This is an archive of the discontinued LLVM Phabricator instance.

Differential D19014

[clang-tidy] Add new checker for suspicious sizeof expressions
ClosedPublic

Authored by etienneb on Apr 12 2016, 8:30 AM.

Details

Reviewers
alexfh
Commits
rG1f696b316c70: [clang-tidy] Add new checker for suspicious sizeof expressions
rCTE266451: [clang-tidy] Add new checker for suspicious sizeof expressions
rL266451: [clang-tidy] Add new checker for suspicious sizeof expressions
Summary

This check is finding suspicious cases of sizeof expression.

Sizeof expression is returning the size (in bytes) of a type or an
expression. Programmers often abuse or misuse this expression.

This checker is adding common set of patterns to detect some
of these bad constructs.

Some examples found by this checker:

R/packages/ifultools/ifultools/src/fra_neig.c

/* free buffer memory */
(void) mutil_free( dist_buff, sizeof( ctr * sizeof( double ) ) );
(void) mutil_free( nidx_buff, sizeof( ctr * sizeof( sint32 ) ) );

graphviz/v2_20_2/lib/common/utils.c

static Dtdisc_t mapDisc = {
    offsetof(item, p),
    sizeof(2 * sizeof(void *)),
    offsetof(item, link),
    (Dtmake_f) newItem,
    (Dtfree_f) freeItem,
    (Dtcompar_f) cmpItem,
    NIL(Dthash_f),
    NIL(Dtmemory_f),
    NIL(Dtevent_f)
};

mDNSResponder/mDNSShared/dnsextd.c

	context = ( TCPContext* ) malloc( sizeof( TCPContext ) );
	require_action( context, exit, err = mStatus_NoMemoryErr; LogErr( "AcceptTCPConnection", "malloc" ) );
	mDNSPlatformMemZero( context, sizeof( sizeof( TCPContext ) ) );
	context->d		 = self;

Diff Detail

Event Timeline

etienneb updated this revision to Diff 53405.Apr 12 2016, 8:30 AM
etienneb retitled this revision from to [clang-tidy] Add new checker for suspicious sizeof expressions.
etienneb updated this object.
etienneb added a reviewer: alexfh.
etienneb added a subscriber: cfe-commits.
alexfh edited edge metadata.Apr 12 2016, 8:49 AM

The check is really awesome! Thank you for coming up with all the patterns that frequently happen to result from coding errors!

Please update release notes.

A few inline comments as well.

clang-tidy/misc/SizeofExpressionCheck.cpp
23

Seems like you could use the isAnyCharacter matcher.

28

nit: extra 'n' in "relational"

28

I'd put this to ASTMatchers.h together with a test and docs.

41

The !(E = ...) construct is a bit hard to read (needs time to figure out the intention). I'd prefer a simpler alternative.

197

It looks like you've created a tool for what can be done in a simpler way. It should be possible to express this matcher without going through the parent map: sizeOfExpr(hasDescendant(sizeOfExpr(unless(SizeOfZero)))) or something like that.

237

I'm not sure I would understand what "incompatible" means here without reading the code of the check. Please expand the message. Same in the messages below.

259

s/multiplation/multiplication/

etienneb updated this revision to Diff 53428.Apr 12 2016, 10:53 AM
etienneb marked 6 inline comments as done.
etienneb edited edge metadata.

fix alexfh@ comments

etienneb updated this revision to Diff 53429.Apr 12 2016, 10:57 AM

release notes.

etienneb updated this revision to Diff 53431.Apr 12 2016, 11:08 AM

more unittests

etienneb updated this revision to Diff 53436.Apr 12 2016, 11:27 AM

fix typos and doc.

etienneb updated this object.Apr 12 2016, 11:28 AM
alexfh added inline comments.Apr 12 2016, 11:39 AM
clang-tidy/misc/SizeofExpressionCheck.cpp
197

What about this comment?

203

nit: missing trailing question mark

209

nit: 'strlen' should be in single quotes for consistency with other messages.

257

nit: I'd say of 'sizeof' by 'sizeof' instead of of two 'sizeof'.

docs/clang-tidy/checks/misc-sizeof-expression.rst
59

nit: the titles need to be consistent - either all have or not have warning:.

I'd also make the first letters capital.

102

s/make/makes/

etienneb updated this revision to Diff 53437.Apr 12 2016, 11:46 AM
etienneb marked 5 inline comments as done.

alexfh comments.

clang-tidy/misc/SizeofExpressionCheck.cpp
28

There are a few matchers used in different checkers that worth lifting.
It seems there is a place to lift some of them in clang-tidy/utils, and some of them should be lifted to astmatcher directly.
I wonder what should be the rules to lift them.

197

This is 'almost' working!
We cannot pass through all expression.
As an example, callExpr or arrayExpr

sizeof( A[index(sizeof(int))] )

In this example, the checker won't warn.

So, the hasDescendant (or has ancestor) in this case is only allow to follow a subset of Expressions.

The name may be wrong, or unclear. If you have better proposition...

197

unsubmited. (not sure to get when arc is pushing them)

alexfh added inline comments.Apr 12 2016, 12:26 PM
clang-tidy/misc/SizeofExpressionCheck.cpp
29

There are no firm rules. It mostly depends on how generic/useful in other tools the matcher could be. This one seems pretty generic and it could be used in a couple of other clang-tidy checks at least (e.g. readability/ContainerSizeEmptyCheck.cpp), so it seems to be a good fit for ASTMatchers.h. This can also be done as a separate step, if you prefer.

198

I see the reasoning, but in this case I'd still prefer if this custom matcher looked at the children instead of the parents, since it's a more effective approach in general (at least because it doesn't use the parent map).

We should probably add a variant of hasDescendant (and maybe hasAncestor) with a way to limit which nodes it can look through.

258

"'sizeof' by 'sizeof' expression" is ambiguous, "'sizeof' by 'sizeof' multiplication" would be better.

alexfh requested changes to this revision.Apr 12 2016, 12:27 PM
alexfh edited edge metadata.
This revision now requires changes to proceed.Apr 12 2016, 12:27 PM
etienneb updated this revision to Diff 53442.Apr 12 2016, 12:40 PM
etienneb edited edge metadata.
etienneb marked an inline comment as done.

alexfh comments.

alexfh added inline comments.Apr 12 2016, 12:58 PM
clang-tidy/misc/SizeofExpressionCheck.cpp
199

I'm probably wrong about "a more effective approach in general", but for sizeof case it might be more effective, if we assume that sizeof doesn't have large subtrees under it.

