Document No: P1401r2
Date: 2019-10-03
Author: Andrzej Krzemieński
Reply-to: akrzemi1 (at) gmail (dot) com
Audience: EWG
Narrowing contextual conversions to `bool`
==========================================
This paper proposes to allow conversions from integral types to type `bool` in `static_assert`s and `if constexpr`-statements.
### Tony tables
| Today | If accepted |
|-------|-------------|
| `if constexpr(bool(flags & Flags::Exec))` | `if constexpr(flags & Flags::Exec)` |
| `if constexpr(flags & Flags::Exec != 0)` | `if constexpr(flags & Flags::Exec)` |
| `static_assert(bool(N));` | `static_assert(N);` |
| `static_assert(N % 4 != 0);` | `static_assert(N % 4);` |
Revisions
---------
### R1 -> R2
Incorporated feedback from Richard Smith (the submitter of [[CWG 2039]](http://www.open-std.org/jtc1/sc22/wg21/docs/cwg_defects.html#2039)). Added recommended resolution and wording.
### R0 -> R1
Extended the discussion and problem analysis. Outlined the reange of possible changes. Not proposing wording anymore: the goal is to obtain the direction from EWG first.
Motivation
----------
Clang currently fails to compile the following program, and this behavior is Standard-compliant:
```c++
enum Flags { Write = 1, Read = 2, Exec = 4 };
template
int f() {
if constexpr (flags & Flags::Exec) // fails to compile due to narrowing
return 0;
else
return 1;
}
int main() {
return f(); // when instantiated like this
}
```
This is because, as currently specified, narrowing is not allowed in contextual conversion to `bool` in
core constant expressions. If compilers were standard-compliant, even the following code would be ill-formed.
```c++
template
class Array
{
static_assert(N, "no 0-size Arrays");
// ...
};
Array<16> a; // fails to compile in pure C++
```
All these situations can be fixed by applying a `static_cast` to type `bool` or comparing the result to 0,
but the fact remains that this behavior is surprising. For instance, run-time equivalents of the above constructs
compile and execute fine:
```c++
if (flags & Flags::Exec) // ok
{}
```
```c++
assert(N); // ok
```
Note that the proposal only affects the contextual conversions to `bool`: it does not affect implicit conversions to `bool` in other contexts.
Background
----------
The no-narrowing requirement was added in [[CWG 2039]](http://www.open-std.org/jtc1/sc22/wg21/docs/cwg_defects.html#2039), which indicates it was intentional. However, the issue documentation does not state the reason.
The no-narrowing requirement looks justified in the context of `noexcept` specifications, where the "double `noexcept`" syntax
is so strange that it can be easily misused. For instance, if I want to say that my function `f()` has the same `noexcept` specification as function `g()`, it doesn't seem impossible that I could mistakenly type this as:
```c++
void f() noexcept(g);
```
To the uninitiated this looks reasonable; and it compiles. Also, if `g()` is a `constexpr` function, the following works as well:
```c++
void f() noexcept(g());
```
The no-narrowing requirement helps minimize these bugs, so it has merit. But other contexts, like `static_assert`, are only victims thereof.
Analysis
--------
### Affected contexts
The definition of *contextually converted constant expression of type `bool`* ([expr.const]/7) is used in four places in the standard:
* `static_assert`
* `if constexpr`
* `explicit(bool)`
* `noexcept(bool)`
Note that `requires`-clause does not use the definition, as it requires that the expression "shall be a constant expression of type `bool`" ([temp.constr.atomic]/3). The problems caused by the *contextually converted constant expression of type `bool`* are mostly visible in the first two cases. In case of `explicit(bool)` we expext a type trait to be used as an expression.
Similarly, in the case of `noexcept(bool)` we only expect a type trait or a `noexcept`-expression.
The following table illustrates where compilers allow a conversion to bool in a *contextually converted constant expression of type `bool`* against the C++ requirements:
context | gcc | clang | icc | msvc
-----------------|-----|-------|-----|-----
`static_assert` | yes | yes | yes | yes
`if constexpr` | yes | no | yes | yes*
`explicit(bool)` | no | no | --** | --**
`noexcept(bool)` | no | yes | yes | yes*
\* MSVC accepts the code but issues a warning even in `/W1`.
\** Feature not implemented.
Accepting this proposal would be to some extent standardizing the existing practice among compiler vendors.
### Types contextually convertible to type `bool`
The following table lists types that are contextually convertible to type `bool`:
type | allowed in constant expr | `true` when
---------------------------------------------------------------|--------------------------|-------------------------|
class with conversion to `bool` | yes | operator returns `true` |
class with conversion to a built-in type convertibel to `bool` | as per rules below | as per below rules
object/function pointer | no | not null
function name/reference | no | always
array name/reference | no | always
pointer to member | no | not null
integral type | no, except for 0 and 1 | not zero
floating-point type | no | not plus/minus zero
nullptr_t | no | never
unscoped enumeration | no, except for 0 and 1 | not zero
The problem, which this proposal is trying to fix, has only been reported when conversions from integral types or unscoped enumeraiotn types are involved, as for these types such conversion has practical and often used meaning:
* non-empty collection/sequence,
* is a given bit in a bitmask set.
We have never encountered a need to check if a floating-point value is exactly +/-0 in this way. Technically, checking a pointer has a meaning: "is it really pointing to some object/function", but it is more difficult to imagine a practical use case for it in *contextually converted constant expression of type `bool`*.
