This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
libcxx/include/
-
include/
8/8
locale

Differential D134420

[libc++] Use intptr_t instead of ptrdiff_t for messages_base::catalog
ClosedPublic

Authored by ldionne on Sep 22 2022, 1:58 AM.

Download Raw Diff

Details

Reviewers

Mordante
arichardson
ldionne

Group Reviewers

Restricted Project

Commits

rGbf1bcb68fc41: [libc++] Use intptr_t instead of ptrdiff_t for messages_base::catalog

Summary

On GLibc, FreeBSD and macOS systems nl_catd is a pointer type, and
round-tripping this in a variable of ptrdiff_t is not portable.
In fact such a round-trip yields a non-dereferenceable pointer on
CHERI-enabled architectures such as Arm Morello. There pointers (and
therefore intptr_t) are twice the size of ptrdiff_t, which means casting
to ptrdiff_t strips the high (metadata) bits (as well as a hidden pointer
validity bit).

Since catalog is now guaranteed to be the same size or larger than nl_catd,
we can store all return values safely and the shifting workaround from
commit 0c68ed006d4f38c3cdcab6a565aa3e208015895f should not be needed
anymore (this is also not portable to CHERI systems on since shifting a
valid pointer right will create a massively out-of-bounds pointer that
may not be representable).

This can be fixed by using intptr_t which should be the same type as
ptrdiff_t on all currently supported architectures.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

arichardson created this revision.Sep 22 2022, 1:58 AM

Herald added a project: Restricted Project. · View Herald TranscriptSep 22 2022, 1:58 AM

Herald added subscribers: jrtc27, kristof.beyls, krytarowski, emaste. · View Herald Transcript

arichardson requested review of this revision.Sep 22 2022, 1:58 AM

Herald added a project: Restricted Project. · View Herald TranscriptSep 22 2022, 1:58 AM

Herald added 1 blocking reviewer(s): Restricted Project. · View Herald Transcript

Herald added a subscriber: libcxx-commits. · View Herald Transcript

Harbormaster completed remote builds in B188126: Diff 462114.Sep 22 2022, 1:59 AM

Mordante added a subscriber: Mordante.Sep 23 2022, 11:23 AM

Mordante added inline comments.

libcxx/include/locale
3464	Did you check these types are the same on all supported platforms. I noticed `intptr_t` is not guaranteed to be available on all platforms. Is that an issue?
3539	Is this code used in C++03? static_assert is a C++11 feature.

philnik added a subscriber: philnik.Sep 23 2022, 11:40 AM

philnik added inline comments.

libcxx/include/locale
3539	We have `static_assert` in C++03. We `#define static_assert(...) _Static_assert(__VA_ARGS__)` in `__config`.

arichardson added inline comments.Sep 26 2022, 4:39 AM

libcxx/include/locale
3464	I've looked at clang and for almost all targetinfo classes `PtrDiffType` uses the same type as `IntPtrType`. The only exception I can see is MIPS O32 ABI which uses Int for ptrdiff_t but long for intptr_t (those are the same size just different integer types). In case this is a problem, I'm not sure if MIPS O32 ABI is actually supported - if 32-bit is supported I would assume it's only N32 ABI. FreeBSD stddef.h checks SIZEOF_PTRDIFF_T and SIZEOF_POINTER, so if those match inside clang they will use the same types (which is true for all FreeBSD architectures other than CHERI-extended ones, which are not supported upstream) I think in theory they could be different with other OS/compiler-provided stddef.h, but I'd be surprised if they were since we don't yet support any architectures that don't have a flat address space (which should imply size_t==intptr_t).

arichardson added inline comments.Sep 26 2022, 4:45 AM

libcxx/include/locale
3464	I guess this could change mangled names for 32-bit MIPS, but https://libcxx.llvm.org/#platform-and-compiler-support does not list MIPS anywhere, so maybe this is okay? Otherwise I could add ifdefs (but I'd prefer not to).

rebase for CI

Harbormaster completed remote builds in B188677: Diff 462868.Sep 26 2022, 7:19 AM

LGTM, but I think it would be good for @ldionne to have a look too.

libcxx/include/locale
3464	Thanks for the info, then it seems it's not an issue to make this change.
3539	Thanks.

