This is an archive of the discontinued LLVM Phabricator instance.

Differential D47671

[analyzer] Implement copy elision.
ClosedPublic

Authored by NoQ on Jun 1 2018, 7:29 PM.

Details

Reviewers
dcoughlin
xazax.hun
a.sidorin
george.karpenkov
szepet
rnkovacs
Commits
rG9a209ad1d88e: [analyzer] Add support for pre-C++17 copy elision.
rL335800: [analyzer] Add support for pre-C++17 copy elision.
rC335800: [analyzer] Add support for pre-C++17 copy elision.
Summary

This patch builds on top of D47616 to elide pre-C++17 elidable constructors during analysis. They are present in the AST and in the CFG but they'll be skipped during analysis, as planned in http://lists.llvm.org/pipermail/cfe-dev/2018-March/057318.html

It also elides destructors that correspond to elided constructors, and for that i had to add another program state trait, because the universal state trait i added previously had no room for this flag.

The main idea is straightforward. Construction context for the elidable constructor can already be retrieved from construction context of the inner "temporary" constructor. Therefore upon constructing the "temporary", we can use the target region of the elided constructor (which isn't necessarily a temporary region). Then we flag the elidable constructor's CXXConstructExpr in the program state and track what target region was already computed for it. Upon encountering the elidable construct-expression during analysis, we don't perform construction, but only assign the value to the expression.

Temporary materialization becomes funny because temporary can now be materialized into a non-temporary region. But the algorithm has not changed much.

Massive changes in the tests indicate that copy elision is in fact working as intended. I also extended tests to track whether there were conservatively evaluated calls (those glob tests in cxx17-mandatory-elision.cpp). They indicate the problem with C++17 CFG that still contains destructors for C++17-mandatory-ly elided constructors. I could easily mark them as "elided", but it'd be better to never add them to the CFG in the first place.

I'm not sure we need an -analyzer-config flag for disabling this feature, though i wouldn't mind adding one.

Diff Detail

Repository
rC Clang

Event Timeline

NoQ created this revision.Jun 1 2018, 7:29 PM
Herald added subscribers: cfe-commits, baloghadamsoftware. · View Herald TranscriptJun 1 2018, 7:29 PM
NoQ added parent revisions: D47667: [CFG] [analyzer] Remove unnecessary CXXBindTemporaryExpr from lifetime-extended temporary construction contexts., D47616: [CFG] [analyzer] Explain copy elision through construction contexts..Jun 1 2018, 7:32 PM
MTC added a subscriber: MTC.Jun 4 2018, 12:35 AM
xazax.hun added a comment.Jun 4 2018, 1:29 PM

So having an analyzer-config option would be useful for those codebases that are expected to be compiled with less advanced compilers that do not elide copies or not doing it aggressively enough. Maybe it is worth to ask on the mailing list of the community wants to have an option for this? I am not sure though how often the end users end up fine tuning the analyzer. It might be nice to have a guide how to do that (and in what circumstances does each of the config values make sense).

george.karpenkov added a comment.Jun 5 2018, 2:43 PM

So having an analyzer-config option would be useful for those codebases that are expected to be compiled with less advanced compilers that do not elide copies or not doing it aggressively enough.

I'm not sure it makes sense. From my understanding, that's just how c++17 is defined, and that's unrelated to what compiler implementation is used.

I am not sure though how often the end users end up fine tuning the analyzer.

My guess will be "never" (apart from turning on checkers)

xazax.hun added a comment.Jun 5 2018, 3:03 PM
In D47671#1122994, @george.karpenkov wrote:

So having an analyzer-config option would be useful for those codebases that are expected to be compiled with less advanced compilers that do not elide copies or not doing it aggressively enough.

I'm not sure it makes sense. From my understanding, that's just how c++17 is defined, and that's unrelated to what compiler implementation is used.

Yeah, this is guaranteed for C++17. My only concern are the projects that need to support platforms where no comforming C++17 compiler is available (I think this might be common in the embedded world). I do not have any numbers though how frequent those projects are. That is the reason why I was wondering if it is worth asking. It is also possible that the authors of those project do not care about the analyzer.

But since this config would most probably be removed at some point, I am fine with not adding it.

george.karpenkov accepted this revision.Jun 5 2018, 6:41 PM
This revision is now accepted and ready to land.Jun 5 2018, 6:41 PM
NoQ added a comment.Jun 5 2018, 7:58 PM
In D47671#1122994, @george.karpenkov wrote:

From my understanding, that's just how c++17 is defined, and that's unrelated to what compiler implementation is used.

Yeah, but this patch is specifically about supporting the pre-C++17 AST, where copy elision was already a well-defined concept, but it wasn't mandatory.

In C++17 copy-constructors are simply omitted from the AST (but CXXBindTemporaryExpr might still be accidentally present, and additionally more different construction syntax patterns may appear, eg. we may elide all the way through ?: operators). Support for C++17 was added in the previous patches.

This patch addresses pre-C++17 AST that does include copy-constructors, but they are marked as "(elidable)". They are here because whether to elide them or not was implementation-defined, and even if the elided constructor had arbitrary side effects the compiler was still allowed to choose not to elide it. In this case we decided not to skip in in CFG, but only skip it in the analyzer, because that'd allow the Environment to work with the AST in a straightforward and intuitive manner as it always did. Hence the patch.

So there are two reasons why to add an option:

  • To be able to disable the new feature as a workaround to a bug in this feature.
  • To be able to actually maintain two different behaviors forever as an opt-in feature.

I'm totally fine with the former.

I'm not sure if it'll be easy and worthwile to try doing the latter. We might as well try and see if it will be easy to maintain. I hope it'll mostly work because most syntax patterns with elidable constructors will also appear anyway with non-elidable constructors, albeit much more rarely.

I guess i'll add the flag and see how it goes.

xazax.hun added a comment.Jun 10 2018, 3:58 AM

Just for the record, there is a common example where relying on copy elision might bite and google do not recommend relying on it for correctness: https://abseil.io/tips/120

The main purpose of sharing is to add some more context to the discussion, I do not consider this to be an argument, because I can still see that this practice as opinionated.

Herald added a subscriber: mikhail.ramalho. · View Herald TranscriptJun 10 2018, 3:58 AM
NoQ added a comment.Jun 11 2018, 1:29 PM
In D47671#1127486, @xazax.hun wrote:

Just for the record, there is a common example where relying on copy elision might bite and google do not recommend relying on it for correctness: https://abseil.io/tips/120

The main purpose of sharing is to add some more context to the discussion, I do not consider this to be an argument, because I can still see that this practice as opinionated.

Ah, NRVO, thanks for pointing it out! We can't do that yet, this patch only enables simple RVO. Also it seems that NRVO isn't mandatory even in C++17.

In any case, it's clear that relying on any sort of copy elision should be treated as a bug, but not necessarily a high-priority bug, and i'm not seeing any better way of detecting this bug other than suggesting the user to run a separate analysis with copy elision disabled and see if any of our usual kinds of bugs are found.

P.S. It seems that one of my currently-on-review patches has introduced a performance regression, i'm investigating it.

NoQ updated this revision to Diff 151279.Jun 13 2018, 5:50 PM

I added an option to disable copy elision on CFG side in D47616. The analyzer makes use of it automagically: elided constructors are replaced with temporary constructors in the CFG and the old behavior is restored.

Tests now test both behaviors and demonstrate that C++17 mandatory copy elision works exactly like pre-C++17 optional copy elision, despite underlying AST being completely different. Well, most of the time: there's still a bug that causes us to think that we need to call a destructor on the elided temporary. Thankfully, such destructor would be evaluated conservatively.

NoQ added a comment.Jun 13 2018, 5:54 PM

P.S. It seems that one of my currently-on-review patches has introduced a performance regression, i'm investigating it.

Never mind, that was an old version of the patch, i.e. i accidentally fixed that regression before uploading the patch to phabricator.

