This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
clang/
-
docs/
2/2
ReleaseNotes.rst
-
include/clang/Basic/
-
clang/
-
Basic/
3/3
DiagnosticLexKinds.td
-
lib/Lex/
-
Lex/
26/28
Lexer.cpp
-
test/
-
Lexer/
-
comment-invalid-utf8.c
-
comment-utf8.c
-
SemaCXX/
-
static-assert.cpp
-
llvm/
-
include/llvm/Support/
-
llvm/
-
Support/
-
ConvertUTF.h
-
lib/Support/
-
Support/
1/1
ConvertUTF.cpp

Differential D128059

[Clang] Add a warning on invalid UTF-8 in comments.
ClosedPublic

Authored by cor3ntin on Jun 17 2022, 7:34 AM.

Download Raw Diff

Details

Reviewers

aaron.ballman
tahonermann

Group Reviewers

Restricted Project

Commits

rGd4892a168f51: [Clang] Add a warning on invalid UTF-8 in comments.
rGcc309721d20c: [Clang] Add a warning on invalid UTF-8 in comments.
rG355532a1499a: [Clang] Add a warning on invalid UTF-8 in comments.
rG4174f0ca618b: [Clang] Add a warning on invalid UTF-8 in comments.
rGe3dc56805f10: [Clang] Add a warning on invalid UTF-8 in comments.

Summary

Introduce an off-by default -Winvalid-utf8 warning
that detects invalid UTF-8 code units sequences in comments.

Invalid UTF-8 in other places is already diagnosed,
as that cannot appear in identifiers and other grammar constructs.

The warning is off by default as its likely to be somewhat disruptive
otherwise.

This warning allows clang to conform to the yet-to be approved WG21
"P2295R5 Support for UTF-8 as a portable source file encoding"
paper.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

cor3ntin created this revision.Jun 17 2022, 7:34 AM

Herald added a project: Restricted Project. · View Herald TranscriptJun 17 2022, 7:34 AM

Herald added a subscriber: hiraditya. · View Herald Transcript

cor3ntin requested review of this revision.Jun 17 2022, 7:34 AM

Herald added projects: Restricted Project, Restricted Project. · View Herald TranscriptJun 17 2022, 7:34 AM

Herald added subscribers: llvm-commits, cfe-commits. · View Herald Transcript

cor3ntin added a reviewer: aaron.ballman.Jun 17 2022, 7:36 AM

Harbormaster completed remote builds in B170510: Diff 437899.Jun 17 2022, 8:58 AM

aaron.ballman added inline comments.Jun 21 2022, 6:57 AM

clang/include/clang/Basic/DiagnosticLexKinds.td
116–117	What would it take to enable the diagnostic by default? We don't typically add off-by-default diagnostics because there's evidence that not many folks enable them. Alternatively, would this make sense as a pedantic warning? It's not really an extension for us to accept this stuff, but it seems like we can still pedantically diagnose the code?
clang/lib/Lex/Lexer.cpp
2400	It looks like this can move into the `while` loop and we can remove some `= false` from within the loop?
2408	Do you have some idea of performance cost for enabling the warning with a large TU? Are we talking .5%? 1%? 5%? noise?
2416	So if unicode decoding didn't fail... diagnose? :-) The naming here seems unfortunate.
2416–2418
2696	I think this can move into the loop as well.
2806–2808	Same concerns about naming here as above.
llvm/lib/Support/ConvertUTF.cpp
426–429

Address style comments
Improve commit message
Enable the warning in -pedantic

cor3ntin added inline comments.Jun 21 2022, 11:49 PM

clang/lib/Lex/Lexer.cpp
2400	The idea here is to not diagnose a contiguous sequence of invalid code units more than once The sequence `0x80x0x80x80` for example will only warn one for example. The goal is to avoid noise when, for example there is a long comment in Windows-1251 encoded cyrillic. it would warn one per word (because the spaces would decode fine) rather than one per contiguous non-sense character. It's also somewhat necessary because we can't know where the end of the invalid "character" is, better to be greedy. (The test file check that behavior)
2408	This adds 2 comparisons when the warning is enbled (is ASCII(c) is simply `C < 0x80`) - so it should be noise, but I have not run benchmark. It might be more noticeable within multi line comments as there the optimization that vectorizes the comment skipping on SSE2 platforms is simply skipped when this optimization is enabled.
2416	`if(!UnicodeDecodeFailedInThePreviousLoopIteration)` ? I'm open to suggestion here

Harbormaster completed remote builds in B171251: Diff 438926.Jun 22 2022, 12:26 AM

aaron.ballman added inline comments.Jun 22 2022, 4:36 AM

clang/lib/Lex/Lexer.cpp
2400	Oh derp, you're right (of course), sorry for the noise!
2408	Ah, no need to run the benchmark then, I was thinking this would involve function call overhead and more complex checking for the `isASCII` call than exists in reality.
2416	`UnicodeDecodingAlreadyDiagnosed`
2701–2702	However, this seems like it could noticeably impact performance, especially for C code (including C header files in C++ mode), and may be worth getting measurements for.

s/UnicodeDecodeFailed/UnicodeDecodingAlreadyDiagnosed/

Make sure the warning is off by default.

Harbormaster completed remote builds in B171302: Diff 438990.Jun 22 2022, 5:38 AM

tahonermann added a subscriber: tahonermann.Jun 22 2022, 9:08 AM

tahonermann added inline comments.

clang/include/clang/Basic/DiagnosticLexKinds.td
116–117	I agree with enabling this by default in at least some warning mode. Aaron's suggestion of making it a pedantic warning seems reasonable to me.
clang/lib/Lex/Lexer.cpp
2406–2425	I think it would be helpful to include a link to Unicode PR issue 121 here and note that the diagnostic follows policy option 1. Likewise for handling of '//' comment styles below. Alternatively, provide the link and a note in the release notes.

Vectorizes comment skipping even when -Winvalid-utf8 is enabled.

Harbormaster completed remote builds in B171341: Diff 439047.Jun 22 2022, 9:09 AM

Further optimize

@aaron.ballman

I created a 1.3GB file containing 500000 comments of random size and content,
with the following script

import string
import random

for i in range(0, 500000):
    print("/*{}*/".format(''.join(random.choices('\n' + string.ascii_uppercase + string.digits,
                            k=random.randrange(400, 5000)))
    ))
print("int main() {}")

The results are as follow:

Benchmark 1: /home/cor3ntin/dev/compilers/LLVM/build_release_main/bin/clang -Isqlite huge.cpp
  Time (mean ± σ):     221.3 ms ±   4.0 ms    [User: 151.5 ms, System: 69.7 ms]
  Range (min … max):   217.2 ms … 229.6 ms    13 runs
 
Benchmark 2: bin/clang -Isqlite huge.cpp
  Time (mean ± σ):     212.7 ms ±   7.6 ms    [User: 155.2 ms, System: 57.2 ms]
  Range (min … max):   204.6 ms … 226.9 ms    14 runs
 
Benchmark 3: ./bin/clang -Winvalid-utf8 -Isqlite huge.cpp
  Time (mean ± σ):     210.9 ms ±   4.0 ms    [User: 151.8 ms, System: 58.9 ms]
  Range (min … max):   205.7 ms … 220.2 ms    14 runs
 
Summary
  './bin/clang -Winvalid-utf8 -Isqlite huge.cpp' ran
    1.01 ± 0.04 times faster than 'bin/clang -Isqlite huge.cpp'
    1.05 ± 0.03 times faster than '/home/cor3ntin/dev/compilers/LLVM/build_release_main/bin/clang -Isqlite huge.cpp

I also tried sqlite (8MB file with all the sources)

Benchmark 1: /home/cor3ntin/dev/compilers/LLVM/build_release_main/bin/clang -Isqlite sqlite/sqlite3.c
  Time (mean ± σ):      1.852 s ±  0.033 s    [User: 1.782 s, System: 0.069 s]
  Range (min … max):    1.806 s …  1.904 s    10 runs
 
  Warning: Ignoring non-zero exit code.
 
