstExpression ; secondExpression ; thirdExpression )
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
const Token *firstExpression = tok->next()->astOperand2()->astOperand1();
const Token *secondExpression = tok->next()->astOperand2()->astOperand2()->astOperand1();
const Token *thirdExpression = tok->next()->astOperand2()->astOperand2()->astOperand2();
ValueFlow: Refactor 'ProgramMemory' so it can handle token * values also and not just int values. I believe this refactoring is needed before #6973 can be fixed.
2015-09-12 19:49:02 +02:00
ProgramMemory programMemory;
Fix some uninitialized variables
2014-03-30 10:22:06 +02:00
MathLib::bigint result(0);
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
bool error = false;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
execute(firstExpression, programMemory, &result, &error);
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
if (error)
return false;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
execute(secondExpression, programMemory, &result, &error);
ValueFlow: Fix FP in for loops when 2nd expression is 0
2016-12-20 07:54:38 +01:00
if (result == 0) // 2nd expression is false => no looping
return false;
Fixed #5939 (fp: Possible null pointer dereference, after check against NULL in for loop)
2014-06-30 07:26:48 +02:00
if (error) {
// If a variable is reassigned in second expression, return false
Refactoring: Use visitAstNodes
2018-11-23 19:16:19 +01:00
bool reassign = false;
visitAstNodes(secondExpression,
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
[&](const Token *t) {
ValueFlow: Refactor 'ProgramMemory' so it can handle token * values also and not just int values. I believe this refactoring is needed before #6973 can be fixed.
2015-09-12 19:49:02 +02:00
if (t->str() == "=" && t->astOperand1() && programMemory.hasValue(t->astOperand1()->varId()))
Fixed #5939 (fp: Possible null pointer dereference, after check against NULL in for loop)
2014-06-30 07:26:48 +02:00
// TODO: investigate what variable is assigned.
Refactoring: Use visitAstNodes
2018-11-23 19:16:19 +01:00
reassign = true;
return reassign ? ChildrenToVisit::done : ChildrenToVisit::op1_and_op2;
});
if (reassign)
return false;
Fixed #5939 (fp: Possible null pointer dereference, after check against NULL in for loop)
2014-06-30 07:26:48 +02:00
}
ValueFlow: improved abstract interpretation of for loops
2014-03-24 00:16:02 +01:00
ValueFlow: Refactor 'ProgramMemory' so it can handle token * values also and not just int values. I believe this refactoring is needed before #6973 can be fixed.
2015-09-12 19:49:02 +02:00
ProgramMemory startMemory(programMemory);
ProgramMemory endMemory;
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
Replace 'unsigned' with 'nonneg' in valueflow
2019-07-15 13:47:17 +02:00
int maxcount = 10000;
while (result != 0 && !error && --maxcount > 0) {
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
endMemory = programMemory;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
execute(thirdExpression, programMemory, &result, &error);
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
if (!error)
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
execute(secondExpression, programMemory, &result, &error);
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
}
Fix issue 10268: ValueFlow; Wrong value in for loop (#3257)
2021-05-15 08:39:20 +02:00
if (memory1)
memory1->swap(startMemory);
ValueFlow: Improved value flow after for loop
2014-08-17 10:40:22 +02:00
if (!error) {
Fix issue 10268: ValueFlow; Wrong value in for loop (#3257)
2021-05-15 08:39:20 +02:00
if (memory2)
memory2->swap(endMemory);
if (memoryAfter)
memoryAfter->swap(programMemory);
ValueFlow: Improved value flow after for loop
2014-08-17 10:40:22 +02:00
}
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
ValueFlow: improved abstract interpretation of for loops
2014-03-24 00:16:02 +01:00
return true;
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
}
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
static void valueFlowForLoopSimplify(Token* const bodyStart,
const Token* expr,
bool globalvar,
const MathLib::bigint value,
Fix #12208 FN constParameterReference with nested struct/class (#5685)
2023-11-20 22:01:22 +01:00
const TokenList& tokenlist,
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
ErrorLogger* errorLogger,
const Settings* settings)
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
{
Typos found by running "codespell" (#4260)
2022-07-10 22:40:05 +02:00
// TODO: Refactor this to use arbitrary expressions
Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops (#4113) * Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops * Format * Remove print statement
2022-05-18 08:29:30 +02:00
assert(expr->varId() > 0);
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
const Token * const bodyEnd = bodyStart->link();
// Is variable modified inside for loop
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (isVariableChanged(bodyStart, bodyEnd, expr->varId(), globalvar, settings, tokenlist.isCPP()))
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
return;
for (Token *tok2 = bodyStart->next(); tok2 != bodyEnd; tok2 = tok2->next()) {
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
if (tok2->varId() == expr->varId()) {
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
const Token * parent = tok2->astParent();
while (parent) {
const Token * const p = parent;
parent = parent->astParent();
Remove duplicate checks
2014-09-03 12:17:34 +02:00
if (!parent || parent->str() == ":")
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
break;
Remove duplicate checks
2014-09-03 12:17:34 +02:00
if (parent->str() == "?") {
Buffer overruns: Use ValueFlow to detect negative index
2014-03-25 18:22:22 +01:00
if (parent->astOperand2() != p)
#6981 crash in checkvaarg.cpp (with possible fix). Avoid segfault. Add SymbolDatabase::validate() to allow validating smyboldatabase
2015-12-05 20:55:26 +01:00
parent = nullptr;
Buffer overruns: Use ValueFlow to detect negative index
2014-03-25 18:22:22 +01:00
break;
}
ValueFlow: Refactor the for-loop handling. Use abstract interpretation.
2014-03-15 11:29:33 +01:00
}
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
if (parent) {
if (settings->debugwarnings)
bailout(tokenlist, errorLogger, tok2, "For loop variable " + tok2->str() + " stopping on ?");
continue;
}
ValueFlow::Value value1(value);
value1.varId = tok2->varId();
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok2, std::move(value1), settings);
Revert 894a65b0. abstract interpretation of for loops. there was some crashes and performance problems. I will fix those problems when I have time and recommit.
2014-03-16 08:38:52 +01:00
}
value flow: simple handling of for loops
2014-01-07 19:20:56 +01:00
ValueFlow: improved analysis in for loops to avoid fp
2014-08-01 16:12:57 +02:00
if (Token::Match(tok2, "%oror%|&&")) {
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
const ProgramMemory programMemory(getProgramMemory(tok2->astTop(), expr, ValueFlow::Value(value), settings));
Fix 12031: False positive: uninitialized variable (#5637)
2023-12-10 19:42:35 +01:00
if ((tok2->str() == "&&" && !conditionIsTrue(tok2->astOperand1(), programMemory, settings)) ||
(tok2->str() == "||" && !conditionIsFalse(tok2->astOperand1(), programMemory, settings))) {
ValueFlow: improved analysis in for loops to avoid fp
2014-08-01 16:12:57 +02:00
// Skip second expression..
Token: do not return non-`const` pointer from `const` methods - part 1 (#4761)
2023-02-08 21:07:16 +01:00
Token *parent = tok2;
ValueFlow: improved analysis in for loops to avoid fp
2014-08-01 16:12:57 +02:00
while (parent && parent->str() == tok2->str())
parent = parent->astParent();
Fix hang in libdmtx package. found through daca2.
2014-08-13 04:03:17 +02:00
// Jump to end of condition
Change fix for hang so there won't be FP
2014-08-13 05:36:17 +02:00
if (parent && parent->str() == "(") {
ValueFlow: improved analysis in for loops to avoid fp
2014-08-01 16:12:57 +02:00
tok2 = parent->link();
Change fix for hang so there won't be FP
2014-08-13 05:36:17 +02:00
// cast
if (Token::simpleMatch(tok2, ") ("))
tok2 = tok2->linkAt(1);
}
ValueFlow: improved analysis in for loops to avoid fp
2014-08-01 16:12:57 +02:00
}
}
Fix #10795 cppcheckError with for loop (#3841)
2022-02-17 22:12:19 +01:00
const Token* vartok = expr;
Fix cppcheckError with for loop (#3847)
2022-02-21 18:14:20 +01:00
const Token* rml = nextAfterAstRightmostLeaf(vartok);
Fix #10795 cppcheckError with for loop (#3841)
2022-02-17 22:12:19 +01:00
if (rml)
Fix cppcheckError with for loop (#3847)
2022-02-21 18:14:20 +01:00
vartok = rml->str() == "]" ? rml : rml->previous();
if (vartok->str() == "]" && vartok->link()->previous())
vartok = vartok->link()->previous();
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
if ((tok2->str() == "&&" &&
conditionIsFalse(tok2->astOperand1(),
Fix 12031: False positive: uninitialized variable (#5637)
2023-12-10 19:42:35 +01:00
getProgramMemory(tok2->astTop(), expr, ValueFlow::Value(value), settings),
settings)) ||
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
(tok2->str() == "||" &&
conditionIsTrue(tok2->astOperand1(),
Fix 12031: False positive: uninitialized variable (#5637)
2023-12-10 19:42:35 +01:00
getProgramMemory(tok2->astTop(), expr, ValueFlow::Value(value), settings),
settings)))
ValueFlow: improved analysis in for loops to avoid fp
2014-08-01 16:12:57 +02:00
break;
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
if (Token::simpleMatch(tok2, ") {")) {
Fix #10828 Internal error. Token::Match called with varid 0 (#3859) * Fix #10828 Internal error. Token::Match called with varid 0 * Fix test
2022-02-26 23:48:29 +01:00
if (vartok->varId() && Token::findmatch(tok2->link(), "%varid%", tok2, vartok->varId())) {
if (Token::findmatch(tok2, "continue|break|return", tok2->linkAt(1), vartok->varId())) {
ValueFlow: Improved simplification inside for-loops
2014-03-25 21:40:36 +01:00
if (settings->debugwarnings)
bailout(tokenlist, errorLogger, tok2, "For loop variable bailout on conditional continue|break|return");
break;
}
Fix #10828 Internal error. Token::Match called with varid 0 (#3859) * Fix #10828 Internal error. Token::Match called with varid 0 * Fix test
2022-02-26 23:48:29 +01:00
if (settings->debugwarnings)
bailout(tokenlist, errorLogger, tok2, "For loop variable skipping conditional scope");
tok2 = tok2->next()->link();
if (Token::simpleMatch(tok2, "} else {")) {
if (Token::findmatch(tok2, "continue|break|return", tok2->linkAt(2), vartok->varId())) {
if (settings->debugwarnings)
bailout(tokenlist, errorLogger, tok2, "For loop variable bailout on conditional continue|break|return");
break;
}
tok2 = tok2->linkAt(2);
}
}
else {
if (settings->debugwarnings)
bailout(tokenlist, errorLogger, tok2, "For loop skipping {} code");
tok2 = tok2->linkAt(1);
if (Token::simpleMatch(tok2, "} else {"))
tok2 = tok2->linkAt(2);
ValueFlow: Improved simplification inside for-loops
2014-03-25 21:40:36 +01:00
}
Fixed #6000 (ValueFlow: conditional code in for loops)
2016-01-24 13:11:51 +01:00
}
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowForLoopSimplifyAfter(Token* fortok, nonneg int varid, const MathLib::bigint num, const TokenList& tokenlist, const Settings* settings)
ValueFlow: Improved value flow after for loop
2014-08-17 10:40:22 +02:00
{
const Token *vartok = nullptr;
for (const Token *tok = fortok; tok; tok = tok->next()) {
if (tok->varId() == varid) {
vartok = tok;
break;
}
}
if (!vartok || !vartok->variable())
return;
const Variable *var = vartok->variable();
const Token *endToken = nullptr;
if (var->isLocal())
ValueFlow; Refactoring
2020-01-11 09:17:32 +01:00
endToken = var->scope()->bodyEnd;
ValueFlow: Improved value flow after for loop
2014-08-17 10:40:22 +02:00
else
Refactoring; Renamed Scope::classStart and Scope::classEnd
2018-04-27 22:36:30 +02:00
endToken = fortok->scope()->bodyEnd;
ValueFlow: Improved value flow after for loop
2014-08-17 10:40:22 +02:00
Fix crash in valueFlowForLoopSimplifyAfter (#2573)
2020-03-20 07:16:05 +01:00
Token* blockTok = fortok->linkAt(1)->linkAt(1);
if (blockTok != endToken) {
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
ValueFlow::Value v{num};
v.errorPath.emplace_back(fortok,"After for loop, " + var->name() + " has value " + v.infoString());
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(blockTok->next(), endToken, vartok, v, tokenlist, settings);
Fix crash in valueFlowForLoopSimplifyAfter (#2573)
2020-03-20 07:16:05 +01:00
}
ValueFlow: Improved value flow after for loop
2014-08-17 10:40:22 +02:00
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowForLoop(TokenList &tokenlist, const SymbolDatabase& symboldatabase, ErrorLogger *errorLogger, const Settings *settings)
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope &scope : symboldatabase.scopeList) {
Refactoring: Use range for loops
2018-07-14 22:26:22 +02:00
if (scope.type != Scope::eFor)
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
continue;
Revert 894a65b0. abstract interpretation of for loops. there was some crashes and performance problems. I will fix those problems when I have time and recommit.
2014-03-16 08:38:52 +01:00
Refactoring: Use range for loops
2018-07-14 22:26:22 +02:00
Token* tok = const_cast<Token*>(scope.classDef);
Token* const bodyStart = const_cast<Token*>(scope.bodyStart);
Revert 894a65b0. abstract interpretation of for loops. there was some crashes and performance problems. I will fix those problems when I have time and recommit.
2014-03-16 08:38:52 +01:00
Fixed crash on garbage code introduced recently, optimized code in valueFlowFunctionReturn.
2015-02-01 12:26:46 +01:00
if (!Token::simpleMatch(tok->next()->astOperand2(), ";") ||
!Token::simpleMatch(tok->next()->astOperand2()->astOperand2(), ";"))
continue;
Reuse 'extractForLoopValues' in ValueFlow
2020-06-29 21:01:43 +02:00
nonneg int varid;
Fixed testrunner
2020-06-29 21:53:14 +02:00
bool knownInitValue, partialCond;
Reuse 'extractForLoopValues' in ValueFlow
2020-06-29 21:01:43 +02:00
MathLib::bigint initValue, stepValue, lastValue;
Revert 894a65b0. abstract interpretation of for loops. there was some crashes and performance problems. I will fix those problems when I have time and recommit.
2014-03-16 08:38:52 +01:00
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
if (extractForLoopValues(tok, varid, knownInitValue, initValue, partialCond, stepValue, lastValue)) {
Reuse 'extractForLoopValues' in ValueFlow
2020-06-29 21:01:43 +02:00
const bool executeBody = !knownInitValue || initValue <= lastValue;
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
const Token* vartok = Token::findmatch(tok, "%varid%", bodyStart, varid);
if (executeBody && vartok) {
std::list<ValueFlow::Value> initValues;
initValues.emplace_back(initValue, ValueFlow::Value::Bound::Lower);
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
initValues.push_back(ValueFlow::asImpossible(initValues.back()));
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
Analyzer::Result result = valueFlowForward(bodyStart, bodyStart->link(), vartok, initValues, tokenlist, settings);
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
if (!result.action.isModified()) {
std::list<ValueFlow::Value> lastValues;
lastValues.emplace_back(lastValue, ValueFlow::Value::Bound::Upper);
lastValues.back().conditional = true;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
lastValues.push_back(ValueFlow::asImpossible(lastValues.back()));
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
if (stepValue != 1)
lastValues.pop_front();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(bodyStart, bodyStart->link(), vartok, lastValues, tokenlist, settings);
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
}
Reuse 'extractForLoopValues' in ValueFlow
2020-06-29 21:01:43 +02:00
}
const MathLib::bigint afterValue = executeBody ? lastValue + stepValue : initValue;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForLoopSimplifyAfter(tok, varid, afterValue, tokenlist, settings);
Value Flow: Another try with the abstract interpretation of for loops
2014-03-17 18:43:47 +01:00
} else {
ValueFlow: Refactor 'ProgramMemory' so it can handle token * values also and not just int values. I believe this refactoring is needed before #6973 can be fixed.