NoQ mentioned this in D48681: [CFG] [analyzer] Add construction contexts for function arguments..Jun 27 2018, 4:27 PM
Closed by commit rC335800: [analyzer] Add support for pre-C++17 copy elision. (authored by NoQ). · Explain WhyJun 27 2018, 5:35 PM
This revision was automatically updated to reflect the committed changes.
NoQ mentioned this in D63968: [analyzer] Fix target region invalidation when returning into a ctor initializer..Jun 28 2019, 6:00 PM

Revision Contents

PathSize
include/
clang/
StaticAnalyzer/
Core/
PathSensitive/
23 lines
lib/
StaticAnalyzer/
Core/
146 lines
47 lines
test/
Analysis/
30 lines
6 lines
inlining/
9 lines
158 lines
188 lines

Diff 153221

include/clang/StaticAnalyzer/Core/PathSensitive/ExprEngine.h

Show First 20 LinesShow All 774 Lines▼ Show 20 Linesprivate:
/// If the given statement corresponds to an object under construction, /// If the given statement corresponds to an object under construction,
/// being part of its construciton context, retrieve that object's location. /// being part of its construciton context, retrieve that object's location.
static Optional<SVal> getObjectUnderConstruction( static Optional<SVal> getObjectUnderConstruction(
ProgramStateRef State, ProgramStateRef State,
llvm::PointerUnion<const Stmt *, const CXXCtorInitializer *> P, llvm::PointerUnion<const Stmt *, const CXXCtorInitializer *> P,
const LocationContext *LC); const LocationContext *LC);
/// If the given expression corresponds to a temporary that was used for
/// passing into an elidable copy/move constructor and that constructor
/// was actually elided, track that we also need to elide the destructor.
static ProgramStateRef elideDestructor(ProgramStateRef State,
const CXXBindTemporaryExpr *BTE,
const LocationContext *LC);
/// Stop tracking the destructor that corresponds to an elided constructor.
static ProgramStateRef
cleanupElidedDestructor(ProgramStateRef State,
const CXXBindTemporaryExpr *BTE,
const LocationContext *LC);
/// Returns true if the given expression corresponds to a temporary that
/// was constructed for passing into an elidable copy/move constructor
/// and that constructor was actually elided.
static bool isDestructorElided(ProgramStateRef State,
const CXXBindTemporaryExpr *BTE,
const LocationContext *LC);
/// Check if all objects under construction have been fully constructed /// Check if all objects under construction have been fully constructed
/// for the given context range (including FromLC, not including ToLC). /// for the given context range (including FromLC, not including ToLC).
/// This is useful for assertions. /// This is useful for assertions. Also checks if elided destructors
/// were cleaned up.
static bool areAllObjectsFullyConstructed(ProgramStateRef State, static bool areAllObjectsFullyConstructed(ProgramStateRef State,
const LocationContext *FromLC, const LocationContext *FromLC,
const LocationContext *ToLC); const LocationContext *ToLC);
}; };
/// Traits for storing the call processing policy inside GDM. /// Traits for storing the call processing policy inside GDM.
/// The GDM stores the corresponding CallExpr pointer. /// The GDM stores the corresponding CallExpr pointer.
// FIXME: This does not use the nice trait macros because it must be accessible // FIXME: This does not use the nice trait macros because it must be accessible
Show All 13 Lines

