2012-06-04 07:36:43 +04:00
|
|
|
/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
|
|
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
2012-05-21 15:12:37 +04:00
|
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
2011-12-19 23:28:35 +04:00
|
|
|
|
2011-12-28 20:48:54 +04:00
|
|
|
/* Implementations of runtime and static assertion macros for C and C++. */
|
|
|
|
|
2011-12-19 23:28:35 +04:00
|
|
|
#ifndef mozilla_Assertions_h_
|
|
|
|
#define mozilla_Assertions_h_
|
|
|
|
|
2012-02-23 23:32:30 +04:00
|
|
|
#include "mozilla/Attributes.h"
|
2011-12-19 23:28:35 +04:00
|
|
|
#include "mozilla/Types.h"
|
|
|
|
|
2012-04-12 04:03:07 +04:00
|
|
|
#include <stdio.h>
|
|
|
|
#include <stdlib.h>
|
|
|
|
#ifndef WIN32
|
|
|
|
# include <signal.h>
|
|
|
|
#endif
|
|
|
|
#ifdef ANDROID
|
|
|
|
# include <android/log.h>
|
|
|
|
#endif
|
|
|
|
|
2011-12-20 01:58:30 +04:00
|
|
|
/*
|
|
|
|
* MOZ_STATIC_ASSERT may be used to assert a condition *at compile time*. This
|
|
|
|
* can be useful when you make certain assumptions about what must hold for
|
|
|
|
* optimal, or even correct, behavior. For example, you might assert that the
|
|
|
|
* size of a struct is a multiple of the target architecture's word size:
|
|
|
|
*
|
|
|
|
* struct S { ... };
|
|
|
|
* MOZ_STATIC_ASSERT(sizeof(S) % sizeof(size_t) == 0,
|
|
|
|
* "S should be a multiple of word size for efficiency");
|
|
|
|
*
|
|
|
|
* This macro can be used in any location where both an extern declaration and a
|
|
|
|
* typedef could be used.
|
|
|
|
*
|
|
|
|
* Be aware of the gcc 4.2 concerns noted further down when writing patches that
|
|
|
|
* use this macro, particularly if a patch only bounces on OS X.
|
|
|
|
*/
|
|
|
|
#ifdef __cplusplus
|
|
|
|
# if defined(__clang__)
|
|
|
|
# ifndef __has_extension
|
|
|
|
# define __has_extension __has_feature /* compatibility, for older versions of clang */
|
|
|
|
# endif
|
|
|
|
# if __has_extension(cxx_static_assert)
|
|
|
|
# define MOZ_STATIC_ASSERT(cond, reason) static_assert((cond), reason)
|
|
|
|
# endif
|
|
|
|
# elif defined(__GNUC__)
|
|
|
|
# if (defined(__GXX_EXPERIMENTAL_CXX0X__) || __cplusplus >= 201103L) && \
|
|
|
|
(__GNUC__ > 4 || (__GNUC__ == 4 && __GNUC_MINOR__ >= 3))
|
2011-12-27 22:09:41 +04:00
|
|
|
# define MOZ_STATIC_ASSERT(cond, reason) static_assert((cond), reason)
|
2011-12-20 01:58:30 +04:00
|
|
|
# endif
|
|
|
|
# elif defined(_MSC_VER)
|
|
|
|
# if _MSC_VER >= 1600 /* MSVC 10 */
|
2011-12-27 22:09:41 +04:00
|
|
|
# define MOZ_STATIC_ASSERT(cond, reason) static_assert((cond), reason)
|
2011-12-20 01:58:30 +04:00
|
|
|
# endif
|
|
|
|
# elif defined(__HP_aCC)
|
|
|
|
# if __HP_aCC >= 62500 && defined(_HP_CXX0x_SOURCE)
|
2011-12-27 22:09:41 +04:00
|
|
|
# define MOZ_STATIC_ASSERT(cond, reason) static_assert((cond), reason)
|
2011-12-20 01:58:30 +04:00
|
|
|
# endif
|
|
|
|
# endif
|
|
|
|
#endif
|
|
|
|
#ifndef MOZ_STATIC_ASSERT
|
|
|
|
# define MOZ_STATIC_ASSERT_GLUE1(x, y) x##y
|
|
|
|
# define MOZ_STATIC_ASSERT_GLUE(x, y) MOZ_STATIC_ASSERT_GLUE1(x, y)
|
|
|
|
# if defined(__SUNPRO_CC)
|
|
|
|
/*
|
|
|
|
* The Sun Studio C++ compiler is buggy when declaring, inside a function,
|
|
|
|
* another extern'd function with an array argument whose length contains a
|
|
|
|
* sizeof, triggering the error message "sizeof expression not accepted as
|
|
|
|
* size of array parameter". This bug (6688515, not public yet) would hit
|
|
|
|
* defining moz_static_assert as a function, so we always define an extern
|
|
|
|
* array for Sun Studio.
