This is an archive of the discontinued LLVM Phabricator instance.

Differential D142401

[Clang] Fix a crash when recursively callig a default member initializer.
ClosedPublic

Authored by cor3ntin on Jan 23 2023, 1:26 PM.

Details

Reviewers
shafik
aaron.ballman
erichkeane
Commits
rG771ad1691ac3: [Clang] Fix a crash when recursively callig a default member initializer.
Summary

This fixes a regression introduced by ca61961380, that would lead
to a segfault due to stack exhaustion when recursively calling
a default member initializer.

Fixes #60082

I'm not able to get clang to emit a stack exhaustion warning,
which it seems like it should be able to.

Diff Detail

Event Timeline

cor3ntin created this revision.Jan 23 2023, 1:26 PM
Herald added a project: Restricted Project. · View Herald TranscriptJan 23 2023, 1:26 PM
cor3ntin requested review of this revision.Jan 23 2023, 1:26 PM
Herald added a project: Restricted Project. · View Herald TranscriptJan 23 2023, 1:26 PM
Herald added a subscriber: cfe-commits. · View Herald Transcript
cor3ntin added reviewers: shafik, aaron.ballman.Jan 23 2023, 1:27 PM
shafik added a comment.Jan 23 2023, 2:21 PM

I could not find any tests that test for this warning.

clang/lib/Sema/SemaExpr.cpp
5930
Harbormaster completed remote builds in B209462: Diff 491496.Jan 23 2023, 3:38 PM
cor3ntin added a comment.Jan 26 2023, 4:28 AM
In D142401#4074959, @shafik wrote:

I could not find any tests that test for this warning.

I'm unable to trigger the warning at all. I feel i should but just using that function resolves the crash, probably because it allocates more stack in a separate thread, and there is actually some code that avoids marking the same object used twice.
But the warning might still trigger on some platform, so i suspect the test i added might, sometimes, trigger a warning. I'm not exactly sure how to handle that

aaron.ballman added a reviewer: erichkeane.Feb 1 2023, 6:28 AM
In D142401#4082356, @cor3ntin wrote:
In D142401#4074959, @shafik wrote:

I could not find any tests that test for this warning.

I'm unable to trigger the warning at all. I feel i should but just using that function resolves the crash, probably because it allocates more stack in a separate thread, and there is actually some code that avoids marking the same object used twice.
But the warning might still trigger on some platform, so i suspect the test i added might, sometimes, trigger a warning. I'm not exactly sure how to handle that

Tests for stack space are always really challenging because triggering the failure is so system specific. We only have one test for it (test/SemaTemplate/stack-exhaustion.cpp)

But do we need to run these on separate threads in all of those places to address the issue?

"and there is actually some code that avoids marking the same object used twice." makes me wonder if we're missing an early return somewhere that would reduce stack usage more and avoid needing to spin up threads for this. (The upside to this change is that the code compiles more often but the downside is that we're not addressing the memory pressure issue, just kicking the can down the road a bit.)

erichkeane added a comment.Feb 1 2023, 6:32 AM
In D142401#4096478, @aaron.ballman wrote:
In D142401#4082356, @cor3ntin wrote:
In D142401#4074959, @shafik wrote:

I could not find any tests that test for this warning.

I'm unable to trigger the warning at all. I feel i should but just using that function resolves the crash, probably because it allocates more stack in a separate thread, and there is actually some code that avoids marking the same object used twice.
But the warning might still trigger on some platform, so i suspect the test i added might, sometimes, trigger a warning. I'm not exactly sure how to handle that

Tests for stack space are always really challenging because triggering the failure is so system specific. We only have one test for it (test/SemaTemplate/stack-exhaustion.cpp)

But do we need to run these on separate threads in all of those places to address the issue?

"and there is actually some code that avoids marking the same object used twice." makes me wonder if we're missing an early return somewhere that would reduce stack usage more and avoid needing to spin up threads for this. (The upside to this change is that the code compiles more often but the downside is that we're not addressing the memory pressure issue, just kicking the can down the road a bit.)

