This is an archive of the discontinued LLVM Phabricator instance.

Differential D19141

[SSP, 2/2] Create llvm.stackguard() intrinsic and lower it to LOAD_STACK_GUARD
ClosedPublic

Authored by timshen on Apr 14 2016, 4:41 PM.

Details

Reviewers
gottesmm
echristo
iteratee
Summary

With this change, ideally IR pass can always generate llvm.stackguard
call to get the stack guard; but for now there are still IR form stack
guard customizations around (see getIRStackGuard()). Future SSP
customization should go through LOAD_STACK_GUARD.

There is a behavior change: stack guard values are not CSEed anymore,
since we should never reuse the value in case that it has been spilled (and
corrupted). See ssp-guard-spill.ll. This also cause the change of stack size and codegen in X86 and AArch64 test cases.

The solution above isn't ideal. Ideally we'd like to know if the guard created in llvm.stackprotector() gets
spilled or not. If the value is spilled, discard the value and reload
stack guard; otherwise reuse the value. This can be done by teaching
register allocator to know how to rematerialize LOAD_STACK_GUARD and
force a rematerialization (which seems hard), or check for spilling in
expandPostRAPseudo. It only makes sense when the stack guard is a global
variable, which requires more instructions to load. Anyway, this seems to go out
of the scope of the current patch.

Diff Detail

Event Timeline

timshen updated this revision to Diff 53810.Apr 14 2016, 4:41 PM
timshen retitled this revision from to [SSP, 2/2] Create llvm.stackguard() intrinsic and lower it to LOAD_STACK_GUARD.
timshen updated this object.
timshen added reviewers: echristo, iteratee, gottesmm.
timshen added a subscriber: llvm-commits.
Herald added subscribers: mehdi_amini, srhines, danalbert and 2 others. · View Herald TranscriptApr 14 2016, 4:41 PM
echristo edited edge metadata.Apr 18 2016, 2:32 PM

Can you add in the patch description explanations of the changes in stack size and code generation?

A few inline comments as well.

Thanks!

-eric

lib/CodeGen/StackProtector.cpp
282–284

This looks weird, can you explain it?

test/CodeGen/AArch64/stack-guard-remat-bitcast.ll
9

This looks like what I'd expect, but can you explain why the test changed?

test/CodeGen/X86/ssp-guard-spill.ll
4

Add comments of what you're testing here.

timshen updated this revision to Diff 54125.Apr 18 2016, 3:16 PM
timshen marked 3 inline comments as done.
timshen edited edge metadata.

Updated comments.

timshen updated this object.Apr 18 2016, 3:18 PM
echristo accepted this revision.Apr 18 2016, 11:51 PM
echristo edited edge metadata.

I'm going to go ahead and approve this. It's definitely going down the path we want to go, fixes some fairly problematic issues in a nice way, provides an extension point, fixes a bit of a bug, and points out the way forward.

Thanks for all the work Tim!

-eric

This revision is now accepted and ready to land.Apr 18 2016, 11:51 PM
timshen closed this revision.Apr 19 2016, 12:47 PM

Thanks Eric for review!

koriakin mentioned this in D19101: [SystemZ] Add stack protector TLS slot..Apr 19 2016, 1:25 PM
timshen added a comment.May 27 2016, 10:07 AM

This is committed as r266806.

Revision Contents

PathSize
docs/
35 lines
include/
llvm/
IR/
1 line
Target/
2 lines
lib/
CodeGen/
6 lines
SelectionDAG/
10 lines
95 lines
61 lines
Target/
AArch64/
4 lines
X86/
4 lines
test/
CodeGen/
AArch64/
6 lines
ARM/
2 lines
X86/
2 lines
4 lines
8 lines
8 lines
54 lines
2 lines
DebugInfo/
X86/
4 lines

