[clang] [clang][dataflow] Handle this-capturing lambdas in field initializers. (PR #99519)
Samira Bazuzi via cfe-commits
cfe-commits at lists.llvm.org
Thu Jul 18 08:58:26 PDT 2024
https://github.com/bazuzi created https://github.com/llvm/llvm-project/pull/99519
We previously would assume these were inside a method definition and end up crashing.
>From 23f74d7f2e0864d4cc667fa191a8511b2759428f Mon Sep 17 00:00:00 2001
From: Samira Bazuzi <bazuzi at google.com>
Date: Thu, 18 Jul 2024 11:07:03 -0400
Subject: [PATCH] [clang][dataflow] Handle this-capturing lambdas in field
initializers.
We previously would assume these were inside a method definition and end up crashing.
---
.../FlowSensitive/DataflowEnvironment.cpp | 21 ++++++++++----
.../FlowSensitive/DataflowEnvironmentTest.cpp | 28 +++++++++++++++++++
2 files changed, 43 insertions(+), 6 deletions(-)
diff --git a/clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp b/clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp
index 7c88917faf9c6..6c0e2f44cd5ae 100644
--- a/clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp
+++ b/clang/lib/Analysis/FlowSensitive/DataflowEnvironment.cpp
@@ -518,12 +518,21 @@ void Environment::initialize() {
assert(VarDecl != nullptr);
setStorageLocation(*VarDecl, createObject(*VarDecl, nullptr));
} else if (Capture.capturesThis()) {
- const auto *SurroundingMethodDecl =
- cast<CXXMethodDecl>(InitialTargetFunc->getNonClosureAncestor());
- QualType ThisPointeeType =
- SurroundingMethodDecl->getFunctionObjectParameterType();
- setThisPointeeStorageLocation(
- cast<RecordStorageLocation>(createObject(ThisPointeeType)));
+ if (auto *Ancestor = InitialTargetFunc->getNonClosureAncestor()) {
+ const auto *SurroundingMethodDecl = cast<CXXMethodDecl>(Ancestor);
+ QualType ThisPointeeType =
+ SurroundingMethodDecl->getFunctionObjectParameterType();
+ setThisPointeeStorageLocation(
+ cast<RecordStorageLocation>(createObject(ThisPointeeType)));
+ } else if (auto *FieldBeingInitialized =
+ dyn_cast<FieldDecl>(Parent->getLambdaContextDecl())) {
+ // This is in a field initializer, rather than a method.
+ setThisPointeeStorageLocation(
+ cast<RecordStorageLocation>(createObject(QualType(
+ FieldBeingInitialized->getParent()->getTypeForDecl(), 0))));
+ } else {
+ assert(false && "Unexpected this-capturing lambda context.");
+ }
}
}
} else if (MethodDecl->isImplicitObjectMemberFunction()) {
diff --git a/clang/unittests/Analysis/FlowSensitive/DataflowEnvironmentTest.cpp b/clang/unittests/Analysis/FlowSensitive/DataflowEnvironmentTest.cpp
index bd710a00c47ce..296ea5a3b386b 100644
--- a/clang/unittests/Analysis/FlowSensitive/DataflowEnvironmentTest.cpp
+++ b/clang/unittests/Analysis/FlowSensitive/DataflowEnvironmentTest.cpp
@@ -436,4 +436,32 @@ TEST_F(EnvironmentTest, Stmt) {
Env.getResultObjectLocation(*Init);
}
+// This is a crash repro.
+TEST_F(EnvironmentTest, LambdaCapturingThisInFieldInitializer) {
+ using namespace ast_matchers;
+ std::string Code = R"cc(
+ struct S {
+ int f{[this]() { return 1; }()};
+ };
+ )cc";
+
+ auto Unit =
+ tooling::buildASTFromCodeWithArgs(Code, {"-fsyntax-only", "-std=c++11"});
+ auto &Context = Unit->getASTContext();
+
+ ASSERT_EQ(Context.getDiagnostics().getClient()->getNumErrors(), 0U);
+
+ auto *LambdaCallOperator = selectFirst<CXXMethodDecl>(
+ "method", match(cxxMethodDecl(hasName("operator()"),
+ ofClass(cxxRecordDecl(isLambda())))
+ .bind("method"),
+ Context));
+
+ Environment Env(DAContext, *LambdaCallOperator);
+ // Don't crash when initializing.
+ Env.initialize();
+ // And initialize the captured `this` pointee.
+ ASSERT_NE(nullptr, Env.getThisPointeeStorageLocation());
+}
+
} // namespace
More information about the cfe-commits
mailing list