Date: Mon, 30 May 2022 18:31:16 +0000 From: bugzilla-noreply@freebsd.org To: toolchain@FreeBSD.org Subject: [Bug 264318] security/putty-nogtk: Crashes base clang 14.0.3 on i386 Message-ID: <bug-264318-29464-oZ4hI0wcIl@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-264318-29464@https.bugs.freebsd.org/bugzilla/> References: <bug-264318-29464@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D264318 --- Comment #3 from commit-hook@FreeBSD.org --- A commit in branch stable/13 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D2390e2073f12af55d083d98fc124fa863= 8524e62 commit 2390e2073f12af55d083d98fc124fa8638524e62 Author: Dimitry Andric <dim@FreeBSD.org> AuthorDate: 2022-05-28 21:26:37 +0000 Commit: Dimitry Andric <dim@FreeBSD.org> CommitDate: 2022-05-30 18:28:39 +0000 Apply clang fix for assertion failure building putty 0.77 on i386 Merge commit 45084eab5e63 from llvm git (by Arthur Eubanks): [clang] Fix some clang->llvm type cache invalidation issues Take the following as an example struct z { z (*p)(); }; z f(); When we attempt to get the LLVM type of f, we recurse into z. z itself has a function pointer with the same type as f. Given the recursion, Clang simply treats z::p as a pointer to an empty struct `{}*`. The LLVM type of f is as expected. So we have two different potential LLVM types for a given Clang type. If we store one of those into the cache, when we access the cache with a different context (e.g. we are/aren't recursing on z) we may get an incorrect result. There is s= ome attempt to clear the cache in these cases, but it doesn't seem to han= dle all cases. This change makes it so we only use the cache when we are not in any sort of function context, i.e. `noRecordsBeingLaidOut() && FunctionsBeingProcessed.empty()`, which are the cases where we may decide to choose a different LLVM type for a given Clang type. LLVM types for builtin types are never recursive so they're always ok. This allows us to clear the type cache less often (as seen with the removal of one of the calls to `TypeCache.clear()`). We still need to clear it when we use a placeholder type then replace it later with the final type and other dependent types need to be recalculated. I've added a check that the cached type matches what we compute. It triggered in this test case without the fix. It's currently not check-clang clean so it's not on by default for something like expens= ive checks builds. This change uncovered another issue where the LLVM types for an argum= ent and its local temporary don't match. For example in type-cache-3, when expanding z::dc's argument into a temporary alloca, we ConvertType() = the type of z::p which is `void ({}*)*`, which doesn't match the alloca G= EP type of `{}*`. No noticeable compile time changes: =20=20=20=20=20 https://llvm-compile-time-tracker.com/compare.php?from=3D3918dd6b8acf8c5886= b9921138312d1c638b2937&to=3D50bdec9836ed40e38ece0657f3058e730adffc4c&stat= =3Dinstructions Fixes #53465. Reviewed By: rnk Differential Revision: https://reviews.llvm.org/D118744 PR: 264318 Reported by: mandree MFC after: 3 days (cherry picked from commit 6a5eebc190ab98de98ed7977cbdee3218758376e) contrib/llvm-project/clang/lib/CodeGen/CGBuilder.h | 5 ++- contrib/llvm-project/clang/lib/CodeGen/CGCall.cpp | 18 ++++++-- .../clang/lib/CodeGen/CodeGenTypes.cpp | 52 ++++++++++++++++++= ---- 3 files changed, 60 insertions(+), 15 deletions(-) --=20 You are receiving this mail because: You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-264318-29464-oZ4hI0wcIl>