lib/StaticAnalyzer/Core/ExprEngine.cpp

Show First 20 LinesShow All 133 Lines▼ Show 20 Linespublic:
ConstructedObjectKey( ConstructedObjectKey(
llvm::PointerUnion<const Stmt *, const CXXCtorInitializer *> P, llvm::PointerUnion<const Stmt *, const CXXCtorInitializer *> P,
const LocationContext *LC) const LocationContext *LC)
: Impl(P, LC) { : Impl(P, LC) {
// This is the full list of statements that require additional actions when // This is the full list of statements that require additional actions when
// encountered. This list may be expanded when new actions are implemented. // encountered. This list may be expanded when new actions are implemented.
assert(getCXXCtorInitializer() || isa<DeclStmt>(getStmt()) || assert(getCXXCtorInitializer() || isa<DeclStmt>(getStmt()) ||
isa<CXXNewExpr>(getStmt()) || isa<CXXBindTemporaryExpr>(getStmt()) || isa<CXXNewExpr>(getStmt()) || isa<CXXBindTemporaryExpr>(getStmt()) ||
isa<MaterializeTemporaryExpr>(getStmt())); isa<MaterializeTemporaryExpr>(getStmt()) ||
isa<CXXConstructExpr>(getStmt()));
} }
const Stmt *getStmt() const { const Stmt *getStmt() const {
return Impl.first.dyn_cast<const Stmt *>(); return Impl.first.dyn_cast<const Stmt *>();
} }
const CXXCtorInitializer *getCXXCtorInitializer() const { const CXXCtorInitializer *getCXXCtorInitializer() const {
return Impl.first.dyn_cast<const CXXCtorInitializer *>(); return Impl.first.dyn_cast<const CXXCtorInitializer *>();
Show All 27 Linespublic:
} }
}; };
typedef llvm::ImmutableMap<ConstructedObjectKey, SVal> typedef llvm::ImmutableMap<ConstructedObjectKey, SVal>
ObjectsUnderConstructionMap; ObjectsUnderConstructionMap;
REGISTER_TRAIT_WITH_PROGRAMSTATE(ObjectsUnderConstruction, REGISTER_TRAIT_WITH_PROGRAMSTATE(ObjectsUnderConstruction,
ObjectsUnderConstructionMap) ObjectsUnderConstructionMap)
// Additionally, track a set of destructors that correspond to elided
// constructors when copy elision occurs.
typedef std::pair<const CXXBindTemporaryExpr *, const LocationContext *>
ElidedDestructorItem;
typedef llvm::ImmutableSet<ElidedDestructorItem>
ElidedDestructorSet;
REGISTER_TRAIT_WITH_PROGRAMSTATE(ElidedDestructors,
ElidedDestructorSet);
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// Engine construction and deletion. // Engine construction and deletion.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
static const char* TagProviderName = "ExprEngine"; static const char* TagProviderName = "ExprEngine";
ExprEngine::ExprEngine(cross_tu::CrossTranslationUnitContext &CTU, ExprEngine::ExprEngine(cross_tu::CrossTranslationUnitContext &CTU,
▲ Show 20 LinesShow All 159 Lines▼ Show 20 LinesExprEngine::createTemporaryRegionIfNeeded(ProgramStateRef State,
const Expr *Init = InitWithAdjustments->skipRValueSubobjectAdjustments( const Expr *Init = InitWithAdjustments->skipRValueSubobjectAdjustments(
CommaLHSs, Adjustments); CommaLHSs, Adjustments);
// Take the region for Init, i.e. for the whole object. If we do not remember // Take the region for Init, i.e. for the whole object. If we do not remember
// the region in which the object originally was constructed, come up with // the region in which the object originally was constructed, come up with
// a new temporary region out of thin air and copy the contents of the object // a new temporary region out of thin air and copy the contents of the object
// (which are currently present in the Environment, because Init is an rvalue) // (which are currently present in the Environment, because Init is an rvalue)
// into that region. This is not correct, but it is better than nothing. // into that region. This is not correct, but it is better than nothing.
bool FoundOriginalMaterializationRegion = false;
const TypedValueRegion *TR = nullptr; const TypedValueRegion *TR = nullptr;
if (const auto *MT = dyn_cast<MaterializeTemporaryExpr>(Result)) { if (const auto *MT = dyn_cast<MaterializeTemporaryExpr>(Result)) {
if (Optional<SVal> V = getObjectUnderConstruction(State, MT, LC)) { if (Optional<SVal> V = getObjectUnderConstruction(State, MT, LC)) {
FoundOriginalMaterializationRegion = true;
TR = cast<CXXTempObjectRegion>(V->getAsRegion());
assert(TR);
State = finishObjectConstruction(State, MT, LC); State = finishObjectConstruction(State, MT, LC);
State = State->BindExpr(Result, LC, *V);
return State;
} else { } else {
StorageDuration SD = MT->getStorageDuration(); StorageDuration SD = MT->getStorageDuration();
// If this object is bound to a reference with static storage duration, we // If this object is bound to a reference with static storage duration, we
// put it in a different region to prevent "address leakage" warnings. // put it in a different region to prevent "address leakage" warnings.
if (SD == SD_Static || SD == SD_Thread) { if (SD == SD_Static || SD == SD_Thread) {
TR = MRMgr.getCXXStaticTempObjectRegion(Init); TR = MRMgr.getCXXStaticTempObjectRegion(Init);
} else { } else {
TR = MRMgr.getCXXTempObjectRegion(Init, LC); TR = MRMgr.getCXXTempObjectRegion(Init, LC);
Show All 20 Lines case SubobjectAdjustment::MemberPointerAdjustment:
// FIXME: Unimplemented. // FIXME: Unimplemented.
State = State->invalidateRegions(Reg, InitWithAdjustments, State = State->invalidateRegions(Reg, InitWithAdjustments,
currBldrCtx->blockCount(), LC, true, currBldrCtx->blockCount(), LC, true,
nullptr, nullptr, nullptr); nullptr, nullptr, nullptr);
return State; return State;
} }
} }
if (!FoundOriginalMaterializationRegion) {
// What remains is to copy the value of the object to the new region. // What remains is to copy the value of the object to the new region.
// FIXME: In other words, what we should always do is copy value of the // FIXME: In other words, what we should always do is copy value of the
// Init expression (which corresponds to the bigger object) to the whole // Init expression (which corresponds to the bigger object) to the whole
// temporary region TR. However, this value is often no longer present // temporary region TR. However, this value is often no longer present
// in the Environment. If it has disappeared, we instead invalidate TR. // in the Environment. If it has disappeared, we instead invalidate TR.
// Still, what we can do is assign the value of expression Ex (which // Still, what we can do is assign the value of expression Ex (which
// corresponds to the sub-object) to the TR's sub-region Reg. At least, // corresponds to the sub-object) to the TR's sub-region Reg. At least,
// values inside Reg would be correct. // values inside Reg would be correct.
SVal InitVal = State->getSVal(Init, LC); SVal InitVal = State->getSVal(Init, LC);
if (InitVal.isUnknown()) { if (InitVal.isUnknown()) {
InitVal = getSValBuilder().conjureSymbolVal(Result, LC, Init->getType(), InitVal = getSValBuilder().conjureSymbolVal(Result, LC, Init->getType(),
currBldrCtx->blockCount()); currBldrCtx->blockCount());
State = State->bindLoc(BaseReg.castAs<Loc>(), InitVal, LC, false); State = State->bindLoc(BaseReg.castAs<Loc>(), InitVal, LC, false);
// Then we'd need to take the value that certainly exists and bind it // Then we'd need to take the value that certainly exists and bind it
// over. // over.
if (InitValWithAdjustments.isUnknown()) { if (InitValWithAdjustments.isUnknown()) {
// Try to recover some path sensitivity in case we couldn't // Try to recover some path sensitivity in case we couldn't
// compute the value. // compute the value.
InitValWithAdjustments = getSValBuilder().conjureSymbolVal( InitValWithAdjustments = getSValBuilder().conjureSymbolVal(
Result, LC, InitWithAdjustments->getType(), Result, LC, InitWithAdjustments->getType(),
currBldrCtx->blockCount()); currBldrCtx->blockCount());
} }
State = State =
State->bindLoc(Reg.castAs<Loc>(), InitValWithAdjustments, LC, false); State->bindLoc(Reg.castAs<Loc>(), InitValWithAdjustments, LC, false);
} else { } else {
State = State->bindLoc(BaseReg.castAs<Loc>(), InitVal, LC, false); State = State->bindLoc(BaseReg.castAs<Loc>(), InitVal, LC, false);
} }
}
// The result expression would now point to the correct sub-region of the // The result expression would now point to the correct sub-region of the
// newly created temporary region. Do this last in order to getSVal of Init // newly created temporary region. Do this last in order to getSVal of Init
// correctly in case (Result == Init). // correctly in case (Result == Init).
State = State->BindExpr(Result, LC, Reg); State = State->BindExpr(Result, LC, Reg);
if (!FoundOriginalMaterializationRegion) {
// Notify checkers once for two bindLoc()s. // Notify checkers once for two bindLoc()s.
State = processRegionChange(State, TR, LC); State = processRegionChange(State, TR, LC);
}
return State; return State;
} }
ProgramStateRef ExprEngine::addObjectUnderConstruction( ProgramStateRef ExprEngine::addObjectUnderConstruction(
ProgramStateRef State, ProgramStateRef State,
llvm::PointerUnion<const Stmt *, const CXXCtorInitializer *> P, llvm::PointerUnion<const Stmt *, const CXXCtorInitializer *> P,
const LocationContext *LC, SVal V) { const LocationContext *LC, SVal V) {
Show All 17 LinesProgramStateRef ExprEngine::finishObjectConstruction(
ProgramStateRef State, ProgramStateRef State,
llvm::PointerUnion<const Stmt *, const CXXCtorInitializer *> P, llvm::PointerUnion<const Stmt *, const CXXCtorInitializer *> P,
const LocationContext *LC) { const LocationContext *LC) {
ConstructedObjectKey Key(P, LC->getStackFrame()); ConstructedObjectKey Key(P, LC->getStackFrame());
assert(State->contains<ObjectsUnderConstruction>(Key)); assert(State->contains<ObjectsUnderConstruction>(Key));
return State->remove<ObjectsUnderConstruction>(Key); return State->remove<ObjectsUnderConstruction>(Key);
} }
ProgramStateRef ExprEngine::elideDestructor(ProgramStateRef State,
const CXXBindTemporaryExpr *BTE,
const LocationContext *LC) {
ElidedDestructorItem I(BTE, LC);
assert(!State->contains<ElidedDestructors>(I));
return State->add<ElidedDestructors>(I);
}
ProgramStateRef
ExprEngine::cleanupElidedDestructor(ProgramStateRef State,
const CXXBindTemporaryExpr *BTE,
const LocationContext *LC) {
ElidedDestructorItem I(BTE, LC);
assert(State->contains<ElidedDestructors>(I));
return State->remove<ElidedDestructors>(I);
}
bool ExprEngine::isDestructorElided(ProgramStateRef State,
const CXXBindTemporaryExpr *BTE,
const LocationContext *LC) {
ElidedDestructorItem I(BTE, LC);
return State->contains<ElidedDestructors>(I);
}
bool ExprEngine::areAllObjectsFullyConstructed(ProgramStateRef State, bool ExprEngine::areAllObjectsFullyConstructed(ProgramStateRef State,
const LocationContext *FromLC, const LocationContext *FromLC,
const LocationContext *ToLC) { const LocationContext *ToLC) {
const LocationContext *LC = FromLC; const LocationContext *LC = FromLC;
while (LC != ToLC) { while (LC != ToLC) {
assert(LC && "ToLC must be a parent of FromLC!"); assert(LC && "ToLC must be a parent of FromLC!");
for (auto I : State->get<ObjectsUnderConstruction>()) for (auto I : State->get<ObjectsUnderConstruction>())
if (I.first.getLocationContext() == LC) if (I.first.getLocationContext() == LC)
return false; return false;
for (auto I: State->get<ElidedDestructors>())
if (I.second == LC)
return false;
LC = LC->getParent(); LC = LC->getParent();
} }
return true; return true;
} }
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// Top-level transfer function logic (Dispatcher). // Top-level transfer function logic (Dispatcher).
Show All 28 Linesstatic void printObjectsUnderConstructionForContext(raw_ostream &Out,
for (auto I : State->get<ObjectsUnderConstruction>()) { for (auto I : State->get<ObjectsUnderConstruction>()) {
ConstructedObjectKey Key = I.first; ConstructedObjectKey Key = I.first;
SVal Value = I.second; SVal Value = I.second;
if (Key.getLocationContext() != LC) if (Key.getLocationContext() != LC)
continue; continue;
Key.print(Out, nullptr, PP); Key.print(Out, nullptr, PP);
Out << " : " << Value << NL; Out << " : " << Value << NL;
} }
for (auto I : State->get<ElidedDestructors>()) {
if (I.second != LC)
continue;
Out << '(' << I.second << ',' << (const void *)I.first << ") ";
I.first->printPretty(Out, nullptr, PP);
Out << " : (constructor elided)" << NL;
}
} }
void ExprEngine::printState(raw_ostream &Out, ProgramStateRef State, void ExprEngine::printState(raw_ostream &Out, ProgramStateRef State,
const char *NL, const char *Sep, const char *NL, const char *Sep,
const LocationContext *LCtx) { const LocationContext *LCtx) {
if (LCtx) { if (LCtx) {
if (!State->get<ObjectsUnderConstruction>().isEmpty()) { if (!State->get<ObjectsUnderConstruction>().isEmpty()) {
Out << Sep << "Objects under construction:" << NL; Out << Sep << "Objects under construction:" << NL;
▲ Show 20 LinesShow All 458 Lines▼ Show 20 Linesvoid ExprEngine::ProcessMemberDtor(const CFGMemberDtor D,
VisitCXXDestructor(T, FieldVal.castAs<loc::MemRegionVal>().getRegion(), VisitCXXDestructor(T, FieldVal.castAs<loc::MemRegionVal>().getRegion(),
CurDtor->getBody(), /*IsBase=*/false, Pred, Dst, CallOpts); CurDtor->getBody(), /*IsBase=*/false, Pred, Dst, CallOpts);
} }
void ExprEngine::ProcessTemporaryDtor(const CFGTemporaryDtor D, void ExprEngine::ProcessTemporaryDtor(const CFGTemporaryDtor D,
ExplodedNode *Pred, ExplodedNode *Pred,
ExplodedNodeSet &Dst) { ExplodedNodeSet &Dst) {
ExplodedNodeSet CleanDtorState; const CXXBindTemporaryExpr *BTE = D.getBindTemporaryExpr();
StmtNodeBuilder StmtBldr(Pred, CleanDtorState, *currBldrCtx);
ProgramStateRef State = Pred->getState(); ProgramStateRef State = Pred->getState();
const LocationContext *LC = Pred->getLocationContext();
const MemRegion *MR = nullptr; const MemRegion *MR = nullptr;
if (Optional<SVal> V = if (Optional<SVal> V =
getObjectUnderConstruction(State, D.getBindTemporaryExpr(), getObjectUnderConstruction(State, D.getBindTemporaryExpr(),
Pred->getLocationContext())) { Pred->getLocationContext())) {
// FIXME: Currently we insert temporary destructors for default parameters, // FIXME: Currently we insert temporary destructors for default parameters,
// but we don't insert the constructors, so the entry in // but we don't insert the constructors, so the entry in
// ObjectsUnderConstruction may be missing. // ObjectsUnderConstruction may be missing.
State = finishObjectConstruction(State, D.getBindTemporaryExpr(), State = finishObjectConstruction(State, D.getBindTemporaryExpr(),
Pred->getLocationContext()); Pred->getLocationContext());
MR = V->getAsRegion(); MR = V->getAsRegion();
} }
// If copy elision has occured, and the constructor corresponding to the
// destructor was elided, we need to skip the destructor as well.
if (isDestructorElided(State, BTE, LC)) {
State = cleanupElidedDestructor(State, BTE, LC);
NodeBuilder Bldr(Pred, Dst, *currBldrCtx);
PostImplicitCall PP(D.getDestructorDecl(getContext()),
D.getBindTemporaryExpr()->getLocStart(),
Pred->getLocationContext());
Bldr.generateNode(PP, State, Pred);
return;
}
ExplodedNodeSet CleanDtorState;
StmtNodeBuilder StmtBldr(Pred, CleanDtorState, *currBldrCtx);
StmtBldr.generateNode(D.getBindTemporaryExpr(), Pred, State); StmtBldr.generateNode(D.getBindTemporaryExpr(), Pred, State);
QualType T = D.getBindTemporaryExpr()->getSubExpr()->getType(); QualType T = D.getBindTemporaryExpr()->getSubExpr()->getType();
// FIXME: Currently CleanDtorState can be empty here due to temporaries being // FIXME: Currently CleanDtorState can be empty here due to temporaries being
// bound to default parameters. // bound to default parameters.
assert(CleanDtorState.size() <= 1); assert(CleanDtorState.size() <= 1);
ExplodedNode *CleanPred = ExplodedNode *CleanPred =
CleanDtorState.empty() ? Pred : *CleanDtorState.begin(); CleanDtorState.empty() ? Pred : *CleanDtorState.begin();
▲ Show 20 LinesShow All 1,168 Lines▼ Show 20 Lines while (LC != ToLC) {
assert(LC && "ToLC must be a parent of FromLC!"); assert(LC && "ToLC must be a parent of FromLC!");
for (auto I : State->get<ObjectsUnderConstruction>()) for (auto I : State->get<ObjectsUnderConstruction>())
if (I.first.getLocationContext() == LC) { if (I.first.getLocationContext() == LC) {
// The comment above only pardons us for not cleaning up a // The comment above only pardons us for not cleaning up a
// CXXBindTemporaryExpr. If any other statements are found here, // CXXBindTemporaryExpr. If any other statements are found here,
// it must be a separate problem. // it must be a separate problem.
assert(isa<CXXBindTemporaryExpr>(I.first.getStmt())); assert(isa<CXXBindTemporaryExpr>(I.first.getStmt()));
State = State->remove<ObjectsUnderConstruction>(I.first); State = State->remove<ObjectsUnderConstruction>(I.first);
// Also cleanup the elided destructor info.
ElidedDestructorItem Item(
cast<CXXBindTemporaryExpr>(I.first.getStmt()),
I.first.getLocationContext());
State = State->remove<ElidedDestructors>(Item);
} }
// Also suppress the assertion for elided destructors when temporary
// destructors are not provided at all by the CFG, because there's no
// good place to clean them up.
if (!AMgr.getAnalyzerOptions().includeTemporaryDtorsInCFG())
for (auto I : State->get<ElidedDestructors>())
if (I.second == LC)
State = State->remove<ElidedDestructors>(I);
LC = LC->getParent(); LC = LC->getParent();
} }
if (State != Pred->getState()) { if (State != Pred->getState()) {
Pred = Bldr.generateNode(Pred->getLocation(), State, Pred); Pred = Bldr.generateNode(Pred->getLocation(), State, Pred);
if (!Pred) { if (!Pred) {
// The node with clean temporaries already exists. We might have reached // The node with clean temporaries already exists. We might have reached
// it on a path on which we initialize different temporaries. // it on a path on which we initialize different temporaries.
return; return;
▲ Show 20 LinesShow All 951 LinesShow Last 20 Lines

