clang trunk assertion during compile on call to llvm::PointerType::get(llvm::Type*, unsigned int) + 20 MacOSX 10.5 PPC

[kencu]

Bugzilla Link	33108
Version	trunk
OS	MacOS X
Attachments	CrashLog, suggested sh file to add
CC	@DimitryAndric,@kparzysz-quic,@markmi

Extended Description

crash during compilation of qt4-mac 4.8.7

[kencu]

mentioned in issue llvm/llvm-bugzilla-archive#39692

[kencu]

although the tests above appeared to work correctly, I should point out that on running the test-suite, there were two fails in the va_args section:

test-suite :: SingleSource/UnitTests/2003-05-07-VarArgs.test
test-suite :: SingleSource/UnitTests/2003-08-11-VaListArg.test

==================

FAIL: test-suite :: SingleSource/UnitTests/2003-08-11-VaListArg.test (411 of 500) **** TEST 'test-suite :: SingleSource/UnitTests/2003-08-11-VaListArg.test' FAILED ****

/Users/macportsdev/test-suite/RunSafely.sh -t /Users/macportsdev/test-suite-build/tools/timeit 7200 /dev/null /Users/macportsdev/test-suite-build/SingleSource/UnitTests/Output/2003-08-11-VaListArg.test.out /Users/macportsdev/test-suite-build/SingleSource/UnitTests/2003-08-11-VaListArg /Users/macportsdev/test-suite-build/tools/fpcmp /Users/macportsdev/test-suite-build/SingleSource/UnitTests/Output/2003-08-11-VaListArg.test.out /Users/macportsdev/test-suite/SingleSource/UnitTests/2003-08-11-VaListArg.reference_output

/Users/macportsdev/test-suite-build/tools/fpcmp: files differ without tolerance allowance

$ cat /Users/macportsdev/test-suite-build/SingleSource/UnitTests/Output/2003-05-07-VarArgs.test.out string abc string def int -123 char a int 123 int 6 int 7 int 8 int 9 string 10 args done! double 1.000000 double 2.000000 int 32764 long long 12345677823423 DWord { 18, a } QuadWord { 0, 0.000000 } LargeS { 0, 0.000000, 0x1, 0 } exit 0 LeopardG5:~ macportsdev$ cat /Users/macportsdev/test-suite/SingleSource/UnitTests/2003-05-07-VarArgs.reference_output string abc string def int -123 char a int 123 int 6 int 7 int 8 int 9 string 10 args done! double 1.000000 double 2.000000 int 32764 long long 12345677823423 DWord { 18, a } QuadWord { 19, 20.000000 } LargeS { 21, 22.000000, 0x1, 23 } exit 0

============================

FAIL: test-suite :: SingleSource/UnitTests/2003-05-07-VarArgs.test (399 of 500) **** TEST 'test-suite :: SingleSource/UnitTests/2003-05-07-VarArgs.test' FAILED ****

/Users/macportsdev/test-suite/RunSafely.sh -t /Users/macportsdev/test-suite-build/tools/timeit 7200 /dev/null /Users/macportsdev/test-suite-build/SingleSource/UnitTests/Output/2003-05-07-VarArgs.test.out /Users/macportsdev/test-suite-build/SingleSource/UnitTests/2003-05-07-VarArgs /Users/macportsdev/test-suite-build/tools/fpcmp /Users/macportsdev/test-suite-build/SingleSource/UnitTests/Output/2003-05-07-VarArgs.test.out /Users/macportsdev/test-suite/SingleSource/UnitTests/2003-05-07-VarArgs.reference_output

/Users/macportsdev/test-suite-build/tools/fpcmp: files differ without tolerance allowance

$ cat /Users/macportsdev/test-suite-build/SingleSource/UnitTests/Output/2003-05-07-VarArgs.test.out string abc string def int -123 char a int 123 int 6 int 7 int 8 int 9 string 10 args done! double 1.000000 double 2.000000 int 32764 long long 12345677823423 DWord { 18, a } QuadWord { 0, 0.000000 } LargeS { 0, 0.000000, 0x1, 0 } exit 0

$ cat /Users/macportsdev/test-suite/SingleSource/UnitTests/2003-05-07-VarArgs.reference_output string abc string def int -123 char a int 123 int 6 int 7 int 8 int 9 string 10 args done! double 1.000000 double 2.000000 int 32764 long long 12345677823423 DWord { 18, a } QuadWord { 19, 20.000000 } LargeS { 21, 22.000000, 0x1, 23 } exit 0

==============

[kencu]

