This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
lldb/
-
source/Plugins/Language/ObjC/
-
Plugins/
-
Language/
-
ObjC/
2/2
Cocoa.cpp
-
test/API/
-
API/
-
functionalities/data-formatter/boolreference/
-
data-formatter/
-
boolreference/
2/2
TestFormattersBoolRefPtr.py
1/1
main.mm
-
lang/objc/bitfield_ivars/
-
objc/
-
bitfield_ivars/
1/1
TestBitfieldIvars.py
-
main.m

Differential D93421

Fix how ValueObject deals with getting unsigned values
ClosedPublic

Authored by shafik on Dec 16 2020, 2:57 PM.

Download Raw Diff

Details

Reviewers

teemperor
jingham
labath
mib

Summary

Currently ValueObject::GetValueAsUnsigned(...) calls ResolveValue(...) and then afterward marks the scalar as unsigned.

This approach fails when dealing with 1 bit BOOL bit-fields in ObjC since the call to scalar.ExtractBitfield(...) will end up sign extending the value. So in the case of a bit-field with a value of 1 we would instead end up with a value of 255 (since BOOL is a just unsigned char).

I adjusted the handling to check if the scalar is unsigned in ResolveValue(...) and handle accordingly.

Diff Detail

Event Timeline

shafik requested review of this revision.Dec 16 2020, 2:57 PM

shafik created this revision.

shafik added a subscriber: lldb-commits.

I am not sure if I need to worry about ValueObject::IsLogicalTrue(...) as well.

This seems suspicious to me, on a couple of levels. You claim that BOOL is an unsigned type, but the apple documentation says "BOOL is explicitly signed so @encode(BOOL) is c rather than C even if -funsigned-char is used." Which one is true? Could this have something to do with the fact that the documentation assumes obj-c (which does not have a native bool type) but in lldb, we use obj-c++ (which, I guess, inherits bool from c++) everywhere?

If BOOL is unsigned, then it's not clear to me why would Scalar::ExtractBitfield be sign-extending anything. OTOH, if it is _signed_, then sign-extension seems to be the right behavior.

I think we may have some deeper problems with the handling bitfields whose underlying types are 1 byte long. Lldb (I think, correctly) sign-extends all signed bitfields, except the signed char one:

(lldb) p a
(A) $0 = {
  bool_ = true
  signed_char = '\x01'
  signed_short = -1
  signed_int = -1
  unsigned_char = '\x01'
  unsigned_short = 1
  unsigned_int = 1
}
(lldb) p/x a
(A) $1 = {
  bool_ = 0x01
  signed_char = 0x01
  signed_short = 0x0001
  signed_int = 0x00000001
  unsigned_char = 0x01
  unsigned_short = 0x0001
  unsigned_int = 0x00000001
}

This patch does not have any impact on this behavior, but the fact that signed char comes out as '\x01' seems suspicious. This is what gdb does for the same input:

(gdb) p a
$1 = {bool_ = true, signed_char = -1 '\377', signed_short = -1, signed_int = -1, unsigned_char = 1 '\001', unsigned_short = 1, unsigned_int = 1}
(gdb) p/x a
$2 = {bool_ = 0x1, signed_char = 0xff, signed_short = 0xffff, signed_int = 0xffffffff, unsigned_char = 0x1, unsigned_short = 0x1, unsigned_int = 0x1}

Finally, even though I'm not sure this is the right solution, I am sure that GetValueAsSigned should get the same fix as GetValueAsUnsigned

Whether BOOL is signed char or bool is apparently depending on the architecture (???). See ClangExpressionSourceCode::GetText, Clang's __OBJC_BOOL_IS_BOOL macro and then there is also some preprocessor shenanigans for non-Clang ObjC (?) in the objc.h header from what I can see. Whether C++ is active is never actually checked anywhere (the bool type is coming from stdbool.h which is unconditionally included by objc.h).

I think this patch just gets the formatter to print 'YES' because the formatter only knows 0 and 1 as valid values, but when we (correctly) sign-extend the 1-bit BOOL (=signed char) to 255, it just does it's fall-back logic of printing the integer value (also, that fall-back logic is completely ignoring the specified int format and just always prints as decimal. That seems like a bug...)

