15ffd83dbSDimitry Andric //=======- ASTUtils.cpp ------------------------------------------*- C++ -*-==// 25ffd83dbSDimitry Andric // 35ffd83dbSDimitry Andric // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. 45ffd83dbSDimitry Andric // See https://llvm.org/LICENSE.txt for license information. 55ffd83dbSDimitry Andric // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception 65ffd83dbSDimitry Andric // 75ffd83dbSDimitry Andric //===----------------------------------------------------------------------===// 85ffd83dbSDimitry Andric 95ffd83dbSDimitry Andric #include "ASTUtils.h" 105ffd83dbSDimitry Andric #include "PtrTypesSemantics.h" 115ffd83dbSDimitry Andric #include "clang/AST/CXXInheritance.h" 125ffd83dbSDimitry Andric #include "clang/AST/Decl.h" 135ffd83dbSDimitry Andric #include "clang/AST/DeclCXX.h" 145ffd83dbSDimitry Andric #include "clang/AST/ExprCXX.h" 15bdd1243dSDimitry Andric #include <optional> 165ffd83dbSDimitry Andric 175ffd83dbSDimitry Andric namespace clang { 185ffd83dbSDimitry Andric 19*0fca6ea1SDimitry Andric bool tryToFindPtrOrigin( 20*0fca6ea1SDimitry Andric const Expr *E, bool StopAtFirstRefCountedObj, 21*0fca6ea1SDimitry Andric std::function<bool(const clang::Expr *, bool)> callback) { 225ffd83dbSDimitry Andric while (E) { 23*0fca6ea1SDimitry Andric if (auto *tempExpr = dyn_cast<MaterializeTemporaryExpr>(E)) { 24*0fca6ea1SDimitry Andric E = tempExpr->getSubExpr(); 25*0fca6ea1SDimitry Andric continue; 26*0fca6ea1SDimitry Andric } 27*0fca6ea1SDimitry Andric if (auto *tempExpr = dyn_cast<CXXBindTemporaryExpr>(E)) { 28*0fca6ea1SDimitry Andric E = tempExpr->getSubExpr(); 29*0fca6ea1SDimitry Andric continue; 30*0fca6ea1SDimitry Andric } 31*0fca6ea1SDimitry Andric if (auto *tempExpr = dyn_cast<CXXTemporaryObjectExpr>(E)) { 32*0fca6ea1SDimitry Andric if (auto *C = tempExpr->getConstructor()) { 33*0fca6ea1SDimitry Andric if (auto *Class = C->getParent(); Class && isRefCounted(Class)) 34*0fca6ea1SDimitry Andric return callback(E, true); 35*0fca6ea1SDimitry Andric break; 36*0fca6ea1SDimitry Andric } 37*0fca6ea1SDimitry Andric } 38*0fca6ea1SDimitry Andric if (auto *tempExpr = dyn_cast<ParenExpr>(E)) { 39*0fca6ea1SDimitry Andric E = tempExpr->getSubExpr(); 40*0fca6ea1SDimitry Andric continue; 41*0fca6ea1SDimitry Andric } 42*0fca6ea1SDimitry Andric if (auto *Expr = dyn_cast<ConditionalOperator>(E)) { 43*0fca6ea1SDimitry Andric return tryToFindPtrOrigin(Expr->getTrueExpr(), StopAtFirstRefCountedObj, 44*0fca6ea1SDimitry Andric callback) && 45*0fca6ea1SDimitry Andric tryToFindPtrOrigin(Expr->getFalseExpr(), StopAtFirstRefCountedObj, 46*0fca6ea1SDimitry Andric callback); 47*0fca6ea1SDimitry Andric } 485ffd83dbSDimitry Andric if (auto *cast = dyn_cast<CastExpr>(E)) { 495ffd83dbSDimitry Andric if (StopAtFirstRefCountedObj) { 505ffd83dbSDimitry Andric if (auto *ConversionFunc = 515ffd83dbSDimitry Andric dyn_cast_or_null<FunctionDecl>(cast->getConversionFunction())) { 525ffd83dbSDimitry Andric if (isCtorOfRefCounted(ConversionFunc)) 53*0fca6ea1SDimitry Andric return callback(E, true); 545ffd83dbSDimitry Andric } 555ffd83dbSDimitry Andric } 565ffd83dbSDimitry Andric // FIXME: This can give false "origin" that would lead to false negatives 575ffd83dbSDimitry Andric // in checkers. See https://reviews.llvm.org/D37023 for reference. 