Benchmark 2: bin/clang -Isqlite sqlite/sqlite3.c
  Time (mean ± σ):      1.758 s ±  0.010 s    [User: 1.694 s, System: 0.061 s]
  Range (min … max):    1.738 s …  1.774 s    10 runs
 
  Warning: Ignoring non-zero exit code.
 
Benchmark 3: ./bin/clang -Winvalid-utf8 -Isqlite sqlite/sqlite3.c
  Time (mean ± σ):      1.756 s ±  0.021 s    [User: 1.700 s, System: 0.053 s]
  Range (min … max):    1.741 s …  1.810 s    10 runs
 
  Warning: Ignoring non-zero exit code.
 
Summary
  './bin/clang -Winvalid-utf8 -Isqlite sqlite/sqlite3.c' ran
    1.00 ± 0.01 times faster than 'bin/clang -Isqlite sqlite/sqlite3.c'
    1.05 ± 0.02 times faster than '/home/cor3ntin/dev/compilers/LLVM/build_release_main/bin/clang -Isqlite sqlite/sqlite3.c'

and a file including all the c++ standard headers

Benchmark 1: /home/cor3ntin/dev/compilers/LLVM/build_release_main/bin/clang -Isqlite headers.cpp
  Time (mean ± σ):     956.6 ms ±  12.9 ms    [User: 891.1 ms, System: 63.0 ms]
  Range (min … max):   935.8 ms … 979.5 ms    10 runs
 
  Warning: Ignoring non-zero exit code.
 
Benchmark 2: bin/clang -Isqlite headers.cpp
  Time (mean ± σ):     906.1 ms ±  19.4 ms    [User: 860.1 ms, System: 43.6 ms]
  Range (min … max):   883.8 ms … 941.3 ms    10 runs
 
  Warning: Ignoring non-zero exit code.
  Warning: The first benchmarking run for this command was significantly slower than the rest (941.3 ms). This could be caused by (filesystem) caches that were not filled until after the first run. You should consider using the '--warmup' option to fill those caches before the actual benchmark. Alternatively, use the '--prepare' option to clear the caches before each timing run.
 
Benchmark 3: ./bin/clang -Winvalid-utf8 -Isqlite headers.cpp
  Time (mean ± σ):     906.8 ms ±  16.1 ms    [User: 866.5 ms, System: 39.5 ms]
  Range (min … max):   887.6 ms … 940.6 ms    10 runs
 
  Warning: Ignoring non-zero exit code.
 
Summary
  'bin/clang -Isqlite headers.cpp' ran
    1.00 ± 0.03 times faster than './bin/clang -Winvalid-utf8 -Isqlite headers.cpp'
    1.06 ± 0.03 times faster than '/home/cor3ntin/dev/compilers/LLVM/build_release_main/bin/clang -Isqlite headers.cpp'

You will notice i no longer check for whether the diagnostic is enabled preemptively as this turned out to be have negative effects on performance.

I posted bogus results earlier because i was using a pre built clang as the baseline and i suppose it's more optimized than the default build options, or was compiled with a different compiler

Harbormaster completed remote builds in B171348: Diff 439057.Jun 22 2022, 10:09 AM

It looks like precommit CI caught some issues:

Failed Tests (2):
  Clangd :: utf8.test
  Clangd Unit Tests :: ./ClangdTests.exe/CompletionStringTest/GetDeclCommentBadUTF8

clang/include/clang/Basic/DiagnosticLexKinds.td
116–117	Great, now that it's marked `Extension` it will show up when someone enables `-pedantic` (but is otherwise off by default).
clang/lib/Lex/Lexer.cpp
2406–2425	+1 -- I hadn't realized there were other options. However, ultimately I think this should be committed when WG21 has adopted the paper and then it would be even better to have a comment citing which stable name and paragraph number the code is implementing from P2295.

cor3ntin added inline comments.Jun 22 2022, 11:04 AM

clang/lib/Lex/Lexer.cpp
2406–2425	I don't think this applies as we are not inserting replacement characters, but I'm all for adding a comment. I don't know if we should reference the c++ wording though, as I don;t think there is value in not applying that behavior in all language modes.
2718	This crashes when using `_mm_load_si128` which suprises me because `CurPtr` is supposedly aligned on a 16 bytes boundary here. Any idea?

tahonermann added inline comments.Jun 22 2022, 11:54 AM

clang/lib/Lex/Lexer.cpp
2406–2425	Perhaps phrase it something like "diagnostics are issued consistent with the replacement character insertion strategy of Unicode PR-121 policy option 1". The goal is to make it clear that the diagnostic strategy is not out of thin air; that it follows Unicode endorsed behavior.

aaron.ballman added inline comments.Jun 22 2022, 12:06 PM

clang/lib/Lex/Lexer.cpp
2406–2425	Tom covered why I would prefer to see a comment, but as for the standards reference -- we already put in references to only one language for behavior we treat as an extension, so this would be more of the same. That ends up being helpful (especially if there's an explicit comment about it being an extension in other languages) because it tells the reader how the extension is roughly expected to behave as well.
2718	Wait, did you verify that `CurPtr` really is on a 16-byte boundary, or are you thinking it should be on such a boundary? (I don't see any alignment markings on the parameter, so I'd assume it's aligned as any other pointer.)

aaron.ballman added inline comments.Jun 22 2022, 12:31 PM

clang/lib/Lex/Lexer.cpp
2718	Derp, I missed that the loop above is manually aligning the pointer. I'm not certain what's going on here with your crash...

cor3ntin added inline comments.Jun 22 2022, 1:01 PM

clang/lib/Lex/Lexer.cpp
2718	Just above, i do while (C != '/' && ((intptr_t)CurPtr & 0x0F) != 0) { if (!isASCII(C)) { CurPtr--; break; } Derp indeed (the `CurPtr--; break` is the culprit, fix shortly)

Add a comment referencing the (to be) C++ wording and unicode discussion on replacemet characters
Do not try to skip utf8 checks when the warning is not enabled as checking whether the warning is enabled is more expensive
Fix a bug causing vectorization to not be aligned

Harbormaster completed remote builds in B171437: Diff 439177.Jun 22 2022, 4:15 PM

Remove explicit load instruction
cleanup extra braces

Harbormaster completed remote builds in B171520: Diff 439276.Jun 23 2022, 2:35 AM

@aaron.ballman FYI this is now core-approved

erichkeane added a subscriber: erichkeane.Jul 1 2022, 11:07 AM

erichkeane added inline comments.

clang/docs/ReleaseNotes.rst
281

Fix typo.

Harbormaster completed remote builds in B173279: Diff 441748.Jul 1 2022, 12:32 PM

aaron.ballman added reviewers: tahonermann, Restricted Project.Jul 5 2022, 9:13 AM

aaron.ballman added inline comments.

clang/docs/ReleaseNotes.rst
282	Should we mention `P2295R5` now that it's at least core approved? Something like: ...unit sequences in comments; in support of `P2295R5 <http://wg21.link/P2295R5>`_.

