This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
llvm/
-
lib/CodeGen/
-
CodeGen/
1
LiveDebugVariables.cpp
-
test/DebugInfo/X86/
-
DebugInfo/
-
X86/
-
live-debug-vars-loc-limit.ll

Differential D101373

[DebugInfo] Drop DBG_VALUE_LISTs with an excessive number of debug operands
ClosedPublic

Authored by StephenTozer on Apr 27 2021, 9:10 AM.

Download Raw Diff

Details

Reviewers

djtodoro
aprantl
probinson
jmorse
Orlando
dblaikie

Commits

rGb622df3c9398: [DebugInfo] Drop DBG_VALUE_LISTs with an excessive number of debug operands

Summary

This patch addresses a crash that has been observed from rG791930d74087, although the underlying error was introduced in patch rG7d0cafba962c. Currently, LiveDebugVariables asserts that no DBG_VALUE_LIST can have 64 or more debug operands. This assertion was added on the assumption that this limit was high enough that it would almost certainly be hit only as the result of an earlier compiler error, but a relatively simple reproducer has been found that triggers this assertion; this was noted in the latest review comments for D91722.

This patch fixes this issue by removing the assertion, and instead dropping the DBG_VALUE_LISTs. It may technically be possible to keep them, but we should make sure that such complex DBG_VALUE_LISTs will not introduce significant performance issues first. There may also be issues with the use of IntervalMap in LiveDebugVariables; the reason for the current limit of <64 operands is that supporting any greater number of operands would increase the size of the DbgVariableValue class, which is kept as small as possible to be used as the value in an IntervalMap.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

StephenTozer created this revision.Apr 27 2021, 9:10 AM

Herald added a subscriber: hiraditya. · View Herald TranscriptApr 27 2021, 9:10 AM

StephenTozer requested review of this revision.Apr 27 2021, 9:10 AM

Herald added a project: Restricted Project. · View Herald TranscriptApr 27 2021, 9:10 AM

Herald added a subscriber: llvm-commits. · View Herald Transcript

Harbormaster completed remote builds in B101185: Diff 340866.Apr 27 2021, 9:43 AM

This presumably needs a test case.

But also: The DWARF we're generating here is pretty heinous - is the intent that this is a short term fix, but some attempt to reign in these /massive/ expressions is on your/someone's TODO list?

Hmm, I guess maybe the DWARF expression size isn't the fault of the DWARF location generation itself, instead maybe it's a function of some weird/bad codegen? We're spilling all these values to the stack even at -O3? 248 byte stack frame for this function?

llvm/lib/CodeGen/LiveDebugVariables.cpp
121–122	make_unique, perhaps?

In D101373#2720352, @dblaikie wrote:

This presumably needs a test case.

Indeed, I'm working on right now - it just needs to be reduced significantly, any "organic" reproducer for this results in an excessively large test file (~1000 lines with the simplest .cpp reproducer).

But also: The DWARF we're generating here is pretty heinous - is the intent that this is a short term fix, but some attempt to reign in these /massive/ expressions is on your/someone's TODO list?

I think right now it's a bit of an open question as to what we do with these. It does leave us in slightly unfamiliar territory w.r.t debug info; usually our concern is just recovering as much debug info as we can, and we usually only intentionally remove it either when we need to due to an optimization, or when some debug info is redundant/unused. I think we can do some testing to determine what should be considered the limit (if any), and/or use a heuristic to find debug information that can be dropped without causing much impact to an end-user.

Hmm, I guess maybe the DWARF expression size isn't the fault of the DWARF location generation itself, instead maybe it's a function of some weird/bad codegen? We're spilling all these values to the stack even at -O3? 248 byte stack frame for this function?

While this is a weird case, it seems to be legitimate as far as I can tell - we have a variable with at least one use, and a value that is the sum of 64 (or more) function calls. I may be missing something (I'm not a CodeGen expert by any means), but it seems as though the DBG_VALUE_LIST itself is correct - we've 64 different values and our variable is known to be the sum of all of them. It's possible that there is a failure to efficiently optimize here, as we have the result of every single function call either in a register or on the stack and then sum them, rather than reusing a single register/stack slot for each call and calculating a rolling sum, but the code is still correct and LiveDebugVariables shouldn't crash upon encountering it.

