This is an archive of the discontinued LLVM Phabricator instance.

Differential D4535

[clang-tidy] Add a checker for zero-length memset.
ClosedPublic

Authored by bkramer on Jul 16 2014, 6:29 AM.

Details

Reviewers
djasper
alexfh
Commits
rGebab1500e0a0: [clang-tidy] Add a checker for zero-length memset.
rCTE213155: [clang-tidy] Add a checker for zero-length memset.
rL213155: [clang-tidy] Add a checker for zero-length memset.
Summary

If there's memset(x, y, 0) in the code it's most likely a mistake. The
checker suggests a fix-it to swap 'y' and '0'.

I think this has the potential to be promoted into a general clang warning
after some testing in clang-tidy.

Diff Detail

Repository
rL LLVM

Event Timeline

bkramer updated this revision to Diff 11502.Jul 16 2014, 6:29 AM
bkramer retitled this revision from to [clang-tidy] Add a checker for zero-length memset..
bkramer updated this object.
bkramer added reviewers: alexfh, djasper.
bkramer added a subscriber: Unknown Object (MLST).
djasper added inline comments.Jul 16 2014, 6:39 AM
clang-tidy/google/MemsetZeroLengthCheck.cpp
32–33 ↗(On Diff #11502)

Intuitively, I would have written something like:

unless(hasArgument(1, expr(anyOf(integerLiteral(), characterLiteral())))

Also, I wonder whether we should do this in the callback or inside the callback. In the callback, we could check whether the argument trivially computes to 0 and thereby not only find literal zeros. I am thinking about cases like:

int default_value = 0;
memset(a, 10, default_value);

This is merely a suggestion, though, not sure whether it would lead to false positives.

65 ↗(On Diff #11502)

I generally dislike declaration statements defining more than one variable. Here, at lest make it consisten with RHSString and LHSString.

68 ↗(On Diff #11502)

Early exit?

if (LHSString.empty() || RHSString.empty())
  return;
clang-tidy/google/MemsetZeroLengthCheck.h
21–22 ↗(On Diff #11502)

The sentence doesn't really parse. How about:

This is most likely unintended and the length and value arguments are swapped.

alexfh edited edge metadata.Jul 16 2014, 6:44 AM

Other standard functions may suffer from the same problem, e.g. memchr. I think, it makes sense to handle all of them in the same check.

clang-tidy/google/MemsetZeroLengthCheck.cpp
28 ↗(On Diff #11502)

Ignore literals in the middle argument.

Why?

bkramer updated this revision to Diff 11506.Jul 16 2014, 7:14 AM
bkramer edited edge metadata.
  • Make the checker more aggressive by also looking at values that always evaluate to zero.
  • Remove the restriction on literals in the middle argument. cpplint did this to reduce false positives from testing code, I don't buy that excuse.
  • Cosmetic cleanup.
djasper accepted this revision.Jul 16 2014, 7:37 AM
djasper edited edge metadata.

Looks good.

This revision is now accepted and ready to land.Jul 16 2014, 7:37 AM
bkramer closed this revision.Jul 16 2014, 7:39 AM
bkramer updated this revision to Diff 11514.

Closed by commit rL213155 (authored by d0k).

alexfh added inline comments.Jul 16 2014, 7:40 AM
clang-tidy/google/MemsetZeroLengthCheck.cpp
60 ↗(On Diff #11506)

Maybe we should emit a warning, that this call is a no-op?

64 ↗(On Diff #11506)

I'd say Value1 < 0 is also not when we want to swap the arguments.

bkramer added inline comments.Jul 16 2014, 7:52 AM
clang-tidy/google/MemsetZeroLengthCheck.cpp
60 ↗(On Diff #11506)

Fixed.

