This is an archive of the discontinued LLVM Phabricator instance.

Differential D25213

Fix PR28181: Prevent operator overloading related assertion failure crash that happens in C only
ClosedPublic

Authored by arphaman on Oct 3 2016, 3:05 PM.

Details

Reviewers
bruno
rjmccall
rsmith
Commits
rG3b3171ba92c2: Merging r292497: --------------------------------------------------------------…
rG75391c7b3f98: [Sema] Fix PR28181 by avoiding calling BuildOverloadedBinOp in C mode
rC292497: [Sema] Fix PR28181 by avoiding calling BuildOverloadedBinOp in C mode
rL292808: Merging r292497:
rL292497: [Sema] Fix PR28181 by avoiding calling BuildOverloadedBinOp in C mode
Summary

This patch fixes a crash that happens because of an assertion failure in C mode only. The assertion failure happens because of a cast to a C++ record decl in code that assumes (correctly, AFAIK) that overloaded operator handling is used in C++ mode only.

This patch approaches this problem in the following manner: when clang isn't in C++ mode, it exits early from the method 'Sema::CreateOverloadedBinOp'. The operator handling is performed using the 'Sema::CreateBuiltinBinOp' method when exiting the previously mentioned method. I think that this approach works because, AFAIK, clang doesn't support operator overloading without LangOpts.CPlusPlus, so it doesn't need to handle the overloading in the same way, and redirecting to builtin operator handling deals with the C operators correctly. I also tried other approaches and strategies but they didn't seem to work as well as this one.

I'm not familiar with all the intricacies of Sema, and I realize that this might be the wrong approach for this problem. Please let me know if this a sound strategy or not.

This bug is a regression since r236337.

Diff Detail

Repository
rL LLVM

Event Timeline

arphaman updated this revision to Diff 73343.Oct 3 2016, 3:05 PM
arphaman retitled this revision from to Fix PR28181: Prevent operator overloading related assertion failure crash that happens in C only.
arphaman updated this object.
arphaman added reviewers: rsmith, rjmccall.
arphaman set the repository for this revision to rL LLVM.
arphaman added a subscriber: cfe-commits.
rsmith added inline comments.Oct 3 2016, 3:29 PM
lib/Sema/SemaOverload.cpp
11750 ↗(On Diff #73343)

We should never be calling this function outside of C++ mode.

It looks like the bug is in Sema::BuildBinOp -- in C, it should call CorrectDelayedTyposInExpr before doing almost anything else. The relevant code is currently in CreateBuiltinBinOp, which is too late. Moving that code to the start of BuildBinOp should solve the problem.

arphaman updated this revision to Diff 73460.Oct 4 2016, 5:34 AM
arphaman marked an inline comment as done.

Thanks for the response,

I updated the patch with a approach that you suggested - now Sema::CreateOverloadedBinOp isn't called in C mode (I have an assertion for this in Sema::CreateOverloadedBinOp, but I'll commit it separately after).

I also tried moving the CorrectDelayedTyposInExpr code from Sema::CreateBuiltinBinOp to Sema::BuildBinOp as you suggested, but it didn't seem to have any effect whatsoever - it didn't seem to change the behavior of anything with respect to this bug or llvm's test suite. Therefore, I decided to leave it in its original location in this diff. Perhaps I've misunderstood your suggestion?

arphaman updated this revision to Diff 83822.Jan 10 2017, 10:06 AM

Ping

arphaman added a comment.Jan 18 2017, 7:56 AM

Ping

bruno accepted this revision.Jan 18 2017, 11:42 AM
bruno added a subscriber: bruno.

LGTM!

lib/Sema/SemaExpr.cpp
11523 ↗(On Diff #83822)

Looks like you can fold both conditions below into one and check getLangOpts().CPlusPlus only once

This revision is now accepted and ready to land.Jan 18 2017, 11:42 AM
Closed by commit rL292497: [Sema] Fix PR28181 by avoiding calling BuildOverloadedBinOp in C mode (authored by arphaman). · Explain WhyJan 19 2017, 9:29 AM
This revision was automatically updated to reflect the committed changes.
arphaman marked an inline comment as done.

