This is an archive of the discontinued LLVM Phabricator instance.

Differential D71686

Fix false positive in magic number checker
ClosedPublic

Authored by 0x8000-0000 on Dec 18 2019, 8:02 PM.

Details

Reviewers
aaron.ballman
alexfh
hokein
Summary

Fix false positive in magic number checker

https://bugs.llvm.org/show_bug.cgi?id=40640: cppcoreguidelines-avoid-magic-numbers should not warn about enum class

Test case code reduced by Pavel Kryukov.

Diff Detail

Event Timeline

0x8000-0000 created this revision.Dec 18 2019, 8:02 PM
Herald added a project: Restricted Project. · View Herald TranscriptDec 18 2019, 8:02 PM
Herald added a subscriber: cfe-commits. · View Herald Transcript
0x8000-0000 added reviewers: alexfh, Eugene.Zelenko.Dec 18 2019, 8:04 PM
0x8000-0000 marked an inline comment as done.
0x8000-0000 added inline comments.
clang-tools-extra/clang-tidy/readability/MagicNumbersCheck.cpp
127

127-130 are the new lines. The rest were moved about by clang-format. Please let me know if I should revert the format.

Eugene.Zelenko added a comment.Dec 19 2019, 7:12 AM

Please mention fix in Release Notes.

Eugene.Zelenko edited reviewers, added: hokein; removed: Eugene.Zelenko.Dec 19 2019, 7:12 AM
0x8000-0000 updated this revision to Diff 234818.Dec 19 2019, 5:44 PM
0x8000-0000 edited the summary of this revision. (Show Details)

Update release notes.

0x8000-0000 updated this revision to Diff 234819.Dec 19 2019, 5:45 PM

Fix typo.

aaron.ballman added inline comments.Dec 20 2019, 12:40 PM
clang-tools-extra/clang-tidy/readability/MagicNumbersCheck.cpp
129

So will this no longer treat *any* C-style cast as being a magic number? e.g., int i; i = (int)12;

0x8000-0000 marked an inline comment as done.Dec 20 2019, 4:01 PM
0x8000-0000 added inline comments.
clang-tools-extra/clang-tidy/readability/MagicNumbersCheck.cpp
129

Sadly, it would seem so.

if (ValueArray[(int)4] > ValueArray[1]) produces the following AST:

|   | | | `-ArraySubscriptExpr 0x11545f0 <col:7, col:24> 'int' lvalue
|   | | |   |-ImplicitCastExpr 0x11545d8 <col:7> 'int *' <ArrayToPointerDecay>
|   | | |   | `-DeclRefExpr 0x1154558 <col:7> 'int [5]' lvalue Var 0x1153cb0 'ValueArray' 'int [5]'                                                           
|   | | |   `-CStyleCastExpr 0x11545b0 <col:18, col:23> 'int' <NoOp>
|   | | |     `-IntegerLiteral 0x1154578 <col:23> 'int' 4

While the test case we're trying to avoid is:

`-TemplateSpecializationType 0x1169ee0 'holder<(Letter)9U>' sugar holder
  |-TemplateArgument expr
  | `-ConstantExpr 0x1169dc0 <col:59> 'Letter' 9
  |   `-SubstNonTypeTemplateParmExpr 0x1169da0 <col:59> 'Letter'
  |     `-CStyleCastExpr 0x1169d78 <col:59> 'Letter' <IntegralCast>
  |       `-IntegerLiteral 0x1169d48 <col:59> 'unsigned int' 9
  `-RecordType 0x1169ec0 'holder<Letter::J>'
    `-ClassTemplateSpecialization 0x1169de0 'holder'

Now, the question is - do we care? How many people use a C cast with a bare integer?

I suppose I can add a check for the grandparent node to be SubstNonTypeTemplateParmExpr, in order to filter this out?

0x8000-0000 marked an inline comment as done.Dec 20 2019, 5:45 PM
0x8000-0000 added inline comments.
clang-tools-extra/clang-tidy/readability/MagicNumbersCheck.cpp
129

An interesting fact is that the C-style cast does not produce a warning now anyway (even before applying this change.) and I don't have any idea why.

Adding these lines does not create a test failure:

+  79   if (((int)4) > IntSquarer[10])                                                                                                                         
+  80     return 0;
0x8000-0000 updated this revision to Diff 234998.Dec 20 2019, 8:09 PM

Add a test file for expected failures

0x8000-0000 marked an inline comment as done.Dec 20 2019, 8:12 PM
0x8000-0000 added inline comments.
clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers-todo.cpp
9

This test fails even with clang-tidy-9.