@ldionne do you think this is acceptable, or should I add additional ifdefs to avoid potential name mangling changes on 32-bit MIPS? To be honest I'm not sure if this type ever leaks into mangled names or if it's only ever used in inlined functions.

ping?

ping @ldionne . Would be nice to land this so that I can successfully run the libc++ testsuite on Morello.

ping @ldionne. I am pretty certain this is ABI compatible with all supported architectures, but I can add a release note if you like?

Is there any chance someone else who has the ability to approve this for #libc could do so since it appears @ldionne is not interested in this change. I get that this currently does not break any production targets, but IMO it does clean up the code for glibc and macOS as well.

In D134420#4485499, @arichardson wrote:

Is there any chance someone else who has the ability to approve this for #libc could do so since it appears @ldionne is not interested in this change. I get that this currently does not break any production targets, but IMO it does clean up the code for glibc and macOS as well.

I'm not disinterested, I just didn't see it amongst the ton of changes that I get pinged on. Let me take a look now.

This seems like a good change to me. I had ABI impact concerns but I read and re-read your commit + the discussion in the thread, and I am fine with this.

LGTM but we need to add a few tests, rebase this and get a green CI run.

libcxx/include/locale
3456	Can we add a libc++ specific test that asserts `is_same<messages_base::catalog, intptr_t>`? Also a non-libc++-specific test to check for the implementation of `LWG2028`? It could assert that `is_signed<messages_base::catalog>`.

This revision is now accepted and ready to land.Jul 10 2023, 9:38 AM

Oh and thanks for the cleanup BTW, this is a lot better than what we had before.

In D134420#4485745, @ldionne wrote:

Oh and thanks for the cleanup BTW, this is a lot better than what we had before.

Thanks for the review, will try to address your comments ASAP

[Github PR transition cleanup]

Commandeering to finish.

Address comments and rebase.

Harbormaster completed remote builds in B256805: Diff 556161.Sep 7 2023, 11:02 AM

Thanks for updating this change and apologies for not getting to it myself!

No worries!

Shipping now, the CI failure is something else.

This revision was landed with ongoing or failed builds.Sep 8 2023, 6:16 AM

Closed by commit rGbf1bcb68fc41: [libc++] Use intptr_t instead of ptrdiff_t for messages_base::catalog (authored by arichardson, committed by ldionne). · Explain Why

This revision was automatically updated to reflect the committed changes.

ldionne added a commit: rGbf1bcb68fc41: [libc++] Use intptr_t instead of ptrdiff_t for messages_base::catalog.

Revision Contents

Path

Size

libcxx/

include/

locale

15 lines

Diff 462868

libcxx/include/locale

Show First 20 Lines • Show All 3,447 Lines • ▼ Show 20 Lines	money_put<_CharT, _OutputIterator>::do_put(iter_type __s, bool __intl,
this->__format(__mb, __mi, __me, __iob.flags(),		this->__format(__mb, __mi, __me, __iob.flags(),
__digits.data(), __digits.data() + __digits.size(), __ct,		__digits.data(), __digits.data() + __digits.size(), __ct,
__neg, __pat, __dp, __ts, __grp, __sym, __sn, __fd);		__neg, __pat, __dp, __ts, __grp, __sym, __sn, __fd);
return __pad_and_output(__s, __mb, __mi, __me, __iob, __fl);		return __pad_and_output(__s, __mb, __mi, __me, __iob, __fl);
}		}

extern template class _LIBCPP_EXTERN_TEMPLATE_TYPE_VIS money_put<char>;		extern template class _LIBCPP_EXTERN_TEMPLATE_TYPE_VIS money_put<char>;
#ifndef _LIBCPP_HAS_NO_WIDE_CHARACTERS		#ifndef _LIBCPP_HAS_NO_WIDE_CHARACTERS
extern template class _LIBCPP_EXTERN_TEMPLATE_TYPE_VIS money_put<wchar_t>;		extern template class _LIBCPP_EXTERN_TEMPLATE_TYPE_VIS money_put<wchar_t>;
		ldionneAuthorUnsubmitted Done Reply Inline Actions Can we add a libc++ specific test that asserts `is_same<messages_base::catalog, intptr_t>`? Also a non-libc++-specific test to check for the implementation of `LWG2028`? It could assert that `is_signed<messages_base::catalog>`. ldionne: Can we add a libc++ specific test that asserts `is_same<messages_base::catalog, intptr_t>`?
#endif		#endif