Works perfectly!! Thanks very much for you time and interest. Ken

$ clang -arch ppc -o vatest2.ppc vatest2.cpp $ ./vatest2.ppc number of values: 3 value 1 is: 3 value 2 is: 4 value 3 is: 5 number of values: 7 value 1 is: 3 value 2 is: 4 value 3 is: 5 value 4 is: 4 value 5 is: 3 value 6 is: 2 value 7 is: 1

$ clang -arch ppc -o vatest3.ppc vatest3.cpp $ ./vatest3.ppc number of values: 3 value 1 is: 3.100000 value 2 is: 4.200000 value 3 is: 5.300000 number of values: 3 value 1 is: 3.100000 value 2 is: 4.200000 value 3 is: 5.300000

$ clang -arch ppc -o vatest2.ppc vatest2.cpp $ ./vatest2.ppc number of values: 3 value 1 is: 3 value 2 is: 4 value 3 is: 5 number of values: 7 value 1 is: 3 value 2 is: 4 value 3 is: 5 value 4 is: 4 value 5 is: 3 value 6 is: 2 value 7 is: 1

$ clang -arch ppc -o vatest4.ppc vatest4.cpp $ ./vatest4.ppc value is: 3.100000

[kparzysz-quic]

Thanks, this was helpful.

I updated the patch at: https://reviews.llvm.org/D33499. I hope this will solve the problems.

[kencu]

One extra build that might be useful. This a build of vatest4.cpp using apple-gcc42, which frontended gcc 4.2 and backended llvm (version?). This produces properly working code as well.

$ gcc -v Using built-in specs. Target: powerpc-apple-darwin9 Configured with: /var/tmp/gcc_42/gcc_42-5577~1/src/configure --disable-checking --prefix=/usr --mandir=/usr/share/man --enable-languages=c,objc,c++,obj-c++ --program-transform-name=/^[cg][^.-]*$/s/$/-4.2/ --with-slibdir=/usr/lib --build=i686-apple-darwin9 --with-gxx-include-dir=/usr/include/c++/4.0.0 --program-prefix= --host=powerpc-apple-darwin9 --target=powerpc-apple-darwin9 Thread model: posix gcc version 4.2.1 (Apple Inc. build 5577)