I agree for the most part, but the 'runWithSufficientStackSpace' doesn't run in a separate thread, it just wraps it in a function that makes our diagnostic for running out of memory better. But I think you're right, we probably should have SOMETHING that lets us exit early or defer constructing the initializers or something.

aaron.ballman added a comment.Feb 1 2023, 6:46 AM
In D142401#4096498, @erichkeane wrote:
In D142401#4096478, @aaron.ballman wrote:
In D142401#4082356, @cor3ntin wrote:
In D142401#4074959, @shafik wrote:

I could not find any tests that test for this warning.

I'm unable to trigger the warning at all. I feel i should but just using that function resolves the crash, probably because it allocates more stack in a separate thread, and there is actually some code that avoids marking the same object used twice.
But the warning might still trigger on some platform, so i suspect the test i added might, sometimes, trigger a warning. I'm not exactly sure how to handle that

Tests for stack space are always really challenging because triggering the failure is so system specific. We only have one test for it (test/SemaTemplate/stack-exhaustion.cpp)

But do we need to run these on separate threads in all of those places to address the issue?

"and there is actually some code that avoids marking the same object used twice." makes me wonder if we're missing an early return somewhere that would reduce stack usage more and avoid needing to spin up threads for this. (The upside to this change is that the code compiles more often but the downside is that we're not addressing the memory pressure issue, just kicking the can down the road a bit.)

I agree for the most part, but the 'runWithSufficientStackSpace' doesn't run in a separate thread, it just wraps it in a function that makes our diagnostic for running out of memory better. But I think you're right, we probably should have SOMETHING that lets us exit early or defer constructing the initializers or something.

That's not entirely accurate: https://github.com/llvm/llvm-project/blob/main/clang/include/clang/Basic/Stack.h#L40 which calls into https://github.com/llvm/llvm-project/blob/main/clang/lib/Basic/Stack.cpp#L66

It MIGHT get run in a new thread (if that's enabled) or it might not.

erichkeane added a comment.Feb 1 2023, 6:50 AM

Huh.... TIL!

aaron.ballman added a comment.Apr 12 2023, 10:54 AM

Aside from the commenting issue pointed out by @shafik, I think we should move the test case into its own test file in SemaCXX and that RUN line should *not* use -verify. This way, we can test that we don't crash but we don't have to worry about spurious test failures due to different machines having different stack exhaustion points.

cor3ntin updated this revision to Diff 516387.Apr 24 2023, 6:40 AM

Address comments, implement Aaron's clever solution, Rebase and add release note

cor3ntin updated this revision to Diff 516388.Apr 24 2023, 6:42 AM

Remove duplicated test

Harbormaster completed remote builds in B227714: Diff 516388.Apr 24 2023, 7:34 AM
shafik accepted this revision.Apr 25 2023, 10:30 AM

LGTM

This revision is now accepted and ready to land.Apr 25 2023, 10:30 AM
cor3ntin updated this revision to Diff 518161.Apr 29 2023, 6:07 AM

I don't think this is actually testable, ultimately we may run out of stack
any way, the warning (when emitted) even say so.

Harbormaster completed remote builds in B229005: Diff 518161.Apr 29 2023, 6:42 AM
aaron.ballman added a comment.May 1 2023, 5:46 AM
In D142401#4307493, @cor3ntin wrote:

I don't think this is actually testable, ultimately we may run out of stack
any way, the warning (when emitted) even say so.

Okay, that's a fair point and makes my suggestion invalid. I think you're right, testing this consistently will be tricky -- LGTM once the test is removed.

This revision was landed with ongoing or failed builds.May 1 2023, 2:21 PM
Closed by commit rG771ad1691ac3: [Clang] Fix a crash when recursively callig a default member initializer. (authored by cor3ntin). · Explain Why
This revision was automatically updated to reflect the committed changes.
cor3ntin added a commit: rG771ad1691ac3: [Clang] Fix a crash when recursively callig a default member initializer..

