aboutsummaryrefslogtreecommitdiff
path: root/clang-tools-extra/clang-tidy/bugprone/PointerArithmeticOnPolymorphicObjectCheck.cpp
blob: 6e6ad10fabbb3d1c7ce5da0e20dff2e989e2f86e (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
//===--- PointerArithmeticOnPolymorphicObjectCheck.cpp - clang-tidy--------===//
//
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
//
//===----------------------------------------------------------------------===//

#include "PointerArithmeticOnPolymorphicObjectCheck.h"
#include "clang/AST/ASTContext.h"
#include "clang/ASTMatchers/ASTMatchFinder.h"

using namespace clang::ast_matchers;

namespace clang::tidy::bugprone {

namespace {
AST_MATCHER(CXXRecordDecl, isAbstract) { return Node.isAbstract(); }
AST_MATCHER(CXXRecordDecl, isPolymorphic) { return Node.isPolymorphic(); }
} // namespace

PointerArithmeticOnPolymorphicObjectCheck::
    PointerArithmeticOnPolymorphicObjectCheck(StringRef Name,
                                              ClangTidyContext *Context)
    : ClangTidyCheck(Name, Context),
      IgnoreInheritedVirtualFunctions(
          Options.get("IgnoreInheritedVirtualFunctions", false)) {}

void PointerArithmeticOnPolymorphicObjectCheck::storeOptions(
    ClangTidyOptions::OptionMap &Opts) {
  Options.store(Opts, "IgnoreInheritedVirtualFunctions",
                IgnoreInheritedVirtualFunctions);
}

void PointerArithmeticOnPolymorphicObjectCheck::registerMatchers(
    MatchFinder *Finder) {
  const auto PolymorphicPointerExpr =
      expr(hasType(hasCanonicalType(pointerType(pointee(hasCanonicalType(
               hasDeclaration(cxxRecordDecl(unless(isFinal()), isPolymorphic())
                                  .bind("pointee"))))))))
          .bind("pointer");

  const auto PointerExprWithVirtualMethod =
      expr(hasType(hasCanonicalType(
               pointerType(pointee(hasCanonicalType(hasDeclaration(
                   cxxRecordDecl(
                       unless(isFinal()),
                       anyOf(hasMethod(isVirtualAsWritten()), isAbstract()))
                       .bind("pointee"))))))))
          .bind("pointer");

  const auto SelectedPointerExpr = IgnoreInheritedVirtualFunctions
                                       ? PointerExprWithVirtualMethod
                                       : PolymorphicPointerExpr;

  const auto ArraySubscript = arraySubscriptExpr(hasBase(SelectedPointerExpr));

  const auto BinaryOperators =
      binaryOperator(hasAnyOperatorName("+", "-", "+=", "-="),
                     hasEitherOperand(SelectedPointerExpr));

  const auto UnaryOperators = unaryOperator(
      hasAnyOperatorName("++", "--"), hasUnaryOperand(SelectedPointerExpr));

  Finder->addMatcher(ArraySubscript, this);
  Finder->addMatcher(BinaryOperators, this);
  Finder->addMatcher(UnaryOperators, this);
}

void PointerArithmeticOnPolymorphicObjectCheck::check(
    const MatchFinder::MatchResult &Result) {
  const auto *PointerExpr = Result.Nodes.getNodeAs<Expr>("pointer");
  const auto *PointeeDecl = Result.Nodes.getNodeAs<CXXRecordDecl>("pointee");

  diag(PointerExpr->getBeginLoc(),
       "pointer arithmetic on polymorphic object of type %0 can result in "
       "undefined behavior if the dynamic type differs from the pointer type")
      << PointeeDecl << PointerExpr->getSourceRange();
}

} // namespace clang::tidy::bugprone