Diff 54125

docs/LangRef.rst

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 11,965 Lines▼ Show 20 Lines
This intrinsic causes the prologue/epilogue inserter to force the position of This intrinsic causes the prologue/epilogue inserter to force the position of
the ``AllocaInst`` stack slot to be before local variables on the stack. This is the ``AllocaInst`` stack slot to be before local variables on the stack. This is
to ensure that if a local variable on the stack is overwritten, it will destroy to ensure that if a local variable on the stack is overwritten, it will destroy
the value of the guard. When the function exits, the guard on the stack is the value of the guard. When the function exits, the guard on the stack is
checked against the original guard by ``llvm.stackprotectorcheck``. If they are checked against the original guard by ``llvm.stackprotectorcheck``. If they are
different, then ``llvm.stackprotectorcheck`` causes the program to abort by different, then ``llvm.stackprotectorcheck`` causes the program to abort by
calling the ``__stack_chk_fail()`` function. calling the ``__stack_chk_fail()`` function.
'``llvm.stackguard``' Intrinsic
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Syntax:
"""""""
::
declare i8* @llvm.stackguard()
Overview:
"""""""""
The ``llvm.stackguard`` intrinsic returns the system stack guard value.
It should not be generated by frontends, since it is only for internal usage.
The reason why we create this intrinsic is that we still support IR form Stack
Protector in FastISel.
Arguments:
""""""""""
None.
Semantics:
""""""""""
On some platforms, the value returned by this intrinsic remains unchanged
between loads in the same thread. On other platforms, it returns the same
global variable value, if any, e.g. ``@__stack_chk_guard``.
Currently some platforms have IR-level customized stack guard loading (e.g.
X86 Linux) that is not handled by ``llvm.stackguard()``, while they should be
in the future.
'``llvm.objectsize``' Intrinsic '``llvm.objectsize``' Intrinsic
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Syntax: Syntax:
""""""" """""""
:: ::
▲ Show 20 LinesShow All 281 LinesShow Last 20 Lines

include/llvm/IR/Intrinsics.td

Show First 20 LinesShow All 318 Lines▼ Show 20 Lines
// The assume intrinsic is marked as arbitrarily writing so that proper // The assume intrinsic is marked as arbitrarily writing so that proper
// control dependencies will be maintained. // control dependencies will be maintained.
def int_assume : Intrinsic<[], [llvm_i1_ty], []>; def int_assume : Intrinsic<[], [llvm_i1_ty], []>;
// Stack Protector Intrinsic - The stackprotector intrinsic writes the stack // Stack Protector Intrinsic - The stackprotector intrinsic writes the stack
// guard to the correct place on the stack frame. // guard to the correct place on the stack frame.
def int_stackprotector : Intrinsic<[], [llvm_ptr_ty, llvm_ptrptr_ty], []>; def int_stackprotector : Intrinsic<[], [llvm_ptr_ty, llvm_ptrptr_ty], []>;
def int_stackguard : Intrinsic<[llvm_ptr_ty], [], []>;
// A counter increment for instrumentation based profiling. // A counter increment for instrumentation based profiling.
def int_instrprof_increment : Intrinsic<[], def int_instrprof_increment : Intrinsic<[],
[llvm_ptr_ty, llvm_i64_ty, [llvm_ptr_ty, llvm_i64_ty,
llvm_i32_ty, llvm_i32_ty], llvm_i32_ty, llvm_i32_ty],
[]>; []>;
// A call to profile runtime for value profiling of target expressions // A call to profile runtime for value profiling of target expressions
▲ Show 20 LinesShow All 348 LinesShow Last 20 Lines

include/llvm/Target/TargetLowering.h

Show First 20 LinesShow All 1,007 Lines▼ Show 20 Linespublic:
/// Return the preferred loop alignment. /// Return the preferred loop alignment.
virtual unsigned getPrefLoopAlignment(MachineLoop *ML = nullptr) const { virtual unsigned getPrefLoopAlignment(MachineLoop *ML = nullptr) const {
return PrefLoopAlignment; return PrefLoopAlignment;
} }
/// If the target has a standard location for the stack protector guard, /// If the target has a standard location for the stack protector guard,
/// returns the address of that location. Otherwise, returns nullptr. /// returns the address of that location. Otherwise, returns nullptr.
/// DEPRECATED: please override useLoadStackGuardNode and customize
/// LOAD_STACK_GUARD, or customize @llvm.stackguard().
virtual Value *getIRStackGuard(IRBuilder<> &IRB) const; virtual Value *getIRStackGuard(IRBuilder<> &IRB) const;
/// Inserts necessary declarations for SSP purpose. Should be used only when /// Inserts necessary declarations for SSP purpose. Should be used only when
/// getIRStackGuard returns nullptr. /// getIRStackGuard returns nullptr.
virtual void insertSSPDeclarations(Module &M) const; virtual void insertSSPDeclarations(Module &M) const;
/// Return the variable that's previously inserted by insertSSPDeclarations, /// Return the variable that's previously inserted by insertSSPDeclarations,
/// if any, otherwise return nullptr. Should be used only when /// if any, otherwise return nullptr. Should be used only when
▲ Show 20 LinesShow All 1,945 LinesShow Last 20 Lines

