This is an archive of the discontinued LLVM Phabricator instance.

Differential D88288

[Archive] Don't throw away errors for malformed archive members
ClosedPublic

Authored by jhenderson on Sep 25 2020, 2:29 AM.

Details

Reviewers
grimar
MaskRay
ruiu
espindola
rupprecht
gbreynoo
Commits
rGa20168d03078: [Archive] Don't throw away errors for malformed archive members
Summary

When adding an archive member with a problem, e.g. a new bitcode with an old archiver, containing an unsupported attribute, or an ELF file with a malformed symbol table, the archiver would throw away the error and simply add the member to the archive without any symbol entries. This meant that the resultant archive could be silently unusable when not using --whole-archive, and result in unexpected undefined symbols.

This change fixes this issue by addressing two FIXMEs and only throwing away not-an-object errors. However, this meant that some LLD tests which didn't need symbol tables and were using invalid members deliberately to test the linker's malformed input handling no longer worked, so this patch also stops the archiver from looking for symbols in an object if it doesn't require a symbol table, and updates the tests accordingly.

Diff Detail

Event Timeline

jhenderson created this revision.Sep 25 2020, 2:29 AM
Herald added a reviewer: espindola. · View Herald TranscriptSep 25 2020, 2:29 AM
Herald added a project: Restricted Project. · View Herald Transcript
Herald added subscribers: hiraditya, emaste. · View Herald Transcript
jhenderson requested review of this revision.Sep 25 2020, 2:29 AM
jhenderson updated this revision to Diff 294259.
jhenderson added reviewers: rupprecht, gbreynoo.

Fix test comment.

Harbormaster completed remote builds in B72923: Diff 294259.Sep 25 2020, 2:42 AM
grimar added inline comments.Sep 25 2020, 2:56 AM
llvm/lib/Object/ArchiveWriter.cpp
381

At line 362 we call identify_magic(Buf.getBuffer()). I wonder if it will be cleaner to
add a new static method to SymbolicFile, e.g:

bool SymbolicFile::isSymbolicFile(file_magic Type);

and then to use it from here and also from SymbolicFile::createSymbolicFile,
instead of the code it has:

case file_magic::unknown:
case file_magic::archive:
case file_magic::coff_cl_gl_object:
case file_magic::macho_universal_binary:
case file_magic::windows_resource:
case file_magic::pdb:
case file_magic::minidump:
case file_magic::tapi_file:
  return errorCodeToError(object_error::invalid_file_type);

With that you'll don't need to handle error code in this way, what is probably better because
I think the general direction is to get rid of them in favor of Expected<> etc. What do you think?

llvm/test/Object/archive-unknown-filetype.test
2

Did you mean this?

jhenderson marked 2 inline comments as done.Sep 25 2020, 7:30 AM
jhenderson added inline comments.
llvm/test/Object/archive-unknown-filetype.test
2

I fixed this one already (think you must have missed my patch update).

jhenderson updated this revision to Diff 294303.Sep 25 2020, 7:31 AM
jhenderson marked an inline comment as done.

Refactor to remove reliance on error code.

Harbormaster completed remote builds in B72946: Diff 294303.Sep 25 2020, 7:51 AM
grimar added a comment.Sep 25 2020, 8:16 AM

Minor nit. Otherwise looks good to me. Lets see what others think.

llvm/lib/Object/ArchiveWriter.cpp
363

I'd use const.

rupprecht accepted this revision.Sep 25 2020, 11:02 AM

There's a build warning that needs to be fixed, but otherwise LG.

llvm/lib/Object/ArchiveWriter.cpp
499–501

nit: looks like tab characters were inserted, can you run clang-format?

llvm/lib/Object/SymbolicFile.cpp
47

Splitting up the switch leads to -Wswitch errors because now each switch statement is incomplete:

/home/rupprecht/src/llvm-project/llvm/lib/Object/SymbolicFile.cpp:47:11: warning: 8 enumeration values not handled in switch: 'unknown', 'archive', 'macho_universal_binary'... [-Wswitch]
  switch (Type) {
          ^
/home/rupprecht/src/llvm-project/llvm/lib/Object/SymbolicFile.cpp:97:11: warning: 23 enumeration values not handled in switch: 'bitcode', 'elf', 'elf_relocatable'... [-Wswitch]
  switch (Type) {
          ^

Normally the right fix is to add a default switch case to handle all the unused cases. If you're concerned about the list of file_magic::unknown, file_magic::archive, ... in each method going out of sync in the two definitions (and new enums accidentally being handled with the default case), you could define that list in a macro, e.g.