lib/StaticAnalyzer/Core/ExprEngineCXX.cpp

Show First 20 LinesShow All 203 Lines▼ Show 20 Lines case ConstructionContext::CXX17ElidedCopyReturnedValueKind: {
// live long enough in the region store in this case? Would checkers // live long enough in the region store in this case? Would checkers
// think that this object immediately goes out of scope? // think that this object immediately goes out of scope?
CallOpts.IsTemporaryCtorOrDtor = true; CallOpts.IsTemporaryCtorOrDtor = true;
SVal V = loc::MemRegionVal(MRMgr.getCXXTempObjectRegion(E, LCtx)); SVal V = loc::MemRegionVal(MRMgr.getCXXTempObjectRegion(E, LCtx));
return std::make_pair(State, V); return std::make_pair(State, V);
} }
llvm_unreachable("Unhandled return value construction context!"); llvm_unreachable("Unhandled return value construction context!");
} }
case ConstructionContext::ElidedTemporaryObjectKind: case ConstructionContext::ElidedTemporaryObjectKind: {
assert(AMgr.getAnalyzerOptions().shouldElideConstructors()); assert(AMgr.getAnalyzerOptions().shouldElideConstructors());
// FALL-THROUGH const auto *TCC = cast<ElidedTemporaryObjectConstructionContext>(CC);
const CXXBindTemporaryExpr *BTE = TCC->getCXXBindTemporaryExpr();
const MaterializeTemporaryExpr *MTE = TCC->getMaterializedTemporaryExpr();
const CXXConstructExpr *CE = TCC->getConstructorAfterElision();
// Support pre-C++17 copy elision. We'll have the elidable copy
// constructor in the AST and in the CFG, but we'll skip it
// and construct directly into the final object. This call
// also sets the CallOpts flags for us.
SVal V;
std::tie(State, V) = prepareForObjectConstruction(
CE, State, LCtx, TCC->getConstructionContextAfterElision(), CallOpts);
// Remember that we've elided the constructor.
State = addObjectUnderConstruction(State, CE, LCtx, V);
// Remember that we've elided the destructor.
if (BTE)
State = elideDestructor(State, BTE, LCtx);
// Instead of materialization, shamelessly return
// the final object destination.
if (MTE)
State = addObjectUnderConstruction(State, MTE, LCtx, V);
return std::make_pair(State, V);
}
case ConstructionContext::SimpleTemporaryObjectKind: { case ConstructionContext::SimpleTemporaryObjectKind: {
// TODO: Copy elision implementation goes here. const auto *TCC = cast<SimpleTemporaryObjectConstructionContext>(CC);
const auto *TCC = cast<TemporaryObjectConstructionContext>(CC);
const CXXBindTemporaryExpr *BTE = TCC->getCXXBindTemporaryExpr(); const CXXBindTemporaryExpr *BTE = TCC->getCXXBindTemporaryExpr();
const MaterializeTemporaryExpr *MTE = TCC->getMaterializedTemporaryExpr(); const MaterializeTemporaryExpr *MTE = TCC->getMaterializedTemporaryExpr();
SVal V = UnknownVal(); SVal V = UnknownVal();
if (MTE) { if (MTE) {
if (const ValueDecl *VD = MTE->getExtendingDecl()) { if (const ValueDecl *VD = MTE->getExtendingDecl()) {
assert(MTE->getStorageDuration() != SD_FullExpression); assert(MTE->getStorageDuration() != SD_FullExpression);
if (!VD->getType()->isReferenceType()) { if (!VD->getType()->isReferenceType()) {
Show All 35 Lines
void ExprEngine::VisitCXXConstructExpr(const CXXConstructExpr *CE, void ExprEngine::VisitCXXConstructExpr(const CXXConstructExpr *CE,
ExplodedNode *Pred, ExplodedNode *Pred,
ExplodedNodeSet &destNodes) { ExplodedNodeSet &destNodes) {
const LocationContext *LCtx = Pred->getLocationContext(); const LocationContext *LCtx = Pred->getLocationContext();
ProgramStateRef State = Pred->getState(); ProgramStateRef State = Pred->getState();
SVal Target = UnknownVal(); SVal Target = UnknownVal();
if (Optional<SVal> ElidedTarget =
getObjectUnderConstruction(State, CE, LCtx)) {
// We've previously modeled an elidable constructor by pretending that it in
// fact constructs into the correct target. This constructor can therefore
// be skipped.
Target = *ElidedTarget;
StmtNodeBuilder Bldr(Pred, destNodes, *currBldrCtx);
State = finishObjectConstruction(State, CE, LCtx);
if (auto L = Target.getAs<Loc>())
State = State->BindExpr(CE, LCtx, State->getSVal(*L, CE->getType()));
Bldr.generateNode(CE, Pred, State);
return;
}
// FIXME: Handle arrays, which run the same constructor for every element. // FIXME: Handle arrays, which run the same constructor for every element.
// For now, we just run the first constructor (which should still invalidate // For now, we just run the first constructor (which should still invalidate
// the entire array). // the entire array).
EvalCallOptions CallOpts; EvalCallOptions CallOpts;
auto C = getCurrentCFGElement().getAs<CFGConstructor>(); auto C = getCurrentCFGElement().getAs<CFGConstructor>();
assert(C || getCurrentCFGElement().getAs<CFGStmt>()); assert(C || getCurrentCFGElement().getAs<CFGStmt>());
const ConstructionContext *CC = C ? C->getConstructionContext() : nullptr; const ConstructionContext *CC = C ? C->getConstructionContext() : nullptr;
▲ Show 20 LinesShow All 483 LinesShow Last 20 Lines

