[SandboxVectorizer][NFCI] Fix use of possibly-uninitialized scalar. #122201
Conversation
The `EraseCallbackID` field is not always initialized in the ctor for SeedCollector, if not, it will be used uninitialized by its dtor. This could potentially lead to the erasure of a random callback, leading to a bug. Fixed by initializing to a purposefully invalid ID (`std::numeric_limits<ContextID>::max()`)
|
@llvm/pr-subscribers-llvm-transforms @llvm/pr-subscribers-vectorizers Author: Tyler Lanphear (tylanphear) ChangesThe Fixed by initializing to a purposefully invalid ID ( Full diff: https://github.com/llvm/llvm-project/pull/122201.diff 1 Files Affected:
diff --git a/llvm/include/llvm/Transforms/Vectorize/SandboxVectorizer/SeedCollector.h b/llvm/include/llvm/Transforms/Vectorize/SandboxVectorizer/SeedCollector.h
index 6e16a84d832e5e..cc4ebb5c508414 100644
--- a/llvm/include/llvm/Transforms/Vectorize/SandboxVectorizer/SeedCollector.h
+++ b/llvm/include/llvm/Transforms/Vectorize/SandboxVectorizer/SeedCollector.h
@@ -292,7 +292,9 @@ class SeedCollector {
SeedContainer StoreSeeds;
SeedContainer LoadSeeds;
Context &Ctx;
- Context::CallbackID EraseCallbackID;
+ Context::CallbackID EraseCallbackID =
+ std::numeric_limits<Context::CallbackID>::max();
+
/// \Returns the number of SeedBundle groups for all seed types.
/// This is to be used for limiting compilation time.
unsigned totalNumSeedGroups() const {
|
|
@Sterling-Augustine shouldn't we always register the callback in the constructor, before the early return? @tylanphear Setting it to max() may not be the correct fix, because |
|
Nice find! I think the right place to fix this is in the and this way unregistering an uninitialized ID from anywhere would always trigger an assertion failure (in an asserts-enabled build), or at least not collide with any registered IDs. What do you think? |
|
It seems like unconditionally setting the callback ID is a reasonable solution. Using an opaque ID (with a default initializer set to an invalid ID) also seems reasonable, though perhaps a broader change than I'd be comfortable committing without further approvals. |
|
The fact that CallbackID is a uint64_t is an implementation detail, so we should discourage having the user initialize it with an integer value. Also the user should not have to worry about initializing it at all. So I am in favor of the opaque ID fix. |
| public: | ||
| // Uses a 64-bit integer so we don't have to worry about the unlikely case | ||
| // of overflowing a 32-bit counter. | ||
| using ReprTy = uint64_t; |
There was a problem hiding this comment.
What does "Repr" stand for in ReprTy?
There was a problem hiding this comment.
Representation, as uint64_t is the underlying representation. Open to suggestion on the naming here.
There was a problem hiding this comment.
Seems reasonable to me.
| // Uses a 64-bit integer so we don't have to worry about the unlikely case | ||
| // of overflowing a 32-bit counter. | ||
| using ReprTy = uint64_t; | ||
|
|
There was a problem hiding this comment.
nit: I would define the reserved uninitialized value here as a public value:
static constexpr const ReprTy UninitVal = std::numeric_limits<ReprTy>::max();
There was a problem hiding this comment.
Done, called it InvalidVal.
| @@ -686,7 +686,7 @@ void Context::runMoveInstrCallbacks(Instruction *I, const BBIterator &WhereIt) { | |||
| Context::CallbackID Context::registerEraseInstrCallback(EraseInstrCallback CB) { | |||
| assert(EraseInstrCallbacks.size() <= MaxRegisteredCallbacks && | |||
| "EraseInstrCallbacks size limit exceeded"); | |||
| CallbackID ID = NextCallbackID++; | |||
| CallbackID ID{NextCallbackID++}; | |||
There was a problem hiding this comment.
We should probably have a check here that NextCallbackID is not equal to the reserved value, with something like:
assert(NextCallbackID != CallbackID::UninitVal && "Matches the reserved value!");
There was a problem hiding this comment.
Hmm it's probably better to put this check in the constructor.
There was a problem hiding this comment.
Makes sense; put an assert in the constructor.
…lvm#122201) The `EraseCallbackID` field is not always initialized in the ctor for SeedCollector; if not, it will be used uninitialized by its dtor. This could potentially lead to the erasure of a random callback, leading to a bug. Fixed by making `CallbackID` an opaque type, which is always default-initialized to an invalid ID.
The
EraseCallbackIDfield is not always initialized in the ctor for SeedCollector; if not, it will be used uninitialized by its dtor. This could potentially lead to the erasure of a random callback, leading to a bug.Fixed by making
CallbackIDan opaque type, which is always default-initialized to an invalid ID.