|
|
|
|
*
|
|
|
|
* We include the line number in the symbol name in a best-effort attempt
|
|
|
|
* to avoid conflicts (see below).
|
|
|
|
*/
|
|
|
|
# define MOZ_STATIC_ASSERT(cond, reason) \
|
|
|
|
extern char MOZ_STATIC_ASSERT_GLUE(moz_static_assert, __LINE__)[(cond) ? 1 : -1]
|
|
|
|
# elif defined(__COUNTER__)
|
|
|
|
/*
|
|
|
|
* If there was no preferred alternative, use a compiler-agnostic version.
|
|
|
|
*
|
|
|
|
* Note that the non-__COUNTER__ version has a bug in C++: it can't be used
|
|
|
|
* in both |extern "C"| and normal C++ in the same translation unit. (Alas
|
|
|
|
* |extern "C"| isn't allowed in a function.) The only affected compiler
|
|
|
|
* we really care about is gcc 4.2. For that compiler and others like it,
|
|
|
|
* we include the line number in the function name to do the best we can to
|
|
|
|
* avoid conflicts. These should be rare: a conflict would require use of
|
|
|
|
* MOZ_STATIC_ASSERT on the same line in separate files in the same
|
|
|
|
* translation unit, *and* the uses would have to be in code with
|
|
|
|
* different linkage, *and* the first observed use must be in C++-linkage
|
|
|
|
* code.
|
|
|
|
*/
|
|
|
|
# define MOZ_STATIC_ASSERT(cond, reason) \
|
|
|
|
typedef int MOZ_STATIC_ASSERT_GLUE(moz_static_assert, __COUNTER__)[(cond) ? 1 : -1]
|
|
|
|
# else
|
|
|
|
# define MOZ_STATIC_ASSERT(cond, reason) \
|
|
|
|
extern void MOZ_STATIC_ASSERT_GLUE(moz_static_assert, __LINE__)(int arg[(cond) ? 1 : -1])
|
|
|
|
# endif
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#define MOZ_STATIC_ASSERT_IF(cond, expr, reason) MOZ_STATIC_ASSERT(!(cond) || (expr), reason)
|
|
|
|
|
2011-12-19 23:28:35 +04:00
|
|
|
#ifdef __cplusplus
|
|
|
|
extern "C" {
|
|
|
|
#endif
|
|
|
|
|
2012-04-12 04:03:07 +04:00
|
|
|
#if defined(WIN32)
|
|
|
|
/*
|
|
|
|
* We used to call DebugBreak() on Windows, but amazingly, it causes
|
|
|
|
* the MSVS 2010 debugger not to be able to recover a call stack.
|
|
|
|
*/
|
|
|
|
# define MOZ_CRASH() \
|
|
|
|
do { \
|
2012-06-06 03:49:19 +04:00
|
|
|
*((volatile int*) NULL) = 123; \
|
2012-04-12 04:03:07 +04:00
|
|
|
exit(3); \
|
|
|
|
} while (0)
|
|
|
|
#elif defined(ANDROID)
|
|
|
|
/*
|
|
|
|
* On Android, raise(SIGABRT) is handled asynchronously. Seg fault now
|
|
|
|
* so we crash immediately and capture the current call stack. We need
|
|
|
|
* to specifically use the global namespace in the C++ case.