64 ↗(On Diff #11506)

That seems like an incredibly weak heuristic. Zero-sized memsets should not occur in real code :(

Revision Contents

PathSize
clang-tools-extra/
trunk/
clang-tidy/
google/
1 line
4 lines
35 lines
85 lines
test/
clang-tidy/
51 lines

Diff 11514

clang-tools-extra/trunk/clang-tidy/google/CMakeLists.txt

set(LLVM_LINK_COMPONENTS support) set(LLVM_LINK_COMPONENTS support)
add_clang_library(clangTidyGoogleModule add_clang_library(clangTidyGoogleModule
AvoidCStyleCastsCheck.cpp AvoidCStyleCastsCheck.cpp
ExplicitConstructorCheck.cpp ExplicitConstructorCheck.cpp
ExplicitMakePairCheck.cpp ExplicitMakePairCheck.cpp
GoogleTidyModule.cpp GoogleTidyModule.cpp
MemsetZeroLengthCheck.cpp
NamedParameterCheck.cpp NamedParameterCheck.cpp
OverloadedUnaryAndCheck.cpp OverloadedUnaryAndCheck.cpp
StringReferenceMemberCheck.cpp StringReferenceMemberCheck.cpp
UnnamedNamespaceInHeaderCheck.cpp UnnamedNamespaceInHeaderCheck.cpp
UsingNamespaceDirectiveCheck.cpp UsingNamespaceDirectiveCheck.cpp
LINK_LIBS LINK_LIBS
clangAST clangAST
clangASTMatchers clangASTMatchers
clangBasic clangBasic
clangLex clangLex
clangTidy clangTidy
) )

clang-tools-extra/trunk/clang-tidy/google/GoogleTidyModule.cpp

//===--- GoogleTidyModule.cpp - clang-tidy --------------------------------===// //===--- GoogleTidyModule.cpp - clang-tidy --------------------------------===//
// //
// The LLVM Compiler Infrastructure // The LLVM Compiler Infrastructure
// //
// This file is distributed under the University of Illinois Open Source // This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details. // License. See LICENSE.TXT for details.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "../ClangTidy.h" #include "../ClangTidy.h"
#include "../ClangTidyModule.h" #include "../ClangTidyModule.h"
#include "../ClangTidyModuleRegistry.h" #include "../ClangTidyModuleRegistry.h"
#include "AvoidCStyleCastsCheck.h" #include "AvoidCStyleCastsCheck.h"
#include "ExplicitConstructorCheck.h" #include "ExplicitConstructorCheck.h"
#include "ExplicitMakePairCheck.h" #include "ExplicitMakePairCheck.h"
#include "MemsetZeroLengthCheck.h"
#include "NamedParameterCheck.h" #include "NamedParameterCheck.h"
#include "OverloadedUnaryAndCheck.h" #include "OverloadedUnaryAndCheck.h"
#include "StringReferenceMemberCheck.h" #include "StringReferenceMemberCheck.h"
#include "UnnamedNamespaceInHeaderCheck.h" #include "UnnamedNamespaceInHeaderCheck.h"
#include "UsingNamespaceDirectiveCheck.h" #include "UsingNamespaceDirectiveCheck.h"
using namespace clang::ast_matchers; using namespace clang::ast_matchers;
Show All 17 Lines CheckFactories.addCheckFactory(
new ClangTidyCheckFactory<ExplicitConstructorCheck>()); new ClangTidyCheckFactory<ExplicitConstructorCheck>());
CheckFactories.addCheckFactory( CheckFactories.addCheckFactory(
"google-runtime-operator", "google-runtime-operator",
new ClangTidyCheckFactory<runtime::OverloadedUnaryAndCheck>()); new ClangTidyCheckFactory<runtime::OverloadedUnaryAndCheck>());
CheckFactories.addCheckFactory( CheckFactories.addCheckFactory(
"google-runtime-member-string-references", "google-runtime-member-string-references",
new ClangTidyCheckFactory<runtime::StringReferenceMemberCheck>()); new ClangTidyCheckFactory<runtime::StringReferenceMemberCheck>());
CheckFactories.addCheckFactory( CheckFactories.addCheckFactory(
"google-runtime-memset",
new ClangTidyCheckFactory<runtime::MemsetZeroLengthCheck>());
CheckFactories.addCheckFactory(
"google-readability-casting", "google-readability-casting",
new ClangTidyCheckFactory<readability::AvoidCStyleCastsCheck>()); new ClangTidyCheckFactory<readability::AvoidCStyleCastsCheck>());
CheckFactories.addCheckFactory( CheckFactories.addCheckFactory(
"google-readability-function", "google-readability-function",
new ClangTidyCheckFactory<readability::NamedParameterCheck>()); new ClangTidyCheckFactory<readability::NamedParameterCheck>());
} }
}; };
Show All 10 Lines

