[base] CHECK(str) in BasicStringPiece constructor

This change adds a CHECK(str) into BasicStringPiece's constructor from `const value_type* str`. This prepares the code base for switching to std::string_view, since std::string_view(nullptr) would invoke undefined behavior. Bug: 1049498 Change-Id: Id5d832bc0586dc16a5e1045ba67602e4dc57317d Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2407712 Commit-Queue: Jan Wilken Dörrie <jdoerrie@chromium.org> Reviewed-by: Daniel Cheng <dcheng@chromium.org> Cr-Commit-Position: refs/heads/master@{#806581}

[base] CHECK(str) in BasicStringPiece constructor
This change adds a CHECK(str) into BasicStringPiece's constructor from `const value_type* str`. This prepares the code base for switching to std::string_view, since std::string_view(nullptr) would invoke undefined behavior. Bug: 1049498 Change-Id: Id5d832bc0586dc16a5e1045ba67602e4dc57317d Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2407712 Commit-Queue: Jan Wilken Dörrie <jdoerrie@chromium.org> Reviewed-by: Daniel Cheng <dcheng@chromium.org> Cr-Commit-Position: refs/heads/master@{#806581}
c663b9ea · Jan Wilken Dörrie · Commit Bot · 355fabc3 · c663b9ea · c663b9ea
Commit c663b9ea authored Sep 14, 2020 by Jan Wilken Dörrie Committed by Commit Bot Sep 14, 2020
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 17 deletions

base/strings/string_piece.h base/strings/string_piece.h +6 -17

base/strings/string_piece_unittest.cc base/strings/string_piece_unittest.cc +1 -0

No files found.
--- a/base/strings/string_piece.h
+++ b/base/strings/string_piece.h
@@ -30,6 +30,7 @@
 #include <type_traits>
 #include "base/base_export.h"
+#include "base/check.h"
 #include "base/check_op.h"
 #include "base/strings/char_traits.h"
 #include "base/strings/string16.h"
@@ -158,25 +159,13 @@ template <typename STRING_TYPE> class BasicStringPiece {
  // in a "const char*" or a "string" wherever a "StringPiece" is
  // expected (likewise for char16, string16, StringPiece16).
  constexpr BasicStringPiece() : ptr_(nullptr), length_(0) {}
-  // TODO(crbug.com/1049498): Construction from nullptr is not allowed for
-  // std::basic_string_view, so remove the special handling for it.
  // Note: This doesn't just use STRING_TYPE::traits_type::length(), since that
-  // isn't constexpr until C++17.
+  // isn't constexpr until C++17. Furthermore, this CHECKs `str`, since passing
+  // a nullptr to std::basic_string_view is undefined behavior. In order to
+  // ensure we don't pass nullptr to CharTraits::length we perform the CHECK
+  // during the initialization of `length_`.
  constexpr BasicStringPiece(const value_type* str)
-      : ptr_(str), length_(!str ? 0 : CharTraits<value_type>::length(str)) {}
+      : ptr_(str), length_((CHECK(str), CharTraits<value_type>::length(str))) {}
-  // Explicitly disallow construction from nullptr. Note that this does not
-  // catch construction from runtime strings that might be null.
-  // Note: The following is just a more elaborate way of spelling
-  // `BasicStringPiece(nullptr_t) = delete`, but unfortunately the terse form is
-  // not supported by the PNaCl toolchain.
-  // TODO(crbug.com/1049498): Remove once we CHECK(str) in the constructor
-  // above.
-  template <class T, class = std::enable_if_t<std::is_null_pointer<T>::value>>
-  BasicStringPiece(T) {
-    static_assert(sizeof(T) == 0,  // Always false.
-                  "StringPiece does not support construction from nullptr, use "
-                  "the default constructor instead.");
-  }
  BasicStringPiece(const STRING_TYPE& str)
      : ptr_(str.data()), length_(str.size()) {}
  constexpr BasicStringPiece(const value_type* offset, size_type len)

--- a/base/strings/string_piece_unittest.cc
+++ b/base/strings/string_piece_unittest.cc
@@ -650,6 +650,7 @@ TEST(StringPieceTest, ConstexprCtor) {
 }
 TEST(StringPieceTest, OutOfBoundsDeath) {
+  { ASSERT_DEATH_IF_SUPPORTED(StringPiece(nullptr), ""); }
  {
    constexpr StringPiece piece;
    ASSERT_DEATH_IF_SUPPORTED(piece[0], "");