|
|
|
|
*/
|
|
|
|
# ifdef __cplusplus
|
|
|
|
# define MOZ_CRASH() \
|
|
|
|
do { \
|
2012-06-06 03:49:19 +04:00
|
|
|
*((volatile int*) NULL) = 123; \
|
2012-04-12 04:03:07 +04:00
|
|
|
::abort(); \
|
|
|
|
} while (0)
|
|
|
|
# else
|
|
|
|
# define MOZ_CRASH() \
|
|
|
|
do { \
|
2012-06-06 03:49:19 +04:00
|
|
|
*((volatile int*) NULL) = 123; \
|
2012-04-12 04:03:07 +04:00
|
|
|
abort(); \
|
|
|
|
} while (0)
|
|
|
|
# endif
|
|
|
|
#else
|
|
|
|
# define MOZ_CRASH() \
|
|
|
|
do { \
|
2012-06-06 03:49:19 +04:00
|
|
|
*((volatile int*) NULL) = 123; \
|
|
|
|
raise(SIGABRT); /* In case above statement gets nixed by the optimizer. */ \
|
2012-04-12 04:03:07 +04:00
|
|
|
} while (0)
|
|
|
|
#endif
|
|
|
|
|
2012-02-13 18:48:23 +04:00
|
|
|
|
|
|
|
extern MFBT_API(void)
|
|
|
|
MOZ_Assert(const char* s, const char* file, int ln);
|
2011-12-19 23:28:35 +04:00
|
|
|
|
2012-04-12 04:03:07 +04:00
|
|
|
static MOZ_ALWAYS_INLINE void
|
|
|
|
MOZ_OutputAssertMessage(const char* s, const char *file, int ln)
|
|
|
|
{
|
|
|
|
#ifdef ANDROID
|
|
|
|
__android_log_print(ANDROID_LOG_FATAL, "MOZ_Assert",
|
|
|
|
"Assertion failure: %s, at %s:%d\n", s, file, ln);
|
|
|
|
#else
|
|
|
|
fprintf(stderr, "Assertion failure: %s, at %s:%d\n", s, file, ln);
|
|
|
|
fflush(stderr);
|
|
|
|
#endif
|
|
|
|
}
|
|
|
|
|
2011-12-19 23:28:35 +04:00
|
|
|
#ifdef __cplusplus
|
|
|
|
} /* extern "C" */
|
|
|
|
#endif
|
|
|
|
|
|
|
|
/*
|
2012-01-07 01:51:27 +04:00
|
|
|
* MOZ_ASSERT(expr [, explanation-string]) asserts that |expr| must be truthy in
|
|
|
|
* debug builds. If it is, execution continues. Otherwise, an error message
|
|
|
|
* including the expression and the explanation-string (if provided) is printed,
|
|
|
|
* an attempt is made to invoke any existing debugger, and execution halts.
|
|
|
|
* MOZ_ASSERT is fatal: no recovery is possible. Do not assert a condition
|
|
|
|
* which can correctly be falsy.
|
|
|
|
*
|
|
|
|
* The optional explanation-string, if provided, must be a string literal
|
|
|
|
* explaining the assertion. It is intended for use with assertions whose
|
|
|
|
* correctness or rationale is non-obvious, and for assertions where the "real"
|
|
|
|
* condition being tested is best described prosaically. Don't provide an
|
|
|
|
* explanation if it's not actually helpful.
|
|
|
|
*
|
|
|
|
* // No explanation needed: pointer arguments often must not be NULL.
|
|
|
|
* MOZ_ASSERT(arg);
|
|
|
|
*
|
|
|
|
* // An explanation can be helpful to explain exactly how we know an
|
|
|
|
* // assertion is valid.