In D101373#2720558, @StephenTozer wrote:

In D101373#2720352, @dblaikie wrote:

This presumably needs a test case.

Indeed, I'm working on right now - it just needs to be reduced significantly, any "organic" reproducer for this results in an excessively large test file (~1000 lines with the simplest .cpp reproducer).

Hmm - not sure I follow. The LLVM IR for the reproduce @rupprecht gave seems to be about half that (~460 lines) - in any case, one workaround could be to include a test-only flag for the limit and set the limit artificially low for testing.

But also: The DWARF we're generating here is pretty heinous - is the intent that this is a short term fix, but some attempt to reign in these /massive/ expressions is on your/someone's TODO list?

I think right now it's a bit of an open question as to what we do with these. It does leave us in slightly unfamiliar territory w.r.t debug info; usually our concern is just recovering as much debug info as we can, and we usually only intentionally remove it either when we need to due to an optimization, or when some debug info is redundant/unused. I think we can do some testing to determine what should be considered the limit (if any), and/or use a heuristic to find debug information that can be dropped without causing much impact to an end-user.

Yeah, fair

Hmm, I guess maybe the DWARF expression size isn't the fault of the DWARF location generation itself, instead maybe it's a function of some weird/bad codegen? We're spilling all these values to the stack even at -O3? 248 byte stack frame for this function?

While this is a weird case, it seems to be legitimate as far as I can tell - we have a variable with at least one use, and a value that is the sum of 64 (or more) function calls. I may be missing something (I'm not a CodeGen expert by any means), but it seems as though the DBG_VALUE_LIST itself is correct - we've 64 different values and our variable is known to be the sum of all of them. It's possible that there is a failure to efficiently optimize here, as we have the result of every single function call either in a register or on the stack and then sum them, rather than reusing a single register/stack slot for each call and calculating a rolling sum, but the code is still correct and LiveDebugVariables shouldn't crash upon encountering it.

Sorry, I should clarify: I mean the actual assembly generated for this seems inefficient - even when building without debug info. It uses a whole lot of stack space, when it could use one register and add to it between each call. (@Carrot - is this of any interest to you, maybe? Check the codegen for https://reviews.llvm.org/D91722#2718316 - each call has its value placed on a separate stack slot, then after all the calls each stack value is added together/onto ebx - rather than adding onto a callee save register after each call, perhaps? (I think that's what GCC does))
Though fixing the codegen of course wouldn't guarantee the debug info never grows this large - so fixing the growth is important even if someone changes the codegen to be less problematic in this specific case.

In D101373#2720575, @dblaikie wrote:

Hmm - not sure I follow. The LLVM IR for the reproduce @rupprecht gave seems to be about half that (~460 lines) - in any case, one workaround could be to include a test-only flag for the limit and set the limit artificially low for testing.

Yeah, I was just planning on producing a test case that starts as late in the pipeline as possible; the MIR prior to beginning register allocation is 977 lines, from a 351 line LLVM IR file. If it's better to use the IR file for this (which may be reasonable given the size difference), then that simplifies things - although it can still probably be reduced further. If that doesn't work, then using a test flag might be the way to go.

In D101373#2720592, @StephenTozer wrote:

In D101373#2720575, @dblaikie wrote:

Hmm - not sure I follow. The LLVM IR for the reproduce @rupprecht gave seems to be about half that (~460 lines) - in any case, one workaround could be to include a test-only flag for the limit and set the limit artificially low for testing.

Yeah, I was just planning on producing a test case that starts as late in the pipeline as possible; the MIR prior to beginning register allocation is 977 lines, from a 351 line LLVM IR file. If it's better to use the IR file for this (which may be reasonable given the size difference), then that simplifies things - although it can still probably be reduced further. If that doesn't work, then using a test flag might be the way to go.