A separate concern is that the matchers looking up the tree are somewhat more difficult to understand (at least to me).

Ultimately, I'm not sure what's the best approach here. Maybe find a huge file and measure runtime of both implementations? ;)

alexfh accepted this revision.Apr 12 2016, 1:03 PM
alexfh edited edge metadata.

Looks good with one more nit. I'm not sure what to do with hasSizeOfAncestor, we can leave it as is for now.

clang-tidy/misc/SizeofExpressionCheck.cpp
48

The type here doesn't help, I'd use auto.

This revision is now accepted and ready to land.Apr 12 2016, 1:03 PM
Eugene.Zelenko added a subscriber: Eugene.Zelenko.Apr 12 2016, 1:35 PM
Eugene.Zelenko added inline comments.
docs/ReleaseNotes.rst
100

Please put this check after misc-misplaced-widening-cast.

malcolm.parsons added a subscriber: malcolm.parsons.Apr 13 2016, 6:54 AM
malcolm.parsons added inline comments.
docs/clang-tidy/checks/misc-sizeof-expression.rst
17

s/it's/its/

etienneb updated this revision to Diff 53609.Apr 13 2016, 1:15 PM
etienneb marked 2 inline comments as done.
etienneb edited edge metadata.

alexfh@ comment: top-down approach.

clang-tidy/misc/SizeofExpressionCheck.cpp
29

I'm not against at all to lift this.
Now, or in a separate step.

I just leave it here so the patch is still working as-is (if people want to play with it and found invalid cases!).

198

I was thinking it's more effective to look to ancestor than descendants?
There are less ancestors than descendants?

199

I'm uploading the top-down approach.
As I suspected, this is changing nothing on large cases I tried.

I put the limit of 8 level depth, which won't cause any combinatory explosion.
Worse case: 2^8 nodes.

etienneb updated this revision to Diff 53905.Apr 15 2016, 9:40 AM

rebased

etienneb closed this revision.Apr 15 2016, 9:41 AM
aaron.ballman mentioned this in D131926: [clang-tidy] Fix for bugprone-sizeof-expression PR57167.Aug 17 2022, 10:39 AM

Revision Contents

PathSize
clang-tidy/
misc/
1 line
3 lines
40 lines
263 lines
docs/
7 lines
clang-tidy/
checks/
1 line
137 lines
test/
clang-tidy/
186 lines

Diff 53436

clang-tidy/misc/CMakeLists.txt

Show All 15 Linesadd_clang_library(clangTidyMiscModule
MiscTidyModule.cpp MiscTidyModule.cpp
MisplacedWideningCastCheck.cpp MisplacedWideningCastCheck.cpp
MoveConstantArgumentCheck.cpp MoveConstantArgumentCheck.cpp
MoveConstructorInitCheck.cpp MoveConstructorInitCheck.cpp
NewDeleteOverloadsCheck.cpp NewDeleteOverloadsCheck.cpp
NoexceptMoveConstructorCheck.cpp NoexceptMoveConstructorCheck.cpp
NonCopyableObjects.cpp NonCopyableObjects.cpp
SizeofContainerCheck.cpp SizeofContainerCheck.cpp
SizeofExpressionCheck.cpp
StaticAssertCheck.cpp StaticAssertCheck.cpp
StringIntegerAssignmentCheck.cpp StringIntegerAssignmentCheck.cpp
StringLiteralWithEmbeddedNulCheck.cpp StringLiteralWithEmbeddedNulCheck.cpp
SuspiciousMissingCommaCheck.cpp SuspiciousMissingCommaCheck.cpp
SuspiciousSemicolonCheck.cpp SuspiciousSemicolonCheck.cpp
SwappedArgumentsCheck.cpp SwappedArgumentsCheck.cpp
ThrowByValueCatchByReferenceCheck.cpp ThrowByValueCatchByReferenceCheck.cpp
UndelegatedConstructor.cpp UndelegatedConstructor.cpp
Show All 14 Lines

clang-tidy/misc/MiscTidyModule.cpp

Show All 23 Lines
#include "MacroRepeatedSideEffectsCheck.h" #include "MacroRepeatedSideEffectsCheck.h"
#include "MisplacedWideningCastCheck.h" #include "MisplacedWideningCastCheck.h"
#include "MoveConstantArgumentCheck.h" #include "MoveConstantArgumentCheck.h"
#include "MoveConstructorInitCheck.h" #include "MoveConstructorInitCheck.h"
#include "NewDeleteOverloadsCheck.h" #include "NewDeleteOverloadsCheck.h"
#include "NoexceptMoveConstructorCheck.h" #include "NoexceptMoveConstructorCheck.h"
#include "NonCopyableObjects.h" #include "NonCopyableObjects.h"
#include "SizeofContainerCheck.h" #include "SizeofContainerCheck.h"
#include "SizeofExpressionCheck.h"
#include "StaticAssertCheck.h" #include "StaticAssertCheck.h"
#include "StringIntegerAssignmentCheck.h" #include "StringIntegerAssignmentCheck.h"
#include "StringLiteralWithEmbeddedNulCheck.h" #include "StringLiteralWithEmbeddedNulCheck.h"
#include "SuspiciousMissingCommaCheck.h" #include "SuspiciousMissingCommaCheck.h"
#include "SuspiciousSemicolonCheck.h" #include "SuspiciousSemicolonCheck.h"
#include "SwappedArgumentsCheck.h" #include "SwappedArgumentsCheck.h"
#include "ThrowByValueCatchByReferenceCheck.h" #include "ThrowByValueCatchByReferenceCheck.h"
#include "UndelegatedConstructor.h" #include "UndelegatedConstructor.h"
▲ Show 20 LinesShow All 41 Lines▼ Show 20 Lines CheckFactories.registerCheck<MoveConstructorInitCheck>(
"misc-move-constructor-init"); "misc-move-constructor-init");
CheckFactories.registerCheck<NewDeleteOverloadsCheck>( CheckFactories.registerCheck<NewDeleteOverloadsCheck>(
"misc-new-delete-overloads"); "misc-new-delete-overloads");
CheckFactories.registerCheck<NoexceptMoveConstructorCheck>( CheckFactories.registerCheck<NoexceptMoveConstructorCheck>(
"misc-noexcept-move-constructor"); "misc-noexcept-move-constructor");
CheckFactories.registerCheck<NonCopyableObjectsCheck>( CheckFactories.registerCheck<NonCopyableObjectsCheck>(
"misc-non-copyable-objects"); "misc-non-copyable-objects");
CheckFactories.registerCheck<SizeofContainerCheck>("misc-sizeof-container"); CheckFactories.registerCheck<SizeofContainerCheck>("misc-sizeof-container");
CheckFactories.registerCheck<SizeofExpressionCheck>(
"misc-sizeof-expression");
CheckFactories.registerCheck<StaticAssertCheck>( CheckFactories.registerCheck<StaticAssertCheck>(
"misc-static-assert"); "misc-static-assert");
CheckFactories.registerCheck<StringIntegerAssignmentCheck>( CheckFactories.registerCheck<StringIntegerAssignmentCheck>(
"misc-string-integer-assignment"); "misc-string-integer-assignment");
CheckFactories.registerCheck<StringLiteralWithEmbeddedNulCheck>( CheckFactories.registerCheck<StringLiteralWithEmbeddedNulCheck>(
"misc-string-literal-with-embedded-nul"); "misc-string-literal-with-embedded-nul");
CheckFactories.registerCheck<SuspiciousMissingCommaCheck>( CheckFactories.registerCheck<SuspiciousMissingCommaCheck>(
"misc-suspicious-missing-comma"); "misc-suspicious-missing-comma");
Show All 32 Lines