|
|
|
|
* MOZ_ASSERT(state == WAITING_FOR_RESPONSE,
|
|
|
|
* "given that <thingA> and <thingB>, we must have...");
|
|
|
|
*
|
|
|
|
* // Or it might disambiguate multiple identical (save for their location)
|
|
|
|
* // assertions of the same expression.
|
|
|
|
* MOZ_ASSERT(getSlot(PRIMITIVE_THIS_SLOT).isUndefined(),
|
|
|
|
* "we already set [[PrimitiveThis]] for this Boolean object");
|
|
|
|
* MOZ_ASSERT(getSlot(PRIMITIVE_THIS_SLOT).isUndefined(),
|
|
|
|
* "we already set [[PrimitiveThis]] for this String object");
|
|
|
|
*
|
|
|
|
* MOZ_ASSERT has no effect in non-debug builds. It is designed to catch bugs
|
|
|
|
* *only* during debugging, not "in the field".
|
2011-12-19 23:28:35 +04:00
|
|
|
*/
|
|
|
|
#ifdef DEBUG
|
2012-01-07 01:51:27 +04:00
|
|
|
/* First the single-argument form. */
|
|
|
|
# define MOZ_ASSERT_HELPER1(expr) \
|
2012-04-12 04:03:07 +04:00
|
|
|
do { \
|
|
|
|
if (!(expr)) { \
|
|
|
|
MOZ_OutputAssertMessage(#expr, __FILE__, __LINE__); \
|
|
|
|
MOZ_CRASH(); \
|
|
|
|
} \
|
|
|
|
} while (0)
|
2012-01-07 01:51:27 +04:00
|
|
|
/* Now the two-argument form. */
|
|
|
|
# define MOZ_ASSERT_HELPER2(expr, explain) \
|
2012-04-12 04:03:07 +04:00
|
|
|
do { \
|
|
|
|
if (!(expr)) { \
|
|
|
|
MOZ_OutputAssertMessage(#expr " (" explain ")", __FILE__, __LINE__); \
|
|
|
|
MOZ_CRASH(); \
|
|
|
|
} \
|
|
|
|
} while (0)
|
2012-01-07 01:51:27 +04:00
|
|
|
/* And now, helper macrology up the wazoo. */
|
2012-02-18 06:47:12 +04:00
|
|
|
/*
|
|
|
|
* Count the number of arguments passed to MOZ_ASSERT, very carefully
|
|
|
|
* tiptoeing around an MSVC bug where it improperly expands __VA_ARGS__ as a
|
|
|
|
* single token in argument lists. See these URLs for details:
|
|
|
|
*
|
|
|
|
* http://connect.microsoft.com/VisualStudio/feedback/details/380090/variadic-macro-replacement
|
|
|
|
* http://cplusplus.co.il/2010/07/17/variadic-macro-to-count-number-of-arguments/#comment-644
|
|
|
|
*/
|
|
|
|
# define MOZ_COUNT_ASSERT_ARGS_IMPL2(_1, _2, count, ...) \
|
2012-01-07 01:51:27 +04:00
|
|
|
count
|
2012-02-18 06:47:12 +04:00
|
|
|
# define MOZ_COUNT_ASSERT_ARGS_IMPL(args) \
|
|
|
|
MOZ_COUNT_ASSERT_ARGS_IMPL2 args
|
|
|
|
# define MOZ_COUNT_ASSERT_ARGS(...) \
|
|
|
|
MOZ_COUNT_ASSERT_ARGS_IMPL((__VA_ARGS__, 2, 1, 0))
|
|
|
|
/* Pick the right helper macro to invoke. */
|
|
|
|
# define MOZ_ASSERT_CHOOSE_HELPER2(count) MOZ_ASSERT_HELPER##count
|
|
|
|
# define MOZ_ASSERT_CHOOSE_HELPER1(count) MOZ_ASSERT_CHOOSE_HELPER2(count)
|
|
|
|
