[clang-tidy] Add bugprone-move-shared-pointer-contents check.

[pizzud]

This check detects moves of the contents of a shared pointer rather than the pointer itself. Other code with a reference to the shared pointer is probably not expecting the move.

The set of shared pointer classes is configurable via options to allow individual projects to cover additional types.

[5chmidti]

I noticed a problem with your matcher, so I reviewed the rest of it while I was at it.

The problem is that you do not consider a type-dependent std::shared_ptr<T> and the following test case fails:

template <typename T>
void dependentType() {
  std::shared_ptr<T> p;
  T y = std::move(*p);
  // CHECK-FIXES: *std::move(p)
}
// CHECK-MESSAGES: :[[@LINE-3]]:11: warning: don't move the contents out of a shared pointer, as other accessors expect them to remain in a determinate state [bugprone-move-shared-pointer-contents]

In this case, your callee is no longer a functionDecl but an unresolvedLookupExpr and the * operator is a UnaryOperator instead of a cxxOperatorCallExpr.

Otherwise, looks like a good check to have.

[github-actions]

✅ With the latest revision this PR passed the C/C++ code formatter.

[pizzud]

I noticed a problem with your matcher, so I reviewed the rest of it while I was at it.

The problem is that you do not consider a type-dependent std::shared_ptr<T> and the following test case fails:

template <typename T>
void dependentType() {
  std::shared_ptr<T> p;
  T y = std::move(*p);
  // CHECK-FIXES: *std::move(p)
}
// CHECK-MESSAGES: :[[@LINE-3]]:11: warning: don't move the contents out of a shared pointer, as other accessors expect them to remain in a determinate state [bugprone-move-shared-pointer-contents]

In this case, your callee is no longer a functionDecl but an unresolvedLookupExpr and the * operator is a UnaryOperator instead of a cxxOperatorCallExpr.

Otherwise, looks like a good check to have.

I'm really struggling with this, and also with getting the git history right after three months oops. The UnaryOperator is matchable without much difficulty, but there appears to be no way to introspect the UnresolvedLookupExpr to ensure I'm matching calls to std::move.

[5chmidti]

but there appears to be no way to introspect the UnresolvedLookupExpr to ensure I'm matching calls to std::move

Try searching for unresolvedLookupExpr & UnresolvedLookupExpr in the clang-tidy directory. There is a high probability that another check has done something related/similar.

llvm-project/clang-tools-extra/clang-tidy/cppcoreguidelines/RvalueReferenceParamNotMovedCheck.cpp

Lines 46 to 47 in 2b7191c

	callee(unresolvedLookupExpr(hasAnyDeclaration(
	namedDecl(hasUnderlyingDecl(hasName("::std::move"))))))),

And there is OverloadExpr::decls, which UnresolvedLookupExpr inherits (https://clang.llvm.org/doxygen/classclang_1_1UnresolvedLookupExpr.html).

[PiotrZSL]

Few fixes needed, but looks you are on good road.

[pizzud]

Try searching for unresolvedLookupExpr & UnresolvedLookupExpr in the clang-tidy directory. There is a high probability that another check has done something related/similar.

llvm-project/clang-tools-extra/clang-tidy/cppcoreguidelines/RvalueReferenceParamNotMovedCheck.cpp

Lines 46 to 47 in 2b7191c

	callee(unresolvedLookupExpr(hasAnyDeclaration(
	namedDecl(hasUnderlyingDecl(hasName("::std::move"))))))),

Thanks, this was super helpful and exactly what I was looking for!

I think the missing insight was that I could go from the lookup -> decls.

[PiotrZSL]

Few issues with unaryOperator left, after that will be fixed, it would look fine.

[pizzud]

Not sure how to squash properly; I tried rebasing but all the commits on the main branch snuck in to the history and I'm quite new to git. If it would be preferred I can store this off as a patch and open up a new PR. Sorry for all the hassle with the merges!

[EugeneZelenko]

You need to do interactive rebase:

git fetch --prune # get latest main and remove local copies deleted branch 
git rebase origin/main # rebase from main
git rebase -i origin/main # interactive rebase, just use fixup command
git rebase --force origin <your branch name> # push updated branch

[pizzud]

A coworker was able to help me get this working by rebasing against upstream, so I think we're good to go at this point. Thanks for all the feedback!

[denzor200]

Wouldn't that be a runtime check, and thus not something clang-tidy can do without significant data flow analysis effort?