2015-09-12 19:49:02 +02:00
ProgramMemory mem1, mem2, memAfter;
ValueFlow: Improved value flow after for loop
2014-08-17 10:40:22 +02:00
if (valueFlowForLoop2(tok, &mem1, &mem2, &memAfter)) {
Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops (#4113) * Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops * Format * Remove print statement
2022-05-18 08:29:30 +02:00
for (const auto& p : mem1) {
if (!p.second.isIntValue())
ValueFlow: Extended handling of float values
2016-11-14 06:42:52 +01:00
continue;
Fix 11651: FP negativeIndex with for loop (#4934)
2023-04-05 11:05:29 +02:00
if (p.second.isImpossible())
continue;
Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops (#4113) * Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops * Format * Remove print statement
2022-05-18 08:29:30 +02:00
if (p.first.tok->varId() == 0)
continue;
valueFlowForLoopSimplify(bodyStart, p.first.tok, false, p.second.intvalue, tokenlist, errorLogger, settings);
ValueFlow: Extended handling of float values
2016-11-14 06:42:52 +01:00
}
Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops (#4113) * Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops * Format * Remove print statement
2022-05-18 08:29:30 +02:00
for (const auto& p : mem2) {
if (!p.second.isIntValue())
continue;
Fix 11651: FP negativeIndex with for loop (#4934)
2023-04-05 11:05:29 +02:00
if (p.second.isImpossible())
continue;
Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops (#4113) * Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops * Format * Remove print statement
2022-05-18 08:29:30 +02:00
if (p.first.tok->varId() == 0)
ValueFlow: Extended handling of float values
2016-11-14 06:42:52 +01:00
continue;
Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops (#4113) * Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops * Format * Remove print statement
2022-05-18 08:29:30 +02:00
valueFlowForLoopSimplify(bodyStart, p.first.tok, false, p.second.intvalue, tokenlist, errorLogger, settings);
ValueFlow: Extended handling of float values
2016-11-14 06:42:52 +01:00
}
Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops (#4113) * Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops * Format * Remove print statement
2022-05-18 08:29:30 +02:00
for (const auto& p : memAfter) {
if (!p.second.isIntValue())
continue;
Fix 11651: FP negativeIndex with for loop (#4934)
2023-04-05 11:05:29 +02:00
if (p.second.isImpossible())
continue;
Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops (#4113) * Fix 11072: FP arrayIndexOutOfBounds, nullPointer with nested loops * Format * Remove print statement
2022-05-18 08:29:30 +02:00
if (p.first.tok->varId() == 0)
ValueFlow: Extended handling of float values
2016-11-14 06:42:52 +01:00
continue;
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForLoopSimplifyAfter(tok, p.first.getExpressionId(), p.second.intvalue, tokenlist, settings);
ValueFlow: Extended handling of float values
2016-11-14 06:42:52 +01:00
}
value flow: simple handling of for loops
2014-01-07 19:20:56 +01:00
}
}
}
}
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
struct MultiValueFlowAnalyzer : ValueFlowAnalyzer {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
std::unordered_map<nonneg int, ValueFlow::Value> values;
std::unordered_map<nonneg int, const Variable*> vars;
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
MultiValueFlowAnalyzer(const std::unordered_map<const Variable*, ValueFlow::Value>& args, const TokenList& t, const Settings* set)
Use in-class initializers, default constructors, class -> struct (#4842)
2023-08-08 11:05:02 +02:00
: ValueFlowAnalyzer(t, set) {
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (const auto& p:args) {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
values[p.first->declarationId()] = p.second;
vars[p.first->declarationId()] = p.first;
}
}
virtual const std::unordered_map<nonneg int, const Variable*>& getVars() const {
return vars;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
const ValueFlow::Value* getValue(const Token* tok) const override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (tok->varId() == 0)
return nullptr;
auto it = values.find(tok->varId());
if (it == values.end())
return nullptr;
return &it->second;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ValueFlow::Value* getValue(const Token* tok) override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (tok->varId() == 0)
return nullptr;
auto it = values.find(tok->varId());
if (it == values.end())
return nullptr;
return &it->second;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
void makeConditional() override {
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (auto&& p:values) {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
p.second.conditional = true;
}
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
void addErrorPath(const Token* tok, const std::string& s) override {
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (auto&& p:values) {
Fix #11697 FP negativeContainerIndex after index is validated (#5172)
2023-06-20 10:55:14 +02:00
p.second.errorPath.emplace_back(tok, s);
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
}
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool isAlias(const Token* tok, bool& inconclusive) const override {
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
const auto range = SelectValueFromVarIdMapRange(&values);
avoid unnecessary creation of lists in SingleValueFlowForwardAnalyzer.isAlias() and MultiValueFlowForwardAnalyzer.isAlias() (#2586) Comparing before and after (Ir per call) when scanning the Cppcheck source: SingleValueFlowForwardAnalyzer.isAlias() 1246 -> 1101 MultiValueFlowForwardAnalyzer.isAlias() 4202 -> 1617
2020-04-03 09:25:21 +02:00
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
for (const auto& p:getVars()) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
nonneg int const varid = p.first;
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
const Variable* var = p.second;
if (tok->varId() == varid)
return true;
valueflow.cpp: optimized SingleValueFlowAnaylzer::isAlias() by avoidi… (#3051)
2021-02-10 08:18:21 +01:00
if (isAliasOf(var, tok, varid, range, &inconclusive))
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
return true;
}
return false;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool lowerToPossible() override {
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (auto&& p:values) {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (p.second.isImpossible())
return false;
p.second.changeKnownToPossible();
}
return true;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool lowerToInconclusive() override {
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (auto&& p:values) {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (p.second.isImpossible())
return false;
p.second.setInconclusive();
}
return true;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool isConditional() const override {
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (auto&& p:values) {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (p.second.conditional)
return true;
if (p.second.condition)
return !p.second.isImpossible();
}
return false;
}
Fix #12091 (False negative: Uninitialized variable read in subfunction (regression)) (#5739)
2023-12-08 21:54:23 +01:00
bool stopOnCondition(const Token* condTok) const override {
if (isConditional())
return true;
if (!condTok->hasKnownIntValue() && values.count(condTok->varId()) == 0) {
const auto& values_ = condTok->values();
return std::any_of(values_.cbegin(), values_.cend(), [](const ValueFlow::Value& v) {
return v.isSymbolicValue() && Token::Match(v.tokvalue, "%oror%|&&");
});
}
return false;
Fix FP when calling a function in a condition (#3412)
2021-08-21 18:52:11 +02:00
}
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
bool updateScope(const Token* endBlock, bool /*modified*/) const override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
const Scope* scope = endBlock->scope();
if (!scope)
return false;
if (scope->type == Scope::eLambda) {
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
return std::all_of(values.cbegin(), values.cend(), [](const std::pair<nonneg int, ValueFlow::Value>& p) {
Fix #10412 FN useStlAlgorithm with iterators (#4157)
2022-10-16 13:46:26 +02:00
return p.second.isLifetimeValue();
});
Enable and mitigate readability-else-after-return (#5175)
2023-06-20 18:43:21 +02:00
}
if (scope->type == Scope::eIf || scope->type == Scope::eElse || scope->type == Scope::eWhile ||
scope->type == Scope::eFor) {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
auto pred = [](const ValueFlow::Value& value) {
if (value.isKnown())
return true;
if (value.isImpossible())
return true;
if (value.isLifetimeValue())
return true;
return false;
};
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::all_of(values.cbegin(), values.cend(), std::bind(pred, std::bind(SelectMapValues{}, std::placeholders::_1))))
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
return true;
if (isConditional())
return false;
const Token* condTok = getCondTokFromEnd(endBlock);
std::set<nonneg int> varids;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::transform(getVars().cbegin(), getVars().cend(), std::inserter(varids, varids.begin()), SelectMapKeys{});
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
return bifurcate(condTok, varids, getSettings());
}
return false;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool match(const Token* tok) const override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
return values.count(tok->varId()) > 0;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
ProgramState getProgramState() const override {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
ProgramState ps;
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
for (const auto& p : values) {
const Variable* var = vars.at(p.first);
Fix 10794: Crash in MultiValueFlowAnalyzer::getProgramState() (#3815) * Fix 10794: Crash in MultiValueFlowAnalyzer::getProgramState() * Format
2022-02-10 07:43:27 +01:00
if (!var)
continue;
Refactor ProgramMemory to store the expression tokens instead of exprIds (#3798)
2022-02-06 20:15:45 +01:00
ps[var->nameToken()] = p.second;
}
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
return ps;
}
};
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
template<class Key, class F>
CI: Add selfcheck using Cppcheck Premium. Activates Misra C++ 2008 and Cert C++ 2016 checkers. (#5623)
2023-11-06 15:31:47 +01:00
static bool productParams(const Settings* settings, const std::unordered_map<Key, std::list<ValueFlow::Value>>& vars, F f)
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
{
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
using Args = std::vector<std::unordered_map<Key, ValueFlow::Value>>;
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
Args args(1);
// Compute cartesian product of all arguments
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (const auto& p:vars) {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (p.second.empty())
continue;
args.back()[p.first] = p.second.front();
}
ValueFlow: Limit the combinations of arguments passed to subfunctions in normal analysis (#4950)
2023-04-12 22:09:48 +02:00
bool bail = false;
int max = 8;
if (settings)
max = settings->performanceValueFlowMaxSubFunctionArgs;
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (const auto& p:vars) {
ValueFlow: Limit the combinations of arguments passed to subfunctions in normal analysis (#4950)
2023-04-12 22:09:48 +02:00
if (args.size() > max) {
bail = true;
break;
}
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
if (p.second.empty())
continue;
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
std::for_each(std::next(p.second.begin()), p.second.end(), [&](const ValueFlow::Value& value) {
Args new_args;
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (auto arg:args) {
Set a max for the combination of arguments that can be passsed through valueFlowSubFunction (#2579) * Set a max for the combination of arguments that can be passsed * Skip mismatch path ids when computing the cross product
2020-04-01 22:33:09 +02:00
if (value.path != 0) {
astyle formatting [ci skip]
2020-04-04 10:31:38 +02:00
for (const auto& q:arg) {
Fix 10619: Valueflow: Library function in subfunction does not propagate all values (#4209)
2022-06-12 07:17:28 +02:00
if (q.first == p.first)
continue;
Set a max for the combination of arguments that can be passsed through valueFlowSubFunction (#2579) * Set a max for the combination of arguments that can be passsed * Skip mismatch path ids when computing the cross product
2020-04-01 22:33:09 +02:00
if (q.second.path == 0)
continue;
if (q.second.path != value.path)
return;
}
}
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
arg[p.first] = value;
avoid unnecessary copies with `push_back()` and `push_front()` (#4451)
2022-09-08 09:21:35 +02:00
new_args.push_back(std::move(arg));
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
}
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy(new_args.cbegin(), new_args.cend(), std::back_inserter(args));
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
});
}
ValueFlow: Limit the combinations of arguments passed to subfunctions in normal analysis (#4950)
2023-04-12 22:09:48 +02:00
if (args.size() > max) {
bail = true;
args.resize(max);
}
Running astyle [ci skip]
2020-03-01 20:39:00 +01:00
for (const auto& arg:args) {
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
if (arg.empty())
continue;
// Make sure all arguments are the same path
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
const MathLib::bigint path = arg.cbegin()->second.path;
if (std::any_of(arg.cbegin(), arg.cend(), [&](const std::pair<Key, ValueFlow::Value>& p) {
Fix #10412 FN useStlAlgorithm with iterators (#4157)
2022-10-16 13:46:26 +02:00
return p.second.path != path;
}))
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
continue;
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
f(arg);
}
ValueFlow: Limit the combinations of arguments passed to subfunctions in normal analysis (#4950)
2023-04-12 22:09:48 +02:00
return !bail;
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowInjectParameter(TokenList& tokenlist,
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
ErrorLogger* errorLogger,
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
const Settings& settings,
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
const Scope* functionScope,
const std::unordered_map<const Variable*, std::list<ValueFlow::Value>>& vars)
{
ValueFlow: Limit the combinations of arguments passed to subfunctions in normal analysis (#4950)
2023-04-12 22:09:48 +02:00
const bool r = productParams(&settings, vars, [&](const std::unordered_map<const Variable*, ValueFlow::Value>& arg) {
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
MultiValueFlowAnalyzer a(arg, tokenlist, &settings);
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
valueFlowGenericForward(const_cast<Token*>(functionScope->bodyStart), functionScope->bodyEnd, a, settings);
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
});
if (!r) {
std::string fname = "<unknown>";
Fix FN constVariablePointer (#5076) * Fix FN constVariablePointer * Fix FP * Add const * Fix tests * Add const
2023-05-22 19:53:51 +02:00
if (const Function* f = functionScope->function)
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
fname = f->name();
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
if (settings.debugwarnings)
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
bailout(tokenlist, errorLogger, functionScope->bodyStart, "Too many argument passed to " + fname);
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowInjectParameter(const TokenList& tokenlist,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
const Settings* settings,
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
const Variable* arg,
const Scope* functionScope,
const std::list<ValueFlow::Value>& argvalues)
Refactorization: Support function default values in ValueFlow, removed now obsolete CheckNullPointer::nullPointerDefaultArgument(). -> Use valueFlowForward() to parse values passed to functions -> valueFlowForward(): Set value in first occurrence of a variable in a condition
2015-02-01 15:05:00 +01:00
{
// Is argument passed by value or const reference, and is it a known non-class type?
if (arg->isReference() && !arg->isConst() && !arg->isClass())
return;
// Set value in function scope..
use nonneg int for varid and exprid (#3085)
2021-01-27 19:49:13 +01:00
const nonneg int varid2 = arg->declarationId();
Refactorization: Support function default values in ValueFlow, removed now obsolete CheckNullPointer::nullPointerDefaultArgument(). -> Use valueFlowForward() to parse values passed to functions -> valueFlowForward(): Set value in first occurrence of a variable in a condition
2015-02-01 15:05:00 +01:00
if (!varid2)
return;
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
valueFlowForward(const_cast<Token*>(functionScope->bodyStart->next()),
functionScope->bodyEnd,
arg->nameToken(),
argvalues,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
tokenlist,
settings);
Refactorization: Support function default values in ValueFlow, removed now obsolete CheckNullPointer::nullPointerDefaultArgument(). -> Use valueFlowForward() to parse values passed to functions -> valueFlowForward(): Set value in first occurrence of a variable in a condition
2015-02-01 15:05:00 +01:00
}
Fix #12214 FN constParameterReference / #12216 FP constParameterReference (#5691)
2023-11-25 22:58:16 +01:00
static void valueFlowSwitchVariable(const TokenList &tokenlist, const SymbolDatabase& symboldatabase, ErrorLogger *errorLogger, const Settings *settings)
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope &scope : symboldatabase.scopeList) {
Refactoring: Use range for loops
2018-07-14 22:26:22 +02:00
if (scope.type != Scope::ScopeType::eSwitch)
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
continue;
Refactoring: Use range for loops
2018-07-14 22:26:22 +02:00
if (!Token::Match(scope.classDef, "switch ( %var% ) {"))
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
continue;
Refactoring: Use range for loops
2018-07-14 22:26:22 +02:00
const Token *vartok = scope.classDef->tokAt(2);
Cache and reuse value
2015-08-12 09:57:36 +02:00
const Variable *var = vartok->variable();
if (!var)
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
continue;
// bailout: global non-const variables
if (!(var->isLocal() || var->isArgument()) && !var->isConst()) {
if (settings->debugwarnings)
bailout(tokenlist, errorLogger, vartok, "switch variable " + var->name() + " is global");
continue;
}
Token: do not return non-`const` pointer from `const` methods - part 1 (#4761)
2023-02-08 21:07:16 +01:00
for (const Token *tok = scope.bodyStart->next(); tok != scope.bodyEnd; tok = tok->next()) {
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
if (tok->str() == "{") {
tok = tok->link();
continue;
}
if (Token::Match(tok, "case %num% :")) {
std::list<ValueFlow::Value> values;
MathLib: renamed `to{U}LongNumber()` to `toBig{U}Number()` (#5503) The name was misleading as it was actually a `long long` and also if we ever move to an (optional) 128-bit value it wouldn't even less fitting. We should name it to match our alias type.
2023-10-05 19:21:42 +02:00
values.emplace_back(MathLib::toBigNumber(tok->next()->str()));
Improve error messages for conditional values. make valueFlowSwitchVariable values conditional that depend on the case. Partial fix for #6884.
2015-07-29 19:54:57 +02:00
values.back().condition = tok;
valueflow.cpp: avoid some copies related to `ErrorPath` (#4160)
2022-07-20 10:57:49 +02:00
values.back().errorPath.emplace_back(tok, "case " + tok->next()->str() + ": " + vartok->str() + " is " + tok->next()->str() + " here.");
Fixed #8247 (False positive knownConditionTrueFalse)
2017-10-20 17:31:58 +02:00
bool known = false;
Revert "Clarify expression with parentheses" This reverts commit bbf0a81c2d08ca21144eb54b548cfd2d2ac6e8c1.
2017-10-18 22:31:44 +02:00
if ((Token::simpleMatch(tok->previous(), "{") || Token::simpleMatch(tok->tokAt(-2), "break ;")) && !Token::Match(tok->tokAt(3), ";| case"))
Fixed #8247 (False positive knownConditionTrueFalse)
2017-10-20 17:31:58 +02:00
known = true;
made valueFlowSwitchVariable faster when there are many 'case %num%:'
2015-07-27 14:57:02 +02:00
while (Token::Match(tok->tokAt(3), ";| case %num% :")) {
astyle formatting [ci skip]
2017-10-20 22:11:12 +02:00
known = false;
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
tok = tok->tokAt(3);
made valueFlowSwitchVariable faster when there are many 'case %num%:'
2015-07-27 14:57:02 +02:00
if (!tok->isName())
tok = tok->next();
MathLib: renamed `to{U}LongNumber()` to `toBig{U}Number()` (#5503) The name was misleading as it was actually a `long long` and also if we ever move to an (optional) 128-bit value it wouldn't even less fitting. We should name it to match our alias type.
2023-10-05 19:21:42 +02:00
values.emplace_back(MathLib::toBigNumber(tok->next()->str()));
Improve error messages for conditional values. make valueFlowSwitchVariable values conditional that depend on the case. Partial fix for #6884.
2015-07-29 19:54:57 +02:00
values.back().condition = tok;
valueflow.cpp: avoid some copies related to `ErrorPath` (#4160)
2022-07-20 10:57:49 +02:00
values.back().errorPath.emplace_back(tok, "case " + tok->next()->str() + ": " + vartok->str() + " is " + tok->next()->str() + " here.");
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
}
use `cbegin()` and `cend()` with `const_ierator` loops (#4658)
2022-12-20 20:32:16 +01:00
for (std::list<ValueFlow::Value>::const_iterator val = values.cbegin(); val != values.cend(); ++val) {
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
valueFlowReverse(tokenlist,
Refactoring: Use range for loops
2018-07-14 22:26:22 +02:00
const_cast<Token*>(scope.classDef),
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
vartok,
*val,
ValueFlow::Value(),
errorLogger,
settings);
}
Fixed #8247 (False positive knownConditionTrueFalse)
2017-10-20 17:31:58 +02:00
if (vartok->variable()->scope()) {
astyle formatting [ci skip]
2017-10-20 22:11:12 +02:00
if (known)
values.back().setKnown();
Fixed #9276 (False positive: ValueFlow does not handle return in switch properly.)
2019-10-18 16:16:56 +02:00
// FIXME We must check if there is a return. See #9276
/*
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
valueFlowForwardVariable(tok->tokAt(3),
Support expression in valueFlowAfterCondition (#2219) * Add valueFlowForwardExpression function to forward values of an expression * Use token for expression * Fix name in bailout message * Handle expressions * Add more tests for more expressions * Add more tests * Solve the expression if possible * Formatting
2019-09-26 10:32:25 +02:00
vartok->variable()->scope()->bodyEnd,
vartok->variable(),
vartok->varId(),
values,
values.back().isKnown(),
false,
tokenlist,
errorLogger,
settings);
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
*/
astyle formatting [ci skip]
2017-10-20 22:11:12 +02:00
}
Fixed #6830 (ValueFlow: value of switch-variable inside switch)
2015-07-20 19:45:38 +02:00
}
}
}
}
ValueFlow: Refactoring valueFlowCallFunction
2018-11-06 06:38:26 +01:00
static std::list<ValueFlow::Value> getFunctionArgumentValues(const Token *argtok)
{
std::list<ValueFlow::Value> argvalues(argtok->values());
Fix issue 9361: false positive: (style) Condition 'isdigit(c)!=0' is always true (#2199)
2019-09-21 08:19:54 +02:00
removeImpossible(argvalues);
ValueFlow: Refactoring, removed redundant assignment
2018-11-06 07:02:20 +01:00
if (argvalues.empty() && Token::Match(argtok, "%comp%|%oror%|&&|!")) {
argvalues.emplace_back(0);
argvalues.emplace_back(1);
ValueFlow: Refactoring valueFlowCallFunction
2018-11-06 06:38:26 +01:00
}
return argvalues;
}
ValueFlow: Try to handle multiple argument values in <returnValue> evaluation
2018-11-04 20:52:12 +01:00
static void valueFlowLibraryFunction(Token *tok, const std::string &returnValue, const Settings *settings)
{
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
std::unordered_map<nonneg int, std::list<ValueFlow::Value>> argValues;
int argn = 1;
ValueFlow: Try to handle multiple argument values in <returnValue> evaluation
2018-11-04 20:52:12 +01:00
for (const Token *argtok : getArguments(tok->previous())) {
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
argValues[argn] = getFunctionArgumentValues(argtok);
argn++;
ValueFlow: Try to handle multiple argument values in <returnValue> evaluation
2018-11-04 20:52:12 +01:00
}
valueFlowLibraryFunction: fix crash found with daca@home
2018-11-11 16:41:01 +01:00
if (returnValue.find("arg") != std::string::npos && argValues.empty())
return;
ValueFlow: Limit the combinations of arguments passed to subfunctions in normal analysis (#4950)
2023-04-12 22:09:48 +02:00
productParams(settings, argValues, [&](const std::unordered_map<nonneg int, ValueFlow::Value>& arg) {
Fix 10449: Regression: knownConditionTrueFalse (strlen/wcslen) (#3977) * Refactor library function usage * Evaluate library function in program memory * Fix and add tests * Format
2022-04-06 06:35:38 +02:00
ValueFlow::Value value = evaluateLibraryFunction(arg, returnValue, settings);
if (value.isUninitValue())
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
return;
Fix 10449: Regression: knownConditionTrueFalse (strlen/wcslen) (#3977) * Refactor library function usage * Evaluate library function in program memory * Fix and add tests * Format
2022-04-06 06:35:38 +02:00
ValueFlow::Value::ValueKind kind = ValueFlow::Value::ValueKind::Known;
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
for (auto&& p : arg) {
if (p.second.isPossible())
Fix 10449: Regression: knownConditionTrueFalse (strlen/wcslen) (#3977) * Refactor library function usage * Evaluate library function in program memory * Fix and add tests * Format
2022-04-06 06:35:38 +02:00
kind = p.second.valueKind;
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
if (p.second.isInconclusive()) {
Fix 10449: Regression: knownConditionTrueFalse (strlen/wcslen) (#3977) * Refactor library function usage * Evaluate library function in program memory * Fix and add tests * Format
2022-04-06 06:35:38 +02:00
kind = p.second.valueKind;
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
break;
}
}
Fix 10449: Regression: knownConditionTrueFalse (strlen/wcslen) (#3977) * Refactor library function usage * Evaluate library function in program memory * Fix and add tests * Format
2022-04-06 06:35:38 +02:00
if (value.isImpossible() && kind != ValueFlow::Value::ValueKind::Known)
return;
if (!value.isImpossible())
value.valueKind = kind;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(value), settings);
Fix 10436: hang: valueFlowSubFunction 'ispunct(c)..' (#3423)
2021-08-27 05:46:33 +02:00
});
Fixed #7668 (ValueFlow: return value from abs)
2016-10-17 13:05:19 +02:00
}
Run valueFlowSubfunction in reverse order of functions (#3540)
2021-11-01 19:21:03 +01:00
template<class Iterator>
struct IteratorRange
{
Iterator mBegin;
Iterator mEnd;
Iterator begin() const {
return mBegin;
}
Iterator end() const {
return mEnd;
}
};
template<class Iterator>
CI: Add selfcheck using Cppcheck Premium. Activates Misra C++ 2008 and Cert C++ 2016 checkers. (#5623)
2023-11-06 15:31:47 +01:00
static IteratorRange<Iterator> MakeIteratorRange(Iterator start, Iterator last)
Run valueFlowSubfunction in reverse order of functions (#3540)
2021-11-01 19:21:03 +01:00
{
return {start, last};
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowSubFunction(TokenList& tokenlist, SymbolDatabase& symboldatabase, ErrorLogger* errorLogger, const Settings& settings)
value flow: added experimental subfunction handling
2014-01-06 16:37:52 +01:00
{
Fix 10254: false positive: arrayIndexOutOfBounds in inline function (#3266)
2021-05-22 08:20:09 +02:00
int id = 0;
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope* scope : MakeIteratorRange(symboldatabase.functionScopes.crbegin(), symboldatabase.functionScopes.crend())) {
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
const Function* function = scope->function;
if (!function)
value flow: pass result of bool operator to function
2014-01-08 16:17:47 +01:00
continue;
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
for (Token* tok = const_cast<Token*>(scope->bodyStart); tok != scope->bodyEnd; tok = tok->next()) {
Amend fix for #11449 Function call not recognized (#4838)
2023-03-02 21:45:15 +01:00
if (tok->isKeyword() || !Token::Match(tok, "%name% ("))
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
continue;
value flow: pass result of bool operator to function
2014-01-08 16:17:47 +01:00
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
const Function * const calledFunction = tok->function();
if (!calledFunction) {
// library function?