My plan is to do that for all papers once past plenary to
keep consistency with cxx_status.

The changes here LGTM, thank you for this!

This revision is now accepted and ready to land.Jul 6 2022, 8:25 AM

This revision was landed with ongoing or failed builds.Jul 6 2022, 8:59 AM

Closed by commit rGe3dc56805f10: [Clang] Add a warning on invalid UTF-8 in comments. (authored by cor3ntin). · Explain Why

This revision was automatically updated to reflect the committed changes.

cor3ntin added a commit: rGe3dc56805f10: [Clang] Add a warning on invalid UTF-8 in comments..

As far as I can tell, this breaks check-clang everywhere: http://45.33.8.238/

Please take a look and revert for now if it takes a while to fix.

cor3ntin added a reverting change: rGfb06dd3e8ca1: Revert "[Clang] Add a warning on invalid UTF-8 in comments.".Jul 6 2022, 10:46 AM

In D128059#3633343, @thakis wrote:

As far as I can tell, this breaks check-clang everywhere: http://45.33.8.238/

Please take a look and revert for now if it takes a while to fix.

Thanks for letting me know, i hadn't noticed the bots screaming at me. I did revert until i can investigate and fix.

cor3ntin reopened this revision.Jul 6 2022, 11:09 AM

This revision is now accepted and ready to land.Jul 6 2022, 11:09 AM

Fix the test of a newly landed commit

Harbormaster completed remote builds in B173952: Diff 442642.Jul 6 2022, 12:02 PM

This revision was landed with ongoing or failed builds.Jul 6 2022, 12:18 PM

Closed by commit rG4174f0ca618b: [Clang] Add a warning on invalid UTF-8 in comments. (authored by cor3ntin). · Explain Why

This revision was automatically updated to reflect the committed changes.

cor3ntin added a commit: rG4174f0ca618b: [Clang] Add a warning on invalid UTF-8 in comments..

The bots found a further issue which i committed a fix for directly https://reviews.llvm.org/D129223 - I should have caught that sooner

thakis added a reverting change: rGe9fe20dab39e: Revert "[Clang] Add a warning on invalid UTF-8 in comments.".Jul 6 2022, 1:53 PM

cor3ntin reopened this revision.Jul 6 2022, 3:17 PM

This revision is now accepted and ready to land.Jul 6 2022, 3:17 PM

Deploying that turned out to reveal a few critical issues

getUTF8SequenceSize never reported a non-zero length for valid

UTF-8 sequences.

In *some* circumstances (depending on the size of comment),

Unicode codepoints were parsed from one past their start,
because the CurPtr was sometimes, but not always, moved back.

I also added a test file with *valid* utf-8 in comments
(which would have caught these issues).

@aaron.ballman Ok, this didn't turn out great, and given the changes + the fact it was completely broken (twice!), I'd love if you could take a look at it again. Thanks :)

Harbormaster completed remote builds in B173997: Diff 442702.Jul 6 2022, 5:18 PM

Fix bound check in the non vectorized case

I only spotted one thing I think is actually an issue, the rest is style related. LGTM with the one issue fixed.

clang/lib/Lex/Lexer.cpp
2707–2709
2751–2764	`<` instead of `<=`?
2753–2755
2761–2763

Remove superfuous braces.

Harbormaster completed remote builds in B174373: Diff 443225.Jul 8 2022, 6:28 AM

This revision was landed with ongoing or failed builds.Jul 9 2022, 2:26 AM

Closed by commit rG355532a1499a: [Clang] Add a warning on invalid UTF-8 in comments. (authored by cor3ntin). · Explain Why

This revision was automatically updated to reflect the committed changes.

cor3ntin added a commit: rG355532a1499a: [Clang] Add a warning on invalid UTF-8 in comments..

@aaron.ballman Thanks for the review. I landed the changes and got a bunch of bots screaming at me for changes that are completely unrelated

https://lab.llvm.org/buildbot/#/builders/21/builds/45146
https://lab.llvm.org/buildbot/#/builders/36/builds/22838
https://lab.llvm.org/buildbot/#/builders/121/builds/21183

In D128059#3640424, @cor3ntin wrote:

@aaron.ballman Thanks for the review. I landed the changes and got a bunch of bots screaming at me for changes that are completely unrelated

https://lab.llvm.org/buildbot/#/builders/21/builds/45146
https://lab.llvm.org/buildbot/#/builders/36/builds/22838
https://lab.llvm.org/buildbot/#/builders/121/builds/21183

What do you mean it is completely unrelated? You have __ALTIVEC__-specific changes and it knocks out the PPC bots.

cor3ntin added a reverting change: rG50416e5454d8: Revert "[Clang] Add a warning on invalid UTF-8 in comments.".Jul 9 2022, 8:20 AM

In D128059#3640544, @hubert.reinterpretcast wrote:

In D128059#3640424, @cor3ntin wrote:

@aaron.ballman Thanks for the review. I landed the changes and got a bunch of bots screaming at me for changes that are completely unrelated

https://lab.llvm.org/buildbot/#/builders/21/builds/45146
https://lab.llvm.org/buildbot/#/builders/36/builds/22838
https://lab.llvm.org/buildbot/#/builders/121/builds/21183

What do you mean it is completely unrelated? You have __ALTIVEC__-specific changes and it knocks out the PPC bots.

Good point. The error was a bit misleading but i guess what's happening is a segfault when running clang-ast-dump.
I'm reverting for now and I don't really know how to go from there as I don't have the hardware to test that code path.

In D128059#3640564, @cor3ntin wrote:

Good point. The error was a bit misleading but i guess what's happening is a segfault when running clang-ast-dump.
I'm reverting for now and I don't really know how to go from there as I don't have the hardware to test that code path.

Sending you info via e-mail on how to request access to systems.

cor3ntin reopened this revision.Jul 9 2022, 11:41 AM

This revision is now accepted and ready to land.Jul 9 2022, 11:41 AM

Fix crash on PowerPC

(I forgot to removed a non-sense line that
could cause the CurPtr to move incorrectly
past a / in the ALTIVEC code path).

Harbormaster completed remote builds in B174707: Diff 443699.Jul 11 2022, 12:28 PM

In D128059#3643081, @cor3ntin wrote:

Fix crash on PowerPC

(I forgot to removed a non-sense line that
could cause the CurPtr to move incorrectly
past a / in the ALTIVEC code path).

Ah, nice catch -- LGTM!

This revision was landed with ongoing or failed builds.Jul 12 2022, 5:34 AM

Closed by commit rGcc309721d20c: [Clang] Add a warning on invalid UTF-8 in comments. (authored by cor3ntin). · Explain Why

This revision was automatically updated to reflect the committed changes.

cor3ntin added a commit: rGcc309721d20c: [Clang] Add a warning on invalid UTF-8 in comments..

JDevlieghere added a reverting change: rGa262f4dbd78f: Revert "[Clang] Add a warning on invalid UTF-8 in comments.".Jul 12 2022, 3:22 PM

I had to revert this because it breaks a bunch of LLDB tests: https://green.lab.llvm.org/green/view/LLDB/job/lldb-cmake/45288/#showFailuresLink. It looks like this causes an error when building some SDK modules.

cor3ntin reopened this revision.Jul 12 2022, 5:14 PM

This revision is now accepted and ready to land.Jul 12 2022, 5:14 PM

In D128059#3646695, @JDevlieghere wrote:

I had to revert this because it breaks a bunch of LLDB tests: https://green.lab.llvm.org/green/view/LLDB/job/lldb-cmake/45288/#showFailuresLink. It looks like this causes an error when building some SDK modules.

