This is an archive of the discontinued LLVM Phabricator instance.

[analyzer] Warn on use of 'self' after call to to [super dealloc].
ClosedPublic

Authored by dcoughlin on Feb 22 2016, 3:47 PM.

Download Raw Diff

Details

Reviewers

Commits

rG591991c86fb5: [analyzer] Warn on use of 'self' after call to to [super dealloc].
rC261935: [analyzer] Warn on use of 'self' after call to to [super dealloc].
rL261935: [analyzer] Warn on use of 'self' after call to to [super dealloc].

Summary

Referring to 'self' after a call to [super dealloc] is a use-after-free in Objective-C because NSObject's -dealloc frees the memory pointed to by self. This patch extends the ObjCSuperDeallocChecker to catch this error.

rdar://problem/6953275

Diff Detail

Repository: rL LLVM

Event Timeline

dcoughlin updated this revision to Diff 48747.Feb 22 2016, 3:47 PM

dcoughlin retitled this revision from to [analyzer] Warn on use of 'self' after call to to [super dealloc]..

dcoughlin updated this object.

dcoughlin added a reviewer: zaks.anna.

dcoughlin added a subscriber: cfe-commits.

dcoughlin updated this object.Feb 22 2016, 3:49 PM

dcoughlin added a subscriber: ddkilzer.

zaks.anna added inline comments.Feb 24 2016, 10:40 PM

lib/StaticAnalyzer/Checkers/ObjCSuperDeallocChecker.cpp
165 ↗	(On Diff #48747)	Does "has been freed" sound better?
test/Analysis/DeallocUseAfterFreeErrors.m
59 ↗	(On Diff #48747)	Would it be possible to provide a more presice error message here? Specifically, we refer to 'self' here but the reference is implicit. I guess we could say something like "accessing an instance variable after the object has been freed". Would that require extra checking to ensure that we are indeed accessing a member in checkLocation?

Closed by commit rL261935: [analyzer] Warn on use of 'self' after call to to [super dealloc]. (authored by dcoughlin). · Explain WhyFeb 25 2016, 3:41 PM

This revision was automatically updated to reflect the committed changes.

dcoughlin marked an inline comment as done.

dcoughlin added inline comments.Feb 25 2016, 3:41 PM

lib/StaticAnalyzer/Checkers/ObjCSuperDeallocChecker.cpp
165 ↗	(On Diff #48747)	Yes, changed it.
test/Analysis/DeallocUseAfterFreeErrors.m
59 ↗	(On Diff #48747)	I've updated this to be "use of instance variable '_ivar' after the instance has been freed with call to [super dealloc]".

Revision Contents

Path

Size

cfe/

trunk/

lib/

StaticAnalyzer/

Checkers/

ObjCSuperDeallocChecker.cpp

143 lines

test/

Analysis/

DeallocUseAfterFreeErrors.m

100 lines

Diff 49116

cfe/trunk/lib/StaticAnalyzer/Checkers/ObjCSuperDeallocChecker.cpp

//===- ObjCSuperDeallocChecker.cpp - Check correct use of [super dealloc] -===//		//===- ObjCSuperDeallocChecker.cpp - Check correct use of [super dealloc] -===//
//		//
// The LLVM Compiler Infrastructure		// The LLVM Compiler Infrastructure
//		//
// This file is distributed under the University of Illinois Open Source		// This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details.		// License. See LICENSE.TXT for details.
//		//
//===----------------------------------------------------------------------===//		//===----------------------------------------------------------------------===//
//		//
// This defines ObjCSuperDeallocChecker, a builtin check that warns when		// This defines ObjCSuperDeallocChecker, a builtin check that warns when
// [super dealloc] is called twice on the same instance in MRR mode.		// self is used after a call to [super dealloc] in MRR mode.
//		//
//===----------------------------------------------------------------------===//		//===----------------------------------------------------------------------===//

