This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
llvm/
-
include/llvm/ADT/
-
llvm/
-
ADT/
11/11
SmallVector.h
-
unittests/ADT/
-
ADT/
4/5
SmallVectorTest.cpp

Differential D93779

ADT: Fix reference invalidation in SmallVector::push_back and single-element insert
ClosedPublic

Authored by dexonsmith on Dec 23 2020, 1:53 PM.

Download Raw Diff

Details

Reviewers

dblaikie

Commits

rG49142991a685: Reapply "ADT: Fix reference invalidation in SmallVector::push_back and single…
rG9abac6030900: ADT: Fix reference invalidation in SmallVector::push_back and single-element…

Summary

For small enough, trivially copyable T, take the argument by value in
SmallVector::push_back and copy it when forwarding to
SmallVector::insert_one_impl. Otherwise, when growing, update the
argument appropriately.

Depends on https://reviews.llvm.org/D93777.
Split out from https://reviews.llvm.org/D91837.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

dexonsmith created this revision.Dec 23 2020, 1:53 PM

Herald added a subscriber: ributzka. · View Herald TranscriptDec 23 2020, 1:53 PM

dexonsmith requested review of this revision.Dec 23 2020, 1:53 PM

Herald added a project: Restricted Project. · View Herald TranscriptDec 23 2020, 1:53 PM

dexonsmith added a parent revision: D93777: ADT: Fix pointer comparison UB in SmallVector.Dec 23 2020, 1:54 PM

dexonsmith mentioned this in D93780: ADT: Fix reference invalidation in N-element SmallVector::append and insert.Dec 23 2020, 2:02 PM

dexonsmith added a child revision: D93780: ADT: Fix reference invalidation in N-element SmallVector::append and insert.

dexonsmith added inline comments.Dec 23 2020, 2:18 PM

llvm/include/llvm/ADT/SmallVector.h
235	`reserveForAndGetAddressImpl` is used in `SmallVectorTemplateBase<T>` and needs to call `grow()` here, but the text of the implementation does not depend on whether `T` is trivially copyable. https://reviews.llvm.org/D91837#inline-875946 suggested using CRTP, but that seemed to require yet more names for `SmallVector` base classes and it seemed like a bit of a mess. Actually... now I realize there is another option I'd missed: just add a CRTP parameter to `SmallVectorTemplateCommon` (no need for a new name). If you think that's worth trying I can try it and post an update.

dexonsmith added inline comments.Dec 23 2020, 2:24 PM

llvm/include/llvm/ADT/SmallVector.h
235	Ah, no, it's not that easy... we can't easily add new parameters to `SmallVectorTemplateCommon`. /// [...] The extra dummy template argument is used by ArrayRef /// to avoid unnecessarily requiring T to be complete. template <typename T, typename = void> class SmallVectorTemplateCommon I suspect adding a `DerivedT` template parameter would defeat this compile-time optimization.

dexonsmith mentioned this in D91837: ADT: Fix reference invalidation in SmallVector APIs that pass in a value.Dec 23 2020, 2:40 PM

Harbormaster completed remote builds in B83427: Diff 313610.Dec 23 2020, 2:41 PM

dexonsmith mentioned this in D91467: ADT: Take small enough, trivially copyable T by value in SmallVector.Dec 23 2020, 2:43 PM

dblaikie added inline comments.Dec 23 2020, 3:43 PM

llvm/include/llvm/ADT/SmallVector.h
484–494	While I think it's not technically a problem (because the casted-away-const-ness pointer is never dereferenced) - I'd usually implement these the other way around. Have an implementation that uses const pointers only, then the non-const wrapper can cast-to-const, call, cast away const, and it's "clearer" (marginally, perhaps) that it's const correct because only that non-const wrapper has the interesting const handling - rather than the longer distance behavior in this implementation.
706–707	Is this correct? If ArgType differs from the container's value type, wouldn't this break? (if you insert something that's convertible to the element type, but isn't the actual element type) I guess insert_one_maybe_copy does SFINAE, etc to ensure this is always called with the value type? So ArgType is only ever some kind of ref qualified T?
llvm/unittests/ADT/SmallVectorTest.cpp
1089–1090	I'm not following what this part of the test does - could you walk me through it?
1206–1210	I'm not following how this validates that a copy was taken (I'd have thought it'd be unobservable whether a copy was made or the pointer-index-pointer dance was done) - could you walk me through that in a bit more detail?

Rebase and respond to review feedback.

Thanks for the review! (Just coming back to this now after the holidays.)

llvm/include/llvm/ADT/SmallVector.h
484–494	Good point; I've updated `...Impl()` to take/return `const`, and both callers now call it directly.
706–707	Correct. I added a comment and static assertion above to document this.
717–719	I added a static assert here to confirm we have a copy, since the logic relies on that.
llvm/unittests/ADT/SmallVectorTest.cpp
1089–1090	I've rewritten it (I couldn't fully make sense of it either, coming back to it). It now tests: The correct value gets copied when pushing back with a reference, growing from small storage. The correct value gets copied when pushing back with a reference, growing from large storage. The value is actually copied, not moved (the difference is only observable for Constructable). See `PushBackMoved` below, where a `0` is left behind. This seems potentially worth testing in case a `std::forward` is missed somewhere, but i'm open to dropping that part if you think it's already covered well enough above.
1206–1210	I've rewritten this in the same way as the `push_back` tests.