test/Analysis/cxx17-mandatory-elision.cpp

// RUN: %clang_analyze_cc1 -analyzer-checker=core,debug.ExprInspection -std=c++11 -verify %s // RUN: %clang_analyze_cc1 -analyzer-checker=core,debug.ExprInspection -std=c++11 -verify %s
// RUN: %clang_analyze_cc1 -analyzer-checker=core,debug.ExprInspection -std=c++17 -verify %s // RUN: %clang_analyze_cc1 -analyzer-checker=core,debug.ExprInspection -std=c++17 -verify %s
// RUN: %clang_analyze_cc1 -analyzer-checker=core,debug.ExprInspection -std=c++11 -analyzer-config elide-constructors=false -DNO_ELIDE_FLAG -verify %s
// RUN: %clang_analyze_cc1 -analyzer-checker=core,debug.ExprInspection -std=c++17 -analyzer-config elide-constructors=false -DNO_ELIDE_FLAG -verify %s
// Copy elision always occurs in C++17, otherwise it's under
// an on-by-default flag.
#if __cplusplus >= 201703L
#define ELIDE 1
#else
#ifndef NO_ELIDE_FLAG
#define ELIDE 1
#endif
#endif
void clang_analyzer_eval(bool); void clang_analyzer_eval(bool);
namespace variable_functional_cast_crash { namespace variable_functional_cast_crash {
struct A { struct A {
A(int) {} A(int) {}
}; };
Show All 23 Lines
}; };
class C { class C {
T t; T t;
public: public:
C() : t(T(4)) { C() : t(T(4)) {
S s = {1, 2, 3}; S s = {1, 2, 3};
t.s = s; t.s = s;
// FIXME: Should be TRUE in C++11 as well. // FIXME: Should be TRUE regardless of copy elision.
clang_analyzer_eval(t.w == 4); clang_analyzer_eval(t.w == 4);
#if __cplusplus >= 201703L #ifdef ELIDE
// expected-warning@-2{{TRUE}} // expected-warning@-2{{TRUE}}
#else #else
// expected-warning@-4{{UNKNOWN}} // expected-warning@-4{{UNKNOWN}}
#endif #endif
} }
}; };
▲ Show 20 LinesShow All 91 Lines▼ Show 20 Lines
ClassWithoutDestructor make3(AddressVector<ClassWithoutDestructor> &v) { ClassWithoutDestructor make3(AddressVector<ClassWithoutDestructor> &v) {
return make2(v); return make2(v);
} }
void testMultipleReturns() { void testMultipleReturns() {
AddressVector<ClassWithoutDestructor> v; AddressVector<ClassWithoutDestructor> v;
ClassWithoutDestructor c = make3(v); ClassWithoutDestructor c = make3(v);
#if __cplusplus >= 201703L #if ELIDE
clang_analyzer_eval(v.len == 1); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(v.buf[0] == &c); // expected-warning{{TRUE}} clang_analyzer_eval(v.buf[0] == &c); // expected-warning{{TRUE}}
#else #else
clang_analyzer_eval(v.len == 5); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 5); // expected-warning{{TRUE}}
clang_analyzer_eval(v.buf[0] != v.buf[1]); // expected-warning{{TRUE}} clang_analyzer_eval(v.buf[0] != v.buf[1]); // expected-warning{{TRUE}}
clang_analyzer_eval(v.buf[1] != v.buf[2]); // expected-warning{{TRUE}} clang_analyzer_eval(v.buf[1] != v.buf[2]); // expected-warning{{TRUE}}
clang_analyzer_eval(v.buf[2] != v.buf[3]); // expected-warning{{TRUE}} clang_analyzer_eval(v.buf[2] != v.buf[3]); // expected-warning{{TRUE}}
clang_analyzer_eval(v.buf[3] != v.buf[4]); // expected-warning{{TRUE}} clang_analyzer_eval(v.buf[3] != v.buf[4]); // expected-warning{{TRUE}}
Show All 18 Lines
}; };
void testVariable() { void testVariable() {
AddressVector<ClassWithDestructor> v; AddressVector<ClassWithDestructor> v;
{ {
ClassWithDestructor c = ClassWithDestructor(v); ClassWithDestructor c = ClassWithDestructor(v);
// Check if the last destructor is an automatic destructor. // Check if the last destructor is an automatic destructor.
// A temporary destructor would have fired by now. // A temporary destructor would have fired by now.
#if __cplusplus >= 201703L #if ELIDE
clang_analyzer_eval(v.len == 1); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 1); // expected-warning{{TRUE}}
#else #else
clang_analyzer_eval(v.len == 3); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 3); // expected-warning{{TRUE}}
#endif #endif
} }
#if __cplusplus >= 201703L #if ELIDE
// 0. Construct the variable. // 0. Construct the variable.
// 1. Destroy the variable. // 1. Destroy the variable.
clang_analyzer_eval(v.len == 2); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 2); // expected-warning{{TRUE}}
clang_analyzer_eval(v.buf[0] == v.buf[1]); // expected-warning{{TRUE}} clang_analyzer_eval(v.buf[0] == v.buf[1]); // expected-warning{{TRUE}}
#else #else
// 0. Construct the temporary. // 0. Construct the temporary.
// 1. Construct the variable. // 1. Construct the variable.
// 2. Destroy the temporary. // 2. Destroy the temporary.
Show All 11 Lines
}; };
void testCtorInitializer() { void testCtorInitializer() {
AddressVector<ClassWithDestructor> v; AddressVector<ClassWithDestructor> v;
{ {
TestCtorInitializer t(v); TestCtorInitializer t(v);
// Check if the last destructor is an automatic destructor. // Check if the last destructor is an automatic destructor.
// A temporary destructor would have fired by now. // A temporary destructor would have fired by now.
#if __cplusplus >= 201703L #if ELIDE
clang_analyzer_eval(v.len == 1); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 1); // expected-warning{{TRUE}}
#else #else
clang_analyzer_eval(v.len == 3); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 3); // expected-warning{{TRUE}}
#endif #endif
} }
#if __cplusplus >= 201703L #if ELIDE
// 0. Construct the member variable. // 0. Construct the member variable.
// 1. Destroy the member variable. // 1. Destroy the member variable.
clang_analyzer_eval(v.len == 2); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 2); // expected-warning{{TRUE}}
clang_analyzer_eval(v.buf[0] == v.buf[1]); // expected-warning{{TRUE}} clang_analyzer_eval(v.buf[0] == v.buf[1]); // expected-warning{{TRUE}}
#else #else
// 0. Construct the temporary. // 0. Construct the temporary.
// 1. Construct the member variable. // 1. Construct the member variable.
// 2. Destroy the temporary. // 2. Destroy the temporary.
Show All 16 Lines
} }
void testMultipleReturnsWithDestructors() { void testMultipleReturnsWithDestructors() {
AddressVector<ClassWithDestructor> v; AddressVector<ClassWithDestructor> v;
{ {
ClassWithDestructor c = make3(v); ClassWithDestructor c = make3(v);
// Check if the last destructor is an automatic destructor. // Check if the last destructor is an automatic destructor.
// A temporary destructor would have fired by now. // A temporary destructor would have fired by now.
#if __cplusplus >= 201703L #if ELIDE
clang_analyzer_eval(v.len == 1); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 1); // expected-warning{{TRUE}}
#else #else
clang_analyzer_eval(v.len == 9); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 9); // expected-warning{{TRUE}}
#endif #endif
} }
#if __cplusplus >= 201703L #if ELIDE
// 0. Construct the variable. Yes, constructor in make1() constructs // 0. Construct the variable. Yes, constructor in make1() constructs
// the variable 'c'. // the variable 'c'.
// 1. Destroy the variable. // 1. Destroy the variable.
clang_analyzer_eval(v.len == 2); // expected-warning{{TRUE}} clang_analyzer_eval(v.len == 2); // expected-warning{{TRUE}}
clang_analyzer_eval(v.buf[0] == v.buf[1]); // expected-warning{{TRUE}} clang_analyzer_eval(v.buf[0] == v.buf[1]); // expected-warning{{TRUE}}
#else #else
// 0. Construct the temporary in make1(). // 0. Construct the temporary in make1().
// 1. Construct the temporary in make2(). // 1. Construct the temporary in make2().
Show All 17 Lines

