Fix C++ VLA and template keyword issues for Apple Clang 17

[zanmato1984]

What problem does this PR solve?

Issue Number: close #10653

Problem Summary:

What is changed and how it works?

Apple Clang 17 enforces stricter C++ compliance:

1. Variable Length Arrays (VLAs) - Replaced C99/Clang extension VLAs with std::vector for standard C++ compliance:
   - AggregateFunctionArray.h, AggregateFunctionForEach.h, AggregateFunctionNull.h
   - JSONEachRowRowInputStream.cpp
   - FunctionsGeo.h
   - EncodingUtil.h, EncodingUtil.cpp
   - AESCTRCipher.cpp, AESCTRCipherStream.cpp
   - ColumnFileTiny.cpp
   - Various gtest files

2. Missing includes - Added explicit #include <memory> and <vector> where std::shared_ptr and std::vector are used:
   - CPUAffinityManager.h
   - ColumnRange_fwd.h

3. Unnecessary template keyword - Removed template keyword before non-template member functions:
   - Aggregator.cpp
   - JoinPartition.cpp

Check List

Tests

• Unit test
• Integration test
• Manual test (add detailed scripts or steps below)
• No code

Side effects

• Performance regression: Consumes more CPU
• Performance regression: Consumes more Memory
• Breaking backward compatibility

Documentation

• Affects user behaviors
• Contains syntax changes
• Contains variable changes
• Contains experimental features
• Changes MySQL compatibility

Release note

None

Summary by CodeRabbit

• Refactor

  • Modernized memory handling by replacing fixed-size and VLA buffers with dynamic containers for safer allocation and clearer semantics.
  • Cleaned up template call syntax for simpler, more maintainable code.

• Tests

  • Updated test suites to use dynamic buffers and containers, improving safety and eliminating reliance on variable-length arrays.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

Replaced variable-length and fixed-size stack arrays with std::vector in multiple places, removed unnecessary explicit template disambiguators on dependent template member calls, and added a few missing includes (e.g., <vector>, OpenSSL AES header, <memory>). No public API signatures changed.

Changes

Cohort / File(s)	Summary
Aggregate functions dbms/src/AggregateFunctions/AggregateFunctionArray.h, dbms/src/AggregateFunctions/AggregateFunctionForEach.h, dbms/src/AggregateFunctions/AggregateFunctionNull.h	Replaced fixed-size C-style arrays of IColumn* with std::vector<const IColumn*>; populate vectors and pass .data() to nested aggregate calls; added <vector> includes.
Common utilities dbms/src/Common/CPUAffinityManager.h	Added #include <memory>.
Tests — bitpacking & IO checksum dbms/src/Common/tests/gtest_bitpacking_primitives.cpp, dbms/src/IO/Checksum/tests/gtest_dm_checksum_buffer.cpp	Replaced stack buffers with std::vector and adjusted calls to use .data(); removed unnecessary template keyword in one emplace_back.
DataStreams & Geo functions dbms/src/DataStreams/JSONEachRowRowInputStream.cpp, dbms/src/Functions/FunctionsGeo.h	Replaced local fixed arrays (bool[], Ellipse[]) with std::vector; pass .data() to callers; added <vector>.
IO Compression dbms/src/IO/Compression/EncodingUtil.cpp, dbms/src/IO/Compression/EncodingUtil.h	Replace VLA/temp arrays with std::vector<char> for temporary buffers in FOR/delta decoding; use .data() for pointer ops and memcpy.
IO Encryption dbms/src/IO/Encryption/AESCTRCipher.cpp, dbms/src/IO/Encryption/AESCTRCipherStream.cpp, dbms/src/IO/Encryption/tests/gtest_encryption_test.cpp	Added OpenSSL AES include; enforce AES/SM4 fixed block sizes with asserts and fixed-size partial buffers; replaced VLAs in tests with std::vector and updated pointer usages.
Interpreter template calls dbms/src/Interpreters/Aggregator.cpp, dbms/src/Interpreters/JoinPartition.cpp	Removed redundant .template disambiguators on dependent template member function calls (e.g., state.findKey() / container.push_back()).
DeltaMerge storage dbms/src/Storages/DeltaMerge/ColumnFile/ColumnFileTiny.cpp, dbms/src/Storages/DeltaMerge/Filter/ColumnRange_fwd.h	Replaced VLA char buffer with std::vector<char>; updated reads/encryption to use .data(); added <vector> include.
Page storage tests (V2 & V3) dbms/src/Storages/Page/V2/tests/gtest_page_util.cpp, dbms/src/Storages/Page/V3/tests/gtest_blob_store.cpp, dbms/src/Storages/Page/V3/tests/gtest_page_storage.cpp, dbms/src/Storages/Page/V3/tests/gtest_wal_log.cpp	Replaced stack buffers and fixed-size arrays with std::vector variants; removed some const_casts; updated buffer pointer usages to .data() and adjusted a few test call params.