$ gcc -arch ppc -S vatest4.cpp

$ cat vatest4.s .section TEXT,text,regular,pure_instructions .section TEXT,picsymbolstub1,symbol_stubs,pure_instructions,32 .machine ppc7400 .cstring .align 2 LC0: .ascii "value is: %f\12\0" .text .align 2 .globl Z7printmeiz Z7printmeiz: LFB3: mflr r0 LCFI0: stmw r30,-8(r1) LCFI1: stw r0,8(r1) LCFI2: stwu r1,-112(r1) LCFI3: mr r30,r1 LCFI4: bcl 20,31,"L00000000001$pb" "L00000000001$pb": mflr r31 stw r4,140(r30) stw r5,144(r30) stw r6,148(r30) stw r7,152(r30) stw r8,156(r30) stw r9,160(r30) stw r10,164(r30) stw r3,136(r30) addi r0,r30,140 stw r0,56(r30) lwz r2,56(r30) addi r0,r2,8 stw r0,56(r30) lfd f0,0(r2) stfd f0,80(r30) lwz r2,80(r30) lwz r3,84(r30) mr r10,r3 mr r9,r2 stw r2,80(r30) stw r3,84(r30) lfd f13,80(r30) fmr f0,f13 addis r2,r31,ha16(LC0-"L00000000001$pb") la r3,lo16(LC0-"L00000000001$pb")(r2) mr r4,r9 mr r5,r10 fmr f1,f0 bl _printf$LDBL128 lwz r1,0(r1) lwz r0,8(r1) mtlr r0 lmw r30,-8(r1) blr LFE3: .align 2 .globl _main _main: LFB4: mflr r0 LCFI5: stmw r30,-8(r1) LCFI6: stw r0,8(r1) LCFI7: stwu r1,-96(r1) LCFI8: mr r30,r1 LCFI9: bcl 20,31,"L00000000002$pb" "L00000000002$pb": mflr r31 addis r2,r31,ha16(LC1-"L00000000002$pb") la r2,lo16(LC1-"L00000000002$pb")(r2) lfd f0,0(r2) stfd f0,64(r30) lwz r2,64(r30) lwz r3,68(r30) mr r10,r3 mr r9,r2 stw r2,64(r30) stw r3,68(r30) lfd f13,64(r30) fmr f0,f13 li r3,1 mr r4,r9 mr r5,r10 fmr f1,f0 bl Z7printmeiz li r0,0 mr r3,r0 lwz r1,0(r1) lwz r0,8(r1) mtlr r0 lmw r30,-8(r1) blr LFE4: .literal8 .align 3 LC1: .long 1074318540 .long -858993459 .section TEXT,__eh_frame,coalesced,no_toc+strip_static_syms+live_support EH_frame1: .set L$set$0,LECIE1-LSCIE1 .long L$set$0 LSCIE1: .long 0x0 .byte 0x1 .ascii "zPR\0" .byte 0x1 .byte 0x7c .byte 0x41 .byte 0x6 .byte 0x9b .long L_gxx_personality_v0$non_lazy_ptr-. .byte 0x10 .byte 0xc .byte 0x1 .byte 0x0 .align 2 LECIE1: .globl Z7printmeiz.eh Z7printmeiz.eh: LSFDE1: .set L$set$1,LEFDE1-LASFDE1 .long L$set$1 LASFDE1: .long LASFDE1-EH_frame1 .long LFB3-. .set L$set$2,LFE3-LFB3 .long L$set$2 .byte 0x0 .byte 0x4 .set L$set$3,LCFI3-LFB3 .long L$set$3 .byte 0xe .byte 0x70 .byte 0x9f .byte 0x1 .byte 0x9e .byte 0x2 .byte 0x11 .byte 0x41 .byte 0x7e .byte 0x4 .set L$set$4,LCFI4-LCFI3 .long L$set$4 .byte 0xd .byte 0x1e .align 2 LEFDE1: .globl _main.eh _main.eh: LSFDE3: .set L$set$5,LEFDE3-LASFDE3 .long L$set$5 LASFDE3: .long LASFDE3-EH_frame1 .long LFB4-. .set L$set$6,LFE4-LFB4 .long L$set$6 .byte 0x0 .byte 0x4 .set L$set$7,LCFI8-LFB4 .long L$set$7 .byte 0xe .byte 0x60 .byte 0x9f .byte 0x1 .byte 0x9e .byte 0x2 .byte 0x11 .byte 0x41 .byte 0x7e .byte 0x4 .set L$set$8,LCFI9-LCFI8 .long L$set$8 .byte 0xd .byte 0x1e .align 2 LEFDE3: .non_lazy_symbolpointer Lgxx_personality_v0$non_lazy_ptr: .indirect_symbol ___gxx_personality_v0 .long 0 .constructor .destructor .align 1 .subsections_via_symbols

[kencu]

vatest3.cpp as ppc asm

[kencu]

Here it is. I simplified the test case to hopefully reduce cruft. I'll also post up vatest3.s as an attachment as you requested that. - K

$ cat vatest4.cpp

include

include

void printme ( int num, ... ) { va_list arguments;
va_start ( arguments, num );
printf( "value is: %f\n", va_arg ( arguments, double ) ); va_end ( arguments ); }

int main() { printme(1, 3.1); }

============ outputs:

$ ./vatest4.ppc value is: -92559677937162871625617509558218198585493561317703376340779008.000000

============== $ clang -arch ppc -S vatest4.cpp $ cat vatest4.s .section TEXT,text,regular,pure_instructions .macosx_version_min 10, 5 .machine ppc .section TEXT,textcoal_nt,coalesced,pure_instructions .section TEXT,picsymbolstub1,symbol_stubs,pure_instructions,32 .section TEXT,text,regular,pure_instructions .globl Z7printmeiz .align 4 Z7printmeiz: ; @​_Z7printmeiz .cfi_startproc ; BB#0: mflr r0 stw r31, -4(r1) stw r0, 8(r1) stwu r1, -80(r1) Ltmp0: .cfi_def_cfa_offset 80 Ltmp1: .cfi_offset r31, -4 Ltmp2: .cfi_offset lr, 8 mr r31, r1 Ltmp3: .cfi_def_cfaregister r31 bl L0$pb L0$pb: mflr r2 addi r11, r31, 115 stw r10, 132(r31) stw r9, 128(r31) stw r8, 124(r31) stw r7, 120(r31) stw r6, 116(r31) stw r5, 112(r31) stw r4, 108(r31) rlwinm r4, r11, 0, 0, 28 addi r5, r31, 108 stw r3, 72(r31) addi r6, r4, 8 stw r5, 68(r31) stw r6, 68(r31) lfd f0, 0(r4) stfd f0, 28(r1) addis r2, r2, ha16(L.str-L0$pb) lwz r5, 32(r1) lwz r4, 28(r1) la r2, lo16(L_.str-L0$pb)(r2) stw r3, 64(r31) ; 4-byte Folded Spill mr r3, r2 fmr f1, f0 bl _printf$LDBL128 ; lwz r2, 64(r31) ; 4-byte Folded Reload ; addi r1, r1, 80 lwz r0, 8(r1) lwz r31, -4(r1) mtlr r0 blr .cfi_endproc