Thanks (and sorry for the annoyance)

This turned out to be an interesting bug.
The SSE code tried to be clever and skip over valid ascii code units when finding invalid UTF-8.
In doing so, it could run over the end of a comment entirely if

there was a short ascii comment
followed by a tiny amount of C++
followed by another comment containing non-ascii data.

It does not matter whether it was valid or not (which was misleading
as the file that tripped the bot is full of invalid code units.

The problematic test boils down to

enum a {
    x  /* 01234567890ABCDEF*/
};
/*ααααααααα*/

The fix is to do in the SSE codepath what we do in the altivec
and default paths: if we find an invalid code unit,
we rescan that bit of the comment on the slow path
without trying to update CurPtr (and for each code unit,
checking both for isASCIII an != '/' at the same time.

In D128059#3646953, @cor3ntin wrote:

In D128059#3646695, @JDevlieghere wrote:

I had to revert this because it breaks a bunch of LLDB tests: https://green.lab.llvm.org/green/view/LLDB/job/lldb-cmake/45288/#showFailuresLink. It looks like this causes an error when building some SDK modules.

Thanks (and sorry for the annoyance)

No worries at all. Thanks for looking into the issue!

Harbormaster completed remote builds in B175009: Diff 444118.Jul 12 2022, 7:24 PM

This revision was landed with ongoing or failed builds.Jul 13 2022, 1:19 AM

Closed by commit rGd4892a168f51: [Clang] Add a warning on invalid UTF-8 in comments. (authored by cor3ntin). · Explain Why

This revision was automatically updated to reflect the committed changes.

cor3ntin added a commit: rGd4892a168f51: [Clang] Add a warning on invalid UTF-8 in comments..

In D128059#3640424, @cor3ntin wrote:

@aaron.ballman Thanks for the review. I landed the changes and got a bunch of bots screaming at me for changes that are completely unrelated

https://lab.llvm.org/buildbot/#/builders/21/builds/45146
https://lab.llvm.org/buildbot/#/builders/36/builds/22838
https://lab.llvm.org/buildbot/#/builders/121/builds/21183 free games

Good point. The error was confusing, but it's probably a segfault while running.

Herald added a subscriber: • pcwang-thead. · View Herald TranscriptMay 31 2023, 9:57 PM

@cor3ntin, sorry for failing to keep up with reviews; I know this has already been committed. I did spot a couple of typos should you feel inclined to address them.

clang/lib/Lex/Lexer.cpp
2399
2695

I'll be unavailable the next 2 weeks, feel free to do it if you want!

In D128059#3640564, @cor3ntin wrote:

In D128059#3640544, @hubert.reinterpretcast wrote:

In D128059#3640424, @cor3ntin wrote:

@aaron.ballman Thanks for the review. I landed the changes and got a bunch of bots screaming at me for changes that are completely unrelated

https://lab.llvm.org/buildbot/#/builders/21/builds/45146
https://lab.llvm.org/buildbot/#/builders/36/builds/22838
https://lab.llvm.org/buildbot/#/builders/121/builds/21183/monkey mart

What do you mean it is completely unrelated? You have __ALTIVEC__-specific changes and it knocks out the PPC bots.

Good point. The error was a bit misleading but i guess what's happening is a segfault when running clang-ast-dump.
I'm reverting for now and I don't really know how to go from there as I don't have the hardware to test that code path.

You raise a valid argument. The confusion caused by the error could potentially be attributed to a segmentation fault occurring during the execution.

Herald added a subscriber: wangpc. · View Herald TranscriptJul 9 2023, 4:44 PM

Revision Contents

Path

Size

clang/

docs/

ReleaseNotes.rst

6 lines

include/

clang/

Basic/

DiagnosticLexKinds.td

2 lines

lib/

Lex/

Lexer.cpp

107 lines

test/

Lexer/

comment-invalid-utf8.c

27 lines

comment-utf8.c

27 lines

SemaCXX/

static-assert.cpp

2 lines

llvm/

include/

llvm/

Support/

ConvertUTF.h

2 lines

lib/

Support/

ConvertUTF.cpp

10 lines

Diff 444183

clang/docs/ReleaseNotes.rst

Show First 20 Lines • Show All 272 Lines • ▼ Show 20 Lines - The ``-Wdeprecated`` diagnostic will now warn on out-of-line ``constexpr``

declarations downgraded to definitions in C++1z, in addition to the declarations downgraded to definitions in C++1z, in addition to the

existing warning on out-of-line ``const`` declarations. existing warning on out-of-line ``const`` declarations.

- ``-Wshift-overflow`` will not warn for signed left shifts in C++20 mode - ``-Wshift-overflow`` will not warn for signed left shifts in C++20 mode

(and newer), as it will always wrap and never overflow. This fixes (and newer), as it will always wrap and never overflow. This fixes

`Issue 52873 <https://github.com/llvm/llvm-project/issues/52873>`_. `Issue 52873 <https://github.com/llvm/llvm-project/issues/52873>`_.

- When using class templates without arguments, clang now tells developers - When using class templates without arguments, clang now tells developers

that template arguments are missing in certain contexts. that template arguments are missing in certain contexts.

This fixes `Issue 55962 <https://github.com/llvm/llvm-project/issues/55962>`_. This fixes `Issue 55962 <https://github.com/llvm/llvm-project/issues/55962>`_.

- Printable Unicode characters within `static_assert` messages are no longer - Printable Unicode characters within `static_assert` messages are no longer

erichkeaneUnsubmitted

Done

This fixes `Issue 55962 <https://github.com/llvm/llvm-project/issues/55962>`_.

- - Added ``-Winvalid-utf8`` which diagnose invalid UTF-8 code unit sequences in

+ - Added ``-Winvalid-utf8`` which diagnoses invalid UTF-8 code unit sequences in

comments.

erichkeane:

escaped. escaped.

aaron.ballmanUnsubmitted

Done

Should we mention P2295R5 now that it's at least core approved? Something like:

...unit sequences in comments; in support of `P2295R5 <http://wg21.link/P2295R5>`_.

aaron.ballman: Should we mention `P2295R5` now that it's at least core approved? Something like: %%% ...unit…

- The ``-Winfinite-recursion`` diagnostic no longer warns about - The ``-Winfinite-recursion`` diagnostic no longer warns about

unevaluated operands of a ``typeid`` expression, as they are now unevaluated operands of a ``typeid`` expression, as they are now

modeled correctly in the CFG. This fixes modeled correctly in the CFG. This fixes

`Issue 21668 <https://github.com/llvm/llvm-project/issues/21668>`_. `Issue 21668 <https://github.com/llvm/llvm-project/issues/21668>`_.

- ``-Wself-assign``, ``-Wself-assign-overloaded`` and ``-Wself-move`` will - ``-Wself-assign``, ``-Wself-assign-overloaded`` and ``-Wself-move`` will

suggest a fix if the decl being assigned is a parameter that shadows a data suggest a fix if the decl being assigned is a parameter that shadows a data

member of the contained class. member of the contained class.

- Added ``-Winvalid-utf8`` which diagnoses invalid UTF-8 code unit sequences in

comments.

Non-comprehensive list of changes in this release Non-comprehensive list of changes in this release

------------------------------------------------- -------------------------------------------------

- Improve __builtin_dump_struct: - Improve __builtin_dump_struct:

- Support bitfields in struct and union. - Support bitfields in struct and union.

