Fix AllocatedValue for cases when constructor or cling::printValue has thrown/failed.

marsupial · marsupial · commit c7f5024f1e43 · 2017-06-27T20:39:39.000-04:00
Previous implementation was both non-conforming and could easily lead to a crash.
By delivering a memory as a char buffer, and allowing the client to write into the -1 slot,
ValuePrinterSynthesizer can mark that construction has succeeded and the destructor can be called.

Additionally this change hides most implementation details of AllocatedValue from cling::Value.
diff --git a/lib/Interpreter/Value.cpp b/lib/Interpreter/Value.cpp
@@ -27,10 +27,9 @@
 
 #include "llvm/IR/GlobalValue.h"
 #include "llvm/IR/Module.h"
+#include "llvm/Support/Host.h"
 #include "llvm/Support/raw_os_ostream.h"
 
-#include <stddef.h> // offsetof
-
 namespace {
 
   ///\brief The allocation starts with this layout; it is followed by the
@@ -53,51 +52,78 @@ namespace {
     size_t m_NElements;
 
     ///\brief The reference count - once 0, this object will be deallocated.
-    size_t m_RefCnt;
+    /// Hopefully 2^55 - 1 references should be enough as the last byte is
+    /// used for flag storage.
+    enum { SizeBytes = sizeof(size_t), ConstructedByte = SizeBytes - 1 };
+    union {
+      size_t m_Count;
+      char   m_Bytes[SizeBytes];
+    };
+
+    size_t UpdateRefCount(int Amount) {
+      // Bit shift the bytes used in m_Bytes for representing an integer
+      // respecting endian-ness and which of those bytes are significant.
+      assert((Amount == 1 || Amount == -1) && "Invalid amount");
+      union { size_t m_Count; char m_Bytes[SizeBytes]; } RC = { 0 };
+      const size_t NBytes = SizeBytes - sizeof(char);
+      const size_t Endian = llvm::sys::IsBigEndianHost;
+      ::memcpy(&RC.m_Bytes[Endian], &m_Bytes[0], NBytes);
+      RC.m_Count += Amount;
+      ::memcpy(&m_Bytes[0], &RC.m_Bytes[Endian], NBytes);
+      return RC.m_Count;
+    }
+
+    static AllocatedValue* FromPtr(void* Ptr) {
+      return reinterpret_cast<AllocatedValue*>(reinterpret_cast<char*>(Ptr) -
+                                               sizeof(AllocatedValue));
+    }
 
-  public:
     ///\brief Initialize the storage management part of the allocated object.
     ///  The allocator is referencing it, thus initialize m_RefCnt with 1.
     ///\param [in] dtorFunc - the function to be called before deallocation.
-    AllocatedValue(void* dtorFunc, size_t allocSize, size_t nElements) :
-      m_DtorFunc(cling::utils::VoidToFunctionPtr<DtorFunc_t>(dtorFunc)),
-      m_AllocSize(allocSize), m_NElements(nElements), m_RefCnt(1)
-    {}
-
-    static constexpr unsigned getPayloadOffset() {
-      static_assert(std::is_standard_layout<AllocatedValue>::value,
-                    "Cannot use offsetof");
-      static_assert(((offsetof(AllocatedValue, m_RefCnt) + sizeof(m_RefCnt)) %
-                            sizeof(size_t)) == 0,
-                    "Buffer may not be machine aligned");
-      return offsetof(AllocatedValue, m_RefCnt) + sizeof(m_RefCnt);
+    AllocatedValue(size_t Size, size_t NElem, DtorFunc_t Dtor) :
+      m_DtorFunc(Dtor), m_AllocSize(Size), m_NElements(NElem) {
+      m_Count = 0;
+      UpdateRefCount(1);
     }
 
-    char* getPayload() {
-      return reinterpret_cast<char*>(&m_RefCnt) + sizeof(m_RefCnt);
-    }
+  public:
+    ///\brief Create an AllocatedValue whose lifetime is reference counted.
+    /// \returns The address of the writeable client data.
+    static void* Create(size_t Size, size_t NElem, DtorFunc_t Dtor) {
+      char* Alloc = new char[sizeof(AllocatedValue) + Size];
+      AllocatedValue* AV = new (Alloc) AllocatedValue(Size, NElem, Dtor);
+
+      static_assert(std::is_standard_layout<AllocatedValue>::value, "padding");
+      static_assert(sizeof(m_Count) == sizeof(m_Bytes), "union padding");
+      static_assert(((offsetof(AllocatedValue, m_Count) + sizeof(m_Count)) %
+                            SizeBytes) == 0,
+                    "Buffer may not be machine aligned");
+      assert(&Alloc[sizeof(AllocatedValue) - 1] == &AV->m_Bytes[SizeBytes - 1]
+             && "Padded AllocatedValue");
 