Sequence Diagram(s)

(omitted)

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Poem

🐰 I nibbled line-by-line with care,
VLAs hopped off the stacky stair.
Vectors arrived, tidy and spry,
Templates trimmed — a little sigh.
Hooray, my patch made code more fair! 🥕

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 5.56% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The PR title clearly and specifically describes the main change: fixing C++ VLA and template keyword issues for Apple Clang 17 compatibility.
Description check	✅ Passed	The PR description follows the template with all required sections: problem statement (issue #10653), detailed explanation of changes (VLAs, missing includes, template keywords), completed checklist, and release notes.
Linked Issues check	✅ Passed	The PR successfully addresses all objectives from issue #10653: replaces VLAs with std::vector, adds missing includes, removes unnecessary template keywords, and makes code Apple Clang 17 compliant.
Out of Scope Changes check	✅ Passed	All changes are in-scope: VLA replacements with std::vector, missing include additions, and template keyword removals are directly aligned with fixing Apple Clang 17 compatibility issues.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

• 📝 Generate docstrings

---

📜 Recent review details

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f99d95d and 5d263da.

📒 Files selected for processing (1)

• dbms/src/IO/Encryption/AESCTRCipher.cpp

🚧 Files skipped from review as they are similar to previous changes (1)

• dbms/src/IO/Encryption/AESCTRCipher.cpp

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[zanmato1984]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (7)

dbms/src/Functions/FunctionsGeo.h (2)

27-30: Add <vector> include looks correct; consider replacing <math.h> with <cmath>.

<vector> is needed for the new container; separately, <cmath> is generally preferable in C++ to avoid global C symbols/leakage.

---

234-238: Update the “array on stack” comment / rationale for the 10k-argument cap.

The cap in getReturnTypeImpl() is still OK as a general guardrail, but the comment implies stack allocation; the main allocation is now std::vector<Ellipse> on the heap.

Proposed comment tweak

-        /// For array on stack, see below.
+        /// Guardrail against excessive argument counts (memory/time).
         if (arguments.size() > 10000)
         {
             throw Exception("Number of arguments of function " + getName() + " is too large.");
         }

Also applies to: 259-283

dbms/src/DataStreams/JSONEachRowRowInputStream.cpp (1)

101-106: read_columns migration to std::vector<bool> is safe for this access pattern. (index-only reads/writes; preserves default-false init)

Optional: avoid `std::vector` specialization

-    std::vector<bool> read_columns(num_columns, false);
+    std::vector<UInt8> read_columns(num_columns, 0);
...
-        if (read_columns[index])
+        if (read_columns[index])
             throw Exception(...);
...
-        read_columns[index] = true;
+        read_columns[index] = 1;
...
-        if (!read_columns[i])
+        if (!read_columns[i])
             header.getByPosition(i).type->insertDefaultInto(*columns[i]);

Also applies to: 148-165

dbms/src/IO/Compression/EncodingUtil.cpp (2)

357-384: Good VLA removal; consider a defensive size assertion to lock in the assumption dest_size <= required_size.

