Bind all compound literals to temporaries (#899)

* Bind all CompoundLiteralExprs to a temp for Checked C

* Strip parentheses off outer and inner temp binding to get the child expression

* Return unknown lvalue bounds for struct-typed compound literals

* Fix equiv-exprs test

* Add test for inferring compound literal bounds

* Only bind compound literals with array or function type to temps

* Add case for CHKCBindTemporaryExpr to GetArrayPtrDereference

* Add case for CHKCBindTemporaryExpr to updateGNUCompoundLiteralRValue

* Remove non-lvalue assert from VisitCHKCBindTemporaryExpr

* Add Expr::IgnoreParenTmp method

* Remove expected temp from struct-typed compound literal in compound-literals test

* Add expected temp to array-typed compound literal in ast-dump-expr test

* Add expected temps for array-typed compound literals to bounds-context test

* Implement VisitCHKCBindTemporaryExpr for aggregate and complex expressions

* Fix failing tests

* Emit an lvalue for an lvalue subexpression of a scalar temp binding

* Bind all compound literals to temporaries

* Bind all compound literals to temporaries

* Infer lvalue bounds for struct-typed compound literals

* Fix compound-literals test

* Add compound literal cases to bounds-context test

* Use ASTContext::getPrebuiltCountOne for struct-typed lvalue bounds

* Return unknown lvalue bounds for function-typed compound literals

Author: kkjeer

clang/lib/CodeGen/CGExprAgg.cpp

@@ -109,6 +109,9 @@ class AggExprEmitter : public StmtVisitor<AggExprEmitter> {
     CGF.ErrorUnsupported(S, "aggregate expression");
   }
   void VisitParenExpr(ParenExpr *PE) { Visit(PE->getSubExpr()); }
+  void VisitCHKCBindTemporaryExpr(CHKCBindTemporaryExpr *E) {
+    Visit(E->getSubExpr());
+  }
   void VisitGenericSelectionExpr(GenericSelectionExpr *GE) {
     Visit(GE->getResultExpr());
   }

clang/lib/CodeGen/CGExprComplex.cpp

@@ -104,6 +104,9 @@ class ComplexExprEmitter
     return Visit(E->getSubExpr());
   }
   ComplexPairTy VisitParenExpr(ParenExpr *PE) { return Visit(PE->getSubExpr());}
+  ComplexPairTy VisitCHKCBindTemporaryExpr(CHKCBindTemporaryExpr *E) {
+    return Visit(E->getSubExpr());
+  }
   ComplexPairTy VisitGenericSelectionExpr(GenericSelectionExpr *GE) {
     return Visit(GE->getResultExpr());
   }

clang/lib/CodeGen/CGExprScalar.cpp

@@ -847,7 +847,11 @@ class ScalarExprEmitter
   }
 
   Value *VisitCHKCBindTemporaryExpr(CHKCBindTemporaryExpr *E) {
-    assert(!E->getSubExpr()->isLValue());
+    if (E->getSubExpr()->isLValue()) {
+      LValue LV = CGF.EmitLValue(E->getSubExpr());
+      CGF.setBoundsTemporaryLValueMapping(E, LV);
+      return EmitLoadOfLValue(LV, E->getExprLoc());
+    }
     Value *Result = Visit(E->getSubExpr());
     CGF.setBoundsTemporaryRValueMapping(E, RValue::get(Result));
     return Result;

clang/lib/Sema/SemaBounds.cpp

@@ -3684,21 +3684,28 @@ namespace {
       Expr *SubExpr = E->getSubExpr()->IgnoreParens();
 
