This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
clang-tools-extra/
-
clang-tidy/bugprone/
-
bugprone/
-
SizeofExpressionCheck.cpp
-
test/clang-tidy/checkers/
-
clang-tidy/
-
checkers/
1/4
bugprone-sizeof-expression.cpp

Differential D91543

[clang-tidy] Improving bugprone-sizeof-expr check.
ClosedPublic

Authored by balazske on Nov 16 2020, 7:37 AM.

Download Raw Diff

Details

Reviewers

alexfh
hokein
aaron.ballman
njames93
gsd
martong

Commits

rG47518d6a0aed: [clang-tidy] Improving bugprone-sizeof-expr check.

Summary

Do not warn for "pointer to aggregate" in a sizeof(A) / sizeof(A[0])
expression if A is an array of pointers. This is the usual way of
calculating the array length even if the array is of pointers.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

balazske created this revision.Nov 16 2020, 7:37 AM

Herald added a project: Restricted Project. · View Herald TranscriptNov 16 2020, 7:37 AM

Herald added subscribers: cfe-commits, martong, gamesh411 and 4 others. · View Herald Transcript

balazske requested review of this revision.Nov 16 2020, 7:37 AM

Harbormaster completed remote builds in B78961: Diff 305512.Nov 16 2020, 8:16 AM

Eugene.Zelenko added reviewers: alexfh, hokein, aaron.ballman, njames93.Nov 16 2020, 9:15 AM

Eugene.Zelenko added a project: Restricted Project.

martong added subscribers: gsd, zporky.Nov 17 2020, 1:53 AM

balazske added reviewers: gsd, martong.Nov 17 2020, 1:54 AM

Herald added a subscriber: rnkovacs. · View Herald TranscriptNov 17 2020, 1:54 AM

LGTM aside from a testing request.

clang-tools-extra/test/clang-tidy/checkers/bugprone-sizeof-expression.cpp
315	I think this is missing some test coverage for cases like: sum += sizeof(PtrArray) / sizeof(PtrArray[1]); // Bad array index sum += sizeof(PtrArray) / sizeof(A[0]); // Different array types Also, if you can add a comment to the `sum += sizeof(PtrArray) / sizeof(PtrArray1[0]);` test case about why this passes (same canonical types), that'd be appreciated since the test case is a bit subtle.

This revision is now accepted and ready to land.Nov 17 2020, 5:25 AM

Improving tests.

This checker has multiple weaknesses. There are more cases when the warnings should not appear (probably if the argument of sizeof is a template parameter), or more than one warning is generated for a code construct. The test code could be further improved too (but there are many cases to handle). This fix addresses only a single problematic case.

In D91543#2400051, @balazske wrote:

This checker has multiple weaknesses. There are more cases when the warnings should not appear (probably if the argument of sizeof is a template parameter), or more than one warning is generated for a code construct. The test code could be further improved too (but there are many cases to handle). This fix addresses only a single problematic case.

Sorry about being unclear -- I was intending to ensure we had test coverage for the changes in the patch. Specifically, the ZeroLiteral and ArrayOfSamePointersExpr matchers did not appear to have negative tests showing that we aren't diagnosing that code. I don't expect this patch to actually handle those cases (or for you to be on the hook for the fixes), it's more about documenting expectations.

clang-tools-extra/test/clang-tidy/checkers/bugprone-sizeof-expression.cpp
317	Thanks for the new test case, can you also add one for `array[1]` (with the incorrect index) and add a FIXME to the comment so it's clear that we know we don't handle these cases currently but might like to someday?

Harbormaster completed remote builds in B79131: Diff 305801.Nov 17 2020, 9:32 AM

balazske added inline comments.Nov 18 2020, 8:32 AM

clang-tools-extra/test/clang-tidy/checkers/bugprone-sizeof-expression.cpp
317	The test for `array[1]` is not the same that is inserted on line 245?

LGTM!

clang-tools-extra/test/clang-tidy/checkers/bugprone-sizeof-expression.cpp
317	Weirdly, I didn't see the test cases added around line 245 until this review. Huh, very odd -- but yes, that test covers it nicely.

Adding FIXME comments.

Harbormaster completed remote builds in B79312: Diff 306134.Nov 18 2020, 9:44 AM

Closed by commit rG47518d6a0aed: [clang-tidy] Improving bugprone-sizeof-expr check. (authored by balazske). · Explain WhyNov 19 2020, 1:20 AM

This revision was automatically updated to reflect the committed changes.

balazske added a commit: rG47518d6a0aed: [clang-tidy] Improving bugprone-sizeof-expr check..