Looks good, thanks!

llvm/unittests/ADT/SmallVectorTest.cpp
1089–1090	Looks good, don't have strong feelings about the last test case - take it or leave it as you see fit

This revision is now accepted and ready to land.Jan 13 2021, 1:24 PM

Closed by commit rG9abac6030900: ADT: Fix reference invalidation in SmallVector::push_back and single-element… (authored by dexonsmith). · Explain WhyJan 13 2021, 6:59 PM

This revision was automatically updated to reflect the committed changes.

dexonsmith marked 4 inline comments as done.

dexonsmith added a commit: rG9abac6030900: ADT: Fix reference invalidation in SmallVector::push_back and single-element….

dexonsmith added a reverting change: rG56d1ffb927d0: Revert "ADT: Fix reference invalidation in SmallVector::push_back and single….Jan 13 2021, 7:04 PM

Reverted in 56d1ffb927d03958a7a31442596df749264a7792 due to an error on Windows:
http://lab.llvm.org:8011/#/builders/127/builds/4489/steps/7/logs/stdio
if it's obvious I'll recommit in a minute, but if anyone has ideas I'd welcome them.

This revision is now accepted and ready to land.Jan 13 2021, 7:05 PM

In D93779#2497099, @dexonsmith wrote:

Reverted in 56d1ffb927d03958a7a31442596df749264a7792 due to an error on Windows:
http://lab.llvm.org:8011/#/builders/127/builds/4489/steps/7/logs/stdio
if it's obvious I'll recommit in a minute, but if anyone has ideas I'd welcome them.

Guess maybe something in the std::is_same<std::remove_const_t<std::remove_reference_t<ArgType>>, T>::value isn't working quite right on MSVC? (could test that with godbolt, maybe) - is it needed? Since it's on both insert_one_maybe_copy and there's an implementation detail/doesn't need to protect from violations of that constraint (admittedly I'm proposing removing it because maybe MSVC is violating it... )? And instead SFINAE/enable_if only on the TakesParamByValue part?

Replacing insert_one_maybe_copy indirection with a forwarding helper called forward_value_param.

In D93779#2497112, @dblaikie wrote:

In D93779#2497099, @dexonsmith wrote:

Reverted in 56d1ffb927d03958a7a31442596df749264a7792 due to an error on Windows:
http://lab.llvm.org:8011/#/builders/127/builds/4489/steps/7/logs/stdio
if it's obvious I'll recommit in a minute, but if anyone has ideas I'd welcome them.

Guess maybe something in the std::is_same<std::remove_const_t<std::remove_reference_t<ArgType>>, T>::value isn't working quite right on MSVC? (could test that with godbolt, maybe) - is it needed? Since it's on both insert_one_maybe_copy and there's an implementation detail/doesn't need to protect from violations of that constraint (admittedly I'm proposing removing it because maybe MSVC is violating it... )? And instead SFINAE/enable_if only on the TakesParamByValue part?

Thanks for looking; I think you're right. The constraint was a trick to allow use of SFINAE since TakesParamByValue didn't depend on the template parameter so I can't just remove it, I need a different solution...

...but I've found one, and it's a bit cleaner too. Instead of the indirection through insert_one_maybe_copy, I've added a forwarding function defined in the POD vs. non-POD base classes called forward_value_param.

I'll commit the new version once I confirm check-llvm passes locally.

llvm/include/llvm/ADT/SmallVector.h
370–371	In the non-POD case it just returns what it has been given.
496–497	In the POD (well, trivially move/copy constructible) case it's either `T` (a copy) or `const T&` (a reference). No need for moving since it's trivially constructible.
727–734	The new forwarding function also means we don't need to indirect through `instert_one_maybe_copy`.

Closed by commit rG49142991a685: Reapply "ADT: Fix reference invalidation in SmallVector::push_back and single… (authored by dexonsmith). · Explain WhyJan 13 2021, 7:45 PM

This revision was automatically updated to reflect the committed changes.

dexonsmith added a commit: rG49142991a685: Reapply "ADT: Fix reference invalidation in SmallVector::push_back and single….

In D93779#2497131, @dexonsmith wrote:

In D93779#2497112, @dblaikie wrote:

In D93779#2497099, @dexonsmith wrote:

Reverted in 56d1ffb927d03958a7a31442596df749264a7792 due to an error on Windows:
http://lab.llvm.org:8011/#/builders/127/builds/4489/steps/7/logs/stdio
if it's obvious I'll recommit in a minute, but if anyone has ideas I'd welcome them.

Guess maybe something in the std::is_same<std::remove_const_t<std::remove_reference_t<ArgType>>, T>::value isn't working quite right on MSVC? (could test that with godbolt, maybe) - is it needed? Since it's on both insert_one_maybe_copy and there's an implementation detail/doesn't need to protect from violations of that constraint (admittedly I'm proposing removing it because maybe MSVC is violating it... )? And instead SFINAE/enable_if only on the TakesParamByValue part?

Thanks for looking; I think you're right. The constraint was a trick to allow use of SFINAE since TakesParamByValue didn't depend on the template parameter so I can't just remove it, I need a different solution...

...but I've found one, and it's a bit cleaner too. Instead of the indirection through insert_one_maybe_copy, I've added a forwarding function defined in the POD vs. non-POD base classes called forward_value_param.

I'll commit the new version once I confirm check-llvm passes locally.

Yeah, looks nice/simpler to me!

This patch seems to have found a bug: in AArch64InstrInfo.cpp, there is a -Wsometimes-uninitialized warning that now triggers, and adding an assertion to make sure the value is eventually set causes a few tests to fail. The usage is DelInstrs.push_back(MUL), which I guess is how it ties in to this patch.

More details in 752fafda3dbf1f4885c64408a13ddb67c91ccb13, which gets things back to building, but doesn't do anything about the bug.

In D93779#2497200, @rupprecht wrote:

This patch seems to have found a bug: in AArch64InstrInfo.cpp, there is a -Wsometimes-uninitialized warning that now triggers, and adding an assertion to make sure the value is eventually set causes a few tests to fail. The usage is DelInstrs.push_back(MUL), which I guess is how it ties in to this patch.

More details in 752fafda3dbf1f4885c64408a13ddb67c91ccb13, which gets things back to building, but doesn't do anything about the bug.

Oh weird, I saw that too, but (wrongly) assumed it was unrelated to my change. Thanks for digging into it.