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
const std::string& returnValue(settings.library.returnValue(tok));
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
if (!returnValue.empty())
made `ForwardTraversal::mSettings` and `ReverseTraversal::mSettings` references / adjusted some calling code to use references as well (#4858)
2023-03-07 12:26:17 +01:00
valueFlowLibraryFunction(tok->next(), returnValue, &settings);
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
continue;
}
value flow: added experimental subfunction handling
2014-01-06 16:37:52 +01:00
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
const Scope * const calledFunctionScope = calledFunction->functionScope;
if (!calledFunctionScope)
continue;
value flow: added experimental subfunction handling
2014-01-06 16:37:52 +01:00
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
id++;
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
std::unordered_map<const Variable*, std::list<ValueFlow::Value>> argvars;
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
// TODO: Rewrite this. It does not work well to inject 1 argument at a time.
const std::vector<const Token *> &callArguments = getArguments(tok);
for (int argnr = 0U; argnr < callArguments.size(); ++argnr) {
const Token *argtok = callArguments[argnr];
// Get function argument
const Variable * const argvar = calledFunction->getArgumentVar(argnr);
if (!argvar)
break;
Refactoring valueFlowSubFunction
2014-08-06 06:33:06 +02:00
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
// passing value(s) to function
std::list<ValueFlow::Value> argvalues(getFunctionArgumentValues(argtok));
ValueFlow: function arguments only has 'possible' values
2015-07-16 20:49:14 +02:00
Fix issue 9899: False positive: Non-local variable will use object that points to local variable (#2808)
2020-09-15 07:11:52 +02:00
// Remove non-local lifetimes
argvalues.remove_if([](const ValueFlow::Value& v) {
if (v.isLifetimeValue())
return !v.isLocalLifetimeValue() && !v.isSubFunctionLifetimeValue();
return false;
});
Fixed #10327 (ValueFlow; Wrong Uninit value in called function)
2021-07-01 22:08:00 +02:00
// Remove uninit values if argument is passed by value
if (argtok->variable() && !argtok->variable()->isPointer() && argvalues.size() == 1 && argvalues.front().isUninitValue()) {
removed the need for `Check` object in `CTU::getUnsafeUsage()` callback / some CheckUninitVar cleanups (#5610) The `Check` objects were just created for that purpose so they basically just were wrappers for the pointers passed into them and were unnecessary.
2023-11-03 18:27:11 +01:00
if (CheckUninitVar::isVariableUsage(argtok, settings.library, false, CheckUninitVar::Alloc::NO_ALLOC, 0))
Fixed #10327 (ValueFlow; Wrong Uninit value in called function)
2021-07-01 22:08:00 +02:00
continue;
}
Diagnose invalid lifetimes (#1475) * Add check for invalid lifetimes * Fix FP with member variables * Dont forward lifetime values in subfunction * Update message to use out of scope
2018-11-11 16:43:54 +01:00
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
if (argvalues.empty())
continue;
ValueFlow: Test ErrorPath handling
2017-05-19 14:34:59 +02:00
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
// Error path..
for (ValueFlow::Value &v : argvalues) {
fixed #6316 (Use std::to_string() in place of MathLib::toString() ...) - deleted default implementation of `Mathlib::toString()` (#5341) It was also used inconsistently and seemed to imply there is some special handling which wasn't the case. It was just an alias for `std::to_string()` for non-`double` types. So there was no need for it. --------- Co-authored-by: Robert Reif <reif@earthlink.net>
2023-08-17 16:46:32 +02:00
const std::string nr = std::to_string(argnr + 1) + getOrdinalText(argnr + 1);
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
v.errorPath.emplace_back(argtok,
"Calling function '" +
calledFunction->name() +
"', " +
nr +
" argument '" +
argtok->expressionString() +
"' value is " +
v.infoString());
Fix 10254: false positive: arrayIndexOutOfBounds in inline function (#3266)
2021-05-22 08:20:09 +02:00
v.path = 256 * v.path + id % 256;
Extend lifetimes to subfunctions
2020-09-04 18:56:34 +02:00
// Change scope of lifetime values
if (v.isLifetimeValue())
v.lifetimeScope = ValueFlow::Value::LifetimeScope::SubFunction;
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
}
Partial fix for #8028 (ValueFlow: Origin/callstack of value)
2017-05-15 20:05:11 +02:00
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
// passed values are not "known"..
lowerToPossible(argvalues);
ValueFlow: function arguments only has 'possible' values
2015-07-16 20:49:14 +02:00
Enable valueFlowSubfunction for multiple parameters (#2550)
2020-03-01 16:46:20 +01:00
argvars[argvar] = argvalues;
Fix issue 9360: False positive: arrayIndexOutOfBounds when function is called with different array sizes (#2541)
2020-02-17 10:31:08 +01:00
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
valueFlowInjectParameter(tokenlist, errorLogger, settings, calledFunctionScope, argvars);
Refactorization: Support function default values in ValueFlow, removed now obsolete CheckNullPointer::nullPointerDefaultArgument(). -> Use valueFlowForward() to parse values passed to functions -> valueFlowForward(): Set value in first occurrence of a variable in a condition
2015-02-01 15:05:00 +01:00
}
}
}
Refactoring valueFlowSubFunction
2014-08-06 06:33:06 +02:00
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowFunctionDefaultParameter(const TokenList& tokenlist, const SymbolDatabase& symboldatabase, const Settings* settings)
Refactorization: Support function default values in ValueFlow, removed now obsolete CheckNullPointer::nullPointerDefaultArgument(). -> Use valueFlowForward() to parse values passed to functions -> valueFlowForward(): Set value in first occurrence of a variable in a condition
2015-02-01 15:05:00 +01:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (!tokenlist.isCPP())
Refactorization: Support function default values in ValueFlow, removed now obsolete CheckNullPointer::nullPointerDefaultArgument(). -> Use valueFlowForward() to parse values passed to functions -> valueFlowForward(): Set value in first occurrence of a variable in a condition
2015-02-01 15:05:00 +01:00
return;
Refactoring valueFlowSubFunction
2014-08-06 06:33:06 +02:00
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope* scope : symboldatabase.functionScopes) {
Refactorization: Support function default values in ValueFlow, removed now obsolete CheckNullPointer::nullPointerDefaultArgument(). -> Use valueFlowForward() to parse values passed to functions -> valueFlowForward(): Set value in first occurrence of a variable in a condition
2015-02-01 15:05:00 +01:00
const Function* function = scope->function;
if (!function)
continue;
for (std::size_t arg = function->minArgCount(); arg < function->argCount(); arg++) {
const Variable* var = function->getArgumentVar(arg);
if (var && var->hasDefault() && Token::Match(var->nameToken(), "%var% = %num%|%str% [,)]")) {
Refactorization: Allocate Token::_values (ValueFlow information) dynamically, reducing size of each token by around 10%
2017-03-27 18:48:34 +02:00
const std::list<ValueFlow::Value> &values = var->nameToken()->tokAt(2)->values();
ValueFlow: default argument values are not known, they are possible
2015-07-17 16:05:07 +02:00
std::list<ValueFlow::Value> argvalues;
Refactoring: Use range for loops
2018-07-14 22:26:22 +02:00
for (const ValueFlow::Value &value : values) {
ValueFlow::Value v(value);
ValueFlow: default argument values are not known, they are possible
2015-07-17 16:05:07 +02:00
v.defaultArg = true;
simplified the code for ValueFlow Known/Possible values
2015-07-25 19:36:29 +02:00
v.changeKnownToPossible();
if (v.isPossible())
avoid unnecessary copies with `push_back()` and `push_front()` (#4451)
2022-09-08 09:21:35 +02:00
argvalues.push_back(std::move(v));
ValueFlow: default argument values are not known, they are possible
2015-07-17 16:05:07 +02:00
}
if (!argvalues.empty())
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowInjectParameter(tokenlist, settings, var, scope, argvalues);
value flow: added experimental subfunction handling
2014-01-06 16:37:52 +01:00
}
}
}
}
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
static const ValueFlow::Value* getKnownValueFromToken(const Token* tok)
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
{
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
if (!tok)
return nullptr;
auto it = std::find_if(tok->values().begin(), tok->values().end(), [&](const ValueFlow::Value& v) {
return (v.isIntValue() || v.isContainerSizeValue() || v.isFloatValue()) && v.isKnown();
});
if (it == tok->values().end())
return nullptr;
return std::addressof(*it);
}
static const ValueFlow::Value* getKnownValueFromTokens(const std::vector<const Token*>& toks)
{
if (toks.empty())
return nullptr;
const ValueFlow::Value* result = getKnownValueFromToken(toks.front());
if (!result)
return nullptr;
if (!std::all_of(std::next(toks.begin()), toks.end(), [&](const Token* tok) {
return std::any_of(tok->values().begin(), tok->values().end(), [&](const ValueFlow::Value& v) {
return v.equalValue(*result) && v.valueKind == result->valueKind;
});
}))
return nullptr;
return result;
}
static void setFunctionReturnValue(const Function* f, Token* tok, ValueFlow::Value v, const Settings* settings)
{
if (f->hasVirtualSpecifier()) {
if (v.isImpossible())
return;
v.setPossible();
} else if (!v.isImpossible()) {
v.setKnown();
}
v.errorPath.emplace_back(tok, "Calling function '" + f->name() + "' returns " + v.toString());
setTokenValue(tok, std::move(v), settings);
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowFunctionReturn(TokenList &tokenlist, ErrorLogger *errorLogger, const Settings* settings)
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.back(); tok; tok = tok->previous()) {
Fix 7684: ValueFlow: function call 'X::GetSize()' (#3984) * Improve getting function to calculate the return * Add test * Format * Move to cpp to avoid FP * Format
2022-04-07 06:49:25 +02:00
if (tok->str() != "(" || !tok->astOperand1())
continue;
const Function* function = nullptr;
if (Token::Match(tok->previous(), "%name% ("))
function = tok->previous()->function();
else
function = tok->astOperand1()->function();
if (!function)
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
continue;
Fix 10953: False positive: Possible null pointer dereference when calling derived function (#4044)
2022-04-26 17:57:06 +02:00
// TODO: Check if member variable is a pointer or reference
if (function->isImplicitlyVirtual() && !function->hasFinalSpecifier())
continue;
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
Multipass Valueflow
2018-11-03 15:53:24 +01:00
if (tok->hasKnownValue())
continue;
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
std::vector<const Token*> returns = Function::findReturns(function);
if (returns.empty())
continue;
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
if (const ValueFlow::Value* v = getKnownValueFromTokens(returns)) {
setFunctionReturnValue(function, tok, *v, settings);
Partially reverted previous commit - std::vetcor instance creation can't be avoided without generating lots of debug messages
2015-02-01 12:33:53 +01:00
continue;
}
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
// Arguments..
std::vector<const Token*> arguments = getArguments(tok);
ValueFlow: Refactor 'ProgramMemory' so it can handle token * values also and not just int values. I believe this refactoring is needed before #6973 can be fixed.
2015-09-12 19:49:02 +02:00
ProgramMemory programMemory;
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
for (std::size_t i = 0; i < arguments.size(); ++i) {
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
const Variable * const arg = function->getArgumentVar(i);
Fix #11561 FN nullPointer with unnamed parameter (#4805)
2023-02-23 22:56:03 +01:00
if (!arg) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
if (settings->debugwarnings)
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
bailout(tokenlist, errorLogger, tok, "function return; unhandled argument type");
programMemory.clear();
break;
}
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
const ValueFlow::Value* v = getKnownValueFromToken(arguments[i]);
if (!v)
continue;
programMemory.setValue(arg->nameToken(), *v);
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
}
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
if (programMemory.empty() && !arguments.empty())
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
continue;
ValueFlow: Evaluate if statement for function returns (#4908)
2023-03-24 13:31:26 +01:00
std::vector<ValueFlow::Value> values = execute(function->functionScope, programMemory, settings);
for (const ValueFlow::Value& v : values) {
if (v.isUninitValue())
continue;
setFunctionReturnValue(function, tok, v, settings);
ValueFlow: Better handling of function return value when there are 0 parameters
2016-10-20 16:10:55 +02:00
}
Fixed #5959 (ValueFlow: return value from subfunction)
2014-06-29 18:04:38 +02:00
}
}
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
static bool needsInitialization(const Variable* var, bool cpp)
{
if (!var)
return false;
Fix #11321 FP uninitvar for in-class member initialization (#4547)
2022-10-14 19:48:27 +02:00
if (var->hasDefault())
return false;
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
if (var->isPointer())
return true;
if (var->type() && var->type()->isUnionType())
return false;
if (!cpp)
return true;
if (var->type() && var->type()->needInitialization == Type::NeedInitialization::True)
return true;
Fix 10361: false negative: uninitvar (std::next(iterator)) (#4256)
2022-07-09 07:39:04 +02:00
if (var->valueType()) {
if (var->valueType()->isPrimitive())
return true;
if (var->valueType()->type == ValueType::Type::POD)
return true;
if (var->valueType()->type == ValueType::Type::ITERATOR)
return true;
}
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
return false;
}
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
static void addToErrorPath(ValueFlow::Value& value, const ValueFlow::Value& from)
{
std::unordered_set<const Token*> locations;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::transform(value.errorPath.cbegin(),
value.errorPath.cend(),
Another fix for 10800: Hang / memory exhaustion on numerical code (#3851) * Another fix for 10800: Hang / memory exhaustion on numerical code * Format
2022-02-22 07:21:26 +01:00
std::inserter(locations, locations.begin()),
[](const ErrorPathItem& e) {
return e.first;
});
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
if (from.condition && !value.condition)
value.condition = from.condition;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(from.errorPath.cbegin(),
from.errorPath.cend(),
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
std::back_inserter(value.errorPath),
[&](const ErrorPathItem& e) {
return locations.insert(e.first).second;
});
}
Fix 11673: FP uninitvar when capturing by reference (#4984) * Fix 11673: FP uninitvar when capturing by reference * Format * Fix tests
2023-05-04 06:03:47 +02:00
static std::vector<Token*> findAllUsages(const Variable* var,
Token* start, // cppcheck-suppress constParameterPointer // FP
const Library* library)
{
// std::vector<Token*> result;
ValueFlow: Improve the starting point for uninitialized variables to find more uninitialized usages after many conditionals (#4930)
2023-04-04 21:55:09 +02:00
const Scope* scope = var->scope();
if (!scope)
Fix 11673: FP uninitvar when capturing by reference (#4984) * Fix 11673: FP uninitvar when capturing by reference * Format * Fix tests
2023-05-04 06:03:47 +02:00
return {};
return findTokensSkipDeadCode(library, start, scope->bodyEnd, [&](const Token* tok) {
return tok->varId() == var->declarationId();
});
ValueFlow: Improve the starting point for uninitialized variables to find more uninitialized usages after many conditionals (#4930)
2023-04-04 21:55:09 +02:00
}
Fix 11673: FP uninitvar when capturing by reference (#4984) * Fix 11673: FP uninitvar when capturing by reference * Format * Fix tests
2023-05-04 06:03:47 +02:00
static Token* findStartToken(const Variable* var, Token* start, const Library* library)
ValueFlow: Improve the starting point for uninitialized variables to find more uninitialized usages after many conditionals (#4930)
2023-04-04 21:55:09 +02:00
{
Fix 11673: FP uninitvar when capturing by reference (#4984) * Fix 11673: FP uninitvar when capturing by reference * Format * Fix tests
2023-05-04 06:03:47 +02:00
std::vector<Token*> uses = findAllUsages(var, start, library);
ValueFlow: Improve the starting point for uninitialized variables to find more uninitialized usages after many conditionals (#4930)
2023-04-04 21:55:09 +02:00
if (uses.empty())
return start;
Token* first = uses.front();
if (Token::findmatch(start, "goto|asm|setjmp|longjmp", first))
return start;
ValueFlow: Fix uninitvar false positive after initialization '*((int*)&x) = ..' (#5142)
2023-06-10 15:22:17 +02:00
if (first != var->nameToken()) {
// if this is lhs in assignment then set first to the first token in LHS expression
Token* temp = first;
while (Token::Match(temp->astParent(), "[&*(]") && precedes(temp->astParent(), temp))
temp = temp->astParent();
if (Token::simpleMatch(temp->astParent(), "=") && precedes(temp, temp->astParent()))
first = temp;
}
Fix #11688 (FP uninitvar in for loop iteration expression) (#5140)
2023-06-10 09:58:08 +02:00
// If there is only one usage
if (uses.size() == 1)
ValueFlow: Improve the starting point for uninitialized variables to find more uninitialized usages after many conditionals (#4930)
2023-04-04 21:55:09 +02:00
return first->previous();
Fix #11688 (FP uninitvar in for loop iteration expression) (#5140)
2023-06-10 09:58:08 +02:00
const Scope* scope = first->scope();
// If first usage is in variable scope
if (scope == var->scope()) {
bool isLoopExpression = false;
for (const Token* parent = first; parent; parent = parent->astParent()) {
if (Token::simpleMatch(parent->astParent(), ";") &&
Token::simpleMatch(parent->astParent()->astParent(), ";") &&
Token::simpleMatch(parent->astParent()->astParent()->astParent(), "(") &&
Token::simpleMatch(parent->astParent()->astParent()->astParent()->astOperand1(), "for (") &&
parent == parent->astParent()->astParent()->astParent()->astOperand2()->astOperand2()->astOperand2()) {
isLoopExpression = true;
}
}
return isLoopExpression ? start : first->previous();
}
ValueFlow: Improve the starting point for uninitialized variables to find more uninitialized usages after many conditionals (#4930)
2023-04-04 21:55:09 +02:00
// If all uses are in the same scope
if (std::all_of(uses.begin() + 1, uses.end(), [&](const Token* tok) {
return tok->scope() == scope;
}))
return first->previous();
// Compute the outer scope
while (scope && scope->nestedIn != var->scope())
scope = scope->nestedIn;
if (!scope)
return start;
Token* tok = const_cast<Token*>(scope->bodyStart);
if (!tok)
return start;
if (Token::simpleMatch(tok->tokAt(-2), "} else {"))
tok = tok->linkAt(-2);
if (Token::simpleMatch(tok->previous(), ") {"))
return tok->linkAt(-1)->previous();
return tok;
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowUninit(TokenList& tokenlist, const Settings* settings)
fixed #7998 (uninitialized variable is not found when used with switch/case)
2017-04-23 18:05:14 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
fixed #7998 (uninitialized variable is not found when used with switch/case)
2017-04-23 18:05:14 +02:00
if (!tok->scope()->isExecutable())
continue;
valueFlowUninit: Handle arrays and pod types (#3917) * valueFlowUninit: Handle arrays and pod types * Format * Catch another array case
2022-03-24 06:35:44 +01:00
if (!Token::Match(tok, "%var% ;|["))
fixed #7998 (uninitialized variable is not found when used with switch/case)
2017-04-23 18:05:14 +02:00
continue;
valueFlowUninit: Handle arrays and pod types (#3917) * valueFlowUninit: Handle arrays and pod types * Format * Catch another array case
2022-03-24 06:35:44 +01:00
const Variable* var = tok->variable();
if (!var)
fixed #7998 (uninitialized variable is not found when used with switch/case)
2017-04-23 18:05:14 +02:00
continue;
valueFlowUninit: Handle arrays and pod types (#3917) * valueFlowUninit: Handle arrays and pod types * Format * Catch another array case
2022-03-24 06:35:44 +01:00
if (var->nameToken() != tok || var->isInit())
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
continue;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (!needsInitialization(var, tokenlist.isCPP()))
fixed #7998 (uninitialized variable is not found when used with switch/case)
2017-04-23 18:05:14 +02:00
continue;
valueFlowUninit: Handle arrays and pod types (#3917) * valueFlowUninit: Handle arrays and pod types * Format * Catch another array case
2022-03-24 06:35:44 +01:00
if (!var->isLocal() || var->isStatic() || var->isExtern() || var->isReference() || var->isThrow())
Fix issue 8825: ValueFlow: uninitialized struct member (#2087) * Pass uninit value across pointers * Add more testing
2019-08-15 10:44:55 +02:00
continue;
fixed #7998 (uninitialized variable is not found when used with switch/case)
2017-04-23 18:05:14 +02:00
ValueFlow::Value uninitValue;
uninitValue.setKnown();
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
uninitValue.valueType = ValueFlow::Value::ValueType::UNINIT;
valueFlowUninit: Handle arrays and pod types (#3917) * valueFlowUninit: Handle arrays and pod types * Format * Catch another array case
2022-03-24 06:35:44 +01:00
uninitValue.tokvalue = tok;
if (var->isArray())
Fix 10916: FP: uninitvar (#3949)
2022-03-27 10:01:58 +02:00
uninitValue.indirect = var->dimensions().size();
fixed #7998 (uninitialized variable is not found when used with switch/case)
2017-04-23 18:05:14 +02:00
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
bool partial = false;
Fix 11673: FP uninitvar when capturing by reference (#4984) * Fix 11673: FP uninitvar when capturing by reference * Format * Fix tests
2023-05-04 06:03:47 +02:00
Token* start = findStartToken(var, tok->next(), &settings->library);
ValueFlow: Improve the starting point for uninitialized variables to find more uninitialized usages after many conditionals (#4930)
2023-04-04 21:55:09 +02:00
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
std::map<Token*, ValueFlow::Value> partialReads;
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
if (const Scope* scope = var->typeScope()) {
if (Token::findsimplematch(scope->bodyStart, "union", scope->bodyEnd))
continue;
for (const Variable& memVar : scope->varlist) {
if (!memVar.isPublic())
continue;
Typos found by running "codespell" (#3702)
2022-01-13 17:24:26 +01:00
// Skip array since we can't track partial initialization from nested subexpressions
Fix 10681: FP ctuuninitvar with array member (#3686)
2022-01-08 10:47:28 +01:00
if (memVar.isArray())
continue;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (!needsInitialization(&memVar, tokenlist.isCPP())) {
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
partial = true;
continue;
}
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
MemberExpressionAnalyzer analyzer(memVar.nameToken()->str(), tok, uninitValue, tokenlist, settings);
Add special function to match lifetimes (#5320) This also removes the termination checking in `valueFlowUninit` as this causes a lot of FNs.