- Improve the dump format, dump both bitwidth(if its a bitfield) and field - Improve the dump format, dump both bitwidth(if its a bitfield) and field

▲ Show 20 Lines • Show All 310 Lines • ▼ Show 20 Lines

AST Matchers AST Matchers

------------ ------------

- Expanded ``isInline`` narrowing matcher to support C++17 inline variables. - Expanded ``isInline`` narrowing matcher to support C++17 inline variables.

- Added ``forEachTemplateArgument`` matcher which creates a match every - Added ``forEachTemplateArgument`` matcher which creates a match every

time a ``templateArgument`` matches the matcher supplied to it. time a ``templateArgument`` matches the matcher supplied to it.

- Added ``objcStringLiteral`` matcher which matches ObjectiveC String - Added ``objcStringLiteral`` matcher which matches ObjectiveC String

literal expressions. literal expressions.

clang-format clang-format

------------ ------------

- **Important change**: Renamed ``IndentRequires`` to ``IndentRequiresClause`` - **Important change**: Renamed ``IndentRequires`` to ``IndentRequiresClause``

and changed the default for all styles from ``false`` to ``true``. and changed the default for all styles from ``false`` to ``true``.

▲ Show 20 Lines • Show All 84 Lines • Show Last 20 Lines

clang/include/clang/Basic/DiagnosticLexKinds.td

Show First 20 Lines • Show All 107 Lines • ▼ Show 20 Lines	def warn_multichar_character_literal : Warning<
"multi-character character constant">, InGroup<MultiChar>;		"multi-character character constant">, InGroup<MultiChar>;
def warn_four_char_character_literal : Warning<		def warn_four_char_character_literal : Warning<
"multi-character character constant">, InGroup<FourByteMultiChar>, DefaultIgnore;		"multi-character character constant">, InGroup<FourByteMultiChar>, DefaultIgnore;


// Unicode and UCNs		// Unicode and UCNs
def err_invalid_utf8 : Error<		def err_invalid_utf8 : Error<
"source file is not valid UTF-8">;		"source file is not valid UTF-8">;
		def warn_invalid_utf8_in_comment : Extension<
		"invalid UTF-8 in comment">, InGroup<DiagGroup<"invalid-utf8">>;
		aaron.ballmanUnsubmitted Done Reply Inline Actions What would it take to enable the diagnostic by default? We don't typically add off-by-default diagnostics because there's evidence that not many folks enable them. Alternatively, would this make sense as a pedantic warning? It's not really an extension for us to accept this stuff, but it seems like we can still pedantically diagnose the code? aaron.ballman: What would it take to enable the diagnostic by default? We don't typically add off-by-default…
		tahonermannUnsubmitted Done Reply Inline Actions I agree with enabling this by default in at least some warning mode. Aaron's suggestion of making it a pedantic warning seems reasonable to me. tahonermann: I agree with enabling this by default in at least some warning mode. Aaron's suggestion of…
		aaron.ballmanUnsubmitted Done Reply Inline Actions Great, now that it's marked `Extension` it will show up when someone enables `-pedantic` (but is otherwise off by default). aaron.ballman: Great, now that it's marked `Extension` it will show up when someone enables `-pedantic` (but…
def err_character_not_allowed : Error<		def err_character_not_allowed : Error<
"unexpected character <U+%0>">;		"unexpected character <U+%0>">;
def err_character_not_allowed_identifier : Error<		def err_character_not_allowed_identifier : Error<
"character <U+%0> not allowed %select{in\|at the start of}1 an identifier">;		"character <U+%0> not allowed %select{in\|at the start of}1 an identifier">;
def ext_unicode_whitespace : ExtWarn<		def ext_unicode_whitespace : ExtWarn<
"treating Unicode character as whitespace">,		"treating Unicode character as whitespace">,
InGroup<DiagGroup<"unicode-whitespace">>;		InGroup<DiagGroup<"unicode-whitespace">>;
def warn_utf8_symbol_homoglyph : Warning<		def warn_utf8_symbol_homoglyph : Warning<
▲ Show 20 Lines • Show All 795 Lines • Show Last 20 Lines

clang/lib/Lex/Lexer.cpp

Show First 20 Lines • Show All 2,386 Lines • ▼ Show 20 Lines bool Lexer::SkipLineComment(Token &Result, const char *CurPtr,

} }

// Scan over the body of the comment. The common case, when scanning, is that // Scan over the body of the comment. The common case, when scanning, is that

// the comment contains normal ascii characters with nothing interesting in // the comment contains normal ascii characters with nothing interesting in

// them. As such, optimize for this case with the inner loop. // them. As such, optimize for this case with the inner loop.

// //

// This loop terminates with CurPtr pointing at the newline (or end of buffer) // This loop terminates with CurPtr pointing at the newline (or end of buffer)

// character that ends the line comment. // character that ends the line comment.

// C++23 [lex.phases] p1

// Diagnose invalid UTF-8 if the corresponding warning is enabled, emitting a

// diagnostic only once per entire ill-formed subsequence to avoid

// emiting to many diagnostics (see http://unicode.org/review/pr-121.html).

tahonermannUnsubmitted

Not Done

// diagnostic only once per entire ill-formed subsequence to avoid

- // emiting to many diagnostics (see http://unicode.org/review/pr-121.html).

+ // emitting too many diagnostics (see http://unicode.org/review/pr-121.html).

bool UnicodeDecodingAlreadyDiagnosed = false;

tahonermann:

bool UnicodeDecodingAlreadyDiagnosed = false;

aaron.ballmanUnsubmitted

Done

It looks like this can move into the while loop and we can remove some = false from within the loop?

aaron.ballman: It looks like this can move into the `while` loop and we can remove some `= false` from within…

cor3ntinAuthorUnsubmitted

Done

The idea here is to not diagnose a contiguous sequence of invalid code units more than once
The sequence 0x80x0x80x80 for example will only warn one for example. The goal is to avoid noise when, for example there is a long comment in Windows-1251 encoded cyrillic. it would warn one per word (because the spaces would decode fine) rather than one per contiguous non-sense character.
It's also somewhat necessary because we can't know where the end of the invalid "character" is, better to be greedy.
(The test file check that behavior)

cor3ntin: The idea here is to not diagnose a contiguous sequence of invalid code units more than once The…

aaron.ballmanUnsubmitted

Done

Oh derp, you're right (of course), sorry for the noise!

aaron.ballman: Oh derp, you're right (of course), sorry for the noise!

char C; char C;

while (true) { while (true) {

C = *CurPtr; C = *CurPtr;

// Skip over characters in the fast loop. // Skip over characters in the fast loop.

while (C != 0 && // Potentially EOF. while (isASCII(C) && C != 0 && // Potentially EOF.

C != '\n' && C != '\r') // Newline or DOS-style newline. C != '\n' && C != '\r') { // Newline or DOS-style newline.

