Fix #14247 FN returnDanglingLifetime with designated initializer #7937
Fix #14247 FN returnDanglingLifetime with designated initializer #7937chrchr-github merged 10 commits intodanmar:mainfrom
Conversation
| if (tokvalue->exprId() == tok->exprId() && !(tok->variable() && tok->variable()->isArray()) && | ||
| !astIsContainerView(tok->astParent())) | ||
| continue; | ||
| if (tokvalue->str() == "=" && Token::simpleMatch(tokvalue->astOperand1(), ".")) |
There was a problem hiding this comment.
I am not sure exactly what this code does with tokvalue..
should it be checked that the dot is a unary operand? we could have something like ab.a=...
There was a problem hiding this comment.
Or maybe this needs to be fixed in ValueFlow, i.e. the tokvalue should already point at the assigned variable?
There was a problem hiding this comment.
hmm I am actually not very sure about how LifetimeTokens work
There was a problem hiding this comment.
The = is produced here and then goes unchanged through LifetimeStore:
Line 2861 in 1f35303
So I guess it's OK to handle the designated initializer later.
There was a problem hiding this comment.
Yea ValueFlow needs to be updated. It treats the .x = x as an expression to capture the lifetime because it only handles aggregate constructors without the name. It needs to be updated to associate the correct lifetime to the correct variable(it currently assumes its in the order of member variables which is not the case when it skips variables with named aggregates).
There was a problem hiding this comment.
I see, but that seems like a different problem.
At least there is a FN for this:
struct A { int i; int& r; };
A f() {
int x = 0;
A a{.r = x};
return a;
}There was a problem hiding this comment.
Its the same problem. The valueflow is wrong, it should be lifetime[SubObject]=(x) and not lifetime[SubObject]=(.r=x). The checker is trying to compensate for incorrect valueflow. The valueflow should be corrected. These extra checks here can cause problems later on, and are harder to debug.
At least there is a FN for this:
Its the same problem. It tries to assign the lifetime to i which is just an integer so it doesnt capture a lifetime.
Since this doesnt fix the valueflow it introduces a new FP for cases like this:
struct A { int& r; int i; };
A f() {
int x = 0;
A a{.i= x};
return a;
}You are looking in the right place in valueflow where this needs to be corrected. The args vector needs to be adjusted for the desginated initailizers so it puts each element in the same order as the struct by matching the names of the variables. We could set the token to null for when its missing an initializer but we might need to update the LifetimeStore::forEach to handle null token.
|
it looks good to me but I would prefer a review by @pfultz2 |
pfultz2
left a comment
pfultz2
left a comment
There was a problem hiding this comment.
LGTM, it just needs formatting.
Uncrustify seems happy, is there anything beyond that? |
I saw the opening braces on a new line, so I thought it needed formatting. Strange. |
|
4 participants
No description provided.