#include "ClangSACheckers.h"		#include "ClangSACheckers.h"
#include "clang/StaticAnalyzer/Core/BugReporter/BugType.h"		#include "clang/StaticAnalyzer/Core/BugReporter/BugType.h"
#include "clang/StaticAnalyzer/Core/Checker.h"		#include "clang/StaticAnalyzer/Core/Checker.h"
#include "clang/StaticAnalyzer/Core/PathSensitive/CallEvent.h"		#include "clang/StaticAnalyzer/Core/PathSensitive/CallEvent.h"
#include "clang/StaticAnalyzer/Core/PathSensitive/CheckerContext.h"		#include "clang/StaticAnalyzer/Core/PathSensitive/CheckerContext.h"
#include "clang/StaticAnalyzer/Core/PathSensitive/ProgramState.h"		#include "clang/StaticAnalyzer/Core/PathSensitive/ProgramState.h"
#include "clang/StaticAnalyzer/Core/PathSensitive/SymbolManager.h"		#include "clang/StaticAnalyzer/Core/PathSensitive/SymbolManager.h"

using namespace clang;		using namespace clang;
using namespace ento;		using namespace ento;

namespace {		namespace {
class ObjCSuperDeallocChecker		class ObjCSuperDeallocChecker
: public Checker<check::PostObjCMessage, check::PreObjCMessage> {		: public Checker<check::PostObjCMessage, check::PreObjCMessage,
		check::PreCall, check::Location> {

mutable IdentifierInfo IIdealloc, IINSObject;		mutable IdentifierInfo IIdealloc, IINSObject;
mutable Selector SELdealloc;		mutable Selector SELdealloc;

std::unique_ptr<BugType> DoubleSuperDeallocBugType;		std::unique_ptr<BugType> DoubleSuperDeallocBugType;

void initIdentifierInfoAndSelectors(ASTContext &Ctx) const;		void initIdentifierInfoAndSelectors(ASTContext &Ctx) const;

bool isSuperDeallocMessage(const ObjCMethodCall &M) const;		bool isSuperDeallocMessage(const ObjCMethodCall &M) const;

public:		public:
ObjCSuperDeallocChecker();		ObjCSuperDeallocChecker();
void checkPostObjCMessage(const ObjCMethodCall &M, CheckerContext &C) const;		void checkPostObjCMessage(const ObjCMethodCall &M, CheckerContext &C) const;
void checkPreObjCMessage(const ObjCMethodCall &M, CheckerContext &C) const;		void checkPreObjCMessage(const ObjCMethodCall &M, CheckerContext &C) const;

		void checkPreCall(const CallEvent &Call, CheckerContext &C) const;

		void checkLocation(SVal l, bool isLoad, const Stmt *S,
		CheckerContext &C) const;

		private:

		void diagnoseCallArguments(const CallEvent &CE, CheckerContext &C) const;

		void reportUseAfterDealloc(SymbolRef Sym, StringRef Desc, const Stmt *S,
		CheckerContext &C) const;
};		};

} // End anonymous namespace.		} // End anonymous namespace.

// Remember whether [super dealloc] has previously been called on the		// Remember whether [super dealloc] has previously been called on the
// a SymbolRef for the receiver.		// SymbolRef for the receiver.
REGISTER_SET_WITH_PROGRAMSTATE(CalledSuperDealloc, SymbolRef)		REGISTER_SET_WITH_PROGRAMSTATE(CalledSuperDealloc, SymbolRef)

class SuperDeallocBRVisitor final		class SuperDeallocBRVisitor final
: public BugReporterVisitorImpl<SuperDeallocBRVisitor> {		: public BugReporterVisitorImpl<SuperDeallocBRVisitor> {

SymbolRef ReceiverSymbol;		SymbolRef ReceiverSymbol;
bool Satisfied;		bool Satisfied;

Show All 9 Lines	public:

void Profile(llvm::FoldingSetNodeID &ID) const override {		void Profile(llvm::FoldingSetNodeID &ID) const override {
ID.Add(ReceiverSymbol);		ID.Add(ReceiverSymbol);
}		}
};		};

void ObjCSuperDeallocChecker::checkPreObjCMessage(const ObjCMethodCall &M,		void ObjCSuperDeallocChecker::checkPreObjCMessage(const ObjCMethodCall &M,
CheckerContext &C) const {		CheckerContext &C) const {
if (!isSuperDeallocMessage(M))
return;

ProgramStateRef State = C.getState();		ProgramStateRef State = C.getState();
SymbolRef ReceiverSymbol = M.getReceiverSVal().getAsSymbol();		SymbolRef ReceiverSymbol = M.getReceiverSVal().getAsSymbol();
assert(ReceiverSymbol && "No receiver symbol at call to [super dealloc]?");		if (!ReceiverSymbol) {
		diagnoseCallArguments(M, C);
		return;
		}

bool AlreadyCalled = State->contains<CalledSuperDealloc>(ReceiverSymbol);		bool AlreadyCalled = State->contains<CalledSuperDealloc>(ReceiverSymbol);

