This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
lldb/
-
source/Plugins/TypeSystem/Clang/
-
Plugins/
-
TypeSystem/
-
Clang/
5
TypeSystemClang.cpp
-
test/API/functionalities/pointer_num_children/
-
API/
-
functionalities/
-
pointer_num_children/
-
Makefile
3/3
TestPointerNumChildren.py
1/1
main.cpp

Differential D80254

Prevent GetNumChildren from transitively walking pointer chains
ClosedPublic

Authored by jarin on May 19 2020, 3:32 PM.

Download Raw Diff

Details

Reviewers

teemperor
jingham
clayborg

Commits

rG83bd2c4a0680: Prevent GetNumChildren from transitively walking pointer chains

Summary

This is an attempt to fix https://bugs.llvm.org/show_bug.cgi?id=45988, where SBValue::GetNumChildren returns 2, but SBValue::GetChildAtIndex(1) returns an invalid value sentinel.

The root cause of this seems to be that GetNumChildren can return the number of children of a wrong value. In particular, for pointers GetNumChildren just recursively calls itself on the pointee type, so it effectively walks chains of pointers. This is different from the logic of GetChildAtIndex, which only recurses if pointee.IsAggregateType() returns true (IsAggregateType is false for pointers and references), so it never follows chain of pointers.

This patch aims to make GetNumChildren (more) consistent with GetChildAtIndex by only recursively calling GetNumChildren for aggregate types.

Ideally, GetNumChildren and GetChildAtIndex would share the code that decides which pointers/references are followed, but that is a bit more invasive change.

Diff Detail

Event Timeline

jarin created this revision.May 19 2020, 3:32 PM

Herald added a subscriber: lldb-commits. · View Herald TranscriptMay 19 2020, 3:32 PM

Harbormaster failed remote builds in B57286: Diff 265059!May 19 2020, 4:34 PM

shafik added a subscriber: shafik.May 19 2020, 4:35 PM

shafik added inline comments.

lldb/source/Plugins/TypeSystem/Clang/TypeSystemClang.cpp
5215	I am curious what cases are pointers aggregates? Do we test this case?
lldb/test/API/functionalities/pointer_num_children/TestPointerNumChildren.py
21	We should also check result.GetChildAtIndex(0).GetNumChildren() same below

Added more assertions, reformatted the test code.

jarin marked an inline comment as not done.May 19 2020, 10:56 PM

jarin added inline comments.

lldb/source/Plugins/TypeSystem/Clang/TypeSystemClang.cpp
5215	As far as I understand, pointers are never aggregates, see [ https://github.com/llvm/llvm-project/blob/58684fbb6f2e6871f3f96ac8c7166a7d7486e971/lldb/source/Plugins/TypeSystem/Clang/TypeSystemClang.cpp#L2683 \| IsAggregate ]].

I think this looks good beside some minor nit-picks. Maybe @labath should take a second look too.

lldb/source/Plugins/TypeSystem/Clang/TypeSystemClang.cpp
5228	If you feel like refactoring this (by deleting code): You can also just delete all this and add the `RValueReference` and `LValueReference` to the `ObjCObjectPointer` above. `GetPointeeType` there is doing the same as the lines below and handles all ptrs/references. But that's optional.
lldb/test/API/functionalities/pointer_num_children/TestPointerNumChildren.py
1	I guess this was just a placeholder?
16	You can also do `self.frame()` and then you don't need to capture the thread above or declare a variable here. And I don't think you need to assign `self.main_source_file` (I believe this has no special meaning, other tests just did this because they liked to share the setup code in one setUp method). lldbutil.run_to_source_breakpoint(self, "// break here", lldb.SBFileSpec("main.cpp")) result = self.frame().FindVariable("Ref")

This revision is now accepted and ready to land.May 20 2020, 2:18 AM

Looks fine to me too. The way this test is phrased, it would probably make more sense under test/API/python_api/value, than here. (I mean, it's not technically wrong because everything is a "functionality", but i'd like to avoid putting stuff here precisely because the category is so vague.)

lldb/source/Plugins/TypeSystem/Clang/TypeSystemClang.cpp
5228	+1 for merging this stuff
lldb/test/API/functionalities/pointer_num_children/main.cpp
13–14	Since this test doesn't deal with `auto` in any way, I think we should just follow the llvm style guide here and spell out the type explicitly.