In D93779#2497213, @dexonsmith wrote:

In D93779#2497200, @rupprecht wrote:

This patch seems to have found a bug: in AArch64InstrInfo.cpp, there is a -Wsometimes-uninitialized warning that now triggers, and adding an assertion to make sure the value is eventually set causes a few tests to fail. The usage is DelInstrs.push_back(MUL), which I guess is how it ties in to this patch.

More details in 752fafda3dbf1f4885c64408a13ddb67c91ccb13, which gets things back to building, but doesn't do anything about the bug.

Oh weird, I saw that too, but (wrongly) assumed it was unrelated to my change. Thanks for digging into it.

@t.p.northover, maybe you can take a look at 752fafda3dbf1f4885c64408a13ddb67c91ccb13?

http://llvm-compile-time-tracker.com/compare.php?from=4c1617dac8fa13a8eac9cc4ac13a8f1fb3da512e&to=49142991a685bd427d7e877c29c77371dfb7634c&stat=instructions

Compile time regression is too big.. Please revert.

@nikic

Why do we even want to bend over backwards and try to handle broken code correctly,
at the cost of regressed performance for everything,
instead of just adding defensive asserts against such problems,
and letting/telling the user fix the code?

In D93779#2498501, @lebedev.ri wrote:

Why do we even want to bend over backwards and try to handle broken code correctly,
at the cost of regressed performance for everything,
instead of just adding defensive asserts against such problems,
and letting/telling the user fix the code?

I believe the standard library supports this, so I think it's a somewhat awkward limitation to have a standard-library-like container that misses that. (of course the small-mode isn't entirely compatible with std::vector, etc anyway - so some divergence is possible)

In D93779#2498509, @dblaikie wrote:

In D93779#2498501, @lebedev.ri wrote:

Why do we even want to bend over backwards and try to handle broken code correctly,
at the cost of regressed performance for everything,
instead of just adding defensive asserts against such problems,
and letting/telling the user fix the code?

I believe the standard library supports this, so I think it's a somewhat awkward limitation to have a standard-library-like container that misses that. (of course the small-mode isn't entirely compatible with std::vector, etc anyway - so some divergence is possible)

But currently the cost (compile time) is too high to be acceptable.

In D93779#2498612, @xbolva00 wrote:

In D93779#2498509, @dblaikie wrote:

In D93779#2498501, @lebedev.ri wrote:

Why do we even want to bend over backwards and try to handle broken code correctly,
at the cost of regressed performance for everything,
instead of just adding defensive asserts against such problems,
and letting/telling the user fix the code?

I believe the standard library supports this, so I think it's a somewhat awkward limitation to have a standard-library-like container that misses that. (of course the small-mode isn't entirely compatible with std::vector, etc anyway - so some divergence is possible)

But currently the cost (compile time) is too high to be acceptable.

Perhaps - my comment was intended to address "why are we trying to support this rather than using assertions" not the compile time cost question.

The last time I tested this in https://reviews.llvm.org/D91837#2464554, the impact was much smaller. Some change between then and the landed version must have regressed things again. I think the numbers are now similar to what we saw before the "small value" optimization was added.

Over in D91837 the reserveForAndGetAddress() implementation contained a check for TakesParamByValue that seems to be gone in this revision. My first guess is that this is the culprit, and we're now always performing the isReferenceToStorage() check.

nikic added a reverting change: rG33be50daa9ce: Revert "Reapply "ADT: Fix reference invalidation in SmallVector::push_back and….Jan 15 2021, 12:29 AM

In D93779#2499361, @nikic wrote:

Over in D91837 the reserveForAndGetAddress() implementation contained a check for TakesParamByValue that seems to be gone in this revision. My first guess is that this is the culprit, and we're now always performing the isReferenceToStorage() check.

Somehow I missed the replies here until now. I came across the same thing independently: https://reviews.llvm.org/D94800.

dexonsmith mentioned this in D94800: ADT: Skip SmallVector::isReferenceToStorage when TakesParamByValue, NFC.Jan 15 2021, 9:43 AM

@xbolva00, thanks for reporting the regression. After the performance analysis was finished in https://reviews.llvm.org/D91837, I split the patch up for more detailed review, and in responding to review comments I somehow lost the critical check against TakesParamByValue.

Also, @nikic, thanks for the reverts yesterday when I missed the updates here.

https://reviews.llvm.org/D94800 adds back the critical check.

In D93779#2498509, @dblaikie wrote:

In D93779#2498501, @lebedev.ri wrote:

Why do we even want to bend over backwards and try to handle broken code correctly,
at the cost of regressed performance for everything,
instead of just adding defensive asserts against such problems,
and letting/telling the user fix the code?

I believe the standard library supports this, so I think it's a somewhat awkward limitation to have a standard-library-like container that misses that. (of course the small-mode isn't entirely compatible with std::vector, etc anyway - so some divergence is possible)

Exactly, this is part of rectifying some unnecessary awkwardness in SmallVector. I'm 100% agreed it's not worth it with the compile-time impact you reported, but this approach seems to get the benefits without significant cost (when I don't drop critical checks...). You can see the numbers in https://reviews.llvm.org/D91837.

llvm/include/llvm/ADT/SmallVector.h
232	The cause of the regression was dropping the check against `TakesParamByValue` on this line when I moved this function to `SmallVectorTemplateCommon`...

dexonsmith mentioned this in rGceaf0110ff5e: Revert "Revert "ADT: Fix reference invalidation in SmallVector..."".Jan 15 2021, 2:30 PM

Revision Contents

Path

Size

llvm/

include/

llvm/

ADT/

SmallVector.h

118 lines

unittests/

ADT/

SmallVectorTest.cpp

107 lines

Diff 316559

llvm/include/llvm/ADT/SmallVector.h

Show First 20 Lines • Show All 214 Lines • ▼ Show 20 Lines	protected:
/// emplace_back.		/// emplace_back.
template <class ArgType1, class... ArgTypes>		template <class ArgType1, class... ArgTypes>
void assertSafeToEmplace(ArgType1 &Arg1, ArgTypes &... Args) {		void assertSafeToEmplace(ArgType1 &Arg1, ArgTypes &... Args) {
this->assertSafeToAdd(&Arg1);		this->assertSafeToAdd(&Arg1);
this->assertSafeToEmplace(Args...);		this->assertSafeToEmplace(Args...);
}		}
void assertSafeToEmplace() {}		void assertSafeToEmplace() {}