$ clang-tidy-9 --checks="-*,readability-magic-numbers" clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers-todo.cpp

/home/florin/tools/llvm-project/clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers-todo.cpp:9:35: warning: 10 is a magic number; consider replacing it with a named constant [readability-magic-numbers]
  if (((int)4) > ProcessSomething(10))
                                  ^

Nothing about the "4" here.

0x8000-0000 added a comment.Dec 21 2019, 3:50 PM

My take: this change fixes a user-reported bug, and does not cause any known regressions. I think we should integrate this.

aaron.ballman added a comment.Dec 22 2019, 9:01 AM
In D71686#1794053, @0x8000-0000 wrote:

My take: this change fixes a user-reported bug, and does not cause any known regressions. I think we should integrate this.

I sort of wonder whether we want to document this as a blessed approach to silencing the warning. I'm not certain if it's too obtuse or not, but I notice the check has no documented ways to silence the diagnostic aside from using the correct kind of magic number or adding it to a list of excluded magic numbers.

0x8000-0000 added a comment.Dec 22 2019, 9:11 AM
In D71686#1794330, @aaron.ballman wrote:
In D71686#1794053, @0x8000-0000 wrote:

My take: this change fixes a user-reported bug, and does not cause any known regressions. I think we should integrate this.

I sort of wonder whether we want to document this as a blessed approach to silencing the warning. I'm not certain if it's too obtuse or not, but I notice the check has no documented ways to silence the diagnostic aside from using the correct kind of magic number or adding it to a list of excluded magic numbers.

You mean Hyrum's Law is not sufficient?

The check can be silenced with the regular NOLINT, or with defining and using a constant/enum. Using this "backdoor" way seems even more cumbersome and confusing than the NOLINT. At least with NOLINT it is clear what you're doing, and somebody else can grep for it and fix it if it is appropriate.

aaron.ballman added a comment.EditedDec 22 2019, 9:22 AM
In D71686#1794360, @0x8000-0000 wrote:
In D71686#1794330, @aaron.ballman wrote:
In D71686#1794053, @0x8000-0000 wrote:

My take: this change fixes a user-reported bug, and does not cause any known regressions. I think we should integrate this.

I sort of wonder whether we want to document this as a blessed approach to silencing the warning. I'm not certain if it's too obtuse or not, but I notice the check has no documented ways to silence the diagnostic aside from using the correct kind of magic number or adding it to a list of excluded magic numbers.

You mean Hyrum's Law is not sufficient?

The check can be silenced with the regular NOLINT, or with defining and using a constant/enum. Using this "backdoor" way seems even more cumbersome and confusing than the NOLINT. At least with NOLINT it is clear what you're doing, and somebody else can grep for it and fix it if it is appropriate.

My concern is that NOLINT is insufficient. Consider: foo(12, 42, 18); where the 42 is not desired to be warned about due to domain-specific knowledge but the 12 and 18 are.

However, I am not convinced that you're wrong either -- casting is cumbersome. But it's also a somewhat well-used workaround to silence warnings (casting to void silencing unused value warnings being a common example).

For right now, we can leave it as a bug -- we can decide to bless the approach later.

aaron.ballman accepted this revision.Dec 22 2019, 9:26 AM

LGTM aside from some minor nits.

clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers-todo.cpp
2

You might as well move this onto the previous line; it just looks strange here.

clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers.cpp
219

prove -> Prove

and add a full stop to the end of the comment.

This revision is now accepted and ready to land.Dec 22 2019, 9:26 AM
0x8000-0000 marked 2 inline comments as done.Dec 22 2019, 9:34 AM
In D71686#1794366, @aaron.ballman wrote:
In D71686#1794360, @0x8000-0000 wrote:
In D71686#1794330, @aaron.ballman wrote:
In D71686#1794053, @0x8000-0000 wrote:

My take: this change fixes a user-reported bug, and does not cause any known regressions. I think we should integrate this.

I sort of wonder whether we want to document this as a blessed approach to silencing the warning. I'm not certain if it's too obtuse or not, but I notice the check has no documented ways to silence the diagnostic aside from using the correct kind of magic number or adding it to a list of excluded magic numbers.

You mean Hyrum's Law is not sufficient?

The check can be silenced with the regular NOLINT, or with defining and using a constant/enum. Using this "backdoor" way seems even more cumbersome and confusing than the NOLINT. At least with NOLINT it is clear what you're doing, and somebody else can grep for it and fix it if it is appropriate.

