This is an archive of the discontinued LLVM Phabricator instance.

[Sema] Propagate nullability when deducing type of auto
AbandonedPublic

Authored by ahatanak on Jul 25 2016, 6:59 PM.

Download Raw Diff

Details

Reviewers

Summary

This patch fixes Sema to propagate the nullability of the initializer expression of a variable declared with auto or __auto_type to the deduced type. The patch consists of two parts:

Define function QualType::setNullability, which is used to return a QualType with the specified nullability, and use it in computeConditionalNullability.
Propagate nullability when type of auto is being deduced.

rdar://problem/27062504

Diff Detail

Event Timeline

ahatanak updated this revision to Diff 65460.Jul 25 2016, 6:59 PM

ahatanak retitled this revision from to [Sema] Propagate nullability when deducing type of auto.

ahatanak updated this object.

ahatanak added a reviewer: doug.gregor.

ahatanak added a subscriber: cfe-commits.

manmanren added a subscriber: manmanren.Aug 15 2016, 5:27 PM

manmanren added inline comments.

lib/Sema/SemaDecl.cpp
9739	Do we propagate other attributes for deduced types?

Is this really a good idea? If I write:

int *_Nullable f();
int n;
int *_Nonnull g() {
  auto *p = f();
  if (!p) p = &n;
  return p;
}

... it would be wrong to produce a warning that I'm converting from a nullable pointer to a non-nullable pointer.

I didn't think of this case, but no, it isn't a good idea. We shouldn't issue a warning unless we know the returned pointer is nullable.

lib/Sema/SemaDecl.cpp
9739	QualType::setNullability can drop attributes on typedefs because it desugars the type until all nullability specifiers are stripped. I didn't try very hard to make sure QualType::setNullability preserve all the attributes because I couldn't come up with a case where dropping an attribute attached to a typedef for a pointer type would cause clang to mis-compile or issue a wrong diagnostic, so I thought it was safe.

Abandoning this revision.

It looks like we cannot correctly implement this warning without introducing a lot of complexity to clang. Users can use the static analyzer instead as it already warns about this case.

Revision Contents

Path

Size

include/

clang/

AST/

Type.h

4 lines

lib/

AST/

Type.cpp

17 lines

Sema/

SemaDecl.cpp

5 lines

SemaExpr.cpp

9 lines

test/

Sema/

nullability.c

7 lines

SemaCXX/

nullability.cpp

5 lines

Diff 65460

include/clang/AST/Type.h

Show First 20 Lines • Show All 1,087 Lines • ▼ Show 20 Lines	QualType substObjCMemberType(QualType objectType,
ObjCSubstitutionContext context) const;		ObjCSubstitutionContext context) const;

/// Strip Objective-C "__kindof" types from the given type.		/// Strip Objective-C "__kindof" types from the given type.
QualType stripObjCKindOfType(const ASTContext &ctx) const;		QualType stripObjCKindOfType(const ASTContext &ctx) const;

/// Remove all qualifiers including _Atomic.		/// Remove all qualifiers including _Atomic.
QualType getAtomicUnqualifiedType() const;		QualType getAtomicUnqualifiedType() const;

		/// Create a type having the specified nullability.
		QualType setNullability(Optional<NullabilityKind> Kind,
		ASTContext &Ctx) const;

private:		private:
// These methods are implemented in a separate translation unit;		// These methods are implemented in a separate translation unit;
// "static"-ize them to avoid creating temporary QualTypes in the		// "static"-ize them to avoid creating temporary QualTypes in the
// caller.		// caller.
static bool isConstant(QualType T, const ASTContext& Ctx);		static bool isConstant(QualType T, const ASTContext& Ctx);
static QualType getDesugaredType(QualType T, const ASTContext &Context);		static QualType getDesugaredType(QualType T, const ASTContext &Context);
static SplitQualType getSplitDesugaredType(QualType T);		static SplitQualType getSplitDesugaredType(QualType T);
static SplitQualType getSplitUnqualifiedTypeImpl(QualType type);		static SplitQualType getSplitUnqualifiedTypeImpl(QualType type);
▲ Show 20 Lines • Show All 4,766 Lines • Show Last 20 Lines

lib/AST/Type.cpp

	Show First 20 Lines • Show All 1,273 Lines • ▼ Show 20 Lines
	}			}

	QualType QualType::getAtomicUnqualifiedType() const {			QualType QualType::getAtomicUnqualifiedType() const {
	if (auto AT = getTypePtr()->getAs<AtomicType>())			if (auto AT = getTypePtr()->getAs<AtomicType>())
	return AT->getValueType().getUnqualifiedType();			return AT->getValueType().getUnqualifiedType();
	return getUnqualifiedType();			return getUnqualifiedType();
	}			}

				QualType QualType::setNullability(Optional<NullabilityKind> Kind,
				ASTContext &Ctx) const {
				assert(getTypePtr()->isAnyPointerType() && "type has to be a pointer type");
				QualType ResTy = *this;

