b_sanitize as an array, with compiler checks

[dcbaker]

The current state of Meson's sanitizer support is that we have a hardcoded set of of string values that can be chosen from. There's several problems with this:

1. some of those values don't work on some platforms, or specific versions of platforms, or on specific compilers on specific platforms. This makes it more than a simple "GCC has X, MSVC does not" issue. We really need to do a compiler/linker check
2. We don't support all of the possible values that a compiler might, and updates to Meson are required to udpate the list of supported values

To solve all of this I've moved to doing a compiler check for sanitizer arguments, rather than using a hardcoded list. This makes configuration slightly slower when using sanitizers, but much more robust.

Second, I've moved from a string argument to an array. Because we currently support either a single string or address,undefined we can do this transparently on the command line, the value of address,undefined is a valid array argument, as are single strings. So the command line of -Db_sanitize=... this is a 100% backwards compatible change. This simplifies things considerably as we don't have to deal with deprecations and collisions. In the Meson DSL, get_option('b_sanitize') has retained its current behavior of returning a string, with a guarantee that and order of address,undefined will always return address,undefined. If there are new values the value will be ','.join(opts) with no order guarantees. A new get_option('b_sanitizers') will return an array of sanitizers with no ordering guarantees. This keeps things relatively simple, but also provides backwards compatibility guarantees.

[tristan957]

Could we do something like if the meson_version defined by the project is >= 1.4.0, return an array, else return string?

[dcbaker]

That's what I did initially and others were absolutely against that. Having done CMake, I can see the concern

[tristan957]

Any reason you didn't want to continue with the b_sanitizers option? I think I would rather just have a new option than an array option that returns a string.

[dcbaker]

I would rather not add extra complexity of having mutually exclusive options if we don't need them, in this case b_sanitize already accepts the same format that b_sanitizers would return anyway. If you don't like the get_option('b_sanitizers'), perhaps we could come up with something different there? like a new keyword for get_option() like, get_option('b_sanitize', version : 2) or something like that?

[bonzini]

What is the CMake concern that you have in mind?

I don't think the version number is a good idea, it adds a new layer of opt-ins that is unnecessary when we already use the project's Meson version for deprecations.

I think b_sanitizers is a better name than b_sanitize, so a rename is fine if you want to kick the can a little bit further down the road (in the sense that I cannot think of any such new name for b_pie). However, the rename should be done contextually with deprecation of b_sanitize; -Db_sanitize should be automatically converted to -Db_sanitizers, with the old name surviving only as an argument to get_option().

With respect to the order, I would return the sanitizers in sorted order for get_option('b_sanitize'), since it's a simple generalization of the special case address,undefined.

[eli-schwartz]

The problem with a minimum version requirement is that up until now, the minimum version requirement was guaranteed to have no effect other than warnings control.

And not all projects use them at all! Which is "fine", but users get no real visibility into what version of meson you need, so they'd better upgrade regardless of which version of meson is provided by apt install.

Changing runtime behavior based on this, means that:

• people who bump their minimim version proactively may suddenly have a crash, and worse, that crash may be in conditional code that they didn't hit in local testing
• people who don't specify a minimum version either crash or don't crash, depending on which version of meson you use. CMake policies "don't have that issue" because the policy is separate from version and you opt into each one you want, and if you don't then you're just out of luck because you were expected to run a debug execution of cmake that reports deprecation warnings, then update your code (but not third-party functions) and flip the toggle and pray no third-party functions break

In contrast, renaming the option is the conservatively safe approach and cannot break projects, no matter how unlikely. And leaving aside developer implementation challenges, it's very straightforward for users.

[dcbaker]

I obviously like my get_option(name, version : ...) the most. I agree with Eli that there are some real gotchas to the version based approach. The keyword argument, while not perfect, gets the best of both approaches: It's explicit, it has 100% backwards compatibility, it's easy to implement, and it's easy to use, we don't end up with a proliferation of options. It would probably be a pretty easy feature for a linter to look for too.

The problem I have with renaming is it's simply not scalable. Pretty soon we'll end up with dozens of renamed options, sometimes with clunky names (b_pie_feature?). An end user then has to figure out that while they run meson setup -Db_pie=disabled that the have to in their script call get_option('b_pie_feature'). And then when we get to Meson 2.0, we have to decide what to do there. Do we pull a python and break everyone's build scripts in the short term, but have better long term maintainability (dict.iteritems() -> dict.items()), or do we remove the obvious name and get stuck with get_option('b_pie_feature') forever? Renaming is the option I'm actively against.

[bonzini]

And not all projects use them at all!

Should a minimum meson version produce a warning of its own? And then no version is equivalent to '>=1.3'.

