[C++] Omit overflow check for new char[n]

Message ID	50915C48.1050305@redhat.com
State	New
Headers	show Return-Path: <gcc-patches-return-330641-incoming=patchwork.ozlabs.org@gcc.gnu.org> Comment: DKIM? See http://www.dkim.org Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=gcc.gnu.org; h=Received:Received:X-SWARE-Spam-Status:X-Spam-Check-By:Received:Received:Received:Message-ID:Date:From:User-Agent:MIME-Version:To:CC:Subject:References:In-Reply-To:Content-Type:X-IsSubscribed:Mailing-List:Precedence:List-Id:List-Unsubscribe:List-Archive:List-Post:List-Help:Sender:Delivered-To; b=maAeTS6xt+IEMO3bqUIP8NaIMbRSq0hZovp5tzxA36DBmYBDX04ZaGj5/OSRiu x2acqd5lwMehitsA4jP27XP7cgAOrFgKhxEfOpfTiDHihsmo9ma66kzCwLYLH8LF NzXsENmW96Hl1tuTjy2FLx0EEBJTYd96+hYnG9eOJlRl8=; Message-ID: <50915C48.1050305@redhat.com> Date: Wed, 31 Oct 2012 18:13:44 +0100 From: Florian Weimer <fweimer@redhat.com> User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:16.0) Gecko/20121016 Thunderbird/16.0.1 MIME-Version: 1.0 To: Jakub Jelinek <jakub@redhat.com> CC: Jason Merrill <jason@redhat.com>, gcc-patches@gcc.gnu.org Subject: Re: [C++] Omit overflow check for new char[n] References: <5072F64A.6030509@redhat.com> <20121031090524.GE1752@tucnak.redhat.com> In-Reply-To: <20121031090524.GE1752@tucnak.redhat.com> Content-Type: multipart/mixed; boundary="------------050606030009070907010708" Mailing-List: contact gcc-patches-help@gcc.gnu.org; run by ezmlm Precedence: bulk Sender: gcc-patches-owner@gcc.gnu.org

Message ID

50915C48.1050305@redhat.com

State

New

Headers

Comment: DKIM? See http://www.dkim.org
Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=gcc.gnu.org;
	h=Received:Received:X-SWARE-Spam-Status:X-Spam-Check-By:Received:Received:Received:Message-ID:Date:From:User-Agent:MIME-Version:To:CC:Subject:References:In-Reply-To:Content-Type:X-IsSubscribed:Mailing-List:Precedence:List-Id:List-Unsubscribe:List-Archive:List-Post:List-Help:Sender:Delivered-To;
	b=maAeTS6xt+IEMO3bqUIP8NaIMbRSq0hZovp5tzxA36DBmYBDX04ZaGj5/OSRiu
	x2acqd5lwMehitsA4jP27XP7cgAOrFgKhxEfOpfTiDHihsmo9ma66kzCwLYLH8LF
	NzXsENmW96Hl1tuTjy2FLx0EEBJTYd96+hYnG9eOJlRl8=;
Message-ID: <50915C48.1050305@redhat.com>
Date: Wed, 31 Oct 2012 18:13:44 +0100
From: Florian Weimer <fweimer@redhat.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
	rv:16.0) Gecko/20121016 Thunderbird/16.0.1
MIME-Version: 1.0
To: Jakub Jelinek <jakub@redhat.com>
CC: Jason Merrill <jason@redhat.com>, gcc-patches@gcc.gnu.org
Subject: Re: [C++] Omit overflow check for new char[n]
References: <5072F64A.6030509@redhat.com>
	<20121031090524.GE1752@tucnak.redhat.com>
In-Reply-To: <20121031090524.GE1752@tucnak.redhat.com>
Content-Type: multipart/mixed;
	boundary="------------050606030009070907010708"
Mailing-List: contact gcc-patches-help@gcc.gnu.org; run by ezmlm
Precedence: bulk
Sender: gcc-patches-owner@gcc.gnu.org

Commit Message

Florian Weimer Oct. 31, 2012, 5:13 p.m. UTC

On 10/31/2012 10:05 AM, Jakub Jelinek wrote:

> I don't see any == double_int_one (or zero) comparisons in grep,
> so I'd say inner_size.is_one () should be used instead (which is used
> pretty frequently).  Ditto in the second spot.
> Otherwise the patch looks good to me, but I'd like Jason to chime in too.

Thanks, I'm attaching the updated patch.

Bootstrapped and tested on x86_64-redhat-linux-gnu, with no apparent 
regressions.

Comments

Florian Weimer Oct. 31, 2012, 5:22 p.m. UTC | #1

On 10/31/2012 06:13 PM, Florian Weimer wrote:

> +	      if (outer_nelts_check != NULL && inner_size.is_one())

Uhm, I will add the missing space before commit.  Sorry.

Jason Merrill Nov. 6, 2012, 7:12 p.m. UTC | #2

OK.

Jason

gcc/:

2012-10-31  Florian Weimer  <fweimer@redhat.com>

	* init.c (build_new_1): Do not check for arithmetic overflow if
	inner array size is 1.

gcc/testsuite/:

2012-10-31  Florian Weimer  <fweimer@redhat.com>

	* g++.dg/init/new40.C: New.

