Bug Summary

File:tools/clang/lib/AST/StmtCXX.cpp
Warning:line 102, column 21
Access to field 'NumParams' results in a dereference of a null pointer (loaded from variable 'Result')

Annotated Source Code

Press '?' to see keyboard shortcuts

clang -cc1 -triple x86_64-pc-linux-gnu -analyze -disable-free -disable-llvm-verifier -discard-value-names -main-file-name StmtCXX.cpp -analyzer-store=region -analyzer-opt-analyze-nested-blocks -analyzer-checker=core -analyzer-checker=apiModeling -analyzer-checker=unix -analyzer-checker=deadcode -analyzer-checker=cplusplus -analyzer-checker=security.insecureAPI.UncheckedReturn -analyzer-checker=security.insecureAPI.getpw -analyzer-checker=security.insecureAPI.gets -analyzer-checker=security.insecureAPI.mktemp -analyzer-checker=security.insecureAPI.mkstemp -analyzer-checker=security.insecureAPI.vfork -analyzer-checker=nullability.NullPassedToNonnull -analyzer-checker=nullability.NullReturnedFromNonnull -analyzer-output plist -w -analyzer-config-compatibility-mode=true -mrelocation-model pic -pic-level 2 -mthread-model posix -relaxed-aliasing -fmath-errno -masm-verbose -mconstructor-aliases -munwind-tables -fuse-init-array -target-cpu x86-64 -dwarf-column-info -debugger-tuning=gdb -momit-leaf-frame-pointer -ffunction-sections -fdata-sections -resource-dir /usr/lib/llvm-9/lib/clang/9.0.0 -D CLANG_VENDOR="Debian " -D _DEBUG -D _GNU_SOURCE -D __STDC_CONSTANT_MACROS -D __STDC_FORMAT_MACROS -D __STDC_LIMIT_MACROS -I /build/llvm-toolchain-snapshot-9~svn362543/build-llvm/tools/clang/lib/AST -I /build/llvm-toolchain-snapshot-9~svn362543/tools/clang/lib/AST -I /build/llvm-toolchain-snapshot-9~svn362543/tools/clang/include -I /build/llvm-toolchain-snapshot-9~svn362543/build-llvm/tools/clang/include -I /build/llvm-toolchain-snapshot-9~svn362543/build-llvm/include -I /build/llvm-toolchain-snapshot-9~svn362543/include -U NDEBUG -internal-isystem /usr/lib/gcc/x86_64-linux-gnu/6.3.0/../../../../include/c++/6.3.0 -internal-isystem /usr/lib/gcc/x86_64-linux-gnu/6.3.0/../../../../include/x86_64-linux-gnu/c++/6.3.0 -internal-isystem /usr/lib/gcc/x86_64-linux-gnu/6.3.0/../../../../include/x86_64-linux-gnu/c++/6.3.0 -internal-isystem /usr/lib/gcc/x86_64-linux-gnu/6.3.0/../../../../include/c++/6.3.0/backward -internal-isystem /usr/include/clang/9.0.0/include/ -internal-isystem /usr/local/include -internal-isystem /usr/lib/llvm-9/lib/clang/9.0.0/include -internal-externc-isystem /usr/include/x86_64-linux-gnu -internal-externc-isystem /include -internal-externc-isystem /usr/include -O2 -Wno-unused-parameter -Wwrite-strings -Wno-missing-field-initializers -Wno-long-long -Wno-maybe-uninitialized -Wno-comment -std=c++11 -fdeprecated-macro -fdebug-compilation-dir /build/llvm-toolchain-snapshot-9~svn362543/build-llvm/tools/clang/lib/AST -fdebug-prefix-map=/build/llvm-toolchain-snapshot-9~svn362543=. -ferror-limit 19 -fmessage-length 0 -fvisibility-inlines-hidden -stack-protector 2 -fobjc-runtime=gcc -fno-common -fdiagnostics-show-option -vectorize-loops -vectorize-slp -analyzer-output=html -analyzer-config stable-report-filename=true -o /tmp/scan-build-2019-06-05-060531-1271-1 -x c++ /build/llvm-toolchain-snapshot-9~svn362543/tools/clang/lib/AST/StmtCXX.cpp -faddrsig
1//===--- StmtCXX.cpp - Classes for representing C++ statements ------------===//
2//
3// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
4// See https://llvm.org/LICENSE.txt for license information.
5// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
6//
7//===----------------------------------------------------------------------===//
8//
9// This file implements the subclesses of Stmt class declared in StmtCXX.h
10//
11//===----------------------------------------------------------------------===//
12
13#include "clang/AST/StmtCXX.h"
14
15#include "clang/AST/ASTContext.h"
16
17using namespace clang;
18
19QualType CXXCatchStmt::getCaughtType() const {
20 if (ExceptionDecl)
21 return ExceptionDecl->getType();
22 return QualType();
23}
24
25CXXTryStmt *CXXTryStmt::Create(const ASTContext &C, SourceLocation tryLoc,
26 Stmt *tryBlock, ArrayRef<Stmt *> handlers) {
27 const size_t Size = totalSizeToAlloc<Stmt *>(handlers.size() + 1);
28 void *Mem = C.Allocate(Size, alignof(CXXTryStmt));
29 return new (Mem) CXXTryStmt(tryLoc, tryBlock, handlers);
30}
31
32CXXTryStmt *CXXTryStmt::Create(const ASTContext &C, EmptyShell Empty,
33 unsigned numHandlers) {
34 const size_t Size = totalSizeToAlloc<Stmt *>(numHandlers + 1);
35 void *Mem = C.Allocate(Size, alignof(CXXTryStmt));
36 return new (Mem) CXXTryStmt(Empty, numHandlers);
37}
38
39CXXTryStmt::CXXTryStmt(SourceLocation tryLoc, Stmt *tryBlock,
40 ArrayRef<Stmt *> handlers)
41 : Stmt(CXXTryStmtClass), TryLoc(tryLoc), NumHandlers(handlers.size()) {
42 Stmt **Stmts = getStmts();
43 Stmts[0] = tryBlock;
44 std::copy(handlers.begin(), handlers.end(), Stmts + 1);
45}
46
47CXXForRangeStmt::CXXForRangeStmt(Stmt *Init, DeclStmt *Range,
48 DeclStmt *BeginStmt, DeclStmt *EndStmt,
49 Expr *Cond, Expr *Inc, DeclStmt *LoopVar,
50 Stmt *Body, SourceLocation FL,
51 SourceLocation CAL, SourceLocation CL,
52 SourceLocation RPL)
53 : Stmt(CXXForRangeStmtClass), ForLoc(FL), CoawaitLoc(CAL), ColonLoc(CL),
54 RParenLoc(RPL) {
55 SubExprs[INIT] = Init;
56 SubExprs[RANGE] = Range;
57 SubExprs[BEGINSTMT] = BeginStmt;
58 SubExprs[ENDSTMT] = EndStmt;
59 SubExprs[COND] = Cond;
60 SubExprs[INC] = Inc;
61 SubExprs[LOOPVAR] = LoopVar;
62 SubExprs[BODY] = Body;
63}
64
65Expr *CXXForRangeStmt::getRangeInit() {
66 DeclStmt *RangeStmt = getRangeStmt();
67 VarDecl *RangeDecl = dyn_cast_or_null<VarDecl>(RangeStmt->getSingleDecl());
68 assert(RangeDecl && "for-range should have a single var decl")((RangeDecl && "for-range should have a single var decl"
) ? static_cast<void> (0) : __assert_fail ("RangeDecl && \"for-range should have a single var decl\""
, "/build/llvm-toolchain-snapshot-9~svn362543/tools/clang/lib/AST/StmtCXX.cpp"
, 68, __PRETTY_FUNCTION__));
69 return RangeDecl->getInit();
70}
71
72const Expr *CXXForRangeStmt::getRangeInit() const {
73 return const_cast<CXXForRangeStmt *>(this)->getRangeInit();
74}
75
76VarDecl *CXXForRangeStmt::getLoopVariable() {
