analyzer: fix ICE on realloc of zeroed memory [PR104062]

author David Malcolm <dmalcolm@redhat.com>

Tue, 18 Jan 2022 15:03:53 +0000 (10:03 -0500)

committer David Malcolm <dmalcolm@redhat.com>

Tue, 18 Jan 2022 20:55:12 +0000 (15:55 -0500)
author David Malcolm <dmalcolm@redhat.com>
Tue, 18 Jan 2022 15:03:53 +0000 (10:03 -0500)
committer David Malcolm <dmalcolm@redhat.com>
Tue, 18 Jan 2022 20:55:12 +0000 (15:55 -0500)
diff --git a/gcc/analyzer/region-model-manager.cc b/gcc/analyzer/region-model-manager.cc

index 903cdfd..9d4f595 100644 (file)
--- a/gcc/analyzer/region-model-manager.cc
+++ b/gcc/analyzer/region-model-manager.cc
@@ -794,7 +794,8 @@ region_model_manager::maybe_fold_sub_svalue (tree type,
  
    if (const repeated_svalue *repeated_sval
         = parent_svalue->dyn_cast_repeated_svalue ())
-    return get_or_create_cast (type, repeated_sval->get_inner_svalue ());
+    if (type)
+      return get_or_create_cast (type, repeated_sval->get_inner_svalue ());
  
    return NULL;
  }
diff --git a/gcc/testsuite/gcc.dg/analyzer/pr104062.c b/gcc/testsuite/gcc.dg/analyzer/pr104062.c

new file mode 100644 (file)

index 0000000..7129c27
--- /dev/null
+++ b/gcc/testsuite/gcc.dg/analyzer/pr104062.c
@@ -0,0 +1,13 @@
+void *
+calloc (__SIZE_TYPE__, __SIZE_TYPE__);
+
+void *
+realloc (void *, __SIZE_TYPE__);
+
+void
+foo (void)
+{
+  int *ap5 = calloc (4, sizeof *ap5);
+  int *ap7 = realloc (ap5, sizeof *ap5);
+} /* { dg-warning "leak of 'ap5'" "leak of ap5" } */
+/* { dg-warning "leak of 'ap7'" "leak of ap7" { target *-*-* } .-1 } */
author	David Malcolm <dmalcolm@redhat.com>
	Tue, 18 Jan 2022 15:03:53 +0000 (10:03 -0500)
committer	David Malcolm <dmalcolm@redhat.com>
	Tue, 18 Jan 2022 20:55:12 +0000 (15:55 -0500)
gcc/analyzer/region-model-manager.cc		patch \| blob \| history
gcc/testsuite/gcc.dg/analyzer/pr104062.c	[new file with mode: 0644]	patch \| blob