This is an archive of the discontinued LLVM Phabricator instance.

Differential D148461

[clang-tidy] Support C++17/20 in bugprone-exception-escape
AbandonedPublic

Authored by PiotrZSL on Apr 16 2023, 3:37 AM.

Details

Reviewers
njames93
carlosgalvezp
isuckatcs
Summary

Added support for C++17 or later in tests
Pointers to member functions are now handled correctly in C++20

Diff Detail

Event Timeline

PiotrZSL created this revision.Apr 16 2023, 3:37 AM
Herald added a project: Restricted Project. · View Herald TranscriptApr 16 2023, 3:37 AM
Herald added a subscriber: xazax.hun. · View Herald Transcript
PiotrZSL requested review of this revision.Apr 16 2023, 3:37 AM
Herald added a project: Restricted Project. · View Herald TranscriptApr 16 2023, 3:37 AM
Herald added a subscriber: cfe-commits. · View Herald Transcript
Harbormaster completed remote builds in B225912: Diff 513985.Apr 16 2023, 4:08 AM
xazax.hun added a reviewer: isuckatcs.Apr 16 2023, 11:42 AM
isuckatcs added inline comments.Apr 16 2023, 1:13 PM
clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
164–166

Are you sure noexcept is stored in the type? The test case you modified throw_noexcept_catch_regular() tests this scenario and in that case the types seem to be the same even though one of the is noexcept an the other is not.

If the FIXME is valid the proper way would be to implement it in this patch.

clang-tools-extra/test/clang-tidy/checkers/bugprone/exception-escape.cpp
414

The name of the function suggests that we throw a noexcept function pointer and catch a non-noexcept one. Please don't change it.

PiotrZSL added inline comments.Apr 16 2023, 2:17 PM
clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
164–166

Yes I'm sure.
C++11 - no warning
C++14 - no warning
C++17 - warning
Looks like since C++17 noexcept is part of type.
Initially I wanted only to enable tests under C++17/20.
That's why "FIXME". I will look into this.

clang-tools-extra/test/clang-tidy/checkers/bugprone/exception-escape.cpp
414

Ack.

PiotrZSL planned changes to this revision.Apr 23 2023, 1:45 PM

TODO: Fix function pointer compare

PiotrZSL updated this revision to Diff 518356.Apr 30 2023, 2:22 PM
PiotrZSL marked 2 inline comments as done.

Update, added support for comparing function pointers without
exception specification.

PiotrZSL updated this revision to Diff 518357.Apr 30 2023, 2:23 PM

Remove unused include

Harbormaster completed remote builds in B229161: Diff 518357.Apr 30 2023, 2:34 PM
PiotrZSL added a comment.May 22 2023, 12:06 PM

Ping

isuckatcs added a comment.May 22 2023, 4:12 PM

Please cover the changes in as much test cases as possible.

clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
152

The naming suggests that we check for equality, however in reality we check for convertability here. For example if one of the prototypes has exception spec and the other doesn't have one, this can still return true.

Also instead of manually matching everything, you could take a look at ODRHash or StructuralEquivalenceContext. ODRHash for example doesn't take the FunctionProtoType into account when it generates the hashes AFAIK, so maybe you could use it to avoid these manual checks. I don't know if StructuralEquivalenceContext uses it or not, but you might consider taking a look at that too.

Maybe you can also consider pasting the appropriate section of the standard here, so that whenever someone reads the code they'll understand why are we doing what we're doing.

And please cover this function in positive and negative test cases too.

164–166

I did some investigation regarding this and if I dump the type of void no_throw() noexcept both with -std=c++11 and -std=c++17 I get the same result.

FunctionProtoType 'void (void) noexcept' cdecl
`-BuiltinType 'void'

I agree however that function pointer conversion was not properly implemented.

171–172

I think we want to call this function for member function pointers too.

