[analyzer] Introduce the assume-controlled-environment config option

If the `assume-controlled-environment` is `true`, we should expect `getenv()` to succeed, and the result should not be considered tainted. By default, the option will be `false`. Reviewed By: NoQ, martong Differential Revision: https://reviews.llvm.org/D111296
author: Balazs Benics <balazs.benics@sigmatechnology.se> 2021-10-13 10:50:26 +0200
committer: Balazs Benics <balazs.benics@sigmatechnology.se> 2021-10-13 10:50:26 +0200
commit: edde4efc66df2257f0b2351d5f98b4fbb2ced620 (patch)
tree: 500cfa8e0c0a0a0b7390e90d915468f3afc265ad /clang/lib/StaticAnalyzer/Checkers/StdLibraryFunctionsChecker.cpp
parent: 7fc150309d27b0f98239bec758b895efda8c0481 (diff)
download: llvm-edde4efc66df2257f0b2351d5f98b4fbb2ced620.zip
llvm-edde4efc66df2257f0b2351d5f98b4fbb2ced620.tar.gz
llvm-edde4efc66df2257f0b2351d5f98b4fbb2ced620.tar.bz2
1 files changed, 19 insertions, 11 deletions
diff --git a/clang/lib/StaticAnalyzer/Checkers/StdLibraryFunctionsChecker.cpp b/clang/lib/StaticAnalyzer/Checkers/StdLibraryFunctionsChecker.cpp
index 74adc58..e8b963a 100644
--- a/clang/lib/StaticAnalyzer/Checkers/StdLibraryFunctionsChecker.cpp
+++ b/clang/lib/StaticAnalyzer/Checkers/StdLibraryFunctionsChecker.cpp
@@ -568,6 +568,7 @@ public:
 
   bool DisplayLoadedSummaries = false;
   bool ModelPOSIX = false;
+  bool ShouldAssumeControlledEnvironment = false;
 
 private:
   Optional<Summary> findFunctionSummary(const FunctionDecl *FD,
@@ -1433,13 +1434,19 @@ void StdLibraryFunctionsChecker::initFunctionSummaries(
                 RetType{Ssize_tTy}),
       GetLineSummary);
 
-  // char *getenv(const char *name);
-  addToFunctionSummaryMap(
-      "getenv", Signature(ArgTypes{ConstCharPtrTy}, RetType{CharPtrTy}),
-      Summary(NoEvalCall)
-          .Case({NotNull(Ret)})
-          .Case({NotNull(Ret)->negate()})
-          .ArgConstraint(NotNull(ArgNo(0))));
+  {
+    Summary GetenvSummary = Summary(NoEvalCall)
+                                .ArgConstraint(NotNull(ArgNo(0)))
+                                .Case({NotNull(Ret)});
+    // In untrusted environments the envvar might not exist.
+    if (!ShouldAssumeControlledEnvironment)
+      GetenvSummary.Case({NotNull(Ret)->negate()});
+
+    // char *getenv(const char *name);
+    addToFunctionSummaryMap(
+        "getenv", Signature(ArgTypes{ConstCharPtrTy}, RetType{CharPtrTy}),
+        std::move(GetenvSummary));
+  }
 
   if (ModelPOSIX) {
 
@@ -2653,11 +2660,12 @@ void StdLibraryFunctionsChecker::initFunctionSummaries(
 
 void ento::registerStdCLibraryFunctionsChecker(CheckerManager &mgr) {
   auto *Checker = mgr.registerChecker<StdLibraryFunctionsChecker>();
+  const AnalyzerOptions &Opts = mgr.getAnalyzerOptions();
   Checker->DisplayLoadedSummaries =
-      mgr.getAnalyzerOptions().getCheckerBooleanOption(
-          Checker, "DisplayLoadedSummaries");
-  Checker->ModelPOSIX =
-      mgr.getAnalyzerOptions().getCheckerBooleanOption(Checker, "ModelPOSIX");
+      Opts.getCheckerBooleanOption(Checker, "DisplayLoadedSummaries");
+  Checker->ModelPOSIX = Opts.getCheckerBooleanOption(Checker, "ModelPOSIX");
+  Checker->ShouldAssumeControlledEnvironment =
+      Opts.ShouldAssumeControlledEnvironment;
 }
 
 bool ento::shouldRegisterStdCLibraryFunctionsChecker(
author	Balazs Benics <balazs.benics@sigmatechnology.se>	2021-10-13 10:50:26 +0200
committer	Balazs Benics <balazs.benics@sigmatechnology.se>	2021-10-13 10:50:26 +0200
commit	edde4efc66df2257f0b2351d5f98b4fbb2ced620 (patch)
tree	500cfa8e0c0a0a0b7390e90d915468f3afc265ad /clang/lib/StaticAnalyzer/Checkers/StdLibraryFunctionsChecker.cpp
parent	7fc150309d27b0f98239bec758b895efda8c0481 (diff)
download	llvm-edde4efc66df2257f0b2351d5f98b4fbb2ced620.zip llvm-edde4efc66df2257f0b2351d5f98b4fbb2ced620.tar.gz llvm-edde4efc66df2257f0b2351d5f98b4fbb2ced620.tar.bz2