-    static AllocatedValue* getFromPayload(void* payload) {
-      return
-        reinterpret_cast<AllocatedValue*>((char*)payload - getPayloadOffset());
+      // Give back the first client writable byte.
+      return AV->m_Bytes + SizeBytes;
     }
 
-    void Retain() { ++m_RefCnt; }
+    static void Retain(void* Ptr) {
+      FromPtr(Ptr)->UpdateRefCount(1);
+    }
 
     ///\brief This object must be allocated as a char array. Deallocate it as
     ///   such.
-    void Release() {
-      assert (m_RefCnt > 0 && "Reference count is already zero.");
-      if (--m_RefCnt == 0) {
-        if (m_DtorFunc) {
-          assert(m_NElements && "No elements!");
-          char* Payload = getPayload();
-          const auto Skip = m_AllocSize / m_NElements;
-          while (m_NElements-- != 0)
-            (*m_DtorFunc)(Payload + m_NElements * Skip);
+    static void Release(void* Ptr) {
+      AllocatedValue* AV = FromPtr(Ptr);
+      if (AV->UpdateRefCount(-1) == 0) {
+        if (AV->m_DtorFunc && AV->m_Bytes[ConstructedByte]) {
+          assert(AV->m_NElements && "No elements!");
+          char* Payload = reinterpret_cast<char*>(Ptr);
+          const auto Skip = AV->m_AllocSize / AV->m_NElements;
+          while (AV->m_NElements-- != 0)
+            (*AV->m_DtorFunc)(Payload + AV->m_NElements * Skip);
         }
         this->~AllocatedValue();
-        delete [] (char*)this;
+        delete [] reinterpret_cast<char*>(AV);
       }
     }
   };
@@ -109,7 +135,7 @@ namespace cling {
     m_Storage(other.m_Storage), m_StorageType(other.m_StorageType),
     m_Type(other.m_Type), m_Interpreter(other.m_Interpreter) {
     if (other.needsManagedAllocation())
-      AllocatedValue::getFromPayload(m_Storage.m_Ptr)->Retain();
+      AllocatedValue::Retain(m_Storage.m_Ptr);
   }
 
   Value::Value(clang::QualType clangTy, Interpreter& Interp):
@@ -123,22 +149,22 @@ namespace cling {
   Value& Value::operator =(const Value& other) {
     // Release old value.
     if (needsManagedAllocation())
-      AllocatedValue::getFromPayload(m_Storage.m_Ptr)->Release();
+      AllocatedValue::Release(m_Storage.m_Ptr);
 
     // Retain new one.
     m_Type = other.m_Type;
     m_Storage = other.m_Storage;
     m_StorageType = other.m_StorageType;
     m_Interpreter = other.m_Interpreter;
     if (needsManagedAllocation())
-      AllocatedValue::getFromPayload(m_Storage.m_Ptr)->Retain();
+      AllocatedValue::Retain(m_Storage.m_Ptr);
     return *this;
   }
 
   Value& Value::operator =(Value&& other) {
     // Release old value.
     if (needsManagedAllocation())
-      AllocatedValue::getFromPayload(m_Storage.m_Ptr)->Release();
+      AllocatedValue::Release(m_Storage.m_Ptr);
 
     // Move new one.
     m_Type = other.m_Type;
@@ -153,7 +179,7 @@ namespace cling {
 
   Value::~Value() {
     if (needsManagedAllocation())
-      AllocatedValue::getFromPayload(m_Storage.m_Ptr)->Release();
+      AllocatedValue::Release(m_Storage.m_Ptr);
   }
 
   clang::QualType Value::getType() const {
@@ -211,22 +237,24 @@ namespace cling {
 
   void Value::ManagedAllocate() {
     assert(needsManagedAllocation() && "Does not need managed allocation");
-    void* dtorFunc = 0;
-    clang::QualType DtorType = getType();
+    const clang::QualType Ty = getType();
+    clang::QualType DtorTy = Ty;
+
     // For arrays we destruct the elements.
-    if (const clang::ConstantArrayType* ArrTy
-        = llvm::dyn_cast<clang::ConstantArrayType>(DtorType.getTypePtr())) {
-      DtorType = ArrTy->getElementType();
+    if (const clang::ConstantArrayType* ArrTy =
+            llvm::dyn_cast<clang::ConstantArrayType>(Ty.getTypePtr())) {
+      DtorTy = ArrTy->getElementType();
     }
-    if (const clang::RecordType* RTy = DtorType->getAs<clang::RecordType>())
-      dtorFunc = m_Interpreter->compileDtorCallFor(RTy->getDecl());
-
-    const clang::ASTContext& ctx = getASTContext();
-    const auto payloadSize = ctx.getTypeSizeInChars(getType()).getQuantity();
-    char* alloc = new char[AllocatedValue::getPayloadOffset() + payloadSize];
-    AllocatedValue* allocVal = new (alloc) AllocatedValue(dtorFunc, payloadSize,
-                                                          GetNumberOfElements());
-    m_Storage.m_Ptr = allocVal->getPayload();
+
+    AllocatedValue::DtorFunc_t DtorFunc = nullptr;
+    if (const clang::RecordType* RTy = DtorTy->getAs<clang::RecordType>()) {
+      DtorFunc = cling::utils::VoidToFunctionPtr<AllocatedValue::DtorFunc_t>(
+          m_Interpreter->compileDtorCallFor(RTy->getDecl()));
+    }
+
+    m_Storage.m_Ptr = AllocatedValue::Create(
+        getASTContext().getTypeSizeInChars(Ty).getQuantity(),
+        GetNumberOfElements(), DtorFunc);
   }
 