test/Analysis/gtest.cpp

Show First 20 LinesShow All 148 Lines▼ Show 20 Linesvoid testConstrainState(int p) {
ASSERT_TRUE(false); ASSERT_TRUE(false);
clang_analyzer_warnIfReached(); // no-warning clang_analyzer_warnIfReached(); // no-warning
} }
void testAssertSymbolicPtr(const bool *b) { void testAssertSymbolicPtr(const bool *b) {
ASSERT_TRUE(*b); // no-crash ASSERT_TRUE(*b); // no-crash
// FIXME: Our solver doesn't handle this well yet. clang_analyzer_eval(*b); // expected-warning{{TRUE}}
clang_analyzer_eval(*b); // expected-warning{{UNKNOWN}}
} }
void testAssertSymbolicRef(const bool &b) { void testAssertSymbolicRef(const bool &b) {
ASSERT_TRUE(b); // no-crash ASSERT_TRUE(b); // no-crash
// FIXME: Our solver doesn't handle this well yet. clang_analyzer_eval(b); // expected-warning{{TRUE}}
clang_analyzer_eval(b); // expected-warning{{UNKNOWN}}
} }

test/Analysis/inlining/temp-dtors-path-notes.cpp

Show All 24 Lines
public: public:
C(int x): x(x) {} // expected-note{{The value 0 is assigned to field 'x'}} C(int x): x(x) {} // expected-note{{The value 0 is assigned to field 'x'}}
void nop() const {} void nop() const {}
~C() { x = 1 / x; } // expected-warning{{Division by zero}} ~C() { x = 1 / x; } // expected-warning{{Division by zero}}
// expected-note@-1{{Division by zero}} // expected-note@-1{{Division by zero}}
}; };
void test(int coin) { void test(int coin) {
// We'd divide by zero in the temporary destructor that goes after the // We'd divide by zero in the automatic destructor for variable 'c'.
// elidable copy-constructor from C(0) to the lifetime-extended temporary.
// So in fact this example has nothing to do with lifetime extension.
// Actually, it would probably be better to elide the constructor, and
// put the note for the destructor call at the closing brace after nop.
const C &c = coin ? C(1) : C(0); // expected-note {{Assuming 'coin' is 0}} const C &c = coin ? C(1) : C(0); // expected-note {{Assuming 'coin' is 0}}
// expected-note@-1{{'?' condition is false}} // expected-note@-1{{'?' condition is false}}
// expected-note@-2{{Passing the value 0 via 1st parameter 'x'}} // expected-note@-2{{Passing the value 0 via 1st parameter 'x'}}
// expected-note@-3{{Calling constructor for 'C'}} // expected-note@-3{{Calling constructor for 'C'}}
// expected-note@-4{{Returning from constructor for 'C'}} // expected-note@-4{{Returning from constructor for 'C'}}
// expected-note@-5{{Calling '~C'}}
c.nop(); c.nop();
} } // expected-note{{Calling '~C'}}
} // end namespace test_lifetime_extended_temporary } // end namespace test_lifetime_extended_temporary
namespace test_bug_after_dtor { namespace test_bug_after_dtor {
int glob; int glob;
class C { class C {
public: public:
C() { glob += 1; } C() { glob += 1; }
Show All 11 Lines