// messages		// messages

class _LIBCPP_TYPE_VIS messages_base		class _LIBCPP_TYPE_VIS messages_base
{		{
public:		public:
typedef ptrdiff_t catalog;		typedef intptr_t catalog;
		MordanteUnsubmitted Done Reply Inline Actions Did you check these types are the same on all supported platforms. I noticed `intptr_t` is not guaranteed to be available on all platforms. Is that an issue? Mordante: Did you check these types are the same on all supported platforms. I noticed `intptr_t` is not…
		arichardsonUnsubmitted Done Reply Inline Actions I've looked at clang and for almost all targetinfo classes `PtrDiffType` uses the same type as `IntPtrType`. The only exception I can see is MIPS O32 ABI which uses Int for ptrdiff_t but long for intptr_t (those are the same size just different integer types). In case this is a problem, I'm not sure if MIPS O32 ABI is actually supported - if 32-bit is supported I would assume it's only N32 ABI. FreeBSD stddef.h checks SIZEOF_PTRDIFF_T and SIZEOF_POINTER, so if those match inside clang they will use the same types (which is true for all FreeBSD architectures other than CHERI-extended ones, which are not supported upstream) I think in theory they could be different with other OS/compiler-provided stddef.h, but I'd be surprised if they were since we don't yet support any architectures that don't have a flat address space (which should imply size_t==intptr_t). arichardson: I've looked at clang and for almost all targetinfo classes `PtrDiffType` uses the same type as…
		arichardsonUnsubmitted Done Reply Inline Actions I guess this could change mangled names for 32-bit MIPS, but https://libcxx.llvm.org/#platform-and-compiler-support does not list MIPS anywhere, so maybe this is okay? Otherwise I could add ifdefs (but I'd prefer not to). arichardson: I guess this could change mangled names for 32-bit MIPS, but https://libcxx.llvm.org/#platform…
		MordanteUnsubmitted Done Reply Inline Actions Thanks for the info, then it seems it's not an issue to make this change. Mordante: Thanks for the info, then it seems it's not an issue to make this change.

_LIBCPP_INLINE_VISIBILITY messages_base() {}		_LIBCPP_INLINE_VISIBILITY messages_base() {}
};		};

template <class _CharT>		template <class _CharT>
class _LIBCPP_TEMPLATE_VIS messages		class _LIBCPP_TEMPLATE_VIS messages
: public locale::facet,		: public locale::facet,
public messages_base		public messages_base
Show All 40 Lines
locale::id		locale::id
messages<_CharT>::id;		messages<_CharT>::id;

template <class _CharT>		template <class _CharT>
typename messages<_CharT>::catalog		typename messages<_CharT>::catalog
messages<_CharT>::do_open(const basic_string<char>& __nm, const locale&) const		messages<_CharT>::do_open(const basic_string<char>& __nm, const locale&) const
{		{
#ifdef _LIBCPP_HAS_CATOPEN		#ifdef _LIBCPP_HAS_CATOPEN
catalog __cat = (catalog)catopen(__nm.c_str(), NL_CAT_LOCALE);		return (catalog)catopen(__nm.c_str(), NL_CAT_LOCALE);
if (__cat != -1)
__cat = static_cast<catalog>((static_cast<size_t>(__cat) >> 1));
return __cat;
#else // !_LIBCPP_HAS_CATOPEN		#else // !_LIBCPP_HAS_CATOPEN
(void)__nm;		(void)__nm;
return -1;		return -1;
#endif // _LIBCPP_HAS_CATOPEN		#endif // _LIBCPP_HAS_CATOPEN
}		}