#define NOT_SYMBOLIC_FILES \
  case file_magic::unknown: \
  case file_magic::archive: \
  case file_magic::coff_cl_gl_object: \
...
  case file_magic::tapi_file

  switch (Type) {
    NOT_SYMBOLIC_FILES:
      return false;
    default:
      return true;
  }

(note no trailing : in the last case you can write NOT_SYMBOLIC_FILES: and not confused IDEs)

This revision is now accepted and ready to land.Sep 25 2020, 11:02 AM
MaskRay added inline comments.Sep 25 2020, 11:13 AM
llvm/lib/Object/SymbolicFile.cpp
139
default:
  return true;

resolves a clang warning: Object/SymbolicFile.cpp:97:11: warning: 23 enumeration values not handled in switch: 'bitcode', 'elf', 'elf_relocatable'... [-Wswitch]

rupprecht added inline comments.Sep 25 2020, 11:17 AM
llvm/lib/Object/SymbolicFile.cpp
139

Yes, but see my other comment, because that is addressing a symptom instead of fixing the cause. Having an explicit switch in the previous switch ensures that a new file type added doesn't accidentally get included in the default switch branch.

MaskRay added a comment.EditedSep 25 2020, 11:27 AM

Checked lld/test/ELF updates, GNU ar silently allows invalid 'symbolic' files. I think being more rigid in llvm-ar is fine.

An alternative to the new isSymbolicFile is by checking whether createSymbolicFile returns an ECError whose error_code (ECError::convertToErrorCode) is object_error::invalid_file_type.

jhenderson added a comment.Sep 28 2020, 2:50 AM
In D88288#2295523, @MaskRay wrote:

Checked lld/test/ELF updates, GNU ar silently allows invalid 'symbolic' files. I think being more rigid in llvm-ar is fine.

An alternative to the new isSymbolicFile is by checking whether createSymbolicFile returns an ECError whose error_code (ECError::convertToErrorCode) is object_error::invalid_file_type.

That's what I originally did, but a) the code is not particularly clean, and b) it's brittle to changes in how the error is reported (relies on on the error code being set, rather than e.g. changing to a normal LLVM error). @grimar previously suggested to change this (see the inline comment).

llvm/lib/Object/ArchiveWriter.cpp
499–501

That's an unfortunate UI issue in Phabricator that was recently introduced. Code that has been indented now shows up this way. There are no tab characters here.

llvm/lib/Object/SymbolicFile.cpp
47

I don't particularly like macros. They are a pain to debug and not particularly readable, in my opinion. Maybe the way to resolve this is to flip the switch in isSymbolicFile on its head, so that any new file_magic types will return false (specified via a default label), until this function is modified. This means you wouldn't be able to create a symbolic file for them, which I don't think is unreasonable. This switch here then gains a default: llvm_unreachable() line, since it would only be reachable if the isSymbolicFile method returned true.

jhenderson updated this revision to Diff 294637.Sep 28 2020, 3:08 AM
jhenderson marked 5 inline comments as done.

Invert isSymbolFIle switch, and add const.

Herald added a subscriber: aheejin. · View Herald TranscriptSep 28 2020, 3:08 AM
Harbormaster completed remote builds in B73134: Diff 294637.Sep 28 2020, 3:22 AM
grimar added inline comments.Sep 28 2020, 3:53 AM
llvm/lib/Object/SymbolicFile.cpp
49–51

I think the Content is always non-null here now?

jhenderson added inline comments.Sep 28 2020, 4:22 AM
llvm/lib/Object/SymbolicFile.cpp
49–51

Yeah, I think this can be simplified. I'm not going to have a chance to update the patch again today, but will fix in the commit, if you're otherwise happy.

It will become:

case file_magic::bitcode:
  return IRObjectFile::create(Object, *Context);
grimar added inline comments.Sep 28 2020, 4:40 AM
llvm/lib/Object/SymbolicFile.cpp
49–51

The rest looks fine to me. Please wait to see @MaskRay/@rupprecht opinions too

MaskRay accepted this revision.Sep 28 2020, 11:18 AM
MaskRay added inline comments.
llvm/lib/Object/SymbolicFile.cpp
49–51

Context is always non-null. This is however a hidden fact only clear after I read all the callers..

llvm/test/Object/archive-unknown-filetype.test
6

Using echo something > %t can be more robust. touch %t does not update the file content. If %t preexists as a different file type, this may fail spuriously.

rupprecht requested changes to this revision.Sep 28 2020, 1:18 PM

Requesting changes mostly because this is marked as accepted but I still see build errors; overall this looks fine though.

llvm/lib/Object/SymbolicFile.cpp
47–48

I'm still seeing -Wswitch errors:

/home/rupprecht/src/llvm-project/llvm/lib/Object/SymbolicFile.cpp:47:11: warning: 8 enumeration values not handled in switch: 'unknown', 'archive', 'macho_universal_binary'... [-Wswitch]
  switch (Type) {
49–51

I found this thread hard to reconcile with the code: IIUC, Context is only non-null *in this case statement*: if Context is null and this is a bitcode file, isSymbolicFile returns false, and an error is returned above, so we don't reach this line. However, if this is a wasm_object (just one example), isSymbolicFile returns true even if Context is null. Context can be null in this switch statement, but not this particular case.

