This is an archive of the discontinued LLVM Phabricator instance.

Differential D151130

[NFC][CLANG] Fix static code analyzer concerns with dereference null return value
ClosedPublic

Authored by Manna on May 22 2023, 11:32 AM.

Details

Reviewers
erichkeane
Commits
rG7586aeab7ad3: [NFC][CLANG] Fix static code analyzer concerns with dereference null return…
Summary

Reported by Static Analyzer Tool:

Inside "SemaExprMember.cpp" file, in clang::​Sema::​BuildMemberReferenceExpr(clang::​Expr *, clang::​QualType, clang::​SourceLocation, bool, clang::​CXXScopeSpec &, clang::​SourceLocation, clang::​NamedDecl *, clang::​DeclarationNameInfo const &, clang::​TemplateArgumentListInfo const *, clang::​Scope const *, clang::​Sema::​ActOnMemberAccessExtraArgs *): Return value of function which returns null is dereferenced without checking.

//Condition !Base, taking true branch.
if (!Base) {
  TypoExpr *TE = nullptr;
  QualType RecordTy = BaseType;

  //Condition IsArrow, taking true branch.
   if (IsArrow) RecordTy = RecordTy->castAs<PointerType>()->getPointeeType();
  	//returned_null: getAs returns nullptr (checked 279 out of 294 times). 
  	//Condition TemplateArgs != NULL, taking true branch.
  	
   //Dereference null return value (NULL_RETURNS)
   //dereference: Dereferencing a pointer that might be nullptr RecordTy->getAs() when calling LookupMemberExprInRecord. 
   if (LookupMemberExprInRecord(
         *this, R, nullptr, RecordTy->getAs<RecordType>(), OpLoc, IsArrow,
         SS, TemplateArgs != nullptr, TemplateKWLoc, TE))
      return ExprError();
   if (TE)
     return TE;

This patch uses castAs instead of getAs which will assert if the type doesn't match.

Diff Detail

Event Timeline

Manna created this revision.May 22 2023, 11:32 AM
Herald added a project: Restricted Project. · View Herald TranscriptMay 22 2023, 11:32 AM
Herald added subscribers: manas, ASDenysPetrov, dkrupp and 4 others. · View Herald Transcript
Manna requested review of this revision.May 22 2023, 11:32 AM
Herald added a project: Restricted Project. · View Herald TranscriptMay 22 2023, 11:32 AM
Manna edited the summary of this revision. (Show Details)May 22 2023, 11:33 AM
Manna edited the summary of this revision. (Show Details)
Manna added a reviewer: erichkeane.May 22 2023, 11:42 AM
erichkeane accepted this revision.May 22 2023, 11:55 AM
This revision is now accepted and ready to land.May 22 2023, 11:55 AM
Manna added a comment.May 22 2023, 12:18 PM

Thank you @erichkeane for reviews!

Harbormaster completed remote builds in B233645: Diff 524404.May 22 2023, 2:51 PM
Closed by commit rG7586aeab7ad3: [NFC][CLANG] Fix static code analyzer concerns with dereference null return… (authored by Manna). · Explain WhyMay 23 2023, 7:11 AM
This revision was automatically updated to reflect the committed changes.
Manna added a commit: rG7586aeab7ad3: [NFC][CLANG] Fix static code analyzer concerns with dereference null return….

Revision Contents

PathSize
clang/
lib/
Sema/
2 lines

Diff 524696

clang/lib/Sema/SemaExprMember.cpp

Show First 20 LinesShow All 761 Lines▼ Show 20 LinesSema::BuildMemberReferenceExpr(Expr *Base, QualType BaseType,
LookupResult R(*this, NameInfo, LookupMemberName); LookupResult R(*this, NameInfo, LookupMemberName);
// Implicit member accesses. // Implicit member accesses.
if (!Base) { if (!Base) {
TypoExpr *TE = nullptr; TypoExpr *TE = nullptr;
QualType RecordTy = BaseType; QualType RecordTy = BaseType;
if (IsArrow) RecordTy = RecordTy->castAs<PointerType>()->getPointeeType(); if (IsArrow) RecordTy = RecordTy->castAs<PointerType>()->getPointeeType();
if (LookupMemberExprInRecord( if (LookupMemberExprInRecord(
*this, R, nullptr, RecordTy->getAs<RecordType>(), OpLoc, IsArrow, *this, R, nullptr, RecordTy->castAs<RecordType>(), OpLoc, IsArrow,
SS, TemplateArgs != nullptr, TemplateKWLoc, TE)) SS, TemplateArgs != nullptr, TemplateKWLoc, TE))
return ExprError(); return ExprError();
if (TE) if (TE)
return TE; return TE;
// Explicit member accesses. // Explicit member accesses.
} else { } else {
ExprResult BaseResult = Base; ExprResult BaseResult = Base;
▲ Show 20 LinesShow All 1,138 LinesShow Last 20 Lines