77 Decl *LV = cast<DeclStmt>(getLoopVarStmt())->getSingleDecl();
78 assert(LV && "No loop variable in CXXForRangeStmt")((LV && "No loop variable in CXXForRangeStmt") ? static_cast
<void> (0) : __assert_fail ("LV && \"No loop variable in CXXForRangeStmt\""
, "/build/llvm-toolchain-snapshot-9~svn362543/tools/clang/lib/AST/StmtCXX.cpp"
, 78, __PRETTY_FUNCTION__));
79 return cast<VarDecl>(LV);
80}
81
82const VarDecl *CXXForRangeStmt::getLoopVariable() const {
83 return const_cast<CXXForRangeStmt *>(this)->getLoopVariable();
84}
85
86CoroutineBodyStmt *CoroutineBodyStmt::Create(
87 const ASTContext &C, CoroutineBodyStmt::CtorArgs const &Args) {
88 std::size_t Size = totalSizeToAlloc<Stmt *>(
89 CoroutineBodyStmt::FirstParamMove + Args.ParamMoves.size());
90
91 void *Mem = C.Allocate(Size, alignof(CoroutineBodyStmt));
92 return new (Mem) CoroutineBodyStmt(Args);
93}
94
95CoroutineBodyStmt *CoroutineBodyStmt::Create(const ASTContext &C, EmptyShell,
96 unsigned NumParams) {
97 std::size_t Size = totalSizeToAlloc<Stmt *>(
98 CoroutineBodyStmt::FirstParamMove + NumParams);
99
100 void *Mem = C.Allocate(Size, alignof(CoroutineBodyStmt));
101 auto *Result = new (Mem) CoroutineBodyStmt(CtorArgs());
1
'Result' initialized to a null pointer value
102 Result->NumParams = NumParams;
2
Access to field 'NumParams' results in a dereference of a null pointer (loaded from variable 'Result')
103 auto *ParamBegin = Result->getStoredStmts() + SubStmt::FirstParamMove;
104 std::uninitialized_fill(ParamBegin, ParamBegin + NumParams,
105 static_cast<Stmt *>(nullptr));
106 return Result;
107}
108
109CoroutineBodyStmt::CoroutineBodyStmt(CoroutineBodyStmt::CtorArgs const &Args)
110 : Stmt(CoroutineBodyStmtClass), NumParams(Args.ParamMoves.size()) {
111 Stmt **SubStmts = getStoredStmts();
112 SubStmts[CoroutineBodyStmt::Body] = Args.Body;
113 SubStmts[CoroutineBodyStmt::Promise] = Args.Promise;
114 SubStmts[CoroutineBodyStmt::InitSuspend] = Args.InitialSuspend;
115 SubStmts[CoroutineBodyStmt::FinalSuspend] = Args.FinalSuspend;
116 SubStmts[CoroutineBodyStmt::OnException] = Args.OnException;
117 SubStmts[CoroutineBodyStmt::OnFallthrough] = Args.OnFallthrough;
118 SubStmts[CoroutineBodyStmt::Allocate] = Args.Allocate;
119 SubStmts[CoroutineBodyStmt::Deallocate] = Args.Deallocate;
120 SubStmts[CoroutineBodyStmt::ReturnValue] = Args.ReturnValue;
121 SubStmts[CoroutineBodyStmt::ResultDecl] = Args.ResultDecl;
122 SubStmts[CoroutineBodyStmt::ReturnStmt] = Args.ReturnStmt;
123 SubStmts[CoroutineBodyStmt::ReturnStmtOnAllocFailure] =
124 Args.ReturnStmtOnAllocFailure;
125 std::copy(Args.ParamMoves.begin(), Args.ParamMoves.end(),
126 const_cast<Stmt **>(getParamMoves().data()));
127}