Ah, right - I haven't dabbled much with the MIR test cases, I can see how that easily doubles the size of the test, etc. I'd personally be OK with a plain IR case for something like this, perhaps. (@aprantl @JDevlieghere any thoughts on this?)

Add reduced test case, use std::make_unique to initialize unique_ptrs.

Oh, right. I just realized this test doesn't have to be especially realistic because it's only about the length of the expression - not how we got such a long expression in the first place?

So perhaps we could include a comment describing the real-ish situation, but then make the test case really simple/obvious? - it doesn't need any IR instructions really, and can have an expression that's simple/uninteresting in some way? Like adding together the constant 1 repeatedly?

In D101373#2720962, @dblaikie wrote:

Oh, right. I just realized this test doesn't have to be especially realistic because it's only about the length of the expression - not how we got such a long expression in the first place?

So perhaps we could include a comment describing the real-ish situation, but then make the test case really simple/obvious? - it doesn't need any IR instructions really, and can have an expression that's simple/uninteresting in some way? Like adding together the constant 1 repeatedly?

Yes, that would work - I've checked that as well, and there can be an LL test case of just over 30 lines (although to be more specific, they have to be different constants - identical values will be coalesced just above the assert in question). One thing is that I suspect we might have change it back to the register form in the future however; on the topic of reducing the size of expressions, DIExpression optimization has come up before. The simplest forms of this to implement would be removal of no-ops subexpressions (like "multiply by 1), and simplifying constant subexpressions. This would cause an issue with the test later on, at which point we'd revert back to the test currently in this patch.

That being said, we don't have to bend over backwards to accomodate future potential changes; I can just add a note to the test pointing to this review to ensure that if it breaks later as the result of such a change being added, whoever picks it up doesn't have to go back to square 1 on finding a reproducer.

Simplify test case by using constants in the DIArgList instead of SSA values.

Harbormaster completed remote builds in B101245: Diff 340953.Apr 27 2021, 3:52 PM

In D101373#2721021, @StephenTozer wrote:

In D101373#2720962, @dblaikie wrote:

Oh, right. I just realized this test doesn't have to be especially realistic because it's only about the length of the expression - not how we got such a long expression in the first place?

So perhaps we could include a comment describing the real-ish situation, but then make the test case really simple/obvious? - it doesn't need any IR instructions really, and can have an expression that's simple/uninteresting in some way? Like adding together the constant 1 repeatedly?

Yes, that would work - I've checked that as well, and there can be an LL test case of just over 30 lines (although to be more specific, they have to be different constants - identical values will be coalesced just above the assert in question). One thing is that I suspect we might have change it back to the register form in the future however; on the topic of reducing the size of expressions, DIExpression optimization has come up before. The simplest forms of this to implement would be removal of no-ops subexpressions (like "multiply by 1), and simplifying constant subexpressions. This would cause an issue with the test later on, at which point we'd revert back to the test currently in this patch.

Guess you could change it to an MIR test case now that it can be further reduced like this - but up to you, I wouldn't insist on it.

If there's some way to make an irreducable expression, that'd be handy, but nothing comes immediately to mind... perhaps a parameter that's a pointer to an array and an expression that adds many elements from that array together? Not sure. If there's something reasonably easy to do there it would be nice if the test was more reliable - but I wouldn't spend ages on it.

That being said, we don't have to bend over backwards to accomodate future potential changes; I can just add a note to the test pointing to this review to ensure that if it breaks later as the result of such a change being added, whoever picks it up doesn't have to go back to square 1 on finding a reproducer.

Yeah, some comments/breadcrumbs should suffice.

This revision is now accepted and ready to land.Apr 27 2021, 5:33 PM

Hope the other reviewers on this take a look despite my signing off on it - I think it's an interesting question of what limits (if any) we place on DWARF expressions if we they do correctly describe the variable location but it happens to be long/expensive to do so.

Harbormaster completed remote builds in B101276: Diff 341000.Apr 27 2021, 6:25 PM

Closed by commit rGb622df3c9398: [DebugInfo] Drop DBG_VALUE_LISTs with an excessive number of debug operands (authored by StephenTozer). · Explain WhyApr 28 2021, 2:41 AM

This revision was automatically updated to reflect the committed changes.