Proposed diff

     const auto required_size = round_size * TYPE_BYTE_SIZE + TYPE_BYTE_SIZE;
     std::vector<char> tmp_buffer(required_size, 0);
+    assert(dest_size <= required_size);
     // copy the first value to the temporary buffer
     memcpy(tmp_buffer.data(), src, TYPE_BYTE_SIZE);

---

386-413: Same comment for the UInt64 specialization (nice cleanup).

Proposed diff

     const auto required_size = round_size * TYPE_BYTE_SIZE + TYPE_BYTE_SIZE;
     std::vector<char> tmp_buffer(required_size, 0);
+    assert(dest_size <= required_size);
     // copy the first value to the temporary buffer
     memcpy(tmp_buffer.data(), src, TYPE_BYTE_SIZE);

dbms/src/Storages/Page/V3/tests/gtest_blob_store.cpp (2)

354-430: Tests: prefer memcmp over strncmp for binary payload validation.

Proposed diff

-        ASSERT_EQ(strncmp(c_buff.data() +index * buff_size, c_buff_read.data() +index * buff_size, record.entry.size), 0);
+        ASSERT_EQ(memcmp(c_buff.data() + index * buff_size, c_buff_read.data() + index * buff_size, record.entry.size), 0);
...
-        ASSERT_EQ(strncmp(c_buff.data() +index * buff_size, page.data.begin(), page.data.size()), 0);
+        ASSERT_EQ(memcmp(c_buff.data() + index * buff_size, page.data.begin(), page.data.size()), 0);
...
-        ASSERT_EQ(strncmp(c_buff.data() +index * buff_size, page.data.begin(), page.data.size()), 0);
+        ASSERT_EQ(memcmp(c_buff.data() + index * buff_size, page.data.begin(), page.data.size()), 0);

---

541-609: Good: shared buffer switched to std::vector<char>; consider .data() for the other &c_buff[...] uses for consistency.

📜 Review details

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 1a39c7f and 0d8eb8a.

📒 Files selected for processing (21)

• dbms/src/AggregateFunctions/AggregateFunctionArray.h
• dbms/src/AggregateFunctions/AggregateFunctionForEach.h
• dbms/src/AggregateFunctions/AggregateFunctionNull.h
• dbms/src/Common/CPUAffinityManager.h
• dbms/src/Common/tests/gtest_bitpacking_primitives.cpp
• dbms/src/DataStreams/JSONEachRowRowInputStream.cpp
• dbms/src/Functions/FunctionsGeo.h
• dbms/src/IO/Checksum/tests/gtest_dm_checksum_buffer.cpp
• dbms/src/IO/Compression/EncodingUtil.cpp
• dbms/src/IO/Compression/EncodingUtil.h
• dbms/src/IO/Encryption/AESCTRCipher.cpp
• dbms/src/IO/Encryption/AESCTRCipherStream.cpp
• dbms/src/IO/Encryption/tests/gtest_encryption_test.cpp
• dbms/src/Interpreters/Aggregator.cpp
• dbms/src/Interpreters/JoinPartition.cpp
• dbms/src/Storages/DeltaMerge/ColumnFile/ColumnFileTiny.cpp
• dbms/src/Storages/DeltaMerge/Filter/ColumnRange_fwd.h
• dbms/src/Storages/Page/V2/tests/gtest_page_util.cpp
• dbms/src/Storages/Page/V3/tests/gtest_blob_store.cpp
• dbms/src/Storages/Page/V3/tests/gtest_page_storage.cpp
• dbms/src/Storages/Page/V3/tests/gtest_wal_log.cpp

🧰 Additional context used

🧬 Code graph analysis (3)

dbms/src/AggregateFunctions/AggregateFunctionNull.h (1)

dbms/src/Columns/IColumn.h (1)