   void Value::AssertOnUnsupportedTypeCast() const {
diff --git a/test/Prompt/ValuePrinter/Error.C b/test/Prompt/ValuePrinter/Error.C
@@ -0,0 +1,125 @@
+//------------------------------------------------------------------------------
+// CLING - the C++ LLVM-based InterpreterG :)
+//
+// This file is dual-licensed: you can choose to license it under the University
+// of Illinois Open Source License or the GNU Lesser General Public License. See
+// LICENSE.TXT for details.
+//------------------------------------------------------------------------------
+
+// RUN: cat %s | %cling -Xclang -verify 2>&1 | FileCheck %s
+
+#include "cling/Interpreter/Interpreter.h"
+#include "cling/Interpreter/Value.h"
+#include <string>
+#include <stdexcept>
+#include <stdio.h>
+
+class Thrower {
+  int m_Private = 0;
+public:
+  Thrower(int I = 1) : m_Private(I) {
+    if (I) throw std::runtime_error("Thrower");
+  }
+  ~Thrower() { printf("~Thrower-%d\n", m_Private); }
+};
+
+void barrier() {
+  static int N = 0;
+  printf("%d -------------\n", N++);
+}
+
+namespace cling {
+  std::string printValue(const Thrower* T) {
+    throw std::runtime_error("cling::printValue");
+    return "";
+  }
+}
+
+barrier();
+//      CHECK: 0 -------------
+
+
+// Un-named, so it's not a module static which would trigger std::terminate.
+Thrower()
+// CHECK-NEXT: >>> Caught a std::exception: 'Thrower'.
+//  CHECK-NOT: ~Thrower-1
+
+barrier();
+// CHECK-NEXT: 1 -------------
+
+Thrower& fstatic() {
+  static Thrower sThrower;
+  return sThrower;
+}
+fstatic()
+// CHECK-NEXT: >>> Caught a std::exception: 'Thrower'.
+//  CHECK-NOT: ~Thrower-1
+
+barrier();
+// CHECK-NEXT: 2 -------------
+
+// Must be -new-, throwing from a constructor of a static calls std::terminate!
+new Thrower
+// CHECK-NEXT: >>> Caught a std::exception: 'Thrower'.
+//  CHECK-NOT: ~Thrower-1
+
+barrier();
+// CHECK-NEXT: 3 -------------
+
+cling::Value V;
+gCling->evaluate("Thrower T1(1)", V);
+// CHECK-NEXT: >>> Caught a std::exception: 'Thrower'.
+V = cling::Value();
+//  CHECK-NOT: ~Thrower-1
+
+barrier();
+// CHECK-NEXT: 4 -------------
+
+gCling->evaluate("Thrower()", V);
+// CHECK-NEXT: >>> Caught a std::exception: 'Thrower'.
+V = cling::Value();
+//  CHECK-NOT: ~Thrower-1
+
+barrier();
+// CHECK-NEXT: 5 -------------
+
+
+gCling->evaluate("Thrower T1(1)", V);
+// CHECK-NEXT: >>> Caught a std::exception: 'Thrower'.
+V = cling::Value();
+//  CHECK-NOT: ~Thrower-1
+
+barrier();
+// CHECK-NEXT: 6 -------------
+
+
+// Check throwing from cling::printValue doesn't crash.
+Thrower T0(0)
+// CHECK-NEXT: >>> Caught a std::exception: 'cling::printValue'.
+
+barrier();
+// CHECK-NEXT: 7 -------------
+
+gCling->echo("Thrower T0a(0)");
+// CHECK-NEXT: ~Thrower-0
+// CHECK-NEXT: >>> Caught a std::exception: 'cling::printValue'.
+
+
+barrier();
+// CHECK-NEXT: 8 -------------
+
+gCling->echo("Thrower(0)");
+// CHECK-NEXT: ~Thrower-0
+// CHECK-NEXT: >>> Caught a std::exception: 'cling::printValue'.
+
+barrier();
+// CHECK-NEXT: 9 -------------
+
+
+// T0 is a valid object and destruction should occur when out of scope.
+//  CHECK-NOT: ~Thrower-1
+// CHECK-NEXT: ~Thrower-0
+//  CHECK-NOT: ~Thrower-1
+
+// expected-no-diagnostics
+.q
