diff options
| author | Ted Kremenek <kremenek@apple.com> | 2009-10-17 07:39:35 +0000 |
|---|---|---|
| committer | Ted Kremenek <kremenek@apple.com> | 2009-10-17 07:39:35 +0000 |
| commit | 9b02034b6461000f8355c9c91118adaf644cbc8a (patch) | |
| tree | 5a3f1108a8dd1c0460ff385fd506428b269cfec8 /lib/Analysis/SimpleSValuator.cpp | |
| parent | 8801bebca3b71a7229d9eb606ea234a5a7721a3f (diff) | |
Fix another static analyzer crash due to a corner case in "folding" symbolic values that are constrained to be a constant.
git-svn-id: https://llvm.org/svn/llvm-project/cfe/trunk@84320 91177308-0d34-0410-b5e6-96231b3b80d8
Diffstat (limited to 'lib/Analysis/SimpleSValuator.cpp')
| -rw-r--r-- | lib/Analysis/SimpleSValuator.cpp | 27 |
1 files changed, 16 insertions, 11 deletions
diff --git a/lib/Analysis/SimpleSValuator.cpp b/lib/Analysis/SimpleSValuator.cpp index 5af4c062e0..4487aa9d30 100644 --- a/lib/Analysis/SimpleSValuator.cpp +++ b/lib/Analysis/SimpleSValuator.cpp @@ -346,24 +346,29 @@ SVal SimpleSValuator::EvalBinOpNN(const GRState *state, nonloc::SymbolVal *slhs = cast<nonloc::SymbolVal>(&lhs); SymbolRef Sym = slhs->getSymbol(); - // Does the symbol simplify to a constant? + // Does the symbol simplify to a constant? If so, "fold" the constant + // by setting 'lhs' to a ConcreteInt and try again. if (Sym->getType(ValMgr.getContext())->isIntegerType()) if (const llvm::APSInt *Constant = state->getSymVal(Sym)) { - // For shifts, there is no need to perform any conversions - // of the constant. - if (BinaryOperator::isShiftOp(op)) { - lhs = nonloc::ConcreteInt(*Constant); + // The symbol evaluates to a constant. If necessary, promote the + // folded constant (LHS) to the result type. + BasicValueFactory &BVF = ValMgr.getBasicValueFactory(); + const llvm::APSInt &lhs_I = BVF.Convert(resultTy, *Constant); + lhs = nonloc::ConcreteInt(lhs_I); + + // Also promote the RHS (if necessary). + + // For shifts, it necessary promote the RHS to the result type. + if (BinaryOperator::isShiftOp(op)) continue; - } - // Other cases: do an implicit conversion. This shouldn't be + // Other operators: do an implicit conversion. This shouldn't be // necessary once we support truncation/extension of symbolic values. if (nonloc::ConcreteInt *rhs_I = dyn_cast<nonloc::ConcreteInt>(&rhs)){ - BasicValueFactory &BVF = ValMgr.getBasicValueFactory(); - lhs = nonloc::ConcreteInt(BVF.Convert(rhs_I->getValue(), - *Constant)); - continue; + rhs = nonloc::ConcreteInt(BVF.Convert(resultTy, rhs_I->getValue())); } + + continue; } if (isa<nonloc::ConcreteInt>(rhs)) { |