				// Strip all nullability specifiers.
				while (ResTy->getNullability(Ctx))
				ResTy = ResTy.getSingleStepDesugaredType(Ctx);

				if (!Kind)
				return ResTy;

				// Create a new AttributedType with the new nullability kind.
				auto NewAttr = AttributedType::getNullabilityAttrKind(*Kind);
				return Ctx.getAttributedType(NewAttr, ResTy, ResTy);
				}

	Optional<ArrayRef<QualType>> Type::getObjCSubstitutions(			Optional<ArrayRef<QualType>> Type::getObjCSubstitutions(
	const DeclContext *dc) const {			const DeclContext *dc) const {
	// Look through method scopes.			// Look through method scopes.
	if (auto method = dyn_cast<ObjCMethodDecl>(dc))			if (auto method = dyn_cast<ObjCMethodDecl>(dc))
	dc = method->getDeclContext();			dc = method->getDeclContext();

	// Find the class or category in which the type we're substituting			// Find the class or category in which the type we're substituting
	// was declared.			// was declared.
	▲ Show 20 Lines • Show All 2,494 Lines • Show Last 20 Lines

lib/Sema/SemaDecl.cpp

This file is larger than 256 KB, so syntax highlighting is disabled by default.

Show First 20 Lines • Show All 9,727 Lines • ▼ Show 20 Lines	if (TypeMayContainAuto && VDecl->getType()->isUndeducedType()) {
QualType DeducedType = deduceVarTypeFromInitializer(		QualType DeducedType = deduceVarTypeFromInitializer(
VDecl, VDecl->getDeclName(), VDecl->getType(),		VDecl, VDecl->getDeclName(), VDecl->getType(),
VDecl->getTypeSourceInfo(), VDecl->getSourceRange(), DirectInit, Init);		VDecl->getTypeSourceInfo(), VDecl->getSourceRange(), DirectInit, Init);
if (DeducedType.isNull()) {		if (DeducedType.isNull()) {
RealDecl->setInvalidDecl();		RealDecl->setInvalidDecl();
return;		return;
}		}

		// Propagate init expression's nullability to the deduced type.
		if (!Init->getType().isNull() && DeducedType->isAnyPointerType())
		DeducedType = DeducedType.setNullability(
		Init->getType()->getNullability(Context), Context);
		manmanrenUnsubmitted Not Done Reply Inline Actions Do we propagate other attributes for deduced types? manmanren: Do we propagate other attributes for deduced types?
		ahatanakAuthorUnsubmitted Not Done Reply Inline Actions QualType::setNullability can drop attributes on typedefs because it desugars the type until all nullability specifiers are stripped. I didn't try very hard to make sure QualType::setNullability preserve all the attributes because I couldn't come up with a case where dropping an attribute attached to a typedef for a pointer type would cause clang to mis-compile or issue a wrong diagnostic, so I thought it was safe. ahatanak: QualType::setNullability can drop attributes on typedefs because it desugars the type until all…

VDecl->setType(DeducedType);		VDecl->setType(DeducedType);
assert(VDecl->isLinkageValid());		assert(VDecl->isLinkageValid());

// In ARC, infer lifetime.		// In ARC, infer lifetime.
if (getLangOpts().ObjCAutoRefCount && inferObjCARCLifetime(VDecl))		if (getLangOpts().ObjCAutoRefCount && inferObjCARCLifetime(VDecl))
VDecl->setInvalidDecl();		VDecl->setInvalidDecl();

// If this is a redeclaration, check that the type we just deduced matches		// If this is a redeclaration, check that the type we just deduced matches
▲ Show 20 Lines • Show All 5,745 Lines • Show Last 20 Lines

lib/Sema/SemaExpr.cpp

This file is larger than 256 KB, so syntax highlighting is disabled by default.

Show First 20 Lines • Show All 7,046 Lines • ▼ Show 20 Lines	// Compute nullability of a normal conditional expression.
else		else
MergedKind = NullabilityKind::Unspecified;		MergedKind = NullabilityKind::Unspecified;
}		}

// Return if ResTy already has the correct nullability.		// Return if ResTy already has the correct nullability.
if (GetNullability(ResTy) == MergedKind)		if (GetNullability(ResTy) == MergedKind)
return ResTy;		return ResTy;

// Strip all nullability from ResTy.		// Create a new type with the merged nullability kind.
while (ResTy->getNullability(Ctx))		return ResTy.setNullability(MergedKind, Ctx);
ResTy = ResTy.getSingleStepDesugaredType(Ctx);

// Create a new AttributedType with the new nullability kind.
auto NewAttr = AttributedType::getNullabilityAttrKind(MergedKind);
return Ctx.getAttributedType(NewAttr, ResTy, ResTy);
}		}

