r176333 - Add one more sanity check in SourceManager::getFileIDLoaded().

Argyrios Kyrtzidis akyrtzi at gmail.com
Fri Mar 1 16:26:50 PST 2013


On Mar 1, 2013, at 4:16 PM, David Blaikie <dblaikie at gmail.com> wrote:

> On Fri, Mar 1, 2013 at 3:55 PM, Argyrios Kyrtzidis <akyrtzi at gmail.com> wrote:
>> On Mar 1, 2013, at 3:30 PM, David Blaikie <dblaikie at gmail.com> wrote:
>> 
>>> On Fri, Mar 1, 2013 at 3:11 PM, Argyrios Kyrtzidis <akyrtzi at gmail.com> wrote:
>>>> On Mar 1, 2013, at 10:03 AM, David Blaikie <dblaikie at gmail.com> wrote:
>>>> 
>>>>> On Fri, Mar 1, 2013 at 9:10 AM, Jordan Rose <jordan_rose at apple.com> wrote:
>>>>>> 
>>>>>> On Feb 28, 2013, at 19:43 , Argyrios Kyrtzidis <akyrtzi at gmail.com> wrote:
>>>>>> 
>>>>>>> Author: akirtzidis
>>>>>>> Date: Thu Feb 28 21:43:33 2013
>>>>>>> New Revision: 176333
>>>>>>> 
>>>>>>> URL: http://llvm.org/viewvc/llvm-project?rev=176333&view=rev
>>>>>>> Log:
>>>>>>> Add one more sanity check in SourceManager::getFileIDLoaded().
>>>>>>> 
>>>>>>> Modified:
>>>>>>> cfe/trunk/lib/Basic/SourceManager.cpp
>>>>>>> 
>>>>>>> Modified: cfe/trunk/lib/Basic/SourceManager.cpp
>>>>>>> URL: http://llvm.org/viewvc/llvm-project/cfe/trunk/lib/Basic/SourceManager.cpp?rev=176333&r1=176332&r2=176333&view=diff
>>>>>>> ==============================================================================
>>>>>>> --- cfe/trunk/lib/Basic/SourceManager.cpp (original)
>>>>>>> +++ cfe/trunk/lib/Basic/SourceManager.cpp Thu Feb 28 21:43:33 2013
>>>>>>> @@ -863,6 +863,11 @@ FileID SourceManager::getFileIDLoaded(un
>>>>>>>    return Res;
>>>>>>>  }
>>>>>>> 
>>>>>>> +    // Sanity checking, otherwise a bug may lead to hanging in release build.
>>>>>>> +    if (LessIndex == MiddleIndex) {
>>>>>>> +      assert(0 && "binary search missed the entry");
>>>>>> 
>>>>>> llvm_unreachable?
>>>>> 
>>>>> Or actually just remove the if/return/etc:
>>>>> 
>>>>> assert(LessIndex == MiddleIndex)
>>>>> 
>>>>> We really don't make a habit of writing asserts with fallbacks "just in case".
>>>> 
>>>> ...except when seeing actual infinite loops occurring, in which case you defend against it; particularly when the infinite loops occur in a process using libclang.
>>> 
>>> Are we seeing multiple bugs of this kind? (eg: we fixed a bug that hit
>>> an inf loop due to this case, then later on we hit another, different
>>> bug that exhibited as an infinite loop here again) If it's just one so
>>> far: I assume we /fix/ the bug & move on, no?
>> 
>> This is not so easy, there is no reproducible test case that you can just "fix & move on".
>> 
>> For clang, the compiler executable, things are a bit easier in some aspects because generally people wait for building to finish before modifying any source file (and if something bad happens at one clang execution because you modified a file during building, nobody would really care).
> 
> I'm concerned that this kind of development approach doesn't actually
> make code more robust if we're designing the program to continue down
> other untested code paths (OK - so it doesn't infloop here, it does
> something else unexpected later). Are clients of this API intending to
> account for invalid FileIDs being returned, for example.

Yes, they should account for invalid FileIDs.

> 
>> But libclang is meant to be used in an IDE where you are constantly editing files, thus files can change at _any_ time (e.g. any point while you are trying to use info from a PCH). We have to be robust and defensive to make sure we recover gracefully at all times.
> 
> I agree but don't see how this relates to the issue above. If we need
> to be robust to such changes then it should be intended behavior in
> Clang and we shouldn't have the assert.

The assertion is to hopefully catch & fix & move on a case where the invariant breaks, while using an assertions-enabled build.
The if - return here is to avoid hanging the whole process if the invariant breaks, something that provides more pain than benefit, particularly to the user of the process.

> 
>>>>> (unreachable inside the 'if' would have the same 'problem' as removing
>>>>> the if/adding the obvious assert - in release builds we'd still
>>>>> optimize away the whole block & "a bug may lead to hanging in release
>>>>> build")
>>>>> 
>>>>>>> +      return FileID();
>>>>>>> +    }
>>>>>>>  LessIndex = MiddleIndex;
>>>>>>> }
>>>>>>> }
>>>>>>> 
>>>>>>> 
>>>>>>> _______________________________________________
>>>>>>> cfe-commits mailing list
>>>>>>> cfe-commits at cs.uiuc.edu
>>>>>>> http://lists.cs.uiuc.edu/mailman/listinfo/cfe-commits
>>>>>> 
>>>>>> _______________________________________________
>>>>>> cfe-commits mailing list
>>>>>> cfe-commits at cs.uiuc.edu
>>>>>> http://lists.cs.uiuc.edu/mailman/listinfo/cfe-commits
>>>> 
>> 





More information about the cfe-commits mailing list