2023-08-14 10:27:00 +02:00
valueFlowGenericForward(start, tok->scope()->bodyEnd, analyzer, *settings);
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
for (auto&& p : *analyzer.partialReads) {
Token* tok2 = p.first;
const ValueFlow::Value& v = p.second;
// Try to insert into map
auto pp = partialReads.insert(std::make_pair(tok2, v));
ValueFlow::Value& v2 = pp.first->second;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const bool inserted = pp.second;
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
// Merge the two values if it is already in map
if (!inserted) {
if (v.valueType != v2.valueType)
continue;
addToErrorPath(v2, v);
}
v2.subexpressions.push_back(memVar.nameToken()->str());
}
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
}
}
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
for (auto&& p : partialReads) {
Token* tok2 = p.first;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
ValueFlow::Value& v = p.second;
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok2, std::move(v), settings);
Propagate partially uninit variables in ValueFlow (#3533)
2021-10-30 07:43:37 +02:00
}
Add subexpression analyzer to set values for uninitialized members of struct (#3517) * Add subexpression analyzer * Fix errors * Add tests * Format * Add more tests * Run members first * Format * Uncomment todo assert * Formatting * Use simpleMatch
2021-10-21 14:44:48 +02:00
if (partial)
continue;
Add special function to match lifetimes (#5320) This also removes the termination checking in `valueFlowUninit` as this causes a lot of FNs.
2023-08-14 10:27:00 +02:00
valueFlowForward(start, tok->scope()->bodyEnd, var->nameToken(), uninitValue, tokenlist, settings);
fixed #7998 (uninitialized variable is not found when used with switch/case)
2017-04-23 18:05:14 +02:00
}
}
Fix 11898: FP knownEmptyContainer (#5394)
2023-09-02 14:30:35 +02:00
static bool isContainerSizeChanged(const Token* expr,
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
const Token* start,
const Token* end,
Fix 11415: FP containerOutOfBounds for container initialized in virtual method (#4622)
2022-12-08 20:10:58 +01:00
int indirect,
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
const Settings* settings = nullptr,
int depth = 20);
Container size: Fix false positive
2018-11-02 20:10:40 +01:00
Fix 11415: FP containerOutOfBounds for container initialized in virtual method (#4622)
2022-12-08 20:10:58 +01:00
static bool isContainerSizeChangedByFunction(const Token* tok,
int indirect,
const Settings* settings = nullptr,
int depth = 20)
valueFlowSizeForward: Bailout when function calls modify the container size
2018-08-13 06:54:18 +02:00
{
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
if (!tok->valueType())
return false;
if (!astIsContainer(tok))
Fixed #8689 (False positive: containerOutOfBounds after function call)
2018-09-02 14:08:34 +02:00
return false;
Add deeper analysis of when a function changes a containers size (#2149) * Add deeper analysis of when a function changes a containers size * Fix issues * Track addressOf
2019-09-06 21:18:45 +02:00
// If we are accessing an element then we are not changing the container size
if (Token::Match(tok, "%name% . %name% (")) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const Library::Container::Yield yield = getLibraryContainer(tok)->getYield(tok->strAt(2));
Add deeper analysis of when a function changes a containers size (#2149) * Add deeper analysis of when a function changes a containers size * Fix issues * Track addressOf
2019-09-06 21:18:45 +02:00
if (yield != Library::Container::Yield::NO_YIELD)
return false;
}
if (Token::simpleMatch(tok->astParent(), "["))
return false;
// address of variable
Fixed #9424 (False positive: known condition after function call)
2019-10-18 08:21:07 +02:00
const bool addressOf = tok->valueType()->pointer || (tok->astParent() && tok->astParent()->isUnaryOp("&"));
Add deeper analysis of when a function changes a containers size (#2149) * Add deeper analysis of when a function changes a containers size * Fix issues * Track addressOf
2019-09-06 21:18:45 +02:00
int narg;
const Token * ftok = getTokenArgumentFunction(tok, narg);
if (!ftok)
return false; // not a function => variable not changed
const Function * fun = ftok->function();
Fix 11415: FP containerOutOfBounds for container initialized in virtual method (#4622)
2022-12-08 20:10:58 +01:00
if (fun && !fun->isImplicitlyVirtual()) {
Add deeper analysis of when a function changes a containers size (#2149) * Add deeper analysis of when a function changes a containers size * Fix issues * Track addressOf
2019-09-06 21:18:45 +02:00
const Variable *arg = fun->getArgumentVar(narg);
Try to fix issue 9341: daca crash: isContainerSizeChangedByFunction (#2168)
2019-09-10 19:39:44 +02:00
if (arg) {
Fix 11415: FP containerOutOfBounds for container initialized in virtual method (#4622)
2022-12-08 20:10:58 +01:00
const bool isPointer = addressOf || indirect > 0;
if (!arg->isReference() && !isPointer)
Try to fix issue 9341: daca crash: isContainerSizeChangedByFunction (#2168)
2019-09-10 19:39:44 +02:00
return false;
Fix 11415: FP containerOutOfBounds for container initialized in virtual method (#4622)
2022-12-08 20:10:58 +01:00
if (!isPointer && arg->isConst())
Fixed #9434 (False positive: Out of bounds access when using const pointer)
2019-12-15 20:10:12 +01:00
return false;
if (arg->valueType() && arg->valueType()->constness == 1)
Add deeper analysis of when a function changes a containers size (#2149) * Add deeper analysis of when a function changes a containers size * Fix issues * Track addressOf
2019-09-06 21:18:45 +02:00
return false;
Try to fix issue 9341: daca crash: isContainerSizeChangedByFunction (#2168)
2019-09-10 19:39:44 +02:00
const Scope * scope = fun->functionScope;
if (scope) {
// Argument not used
if (!arg->nameToken())
return false;
if (depth > 0)
Fix 11898: FP knownEmptyContainer (#5394)
2023-09-02 14:30:35 +02:00
return isContainerSizeChanged(arg->nameToken(),
Fix 11415: FP containerOutOfBounds for container initialized in virtual method (#4622)
2022-12-08 20:10:58 +01:00
scope->bodyStart,
scope->bodyEnd,
addressOf ? indirect + 1 : indirect,
settings,
depth - 1);
Try to fix issue 9341: daca crash: isContainerSizeChangedByFunction (#2168)
2019-09-10 19:39:44 +02:00
}
Fixed #9424 (False positive: known condition after function call)
2019-10-18 08:21:07 +02:00
// Don't know => Safe guess
return true;
Add deeper analysis of when a function changes a containers size (#2149) * Add deeper analysis of when a function changes a containers size * Fix issues * Track addressOf
2019-09-06 21:18:45 +02:00
}
}
bool inconclusive = false;
Fix 11415: FP containerOutOfBounds for container initialized in virtual method (#4622)
2022-12-08 20:10:58 +01:00
const bool isChanged = isVariableChangedByFunctionCall(tok, indirect, settings, &inconclusive);
Add deeper analysis of when a function changes a containers size (#2149) * Add deeper analysis of when a function changes a containers size * Fix issues * Track addressOf
2019-09-06 21:18:45 +02:00
return (isChanged || inconclusive);
valueFlowSizeForward: Bailout when function calls modify the container size
2018-08-13 06:54:18 +02:00
}
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
struct ContainerExpressionAnalyzer : ExpressionAnalyzer {
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
ContainerExpressionAnalyzer(const Token* expr, ValueFlow::Value val, const TokenList& t, const Settings* s)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
: ExpressionAnalyzer(expr, std::move(val), t, s)
Add generic reverse valueflow (#2878)
2020-11-10 16:00:55 +01:00
{}
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
bool match(const Token* tok) const override {
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
return tok->exprId() == expr->exprId() || (astIsIterator(tok) && isAliasOf(tok, expr->exprId()));
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
}
Fix reverse analysis when modifying variable with function (#4800)
2023-02-23 18:04:16 +01:00
Action isWritable(const Token* tok, Direction /*d*/) const override
{
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
if (astIsIterator(tok))
return Action::None;
fixed Visual Studio warnings about shadowed members (#3191)
2021-03-31 22:07:20 +02:00
if (!getValue(tok))
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
return Action::None;
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
if (!tok->valueType())
return Action::None;
if (!astIsContainer(tok))
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
return Action::None;
const Token* parent = tok->astParent();
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
const Library::Container* container = getLibraryContainer(tok);
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
if (container->stdStringLike && Token::simpleMatch(parent, "+=") && astIsLHS(tok) && parent->astOperand2()) {
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
const Token* rhs = parent->astOperand2();
if (rhs->tokType() == Token::eString)
Fix issue 10120: FP: containerOutOfBounds, regression (#3064)
2021-01-21 19:50:57 +01:00
return Action::Read | Action::Write | Action::Incremental;
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
const Library::Container* rhsContainer = getLibraryContainer(rhs);
if (rhsContainer && rhsContainer->stdStringLike) {
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::any_of(rhs->values().cbegin(), rhs->values().cend(), [&](const ValueFlow::Value &rhsval) {
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
return rhsval.isKnown() && rhsval.isContainerSizeValue();
astyle formatting
2020-08-23 17:17:33 +02:00
}))
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
return Action::Read | Action::Write | Action::Incremental;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
} else if (astIsLHS(tok) && Token::Match(tok->astParent(), ". %name% (")) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const Library::Container::Action action = container->getAction(tok->astParent()->strAt(1));
Fix FP when inserting a range into a container (#3108)
2021-02-02 14:57:48 +01:00
if (action == Library::Container::Action::PUSH || action == Library::Container::Action::POP) {
std::vector<const Token*> args = getArguments(tok->tokAt(3));
if (args.size() < 2)
return Action::Read | Action::Write | Action::Incremental;
}
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
return Action::None;
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
void writeValue(ValueFlow::Value* val, const Token* tok, Direction d) const override {
fixed Visual Studio warnings about shadowed members (#3191)
2021-03-31 22:07:20 +02:00
if (!val)
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
return;
if (!tok->astParent())
return;
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
if (!tok->valueType())
return;
if (!astIsContainer(tok))
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
return;
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
const Token* parent = tok->astParent();
const Library::Container* container = getLibraryContainer(tok);
Fix reverse analysis when modifying variable with function (#4800)
2023-02-23 18:04:16 +01:00
int n = 0;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
if (container->stdStringLike && Token::simpleMatch(parent, "+=") && parent->astOperand2()) {
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
const Token* rhs = parent->astOperand2();
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
const Library::Container* rhsContainer = getLibraryContainer(rhs);
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
if (rhs->tokType() == Token::eString)
Fix reverse analysis when modifying variable with function (#4800)
2023-02-23 18:04:16 +01:00
n = Token::getStrLength(rhs);
Fix 10719: Crash in valueFlowIterators() (#3756) * Fix 10719: Crash in valueFlowIterators() * Format
2022-01-26 06:42:41 +01:00
else if (rhsContainer && rhsContainer->stdStringLike) {
Fix reverse analysis when modifying variable with function (#4800)
2023-02-23 18:04:16 +01:00
auto it = std::find_if(rhs->values().begin(), rhs->values().end(), [&](const ValueFlow::Value& rhsval) {
return rhsval.isKnown() && rhsval.isContainerSizeValue();
});
if (it != rhs->values().end())
n = it->intvalue;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
} else if (astIsLHS(tok) && Token::Match(tok->astParent(), ". %name% (")) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const Library::Container::Action action = container->getAction(tok->astParent()->strAt(1));
Add tests for container changes
2020-08-10 05:52:03 +02:00
if (action == Library::Container::Action::PUSH)
Fix reverse analysis when modifying variable with function (#4800)
2023-02-23 18:04:16 +01:00
n = 1;
Add tests for container changes
2020-08-10 05:52:03 +02:00
if (action == Library::Container::Action::POP)
Fix reverse analysis when modifying variable with function (#4800)
2023-02-23 18:04:16 +01:00
n = -1;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
Fix reverse analysis when modifying variable with function (#4800)
2023-02-23 18:04:16 +01:00
if (d == Direction::Reverse)
val->intvalue -= n;
else
val->intvalue += n;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
Fix 11358: FP containerOutOfBounds for container passed by pointer (#4626)
2022-12-09 19:43:21 +01:00
int getIndirect(const Token* tok) const override
{
if (tok->valueType()) {
return tok->valueType()->pointer;
}
return ValueFlowAnalyzer::getIndirect(tok);
}
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
Action isModified(const Token* tok) const override {
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
Action read = Action::Read;
Typos found by running "codespell" (#2846)
2020-10-15 19:24:13 +02:00
// An iterator won't change the container size
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
if (astIsIterator(tok))
return read;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
if (Token::Match(tok->astParent(), "%assign%") && astIsLHS(tok))
return Action::Invalid;
if (isLikelyStreamRead(isCPP(), tok->astParent()))
return Action::Invalid;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
if (astIsContainer(tok) && ValueFlow::isContainerSizeChanged(tok, getIndirect(tok), getSettings()))
Fix 11285: FN: zerodiv (#4448) * Fix 11285: FN: zerodiv * Format
2022-09-07 19:15:37 +02:00
return read | Action::Invalid;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
return read;
}
};
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
static const Token* parseBinaryIntOp(const Token* expr,
const std::function<std::vector<MathLib::bigint>(const Token*)>& eval,
MathLib::bigint& known)
{
if (!expr)
return nullptr;
if (!expr->astOperand1() || !expr->astOperand2())
return nullptr;
if (expr->astOperand1()->exprId() == 0 && expr->astOperand2()->exprId() == 0)
return nullptr;
std::vector<MathLib::bigint> x1 = eval(expr->astOperand1());
std::vector<MathLib::bigint> x2 = eval(expr->astOperand2());
if (expr->astOperand1()->exprId() == 0 && x1.empty())
return nullptr;
if (expr->astOperand2()->exprId() == 0 && x2.empty())
return nullptr;
const Token* varTok = nullptr;
if (!x1.empty() && x2.empty()) {
varTok = expr->astOperand2();
known = x1.front();
} else if (x1.empty() && !x2.empty()) {
varTok = expr->astOperand1();
known = x2.front();
}
return varTok;
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
const Token* ValueFlow::solveExprValue(const Token* expr,
const std::function<std::vector<MathLib::bigint>(const Token*)>& eval,
ValueFlow::Value& value)
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
{
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
if (!value.isIntValue() && !value.isIteratorValue() && !value.isSymbolicValue())
return expr;
if (value.isSymbolicValue() && !Token::Match(expr, "+|-"))
return expr;
MathLib::bigint intval;
const Token* binaryTok = parseBinaryIntOp(expr, eval, intval);
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const bool rhs = astIsRHS(binaryTok);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
// If its on the rhs, then -1 multiplication is needed, which is not possible with simple delta analysis used currently for symbolic values
if (value.isSymbolicValue() && rhs && Token::simpleMatch(expr, "-"))
return expr;
if (binaryTok && expr->str().size() == 1) {
switch (expr->str()[0]) {
case '+': {
value.intvalue -= intval;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return ValueFlow::solveExprValue(binaryTok, eval, value);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
case '-': {
if (rhs)
value.intvalue = intval - value.intvalue;
else
value.intvalue += intval;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return ValueFlow::solveExprValue(binaryTok, eval, value);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
case '*': {
if (intval == 0)
break;
value.intvalue /= intval;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return ValueFlow::solveExprValue(binaryTok, eval, value);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
case '^': {
value.intvalue ^= intval;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return ValueFlow::solveExprValue(binaryTok, eval, value);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
}
}
}
return expr;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
static const Token* solveExprValue(const Token* expr, ValueFlow::Value& value)
Revert "Formatted the code [ci skip]" (#3380) This reverts commit 7a6d7f7c2de9846bd12a4bc5aab6c3bb2aba61ec.
