diagnostics, analyzer: add optional per-diagnostic property bags to SARIF
I've found it useful in debugging the analyzer for the SARIF output to
contain extra analyzer-specific data in each diagnostic.
This patch:
* adds a way for a diagnostic_metadata to populate a property
bag within a SARIF "result" object based on a new vfunc
* reworks how diagnostics are emitted within the analyzer so
that a custom diagnostic_metadata subclass is used, which populates
the property bag with information from the saved_diagnostic, and with
a vfunc hook allowing for per-pending_diagnotic-subclass extra
properties.
Doing so makes it trivial to go from the SARIF output back to
pertinent parts of the analyzer's internals (e.g. the index of
the diagnostic within the ana::diagnostic_manager, the index of
the ana::exploded_node, etc).
It also replaces a lot of boilerplate in the "emit" implementations
in the various pending_diagnostics subclasses. In particular, doing
so fixes missing CVE metadata for -Wanalyzer-fd-phase-mismatch (where
sm-fd.cc's fd_phase_mismatch::emit was failing to use its
diagnostic_metadata instance).
gcc/analyzer/ChangeLog:
* analyzer.h (class saved_diagnostic): New forward decl.
* bounds-checking.cc: Update for changes to
pending_diagnostic::emit.
* call-details.cc: Likewise.
* diagnostic-manager.cc: Include "diagnostic-format-sarif.h".
(saved_diagnostic::maybe_add_sarif_properties): New.
(class pending_diagnostic_metadata): New.
(diagnostic_manager::emit_saved_diagnostic): Create a
pending_diagnostic_metadata and a diagnostic_emission_context.
Pass the latter to the pending_diagnostic::emit vfunc.
* diagnostic-manager.h
(saved_diagnostic::maybe_add_sarif_properties): New decl.
* engine.cc: Update for changes to pending_diagnostic::emit.
* infinite-loop.cc: Likewise.
* infinite-recursion.cc: Likewise.
* kf-analyzer.cc: Likewise.
* kf.cc: Likewise.
* pending-diagnostic.cc
(diagnostic_emission_context::get_pending_diagnostic): New.
(diagnostic_emission_context::warn): New.
(diagnostic_emission_context::inform): New.
* pending-diagnostic.h (class diagnostic_emission_context): New.
(pending_diagnostic::emit): Update params.
(pending_diagnostic::maybe_add_sarif_properties): New vfunc.
* region.cc: Don't include "diagnostic-metadata.h".
* region-model.cc: Include "diagnostic-format-sarif.h". Update
for changes to pending_diagnostic::emit.
(exposure_through_uninit_copy::maybe_add_sarif_properties): New.
* sm-fd.cc: Update for changes to pending_diagnostic::emit.
* sm-file.cc: Likewise.
* sm-malloc.cc: Likewise.
* sm-pattern-test.cc: Likewise.
* sm-sensitive.cc: Likewise.
* sm-signal.cc: Likewise.
* sm-taint.cc: Likewise.
* store.cc: Don't include "diagnostic-metadata.h".
* varargs.cc: Update for changes to pending_diagnostic::emit.
gcc/ChangeLog:
* diagnostic-core.h (emit_diagnostic_valist): New overload decl.
* diagnostic-format-sarif.cc (sarif_builder::make_result_object):
When we have metadata, call its maybe_add_sarif_properties vfunc.
* diagnostic-metadata.h (class sarif_object): Forward decl.
(diagnostic_metadata::~diagnostic_metadata): New.
(diagnostic_metadata::maybe_add_sarif_properties): New vfunc.
* diagnostic.cc (emit_diagnostic_valist): New overload.
gcc/testsuite/ChangeLog:
* gcc.dg/analyzer/fd-accept.c: Update for fix to missing CWE
metadata for -Wanalyzer-fd-phase-mismatch.
* gcc.dg/analyzer/fd-bind.c: Likewise.
* gcc.dg/analyzer/fd-socket-misuse.c: Likewise.
* gcc.dg/plugin/analyzer_cpython_plugin.c: Update for changes to
pending_diagnostic::emit.
* gcc.dg/plugin/analyzer_gil_plugin.c: Likewise.
Signed-off-by: 
David Malcolm <dmalcolm@redhat.com>
Showing
- gcc/analyzer/analyzer.h 1 addition, 0 deletionsgcc/analyzer/analyzer.h
- gcc/analyzer/bounds-checking.cc 52 additions, 78 deletionsgcc/analyzer/bounds-checking.cc
- gcc/analyzer/call-details.cc 3 additions, 5 deletionsgcc/analyzer/call-details.cc
- gcc/analyzer/diagnostic-manager.cc 52 additions, 1 deletiongcc/analyzer/diagnostic-manager.cc
- gcc/analyzer/diagnostic-manager.h 2 additions, 0 deletionsgcc/analyzer/diagnostic-manager.h
- gcc/analyzer/engine.cc 6 additions, 9 deletionsgcc/analyzer/engine.cc
- gcc/analyzer/infinite-loop.cc 3 additions, 6 deletionsgcc/analyzer/infinite-loop.cc
- gcc/analyzer/infinite-recursion.cc 3 additions, 6 deletionsgcc/analyzer/infinite-recursion.cc
- gcc/analyzer/kf-analyzer.cc 2 additions, 2 deletionsgcc/analyzer/kf-analyzer.cc
- gcc/analyzer/kf.cc 13 additions, 19 deletionsgcc/analyzer/kf.cc
- gcc/analyzer/pending-diagnostic.cc 45 additions, 0 deletionsgcc/analyzer/pending-diagnostic.cc
- gcc/analyzer/pending-diagnostic.h 53 additions, 3 deletionsgcc/analyzer/pending-diagnostic.h
- gcc/analyzer/region-model.cc 57 additions, 66 deletionsgcc/analyzer/region-model.cc
- gcc/analyzer/region.cc 0 additions, 1 deletiongcc/analyzer/region.cc
- gcc/analyzer/sm-fd.cc 29 additions, 46 deletionsgcc/analyzer/sm-fd.cc
- gcc/analyzer/sm-file.cc 8 additions, 15 deletionsgcc/analyzer/sm-file.cc
- gcc/analyzer/sm-malloc.cc 47 additions, 71 deletionsgcc/analyzer/sm-malloc.cc
- gcc/analyzer/sm-pattern-test.cc 3 additions, 5 deletionsgcc/analyzer/sm-pattern-test.cc
- gcc/analyzer/sm-sensitive.cc 4 additions, 8 deletionsgcc/analyzer/sm-sensitive.cc
- gcc/analyzer/sm-signal.cc 4 additions, 7 deletionsgcc/analyzer/sm-signal.cc
Loading