clang-tools-extra/trunk/clang-tidy/google/MemsetZeroLengthCheck.h

//===--- MemsetZeroLengthCheck.h - clang-tidy ---------------------*- C++ -*-===//
//
// The LLVM Compiler Infrastructure
//
// This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
#ifndef LLVM_CLANG_TOOLS_EXTRA_CLANG_TIDY_GOOGLE_MEMSET_ZERO_LENGTH_CHECK_H
#define LLVM_CLANG_TOOLS_EXTRA_CLANG_TIDY_GOOGLE_MEMSET_ZERO_LENGTH_CHECK_H
#include "../ClangTidy.h"
namespace clang {
namespace tidy {
namespace runtime {
/// \brief Finds calls to memset with a literal zero in the length argument.
///
/// This is most likely unintended and the length and value arguments are
/// swapped.
///
/// Corresponding cpplint.py check name: 'runtime/memset'.
class MemsetZeroLengthCheck : public ClangTidyCheck {
public:
void registerMatchers(ast_matchers::MatchFinder *Finder) override;
void check(const ast_matchers::MatchFinder::MatchResult &Result) override;
};
} // namespace runtime
} // namespace tidy
} // namespace clang
#endif // LLVM_CLANG_TOOLS_EXTRA_CLANG_TIDY_GOOGLE_MEMSET_ZERO_LENGTH_CHECK_H

clang-tools-extra/trunk/clang-tidy/google/MemsetZeroLengthCheck.cpp

//===--- MemsetZeroLengthCheck.cpp - clang-tidy -------------------*- C++ -*-===//
//
// The LLVM Compiler Infrastructure
//
// This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
#include "MemsetZeroLengthCheck.h"
#include "clang/ASTMatchers/ASTMatchFinder.h"
#include "clang/ASTMatchers/ASTMatchers.h"
#include "clang/AST/ASTContext.h"
#include "clang/Lex/Lexer.h"
using namespace clang::ast_matchers;
namespace clang {
namespace tidy {
namespace runtime {
void
MemsetZeroLengthCheck::registerMatchers(ast_matchers::MatchFinder *Finder) {
auto InTemplateInstantiation = hasAncestor(
decl(anyOf(recordDecl(ast_matchers::isTemplateInstantiation()),
functionDecl(ast_matchers::isTemplateInstantiation()))));
// Look for memset(x, y, 0) as those is most likely an argument swap.
// TODO: Also handle other standard functions that suffer from the same
// problem, e.g. memchr.
Finder->addMatcher(
callExpr(callee(functionDecl(hasName("::memset"))), argumentCountIs(3),
unless(InTemplateInstantiation)).bind("decl"),
this);
}
/// \brief Get a StringRef representing a SourceRange.
static StringRef getAsString(const MatchFinder::MatchResult &Result,
SourceRange R) {
const SourceManager &SM = *Result.SourceManager;
// Don't even try to resolve macro or include contraptions. Not worth emitting
// a fixit for.
if (R.getBegin().isMacroID() ||
!SM.isWrittenInSameFile(R.getBegin(), R.getEnd()))
return StringRef();
const char *Begin = SM.getCharacterData(R.getBegin());
const char *End = SM.getCharacterData(Lexer::getLocForEndOfToken(
R.getEnd(), 0, SM, Result.Context->getLangOpts()));
return StringRef(Begin, End - Begin);
}
void MemsetZeroLengthCheck::check(const MatchFinder::MatchResult &Result) {
const auto *Call = Result.Nodes.getNodeAs<CallExpr>("decl");
const Expr *Arg1 = Call->getArg(1);
const Expr *Arg2 = Call->getArg(2);
// Try to evaluate the second argument so we can also find values that are not
// just literals. We don't emit a warning if the second argument also
// evaluates to zero.
llvm::APSInt Value1, Value2;
if (!Arg2->EvaluateAsInt(Value2, *Result.Context) || Value2 != 0 ||
(Arg1->EvaluateAsInt(Value1, *Result.Context) && Value1 == 0))
return;
// Emit a warning and fix-its to swap the arguments.
auto D = diag(Call->getLocStart(),
"memset of size zero, potentially swapped arguments");
SourceRange LHSRange = Arg1->getSourceRange();
SourceRange RHSRange = Arg2->getSourceRange();
StringRef RHSString = getAsString(Result, RHSRange);
StringRef LHSString = getAsString(Result, LHSRange);
if (LHSString.empty() || RHSString.empty())
return;
D << FixItHint::CreateReplacement(CharSourceRange::getTokenRange(LHSRange),
RHSString)
<< FixItHint::CreateReplacement(CharSourceRange::getTokenRange(RHSRange),
LHSString);
}
} // namespace runtime
} // namespace tidy
} // namespace clang

