A clang-tidy check to find uninitialized fields in C++ classes and structs.
Diff Detail
Event Timeline
Minor coding style nits.
clang-tidy/misc/UninitializedFieldCheck.cpp | ||
---|---|---|
32 | No need for curly brackets. | |
35 | No need for curly brackets. | |
63 | No need for curly bracket. | |
69 | No need for curly bracket. | |
73 | No need for curly bracket. | |
80 | No need for curly bracket. | |
94 | 80-column? | |
103 | No need for curly brackets. | |
clang-tidy/misc/UninitializedFieldCheck.h | ||
9 | Perhaps this TODO should be addressed prior to the commit. |
The check would be interesting to some projects, but it's not generally accepted that all fields of structs/ classes need to be initialized in the constructor. They need to be initialized _before they are used_. Thus, it needs to be moved out of the "misc" module which is reserved for more generic checks that are fine for most projects (at least, for LLVM and for projects using Google C++ style).
Also, are you aware of any styles that require initialization of all class fields in the constructor? Would be nice to refer to them in the check description.
I definitely agree that this check is not necessary so should not be on by default. I've worked in a few places where the house style required members to be initialised in constructors. I'm afraid the style-guides were not public though.
I can move this from 'misc' to 'utils' if that makes sense.
The add_new_check.py script won't let me add to 'utils'. I'm not sure where my check should go. Perhaps another category could be added such as 'extra' or 'optional'?
Removed unnecessary {}.
Added doxygen comment for class.
Removed static function used to register single matcher.
clang-tidy/misc/UninitializedFieldCheck.cpp | ||
---|---|---|
14 | #includes should be sorted (e.g. using the llvm-include-order check, clang-tidy -fix should do the trick). | |
24 | Variable names should start with a capital letter. | |
25 | return f->getType()->isPointerType() || f->getType()->isBuiltinType(); | |
41 | nit: Please add trailing period | |
56 | What about fields initialized in the constructor body? | |
70 | In LLVM code, llvm::raw_string_ostream or llvm::raw_svector_ostream are used instead of std::stringstream. | |
82 | ||
94 | We use the same style for messages, as Clang: first letter is lower-case, no trailing period. |
Style-related comments from review addressed.
Fixit text is now an insertion not a replacement.
Once people are happy I would like to move this check into a new category (optional?).
clang-tidy/misc/UninitializedFieldCheck.cpp | ||
---|---|---|
14 | I've applied my understanding of http://llvm.org/docs/CodingStandards.html#include-style. The clang-tidy check you suggested running made no changes to the code. Please let me know if I've misunderstood anything. | |
24 | I'll change this. | |
25 | yes. I will address this. | |
56 | My check does not take that into account. I think it's hard to do in general so I decided to let the user decide to ignore the check and proposed change. I presume that the optimiser is smart enough to do the right thing if a variable is obviously initialized in the constructor body and constructor field initializers. | |
56 | I got confused by comment submission. Comment added. | |
70 | I'm using a string instead. llvm::raw_string_ostream takes a string ref as a constuctor argument and the code is simpler if I just use the string directly. |
clang-tidy/misc/UninitializedFieldCheck.cpp | ||
---|---|---|
14 | The comment related to the version where unordered_set, sstream and iterator were included in this specific order. Now that the last two are gone, there's no issue. | |
24 | I don't know if there was any reason to choose this specific style. Maybe ask Chris Lattner? ;) | |
56 | This decision needs to be documented in the class comment. And it may make sense to look at the number of false positives resulting from specifically this case and estimate how many of those could be avoided by just looking at which fields are assigned inside the constructor body. | |
70 | llvm::raw_string_ostream is preferred for efficiency reasons. Your current version creates temporary strings on each iteration. You could prevent this by appending the two strings separately or by using raw_string_stream. The latter seems like a more elegant solution to me. | |
73 | nit: Capitalization. Trailing period. | |
clang-tidy/misc/UninitializedFieldCheck.h | ||
19 | 80 columns |
Addressed review comments.
Once this is in a decent state I'd like to move it to another check category. It does not belong in 'misc' but I do not want to confuse detailed review by moving it from one location to another. I propose adding an 'optional' checks category for checks which may or may not be desirable depending on in-house style.
This check is a close fit for
https://github.com/isocpp/CppCoreGuidelines/blob/master/CppCoreGuidelines.md#-type6-always-initialize-a-member-variable
The "enforcement" there says:
- Issue a diagnostic for any constructor of a non-trivially-constructible type that does not initialize all member variables. To fix: Write a data member initializer, or mention it in the member initializer list.
- Issue a diagnostic when constructing an object of a trivially constructible type without () or {} to initialize its members. To fix: Add () or {}.
We could then move this check to cppcoreguidelines module.
What's the status of this patch? I'd be interested in picking it up if it is not being worked on.
This patch is stalled. I've got distracted by other things.
@flx Please pick it up and see where you can take it.
Perhaps this TODO should be addressed prior to the commit.