// If [super dealloc] has not been called, there is nothing to do. We'll
// note the fact that [super dealloc] was called in checkPostObjCMessage.
if (!AlreadyCalled)		if (!AlreadyCalled)
return;		return;

// We have a duplicate [super dealloc] method call.		StringRef Desc;
// This likely causes a crash, so stop exploring the
// path by generating a sink.
ExplodedNode *ErrNode = C.generateErrorNode();
// If we've already reached this node on another path, return.
if (!ErrNode)
return;

// Generate the report.		if (isSuperDeallocMessage(M)) {
std::unique_ptr<BugReport> BR(		Desc = "[super dealloc] should not be called multiple times";
new BugReport(*DoubleSuperDeallocBugType,		} else {
"[super dealloc] should not be called multiple times",		Desc = StringRef();
ErrNode));		}
BR->addRange(M.getOriginExpr()->getSourceRange());
BR->addVisitor(llvm::make_unique<SuperDeallocBRVisitor>(ReceiverSymbol));		reportUseAfterDealloc(ReceiverSymbol, Desc, M.getOriginExpr(), C);
C.emitReport(std::move(BR));

return;		return;
}		}

		void ObjCSuperDeallocChecker::checkPreCall(const CallEvent &Call,
		CheckerContext &C) const {
		diagnoseCallArguments(Call, C);
		}

void ObjCSuperDeallocChecker::checkPostObjCMessage(const ObjCMethodCall &M,		void ObjCSuperDeallocChecker::checkPostObjCMessage(const ObjCMethodCall &M,
CheckerContext &C) const {		CheckerContext &C) const {
// Check for [super dealloc] method call.		// Check for [super dealloc] method call.
if (!isSuperDeallocMessage(M))		if (!isSuperDeallocMessage(M))
return;		return;

ProgramStateRef State = C.getState();		ProgramStateRef State = C.getState();
SymbolRef ReceiverSymbol = M.getSelfSVal().getAsSymbol();		SymbolRef ReceiverSymbol = M.getSelfSVal().getAsSymbol();
assert(ReceiverSymbol && "No receiver symbol at call to [super dealloc]?");		assert(ReceiverSymbol && "No receiver symbol at call to [super dealloc]?");

// We add this transition in checkPostObjCMessage to avoid warning when		// We add this transition in checkPostObjCMessage to avoid warning when
// we inline a call to [super dealloc] where the inlined call itself		// we inline a call to [super dealloc] where the inlined call itself
// calls [super dealloc].		// calls [super dealloc].
State = State->add<CalledSuperDealloc>(ReceiverSymbol);		State = State->add<CalledSuperDealloc>(ReceiverSymbol);
C.addTransition(State);		C.addTransition(State);
}		}

		void ObjCSuperDeallocChecker::checkLocation(SVal L, bool IsLoad, const Stmt *S,
		CheckerContext &C) const {
		SymbolRef BaseSym = L.getLocSymbolInBase();
		if (!BaseSym)
		return;

		ProgramStateRef State = C.getState();

		if (!State->contains<CalledSuperDealloc>(BaseSym))
		return;

		const MemRegion *R = L.getAsRegion();
		if (!R)
		return;

		// Climb the super regions to find the base symbol while recording
		// the second-to-last region for error reporting.
		const MemRegion *PriorSubRegion = nullptr;
		while (const SubRegion *SR = dyn_cast<SubRegion>(R)) {
		if (const SymbolicRegion *SymR = dyn_cast<SymbolicRegion>(SR)) {
		BaseSym = SymR->getSymbol();
		break;
		} else {
		R = SR->getSuperRegion();
		PriorSubRegion = SR;
		}
		}

