How to force GCC to assume that a floating-point expression is non-negative?

by

You can write assert(x*x >= 0.f) as a compile-time promise instead of a runtime check as follows in GNU C:

#include <cmath>

float test1 (float x)
{
    float tmp = x*x;
    if (!(tmp >= 0.0f)) 
        __builtin_unreachable();    
    return std::sqrt(tmp);
}

(related: What optimizations does __builtin_unreachable facilitate? You could also wrap if(!x)__builtin_unreachable() in a macro and call it promise() or something.)

But gcc doesn’t know how to take advantage of that promise that tmp is non-NaN and non-negative. We still get (Godbolt) the same canned asm sequence that checks for x>=0 and otherwise calls sqrtf to set errno. Presumably that expansion into a compare-and-branch happens after other optimization passes, so it doesn’t help for the compiler to know more.

This is a missed-optimization in the logic that speculatively inlines sqrt when -fmath-errno is enabled (on by default unfortunately).

What you want instead is -fno-math-errno, which is safe globally

This is 100% safe if you don’t rely on math functions ever setting errno. Nobody wants that, that’s what NaN propagation and/or sticky flags that record masked FP exceptions are for. e.g. C99/C++11 fenv access via #pragma STDC FENV_ACCESS ON and then functions like fetestexcept(). See the example in feclearexcept which shows using it to detect division by zero.

The FP environment is part of thread context while errno is global.

Support for this obsolete misfeature is not free; you should just turn it off unless you have old code that was written to use it. Don’t use it in new code: use fenv. Ideally support for -fmath-errno would be as cheap as possible but the rarity of anyone actually using __builtin_unreachable() or other things to rule out a NaN input presumably made it not worth developer’s time to implement the optimization. Still, you could report a missed-optimization bug if you wanted.

Real-world FPU hardware does in fact have these sticky flags that stay set until cleared, e.g. x86’s mxcsr status/control register for SSE/AVX math, or hardware FPUs in other ISAs. On hardware where the FPU can detect exceptions, a quality C++ implementation will support stuff like fetestexcept(). And if not, then math-errno probably doesn’t work either.

errno for math was an old obsolete design that C / C++ is still stuck with by default, and is now widely considered a bad idea. It makes it harder for compilers to inline math functions efficiently. Or maybe we’re not as stuck with it as I thought: Why errno is not set to EDOM even sqrt takes out of domain arguement? explains that setting errno in math functions is optional in ISO C11, and an implementation can indicate whether they do it or not. Presumably in C++ as well.

It’s a big mistake to lump -fno-math-errno in with value-changing optimizations like -ffast-math or -ffinite-math-only. You should strongly consider enabling it globally, or at least for the whole file containing this function.

float test2 (float x)
{
    return std::sqrt(x*x);
}

# g++ -fno-math-errno -std=gnu++17 -O3
test2(float):   # and test1 is the same
        mulss   xmm0, xmm0
        sqrtss  xmm0, xmm0
        ret

You might as well use -fno-trapping-math as well, if you aren’t ever going to unmask any FP exceptions with feenableexcept(). (Although that option isn’t required for this optimization, it’s only the errno-setting crap that’s a problem here.).

-fno-trapping-math doesn’t assume no-NaN or anything, it only assumes that FP exceptions like Invalid or Inexact won’t ever actually invoke a signal handler instead of producing NaN or a rounded result. -ftrapping-math is the default but it’s broken and “never worked” according to GCC dev Marc Glisse. (Even with it on, GCC does some optimizations which can change the number of exceptions that would be raised from zero to non-zero or vice versa. And it blocks some safe optimizations). But unfortunately, https://gcc.gnu.org/bugzilla/show_bug.cgi?id=54192 (make it off by default) is still open.

If you actually ever did unmask exceptions, it might be better to have -ftrapping-math, but again it’s very rare that you’d ever want that instead of just checking flags after some math operations, or checking for NaN. And it doesn’t actually preserve exact exception semantics anyway.

See SIMD for float threshold operation for a case where the -ftrapping-math default incorrectly blocks a safe optimization. (Even after hoisting a potentially-trapping operation so the C does it unconditionally, gcc makes non-vectorized asm that does it conditionally! So not only does GCC block vectorization, it changes the exception semantics vs. the C abstract machine.) -fno-trapping-math enables the expected optimization.

More Related Contents:

  1. How to remove “noise” from GCC/clang assembly output?
  2. How do you get assembler output from C/C++ source in gcc?
  3. Floating point division vs floating point multiplication
  4. What C/C++ compiler can use push pop instructions for creating local variables, instead of just increasing esp once?
  5. Is right shift undefined behavior if the count is larger than the width of the type?
  6. Labels in GCC inline assembly
  7. Efficient 128-bit addition using carry flag
  8. How do I call “cpuid” in Linux?
  9. Difference in performance between MSVC and GCC for highly optimized matrix multplication code
  10. Using bts assembly instruction with gcc compiler
  11. How is floating point conversion actually done in C++?(double to float or float to double)
  12. Assembly code fsqrt and fmul instructions
  13. Why does integer overflow on x86 with GCC cause an infinite loop?
  14. Why does this function push RAX to the stack as the first operation?
  15. std::stoi doesn’t exist in g++ 4.6.1 on MinGW
  16. Change floating point rounding mode
  17. Why does gcc compiler output pow(10,2) as 99 not 100? [duplicate]
  18. Update GCC on OSX
  19. How do you disable the unused variable warnings coming out of gcc in 3rd party code I do not wish to edit?
  20. Floating point Endianness?
  21. g++ How to get warning on ignoring function return value
  22. Why does `int ;` compile fine in C, but not in C++?
  23. Range based for-loop on array passed to non-main function
  24. Matlab vs C++ Double Precision
  25. Throw in constexpr function
  26. Is there a functional difference between “2.00” and “2.00f”?
  27. Calling an explicit constructor with a braced-init list: ambiguous or not?
  28. _GLIBCXX_USE_CXX11_ABI, GCC 4.8 and ABI compatibility
  29. Why can’t I move std::ofstream?
  30. Fun with uninitialized variables and compiler (GCC)

Leave a Comment