Detect truncated DepGraph files #122245
Detect truncated DepGraph files #122245
Conversation
rustbot
added
S-waiting-on-review
This comment has been minimized.
This comment has been minimized.
saethlin
force-pushed
the
check-dep-graph-size
branch
from
a1ad6ca
to
c0b1ccf
Compare
This comment has been minimized.
This comment has been minimized.
| let mut len = [0u8; 8]; | ||
| file.read_exact(&mut len)?; | ||
| let len_in_header = u64::from_le_bytes(len); | ||
| assert_eq!(len_in_header, fs::metadata(path)?.len()); |
There was a problem hiding this comment.
Should this be an ICE or a fatal error? Do we suggest a cargo clean?
There was a problem hiding this comment.
My personal suggestion (granted, as a non-contributor, so worth a grain of salt) would be to suggest a cargo clean with an ICE if possible. cargo clean does appear to unstick and allow later compilation to continue normally, and a fatal error doesn't seem appropriate/the right severity.
There was a problem hiding this comment.
If the assertion I'm trying to add in this PR ever fails, we have a new defect somewhere. We should ICE.
If we want to encourage people to paper over the problem with cargo clean we should just remove the file for them.
| @@ -35,6 +36,8 @@ pub(crate) fn write_file_header(stream: &mut FileEncoder, sess: &Session) { | |||
| assert_eq!(rustc_version.len(), (rustc_version.len() as u8) as usize); | |||
| stream.emit_raw_bytes(&[rustc_version.len() as u8]); | |||
| stream.emit_raw_bytes(rustc_version.as_bytes()); | |||
| // Reserve space for the u64 where we will later write in the expected total size of this file. | |||
| stream.emit_raw_bytes(&0u64.to_le_bytes()); | |||
There was a problem hiding this comment.
Would it be simpler to just append some magic bytes like b"the-end-of-rust" or something like that? Then all the metadata calls wouldn't be needed.
There was a problem hiding this comment.
I'd rather report the expected and actual numbers so that we can tell if the dep graph is truncated, unexpectedly large, and about how big it is. Some systems have file size limits that it's plausible we run into, and having a number would let us know about that.
|
Turns out this is the hard part: rust/compiler/rustc_incremental/src/persist/save.rs Lines 169 to 181 in 8401645 save_in, which is truly awful.
|
saethlin
added
S-waiting-on-author
saethlin
force-pushed
the
check-dep-graph-size
branch
from
c0b1ccf
to
11f8866
Compare
rustbot
added
the
A-query-system
saethlin
added
S-waiting-on-review
saethlin
changed the title
|
r? @cjgillot feel free to reassign |
|
r? compiler |
|
I think it's fine to land this as an ICE first and then think what to do next when some actual examples of that ICE are found in practice. |
bors
added
S-waiting-on-bors
…kingjubilee Rollup of 12 pull requests Successful merges: - rust-lang#121754 ([bootstrap] Move the `split-debuginfo` setting to the per-target section) - rust-lang#121953 (Add tests for the generated assembly of mask related simd instructions.) - rust-lang#122081 (validate `builder::PATH_REMAP`) - rust-lang#122245 (Detect truncated DepGraph files) - rust-lang#122354 (bootstrap: Don't eagerly format verbose messages) - rust-lang#122355 (rustdoc: fix up old test) - rust-lang#122363 (tests: Add ui/attributes/unix_sigpipe/unix_sigpipe-str-list.rs) - rust-lang#122366 (Fix stack overflow with recursive associated types) - rust-lang#122377 (Fix discriminant_kind copy paste from the pointee trait case) - rust-lang#122378 (Properly rebuild rustbooks) - rust-lang#122380 (Fix typo in lib.rs of proc_macro) - rust-lang#122381 (llvm-wrapper: adapt for LLVM API changes) r? `@ghost` `@rustbot` modify labels: rollup
Rollup merge of rust-lang#122245 - saethlin:check-dep-graph-size, r=petrochenkov Detect truncated DepGraph files I suspect that the following issues are caused by truncated incr comp files: * rust-lang#120582 * rust-lang#121499 * rust-lang#122210 We fail with an allocation failure or capacity overflow in this case because we assume that the ending bytes of an DepGraph file are the lengths of arrays. If the file has somehow been truncated then the ending bytes are probably some of our varint encoding, which tries to eliminate zero bytes, so interpreting a random 8 bytes as an array length has a very high chance of producing a byte capacity over `isize::MAX`. Now theoretically since rust-lang#119510 merged I have fixed the out-of-disk issues and yet in rust-lang#120894 (comment) I still see some decoding failures that look like out-of-disk ICEs, for example https://crater-reports.s3.amazonaws.com/beta-1.77-1/beta-2024-02-10/gh/scottfones.aoc_2022/log.txt So this PR should ensure that we get an ICE that clearly identifies if the file in question is truncated.
I suspect that the following issues are caused by truncated incr comp files:
We fail with an allocation failure or capacity overflow in this case because we assume that the ending bytes of an DepGraph file are the lengths of arrays. If the file has somehow been truncated then the ending bytes are probably some of our varint encoding, which tries to eliminate zero bytes, so interpreting a random 8 bytes as an array length has a very high chance of producing a byte capacity over
isize::MAX.Now theoretically since #119510 merged I have fixed the out-of-disk issues and yet in #120894 (comment) I still see some decoding failures that look like out-of-disk ICEs, for example https://crater-reports.s3.amazonaws.com/beta-1.77-1/beta-2024-02-10/gh/scottfones.aoc_2022/log.txt
So this PR should ensure that we get an ICE that clearly identifies if the file in question is truncated.