clang-tidy/misc/SizeofExpressionCheck.h

  • This file was added.
//===--- SizeofExpressionCheck.h - clang-tidy--------------------*- C++ -*-===//
//
// The LLVM Compiler Infrastructure
//
// This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
#ifndef LLVM_CLANG_TOOLS_EXTRA_CLANG_TIDY_MISC_SIZEOF_EXPRESSION_H
#define LLVM_CLANG_TOOLS_EXTRA_CLANG_TIDY_MISC_SIZEOF_EXPRESSION_H
#include "../ClangTidy.h"
namespace clang {
namespace tidy {
namespace misc {
/// Find suspicious usages of sizeof expression.
///
/// For the user-facing documentation see:
/// http://clang.llvm.org/extra/clang-tidy/checks/misc-sizeof-expression.html
class SizeofExpressionCheck : public ClangTidyCheck {
public:
SizeofExpressionCheck(StringRef Name, ClangTidyContext *Context);
void storeOptions(ClangTidyOptions::OptionMap &Opts);
void registerMatchers(ast_matchers::MatchFinder *Finder) override;
void check(const ast_matchers::MatchFinder::MatchResult &Result) override;
private:
const bool WarnOnSizeOfConstant;
const bool WarnOnSizeOfThis;
const bool WarnOnSizeOfCompareToConstant;
};
} // namespace misc
} // namespace tidy
} // namespace clang
#endif // LLVM_CLANG_TOOLS_EXTRA_CLANG_TIDY_MISC_SIZEOF_EXPRESSION_H

clang-tidy/misc/SizeofExpressionCheck.cpp

  • This file was added.
//===--- SizeofExpressionCheck.cpp - clang-tidy----------------------------===//
//
// The LLVM Compiler Infrastructure
//
// This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
#include "SizeofExpressionCheck.h"
#include "clang/AST/ASTContext.h"
#include "clang/ASTMatchers/ASTMatchFinder.h"
using namespace clang::ast_matchers;
namespace clang {
namespace tidy {
namespace misc {
namespace {
AST_MATCHER(BinaryOperator, isRelationalOperator) {
return Node.isRelationalOp();
alexfhUnsubmitted
Done
ReplyInline Actions

Seems like you could use the isAnyCharacter matcher.

alexfh: Seems like you could use the `isAnyCharacter` matcher.
}
AST_MATCHER_P(IntegerLiteral, isBiggerThan, unsigned, N) {
return Node.getValue().getZExtValue() > N;
}
alexfhUnsubmitted
Done
ReplyInline Actions

nit: extra 'n' in "relational"

alexfh: nit: extra 'n' in "relational"
alexfhUnsubmitted
Not Done
ReplyInline Actions

I'd put this to ASTMatchers.h together with a test and docs.

alexfh: I'd put this to ASTMatchers.h together with a test and docs.
etiennebAuthorUnsubmitted
Not Done
ReplyInline Actions

There are a few matchers used in different checkers that worth lifting.
It seems there is a place to lift some of them in clang-tidy/utils, and some of them should be lifted to astmatcher directly.
I wonder what should be the rules to lift them.

etienneb: There are a few matchers used in different checkers that worth lifting. It seems there is a…
alexfhUnsubmitted
Not Done
ReplyInline Actions

There are no firm rules. It mostly depends on how generic/useful in other tools the matcher could be. This one seems pretty generic and it could be used in a couple of other clang-tidy checks at least (e.g. readability/ContainerSizeEmptyCheck.cpp), so it seems to be a good fit for ASTMatchers.h. This can also be done as a separate step, if you prefer.

alexfh: There are no firm rules. It mostly depends on how generic/useful in other tools the matcher…
etiennebAuthorUnsubmitted
Not Done
ReplyInline Actions

I'm not against at all to lift this.
Now, or in a separate step.

I just leave it here so the patch is still working as-is (if people want to play with it and found invalid cases!).

etienneb: I'm not against at all to lift this. Now, or in a separate step. I just leave it here so the…
AST_MATCHER_P(Expr, hasSizeOfAncestor, ast_matchers::internal::Matcher<Expr>,
InnerMatcher) {
const Expr *E = &Node;
ASTContext::DynTypedNodeList Parents = Finder->getASTContext().getParents(*E);
if (Parents.size() != 1)
return false;
E = Parents[0].get<Expr>();
if (!E)
return false;
alexfhUnsubmitted
Done
ReplyInline Actions

The !(E = ...) construct is a bit hard to read (needs time to figure out the intention). I'd prefer a simpler alternative.

alexfh: The `!(E = ...)` construct is a bit hard to read (needs time to figure out the intention). I'd…
if (InnerMatcher.matches(*E, Finder, Builder))
return true;
if (isa<CastExpr>(E) || isa<UnaryOperator>(E) || isa<BinaryOperator>(E) ||
isa<ParenExpr>(E)) {
ast_matchers::internal::Matcher<Expr> M = hasSizeOfAncestor(InnerMatcher);
return M.matches(*E, Finder, Builder);
alexfhUnsubmitted
Not Done
ReplyInline Actions