My concern is that NOLINT is insufficient. Consider: foo(12, 42, 18); where the 42 is not desired to be warned about due to domain-specific knowledge but the 12 and 18 are.

However, I am not convinced that you're wrong either -- casting is cumbersome. But it's also a somewhat well-used workaround to silence warnings (casting to void silencing unused value warnings being a common example).

For right now, we can leave it as a bug -- we can decide to bless the approach later.

Fair enough; I'm aiming for good precision and recall by default.

0x8000-0000 updated this revision to Diff 235060.Dec 22 2019, 9:34 AM

Minor comment fixes; capitalization, full stop.

0x8000-0000 added a comment.Dec 22 2019, 9:45 AM

@aaron.ballman updated as suggested; please commit/integrate when you have a moment. Thank you!

aaron.ballman closed this revision.Dec 24 2019, 7:04 AM
In D71686#1794377, @0x8000-0000 wrote:

@aaron.ballman updated as suggested; please commit/integrate when you have a moment. Thank you!

Happy to do so, thank you for the fix! I've commit in c16b3ec597d277b5a7397db308f8ec730f3330a3

Revision Contents

PathSize
clang-tools-extra/
clang-tidy/
readability/
18 lines
docs/
4 lines
test/
clang-tidy/
checkers/
16 lines
13 lines

Diff 234998

clang-tools-extra/clang-tidy/readability/MagicNumbersCheck.cpp

Context not available.
return AsDecl->isImplicit(); return AsDecl->isImplicit();
} }
if (Node.get<EnumConstantDecl>() != nullptr) if (Node.get<EnumConstantDecl>())
return true; return true;
return llvm::any_of(Result.Context->getParents(Node), return llvm::any_of(Result.Context->getParents(Node),
Context not available.
if (isUsedToInitializeAConstant(Result, Parent)) if (isUsedToInitializeAConstant(Result, Parent))
return true; return true;
0x8000-0000AuthorUnsubmitted
Done
ReplyInline Actions

127-130 are the new lines. The rest were moved about by clang-format. Please let me know if I should revert the format.

0x8000-0000: 127-130 are the new lines. The rest were moved about by clang-format. Please let me know if I…
// Ignore this instance, because this match reports the location // Ignore this instance, because this matches an
// where the template is defined, not where it is instantiated. // expanded class enumeration value.
aaron.ballmanUnsubmitted
Not Done
ReplyInline Actions

So will this no longer treat *any* C-style cast as being a magic number? e.g., int i; i = (int)12;

aaron.ballman: So will this no longer treat *any* C-style cast as being a magic number? e.g., `int i; i =…
0x8000-0000AuthorUnsubmitted
Done
ReplyInline Actions

Sadly, it would seem so.

if (ValueArray[(int)4] > ValueArray[1]) produces the following AST:

|   | | | `-ArraySubscriptExpr 0x11545f0 <col:7, col:24> 'int' lvalue
|   | | |   |-ImplicitCastExpr 0x11545d8 <col:7> 'int *' <ArrayToPointerDecay>
|   | | |   | `-DeclRefExpr 0x1154558 <col:7> 'int [5]' lvalue Var 0x1153cb0 'ValueArray' 'int [5]'                                                           
|   | | |   `-CStyleCastExpr 0x11545b0 <col:18, col:23> 'int' <NoOp>
|   | | |     `-IntegerLiteral 0x1154578 <col:23> 'int' 4

While the test case we're trying to avoid is:

`-TemplateSpecializationType 0x1169ee0 'holder<(Letter)9U>' sugar holder
  |-TemplateArgument expr
  | `-ConstantExpr 0x1169dc0 <col:59> 'Letter' 9
  |   `-SubstNonTypeTemplateParmExpr 0x1169da0 <col:59> 'Letter'
  |     `-CStyleCastExpr 0x1169d78 <col:59> 'Letter' <IntegralCast>
  |       `-IntegerLiteral 0x1169d48 <col:59> 'unsigned int' 9
  `-RecordType 0x1169ec0 'holder<Letter::J>'
    `-ClassTemplateSpecialization 0x1169de0 'holder'

Now, the question is - do we care? How many people use a C cast with a bare integer?

I suppose I can add a check for the grandparent node to be SubstNonTypeTemplateParmExpr, in order to filter this out?