I think it's fine to make that simplification, but with a comment that isSymbolicFile verifies that Context is non-null when the type is bitcode. Otherwise, the nullness of Context is very difficult to reason with -- the baseline is much easier to understand in that regard.

This revision now requires changes to proceed.Sep 28 2020, 1:18 PM
jhenderson updated this revision to Diff 294948.Sep 29 2020, 5:57 AM
jhenderson marked 6 inline comments as done.

Add missing default; simplify bitcode object checking; add comment about Context being non-null; use echo instead of touch in the test.

llvm/lib/Object/SymbolicFile.cpp
47–48

Oops, sorry. Forgot to add the necessary default label.

Harbormaster completed remote builds in B73320: Diff 294948.Sep 29 2020, 6:11 AM
grimar accepted this revision.Sep 29 2020, 11:32 PM

LGTM

rupprecht accepted this revision.Sep 30 2020, 12:21 PM

Thanks!

This revision is now accepted and ready to land.Sep 30 2020, 12:21 PM
Closed by commit rGa20168d03078: [Archive] Don't throw away errors for malformed archive members (authored by jhenderson). · Explain WhyOct 1 2020, 6:03 AM
This revision was automatically updated to reflect the committed changes.
jhenderson added a commit: rGa20168d03078: [Archive] Don't throw away errors for malformed archive members.
rupprecht mentioned this in D88693: [llvm-ar] Reject bitcode which can't be parsed..Oct 1 2020, 12:29 PM
DiggerLin mentioned this in D144872: [AIX] Align the content of an xcoff object file which has auxiliary header in big archive. .Aug 29 2023, 10:53 AM

Revision Contents

PathSize
lld/
test/
ELF/
invalid/
2 lines
2 lines
llvm/
include/
llvm/
Object/
2 lines
lib/
Object/
42 lines
53 lines
test/
Object/
38 lines
11 lines

Diff 295543

lld/test/ELF/invalid/data-encoding.test

# REQUIRES: x86 # REQUIRES: x86
# The object in the archive has invalid data encoding. # The object in the archive has invalid data encoding.
# Check we report this. # Check we report this.
# RUN: yaml2obj %s -o %t.o # RUN: yaml2obj %s -o %t.o
# RUN: llvm-ar rcs %t.a %t.o # RUN: llvm-ar rcS %t.a %t.o
# RUN: not ld.lld --whole-archive %t.a -o /dev/null 2>&1 | FileCheck %s # RUN: not ld.lld --whole-archive %t.a -o /dev/null 2>&1 | FileCheck %s
# CHECK: {{.*}}.a({{.*}}.o): corrupted ELF file: invalid data encoding # CHECK: {{.*}}.a({{.*}}.o): corrupted ELF file: invalid data encoding
--- !ELF --- !ELF
FileHeader: FileHeader:
Class: ELFCLASS64 Class: ELFCLASS64
Data: ELFDATANONE Data: ELFDATANONE
Type: ET_REL Type: ET_REL
Machine: EM_X86_64 Machine: EM_X86_64

lld/test/ELF/invalid/invalid-file-class.test

# REQUIRES: x86 # REQUIRES: x86
# RUN: rm -rf %t && mkdir -p %t # RUN: rm -rf %t && mkdir -p %t
## In this test, we check that able to report objects with ## In this test, we check that able to report objects with
## invalid ELF class type. There are 2 cases we want to check: ## invalid ELF class type. There are 2 cases we want to check:
## when the object is a regular input and when it is fetched from the archive. ## when the object is a regular input and when it is fetched from the archive.
## Create a broken ELF object with ELFCLASSNONE class using echo. We need to fill ## Create a broken ELF object with ELFCLASSNONE class using echo. We need to fill
## first 18 bytes which are used by LLD to check the object. ## first 18 bytes which are used by LLD to check the object.
## 0x7f, 'E', 'L', 'F', ELFCLASSNONE(0), ELFDATA2LSB(1), ## 0x7f, 'E', 'L', 'F', ELFCLASSNONE(0), ELFDATA2LSB(1),
## EV_CURRENT(1), ELFOSABI_LINUX(3), <padding zero bytes>, ET_REL(1), EM_NONE(0) ## EV_CURRENT(1), ELFOSABI_LINUX(3), <padding zero bytes>, ET_REL(1), EM_NONE(0)
# RUN: echo -e -n "\x7f\x45\x4c\x46\x00\x01\x01\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00" > %t/invalid.o # RUN: echo -e -n "\x7f\x45\x4c\x46\x00\x01\x01\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00" > %t/invalid.o
# RUN: llvm-ar --format=gnu cr %t/invalid-class.a %t/invalid.o # RUN: llvm-ar --format=gnu crS %t/invalid-class.a %t/invalid.o
# RUN: not ld.lld -whole-archive %t/invalid-class.a -o /dev/null 2>&1 | FileCheck %s # RUN: not ld.lld -whole-archive %t/invalid-class.a -o /dev/null 2>&1 | FileCheck %s
# CHECK: invalid-class.a(invalid.o): corrupted ELF file: invalid file class # CHECK: invalid-class.a(invalid.o): corrupted ELF file: invalid file class
# RUN: not ld.lld %t/invalid.o -o /dev/null 2>&1 | FileCheck %s --check-prefix=OBJ # RUN: not ld.lld %t/invalid.o -o /dev/null 2>&1 | FileCheck %s --check-prefix=OBJ
# OBJ: invalid.o: corrupted ELF file: invalid file class # OBJ: invalid.o: corrupted ELF file: invalid file class