lib/CodeGen/MachineCSE.cpp

Show First 20 LinesShow All 346 Lines▼ Show 20 Lines if (MI->mayLoad()) {
// to decide whether the loaded value is actually a constant. If so, we can // to decide whether the loaded value is actually a constant. If so, we can
// actually use it as a load. // actually use it as a load.
if (!MI->isInvariantLoad(AA)) if (!MI->isInvariantLoad(AA))
// FIXME: we should be able to hoist loads with no other side effects if // FIXME: we should be able to hoist loads with no other side effects if
// there are no other instructions which can change memory in this loop. // there are no other instructions which can change memory in this loop.
// This is a trivial form of alias analysis. // This is a trivial form of alias analysis.
return false; return false;
} }
// Ignore stack guard loads, otherwise the register that holds CSEed value may
// be spilled and get loaded back with corrupted data.
if (MI->getOpcode() == TargetOpcode::LOAD_STACK_GUARD)
return false;
return true; return true;
} }
/// isProfitableToCSE - Return true if it's profitable to eliminate MI with a /// isProfitableToCSE - Return true if it's profitable to eliminate MI with a
/// common expression that defines Reg. /// common expression that defines Reg.
bool MachineCSE::isProfitableToCSE(unsigned CSReg, unsigned Reg, bool MachineCSE::isProfitableToCSE(unsigned CSReg, unsigned Reg,
MachineInstr *CSMI, MachineInstr *MI) { MachineInstr *CSMI, MachineInstr *MI) {
// FIXME: Heuristics that works around the lack the live range splitting. // FIXME: Heuristics that works around the lack the live range splitting.
▲ Show 20 LinesShow All 349 LinesShow Last 20 Lines

lib/CodeGen/SelectionDAG/SelectionDAGBuilder.h

Show First 20 LinesShow All 459 Lines▼ Show 20 Linesprivate:
/// the parent basic block consisting of the two loads, the comparison, /// the parent basic block consisting of the two loads, the comparison,
/// and finally two branches to the success/failure basic blocks. We /// and finally two branches to the success/failure basic blocks. We
/// conclude by code-gening the failure basic block if we have not /// conclude by code-gening the failure basic block if we have not
/// code-gened it already (all stack protector checks we generate in /// code-gened it already (all stack protector checks we generate in
/// the same function, use the same failure basic block). /// the same function, use the same failure basic block).
class StackProtectorDescriptor { class StackProtectorDescriptor {
public: public:
StackProtectorDescriptor() StackProtectorDescriptor()
: ParentMBB(nullptr), SuccessMBB(nullptr), FailureMBB(nullptr), : ParentMBB(nullptr), SuccessMBB(nullptr), FailureMBB(nullptr) {}
GuardReg(0) {}
/// Returns true if all fields of the stack protector descriptor are /// Returns true if all fields of the stack protector descriptor are
/// initialized implying that we should/are ready to emit a stack protector. /// initialized implying that we should/are ready to emit a stack protector.
bool shouldEmitStackProtector() const { bool shouldEmitStackProtector() const {
return ParentMBB && SuccessMBB && FailureMBB; return ParentMBB && SuccessMBB && FailureMBB;
} }
/// Initialize the stack protector descriptor structure for a new basic /// Initialize the stack protector descriptor structure for a new basic
Show All 28 Lines public:
/// ///
/// 1. FailureMBB since we reuse the failure code path for all stack /// 1. FailureMBB since we reuse the failure code path for all stack
/// protector checks created in an individual function. /// protector checks created in an individual function.
/// ///
/// 2.The guard variable since the guard variable we are checking against is /// 2.The guard variable since the guard variable we are checking against is
/// always the same. /// always the same.
void resetPerFunctionState() { void resetPerFunctionState() {
FailureMBB = nullptr; FailureMBB = nullptr;
GuardReg = 0;
} }
MachineBasicBlock *getParentMBB() { return ParentMBB; } MachineBasicBlock *getParentMBB() { return ParentMBB; }
MachineBasicBlock *getSuccessMBB() { return SuccessMBB; } MachineBasicBlock *getSuccessMBB() { return SuccessMBB; }
MachineBasicBlock *getFailureMBB() { return FailureMBB; } MachineBasicBlock *getFailureMBB() { return FailureMBB; }
unsigned getGuardReg() const { return GuardReg; }
void setGuardReg(unsigned R) { GuardReg = R; }
private: private:
/// The basic block for which we are generating the stack protector. /// The basic block for which we are generating the stack protector.
/// ///
/// As a result of stack protector generation, we will splice the /// As a result of stack protector generation, we will splice the
/// terminators of this basic block into the successor mbb SuccessMBB and /// terminators of this basic block into the successor mbb SuccessMBB and
/// replace it with a compare/branch to the successor mbbs /// replace it with a compare/branch to the successor mbbs
/// SuccessMBB/FailureMBB depending on whether or not the stack protector /// SuccessMBB/FailureMBB depending on whether or not the stack protector
/// was violated. /// was violated.
MachineBasicBlock *ParentMBB; MachineBasicBlock *ParentMBB;
/// A basic block visited on stack protector check success that contains the /// A basic block visited on stack protector check success that contains the
/// terminators of ParentMBB. /// terminators of ParentMBB.
MachineBasicBlock *SuccessMBB; MachineBasicBlock *SuccessMBB;
/// This basic block visited on stack protector check failure that will /// This basic block visited on stack protector check failure that will
/// contain a call to __stack_chk_fail(). /// contain a call to __stack_chk_fail().
MachineBasicBlock *FailureMBB; MachineBasicBlock *FailureMBB;
/// The virtual register holding the stack guard value.
unsigned GuardReg;
/// Add a successor machine basic block to ParentMBB. If the successor mbb /// Add a successor machine basic block to ParentMBB. If the successor mbb
/// has not been created yet (i.e. if SuccMBB = 0), then the machine basic /// has not been created yet (i.e. if SuccMBB = 0), then the machine basic
/// block will be created. Assign a large weight if IsLikely is true. /// block will be created. Assign a large weight if IsLikely is true.
MachineBasicBlock *AddSuccessorMBB(const BasicBlock *BB, MachineBasicBlock *AddSuccessorMBB(const BasicBlock *BB,
MachineBasicBlock *ParentMBB, MachineBasicBlock *ParentMBB,
bool IsLikely, bool IsLikely,
MachineBasicBlock *SuccMBB = nullptr); MachineBasicBlock *SuccMBB = nullptr);
}; };
▲ Show 20 LinesShow All 461 LinesShow Last 20 Lines