.section    __TEXT,__literal8,8byte_literals
.align  3

LCPI1_0: .long 1074318540 ; double 3.1000000000000001 .long 3435973837 .section TEXT,text,regular,pure_instructions .globl _main .align 4 _main: ; @​main .cfi_startproc ; BB#0: mflr r0 stw r31, -4(r1) stw r0, 8(r1) stwu r1, -64(r1) Ltmp4: .cfi_def_cfa_offset 64 Ltmp5: .cfi_offset r31, -4 Ltmp6: .cfi_offset lr, 8 mr r31, r1 Ltmp7: .cfi_def_cfa_register r31 bl L1$pb L1$pb: mflr r2 lis r3, -13108 lis r4, 16392 ori r3, r3, 52429 ori r4, r4, 52428 addis r2, r2, ha16(LCPI1_0-L1$pb) stw r3, 32(r1) stw r4, 28(r1) lfd f1, lo16(LCPI1_0-L1$pb)(r2) lwz r5, 32(r1) lwz r4, 28(r1) li r3, 1 bl __Z7printmeiz li r3, 0 addi r1, r1, 64 lwz r0, 8(r1) lwz r31, -4(r1) mtlr r0 blr .cfi_endproc

.subsections_via_symbols .section TEXT,cstring,cstringliterals L.str: ; @.str .asciz "value is: %f\n"

[kparzysz-quic]

The values picked up by printme are shifted by 4 bytes, so what gets printed is half of one double and half of the next one. It's as if there was a disagreement between the caller and the callee on the alignment of doubles. I'll have to go over the MacOS ABI to see which side is wrong, but out of curiosity, do you have a working C compiler on that system? If so, could you compile vatest3.cpp with -S and post the .s file? If not, that's ok, it's not critical.

[kencu]

va_args as ints seem to work, but as doubles do not.

I tested the va_args on 10.5 PPC with clang-3.8, using the patch I backported from Krzysztof's clang-4.0 patch (that patch is attached, in case you'd like to have a look at how I did it to make sure it's correct.

$ cat vatest2.cpp

include

include

void printme ( int num, ... ) { va_list arguments;
int temp;

printf( "number of values: %d\n", num );

va_start ( arguments, num );           
for ( int x = 0; x < num; x++ )        
{
    temp = va_arg ( arguments, int );
    printf( "value %d is: %d\n", x+1, temp );
}
va_end ( arguments ); 

}

int main() { printme(3, 3, 4, 5); }

$ clang -arch ppc -o vatest2.ppc vatest2.cpp $ clang -arch i386 -o vatest2.i386 vatest2.cpp

OUTPUTS:

$ ./vatest2.i386 number of values: 3 value 1 is: 3 value 2 is: 4 value 3 is: 5

$ ./vatest2.ppc number of values: 3 value 1 is: 3 value 2 is: 4 value 3 is: 5

======================================

$ cat vatest3.cpp

include

include

void printme ( int num, ... ) { va_list arguments;
double temp;

printf( "number of values: %d\n", num );

va_start ( arguments, num );           
for ( int x = 0; x < num; x++ )        
{
    temp = va_arg ( arguments, double );
    printf( "value %d is: %f\n", x+1, temp );
}
va_end ( arguments ); 

}

int main() { double a = 3.1; double b = 4.2; double c = 5.3;

printme(3, 3.1, 4.2, 5.3);
printme(3, a, b, c);

}

$ clang -arch i386 -o vatest3.i386 vatest3.cpp $ clang -arch ppc -o vatest3.ppc vatest3.cpp

$ ./vatest3.i386 number of values: 3 value 1 is: 3.100000 value 2 is: 4.200000 value 3 is: 5.300000 number of values: 3 value 1 is: 3.100000 value 2 is: 4.200000 value 3 is: 5.300000

$ ./vatest3.ppc number of values: 3 value 1 is: -92559653429824871689296838102125733553793312096835823269314560.000000 value 2 is: -92559653433117349428664821184862423824709207841093362739314688.000000 value 3 is: 0.000000 number of values: 3 value 1 is: -92559653429824871689296838102125733553793312096835823269314560.000000 value 2 is: -92559653433117349428664821184862423824709207841093362739314688.000000 value 3 is: 0.000000

===================================================================

Appreciate your help. Anything more I can do to help? Be happy to allow access to this machine if that is of value to you.