clang-tools-extra/trunk/test/clang-tidy/google-memset-zero-length.cpp

// RUN: $(dirname %s)/check_clang_tidy_fix.sh %s google-runtime-memset %t
// REQUIRES: shell
void *memset(void *, int, __SIZE_TYPE__);
namespace std {
using ::memset;
}
template <int i>
void memtmpl() {
memset(0, sizeof(int), i);
memset(0, sizeof(int), 0);
// CHECK-MESSAGES: :[[@LINE-1]]:3: warning: memset of size zero, potentially swapped argument
// CHECK-FIXES: memset(0, 0, sizeof(int));
}
void foo(void *a, int xsize, int ysize) {
memset(a, sizeof(int), 0);
// CHECK-MESSAGES: :[[@LINE-1]]:3: warning: memset of size zero, potentially swapped argument
// CHECK-FIXES: memset(a, 0, sizeof(int));
#define M memset(a, sizeof(int), 0);
M
// CHECK-MESSAGES: :[[@LINE-1]]:3: warning: memset of size zero, potentially swapped argument
// CHECK-FIXES: #define M memset(a, sizeof(int), 0);
::memset(a, xsize *
ysize, 0);
// CHECK-MESSAGES: :[[@LINE-2]]:3: warning: memset of size zero, potentially swapped argument
// CHECK-FIXES: ::memset(a, 0, xsize *
// CHECK-FIXES-NEXT: ysize);
std::memset(a, sizeof(int), 0x00);
// CHECK-MESSAGES: :[[@LINE-1]]:3: warning: memset of size zero, potentially swapped argument
// CHECK-FIXES: std::memset(a, 0x00, sizeof(int));
const int v = 0;
memset(a, sizeof(int), v);
// CHECK-MESSAGES: :[[@LINE-1]]:3: warning: memset of size zero, potentially swapped argument
// CHECK-FIXES: memset(a, v, sizeof(int));
memset(a, sizeof(int), v + v);
// CHECK-MESSAGES: :[[@LINE-1]]:3: warning: memset of size zero, potentially swapped argument
// CHECK-FIXES: memset(a, v + v, sizeof(int));
memset(a, sizeof(int), v + 1);
memset(a, -1, sizeof(int));
memset(a, 0xcd, 1);
memset(a, v, 0);
memtmpl<0>();
}