The[[ https://github.com/cplusplus/draft/releases | C++ N4917 draft ]] says the following:

7.3.14 Function pointer conversions [conv.fctptr]
A prvalue of type “pointer to noexcept function” can be converted to a prvalue of type “pointer to function”.
The result is a pointer to the function. A prvalue of type “pointer to member of type noexcept function” can
be converted to a prvalue of type “pointer to member of type function”. The result designates the member
function.
281

Please cover this line with both positive and negative test cases.

Also upon looking up both N4849 (C++ 20 draft) and N4917 (C++ 23 draft), they both say for qualification conversion that

each P_i is ... pointer to member of class C_i of type, ...

Why are we not allowing them if the standard is at least C++ 20?

PiotrZSL marked 2 inline comments as done.May 23 2023, 11:41 AM
PiotrZSL updated this revision to Diff 524817.May 23 2023, 11:41 AM
PiotrZSL edited the summary of this revision. (Show Details)

Update

PiotrZSL marked an inline comment as done.May 23 2023, 11:41 AM
PiotrZSL updated this revision to Diff 524820.May 23 2023, 11:42 AM

Update

Harbormaster completed remote builds in B233941: Diff 524820.May 23 2023, 1:05 PM
PiotrZSL added a comment.Jun 7 2023, 1:05 AM

Ping

isuckatcs added inline comments.Jun 7 2023, 2:04 AM
clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
281

Please resolve this thread.

PiotrZSL updated this revision to Diff 530306.Jun 11 2023, 9:40 AM
PiotrZSL marked 2 inline comments as done.

Add one test.

clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
281

Positive case is tested by throw_basefn_catch_derivedfn test and throw_derivedfn_catch_basefn.
Negative is covered by throw_basefn_catch_basefn.

For members there are tests throw_basem_catch_basem, throw_basem_catch_derivedm, throw_derivedm_catch_basem that also covers this correctly.

Tested this with GCC, and behavior is proper and independent to C++ standard.

Harbormaster completed remote builds in B238034: Diff 530306.Jun 11 2023, 9:54 AM
isuckatcs added inline comments.Jun 11 2023, 12:25 PM
clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
281

Tested this with GCC, and behavior is proper and independent to C++ standard.

I don't know how to deal with this tbh. In a static analyzer we usually want to consider what the standard says and not what a specific compiler implementation does, as the compiler can still be buggy, lack the proper support for the standard, etc.

Maybe we can add a FIXME here that explains, why this check is here and that it's the opposite of what the standard says. Then later if it causes issues, it will be easy to see why that happens.

@xazax.hun do you have a prefered method to deal with these situations in the analyzer? If there is one, we could also try it here.

PiotrZSL added a comment.Jul 1 2023, 9:14 AM

Ping

PiotrZSL updated this revision to Diff 551760.Aug 19 2023, 8:27 AM

Rebase + Ping

Harbormaster completed remote builds in B253661: Diff 551760.Aug 19 2023, 8:37 AM
isuckatcs added inline comments.Aug 19 2023, 10:24 AM
clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
281

@PiotrZSL this is still unanswered. The standard says these are allowed, so according to the standard we model something wrong here, unless I'm misunderstanding something.

PiotrZSL marked 2 inline comments as done.Aug 19 2023, 11:05 AM
PiotrZSL added inline comments.
clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
281

If you talk about about '7.3.5 Qualification conversions' then this is only about cv conversion, not about overall conversion from base to derived type, and this is verify by SatisfiesCVRules lambda.

Without this line, check fails to detect issue in throw_basefn_catch_derivedfn function under C++20.

Other interesting thing is that even this code:

try {
  throw &baseMember::foo;
} catch(const void(baseMember::*)()) {
}

Causes exception not to be catch, but if you remove const then it's catch.
Same behavior is in GCC. I do not sure if 7.3.5 even apply to exceptions, and personally I do not care what standard says, but I care how compilers work.

Right now both GCC and Clang in C++20 and C++17 work in same way, and this `if` should be here so check would be align with how compiler works.
There is
This is anyway a insignificant scenario that most probably wont be used in field.

