diff options
| author | Anna Zaks <ganna@apple.com> | 2012-11-26 19:11:46 +0000 |
|---|---|---|
| committer | Anna Zaks <ganna@apple.com> | 2012-11-26 19:11:46 +0000 |
| commit | dac6cd533d90fa1f75e66f83f7d5ebc12e34bfb7 (patch) | |
| tree | 36b3d8f1861ab952f3a5961bdc15a002f88a6c83 | |
| parent | f419a856b56354781141a2a37f6190918be548ed (diff) | |
[analyzer] Fix a crash reported in PR 14400.
The AllocaRegion did not have the superRegion (based on LocationContext)
as part of it's hash. As a consequence, the AllocaRegions from
different frames were uniqued to be the same region.
git-svn-id: https://llvm.org/svn/llvm-project/cfe/trunk@168599 91177308-0d34-0410-b5e6-96231b3b80d8
| -rw-r--r-- | lib/StaticAnalyzer/Checkers/BuiltinFunctionChecker.cpp | 1 | ||||
| -rw-r--r-- | lib/StaticAnalyzer/Core/MemRegion.cpp | 3 | ||||
| -rw-r--r-- | test/Analysis/misc-ps-region-store.cpp | 5 |
3 files changed, 8 insertions, 1 deletions
diff --git a/lib/StaticAnalyzer/Checkers/BuiltinFunctionChecker.cpp b/lib/StaticAnalyzer/Checkers/BuiltinFunctionChecker.cpp index 6ef022b609..24f8cdd74e 100644 --- a/lib/StaticAnalyzer/Checkers/BuiltinFunctionChecker.cpp +++ b/lib/StaticAnalyzer/Checkers/BuiltinFunctionChecker.cpp @@ -68,6 +68,7 @@ bool BuiltinFunctionChecker::evalCall(const CallExpr *CE, DefinedOrUnknownSVal extentMatchesSizeArg = svalBuilder.evalEQ(state, Extent, Size); state = state->assume(extentMatchesSizeArg, true); + assert(state && "The region should not have any previous constraints"); C.addTransition(state->BindExpr(CE, LCtx, loc::MemRegionVal(R))); return true; diff --git a/lib/StaticAnalyzer/Core/MemRegion.cpp b/lib/StaticAnalyzer/Core/MemRegion.cpp index fab10cfd3d..37f65ec31e 100644 --- a/lib/StaticAnalyzer/Core/MemRegion.cpp +++ b/lib/StaticAnalyzer/Core/MemRegion.cpp @@ -272,10 +272,11 @@ void ObjCStringRegion::ProfileRegion(llvm::FoldingSetNodeID& ID, void AllocaRegion::ProfileRegion(llvm::FoldingSetNodeID& ID, const Expr *Ex, unsigned cnt, - const MemRegion *) { + const MemRegion *superRegion) { ID.AddInteger((unsigned) AllocaRegionKind); ID.AddPointer(Ex); ID.AddInteger(cnt); + ID.AddPointer(superRegion); } void AllocaRegion::Profile(llvm::FoldingSetNodeID& ID) const { diff --git a/test/Analysis/misc-ps-region-store.cpp b/test/Analysis/misc-ps-region-store.cpp index a106cf0604..adbc5b1df0 100644 --- a/test/Analysis/misc-ps-region-store.cpp +++ b/test/Analysis/misc-ps-region-store.cpp @@ -628,3 +628,8 @@ void test_inline() { a.bar(); } +void test_alloca_in_a_recursive_function(int p1) { + __builtin_alloca (p1); + test_alloca_in_a_recursive_function(1); + test_alloca_in_a_recursive_function(2); +} |