# define MOZ_ASSERT_CHOOSE_HELPER(count) MOZ_ASSERT_CHOOSE_HELPER1(count)
|
2012-01-07 01:51:27 +04:00
|
|
|
/* The actual macro. */
|
2012-02-18 06:47:12 +04:00
|
|
|
# define MOZ_ASSERT_GLUE(x, y) x y
|
2012-01-07 01:51:27 +04:00
|
|
|
# define MOZ_ASSERT(...) \
|
2012-02-18 06:47:12 +04:00
|
|
|
MOZ_ASSERT_GLUE(MOZ_ASSERT_CHOOSE_HELPER(MOZ_COUNT_ASSERT_ARGS(__VA_ARGS__)), \
|
|
|
|
(__VA_ARGS__))
|
2011-12-19 23:28:35 +04:00
|
|
|
#else
|
2012-04-12 04:03:07 +04:00
|
|
|
# define MOZ_ASSERT(...) do { } while(0)
|
2011-12-19 23:28:35 +04:00
|
|
|
#endif /* DEBUG */
|
|
|
|
|
2011-12-20 00:54:12 +04:00
|
|
|
/*
|
|
|
|
* MOZ_ASSERT_IF(cond1, cond2) is equivalent to MOZ_ASSERT(cond2) if cond1 is
|
|
|
|
* true.
|
|
|
|
*
|
|
|
|
* MOZ_ASSERT_IF(isPrime(num), num == 2 || isOdd(num));
|
|
|
|
*
|
|
|
|
* As with MOZ_ASSERT, MOZ_ASSERT_IF has effect only in debug builds. It is
|
|
|
|
* designed to catch bugs during debugging, not "in the field".
|
|
|
|
*/
|
|
|
|
#ifdef DEBUG
|
2012-04-12 04:03:07 +04:00
|
|
|
# define MOZ_ASSERT_IF(cond, expr) \
|
|
|
|
do { \
|
|
|
|
if (cond) \
|
|
|
|
MOZ_ASSERT(expr); \
|
|
|
|
} while (0)
|
2011-12-20 00:54:12 +04:00
|
|
|
#else
|
2012-04-12 04:03:07 +04:00
|
|
|
# define MOZ_ASSERT_IF(cond, expr) do { } while (0)
|
2011-12-20 00:54:12 +04:00
|
|
|
#endif
|
|
|
|
|
2012-02-23 23:32:30 +04:00
|
|
|
/* MOZ_NOT_REACHED_MARKER() expands (in compilers which support it) to an
|
|
|
|
* expression which states that it is undefined behavior for the compiler to
|
|
|
|
* reach this point. Most code should probably use the higher level
|
|
|
|
* MOZ_NOT_REACHED (which expands to this when appropriate).
|
|
|
|
*/
|
|
|
|
#if defined(__clang__)
|
|
|
|
# define MOZ_NOT_REACHED_MARKER() __builtin_unreachable()
|
|
|
|
#elif defined(__GNUC__)
|
|
|
|
# if __GNUC__ > 4 || (__GNUC__ == 4 && __GNUC_MINOR__ >= 5)
|
|
|
|
# define MOZ_NOT_REACHED_MARKER() __builtin_unreachable()
|
|
|
|
# endif
|
|
|
|
#elif defined(_MSC_VER)
|
2012-06-06 03:49:19 +04:00
|
|
|
# define MOZ_NOT_REACHED_MARKER() __assume(0)
|
2012-02-23 23:32:30 +04:00
|
|
|
#endif
|
|
|
|
|
2011-12-20 00:54:12 +04:00
|
|
|
/*
|
|
|
|
* MOZ_NOT_REACHED(reason) indicates that the given point can't be reached
|
|
|
|
* during execution: simply reaching that point in execution is a bug. It takes
|
|
|
|
* as an argument an error message indicating the reason why that point should
|
|
|
|
* not have been reachable.
|
|
|
|
*
|
|
|
|
* // ...in a language parser...