Revision Contents

PathSize
clang/
docs/
6 lines
lib/
Sema/
28 lines

Diff 518564

clang/docs/ReleaseNotes.rst

Show First 20 LinesShow All 307 Lines▼ Show 20 Lines- Fix crash when generating code coverage information for `PseudoObjectExpr` in
(`#45481 <https://github.com/llvm/llvm-project/issues/45481>`_) (`#45481 <https://github.com/llvm/llvm-project/issues/45481>`_)
- Fix the assertion hit when a template consteval function appears in a nested - Fix the assertion hit when a template consteval function appears in a nested
consteval/constexpr call chain. consteval/constexpr call chain.
(`#61142 <https://github.com/llvm/llvm-project/issues/61142>`_) (`#61142 <https://github.com/llvm/llvm-project/issues/61142>`_)
- Clang now better diagnose placeholder types constrained with a concept that is - Clang now better diagnose placeholder types constrained with a concept that is
not a type concept. not a type concept.
- Fix crash when a doc comment contains a line splicing. - Fix crash when a doc comment contains a line splicing.
(`#62054 <https://github.com/llvm/llvm-project/issues/62054>`_) (`#62054 <https://github.com/llvm/llvm-project/issues/62054>`_)
- Work around with a clang coverage crash which happens when visiting - Work around with a clang coverage crash which happens when visiting
expressions/statements with invalid source locations in non-assert builds. expressions/statements with invalid source locations in non-assert builds.
Assert builds may still see assertions triggered from this. Assert builds may still see assertions triggered from this.
- Fix a failed assertion due to an invalid source location when trying to form - Fix a failed assertion due to an invalid source location when trying to form
a coverage report for an unresolved constructor expression. a coverage report for an unresolved constructor expression.
(`#62105 <https://github.com/llvm/llvm-project/issues/62105>`_) (`#62105 <https://github.com/llvm/llvm-project/issues/62105>`_)
- Fix defaulted equality operator so that it does not attempt to compare unnamed - Fix defaulted equality operator so that it does not attempt to compare unnamed
bit-fields. This fixes: bit-fields. This fixes:
(`#61355 <https://github.com/llvm/llvm-project/issues/61335>`_) and (`#61355 <https://github.com/llvm/llvm-project/issues/61335>`_) and
(`#61417 <https://github.com/llvm/llvm-project/issues/61417>`_) (`#61417 <https://github.com/llvm/llvm-project/issues/61417>`_)
- Fix crash after suggesting typo correction to constexpr if condition. - Fix crash after suggesting typo correction to constexpr if condition.
(`#61885 <https://github.com/llvm/llvm-project/issues/61885>`_) (`#61885 <https://github.com/llvm/llvm-project/issues/61885>`_)
- Clang constexpr evaluator now treats comparison of [[gnu::weak]]-attributed - Clang constexpr evaluator now treats comparison of [[gnu::weak]]-attributed
member pointer as an invalid expression. member pointer as an invalid expression.
- Fix crash when member function contains invalid default argument. - Fix crash when member function contains invalid default argument.
(`#62122 <https://github.com/llvm/llvm-project/issues/62122>`_) (`#62122 <https://github.com/llvm/llvm-project/issues/62122>`_)
- Fix crash when handling undefined template partial specialization - Fix crash when handling undefined template partial specialization
(`#61356 <https://github.com/llvm/llvm-project/issues/61356>`_) (`#61356 <https://github.com/llvm/llvm-project/issues/61356>`_)
- Fix premature substitution into the constraints of an inherited constructor. - Fix premature substitution into the constraints of an inherited constructor.
- Fix crash when attempting to perform parenthesized initialization of an - Fix crash when attempting to perform parenthesized initialization of an
aggregate with a base class with only non-public constructors. aggregate with a base class with only non-public constructors.
(`#62296 <https://github.com/llvm/llvm-project/issues/62296>`_) (`#62296 <https://github.com/llvm/llvm-project/issues/62296>`_)
- Fix a stack overflow issue when evaluating ``consteval`` default arguments.
(`#60082` <https://github.com/llvm/llvm-project/issues/60082>`_)
Bug Fixes to Compiler Builtins Bug Fixes to Compiler Builtins
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Bug Fixes to Attribute Support Bug Fixes to Attribute Support
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
- Fixed a bug where attribute annotations on type specifiers (enums, classes, - Fixed a bug where attribute annotations on type specifiers (enums, classes,
structs, unions, and scoped enums) were not properly ignored, resulting in structs, unions, and scoped enums) were not properly ignored, resulting in
▲ Show 20 LinesShow All 226 LinesShow Last 20 Lines

