Is it undefined behavior to `reinterpret_cast` a `T*` to `T(*)[N]`?

Asked 25/1, 2018 at 13:28 Answered 25/1, 2018 at 15:10

Solved c++language-lawyer reinterpret-cast strict-aliasing c++17

Consider the following scenario:

std::array<int, 8> a;
auto p = reinterpret_cast<int(*)[8]>(a.data());
(*p)[0] = 42;

Is this undefined behavior? I think it is.

a.data() returns a int*, which is not the same as int(*)[8]
The type aliasing rules on cppreference seem to suggest that the reinterpret_cast is not valid
As a programmer, I know that the memory location pointed by a.data() is an array of 8 int objects

Is there any rule I am missing that makes this reinterpret_cast valid?

Paleogeography answered 25/1, 2018 at 13:28 Comment(3)

std::array is required to be a contiguous container. Thus, the question boils down to whether an int * p such that [p; p+N) is known to be a valid pointer range can be casted to int[N]. – Bibbs 25/1, 2018 at 14:4

#47924603 – Piet 25/1, 2018 at 20:35

Misleading title. It's never UB to do a pointer cast. The potential problem would be accessing memory via dereferencing the result of the cast – Squelch 25/1, 2018 at 22:8

An array object and its first element are not pointer-interconvertible^*, so the result of the reinterpret_cast is a pointer of type "pointer to array of 8 int" whose value is "pointer to a[0]"¹.In other words, despite the type, it does not actually point to any array object.

The code then applies the array-to-pointer conversion to the lvalue that resulted from dereferencing such a pointer (as a part of the indexing expression (*p)[0])². That conversion's behavior is only specified when the lvalue actually refers to an array object³. Since the lvalue in this case does not, the behavior is undefined by omission⁴.

_{^*If the question is "why is an array object and its first element not pointer-interconvertible?", it has already been asked: Pointer interconvertibility vs having the same address.}

_{¹See [expr.reinterpret.cast]/7, [conv.ptr]/2, [expr.static.cast]/13 and [basic.compound]/4.}

_{²See [basic.lval]/6, [expr.sub] and [expr.add].}

_{³[conv.array]: "The result is a pointer to the first element of the array."}

_{⁴[defns.undefined]: undefined behavior is "behavior for which this document imposes no requirements", including "when this document omits any explicit definition of behavior".}

Saharan answered 25/1, 2018 at 15:10 Comment(10)

Are you saying that std::array<int, 8> doesn't contain any int[8] subobject, or are you saying the pointer doesn't point to that subobject? In either case, I think that would mean that a.data() + 3 is also invalid, and we know that's supposed to be valid. – Knickers 25/1, 2018 at 15:50

@hvd I'm saying that the pointer points to a subobject of that int[8] subobject; i.e., it's still pointing to an element of the array, not the array itself. You cannot obtain a pointer to the array from a pointer to an element with reinterpret_cast. – Saharan 25/1, 2018 at 17:57

Okay, when I get back on my computer I'll check to see if I can find anything to counter that, and if not, delete my answer. Meanwhile, your logic would suggest that still, std::launder is enough to make it valid. Do you agree? – Knickers 25/1, 2018 at 18:20

@hvd Only if you meet the no-extra-reachability requirement, which will depend on the array at issue. – Saharan 25/1, 2018 at 18:25

In the OP's case, that should not be an issue, as far as I can tell. Every byte of the int[8] subobject was already accessible through data(). – Knickers 25/1, 2018 at 18:30

@hvd The issue is whether you can access beyond that subobject with the resulting pointer. E.g., if std::array<int, 8> is something like struct {int e[8]; char dummy;}; then a pointer to that int[8] is pointer-interconvertible with a pointer to the entire struct and so can reach dummy, which makes the launder undefined. – Saharan 25/1, 2018 at 18:32

Following this line of thought, is it impossible to violate strict aliasing rules with reinterpret cast except with unions? – Moonmoonbeam 25/1, 2018 at 20:6

How can you though, when the pointer is unchanged by the cast unless there is interconvertibility? – Moonmoonbeam 25/1, 2018 at 20:22

@PasserBy int i; *reinterpret_cast<float*>(&i) = 1; attempts to modify i through an lvalue of type float that refers to i. – Saharan 25/1, 2018 at 20:26

That char dummy; would pretty much require malice on the implementer's part, but true, the standard doesn't seem to prohibit it... – Knickers 25/1, 2018 at 21:3

Yes the behaviour is undefined.

int* (the return type of a.data()) is a different type from int(*)[8], so you are breaking strict aliasing rules.

Naturally though (and this is more for the benefit of future readers),

int* p = a.data();

is perfectly valid, as is the ensuing expression p + n where the integral type n is between 0 and 8 inclusive.

Carbolize answered 25/1, 2018 at 13:29 Comment(6)

I am casting the .data() though, not the array itself. – Paleogeography 25/1, 2018 at 13:32

@VittorioRomeo: Oops. Corrected, the answer still holds though. – Carbolize 25/1, 2018 at 13:33

in 99.9999% of the cases I see where this might be useful. I would suggest using a gsl::span to solve the problem instead – Executant 25/1, 2018 at 13:34

I think this answer still is misleading or has a typo: *"int* is a completely different type from std::array<int, N>*" - I am not casting to std::array<int, N>*, but to int(*)[8] instead. – Paleogeography 25/1, 2018 at 13:49

@VittorioRomeo: One more edit - I'm inclined to tin this. – Carbolize 25/1, 2018 at 13:50

I don't think it's a strict aliasing violation to use lvalue of type int to access an object of type int (which happens to be a member of an array) – Squelch 25/1, 2018 at 22:12

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags