[vm/ffi] FfiNative return types treatment inconsistent with asFunction
#49518
Comments
dcharkes
added
area-vm
|
@dcharkes The code you are quoting is not executed but rather there for generating expectation files of what the transformer produces. So there's no issue with this code. It doesn't really matter whether its |
|
If we add static linking, this will be transformed to an immediate FFI call that does not do a type check on the result value, allowing non I've disallowed that behavior in the linked CL, so I had to update the transformer test to make it pass again. |
|
Whether one uses static or dynamic linking shouldn't change any behavior. Whether we trust the types written by the developer is another question entirely: If user writes Coming back to the test itself: It just checks how the transform handles returning Maybe I misunderstand the concern here? |
For
Agreed, it is a choice we make. I assume we made that choice consciously for I propose we stick to |
Thanks for the explanation - it's the inconsistency you're concerned about (though that's not related to the test that is quoted in this issue). I'd like to avoid a situation where we do more checking for |
Yes, sorry for the confusion. Thanks for helping me clarify. 😄
By removing the inconsistency (by only allowing
By only allowing If we want to avoid those user-written |
dcharkes
changed the title
FfiNative unsound return typesFfiNative return types treatment inconsistent with asFunction
This CL fixes two issues. 1. `FfiNative`s now check the Dart and native type for compatiblity. 2. Both `FfiNative`, `asFunction`, and `lookupFunction` check the type correspondence between native and Dart type with a subtype check of the expected Dart type and the provided Dart type. For functions, any return type is a subtype of a void type. This is fine for Dart, but not for native calls. This CL manually checks the return type for void. This CL does not fix the inconsistency between `asFunction` and `FfiNative` with regard to allowing more strict return types than `Object` for `Handle`s Issue: #49518 Analyzer fixes in follow up CL. TEST=tests/ffi/vmspecific_static_checks_ffinative_test.dart Closes: #49471 Change-Id: Ibc7bd6a1a0db59cc5fa5d755d76999fd7e9a06a4 Cq-Include-Trybots: luci.dart.try:analyzer-linux-release-try,analyzer-mac-release-try,vm-ffi-android-debug-arm-try,vm-ffi-android-debug-arm64c-try Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/252601 Reviewed-by: Martin Kustermann <[email protected]> Commit-Queue: Daco Harkes <[email protected]>
This reverts commit 206fdf1. Reason for revert: Flutter issues are caught by this CL, preventing Flutter from building. flutter/flutter#108309 Original change's description: > [cfe/ffi] Improve FFI call mismatched types compile errors > > This CL fixes two issues. > > 1. `FfiNative`s now check the Dart and native type for compatiblity. > 2. Both `FfiNative`, `asFunction`, and `lookupFunction` check the type > correspondence between native and Dart type with a subtype check of > the expected Dart type and the provided Dart type. For functions, > any return type is a subtype of a void type. This is fine for Dart, > but not for native calls. This CL manually checks the return type > for void. > > This CL does not fix the inconsistency between `asFunction` and > `FfiNative` with regard to allowing more strict return types than > `Object` for `Handle`s > Issue: #49518 > > Analyzer fixes in follow up CL. > > TEST=tests/ffi/vmspecific_static_checks_ffinative_test.dart > > Closes: #49471 > Change-Id: Ibc7bd6a1a0db59cc5fa5d755d76999fd7e9a06a4 > Cq-Include-Trybots: luci.dart.try:analyzer-linux-release-try,analyzer-mac-release-try,vm-ffi-android-debug-arm-try,vm-ffi-android-debug-arm64c-try > Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/252601 > Reviewed-by: Martin Kustermann <[email protected]> > Commit-Queue: Daco Harkes <[email protected]> [email protected],[email protected] Change-Id: Id82b129d491adcc94cdd685a0a0f6a43248c71f2 No-Presubmit: true No-Tree-Checks: true No-Try: true Issue: #49518 Cq-Include-Trybots: luci.dart.try:analyzer-linux-release-try,analyzer-mac-release-try,vm-ffi-android-debug-arm-try,vm-ffi-android-debug-arm64c-try Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/252662 Reviewed-by: Daco Harkes <[email protected]> Commit-Queue: Daco Harkes <[email protected]> Bot-Commit: Rubber Stamper <[email protected]>