       if (isa<CompoundLiteralExpr>(SubExpr)) {
-        // Only expressions with array or function type can have a decayed
-        // type, which is used to create the lvalue bounds.  Compound literals
-        // with non-array, non-function types do not have lvalue bounds.
-        // TODO: checkedc-clang issue #870: bind all compound literals to
-        // temporaries and infer lvalue bounds for struct compound literals.
-        if (!(E->getType()->isArrayType() || E->getType()->isFunctionType()))
-          return CreateBoundsAlwaysUnknown();
+        // The lvalue bounds of a struct-typed compound literal expression e
+        // are bounds(&value(temp(e), &value(temp(e)) + 1).
+        if (E->getType()->isStructureType()) {
+          Expr *TempUse = CreateTemporaryUse(E);
+          Expr *Addr = CreateAddressOfOperator(TempUse);
+          return ExpandToRange(Addr, Context.getPrebuiltCountOne());
+        }
+
+        // The lvalue bounds of an array-typed compound literal expression e
+        // are based on the dimension size of e.
+        if (E->getType()->isArrayType()) {
+          BoundsExpr *BE = CreateBoundsForArrayType(E->getType());
+          QualType PtrType = Context.getDecayedType(E->getType());
+          Expr *ArrLValue = CreateTemporaryUse(E);
+          Expr *Base = CreateImplicitCast(PtrType,
+                                          CastKind::CK_ArrayToPointerDecay,
+                                          ArrLValue);
+          return ExpandToRange(Base, BE);
+        }
 
-        BoundsExpr *BE = CreateBoundsForArrayType(E->getType());
-        QualType PtrType = Context.getDecayedType(E->getType());
-        Expr *ArrLValue = CreateTemporaryUse(E);
-        Expr *Base = CreateImplicitCast(PtrType,
-                                        CastKind::CK_ArrayToPointerDecay,
-                                        ArrLValue);
-        return ExpandToRange(Base, BE);
+        // All other types of compound literals do not have lvalue bounds.
+        return CreateBoundsAlwaysUnknown();
       }
 
       if (auto *SL = dyn_cast<StringLiteral>(SubExpr))

clang/lib/Sema/SemaExpr.cpp

@@ -6372,8 +6372,7 @@ Sema::BuildCompoundLiteralExpr(SourceLocation LParenLoc, TypeSourceInfo *TInfo,
   // bound to temporaries.
   // TODO: checkedc-clang issue #870: bind all compound literal expressions
   // to temporaries.
-  if (getLangOpts().CheckedC &&
-      (E->getType()->isArrayType() || E->getType()->isFunctionType()))
+  if (getLangOpts().CheckedC)
     return new (Context) CHKCBindTemporaryExpr(E);
 
   return MaybeBindToTemporary(E);

clang/test/AST/ast-dump-expr.c

@@ -272,6 +272,7 @@ void PostfixOperators(int *a, struct S b, struct S *c) {
 
   (struct S){1};
   // CHECK: ImplicitCastExpr
+  // CHECK-NEXT: CHKCBindTemporaryExpr 0x{{[^ ]*}} <col:3, col:15> 'struct S':'struct S' lvalue
   // CHECK-NEXT: CompoundLiteralExpr 0x{{[^ ]*}} <col:3, col:15> 'struct S':'struct S' lvalue
   // CHECK-NEXT: InitListExpr 0x{{[^ ]*}} <col:13, col:15> 'struct S':'struct S'
   // CHECK-NEXT: IntegerLiteral 0x{{[^ ]*}} <col:14> 'int' 1

clang/test/Analysis/designated-initializer.c

@@ -33,9 +33,9 @@ void test() {
 // CHECK:  13: 2
 // CHECK:  14: /*implicit*/(int)0
 // CHECK:  15: {[B1.12], [B1.13]}
-// CHECK:  18: /*no init*/
 // CHECK:  19: /*no init*/
-// CHECK:  20: 3
-// CHECK:  21: {[B1.18], [B1.19], [B1.20]}
-// CHECK:  22: {/*base*/[B1.17], /*updater*/[B1.21]} 
-// CHECK:  24: struct Q s[] = {[0] = (struct Q){1, 2}, [0].c = 3};
+// CHECK:  20: /*no init*/
+// CHECK:  21: 3
+// CHECK:  22: {[B1.19], [B1.20], [B1.21]}
+// CHECK:  23: {/*base*/[B1.18], /*updater*/[B1.22]} 
+// CHECK:  25: struct Q s[] = {[0] = (struct Q){1, 2}, [0].c = 3};

clang/test/CheckedC/inferred-bounds/bounds-context.c

@@ -1072,6 +1072,70 @@ void source_bounds4(array_ptr<int> arr : count(1)) {
   // CHECK-NEXT: }
 }
 
