[PATCH] D36826: Give guidance on report_fatal_error in CodingStandards.rst and ProgrammersManual.rst
Alex Bradbury via Phabricator via llvm-commits
llvm-commits at lists.llvm.org
Thu Aug 17 05:37:33 PDT 2017
asb created this revision.
Herald added subscribers: aheejin, tpr, dschuff, jfb.
The current ProgrammersManual.rst document has a lot of well-written documentation on error handling thanks to @lhames. It suggests errors can be split cleanly into "programmatic" and "recoverable" errors. However, the reality in current LLVM seems to be there are a number of cases where a non-programmatic error is not easily recoverable. Therefore, add a note to indicate the existence of `report_fatal_error` for these cases. I've also added a reminder to CodingStandards.rst in the section on assertions, to indicate that `llvm_unreachable` and assertions should not be relied upon to report errors triggered by user input.
Thanks to @majnemer for pointout out my `llvm_unreachable` abuse in a number of my RISC-V patches.
The ProgrammersManual is also silent on the use of LLVMContext::diagnose, which is used in BPF+WebAssembly+AMDGPU to report some errors during instruction selection. I don't address that in this patch, as it's not quite clear how to fit in to the current error handling story.
https://reviews.llvm.org/D36826
Files:
docs/CodingStandards.rst
docs/ProgrammersManual.rst
Index: docs/ProgrammersManual.rst
===================================================================
--- docs/ProgrammersManual.rst
+++ docs/ProgrammersManual.rst
@@ -441,6 +441,14 @@
as simple as reporting the issue to the user, or it may involve attempts at
recovery.
+.. note::
+
+ Ideally, the error handling approach described in this section would be
+ used throughout LLVM. However, this is not yet the case. For
+ non-programmatic errors where the ``Error`` scheme cannot easily be
+ applied, ``report_fatal_error`` should be used to call any installed error
+ handler and then terminate the program.
+
Recoverable errors are modeled using LLVM's ``Error`` scheme. This scheme
represents errors using function return values, similar to classic C integer
error codes, or C++'s ``std::error_code``. However, the ``Error`` class is
Index: docs/CodingStandards.rst
===================================================================
--- docs/CodingStandards.rst
+++ docs/CodingStandards.rst
@@ -1232,6 +1232,11 @@
code for this branch. If the compiler does not support this, it will fall back
to the "abort" implementation.
+Neither assertions or ``llvm_unreachable`` will abort the program on a release
+build. If the error condition can be triggered by user input, then the
+recoverable error mechanism described in :doc:`ProgrammersManual` or
+``report_fatal_error`` should be used instead.
+
Another issue is that values used only by assertions will produce an "unused
value" warning when assertions are disabled. For example, this code will warn:
-------------- next part --------------
A non-text attachment was scrubbed...
Name: D36826.111504.patch
Type: text/x-patch
Size: 1583 bytes
Desc: not available
URL: <http://lists.llvm.org/pipermail/llvm-commits/attachments/20170817/d89fc7c3/attachment.bin>
More information about the llvm-commits
mailing list