2021-08-03 17:53:30 +02:00
{
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
return ValueFlow::solveExprValue(
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
expr,
[](const Token* tok) -> std::vector<MathLib::bigint> {
if (tok->hasKnownIntValue())
return {tok->values().front().intvalue};
return {};
},
value);
Refactor: Use valueFlowForward to forward values in condition expression (#3369)
2021-08-01 10:13:14 +02:00
}
CI: Add selfcheck using Cppcheck Premium. Activates Misra C++ 2008 and Cert C++ 2016 checkers. (#5623)
2023-11-06 15:31:47 +01:00
static ValuePtr<Analyzer> makeAnalyzer(const Token* exprTok, ValueFlow::Value value, const TokenList& tokenlist, const Settings* settings)
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
{
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
if (value.isContainerSizeValue())
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return ContainerExpressionAnalyzer(exprTok, std::move(value), tokenlist, settings);
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
const Token* expr = solveExprValue(exprTok, value);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return ExpressionAnalyzer(expr, std::move(value), tokenlist, settings);
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
CI: Add selfcheck using Cppcheck Premium. Activates Misra C++ 2008 and Cert C++ 2016 checkers. (#5623)
2023-11-06 15:31:47 +01:00
static ValuePtr<Analyzer> makeReverseAnalyzer(const Token* exprTok, ValueFlow::Value value, const TokenList& tokenlist, const Settings* settings)
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
{
Refactor valueflow forward and reverse functions and unify them (#4127) * Move functions around * Make it a template to handle both overloads * Simplify forward * Remove container forward * Remove unused settings params * Format * Remove valueFlowForwardExpression * Format * Remove init list * Make const ref * Remove braces * Remove braces
2022-05-24 06:41:17 +02:00
if (value.isContainerSizeValue())
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
return ContainerExpressionAnalyzer(exprTok, std::move(value), tokenlist, settings);
return ExpressionAnalyzer(exprTok, std::move(value), tokenlist, settings);
Add generic valueflowBeforeCondition (#3001)
2021-01-08 22:55:04 +01:00
}
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
bool ValueFlow::isContainerSizeChanged(const Token* tok, int indirect, const Settings* settings, int depth)
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
{
if (!tok)
return false;
if (!tok->valueType() || !tok->valueType()->container)
return true;
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
if (astIsLHS(tok) && Token::Match(tok->astParent(), "%assign%|<<"))
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
return true;
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
const Library::Container* container = tok->valueType()->container;
if (astIsLHS(tok) && Token::simpleMatch(tok->astParent(), "["))
return container->stdAssociativeLike;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const Library::Container::Action action = astContainerAction(tok);
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
switch (action) {
case Library::Container::Action::RESIZE:
case Library::Container::Action::CLEAR:
case Library::Container::Action::PUSH:
case Library::Container::Action::POP:
case Library::Container::Action::CHANGE:
case Library::Container::Action::INSERT:
case Library::Container::Action::ERASE:
Evaluate container size in program memory
2020-08-11 03:08:49 +02:00
return true;
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
case Library::Container::Action::NO_ACTION:
// Is this an unknown member function call?
some cleanups (#4308)
2022-07-26 08:28:55 +02:00
if (astIsLHS(tok) && Token::Match(tok->astParent(), ". %name% (")) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const Library::Container::Yield yield = astContainerYield(tok);
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
return yield == Library::Container::Yield::NO_YIELD;
some cleanups (#4308)
2022-07-26 08:28:55 +02:00
}
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
break;
case Library::Container::Action::FIND:
Fix #12087 Library: add Container::Action::FIND_CONST (#5579)
2023-10-20 21:22:06 +02:00
case Library::Container::Action::FIND_CONST:
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
case Library::Container::Action::CHANGE_CONTENT:
case Library::Container::Action::CHANGE_INTERNAL:
break;
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
Enable and mitigate readability-simplify-boolean-expr (#4897)
2023-03-17 13:51:55 +01:00
return isContainerSizeChangedByFunction(tok, indirect, settings, depth);
Use forward analyzer for container forward
2020-08-08 07:10:03 +02:00
}
Fix 11898: FP knownEmptyContainer (#5394)
2023-09-02 14:30:35 +02:00
static bool isContainerSizeChanged(const Token* expr,
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
const Token* start,
const Token* end,
Fix 11415: FP containerOutOfBounds for container initialized in virtual method (#4622)
2022-12-08 20:10:58 +01:00
int indirect,
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
const Settings* settings,
int depth)
valueFlowContainerSize: Fix FP when container size is changed
2018-08-12 22:23:19 +02:00
{
for (const Token *tok = start; tok != end; tok = tok->next()) {
Fix 11898: FP knownEmptyContainer (#5394)
2023-09-02 14:30:35 +02:00
if (tok->exprId() != expr->exprId() && !isAliasOf(tok, expr))
valueFlowContainerSize: Fix FP when container size is changed
2018-08-12 22:23:19 +02:00
continue;
ValueFlow: some interface and namespace cleanups (#4746)
2023-01-28 10:20:47 +01:00
if (ValueFlow::isContainerSizeChanged(tok, indirect, settings, depth))
Fix issue 9329: FP knownConditionTrueFalse - vector modified by function calls (#2145)
2019-09-05 16:42:26 +02:00
return true;
valueFlowContainerSize: Fix FP when container size is changed
2018-08-12 22:23:19 +02:00
}
return false;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowSmartPointer(TokenList &tokenlist, ErrorLogger * errorLogger, const Settings *settings)
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
if (!tok->scope())
continue;
if (!tok->scope()->isExecutable())
continue;
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
if (!astIsSmartPointer(tok))
continue;
if (tok->variable() && Token::Match(tok, "%var% (|{|;")) {
Formatting
2020-09-09 04:55:53 +02:00
const Variable* var = tok->variable();
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
if (!var->isSmartPointer())
continue;
if (var->nameToken() == tok) {
Formatting
2020-09-09 04:55:53 +02:00
if (Token::Match(tok, "%var% (|{") && tok->next()->astOperand2() &&
tok->next()->astOperand2()->str() != ",") {
Token* inTok = tok->next()->astOperand2();
Fix #10704 FN redundantCopyLocalConst (#4115)
2022-07-10 11:33:24 +02:00
const std::list<ValueFlow::Value>& values = inTok->values();
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
const bool constValue = inTok->isNumber();
valueFlowForwardAssign(inTok, var, values, constValue, true, tokenlist, errorLogger, settings);
} else if (Token::Match(tok, "%var% ;")) {
ValueFlow::Value v(0);
v.setKnown();
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
valueFlowForwardAssign(tok, var, {std::move(v)}, false, true, tokenlist, errorLogger, settings);
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
}
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
}
} else if (astIsLHS(tok) && Token::Match(tok->astParent(), ". %name% (") &&
tok->astParent()->originalName() != "->") {
std::vector<const Variable*> vars = getVariables(tok);
Token* ftok = tok->astParent()->tokAt(2);
if (Token::simpleMatch(tok->astParent(), ". reset (")) {
if (Token::simpleMatch(ftok, "( )")) {
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
ValueFlow::Value v(0);
v.setKnown();
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
valueFlowForwardAssign(ftok, tok, vars, {std::move(v)}, false, tokenlist, errorLogger, settings);
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
} else {
tok->removeValues(std::mem_fn(&ValueFlow::Value::isIntValue));
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
Token* inTok = ftok->astOperand2();
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
if (!inTok)
continue;
Fix #10704 FN redundantCopyLocalConst (#4115)
2022-07-10 11:33:24 +02:00
const std::list<ValueFlow::Value>& values = inTok->values();
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
valueFlowForwardAssign(inTok, tok, vars, values, false, tokenlist, errorLogger, settings);
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
}
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
} else if (Token::simpleMatch(tok->astParent(), ". release ( )")) {
const Token* parent = ftok->astParent();
Fix 9777: False Positive: Condition is always true with reset/release on unique_ptr (#3440)
2021-09-04 19:06:13 +02:00
bool hasParentReset = false;
while (parent) {
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
if (Token::Match(parent->tokAt(-2), ". release|reset (") &&
parent->tokAt(-2)->astOperand1()->exprId() == tok->exprId()) {
Fix 9777: False Positive: Condition is always true with reset/release on unique_ptr (#3440)
2021-09-04 19:06:13 +02:00
hasParentReset = true;
break;
}
parent = parent->astParent();
}
if (hasParentReset)
continue;
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
ValueFlow::Value v(0);
v.setKnown();
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
valueFlowForwardAssign(ftok, tok, vars, {std::move(v)}, false, tokenlist, errorLogger, settings);
Fix 9873: False negative: null pointer when checking raw pointer (#3485)
2021-10-06 08:39:58 +02:00
} else if (Token::simpleMatch(tok->astParent(), ". get ( )")) {
ValueFlow::Value v = makeSymbolic(tok);
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok->astParent()->tokAt(2), std::move(v), settings);
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
}
Formatting
2020-09-09 04:55:53 +02:00
} else if (Token::Match(tok->previous(), "%name%|> (|{") && astIsSmartPointer(tok) &&
astIsSmartPointer(tok->astOperand1())) {
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
std::vector<const Token*> args = getArguments(tok);
if (args.empty())
continue;
Formatting
2020-09-09 04:55:53 +02:00
for (const ValueFlow::Value& v : args.front()->values())
Fix issue 9496: False negative: Dereferencing returned smart null-pointer
2020-09-09 04:54:38 +02:00
setTokenValue(tok, v, settings);
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
}
astyle formatting [ci skip]
2019-04-26 11:30:35 +02:00
}
Improve diagnostics with null smart pointers (#1805) * Warn when dereferencing null smart pointers * Improve tracking of smart pointer values * Use library isSmartPointer
2019-04-26 11:30:09 +02:00
}
Add std::*begin and std::*end cfg (#4796)
2023-03-09 17:06:53 +01:00
static Library::Container::Yield findIteratorYield(Token* tok, const Token** ftok, const Settings *settings)
{
auto yield = astContainerYield(tok, ftok);
if (*ftok)
return yield;
if (!tok->astParent())
return yield;
//begin/end free functions
return astFunctionYield(tok->astParent()->previous(), settings, ftok);
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowIterators(TokenList &tokenlist, const Settings *settings)
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
if (!tok->scope())
continue;
if (!tok->scope()->isExecutable())
continue;
if (!astIsContainer(tok))
continue;
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
Token* ftok = nullptr;
const Library::Container::Yield yield = findIteratorYield(tok, const_cast<const Token**>(&ftok), settings);
Refactor to use AST for isContainerSizeChanged (#4222)
2022-06-19 08:17:05 +02:00
if (ftok) {
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
ValueFlow::Value v(0);
v.setKnown();
if (yield == Library::Container::Yield::START_ITERATOR) {
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
v.valueType = ValueFlow::Value::ValueType::ITERATOR_START;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(ftok->next(), std::move(v), settings);
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
} else if (yield == Library::Container::Yield::END_ITERATOR) {
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
v.valueType = ValueFlow::Value::ValueType::ITERATOR_END;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(ftok->next(), std::move(v), settings);
Fix issue 737: new check: Dereference end iterator
2020-08-17 23:36:45 +02:00
}
}
}
}
CI; Fix Cppcheck self-check, pointer can be const
2021-07-20 11:21:47 +02:00
static std::list<ValueFlow::Value> getIteratorValues(std::list<ValueFlow::Value> values, const ValueFlow::Value::ValueKind* kind = nullptr)
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
{
values.remove_if([&](const ValueFlow::Value& v) {
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
if (kind && v.valueKind != *kind)
return true;
return !v.isIteratorValue();
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
});
return values;
}
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
struct IteratorConditionHandler : SimpleConditionHandler {
enabled and fixed `readability-named-parameter` clang-tidy warnings (#4487)
2022-09-27 20:03:25 +02:00
std::vector<Condition> parse(const Token* tok, const Settings* /*settings*/) const override {
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
Condition cond;
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
if (Token::Match(tok, "==|!=")) {
if (!tok->astOperand1() || !tok->astOperand2())
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
return {};
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
fixed some "Variable can be made constexpr" Rider warnings (#5615)
2023-11-03 09:55:44 +01:00
constexpr ValueFlow::Value::ValueKind kind = ValueFlow::Value::ValueKind::Known;
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
std::list<ValueFlow::Value> values = getIteratorValues(tok->astOperand1()->values(), &kind);
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
if (!values.empty()) {
cond.vartok = tok->astOperand2();
} else {
Fix 10657: False positive; ValueFlow - invalid iterator (#3636)
2021-12-16 22:34:51 +01:00
values = getIteratorValues(tok->astOperand2()->values(), &kind);
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
if (!values.empty())
cond.vartok = tok->astOperand1();
}
astyle formatting
2020-08-28 19:29:33 +02:00
for (ValueFlow::Value& v:values) {
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
v.setPossible();
v.assumeCondition(tok);
}
cond.true_values = values;
cond.false_values = values;
}
avoid some unnecessary object creations and copies (#4493)
2022-09-29 21:47:17 +02:00
return {std::move(cond)};
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
}
};
Fix issue 9756: false negative: invalid iterator from std::find_if (#2760)
2020-08-28 19:29:09 +02:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowIteratorInfer(TokenList &tokenlist, const Settings *settings)
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
if (!tok->scope())
continue;
if (!tok->scope()->isExecutable())
continue;
std::list<ValueFlow::Value> values = getIteratorValues(tok->values());
values.remove_if([&](const ValueFlow::Value& v) {
if (!v.isImpossible())
return true;
Fix 10642: False positive: Possible dereference of an invalid iterator: v.begin()+v.size()-1 (#3630)
2021-12-15 19:31:28 +01:00
if (!v.condition)
return true;
if (v.bound != ValueFlow::Value::Bound::Point)
return true;
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
if (v.isIteratorEndValue() && v.intvalue <= 0)
return true;
if (v.isIteratorStartValue() && v.intvalue >= 0)
return true;
return false;
});
astyle formatting [ci skip]
2020-09-01 20:00:04 +02:00
for (ValueFlow::Value& v:values) {
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
v.setPossible();
if (v.isIteratorStartValue())
v.intvalue++;
if (v.isIteratorEndValue())
v.intvalue--;
ValueFlow: avoid unnecessary `Value` copies (#4835)
2023-03-02 21:46:23 +01:00
setTokenValue(tok, std::move(v), settings);
Fix issue 8373: false negative: invalid iterator (#2761)
2020-08-31 08:46:56 +02:00
}
}
}
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
static std::vector<ValueFlow::Value> getContainerValues(const Token* tok)
Fix issue 9996: false negative: containerOutOfBounds with std::vector::front() and c++11 braced initializer (#2958)
2020-12-18 07:14:11 +01:00
{
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
std::vector<ValueFlow::Value> values;
if (tok) {
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
std::copy_if(tok->values().cbegin(),
tok->values().cend(),
Fix issue 9996: false negative: containerOutOfBounds with std::vector::front() and c++11 braced initializer (#2958)
2020-12-18 07:14:11 +01:00
std::back_inserter(values),
std::mem_fn(&ValueFlow::Value::isContainerSizeValue));
}
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
return values;
}
static ValueFlow::Value makeContainerSizeValue(std::size_t s, bool known = true)
{
ValueFlow::Value value(s);
Fix issue 9996: false negative: containerOutOfBounds with std::vector::front() and c++11 braced initializer (#2958)
2020-12-18 07:14:11 +01:00
value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
Fix issue 10208: FP: knownConditionTrueFalse in for loop with function that assigns by ref (#3198)
2021-04-18 21:42:27 +02:00
if (known)
value.setKnown();
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
return value;
}
static std::vector<ValueFlow::Value> makeContainerSizeValue(const Token* tok, bool known = true)
{
if (tok->hasKnownIntValue())
return {makeContainerSizeValue(tok->values().front().intvalue, known)};
return {};
}
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
static std::vector<ValueFlow::Value> getContainerSizeFromConstructorArgs(const std::vector<const Token*>& args,
const Library::Container* container,
bool known)
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
{
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
if (astIsIntegral(args[0], false)) { // { count, i } or { count }
if (args.size() == 1 || (args.size() > 1 && !astIsIntegral(args[1], false)))
return {makeContainerSizeValue(args[0], known)};
} else if (astIsContainer(args[0]) && args.size() == 1) { // copy constructor
return getContainerValues(args[0]);
} else if (isIteratorPair(args)) {
std::vector<ValueFlow::Value> result = getContainerValues(args[0]);
if (!result.empty())
return result;
// (ptr, ptr + size)
if (astIsPointer(args[0]) && args[0]->exprId() != 0) {
// (ptr, ptr) is empty
// TODO: Use lifetime values to check if it points to the same address
if (args[0]->exprId() == args[1]->exprId())
return {makeContainerSizeValue(std::size_t{0}, known)};
// TODO: Insert iterator positions for pointers
if (Token::simpleMatch(args[1], "+")) {
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
nonneg int const eid = args[0]->exprId();
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
const Token* vartok = args[1]->astOperand1();
const Token* sizetok = args[1]->astOperand2();
if (sizetok->exprId() == eid)
std::swap(vartok, sizetok);
if (vartok->exprId() == eid && sizetok->hasKnownIntValue())
return {makeContainerSizeValue(sizetok, known)};
}
}
} else if (container->stdStringLike) {
if (astIsPointer(args[0])) {
Fix #10238: char* confused with char (#3484)
2021-10-05 18:04:48 +02:00
// TODO: Try to read size of string literal { "abc" }
if (args.size() == 2 && astIsIntegral(args[1], false)) // { char*, count }
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
return {makeContainerSizeValue(args[1], known)};
} else if (astIsContainer(args[0])) {
Fix #10238: char* confused with char (#3484)
2021-10-05 18:04:48 +02:00
if (args.size() == 1) // copy constructor { str }
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
return getContainerValues(args[0]);
Fix #10238: char* confused with char (#3484)
2021-10-05 18:04:48 +02:00
if (args.size() == 3) // { str, pos, count }
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
return {makeContainerSizeValue(args[2], known)};
Fix #10238: char* confused with char (#3484)
2021-10-05 18:04:48 +02:00
// TODO: { str, pos }, { ..., alloc }
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
}
}
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
return {};
}
Fix #11417 FP knownConditionTrueFalse with container and brace init (#4606) * Fix #11417 FP knownConditionTrueFalse with container and brace init * Format * Format * Move to getInitListSize()
2022-12-02 22:07:08 +01:00
static bool valueFlowIsSameContainerType(const ValueType& contType, const Token* tok, const Settings* settings)
{
if (!tok || !tok->valueType() || !tok->valueType()->containerTypeToken)
Fix #12052 FP: containerOutOfBounds (#5534)
2023-10-11 14:08:17 +02:00
return true;
Fix #11417 FP knownConditionTrueFalse with container and brace init (#4606) * Fix #11417 FP knownConditionTrueFalse with container and brace init * Format * Format * Move to getInitListSize()
2022-12-02 22:07:08 +01:00
fixes #11104 (avoid C++-only parsing when processing C code in parsedecl()) / also avoid remaining `Library::detect*()` calls (#5346)
2023-08-18 22:48:24 +02:00
const ValueType tokType = ValueType::parseDecl(tok->valueType()->containerTypeToken, *settings);
Fix #12052 FP: containerOutOfBounds (#5534)
2023-10-11 14:08:17 +02:00
return contType.isTypeEqual(&tokType) || tokType.type == ValueType::Type::UNKNOWN_TYPE;
Fix #11417 FP knownConditionTrueFalse with container and brace init (#4606) * Fix #11417 FP knownConditionTrueFalse with container and brace init * Format * Format * Move to getInitListSize()
2022-12-02 22:07:08 +01:00
}
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
static std::vector<ValueFlow::Value> getInitListSize(const Token* tok,
const ValueType* valueType,
const Settings* settings,
bool known = true)
{
std::vector<const Token*> args = getArguments(tok);
if (args.empty())
return {makeContainerSizeValue(std::size_t{0}, known)};
bool initList = true;
// Try to disambiguate init list from constructor
if (args.size() < 4) {
initList = !isIteratorPair(args) && !(args.size() < 3 && astIsIntegral(args[0], false));
const Token* containerTypeToken = valueType->containerTypeToken;
if (valueType->container->stdStringLike) {
initList = astIsGenericChar(args[0]) && !astIsPointer(args[0]);