I'm not experienced enough in clang-tidy internals, but I believe it will not be a serious challenge to check for having assert(sp.use_count() == 1) one line before *sp being moved.

I suppose everybody agree that this snippet

assert(sp.use_count() == 1);
auto y = std::move(*sp);

..is better than that one:

// NOLINTNEXTLINE(clang-tidy-bugprone-move-shared-pointer-contents)
auto y = std::move(*sp);

[vbvictor]

@pizzud, you wish to continue work on this PR? 21th release of LLVM would be in late July, we have time to prepare and merge this check before the release. Also, It's okay to not cover all cases in the first iteration, some improvements can be added in later patches.

Windows build is failing most likely to absent of "-fno-delayed-template-parsing" flag in test command, look for it in other tests for reference.

[pizzud]

@denzor2000 I agree it's better and technically possible within clang-tidy, but I am not sure it's simple to do. I'd like to get this in as-is.

@vbvictor
Thanks for the MSVC tip! I am still interested in this, and I will spend some time to get the git history back in shape and publish my contents.

[vbvictor]

I agree that modelling assert(sp.use_count() == 1); is not easy in clang-tidy itself. In one of my checks I needed to check that two declStmt are placed one after another in compoundStmt and I ended up manually traversing all stmt within compoundStmt - not a very pleasant solution.
clang static analyzer has built-in functionality for modelling assert() and other macros, but clang-tidy doesn't

[vbvictor]

Please ping me when you're done working and want to test CI build
I need to approve every CI build/format run... not very convenient.

[pizzud]

Give it a go?

[vbvictor]

Should this be Call != nullptr or simply Call &&?

[pizzud]

Neither. It should be || instead of &&. The somewhat scary (but unsurprising part since I'm not sure how you would actually get here) is that all the unit tests passed either way.

[vbvictor]

Avoid using braces for single if-stmt

[pizzud]

Done.

[vbvictor]

Please place in alphabetical order by check name

[pizzud]

Done.

[vbvictor]

Could you please run clang-tidy over your file and fix the errors, clangd can detect them, too.

[vbvictor]

Boost has ::boost::shared_ptr, not ::boost::shared_pointer

[pizzud]

Oops, done. Fixed in the actual checker as well.

[vbvictor]

Unused include?

Suggested change

#include "clang/AST/ASTContext.h"

[pizzud]

Done.

[vbvictor]

I played with matchers a bit, one hasDescendant may be eliminated by:

diff --git a/clang-tools-extra/clang-tidy/bugprone/MoveSharedPointerContentsCheck.cpp b/clang-tools-extra/clang-tidy/bugprone/MoveSharedPointerContentsCheck.cpp
index 4d5c25bf9f27..ab5e13fbb9cc 100644
--- a/clang-tools-extra/clang-tidy/bugprone/MoveSharedPointerContentsCheck.cpp
+++ b/clang-tools-extra/clang-tidy/bugprone/MoveSharedPointerContentsCheck.cpp
@@ -70,12 +70,11 @@ void MoveSharedPointerContentsCheck::registerMatchers(MatchFinder *Finder) {
           hasArgument(
               0, unaryOperator(
                      hasOperatorName("*"),
-                     hasUnaryOperand(allOf(
-                         hasDescendant(declRefExpr(hasType(qualType(
-                             isSharedPointer(matchers::matchesAnyListedName(
-                                 SharedPointerClasses)))))),
-                         cxxMemberCallExpr(
-                             callee(cxxMethodDecl(hasName("get")))))))))
+                     hasUnaryOperand(cxxMemberCallExpr(
+                         callee(cxxMethodDecl(hasName("get"))),
+                         on(hasType(qualType(isSharedPointer(
+                             matchers::matchesAnyListedName(
+                                 SharedPointerClasses))))))))))
           .bind("get_call")));

All the tests seem to pass on ubuntu, couldn't test on windows

[pizzud]

I think I got the clang-tidy issues sorted out.

[pizzud]

Oops, done. Fixed in the actual checker as well.

[pizzud]

Done.

[vbvictor]

Could you also try to eliminate second hasDescendant(declRefExpr()) in similar way if possible. I'd try to look at it this week too.
I suppose it's the only issue to be resolved before merge.

[pizzud]

I'll give the matcher simplification a shot and see how it goes; I have a very short working week this week so I'm unlikely to make much progress.