Revision Contents

Path

Size

clang-tools-extra/

clang-tidy/

bugprone/

SizeofExpressionCheck.cpp

43 lines

test/

clang-tidy/

checkers/

bugprone-sizeof-expression.cpp

23 lines

Diff 306336

clang-tools-extra/clang-tidy/bugprone/SizeofExpressionCheck.cpp

Show First 20 Lines • Show All 71 Lines • ▼ Show 20 Lines	void SizeofExpressionCheck::storeOptions(ClangTidyOptions::OptionMap &Opts) {
Options.store(Opts, "WarnOnSizeOfIntegerExpression",		Options.store(Opts, "WarnOnSizeOfIntegerExpression",
WarnOnSizeOfIntegerExpression);		WarnOnSizeOfIntegerExpression);
Options.store(Opts, "WarnOnSizeOfThis", WarnOnSizeOfThis);		Options.store(Opts, "WarnOnSizeOfThis", WarnOnSizeOfThis);
Options.store(Opts, "WarnOnSizeOfCompareToConstant",		Options.store(Opts, "WarnOnSizeOfCompareToConstant",
WarnOnSizeOfCompareToConstant);		WarnOnSizeOfCompareToConstant);
}		}

void SizeofExpressionCheck::registerMatchers(MatchFinder *Finder) {		void SizeofExpressionCheck::registerMatchers(MatchFinder *Finder) {
		// FIXME:
		// Some of the checks should not match in template code to avoid false
		// positives if sizeof is applied on template argument.

const auto IntegerExpr = ignoringParenImpCasts(integerLiteral());		const auto IntegerExpr = ignoringParenImpCasts(integerLiteral());
const auto ConstantExpr = expr(ignoringParenImpCasts(		const auto ConstantExpr = expr(ignoringParenImpCasts(
anyOf(integerLiteral(), unaryOperator(hasUnaryOperand(IntegerExpr)),		anyOf(integerLiteral(), unaryOperator(hasUnaryOperand(IntegerExpr)),
binaryOperator(hasLHS(IntegerExpr), hasRHS(IntegerExpr)))));		binaryOperator(hasLHS(IntegerExpr), hasRHS(IntegerExpr)))));
const auto IntegerCallExpr = expr(ignoringParenImpCasts(		const auto IntegerCallExpr = expr(ignoringParenImpCasts(
callExpr(anyOf(hasType(isInteger()), hasType(enumType())),		callExpr(anyOf(hasType(isInteger()), hasType(enumType())),
unless(isInTemplateInstantiation()))));		unless(isInTemplateInstantiation()))));
const auto SizeOfExpr = expr(anyOf(		const auto SizeOfExpr = expr(anyOf(
Show All 39 Lines	void SizeofExpressionCheck::registerMatchers(MatchFinder *Finder) {
Finder->addMatcher(expr(sizeOfExpr(has(ignoringParenImpCasts(expr(		Finder->addMatcher(expr(sizeOfExpr(has(ignoringParenImpCasts(expr(
hasType(qualType(hasCanonicalType(CharPtrType))),		hasType(qualType(hasCanonicalType(CharPtrType))),
ignoringParenImpCasts(declRefExpr(		ignoringParenImpCasts(declRefExpr(
hasDeclaration(ConstStrLiteralDecl))))))))		hasDeclaration(ConstStrLiteralDecl))))))))
.bind("sizeof-charp"),		.bind("sizeof-charp"),
this);		this);

// Detect sizeof(ptr) where ptr points to an aggregate (i.e. sizeof(&S)).		// Detect sizeof(ptr) where ptr points to an aggregate (i.e. sizeof(&S)).
		// Do not find it if RHS of a 'sizeof(arr) / sizeof(arr[0])' expression.
const auto ArrayExpr = expr(ignoringParenImpCasts(		const auto ArrayExpr = expr(ignoringParenImpCasts(
expr(hasType(qualType(hasCanonicalType(arrayType()))))));		expr(hasType(qualType(hasCanonicalType(arrayType()))))));
const auto ArrayCastExpr = expr(anyOf(		const auto ArrayCastExpr = expr(anyOf(
unaryOperator(hasUnaryOperand(ArrayExpr), unless(hasOperatorName("*"))),		unaryOperator(hasUnaryOperand(ArrayExpr), unless(hasOperatorName("*"))),
binaryOperator(hasEitherOperand(ArrayExpr)),		binaryOperator(hasEitherOperand(ArrayExpr)),
castExpr(hasSourceExpression(ArrayExpr))));		castExpr(hasSourceExpression(ArrayExpr))));
const auto PointerToArrayExpr = expr(ignoringParenImpCasts(expr(		const auto PointerToArrayExpr = expr(ignoringParenImpCasts(expr(
hasType(qualType(hasCanonicalType(pointerType(pointee(arrayType()))))))));		hasType(qualType(hasCanonicalType(pointerType(pointee(arrayType()))))))));

