Address comments

- Make the diagnostic message simply saying "unsafe [conversion
  operation] of '__null_terminated' type"; further explanation is put
  in notes.
- Use `warn_unsafe_buffer_operation` to consistently test if CXX Safe
  Buffer is enabled.  Add an helper function for the test.
- Remove the warning on using C++ named cast to obtain
  __null_terminated pointers.
- Added tests for good cases of C-Style casts.
- Consistently use isBoundsSafetyAttributeOnlyMode for code involving
  bounds attributes but not shared with full Bounds Safety mode.

Author: ziqingluo-90

clang/include/clang/Basic/DiagnosticSemaKinds.td

@@ -13610,12 +13610,11 @@ def warn_unsafe_assign_to_null_terminated_pointer : Warning<
                   "conversion to|"
                   "initialization of a pointer of|"
                   "assignment to a pointer of|"
-                  "casting to}2 '__null_terminated' type; "
-  "only '__null_terminated' pointers, string literals, and 'std::string::c_str' calls are compatible with '__null_terminated' pointers">,
-  InGroup<UnsafeBufferUsage>, DefaultIgnore;
-def warn_unsafe_named_cast_to_null_terminated_pointer : Warning<
-  "C++ named cast to '__null_terminated' type is unsafe">,
+                  "casting to}2 '__null_terminated' type">,
   InGroup<UnsafeBufferUsage>, DefaultIgnore;
+def note_unsafe_assign_to_null_terminated_pointer : Note<
+  "the source pointer may not point to null-terminated data; "
+  "only '__null_terminated' pointers, string literals, and 'std::string::c_str' calls are compatible with '__null_terminated' pointers">;
 #ifndef NDEBUG
 // Not a user-facing diagnostic. Useful for debugging false negatives in
 // -fsafe-buffer-usage-suggestions (i.e. lack of -Wunsafe-buffer-usage fixits).

clang/include/clang/Sema/Sema.h

@@ -1560,6 +1560,11 @@ class Sema final : public SemaBase {
   /// be controlled with \#pragma clang abi_ptr_attr set(*ATTR*). Defaults to
   /// __single in user code and __unsafe_indexable in system headers.
   BoundsSafetyPointerAttributes CurPointerAbi;
+
+  /// \returns true iff `-Wunsafe-buffer-usage` is enabled for `Loc`.
+  bool isCXXSafeBuffersEnabledAt(SourceLocation Loc) {
+    return !Diags.isIgnored(diag::warn_unsafe_buffer_operation, Loc);
+  }
   /* TO_UPSTREAM(BoundsSafety) OFF */
 
   /// pragma clang section kind

clang/lib/Sema/SemaCast.cpp

@@ -240,13 +240,11 @@ namespace {
               DstPointerType->getTerminatorValue(Self.Context).isZero();
           if (Self.LangOpts.isBoundsSafetyAttributeOnlyMode() &&
               Self.LangOpts.CPlusPlus &&
-              !Self.Diags.isIgnored(
-                  diag::warn_unsafe_assign_to_null_terminated_pointer,
-                  SrcExpr.get()->getExprLoc())) {
+              Self.isCXXSafeBuffersEnabledAt(OpRange.getBegin())) {
             // In C++ Safe Buffers/Bounds Safety interop mode, the compiler
             // reports a warning under -Wunsafe-buffer-usage:
             DiagKind = diag::warn_unsafe_assign_to_null_terminated_pointer;
-            isInvalid = true;
+            isInvalid = false;
             break;
           }
           if (Self.getLangOpts().BoundsSafetyRelaxedSystemHeaders) {
@@ -300,6 +298,9 @@ namespace {
             Self.Diag(OpRange.getBegin(), DiagKind)
                 << SrcType << DestType << AssignmentAction::Casting;
           }
+          if (DiagKind == diag::warn_unsafe_assign_to_null_terminated_pointer)
+            Self.Diag(OpRange.getBegin(),
+                      diag::note_unsafe_assign_to_null_terminated_pointer);
 
           Self.TryFixAssigningNullTerminatedToBidiIndexableExpr(SrcExpr.get(),
                                                                   DestType);
@@ -587,17 +588,6 @@ Sema::BuildCXXNamedCast(SourceLocation OpLoc, tok::TokenKind Kind,
 
   Op.checkQualifiedDestType();
 
