graph
graph copied to clipboard
boostorg
examples crash when run
The following two examples crash at runtime:
astar_maze.cpp kevin-bacon2.cpp
Sorry but I don't see what the issue is off hand.
astar_maze works for me (osx) last-mod-time has problems with the stat call on osx (non fatal, but incorrect results). This would be easiest to fix by using the c++17 filesystem header, is that permissible?
astar_maze works for me (osx)
Works for me on Ubuntu - it's just msvc where it's crashing.
Here's what I've found:
- MSVC has an "uninitialised variable guard" in debug mode and this is causing the crash, because an uninitialised value is being passed to new[].
- The problem is the value of
map::m_barrier_grid.m_g.m_num_vertices. - Prior to the call of
m.solve()inmain()everything is fine, but during the function call initialization, msvc debug code overwrites the stack space with it's "special" value as a guard against subsequent uninitialized reads, this leads to the value ofthis->m_barrier_grid.m_g.m_num_vertices to change to the "uninitialized" special value and the subsequent crash. - Nothing else inside
*thisseems to be touched. - My assumption is that something during initialization of the maze was created on the stack so that
this->m_barrier_grid.m_g.m_num_verticesgoes out of scope. But I don't see how.
So at this point I'm stumped.
last-mod-time has problems with the stat call on osx (non fatal, but incorrect results). This would be easiest to fix by using the c++17 filesystem header, is that permissible?
Ooops looks like I added that one to the wrong bug report: the example uses several unix-isms which will never compile on windows. So yes, either
astar_maze works for me (osx)
Even valgrind is not complaining, so I cannot test anything. I think llvm has similar tools to msvc, and I'll try to figure out what they are.
In the mean time, one thing that smells funny to me is the constructors of the member of maze. The initialization of m_barrier_grid calls create_barrier_grid which uses m_barriers which is initialized after barrier_grid, and so is uinititialized during the call to create_barrier_grid.
If this is the problem, then swapping lines 123 and 125 (the definitions of m_barrier_grid and m_barrier) so that m_barrier is constructed first should fix things.
OK, there is a bug somewhere, but it's masked by some very clever named-return-value optimisations with gcc and clang. Here's what I have so far:
- During:
maze random_maze(std::size_t x, std::size_t y) {
maze m(x, y);
The member variable m.m_barrier_grid.m_g is of type const boost::grid_graph<2,unsigned int,unsigned int>& and "points to" the first member of m which is m.m_grid.
- When the function returns, then the reference
m.m_barrier_grid.m_gis left still pointing to the variable that was created inside the subroutine, and not new the copy that was returned. - When NVRO is in effect, then the address of the variable inside
random_mazeis the same as the one inside main and the issue is masked. GCC and Clang it appears do this all the time (and very cleverly so), while msvc only does it as an optimisation in release mode. - This all tracks back to
filtered_graph_basewhich stores actually stores the reference - IMO this type should be non-copyable to prevent this type of bug (it's already non-assignable of course). I might just change it locally and see what if anything breaks. - I wonder if there are other issues like this lurking?
Making filtered_graph_base non-copyable breaks a lot of code - there are a lot of factory functions that create filtered_graph's. filter_graph is actually documented to store a reference and mentions that care should be taken with it's use, but that still didn't stop the authors from falling into this trap.
In the mean time I have an easy fix for astar_maze.cpp which I'll push shortly...
Pushed fixes for astar_maze.cpp: https://github.com/boostorg/graph/commit/32bc0e1dff9554e179f54cb287af9a5541359a25