+// Assignments to variables set the observed bounds to the source bounds
+// where the source is an array-typed compound literal
+void source_bounds5(array_ptr<int> arr_array_literal : count(2)) {
+  // Observed bounds context: { arr_array_literal => bounds(value(temp((int checked[2]){ 0, 1 })), value(temp((int checked[2]){ 0, 1 })) + 2) }
+  arr_array_literal = (int checked[2]){0, 1};
+  // CHECK: Statement S:
+  // CHECK-NEXT: BinaryOperator {{.*}} '='
+  // CHECK-NEXT:   DeclRefExpr {{.*}} 'arr_array_literal'
+  // CHECK-NEXT:   ImplicitCastExpr {{.*}} <ArrayToPointerDecay>
+  // CHECK-NEXT:     CHKCBindTemporaryExpr {{.*}} 'int _Checked[2]' lvalue
+  // CHECK-NEXT:       CompoundLiteralExpr {{.*}} 'int _Checked[2]' lvalue
+  // CHECK-NEXT:         InitListExpr {{.*}} 'int _Checked[2]'
+  // CHECK-NEXT:           IntegerLiteral {{.*}} 0
+  // CHECK-NEXT:           IntegerLiteral {{.*}} 1
+  // CHECK-NEXT: Observed bounds context after checking S:
+  // CHECK-NEXT: {
+  // CHECK-NEXT: Variable:
+  // CHECK-NEXT: ParmVarDecl {{.*}} arr_array_literal
+  // CHECK:      Bounds:
+  // CHECK-NEXT: RangeBoundsExpr
+  // CHECK-NEXT:   ImplicitCastExpr {{.*}} <ArrayToPointerDecay>
+  // CHECK-NEXT:     BoundsValueExpr {{.*}} 'int _Checked[2]' lvalue
+  // CHECK-NEXT:   BinaryOperator {{.*}} '+'
+  // CHECK-NEXT:     ImplicitCastExpr {{.*}} <ArrayToPointerDecay>
+  // CHECK-NEXT:       BoundsValueExpr {{.*}} 'int _Checked[2]' lvalue
+  // CHECK-NEXT:     IntegerLiteral {{.*}} 'int' 2
+  // CHECK-NEXT: }
+}
+
+struct a {
+  int f;
+};
+
+// Assignments to variables set the observed bounds to the source bounds
+// where the source is a struct-typed compound literal
+void source_bounds6() {
+  // Observed bounds context: { arr_struct_literal => bounds(&value(temp((struct a){ 0 })), &value(temp((struct a){ 0 })) + 1) }
+  array_ptr<struct a> arr_struct_literal : count(1) = &(struct a){0};
+  // CHECK: Statement S:
+  // CHECK-NEXT: DeclStmt
+  // CHECK-NEXT:   VarDecl {{.*}} a
+  // CHECK-NEXT:     CountBoundsExpr {{.*}} Element
+  // CHECK-NEXT:       IntegerLiteral {{.*}} 1
+  // CHECK-NEXT:   ImplicitCastExpr {{.*}} <BitCast>
+  // CHECK-NEXT:     UnaryOperator {{.*}} prefix '&'
+  // CHECK-NEXT:       CHKCBindTemporaryExpr {{.*}} 'struct a':'struct a' lvalue
+  // CHECK-NEXT:         CompoundLiteralExpr {{.*}} 'struct a':'struct a' lvalue
+  // CHECK-NEXT:           InitListExpr {{.*}} 'struct a':'struct a'
+  // CHECK-NEXT:             IntegerLiteral {{.*}} 'int' 0
+  // CHECK-NEXT: Observed bounds context after checking S:
+  // CHECK-NEXT: {
+  // CHECK-NEXT: Variable:
+  // CHECK-NEXT: VarDecl {{.*}} arr_struct_literal
+  // CHECK:      Bounds:
+  // CHECK-NEXT: RangeBoundsExpr
+  // CHECK-NEXT:   UnaryOperator {{.*}} prefix '&'
+  // CHECK-NEXT:     BoundsValueExpr {{.*}} 'struct a':'struct a' lvalue
+  // CHECK-NEXT:   BinaryOperator {{.*}} '+'
+  // CHECK-NEXT:     UnaryOperator {{.*}} prefix '&'
+  // CHECK-NEXT:       BoundsValueExpr {{.*}} 'struct a':'struct a' lvalue
+  // CHECK-NEXT:     IntegerLiteral {{.*}} 'int' 1
+  // CHECK-NEXT: }
+}
+
 ////////////////////////////////////////////////////////////////////////////////
 // Multiple assignments within one expression that can affect bounds checking //
 ////////////////////////////////////////////////////////////////////////////////