		StringRef Desc = StringRef();
		auto *IvarRegion = dyn_cast_or_null<ObjCIvarRegion>(PriorSubRegion);

		if (IvarRegion) {
		std::string Buf;
		llvm::raw_string_ostream OS(Buf);
		OS << "use of instance variable '" << *IvarRegion->getDecl() <<
		"' after the instance has been freed with call to [super dealloc]";
		Desc = OS.str();
		}

		reportUseAfterDealloc(BaseSym, Desc, S, C);
		}

		/// Report a use-after-dealloc on \param Sym. If not empty,
		/// \param Desc will be used to describe the error; otherwise,
		/// a default warning will be used.
		void ObjCSuperDeallocChecker::reportUseAfterDealloc(SymbolRef Sym,
		StringRef Desc,
		const Stmt *S,
		CheckerContext &C) const {
		// We have a use of self after free.
		// This likely causes a crash, so stop exploring the
		// path by generating a sink.
		ExplodedNode *ErrNode = C.generateErrorNode();
		// If we've already reached this node on another path, return.
		if (!ErrNode)
		return;

		if (Desc.empty())
		Desc = "use of 'self' after it has been freed with call to [super dealloc]";

		// Generate the report.
		std::unique_ptr<BugReport> BR(
		new BugReport(*DoubleSuperDeallocBugType, Desc, ErrNode));
		BR->addRange(S->getSourceRange());
		BR->addVisitor(llvm::make_unique<SuperDeallocBRVisitor>(Sym));
		C.emitReport(std::move(BR));
		}

		/// Diagnose if any of the arguments to \param CE have already been
		/// dealloc'd.
		void ObjCSuperDeallocChecker::diagnoseCallArguments(const CallEvent &CE,
		CheckerContext &C) const {
		ProgramStateRef State = C.getState();
		unsigned ArgCount = CE.getNumArgs();
		for (unsigned I = 0; I < ArgCount; I++) {
		SymbolRef Sym = CE.getArgSVal(I).getAsSymbol();
		if (!Sym)
		continue;

		if (State->contains<CalledSuperDealloc>(Sym)) {
		reportUseAfterDealloc(Sym, StringRef(), CE.getArgExpr(I), C);
		return;
		}
		}
		}

ObjCSuperDeallocChecker::ObjCSuperDeallocChecker()		ObjCSuperDeallocChecker::ObjCSuperDeallocChecker()
: IIdealloc(nullptr), IINSObject(nullptr) {		: IIdealloc(nullptr), IINSObject(nullptr) {

DoubleSuperDeallocBugType.reset(		DoubleSuperDeallocBugType.reset(
new BugType(this, "[super dealloc] should not be called more than once",		new BugType(this, "[super dealloc] should not be called more than once",
categories::CoreFoundationObjectiveC));		categories::CoreFoundationObjectiveC));
}		}

▲ Show 20 Lines • Show All 65 Lines • Show Last 20 Lines

cfe/trunk/test/Analysis/DeallocUseAfterFreeErrors.m

Show All 29 Lines
- (instancetype)initWithIvar:(NSObject *)ivar {		- (instancetype)initWithIvar:(NSObject *)ivar {
self = [super init];		self = [super init];
if (!self)		if (!self)
return nil;		return nil;
_ivar = [ivar retain];		_ivar = [ivar retain];
return self;		return self;
}		}
- (void)dealloc {		- (void)dealloc {
[super dealloc];		[super dealloc]; // expected-note {{[super dealloc] called here}}
[_ivar release];		[_ivar release]; // expected-warning {{use of instance variable '_ivar' after the instance has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of instance variable '_ivar' after the instance has been freed with call to [super dealloc]}}
}		}
@end		@end

@interface SuperDeallocThenAssignNilToIvarClass : NSObject {		@interface SuperDeallocThenAssignNilToIvarClass : NSObject {
NSObject *_delegate;		NSObject *_delegate;
}		}
@end		@end

@implementation SuperDeallocThenAssignNilToIvarClass		@implementation SuperDeallocThenAssignNilToIvarClass
- (instancetype)initWithDelegate:(NSObject *)delegate {		- (instancetype)initWithDelegate:(NSObject *)delegate {
self = [super init];		self = [super init];
if (!self)		if (!self)
return nil;		return nil;
_delegate = delegate;		_delegate = delegate;
return self;		return self;
}		}
- (void)dealloc {		- (void)dealloc {
[super dealloc];		[super dealloc]; // expected-note {{[super dealloc] called here}}
_delegate = nil;		_delegate = nil; // expected-warning {{use of instance variable '_delegate' after the instance has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of instance variable '_delegate' after the instance has been freed with call to [super dealloc]}}
		}
		@end


		struct SomeStruct {
		int f;
		};