Merged the ObjC pointer case with the reference case, simplified the test.

In D80254#2046275, @labath wrote:

Looks fine to me too. The way this test is phrased, it would probably make more sense under test/API/python_api/value, than here. (I mean, it's not technically wrong because everything is a "functionality", but i'd like to avoid putting stuff here precisely because the category is so vague.)

I was actually considering lang/cpp since this is about Clang's type system and how it handles pointers and references. In any case, test/API/python_api/value is C, so I could not even test the reference case there. Would you prefer creating a new subdirectory in python_api?

shafik added inline comments.May 20 2020, 8:18 AM

lldb/source/Plugins/TypeSystem/Clang/TypeSystemClang.cpp
5215	Apologies, I misread that as `pointer_clang_type` , makes more sense now.

This looks good, thanks for subscribing me. We need to have GetNumChildren and GetChildAtIndex agreeing on things and we definitely shouldn't be walking more than on pointer recursively. My only question is do we need helper functions added to TypeSystemClang to avoid this issue since we have GetNumChildren and GetChildAtIndex doing things differently? Some function both could/should be calling so that things can't get out of sync?

In D80254#2047982, @clayborg wrote:

This looks good, thanks for subscribing me. We need to have GetNumChildren and GetChildAtIndex agreeing on things and we definitely shouldn't be walking more than on pointer recursively. My only question is do we need helper functions added to TypeSystemClang to avoid this issue since we have GetNumChildren and GetChildAtIndex doing things differently? Some function both could/should be calling so that things can't get out of sync?

Yeah, that is what I suggested in the patch's summary. Do you want to block landing the fix until the refactoring is done? In my experience, the discussions about such refactorings can take weeks, I am not sure if I can commit to doing that. I am happy to put out a separate patch for the refactoring once this one is landed.

I think the refactoring is a good idea, but IMHO this patch can go in as-is. It's not adding any more debt to the existing approach (it even deletes code) and it adds tests, so I don't see a drawback of merging this. Also having this bug fixed with a small back portable patch seems better than doing it with some big refactor.

Major changes not required. Thanks for finding and fixing this!

Raphael, could you land this for me?

Closed by commit rG83bd2c4a0680: Prevent GetNumChildren from transitively walking pointer chains (authored by jarin, committed by teemperor). · Explain WhyMay 25 2020, 2:38 AM

This revision was automatically updated to reflect the committed changes.

Revision Contents

Path

Size

lldb/

source/

Plugins/

TypeSystem/

Clang/

TypeSystemClang.cpp

26 lines

test/

API/

functionalities/

pointer_num_children/

Makefile

3 lines

TestPointerNumChildren.py

28 lines

main.cpp

16 lines

Diff 265141

lldb/source/Plugins/TypeSystem/Clang/TypeSystemClang.cpp

This file is larger than 256 KB, so syntax highlighting is disabled by default.

Show First 20 Lines • Show All 5,167 Lines • ▼ Show 20 Lines	if (GetCompleteQualType(&getASTContext(), qual_type)) {

num_children += class_interface_decl->ivar_size();		num_children += class_interface_decl->ivar_size();
}		}
}		}
}		}
break;		break;