Anyway, the real solution is that the current behaviour is actually ... *drum roll* correct:

$ cat bool.m
#import <Foundation/Foundation.h>

typedef struct {
    BOOL fieldOne : 1;
    BOOL fieldTwo : 1;
    BOOL fieldThree : 1;
    BOOL fieldFour : 1;
    BOOL fieldfive : 1;
} BoolBitFields;

int main (int argc, const char * argv[]) {

  BoolBitFields myField = {0};
  myField.fieldTwo = YES;
  if (myField.fieldTwo == YES)
    printf("YES\n");
  else
    printf("NO\n");

  return 0;
}
$ ~/test clang bool.m -o bool -framework Foundation -Wpedantic -Wall -Wextra; and ./bool
NO

That bitfield is just not 'YES' but '255' which is neither YES nor NO. Also there is no Clang warning for this, so this is apparently very cool and very legal code. I am tempted to say the real fix here is to tell people to just not use Objective-C...

In D93421#2459853, @labath wrote:
This seems suspicious to me, on a couple of levels. You claim that BOOL is an unsigned type, but the apple documentation says "BOOL is explicitly signed so @encode(BOOL) is c rather than C even if -funsigned-char is used." Which one is true? Could this have something to do with the fact that the documentation assumes obj-c (which does not have a native bool type) but in lldb, we use obj-c++ (which, I guess, inherits bool from c++) everywhere?

If BOOL is unsigned, then it's not clear to me why would Scalar::ExtractBitfield be sign-extending anything. OTOH, if it is _signed_, then sign-extension seems to be the right behavior.

I think we may have some deeper problems with the handling bitfields whose underlying types are 1 byte long. Lldb (I think, correctly) sign-extends all signed bitfields, except the signed char one:
(lldb) p a
(A) $0 = {
  bool_ = true
  signed_char = '\x01'
  signed_short = -1
  signed_int = -1
  unsigned_char = '\x01'
  unsigned_short = 1
  unsigned_int = 1
}
(lldb) p/x a
(A) $1 = {
  bool_ = 0x01
  signed_char = 0x01
  signed_short = 0x0001
  signed_int = 0x00000001
  unsigned_char = 0x01
  unsigned_short = 0x0001
  unsigned_int = 0x00000001
}
This patch does not have any impact on this behavior, but the fact that signed char comes out as '\x01' seems suspicious. This is what gdb does for the same input:
(gdb) p a
$1 = {bool_ = true, signed_char = -1 '\377', signed_short = -1, signed_int = -1, unsigned_char = 1 '\001', unsigned_short = 1, unsigned_int = 1}
(gdb) p/x a
$2 = {bool_ = 0x1, signed_char = 0xff, signed_short = 0xffff, signed_int = 0xffffffff, unsigned_char = 0x1, unsigned_short = 0x1, unsigned_int = 0x1}
Finally, even though I'm not sure this is the right solution, I am sure that GetValueAsSigned should get the same fix as GetValueAsUnsigned

DumpDataExtractor doesn't know what types its printing, it just gets a lldb_private::Format (where we sometimes encode whether a type is signed). That is on my TODO list, but I just didn't get around to refactor this yet.

In short: If you get a eFormatChar (which is the default for 'char' stuff) then we always pretend its unsigned when printing the character. If you do 'hex', all ints become unsigned. If you print 'decimal', all types because signed, so there is an 'unsigned decimal' format that works around this:

(lldb) frame var --format default f
(F) f = (sc1 = '\x01', uc1 = '\x01', sc2 = '\x01', uc2 = '\x01')
(lldb) frame var --format 'decimal' f
(F) f = (sc1 = -1, uc1 = -1, sc2 = 1, uc2 = 1)
(lldb) frame var --format 'unsigned decimal' f
(F) f = (sc1 = 1, uc1 = 1, sc2 = 1, uc2 = 1)
(lldb) frame var --format 'hex' f
(F) f = (sc1 = 0x01, uc1 = 0x01, sc2 = 0x01, uc2 = 0x01)

I think the proper fix here is to warn about BOOL bitfields with size 1 if BOOL is a typedef for signed char. I can make a Clang warning for that. I guess on the LLDB side we should make it clear that BOOL here has an invalid value (and then print the int value as we currently do)?

This revision now requires changes to proceed.Dec 17 2020, 6:57 AM

I just realized that I got the char sign also mixed up. It's an unsigned char in LLDB, so the 255 is wrong (But I believe our char signedness handling is not correct in any C language). But the fact that we don't print YES/NO for that bitfield is right (just the int value is wrong).

After chatting with Raphael offline, we realize that BOOL will indeed always be signed. I was under the impression for some reason that it was actually unsigned. So the fix is simpler is that we just need to make the formatter use GetValueAsSigned(...)

Updating diff to reflect comments.