0x8000-0000: Sadly, it would seem so. if (ValueArray[(int)4] > ValueArray[1]) produces the following AST…
0x8000-0000AuthorUnsubmitted
Done
ReplyInline Actions

An interesting fact is that the C-style cast does not produce a warning now anyway (even before applying this change.) and I don't have any idea why.

Adding these lines does not create a test failure:

+  79   if (((int)4) > IntSquarer[10])                                                                                                                         
+  80     return 0;
0x8000-0000: An interesting fact is that the C-style cast does not produce a warning now anyway (even before…
if (Parent.get<CStyleCastExpr>() &&
llvm::any_of(
Result.Context->getParents(Parent),
[](const DynTypedNode &GrandParent) {
return GrandParent.get<SubstNonTypeTemplateParmExpr>() !=
nullptr;
}))
return true;
// Ignore this instance, because this match reports the
// location where the template is defined, not where it
// is instantiated.
if (Parent.get<SubstNonTypeTemplateParmExpr>()) if (Parent.get<SubstNonTypeTemplateParmExpr>())
return true; return true;
Context not available.

clang-tools-extra/docs/ReleaseNotes.rst

Context not available.
The check now supports the ``IgnoreBitFieldsWidths`` option to suppress The check now supports the ``IgnoreBitFieldsWidths`` option to suppress
the warning for numbers used to specify bit field widths. the warning for numbers used to specify bit field widths.
The check was updated to eliminate some false positives (such as using
class enumeration as non-type template parameters, or the synthetically
computed lengh of a static user string literal.)
- New :doc:`readability-make-member-function-const - New :doc:`readability-make-member-function-const
<clang-tidy/checks/readability-make-member-function-const>` check. <clang-tidy/checks/readability-make-member-function-const>` check.
Context not available.

clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers-todo.cpp

  • This file was added.
// RUN: %check_clang_tidy %s readability-magic-numbers %t
// RUN: --
aaron.ballmanUnsubmitted
Done
ReplyInline Actions

You might as well move this onto the previous line; it just looks strange here.

aaron.ballman: You might as well move this onto the previous line; it just looks strange here.
// XFAIL: *
int ProcessSomething(int input);
int DoWork()
{
if (((int)4) > ProcessSomething(10))
0x8000-0000AuthorUnsubmitted
Done
ReplyInline Actions

This test fails even with clang-tidy-9.

$ clang-tidy-9 --checks="-*,readability-magic-numbers" clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers-todo.cpp

/home/florin/tools/llvm-project/clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers-todo.cpp:9:35: warning: 10 is a magic number; consider replacing it with a named constant [readability-magic-numbers]
  if (((int)4) > ProcessSomething(10))
                                  ^

Nothing about the "4" here.

0x8000-0000: This test fails even with clang-tidy-9. ``` $ clang-tidy-9 --checks="-*,readability-magic…
// CHECK-MESSAGES: :[[@LINE-1]]:13: warning: 4 is a magic number; consider replacing it with a named constant [readability-magic-numbers]
return 0;
return 0;
}

clang-tools-extra/test/clang-tidy/checkers/readability-magic-numbers.cpp

Context not available.
const int anotherConstant; const int anotherConstant;
}; };
int ValueArray[] = {3, 5}; int ValueArray[] = {3, 5, 0, 0, 0};
// CHECK-MESSAGES: :[[@LINE-1]]:21: warning: 3 is a magic number; consider replacing it with a named constant [readability-magic-numbers] // CHECK-MESSAGES: :[[@LINE-1]]:21: warning: 3 is a magic number; consider replacing it with a named constant [readability-magic-numbers]
// CHECK-MESSAGES: :[[@LINE-2]]:24: warning: 5 is a magic number; consider replacing it with a named constant [readability-magic-numbers] // CHECK-MESSAGES: :[[@LINE-2]]:24: warning: 5 is a magic number; consider replacing it with a named constant [readability-magic-numbers]
Context not available.
return Total; return Total;
} }
// prove that using enumerations values don't produce warnings
aaron.ballmanUnsubmitted
Done
ReplyInline Actions

prove -> Prove

and add a full stop to the end of the comment.

aaron.ballman: prove -> Prove and add a full stop to the end of the comment.
enum class Letter : unsigned {
A, B, C, D, E, F, G, H, I, J
};
template<Letter x> struct holder { Letter letter = x; };
template<Letter x> struct wrapper { using h_type = holder<x>; };
template struct wrapper<Letter::A>;
template struct wrapper<Letter::J>;
Context not available.