llvm/include/llvm/Object/SymbolicFile.h

Show First 20 LinesShow All 167 Lines▼ Show 20 Lines createSymbolicFile(MemoryBufferRef Object) {
return createSymbolicFile(Object, llvm::file_magic::unknown, nullptr); return createSymbolicFile(Object, llvm::file_magic::unknown, nullptr);
} }
static Expected<OwningBinary<SymbolicFile>> static Expected<OwningBinary<SymbolicFile>>
createSymbolicFile(StringRef ObjectPath); createSymbolicFile(StringRef ObjectPath);
static bool classof(const Binary *v) { static bool classof(const Binary *v) {
return v->isSymbolic(); return v->isSymbolic();
} }
static bool isSymbolicFile(file_magic Type, const LLVMContext *Context);
}; };
inline BasicSymbolRef::BasicSymbolRef(DataRefImpl SymbolP, inline BasicSymbolRef::BasicSymbolRef(DataRefImpl SymbolP,
const SymbolicFile *Owner) const SymbolicFile *Owner)
: SymbolPimpl(SymbolP), OwningObject(Owner) {} : SymbolPimpl(SymbolP), OwningObject(Owner) {}
inline bool BasicSymbolRef::operator==(const BasicSymbolRef &Other) const { inline bool BasicSymbolRef::operator==(const BasicSymbolRef &Other) const {
return SymbolPimpl == Other.SymbolPimpl; return SymbolPimpl == Other.SymbolPimpl;
Show All 30 Lines

llvm/lib/Object/ArchiveWriter.cpp

Show First 20 LinesShow All 353 Lines▼ Show 20 Lines
static Expected<std::vector<unsigned>> static Expected<std::vector<unsigned>>
getSymbols(MemoryBufferRef Buf, raw_ostream &SymNames, bool &HasObject) { getSymbols(MemoryBufferRef Buf, raw_ostream &SymNames, bool &HasObject) {
std::vector<unsigned> Ret; std::vector<unsigned> Ret;
// In the scenario when LLVMContext is populated SymbolicFile will contain a // In the scenario when LLVMContext is populated SymbolicFile will contain a
// reference to it, thus SymbolicFile should be destroyed first. // reference to it, thus SymbolicFile should be destroyed first.
LLVMContext Context; LLVMContext Context;
std::unique_ptr<object::SymbolicFile> Obj; std::unique_ptr<object::SymbolicFile> Obj;
if (identify_magic(Buf.getBuffer()) == file_magic::bitcode) {
const file_magic Type = identify_magic(Buf.getBuffer());
grimarUnsubmitted
Done
ReplyInline Actions
std::unique_ptr<object::SymbolicFile> Obj;
- file_magic Type = identify_magic(Buf.getBuffer());
+ const file_magic Type = identify_magic(Buf.getBuffer());
// Treat unsupported file types as having no symbols.

I'd use const.

grimar: I'd use `const`.
// Treat unsupported file types as having no symbols.
if (!object::SymbolicFile::isSymbolicFile(Type, &Context))
return Ret;
if (Type == file_magic::bitcode) {
auto ObjOrErr = object::SymbolicFile::createSymbolicFile( auto ObjOrErr = object::SymbolicFile::createSymbolicFile(
Buf, file_magic::bitcode, &Context); Buf, file_magic::bitcode, &Context);
if (!ObjOrErr) { if (!ObjOrErr)
// FIXME: check only for "not an object file" errors. return ObjOrErr.takeError();
consumeError(ObjOrErr.takeError());
return Ret;
}
Obj = std::move(*ObjOrErr); Obj = std::move(*ObjOrErr);
} else { } else {
auto ObjOrErr = object::SymbolicFile::createSymbolicFile(Buf); auto ObjOrErr = object::SymbolicFile::createSymbolicFile(Buf);
if (!ObjOrErr) { if (!ObjOrErr)
// FIXME: check only for "not an object file" errors. return ObjOrErr.takeError();
consumeError(ObjOrErr.takeError());
return Ret;
}
Obj = std::move(*ObjOrErr); Obj = std::move(*ObjOrErr);
} }
HasObject = true; HasObject = true;
for (const object::BasicSymbolRef &S : Obj->symbols()) { for (const object::BasicSymbolRef &S : Obj->symbols()) {
grimarUnsubmitted
Done
ReplyInline Actions

At line 362 we call identify_magic(Buf.getBuffer()). I wonder if it will be cleaner to
add a new static method to SymbolicFile, e.g:

bool SymbolicFile::isSymbolicFile(file_magic Type);

and then to use it from here and also from SymbolicFile::createSymbolicFile,
instead of the code it has:

case file_magic::unknown:
case file_magic::archive:
case file_magic::coff_cl_gl_object:
case file_magic::macho_universal_binary:
case file_magic::windows_resource:
case file_magic::pdb:
case file_magic::minidump:
case file_magic::tapi_file:
  return errorCodeToError(object_error::invalid_file_type);

With that you'll don't need to handle error code in this way, what is probably better because
I think the general direction is to get rid of them in favor of Expected<> etc. What do you think?

grimar: At line 362 we call `identify_magic(Buf.getBuffer())`. I wonder if it will be cleaner to add a…
if (!isArchiveSymbol(S)) if (!isArchiveSymbol(S))
continue; continue;
Ret.push_back(SymNames.tell()); Ret.push_back(SymNames.tell());
if (Error E = S.printName(SymNames)) if (Error E = S.printName(SymNames))
return std::move(E); return std::move(E);
SymNames << '\0'; SymNames << '\0';
} }
return Ret; return Ret;
} }
static Expected<std::vector<MemberData>> static Expected<std::vector<MemberData>>
computeMemberData(raw_ostream &StringTable, raw_ostream &SymNames, computeMemberData(raw_ostream &StringTable, raw_ostream &SymNames,
object::Archive::Kind Kind, bool Thin, bool Deterministic, object::Archive::Kind Kind, bool Thin, bool Deterministic,
ArrayRef<NewArchiveMember> NewMembers) { bool NeedSymbols, ArrayRef<NewArchiveMember> NewMembers) {
static char PaddingData[8] = {'\n', '\n', '\n', '\n', '\n', '\n', '\n', '\n'}; static char PaddingData[8] = {'\n', '\n', '\n', '\n', '\n', '\n', '\n', '\n'};
// This ignores the symbol table, but we only need the value mod 8 and the // This ignores the symbol table, but we only need the value mod 8 and the
// symbol table is aligned to be a multiple of 8 bytes // symbol table is aligned to be a multiple of 8 bytes
uint64_t Pos = 0; uint64_t Pos = 0;
std::vector<MemberData> Ret; std::vector<MemberData> Ret;
bool HasObject = false; bool HasObject = false;
▲ Show 20 LinesShow All 84 Lines▼ Show 20 Lines if (Size > object::Archive::MaxMemberSize) {
return make_error<object::GenericBinaryError>( return make_error<object::GenericBinaryError>(
std::move(StringMsg), object::object_error::parse_failed); std::move(StringMsg), object::object_error::parse_failed);
} }
printMemberHeader(Out, Pos, StringTable, MemberNames, Kind, Thin, M, printMemberHeader(Out, Pos, StringTable, MemberNames, Kind, Thin, M,
ModTime, Size); ModTime, Size);
Out.flush(); Out.flush();
Expected<std::vector<unsigned>> Symbols = std::vector<unsigned> Symbols;
if (NeedSymbols) {
Expected<std::vector<unsigned>> SymbolsOrErr =
getSymbols(Buf, SymNames, HasObject); getSymbols(Buf, SymNames, HasObject);
if (auto E = Symbols.takeError()) if (auto E = SymbolsOrErr.takeError())
return std::move(E); return std::move(E);
rupprechtUnsubmitted
Done
ReplyInline Actions

nit: looks like tab characters were inserted, can you run clang-format?

rupprecht: nit: looks like tab characters were inserted, can you run clang-format?
jhendersonAuthorUnsubmitted
Done
ReplyInline Actions

That's an unfortunate UI issue in Phabricator that was recently introduced. Code that has been indented now shows up this way. There are no tab characters here.

jhenderson: That's an unfortunate UI issue in Phabricator that was recently introduced. Code that has been…
Symbols = std::move(*SymbolsOrErr);
}
Pos += Header.size() + Data.size() + Padding.size(); Pos += Header.size() + Data.size() + Padding.size();
Ret.push_back({std::move(*Symbols), std::move(Header), Data, Padding}); Ret.push_back({std::move(Symbols), std::move(Header), Data, Padding});
} }
// If there are no symbols, emit an empty symbol table, to satisfy Solaris // If there are no symbols, emit an empty symbol table, to satisfy Solaris
// tools, older versions of which expect a symbol table in a non-empty // tools, older versions of which expect a symbol table in a non-empty
// archive, regardless of whether there are any symbols in it. // archive, regardless of whether there are any symbols in it.
if (HasObject && SymNames.tell() == 0) if (HasObject && SymNames.tell() == 0)
SymNames << '\0' << '\0' << '\0'; SymNames << '\0' << '\0' << '\0';
return Ret; return Ret;
} }
▲ Show 20 LinesShow All 47 Lines▼ Show 20 Linesstatic Error writeArchiveToStream(raw_ostream &Out,
bool Deterministic, bool Thin) { bool Deterministic, bool Thin) {
assert((!Thin || !isBSDLike(Kind)) && "Only the gnu format has a thin mode"); assert((!Thin || !isBSDLike(Kind)) && "Only the gnu format has a thin mode");
SmallString<0> SymNamesBuf; SmallString<0> SymNamesBuf;
raw_svector_ostream SymNames(SymNamesBuf); raw_svector_ostream SymNames(SymNamesBuf);
SmallString<0> StringTableBuf; SmallString<0> StringTableBuf;
raw_svector_ostream StringTable(StringTableBuf); raw_svector_ostream StringTable(StringTableBuf);
Expected<std::vector<MemberData>> DataOrErr = computeMemberData( Expected<std::vector<MemberData>> DataOrErr =
StringTable, SymNames, Kind, Thin, Deterministic, NewMembers); computeMemberData(StringTable, SymNames, Kind, Thin, Deterministic,
WriteSymtab, NewMembers);
if (Error E = DataOrErr.takeError()) if (Error E = DataOrErr.takeError())
return E; return E;
std::vector<MemberData> &Data = *DataOrErr; std::vector<MemberData> &Data = *DataOrErr;
if (!StringTableBuf.empty()) if (!StringTableBuf.empty())
Data.insert(Data.begin(), computeStringTable(StringTableBuf)); Data.insert(Data.begin(), computeStringTable(StringTableBuf));
// We would like to detect if we need to switch to a 64-bit symbol table. // We would like to detect if we need to switch to a 64-bit symbol table.
▲ Show 20 LinesShow All 98 LinesShow Last 20 Lines

llvm/lib/Object/SymbolicFile.cpp

Show All 35 Lines
Expected<std::unique_ptr<SymbolicFile>> Expected<std::unique_ptr<SymbolicFile>>
SymbolicFile::createSymbolicFile(MemoryBufferRef Object, file_magic Type, SymbolicFile::createSymbolicFile(MemoryBufferRef Object, file_magic Type,
LLVMContext *Context) { LLVMContext *Context) {
StringRef Data = Object.getBuffer(); StringRef Data = Object.getBuffer();
if (Type == file_magic::unknown) if (Type == file_magic::unknown)
Type = identify_magic(Data); Type = identify_magic(Data);
if (!isSymbolicFile(Type, Context))
return errorCodeToError(object_error::invalid_file_type);
switch (Type) { switch (Type) {
rupprechtUnsubmitted
Done
ReplyInline Actions

Splitting up the switch leads to -Wswitch errors because now each switch statement is incomplete:

/home/rupprecht/src/llvm-project/llvm/lib/Object/SymbolicFile.cpp:47:11: warning: 8 enumeration values not handled in switch: 'unknown', 'archive', 'macho_universal_binary'... [-Wswitch]
  switch (Type) {
          ^
/home/rupprecht/src/llvm-project/llvm/lib/Object/SymbolicFile.cpp:97:11: warning: 23 enumeration values not handled in switch: 'bitcode', 'elf', 'elf_relocatable'... [-Wswitch]
  switch (Type) {
          ^

Normally the right fix is to add a default switch case to handle all the unused cases. If you're concerned about the list of file_magic::unknown, file_magic::archive, ... in each method going out of sync in the two definitions (and new enums accidentally being handled with the default case), you could define that list in a macro, e.g.