[kencu]

patch meant to backport this fix into clang 3.8, done in MacPorts style

[kencu]

I backported this into clang-3.8 (the last version I can build on ppc at present) and it seems to work, at least initially. It doesn't segfault, at least, and it outputs assembly that looks - well - like assembly. I'll put the clang-3.8 patch up here for safekeeping, in case anyone else is interested.

$ cat pr.s .section TEXT,text,regular,pure_instructions .machine ppc .section TEXT,textcoal_nt,coalesced,pure_instructions .section TEXT,picsymbolstub1,symbol_stubs,pure_instructions,32 .section TEXT,text,regular,pure_instructions .globl Z1bv .align 4 Z1bv: lwz r2, -4(r1) addi r2, r2, 4 stw r2, -4(r1) blr

.subsections_via_symbols

[kparzysz-quic]

I assume there is something in the test suite to put this code through it's paces and see if it is solid. Your message that it is a framework only is noted.

This may actually be the whole thing. From my reading of the MacOS documentation that I was able to find it seems like the variable argument list is simply passed as a pointer to the beginning of the parameter area. In such case, it should work fine as-is.

In any case, if you find any problems with it let me know and I'll try to fix them.

[kencu]

Thank you. I'll backport this into clang-3.8 and build it. (Clang 3.8 is the last version that I can presently build on 10.5 PPC, using gcc6 to build it. Newer versions error out.)

I assume there is something in the test suite to put this code through it's paces and see if it is solid. Your message that it is a framework only is noted.

Aside:

There must be thousands of Mac PPC machines still working - I have 8 of them - and although they can build a lot of software with gcc, there are many applications that have more advanced ObjC than gcc6 can handle. Clang-3.8 could keep these machines useful for a long time.

I'm also trying to see if I can build the MacPorts infrastructure as ppc64, and perhaps have better luck building ppc64 with clang that way, as the ppc64 output seems better fleshed out. Thank you for your time.

[kparzysz-quic]

I added a really basic implementation of PPC32/Darwin ABI here: https://reviews.llvm.org/D33499.

All it does it that it uses the default handling of va_arg (based on void*).

It gets rid of the crash, but I don't know how far it is from the proper implementation. I cannot test it since I don't have PPC hardware anymore, let alone anything running MacOS.

[kencu]

I see. I notice there is an implementation of this char pointer based builtin_va_list handling in the rs6000 section of gcc4.2 (at least) and later.

[markmi]

This level of debugging is currently well over my head, but a question:

Is PPC32_SVR4_ABIInfo::EmitVAArg the proper call for PPC32 Darwin to be calling? I was under the impression SVR4 was more towards ELF unix.

I also saw a DefaultABIInfo::EmitVAArg mentioned as a replacement for above.

That is basically what Comment 7 is about:

Darwin support does:

BuiltinVaListKind getBuiltinVaListKind() const override { return TargetInfo::CharPtrBuiltinVaList; }

where the other PPC32 contexts do:

BuiltinVaListKind getBuiltinVaListKind() const override { // This is the ELF definition, and is overridden by the Darwin sub-target return TargetInfo::PowerABIBuiltinVaList; }

but overall the code does not support/handle Dawrin's

TargetInfo::CharPtrBuiltinVaList

It calls assuming the the

TargetInfo::PowerABIBuiltinVaList

context.

[kencu]

This level of debugging is currently well over my head, but a question:

Is PPC32_SVR4_ABIInfo::EmitVAArg the proper call for PPC32 Darwin to be calling? I was under the impression SVR4 was more towards ELF unix.

I also saw a DefaultABIInfo::EmitVAArg mentioned as a replacement for above.

[markmi]

I'm not familiar with the internals of the clang/llvm code. But looking around some I find some preliminary information (not necessarily looking at or testing with the same vintage llvm source code that you used):

The assert found a nullptr and rejected it. I worked backwards from that to how the nullptr was generated.

Summary of the later more full trace of the failure:

The nullptr was from finding CT->isPointerTy() true in getIndexedTypeInternal and that traces back to Darwin not being like other PPC32 cases for __builtin_va_list :

class DarwinPPC32TargetInfo : public DarwinTargetInfo { public: DarwinPPC32TargetInfo(const llvm::Triple &Triple, const TargetOptions &Opts) : DarwinTargetInfo(Triple, Opts) { HasAlignMac68kSupport = true; BoolWidth = BoolAlign = 32; //XXX support -mone-byte-bool? PtrDiffType = SignedInt; // for http://llvm.org/bugs/show_bug.cgi?id=15726 LongLongAlign = 32; SuitableAlign = 128; resetDataLayout("E-m:o-p:32:32-f64:32:64-n32"); } BuiltinVaListKind getBuiltinVaListKind() const override { return TargetInfo::CharPtrBuiltinVaList; } };

So I conclude some code structure is presuming that such a pointer based __builtin_va_list would not happen but it does.