585ffd83dbSDimitry Andric E = cast->getSubExpr(); 595ffd83dbSDimitry Andric continue; 605ffd83dbSDimitry Andric } 615ffd83dbSDimitry Andric if (auto *call = dyn_cast<CallExpr>(E)) { 625ffd83dbSDimitry Andric if (auto *memberCall = dyn_cast<CXXMemberCallExpr>(call)) { 63*0fca6ea1SDimitry Andric if (auto *decl = memberCall->getMethodDecl()) { 64*0fca6ea1SDimitry Andric std::optional<bool> IsGetterOfRefCt = isGetterOfRefCounted(decl); 65e8d8bef9SDimitry Andric if (IsGetterOfRefCt && *IsGetterOfRefCt) { 665ffd83dbSDimitry Andric E = memberCall->getImplicitObjectArgument(); 675ffd83dbSDimitry Andric if (StopAtFirstRefCountedObj) { 68*0fca6ea1SDimitry Andric return callback(E, true); 695ffd83dbSDimitry Andric } 705ffd83dbSDimitry Andric continue; 715ffd83dbSDimitry Andric } 725ffd83dbSDimitry Andric } 73*0fca6ea1SDimitry Andric } 745ffd83dbSDimitry Andric 755ffd83dbSDimitry Andric if (auto *operatorCall = dyn_cast<CXXOperatorCallExpr>(E)) { 765ffd83dbSDimitry Andric if (operatorCall->getNumArgs() == 1) { 775ffd83dbSDimitry Andric E = operatorCall->getArg(0); 785ffd83dbSDimitry Andric continue; 795ffd83dbSDimitry Andric } 805ffd83dbSDimitry Andric } 815ffd83dbSDimitry Andric 825ffd83dbSDimitry Andric if (auto *callee = call->getDirectCallee()) { 835ffd83dbSDimitry Andric if (isCtorOfRefCounted(callee)) { 845ffd83dbSDimitry Andric if (StopAtFirstRefCountedObj) 85*0fca6ea1SDimitry Andric return callback(E, true); 865ffd83dbSDimitry Andric 875ffd83dbSDimitry Andric E = call->getArg(0); 885ffd83dbSDimitry Andric continue; 895ffd83dbSDimitry Andric } 905ffd83dbSDimitry Andric 91*0fca6ea1SDimitry Andric if (isReturnValueRefCounted(callee)) 92*0fca6ea1SDimitry Andric return callback(E, true); 93*0fca6ea1SDimitry Andric 94*0fca6ea1SDimitry Andric if (isSingleton(callee)) 95*0fca6ea1SDimitry Andric return callback(E, true); 96*0fca6ea1SDimitry Andric 975ffd83dbSDimitry Andric if (isPtrConversion(callee)) { 985ffd83dbSDimitry Andric E = call->getArg(0); 995ffd83dbSDimitry Andric continue; 1005ffd83dbSDimitry Andric } 1015ffd83dbSDimitry Andric } 1025ffd83dbSDimitry Andric } 1035ffd83dbSDimitry Andric if (auto *unaryOp = dyn_cast<UnaryOperator>(E)) { 1045ffd83dbSDimitry Andric // FIXME: Currently accepts ANY unary operator. Is it OK? 1055ffd83dbSDimitry Andric E = unaryOp->getSubExpr(); 1065ffd83dbSDimitry Andric continue; 1075ffd83dbSDimitry Andric } 1085ffd83dbSDimitry Andric 1095ffd83dbSDimitry Andric break; 1105ffd83dbSDimitry Andric } 1115ffd83dbSDimitry Andric // Some other expression. 112*0fca6ea1SDimitry Andric return callback(E, false); 1135ffd83dbSDimitry Andric } 1145ffd83dbSDimitry Andric 1155ffd83dbSDimitry Andric bool isASafeCallArg(const Expr *E) { 1165ffd83dbSDimitry Andric assert(E); 1175ffd83dbSDimitry Andric if (auto *Ref = dyn_cast<DeclRefExpr>(E)) { 1185ffd83dbSDimitry Andric if (auto *D = dyn_cast_or_null<VarDecl>(Ref->getFoundDecl())) { 1195ffd83dbSDimitry Andric if (isa<ParmVarDecl>(D) || D->isLocalVarDecl()) 1205ffd83dbSDimitry Andric return true; 1215ffd83dbSDimitry Andric } 1225ffd83dbSDimitry Andric } 1235ffd83dbSDimitry Andric 1245ffd83dbSDimitry Andric // TODO: checker for method calls on non-refcounted objects 1255ffd83dbSDimitry Andric return isa<CXXThisExpr>(E); 1265ffd83dbSDimitry Andric } 1275ffd83dbSDimitry Andric 1285ffd83dbSDimitry Andric } // namespace clang 129