		@interface SuperDeallocThenAssignIvarField : NSObject {
		struct SomeStruct _s;
		}
		@end

		@implementation SuperDeallocThenAssignIvarField
		- (void)dealloc {
		[super dealloc]; // expected-note {{[super dealloc] called here}}
		_s.f = 7; // expected-warning {{use of instance variable '_s' after the instance has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of instance variable '_s' after the instance has been freed with call to [super dealloc]}}
		}
		@end

		@interface OtherClassWithIvar {
		@public
		int _otherIvar;
		}
		@end;

		@interface SuperDeallocThenAssignIvarIvar : NSObject {
		OtherClassWithIvar *_ivar;
		}
		@end

		@implementation SuperDeallocThenAssignIvarIvar
		- (void)dealloc {
		[super dealloc]; // expected-note {{[super dealloc] called here}}
		_ivar->_otherIvar = 7; // expected-warning {{use of instance variable '_ivar' after the instance has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of instance variable '_ivar' after the instance has been freed with call to [super dealloc]}}
}		}
@end		@end

@interface SuperDeallocThenReleasePropertyClass : NSObject { }		@interface SuperDeallocThenReleasePropertyClass : NSObject { }
@property (retain) NSObject *ivar;		@property (retain) NSObject *ivar;
@end		@end

@implementation SuperDeallocThenReleasePropertyClass		@implementation SuperDeallocThenReleasePropertyClass
- (instancetype)initWithProperty:(NSObject *)ivar {		- (instancetype)initWithProperty:(NSObject *)ivar {
self = [super init];		self = [super init];
if (!self)		if (!self)
return nil;		return nil;
self.ivar = ivar;		self.ivar = ivar;
return self;		return self;
}		}
- (void)dealloc {		- (void)dealloc {
[super dealloc];		[super dealloc]; // expected-note {{[super dealloc] called here}}
self.ivar = nil;		self.ivar = nil; // expected-warning {{use of 'self' after it has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of 'self' after it has been freed with call to [super dealloc]}}
}		}
@end		@end

@interface SuperDeallocThenAssignNilToPropertyClass : NSObject { }		@interface SuperDeallocThenAssignNilToPropertyClass : NSObject { }
@property (assign) NSObject *delegate;		@property (assign) NSObject *delegate;
@end		@end

@implementation SuperDeallocThenAssignNilToPropertyClass		@implementation SuperDeallocThenAssignNilToPropertyClass
- (instancetype)initWithDelegate:(NSObject *)delegate {		- (instancetype)initWithDelegate:(NSObject *)delegate {
self = [super init];		self = [super init];
if (!self)		if (!self)
return nil;		return nil;
self.delegate = delegate;		self.delegate = delegate;
return self;		return self;
}		}
- (void)dealloc {		- (void)dealloc {
[super dealloc];		[super dealloc]; // expected-note {{[super dealloc] called here}}
self.delegate = nil;		self.delegate = nil; // expected-warning {{use of 'self' after it has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of 'self' after it has been freed with call to [super dealloc]}}
}		}
@end		@end

@interface SuperDeallocThenCallInstanceMethodClass : NSObject { }		@interface SuperDeallocThenCallInstanceMethodClass : NSObject { }
- (void)_invalidate;		- (void)_invalidate;
@end		@end

@implementation SuperDeallocThenCallInstanceMethodClass		@implementation SuperDeallocThenCallInstanceMethodClass
- (void)_invalidate {		- (void)_invalidate {
}		}
- (void)dealloc {		- (void)dealloc {
[super dealloc];		[super dealloc]; // expected-note {{[super dealloc] called here}}
[self _invalidate];		[self _invalidate]; // expected-warning {{use of 'self' after it has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of 'self' after it has been freed with call to [super dealloc]}}
}		}
@end		@end

@interface SuperDeallocThenCallNonObjectiveCMethodClass : NSObject { }		@interface SuperDeallocThenCallNonObjectiveCMethodClass : NSObject { }
@end		@end

static void _invalidate(NSObject *object) {		static void _invalidate(NSObject *object) {
(void)object;		(void)object;
}		}