C = *++CurPtr; C = *++CurPtr;

aaron.ballmanUnsubmitted

Done

Do you have some idea of performance cost for enabling the warning with a large TU? Are we talking .5%? 1%? 5%? noise?

aaron.ballman: Do you have some idea of performance cost for enabling the warning with a large TU? Are we…

cor3ntinAuthorUnsubmitted

Done

This adds 2 comparisons when the warning is enbled (is ASCII(c) is simply C < 0x80) - so it should be noise, but I have not run benchmark.
It might be more noticeable within multi line comments as there the optimization that vectorizes the comment skipping on SSE2 platforms is simply skipped when this optimization is enabled.

cor3ntin: This adds 2 comparisons when the warning is enbled (is ASCII(c) is simply `C < 0x80`) - so it…

aaron.ballmanUnsubmitted

Done

Ah, no need to run the benchmark then, I was thinking this would involve function call overhead and more complex checking for the isASCII call than exists in reality.

aaron.ballman: Ah, no need to run the benchmark then, I was thinking this would involve function call overhead…

UnicodeDecodingAlreadyDiagnosed = false;

}

if (!isASCII(C)) {

unsigned Length = llvm::getUTF8SequenceSize(

(const llvm::UTF8 *)CurPtr, (const llvm::UTF8 *)BufferEnd);

if (Length == 0) {

if (!UnicodeDecodingAlreadyDiagnosed && !isLexingRawMode())

aaron.ballmanUnsubmitted

Done

So if unicode decoding didn't fail... diagnose? :-) The naming here seems unfortunate.

aaron.ballman: So if unicode decoding didn't fail... diagnose? :-) The naming here seems unfortunate.

cor3ntinAuthorUnsubmitted

Done

if(!UnicodeDecodeFailedInThePreviousLoopIteration) ? I'm open to suggestion here

cor3ntin: `if(!UnicodeDecodeFailedInThePreviousLoopIteration)` ? I'm open to suggestion here

aaron.ballmanUnsubmitted

Done

UnicodeDecodingAlreadyDiagnosed

aaron.ballman: `UnicodeDecodingAlreadyDiagnosed`

Diag(CurPtr, diag::warn_invalid_utf8_in_comment);

UnicodeDecodingAlreadyDiagnosed = true;

aaron.ballmanUnsubmitted

Done

if (Length == 0) {

- if (!UnicodeDecodeFailed) {

+ if (!UnicodeDecodeFailed)

Diag(CurPtr, diag::warn_invalid_utf8_in_comment);

- }

UnicodeDecodeFailed = true;

aaron.ballman:

++CurPtr;

} else {

UnicodeDecodingAlreadyDiagnosed = false;

CurPtr += Length;

}

continue;

}

tahonermannUnsubmitted

Done

I think it would be helpful to include a link to Unicode PR issue 121 here and note that the diagnostic follows policy option 1. Likewise for handling of '//' comment styles below. Alternatively, provide the link and a note in the release notes.

tahonermann: I think it would be helpful to include a link to [[ http://unicode.org/review/pr-121.html |…

aaron.ballmanUnsubmitted

Done

+1 -- I hadn't realized there were other options. However, ultimately I think this should be committed when WG21 has adopted the paper and then it would be even better to have a comment citing which stable name and paragraph number the code is implementing from P2295.

aaron.ballman: +1 -- I hadn't realized there were other options. However, ultimately I think this should be…

cor3ntinAuthorUnsubmitted

Done

I don't think this applies as we are not inserting replacement characters, but I'm all for adding a comment.
I don't know if we should reference the c++ wording though, as I don;t think there is value in not applying that behavior in all language modes.

cor3ntin: I don't think this applies as we are not inserting replacement characters, but I'm all for…

tahonermannUnsubmitted

Done

Perhaps phrase it something like "diagnostics are issued consistent with the replacement character insertion strategy of Unicode PR-121 policy option 1". The goal is to make it clear that the diagnostic strategy is not out of thin air; that it follows Unicode endorsed behavior.

tahonermann: Perhaps phrase it something like "diagnostics are issued consistent with the replacement…

aaron.ballmanUnsubmitted

Done

Tom covered why I would prefer to see a comment, but as for the standards reference -- we already put in references to only one language for behavior we treat as an extension, so this would be more of the same. That ends up being helpful (especially if there's an explicit comment about it being an extension in other languages) because it tells the reader how the extension is roughly expected to behave as well.

aaron.ballman: Tom covered why I would prefer to see a comment, but as for the standards reference -- we…

const char *NextLine = CurPtr; const char *NextLine = CurPtr;

if (C != 0) { if (C != 0) {

// We found a newline, see if it's escaped. // We found a newline, see if it's escaped.

const char *EscapePtr = CurPtr-1; const char *EscapePtr = CurPtr-1;

bool HasSpace = false; bool HasSpace = false;

while (isHorizontalWhitespace(*EscapePtr)) { // Skip whitespace. while (isHorizontalWhitespace(*EscapePtr)) { // Skip whitespace.

--EscapePtr; --EscapePtr;

▲ Show 20 Lines • Show All 250 Lines • ▼ Show 20 Lines if (C == 0 && CurPtr == BufferEnd+1) {

return false; return false;

} }

// Check to see if the first character after the '/*' is another /. If so, // Check to see if the first character after the '/*' is another /. If so,

// then this slash does not end the block comment, it is part of it. // then this slash does not end the block comment, it is part of it.

if (C == '/') if (C == '/')

C = *CurPtr++; C = *CurPtr++;

// C++23 [lex.phases] p1

// Diagnose invalid UTF-8 if the corresponding warning is enabled, emitting a

// diagnostic only once per entire ill-formed subsequence to avoid

// emiting to many diagnostics (see http://unicode.org/review/pr-121.html).

tahonermannUnsubmitted

Not Done

// diagnostic only once per entire ill-formed subsequence to avoid

- // emiting to many diagnostics (see http://unicode.org/review/pr-121.html).

+ // emitting too many diagnostics (see http://unicode.org/review/pr-121.html).

bool UnicodeDecodingAlreadyDiagnosed = false;

tahonermann:

bool UnicodeDecodingAlreadyDiagnosed = false;

aaron.ballmanUnsubmitted

Done

I think this can move into the loop as well.

aaron.ballman: I think this can move into the loop as well.

while (true) { while (true) {

// Skip over all non-interesting characters until we find end of buffer or a // Skip over all non-interesting characters until we find end of buffer or a

// (probably ending) '/' character. // (probably ending) '/' character.

if (CurPtr + 24 < BufferEnd && if (CurPtr + 24 < BufferEnd &&

// If there is a code-completion point avoid the fast scan because it // If there is a code-completion point avoid the fast scan because it

aaron.ballmanUnsubmitted

Done

However, *this* seems like it could noticeably impact performance, especially for C code (including C header files in C++ mode), and may be worth getting measurements for.

aaron.ballman: However, *this* seems like it could noticeably impact performance, especially for C code…

// doesn't check for '\0'. // doesn't check for '\0'.

!(PP && PP->getCodeCompletionFileLoc() == FileLoc)) { !(PP && PP->getCodeCompletionFileLoc() == FileLoc)) {

// While not aligned to a 16-byte boundary. // While not aligned to a 16-byte boundary.

while (C != '/' && ((intptr_t)CurPtr & 0x0F) != 0) while (C != '/' && (intptr_t)CurPtr % 16 != 0) {

if (!isASCII(C))

goto MultiByteUTF8;

C = *CurPtr++; C = *CurPtr++;

aaron.ballmanUnsubmitted

Done

while (C != '/' && (intptr_t)CurPtr % 16 != 0) {

- if (!isASCII(C)) {

+ if (!isASCII(C))

goto MultiByteUTF8;

- }

C = *CurPtr++;

aaron.ballman:

}

if (C == '/') goto FoundSlash; if (C == '/') goto FoundSlash;

#ifdef __SSE2__ #ifdef __SSE2__

__m128i Slashes = _mm_set1_epi8('/'); __m128i Slashes = _mm_set1_epi8('/');

while (CurPtr+16 <= BufferEnd) { while (CurPtr + 16 < BufferEnd) {

int Mask = _mm_movemask_epi8(*(const __m128i *)CurPtr);

if (LLVM_UNLIKELY(Mask != 0)) {

goto MultiByteUTF8;

cor3ntinAuthorUnsubmitted

Done

This crashes when using _mm_load_si128 which suprises me because CurPtr is supposedly aligned on a 16 bytes boundary here. Any idea?

cor3ntin: This crashes when using `_mm_load_si128` which suprises me because `CurPtr` is supposedly…

aaron.ballmanUnsubmitted

Done

Wait, did you verify that CurPtr really is on a 16-byte boundary, or are you thinking it should be on such a boundary? (I don't see any alignment markings on the parameter, so I'd assume it's aligned as any other pointer.)

aaron.ballman: Wait, did you verify that `CurPtr` really is on a 16-byte boundary, or are you thinking it…

aaron.ballmanUnsubmitted

Done

Derp, I missed that the loop above is manually aligning the pointer.

