This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
libcxx/
-
src/
-
chrono.cpp
-
test/std/utilities/time/time.clock/time.clock.steady/
-
std/
-
utilities/
-
time/
-
time.clock/
-
time.clock.steady/
2
now.pass.cpp

Differential D93456

[libcxx] Avoid overflows in the windows __libcpp_steady_clock_now()
ClosedPublic

Authored by mstorsjo on Dec 17 2020, 5:50 AM.

Download Raw Diff

Details

Reviewers

amccarth
rnk
ldionne

Group Reviewers

Restricted Project

Commits

rG02f1d28ed6b8: [libcxx] Avoid overflows in the windows __libcpp_steady_clock_now()

Summary

As freq.QuadValue can be in the range of 10000000 to 19200000, the multiplication before division makes the calculation overflow and wrap to negative values every 16-30 minutes.

Instead count the whole seconds separately before adding the scaled fractional seconds.

Add a testcase for steady_clock to check that the values returned for now() compare as bigger than the zero time origin; this corresponds to a testcase in Qt [1] [2] (that failed spuriously due to this).

[1] https://bugreports.qt.io/browse/QTBUG-89539
[2] https://code.qt.io/cgit/qt/qtbase.git/tree/tests/auto/corelib/kernel/qdeadlinetimer/tst_qdeadlinetimer.cpp?id=f8de5e54022b8b7471131b7ad55c83b69b2684c0#n569

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

mstorsjo requested review of this revision.Dec 17 2020, 5:50 AM

mstorsjo created this revision.

Herald added a project: Restricted Project. · View Herald TranscriptDec 17 2020, 5:50 AM

Herald added 1 blocking reviewer(s): Restricted Project. · View Herald Transcript

This looks correct and straightforward, so LGTM.

There's probably a "clever" solution involving finding the greatest common divisor (once) of nano::den and freq.QuadPart. That would depend on there being a significant common divisor (which I assume is probably true, but not guaranteed). I think the straightforward solution in this patch is better.

libcxx/test/std/utilities/time/time.clock/time.clock.steady/now.pass.cpp
28	I don't know what the libcxx style guidelines say, but my inclination would be to add a comment explaining this assertion. Since the original bug would only occasionally be caught by this assertion, somebody who encounters it might need a hint to look for arithmetic overflows.

Harbormaster completed remote builds in B82786: Diff 312472.Dec 17 2020, 10:51 AM

LGTM with or without the test comment.

libcxx/test/std/utilities/time/time.clock/time.clock.steady/now.pass.cpp
28	I think a short comment doesn't hurt. Ideally something that isn't strictly related to the bug, like `// make sure t2 didn't wrap around` or something along those lines.

This revision is now accepted and ready to land.Jan 12 2021, 7:42 AM

Closed by commit rG02f1d28ed6b8: [libcxx] Avoid overflows in the windows __libcpp_steady_clock_now() (authored by mstorsjo). · Explain WhyJan 12 2021, 1:59 PM

This revision was automatically updated to reflect the committed changes.

mstorsjo added a commit: rG02f1d28ed6b8: [libcxx] Avoid overflows in the windows __libcpp_steady_clock_now().

rprichard mentioned this in D69314: Bug fix for PR#43703.Sep 29 2022, 2:57 PM

Revision Contents

Path

Size

libcxx/

src/

chrono.cpp

5 lines

test/

std/

utilities/

time/

time.clock/

time.clock.steady/

now.pass.cpp

2 lines

Diff 316232

libcxx/src/chrono.cpp

Show First 20 Lines • Show All 147 Lines • ▼ Show 20 Lines	__QueryPerformanceFrequency()
return val;		return val;
}		}

static steady_clock::time_point __libcpp_steady_clock_now() {		static steady_clock::time_point __libcpp_steady_clock_now() {
static const LARGE_INTEGER freq = __QueryPerformanceFrequency();		static const LARGE_INTEGER freq = __QueryPerformanceFrequency();

LARGE_INTEGER counter;		LARGE_INTEGER counter;
(void) QueryPerformanceCounter(&counter);		(void) QueryPerformanceCounter(&counter);
return steady_clock::time_point(steady_clock::duration(counter.QuadPart * nano::den / freq.QuadPart));		auto seconds = counter.QuadPart / freq.QuadPart;
		auto fractions = counter.QuadPart % freq.QuadPart;
		auto dur = seconds * nano::den + fractions * nano::den / freq.QuadPart;
		return steady_clock::time_point(steady_clock::duration(dur));
}		}

#elif defined(CLOCK_MONOTONIC)		#elif defined(CLOCK_MONOTONIC)

static steady_clock::time_point __libcpp_steady_clock_now() {		static steady_clock::time_point __libcpp_steady_clock_now() {
struct timespec tp;		struct timespec tp;
if (0 != clock_gettime(CLOCK_MONOTONIC, &tp))		if (0 != clock_gettime(CLOCK_MONOTONIC, &tp))
__throw_system_error(errno, "clock_gettime(CLOCK_MONOTONIC) failed");		__throw_system_error(errno, "clock_gettime(CLOCK_MONOTONIC) failed");
Show All 20 Lines

libcxx/test/std/utilities/time/time.clock/time.clock.steady/now.pass.cpp

	Show All 19 Lines
	#include "test_macros.h"			#include "test_macros.h"

	int main(int, char**)			int main(int, char**)
	{			{
	typedef std::chrono::steady_clock C;			typedef std::chrono::steady_clock C;
	C::time_point t1 = C::now();			C::time_point t1 = C::now();
	C::time_point t2 = C::now();			C::time_point t2 = C::now();
	assert(t2 >= t1);			assert(t2 >= t1);
				// make sure t2 didn't wrap around
				amccarthUnsubmitted Not Done Reply Inline Actions I don't know what the libcxx style guidelines say, but my inclination would be to add a comment explaining this assertion. Since the original bug would only occasionally be caught by this assertion, somebody who encounters it might need a hint to look for arithmetic overflows. amccarth: I don't know what the libcxx style guidelines say, but my inclination would be to add a comment…
				ldionneUnsubmitted Not Done Reply Inline Actions I think a short comment doesn't hurt. Ideally something that isn't strictly related to the bug, like `// make sure t2 didn't wrap around` or something along those lines. ldionne: I think a short comment doesn't hurt. Ideally something that isn't strictly related to the bug…
				assert(t2 > std::chrono::time_point<C>());

	return 0;			return 0;
	}			}