• IColumn (52-73)

dbms/src/IO/Encryption/AESCTRCipherStream.cpp (1)

dbms/src/IO/Encryption/tests/gtest_encryption_test.cpp (1)

• iv (191-191)

dbms/src/IO/Compression/EncodingUtil.h (1)

dbms/src/IO/Compression/EncodingUtil.cpp (10)

• applyFrameOfReference (164-201)
• applyFrameOfReference (164-164)
• applyFrameOfReference (203-203)
• applyFrameOfReference (204-204)
• applyFrameOfReference (205-205)
• applyFrameOfReference (206-206)
• applyFrameOfReference (207-207)
• applyFrameOfReference (208-208)
• applyFrameOfReference (209-209)
• applyFrameOfReference (210-210)

🪛 Clang (14.0.6)

dbms/src/Storages/Page/V3/tests/gtest_blob_store.cpp

[error] 372-372: variable 'edit' is not initialized

(cppcoreguidelines-init-variables,-warnings-as-errors)

---

[error] 645-645: variable 'edit' is not initialized

(cppcoreguidelines-init-variables,-warnings-as-errors)

---

[error] 801-801: variable 'buff' is not initialized

(cppcoreguidelines-init-variables,-warnings-as-errors)

🔇 Additional comments (29)

dbms/src/Storages/DeltaMerge/Filter/ColumnRange_fwd.h (1)

17-26: Make the header self-contained by including <vector> (good fix).

ColumnRanges uses std::vector, so adding #include <vector> avoids relying on transitive includes and fixes stricter compiler builds.

dbms/src/Common/CPUAffinityManager.h (1)

20-20: Correctly adds missing include for std::shared_ptr.

The file uses LoggerPtr (a std::shared_ptr typedef) at line 37 and declares LoggerPtr log at line 133, so the <memory> include is necessary. This change aligns with the PR objective of adding missing includes for stricter Apple Clang 17 compliance.

dbms/src/Functions/FunctionsGeo.h (1)

260-262: std::vector<Ellipse> + ellipses.data() migration is correct.

This removes the non-standard VLA-style storage while preserving the isPointInEllipses(const Ellipse*) API.

Also applies to: 315-321, 330-336

dbms/src/Interpreters/JoinPartition.cpp (1)

1414-1414: LGTM! Correct removal of unnecessary template keyword.

The push_back method is a regular member function, not a template member function, so the explicit template disambiguator is unnecessary and causes compilation errors with Apple Clang 17's stricter standards. This change correctly makes the code standards-compliant without altering behavior.

dbms/src/Interpreters/Aggregator.cpp (2)

678-696: LGTM! Correct removal of unnecessary template keywords.

The findKey and emplaceKey methods are regular (non-template) member functions, so the explicit template disambiguator is unnecessary. This change correctly addresses Apple Clang 17's stricter enforcement of C++ standards without altering the logic.

---

698-715: LGTM! Consistent with the previous overload.

This overload correctly removes the unnecessary template keywords from calls to non-template member functions findKey and emplaceKey, maintaining consistency with the changes in the first overload above.

dbms/src/IO/Checksum/tests/gtest_dm_checksum_buffer.cpp (1)

339-339: LGTM! Correct removal of unnecessary template keyword.

The explicit template disambiguator is only required for dependent names in template contexts. Since slices is a local variable with a fully-instantiated type, the template keyword is unnecessary here and Apple Clang 17 correctly rejects it.

dbms/src/IO/Encryption/AESCTRCipher.cpp (1)

163-164: LGTM! Correct replacement of VLA with fixed-size array.

The replacement is accurate since both AES and SM4 use 128-bit (16-byte) block sizes. The added comment clearly documents this constraint. This change eliminates the non-standard C99/GNU VLA extension while maintaining correct behavior.

dbms/src/Storages/Page/V3/tests/gtest_wal_log.cpp (1)

211-214: LGTM! Proper VLA replacement with std::vector.