#define NOT_SYMBOLIC_FILES \
  case file_magic::unknown: \
  case file_magic::archive: \
  case file_magic::coff_cl_gl_object: \
...
  case file_magic::tapi_file

  switch (Type) {
    NOT_SYMBOLIC_FILES:
      return false;
    default:
      return true;
  }

(note no trailing : in the last case you can write NOT_SYMBOLIC_FILES: and not confused IDEs)

rupprecht: Splitting up the switch leads to `-Wswitch` errors because now each switch statement is…
jhendersonAuthorUnsubmitted
Done
ReplyInline Actions

I don't particularly like macros. They are a pain to debug and not particularly readable, in my opinion. Maybe the way to resolve this is to flip the switch in isSymbolicFile on its head, so that any new file_magic types will return false (specified via a default label), until this function is modified. This means you wouldn't be able to create a symbolic file for them, which I don't think is unreasonable. This switch here then gains a default: llvm_unreachable() line, since it would only be reachable if the isSymbolicFile method returned true.

jhenderson: I don't particularly like macros. They are a pain to debug and not particularly readable, in my…
case file_magic::bitcode: case file_magic::bitcode:
rupprechtUnsubmitted
Done
ReplyInline Actions

I'm still seeing -Wswitch errors:

/home/rupprecht/src/llvm-project/llvm/lib/Object/SymbolicFile.cpp:47:11: warning: 8 enumeration values not handled in switch: 'unknown', 'archive', 'macho_universal_binary'... [-Wswitch]
  switch (Type) {
rupprecht: I'm still seeing `-Wswitch` errors: ``` /home/rupprecht/src/llvm…
jhendersonAuthorUnsubmitted
Done
ReplyInline Actions

Oops, sorry. Forgot to add the necessary default label.

jhenderson: Oops, sorry. Forgot to add the necessary `default` label.
if (Context) // Context is guaranteed to be non-null here, because bitcode magic only
// indicates a symbolic file when Context is non-null.
return IRObjectFile::create(Object, *Context); return IRObjectFile::create(Object, *Context);
grimarUnsubmitted
Done
ReplyInline Actions

I think the Content is always non-null here now?

grimar: I think the `Content` is always non-null here now?
jhendersonAuthorUnsubmitted
Done
ReplyInline Actions

Yeah, I think this can be simplified. I'm not going to have a chance to update the patch again today, but will fix in the commit, if you're otherwise happy.

It will become:

case file_magic::bitcode:
  return IRObjectFile::create(Object, *Context);
jhenderson: Yeah, I think this can be simplified. I'm not going to have a chance to update the patch again…
grimarUnsubmitted
Done
ReplyInline Actions

The rest looks fine to me. Please wait to see @MaskRay/@rupprecht opinions too

grimar: The rest looks fine to me. Please wait to see @MaskRay/@rupprecht opinions too
MaskRayUnsubmitted
Done
ReplyInline Actions

Context is always non-null. This is however a hidden fact only clear after I read all the callers..

MaskRay: `Context` is always non-null. This is however a hidden fact only clear after I read all the…
rupprechtUnsubmitted
Done
ReplyInline Actions

I found this thread hard to reconcile with the code: IIUC, Context is only non-null *in this case statement*: if Context is null and this is a bitcode file, isSymbolicFile returns false, and an error is returned above, so we don't reach this line. However, if this is a wasm_object (just one example), isSymbolicFile returns true even if Context is null. Context can be null in this switch statement, but not this particular case.

I think it's fine to make that simplification, but with a comment that isSymbolicFile verifies that Context is non-null when the type is bitcode. Otherwise, the nullness of Context is very difficult to reason with -- the baseline is much easier to understand in that regard.

rupprecht: I found this thread hard to reconcile with the code: IIUC, `Context` is only non-null *in this…
LLVM_FALLTHROUGH;
case file_magic::unknown:
case file_magic::archive:
case file_magic::coff_cl_gl_object:
case file_magic::macho_universal_binary:
case file_magic::windows_resource:
case file_magic::pdb:
case file_magic::minidump:
case file_magic::tapi_file:
return errorCodeToError(object_error::invalid_file_type);
case file_magic::elf: case file_magic::elf:
case file_magic::elf_executable: case file_magic::elf_executable:
case file_magic::elf_shared_object: case file_magic::elf_shared_object:
case file_magic::elf_core: case file_magic::elf_core:
case file_magic::macho_executable: case file_magic::macho_executable:
case file_magic::macho_fixed_virtual_memory_shared_lib: case file_magic::macho_fixed_virtual_memory_shared_lib:
case file_magic::macho_core: case file_magic::macho_core:
case file_magic::macho_preload_executable: case file_magic::macho_preload_executable:
Show All 24 Lines if (!BCData) {
consumeError(BCData.takeError()); consumeError(BCData.takeError());
return std::move(Obj); return std::move(Obj);
} }
return IRObjectFile::create( return IRObjectFile::create(
MemoryBufferRef(BCData->getBuffer(), Object.getBufferIdentifier()), MemoryBufferRef(BCData->getBuffer(), Object.getBufferIdentifier()),
*Context); *Context);
} }
} default:
llvm_unreachable("Unexpected Binary File Type"); llvm_unreachable("Unexpected Binary File Type");
} }
}
bool SymbolicFile::isSymbolicFile(file_magic Type, const LLVMContext *Context) {
switch (Type) {
case file_magic::bitcode:
return Context != nullptr;
case file_magic::elf:
case file_magic::elf_executable:
case file_magic::elf_shared_object:
case file_magic::elf_core:
case file_magic::macho_executable:
case file_magic::macho_fixed_virtual_memory_shared_lib:
case file_magic::macho_core:
case file_magic::macho_preload_executable:
case file_magic::macho_dynamically_linked_shared_lib:
case file_magic::macho_dynamic_linker:
case file_magic::macho_bundle:
case file_magic::macho_dynamically_linked_shared_lib_stub:
case file_magic::macho_dsym_companion:
case file_magic::macho_kext_bundle:
case file_magic::pecoff_executable:
case file_magic::xcoff_object_32:
case file_magic::xcoff_object_64:
case file_magic::wasm_object:
case file_magic::coff_import_library:
case file_magic::elf_relocatable:
case file_magic::macho_object:
case file_magic::coff_object:
return true;
default:
return false;
}
}
MaskRayUnsubmitted
Done
ReplyInline Actions
default:
  return true;