		/// Reserve enough space to add one element, and return the updated element
		/// pointer in case it was a reference to the storage.
		template <class U>
		static const T reserveForAndGetAddressImpl(U This, const T &Elt) {
		if (LLVM_LIKELY(This->size() < This->capacity()))
		return &Elt;

		bool ReferencesStorage = false;
		int64_t Index = -1;
		if (LLVM_UNLIKELY(This->isReferenceToStorage(&Elt))) {
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions The cause of the regression was dropping the check against `TakesParamByValue` on this line when I moved this function to `SmallVectorTemplateCommon`... dexonsmith: The cause of the regression was dropping the check against `TakesParamByValue` on this line…
		ReferencesStorage = true;
		Index = &Elt - This->begin();
		}
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions `reserveForAndGetAddressImpl` is used in `SmallVectorTemplateBase<T>` and needs to call `grow()` here, but the text of the implementation does not depend on whether `T` is trivially copyable. https://reviews.llvm.org/D91837#inline-875946 suggested using CRTP, but that seemed to require yet more names for `SmallVector` base classes and it seemed like a bit of a mess. Actually... now I realize there is another option I'd missed: just add a CRTP parameter to `SmallVectorTemplateCommon` (no need for a new name). If you think that's worth trying I can try it and post an update. dexonsmith: `reserveForAndGetAddressImpl` is used in `SmallVectorTemplateBase<T>` and needs to call `grow…
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions Ah, no, it's not that easy... we can't easily add new parameters to `SmallVectorTemplateCommon`. /// [...] The extra dummy template argument is used by ArrayRef /// to avoid unnecessarily requiring T to be complete. template <typename T, typename = void> class SmallVectorTemplateCommon I suspect adding a `DerivedT` template parameter would defeat this compile-time optimization. dexonsmith: Ah, no, it's not that easy... we can't easily add new parameters to `SmallVectorTemplateCommon`.
		This->grow();
		return ReferencesStorage ? This->begin() + Index : &Elt;
		}

public:		public:
using size_type = size_t;		using size_type = size_t;
using difference_type = ptrdiff_t;		using difference_type = ptrdiff_t;
using value_type = T;		using value_type = T;
using iterator = T *;		using iterator = T *;
using const_iterator = const T *;		using const_iterator = const T *;

using const_reverse_iterator = std::reverse_iterator<const_iterator>;		using const_reverse_iterator = std::reverse_iterator<const_iterator>;
▲ Show 20 Lines • Show All 67 Lines • ▼ Show 20 Lines
/// trivial destruction. While the standard doesn't specify that you're allowed		/// trivial destruction. While the standard doesn't specify that you're allowed
/// copy these types with memcpy, there is no way for the type to observe this.		/// copy these types with memcpy, there is no way for the type to observe this.
/// This catches the important case of std::pair<POD, POD>, which is not		/// This catches the important case of std::pair<POD, POD>, which is not
/// trivially assignable.		/// trivially assignable.
template <typename T, bool = (is_trivially_copy_constructible<T>::value) &&		template <typename T, bool = (is_trivially_copy_constructible<T>::value) &&
(is_trivially_move_constructible<T>::value) &&		(is_trivially_move_constructible<T>::value) &&
std::is_trivially_destructible<T>::value>		std::is_trivially_destructible<T>::value>
class SmallVectorTemplateBase : public SmallVectorTemplateCommon<T> {		class SmallVectorTemplateBase : public SmallVectorTemplateCommon<T> {
		friend class SmallVectorTemplateCommon<T>;

protected:		protected:
		static constexpr bool TakesParamByValue = false;
		using ValueParamT = const T &;

SmallVectorTemplateBase(size_t Size) : SmallVectorTemplateCommon<T>(Size) {}		SmallVectorTemplateBase(size_t Size) : SmallVectorTemplateCommon<T>(Size) {}

static void destroy_range(T S, T E) {		static void destroy_range(T S, T E) {
while (S != E) {		while (S != E) {
--E;		--E;
E->~T();		E->~T();
}		}
}		}
Show All 13 Lines	static void uninitialized_copy(It1 I, It1 E, It2 Dest) {
std::uninitialized_copy(I, E, Dest);		std::uninitialized_copy(I, E, Dest);
}		}

/// Grow the allocated memory (without initializing new elements), doubling		/// Grow the allocated memory (without initializing new elements), doubling
/// the size of the allocated memory. Guarantees space for at least one more		/// the size of the allocated memory. Guarantees space for at least one more
/// element, or MinSize more elements if specified.		/// element, or MinSize more elements if specified.
void grow(size_t MinSize = 0);		void grow(size_t MinSize = 0);

		/// Reserve enough space to add one element, and return the updated element
		/// pointer in case it was a reference to the storage.
		const T *reserveForAndGetAddress(const T &Elt) {
		return this->reserveForAndGetAddressImpl(this, Elt);
		}

		/// Reserve enough space to add one element, and return the updated element
		/// pointer in case it was a reference to the storage.
		T *reserveForAndGetAddress(T &Elt) {
		return const_cast<T *>(this->reserveForAndGetAddressImpl(this, Elt));
		}

		static T &&forward_value_param(T &&V) { return std::move(V); }
		static const T &forward_value_param(const T &V) { return V; }
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions In the non-POD case it just returns what it has been given. dexonsmith: In the non-POD case it just returns what it has been given.