The migration from a C-style variable-length array to std::vector ensures standard C++ compliance. All pointer accesses correctly use .data(), maintaining both memory safety and the original behavior.

dbms/src/AggregateFunctions/AggregateFunctionArray.h (2)

25-26: LGTM! Appropriate include addition.

The <vector> header is correctly added to support the VLA replacement below.

---

75-75: LGTM! Clean VLA replacement with std::vector.

The replacement of the variable-length array with std::vector<const IColumn *> ensures standard C++ compliance. The usage correctly passes the raw pointer via .data() to the nested function, maintaining the original interface contract.

Also applies to: 99-99

dbms/src/IO/Compression/EncodingUtil.h (1)

137-140: LGTM! Correct VLA replacement in conditional path.

The migration to std::vector<unsigned char> eliminates the non-standard VLA while maintaining correct behavior. All pointer operations properly use .data(), and the allocation only occurs when round_size != count, preserving the optimization for the common case.

dbms/src/DataStreams/JSONEachRowRowInputStream.cpp (1)

20-21: Good: add explicit <vector> include for the new container usage.

dbms/src/Storages/DeltaMerge/ColumnFile/ColumnFileTiny.cpp (2)

25-27: Good: <vector> include added alongside new usage.

---

373-391: Verify the data_size == 0 encryption path with a specific test case.

The loop validates each column's serialized size is non-zero, but if the block contains zero columns, data_size would be zero. While std::vector<char>(0) and readStrict(_, 0) are safely handled, the subsequent call to file_provider->encryptPage() with data_size == 0 needs verification. The cipherData and Cipher functions do not explicitly validate data_size > 0 before encryption, so confirm they handle empty payloads correctly.

dbms/src/Storages/Page/V3/tests/gtest_page_storage.cpp (1)

95-120: Nice test hardening: move large buffers and batch containers off the stack; .data() usage is correct.

dbms/src/Storages/Page/V3/tests/gtest_blob_store.cpp (4)

171-210: Good: remove stack buffer + const_cast by switching to std::vector<char> and .data().

---

432-540: Good: vectorized IO limiter test buffers/batches; pointer arithmetic via .data() looks correct.

---

862-1205: Bulk replacements to std::vector + .data() look consistent; LGTM.

Also applies to: 1634-1931

---

789-860: Verify the exact clang-tidy warning from CI output—the check "init-variables" does not exist in the repository's clang-tidy configuration.

The .clang-tidy configuration does not include a check named init-variables. The relevant uninitialized variable checks enabled are clang-analyzer-core.uninitialized.* and cppcoreguidelines-pro-type-member-init. Code inspection shows variables at lines 372, 645, and 801 are properly initialized. Without actual CI warning messages, it is unclear whether this refers to a stale warning, a misnamed check, or a false positive that has already been resolved.

dbms/src/AggregateFunctions/AggregateFunctionNull.h (2)

38-38: LGTM: Standard library include added for std::vector.

The include is necessary for the VLA replacement on line 477.

---

477-477: LGTM: VLA replaced with std::vector for Apple Clang 17 compatibility.

The change correctly replaces the variable-length array with std::vector<const IColumn *>, which is standard C++ compliant. The vector is sized appropriately (bounded by MAX_ARGS = 8), and passing nested_columns.data() maintains the same interface contract with the nested aggregate function.

Also applies to: 497-497

dbms/src/AggregateFunctions/AggregateFunctionForEach.h (2)

28-28: LGTM: Standard library include added for std::vector.

The include is necessary for the VLA replacement on line 157.

---

157-157: LGTM: VLA replaced with std::vector for Apple Clang 17 compatibility.

The change correctly replaces the variable-length array with std::vector<const IColumn *> and passes nested.data() to maintain the same interface. This follows the same pattern as the fix in AggregateFunctionNull.h.

Also applies to: 185-185

dbms/src/Storages/Page/V2/tests/gtest_page_util.cpp (2)

39-39: LGTM: VLA replaced with std::vector in test.

