working and warning tweak for UninitializedMemoryHacks

Summary: Improve documentation and use the correct pragma for warning on the unsupported path. Reviewed By: ot Differential Revision: D5264582 fbshipit-source-id: 710ee46fef6d8f37f665f4bb6f7e4c5dc0b27436

working and warning tweak for UninitializedMemoryHacks
Summary: Improve documentation and use the correct pragma for warning on the unsupported path. Reviewed By: ot Differential Revision: D5264582 fbshipit-source-id: 710ee46fef6d8f37f665f4bb6f7e4c5dc0b27436
2ce93cfb · Nathan Bronson · Facebook Github Bot · 59d010b5 · 2ce93cfb
Commit 2ce93cfb authored Jun 17, 2017 by Nathan Bronson Committed by Facebook Github Bot Jun 17, 2017
Hide whitespace changes
Inline Side-by-side

Showing with 15 additions and 8 deletions

folly/memory/UninitializedMemoryHacks.h folly/memory/UninitializedMemoryHacks.h +15 -8

No files found.
--- a/folly/memory/UninitializedMemoryHacks.h
+++ b/folly/memory/UninitializedMemoryHacks.h
@@ -46,8 +46,14 @@ void unsafeVectorSetLargerSize(std::vector<T>& v, std::size_t n);
 * IMPORTANT: These functions can be unsafe if used improperly.  If you
 * don't write to an element with index >= oldSize and < newSize, reading
 * the element can expose arbitrary memory contents to the world, including
- * the contents of old strings.  Use ASAN in your tests, and pay extra
- * attention to failure paths.
+ * the contents of old strings.  If you're lucky you'll get a segfault,
+ * because the kernel is only required to fault in new pages on write
+ * access.  MSAN should be able to catch problems in the common case that
+ * the string or vector wasn't previously shrunk.
+ *
+ * Pay extra attention to your failure paths.  For example, if you try
+ * to read directly into a caller-provided string, make sure to clear
+ * the string when you get an I/O error.
 *
 * You should only use this if you have profiling data from production
 * that shows that this is not a premature optimization.  This code is
@@ -58,14 +64,15 @@ void unsafeVectorSetLargerSize(std::vector<T>& v, std::size_t n);
 *
 * NOTE: Just because .resize() shows up in your profile (probably
 * via one of the intrinsic memset implementations) doesn't mean that
- * these functions will make your program faster.  Most of the cost
- * of memset comes from cache misses, so avoiding the memset means
+ * these functions will make your program faster.  A lot of the cost
+ * of memset comes from cache misses, so avoiding the memset can mean
 * that the cache miss cost just gets pushed to the following code.
 * resizeWithoutInitialization can be a win when the contents are bigger
 * than a cache level, because the second access isn't free in that case.
- * It can also be a win if the final length of the string or vector isn't
- * actually known, so the suffix will be chopped off with a second call
- * to .resize().
+ * It can be a win when the memory is already cached, so touching it
+ * doesn't help later code.  It can also be a win if the final length
+ * of the string or vector isn't actually known, so the suffix will be
+ * chopped off with a second call to .resize().
 */

 /**
@@ -317,7 +324,7 @@ struct MakeUnsafeVectorSetLargerSize : std::vector<T> {
  FOLLY_DECLARE_VECTOR_RESIZE_WITHOUT_INIT_IMPL(TYPE)

 #else
-#warn "No implementation for resizeWithoutInitialization of std::vector"
+#warning "No implementation for resizeWithoutInitialization of std::vector"
 #endif

 } // namespace detail