PiotrZSL updated this revision to Diff 551776.Aug 19 2023, 11:05 AM
PiotrZSL marked an inline comment as done.

Add throw_basefn_catch_const_basefn test

Harbormaster completed remote builds in B253674: Diff 551776.Aug 19 2023, 11:26 AM
isuckatcs added inline comments.Aug 19 2023, 12:03 PM
clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp
281

I do not sure if 7.3.5 (7.3.5 Qualification conversions) even apply to exceptions

[N4917 Post-Summer 2022 C++ working draft] 14.4 Handling an exception
[...]

  • the handler is of type cv T or const T& where T is a pointer or pointer-to-member type and E is a pointer or pointer-to-member type that can be converted to T by one or more of
    • a standard pointer conversion (7.3.12) not involving conversions to pointers to private or protected or ambiguous classes
    • a function pointer conversion (7.3.14)
    • a qualification conversion (7.3.6), or <-- here it is

[...]

I do not care what standard says, but I care how compilers work.

Then how would you reason about this snippet? MSVC detects that the exception won't be caught and reports a warning, while gcc and clang fails to do it. In this case different compilers work differently. To be fair, the exception should be caught, since the thrown object is convertible to the handler (which is probably why gcc and clang don't report a warning).

Without this line, check fails to detect issue in throw_basefn_catch_derivedfn function under C++20.

Then do a proper investigation why that happens instead of adding random lines, which contradict what should happen, so that the test can pass. Probably the condition is wrong here and we should return false if !isSameP_i even if the standard is C++20 except for some cases with arrays. Look up the C++17 and the C++20 standards and compare them.

PiotrZSL abandoned this revision.Aug 19 2023, 12:09 PM

I do not plan to work on this check anymore, sorry for a wasted time.

Revision Contents

PathSize
clang-tools-extra/
clang-tidy/
utils/
60 lines
test/
clang-tidy/
checkers/
bugprone/
25 lines
52 lines

Diff 551776

clang-tools-extra/clang-tidy/utils/ExceptionAnalyzer.cpp

//===--- ExceptionAnalyzer.cpp - clang-tidy -------------------------------===// //===--- ExceptionAnalyzer.cpp - clang-tidy -------------------------------===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "ExceptionAnalyzer.h" #include "ExceptionAnalyzer.h"
#include <clang/AST/ODRHash.h>
namespace clang::tidy::utils { namespace clang::tidy::utils {
void ExceptionAnalyzer::ExceptionInfo::registerException( void ExceptionAnalyzer::ExceptionInfo::registerException(
const Type *ExceptionType) { const Type *ExceptionType) {
assert(ExceptionType != nullptr && "Only valid types are accepted"); assert(ExceptionType != nullptr && "Only valid types are accepted");
Behaviour = State::Throwing; Behaviour = State::Throwing;
ThrownExceptions.insert(ExceptionType); ThrownExceptions.insert(ExceptionType);
▲ Show 20 LinesShow All 125 Lines▼ Show 20 Lines if (RD->isCompleteDefinition() &&
To->getPointeeType().getTypePtr())) { To->getPointeeType().getTypePtr())) {
return true; return true;
} }
} }
return false; return false;
} }
bool isFunctionPointerConvertible(QualType From, QualType To) { bool isFunctionPointerConvertible(QualType From, QualType To) {
isuckatcsUnsubmitted
Done
ReplyInline Actions

The naming suggests that we check for equality, however in reality we check for convertability here. For example if one of the prototypes has exception spec and the other doesn't have one, this can still return true.

Also instead of manually matching everything, you could take a look at ODRHash or StructuralEquivalenceContext. ODRHash for example doesn't take the FunctionProtoType into account when it generates the hashes AFAIK, so maybe you could use it to avoid these manual checks. I don't know if StructuralEquivalenceContext uses it or not, but you might consider taking a look at that too.

