Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

In Java 21, case labels can be null. #6174

Closed
wants to merge 2 commits into from
Closed

In Java 21, case labels can be null. #6174

wants to merge 2 commits into from

Conversation

smillst
Copy link
Member

@smillst smillst commented Sep 12, 2023

Fixes #6173.

mernst
mernst requested changes Sep 12, 2023
View reviewed changes
dataflow/src/main/java/org/checkerframework/dataflow/cfg/builder/CFGTranslationPhaseOne.java Outdated
}
}
// Could also check that the values match.
boolean result = enumConstants.size() == caseLabels.size();
boolean result =
(enumConstants.size() == caseLabels.size()
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks suspicious to me. One of the labels could be null, in which case I think casesAreExhaustive should return false. Could you write a test to assuage my concern? Thanks.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh good catch. I don't know how to write a test case that would have caught this bug, because I can't see how a checker would behave differently when the cases are not exhaustive.

@smillst smillst requested a review from mernst September 12, 2023 16:27
mernst
mernst requested changes Sep 12, 2023
View reviewed changes
Copy link
Member

@mernst mernst left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could a test be something like:

x = null;
switch (*) {
  case a: x = nonnull; break;
  case b: x = nonnull; break;
  ...
}
x.toString();

The key is to know whether fallthrough is possible.

dataflow/src/main/java/org/checkerframework/dataflow/cfg/builder/CFGTranslationPhaseOne.java
caseLabels.add(((IdentifierTree) caseEnumConstant).getName());
if (caseEnumConstant.getKind() != Kind.NULL_LITERAL) {
caseLabels.add(((IdentifierTree) caseEnumConstant).getName());
}
}
}
// Could also check that the values match.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

On the line below, now that "null" is a possible value, I think that the cases are exhaustive only if they also include "null". Otherwise, fallthrough is possible.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

null doesn't have to appear for the switch block to be exhaustive. If a case null does not appear and null is the value of the switch selector expressions, then a NPE is thrown.

Here's the definition of exhaustive switch blocks: https://docs.oracle.com/javase/specs/jls/se20/preview/specs/patterns-switch-record-patterns-jls.html#jls-14.11.1.1.

@smillst
Copy link
Member Author

smillst commented Sep 12, 2023

Could a test be something like:

x = null;
switch (*) {
  case a: x = nonnull; break;
  case b: x = nonnull; break;
  ...
}
x.toString();

The key is to know whether fallthrough is possible.

I read the JLS, and if case null appears then the switch must be exhaustive. (And now fall through can happen.) So no such test case exists. See:
https://docs.oracle.com/javase/specs/jls/se20/preview/specs/patterns-switch-record-patterns-jls.html#jls-14.11.2

@smillst
Copy link
Member Author

smillst commented Sep 12, 2023

We may just want to hold off on merging this pull request until we have implement support for Pattern Matching for switch and Record Patterns https://openjdk.org/jeps/440). There are more test cases that crash.

@msridhar
Copy link
Contributor

We may just want to hold off on merging this pull request until we have implement support for Pattern Matching for switch and Record Patterns https://openjdk.org/jeps/440). There are more test cases that crash.

Just curious, are the crashes in the dataflow library or elsewhere? From the NullAway perspective, it'd be cool if we could test out a version of dataflow with crashes fixed before all the checkers fully support these constructs. But I agree it might be best to consolidate fixes for related issues.

@smillst
Copy link
Member Author

smillst commented Sep 12, 2023

We may just want to hold off on merging this pull request until we have implement support for Pattern Matching for switch and Record Patterns https://openjdk.org/jeps/440). There are more test cases that crash.

Just curious, are the crashes in the dataflow library or elsewhere? From the NullAway perspective, it'd be cool if we could test out a version of dataflow with crashes fixed before all the checkers fully support these constructs. But I agree it might be best to consolidate fixes for related issues.

I tried this test case (copied from https://openjdk.org/jeps/441):

  static String formatterPatternSwitch(Object obj) {
    return switch (obj) {
      case Integer i -> String.format("int %d", i);
      case Long l    -> String.format("long %d", l);
      case Double d  -> String.format("double %f", d);
      case String s  -> String.format("String %s", s);
      default        -> obj.toString();
    };
  }

The crash is not in dataflow, but the crash is because dataflow does not have a node for i in String.format("int %d", i);.

 Exception: java.lang.NullPointerException: Cannot invoke "java.util.Set.iterator()" because "nodes" is null; java.lang.NullPointerException: Cannot invoke "java.util.Set.iterator()" because "nodes" is null
  	at org.checkerframework.framework.type.GenericAnnotatedTypeFactory.getFirstNodeOfKindForTree(GenericAnnotatedTypeFactory.java:1291)
  	at org.checkerframework.framework.type.GenericAnnotatedTypeFactory.getAnnotatedTypeVarargsArray(GenericAnnotatedTypeFactory.java:1729)
  	at org.checkerframework.common.basetype.BaseTypeVisitor.checkVarargs(BaseTypeVisitor.java:1897)
  	at org.checkerframework.common.basetype.BaseTypeVisitor.visitMethodInvocation(BaseTypeVisitor.java:1782)
  	at org.checkerframework.common.basetype.BaseTypeVisitor.visitMethodInvocation(BaseTypeVisitor.java:184)

@msridhar
Copy link
Contributor

Ah, makes sense. I can see how fixing that issue might be intertwined with fixing the crash.

@msridhar msridhar mentioned this pull request Sep 12, 2023
Closed
@mernst
Copy link
Member

mernst commented Sep 12, 2023

@smillst CI is failing

@mernst mernst assigned smillst and unassigned mernst Sep 12, 2023
@smillst
Copy link
Member Author

smillst commented Sep 13, 2023

From the NullAway perspective, it'd be cool if we could test out a version of dataflow with crashes fixed before all the checkers fully support these constructs.

@msridhar I'm going to close this pull request because this in not the correct implementation for case null. I'm going to work on implementing the new Java 21 language features now. The first step (and pull request) will be a version where the checkers (and therefore dataflow) don't crash on the new language features. At that point, you can use dataflow with the new features. Then, I'll work on making sure the checkers soundly handle the new features.

@smillst smillst closed this Sep 13, 2023
@msridhar
Copy link
Contributor

Thanks @smillst!

@smillst smillst deleted the issue6173 branch October 3, 2023 17:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mernst mernst mernst approved these changes

Assignees

@smillst smillst

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Crash in CFG construction for case null in switch expression
3 participants
@smillst @msridhar @mernst