const auto StructAddrOfExpr =		const auto StructAddrOfExpr =
unaryOperator(hasOperatorName("&"),		unaryOperator(hasOperatorName("&"),
hasUnaryOperand(ignoringParenImpCasts(expr(		hasUnaryOperand(ignoringParenImpCasts(expr(
hasType(qualType(hasCanonicalType(recordType())))))));		hasType(qualType(hasCanonicalType(recordType())))))));
const auto PointerToStructType = type(hasUnqualifiedDesugaredType(		const auto PointerToStructType = type(hasUnqualifiedDesugaredType(
pointerType(pointee(recordType()))));		pointerType(pointee(recordType()))));
const auto PointerToStructExpr = expr(ignoringParenImpCasts(expr(		const auto PointerToStructExpr = expr(ignoringParenImpCasts(expr(
hasType(qualType(hasCanonicalType(PointerToStructType))),		hasType(qualType(hasCanonicalType(PointerToStructType))),
unless(cxxThisExpr()))));		unless(cxxThisExpr()))));

Finder->addMatcher(		const auto ArrayOfPointersExpr = expr(ignoringParenImpCasts(expr(hasType(
expr(anyOf(sizeOfExpr(has(expr(ignoringParenImpCasts(		qualType(hasCanonicalType(arrayType(hasElementType(pointerType()))
anyOf(ArrayCastExpr, PointerToArrayExpr, StructAddrOfExpr,		.bind("type-of-array-of-pointers")))))));
PointerToStructExpr))))),		const auto ArrayOfSamePointersExpr =
sizeOfExpr(has(PointerToStructType))))		expr(ignoringParenImpCasts(expr(hasType(qualType(hasCanonicalType(
		arrayType(equalsBoundNode("type-of-array-of-pointers"))))))));
		const auto ZeroLiteral =
		expr(ignoringParenImpCasts(integerLiteral(equals(0))));
		const auto ArrayOfSamePointersZeroSubscriptExpr =
		expr(ignoringParenImpCasts(arraySubscriptExpr(
		hasBase(ArrayOfSamePointersExpr), hasIndex(ZeroLiteral))));
		const auto ArrayLengthExprDenom =
		expr(hasParent(expr(ignoringParenImpCasts(
		binaryOperator(hasOperatorName("/"),
		hasLHS(expr(ignoringParenImpCasts(expr(
		sizeOfExpr(has(ArrayOfPointersExpr)))))))))),
		sizeOfExpr(has(ArrayOfSamePointersZeroSubscriptExpr)));

		Finder->addMatcher(expr(anyOf(sizeOfExpr(has(expr(ignoringParenImpCasts(anyOf(
		ArrayCastExpr, PointerToArrayExpr,
		StructAddrOfExpr, PointerToStructExpr))))),
		sizeOfExpr(has(PointerToStructType))),
		unless(ArrayLengthExprDenom))
.bind("sizeof-pointer-to-aggregate"),		.bind("sizeof-pointer-to-aggregate"),
this);		this);

// Detect expression like: sizeof(epxr) <= k for a suspicious constant 'k'.		// Detect expression like: sizeof(epxr) <= k for a suspicious constant 'k'.
if (WarnOnSizeOfCompareToConstant) {		if (WarnOnSizeOfCompareToConstant) {
Finder->addMatcher(		Finder->addMatcher(
binaryOperator(matchers::isRelationalOperator(),		binaryOperator(matchers::isRelationalOperator(),
hasOperands(ignoringParenImpCasts(SizeOfExpr),		hasOperands(ignoringParenImpCasts(SizeOfExpr),
ignoringParenImpCasts(anyOf(		ignoringParenImpCasts(anyOf(
integerLiteral(equals(0)),		integerLiteral(equals(0)),
integerLiteral(isBiggerThan(0x80000))))))		integerLiteral(isBiggerThan(0x80000))))))
.bind("sizeof-compare-constant"),		.bind("sizeof-compare-constant"),
this);		this);
}		}

// Detect expression like: sizeof(expr, expr); most likely an error.		// Detect expression like: sizeof(expr, expr); most likely an error.
Finder->addMatcher(expr(sizeOfExpr(has(expr(ignoringParenImpCasts(		Finder->addMatcher(expr(sizeOfExpr(has(expr(ignoringParenImpCasts(
binaryOperator(hasOperatorName(",")))))))		binaryOperator(hasOperatorName(",")))))))
.bind("sizeof-comma-expr"),		.bind("sizeof-comma-expr"),
this);		this);

// Detect sizeof(...) /sizeof(...));		// Detect sizeof(...) /sizeof(...));
		// FIXME:
		// Re-evaluate what cases to handle by the checker.
		// Probably any sizeof(A)/sizeof(B) should be error if
		// 'A' is not an array (type) and 'B' the (type of the) first element of it.
		// Except if 'A' and 'B' are non-pointers, then use the existing size division
		// rule.
const auto ElemType =		const auto ElemType =
arrayType(hasElementType(recordType().bind("elem-type")));		arrayType(hasElementType(recordType().bind("elem-type")));
const auto ElemPtrType = pointerType(pointee(type().bind("elem-ptr-type")));		const auto ElemPtrType = pointerType(pointee(type().bind("elem-ptr-type")));
const auto NumType = qualType(hasCanonicalType(		const auto NumType = qualType(hasCanonicalType(
type(anyOf(ElemType, ElemPtrType, type())).bind("num-type")));		type(anyOf(ElemType, ElemPtrType, type())).bind("num-type")));
const auto DenomType = qualType(hasCanonicalType(type().bind("denom-type")));		const auto DenomType = qualType(hasCanonicalType(type().bind("denom-type")));

Finder->addMatcher(		Finder->addMatcher(
▲ Show 20 Lines • Show All 153 Lines • Show Last 20 Lines

clang-tools-extra/test/clang-tidy/checkers/bugprone-sizeof-expression.cpp

Show First 20 Lines • Show All 181 Lines • ▼ Show 20 Lines	int Test4(const char A[10]) {
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(char*)'		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(char*)'
sum += sizeof(kDEF);		sum += sizeof(kDEF);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(char*)'		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(char*)'
return sum;		return sum;
}		}

int Test5() {		int Test5() {
typedef int Array10[10];		typedef int Array10[10];
		typedef C ArrayC[10];

struct MyStruct {		struct MyStruct {
Array10 arr;		Array10 arr;
Array10* ptr;		Array10* ptr;
};		};
typedef const MyStruct TMyStruct;		typedef const MyStruct TMyStruct;
typedef const MyStruct *PMyStruct;		typedef const MyStruct *PMyStruct;
typedef TMyStruct *PMyStruct2;		typedef TMyStruct *PMyStruct2;

static TMyStruct kGlocalMyStruct = {};		static TMyStruct kGlocalMyStruct = {};
static TMyStruct volatile * kGlocalMyStructPtr = &kGlocalMyStruct;		static TMyStruct volatile * kGlocalMyStructPtr = &kGlocalMyStruct;

MyStruct S;		MyStruct S;
PMyStruct PS;		PMyStruct PS;
PMyStruct2 PS2;		PMyStruct2 PS2;
Array10 A10;		Array10 A10;
		C *PtrArray[10];
		C *PC;

int sum = 0;		int sum = 0;
sum += sizeof(&S.arr);		sum += sizeof(&S.arr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(&kGlocalMyStruct.arr);		sum += sizeof(&kGlocalMyStruct.arr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(&kGlocalMyStructPtr->arr);		sum += sizeof(&kGlocalMyStructPtr->arr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
Show All 20 Lines	int Test5() {
sum += sizeof(PMyStruct);		sum += sizeof(PMyStruct);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(PS);		sum += sizeof(PS);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(PS2);		sum += sizeof(PS2);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(&A10);		sum += sizeof(&A10);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
		sum += sizeof(PtrArray) / sizeof(PtrArray[1]);
		// CHECK-MESSAGES: :[[@LINE-1]]:29: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
		sum += sizeof(A10) / sizeof(PtrArray[0]);
		// CHECK-MESSAGES: :[[@LINE-1]]:24: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
		sum += sizeof(PC) / sizeof(PtrArray[0]);
		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
		// CHECK-MESSAGES: :[[@LINE-2]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T)/sizeof(T)'
		// CHECK-MESSAGES: :[[@LINE-3]]:23: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
		sum += sizeof(ArrayC) / sizeof(PtrArray[0]);
		// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(...)/sizeof(...)'; numerator is not a multiple of denominator
		// CHECK-MESSAGES: :[[@LINE-2]]:27: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate

return sum;		return sum;
}		}

int Test6() {		int Test6() {
int sum = 0;		int sum = 0;

struct S A = AsStruct(), B = AsStruct();		struct S A = AsStruct(), B = AsStruct();
Show All 21 Lines	int Test6() {

return sum;		return sum;
}		}

int ValidExpressions() {		int ValidExpressions() {
int A[] = {1, 2, 3, 4};		int A[] = {1, 2, 3, 4};
static const char str[] = "hello";		static const char str[] = "hello";
static const char* ptr[] { "aaa", "bbb", "ccc" };		static const char* ptr[] { "aaa", "bbb", "ccc" };
		typedef C *CA10[10];
		C *PtrArray[10];
		CA10 PtrArray1;

int sum = 0;		int sum = 0;
if (sizeof(A) < 10)		if (sizeof(A) < 10)
sum += sizeof(A);		sum += sizeof(A);
sum += sizeof(int);		sum += sizeof(int);
sum += sizeof(AsStruct());		sum += sizeof(AsStruct());
sum += sizeof(M{}.AsStruct());		sum += sizeof(M{}.AsStruct());
sum += sizeof(A[sizeof(A) / sizeof(int)]);		sum += sizeof(A[sizeof(A) / sizeof(int)]);
sum += sizeof(&A[sizeof(A) / sizeof(int)]);		sum += sizeof(&A[sizeof(A) / sizeof(int)]);
sum += sizeof(sizeof(0)); // Special case: sizeof size_t.		sum += sizeof(sizeof(0)); // Special case: sizeof size_t.
sum += sizeof(void*);		sum += sizeof(void*);
sum += sizeof(void const *);		sum += sizeof(void const *);
sum += sizeof(void const *) / 4;		sum += sizeof(void const *) / 4;
sum += sizeof(str);		sum += sizeof(str);
sum += sizeof(str) / sizeof(char);		sum += sizeof(str) / sizeof(char);
sum += sizeof(str) / sizeof(str[0]);		sum += sizeof(str) / sizeof(str[0]);
sum += sizeof(ptr) / sizeof(ptr[0]);		sum += sizeof(ptr) / sizeof(ptr[0]);
sum += sizeof(ptr) / sizeof(*(ptr));		sum += sizeof(ptr) / sizeof(*(ptr));
		sum += sizeof(PtrArray) / sizeof(PtrArray[0]);
		// Canonical type of PtrArray1 is same as PtrArray.
		aaron.ballmanUnsubmitted Not Done Reply Inline Actions I think this is missing some test coverage for cases like: sum += sizeof(PtrArray) / sizeof(PtrArray[1]); // Bad array index sum += sizeof(PtrArray) / sizeof(A[0]); // Different array types Also, if you can add a comment to the `sum += sizeof(PtrArray) / sizeof(PtrArray1[0]);` test case about why this passes (same canonical types), that'd be appreciated since the test case is a bit subtle. aaron.ballman: I think this is missing some test coverage for cases like: ``` sum += sizeof(PtrArray) / sizeof…
		sum = sizeof(PtrArray) / sizeof(PtrArray1[0]);
		// There is no warning for 'sizeof(T*)/sizeof(Q)' case.
		aaron.ballmanUnsubmitted Not Done Reply Inline Actions Thanks for the new test case, can you also add one for `array[1]` (with the incorrect index) and add a FIXME to the comment so it's clear that we know we don't handle these cases currently but might like to someday? aaron.ballman: Thanks for the new test case, can you also add one for `array[1]` (with the incorrect index)…
		balazskeAuthorUnsubmitted Done Reply Inline Actions The test for `array[1]` is not the same that is inserted on line 245? balazske: The test for `array[1]` is not the same that is inserted on line 245?
		aaron.ballmanUnsubmitted Not Done Reply Inline Actions Weirdly, I didn't see the test cases added around line 245 until this review. Huh, very odd -- but yes, that test covers it nicely. aaron.ballman: Weirdly, I didn't see the test cases added around line 245 until this review. Huh, very odd…
		sum += sizeof(PtrArray) / sizeof(A[0]);
return sum;		return sum;
}		}