case clang::Type::ObjCObjectPointer: {		case clang::Type::ObjCObjectPointer: {
const clang::ObjCObjectPointerType *pointer_type =		CompilerType pointee_clang_type(GetPointeeType(type));
llvm::cast<clang::ObjCObjectPointerType>(qual_type.getTypePtr());
clang::QualType pointee_type = pointer_type->getPointeeType();		uint32_t num_pointee_children = 0;
uint32_t num_pointee_children =		if (pointee_clang_type.IsAggregateType())
GetType(pointee_type).GetNumChildren(omit_empty_base_classes, exe_ctx);		num_pointee_children =
		pointee_clang_type.GetNumChildren(omit_empty_base_classes, exe_ctx);
// If this type points to a simple type, then it has 1 child		// If this type points to a simple type, then it has 1 child
if (num_pointee_children == 0)		if (num_pointee_children == 0)
num_children = 1;		num_children = 1;
else		else
num_children = num_pointee_children;		num_children = num_pointee_children;
} break;		} break;

case clang::Type::Vector:		case clang::Type::Vector:
Show All 15 Lines	if (auto array_info =
? array_info->element_orders.back()		? array_info->element_orders.back()
: 0;		: 0;
break;		break;

case clang::Type::Pointer: {		case clang::Type::Pointer: {
const clang::PointerType *pointer_type =		const clang::PointerType *pointer_type =
llvm::cast<clang::PointerType>(qual_type.getTypePtr());		llvm::cast<clang::PointerType>(qual_type.getTypePtr());
clang::QualType pointee_type(pointer_type->getPointeeType());		clang::QualType pointee_type(pointer_type->getPointeeType());
uint32_t num_pointee_children =		CompilerType pointee_clang_type(GetType(pointee_type));
GetType(pointee_type).GetNumChildren(omit_empty_base_classes, exe_ctx);		uint32_t num_pointee_children = 0;
		if (pointee_clang_type.IsAggregateType())
		shafikUnsubmitted Not Done Reply Inline Actions I am curious what cases are pointers aggregates? Do we test this case? shafik: I am curious what cases are pointers aggregates? Do we test this case?
		jarinAuthorUnsubmitted Not Done Reply Inline Actions As far as I understand, pointers are never aggregates, see [ https://github.com/llvm/llvm-project/blob/58684fbb6f2e6871f3f96ac8c7166a7d7486e971/lldb/source/Plugins/TypeSystem/Clang/TypeSystemClang.cpp#L2683 \| IsAggregate ]]. jarin: As far as I understand, pointers are never aggregates, see [ https://github.com/llvm/llvm…
		shafikUnsubmitted Not Done Reply Inline Actions Apologies, I misread that as `pointer_clang_type` , makes more sense now. shafik: Apologies, I misread that as `pointer_clang_type` , makes more sense now.
		num_pointee_children =
		pointee_clang_type.GetNumChildren(omit_empty_base_classes, exe_ctx);
if (num_pointee_children == 0) {		if (num_pointee_children == 0) {
// We have a pointer to a pointee type that claims it has no children. We		// We have a pointer to a pointee type that claims it has no children. We
// will want to look at		// will want to look at
num_children = GetNumPointeeChildren(pointee_type);		num_children = GetNumPointeeChildren(pointee_type);
} else		} else
num_children = num_pointee_children;		num_children = num_pointee_children;
} break;		} break;

case clang::Type::LValueReference:		case clang::Type::LValueReference:
case clang::Type::RValueReference: {		case clang::Type::RValueReference: {
const clang::ReferenceType *reference_type =		const clang::ReferenceType *reference_type =
		teemperorUnsubmitted Not Done Reply Inline Actions If you feel like refactoring this (by deleting code): You can also just delete all this and add the `RValueReference` and `LValueReference` to the `ObjCObjectPointer` above. `GetPointeeType` there is doing the same as the lines below and handles all ptrs/references. But that's optional. teemperor: If you feel like refactoring this (by deleting code): You can also just delete all this and add…
		labathUnsubmitted Not Done Reply Inline Actions +1 for merging this stuff labath: +1 for merging this stuff
llvm::cast<clang::ReferenceType>(qual_type.getTypePtr());		llvm::cast<clang::ReferenceType>(qual_type.getTypePtr());
clang::QualType pointee_type = reference_type->getPointeeType();		CompilerType pointee_clang_type = GetType(reference_type->getPointeeType());
uint32_t num_pointee_children =		uint32_t num_pointee_children = 0;
GetType(pointee_type).GetNumChildren(omit_empty_base_classes, exe_ctx);		if (pointee_clang_type.IsAggregateType())
		num_pointee_children =
		pointee_clang_type.GetNumChildren(omit_empty_base_classes, exe_ctx);
// If this type points to a simple type, then it has 1 child		// If this type points to a simple type, then it has 1 child
if (num_pointee_children == 0)		if (num_pointee_children == 0)
num_children = 1;		num_children = 1;
else		else
num_children = num_pointee_children;		num_children = num_pointee_children;
} break;		} break;