template <class _CharT>		template <class _CharT>
typename messages<_CharT>::string_type		typename messages<_CharT>::string_type
messages<_CharT>::do_get(catalog __c, int __set, int __msgid,		messages<_CharT>::do_get(catalog __c, int __set, int __msgid,
const string_type& __dflt) const		const string_type& __dflt) const
{		{
#ifdef _LIBCPP_HAS_CATOPEN		#ifdef _LIBCPP_HAS_CATOPEN
string __ndflt;		string __ndflt;
__narrow_to_utf8<sizeof(char_type)*__CHAR_BIT__>()(back_inserter(__ndflt),		__narrow_to_utf8<sizeof(char_type)*__CHAR_BIT__>()(back_inserter(__ndflt),
__dflt.c_str(),		__dflt.c_str(),
__dflt.c_str() + __dflt.size());		__dflt.c_str() + __dflt.size());
if (__c != -1)
__c <<= 1;
nl_catd __cat = (nl_catd)__c;		nl_catd __cat = (nl_catd)__c;
		static_assert(sizeof(catalog) >= sizeof(nl_catd), "Unexpected nl_catd type");
		MordanteUnsubmitted Done Reply Inline Actions Is this code used in C++03? static_assert is a C++11 feature. Mordante: Is this code used in C++03? static_assert is a C++11 feature.
		philnikUnsubmitted Done Reply Inline Actions We have `static_assert` in C++03. We `#define static_assert(...) _Static_assert(__VA_ARGS__)` in `__config`. philnik: We have `static_assert` in C++03. We `#define static_assert(...) _Static_assert(__VA_ARGS__)`…
		MordanteUnsubmitted Done Reply Inline Actions Thanks. Mordante: Thanks.
char* __n = catgets(__cat, __set, __msgid, __ndflt.c_str());		char* __n = catgets(__cat, __set, __msgid, __ndflt.c_str());
string_type __w;		string_type __w;
__widen_from_utf8<sizeof(char_type)*__CHAR_BIT__>()(back_inserter(__w),		__widen_from_utf8<sizeof(char_type)*__CHAR_BIT__>()(back_inserter(__w),
__n, __n + _VSTD::strlen(__n));		__n, __n + _VSTD::strlen(__n));
return __w;		return __w;
#else // !_LIBCPP_HAS_CATOPEN		#else // !_LIBCPP_HAS_CATOPEN
(void)__c;		(void)__c;
(void)__set;		(void)__set;
(void)__msgid;		(void)__msgid;
return __dflt;		return __dflt;
#endif // _LIBCPP_HAS_CATOPEN		#endif // _LIBCPP_HAS_CATOPEN
}		}

template <class _CharT>		template <class _CharT>
void		void
messages<_CharT>::do_close(catalog __c) const		messages<_CharT>::do_close(catalog __c) const
{		{
#ifdef _LIBCPP_HAS_CATOPEN		#ifdef _LIBCPP_HAS_CATOPEN
if (__c != -1)		catclose((nl_catd)__c);
__c <<= 1;
nl_catd __cat = (nl_catd)__c;
catclose(__cat);
#else // !_LIBCPP_HAS_CATOPEN		#else // !_LIBCPP_HAS_CATOPEN
(void)__c;		(void)__c;
#endif // _LIBCPP_HAS_CATOPEN		#endif // _LIBCPP_HAS_CATOPEN
}		}

extern template class _LIBCPP_EXTERN_TEMPLATE_TYPE_VIS messages<char>;		extern template class _LIBCPP_EXTERN_TEMPLATE_TYPE_VIS messages<char>;
#ifndef _LIBCPP_HAS_NO_WIDE_CHARACTERS		#ifndef _LIBCPP_HAS_NO_WIDE_CHARACTERS
extern template class _LIBCPP_EXTERN_TEMPLATE_TYPE_VIS messages<wchar_t>;		extern template class _LIBCPP_EXTERN_TEMPLATE_TYPE_VIS messages<wchar_t>;
▲ Show 20 Lines • Show All 787 Lines • Show Last 20 Lines