The type here doesn't help, I'd use auto.

alexfh: The type here doesn't help, I'd use `auto`.
}
return false;
}
CharUnits getSizeOfType(const ASTContext &Ctx, const Type *Ty) {
if (!Ty || Ty->isIncompleteType() || Ty->isDependentType() ||
isa<DependentSizedArrayType>(Ty) || !Ty->isConstantSizeType())
return CharUnits::Zero();
return Ctx.getTypeSizeInChars(Ty);
}
} // namespace
SizeofExpressionCheck::SizeofExpressionCheck(StringRef Name,
ClangTidyContext *Context)
: ClangTidyCheck(Name, Context),
WarnOnSizeOfConstant(Options.get("WarnOnSizeOfConstant", 1) != 0),
WarnOnSizeOfThis(Options.get("WarnOnSizeOfThis", 1) != 0),
WarnOnSizeOfCompareToConstant(
Options.get("WarnOnSizeOfCompareToConstant", 1) != 0) {}
void SizeofExpressionCheck::storeOptions(ClangTidyOptions::OptionMap &Opts) {
Options.store(Opts, "WarnOnSizeOfConstant", WarnOnSizeOfConstant);
Options.store(Opts, "WarnOnSizeOfThis", WarnOnSizeOfThis);
Options.store(Opts, "WarnOnSizeOfCompareToConstant",
WarnOnSizeOfCompareToConstant);
}
void SizeofExpressionCheck::registerMatchers(MatchFinder *Finder) {
const auto IntegerExpr = ignoringParenImpCasts(integerLiteral());
const auto ConstantExpr = expr(ignoringParenImpCasts(
anyOf(integerLiteral(), unaryOperator(hasUnaryOperand(IntegerExpr)),
binaryOperator(hasLHS(IntegerExpr), hasRHS(IntegerExpr)))));
const auto SizeOfExpr =
expr(anyOf(sizeOfExpr(has(type())), sizeOfExpr(has(expr()))));
const auto SizeOfZero = expr(
sizeOfExpr(has(expr(ignoringParenImpCasts(integerLiteral(equals(0)))))));
// Detect expression like: sizeof(ARRAYLEN);
// Note: The expression 'sizeof(sizeof(0))' is a portable trick used to know
// the sizeof size_t.
if (WarnOnSizeOfConstant) {
Finder->addMatcher(expr(sizeOfExpr(has(ConstantExpr)), unless(SizeOfZero))
.bind("sizeof-constant"),
this);
}
// Detect expression like: sizeof(this);
if (WarnOnSizeOfThis) {
Finder->addMatcher(
expr(sizeOfExpr(has(expr(ignoringParenImpCasts(cxxThisExpr())))))
.bind("sizeof-this"),
this);
}
// Detect sizeof(kPtr) where kPtr is 'const char* kPtr = "abc"';
const auto CharPtrType = pointerType(pointee(isAnyCharacter()));
const auto ConstStrLiteralDecl =
varDecl(isDefinition(), hasType(qualType(hasCanonicalType(CharPtrType))),
hasInitializer(ignoringParenImpCasts(stringLiteral())));
Finder->addMatcher(
expr(sizeOfExpr(has(expr(hasType(qualType(hasCanonicalType(CharPtrType))),
ignoringParenImpCasts(declRefExpr(
hasDeclaration(ConstStrLiteralDecl)))))))
.bind("sizeof-charp"),
this);
// Detect sizeof(ptr) where ptr points to an aggregate (i.e. sizeof(&S)).
const auto ArrayExpr = expr(ignoringParenImpCasts(
expr(hasType(qualType(hasCanonicalType(arrayType()))))));
const auto ArrayCastExpr = expr(anyOf(
unaryOperator(hasUnaryOperand(ArrayExpr), unless(hasOperatorName("*"))),
binaryOperator(hasEitherOperand(ArrayExpr)),
castExpr(hasSourceExpression(ArrayExpr))));
const auto PointerToArrayExpr = expr(ignoringParenImpCasts(expr(
hasType(qualType(hasCanonicalType(pointerType(pointee(arrayType()))))))));
const auto StructAddrOfExpr =
unaryOperator(hasOperatorName("&"),
hasUnaryOperand(ignoringParenImpCasts(expr(
hasType(qualType(hasCanonicalType(recordType())))))));
Finder->addMatcher(
expr(sizeOfExpr(has(expr(ignoringParenImpCasts(
anyOf(ArrayCastExpr, PointerToArrayExpr, StructAddrOfExpr))))))
.bind("sizeof-pointer-to-aggregate"),
this);
// Detect expression like: sizeof(epxr) <= k for a suspicious constant 'k'.
if (WarnOnSizeOfCompareToConstant) {
Finder->addMatcher(
binaryOperator(isRelationalOperator(),
hasEitherOperand(ignoringParenImpCasts(SizeOfExpr)),
hasEitherOperand(ignoringParenImpCasts(
anyOf(integerLiteral(equals(0)),
integerLiteral(isBiggerThan(0x80000))))))
.bind("sizeof-compare-constant"),
this);
}
// Detect expression like: sizeof(expr, expr); most likely an error.
Finder->addMatcher(expr(sizeOfExpr(has(expr(ignoringParenImpCasts(
binaryOperator(hasOperatorName(",")))))))
.bind("sizeof-comma-expr"),
this);
// Detect sizeof(...) /sizeof(...));
const auto ElemType =
arrayType(hasElementType(recordType().bind("elem-type")));
const auto ElemPtrType = pointerType(pointee(type().bind("elem-ptr-type")));
const auto NumType = qualType(hasCanonicalType(
type(anyOf(ElemType, ElemPtrType, type())).bind("num-type")));
const auto DenomType = qualType(hasCanonicalType(type().bind("denom-type")));
Finder->addMatcher(
binaryOperator(hasOperatorName("/"),
hasLHS(expr(ignoringParenImpCasts(
anyOf(sizeOfExpr(has(NumType)),
sizeOfExpr(has(expr(hasType(NumType)))))))),
hasRHS(expr(ignoringParenImpCasts(
anyOf(sizeOfExpr(has(DenomType)),
sizeOfExpr(has(expr(hasType(DenomType)))))))))
.bind("sizeof-divide-expr"),
this);
// Detect expression like: sizeof(...) * sizeof(...)); most likely an error.
Finder->addMatcher(binaryOperator(hasOperatorName("*"),
hasLHS(ignoringParenImpCasts(SizeOfExpr)),
hasRHS(ignoringParenImpCasts(SizeOfExpr)))
.bind("sizeof-multiply-sizeof"),
this);
Finder->addMatcher(
binaryOperator(hasOperatorName("*"),
hasEitherOperand(ignoringParenImpCasts(SizeOfExpr)),
hasEitherOperand(ignoringParenImpCasts(binaryOperator(
hasOperatorName("*"),
hasEitherOperand(ignoringParenImpCasts(SizeOfExpr))))))
.bind("sizeof-multiply-sizeof"),
this);
// Detect strange double-sizeof expression like: sizeof(sizeof(...));
// Note: The expression 'sizeof(sizeof(0))' is accepted.
Finder->addMatcher(
expr(SizeOfExpr, unless(SizeOfZero),
hasSizeOfAncestor(SizeOfExpr.bind("sizeof-sizeof-expr"))),
this);
}
alexfhUnsubmitted
Done
ReplyInline Actions

