[analyzer] Add new checker for unchecked return value.
Needs ReviewPublic
Actions

Authored by balazske on Nov 3 2020, 8:53 AM.

Details

Reviewers

Szelethus
martong
baloghadamsoftware

Summary

Add a checker that checks if a function is used without examining
its return value. The set of functions is taken from CERT rule
ERR33-C "Detect and handle standard library errors". This is a
simplified check for the problem.

Diff Detail

Repository: rG LLVM Github Monorepo

Unit TestsFailed
View All

	Time	Test
	400 ms	linux > HWAddressSanitizer-x86_64.TestCases::sizes.cpp Script: -- : 'RUN: at line 3'; /mnt/disks/ssd0/agent/llvm-project/build/./bin/clang --driver-mode=g++ -m64 -gline-tables-only -fsanitize=hwaddress -fuse-ld=lld -mcmodel=large -mllvm -hwasan-globals -mllvm -hwasan-use-short-granules -mllvm -hwasan-instrument-landing-pads=0 -mllvm -hwasan-instrument-personality-functions /mnt/disks/ssd0/agent/llvm-project/compiler-rt/test/hwasan/TestCases/sizes.cpp -nostdlib++ -lstdc++ -o /mnt/disks/ssd0/agent/llvm-project/build/projects/compiler-rt/test/hwasan/X86_64/TestCases/Output/sizes.cpp.tmp

Event Timeline

balazske created this revision.Nov 3 2020, 8:53 AM

Herald added a reviewer: Szelethus. · View Herald TranscriptNov 3 2020, 8:53 AM

Herald added a project: Restricted Project. · View Herald Transcript

Herald added subscribers: cfe-commits, steakhal, ASDenysPetrov and 13 others. · View Herald Transcript

balazske requested review of this revision.Nov 3 2020, 8:53 AM

This is a very simplified form of the check that is implemented in D72705 but still may be useful in practical cases. This check could be a clang-tidy check but it is planned that the checker takes use of the planned new attributes to determine if a function should be checked.

Harbormaster completed remote builds in B77419: Diff 302599.Nov 3 2020, 9:45 AM

balazske added reviewers: martong, baloghadamsoftware.Nov 5 2020, 8:13 AM

Herald added a subscriber: rnkovacs. · View Herald TranscriptNov 5 2020, 8:13 AM

baloghadamsoftware added inline comments.Nov 6 2020, 3:13 AM

clang/lib/StaticAnalyzer/Checkers/UncheckedReturnValueChecker.cpp
42	Please note that the `CallExpr` does not necessarily stands alone. It may be wrapped into an `ExprWithCleanUps`. We should consider these `CallExpr`s as unchecked too.
86	Hmm, why `StringMap<>`? Why not `CallDescriptionMap<>`?
clang/test/Analysis/unchecked-return-value.cpp
11	Please use some valid format here. E.g. `scanf("%*c");`
17	Please add such simple test case for all the functions we try to check. (One call is enough for every such function, either in `std::` or on the top namespace.)

Small fixes in test.

balazske marked 2 inline comments as done.Nov 6 2020, 7:09 AM

balazske added inline comments.

clang/lib/StaticAnalyzer/Checkers/UncheckedReturnValueChecker.cpp
42	It looks like that the matcher finds these occurrences too. A test was added for it.
86	`CallDescriptionMap` is only usable with `CallEvent` that is not used in this checker. Or it can be extended with lookup from `FunctionDecl`?

Harbormaster completed remote builds in B77882: Diff 303444.Nov 6 2020, 7:58 AM

Maybe it is better to have this check for every system function that has non-void return value (except specific functions)? This check is applicable to CERT rule ERR33-C, POS54-C and EXP12-C too (it is restricted but can find a part of the problems).

Ping