StephenTozer added a commit: rGb622df3c9398: [DebugInfo] Drop DBG_VALUE_LISTs with an excessive number of debug operands.

nathanchance mentioned this in D91722: [DebugInfo] Use variadic debug values to salvage BinOps and GEP instrs with non-const operands.Apr 30 2021, 8:43 PM

Revision Contents

Path

Size

llvm/

lib/

CodeGen/

LiveDebugVariables.cpp

38 lines

test/

DebugInfo/

X86/

live-debug-vars-loc-limit.ll

48 lines

Diff 341110

llvm/lib/CodeGen/LiveDebugVariables.cpp

Show First 20 Lines • Show All 112 Lines • ▼ Show 20 Lines

for (unsigned LocNo : NewLocs) {

else {

// Loc duplicates an element in LocNos; replace references to Op

// with references to the duplicating element.

unsigned OpIdx = LocNoVec.size();

unsigned DuplicatingIdx = std::distance(LocNoVec.begin(), It);

Expression =

DIExpression::replaceArg(Expression, OpIdx, DuplicatingIdx);

}

// A debug value referencing 64+ unique machine locations is very likely

// FIXME: Debug values referencing 64+ unique machine locations are rare and

dblaikieUnsubmitted

Not Done

FragmentInfoOpt->SizeInBits);

- LocNos.reset(new unsigned[LocNoCount]());

+ LocNos = std::make_unique<unsigned[]>(LocNoCount);

LocNos[0] = UndefLocNo;

make_unique, perhaps?

dblaikie: make_unique, perhaps?

// to be the result of a bug earlier in the pipeline. If by some means this

// currently unsupported for performance reasons. If we can verify that

// limit is validly reached, then we can add a byte to the size of

// performance is acceptable for such debug values, we can increase the

// LocNoCount.

// bit-width of LocNoCount to 14 to enable up to 16384 unique machine

assert(LocNoVec.size() < 64 &&

// locations. We will also need to verify that this does not cause issues

"debug value containing 64+ unique machine locations is not "

// with LiveDebugVariables' use of IntervalMap.

"supported by Live Debug Variables");

if (LocNoVec.size() < 64) {

LocNoCount = LocNoVec.size();

if (LocNoCount > 0) {

LocNos.reset(new unsigned[LocNoCount]());

LocNos = std::make_unique<unsigned[]>(LocNoCount);

std::copy(LocNoVec.begin(), LocNoVec.end(), loc_nos_begin());

}

} else {

LLVM_DEBUG(dbgs() << "Found debug value with 64+ unique machine "

"locations, dropping...\n");

LocNoCount = 1;

// Turn this into an undef debug value list; right now, the simplest form

// of this is an expression with one arg, and an undef debug operand.

Expression =

DIExpression::get(Expr.getContext(), {dwarf::DW_OP_LLVM_arg, 0,

dwarf::DW_OP_stack_value});

if (auto FragmentInfoOpt = Expr.getFragmentInfo())

Expression = *DIExpression::createFragmentExpression(

Expression, FragmentInfoOpt->OffsetInBits,

FragmentInfoOpt->SizeInBits);

LocNos = std::make_unique<unsigned[]>(LocNoCount);

LocNos[0] = UndefLocNo;

}

DbgVariableValue() : LocNoCount(0), WasIndirect(0), WasList(0) {}

DbgVariableValue(const DbgVariableValue &Other)

: LocNoCount(Other.LocNoCount), WasIndirect(Other.getWasIndirect()),

WasList(Other.getWasList()), Expression(Other.getExpression()) {

if (Other.getLocNoCount()) {

LocNos.reset(new unsigned[Other.getLocNoCount()]);

▲ Show 20 Lines • Show All 1,604 Lines • Show Last 20 Lines

llvm/test/DebugInfo/X86/live-debug-vars-loc-limit.ll

This file was added.