I'm not certain what's going on here with your crash...

aaron.ballman: Derp, I missed that the loop above is manually aligning the pointer. I'm not certain what's…

cor3ntinAuthorUnsubmitted

Done

Just above, i do

while (C != '/' && ((intptr_t)CurPtr & 0x0F) != 0) {
        if (!isASCII(C)) {
          CurPtr--;
          break;
        }

Derp indeed (the CurPtr--; break is the culprit, fix shortly)

cor3ntin: Just above, i do ``` while (C != '/' && ((intptr_t)CurPtr & 0x0F) != 0) { if (!isASCII…

}

// look for slashes

int cmp = _mm_movemask_epi8(_mm_cmpeq_epi8(*(const __m128i*)CurPtr, int cmp = _mm_movemask_epi8(_mm_cmpeq_epi8(*(const __m128i*)CurPtr,

Slashes)); Slashes));

if (cmp != 0) { if (cmp != 0) {

// Adjust the pointer to point directly after the first slash. It's // Adjust the pointer to point directly after the first slash. It's

// not necessary to set C here, it will be overwritten at the end of // not necessary to set C here, it will be overwritten at the end of

// the outer loop. // the outer loop.

CurPtr += llvm::countTrailingZeros<unsigned>(cmp) + 1; CurPtr += llvm::countTrailingZeros<unsigned>(cmp) + 1;

goto FoundSlash; goto FoundSlash;

} }

CurPtr += 16; CurPtr += 16;

} }

#elif __ALTIVEC__ #elif __ALTIVEC__

__vector unsigned char LongUTF = {0x80, 0x80, 0x80, 0x80, 0x80, 0x80,

0x80, 0x80, 0x80, 0x80, 0x80, 0x80,

0x80, 0x80, 0x80, 0x80};

__vector unsigned char Slashes = { __vector unsigned char Slashes = {

'/', '/', '/', '/', '/', '/', '/', '/', '/', '/', '/', '/', '/', '/', '/', '/',

'/', '/', '/', '/', '/', '/', '/', '/' '/', '/', '/', '/', '/', '/', '/', '/'

}; };

while (CurPtr + 16 <= BufferEnd && while (CurPtr + 16 < BufferEnd) {

!vec_any_eq(*(const __vector unsigned char *)CurPtr, Slashes)) if (LLVM_UNLIKELY(

vec_any_ge(*(const __vector unsigned char *)CurPtr, LongUTF)))

goto MultiByteUTF8;

if (vec_any_eq(*(const __vector unsigned char *)CurPtr, Slashes)) {

break;

}

CurPtr += 16; CurPtr += 16;

}

#else #else

// Scan for '/' quickly. Many block comments are very large. while (CurPtr + 16 < BufferEnd) {

while (CurPtr[0] != '/' && bool HasNonASCII = false;

CurPtr[1] != '/' && for (unsigned I = 0; I < 16; ++I)

CurPtr[2] != '/' && HasNonASCII |= !isASCII(CurPtr[I]);

CurPtr[3] != '/' &&

aaron.ballmanUnsubmitted

Done

bool HasNonASCII = false;

- for (unsigned I = 0; I < 16; ++I) {

+ for (unsigned I = 0; I < 16; ++I)

HasNonASCII |= !isASCII(CurPtr[I]);

- }

if (LLVM_UNLIKELY(HasNonASCII))

aaron.ballman:

CurPtr+4 < BufferEnd) { if (LLVM_UNLIKELY(HasNonASCII))

CurPtr += 4; goto MultiByteUTF8;

bool HasSlash = false;

for (unsigned I = 0; I < 16; ++I)

HasSlash |= CurPtr[I] == '/';

if (HasSlash)

break;

aaron.ballmanUnsubmitted

Done

bool HasSlash = false;

- for (unsigned I = 0; I < 16; ++I) {

+ for (unsigned I = 0; I < 16; ++I)

HasSlash |= CurPtr[I] == '/';

- }

if (HasSlash)

aaron.ballman:

CurPtr += 16;

aaron.ballmanUnsubmitted

Done

< instead of <=?

aaron.ballman: `<` instead of `<=`?

} }

#endif #endif

// It has to be one of the bytes scanned, increment to it and read one. // It has to be one of the bytes scanned, increment to it and read one.

C = *CurPtr++; C = *CurPtr++;

} }

// Loop to scan the remainder. // Loop to scan the remainder, warning on invalid UTF-8

while (C != '/' && C != '\0') // if the corresponding warning is enabled, emitting a diagnostic only once

// per sequence that cannot be decoded.

while (C != '/' && C != '\0') {

if (isASCII(C)) {

UnicodeDecodingAlreadyDiagnosed = false;

C = *CurPtr++; C = *CurPtr++;

continue;

}

MultiByteUTF8:

// CurPtr is 1 code unit past C, so to decode

// the codepoint, we need to read from the previous position.

unsigned Length = llvm::getUTF8SequenceSize(

(const llvm::UTF8 *)CurPtr - 1, (const llvm::UTF8 *)BufferEnd);

if (Length == 0) {

if (!UnicodeDecodingAlreadyDiagnosed && !isLexingRawMode())

Diag(CurPtr - 1, diag::warn_invalid_utf8_in_comment);

UnicodeDecodingAlreadyDiagnosed = true;

} else {

UnicodeDecodingAlreadyDiagnosed = false;

CurPtr += Length - 1;

}

C = *CurPtr++;

}

if (C == '/') { if (C == '/') {

FoundSlash: FoundSlash:

if (CurPtr[-2] == '*') // We found the final */. We're done! if (CurPtr[-2] == '*') // We found the final */. We're done!

break; break;

if ((CurPtr[-2] == '\n' || CurPtr[-2] == '\r')) { if ((CurPtr[-2] == '\n' || CurPtr[-2] == '\r')) {

if (isEndOfBlockCommentWithEscapedNewLine(CurPtr - 2, this, if (isEndOfBlockCommentWithEscapedNewLine(CurPtr - 2, this,

LangOpts.Trigraphs)) { LangOpts.Trigraphs)) {

// We found the final */, though it had an escaped newline between the // We found the final */, though it had an escaped newline between the

// * and /. We're done! // * and /. We're done!

break; break;

} }

aaron.ballmanUnsubmitted

Done

if (Length == 0) {

- if (!UnicodeDecodeFailed) {

+ if (!UnicodeDecodeFailed)

Diag(CurPtr, diag::warn_invalid_utf8_in_comment);

- }

UnicodeDecodeFailed = true;

Same concerns about naming here as above.

aaron.ballman: Same concerns about naming here as above.