resolves a clang warning: Object/SymbolicFile.cpp:97:11: warning: 23 enumeration values not handled in switch: 'bitcode', 'elf', 'elf_relocatable'... [-Wswitch]

MaskRay: ``` default: return true; ``` resolves a clang warning: `Object/SymbolicFile.cpp:97:11…
rupprechtUnsubmitted
Done
ReplyInline Actions

Yes, but see my other comment, because that is addressing a symptom instead of fixing the cause. Having an explicit switch in the previous switch ensures that a new file type added doesn't accidentally get included in the default switch branch.

rupprecht: Yes, but see my other comment, because that is addressing a symptom instead of fixing the cause.

llvm/test/Object/archive-malformed-object.test

  • This file was added.
## Show that the archive library emits error messages when adding malformed
## objects.
# RUN: rm -rf %t.dir
# RUN: split-file %s %t.dir
# RUN: cd %t.dir
## Malformed bitcode object.
# RUN: llvm-as input.ll -o input.bc
# RUN: %python -c "with open('input.bc', 'a') as f: f.truncate(10)"
# RUN: not llvm-ar rc bad.a input.bc 2>&1 | FileCheck %s --check-prefix=ERR1
# ERR1: error: bad.a: Invalid bitcode signature
## Non-bitcode malformed file.
# RUN: yaml2obj input.yaml -o input.o
# RUN: not llvm-ar rc bad.a input.o 2>&1 | FileCheck %s --check-prefix=ERR2
# ERR2: error: bad.a: section header table goes past the end of the file: e_shoff = 0x9999
## Don't emit an error if the symbol table is not required.
# RUN: llvm-ar rcS good.a input.o input.bc
# RUN: llvm-ar t good.a | FileCheck %s --check-prefix=CONTENTS
# CONTENTS: input.o
# CONTENTS-NEXT: input.bc
#--- input.ll
target datalayout = "e-m:w-i64:64-f80:128-n8:16:32:64-S128"
target triple = "x86_64-pc-linux"
#--- input.yaml
--- !ELF
FileHeader:
Class: ELFCLASS64
Data: ELFDATA2LSB
Type: ET_REL
EShOff: 0x9999

llvm/test/Object/archive-unknown-filetype.test

  • This file was added.
## Show that the archive library does not emit an error or add any symbols to
## the archive symbol table, when it encounters an unknown file type, but still
grimarUnsubmitted
Done
ReplyInline Actions
- ## Show that the archive library ignores does not emit an error or add any
+ ## Show that the archive library does not emit an error or add any
## symbols to the archive symbol table, when it encounters an unknown file type,

Did you mean this?

grimar: Did you mean this?
jhendersonAuthorUnsubmitted
Done
ReplyInline Actions

I fixed this one already (think you must have missed my patch update).

jhenderson: I fixed this one already (think you must have missed my patch update).
## adds the file to the archive.
# RUN: echo something > %t
# RUN: rm -f %t.a
MaskRayUnsubmitted
Done
ReplyInline Actions

Using echo something > %t can be more robust. touch %t does not update the file content. If %t preexists as a different file type, this may fail spuriously.

MaskRay: Using `echo something > %t` can be more robust. `touch %t` does not update the file content. If…
# RUN: llvm-ar rc %t.a %t
# RUN: llvm-ar t %t.a | FileCheck %s --check-prefix=CONTENTS -DFILE=%basename_t
# RUN: llvm-nm --print-armap %t.a | FileCheck %s --allow-empty --implicit-check-not={{.}}
# CONTENTS: [[FILE]]