@implementation SuperDeallocThenCallNonObjectiveCMethodClass		@implementation SuperDeallocThenCallNonObjectiveCMethodClass
- (void)dealloc {		- (void)dealloc {
[super dealloc];		[super dealloc]; // expected-note {{[super dealloc] called here}}
_invalidate(self);		_invalidate(self); // expected-warning {{use of 'self' after it has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of 'self' after it has been freed with call to [super dealloc]}}
		}
		@end

		@interface SuperDeallocThenCallObjectiveClassMethodClass : NSObject { }
		@end

		@implementation SuperDeallocThenCallObjectiveClassMethodClass
		+ (void) invalidate:(id)arg; {
		}

		- (void)dealloc {
		[super dealloc]; // expected-note {{[super dealloc] called here}}
		[SuperDeallocThenCallObjectiveClassMethodClass invalidate:self]; // expected-warning {{use of 'self' after it has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of 'self' after it has been freed with call to [super dealloc]}}
}		}
@end		@end

@interface TwoSuperDeallocCallsClass : NSObject {		@interface TwoSuperDeallocCallsClass : NSObject {
NSObject *_ivar;		NSObject *_ivar;
}		}
- (void)_invalidate;		- (void)_invalidate;
@end		@end

@implementation TwoSuperDeallocCallsClass		@implementation TwoSuperDeallocCallsClass
- (void)_invalidate {		- (void)_invalidate {
}		}
- (void)dealloc {		- (void)dealloc {
if (_ivar) {		if (_ivar) { // expected-note {{Taking false branch}}
[_ivar release];		[_ivar release];
[super dealloc];		[super dealloc];
return;		return;
}		}
[super dealloc];		[super dealloc]; // expected-note {{[super dealloc] called here}}
[self _invalidate];		[self _invalidate]; // expected-warning {{use of 'self' after it has been freed with call to [super dealloc]}}
		// expected-note@-1 {{use of 'self' after it has been freed with call to [super dealloc]}}
}		}
@end		@end

//===------------------------------------------------------------------------===		//===------------------------------------------------------------------------===
// Warn about calling [super dealloc] twice due to missing return statement.		// Warn about calling [super dealloc] twice due to missing return statement.

@interface MissingReturnCausesDoubleSuperDeallocClass : NSObject {		@interface MissingReturnCausesDoubleSuperDeallocClass : NSObject {
NSObject *_ivar;		NSObject *_ivar;
▲ Show 20 Lines • Show All 89 Lines • ▼ Show 20 Lines	+ (void)dealloc {
[super dealloc]; // no warning: class method		[super dealloc]; // no warning: class method
}		}
@end		@end

//===------------------------------------------------------------------------===		//===------------------------------------------------------------------------===
// Do not warn about calling [super dealloc] twice if when the analyzer has		// Do not warn about calling [super dealloc] twice if when the analyzer has
// inlined the call to its super deallocator.		// inlined the call to its super deallocator.

@interface SuperClassCallingSuperDealloc : NSObject		@interface SuperClassCallingSuperDealloc : NSObject {
		NSObject *_ivar;
		}
@end		@end

@implementation SuperClassCallingSuperDealloc		@implementation SuperClassCallingSuperDealloc
- (void)dealloc; {		- (void)dealloc; {
		[_ivar release]; // no-warning

[super dealloc];		[super dealloc];
}		}
@end		@end

@interface SubclassCallingSuperDealloc : SuperClassCallingSuperDealloc		@interface SubclassCallingSuperDealloc : SuperClassCallingSuperDealloc
@end		@end

@implementation SubclassCallingSuperDealloc		@implementation SubclassCallingSuperDealloc
Show All 26 Lines
@end		@end

@implementation InterveningMethodCallOnSelf		@implementation InterveningMethodCallOnSelf
- (void)anotherMethod {		- (void)anotherMethod {
}		}

- (void)dealloc; {		- (void)dealloc; {
[super dealloc]; // expected-note {{[super dealloc] called here}}		[super dealloc]; // expected-note {{[super dealloc] called here}}
[self anotherMethod];		[self anotherMethod]; // expected-warning {{use of 'self' after it has been freed with call to [super dealloc]}}
[super dealloc]; // expected-warning {{[super dealloc] should not be called multiple times}}		// expected-note@-1 {{use of 'self' after it has been freed with call to [super dealloc]}}
// expected-note@-1 {{[super dealloc] should not be called multiple times}}		[super dealloc];
}		}
@end		@end