It looks like you've created a tool for what can be done in a simpler way. It should be possible to express this matcher without going through the parent map: sizeOfExpr(hasDescendant(sizeOfExpr(unless(SizeOfZero)))) or something like that.

alexfh: It looks like you've created a tool for what can be done in a simpler way. It should be…
etiennebAuthorUnsubmitted
Not Done
ReplyInline Actions

This is 'almost' working!
We cannot pass through all expression.
As an example, callExpr or arrayExpr

sizeof( A[index(sizeof(int))] )

In this example, the checker won't warn.

So, the hasDescendant (or has ancestor) in this case is only allow to follow a subset of Expressions.

The name may be wrong, or unclear. If you have better proposition...

etienneb: This is 'almost' working! We cannot pass through all expression. As an example, callExpr or…
alexfhUnsubmitted
Not Done
ReplyInline Actions

What about this comment?

alexfh: What about this comment?
etiennebAuthorUnsubmitted
Not Done
ReplyInline Actions

unsubmited. (not sure to get when arc is pushing them)

etienneb: unsubmited. (not sure to get when arc is pushing them)
alexfhUnsubmitted
Not Done
ReplyInline Actions

I see the reasoning, but in this case I'd still prefer if this custom matcher looked at the children instead of the parents, since it's a more effective approach in general (at least because it doesn't use the parent map).

We should probably add a variant of hasDescendant (and maybe hasAncestor) with a way to limit which nodes it can look through.

alexfh: I see the reasoning, but in this case I'd still prefer if this custom matcher looked at the…
etiennebAuthorUnsubmitted
Not Done
ReplyInline Actions

I was thinking it's more effective to look to ancestor than descendants?
There are less ancestors than descendants?

etienneb: I was thinking it's more effective to look to ancestor than descendants? There are less…
void SizeofExpressionCheck::check(const MatchFinder::MatchResult &Result) {
alexfhUnsubmitted
Not Done
ReplyInline Actions

I'm probably wrong about "a more effective approach in general", but for sizeof case it might be more effective, if we assume that sizeof doesn't have large subtrees under it.

A separate concern is that the matchers looking up the tree are somewhat more difficult to understand (at least to me).

Ultimately, I'm not sure what's the best approach here. Maybe find a huge file and measure runtime of both implementations? ;)

alexfh: I'm probably wrong about "a more effective approach in general", but for `sizeof` case it might…
etiennebAuthorUnsubmitted
Not Done
ReplyInline Actions

I'm uploading the top-down approach.
As I suspected, this is changing nothing on large cases I tried.

I put the limit of 8 level depth, which won't cause any combinatory explosion.
Worse case: 2^8 nodes.

etienneb: I'm uploading the top-down approach. As I suspected, this is changing nothing on large cases I…
const ASTContext &Ctx = *Result.Context;
if (const auto *E = Result.Nodes.getNodeAs<Expr>("sizeof-constant")) {
diag(E->getLocStart(), "suspicious usage of 'sizeof(K)'; did you mean 'K'");
alexfhUnsubmitted
Done
ReplyInline Actions

nit: missing trailing question mark

alexfh: nit: missing trailing question mark
} else if (const auto *E = Result.Nodes.getNodeAs<Expr>("sizeof-this")) {
diag(E->getLocStart(),
"suspicious usage of 'sizeof(this)'; did you mean 'sizeof(*this)'");
} else if (const auto *E = Result.Nodes.getNodeAs<Expr>("sizeof-charp")) {
diag(E->getLocStart(),
"suspicious usage of 'sizeof(char*)'; do you mean strlen?'");
alexfhUnsubmitted
Done
ReplyInline Actions

nit: 'strlen' should be in single quotes for consistency with other messages.

alexfh: nit: 'strlen' should be in single quotes for consistency with other messages.
} else if (const auto *E =
Result.Nodes.getNodeAs<Expr>("sizeof-pointer-to-aggregate")) {
diag(E->getLocStart(),
"suspicious usage of 'sizeof(A*)'; pointer to aggregate");
} else if (const auto *E =
Result.Nodes.getNodeAs<Expr>("sizeof-compare-constant")) {
diag(E->getLocStart(),
"suspicious comparison of 'sizeof(expr)' to a constant");
} else if (const auto *E =
Result.Nodes.getNodeAs<Expr>("sizeof-comma-expr")) {
diag(E->getLocStart(), "suspicious usage of 'sizeof(..., ...)'");
} else if (const auto *E =
Result.Nodes.getNodeAs<Expr>("sizeof-divide-expr")) {
const auto *NumTy = Result.Nodes.getNodeAs<Type>("num-type");
const auto *DenomTy = Result.Nodes.getNodeAs<Type>("denom-type");
const auto *ElementTy = Result.Nodes.getNodeAs<Type>("elem-type");
const auto *PointedTy = Result.Nodes.getNodeAs<Type>("elem-ptr-type");
CharUnits NumeratorSize = getSizeOfType(Ctx, NumTy);
CharUnits DenominatorSize = getSizeOfType(Ctx, DenomTy);
CharUnits ElementSize = getSizeOfType(Ctx, ElementTy);
if (DenominatorSize > CharUnits::Zero() &&
!NumeratorSize.isMultipleOf(DenominatorSize)) {
diag(E->getLocStart(), "suspicious usage of 'sizeof(...)/sizeof(...)';"
" numerator is not a multiple of denominator");
} else if (ElementSize > CharUnits::Zero() &&
DenominatorSize > CharUnits::Zero() &&
alexfhUnsubmitted
Done
ReplyInline Actions