Maybe you can also consider pasting the appropriate section of the standard here, so that whenever someone reads the code they'll understand why are we doing what we're doing.

And please cover this function in positive and negative test cases too.

isuckatcs: The naming suggests that we check for equality, however in reality we check for convertability…
if (!From->isFunctionPointerType() && !From->isFunctionType() && ODRHash FromHash, ToHash;
!From->isMemberFunctionPointerType())
return false;
if (!To->isFunctionPointerType() && !To->isMemberFunctionPointerType())
return false;
if (To->isFunctionPointerType()) {
if (From->isFunctionPointerType()) if (From->isFunctionPointerType())
return To->getPointeeType() == From->getPointeeType(); FromHash.AddType(From->getPointeeType().getTypePtr());
else if (From->isFunctionType())
if (From->isFunctionType()) FromHash.AddType(From->castAs<FunctionType>());
return To->getPointeeType() == From; else if (From->isMemberFunctionPointerType())
FromHash.AddType(From->castAs<MemberPointerType>());
else
return false; return false;
}
if (To->isMemberFunctionPointerType()) { if (To->isFunctionPointerType())
if (!From->isMemberFunctionPointerType()) ToHash.AddType(To->getPointeeType().getTypePtr());
else if (From->isFunctionType())
isuckatcsUnsubmitted
Done
ReplyInline Actions

Are you sure noexcept is stored in the type? The test case you modified throw_noexcept_catch_regular() tests this scenario and in that case the types seem to be the same even though one of the is noexcept an the other is not.

If the FIXME is valid the proper way would be to implement it in this patch.

isuckatcs: Are you sure `noexcept` is stored in the type? The test case you modified…
PiotrZSLAuthorUnsubmitted
Done
ReplyInline Actions

Yes I'm sure.
C++11 - no warning
C++14 - no warning
C++17 - warning
Looks like since C++17 noexcept is part of type.
Initially I wanted only to enable tests under C++17/20.
That's why "FIXME". I will look into this.

PiotrZSL: Yes I'm sure. C++11 - no warning C++14 - no warning C++17 - warning Looks like since C++17…
isuckatcsUnsubmitted
Done
ReplyInline Actions

I did some investigation regarding this and if I dump the type of void no_throw() noexcept both with -std=c++11 and -std=c++17 I get the same result.

FunctionProtoType 'void (void) noexcept' cdecl
`-BuiltinType 'void'

I agree however that function pointer conversion was not properly implemented.

isuckatcs: I did some investigation regarding this and if I dump the type of `void no_throw() noexcept`…
ToHash.AddType(To->castAs<FunctionType>());
else if (From->isMemberFunctionPointerType())
ToHash.AddType(To->castAs<MemberPointerType>());
else
return false; return false;
isuckatcsUnsubmitted
Done
ReplyInline Actions

I think we want to call this function for member function pointers too.

The[[ https://github.com/cplusplus/draft/releases | C++ N4917 draft ]] says the following:

7.3.14 Function pointer conversions [conv.fctptr]
A prvalue of type “pointer to noexcept function” can be converted to a prvalue of type “pointer to function”.
The result is a pointer to the function. A prvalue of type “pointer to member of type noexcept function” can
be converted to a prvalue of type “pointer to member of type function”. The result designates the member
function.
isuckatcs: I think we want to call this function for member function pointers too. The[[ https://github.
const auto *FromMember = cast<MemberPointerType>(From); return FromHash.CalculateHash() == ToHash.CalculateHash();
const auto *ToMember = cast<MemberPointerType>(To);
// Note: converting Derived::* to Base::* is a different kind of conversion,
// called Pointer-to-member conversion.
return FromMember->getClass() == ToMember->getClass() &&
FromMember->getPointeeType() == ToMember->getPointeeType();
}
return false;
} }
// Checks if From is qualification convertible to To based on the current // Checks if From is qualification convertible to To based on the current
// LangOpts. If From is any array, we perform the array to pointer conversion // LangOpts. If From is any array, we perform the array to pointer conversion
// first. The function only performs checks based on C++ rules, which can differ // first. The function only performs checks based on C++ rules, which can differ
// from the C rules. // from the C rules.
// //
// The function should only be called in C++ mode. // The function should only be called in C++ mode.
▲ Show 20 LinesShow All 82 Lines▼ Show 20 Lines while (isValidP_i(From) && isValidP_i(To)) {
// Remove every sugar. // Remove every sugar.
From = From.getCanonicalType(); From = From.getCanonicalType();
To = To.getCanonicalType(); To = To.getCanonicalType();
if (!SatisfiesCVRules(From, To)) if (!SatisfiesCVRules(From, To))
return false; return false;
if (!isSameP_i(From, To)) { if (!isSameP_i(From, To)) {
if (LangOpts.CPlusPlus20) { if (!LangOpts.CPlusPlus20)
return false;
if (From->isConstantArrayType() && !To->isIncompleteArrayType()) if (From->isConstantArrayType() && !To->isIncompleteArrayType())
return false; return false;
if (From->isIncompleteArrayType() && !To->isIncompleteArrayType()) if (From->isIncompleteArrayType() && !To->isIncompleteArrayType())
return false; return false;
} else { if (From->isMemberPointerType() || To->isMemberPointerType())
isuckatcsUnsubmitted
Done
ReplyInline Actions

Please cover this line with both positive and negative test cases.

Also upon looking up both N4849 (C++ 20 draft) and N4917 (C++ 23 draft), they both say for qualification conversion that

each P_i is ... pointer to member of class C_i of type, ...

Why are we not allowing them if the standard is at least C++ 20?

isuckatcs: Please cover this line with both positive and negative test cases. Also upon looking up both…
isuckatcsUnsubmitted
Done
ReplyInline Actions

Please resolve this thread.

isuckatcs: Please resolve this thread.
PiotrZSLAuthorUnsubmitted
Done
ReplyInline Actions

Positive case is tested by throw_basefn_catch_derivedfn test and throw_derivedfn_catch_basefn.
Negative is covered by throw_basefn_catch_basefn.

For members there are tests throw_basem_catch_basem, throw_basem_catch_derivedm, throw_derivedm_catch_basem that also covers this correctly.

Tested this with GCC, and behavior is proper and independent to C++ standard.

PiotrZSL: Positive case is tested by throw_basefn_catch_derivedfn test and throw_derivedfn_catch_basefn.
isuckatcsUnsubmitted
Done
ReplyInline Actions

Tested this with GCC, and behavior is proper and independent to C++ standard.

I don't know how to deal with this tbh. In a static analyzer we usually want to consider what the standard says and not what a specific compiler implementation does, as the compiler can still be buggy, lack the proper support for the standard, etc.

Maybe we can add a FIXME here that explains, why this check is here and that it's the opposite of what the standard says. Then later if it causes issues, it will be easy to see why that happens.

@xazax.hun do you have a prefered method to deal with these situations in the analyzer? If there is one, we could also try it here.

isuckatcs: > Tested this with GCC, and behavior is proper and independent to C++ standard. I don't know…
isuckatcsUnsubmitted
Done
ReplyInline Actions

@PiotrZSL this is still unanswered. The standard says these are allowed, so according to the standard we model something wrong here, unless I'm misunderstanding something.

isuckatcs: @PiotrZSL this is still unanswered. The standard says these are allowed, so according to the…
PiotrZSLAuthorUnsubmitted
Done
ReplyInline Actions

If you talk about about '7.3.5 Qualification conversions' then this is only about cv conversion, not about overall conversion from base to derived type, and this is verify by SatisfiesCVRules lambda.

Without this line, check fails to detect issue in throw_basefn_catch_derivedfn function under C++20.