Index: gcc/cp/init.c
===================================================================
--- gcc/cp/init.c	(revision 193033)
+++ gcc/cp/init.c	(working copy)
@@ -2185,6 +2185,8 @@ 
   bool outer_nelts_from_type = false;
   double_int inner_nelts_count = double_int_one;
   tree alloc_call, alloc_expr;
+  /* Size of the inner array elements. */
+  double_int inner_size;
   /* The address returned by the call to "operator new".  This node is
      a VAR_DECL and is therefore reusable.  */
   tree alloc_node;
@@ -2346,8 +2348,6 @@ 
       double_int max_size
 	= double_int_one.llshift (TYPE_PRECISION (sizetype) - 1,
 				  HOST_BITS_PER_DOUBLE_INT);
-      /* Size of the inner array elements. */
-      double_int inner_size;
       /* Maximum number of outer elements which can be allocated. */
       double_int max_outer_nelts;
       tree max_outer_nelts_tree;
@@ -2451,7 +2451,13 @@ 
 	  if (array_p && TYPE_VEC_NEW_USES_COOKIE (elt_type))
 	    size = size_binop (PLUS_EXPR, size, cookie_size);
 	  else
-	    cookie_size = NULL_TREE;
+	    {
+	      cookie_size = NULL_TREE;
+	      /* No size arithmetic necessary, so the size check is
+		 not needed. */
+	      if (outer_nelts_check != NULL && inner_size.is_one())
+		outer_nelts_check = NULL_TREE;
+	    }
 	  /* Perform the overflow check.  */
 	  if (outer_nelts_check != NULL_TREE)
             size = fold_build3 (COND_EXPR, sizetype, outer_nelts_check,
@@ -2487,7 +2493,13 @@ 
 	  /* Use a global operator new.  */
 	  /* See if a cookie might be required.  */
 	  if (!(array_p && TYPE_VEC_NEW_USES_COOKIE (elt_type)))
-	    cookie_size = NULL_TREE;
+	    {
+	      cookie_size = NULL_TREE;
+	      /* No size arithmetic necessary, so the size check is
+		 not needed. */
+	      if (outer_nelts_check != NULL && inner_size.is_one())
+		outer_nelts_check = NULL_TREE;
+	    }
 
 	  alloc_call = build_operator_new_call (fnname, placement,
 						&size, &cookie_size,
Index: gcc/testsuite/g++.dg/init/new40.C
===================================================================
--- gcc/testsuite/g++.dg/init/new40.C	(revision 0)
+++ gcc/testsuite/g++.dg/init/new40.C	(working copy)
@@ -0,0 +1,112 @@ 
+// Testcase for overflow handling in operator new[].
+// Optimization of unnecessary overflow checks.
+// { dg-do run }
+
+#include <assert.h>
+#include <stdlib.h>
+#include <stdexcept>
+
+static size_t magic_allocation_size
+  = 1 + (size_t (1) << (sizeof (size_t) * 8 - 1));
+
+struct exc : std::bad_alloc {
+};
+
+static size_t expected_size;
+
+struct pod_with_new {
+  char ch;
+  void *operator new[] (size_t sz)
+  {
+    if (sz != expected_size)
+      abort ();
+    throw exc ();
+  }
+};
+
+struct with_new {
+  char ch;
+  with_new () { }
+  ~with_new () { }
+  void *operator new[] (size_t sz)
+  {
+    if (sz != size_t (-1))
+      abort ();
+    throw exc ();
+  }
+};
+
+struct non_pod {
+  char ch;
+  non_pod () { }
+  ~non_pod () { }
+};
+
+void *
+operator new (size_t sz) _GLIBCXX_THROW (std::bad_alloc)
+{
+  if (sz != expected_size)
+    abort ();
+  throw exc ();
+}
+
+int
+main ()
+{
+  if (sizeof (pod_with_new) == 1)
+    expected_size = magic_allocation_size;
+  else
+    expected_size = -1;
+
+  try {
+    new pod_with_new[magic_allocation_size];
+    abort ();
+  } catch (exc &) {
+  }
+
+  if (sizeof (with_new) == 1)
+    expected_size = magic_allocation_size;
+  else
+    expected_size = -1;
+
+  try {
+    new with_new[magic_allocation_size];
+    abort ();
+  } catch (exc &) {
+  }
+
+  expected_size = magic_allocation_size;
+  try {
+    new char[magic_allocation_size];
+    abort ();
+  } catch (exc &) {
+  }
+
+  expected_size = -1;
+
+  try {
+    new pod_with_new[magic_allocation_size][2];
+    abort ();
+  } catch (exc &) {
+  }
+
+  try {
+    new with_new[magic_allocation_size][2];
+    abort ();
+  } catch (exc &) {
+  }
+
+  try {
+    new char[magic_allocation_size][2];
+    abort ();
+  } catch (exc &) {
+  }
+
+  try {
+    new non_pod[magic_allocation_size];
+    abort ();
+  } catch (exc &) {
+  }
+
+  return 0;
+}

[C++] Omit overflow check for new char[n]

Commit Message

Comments

Patch