Split dummy in region inference graph into distinct source and sink nodes.

pnkfelix · pnkfelix · commit d15ca96eda70 · 2016-02-18T23:16:41.000+01:00
Why do this: The RegionGraph representation previously conflated all of the non-variable regions (i.e. the concrete regions such as lifetime parameters to the current function) into a single dummy node. A single dummy node leads DFS on a graph `'a -> '_#1 -> '_#0 -> 'b` to claim that `'_#1` is reachable from `'_#0` (due to `'a` and `'b` being conflated in the graph representation), which is incorrect (and can lead to soundness bugs later on in compilation, see #30438). Splitting the dummy node ensures that DFS will never introduce new ancestor relationships between nodes for variable regions in the graph.
diff --git a/src/librustc/middle/infer/region_inference/mod.rs b/src/librustc/middle/infer/region_inference/mod.rs
@@ -1105,7 +1105,14 @@ impl<'a, 'tcx> RegionVarBindings<'a, 'tcx> {
         for _ in 0..num_vars {
             graph.add_node(());
         }
-        let dummy_idx = graph.add_node(());
+
+        // Issue #30438: two distinct dummy nodes, one for incoming
+        // edges (dummy_source) and another for outgoing edges
+        // (dummy_sink). In `dummy -> a -> b -> dummy`, using one
+        // dummy node leads one to think (erroneously) there exists a
+        // path from `b` to `a`. Two dummy nodes sidesteps the issue.
+        let dummy_source = graph.add_node(());
+        let dummy_sink = graph.add_node(());
 
         for (constraint, _) in constraints.iter() {
             match *constraint {
@@ -1115,10 +1122,10 @@ impl<'a, 'tcx> RegionVarBindings<'a, 'tcx> {
                                    *constraint);
                 }
                 ConstrainRegSubVar(_, b_id) => {
-                    graph.add_edge(dummy_idx, NodeIndex(b_id.index as usize), *constraint);
+                    graph.add_edge(dummy_source, NodeIndex(b_id.index as usize), *constraint);
                 }
                 ConstrainVarSubReg(a_id, _) => {
-                    graph.add_edge(NodeIndex(a_id.index as usize), dummy_idx, *constraint);
+                    graph.add_edge(NodeIndex(a_id.index as usize), dummy_sink, *constraint);
                 }
             }
         }

Original file line number	Diff line number	Diff line change
`@@ -1105,7 +1105,14 @@ impl<'a, 'tcx> RegionVarBindings<'a, 'tcx> {`
`1105`	`1105`	`for _ in 0..num_vars {`
`1106`	`1106`	`graph.add_node(());`
`1107`	`1107`	`}`
`1108`		`- let dummy_idx = graph.add_node(());`
	`1108`	`+`
	`1109`	`+ // Issue #30438: two distinct dummy nodes, one for incoming`
	`1110`	`+ // edges (dummy_source) and another for outgoing edges`
	`1111`	+ // (dummy_sink). In `dummy -> a -> b -> dummy`, using one
	`1112`	`+ // dummy node leads one to think (erroneously) there exists a`
	`1113`	+ // path from `b` to `a`. Two dummy nodes sidesteps the issue.
	`1114`	`+ let dummy_source = graph.add_node(());`
	`1115`	`+ let dummy_sink = graph.add_node(());`
`1109`	`1116`
`1110`	`1117`	`for (constraint, _) in constraints.iter() {`
`1111`	`1118`	`match *constraint {`
`@@ -1115,10 +1122,10 @@ impl<'a, 'tcx> RegionVarBindings<'a, 'tcx> {`
`1115`	`1122`	`*constraint);`
`1116`	`1123`	`}`
`1117`	`1124`	`ConstrainRegSubVar(_, b_id) => {`
`1118`		`- graph.add_edge(dummy_idx, NodeIndex(b_id.index as usize), *constraint);`
	`1125`	`+ graph.add_edge(dummy_source, NodeIndex(b_id.index as usize), *constraint);`
`1119`	`1126`	`}`
`1120`	`1127`	`ConstrainVarSubReg(a_id, _) => {`
`1121`		`- graph.add_edge(NodeIndex(a_id.index as usize), dummy_idx, *constraint);`
	`1128`	`+ graph.add_edge(NodeIndex(a_id.index as usize), dummy_sink, *constraint);`
`1122`	`1129`	`}`
`1123`	`1130`	`}`
`1124`	`1131`	`}`