public:		public:
void push_back(const T &Elt) {		void push_back(const T &Elt) {
this->assertSafeToAdd(&Elt);		const T *EltPtr = reserveForAndGetAddress(Elt);
if (LLVM_UNLIKELY(this->size() >= this->capacity()))		::new ((void )this->end()) T(EltPtr);
this->grow();
::new ((void*) this->end()) T(Elt);
this->set_size(this->size() + 1);		this->set_size(this->size() + 1);
}		}

void push_back(T &&Elt) {		void push_back(T &&Elt) {
this->assertSafeToAdd(&Elt);		T *EltPtr = reserveForAndGetAddress(Elt);
if (LLVM_UNLIKELY(this->size() >= this->capacity()))		::new ((void )this->end()) T(::std::move(EltPtr));
this->grow();
::new ((void*) this->end()) T(::std::move(Elt));
this->set_size(this->size() + 1);		this->set_size(this->size() + 1);
}		}

void pop_back() {		void pop_back() {
this->set_size(this->size() - 1);		this->set_size(this->size() - 1);
this->end()->~T();		this->end()->~T();
}		}
};		};
Show All 33 Lines
}		}

/// SmallVectorTemplateBase<TriviallyCopyable = true> - This is where we put		/// SmallVectorTemplateBase<TriviallyCopyable = true> - This is where we put
/// method implementations that are designed to work with trivially copyable		/// method implementations that are designed to work with trivially copyable
/// T's. This allows using memcpy in place of copy/move construction and		/// T's. This allows using memcpy in place of copy/move construction and
/// skipping destruction.		/// skipping destruction.
template <typename T>		template <typename T>
class SmallVectorTemplateBase<T, true> : public SmallVectorTemplateCommon<T> {		class SmallVectorTemplateBase<T, true> : public SmallVectorTemplateCommon<T> {
		friend class SmallVectorTemplateCommon<T>;

protected:		protected:
		/// True if it's cheap enough to take parameters by value. Doing so avoids
		/// overhead related to mitigations for reference invalidation.
		static constexpr bool TakesParamByValue = sizeof(T) <= 2 * sizeof(void *);

		/// Either const T& or T, depending on whether it's cheap enough to take
		/// parameters by value.
		using ValueParamT =
		typename std::conditional<TakesParamByValue, T, const T &>::type;

SmallVectorTemplateBase(size_t Size) : SmallVectorTemplateCommon<T>(Size) {}		SmallVectorTemplateBase(size_t Size) : SmallVectorTemplateCommon<T>(Size) {}

// No need to do a destroy loop for POD's.		// No need to do a destroy loop for POD's.
static void destroy_range(T , T ) {}		static void destroy_range(T , T ) {}

/// Move the range [I, E) onto the uninitialized memory		/// Move the range [I, E) onto the uninitialized memory
/// starting with "Dest", constructing elements into it as needed.		/// starting with "Dest", constructing elements into it as needed.
template<typename It1, typename It2>		template<typename It1, typename It2>
Show All 24 Lines	static void uninitialized_copy(
if (I != E)		if (I != E)
memcpy(reinterpret_cast<void >(Dest), I, (E - I) sizeof(T));		memcpy(reinterpret_cast<void >(Dest), I, (E - I) sizeof(T));
}		}

/// Double the size of the allocated memory, guaranteeing space for at		/// Double the size of the allocated memory, guaranteeing space for at
/// least one more element or MinSize if specified.		/// least one more element or MinSize if specified.
void grow(size_t MinSize = 0) { this->grow_pod(MinSize, sizeof(T)); }		void grow(size_t MinSize = 0) { this->grow_pod(MinSize, sizeof(T)); }

		/// Reserve enough space to add one element, and return the updated element
		/// pointer in case it was a reference to the storage.
		const T *reserveForAndGetAddress(const T &Elt) {
		return this->reserveForAndGetAddressImpl(this, Elt);
		}

		/// Reserve enough space to add one element, and return the updated element
		/// pointer in case it was a reference to the storage.
		T *reserveForAndGetAddress(T &Elt) {
		return const_cast<T *>(this->reserveForAndGetAddressImpl(this, Elt));
		}
		dblaikieUnsubmitted Done Reply Inline Actions While I think it's not technically a problem (because the casted-away-const-ness pointer is never dereferenced) - I'd usually implement these the other way around. Have an implementation that uses const pointers only, then the non-const wrapper can cast-to-const, call, cast away const, and it's "clearer" (marginally, perhaps) that it's const correct because only that non-const wrapper has the interesting const handling - rather than the longer distance behavior in this implementation. dblaikie: While I think it's not technically a problem (because the casted-away-const-ness pointer is…
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions Good point; I've updated `...Impl()` to take/return `const`, and both callers now call it directly. dexonsmith: Good point; I've updated `...Impl()` to take/return `const`, and both callers now call it…

		/// Copy \p V or return a reference, depending on \a ValueParamT.
		static ValueParamT forward_value_param(ValueParamT V) { return V; }
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions In the POD (well, trivially move/copy constructible) case it's either `T` (a copy) or `const T&` (a reference). No need for moving since it's trivially constructible. dexonsmith: In the POD (well, trivially move/copy constructible) case it's either `T` (a copy) or `const…

public:		public:
void push_back(const T &Elt) {		void push_back(ValueParamT Elt) {
this->assertSafeToAdd(&Elt);		const T *EltPtr = reserveForAndGetAddress(Elt);
if (LLVM_UNLIKELY(this->size() >= this->capacity()))		memcpy(reinterpret_cast<void *>(this->end()), EltPtr, sizeof(T));
this->grow();
memcpy(reinterpret_cast<void *>(this->end()), &Elt, sizeof(T));
this->set_size(this->size() + 1);		this->set_size(this->size() + 1);
}		}

void pop_back() { this->set_size(this->size() - 1); }		void pop_back() { this->set_size(this->size() - 1); }
};		};