The change correctly replaces stack-allocated char buffers with std::vector<char> and uses .data() to pass pointers to PageUtil functions. The test logic and assertions remain valid.

Also applies to: 49-49, 58-61

---

84-85: LGTM: VLA replaced with std::vector in test.

Consistent with the ReadWriteFile test, this change correctly replaces stack-allocated buffers with std::vector<char> for the larger buffer size test case.

Also applies to: 95-95, 105-106

dbms/src/Common/tests/gtest_bitpacking_primitives.cpp (1)

184-185: LGTM: VLA replaced with std::vector in test.

The change correctly replaces stack-allocated buffers with std::vector<unsigned char> and uses .data() to pass pointers to BitpackingPrimitives functions. The test logic, including pointer arithmetic on line 192, remains correct.

Also applies to: 188-189, 192-192

dbms/src/IO/Encryption/AESCTRCipherStream.cpp (1)

46-49: LGTM: VLA replaced with fixed-size array for IV.

The change correctly replaces the variable-length IV array with a fixed 16-byte array. Both AES and SM4 always use 128-bit (16-byte) IVs for CTR mode: blockSize(method) returns AES_BLOCK_SIZE (16 bytes) for all AES variants and 16 for SM4. The initIV function writes exactly 16 bytes (2 × UInt64 via memcpy). The explicit size makes the code more self-documenting and is applied consistently across both the encrypt and decrypt methods.

dbms/src/IO/Encryption/tests/gtest_encryption_test.cpp (1)

70-72: LGTM! Consistent VLA-to-vector migration for Apple Clang 17 compatibility.

All fixed-size stack arrays have been correctly replaced with std::vector, and pointer usage has been consistently updated to use .data(). The changes:

• Preserve the original semantics (raw pointers from .data() behave identically to array names)
• Improve memory safety through RAII
• Ensure C++ standard compliance by removing VLA/C99 extensions
• Maintain correct buffer sizes throughout

The transformations are mechanical and correct across all test cases in this file.

Also applies to: 191-197, 248-261, 278-295, 311-335, 364-376, 408-417, 431-443, 467-476, 498-503, 524-534, 559-566

[ti-chi-bot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: JinheLin, wshwsh12

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [JinheLin,wshwsh12]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[ti-chi-bot]

[LGTM Timeline notifier]

Timeline:

• 2026-01-09 03:45:06.327083403 +0000 UTC m=+933062.145391835: ☑️ agreed by JinheLin.
• 2026-01-09 03:46:38.785200287 +0000 UTC m=+933154.603508729: ☑️ agreed by wshwsh12.

[JaySon-Huang]

/hold

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

dbms/src/IO/Encryption/AESCTRCipher.cpp (1)

255-255: Consider replacing this VLA for consistency.

Line 255 still uses a variable-length array (unsigned char partial_block[block_size]), similar to what was fixed in the OpenSSLCipher function. While this may not cause issues if USE_GM_SSL is not defined on Apple Clang builds, replacing it with a fixed-size array (e.g., unsigned char partial_block[16]) would maintain consistency with the OpenSSLCipher fix and improve overall code portability.

♻️ Suggested fix for consistency

-    unsigned char partial_block[block_size];
+    // Block size is always 16 bytes (128-bit) for SM4
+    static_assert(16 == 16, "SM4 block size must be 16 bytes");
+    unsigned char partial_block[16];

Alternatively, if SM4_BLOCK_SIZE is available, use that constant instead of the magic number 16.

📜 Review details

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0d8eb8a and f99d95d.