I'm not sure I would understand what "incompatible" means here without reading the code of the check. Please expand the message. Same in the messages below.

alexfh: I'm not sure I would understand what "incompatible" means here without reading the code of the…
ElementSize != DenominatorSize) {
diag(E->getLocStart(), "suspicious usage of 'sizeof(...)/sizeof(...)';"
" numerator is not a multiple of denominator");
} else if (NumTy && DenomTy && NumTy == DenomTy) {
diag(E->getLocStart(),
"suspicious usage of sizeof pointer 'sizeof(T)/sizeof(T)'");
} else if (PointedTy && DenomTy && PointedTy == DenomTy) {
diag(E->getLocStart(),
"suspicious usage of sizeof pointer 'sizeof(T*)/sizeof(T)'");
} else if (NumTy && DenomTy && NumTy->isPointerType() &&
DenomTy->isPointerType()) {
diag(E->getLocStart(),
"suspicious usage of sizeof pointer 'sizeof(P*)/sizeof(Q*)'");
}
} else if (const auto *E =
Result.Nodes.getNodeAs<Expr>("sizeof-sizeof-expr")) {
diag(E->getLocStart(), "suspicious usage of 'sizeof(sizeof(...))'");
} else if (const auto *E =
Result.Nodes.getNodeAs<Expr>("sizeof-multiply-sizeof")) {
diag(E->getLocStart(), "suspicious multiplication of two 'sizeof'");
alexfhUnsubmitted
Done
ReplyInline Actions

nit: I'd say of 'sizeof' by 'sizeof' instead of of two 'sizeof'.

alexfh: nit: I'd say `of 'sizeof' by 'sizeof'` instead of `of two 'sizeof'`.
}
alexfhUnsubmitted
Done
ReplyInline Actions

"'sizeof' by 'sizeof' expression" is ambiguous, "'sizeof' by 'sizeof' multiplication" would be better.

alexfh: "'sizeof' by 'sizeof' expression" is ambiguous, "'sizeof' by 'sizeof' multiplication" would be…
}
alexfhUnsubmitted
Done
ReplyInline Actions

s/multiplation/multiplication/

alexfh: s/multiplation/multiplication/
} // namespace misc
} // namespace tidy
} // namespace clang

docs/ReleaseNotes.rst

Show First 20 LinesShow All 91 Lines▼ Show 20 Lines- New `misc-dangling-handle
Detects dangling references in value handlers like Detects dangling references in value handlers like
``std::experimental::string_view``. ``std::experimental::string_view``.
- New `misc-forward-declaration-namespace - New `misc-forward-declaration-namespace
<http://clang.llvm.org/extra/clang-tidy/checks/misc-forward-declaration-namespace.html>`_ check <http://clang.llvm.org/extra/clang-tidy/checks/misc-forward-declaration-namespace.html>`_ check
Checks if an unused forward declaration is in a wrong namespace. Checks if an unused forward declaration is in a wrong namespace.
- New `misc-sizeof-expression
Eugene.ZelenkoUnsubmitted
Done
ReplyInline Actions

Please put this check after misc-misplaced-widening-cast.

Eugene.Zelenko: Please put this check after misc-misplaced-widening-cast.
<http://clang.llvm.org/extra/clang-tidy/checks/misc-sizeof-expression.html>`_ check
Warns about incorrect uses of ``sizeof`` operator.
- New `misc-misplaced-widening-cast - New `misc-misplaced-widening-cast
<http://clang.llvm.org/extra/clang-tidy/checks/misc-misplaced-widening-cast.html>`_ check <http://clang.llvm.org/extra/clang-tidy/checks/misc-misplaced-widening-cast.html>`_ check
Warns when there is a explicit redundant cast of a calculation result to a Warns when there is a explicit redundant cast of a calculation result to a
bigger type. bigger type.
- New `misc-string-literal-with-embedded-nul - New `misc-string-literal-with-embedded-nul
<http://clang.llvm.org/extra/clang-tidy/checks/misc-string-literal-with-embedded-nul.html>`_ check <http://clang.llvm.org/extra/clang-tidy/checks/misc-string-literal-with-embedded-nul.html>`_ check
Warns about suspicious NUL character in string literals which may lead to Warns about suspicious NUL character in string literals which may lead to
truncation or invalid character escaping. truncation or invalid character escaping.
- New `misc-suspicious-missing-comma - New `misc-suspicious-missing-comma
<http://clang.llvm.org/extra/clang-tidy/checks/misc-suspicious-missing-comma.html>`_ check <http://clang.llvm.org/extra/clang-tidy/checks/misc-suspicious-missing-comma.html>`_ check
Warns about 'probably' missing comma in string literals initializer list. Warns about 'probably' missing comma in string literals initializer list.
- New `misc-suspicious-semicolon - New `misc-suspicious-semicolon
<http://clang.llvm.org/extra/clang-tidy/checks/misc-suspicious-semicolon.html>`_ check <http://clang.llvm.org/extra/clang-tidy/checks/misc-suspicious-semicolon.html>`_ check
Finds most instances of stray semicolons that unexpectedly alter the meaning Finds most instances of stray semicolons that unexpectedly alter the meaning
of the code. of the code.
- New `modernize-deprecated-headers - New `modernize-deprecated-headers
<http://clang.llvm.org/extra/clang-tidy/checks/modernize-deprecated-headers.html>`_ check <http://clang.llvm.org/extra/clang-tidy/checks/modernize-deprecated-headers.html>`_ check
Replaces C standard library headers with their C++ alternatives. Replaces C standard library headers with their C++ alternatives.
- New `modernize-raw-string-literal - New `modernize-raw-string-literal
<http://clang.llvm.org/extra/clang-tidy/checks/modernize-raw-string-literal.html>`_ check <http://clang.llvm.org/extra/clang-tidy/checks/modernize-raw-string-literal.html>`_ check
▲ Show 20 LinesShow All 148 LinesShow Last 20 Lines

docs/clang-tidy/checks/list.rst

Show First 20 LinesShow All 59 Lines▼ Show 20 Lines.. toctree::
misc-macro-parentheses misc-macro-parentheses
misc-macro-repeated-side-effects misc-macro-repeated-side-effects
misc-misplaced-widening-cast misc-misplaced-widening-cast
misc-move-constructor-init misc-move-constructor-init
misc-new-delete-overloads misc-new-delete-overloads
misc-noexcept-move-constructor misc-noexcept-move-constructor
misc-non-copyable-objects misc-non-copyable-objects
misc-sizeof-container misc-sizeof-container
misc-sizeof-expression
misc-static-assert misc-static-assert
misc-string-integer-assignment misc-string-integer-assignment
misc-string-literal-with-embedded-nul misc-string-literal-with-embedded-nul
misc-suspicious-missing-comma misc-suspicious-missing-comma
misc-suspicious-semicolon misc-suspicious-semicolon
misc-swapped-arguments misc-swapped-arguments
misc-throw-by-value-catch-by-reference misc-throw-by-value-catch-by-reference
misc-undelegated-constructor misc-undelegated-constructor
Show All 38 Lines

docs/clang-tidy/checks/misc-sizeof-expression.rst

  • This file was added.
.. title:: clang-tidy - misc-sizeof-expression
misc-sizeof-expression
======================
The check finds usages of ``sizeof`` expressions which are most likely errors.
The ``sizeof`` operator yields the size (in bytes) of its operand, which may be
an expression or the parenthesized name of a type. Misuse of this operator may
be leading to errors and possible software vulnerabilities.
suspicious usage of 'sizeof(K)'
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
A common mistake is to query the ``sizeof`` of an integer literal. This is
equivalent to query the size of it's type (probably ``int``). The intent of the
programmer was probably to simply get the integer and not its size.
malcolm.parsonsUnsubmitted
Done
ReplyInline Actions

s/it's/its/

malcolm.parsons: s/it's/its/
.. code:: c++
#define BUFLEN 42
char buf[BUFLEN];
memset(buf, 0, sizeof(BUFLEN)); // sizeof(42) ==> sizeof(int)
suspicious usage of 'sizeof(this)'
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
The ``this`` keyword is evaluated to a pointer to an object of a given type.
The expression ``sizeof(this)`` is returning the size of a pointer. The
programmer most likely wanted the size of the object and not the size of the
pointer.
.. code:: c++
class Point {
[...]
size_t size() { return sizeof(this); } // should probably be sizeof(*this)
[...]
};
suspicious usage of 'sizeof(char*)'
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
There is a subtle difference between declaring a string literal with
``char* A = ""`` and ``char A[] = ""``. The first case has the type ``char*``
instead of the aggregate type ``char[]``. Using ``sizeof`` on an object declared
with ``char*`` type is returning the size of a pointer instead of the number of
characters (bytes) in the string literal.
.. code:: c++
const char* kMessage = "Hello World!"; // const char kMessage[] = "...";
void getMessage(char* buf) {
memcpy(buf, kMessage, sizeof(kMessage)); // sizeof(char*)
}
warning: suspicious usage of 'sizeof(A*)'
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
alexfhUnsubmitted
Done
ReplyInline Actions

nit: the titles need to be consistent - either all have or not have warning:.

I'd also make the first letters capital.

alexfh: nit: the titles need to be consistent - either all have or not have `warning:`. I'd also make…
A common mistake is to compute the size of a pointer instead of its pointee.
These cases may occur because of explicit cast or implicit conversion.
.. code:: c++
int A[10];
memset(A, 0, sizeof(A + 0));
struct Point point;
memset(point, 0, sizeof(&point));
suspicious usage of 'sizeof(...)/sizeof(...)'
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Dividing ``sizeof`` expressions is typically used to retrieve the number of
elements of an aggregate. This check warns on incompatible or suspicious cases.
In the following example, the entity has 10-bytes and is incompatible with the
type ``int`` which has 4 bytes.
.. code:: c++
char buf[] = { 0, 1, 2, 3, 4, 5, 6, 7, 8, 9 }; // sizeof(buf) => 10
void getMessage(char* dst) {
memcpy(dst, buf, sizeof(buf) / sizeof(int)); // sizeof(int) => 4 [incompatible sizes]
}
In the following example, the expression ``sizeof(Values)`` is returning the
size of ``char*``. One can easily be fooled by its declaration, but in parameter
declaration the size '10' is ignored and the function is receiving a ``char*``.
.. code:: c++
char OrderedValues[10] = { 0, 1, 2, 3, 4, 5, 6, 7, 8, 9 };
return CompareArray(char Values[10]) {
return memcmp(OrderedValues, Values, sizeof(Values)) == 0; // sizeof(Values) ==> sizeof(char*) [implicit cast to char*]
}
suspicious multiplication of two 'sizeof'
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Multiplying ``sizeof`` expressions typically make no sense and is probably a
alexfhUnsubmitted
Done
ReplyInline Actions

s/make/makes/

alexfh: s/make/makes/
logic error. In the following example, the programmer used ``*`` instead of
``/``.
.. code:: c++
const char kMessage[] = "Hello World!";
void getMessage(char* buf) {
memcpy(buf, kMessage, sizeof(kMessage) * sizeof(char)); // sizeof(kMessage) / sizeof(char)
}
This check may trigger on code using the arraysize macro. The following code is
working correctly but should be simplified by using only the ``sizeof``
operator.
.. code:: c++
extern Object objects[100];
void InitializeObjects() {
memset(objects, 0, arraysize(objects) * sizeof(Object)); // sizeof(objects)
}
suspicious usage of 'sizeof(sizeof(...))'
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Getting the ``sizeof`` of a ``sizeof`` makes no sense and is typically an error
hidden through macros.
.. code:: c++
#define INT_SZ sizeof(int)
int buf[] = { 42 };
void getInt(int* dst) {
memcpy(dst, buf, sizeof(INT_SZ)); // sizeof(sizeof(int)) is suspicious.
}