				; RUN: llc --stop-after=virtregrewriter -o - %s \| FileCheck %s

				; Check that any debug value with 64+ unique machine location operands is set
				; undef by LiveDebugVariables.
				; This test uses constant i32 values in the DIArgList instead of SSA values, as
				; it allows the test case to be much simpler. If at some point we are able to
				; simplify such constant expressions, this test will fail; if that happens,
				; there is another version of this test that uses SSA values at:
				; https://reviews.llvm.org/D101373?id=340953

				; CHECK: ![[VAR_A:[0-9]+]] = !DILocalVariable(name: "a"

				; CHECK-NOT: DBG_VALUE
				; CHECK: DBG_VALUE_LIST ![[VAR_A]], !DIExpression(DW_OP_LLVM_arg, 0, DW_OP_stack_value), $noreg
				; CHECK-NOT: DBG_VALUE

				target datalayout = "e-m:e-p270:32:32-p271:32:32-p272:64:64-i64:64-f80:128-n8:16:32:64-S128"
				target triple = "x86_64-unknown-linux-gnu"

				define dso_local i32 @_Z3fooi(i32 returned %b) local_unnamed_addr !dbg !8 {
				entry:
				call void @llvm.dbg.value(metadata !DIArgList(i32 1, i32 126, i32 124, i32 122, i32 120, i32 118, i32 116, i32 114, i32 112, i32 110, i32 108, i32 106, i32 104, i32 102, i32 100, i32 98, i32 96, i32 94, i32 92, i32 90, i32 88, i32 86, i32 84, i32 82, i32 80, i32 78, i32 76, i32 74, i32 72, i32 70, i32 68, i32 66, i32 64, i32 62, i32 60, i32 58, i32 56, i32 54, i32 52, i32 50, i32 48, i32 46, i32 44, i32 42, i32 40, i32 38, i32 36, i32 34, i32 32, i32 30, i32 28, i32 26, i32 24, i32 22, i32 20, i32 18, i32 16, i32 14, i32 12, i32 10, i32 8, i32 6, i32 4, i32 2), metadata !14, metadata !DIExpression(DW_OP_LLVM_arg, 0, DW_OP_LLVM_arg, 63, DW_OP_plus, DW_OP_LLVM_arg, 62, DW_OP_plus, DW_OP_LLVM_arg, 61, DW_OP_plus, DW_OP_LLVM_arg, 60, DW_OP_plus, DW_OP_LLVM_arg, 59, DW_OP_plus, DW_OP_LLVM_arg, 58, DW_OP_plus, DW_OP_LLVM_arg, 57, DW_OP_plus, DW_OP_LLVM_arg, 56, DW_OP_plus, DW_OP_LLVM_arg, 55, DW_OP_plus, DW_OP_LLVM_arg, 54, DW_OP_plus, DW_OP_LLVM_arg, 53, DW_OP_plus, DW_OP_LLVM_arg, 52, DW_OP_plus, DW_OP_LLVM_arg, 51, DW_OP_plus, DW_OP_LLVM_arg, 50, DW_OP_plus, DW_OP_LLVM_arg, 49, DW_OP_plus, DW_OP_LLVM_arg, 48, DW_OP_plus, DW_OP_LLVM_arg, 47, DW_OP_plus, DW_OP_LLVM_arg, 46, DW_OP_plus, DW_OP_LLVM_arg, 45, DW_OP_plus, DW_OP_LLVM_arg, 44, DW_OP_plus, DW_OP_LLVM_arg, 43, DW_OP_plus, DW_OP_LLVM_arg, 42, DW_OP_plus, DW_OP_LLVM_arg, 41, DW_OP_plus, DW_OP_LLVM_arg, 40, DW_OP_plus, DW_OP_LLVM_arg, 39, DW_OP_plus, DW_OP_LLVM_arg, 38, DW_OP_plus, DW_OP_LLVM_arg, 37, DW_OP_plus, DW_OP_LLVM_arg, 36, DW_OP_plus, DW_OP_LLVM_arg, 35, DW_OP_plus, DW_OP_LLVM_arg, 34, DW_OP_plus, DW_OP_LLVM_arg, 33, DW_OP_plus, DW_OP_LLVM_arg, 32, DW_OP_plus, DW_OP_LLVM_arg, 31, DW_OP_plus, DW_OP_LLVM_arg, 30, DW_OP_plus, DW_OP_LLVM_arg, 29, DW_OP_plus, DW_OP_LLVM_arg, 28, DW_OP_plus, DW_OP_LLVM_arg, 27, DW_OP_plus, DW_OP_LLVM_arg, 26, DW_OP_plus, DW_OP_LLVM_arg, 25, DW_OP_plus, DW_OP_LLVM_arg, 24, DW_OP_plus, DW_OP_LLVM_arg, 23, DW_OP_plus, DW_OP_LLVM_arg, 22, DW_OP_plus, DW_OP_LLVM_arg, 21, DW_OP_plus, DW_OP_LLVM_arg, 20, DW_OP_plus, DW_OP_LLVM_arg, 19, DW_OP_plus, DW_OP_LLVM_arg, 18, DW_OP_plus, DW_OP_LLVM_arg, 17, DW_OP_plus, DW_OP_LLVM_arg, 16, DW_OP_plus, DW_OP_LLVM_arg, 15, DW_OP_plus, DW_OP_LLVM_arg, 14, DW_OP_plus, DW_OP_LLVM_arg, 13, DW_OP_plus, DW_OP_LLVM_arg, 12, DW_OP_plus, DW_OP_LLVM_arg, 11, DW_OP_plus, DW_OP_LLVM_arg, 10, DW_OP_plus, DW_OP_LLVM_arg, 9, DW_OP_plus, DW_OP_LLVM_arg, 8, DW_OP_plus, DW_OP_LLVM_arg, 7, DW_OP_plus, DW_OP_LLVM_arg, 6, DW_OP_plus, DW_OP_LLVM_arg, 5, DW_OP_plus, DW_OP_LLVM_arg, 4, DW_OP_plus, DW_OP_LLVM_arg, 3, DW_OP_plus, DW_OP_LLVM_arg, 2, DW_OP_plus, DW_OP_LLVM_arg, 1, DW_OP_plus, DW_OP_stack_value)), !dbg !15
				ret i32 %b, !dbg !16
				}

