What is my best approach to determining compiler behaviour for empty infinite loops? - McMap

About

What is my best approach to determining compiler behaviour for empty infinite loops?

Asked 15/5, 2015 at 15:1 Answered 17/5, 2015 at 4:44

Solved c++c++11

O

1

12

An infinite loop with an empty body has undefined behaviour in C++11. I don't know whether it also does in C, so let's say I'm writing embedded firmware in C++11 (I know, unlikely, but bear with me).

If my main were simply a:

while (true) {}

and the rest of the device's functionality were handled by interrupts, what approaches can I take in order to discover whether my implementation makes this loop safe and meaningful? Remembering that, per the standard, an implementation is free to do whatever it wants in this case, including removing the loop entirely.

Assume it's not clearly stated in the implementation's documentation, as I've never seen that.

Or is this a lost cause, and I should hack a workaround?

volatile unsigned int dummy = 0;

while (true) {
   // Make the loop well-defined...
   dummy++;

   // ...with a trivial operation that'll hardly ever even happen
   sleep(42*86400);
}

I recognise that embedded developers historically don't give much thought to this kind of thing, instead assuming a more "down to earth", "common sense" approach from their compiler. But I prefer to code rigourously to standards, to avoid surprises as much as possible.

Ornithology answered 15/5, 2015 at 15:1 Comment(18)

Strange you should have questions also :) – Beaut 15/5, 2015 at 15:3

@StraightLine: Occasionally ;) – Ornithology 15/5, 2015 at 15:4

If this is more than a theoretical question, your embedded CPU almost certainly has an instruction to halt operation until an interrupt comes its way. That would save some battery power (and, from what I gather, make your loop well-defined). – Redstone 15/5, 2015 at 15:5

@zneak: That sounds like the beginnings of a good answer ... :) – Ornithology 15/5, 2015 at 15:7

@Redstone It's not the case for every CPU.. – Melba 15/5, 2015 at 15:8

I wonder if something like __asm nop _endasm will be considered as "side effect" (well, it's out of standard I guess) – Melba 15/5, 2015 at 15:20

Having some MCU experience myself, I agree with @Redstone that going to a sleep/low power state is likely the best approach in practice. As for the question in your title, it sounds like the obvious approach is to look at the generated assembly? In most cases, I would expect to just see a single jump instruction (or similar) looping back to itself. – Calvaria 15/5, 2015 at 15:20

For the workaround case, a repeated read from a safe volatile memory space (like a hardware register) might be a good idea to ensure that the loop body doesn't get optimized away under any circumstances. – Amoroso 15/5, 2015 at 15:21

@SchighSchagh: Looking at generated assembly on one given build run doesn't really give you the information you need. Well, unless you're only going to ship that exact resulting binary. :) – Ornithology 15/5, 2015 at 15:21

You should also be aware that per 1.9p6, values that are neither volatile sig_atomic_t nor lock-free atomics have an unspecified value inside interrupt handlers, and become undefined if you modify them. – Redstone 15/5, 2015 at 15:41

I agree with @Zneak here. Lets take a Keil compiler for example, they have halt instructions defined in the notes. It stops the Program counter and wakes up as soon as the interrupt line hits. – Virge 15/5, 2015 at 16:16

Side note: while(true){} is not UB in C11; its "may be assumed to terminate" clause excludes loops whose controlling expression is a constant expression. – Dysphoria 15/5, 2015 at 16:25

Just curious - have you ever seen the loop being removed by any compiler? I've done quite some embedded programming for small front-end CPUs and used exactly the while(1); construct. I've never seen problems with it. – Transnational 15/5, 2015 at 19:30

What does the standard say about here: goto here; ? – Sharpeyed 15/5, 2015 at 21:5

@wcochran: The same above linked rules apply. – Ornithology 16/5, 2015 at 3:54

@StillLearning: It's the unexpected issues that I'm concerned about. By definition, we cannot enumerate them. Only the expected ones we can workaround in advance. In that spirit, I choose to leave no margin for error. – Ornithology 16/5, 2015 at 3:55

@LightnessRacesinOrbit - I see. In that case I guess the second part of your question is also the answer, i.e. volatile int dummy=1; while(dummy); This question also discuss the topic a bit: stackoverflow.com/questions/4437527 – Transnational 16/5, 2015 at 4:39

There is currently interest in how LLVM will handle this issue. How compiler makers think about it could give some insight into what's allowable and what isn't. – Redstone 16/7, 2015 at 18:55

I

2

How about looking at the assembly language output from your compiler?

g++ -std=c++0x x.cpp -S

outputs:

.L2:
        jmp     .L2

and

clang++-3.5 -S -std=c++11 x.cpp

outputs:

.LBB0_1:                                # =>This Inner Loop Header: Depth=1
        jmp     .LBB0_1

Indicative answered 17/5, 2015 at 4:44 Comment(3)

Looking at generated assembly on one given build run doesn't really give you the information you need. Well, unless you're only going to ship that exact resulting binary. :) – Ornithology 17/5, 2015 at 5:11

Some might assume that 'embedded firmware' implies an exact binary image. – Indicative 17/5, 2015 at 16:33

Good enough. And, frankly, probably the right answer. :) – Ornithology 25/6, 2015 at 19:50

Recommended topics

#Godot #Unity #Godot 4.X #Mongodb

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

© 2022 - 2024 — McMap. All rights reserved.