https://gcc.gnu.org/bugzilla/show_bug.cgi?id=98078
--- Comment #5 from CVS Commits <cvs-commit at gcc dot gnu.org> --- The master branch has been updated by Martin Jambor <jamb...@gcc.gnu.org>: https://gcc.gnu.org/g:b8188b7d7382e4a74af5dd6a125e76e8d43a68a5 commit r11-7525-gb8188b7d7382e4a74af5dd6a125e76e8d43a68a5 Author: Martin Jambor <mjam...@suse.cz> Date: Fri Mar 5 17:25:20 2021 +0100 ipa: Fix resolving speculations through cgraph_edge::set_call_stmt In the PR 98078 testcase, speculative call-graph edges which were created by IPA-CP are confirmed during inlining but cgraph_edge::set_call_stmt does not take it very well. The function enters the update_speculative branch and updates the edges in the speculation bundle separately (by a recursive call), but when it processes the first direct edge, most of the bundle actually ceases to exist because it is devirtualized. It nevertheless goes on to attempt to update the indirect edge (that has just been removed), which surprisingly gets as far as adding the edge to the call_site_hash, the same devirtualized edge for the second time, and that triggers an assert. Fixed by this patch which makes the function aware that it is about to resolve a speculation and do so instead of updating components of speculation. Also, it does so before dealing with the hash because the speculation resolution code needs the hash to point to the first speculative direct edge and also cleans the hash up by calling update_call_stmt_hash_for_removing_direct_edge. Bootstrapped and tested on x86_64-linux, also profile-LTO-bootstrapped on the same system. gcc/ChangeLog: 2021-01-20 Martin Jambor <mjam...@suse.cz> PR ipa/98078 * cgraph.c (cgraph_edge::set_call_stmt): Do not update all corresponding speculative edges if we are about to resolve sepculation. Make edge direct (and so resolve speculations) before removing it from call_site_hash. (cgraph_edge::make_direct): Relax the initial assert to allow calling the function on speculative direct edges.