|
|
|
|
* void handle(BooleanLiteralNode node)
|
|
|
|
* {
|
|
|
|
* if (node.isTrue())
|
|
|
|
* handleTrueLiteral();
|
|
|
|
* else if (node.isFalse())
|
|
|
|
* handleFalseLiteral();
|
|
|
|
* else
|
|
|
|
* MOZ_NOT_REACHED("boolean literal that's not true or false?");
|
|
|
|
* }
|
|
|
|
*/
|
2012-02-23 23:32:30 +04:00
|
|
|
#if defined(MOZ_NOT_REACHED_MARKER)
|
|
|
|
# if defined(DEBUG)
|
|
|
|
# define MOZ_NOT_REACHED(reason) do { \
|
|
|
|
MOZ_Assert(reason, __FILE__, __LINE__); \
|
|
|
|
MOZ_NOT_REACHED_MARKER(); \
|
|
|
|
} while (0)
|
|
|
|
# else
|
|
|
|
# define MOZ_NOT_REACHED(reason) MOZ_NOT_REACHED_MARKER()
|
|
|
|
# endif
|
2011-12-20 00:54:12 +04:00
|
|
|
#else
|
2012-02-23 23:32:30 +04:00
|
|
|
# if defined(__GNUC__)
|
|
|
|
/*
|
|
|
|
* On older versions of gcc we need to call a noreturn function to mark the
|
|
|
|
* code as unreachable. Since what we want is an unreachable version of
|
|
|
|
* MOZ_Assert, we use an asm label
|
|
|
|
* (http://gcc.gnu.org/onlinedocs/gcc-4.6.2/gcc/Asm-Labels.html) to create
|
|
|
|
* a new declaration to the same symbol. MOZ_ASSERT_NR should only be
|
|
|
|
* used via this macro, as it is a very specific hack to older versions of
|
|
|
|
* gcc.
|
|
|
|
*/
|
|
|
|
# define MOZ_GETASMPREFIX2(X) #X
|
|
|
|
# define MOZ_GETASMPREFIX(X) MOZ_GETASMPREFIX2(X)
|
|
|
|
# define MOZ_ASMPREFIX MOZ_GETASMPREFIX(__USER_LABEL_PREFIX__)
|
|
|
|
extern MOZ_NORETURN MFBT_API(void)
|
|
|
|
MOZ_ASSERT_NR(const char* s, const char* file, int ln) \
|
|
|
|
asm (MOZ_ASMPREFIX "MOZ_Assert");
|
|
|
|
|
|
|
|
# define MOZ_NOT_REACHED(reason) MOZ_ASSERT_NR(reason, __FILE__, __LINE__)
|
|
|
|
# elif defined(DEBUG)
|
|
|
|
# define MOZ_NOT_REACHED(reason) MOZ_Assert(reason, __FILE__, __LINE__)
|
|
|
|
# else
|
|
|
|
# define MOZ_NOT_REACHED(reason) ((void)0)
|
|
|
|
# endif
|
2011-12-20 00:54:12 +04:00
|
|
|
#endif
|
|
|
|
|
|
|
|
/*
|
|
|
|
* MOZ_ALWAYS_TRUE(expr) and MOZ_ALWAYS_FALSE(expr) always evaluate the provided
|
|
|
|
* expression, in debug builds and in release builds both. Then, in debug
|
|
|
|
* builds only, the value of the expression is asserted either true or false
|
|
|
|
* using MOZ_ASSERT.
|
|
|
|
*/
|
|
|
|
#ifdef DEBUG
|
|
|
|
# define MOZ_ALWAYS_TRUE(expr) MOZ_ASSERT((expr))
|
|
|
|
# define MOZ_ALWAYS_FALSE(expr) MOZ_ASSERT(!(expr))
|
|
|
|
#else
|
|
|
|
# define MOZ_ALWAYS_TRUE(expr) ((void)(expr))
|
|
|
|
# define MOZ_ALWAYS_FALSE(expr) ((void)(expr))
|
|
|
|
#endif
|
|
|
|
|
2011-12-19 23:28:35 +04:00
|
|
|
#endif /* mozilla_Assertions_h_ */
|