This is a reland of commit 206fdf1 Original change's description: > [cfe/ffi] Improve FFI call mismatched types compile errors > > This CL fixes two issues. > > 1. `FfiNative`s now check the Dart and native type for compatiblity. > 2. Both `FfiNative`, `asFunction`, and `lookupFunction` check the type > correspondence between native and Dart type with a subtype check of > the expected Dart type and the provided Dart type. For functions, > any return type is a subtype of a void type. This is fine for Dart, > but not for native calls. This CL manually checks the return type > for void. > > This CL does not fix the inconsistency between `asFunction` and > `FfiNative` with regard to allowing more strict return types than > `Object` for `Handle`s > Issue: #49518 > > Analyzer fixes in follow up CL. > > TEST=tests/ffi/vmspecific_static_checks_ffinative_test.dart > > Closes: #49471 > Change-Id: Ibc7bd6a1a0db59cc5fa5d755d76999fd7e9a06a4 > Cq-Include-Trybots: luci.dart.try:analyzer-linux-release-try,analyzer-mac-release-try,vm-ffi-android-debug-arm-try,vm-ffi-android-debug-arm64c-try > Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/252601 > Reviewed-by: Martin Kustermann <[email protected]> > Commit-Queue: Daco Harkes <[email protected]> TEST=tests/ffi/vmspecific_static_checks_ffinative_test.dart Change-Id: Ic1efba45ae8ff2585fc67fdf63c653ce090d0337 Cq-Include-Trybots: luci.dart.try:analyzer-linux-release-try,analyzer-mac-release-try,vm-ffi-android-debug-arm-try,vm-ffi-android-debug-arm64c-try Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/252663 Commit-Queue: Daco Harkes <[email protected]> Reviewed-by: Martin Kustermann <[email protected]>
|
This resurfaced in https://dart-review.googlesource.com/c/sdk/+/426121, because we tried to change the type of With the types being allowed to be in the opposite direction in It would be a big breaking change as we're using it various places (for example |
|
Connecting on #49518 (comment),
I don't know what our old natives used to allow, whether they ensured soundness or not. My original thought was that we don't want to regress old natives when switching to We recently had a very similar discussion for JS interop declarations, which similar to FFI declarations, we kind of trust the types written. In FFI we trust so much that the program may crash if they are wrong. But there we settled for still maintaining sound dart typing. So I think I'd opt for making us perform type checks on return values from C if the native return type is |
|
With Chloe's upcoming CL, the rules will be relaxed and we allow any type for The places where we need to insert checks are For Dart->C calls we have to check return values we get from C
For C -> Dart calls we have to check argument values we get from C
I've tried to make a prototype, but run out of my time budget. @dcharkes Could you look into this? |
We already did allow this the whole time without any type checks. That's why this issue was filed. Before @chloestefantsova's CL, all types were allowed due to
👍 I'll put it on my list. |
|
@dcharkes The CL will allow this in more places where we used to issue a compile-time errors |
|
Ah, the arguments in callbacks. 👍 |
This CL introduces variance-dependent treatment of the `Handle` native type when converting native types to Dart types. Since `Handle` can represent any object, it should match any type. To achive that in cases when `Handle` appears as the subtype in the subtype checks, it's converted to `Never` in covariant positions and to `Object?` in covariant ones. TEST=existing Issue #49518 Change-Id: Ie16a210491ada80d21f4d0f1c0fa3b3804881ede Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/426880 Reviewed-by: Martin Kustermann <[email protected]> Reviewed-by: Daco Harkes <[email protected]> Commit-Queue: Chloe Stefantsova <[email protected]>
https://dart-review.googlesource.com/c/sdk/+/252601/6/pkg/vm/testcases/transformations/ffi/ffinative.dart
asFunctionandlookupFunctiondo not allow the return type to be sticter thanObjectwhen the native type isHandle.The old
natives do allow the return type to be stricter thanObject.It would be good to update
FfiNatives to be consistent withasFunction, but that would make them inconsistent with oldnatives.The text was updated successfully, but these errors were encountered: