deref-track-symbolic-region.cpp
1.61 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
// RUN: %clang_analyze_cc1 -analyzer-checker=core -analyzer-output=text -verify %s
struct S {
int *x;
int y;
};
S &getSomeReference();
void test(S *p) {
S &r = *p; //expected-note {{'r' initialized here}}
if (p) return;
//expected-note@-1{{Taking false branch}}
//expected-note@-2{{Assuming 'p' is null}}
r.y = 5; // expected-warning {{Access to field 'y' results in a dereference of a null pointer (loaded from variable 'r')}}
// expected-note@-1{{Access to field 'y' results in a dereference of a null pointer (loaded from variable 'r')}}
}
void testRefParam(int *ptr) {
int &ref = *ptr; // expected-note {{'ref' initialized here}}
if (ptr)
// expected-note@-1{{Assuming 'ptr' is null}}
// expected-note@-2{{Taking false branch}}
return;
extern void use(int &ref);
use(ref); // expected-warning{{Forming reference to null pointer}}
// expected-note@-1{{Forming reference to null pointer}}
}
int testRefToNullPtr() {
int *p = 0; // expected-note {{'p' initialized to a null pointer value}}
int *const &p2 = p; // expected-note{{'p2' initialized here}}
int *p3 = p2; // expected-note {{'p3' initialized to a null pointer value}}
return *p3; // expected-warning {{Dereference of null pointer}}
// expected-note@-1{{Dereference of null pointer}}
}
int testRefToNullPtr2() {
int *p = 0; // expected-note {{'p' initialized to a null pointer value}}
int *const &p2 = p;// expected-note{{'p2' initialized here}}
return *p2; //expected-warning {{Dereference of null pointer}}
// expected-note@-1{{Dereference of null pointer}}
}