/// ActOnConditionalOp - Parse a ?: operation. Note that 'LHS' may be null		/// ActOnConditionalOp - Parse a ?: operation. Note that 'LHS' may be null
/// in the case of a the GNU conditional expr extension.		/// in the case of a the GNU conditional expr extension.
ExprResult Sema::ActOnConditionalOp(SourceLocation QuestionLoc,		ExprResult Sema::ActOnConditionalOp(SourceLocation QuestionLoc,
SourceLocation ColonLoc,		SourceLocation ColonLoc,
Expr CondExpr, Expr LHSExpr,		Expr CondExpr, Expr LHSExpr,
Expr *RHSExpr) {		Expr *RHSExpr) {
▲ Show 20 Lines • Show All 8,107 Lines • Show Last 20 Lines

test/Sema/nullability.c

	Show First 20 Lines • Show All 123 Lines • ▼ Show 20 Lines
	void nullable_to_nonnull(_Nullable int *ptr) {			void nullable_to_nonnull(_Nullable int *ptr) {
	int *a = ptr; // okay			int *a = ptr; // okay
	_Nonnull int b = ptr; // expected-warning{{implicit conversion from nullable pointer 'int _Nullable' to non-nullable pointer type 'int * _Nonnull'}}			_Nonnull int b = ptr; // expected-warning{{implicit conversion from nullable pointer 'int _Nullable' to non-nullable pointer type 'int * _Nonnull'}}
	b = ptr; // expected-warning{{implicit conversion from nullable pointer 'int * _Nullable' to non-nullable pointer type 'int * _Nonnull'}}			b = ptr; // expected-warning{{implicit conversion from nullable pointer 'int * _Nullable' to non-nullable pointer type 'int * _Nonnull'}}

	accepts_nonnull_1(ptr); // expected-warning{{implicit conversion from nullable pointer 'int * _Nullable' to non-nullable pointer type 'int * _Nonnull'}}			accepts_nonnull_1(ptr); // expected-warning{{implicit conversion from nullable pointer 'int * _Nullable' to non-nullable pointer type 'int * _Nonnull'}}
	}			}

				int * _Nullable return_nullable();

				int * _Nonnull deduce_auto() {
				__auto_type *p = return_nullable();
				return p; // expected-warning{{implicit conversion from nullable pointer 'int * _Nullable' to non-nullable pointer type 'int * _Nonnull'}}
				}

	// Check nullability of conditional expressions.			// Check nullability of conditional expressions.
	void conditional_expr(int c) {			void conditional_expr(int c) {
	int * _Nonnull p;			int * _Nonnull p;
	int * _Nonnull nonnullP;			int * _Nonnull nonnullP;
	int * _Nullable nullableP;			int * _Nullable nullableP;
	int * _Null_unspecified unspecifiedP;			int * _Null_unspecified unspecifiedP;
	int *noneP;			int *noneP;

	▲ Show 20 Lines • Show All 58 Lines • Show Last 20 Lines

test/SemaCXX/nullability.cpp

Show First 20 Lines • Show All 92 Lines • ▼ Show 20 Lines	void AssignAndInitNonNullFromFn() {
void _Nonnull p4 = ReturnNullable(); // expected-warning{{implicit conversion from nullable pointer 'void _Nullable' to non-nullable pointer type 'void * _Nonnull'}}		void _Nonnull p4 = ReturnNullable(); // expected-warning{{implicit conversion from nullable pointer 'void _Nullable' to non-nullable pointer type 'void * _Nonnull'}}
void *_Nonnull nonnull;		void *_Nonnull nonnull;
nonnull = ReturnNullable(); // expected-warning{{implicit conversion from nullable pointer 'void * _Nullable' to non-nullable pointer type 'void * _Nonnull'}}		nonnull = ReturnNullable(); // expected-warning{{implicit conversion from nullable pointer 'void * _Nullable' to non-nullable pointer type 'void * _Nonnull'}}
nonnull = {ReturnNullable()}; // expected-warning{{implicit conversion from nullable pointer 'void * _Nullable' to non-nullable pointer type 'void * _Nonnull'}}		nonnull = {ReturnNullable()}; // expected-warning{{implicit conversion from nullable pointer 'void * _Nullable' to non-nullable pointer type 'void * _Nonnull'}}

TakeNonnull(ReturnNullable()); //expected-warning{{implicit conversion from nullable pointer 'void * _Nullable' to non-nullable pointer type 'void * _Nonnull}}		TakeNonnull(ReturnNullable()); //expected-warning{{implicit conversion from nullable pointer 'void * _Nullable' to non-nullable pointer type 'void * _Nonnull}}
}		}

		void * _Nonnull DeduceAuto() {
		auto *p = ReturnNullable();
		return p; // expected-warning{{implicit conversion from nullable pointer 'void * _Nullable' to non-nullable pointer type 'void * _Nonnull'}}
		}

void ConditionalExpr(bool c) {		void ConditionalExpr(bool c) {
struct Base {};		struct Base {};
struct Derived : Base {};		struct Derived : Base {};

Base * _Nonnull p;		Base * _Nonnull p;
Base * _Nonnull nonnullB;		Base * _Nonnull nonnullB;
Base * _Nullable nullableB;		Base * _Nullable nullableB;
Derived * _Nonnull nonnullD;		Derived * _Nonnull nonnullD;
Show All 11 Lines