### Implicit conversions to `bool`
Some have suggested that a conversion to `bool` in general should not be considered narrowing, that `bool` should not be treated as a small integral type, and that the conversion to `bool` should be treated as a request to classify the states of the object as one of the two categories.
We do not want to go there. Even this seemingly correct reasoning can lead to bugs like this one:
```c++
struct Container {
explicit Container(bool zeroSize, bool zeroCapacity) {}
explicit Container(size_t size, int* begin) {}
};
int main() {
std::vector v;
X x (v.data(), v.size()); // bad order!
}
```
If the feature that prevents narrowing conversions can detect this bug, we would like to use this opportunity.
### Implicit conversions to `bool` in constant expressions
Another situation brought up while discussing this problem was if the following code should be correct:
```c++
// a C++03 type trait
template
struct is_small {
enum { value = (sizeof(T) == 1) };
};
template struct S {};
S::value> s; // int 1 converted to bool
```
In constant expressions the situation is different, because whether a conversion is narrowing or not depends not only on the types but also on the velaues, which are known at compile-time. We think that after [[P0907r4]](http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2018/p0907r4.html) was adopted, and `bool` has a well defined representation, conversion from `1` to `true` is now defined as non-narrowing.
### Compatibility with C `assert()` macro
As described in [[LWG 3011]](https://cplusplus.github.io/LWG/issue3011), currently macro `assert()` from the C Standard Library
only allows expressions of scalar types, and does not support the concept of expressions "contextually converted to `bool`". We believe that this issue does not interact with our proposal. For instance, the following example works even under the C definition of macro `assert()`:
```c++
template
auto makeArray()
{
assert(N);
// ...
}
```
But it stops working if we change `assert(N)` to `static_assert(N)`.
How to fix this
---------------
There is a two-dimensional space of possible solutions to this problems with two extremal solutions being:
1. Leave the specification as it is: no narrowing is allowed. (This leaves all the known compilers non-conformant.)
2. Just allow any implicit conversions in *contextually converted constant expression of type `bool`*.
(This compromizes the solution in [[CWG 2039]](http://www.open-std.org/jtc1/sc22/wg21/docs/cwg_defects.html#2039),
whatever its intent was.)
The two "degrees of freedom" in the solution space are:
1. Apply the fix only in the subset of the four contexts where the definition of
*contextually converted constant expression of type `bool`* is used; e.g., only in `static_assert` and `if constexpr`.
2. Allow conversion to `bool` only from a subset of types implicitly convertible to `bool`, e.g., only integral and scoped enumeration types.
In fact, relaxing only `static_assert` and `if constexpr`, only for integral and scoped enumeration types solves all
issues that have been reported by users that we are aware of.
### Feedback from Richard Smith
Richard Smith -- the submitter of [[CWG 2039]](http://www.open-std.org/jtc1/sc22/wg21/docs/cwg_defects.html#2039) --
points out that the original defect report only suggested the modification to `noexcept(bool)` context. It suggested wording improvements for `static_assert` context, but they were not supposed to alter the semantics. Thus the canges to `static_assert`
semantics got there against the submitters intentions. (The other two contexts -- `if constexpr` and `explicit(bool)`) were not in the Standard at that time.) Also, the recomenation from Richard is to apply *contextually converted constant expression of type `bool`* only to `noexcept(bool)` and `explicit(bool)` contexts.
### Our recomendation
We propose to apply the *contextually converted constant expression of type `bool`* restriction only in function declarations, that is in `noexcept(bool)` and `explicit(bool)` contexts.
In statements (`static_assert` and `if constexpr`) any conversion to `bool` should be allowed.
The distinction is clear: function declarations, which constitute an interface, require an additional caution and we require the the expressions to be more restricted. We also do not expect expressions other than type traits and `noexcept()` operator. In contrast, in statements that are part of function implementation details we allow more liberty which is compatible with 'runtime equivalents' such as `if`-statements and C-`assert`s.
Proposed wording changes
------------------------
### Change [dcl.dcl] paragraph 6
In a *static_assert-declaration*, the *constant-expression* shall be a contextually converted constant expression
of type `bool` (7.7)an expression that is a constant expression (7.7) after contextual conversion to `bool` (7.3). If the value of the expression when so converted is `true`, the declaration has no effect.
Otherwise, the program is ill-formed, and the resulting diagnostic message (4.1) shall include the text of
the *string-literal*, if one is supplied, except that characters not in the basic source character set (5.3) are not
required to appear in the diagnostic message.
### Change [stmt.if] paragraph 2
If the `if` statement is of the form `if constexpr`, the value of the condition shall be a contextually converted
constant expression of type `bool` (7.7)an expression that is a constant expression (7.7) after contextual conversion to `bool` (7.3); this form is called a `constexpr if` statement.
Acknowledgements
---------------
Jason Merrill originally reported this issue in CWG reflector. Tomasz Kamiński reviewed the paper and
suggested improvements.
Members of EWGI significantly improved the quality of the paper.
References
----------
[[CWG 2039]](http://www.open-std.org/jtc1/sc22/wg21/docs/cwg_defects.html#2039) Richard Smith, "Constant conversions to `bool`".
[[LWG 3011]](https://cplusplus.github.io/LWG/issue3011) Jonathan Wakely, "Requirements for `assert(E)` inconsistent with C".
[[WG14 N2207]](http://www.open-std.org/jtc1/sc22/wg14/www/docs/n2207.htm) Martin Sebor, Jonathan Wakely, Florian Weimer, "Assert Expression Problematic For C++".
[[P0907r4]](http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2018/p0907r4.html) JF Bastien, "Signed Integers are Two's Complement".