} else if (containerTypeToken && settings) {
fixes #11104 (avoid C++-only parsing when processing C code in parsedecl()) / also avoid remaining `Library::detect*()` calls (#5346)
2023-08-18 22:48:24 +02:00
ValueType vt = ValueType::parseDecl(containerTypeToken, *settings);
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
if (vt.pointer > 0 && astIsPointer(args[0]))
initList = true;
else if (vt.type == ValueType::ITERATOR && astIsIterator(args[0]))
initList = true;
else if (vt.isIntegral() && astIsIntegral(args[0], false))
initList = true;
Fix #11417 FP knownConditionTrueFalse with container and brace init (#4606) * Fix #11417 FP knownConditionTrueFalse with container and brace init * Format * Format * Move to getInitListSize()
2022-12-02 22:07:08 +01:00
else if (args.size() == 1 && valueFlowIsSameContainerType(vt, tok->astOperand2(), settings))
initList = false; // copy ctor
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
}
}
if (!initList)
return getContainerSizeFromConstructorArgs(args, valueType->container, known);
Fix 10238: FP knownConditionTrueFalse std::string from const char* assumed non-empty (#3288)
2021-06-04 17:22:05 +02:00
return {makeContainerSizeValue(args.size(), known)};
Fix issue 9996: false negative: containerOutOfBounds with std::vector::front() and c++11 braced initializer (#2958)
2020-12-18 07:14:11 +01:00
}
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
static std::vector<ValueFlow::Value> getContainerSizeFromConstructor(const Token* tok,
const ValueType* valueType,
const Settings* settings,
bool known = true)
{
std::vector<const Token*> args = getArguments(tok);
if (args.empty())
return {makeContainerSizeValue(std::size_t{0}, known)};
// Init list in constructor
if (args.size() == 1 && Token::simpleMatch(args[0], "{"))
return getInitListSize(args[0], valueType, settings, known);
return getContainerSizeFromConstructorArgs(args, valueType->container, known);
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowContainerSetTokValue(TokenList& tokenlist, const Settings* settings, const Token* tok, Token* initList)
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
{
ValueFlow::Value value;
value.valueType = ValueFlow::Value::ValueType::TOK;
value.tokvalue = initList;
Fix issue 11867: Assert failure in valueFlowContainerSize() (#5317)
2023-08-13 22:31:38 +02:00
if (astIsContainerString(tok) && Token::simpleMatch(initList, "{") && Token::Match(initList->astOperand2(), "%str%")) {
value.tokvalue = initList->astOperand2();
}
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
value.setKnown();
Token* start = initList->link() ? initList->link() : initList->next();
if (tok->variable() && tok->variable()->isConst()) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForwardConst(start, tok->variable()->scope()->bodyEnd, tok->variable(), {value}, settings);
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
} else {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(start, tok, value, tokenlist, settings);
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
}
}
--performance-valueflow-max-if-count: review comments
2023-04-08 13:04:41 +02:00
static const Scope* getFunctionScope(const Scope* scope) {
while (scope && scope->type != Scope::ScopeType::eFunction)
scope = scope->nestedIn;
return scope;
}
Fix issue 11867: Assert failure in valueFlowContainerSize() (#5317)
2023-08-13 22:31:38 +02:00
static MathLib::bigint valueFlowGetStrLength(const Token* tok)
{
if (tok->tokType() == Token::eString)
return Token::getStrLength(tok);
if (astIsGenericChar(tok) || tok->tokType() == Token::eChar)
return 1;
Fix 11884: Hang in valueFlowGetStrLength (#5352)
2023-08-20 22:01:04 +02:00
if (const ValueFlow::Value* v = tok->getKnownValue(ValueFlow::Value::ValueType::CONTAINER_SIZE))
return v->intvalue;
if (const ValueFlow::Value* v = tok->getKnownValue(ValueFlow::Value::ValueType::TOK)) {
if (v->tokvalue != tok)
return valueFlowGetStrLength(v->tokvalue);
}
Fix issue 11867: Assert failure in valueFlowContainerSize() (#5317)
2023-08-13 22:31:38 +02:00
return 0;
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowContainerSize(TokenList& tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
const SymbolDatabase& symboldatabase,
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
ErrorLogger* /*errorLogger*/,
--performance-valueflow-max-if-count: review comments
2023-04-08 13:04:41 +02:00
const Settings* settings,
const std::set<const Scope*>& skippedFunctions)
Fixed #8681 (ValueFlow: Container size)
2018-08-10 11:29:16 +02:00
{
valueFlowContainerSize: empty container variables
2018-08-12 14:39:29 +02:00
// declaration
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Variable *var : symboldatabase.variableList()) {
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
if (!var)
valueFlowContainerSize: empty container variables
2018-08-12 14:39:29 +02:00
continue;
Fix 10950: Crash on function declaration (#3979) * Fix 10950: Crash on function declaration * Format
2022-04-06 19:00:05 +02:00
if (!var->scope() || !var->scope()->bodyEnd || !var->scope()->bodyStart)
continue;
valueFlowContainerSize: empty container variables
2018-08-12 14:39:29 +02:00
if (!var->valueType() || !var->valueType()->container)
continue;
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
if (!astIsContainer(var->nameToken()))
Add outOfBounds check for iterators to containers (#2752)
2020-08-26 21:05:17 +02:00
continue;
--performance-valueflow-max-if-count: review comments
2023-04-08 13:04:41 +02:00
if (skippedFunctions.count(getFunctionScope(var->scope())))
continue;
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
bool known = true;
int size = 0;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const bool nonLocal = !var->isLocal() || var->isPointer() || var->isReference() || var->isStatic();
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
bool constSize = var->isConst() && !nonLocal;
bool staticSize = false;
Fix issue 10216: FP containerOutOfBounds with std::array initialized with = {} (#3190)
2021-03-31 22:07:54 +02:00
if (var->valueType()->container->size_templateArgNo >= 0) {
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
staticSize = true;
constSize = true;
size = -1;
if (var->dimensions().size() == 1) {
const Dimension& dim = var->dimensions().front();
if (dim.known) {
size = dim.num;
} else if (dim.tok && dim.tok->hasKnownIntValue()) {
size = dim.tok->values().front().intvalue;
}
}
if (size < 0)
continue;
}
Fix 10955: False positive: containerOutOfBounds when using a const reference member (#4005)
2022-04-12 08:07:55 +02:00
if (!staticSize && nonLocal)
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
continue;
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
Token* nameToken = const_cast<Token*>(var->nameToken());
if (nameToken->hasKnownValue(ValueFlow::Value::ValueType::CONTAINER_SIZE))
Fix issue 10216: FP containerOutOfBounds with std::array initialized with = {} (#3190)
2021-03-31 22:07:54 +02:00
continue;
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
if (!staticSize) {
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
if (!Token::Match(nameToken, "%name% ;") &&
!(Token::Match(nameToken, "%name% {") && Token::simpleMatch(nameToken->next()->link(), "} ;")) &&
!Token::Match(nameToken, "%name% ("))
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
continue;
Fix issue 10216: FP containerOutOfBounds with std::array initialized with = {} (#3190)
2021-03-31 22:07:54 +02:00
}
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
if (nameToken->astTop() && Token::Match(nameToken->astTop()->previous(), "for|while"))
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
known = !isVariableChanged(var, settings, true);
std::vector<ValueFlow::Value> values{ValueFlow::Value{size}};
Fix issue 9996: false negative: containerOutOfBounds with std::vector::front() and c++11 braced initializer (#2958)
2020-12-18 07:14:11 +01:00
values.back().valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
Fix issue 10208: FP: knownConditionTrueFalse in for loop with function that assigns by ref (#3198)
2021-04-18 21:42:27 +02:00
if (known)
values.back().setKnown();
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
if (!staticSize) {
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
if (Token::simpleMatch(nameToken->next(), "{")) {
Token* initList = nameToken->next();
valueFlowContainerSetTokValue(tokenlist, settings, nameToken, initList);
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
values = getInitListSize(initList, var->valueType(), settings, known);
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
} else if (Token::simpleMatch(nameToken->next(), "(")) {
const Token* constructorArgs = nameToken->next();
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
values = getContainerSizeFromConstructor(constructorArgs, var->valueType(), settings, known);
}
}
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
if (constSize) {
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
valueFlowForwardConst(nameToken->next(), var->scope()->bodyEnd, var, values, settings);
reduced scope of some variables and avoided some copies (#4328)
2022-08-16 22:28:39 +02:00
continue;
}
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
for (const ValueFlow::Value& value : values) {
Add non-const overloads for next(), previous(), and link() (#5002) * Add non-const overloads for next(), previous(), and link() * Format * Add CPPCHECKLIB
2023-05-02 06:55:31 +02:00
valueFlowForward(nameToken->next(), var->nameToken(), value, tokenlist, settings);
Partial fix for #6615 FN buffer access out of bounds: std::vector (#3873) * Fix #10779 FN: stlOutOfBounds (off by one) * Format * Simplify * Partial fix for #6615 FN buffer access out of bounds: std::vector * Undo * Format * Fix test case
2022-03-06 07:41:09 +01:00
}
valueFlowContainerSize: empty container variables
2018-08-12 14:39:29 +02:00
}
valueFlowContainerSize: assignment of string-like containers
2018-08-12 22:01:58 +02:00
// after assignment
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope *functionScope : symboldatabase.functionScopes) {
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
for (Token* tok = const_cast<Token*>(functionScope->bodyStart); tok != functionScope->bodyEnd; tok = tok->next()) {
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
if (Token::Match(tok, "%name%|;|{|} %var% = %str% ;")) {
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
Token* containerTok = tok->next();
Fix 10424: ExpressionAnalyzer assertion failure in librevisa
2021-08-24 16:06:51 +02:00
if (containerTok->exprId() == 0)
continue;
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
if (containerTok->valueType() && containerTok->valueType()->container &&
containerTok->valueType()->container->stdStringLike) {
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowContainerSetTokValue(tokenlist, settings, containerTok, containerTok->tokAt(2));
valueFlowContainerSize: assignment of string-like containers
2018-08-12 22:01:58 +02:00
ValueFlow::Value value(Token::getStrLength(containerTok->tokAt(2)));
value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(containerTok->next(), containerTok, value, tokenlist, settings);
valueFlowContainerSize: assignment of string-like containers
2018-08-12 22:01:58 +02:00
}
Fix regression: wrong array size (#5194)
2023-06-26 06:51:01 +02:00
} else if (Token::Match(tok->previous(), ">|return (|{") && astIsContainer(tok) && getLibraryContainer(tok)->size_templateArgNo < 0) {
Fix 11512: FN containerOutOfBounds when empty vector is returned (#4928)
2023-04-02 11:58:04 +02:00
std::vector<ValueFlow::Value> values;
if (Token::simpleMatch(tok, "{")) {
values = getInitListSize(tok, tok->valueType(), settings, true);
ValueFlow::Value value;
value.valueType = ValueFlow::Value::ValueType::TOK;
value.tokvalue = tok;
value.setKnown();
values.push_back(value);
} else if (Token::simpleMatch(tok, "(")) {
const Token* constructorArgs = tok;
values = getContainerSizeFromConstructor(constructorArgs, tok->valueType(), settings, true);
}
for (const ValueFlow::Value& value : values)
setTokenValue(tok, value, settings);
Fix issue 9996: false negative: containerOutOfBounds with std::vector::front() and c++11 braced initializer (#2958)
2020-12-18 07:14:11 +01:00
} else if (Token::Match(tok, "%name%|;|{|}|> %var% = {") && Token::simpleMatch(tok->linkAt(3), "} ;")) {
Set valueflow for container elements (#4455) * Track elements to containers * Format * Handle other access methods * Format
2022-09-10 09:26:44 +02:00
Token* containerTok = tok->next();
Fix 10424: ExpressionAnalyzer assertion failure in librevisa
2021-08-24 16:06:51 +02:00
if (containerTok->exprId() == 0)
continue;
Fix issue 10216: FP containerOutOfBounds with std::array initialized with = {} (#3190)
2021-03-31 22:07:54 +02:00
if (astIsContainer(containerTok) && containerTok->valueType()->container->size_templateArgNo < 0) {
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
std::vector<ValueFlow::Value> values =
getInitListSize(tok->tokAt(3), containerTok->valueType(), settings);
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowContainerSetTokValue(tokenlist, settings, containerTok, tok->tokAt(3));
Fix issue 9996: false negative: containerOutOfBounds with std::vector::front() and c++11 braced initializer (#2958)
2020-12-18 07:14:11 +01:00
for (const ValueFlow::Value& value : values)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(containerTok->next(), containerTok, value, tokenlist, settings);
Fix issue 9996: false negative: containerOutOfBounds with std::vector::front() and c++11 braced initializer (#2958)
2020-12-18 07:14:11 +01:00
}
Fix 10867: false negative: containerOutOfBounds with std::array (regression) (#3976) * Fix 10867: false negative: containerOutOfBounds with std::array (regression) * Format
2022-04-06 06:25:28 +02:00
} else if (Token::Match(tok, ". %name% (") && tok->astOperand1() && tok->astOperand1()->valueType() &&
tok->astOperand1()->valueType()->container) {
Fix 10373: ValueFlow: container in struct assumed empty (#3355)
2021-07-25 18:13:55 +02:00
const Token* containerTok = tok->astOperand1();
Fix 10424: ExpressionAnalyzer assertion failure in librevisa
2021-08-24 16:06:51 +02:00
if (containerTok->exprId() == 0)
continue;
applied clang-tidy `misc-const-correctness` fixes for POD types, iterators and references (#4529) * applied `misc-const-correctness` fixes for POD types and iterators * applied `misc-const-correctness` fixes for references
2022-10-02 07:12:40 +02:00
const Library::Container::Action action = containerTok->valueType()->container->getAction(tok->strAt(1));
Add tests for container changes
2020-08-10 05:52:03 +02:00
if (action == Library::Container::Action::CLEAR) {
ValueFlow::Value value(0);
value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(tok->next(), containerTok, value, tokenlist, settings);
Fix 10373: ValueFlow: container in struct assumed empty (#3355)
2021-07-25 18:13:55 +02:00
} else if (action == Library::Container::Action::RESIZE && tok->tokAt(2)->astOperand2() &&
tok->tokAt(2)->astOperand2()->hasKnownIntValue()) {
ValueFlow::Value value(tok->tokAt(2)->astOperand2()->values().front());
Add tests for container changes
2020-08-10 05:52:03 +02:00
value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(tok->linkAt(2), containerTok, value, tokenlist, settings);
Improve valueflow after pushing to container (#4803)
2023-02-23 18:05:31 +01:00
} else if (action == Library::Container::Action::PUSH && !isIteratorPair(getArguments(tok->tokAt(2)))) {
ValueFlow::Value value(0);
value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
value.setImpossible();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(tok->linkAt(2), containerTok, value, tokenlist, settings);
Add tests for container changes
2020-08-10 05:52:03 +02:00
}
Fix 11850: false negative: knownConditionTrueFalse with std::string::empty() after modification (#5307)
2023-08-09 20:33:44 +02:00
} else if (Token::simpleMatch(tok, "+=") && astIsContainer(tok->astOperand1())) {
const Token* containerTok = tok->astOperand1();
const Token* valueTok = tok->astOperand2();
Fix issue 11867: Assert failure in valueFlowContainerSize() (#5317)
2023-08-13 22:31:38 +02:00
MathLib::bigint size = valueFlowGetStrLength(valueTok);
Fix 11850: false negative: knownConditionTrueFalse with std::string::empty() after modification (#5307)
2023-08-09 20:33:44 +02:00
if (size == 0)
continue;
ValueFlow::Value value(size - 1);
value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
Fix issue 11867: Assert failure in valueFlowContainerSize() (#5317)
2023-08-13 22:31:38 +02:00
value.bound = ValueFlow::Value::Bound::Upper;
Fix 11850: false negative: knownConditionTrueFalse with std::string::empty() after modification (#5307)
2023-08-09 20:33:44 +02:00
value.setImpossible();
Token* next = nextAfterAstRightmostLeaf(tok);
if (!next)
next = tok->next();
valueFlowForward(next, containerTok, value, tokenlist, settings);
valueFlowContainerSize: assignment of string-like containers
2018-08-12 22:01:58 +02:00
}
}
}
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
}
valueFlowContainerSize: forward analysis inside conditional code
2018-08-10 22:18:38 +02:00
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
struct ContainerConditionHandler : ConditionHandler {
enabled and fixed `modernize-use-override` clang-tidy warnings (#4168)
2022-06-03 21:32:39 +02:00
std::vector<Condition> parse(const Token* tok, const Settings* settings) const override
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
{
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
std::vector<Condition> conds;
parseCompareEachInt(tok, [&](const Token* vartok, ValueFlow::Value true_value, ValueFlow::Value false_value) {
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
vartok = settings->library.getContainerFromYield(vartok, Library::Container::Yield::SIZE);
if (!vartok)
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
return;
Refactoring: Convert ValueType to enum class (#3005)
2021-01-02 09:30:00 +01:00
true_value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
false_value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
some cleanups (#4308)
2022-07-26 08:28:55 +02:00
Condition cond;
avoid unnecessary copies with `push_back()` and `push_front()` (#4451)
2022-09-08 09:21:35 +02:00
cond.true_values.push_back(std::move(true_value));
cond.false_values.push_back(std::move(false_value));
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
cond.vartok = vartok;
avoid unnecessary copies with `push_back()` and `push_front()` (#4451)
2022-09-08 09:21:35 +02:00
conds.push_back(std::move(cond));
Handle subfunction values in valueflow conditions (#4128)
2022-05-29 19:57:10 +02:00
});
if (!conds.empty())
return conds;
const Token* vartok = nullptr;
valueFlowContainerSize: forward analysis inside conditional code
2018-08-10 22:18:38 +02:00
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
// Empty check
if (tok->str() == "(") {
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
vartok = settings->library.getContainerFromYield(tok, Library::Container::Yield::EMPTY);
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
// TODO: Handle .size()
Add library configurations for free functions like std::size, std::empty, etc (#3410)
2021-08-23 09:03:48 +02:00
if (!vartok)
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
return {};
Fixed #8863 (false positive: (warning) Accessing an item in container 's'. Either the condition 's.empty()' is redundant or 's' can be empty.)
2019-01-06 12:21:47 +01:00
const Token *parent = tok->astParent();
while (parent) {
New check: Iterating a known empty container (#2740)
2020-08-22 09:16:26 +02:00
if (Token::Match(parent, "%comp%"))
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
return {};
Fixed #8863 (false positive: (warning) Accessing an item in container 's'. Either the condition 's.empty()' is redundant or 's' can be empty.)
2019-01-06 12:21:47 +01:00
parent = parent->astParent();
}
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
ValueFlow::Value value(tok, 0LL);
value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
some cleanups (#4308)
2022-07-26 08:28:55 +02:00
Condition cond;
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
cond.true_values.emplace_back(value);
avoid some unnecessary copies in emplace_back() calls (#2194)
2019-09-28 20:22:46 +02:00
cond.false_values.emplace_back(std::move(value));
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
cond.vartok = vartok;
Fix issue 9849: false positive: containerOutOfBounds (#2753)
2020-08-25 07:12:41 +02:00
cond.inverted = true;
avoid some unnecessary object creations and copies (#4493)
2022-09-29 21:47:17 +02:00
return {std::move(cond)};
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
}
// String compare
if (Token::Match(tok, "==|!=")) {
const Token *strtok = nullptr;
if (Token::Match(tok->astOperand1(), "%str%")) {
strtok = tok->astOperand1();
vartok = tok->astOperand2();
} else if (Token::Match(tok->astOperand2(), "%str%")) {
strtok = tok->astOperand2();
vartok = tok->astOperand1();
valueFlowContainerSize: forward analysis inside conditional code
2018-08-10 22:18:38 +02:00
}
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
if (!strtok)
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
return {};
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
if (!astIsContainer(vartok))
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
return {};
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
ValueFlow::Value value(tok, Token::getStrLength(strtok));
value.valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
some cleanups (#4308)
2022-07-26 08:28:55 +02:00
Condition cond;
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
cond.false_values.emplace_back(value);
avoid some unnecessary copies in emplace_back() calls (#2194)
2019-09-28 20:22:46 +02:00
cond.true_values.emplace_back(std::move(value));
Refactor valueFlowAfterCondition So this unifies the `valueFlowAfterCondition` so it re-uses more code between checking for integers and container sizes. This should make valueFlowContainer more robust. It also extends valueflow to support container comparisons such as `if (v.size() < 3)` or `if (v.size() > 3)` using the same mechanism that is used for integers.