Here is how I traced to the above and what I found in detail along the way. . .

The code that produced the nullptr used getIndexedType for a Value* based IdxList:

/// Returns the type of the element that would be loaded with /// a load instruction with the specified parameters. /// /// Null is returned if the indices are invalid for the specified /// pointer type. /// static Type getIndexedType(Type Ty, ArrayRef<Value *> IdxList);

Which makes it look like the IdxList generation involved was messed up.

CreateConstInBoundsGEP2_32 was given two 0 indexes and makes and uses:

Value *Idxs[] = {
  ConstantInt::get(Type::getInt32Ty(Context), Idx0),
  ConstantInt::get(Type::getInt32Ty(Context), Idx1)
};

The actual nullptr was produced by:

template static Type getIndexedTypeInternal(Type Agg, ArrayRef IdxList) { // Handle the special case of the empty set index set, which is always valid. if (IdxList.empty()) return Agg;

// If there is at least one index, the top level type must be sized, otherwise // it cannot be 'stepped over'. if (!Agg->isSized()) return nullptr;

unsigned CurIdx = 1; for (; CurIdx != IdxList.size(); ++CurIdx) { CompositeType *CT = dyn_cast(Agg); if (!CT || CT->isPointerTy()) return nullptr; IndexTy Index = IdxList[CurIdx]; if (!CT->indexValid(Index)) return nullptr; Agg = CT->getTypeAtIndex(Index); } return CurIdx == IdxList.size() ? Agg : nullptr; }

Stepping with the debugger (in a build not having full debug information available) it looks to me like

CT->isPointerTy()

was true, resulting in a nullptr return value that eventually is tested and asserts.

That means that in

Address CreateStructGEP(Address Addr, unsigned Index, CharUnits Offset, const llvm::Twine &Name = "") { return Address(CreateStructGEP(Addr.getElementType(), Addr.getPointer(), Index, Name), Addr.getAlignment().alignmentAtOffset(Offset)); }

Addr.getElementType() returned what ended up with the CT->isPointerTy() being true.

This would seem to trace back to the AST side of things:

Stmt FunctionDecl::getBody(const FunctionDecl &Definition) const { if (!hasBody(Definition)) return nullptr;

if (Definition->Body) return Definition->Body.get(getASTContext().getExternalSource());

return nullptr; }

So. . .

class PPC32TargetInfo : public PPCTargetInfo { public: . . . BuiltinVaListKind getBuiltinVaListKind() const override { // This is the ELF definition, and is overridden by the Darwin sub-target return TargetInfo::PowerABIBuiltinVaList; } }; . . . class DarwinPPC32TargetInfo : public DarwinTargetInfo { public: DarwinPPC32TargetInfo(const llvm::Triple &Triple, const TargetOptions &Opts) : DarwinTargetInfo(Triple, Opts) { HasAlignMac68kSupport = true; BoolWidth = BoolAlign = 32; //XXX support -mone-byte-bool? PtrDiffType = SignedInt; // for http://llvm.org/bugs/show_bug.cgi?id=15726 LongLongAlign = 32; SuitableAlign = 128; resetDataLayout("E-m:o-p:32:32-f64:32:64-n32"); } BuiltinVaListKind getBuiltinVaListKind() const override { return TargetInfo::CharPtrBuiltinVaList; } }; . . . static TypedefDecl CreateCharPtrNamedVaListDecl(const ASTContext Context, StringRef Name) { // typedef char* __builtin[_ms]_va_list; QualType T = Context->getPointerType(Context->CharTy); return Context->buildImplicitTypedef(T, Name); }

[DimitryAndric]

Full backtrace Backtrace summary (full backtrace attached):

​0 0x000000080719916a in thr_kill () from /lib/libc.so.7

​1 0x000000080719913b in raise () from /lib/libc.so.7

​2 0x00000008071990a9 in abort () from /lib/libc.so.7

​3 0x0000000807216781 in __assert () from /lib/libc.so.7

​4 0x0000000000a2addb in llvm::checkGEPType (Ty=0x0) at /home/dim/src/llvm-git/include/llvm/IR/Instructions.h:832

​5 0x0000000000a2ac64 in llvm::GetElementPtrInst::getGEPReturnType (ElTy=0x807d6d000, Ptr=0x807c1c438, IdxList=...) at /home/dim/src/llvm-git/include/llvm/IR/Instructions.h:1007