📒 Files selected for processing (7)

• dbms/src/DataStreams/JSONEachRowRowInputStream.cpp
• dbms/src/IO/Compression/EncodingUtil.h
• dbms/src/IO/Encryption/AESCTRCipher.cpp
• dbms/src/IO/Encryption/AESCTRCipherStream.cpp
• dbms/src/Storages/Page/V3/tests/gtest_blob_store.cpp
• dbms/src/Storages/Page/V3/tests/gtest_page_storage.cpp
• dbms/src/Storages/Page/V3/tests/gtest_wal_log.cpp

🚧 Files skipped from review as they are similar to previous changes (4)

• dbms/src/Storages/Page/V3/tests/gtest_wal_log.cpp
• dbms/src/IO/Compression/EncodingUtil.h
• dbms/src/Storages/Page/V3/tests/gtest_page_storage.cpp
• dbms/src/DataStreams/JSONEachRowRowInputStream.cpp

🧰 Additional context used

🪛 Clang (14.0.6)

dbms/src/Storages/Page/V3/tests/gtest_blob_store.cpp

[error] 371-371: variable 'edit' is not initialized

(cppcoreguidelines-init-variables,-warnings-as-errors)

---

[error] 644-644: variable 'edit' is not initialized

(cppcoreguidelines-init-variables,-warnings-as-errors)

---

[error] 802-802: variable 'buff' is not initialized

(cppcoreguidelines-init-variables,-warnings-as-errors)

🔇 Additional comments (6)

dbms/src/IO/Encryption/AESCTRCipher.cpp (2)

18-18: LGTM! Necessary include for AES_BLOCK_SIZE.

The addition of <openssl/aes.h> is required to use the AES_BLOCK_SIZE constant introduced at line 166.

---

164-166: Excellent VLA replacement with defensive assertion.

The change from a variable-length array to a fixed-size array correctly addresses Apple Clang 17 compatibility. The runtime assertion at line 165 is good defensive programming that validates the assumption that all supported ciphers use a 16-byte block size.

dbms/src/Storages/Page/V3/tests/gtest_blob_store.cpp (1)

175-1924: LGTM! VLA removal is correctly implemented throughout the test file.

The refactoring successfully replaces all Variable Length Arrays (VLAs) with std::vector, making the code compliant with strict C++ standards required by Apple Clang 17. Key observations:

• All stack-allocated character buffers now use std::vector<char> with runtime sizing
• Pointer access correctly uses .data() method for C-API compatibility (ReadBufferFromMemory, strncmp, memset)
• Fixed-size WriteBatch and PageEntriesEdit arrays also converted to vectors (lines 448-449)
• Pointer arithmetic on vector data is handled correctly (e.g., c_buff.data() + offset)
• Test semantics and memory lifetimes are preserved

Regarding the static analysis hints: All three warnings are false positives. Lines 371, 644, and 802 show variables initialized via assignment or factory functions, which clang-tidy incorrectly flags.

dbms/src/IO/Encryption/AESCTRCipherStream.cpp (3)

58-60: VLA replaced with fixed-size array (consistent with encrypt).

The same VLA-to-fixed-array transformation applied in encrypt() is correctly mirrored here in decrypt(). The same verification regarding block size assumptions applies (see previous comment).

---

17-17: Include addition is correct and necessary.

The #include <openssl/aes.h> is required for the AES_BLOCK_SIZE constant used in the fixed-size array declarations on lines 49 and 60. AES_BLOCK_SIZE is defined as 16 in openssl/aes.h and matches the block sizes of all supported encryption methods (AES variants and SM4 both use 16-byte blocks).

---

47-49: The block size assumption is already validated by blockSize().

The blockSize() function (AESCTRCipher.cpp lines 80–105) explicitly guarantees that all supported encryption methods return 16 bytes: Aes128Ctr, Aes192Ctr, and Aes256Ctr return AES_BLOCK_SIZE, while SM4Ctr returns 16 (as documented in the code comment). The assert validates this internal invariant and will fail if an unknown method is passed, which is appropriate for production code since the method originates from trusted EncryptionInfo sources.

The VLA replacement is correct and fixes the Apple Clang 17 compatibility issue.

Likely an incorrect or invalid review comment.

[JaySon-Huang]

/unhold

[zanmato1984]

/retest