clang/lib/Sema/SemaExpr.cpp

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 5,920 Lines▼ Show 20 Linesbool Sema::CheckCXXDefaultArgExpr(SourceLocation CallLoc, FunctionDecl *FD,
// is a function parameter scope of an immediate function. // is a function parameter scope of an immediate function.
EnterExpressionEvaluationContext EvalContext( EnterExpressionEvaluationContext EvalContext(
*this, *this,
FD->isConsteval() ? ExpressionEvaluationContext::ImmediateFunctionContext FD->isConsteval() ? ExpressionEvaluationContext::ImmediateFunctionContext
: ExpressionEvaluationContext::PotentiallyEvaluated, : ExpressionEvaluationContext::PotentiallyEvaluated,
Param); Param);
ExprEvalContexts.back().IsCurrentlyCheckingDefaultArgumentOrInitializer = ExprEvalContexts.back().IsCurrentlyCheckingDefaultArgumentOrInitializer =
SkipImmediateInvocations; SkipImmediateInvocations;
MarkDeclarationsReferencedInExpr(Init, /*SkipLocalVariables*/ true); runWithSufficientStackSpace(CallLoc, [&] {
MarkDeclarationsReferencedInExpr(Init, /*SkipLocalVariables=*/true);
shafikUnsubmitted
Not Done
ReplyInline Actions
runWithSufficientStackSpace(CallLoc, [&] {
- MarkDeclarationsReferencedInExpr(Init, /*SkipLocalVariables*/ true);
+ MarkDeclarationsReferencedInExpr(Init, /*SkipLocalVariables=*/true);
});
return false;
shafik:
});
return false; return false;
} }
struct ImmediateCallVisitor : public RecursiveASTVisitor<ImmediateCallVisitor> { struct ImmediateCallVisitor : public RecursiveASTVisitor<ImmediateCallVisitor> {
bool HasImmediateCalls = false; bool HasImmediateCalls = false;
bool shouldVisitImplicitCode() const { return true; } bool shouldVisitImplicitCode() const { return true; }
▲ Show 20 LinesShow All 93 Lines▼ Show 20 Lines if (!Init && !Param->hasUnparsedDefaultArg()) {
// point where the enclosing initializer is used in a function call. // point where the enclosing initializer is used in a function call.
ImmediateCallVisitor V; ImmediateCallVisitor V;
if (!NestedDefaultChecking) if (!NestedDefaultChecking)
V.TraverseDecl(Param); V.TraverseDecl(Param);
if (V.HasImmediateCalls) { if (V.HasImmediateCalls) {
ExprEvalContexts.back().DelayedDefaultInitializationContext = { ExprEvalContexts.back().DelayedDefaultInitializationContext = {
CallLoc, Param, CurContext}; CallLoc, Param, CurContext};
EnsureImmediateInvocationInDefaultArgs Immediate(*this); EnsureImmediateInvocationInDefaultArgs Immediate(*this);
ExprResult Res = Immediate.TransformInitializer(Param->getInit(), ExprResult Res;
runWithSufficientStackSpace(CallLoc, [&] {
Res = Immediate.TransformInitializer(Param->getInit(),
/*NotCopy=*/false); /*NotCopy=*/false);
});
if (Res.isInvalid()) if (Res.isInvalid())
return ExprError(); return ExprError();
Res = ConvertParamDefaultArgument(Param, Res.get(), Res = ConvertParamDefaultArgument(Param, Res.get(),
Res.get()->getBeginLoc()); Res.get()->getBeginLoc());
if (Res.isInvalid()) if (Res.isInvalid())
return ExprError(); return ExprError();
Init = Res.get(); Init = Res.get();
} }
▲ Show 20 LinesShow All 63 Lines▼ Show 20 Lines if (!NestedDefaultChecking)
V.TraverseDecl(Field); V.TraverseDecl(Field);
if (V.HasImmediateCalls) { if (V.HasImmediateCalls) {
ExprEvalContexts.back().DelayedDefaultInitializationContext = {Loc, Field, ExprEvalContexts.back().DelayedDefaultInitializationContext = {Loc, Field,
CurContext}; CurContext};
ExprEvalContexts.back().IsCurrentlyCheckingDefaultArgumentOrInitializer = ExprEvalContexts.back().IsCurrentlyCheckingDefaultArgumentOrInitializer =
NestedDefaultChecking; NestedDefaultChecking;
EnsureImmediateInvocationInDefaultArgs Immediate(*this); EnsureImmediateInvocationInDefaultArgs Immediate(*this);
ExprResult Res;
ExprResult Res = runWithSufficientStackSpace(Loc, [&] {
Immediate.TransformInitializer(Field->getInClassInitializer(), Res = Immediate.TransformInitializer(Field->getInClassInitializer(),
/*CXXDirectInit=*/false); /*CXXDirectInit=*/false);
});
if (!Res.isInvalid()) if (!Res.isInvalid())
Res = ConvertMemberDefaultInitExpression(Field, Res.get(), Loc); Res = ConvertMemberDefaultInitExpression(Field, Res.get(), Loc);
if (Res.isInvalid()) { if (Res.isInvalid()) {
Field->setInvalidDecl(); Field->setInvalidDecl();
return ExprError(); return ExprError();
} }
Init = Res.get(); Init = Res.get();
} }
if (Field->getInClassInitializer()) { if (Field->getInClassInitializer()) {
Expr *E = Init ? Init : Field->getInClassInitializer(); Expr *E = Init ? Init : Field->getInClassInitializer();
if (!NestedDefaultChecking) if (!NestedDefaultChecking)
runWithSufficientStackSpace(Loc, [&] {
MarkDeclarationsReferencedInExpr(E, /*SkipLocalVariables=*/false); MarkDeclarationsReferencedInExpr(E, /*SkipLocalVariables=*/false);
});
// C++11 [class.base.init]p7: // C++11 [class.base.init]p7:
// The initialization of each base and member constitutes a // The initialization of each base and member constitutes a
// full-expression. // full-expression.
ExprResult Res = ActOnFinishFullExpr(E, /*DiscardedValue=*/false); ExprResult Res = ActOnFinishFullExpr(E, /*DiscardedValue=*/false);
if (Res.isInvalid()) { if (Res.isInvalid()) {
Field->setInvalidDecl(); Field->setInvalidDecl();
return ExprError(); return ExprError();
} }
▲ Show 20 LinesShow All 12,395 Lines▼ Show 20 Linesvoid Sema::MarkFunctionReferenced(SourceLocation Loc, FunctionDecl *Func,
} }
// If a constructor was defined in the context of a default parameter // If a constructor was defined in the context of a default parameter
// or of another default member initializer (ie a PotentiallyEvaluatedIfUsed // or of another default member initializer (ie a PotentiallyEvaluatedIfUsed
// context), its initializers may not be referenced yet. // context), its initializers may not be referenced yet.
if (CXXConstructorDecl *Constructor = dyn_cast<CXXConstructorDecl>(Func)) { if (CXXConstructorDecl *Constructor = dyn_cast<CXXConstructorDecl>(Func)) {
for (CXXCtorInitializer *Init : Constructor->inits()) { for (CXXCtorInitializer *Init : Constructor->inits()) {
if (Init->isInClassMemberInitializer()) if (Init->isInClassMemberInitializer())
runWithSufficientStackSpace(Init->getSourceLocation(), [&]() {
MarkDeclarationsReferencedInExpr(Init->getInit()); MarkDeclarationsReferencedInExpr(Init->getInit());
});
} }
} }
// C++14 [except.spec]p17: // C++14 [except.spec]p17:
// An exception-specification is considered to be needed when: // An exception-specification is considered to be needed when:
// - the function is odr-used or, if it appears in an unevaluated operand, // - the function is odr-used or, if it appears in an unevaluated operand,
// would be odr-used if the expression were potentially-evaluated; // would be odr-used if the expression were potentially-evaluated;
// //
▲ Show 20 LinesShow All 2,809 LinesShow Last 20 Lines