test/clang-tidy/misc-sizeof-expression.cpp

  • This file was added.
// RUN: %check_clang_tidy %s misc-sizeof-expression %t
class C {
int size() { return sizeof(this); }
// CHECK-MESSAGES: :[[@LINE-1]]:23: warning: suspicious usage of 'sizeof(this)'
};
#define LEN 8
int X;
extern int A[10];
extern short B[10];
#pragma pack(1)
struct S { char a, b, c; };
int Test1(const char* ptr) {
int sum = 0;
sum += sizeof(LEN);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(K)'
sum += sizeof(LEN + 1);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(K)'
sum += sizeof(sum, LEN);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(..., ...)'
sum += sizeof(sizeof(X));
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(sizeof(...))'
sum += sizeof(LEN + sizeof(X));
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(sizeof(...))'
sum += sizeof(LEN + LEN + sizeof(X));
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(sizeof(...))'
sum += sizeof(LEN + (LEN + sizeof(X)));
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(sizeof(...))'
sum += sizeof(LEN + -sizeof(X));
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(sizeof(...))'
sum += sizeof(LEN + - + -sizeof(X));
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(sizeof(...))'
sum += sizeof(char) / sizeof(char);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T)/sizeof(T)'
sum += sizeof(A) / sizeof(S);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(...)/sizeof(...)'; numerator is not a multiple of denominator
sum += sizeof(char) / sizeof(int);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(...)/sizeof(...)'; numerator is not a multiple of denominator
sum += sizeof(char) / sizeof(A);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(...)/sizeof(...)'; numerator is not a multiple of denominator
sum += sizeof(B[0]) / sizeof(A);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(...)/sizeof(...)'; numerator is not a multiple of denominator
sum += sizeof(ptr) / sizeof(char);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T*)/sizeof(T)'
sum += sizeof(ptr) / sizeof(ptr[0]);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T*)/sizeof(T)'
sum += sizeof(ptr) / sizeof(char*);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(P*)/sizeof(Q*)'
sum += sizeof(ptr) / sizeof(void*);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(P*)/sizeof(Q*)'
sum += sizeof(ptr) / sizeof(const void volatile*);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(P*)/sizeof(Q*)'
sum += sizeof(ptr) / sizeof(char);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T*)/sizeof(T)'
sum += sizeof(ptr) / sizeof(ptr[0]);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T*)/sizeof(T)'
sum += sizeof(int) * sizeof(char);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious multiplication of two 'sizeof'
sum += sizeof(ptr) * sizeof(ptr[0]);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious multiplication of two 'sizeof'
sum += sizeof(int) * (2 * sizeof(char));
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious multiplication of two 'sizeof'
sum += (2 * sizeof(char)) * sizeof(int);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious multiplication of two 'sizeof'
if (sizeof(A) < 0x100000) sum += 42;
// CHECK-MESSAGES: :[[@LINE-1]]:7: warning: suspicious comparison of 'sizeof(expr)' to a constant
if (sizeof(A) <= 0xFFFFFFFEU) sum += 42;
// CHECK-MESSAGES: :[[@LINE-1]]:7: warning: suspicious comparison of 'sizeof(expr)' to a constant
return sum;
}
typedef char MyChar;
typedef const MyChar MyConstChar;
int CE0 = sizeof sizeof(char);
// CHECK-MESSAGES: :[[@LINE-1]]:11: warning: suspicious usage of 'sizeof(sizeof(...))'
int CE1 = sizeof +sizeof(char);
// CHECK-MESSAGES: :[[@LINE-1]]:11: warning: suspicious usage of 'sizeof(sizeof(...))'
int CE2 = sizeof sizeof(const char*);
// CHECK-MESSAGES: :[[@LINE-1]]:11: warning: suspicious usage of 'sizeof(sizeof(...))'
int CE3 = sizeof sizeof(const volatile char* const*);
// CHECK-MESSAGES: :[[@LINE-1]]:11: warning: suspicious usage of 'sizeof(sizeof(...))'
int CE4 = sizeof sizeof(MyConstChar);
// CHECK-MESSAGES: :[[@LINE-1]]:11: warning: suspicious usage of 'sizeof(sizeof(...))'
int Test2(MyConstChar* A) {
int sum = 0;
sum += sizeof(MyConstChar) / sizeof(char);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T)/sizeof(T)'
sum += sizeof(MyConstChar) / sizeof(MyChar);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T)/sizeof(T)'
sum += sizeof(A[0]) / sizeof(char);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of sizeof pointer 'sizeof(T)/sizeof(T)'
return sum;
}
template <int T>
int Foo() { int A[T]; return sizeof(T); }
// CHECK-MESSAGES: :[[@LINE-1]]:30: warning: suspicious usage of 'sizeof(K)'
template <typename T>
int Bar() { T A[5]; return sizeof(A[0]) / sizeof(T); }
// CHECK-MESSAGES: :[[@LINE-1]]:28: warning: suspicious usage of sizeof pointer 'sizeof(T)/sizeof(T)'
int Test3() { return Foo<42>() + Bar<char>(); }
static const char* kABC = "abc";
static const wchar_t* kDEF = L"def";
int Test4(const char A[10]) {
int sum = 0;
sum += sizeof(kABC);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(char*)'
sum += sizeof(kDEF);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(char*)'
return sum;
}
int Test5() {
typedef int Array10[10];
struct MyStruct {
Array10 arr;
Array10* ptr;
};
typedef const MyStruct TMyStruct;
static TMyStruct kGlocalMyStruct = {};
static TMyStruct volatile * kGlocalMyStructPtr = &kGlocalMyStruct;
MyStruct S;
Array10 A10;
int sum = 0;
sum += sizeof(&S.arr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(&kGlocalMyStruct.arr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(&kGlocalMyStructPtr->arr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(S.arr + 0);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(+ S.arr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof((int*)S.arr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(S.ptr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(kGlocalMyStruct.ptr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(kGlocalMyStructPtr->ptr);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(&kGlocalMyStruct);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(&S);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
sum += sizeof(&A10);
// CHECK-MESSAGES: :[[@LINE-1]]:10: warning: suspicious usage of 'sizeof(A*)'; pointer to aggregate
return sum;
}
int ValidExpressions() {
int A[] = {1, 2, 3, 4};
static const char str[] = "hello";
static const char* ptr[] { "aaa", "bbb", "ccc" };
int sum = 0;
if (sizeof(A) < 10)
sum += sizeof(A);
sum += sizeof(int);
sum += sizeof(A[sizeof(A) / sizeof(int)]);
sum += sizeof(&A[sizeof(A) / sizeof(int)]);
sum += sizeof(sizeof(0)); // Special case: sizeof size_t.
sum += sizeof(void*);
sum += sizeof(void const *);
sum += sizeof(void const *) / 4;
sum += sizeof(str);
sum += sizeof(str) / sizeof(char);
sum += sizeof(str) / sizeof(str[0]);
sum += sizeof(ptr) / sizeof(ptr[0]);
sum += sizeof(ptr) / sizeof(*(ptr));
return sum;
}