Some comments about that this still prints 255, but otherwise this is looking good.

(For the others: We agreed offline that adding the missing type checking for BOOL is out of scope for this patch. So the 'fail_value = 0` thing and so on is fine for this revision)

lldb/source/Plugins/Language/ObjC/Cocoa.cpp
1038	That still makes the value unsigned and prints `255` instead of `-1`. Something like: `int64_t value = real_guy_sp->GetValueAsSigned(0);` should do the trick.
lldb/test/API/functionalities/data-formatter/boolreference/TestFormattersBoolRefPtr.py
79	You can do this with `expect_expr` which makes this less fragile (the ValueCheck stuff is backported to the last stable branch, so that shouldn't complicate backporting): # converted YES value after passing through the BOOL : 1 bitfield. converted_yes = "-1" # BOOL is bool instead of signed char on ARM. if isArm: converted_yes = "1" self.expect_expr('myField', result_type="BoolBitFields", result_children=[ ValueCheck(name="fieldOne", summary="NO"), ValueCheck(name="fieldTwo", summary= converted_yes, ValueCheck(name="fieldThree", summary="NO"), ValueCheck(name="fieldFour", summary="NO"), ValueCheck(name="fieldfive", summary= converted_yes) ]) Also added the check for when BOOL = bool when this is on ARM (which seems to be how Clang decides if BOOL is bool or signed char). I guess a better check would be to check the underlying type for `BOOL` and see what it actually is, but let's fix this properly when we add type checking to the BOOL summary provider.
lldb/test/API/functionalities/data-formatter/boolreference/main.mm
8	Nit: `fieldfive` instead of `fieldFive`.
lldb/test/API/lang/objc/bitfield_ivars/TestBitfieldIvars.py
27	Same as above with `expect_expr`.

This revision now requires changes to proceed.Dec 18 2020, 6:35 AM

shafik marked 4 inline comments as done.Dec 18 2020, 4:54 PM

shafik added inline comments.

lldb/source/Plugins/Language/ObjC/Cocoa.cpp
1038	Good catch!
lldb/test/API/functionalities/data-formatter/boolreference/TestFormattersBoolRefPtr.py
79	`bool` will be signed so it will be the same result, I tested on device to confirm.

Fixed formatters::ObjCBOOLSummaryProvider to use int8_t and fixed the Printf
Updated tests

LGTM, thanks!

This revision is now accepted and ready to land.Jan 8 2021, 4:47 AM

landed this fix: https://reviews.llvm.org/rGdc057e87f6c18c24d17c7cae97ebe95f78b6d934

shafik closed this revision.Jan 25 2021, 11:50 AM

JDevlieghere mentioned this in rGf89944530726: [lldb] Fix TestFormattersBoolRefPtr on AS.Aug 11 2021, 2:55 PM

Revision Contents

Path

Size

lldb/

source/

Plugins/

Language/

ObjC/

Cocoa.cpp

4 lines

test/

API/

functionalities/

data-formatter/

boolreference/

TestFormattersBoolRefPtr.py

9 lines

main.mm

16 lines

lang/

objc/

bitfield_ivars/

TestBitfieldIvars.py

9 lines

main.m

12 lines

Diff 312904

lldb/source/Plugins/Language/ObjC/Cocoa.cpp

Show First 20 Lines • Show All 1,029 Lines • ▼ Show 20 Lines	if (type_info & eTypeIsPointer) {
real_guy_sp = valobj.Dereference(err);		real_guy_sp = valobj.Dereference(err);
if (err.Fail() \|\| !real_guy_sp)		if (err.Fail() \|\| !real_guy_sp)
return false;		return false;
} else if (type_info & eTypeIsReference) {		} else if (type_info & eTypeIsReference) {
real_guy_sp = valobj.GetChildAtIndex(0, true);		real_guy_sp = valobj.GetChildAtIndex(0, true);
if (!real_guy_sp)		if (!real_guy_sp)
return false;		return false;
}		}
uint8_t value = (real_guy_sp->GetValueAsUnsigned(0) & 0xFF);		int8_t value = (real_guy_sp->GetValueAsSigned(0) & 0xFF);
		teemperorUnsubmitted Done Reply Inline Actions That still makes the value unsigned and prints `255` instead of `-1`. Something like: `int64_t value = real_guy_sp->GetValueAsSigned(0);` should do the trick. teemperor: That still makes the value unsigned and prints `255` instead of `-1`. Something like: `int64_t…
		shafikAuthorUnsubmitted Done Reply Inline Actions Good catch! shafik: Good catch!
switch (value) {		switch (value) {
case 0:		case 0:
stream.Printf("NO");		stream.Printf("NO");
break;		break;
case 1:		case 1:
stream.Printf("YES");		stream.Printf("YES");
break;		break;
default:		default:
stream.Printf("%u", value);		stream.Printf("%d", value);
break;		break;
}		}
return true;		return true;
}		}