clang/test/CheckedC/inferred-bounds/compound-literals.c

@@ -11,6 +11,8 @@
 // This line is for the clang test infrastructure:
 // RUN: %clang_cc1 -fcheckedc-extension -verify -verify-ignore-unexpected=warning -verify-ignore-unexpected=note -fdump-inferred-bounds %s | FileCheck %s --dump-input=always
 
+// expected-no-diagnostics
+
 struct S {
   int i;
   _Ptr<int> p;
@@ -110,14 +112,13 @@ void f2(_Array_ptr<struct S> arr : count(1), struct S s) {
   // CHECK:  `-IntegerLiteral {{0x[0-9a-f]+}} 'int' 1
 
   // Target LHS bounds: bounds(arr, arr + 1)
-  // Inferred RHS bounds: invalid
-  // TODO: checkedc-clang issue #870: once struct-typed compound literals are bound to temporaries,
-  // the inferred RHS bounds should be bounds(&temp((struct S){ 0 }), &temp((struct S){ 0 }) + 1)
-  arr = &(struct S){ 0 }; // expected-error {{inferred bounds for 'arr' are unknown after statement}}
+  // Inferred RHS bounds: bounds(&value(temp((struct S){ 0 })), &value(temp((struct S){ 0 })) + 1)
+  arr = &(struct S){ 0 };
   // CHECK: BinaryOperator {{0x[0-9a-f]+}} '_Array_ptr<struct S>' '='
   // CHECK: |-DeclRefExpr {{0x[0-9a-f]+}} '_Array_ptr<struct S>' lvalue ParmVar {{0x[0-9a-f]+}} 'arr' '_Array_ptr<struct S>'
   // CHECK: `-ImplicitCastExpr {{0x[0-9a-f]+}} '_Array_ptr<struct S>' <BitCast>
   // CHECK:  `-UnaryOperator {{0x[0-9a-f]+}} 'struct S *' prefix '&' cannot overflow
+  // CHECK:  `-CHKCBindTemporaryExpr {{0x[0-9a-f]+}} 'struct S':'struct S' lvalue
   // CHECK:  `-CompoundLiteralExpr {{0x[0-9a-f]+}} 'struct S':'struct S' lvalue
   // CHECK:  `-InitListExpr {{0x[0-9a-f]+}} 'struct S':'struct S'
   // CHECK:  |-IntegerLiteral {{0x[0-9a-f]+}} 'int' 0
@@ -132,5 +133,11 @@ void f2(_Array_ptr<struct S> arr : count(1), struct S s) {
   // CHECK:  | `-DeclRefExpr {{0x[0-9a-f]+}} '_Array_ptr<struct S>' lvalue ParmVar {{0x[0-9a-f]+}} 'arr' '_Array_ptr<struct S>'
   // CHECK:  `-IntegerLiteral {{0x[0-9a-f]+}} 'int' 1
   // CHECK: RHS Bounds:
-  // CHECK:  NullaryBoundsExpr {{0x[0-9a-f]+}} 'NULL TYPE' Invalid
+  // CHECK: RangeBoundsExpr {{0x[0-9a-f]+}} 'NULL TYPE'
+  // CHECK: |-UnaryOperator {{0x[0-9a-f]+}} '_Array_ptr<struct S>' prefix '&' cannot overflow
+  // CHECK: | `-BoundsValueExpr {{0x[0-9a-f]+}} 'struct S':'struct S' lvalue _BoundTemporary
+  // CHECK: `-BinaryOperator {{0x[0-9a-f]+}} '_Array_ptr<struct S>' '+'
+  // CHECK:  |-UnaryOperator {{0x[0-9a-f]+}} '_Array_ptr<struct S>' prefix '&' cannot overflow
+  // CHECK:  | `-BoundsValueExpr {{0x[0-9a-f]+}} 'struct S':'struct S' lvalue _BoundTemporary
+  // CHECK:  `-IntegerLiteral {{0x[0-9a-f]+}} 'int' 1
 }