default:		default:
▲ Show 20 Lines • Show All 4,286 Lines • Show Last 20 Lines

lldb/test/API/functionalities/pointer_num_children/Makefile

This file was added.

				CXX_SOURCES := main.cpp

				include Makefile.rules

lldb/test/API/functionalities/pointer_num_children/TestPointerNumChildren.py

This file was added.

				"""
				teemperorUnsubmitted Done Reply Inline Actions I guess this was just a placeholder? teemperor: I guess this was just a placeholder?
				"""
				import lldb
				from lldbsuite.test.decorators import *
				from lldbsuite.test.lldbtest import *
				from lldbsuite.test import lldbutil


				class TestPointerNumChilden(TestBase):
				mydir = TestBase.compute_mydir(__file__)

				def test_pointer_num_children(self):
				self.main_source_file = lldb.SBFileSpec("main.cpp")
				self.build()
				(_, _, thread, _) = lldbutil.run_to_source_breakpoint(self, "// break here", self.main_source_file)
				frame = thread.GetSelectedFrame()
				teemperorUnsubmitted Done Reply Inline Actions You can also do `self.frame()` and then you don't need to capture the thread above or declare a variable here. And I don't think you need to assign `self.main_source_file` (I believe this has no special meaning, other tests just did this because they liked to share the setup code in one setUp method). lldbutil.run_to_source_breakpoint(self, "// break here", lldb.SBFileSpec("main.cpp")) result = self.frame().FindVariable("Ref") teemperor: You can also do `self.frame()` and then you don't need to capture the thread above or declare a…

				result = frame.FindVariable("Ref")
				self.assertEqual(1, result.GetNumChildren())
				self.assertEqual(2, result.GetChildAtIndex(0).GetNumChildren())
				self.assertEqual("42", result.GetChildAtIndex(0).GetChildAtIndex(0).GetValue())
				shafikUnsubmitted Done Reply Inline Actions We should also check result.GetChildAtIndex(0).GetNumChildren() same below shafik: We should also check ``` result.GetChildAtIndex(0).GetNumChildren() ``` same below
				self.assertEqual("56", result.GetChildAtIndex(0).GetChildAtIndex(1).GetValue())

				result = frame.FindVariable("Ptr")
				self.assertEqual(1, result.GetNumChildren())
				self.assertEqual(2, result.GetChildAtIndex(0).GetNumChildren())
				self.assertEqual("42", result.GetChildAtIndex(0).GetChildAtIndex(0).GetValue())
				self.assertEqual("56", result.GetChildAtIndex(0).GetChildAtIndex(1).GetValue())

lldb/test/API/functionalities/pointer_num_children/main.cpp

This file was added.

				struct Inner {
				int a;
				int b;
				};

				struct Outer {
				Inner *inner;
				};

				int main() {
				Inner inner{42, 56};
				Outer outer{&inner};
				auto Ptr = &(outer.inner);
				auto &Ref = outer.inner;
				labathUnsubmitted Done Reply Inline Actions Since this test doesn't deal with `auto` in any way, I think we should just follow the llvm style guide here and spell out the type explicitly. labath: Since this test doesn't deal with `auto` in any way, I think we should just follow the llvm…
				return 0; // break here
				}