bool lldb_private::formatters::ObjCBooleanSummaryProvider(		bool lldb_private::formatters::ObjCBooleanSummaryProvider(
ValueObject &valobj, Stream &stream, const TypeSummaryOptions &options) {		ValueObject &valobj, Stream &stream, const TypeSummaryOptions &options) {
lldb::addr_t valobj_ptr_value =		lldb::addr_t valobj_ptr_value =
▲ Show 20 Lines • Show All 97 Lines • Show Last 20 Lines

lldb/test/API/functionalities/data-formatter/boolreference/TestFormattersBoolRefPtr.py

Show First 20 Lines • Show All 69 Lines • ▼ Show 20 Lines	def boolrefptr_data_formatter_commands(self):

# Now check that we use the right summary for BOOL		# Now check that we use the right summary for BOOL
self.expect('frame variable yes',		self.expect('frame variable yes',
substrs=['YES'])		substrs=['YES'])
self.expect('frame variable no',		self.expect('frame variable no',
substrs=['NO'])		substrs=['NO'])
if not(isArm):		if not(isArm):
self.expect('frame variable unset', substrs=['12'])		self.expect('frame variable unset', substrs=['12'])

		self.expect_expr('myField', result_type="BoolBitFields",
		teemperorUnsubmitted Done Reply Inline Actions You can do this with `expect_expr` which makes this less fragile (the ValueCheck stuff is backported to the last stable branch, so that shouldn't complicate backporting): # converted YES value after passing through the BOOL : 1 bitfield. converted_yes = "-1" # BOOL is bool instead of signed char on ARM. if isArm: converted_yes = "1" self.expect_expr('myField', result_type="BoolBitFields", result_children=[ ValueCheck(name="fieldOne", summary="NO"), ValueCheck(name="fieldTwo", summary= converted_yes, ValueCheck(name="fieldThree", summary="NO"), ValueCheck(name="fieldFour", summary="NO"), ValueCheck(name="fieldfive", summary= converted_yes) ]) Also added the check for when BOOL = bool when this is on ARM (which seems to be how Clang decides if BOOL is bool or signed char). I guess a better check would be to check the underlying type for `BOOL` and see what it actually is, but let's fix this properly when we add type checking to the BOOL summary provider. teemperor: You can do this with `expect_expr` which makes this less fragile (the ValueCheck stuff is…
		shafikAuthorUnsubmitted Done Reply Inline Actions `bool` will be signed so it will be the same result, I tested on device to confirm. shafik: `bool` will be signed so it will be the same result, I tested on device to confirm.
		result_children=[
		ValueCheck(name="fieldOne", summary="NO"),
		ValueCheck(name="fieldTwo", summary="-1"),
		ValueCheck(name="fieldThree", summary="NO"),
		ValueCheck(name="fieldFour", summary="NO"),
		ValueCheck(name="fieldFive", summary="-1")
		])

lldb/test/API/functionalities/data-formatter/boolreference/main.mm

	#import <Foundation/Foundation.h>			#import <Foundation/Foundation.h>

				typedef struct {
				BOOL fieldOne : 1;
				BOOL fieldTwo : 1;
				BOOL fieldThree : 1;
				BOOL fieldFour : 1;
				BOOL fieldFive : 1;
				teemperorUnsubmitted Done Reply Inline Actions Nit: `fieldfive` instead of `fieldFive`. teemperor: Nit: `fieldfive` instead of `fieldFive`.
				} BoolBitFields;

	int main (int argc, const char * argv[])			int main (int argc, const char * argv[])
	{			{
	NSAutoreleasePool * pool = [[NSAutoreleasePool alloc] init];			NSAutoreleasePool * pool = [[NSAutoreleasePool alloc] init];

	BOOL yes = YES;			BOOL yes = YES;
	BOOL no = NO;			BOOL no = NO;
	BOOL unset = 12;			BOOL unset = 12;

	BOOL &yes_ref = yes;			BOOL &yes_ref = yes;
	BOOL &no_ref = no;			BOOL &no_ref = no;
	BOOL &unset_ref = unset;			BOOL &unset_ref = unset;