test/Analysis/lifetime-extension.cpp

Show First 20 LinesShow All 91 Lines▼ Show 20 Lines#ifdef TEMPORARIES
// expected-warning@-2{{TRUE}} // expected-warning@-2{{TRUE}}
#else #else
// expected-warning@-4{{UNKNOWN}} // expected-warning@-4{{UNKNOWN}}
#endif #endif
} }
void f2() { void f2() {
C *after, *before; C *after, *before;
{
C c = C(1, &after, &before); C c = C(1, &after, &before);
clang_analyzer_eval(after == before); }
#ifdef TEMPORARIES clang_analyzer_eval(after == before); // expected-warning{{TRUE}}
// expected-warning@-2{{TRUE}}
#else
// expected-warning@-4{{UNKNOWN}}
#endif
} }
void f3(bool coin) { void f3(bool coin) {
C *after, *before; C *after, *before;
{ {
const C &c = coin ? C(true, &after, &before) : C(false, &after, &before); const C &c = coin ? C(true, &after, &before) : C(false, &after, &before);
} }
clang_analyzer_eval(after == before); clang_analyzer_eval(after == before);
Show All 9 Linesvoid f4(bool coin) {
{ {
// no-crash // no-crash
const C &c = C(coin, &after, &before) ?: C(false, &after, &before); const C &c = C(coin, &after, &before) ?: C(false, &after, &before);
} }
// FIXME: Add support for lifetime extension through binary conditional // FIXME: Add support for lifetime extension through binary conditional
// operator. Ideally also add support for the binary conditional operator in // operator. Ideally also add support for the binary conditional operator in
// C++. Because for now it calls the constructor for the condition twice. // C++. Because for now it calls the constructor for the condition twice.
if (coin) { if (coin) {
// FIXME: Should not warn.
clang_analyzer_eval(after == before); clang_analyzer_eval(after == before);
#ifdef TEMPORARIES #ifdef TEMPORARIES
// expected-warning@-2{{The left operand of '==' is a garbage value}} // expected-warning@-2{{The left operand of '==' is a garbage value}}
#else #else
// expected-warning@-4{{UNKNOWN}} // expected-warning@-4{{UNKNOWN}}
#endif #endif
} else { } else {
// FIXME: Should be TRUE.
clang_analyzer_eval(after == before); clang_analyzer_eval(after == before);
#ifdef TEMPORARIES #ifdef TEMPORARIES
// Seems to work at the moment, but also seems accidental. // expected-warning@-2{{FALSE}}
// Feel free to break.
// expected-warning@-4{{TRUE}}
#else #else
// expected-warning@-6{{UNKNOWN}} // expected-warning@-4{{UNKNOWN}}
#endif #endif
} }
} }
void f5() { void f5() {
C *after, *before; C *after, *before;
{ {
const bool &x = C(true, &after, &before).x; // no-crash const bool &x = C(true, &after, &before).x; // no-crash
▲ Show 20 LinesShow All 75 Lines▼ Show 20 Linesvoid f2() {
// &x is replaced with nullptr in move-assignment before the temporary dies. // &x is replaced with nullptr in move-assignment before the temporary dies.
c = C(&x); c = C(&x);
// Hence x was not set to 0 yet. // Hence x was not set to 0 yet.
1 / x; // no-warning 1 / x; // no-warning
} }
} // end namespace maintain_original_object_address_on_move } // end namespace maintain_original_object_address_on_move
namespace maintain_address_of_copies { namespace maintain_address_of_copies {
class C;
template <typename T> struct AddressVector { struct AddressVector {
const T *buf[10]; C *buf[10];
int len; int len;
AddressVector() : len(0) {} AddressVector() : len(0) {}
void push(const T *t) { void push(C *c) {
buf[len] = t; buf[len] = c;
++len; ++len;
} }
}; };
class C { class C {
AddressVector<C> &v; AddressVector &v;
public: public:
C(AddressVector<C> &v) : v(v) { v.push(this); } C(AddressVector &v) : v(v) { v.push(this); }
~C() { v.push(this); } ~C() { v.push(this); }
#ifdef MOVES #ifdef MOVES
C(C &&c) : v(c.v) { v.push(this); } C(C &&c) : v(c.v) { v.push(this); }
#endif #endif
// Note how return-statements prefer move-constructors when available. // Note how return-statements prefer move-constructors when available.
C(const C &c) : v(c.v) { C(const C &c) : v(c.v) {
#ifdef MOVES #ifdef MOVES
clang_analyzer_checkInlined(false); // no-warning clang_analyzer_checkInlined(false); // no-warning
#else #else
v.push(this); v.push(this);
#endif #endif
} // no-warning } // no-warning
static C make(AddressVector<C> &v) { return C(v); } static C make(AddressVector &v) { return C(v); }
}; };
void f1() { void f1() {
AddressVector<C> v; AddressVector v;
{ {
C c = C(v); C c = C(v);
} }
// 0. Create the original temporary and lifetime-extend it into variable 'c' // 0. Construct variable 'c' (copy/move elided).
// construction argument. // 1. Destroy variable 'c'.
// 1. Construct variable 'c' (elidable copy/move). clang_analyzer_eval(v.len == 2); // expected-warning{{TRUE}}
// 2. Destroy the temporary. clang_analyzer_eval(v.buf[0] == v.buf[1]); // expected-warning{{TRUE}}
// 3. Destroy variable 'c'.
clang_analyzer_eval(v.len == 4);
clang_analyzer_eval(v.buf[0] == v.buf[2]);
clang_analyzer_eval(v.buf[1] == v.buf[3]);
#ifdef TEMPORARIES
// expected-warning@-4{{TRUE}}
// expected-warning@-4{{TRUE}}
// expected-warning@-4{{TRUE}}
#else
// expected-warning@-8{{UNKNOWN}}
// expected-warning@-8{{UNKNOWN}}
// expected-warning@-8{{UNKNOWN}}
#endif
} }
void f2() { void f2() {
AddressVector<C> v; AddressVector v;
{ {
const C &c = C::make(v); const C &c = C::make(v);
} }
// 0. Construct the original temporary within make(), // 0. Construct the return value of make() (copy/move elided) and
// 1. Construct the return value of make() (elidable copy/move) and // lifetime-extend it directly via reference 'c',
// lifetime-extend it via reference 'c', // 1. Destroy the temporary lifetime-extended by 'c'.
// 2. Destroy the temporary within make(), clang_analyzer_eval(v.len == 2);
// 3. Destroy the temporary lifetime-extended by 'c'. clang_analyzer_eval(v.buf[0] == v.buf[1]);
clang_analyzer_eval(v.len == 4);
clang_analyzer_eval(v.buf[0] == v.buf[2]);
clang_analyzer_eval(v.buf[1] == v.buf[3]);
#ifdef TEMPORARIES #ifdef TEMPORARIES
// expected-warning@-4{{TRUE}} // expected-warning@-3{{TRUE}}
// expected-warning@-4{{TRUE}} // expected-warning@-3{{TRUE}}
// expected-warning@-4{{TRUE}}
#else #else
// expected-warning@-8{{UNKNOWN}} // expected-warning@-6{{UNKNOWN}}
// expected-warning@-8{{UNKNOWN}} // expected-warning@-6{{UNKNOWN}}
// expected-warning@-8{{UNKNOWN}}
#endif #endif
} }
void f3() { void f3() {
AddressVector<C> v; AddressVector v;
{ {
C &&c = C::make(v); C &&c = C::make(v);
} }
// 0. Construct the original temporary within make(), // 0. Construct the return value of make() (copy/move elided) and
// 1. Construct the return value of make() (elidable copy/move) and // lifetime-extend it directly via reference 'c',
// lifetime-extend it via reference 'c', // 1. Destroy the temporary lifetime-extended by 'c'.
// 2. Destroy the temporary within make(), clang_analyzer_eval(v.len == 2);
// 3. Destroy the temporary lifetime-extended by 'c'. clang_analyzer_eval(v.buf[0] == v.buf[1]);
clang_analyzer_eval(v.len == 4);
clang_analyzer_eval(v.buf[0] == v.buf[2]);
clang_analyzer_eval(v.buf[1] == v.buf[3]);
#ifdef TEMPORARIES #ifdef TEMPORARIES
// expected-warning@-4{{TRUE}} // expected-warning@-3{{TRUE}}
// expected-warning@-4{{TRUE}} // expected-warning@-3{{TRUE}}
// expected-warning@-4{{TRUE}}
#else #else
// expected-warning@-8{{UNKNOWN}} // expected-warning@-6{{UNKNOWN}}
// expected-warning@-8{{UNKNOWN}} // expected-warning@-6{{UNKNOWN}}
// expected-warning@-8{{UNKNOWN}}
#endif #endif
} }
C doubleMake(AddressVector<C> &v) { C doubleMake(AddressVector &v) {
return C::make(v); return C::make(v);
} }
void f4() { void f4() {
AddressVector<C> v; AddressVector v;
{ {
C c = doubleMake(v); C c = doubleMake(v);
} }
// 0. Construct the original temporary within make(), // 0. Construct variable 'c' (all copies/moves elided),
// 1. Construct the return value of make() (elidable copy/move) and // 1. Destroy variable 'c'.
// lifetime-extend it into the return value constructor argument within clang_analyzer_eval(v.len == 2); // expected-warning{{TRUE}}
// doubleMake(), clang_analyzer_eval(v.buf[0] == v.buf[1]); // expected-warning{{TRUE}}
// 2. Destroy the temporary within make(),
// 3. Construct the return value of doubleMake() (elidable copy/move) and
// lifetime-extend it into the variable 'c' constructor argument,
// 4. Destroy the return value of make(),
// 5. Construct variable 'c' (elidable copy/move),
// 6. Destroy the return value of doubleMake(),
// 7. Destroy variable 'c'.
clang_analyzer_eval(v.len == 8);
clang_analyzer_eval(v.buf[0] == v.buf[2]);
clang_analyzer_eval(v.buf[1] == v.buf[4]);
clang_analyzer_eval(v.buf[3] == v.buf[6]);
clang_analyzer_eval(v.buf[5] == v.buf[7]);
#ifdef TEMPORARIES
// expected-warning@-6{{TRUE}}
// expected-warning@-6{{TRUE}}
// expected-warning@-6{{TRUE}}
// expected-warning@-6{{TRUE}}
// expected-warning@-6{{TRUE}}
#else
// expected-warning@-12{{UNKNOWN}}
// expected-warning@-12{{UNKNOWN}}
// expected-warning@-12{{UNKNOWN}}
// expected-warning@-12{{UNKNOWN}}
// expected-warning@-12{{UNKNOWN}}
#endif
} }
class NoDtor {
AddressVector<NoDtor> &v;
public:
NoDtor(AddressVector<NoDtor> &v) : v(v) { v.push(this); }
};
void f5() {
AddressVector<NoDtor> v;
const NoDtor &N = NoDtor(v);
clang_analyzer_eval(v.buf[0] == &N); // expected-warning{{TRUE}}
}
} // end namespace maintain_address_of_copies } // end namespace maintain_address_of_copies