} }

if (CurPtr[0] == '*' && CurPtr[1] != '/') { if (CurPtr[0] == '*' && CurPtr[1] != '/') {

// If this is a /* inside of the comment, emit a warning. Don't do this // If this is a /* inside of the comment, emit a warning. Don't do this

// if this is a /*/, which will end the comment. This misses cases with // if this is a /*/, which will end the comment. This misses cases with

// embedded escaped newlines, but oh well. // embedded escaped newlines, but oh well.

if (!isLexingRawMode()) if (!isLexingRawMode())

Diag(CurPtr-1, diag::warn_nested_block_comment); Diag(CurPtr-1, diag::warn_nested_block_comment);

} }

▲ Show 20 Lines • Show All 1,613 Lines • Show Last 20 Lines

clang/test/Lexer/comment-invalid-utf8.c

This file was added.

This file uses an unknown character encoding.

				// RUN: %clang_cc1 -fsyntax-only %s -Winvalid-utf8 -verify=expected
				// RUN: %clang_cc1 -fsyntax-only %s -verify=nowarn
				// nowarn-no-diagnostics

				// This file is purposefully encoded as windows-1252
				// be careful when modifying.

				//
				// expected-warning@-1 {{invalid UTF-8 in comment}}

				//
				// expected-warning@-1 6{{invalid UTF-8 in comment}}

				/**/
				// expected-warning@-1 {{invalid UTF-8 in comment}}

				/* */
				// expected-warning@-1 6{{invalid UTF-8 in comment}}

				/*

				*/
				// expected-warning@-2 {{invalid UTF-8 in comment}}

				// abcd
				// abcd
				// expected-warning@-1 {{invalid UTF-8 in comment}}

clang/test/Lexer/comment-utf8.c

This file was added.

				// RUN: %clang_cc1 -fsyntax-only %s -Winvalid-utf8 -verify
				// expected-no-diagnostics


				//§ § § 😀 你好 ©

				/§ § § 😀 你好 ©/

				/*
				§ § § 😀 你好 ©©©
				*/

				/* § § § 😀 你好 © */
				/*
				a longer comment to exerce the vectorized code path
				----------------------------------------------------
				αααααααααααααααααααααα // here is some unicode
				----------------------------------------------------
				----------------------------------------------------
				*/

				// The following test checks that a short comment is not merged
				// with a subsequent long comment containing utf-8
				enum a {
				x /* 01234567890ABCDEF*/
				};
				/ααααααααα/

clang/test/SemaCXX/static-assert.cpp

	// RUN: %clang_cc1 -fsyntax-only -verify %s -std=c++11 -pedantic -triple=x86_64-linux-gnu			// RUN: %clang_cc1 -fsyntax-only -verify %s -std=c++11 -pedantic -triple=x86_64-linux-gnu -Wno-invalid-utf8

	int f(); // expected-note {{declared here}}			int f(); // expected-note {{declared here}}

	static_assert(f(), "f"); // expected-error {{static_assert expression is not an integral constant expression}} expected-note {{non-constexpr function 'f' cannot be used in a constant expression}}			static_assert(f(), "f"); // expected-error {{static_assert expression is not an integral constant expression}} expected-note {{non-constexpr function 'f' cannot be used in a constant expression}}
	static_assert(true, "true is not false");			static_assert(true, "true is not false");
	static_assert(false, "false is false"); // expected-error {{static_assert failed: false is false}}			static_assert(false, "false is false"); // expected-error {{static_assert failed: false is false}}

	void g() {			void g() {
	▲ Show 20 Lines • Show All 206 Lines • Show Last 20 Lines

llvm/include/llvm/Support/ConvertUTF.h

	Show First 20 Lines • Show All 175 Lines • ▼ Show 20 Lines
	ConversionResult ConvertUTF32toUTF16 (			ConversionResult ConvertUTF32toUTF16 (
	const UTF32** sourceStart, const UTF32* sourceEnd,			const UTF32** sourceStart, const UTF32* sourceEnd,
	UTF16** targetStart, UTF16* targetEnd, ConversionFlags flags);			UTF16** targetStart, UTF16* targetEnd, ConversionFlags flags);

	Boolean isLegalUTF8Sequence(const UTF8 source, const UTF8 sourceEnd);			Boolean isLegalUTF8Sequence(const UTF8 source, const UTF8 sourceEnd);

	Boolean isLegalUTF8String(const UTF8 *source, const UTF8 sourceEnd);			Boolean isLegalUTF8String(const UTF8 *source, const UTF8 sourceEnd);

				unsigned getUTF8SequenceSize(const UTF8 source, const UTF8 sourceEnd);

	unsigned getNumBytesForUTF8(UTF8 firstByte);			unsigned getNumBytesForUTF8(UTF8 firstByte);

	/*************************************************************************/			/*************************************************************************/
	/* Below are LLVM-specific wrappers of the functions above. */			/* Below are LLVM-specific wrappers of the functions above. */

	template <typename T> class ArrayRef;			template <typename T> class ArrayRef;
	template <typename T> class SmallVectorImpl;			template <typename T> class SmallVectorImpl;
	class StringRef;			class StringRef;
	▲ Show 20 Lines • Show All 139 Lines • Show Last 20 Lines

llvm/lib/Support/ConvertUTF.cpp

Show First 20 Lines • Show All 411 Lines • ▼ Show 20 Lines

Boolean isLegalUTF8Sequence(const UTF8 *source, const UTF8 *sourceEnd) {

int length = trailingBytesForUTF8[*source]+1;

if (length > sourceEnd - source) {

return false;

}

return isLegalUTF8(source, length);

}

* Exported function to return the size of the first utf-8 code unit sequence,

* Or 0 if the sequence is not valid;

unsigned getUTF8SequenceSize(const UTF8 *source, const UTF8 *sourceEnd) {

int length = trailingBytesForUTF8[*source] + 1;

return (length <= sourceEnd - source && isLegalUTF8(source, length)) ? length

: 0;

}

aaron.ballmanUnsubmitted

Done

int length = trailingBytesForUTF8[*source] + 1;

- if (length > sourceEnd - source) {

- return 0;

- }

- return isLegalUTF8(source, length) ? length : 0;

+ return (length > sourceEnd - source && isLegalUTF8(source, length)) ? length : 0;

}

/* --------------------------------------------------------------------- */

aaron.ballman:

/* --------------------------------------------------------------------- */

static unsigned

findMaximalSubpartOfIllFormedUTF8Sequence(const UTF8 *source,

const UTF8 *sourceEnd) {

UTF8 b1, b2, b3;

assert(!isLegalUTF8Sequence(source, sourceEnd));

▲ Show 20 Lines • Show All 311 Lines • Show Last 20 Lines

This is an archive of the discontinued LLVM Phabricator instance.

[Clang] Add a warning on invalid UTF-8 in comments.ClosedPublic

Details

Diff Detail

Event Timeline

Revision Contents

Diff 444183

clang/docs/ReleaseNotes.rst

clang/include/clang/Basic/DiagnosticLexKinds.td

clang/lib/Lex/Lexer.cpp

clang/test/Lexer/comment-invalid-utf8.c

clang/test/Lexer/comment-utf8.c

clang/test/SemaCXX/static-assert.cpp

llvm/include/llvm/Support/ConvertUTF.h

llvm/lib/Support/ConvertUTF.cpp

[Clang] Add a warning on invalid UTF-8 in comments.
ClosedPublic