​6 0x0000000000a2ab0a in llvm::GetElementPtrInst::GetElementPtrInst (this=0x807ccb2c8, PointeeType=0x807d6d000, Ptr=0x807c1c438, IdxList=..., Values=3, NameStr=..., InsertBefore=0x0) at /home/dim/src/llvm-git/include/llvm/IR/Instructions.h:1076

​7 0x0000000000a297c4 in llvm::GetElementPtrInst::Create (PointeeType=0x807d6d000, Ptr=0x807c1c438, IdxList=..., NameStr=..., InsertBefore=0x0) at /home/dim/src/llvm-git/include/llvm/IR/Instructions.h:877

​8 0x0000000001021ffd in llvm::GetElementPtrInst::CreateInBounds (PointeeType=0x807d6d000, Ptr=0x807c1c438, IdxList=..., NameStr=..., InsertBefore=0x0) at /home/dim/src/llvm-git/include/llvm/IR/Instructions.h:911

​9 0x00000000021808de in llvm::IRBuilder<llvm::ConstantFolder, clang::CodeGen::CGBuilderInserter>::CreateConstInBoundsGEP2_32 (this=0x7fffffff6240, Ty=0x807d6d000, Ptr=0x807c1c438, Idx0=0, Idx1=0, Name=...) at /home/dim/src/llvm-git/include/llvm/IR/IRBuilder.h:1297

​10 0x000000000217c408 in llvm::IRBuilder<llvm::ConstantFolder, clang::CodeGen::CGBuilderInserter>::CreateStructGEP (this=0x7fffffff6240, Ty=0x807d6d000, Ptr=0x807c1c438, Idx=0, Name=...) at /home/dim/src/llvm-git/include/llvm/IR/IRBuilder.h:1343

​11 0x000000000239e86e in clang::CodeGen::CGBuilderTy::CreateStructGEP (this=0x7fffffff6240, Addr=..., Index=0, Offset=..., Name=...) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGBuilder.h:167

​12 0x0000000002378e4a in (anonymous namespace)::PPC32_SVR4_ABIInfo::EmitVAArg (this=0x807caad40, CGF=..., VAList=..., Ty=...) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/TargetInfo.cpp:4029

​13 0x00000000023ecd86 in clang::CodeGen::CodeGenFunction::EmitVAArg (this=0x7fffffff60c8, VE=0x807d29e48, VAListAddr=...) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGCall.cpp:4354

​14 0x00000000024ba55b in (anonymous namespace)::ScalarExprEmitter::VisitVAArgExpr (this=0x7fffffff59b0, VE=0x807d29e48) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGExprScalar.cpp:3583

​15 0x00000000024b194b in clang::StmtVisitorBase<clang::make_ptr, (anonymous namespace)::ScalarExprEmitter, llvm::Value*>::Visit (this=0x7fffffff59b0, S=0x807d29e48) at tools/clang/include/clang/AST/StmtNodes.inc:827

​16 0x00000000024aa6c9 in (anonymous namespace)::ScalarExprEmitter::Visit (this=0x7fffffff59b0, E=0x807d29e48) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGExprScalar.cpp:343

​17 0x00000000024aa613 in clang::CodeGen::CodeGenFunction::EmitScalarExpr (this=0x7fffffff60c8, E=0x807d29e48, IgnoreResultAssign=true) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGExprScalar.cpp:3728

​18 0x0000000002456d16 in clang::CodeGen::CodeGenFunction::EmitAnyExpr (this=0x7fffffff60c8, E=0x807d29e48, aggSlot=..., ignoreResult=true) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGExpr.cpp:149

​19 0x0000000002456c3e in clang::CodeGen::CodeGenFunction::EmitIgnoredExpr (this=0x7fffffff60c8, E=0x807d29e48) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGExpr.cpp:134

​20 0x00000000020ef8c3 in clang::CodeGen::CodeGenFunction::EmitStmt (this=0x7fffffff60c8, S=0x807d29e48) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGStmt.cpp:107

​21 0x00000000020fcba8 in clang::CodeGen::CodeGenFunction::EmitCompoundStmtWithoutScope (this=0x7fffffff60c8, S=..., GetLast=false, AggSlot=...) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CGStmt.cpp:381

​22 0x00000000021736c2 in clang::CodeGen::CodeGenFunction::EmitFunctionBody (this=0x7fffffff60c8, Args=..., Body=0x807d29e70) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CodeGenFunction.cpp:1014