/// This class consists of common code factored out of the SmallVector class to		/// This class consists of common code factored out of the SmallVector class to
/// reduce code duplication based on the SmallVector 'N' template parameter.		/// reduce code duplication based on the SmallVector 'N' template parameter.
template <typename T>		template <typename T>
class SmallVectorImpl : public SmallVectorTemplateBase<T> {		class SmallVectorImpl : public SmallVectorTemplateBase<T> {
using SuperClass = SmallVectorTemplateBase<T>;		using SuperClass = SmallVectorTemplateBase<T>;

public:		public:
using iterator = typename SuperClass::iterator;		using iterator = typename SuperClass::iterator;
using const_iterator = typename SuperClass::const_iterator;		using const_iterator = typename SuperClass::const_iterator;
using reference = typename SuperClass::reference;		using reference = typename SuperClass::reference;
using size_type = typename SuperClass::size_type;		using size_type = typename SuperClass::size_type;

protected:		protected:
		using SmallVectorTemplateBase<T>::TakesParamByValue;
		using ValueParamT = typename SuperClass::ValueParamT;

// Default ctor - Initialize to empty.		// Default ctor - Initialize to empty.
explicit SmallVectorImpl(unsigned N)		explicit SmallVectorImpl(unsigned N)
: SmallVectorTemplateBase<T>(N) {}		: SmallVectorTemplateBase<T>(N) {}

public:		public:
SmallVectorImpl(const SmallVectorImpl &) = delete;		SmallVectorImpl(const SmallVectorImpl &) = delete;

~SmallVectorImpl() {		~SmallVectorImpl() {
▲ Show 20 Lines • Show All 150 Lines • ▼ Show 20 Lines	iterator erase(const_iterator CS, const_iterator CE) {
// Drop the last elts.		// Drop the last elts.
this->destroy_range(I, this->end());		this->destroy_range(I, this->end());
this->set_size(I - this->begin());		this->set_size(I - this->begin());
return(N);		return(N);
}		}

private:		private:
template <class ArgType> iterator insert_one_impl(iterator I, ArgType &&Elt) {		template <class ArgType> iterator insert_one_impl(iterator I, ArgType &&Elt) {
		// Callers ensure that ArgType is derived from T.
		static_assert(
		std::is_same<std::remove_const_t<std::remove_reference_t<ArgType>>,
		T>::value,
		"ArgType must be derived from T!");

if (I == this->end()) { // Important special case for empty vector.		if (I == this->end()) { // Important special case for empty vector.
this->push_back(::std::forward<ArgType>(Elt));		this->push_back(::std::forward<ArgType>(Elt));
return this->end()-1;		return this->end()-1;
}		}

assert(this->isReferenceToStorage(I) && "Insertion iterator is out of bounds.");		assert(this->isReferenceToStorage(I) && "Insertion iterator is out of bounds.");

// Check that adding an element won't invalidate Elt.		// Grow if necessary.
this->assertSafeToAdd(&Elt);		size_t Index = I - this->begin();
		std::remove_reference_t<ArgType> *EltPtr =
if (this->size() >= this->capacity()) {		this->reserveForAndGetAddress(Elt);
		dblaikieUnsubmitted Done Reply Inline Actions Is this correct? If ArgType differs from the container's value type, wouldn't this break? (if you insert something that's convertible to the element type, but isn't the actual element type) I guess insert_one_maybe_copy does SFINAE, etc to ensure this is always called with the value type? So ArgType is only ever some kind of ref qualified T? dblaikie: Is this correct? If ArgType differs from the container's value type, wouldn't this break? (if…
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions Correct. I added a comment and static assertion above to document this. dexonsmith: Correct. I added a comment and static assertion above to document this.
size_t EltNo = I-this->begin();		I = this->begin() + Index;
this->grow();
I = this->begin()+EltNo;
}

::new ((void*) this->end()) T(::std::move(this->back()));		::new ((void*) this->end()) T(::std::move(this->back()));
// Push everything else over.		// Push everything else over.
std::move_backward(I, this->end()-1, this->end());		std::move_backward(I, this->end()-1, this->end());
this->set_size(this->size() + 1);		this->set_size(this->size() + 1);

// If we just moved the element we're inserting, be sure to update		// If we just moved the element we're inserting, be sure to update
// the reference.		// the reference (never happens if TakesParamByValue).
std::remove_reference_t<ArgType> *EltPtr = &Elt;		static_assert(!TakesParamByValue \|\| std::is_same<ArgType, T>::value,
if (this->isReferenceToRange(EltPtr, I, this->end()))		"ArgType must be 'T' when taking by value!");
		if (!TakesParamByValue && this->isReferenceToRange(EltPtr, I, this->end()))
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions I added a static assert here to confirm we have a copy, since the logic relies on that. dexonsmith: I added a static assert here to confirm we have a copy, since the logic relies on that.
++EltPtr;		++EltPtr;

I = ::std::forward<ArgType>(EltPtr);		I = ::std::forward<ArgType>(EltPtr);
return I;		return I;
}		}

public:		public:
iterator insert(iterator I, T &&Elt) {		iterator insert(iterator I, T &&Elt) {
return insert_one_impl(I, std::move(Elt));		return insert_one_impl(I, this->forward_value_param(std::move(Elt)));
}		}

iterator insert(iterator I, const T &Elt) { return insert_one_impl(I, Elt); }		iterator insert(iterator I, const T &Elt) {
		return insert_one_impl(I, this->forward_value_param(Elt));
		}

		dexonsmithAuthorUnsubmitted Done Reply Inline Actions The new forwarding function also means we don't need to indirect through `instert_one_maybe_copy`. dexonsmith: The new forwarding function also means we don't need to indirect through…
iterator insert(iterator I, size_type NumToInsert, const T &Elt) {		iterator insert(iterator I, size_type NumToInsert, const T &Elt) {
// Convert iterator to elt# to avoid invalidating iterator when we reserve()		// Convert iterator to elt# to avoid invalidating iterator when we reserve()
size_t InsertElt = I - this->begin();		size_t InsertElt = I - this->begin();

if (I == this->end()) { // Important special case for empty vector.		if (I == this->end()) { // Important special case for empty vector.
append(NumToInsert, Elt);		append(NumToInsert, Elt);
return this->begin()+InsertElt;		return this->begin()+InsertElt;
}		}
▲ Show 20 Lines • Show All 481 Lines • Show Last 20 Lines

llvm/unittests/ADT/SmallVectorTest.cpp

Show First 20 Lines • Show All 47 Lines • ▼ Show 20 Lines	public:
Constructable(const Constructable & src) : constructed(true) {		Constructable(const Constructable & src) : constructed(true) {
value = src.value;		value = src.value;
++numConstructorCalls;		++numConstructorCalls;
++numCopyConstructorCalls;		++numCopyConstructorCalls;
}		}

