clang & gcc don't warn about non-virtual base destructors for polymorphism when using smart pointers?

Asked 12/10, 2014 at 2:21 Answered 30/8, 2017 at 21:11

Solved c++c++11 smart-pointers unique-ptr virtual-destructor

We know that ~~if there are virtual functions then the base class destructor should be marked as virtual as well, otherwise it is undefined behavior when explicitly deleted with base class pointer~~ if we hope to delete derived object with base class pointer the base destructor should be marked as virtual, otherwise it is undefined behavior.

For example,

struct Base {
  virtual void greet() { std::cout << "base\n"; }
};

struct Derived : public Base {
  virtual void greet() override { std::cout << "derived\n"; }
};

call

Base *b = new Derived;
b->greet();
delete (b);

clang(gcc similarly) will emit such a warning when -Wdelete-non-virtual-dtor:

delete called on 'Base' that has virtual functions but non-virtual destructor

But neither of them report warnings for smart pointers:

std::unique_ptr<Base> sb = std::make_unique<Derived>();
//   std::unique_ptr<Base> sb = std::unique_ptr<Derived>(new Derived);
sb->greet();

I guess this still leads to undefined behavior, right?

Lei answered 12/10, 2014 at 2:21 Comment(2)

Well, your first sentence lumps up several unrelated things. The rule is that deleting derived class through base class pointer is UB if the destructor is non-virtual. That's all there is to it. Whether the class has any other virtual functions is completely irrelevant. Presence of other virtual functions is just a loose rule-of-the-thumb criterion that suggests that this class is relatively likely to be deleted through a base class pointer. – Dimeter 12/10, 2014 at 3:2

@AndreyT thanks for pointing out that, i updated the original question to avoid misunderstanding. But I just discover that gcc/clang won't emit warnings if no virtual functions called, why? – Lei 12/10, 2014 at 3:19

Yes, it's still undefined behavior. The problem is that the delete call happens inside std::default_delete, which is inside a system header. By default, the compiler doesn't generate warnings for code in system headers.

If you pass -Wsystem-headers, you'll see the warning. Unfortunately, it's buried inside a pile of other warnings.

Dunsany answered 12/10, 2014 at 2:52 Comment(2)

too many diagnostics that i guess regular programmers will never use -Wsystem-headers; in this sense we have to be more careful ourselves:-( – Lei 12/10, 2014 at 3:5

@HongxuChen Yeah, I am really disappointed to discover this; it astounds me that unique_ptr is in any way less safe to use than raw pointers. Fortunately, both GCC and Clang do have -Wnon-virtual-dtor, which warns about non-virtual destructors even if you don't try to delete a pointer. – Mistakable 21/8, 2015 at 2:48

Not mentioned yet by the other answers:

This problem only exists for unique_ptr, not for the shared_ptr.

Both of these smart pointers can have custom deleters; however unique_ptr defaults to deleting the base pointer, and shared_ptr defaults to deleting the derived pointer (if you used make_shared<Derived> or equivalent).

Another way to solve the problem is to supply your own custom deleter for unique_ptr that deletes the derived pointer. This might be a good solution for cases where you want to avoid the overhead of introducing a vtable.

Further reading: unique_ptr deleter, shared_ptr deleter

Agnosia answered 26/8, 2016 at 1:25 Comment(0)

As of clang r312167 (which will be in clang 6.0 when it's released in about half a year), clang's -Wdelete-non-virtual-dtor warning will warn about this.

Pedicure answered 30/8, 2017 at 21:11 Comment(0)

Recommended topics

Hot tags