Other interesting thing is that even this code:

try {
  throw &baseMember::foo;
} catch(const void(baseMember::*)()) {
}

Causes exception not to be catch, but if you remove const then it's catch.
Same behavior is in GCC. I do not sure if 7.3.5 even apply to exceptions, and personally I do not care what standard says, but I care how compilers work.

Right now both GCC and Clang in C++20 and C++17 work in same way, and this `if` should be here so check would be align with how compiler works.
There is
This is anyway a insignificant scenario that most probably wont be used in field.

PiotrZSL: If you talk about about '7.3.5 Qualification conversions' then this is only about cv conversion…
isuckatcsUnsubmitted
Not Done
ReplyInline Actions

I do not sure if 7.3.5 (7.3.5 Qualification conversions) even apply to exceptions

[N4917 Post-Summer 2022 C++ working draft] 14.4 Handling an exception
[...]

  • the handler is of type cv T or const T& where T is a pointer or pointer-to-member type and E is a pointer or pointer-to-member type that can be converted to T by one or more of
    • a standard pointer conversion (7.3.12) not involving conversions to pointers to private or protected or ambiguous classes
    • a function pointer conversion (7.3.14)
    • a qualification conversion (7.3.6), or <-- here it is

[...]

I do not care what standard says, but I care how compilers work.

Then how would you reason about this snippet? MSVC detects that the exception won't be caught and reports a warning, while gcc and clang fails to do it. In this case different compilers work differently. To be fair, the exception should be caught, since the thrown object is convertible to the handler (which is probably why gcc and clang don't report a warning).

Without this line, check fails to detect issue in throw_basefn_catch_derivedfn function under C++20.

Then do a proper investigation why that happens instead of adding random lines, which contradict what should happen, so that the test can pass. Probably the condition is wrong here and we should return false if !isSameP_i even if the standard is C++20 except for some cases with arrays. Look up the C++17 and the C++20 standards and compare them.

isuckatcs: > I do not sure if 7.3.5 (7.3.5 Qualification conversions) even apply to exceptions > [N4917…
return false; return false;
} }
}
++I; ++I;
std::optional<QualType> FromPointeeOrElem = std::optional<QualType> FromPointeeOrElem =
getPointeeOrArrayElementQualType(From); getPointeeOrArrayElementQualType(From);
std::optional<QualType> ToPointeeOrElem = std::optional<QualType> ToPointeeOrElem =
getPointeeOrArrayElementQualType(To); getPointeeOrArrayElementQualType(To);
assert(FromPointeeOrElem && assert(FromPointeeOrElem &&
▲ Show 20 LinesShow All 333 LinesShow Last 20 Lines

clang-tools-extra/test/clang-tidy/checkers/bugprone/exception-escape-throw.cpp

Show All 23 Lines
struct super_throws { struct super_throws {
super_throws() throw(int) { throw 42; } super_throws() throw(int) { throw 42; }
}; };
struct sub_throws : super_throws { struct sub_throws : super_throws {
sub_throws() throw() : super_throws() {} sub_throws() throw() : super_throws() {}
// CHECK-MESSAGES: :[[@LINE-1]]:3: warning: an exception may be thrown in function 'sub_throws' which should not throw exceptions // CHECK-MESSAGES: :[[@LINE-1]]:3: warning: an exception may be thrown in function 'sub_throws' which should not throw exceptions
}; };
namespace PR55143 { namespace PR40583 {
struct test_explicit_throw {
test_explicit_throw() throw(int) { throw 42; }
test_explicit_throw(const test_explicit_throw&) throw(int) { throw 42; }
test_explicit_throw(test_explicit_throw&&) throw(int) { throw 42; }
test_explicit_throw& operator=(const test_explicit_throw&) throw(int) { throw 42; }
test_explicit_throw& operator=(test_explicit_throw&&) throw(int) { throw 42; }
~test_explicit_throw() throw(int) { throw 42; }
};
struct test_implicit_throw {
test_implicit_throw() { throw 42; }
test_implicit_throw(const test_implicit_throw&) { throw 42; }
test_implicit_throw(test_implicit_throw&&) { throw 42; }
// CHECK-MESSAGES: :[[@LINE-1]]:5: warning: an exception may be thrown in function 'test_implicit_throw' which should not throw exceptions
test_implicit_throw& operator=(const test_implicit_throw&) { throw 42; }
test_implicit_throw& operator=(test_implicit_throw&&) { throw 42; }
// CHECK-MESSAGES: :[[@LINE-1]]:26: warning: an exception may be thrown in function 'operator=' which should not throw exceptions
~test_implicit_throw() { throw 42; }
// CHECK-MESSAGES: :[[@LINE-1]]:5: warning: an exception may be thrown in function '~test_implicit_throw' which should not throw exceptions
};
}}

clang-tools-extra/test/clang-tidy/checkers/bugprone/exception-escape.cpp

// RUN: %check_clang_tidy -std=c++11,c++14 %s bugprone-exception-escape %t -- \ // RUN: %check_clang_tidy -std=c++11-or-later %s bugprone-exception-escape %t -- \
// RUN: -config="{CheckOptions: { \ // RUN: -config="{CheckOptions: { \
// RUN: bugprone-exception-escape.IgnoredExceptions: 'ignored1,ignored2', \ // RUN: bugprone-exception-escape.IgnoredExceptions: 'ignored1,ignored2', \
// RUN: bugprone-exception-escape.FunctionsThatShouldNotThrow: 'enabled1,enabled2,enabled3' \ // RUN: bugprone-exception-escape.FunctionsThatShouldNotThrow: 'enabled1,enabled2,enabled3' \
// RUN: }}" \ // RUN: }}" \
// RUN: -- -fexceptions // RUN: -- -fexceptions
// FIXME: Fix the checker to work in C++17 or later mode.
struct throwing_destructor { struct throwing_destructor {
~throwing_destructor() { ~throwing_destructor() {
// CHECK-MESSAGES: :[[@LINE-1]]:3: warning: an exception may be thrown in function '~throwing_destructor' which should not throw exceptions // CHECK-MESSAGES: :[[@LINE-1]]:3: warning: an exception may be thrown in function '~throwing_destructor' which should not throw exceptions
throw 1; throw 1;
} }
}; };
▲ Show 20 LinesShow All 391 Lines▼ Show 20 Lines
} }
namespace c { namespace c {
inline int foo() noexcept { return 0; }; inline int foo() noexcept { return 0; };
void throw_noexcept_catch_regular() noexcept { void throw_noexcept_catch_regular() noexcept {
try { try {
throw &foo; throw &foo;
} catch(int (*)()) { } catch(int (*)()) {
isuckatcsUnsubmitted
Done
ReplyInline Actions

The name of the function suggests that we throw a noexcept function pointer and catch a non-noexcept one. Please don't change it.

isuckatcs: The name of the function suggests that we throw a noexcept function pointer and catch a non…
PiotrZSLAuthorUnsubmitted
Done
ReplyInline Actions

Ack.