				declare void @llvm.dbg.value(metadata, metadata, metadata)

				!llvm.dbg.cu = !{!0}
				!llvm.module.flags = !{!3, !4, !5, !6}
				!llvm.ident = !{!7}

				!0 = distinct !DICompileUnit(language: DW_LANG_C_plus_plus, file: !1, producer: "clang version 13.0.0", isOptimized: true, runtimeVersion: 0, emissionKind: FullDebug, enums: !2, splitDebugInlining: false, nameTableKind: None)
				!1 = !DIFile(filename: "live-debug-vars-loc-limit.cpp", directory: "/")
				!2 = !{}
				!3 = !{i32 7, !"Dwarf Version", i32 4}
				!4 = !{i32 2, !"Debug Info Version", i32 3}
				!5 = !{i32 1, !"wchar_size", i32 4}
				!6 = !{i32 7, !"uwtable", i32 1}
				!7 = !{!"clang version 13.0.0"}
				!8 = distinct !DISubprogram(name: "foo", linkageName: "_Z3fooi", scope: !1, file: !1, line: 1, type: !9, scopeLine: 1, flags: DIFlagPrototyped \| DIFlagAllCallsDescribed, spFlags: DISPFlagDefinition \| DISPFlagOptimized, unit: !0, retainedNodes: !12)
				!9 = !DISubroutineType(types: !10)
				!10 = !{!11, !11}
				!11 = !DIBasicType(name: "int", size: 32, encoding: DW_ATE_signed)
				!12 = !{!13, !14}
				!13 = !DILocalVariable(name: "b", arg: 1, scope: !8, file: !1, line: 1, type: !11)
				!14 = !DILocalVariable(name: "a", scope: !8, file: !1, line: 2, type: !11)
				!15 = !DILocation(line: 0, scope: !8)
				!16 = !DILocation(line: 3, column: 3, scope: !8)