Constructable(Constructable && src) : constructed(true) {		Constructable(Constructable && src) : constructed(true) {
value = src.value;		value = src.value;
		src.value = 0;
++numConstructorCalls;		++numConstructorCalls;
++numMoveConstructorCalls;		++numMoveConstructorCalls;
}		}

~Constructable() {		~Constructable() {
EXPECT_TRUE(constructed);		EXPECT_TRUE(constructed);
++numDestructorCalls;		++numDestructorCalls;
constructed = false;		constructed = false;
}		}

Constructable & operator=(const Constructable & src) {		Constructable & operator=(const Constructable & src) {
EXPECT_TRUE(constructed);		EXPECT_TRUE(constructed);
value = src.value;		value = src.value;
++numAssignmentCalls;		++numAssignmentCalls;
++numCopyAssignmentCalls;		++numCopyAssignmentCalls;
return *this;		return *this;
}		}

Constructable & operator=(Constructable && src) {		Constructable & operator=(Constructable && src) {
EXPECT_TRUE(constructed);		EXPECT_TRUE(constructed);
value = src.value;		value = src.value;
		src.value = 0;
++numAssignmentCalls;		++numAssignmentCalls;
++numMoveAssignmentCalls;		++numMoveAssignmentCalls;
return *this;		return *this;
}		}

int getValue() const {		int getValue() const {
return abs(value);		return abs(value);
}		}
▲ Show 20 Lines • Show All 966 Lines • ▼ Show 20 Lines	protected:

VectorT V;		VectorT V;

template <typename T, unsigned N>		template <typename T, unsigned N>
static unsigned NumBuiltinElts(const SmallVector<T, N> &) {		static unsigned NumBuiltinElts(const SmallVector<T, N> &) {
return N;		return N;
}		}

		template <class T> static bool isValueType() {
		return std::is_same<T, typename VectorT::value_type>::value;
		}

void SetUp() override {		void SetUp() override {
SmallVectorTestBase::SetUp();		SmallVectorTestBase::SetUp();

// Fill up the small size so that insertions move the elements.		// Fill up the small size so that insertions move the elements.
V.append({0, 0, 0});		for (int I = 0, E = NumBuiltinElts(V); I != E; ++I)
		V.emplace_back(I + 1);
}		}
};		};

// Test one type that's trivially copyable (int) and one that isn't		// Test one type that's trivially copyable (int) and one that isn't
// (Constructable) since reference invalidation may be fixed differently for		// (Constructable) since reference invalidation may be fixed differently for
// each.		// each.
using SmallVectorReferenceInvalidationTestTypes =		using SmallVectorReferenceInvalidationTestTypes =
::testing::Types<SmallVector<int, 3>, SmallVector<Constructable, 3>>;		::testing::Types<SmallVector<int, 3>, SmallVector<Constructable, 3>>;

TYPED_TEST_CASE(SmallVectorReferenceInvalidationTest,		TYPED_TEST_CASE(SmallVectorReferenceInvalidationTest,
SmallVectorReferenceInvalidationTestTypes);		SmallVectorReferenceInvalidationTestTypes);

TYPED_TEST(SmallVectorReferenceInvalidationTest, PushBack) {		TYPED_TEST(SmallVectorReferenceInvalidationTest, PushBack) {
		// Note: setup adds [1, 2, ...] to V until it's at capacity in small mode.
auto &V = this->V;		auto &V = this->V;
(void)V;		int N = this->NumBuiltinElts(V);
#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST
EXPECT_DEATH(V.push_back(V.back()), this->AssertionMessage);		// Push back a reference to last element when growing from small storage.
#endif		V.push_back(V.back());
		EXPECT_EQ(N, V.back());
		dblaikieUnsubmitted Done Reply Inline Actions I'm not following what this part of the test does - could you walk me through it? dblaikie: I'm not following what this part of the test does - could you walk me through it?
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions I've rewritten it (I couldn't fully make sense of it either, coming back to it). It now tests: The correct value gets copied when pushing back with a reference, growing from small storage. The correct value gets copied when pushing back with a reference, growing from large storage. The value is actually copied, not moved (the difference is only observable for Constructable). See `PushBackMoved` below, where a `0` is left behind. This seems potentially worth testing in case a `std::forward` is missed somewhere, but i'm open to dropping that part if you think it's already covered well enough above. dexonsmith: I've rewritten it (I couldn't fully make sense of it either, coming back to it). It now tests…
		dblaikieUnsubmitted Not Done Reply Inline Actions Looks good, don't have strong feelings about the last test case - take it or leave it as you see fit dblaikie: Looks good, don't have strong feelings about the last test case - take it or leave it as you…

		// Check that the old value is still there (not moved away).
		EXPECT_EQ(N, V[V.size() - 2]);

		// Fill storage again.
		V.back() = V.size();
		while (V.size() < V.capacity())
		V.push_back(V.size() + 1);

		// Push back a reference to last element when growing from large storage.
		V.push_back(V.back());
		EXPECT_EQ(int(V.size()) - 1, V.back());
}		}