It's explicit, it has 100% backwards compatibility, it's easy to implement, and it's easy to use,

I agree with everything except easy to use: the user still has to figure out that they write -Db_pie=disabled but they get false (and they can't distinguish auto from disabled) without adding the rare "version" keyword. It's not totally different from renaming in this respect, it's a better version of renaming but it shares some of the disadvantages.

[eli-schwartz]

Should a minimum meson version produce a warning of its own? And then no version is equivalent to '>=1.3'.

I'm very confused how this is supposed to solve the problem.

All projects without minimum versions that try to use this option would then immediately crash, instead of only crashing at some randomized date in the future. The goal isn't to have a flag day where everyone has to update their meson.build, but have that flag day be more predictable... the goal is to not have a flag day where lots of projects break.

[bonzini]

No, that would be if the default was >=1.4, not 1.3.

[tristan957]

The first 4 commits could probably just be pulled straight into master.

[eli-schwartz]

The first 4 commits could probably just be pulled straight into master.

Indeed they can, but I've only looked at 3 of them so far. Pushed as 0c3e84b...730cce0

[dcbaker]

Yeah, that's fine. The Rust part is necessary for this series, but I don't think would otherwise be used

[dcbaker]

@eli-schwartz, @bonzini: I'd like to try to summarize where we are, please correct me if I'm wrong. We have three proposals:

1. use the version to change the behavior
2. add new options for the new behavior
3. add a version keyword argument to get_option to change the behavior

Eli and I have reservations about 1. Another one I thought of last night is that this approach will be troublesome for Muon, since they have to lie and claim full 1.4 support to get the new behavior.

Paolo likes option 1 the best.

I like option 3 the best, and am completely opposed to 2

Eli is opposed to 1

Does this all sound right?

[eli-schwartz]

I have a slight preference for 2, in the sense that I'm not fundamentally opposed to 3 but if I were the one implementing it I'd gravitate towards implementing 2. But I think 3 is workable.

With that in mind, yes, I think that's about right.

[bonzini]

What I don't like of version: 2 is that it's very opaque and honestly I don't think it can ever go away. There won't be a Meson 2.0 in the foreseeable future IMO.

If we go for it I really think we should bite the bullet and add a policy like mechanism. It could be enabled per invocation with a compat_policy: { 'b_sanitize_array': true } or with an add_compat_policy().

Changing the name is fine with me but b_pie_feature is bad. Maybe b_link_pie is acceptable?

[dcbaker]

@obilaniu, any chance you could help me get the cuda stuff working? I tried to set up cuda locally, but I'm having a real hard time getting it working (something about nixos + not having nvidia drivers I think)

[tristan957]

Here is the traceback for CUDA:

Traceback (most recent call last):
  File "/__w/meson/meson/run_tests.py", line 306, in run_configure_inprocess
    returncode = mesonmain.run(commandlist, get_meson_script())
                 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/__w/meson/meson/mesonbuild/mesonmain.py", line 282, in run
    return CommandLineParser().run(args)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/__w/meson/meson/mesonbuild/mesonmain.py", line 193, in run
    return errorhandler(e, command)
           ^^^^^^^^^^^^^^^^^^^^^^^^
  File "/__w/meson/meson/mesonbuild/mesonmain.py", line 34, in errorhandler
    raise e
  File "/__w/meson/meson/mesonbuild/mesonmain.py", line 191, in run
    return options.run_func(options)
           ^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/__w/meson/meson/mesonbuild/msetup.py", line 365, in run
    app.generate()
  File "/__w/meson/meson/mesonbuild/msetup.py", line 188, in generate
    return self._generate(env, capture, vslite_ctx)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/__w/meson/meson/mesonbuild/msetup.py", line 253, in _generate
    captured_compile_args = intr.backend.generate(capture, vslite_ctx)
                            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/__w/meson/meson/mesonbuild/backend/ninjabackend.py", line 656, in generate
    self.generate_target(t)
  File "/__w/meson/meson/mesonbuild/backend/ninjabackend.py", line 1079, in generate_target
    elem = self.generate_link(target, outname, final_obj_list, linker, pch_objects, stdlib_args=stdlib_args)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/__w/meson/meson/mesonbuild/backend/ninjabackend.py", line 3445, in generate_link
    commands += compilers.get_base_link_args(target.get_options(),
                ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/__w/meson/meson/mesonbuild/compilers/compilers.py", line 369, in get_base_link_args
    raise MesonException(f'Linker {linker.name_string()} does not support sanitizer arguments {sani_args}')
mesonbuild.utils.core.MesonException: Linker nvcc does not support sanitizer arguments ['-Xcompiler=-fsanitize=address\\,undefined']

[pks-t]

@dcbaker I've rebased this PR and fixed the CUDA issue via pks-t@b87317b. Please feel free to cherry-pick that commit to fix the CUDA test failure.