Revision Contents

PathSize
cfe/
trunk/
lib/
Sema/
11 lines
test/
Sema/
13 lines

Diff 84983

cfe/trunk/lib/Sema/SemaExpr.cpp

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 11,499 Lines▼ Show 20 LinesExprResult Sema::BuildBinOp(Scope *S, SourceLocation OpLoc,
// Handle pseudo-objects in the LHS. // Handle pseudo-objects in the LHS.
if (const BuiltinType *pty = LHSExpr->getType()->getAsPlaceholderType()) { if (const BuiltinType *pty = LHSExpr->getType()->getAsPlaceholderType()) {
// Assignments with a pseudo-object l-value need special analysis. // Assignments with a pseudo-object l-value need special analysis.
if (pty->getKind() == BuiltinType::PseudoObject && if (pty->getKind() == BuiltinType::PseudoObject &&
BinaryOperator::isAssignmentOp(Opc)) BinaryOperator::isAssignmentOp(Opc))
return checkPseudoObjectAssignment(S, OpLoc, Opc, LHSExpr, RHSExpr); return checkPseudoObjectAssignment(S, OpLoc, Opc, LHSExpr, RHSExpr);
// Don't resolve overloads if the other type is overloadable. // Don't resolve overloads if the other type is overloadable.
if (pty->getKind() == BuiltinType::Overload) { if (getLangOpts().CPlusPlus && pty->getKind() == BuiltinType::Overload) {
// We can't actually test that if we still have a placeholder, // We can't actually test that if we still have a placeholder,
// though. Fortunately, none of the exceptions we see in that // though. Fortunately, none of the exceptions we see in that
// code below are valid when the LHS is an overload set. Note // code below are valid when the LHS is an overload set. Note
// that an overload set can be dependently-typed, but it never // that an overload set can be dependently-typed, but it never
// instantiates to having an overloadable type. // instantiates to having an overloadable type.
ExprResult resolvedRHS = CheckPlaceholderExpr(RHSExpr); ExprResult resolvedRHS = CheckPlaceholderExpr(RHSExpr);
if (resolvedRHS.isInvalid()) return ExprError(); if (resolvedRHS.isInvalid()) return ExprError();
RHSExpr = resolvedRHS.get(); RHSExpr = resolvedRHS.get();
if (RHSExpr->isTypeDependent() || if (RHSExpr->isTypeDependent() ||
RHSExpr->getType()->isOverloadableType()) RHSExpr->getType()->isOverloadableType())
return BuildOverloadedBinOp(*this, S, OpLoc, Opc, LHSExpr, RHSExpr); return BuildOverloadedBinOp(*this, S, OpLoc, Opc, LHSExpr, RHSExpr);
} }
ExprResult LHS = CheckPlaceholderExpr(LHSExpr); ExprResult LHS = CheckPlaceholderExpr(LHSExpr);
if (LHS.isInvalid()) return ExprError(); if (LHS.isInvalid()) return ExprError();
LHSExpr = LHS.get(); LHSExpr = LHS.get();
} }
// Handle pseudo-objects in the RHS. // Handle pseudo-objects in the RHS.
if (const BuiltinType *pty = RHSExpr->getType()->getAsPlaceholderType()) { if (const BuiltinType *pty = RHSExpr->getType()->getAsPlaceholderType()) {
// An overload in the RHS can potentially be resolved by the type // An overload in the RHS can potentially be resolved by the type
// being assigned to. // being assigned to.
if (Opc == BO_Assign && pty->getKind() == BuiltinType::Overload) { if (Opc == BO_Assign && pty->getKind() == BuiltinType::Overload) {
if (LHSExpr->isTypeDependent() || RHSExpr->isTypeDependent()) if (getLangOpts().CPlusPlus &&
return BuildOverloadedBinOp(*this, S, OpLoc, Opc, LHSExpr, RHSExpr); (LHSExpr->isTypeDependent() || RHSExpr->isTypeDependent() ||
LHSExpr->getType()->isOverloadableType()))
if (LHSExpr->getType()->isOverloadableType())
return BuildOverloadedBinOp(*this, S, OpLoc, Opc, LHSExpr, RHSExpr); return BuildOverloadedBinOp(*this, S, OpLoc, Opc, LHSExpr, RHSExpr);
return CreateBuiltinBinOp(OpLoc, Opc, LHSExpr, RHSExpr); return CreateBuiltinBinOp(OpLoc, Opc, LHSExpr, RHSExpr);
} }
// Don't resolve overloads if the other type is overloadable. // Don't resolve overloads if the other type is overloadable.
if (pty->getKind() == BuiltinType::Overload && if (getLangOpts().CPlusPlus && pty->getKind() == BuiltinType::Overload &&
LHSExpr->getType()->isOverloadableType()) LHSExpr->getType()->isOverloadableType())
return BuildOverloadedBinOp(*this, S, OpLoc, Opc, LHSExpr, RHSExpr); return BuildOverloadedBinOp(*this, S, OpLoc, Opc, LHSExpr, RHSExpr);
ExprResult resolvedRHS = CheckPlaceholderExpr(RHSExpr); ExprResult resolvedRHS = CheckPlaceholderExpr(RHSExpr);
if (!resolvedRHS.isUsable()) return ExprError(); if (!resolvedRHS.isUsable()) return ExprError();
RHSExpr = resolvedRHS.get(); RHSExpr = resolvedRHS.get();
} }
▲ Show 20 LinesShow All 3,857 LinesShow Last 20 Lines

cfe/trunk/test/Sema/PR28181.c

// RUN: %clang_cc1 -fsyntax-only -verify %s
struct spinlock_t {
int lock;
} audit_skb_queue;
void fn1() {
audit_skb_queue = (lock); // expected-error {{use of undeclared identifier 'lock'; did you mean 'long'?}}
} // expected-error@-1 {{assigning to 'struct spinlock_t' from incompatible type '<overloaded function type>'}}
void fn2() {
audit_skb_queue + (lock); // expected-error {{use of undeclared identifier 'lock'; did you mean 'long'?}}
} // expected-error@-1 {{reference to overloaded function could not be resolved; did you mean to call it?}}