2018-11-24 10:07:12 +01:00
cond.vartok = vartok;
Fix 10409: FP 'Condition 's.size()<3' is always false' (#3396)
2021-08-14 06:48:38 +02:00
cond.impossible = false;
avoid some unnecessary object creations and copies (#4493)
2022-09-29 21:47:17 +02:00
return {std::move(cond)};
Fixed #8681 (ValueFlow: Container size)
2018-08-10 11:29:16 +02:00
}
Refactor: Allow parse to return multiple values for a condition (#3361)
2021-07-26 22:23:19 +02:00
return {};
Refactor afterCondition handlers into to seperate classes (#2975)
2020-12-24 20:07:46 +01:00
}
};
Fixed #8681 (ValueFlow: Container size)
2018-08-10 11:29:16 +02:00
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowDynamicBufferSize(const TokenList& tokenlist, const SymbolDatabase& symboldatabase, const Settings* settings)
Array index: Checking array index out of bounds for dynamic buffers
2019-03-17 13:09:15 +01:00
{
Warn about buffer overruns when allocating memory with new (#3879) * Warn about buffer overruns when allocating memory with new * Format * Avoid FP
2022-03-07 19:43:40 +01:00
auto getBufferSizeFromAllocFunc = [&](const Token* funcTok) -> MathLib::bigint {
MathLib::bigint sizeValue = -1;
const Library::AllocFunc* allocFunc = settings->library.getAllocFuncInfo(funcTok);
if (!allocFunc)
allocFunc = settings->library.getReallocFuncInfo(funcTok);
if (!allocFunc || allocFunc->bufferSize == Library::AllocFunc::BufferSize::none)
return sizeValue;
const std::vector<const Token*> args = getArguments(funcTok);
const Token* const arg1 = (args.size() >= allocFunc->bufferSizeArg1) ? args[allocFunc->bufferSizeArg1 - 1] : nullptr;
const Token* const arg2 = (args.size() >= allocFunc->bufferSizeArg2) ? args[allocFunc->bufferSizeArg2 - 1] : nullptr;
switch (allocFunc->bufferSize) {
case Library::AllocFunc::BufferSize::none:
break;
case Library::AllocFunc::BufferSize::malloc:
if (arg1 && arg1->hasKnownIntValue())
sizeValue = arg1->getKnownIntValue();
break;
case Library::AllocFunc::BufferSize::calloc:
if (arg1 && arg2 && arg1->hasKnownIntValue() && arg2->hasKnownIntValue())
sizeValue = arg1->getKnownIntValue() * arg2->getKnownIntValue();
break;
case Library::AllocFunc::BufferSize::strdup:
if (arg1 && arg1->hasKnownValue()) {
const ValueFlow::Value& value = arg1->values().back();
if (value.isTokValue() && value.tokvalue->tokType() == Token::eString)
sizeValue = Token::getStrLength(value.tokvalue) + 1; // Add one for the null terminator
}
break;
}
return sizeValue;
};
auto getBufferSizeFromNew = [&](const Token* newTok) -> MathLib::bigint {
MathLib::bigint sizeValue = -1, numElem = -1;
if (newTok && newTok->astOperand1()) { // number of elements
const Token* bracTok = nullptr, *typeTok = nullptr;
if (newTok->astOperand1()->str() == "[")
bracTok = newTok->astOperand1();
Fix #10809 cppcheckError Cyclic reverse analysis (#5137) * Fix #10809 cppcheckError Cyclic reverse analysis * Handle fixed AST in ValueFlow, fix FN * Remove
2023-06-10 07:41:52 +02:00
else if (Token::Match(newTok->astOperand1(), "(|{")) {
Warn about buffer overruns when allocating memory with new (#3879) * Warn about buffer overruns when allocating memory with new * Format * Avoid FP
2022-03-07 19:43:40 +01:00
if (newTok->astOperand1()->astOperand1() && newTok->astOperand1()->astOperand1()->str() == "[")
bracTok = newTok->astOperand1()->astOperand1();
else
typeTok = newTok->astOperand1()->astOperand1();
}
Fix #10809 cppcheckError Cyclic reverse analysis (#5137) * Fix #10809 cppcheckError Cyclic reverse analysis * Handle fixed AST in ValueFlow, fix FN * Remove
2023-06-10 07:41:52 +02:00
else
Warn about buffer overruns when allocating memory with new (#3879) * Warn about buffer overruns when allocating memory with new * Format * Avoid FP
2022-03-07 19:43:40 +01:00
typeTok = newTok->astOperand1();
if (bracTok && bracTok->astOperand2() && bracTok->astOperand2()->hasKnownIntValue())
numElem = bracTok->astOperand2()->getKnownIntValue();
else if (Token::Match(typeTok, "%type%"))
numElem = 1;
}
if (numElem >= 0 && newTok->astParent() && newTok->astParent()->isAssignmentOp()) { // size of the allocated type
const Token* typeTok = newTok->astParent()->astOperand1(); // TODO: implement fallback for e.g. "auto p = new Type;"
if (!typeTok || !typeTok->varId())
typeTok = newTok->astParent()->previous(); // hack for "int** z = ..."
if (typeTok && typeTok->valueType()) {
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
const MathLib::bigint typeSize = typeTok->valueType()->typeSize(settings->platform, typeTok->valueType()->pointer > 1);
Warn about buffer overruns when allocating memory with new (#3879) * Warn about buffer overruns when allocating memory with new * Format * Avoid FP
2022-03-07 19:43:40 +01:00
if (typeSize >= 0)
sizeValue = numElem * typeSize;
}
}
return sizeValue;
};
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope *functionScope : symboldatabase.functionScopes) {
Array index: Checking array index out of bounds for dynamic buffers
2019-03-17 13:09:15 +01:00
for (const Token *tok = functionScope->bodyStart; tok != functionScope->bodyEnd; tok = tok->next()) {
if (!Token::Match(tok, "[;{}] %var% ="))
continue;
if (!tok->next()->variable())
continue;
const Token *rhs = tok->tokAt(2)->astOperand2();
while (rhs && rhs->isCast())
rhs = rhs->astOperand2() ? rhs->astOperand2() : rhs->astOperand1();
if (!rhs)
continue;
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
const bool isNew = symboldatabase.isCPP() && rhs->str() == "new";
Warn about buffer overruns when allocating memory with new (#3879) * Warn about buffer overruns when allocating memory with new * Format * Avoid FP
2022-03-07 19:43:40 +01:00
if (!isNew && !Token::Match(rhs->previous(), "%name% ("))
Array index: Checking array index out of bounds for dynamic buffers
2019-03-17 13:09:15 +01:00
continue;
Warn about buffer overruns when allocating memory with new (#3879) * Warn about buffer overruns when allocating memory with new * Format * Avoid FP
2022-03-07 19:43:40 +01:00
const MathLib::bigint sizeValue = isNew ? getBufferSizeFromNew(rhs) : getBufferSizeFromAllocFunc(rhs->previous());
Library: allowed values for the buffer-size attribute: malloc/calloc/strdup
2019-03-20 06:46:55 +01:00
if (sizeValue < 0)
Array index: Checking array index out of bounds for dynamic buffers
2019-03-17 13:09:15 +01:00
continue;
Library: allowed values for the buffer-size attribute: malloc/calloc/strdup
2019-03-20 06:46:55 +01:00
ValueFlow::Value value(sizeValue);
fixed #6316 (Use std::to_string() in place of MathLib::toString() ...) - deleted default implementation of `Mathlib::toString()` (#5341) It was also used inconsistently and seemed to imply there is some special handling which wasn't the case. It was just an alias for `std::to_string()` for non-`double` types. So there was no need for it. --------- Co-authored-by: Robert Reif <reif@earthlink.net>
2023-08-17 16:46:32 +02:00
value.errorPath.emplace_back(tok->tokAt(2), "Assign " + tok->strAt(1) + ", buffer with size " + std::to_string(sizeValue));
Array index: Checking array index out of bounds for dynamic buffers
2019-03-17 13:09:15 +01:00
value.valueType = ValueFlow::Value::ValueType::BUFFER_SIZE;
value.setKnown();
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(const_cast<Token*>(rhs), functionScope->bodyEnd, tok->next(), std::move(value), tokenlist, settings);
Array index: Checking array index out of bounds for dynamic buffers
2019-03-17 13:09:15 +01:00
}
}
}
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
static bool getMinMaxValues(const ValueType *vt, const Platform &platform, MathLib::bigint &minValue, MathLib::bigint &maxValue)
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
{
if (!vt || !vt->isIntegral() || vt->pointer)
return false;
int bits;
switch (vt->type) {
case ValueType::Type::BOOL:
bits = 1;
break;
case ValueType::Type::CHAR:
bits = platform.char_bit;
break;
case ValueType::Type::SHORT:
bits = platform.short_bit;
break;
case ValueType::Type::INT:
bits = platform.int_bit;
break;
case ValueType::Type::LONG:
bits = platform.long_bit;
break;
case ValueType::Type::LONGLONG:
bits = platform.long_long_bit;
break;
default:
return false;
fixed -Wextra-semi-stmt Clang warnings (#2553) * fixed -Wextra-semi-stmt Clang warnings * adjusted REDIRECT macro to require a semicolon * testmathlib.cpp: rolled back accidental change
2020-04-21 17:27:51 +02:00
}
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
if (bits == 1) {
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
minValue = 0;
maxValue = 1;
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
} else if (bits < 62) {
if (vt->sign == ValueType::Sign::UNSIGNED) {
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
minValue = 0;
maxValue = (1LL << bits) - 1;
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
} else {
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
minValue = -(1LL << (bits - 1));
maxValue = (1LL << (bits - 1)) - 1;
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
}
} else if (bits == 64) {
if (vt->sign == ValueType::Sign::UNSIGNED) {
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
minValue = 0;
maxValue = LLONG_MAX; // todo max unsigned value
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
} else {
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
minValue = LLONG_MIN;
maxValue = LLONG_MAX;
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
}
} else {
return false;
}
return true;
}
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
static bool getMinMaxValues(const std::string &typestr, const Settings *settings, MathLib::bigint &minvalue, MathLib::bigint &maxvalue)
Function return: Extra check of safe function return values
2019-07-10 20:00:21 +02:00
{
TokenList typeTokens(settings);
std::istringstream istr(typestr+";");
if (!typeTokens.createTokens(istr))
return false;
typeTokens.simplifyPlatformTypes();
typeTokens.simplifyStdType();
fixes #11104 (avoid C++-only parsing when processing C code in parsedecl()) / also avoid remaining `Library::detect*()` calls (#5346)
2023-08-18 22:48:24 +02:00
const ValueType &vt = ValueType::parseDecl(typeTokens.front(), *settings);
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
return getMinMaxValues(&vt, settings->platform, minvalue, maxvalue);
Function return: Extra check of safe function return values
2019-07-10 20:00:21 +02:00
}
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
static void valueFlowSafeFunctions(TokenList& tokenlist, const SymbolDatabase& symboldatabase, const Settings* settings)
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
{
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope *functionScope : symboldatabase.functionScopes) {
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
if (!functionScope->bodyStart)
continue;
const Function *function = functionScope->function;
if (!function)
continue;
Safe checks: container parameters
2019-07-24 11:39:18 +02:00
const bool safe = function->isSafe(settings);
gui/platforms.h: renamed `Platform` to `PlatformData` / Platform: removed unnecessary `cppcheck` namespace (#5545)
2023-10-13 16:02:04 +02:00
const bool all = safe && settings->platform.type != Platform::Type::Unspecified;
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
for (const Variable &arg : function->argumentList) {
safe checks: Handle float parameters
2019-07-24 12:08:56 +02:00
if (!arg.nameToken() || !arg.valueType())
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
continue;
safe checks: Handle float parameters
2019-07-24 12:08:56 +02:00
if (arg.valueType()->type == ValueType::Type::CONTAINER) {
Safe checks: container parameters
2019-07-24 11:39:18 +02:00
if (!safe)
continue;
std::list<ValueFlow::Value> argValues;
argValues.emplace_back(0);
argValues.back().valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
argValues.back().errorPath.emplace_back(arg.nameToken(), "Assuming " + arg.name() + " is empty");
Safe checks: Clarify a warning message
2019-07-25 17:19:51 +02:00
argValues.back().safe = true;
Safe checks: container parameters
2019-07-24 11:39:18 +02:00
argValues.emplace_back(1000000);
argValues.back().valueType = ValueFlow::Value::ValueType::CONTAINER_SIZE;
argValues.back().errorPath.emplace_back(arg.nameToken(), "Assuming " + arg.name() + " size is 1000000");
Safe checks: Clarify a warning message
2019-07-25 17:19:51 +02:00
argValues.back().safe = true;
Safe checks: container parameters
2019-07-24 11:39:18 +02:00
for (const ValueFlow::Value &value : argValues)
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
valueFlowForward(const_cast<Token*>(functionScope->bodyStart), arg.nameToken(), value, tokenlist, settings);
Safe checks: container parameters
2019-07-24 11:39:18 +02:00
continue;
}
Annotations: Add annotation __cppcheck_in_range__(low,high)
2019-07-12 11:09:24 +02:00
MathLib::bigint low, high;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
bool isLow = arg.nameToken()->getCppcheckAttribute(TokenImpl::CppcheckAttributes::Type::LOW, low);
bool isHigh = arg.nameToken()->getCppcheckAttribute(TokenImpl::CppcheckAttributes::Type::HIGH, high);
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
Annotations: Add annotation __cppcheck_in_range__(low,high)
2019-07-12 11:09:24 +02:00
if (!isLow && !isHigh && !all)
continue;
Safe checks: Clarify a warning message
2019-07-25 17:19:51 +02:00
const bool safeLow = !isLow;
const bool safeHigh = !isHigh;
Annotations: Add annotation __cppcheck_in_range__(low,high)
2019-07-12 11:09:24 +02:00
if ((!isLow || !isHigh) && all) {
MathLib::bigint minValue, maxValue;
made `Platform` a member of `Settings` instead of inheriting from it / cleanups (#4791)
2023-03-03 18:36:27 +01:00
if (getMinMaxValues(arg.valueType(), settings->platform, minValue, maxValue)) {
Annotations: Add annotation __cppcheck_in_range__(low,high)
2019-07-12 11:09:24 +02:00
if (!isLow)
low = minValue;
if (!isHigh)
high = maxValue;
isLow = isHigh = true;
safe checks: Handle float parameters
2019-07-24 12:08:56 +02:00
} else if (arg.valueType()->type == ValueType::Type::FLOAT || arg.valueType()->type == ValueType::Type::DOUBLE || arg.valueType()->type == ValueType::Type::LONGDOUBLE) {
std::list<ValueFlow::Value> argValues;
argValues.emplace_back(0);
argValues.back().valueType = ValueFlow::Value::ValueType::FLOAT;
some `-Wdouble-promotion` Clang compiler warnings (#4820)
2023-08-07 20:44:25 +02:00
argValues.back().floatValue = isLow ? low : -1E25;
Safe checks: Clarify a warning message
2019-07-25 17:19:51 +02:00
argValues.back().errorPath.emplace_back(arg.nameToken(), "Safe checks: Assuming argument has value " + MathLib::toString(argValues.back().floatValue));
argValues.back().safe = true;
ValueFlow: fix false detection of duplicate values
2019-07-24 12:30:33 +02:00
argValues.emplace_back(0);
safe checks: Handle float parameters
2019-07-24 12:08:56 +02:00
argValues.back().valueType = ValueFlow::Value::ValueType::FLOAT;
some `-Wdouble-promotion` Clang compiler warnings (#4820)
2023-08-07 20:44:25 +02:00
argValues.back().floatValue = isHigh ? high : 1E25;
Safe checks: Clarify a warning message
2019-07-25 17:19:51 +02:00
argValues.back().errorPath.emplace_back(arg.nameToken(), "Safe checks: Assuming argument has value " + MathLib::toString(argValues.back().floatValue));
argValues.back().safe = true;
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
valueFlowForward(const_cast<Token*>(functionScope->bodyStart->next()),
functionScope->bodyEnd,
arg.nameToken(),
argValues,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
tokenlist,
settings);
safe checks: Handle float parameters
2019-07-24 12:08:56 +02:00
continue;
Annotations: Add annotation __cppcheck_in_range__(low,high)
2019-07-12 11:09:24 +02:00
}
}
std::list<ValueFlow::Value> argValues;
ValueFlow: Clarify warnings when argument min/max values are used
2019-07-17 22:17:34 +02:00
if (isLow) {
Annotations: Add annotation __cppcheck_in_range__(low,high)
2019-07-12 11:09:24 +02:00
argValues.emplace_back(low);
fixed #6316 (Use std::to_string() in place of MathLib::toString() ...) - deleted default implementation of `Mathlib::toString()` (#5341) It was also used inconsistently and seemed to imply there is some special handling which wasn't the case. It was just an alias for `std::to_string()` for non-`double` types. So there was no need for it. --------- Co-authored-by: Robert Reif <reif@earthlink.net>
2023-08-17 16:46:32 +02:00
argValues.back().errorPath.emplace_back(arg.nameToken(), std::string(safeLow ? "Safe checks: " : "") + "Assuming argument has value " + std::to_string(low));
Safe checks: Clarify a warning message
2019-07-25 17:19:51 +02:00
argValues.back().safe = safeLow;
ValueFlow: Clarify warnings when argument min/max values are used
2019-07-17 22:17:34 +02:00
}
if (isHigh) {
Annotations: Add annotation __cppcheck_in_range__(low,high)
2019-07-12 11:09:24 +02:00
argValues.emplace_back(high);
fixed #6316 (Use std::to_string() in place of MathLib::toString() ...) - deleted default implementation of `Mathlib::toString()` (#5341) It was also used inconsistently and seemed to imply there is some special handling which wasn't the case. It was just an alias for `std::to_string()` for non-`double` types. So there was no need for it. --------- Co-authored-by: Robert Reif <reif@earthlink.net>
2023-08-17 16:46:32 +02:00
argValues.back().errorPath.emplace_back(arg.nameToken(), std::string(safeHigh ? "Safe checks: " : "") + "Assuming argument has value " + std::to_string(high));
Safe checks: Clarify a warning message
2019-07-25 17:19:51 +02:00
argValues.back().safe = safeHigh;
ValueFlow: Clarify warnings when argument min/max values are used
2019-07-17 22:17:34 +02:00
}
Annotations: Add annotation __cppcheck_in_range__(low,high)
2019-07-12 11:09:24 +02:00
if (!argValues.empty())
Refactor: Remove variable analyzer (#3339)
2021-07-18 07:46:31 +02:00
valueFlowForward(const_cast<Token*>(functionScope->bodyStart->next()),
functionScope->bodyEnd,
arg.nameToken(),
argValues,
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
tokenlist,
settings);
Safe functions: Check more possible function argument values
2019-07-10 16:59:05 +02:00
}
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowUnknownFunctionReturn(TokenList &tokenlist, const Settings *settings)
Function return: Extra check of safe function return values
2019-07-10 20:00:21 +02:00
{
Rename safeValues to unknownValues
2019-07-11 16:05:34 +02:00
if (settings->checkUnknownFunctionReturn.empty())
Function return: Extra check of safe function return values
2019-07-10 20:00:21 +02:00
return;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token *tok = tokenlist.front(); tok; tok = tok->next()) {
Optimizations to ValueFlow and ForwardAnalyzer: - Remove errorPath of a value on assignment (this fixes enormous memory consumption for code with many subsequent assignments) - De-virtualized a simple get function that was virtual for no reason - Cloned function isAliasOf() for single values to avoid instantiating unnecessary std::list objects ( - Replaced a couple of trivial Token::Match/simpleMatch expressions by direct comparison - Treat enumerators as literal values
2020-05-19 21:03:28 +02:00
if (!tok->astParent() || tok->str() != "(" || !tok->previous()->isName())
Function return: Extra check of safe function return values
2019-07-10 20:00:21 +02:00
continue;
Rename safeValues to unknownValues
2019-07-11 16:05:34 +02:00
if (settings->checkUnknownFunctionReturn.find(tok->previous()->str()) == settings->checkUnknownFunctionReturn.end())
continue;
std::vector<MathLib::bigint> unknownValues = settings->library.unknownReturnValues(tok->astOperand1());
if (unknownValues.empty())
Function return: Extra check of safe function return values
2019-07-10 20:00:21 +02:00
continue;
// Get min/max values for return type
Fix Cppcheck warning
2019-07-10 22:08:27 +02:00
const std::string &typestr = settings->library.returnValueType(tok->previous());
Try to fix appveyor. Replace int64_t with MathLib::bigint.