​23 0x000000000217416f in clang::CodeGen::CodeGenFunction::GenerateCode (this=0x7fffffff60c8, GD=..., Fn=0x807ca9088, FnInfo=...) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CodeGenFunction.cpp:1185

​24 0x000000000219c998 in clang::CodeGen::CodeGenModule::EmitGlobalFunctionDefinition (this=0x807cd4800, GD=..., GV=0x807ca9088) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CodeGenModule.cpp:3065

​25 0x0000000002195a31 in clang::CodeGen::CodeGenModule::EmitGlobalDefinition (this=0x807cd4800, GD=..., GV=0x0) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CodeGenModule.cpp:1921

​26 0x000000000219a9e1 in clang::CodeGen::CodeGenModule::EmitGlobal (this=0x807cd4800, GD=...) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CodeGenModule.cpp:1701

​27 0x000000000219f7b2 in clang::CodeGen::CodeGenModule::EmitTopLevelDecl (this=0x807cd4800, D=0x807d29c80) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CodeGenModule.cpp:3789

​28 0x0000000002ec7752 in (anonymous namespace)::CodeGeneratorImpl::HandleTopLevelDecl (this=0x807cc6400, DG=...) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/ModuleBuilder.cpp:152

​29 0x0000000002ebe6e3 in clang::BackendConsumer::HandleTopLevelDecl (this=0x807ca6300, D=...) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CodeGenAction.cpp:136

​30 0x000000000358cdc5 in clang::ParseAST (S=..., PrintStats=false, SkipFunctionBodies=false) at /home/dim/src/llvm-git/tools/clang/lib/Parse/ParseAST.cpp:151

​31 0x0000000002898735 in clang::ASTFrontendAction::ExecuteAction (this=0x807c27180) at /home/dim/src/llvm-git/tools/clang/lib/Frontend/FrontendAction.cpp:937

​32 0x0000000002eba68b in clang::CodeGenAction::ExecuteAction (this=0x807c27180) at /home/dim/src/llvm-git/tools/clang/lib/CodeGen/CodeGenAction.cpp:989

​33 0x0000000002897d20 in clang::FrontendAction::Execute (this=0x807c27180) at /home/dim/src/llvm-git/tools/clang/lib/Frontend/FrontendAction.cpp:837

​34 0x00000000027ef0ba in clang::CompilerInstance::ExecuteAction (this=0x807c22280, Act=...) at /home/dim/src/llvm-git/tools/clang/lib/Frontend/CompilerInstance.cpp:970

​35 0x0000000002a45e0f in clang::ExecuteCompilerInvocation (Clang=0x807c22280) at /home/dim/src/llvm-git/tools/clang/lib/FrontendTool/ExecuteCompilerInvocation.cpp:249

​36 0x000000000089e34e in cc1_main (Argv=..., Argv0=0x7fffffffe908 "/home/dim/obj/llvm-trunk-r303484/bin/clang", MainAddr=0x88a940 <GetExecutablePath(char const*, bool)>) at /home/dim/src/llvm-git/tools/clang/tools/driver/cc1_main.cpp:221

​37 0x000000000088df69 in ExecuteCC1Tool (argv=..., Tool=...) at /home/dim/src/llvm-git/tools/clang/tools/driver/driver.cpp:299

​38 0x000000000088bb2d in main (argc=6, argv=0x7fffffffe6a8) at /home/dim/src/llvm-git/tools/clang/tools/driver/driver.cpp:380

[kencu]

Thanks. The reduced test case also compiles with

clang -cc1 -triple ppc64-apple-macosx -S pr33108-reduced-1.cpp

I notice. Only the default (32bit) powerpc version fails.

[DimitryAndric]

Reduced test case:

// clang -cc1 -triple powerpc-apple-macosx -S pr33108-reduced-1.cpp void b() { builtin_va_list a; builtin_va_arg(a, int); }

It seems that the '-apple-macosx' suffix is needed to trigger the assertion. Using 'powerpc-freebsd' or 'powerpc-linux' does not trigger it.

Mark and/or Krzysztof, any clues as to the cause of this assertion?

[DimitryAndric]

This reproduces with trunk r303291, and actually gives an assertion:

Assertion failed: (Ty && "Invalid GetElementPtrInst indices for type!"), function checkGEPType, file include/llvm/IR/Instructions.h, line 835.

I'm reducing the test case now.

[kencu]

File that causes crash is too large to upload after precompile, and so is available here http://cunningham.homeunix.com/~cunningh/qstring-2a7643.cpp.zip

[kencu]

assigned to @kparzysz-quic

[arsenm]

Linked patch is for darwin ppc which was dropped