-  // In C++ Safe Buffers/Bounds Safety interop mode, forbidding  for now all
-  // named cast to __null_terminated pointer type.
-  if (DestType->isPointerType() && LangOpts.hasBoundsSafetyAttributes() &&
-      !Diags.isIgnored(diag::warn_unsafe_named_cast_to_null_terminated_pointer,
-                       E->getBeginLoc())) {
-    if (DestType->getAs<ValueTerminatedType>()) {
-      Diag(E->getBeginLoc(),
-           diag::warn_unsafe_named_cast_to_null_terminated_pointer);
-      return ExprError();
-    }
-  }
   switch (Kind) {
   default: llvm_unreachable("Unknown C++ cast!");
 

clang/lib/Sema/SemaExpr.cpp

@@ -12195,24 +12195,20 @@ Sema::CheckValueTerminatedAssignmentConstraints(QualType LHSType,
         }
         // If in C++ Safe Buffers/Bounds Safety interoperation mode, the RHS can
         // be 'std::string::c_str':
-        bool SafeBuffersEnabled = !Diags.isIgnored(
-            diag::warn_unsafe_assign_to_null_terminated_pointer,
-            RHSExpr->getBeginLoc());
-
-        if (LangOpts.CPlusPlus && SafeBuffersEnabled) {
+        if (LangOpts.CPlusPlus &&
+            isCXXSafeBuffersEnabledAt(RHSExpr->getBeginLoc())) {
           if (const auto *MCE =
                   dyn_cast<CXXMemberCallExpr>(RHSExpr->IgnoreParenImpCasts())) {
             IdentifierInfo *MethodDeclII = nullptr, *ObjTypeII = nullptr;
 
             if (MCE->getMethodDecl())
               MethodDeclII = MCE->getMethodDecl()->getIdentifier();
             if (const auto *RecordDecl =
-                    MCE->getObjectType()->getAsRecordDecl()) {
+                    MCE->getObjectType()->getAsRecordDecl();
+                RecordDecl && RecordDecl->isInStdNamespace())
               // If not in std namespace, let `ObjTypeII` be null so that the
               // match fails:
-              if (RecordDecl->isInStdNamespace())
-                ObjTypeII = RecordDecl->getIdentifier();
-            }
+              ObjTypeII = RecordDecl->getIdentifier();
             if (MethodDeclII && ObjTypeII &&
                 MethodDeclII->getName() == "c_str" &&
                 ObjTypeII->getName() == "basic_string")
@@ -20810,9 +20806,7 @@ bool Sema::DiagnoseAssignmentResult(AssignConvertType ConvTy,
     IsDstNullTerm =
         DstPointerType->getTerminatorValue(getASTContext()).isZero();
     if (getLangOpts().isBoundsSafetyAttributeOnlyMode() &&
-        getLangOpts().CPlusPlus &&
-        !Diags.isIgnored(diag::warn_unsafe_assign_to_null_terminated_pointer,
-                         Loc)) {
+        getLangOpts().CPlusPlus && isCXXSafeBuffersEnabledAt(Loc)) {
       // In C++ Safe Buffers/Bounds Safety interop mode, the compiler reports a
       // warning under -Wunsafe-buffer-usage:
       DiagKind = diag::warn_unsafe_assign_to_null_terminated_pointer;
@@ -21254,6 +21248,11 @@ bool Sema::DiagnoseAssignmentResult(AssignConvertType ConvTy,
     }
   }
 
+  /* TO_UPSTREAM(BoundsSafety) ON*/
+  if (DiagKind == diag::warn_unsafe_assign_to_null_terminated_pointer)
+    Diag(Loc, diag::note_unsafe_assign_to_null_terminated_pointer);
+  /* TO_UPSTREAM(BoundsSafety) OFF*/
+
   if (IsSrcNullTerm) {
     TryFixAssigningNullTerminatedToImplicitBidiIndexablePtr(Assignee, SrcExpr,
                                                             DstType, Action);

clang/lib/Sema/SemaExprCXX.cpp

@@ -4225,16 +4225,14 @@ Sema::PerformImplicitConversion(Expr *From, QualType ToType,
                                 const ImplicitConversionSequence &ICS,
                                 AssignmentAction Action,
                                 CheckedConversionKind CCK) {
-  if (ToType->isPointerType() && LangOpts.hasBoundsSafetyAttributes() &&
-      !Diags.isIgnored(diag::warn_unsafe_assign_to_null_terminated_pointer,
-                       From->getBeginLoc())) {
+  if (ToType->isPointerType() && LangOpts.isBoundsSafetyAttributeOnlyMode() &&
+      isCXXSafeBuffersEnabledAt(From->getBeginLoc())) {
     // In C++ Safe Buffers/Bounds Safety interop mode, warn about implicit
     // conversions from non-`__null_terminated` to `__null_terminated`:
     AssignConvertType ConvTy =
         CheckValueTerminatedAssignmentConstraints(ToType, From);
-    if (DiagnoseAssignmentResult(ConvTy, From->getExprLoc(), ToType,
-                                 From->getType(), From, Action))
-      return ExprError();
+    DiagnoseAssignmentResult(ConvTy, From->getExprLoc(), ToType,
+                             From->getType(), From, Action);
   }
   // C++ [over.match.oper]p7: [...] operands of class type are converted [...]
   if (CCK == CheckedConversionKind::ForBuiltinOverloadedOp &&