2019-07-10 21:26:20 +02:00
MathLib::bigint minvalue, maxvalue;
avoid some unchecked pointer dereferences (#4811)
2023-03-02 22:05:41 +01:00
if (!getMinMaxValues(typestr, settings, minvalue, maxvalue))
Function return: Extra check of safe function return values
2019-07-10 20:00:21 +02:00
continue;
Rename safeValues to unknownValues
2019-07-11 16:05:34 +02:00
for (MathLib::bigint value : unknownValues) {
if (value < minvalue)
value = minvalue;
else if (value > maxvalue)
value = maxvalue;
Avoid const_cast (#5490)
2023-09-28 18:20:43 +02:00
setTokenValue(tok, ValueFlow::Value(value), settings);
Rename safeValues to unknownValues
2019-07-11 16:05:34 +02:00
}
Function return: Extra check of safe function return values
2019-07-10 20:00:21 +02:00
}
}
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
static void valueFlowDebug(TokenList& tokenlist, ErrorLogger* errorLogger, const Settings* settings)
Add debug_valueflow instrinsic to show valueflow values and its error path (#4159) * Add debug_valueflow instrinsic to show valueflow values and its error path * Format
2022-06-01 06:53:21 +02:00
{
removed `TokenList::getSettings()` and replaced usage in ValueFlow with provided settings (#4843)
2023-03-03 18:31:38 +01:00
if (!settings->debugnormal && !settings->debugwarnings)
Add debug_valueflow instrinsic to show valueflow values and its error path (#4159) * Add debug_valueflow instrinsic to show valueflow values and its error path * Format
2022-06-01 06:53:21 +02:00
return;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token* tok = tokenlist.front(); tok; tok = tok->next()) {
Add debug_valueflow instrinsic to show valueflow values and its error path (#4159) * Add debug_valueflow instrinsic to show valueflow values and its error path * Format
2022-06-01 06:53:21 +02:00
if (tok->getTokenDebug() != TokenDebug::ValueFlow)
continue;
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
if (tok->astParent() && tok->astParent()->getTokenDebug() == TokenDebug::ValueFlow)
continue;
Add debug_valueflow instrinsic to show valueflow values and its error path (#4159) * Add debug_valueflow instrinsic to show valueflow values and its error path * Format
2022-06-01 06:53:21 +02:00
for (const ValueFlow::Value& v : tok->values()) {
Add backtrace to valueflow in debug mode (#4195)
2022-06-12 07:13:42 +02:00
std::string msg = "The value is " + debugString(v);
Add debug_valueflow instrinsic to show valueflow values and its error path (#4159) * Add debug_valueflow instrinsic to show valueflow values and its error path * Format
2022-06-01 06:53:21 +02:00
ErrorPath errorPath = v.errorPath;
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
errorPath.insert(errorPath.end(), v.debugPath.cbegin(), v.debugPath.cend());
Add debug_valueflow instrinsic to show valueflow values and its error path (#4159) * Add debug_valueflow instrinsic to show valueflow values and its error path * Format
2022-06-01 06:53:21 +02:00
errorPath.emplace_back(tok, "");
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
errorLogger->reportErr({errorPath, &tokenlist, Severity::debug, "valueFlow", msg, CWE{0}, Certainty::normal});
Add debug_valueflow instrinsic to show valueflow values and its error path (#4159) * Add debug_valueflow instrinsic to show valueflow values and its error path * Format
2022-06-01 06:53:21 +02:00
}
}
}
Cleanup some const_cast of Token* (#1886) * Add non const version of some methods of Token The aim is to reduce the (ab)use of const_cast. * Cleanup some more const_cast in valueflow * Remove useless const_cast * Remove some const_cast from templatesimplifier * Remove some const_cast from valueflow
2019-06-16 10:09:38 +02:00
const ValueFlow::Value *ValueFlow::valueFlowConstantFoldAST(Token *expr, const Settings *settings)
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
{
Refactorization: Allocate Token::_values (ValueFlow information) dynamically, reducing size of each token by around 10%
2017-03-27 18:48:34 +02:00
if (expr && expr->values().empty()) {
ValueFlow: Fixed constant folding of sizeof(enum) and sizeof(enumerator) (#7564)
2016-07-08 20:39:34 +02:00
valueFlowConstantFoldAST(expr->astOperand1(), settings);
valueFlowConstantFoldAST(expr->astOperand2(), settings);
Remove Tokenizer::simplifyNull()
2016-10-18 21:44:02 +02:00
valueFlowSetConstantValue(expr, settings, true /* TODO: this is a guess */);
ValueFlow: For convenience, return constant folded value
2016-05-08 11:17:10 +02:00
}
Clarify code with Token::hasKnownValue()
2018-07-14 13:09:53 +02:00
return expr && expr->hasKnownValue() ? &expr->values().front() : nullptr;
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
}
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
struct ValueFlowState {
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
explicit ValueFlowState(TokenList& tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
SymbolDatabase& symboldatabase,
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
ErrorLogger* errorLogger = nullptr,
const Settings* settings = nullptr)
: tokenlist(tokenlist), symboldatabase(symboldatabase), errorLogger(errorLogger), settings(settings)
{}
ValueFlow: Handle enums
2016-05-07 20:18:07 +02:00
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
TokenList& tokenlist;
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
SymbolDatabase& symboldatabase;
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
ErrorLogger* errorLogger = nullptr;
const Settings* settings = nullptr;
Refactoring: use init list, redundant init (#5552)
2023-10-15 14:51:12 +02:00
std::set<const Scope*> skippedFunctions;
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
};
Fix handling of --performance-valueflow-max-time=T
2022-10-04 20:01:19 +02:00
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
struct ValueFlowPass {
ValueFlowPass() = default;
ValueFlowPass(const ValueFlowPass&) = default;
// Name of pass
virtual const char* name() const = 0;
// Run the pass
virtual void run(const ValueFlowState& state) const = 0;
// Returns true if pass needs C++
virtual bool cpp() const = 0;
enabled and mitigated `modernize-use-equals-default` clang-tidy warnings / removed unnecessary default destructors (#5335)
2023-08-16 17:13:36 +02:00
virtual ~ValueFlowPass() noexcept = default;
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
};
Add new experimental value flow analysis
2014-01-04 20:57:02 +01:00
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
struct ValueFlowPassRunner {
using Clock = std::chrono::steady_clock;
using TimePoint = std::chrono::time_point<Clock>;
explicit ValueFlowPassRunner(ValueFlowState state, TimerResultsIntf* timerResults = nullptr)
: state(std::move(state)), stop(TimePoint::max()), timerResults(timerResults)
{
setSkippedFunctions();
setStopTime();
}
bool run_once(std::initializer_list<ValuePtr<ValueFlowPass>> passes) const
{
return std::any_of(passes.begin(), passes.end(), [&](const ValuePtr<ValueFlowPass>& pass) {
return run(pass);
});
}
bool run(std::initializer_list<ValuePtr<ValueFlowPass>> passes) const
{
std::size_t values = 0;
std::size_t n = state.settings->valueFlowMaxIterations;
while (n > 0 && values != getTotalValues()) {
values = getTotalValues();
if (std::any_of(passes.begin(), passes.end(), [&](const ValuePtr<ValueFlowPass>& pass) {
return run(pass);
}))
return true;
Fix #11701 performance regression (hang) in 2.11dev (#5032)
2023-05-04 11:59:03 +02:00
--n;
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
}
if (state.settings->debugwarnings) {
if (n == 0 && values != getTotalValues()) {
ErrorMessage::FileLocation loc;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
loc.setfile(state.tokenlist.getFiles()[0]);
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
ErrorMessage errmsg({std::move(loc)},
emptyString,
Severity::debug,
"ValueFlow maximum iterations exceeded",
"valueFlowMaxIterations",
Certainty::normal);
state.errorLogger->reportErr(errmsg);
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
}
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
}
return false;
}
bool run(const ValuePtr<ValueFlowPass>& pass) const
{
auto start = Clock::now();
if (start > stop)
return true;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
if (!state.tokenlist.isCPP() && pass->cpp())
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
return false;
if (timerResults) {
Timer t(pass->name(), state.settings->showtime, timerResults);
pass->run(state);
} else {
pass->run(state);
}
return false;
}
std::size_t getTotalValues() const
{
std::size_t n = 1;
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token* tok = state.tokenlist.front(); tok; tok = tok->next())
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
n += tok->values().size();
return n;
}
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
void setSkippedFunctions()
{
if (state.settings->performanceValueFlowMaxIfCount > 0) {
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
for (const Scope* functionScope : state.symboldatabase.functionScopes) {
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
int countIfScopes = 0;
std::vector<const Scope*> scopes{functionScope};
while (!scopes.empty()) {
const Scope* s = scopes.back();
scopes.pop_back();
for (const Scope* s2 : s->nestedList) {
scopes.emplace_back(s2);
if (s2->type == Scope::ScopeType::eIf)
++countIfScopes;
}
}
if (countIfScopes > state.settings->performanceValueFlowMaxIfCount) {
state.skippedFunctions.emplace(functionScope);
if (state.settings->severity.isEnabled(Severity::information)) {
const std::string& functionName = functionScope->className;
const std::list<ErrorMessage::FileLocation> callstack(
1,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
ErrorMessage::FileLocation(functionScope->bodyStart, &state.tokenlist));
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
const ErrorMessage errmsg(callstack,
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
state.tokenlist.getSourceFilePath(),
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
Severity::information,
ValueFlow: improved `checkLevelNormal` message (#5584)
2023-11-03 21:05:56 +01:00
"Limiting ValueFlow analysis in function '" + functionName + "' since it is too complex. "
"Please specify --check-level=exhaustive to perform full analysis.",
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
"checkLevelNormal",
Certainty::normal);
state.errorLogger->reportErr(errmsg);
}
--performance-valueflow-max-if-count: review comments
2023-04-08 13:04:41 +02:00
}
valueflow: limit valueflow in functions that have many ifs
2023-04-01 20:58:15 +02:00
}
}
}
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
void setStopTime()
{
if (state.settings->performanceValueFlowMaxTime >= 0)
stop = Clock::now() + std::chrono::seconds{state.settings->performanceValueFlowMaxTime};
}
ValueFlowState state;
TimePoint stop;
TimerResultsIntf* timerResults;
};
template<class F>
struct ValueFlowPassAdaptor : ValueFlowPass {
const char* mName = nullptr;
bool mCPP = false;
F mRun;
CI: Add selfcheck using Cppcheck Premium. Activates Misra C++ 2008 and Cert C++ 2016 checkers. (#5623)
2023-11-06 15:31:47 +01:00
ValueFlowPassAdaptor(const char* pname, bool pcpp, F prun) : ValueFlowPass(), mName(pname), mCPP(pcpp), mRun(prun) {}
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
const char* name() const override {
return mName;
}
void run(const ValueFlowState& state) const override
{
mRun(state.tokenlist, state.symboldatabase, state.errorLogger, state.settings, state.skippedFunctions);
}
bool cpp() const override {
return mCPP;
}
};
template<class F>
CI: Add selfcheck using Cppcheck Premium. Activates Misra C++ 2008 and Cert C++ 2016 checkers. (#5623)
2023-11-06 15:31:47 +01:00
static ValueFlowPassAdaptor<F> makeValueFlowPassAdaptor(const char* name, bool cpp, F run)
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
{
return {name, cpp, run};
}
#define VALUEFLOW_ADAPTOR(cpp, ...) \
makeValueFlowPassAdaptor(#__VA_ARGS__, \
cpp, \
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
[](TokenList& tokenlist, \
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
SymbolDatabase& symboldatabase, \
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
ErrorLogger* errorLogger, \
const Settings* settings, \
const std::set<const Scope*>& skippedFunctions) { \
(void)tokenlist; \
(void)symboldatabase; \
(void)errorLogger; \
(void)settings; \
(void)skippedFunctions; \
__VA_ARGS__; \
})
#define VFA(...) VALUEFLOW_ADAPTOR(false, __VA_ARGS__)
#define VFA_CPP(...) VALUEFLOW_ADAPTOR(true, __VA_ARGS__)
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
void ValueFlow::setValues(TokenList& tokenlist,
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
SymbolDatabase& symboldatabase,
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
ErrorLogger* errorLogger,
const Settings* settings,
TimerResultsIntf* timerResults)
{
pass `TokenList` as reference into `ValueFlow::setValues()` (#4868) This avoid lots of unchecked pointer dereferences. There was a single case which checked it and that looked like a leftover. The only way this might have been a `nullptr` pointer was through several default constructors which were not used at all so I removed them.
2023-08-04 18:17:27 +02:00
for (Token* tok = tokenlist.front(); tok; tok = tok->next())
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
tok->clearValueFlow();
Fixed #11901 (Performance regression: large array with strings) (#5375) Analysis has slowed down a lot when there are many strings in an array.
2023-08-30 19:35:43 +02:00
// commas in init..
for (Token* tok = tokenlist.front(); tok; tok = tok->next()) {
if (tok->str() != "{" || !tok->astOperand1())
continue;
for (Token* tok2 = tok->next(); tok2 != tok->link(); tok2 = tok2->next()) {
if (tok2->link() && Token::Match(tok2, "[{[(<]"))
tok2 = tok2->link();
else if (tok2->str() == ",")
tok2->isInitComma(true);
}
}
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
ValueFlowPassRunner runner{ValueFlowState{tokenlist, symboldatabase, errorLogger, settings}, timerResults};
runner.run_once({
VFA(valueFlowEnumValue(symboldatabase, settings)),
VFA(valueFlowNumber(tokenlist, settings)),
VFA(valueFlowString(tokenlist, settings)),
VFA(valueFlowArray(tokenlist, settings)),
VFA(valueFlowUnknownFunctionReturn(tokenlist, settings)),
VFA(valueFlowGlobalConstVar(tokenlist, settings)),
VFA(valueFlowEnumValue(symboldatabase, settings)),
VFA(valueFlowGlobalStaticVar(tokenlist, settings)),
VFA(valueFlowPointerAlias(tokenlist, settings)),
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
VFA(valueFlowLifetime(tokenlist, errorLogger, settings)),
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
VFA(valueFlowSymbolic(tokenlist, symboldatabase, settings)),
VFA(valueFlowBitAnd(tokenlist, settings)),
VFA(valueFlowSameExpressions(tokenlist, settings)),
VFA(valueFlowConditionExpressions(tokenlist, symboldatabase, errorLogger, *settings)),
});
runner.run({
VFA(valueFlowImpossibleValues(tokenlist, settings)),
VFA(valueFlowSymbolicOperators(symboldatabase, settings)),
VFA(valueFlowCondition(SymbolicConditionHandler{}, tokenlist, symboldatabase, errorLogger, settings, skippedFunctions)),
VFA(valueFlowSymbolicInfer(symboldatabase, settings)),
VFA(valueFlowArrayBool(tokenlist, settings)),
VFA(valueFlowArrayElement(tokenlist, settings)),
VFA(valueFlowRightShift(tokenlist, settings)),
VFA(valueFlowAfterAssign(tokenlist, symboldatabase, errorLogger, settings, skippedFunctions)),
VFA_CPP(valueFlowAfterSwap(tokenlist, symboldatabase, errorLogger, settings)),
VFA(valueFlowCondition(SimpleConditionHandler{}, tokenlist, symboldatabase, errorLogger, settings, skippedFunctions)),
VFA(valueFlowInferCondition(tokenlist, settings)),
VFA(valueFlowSwitchVariable(tokenlist, symboldatabase, errorLogger, settings)),
VFA(valueFlowForLoop(tokenlist, symboldatabase, errorLogger, settings)),
VFA(valueFlowSubFunction(tokenlist, symboldatabase, errorLogger, *settings)),
VFA(valueFlowFunctionReturn(tokenlist, errorLogger, settings)),
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
VFA(valueFlowLifetime(tokenlist, errorLogger, settings)),
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
VFA(valueFlowFunctionDefaultParameter(tokenlist, symboldatabase, settings)),
ValueFlow: pass `SymbolDatabase` by reference into `ValueFlow::setValues()` (#5295)
2023-08-07 18:41:50 +02:00
VFA(valueFlowUninit(tokenlist, settings)),
ValueFlow: Add pass runner to check timeout and report time (#4952)
2023-04-30 20:39:05 +02:00
VFA_CPP(valueFlowAfterMove(tokenlist, symboldatabase, settings)),
VFA_CPP(valueFlowSmartPointer(tokenlist, errorLogger, settings)),
VFA_CPP(valueFlowIterators(tokenlist, settings)),
VFA_CPP(
valueFlowCondition(IteratorConditionHandler{}, tokenlist, symboldatabase, errorLogger, settings, skippedFunctions)),
VFA_CPP(valueFlowIteratorInfer(tokenlist, settings)),
VFA_CPP(valueFlowContainerSize(tokenlist, symboldatabase, errorLogger, settings, skippedFunctions)),
VFA_CPP(
valueFlowCondition(ContainerConditionHandler{}, tokenlist, symboldatabase, errorLogger, settings, skippedFunctions)),
VFA(valueFlowSafeFunctions(tokenlist, symboldatabase, settings)),
});
runner.run_once({
VFA(valueFlowDynamicBufferSize(tokenlist, symboldatabase, settings)),
VFA(valueFlowDebug(tokenlist, errorLogger, settings)),
});
Add new experimental value flow analysis
2014-01-04 20:57:02 +01:00
}
Improve error messages for conditional values. make valueFlowSwitchVariable values conditional that depend on the case. Partial fix for #6884.
2015-07-29 19:54:57 +02:00
std::string ValueFlow::eitherTheConditionIsRedundant(const Token *condition)
{
if (!condition)
return "Either the condition is redundant";
if (condition->str() == "case") {
std::string expr;
for (const Token *tok = condition; tok && tok->str() != ":"; tok = tok->next()) {
expr += tok->str();
if (Token::Match(tok, "%name%|%num% %name%|%num%"))
expr += ' ';
}
return "Either the switch case '" + expr + "' is redundant";
}
return "Either the condition '" + condition->expressionString() + "' is redundant";
Fixed Cppcheck warnings
2020-05-19 21:55:28 +02:00
}
Fix 10298: ValueFlow: Wrong known value, 'x == -1' implicit unsigned cast for rhs (#3277)
2021-06-04 17:17:41 +02:00
const ValueFlow::Value* ValueFlow::findValue(const std::list<ValueFlow::Value>& values,
Format with uncrustify (#3388)
2021-08-07 20:51:18 +02:00
const Settings* settings,
mitigated and enabled more clang-tidy warnings (#4470) * fixed some `performance-inefficient-string-concatenation` clang-tidy warnings * fixed and enabled `modernize-replace-random-shuffle` clang-tidy warning * fixed and enabled `bugprone-suspicious-string-compare` clang-tidy warning * mitigated and enabled `readability-non-const-parameter` clang-tidy warnings * clang-tidy.md: documented some disabled checks * mitigated and enabled `performance-unnecessary-value-param` clang-tidy warnings
2022-09-16 18:58:59 +02:00
const std::function<bool(const ValueFlow::Value&)> &pred)
Fix 10298: ValueFlow: Wrong known value, 'x == -1' implicit unsigned cast for rhs (#3277)
2021-06-04 17:17:41 +02:00
{
const ValueFlow::Value* ret = nullptr;
for (const ValueFlow::Value& v : values) {
if (pred(v)) {
if (!ret || ret->isInconclusive() || (ret->condition && !v.isInconclusive()))
ret = &v;
if (!ret->isInconclusive() && !ret->condition)
break;
}
}
if (settings && ret) {
if (ret->isInconclusive() && !settings->certainty.isEnabled(Certainty::inconclusive))
return nullptr;
if (ret->condition && !settings->severity.isEnabled(Severity::warning))
return nullptr;
}
return ret;
}
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
avoid some unnecessary object creations and copies (#4493)
2022-09-29 21:47:17 +02:00
// TODO: returns a single value at most - no need for std::vector
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
static std::vector<ValueFlow::Value> isOutOfBoundsImpl(const ValueFlow::Value& size,
const Token* indexTok,
bool condition)
{
if (!indexTok)
return {};
const ValueFlow::Value* indexValue = indexTok->getMaxValue(condition, size.path);
if (!indexValue)
return {};
if (indexValue->intvalue >= size.intvalue)
return {*indexValue};
if (!condition)
return {};
// TODO: Use a better way to decide if the variable in unconstrained
if (!indexTok->variable() || !indexTok->variable()->isArgument())
return {};
use `const_iterator` where possible (#4662)
2022-12-30 15:13:47 +01:00
if (std::any_of(indexTok->values().cbegin(), indexTok->values().cend(), [&](const ValueFlow::Value& v) {
Fix 10413: FP arrayIndexOutOfBoundsCond after check (#3446)
2021-09-06 07:15:24 +02:00
return v.isSymbolicValue() && v.isPossible() && v.bound == ValueFlow::Value::Bound::Upper;
}))
return {};
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
if (indexValue->bound != ValueFlow::Value::Bound::Lower)
return {};
if (size.bound == ValueFlow::Value::Bound::Lower)
return {};
Typos found by running "codespell" (#4702)
2023-01-10 15:15:27 +01:00
// Checking for underflow doesn't mean it could be out of bounds
Fix 11461: arrayIndexOutOfBounds false positive (#4686)
2023-01-07 22:09:17 +01:00
if (indexValue->intvalue == 0)
return {};
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
ValueFlow::Value value = inferCondition(">=", indexTok, indexValue->intvalue);
if (!value.isKnown())
return {};
if (value.intvalue == 0)
return {};
value.intvalue = size.intvalue;
value.bound = ValueFlow::Value::Bound::Lower;
avoid some unnecessary object creations and copies (#4493)
2022-09-29 21:47:17 +02:00
return {std::move(value)};
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
}
avoid some unnecessary object creations and copies (#4493)
2022-09-29 21:47:17 +02:00
// TODO: return single value at most - no need for std::vector
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
std::vector<ValueFlow::Value> ValueFlow::isOutOfBounds(const Value& size, const Token* indexTok, bool possible)
{
Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks (#3597) * Fix 10621: FP arrayIndexOutOfBoundsCond with multiple index checks * Format
2021-12-04 08:54:04 +01:00
ValueFlow::Value inBoundsValue = inferCondition("<", indexTok, size.intvalue);
if (inBoundsValue.isKnown() && inBoundsValue.intvalue != 0)
return {};
Fix 7524: ValueFlow: false path for 'x<3' (#3393)
2021-08-16 09:19:07 +02:00
std::vector<ValueFlow::Value> result = isOutOfBoundsImpl(size, indexTok, false);
if (!result.empty())
return result;
if (!possible)
return result;
return isOutOfBoundsImpl(size, indexTok, true);
}