Avoid accessing unset optional, workaround for #100095 #100408
Conversation
This is not a proper fix, but enables Clang to continue working with more libc++ runtime checks enabled.
llvmbot
added
clang
|
@llvm/pr-subscribers-clang Author: Alexander Kornienko (alexfh) ChangesThis is not a proper fix, but enables Clang to continue working with more libc++ runtime checks enabled. Full diff: https://github.com/llvm/llvm-project/pull/100408.diff 1 Files Affected:
diff --git a/clang/lib/Sema/SemaTemplateDeduction.cpp b/clang/lib/Sema/SemaTemplateDeduction.cpp
index b7b857ebf804b..db7f233dcef73 100644
--- a/clang/lib/Sema/SemaTemplateDeduction.cpp
+++ b/clang/lib/Sema/SemaTemplateDeduction.cpp
@@ -951,9 +951,11 @@ class PackDeductionScope {
// Skip over the pack elements that were expanded into separate arguments.
// If we partially expanded, this is the number of partial arguments.
+ // FIXME: `&& FixedNumExpansions` is a workaround for UB described in
+ // https://github.com/llvm/llvm-project/issues/100095
if (IsPartiallyExpanded)
PackElements += NumPartialPackArgs;
- else if (IsExpanded)
+ else if (IsExpanded && FixedNumExpansions)
PackElements += *FixedNumExpansions;
for (auto &Pack : Packs) {
|
There was a problem hiding this comment.
Can you please add a reference to #100095 in the summary so folks just reading the git log have more context w/o going to the commit itself.
I would like to see a more flushed out long-term plan for fixing this properly but I think it makes sense.
I've added more details to the commit message and another reference to #100095 (one was already in the short summary). |
|
I don't believe we currently have any code coverage at all for the line affected. So with this change, which we don't fully understand, we could be breaking currently working code, and we could not even be fixing the known broken cases, as there could be further UB down the line. I wouldn't object this patch, if we don't have other means of figuring this out soon. But in that case, I'd like to see at least a test added to this PR. |
See #100556. The test would fail with assertions enabled (thus, marked XFAIL: asserts), and when compiled against hardened libc++ (e.g. libc++ built with |
Could we merge the test into this change? I think we could then land this as a temporary workaround indeed. It seems that having this is strictly better than what we have today (adds real code where it fails, fails with an assertion when they are enabled, produces some deterministic, even if incorrect, result, rather than having a UB). |
The test is set to XFAIL with assertions enabled.
I've added the test to the change and verified it:
Unfortunately, we don't have a buildbot with LLVM tests built against libc++ + hardening, but we're going to test it routinely internally at Google. |
This patch avoids accessing an unset
std::optional<>, which is a part of the manifestation of #100095. The other part is an assertion failure that is not addressed here. This is not a proper fix, but enables Clang to continue working with more libc++ runtime checks enabled (specifically,-D_LIBCPP_HARDENING_MODE=_LIBCPP_HARDENING_MODE_FAST, which checks access to unset optionals among other things). A proper fix is being discussed on #100095.