TYPED_TEST(SmallVectorReferenceInvalidationTest, PushBackMoved) {		TYPED_TEST(SmallVectorReferenceInvalidationTest, PushBackMoved) {
		// Note: setup adds [1, 2, ...] to V until it's at capacity in small mode.
auto &V = this->V;		auto &V = this->V;
(void)V;		int N = this->NumBuiltinElts(V);
#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST
EXPECT_DEATH(V.push_back(std::move(V.back())), this->AssertionMessage);		// Push back a reference to last element when growing from small storage.
#endif		V.push_back(std::move(V.back()));
		EXPECT_EQ(N, V.back());
		if (this->template isValueType<Constructable>()) {
		// Check that the value was moved (not copied).
		EXPECT_EQ(0, V[V.size() - 2]);
		}

		// Fill storage again.
		V.back() = V.size();
		while (V.size() < V.capacity())
		V.push_back(V.size() + 1);

		// Push back a reference to last element when growing from large storage.
		V.push_back(std::move(V.back()));

		// Check the values.
		EXPECT_EQ(int(V.size()) - 1, V.back());
		if (this->template isValueType<Constructable>()) {
		// Check the value got moved out.
		EXPECT_EQ(0, V[V.size() - 2]);
		}
}		}

TYPED_TEST(SmallVectorReferenceInvalidationTest, Resize) {		TYPED_TEST(SmallVectorReferenceInvalidationTest, Resize) {
auto &V = this->V;		auto &V = this->V;
(void)V;		(void)V;
int N = this->NumBuiltinElts(V);		int N = this->NumBuiltinElts(V);
#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST		#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST
EXPECT_DEATH(V.resize(N + 1, V.back()), this->AssertionMessage);		EXPECT_DEATH(V.resize(N + 1, V.back()), this->AssertionMessage);
▲ Show 20 Lines • Show All 47 Lines • ▼ Show 20 Lines	#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST
EXPECT_DEATH(V.assign(V.begin(), V.end()), this->AssertionMessage);		EXPECT_DEATH(V.assign(V.begin(), V.end()), this->AssertionMessage);
EXPECT_DEATH(V.assign(V.begin(), V.end() - 1), this->AssertionMessage);		EXPECT_DEATH(V.assign(V.begin(), V.end() - 1), this->AssertionMessage);
#endif		#endif
V.assign(V.begin(), V.begin());		V.assign(V.begin(), V.begin());
EXPECT_TRUE(V.empty());		EXPECT_TRUE(V.empty());
}		}

TYPED_TEST(SmallVectorReferenceInvalidationTest, Insert) {		TYPED_TEST(SmallVectorReferenceInvalidationTest, Insert) {
		// Note: setup adds [1, 2, ...] to V until it's at capacity in small mode.
auto &V = this->V;		auto &V = this->V;
(void)V;		(void)V;
#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST
EXPECT_DEATH(V.insert(V.begin(), V.back()), this->AssertionMessage);		// Insert a reference to the back (not at end() or else insert delegates to
#endif		// push_back()), growing out of small mode. Confirm the value was copied out
		// (moving out Constructable sets it to 0).
		V.insert(V.begin(), V.back());
		EXPECT_EQ(int(V.size() - 1), V.front());
		EXPECT_EQ(int(V.size() - 1), V.back());

		// Fill up the vector again.
		while (V.size() < V.capacity())
		V.push_back(V.size() + 1);

		// Grow again from large storage to large storage.
		dblaikieUnsubmitted Done Reply Inline Actions I'm not following how this validates that a copy was taken (I'd have thought it'd be unobservable whether a copy was made or the pointer-index-pointer dance was done) - could you walk me through that in a bit more detail? dblaikie: I'm not following how this validates that a copy was taken (I'd have thought it'd be…
		dexonsmithAuthorUnsubmitted Done Reply Inline Actions I've rewritten this in the same way as the `push_back` tests. dexonsmith: I've rewritten this in the same way as the `push_back` tests.
		V.insert(V.begin(), V.back());
		EXPECT_EQ(int(V.size() - 1), V.front());
		EXPECT_EQ(int(V.size() - 1), V.back());
}		}

TYPED_TEST(SmallVectorReferenceInvalidationTest, InsertMoved) {		TYPED_TEST(SmallVectorReferenceInvalidationTest, InsertMoved) {
		// Note: setup adds [1, 2, ...] to V until it's at capacity in small mode.
auto &V = this->V;		auto &V = this->V;
(void)V;		(void)V;
#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST
EXPECT_DEATH(V.insert(V.begin(), std::move(V.back())),		// Insert a reference to the back (not at end() or else insert delegates to
this->AssertionMessage);		// push_back()), growing out of small mode. Confirm the value was copied out
#endif		// (moving out Constructable sets it to 0).
		V.insert(V.begin(), std::move(V.back()));
		EXPECT_EQ(int(V.size() - 1), V.front());
		if (this->template isValueType<Constructable>()) {
		// Check the value got moved out.
		EXPECT_EQ(0, V.back());
		}

		// Fill up the vector again.
		while (V.size() < V.capacity())
		V.push_back(V.size() + 1);

		// Grow again from large storage to large storage.
		V.insert(V.begin(), std::move(V.back()));
		EXPECT_EQ(int(V.size() - 1), V.front());
		if (this->template isValueType<Constructable>()) {
		// Check the value got moved out.
		EXPECT_EQ(0, V.back());
		}
}		}

TYPED_TEST(SmallVectorReferenceInvalidationTest, InsertN) {		TYPED_TEST(SmallVectorReferenceInvalidationTest, InsertN) {
auto &V = this->V;		auto &V = this->V;
(void)V;		(void)V;
#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST		#if !defined(NDEBUG) && GTEST_HAS_DEATH_TEST
EXPECT_DEATH(V.insert(V.begin(), 2, V.back()), this->AssertionMessage);		EXPECT_DEATH(V.insert(V.begin(), 2, V.back()), this->AssertionMessage);
#endif		#endif
▲ Show 20 Lines • Show All 69 Lines • Show Last 20 Lines