test/Analysis/temporaries.cpp

Show First 20 LinesShow All 606 Lines▼ Show 20 Linesvoid test() {
clang_analyzer_eval(c2.getX() == 1); // expected-warning{{TRUE}} clang_analyzer_eval(c2.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(c2.getY() == 2); // expected-warning{{TRUE}} clang_analyzer_eval(c2.getY() == 2); // expected-warning{{TRUE}}
C c3 = returnTemporaryWithCopyConstructionWithVariable(); C c3 = returnTemporaryWithCopyConstructionWithVariable();
clang_analyzer_eval(c3.getX() == 1); // expected-warning{{TRUE}} clang_analyzer_eval(c3.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(c3.getY() == 2); // expected-warning{{TRUE}} clang_analyzer_eval(c3.getY() == 2); // expected-warning{{TRUE}}
C c4 = returnTemporaryWithConstruction(); C c4 = returnTemporaryWithConstruction();
clang_analyzer_eval(c4.getX() == 1); clang_analyzer_eval(c4.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(c4.getY() == 2); clang_analyzer_eval(c4.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
C c5 = returnTemporaryWithAnotherFunctionWithConstruction(); C c5 = returnTemporaryWithAnotherFunctionWithConstruction();
clang_analyzer_eval(c5.getX() == 1); clang_analyzer_eval(c5.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(c5.getY() == 2); clang_analyzer_eval(c5.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
C c6 = returnTemporaryWithCopyConstructionWithConstruction(); C c6 = returnTemporaryWithCopyConstructionWithConstruction();
clang_analyzer_eval(c5.getX() == 1); clang_analyzer_eval(c5.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(c5.getY() == 2); clang_analyzer_eval(c5.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
#if __cplusplus >= 201103L #if __cplusplus >= 201103L
C c7 = returnTemporaryWithBraces(); C c7 = returnTemporaryWithBraces();
clang_analyzer_eval(c7.getX() == 1); clang_analyzer_eval(c7.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(c7.getY() == 2); clang_analyzer_eval(c7.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
C c8 = returnTemporaryWithAnotherFunctionWithBraces(); C c8 = returnTemporaryWithAnotherFunctionWithBraces();
clang_analyzer_eval(c8.getX() == 1); clang_analyzer_eval(c8.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(c8.getY() == 2); clang_analyzer_eval(c8.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
C c9 = returnTemporaryWithCopyConstructionWithBraces(); C c9 = returnTemporaryWithCopyConstructionWithBraces();
clang_analyzer_eval(c9.getX() == 1); clang_analyzer_eval(c9.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(c9.getY() == 2); clang_analyzer_eval(c9.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
#endif // C++11 #endif // C++11
D d1 = returnTemporaryWithVariableAndNonTrivialCopy(); D d1 = returnTemporaryWithVariableAndNonTrivialCopy();
clang_analyzer_eval(d1.getX() == 1); clang_analyzer_eval(d1.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(d1.getY() == 2); clang_analyzer_eval(d1.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
D d2 = returnTemporaryWithAnotherFunctionWithVariableAndNonTrivialCopy(); D d2 = returnTemporaryWithAnotherFunctionWithVariableAndNonTrivialCopy();
clang_analyzer_eval(d2.getX() == 1); clang_analyzer_eval(d2.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(d2.getY() == 2); clang_analyzer_eval(d2.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
D d3 = returnTemporaryWithCopyConstructionWithVariableAndNonTrivialCopy(); D d3 = returnTemporaryWithCopyConstructionWithVariableAndNonTrivialCopy();
clang_analyzer_eval(d3.getX() == 1); clang_analyzer_eval(d3.getX() == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(d3.getY() == 2); clang_analyzer_eval(d3.getY() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
} }
} // namespace test_return_temporary } // namespace test_return_temporary
namespace test_temporary_object_expr_without_dtor { namespace test_temporary_object_expr_without_dtor {
class C { class C {
int x; int x;
public: public:
Show All 38 Lines#ifdef TEMPORARY_DTORS
// expected-warning@-2{{TRUE}} // expected-warning@-2{{TRUE}}
#else #else
// expected-warning@-4{{UNKNOWN}} // expected-warning@-4{{UNKNOWN}}
#endif #endif
} }
C c2 = coin ? C(1) : C(2); C c2 = coin ? C(1) : C(2);
if (coin) { if (coin) {
clang_analyzer_eval(c2.getX() == 1); clang_analyzer_eval(c2.getX() == 1); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-2{{TRUE}}
#else
// expected-warning@-4{{UNKNOWN}}
#endif
} else { } else {
clang_analyzer_eval(c2.getX() == 2); clang_analyzer_eval(c2.getX() == 2); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-2{{TRUE}}
#else
// expected-warning@-4{{UNKNOWN}}
#endif
} }
} }
} // namespace test_temporary_object_expr } // namespace test_temporary_object_expr
namespace test_match_constructors_and_destructors { namespace test_match_constructors_and_destructors {
class C { class C {
public: public:
Show All 20 Lines
#endif #endif
} }
void test_simple_temporary_with_copy() { void test_simple_temporary_with_copy() {
int x = 0, y = 0; int x = 0, y = 0;
{ {
C c = C(x, y); C c = C(x, y);
} }
// Two constructors (temporary object expr and copy) and two destructors. // Only one constructor directly into the variable, and one destructor.
clang_analyzer_eval(x == 2); clang_analyzer_eval(x == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(y == 2); clang_analyzer_eval(y == 1); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
} }
void test_ternary_temporary(int coin) { void test_ternary_temporary(int coin) {
int x = 0, y = 0, z = 0, w = 0; int x = 0, y = 0, z = 0, w = 0;
{ {
const C &c = coin ? C(x, y) : C(z, w); const C &c = coin ? C(x, y) : C(z, w);
} }
// This time each branch contains an additional elidable copy constructor. // Only one constructor on every branch, and one automatic destructor.
if (coin) { if (coin) {
clang_analyzer_eval(x == 2); clang_analyzer_eval(x == 1);
clang_analyzer_eval(y == 2); clang_analyzer_eval(y == 1);
#ifdef TEMPORARY_DTORS #ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}} // expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}} // expected-warning@-3{{TRUE}}
#else #else
// expected-warning@-6{{UNKNOWN}} // expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}} // expected-warning@-6{{UNKNOWN}}
#endif #endif
clang_analyzer_eval(z == 0); // expected-warning{{TRUE}} clang_analyzer_eval(z == 0); // expected-warning{{TRUE}}
clang_analyzer_eval(w == 0); // expected-warning{{TRUE}} clang_analyzer_eval(w == 0); // expected-warning{{TRUE}}
} else { } else {
clang_analyzer_eval(x == 0); // expected-warning{{TRUE}} clang_analyzer_eval(x == 0); // expected-warning{{TRUE}}
clang_analyzer_eval(y == 0); // expected-warning{{TRUE}} clang_analyzer_eval(y == 0); // expected-warning{{TRUE}}
clang_analyzer_eval(z == 2); clang_analyzer_eval(z == 1);
clang_analyzer_eval(w == 2); clang_analyzer_eval(w == 1);
#ifdef TEMPORARY_DTORS #ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}} // expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}} // expected-warning@-3{{TRUE}}
#else #else
// expected-warning@-6{{UNKNOWN}} // expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}} // expected-warning@-6{{UNKNOWN}}
#endif #endif
} }
} }
void test_ternary_temporary_with_copy(int coin) { void test_ternary_temporary_with_copy(int coin) {
int x = 0, y = 0, z = 0, w = 0; int x = 0, y = 0, z = 0, w = 0;
{ {
C c = coin ? C(x, y) : C(z, w); C c = coin ? C(x, y) : C(z, w);
} }
// Temporary expression, elidable copy within branch, // On each branch the variable is constructed directly.
// constructor for variable - 3 total.
if (coin) { if (coin) {
clang_analyzer_eval(x == 3); clang_analyzer_eval(x == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(y == 3); clang_analyzer_eval(y == 1); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
clang_analyzer_eval(z == 0); // expected-warning{{TRUE}} clang_analyzer_eval(z == 0); // expected-warning{{TRUE}}
clang_analyzer_eval(w == 0); // expected-warning{{TRUE}} clang_analyzer_eval(w == 0); // expected-warning{{TRUE}}
} else { } else {
clang_analyzer_eval(x == 0); // expected-warning{{TRUE}} clang_analyzer_eval(x == 0); // expected-warning{{TRUE}}
clang_analyzer_eval(y == 0); // expected-warning{{TRUE}} clang_analyzer_eval(y == 0); // expected-warning{{TRUE}}
clang_analyzer_eval(z == 3); clang_analyzer_eval(z == 1); // expected-warning{{TRUE}}
clang_analyzer_eval(w == 3); clang_analyzer_eval(w == 1); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-3{{TRUE}}
// expected-warning@-3{{TRUE}}
#else
// expected-warning@-6{{UNKNOWN}}
// expected-warning@-6{{UNKNOWN}}
#endif
} }
} }
} // namespace test_match_constructors_and_destructors } // namespace test_match_constructors_and_destructors
namespace destructors_for_return_values { namespace destructors_for_return_values {
class C { class C {
public: public:
Show All 18 Linesvoid testLifetimeExtendedCall() {
const C &c = make(); const C &c = make();
clang_analyzer_warnIfReached(); // expected-warning{{REACHABLE}} clang_analyzer_warnIfReached(); // expected-warning{{REACHABLE}}
} }
// Should have divided by zero in the destructor. // Should have divided by zero in the destructor.
clang_analyzer_warnIfReached(); // no-warning clang_analyzer_warnIfReached(); // no-warning
} }
void testCopiedCall() { void testCopiedCall() {
{
C c = make(); C c = make();
// Should have divided by zero in the temporary destructor. // Should have elided the constructor/destructor for the temporary
clang_analyzer_warnIfReached(); clang_analyzer_warnIfReached(); // expected-warning{{REACHABLE}}
#ifndef TEMPORARY_DTORS }
// expected-warning@-2{{REACHABLE}} // Should have divided by zero in the destructor.
#endif clang_analyzer_warnIfReached(); // no-warning
} }
} // namespace destructors_for_return_values } // namespace destructors_for_return_values
namespace dont_forget_destructor_around_logical_op { namespace dont_forget_destructor_around_logical_op {
int glob; int glob;
class C { class C {
public: public:
▲ Show 20 LinesShow All 68 Lines▼ Show 20 Linesvoid test() {
clang_analyzer_eval(c1.getX() == 10); clang_analyzer_eval(c1.getX() == 10);
#ifdef TEMPORARY_DTORS #ifdef TEMPORARY_DTORS
// expected-warning@-2{{TRUE}} // expected-warning@-2{{TRUE}}
#else #else
// expected-warning@-4{{UNKNOWN}} // expected-warning@-4{{UNKNOWN}}
#endif #endif
S s = 20; S s = 20;
clang_analyzer_eval(s.x == 20); clang_analyzer_eval(s.x == 20); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-2{{TRUE}}
#else
// expected-warning@-4{{UNKNOWN}}
#endif
C c2 = s; C c2 = s;
clang_analyzer_eval(c2.getX() == 20); clang_analyzer_eval(c2.getX() == 20); // expected-warning{{TRUE}}
#ifdef TEMPORARY_DTORS
// expected-warning@-2{{TRUE}}
#else
// expected-warning@-4{{UNKNOWN}}
#endif
} }
} // end namespace implicit_constructor_conversion } // end namespace implicit_constructor_conversion
namespace pass_references_through { namespace pass_references_through {
class C { class C {
public: public:
~C() {} ~C() {}
}; };
Show All 9 Lines