Skip to content

Document assert_(), combine with __ASSERT_; fixup Perl_assert() #23543

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 8 commits into
base: blead
Choose a base branch
from
Open

Document assert_(), combine with __ASSERT_; fixup Perl_assert() #23543

wants to merge 8 commits into from
+55 −34

Conversation

khwilliamson
Copy link
Contributor

@khwilliamson khwilliamson commented Aug 6, 2025
edited
Loading

The combined documentation now cautions about macro parameters being evaluated more than once.

Perl_assert now works correctly on platforms where LINE is not an int., and expands to a no-op under Coverity, or on systems without adequate macro buffer space.

  • This set of changes does not require a perldelta entry.

@khwilliamson
perl.h: Remove obsolete comment
1ad6eca 
This comment is not true; it may have been true once.  assert.h
is always included, and assert() is always defined, since at least C89..
@khwilliamson
Cleanup Perl_assert definition
5ffa89d 
PERL_DEB2 is too obscure for me.  Simply use #ifdef DEBUGGING
@khwilliamson
Reformat Perl_assert() definition
c07f83a 
This removes an extraneous paren pair, and changes the white space in
preparation for the next commit
@khwilliamson
Fix Perl_assert() definition
c82bde3 
Source code line numbers now have a typedef and format so that they work
on a variety of platforms.
@khwilliamson
perl.h Move macro definition to earlier
8e28d19 
This makes the next commits smaller.
@khwilliamson
perl.h: Combine two preprocessor blocks
47d730d 
They have the same conditional, and the next commit will change that
conditional and want it to apply to both.
@khwilliamson
Perl_assert() expands to noop if Coverity, etc,
e780767 
Some assertions have caused Coverity to complain in the past, or
overflowed are too big for some platforms, so the definition of
__ASSERT_ in handy.h expands to a no-op if under Coverity or the system
doesn't have a normal sized macro buffer.  Bring that definition to also
be the same for Perl_assert().
@khwilliamson
Move __ASSERT_() definition adjacent to assert_()
4ae3795 
And fix up the documentation, adding a caution that their use can easily
lead to differing behavior in DEBUGGING vs non-DEBUGGING builds.

These two macros are synonymous.  This documents assert_() for the first
time and clarifies their usage.

Thanks to Tony Cook for clarifying this for me.
tonycoz
tonycoz reviewed Aug 7, 2025
View reviewed changes
perl.h Outdated
Comment on lines 5104 to 5105
" file \"" __FILE__ "\", line %d", \
STRINGIFY(what), __LINE__))
" file \"" __FILE__ "\", line %" LINE_Tf, \
STRINGIFY(what), (line_t) __LINE__))
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is fine, though line_t is for line numbers stored in COPs (line numbers in perl code) rather than C source.

I doubt it makes a difference unless someone puts #line 4294967296 (__LINE__ is now a long) which changes the code from UB to incorrect output.

(doesn't require a change)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

C99 says #line is UB above 31 bits. Does that affect this?

@tonycoz
Copy link
Contributor

tonycoz commented Aug 7, 2025

Some assertions have caused Coverity to complain in the past

when was this?

I do the Coverity builds with -DDEBUGGING specifically to enable asserts since for Coverity they can act like ASSUME()s (if the assert fails some non-returning function would be called so the analysis of the following code can assume the assertion is true).

@tonycoz
Copy link
Contributor

tonycoz commented Aug 7, 2025

Perl_croak now works correctly on platforms where LINE is not an int., and expands to a no-op under Coverity, or on systems without adequate macro buffer space.

Presumably you meant Perl_assert there.

@khwilliamson
Copy link
Contributor Author

I wondered if Coverity was smart enough to know about assert(), but not smart enough to deal with _ASSERT. My claim stems from 7e75d1a which caused _ASSERT to be a no-op under Coverity. That commit mentioned several Coverity ids, and a similar one 3e94db2

bram-perl
bram-perl reviewed Aug 7, 2025
View reviewed changes
perl.h Outdated
Comment on lines 5105 to 5106
/* assert() gets defined if DEBUGGING.
* If no DEBUGGING, the <assert.h> has not been included. */
#ifndef assert
# define assert(what) Perl_assert(what)
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Commit perl.h: Remove obsolete comment

Hmm... this makes me confused.

The commit message states: assert() is always defined. But the very next line is #ifndef assert, i.e. if not defined assert.

So possibilities I can see:

  • the #ifndef assert is useless and can/should be removed
  • the statement in the commit message isn't 100% true

perl.h
@@ -5096,11 +5096,15 @@ Gid_t getegid (void);
/* Keep the old croak based assert for those who want it, and as a fallback if
the platform is so heretically non-ANSI that it can't assert. */

#define Perl_assert(what) PERL_DEB2( \
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Commit Cleanup Perl_assert definition

I would slightly alter the commit message and add something like:

For reference: PERL_DEB2 is defined as:

#ifdef DEBUGGING
#  define PERL_DEB2(a,b)               a
#else /* ! DEBUGGING below */
#  define PERL_DEB2(a,b)               b
#endif /* DEBUGGING */

(I had no clue what PERL_DEB2 did so had to look it up before I could review the change)

perl.h Outdated
Comment on lines 5099 to 5103
#ifdef DEBUGGING
# define Perl_assert(what) \
((what) \
? ((void) 0) \
: (Perl_croak_nocontext("Assertion %s failed: file \"" __FILE__ \
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Commit Cleanup Perl_assert definition

(using the comment as a scratch-pad to evaluate the change)

Original:

#define Perl_assert(what)       PERL_DEB2(                              \
        ((what) ? ((void) 0) :                                          \
            (Perl_croak_nocontext("Assertion %s failed: file \"" __FILE__ \
                        "\", line %d", STRINGIFY(what), __LINE__),      \
             (void) 0)), ((void)0))

Let's make it a bit more readable (at least to me):

#define Perl_assert(what)
    PERL_DEB2(
        (
                (what)
                        ? (
                                (void) 0
                          )
                        : (
                                Perl_croak_nocontext("Assertion %s failed: file \"" __FILE__ "\", line %d", STRINGIFY(what), __LINE__),
                                (void) 0
                          )
        ),
        (
                (void)0)
        )

That should translate into (ignoring line limits / line continuation markers because they make it just harder to read):

#ifdef DEBUGGING
#define Perl_assert(what)
        (
                (what)
                        ? (
                                (void) 0
                          )
                        : (
                                Perl_croak_nocontext("Assertion %s failed: file \"" __FILE__ "\", line %d", STRINGIFY(what), __LINE__),
                                (void) 0
                          )
        )
#else
#define Perl_assert(what)
        (
                (void)0)
        )
#endif

That almost matches the changed code, the only difference is the else case of the ternary not ending with (void) 0.
I however can't say if that has any significance.

So if that was intended then all is fine.
(Except that it would make me wonder why it was there in the first place, looking at history it appears it was added in commit 2b05728 but again no clue why or if it's needed.)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tonycoz tonycoz tonycoz left review comments

@bram-perl bram-perl bram-perl left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@khwilliamson @tonycoz @bram-perl