PiotrZSL: Ack.
} }
} }
} }
struct baseMember { struct baseMember {
int *iptr; int *iptr;
virtual void foo(){}; virtual void foo(){};
void boo(){};
}; };
struct derivedMember : baseMember { struct derivedMember : baseMember {
void foo() override {}; void foo() override {};
}; };
void throw_basefn_catch_derivedfn() noexcept { void throw_basefn_catch_derivedfn() noexcept {
// CHECK-MESSAGES: :[[@LINE-1]]:6: warning: an exception may be thrown in function 'throw_basefn_catch_derivedfn' which should not throw exceptions // CHECK-MESSAGES: :[[@LINE-1]]:6: warning: an exception may be thrown in function 'throw_basefn_catch_derivedfn' which should not throw exceptions
try { try {
throw &baseMember::foo; throw &baseMember::foo;
} catch(void(derivedMember::*)()) { } catch(void(derivedMember::*)()) {
} }
} }
void throw_basefn_catch_basefn() noexcept { void throw_basefn_catch_basefn() noexcept {
try { try {
throw &baseMember::foo; throw &baseMember::foo;
} catch(void(baseMember::*)()) { } catch(void(baseMember::*)()) {
} }
} }
void throw_basefn_catch_const_basefn() noexcept {
// CHECK-MESSAGES: :[[@LINE-1]]:6: warning: an exception may be thrown in function 'throw_basefn_catch_const_basefn' which should not throw exceptions
try {
throw &baseMember::foo;
} catch(const void(baseMember::*)()) {
}
}
void throw_derivedfn_catch_basefn() noexcept {
// CHECK-MESSAGES: :[[@LINE-1]]:6: warning: an exception may be thrown in function 'throw_derivedfn_catch_basefn' which should not throw exceptions
try {
throw &derivedMember::foo;
} catch(void(baseMember::*)()) {
}
}
void throw_basefn_via_derivedfn_catch_basefn() noexcept {
try {
throw &derivedMember::boo;
} catch(void(baseMember::*)()) {
}
}
void throw_basem_catch_basem_throw() noexcept { void throw_basem_catch_basem_throw() noexcept {
// CHECK-MESSAGES: :[[@LINE-1]]:6: warning: an exception may be thrown in function 'throw_basem_catch_basem_throw' which should not throw exceptions // CHECK-MESSAGES: :[[@LINE-1]]:6: warning: an exception may be thrown in function 'throw_basem_catch_basem_throw' which should not throw exceptions
try { try {
auto ptr = &baseMember::iptr; auto ptr = &baseMember::iptr;
throw &ptr; throw &ptr;
} catch(const int* baseMember::* const *) { } catch(const int* baseMember::* const *) {
} }
} }
▲ Show 20 LinesShow All 264 Lines▼ Show 20 Linesvoid only_calls_non_throwing() noexcept {
test_basic_no_throw(); test_basic_no_throw();
} }
void calls_non_and_throwing() noexcept { void calls_non_and_throwing() noexcept {
// CHECK-MESSAGES: :[[@LINE-1]]:6: warning: an exception may be thrown in function 'calls_non_and_throwing' which should not throw exceptions // CHECK-MESSAGES: :[[@LINE-1]]:6: warning: an exception may be thrown in function 'calls_non_and_throwing' which should not throw exceptions
test_basic_no_throw(); test_basic_no_throw();
test_basic_throw(); test_basic_throw();
} }
namespace PR55143 { namespace PR40583 {
struct test_explicit_throw {
test_explicit_throw() throw(int) { throw 42; }
test_explicit_throw(const test_explicit_throw&) throw(int) { throw 42; }
test_explicit_throw(test_explicit_throw&&) throw(int) { throw 42; }
test_explicit_throw& operator=(const test_explicit_throw&) throw(int) { throw 42; }
test_explicit_throw& operator=(test_explicit_throw&&) throw(int) { throw 42; }
~test_explicit_throw() throw(int) { throw 42; }
};
struct test_implicit_throw {
test_implicit_throw() { throw 42; }
test_implicit_throw(const test_implicit_throw&) { throw 42; }
test_implicit_throw(test_implicit_throw&&) { throw 42; }
// CHECK-MESSAGES: :[[@LINE-1]]:5: warning: an exception may be thrown in function 'test_implicit_throw' which should not throw exceptions
test_implicit_throw& operator=(const test_implicit_throw&) { throw 42; }
test_implicit_throw& operator=(test_implicit_throw&&) { throw 42; }
// CHECK-MESSAGES: :[[@LINE-1]]:26: warning: an exception may be thrown in function 'operator=' which should not throw exceptions
~test_implicit_throw() { throw 42; }
// CHECK-MESSAGES: :[[@LINE-1]]:5: warning: an exception may be thrown in function '~test_implicit_throw' which should not throw exceptions
};
}}