	BOOL* yes_ptr = &yes;			BOOL* yes_ptr = &yes;
	BOOL* no_ptr = &no;			BOOL* no_ptr = &no;
	BOOL* unset_ptr = &unset;			BOOL* unset_ptr = &unset;

				BoolBitFields myField = {0};
				myField.fieldTwo = YES;
				myField.fieldFive = YES;

	[pool drain];// Set break point at this line.			[pool drain];// Set break point at this line.
	return 0;			return 0;
	}			}

lldb/test/API/lang/objc/bitfield_ivars/TestBitfieldIvars.py

Show All 18 Lines	def test(self):
self.expect_expr("hb2->field1", result_type="unsigned int", result_value="10")		self.expect_expr("hb2->field1", result_type="unsigned int", result_value="10")
self.expect_expr("hb2->field2", result_type="unsigned int", result_value="3")		self.expect_expr("hb2->field2", result_type="unsigned int", result_value="3")
self.expect_expr("hb2->field3", result_type="unsigned int", result_value="4")		self.expect_expr("hb2->field3", result_type="unsigned int", result_value="4")

self.expect("frame var *hb2", substrs = [ 'x =', '100',		self.expect("frame var *hb2", substrs = [ 'x =', '100',
'field1 =', '10',		'field1 =', '10',
'field2 =', '3',		'field2 =', '3',
'field3 =', '4'])		'field3 =', '4'])

		teemperorUnsubmitted Done Reply Inline Actions Same as above with `expect_expr`. teemperor: Same as above with `expect_expr`.
		self.expect_expr('myField', result_type="UCBitFields",
		result_children=[
		ValueCheck(name="fieldOne", value="'\\0'"),
		ValueCheck(name="fieldTwo", value="'\\x01'"),
		ValueCheck(name="fieldThree", value="'\\0'"),
		ValueCheck(name="fieldFour", value="'\\0'"),
		ValueCheck(name="fieldFive", value="'\\x01'")
		])

# This test is meant to be xfailed, but running the test triggers an ASan		# This test is meant to be xfailed, but running the test triggers an ASan
# issue, so it must be skipped for now.		# issue, so it must be skipped for now.
@skipIf		@skipIf
def testExprWholeObject(self):		def testExprWholeObject(self):
self.build()		self.build()
lldbutil.run_to_source_breakpoint(self, "// break here", lldb.SBFileSpec("main.m"))		lldbutil.run_to_source_breakpoint(self, "// break here", lldb.SBFileSpec("main.m"))

## FIXME expression with individual bit-fields obtains correct values but not with the whole object		## FIXME expression with individual bit-fields obtains correct values but not with the whole object
self.expect("expr *hb2", substrs = [ 'x =', '100',		self.expect("expr *hb2", substrs = [ 'x =', '100',
'field1 =', '10',		'field1 =', '10',
'field2 =', '3',		'field2 =', '3',
'field3 =', '4'])		'field3 =', '4'])

lldb/test/API/lang/objc/bitfield_ivars/main.m

#import <Foundation/Foundation.h>		#import <Foundation/Foundation.h>

		typedef struct {
		unsigned char fieldOne : 1;
		unsigned char fieldTwo : 1;
		unsigned char fieldThree : 1;
		unsigned char fieldFour : 1;
		unsigned char fieldFive : 1;
		} UCBitFields;

@interface HasBitfield : NSObject {		@interface HasBitfield : NSObject {
@public		@public
unsigned field1 : 1;		unsigned field1 : 1;
unsigned field2 : 1;		unsigned field2 : 1;
};		};

-(id)init;		-(id)init;
@end		@end
▲ Show 20 Lines • Show All 43 Lines • ▼ Show 20 Lines	int main(int argc, const char * argv[]) {
ContainsAHasBitfield *chb = [[ContainsAHasBitfield alloc] init];		ContainsAHasBitfield *chb = [[ContainsAHasBitfield alloc] init];
HasBitfield2 *hb2 = [[HasBitfield2 alloc] init];		HasBitfield2 *hb2 = [[HasBitfield2 alloc] init];

hb2->x = 100;		hb2->x = 100;
hb2->field1 = 10;		hb2->field1 = 10;
hb2->field2 = 3;		hb2->field2 = 3;
hb2->field3 = 4;		hb2->field3 = 4;

		UCBitFields myField = {0};
		myField.fieldTwo = 1;
		myField.fieldFive = 1;

return 0; // break here		return 0; // break here
}		}