lib/CodeGen/SelectionDAG/SelectionDAGBuilder.cpp

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 1,992 Lines▼ Show 20 Linesvoid SelectionDAGBuilder::visitJumpTableHeader(JumpTable &JT,
// Avoid emitting unnecessary branches to the next block. // Avoid emitting unnecessary branches to the next block.
if (JT.MBB != NextBlock(SwitchBB)) if (JT.MBB != NextBlock(SwitchBB))
BrCond = DAG.getNode(ISD::BR, dl, MVT::Other, BrCond, BrCond = DAG.getNode(ISD::BR, dl, MVT::Other, BrCond,
DAG.getBasicBlock(JT.MBB)); DAG.getBasicBlock(JT.MBB));
DAG.setRoot(BrCond); DAG.setRoot(BrCond);
} }
/// Create a LOAD_STACK_GUARD node, and let it carry the target specific global
/// variable if there exists one.
static SDValue getLoadStackGuard(SelectionDAG &DAG, SDLoc DL, SDValue &Chain) {
const TargetLowering &TLI = DAG.getTargetLoweringInfo();
EVT PtrTy = TLI.getPointerTy(DAG.getDataLayout());
MachineFunction &MF = DAG.getMachineFunction();
Value *Global = TLI.getSDStackGuard(*MF.getFunction()->getParent());
MachineSDNode *Node =
DAG.getMachineNode(TargetOpcode::LOAD_STACK_GUARD, DL, PtrTy, Chain);
if (Global) {
MachinePointerInfo MPInfo(Global);
MachineInstr::mmo_iterator MemRefs = MF.allocateMemRefsArray(1);
unsigned Flags = MachineMemOperand::MOLoad | MachineMemOperand::MOInvariant;
*MemRefs = MF.getMachineMemOperand(MPInfo, Flags, PtrTy.getSizeInBits() / 8,
DAG.getEVTAlignment(PtrTy));
Node->setMemRefs(MemRefs, MemRefs + 1);
}
return SDValue(Node, 0);
}
/// Codegen a new tail for a stack protector check ParentMBB which has had its /// Codegen a new tail for a stack protector check ParentMBB which has had its
/// tail spliced into a stack protector check success bb. /// tail spliced into a stack protector check success bb.
/// ///
/// For a high level explanation of how this fits into the stack protector /// For a high level explanation of how this fits into the stack protector
/// generation see the comment on the declaration of class /// generation see the comment on the declaration of class
/// StackProtectorDescriptor. /// StackProtectorDescriptor.
void SelectionDAGBuilder::visitSPDescriptorParent(StackProtectorDescriptor &SPD, void SelectionDAGBuilder::visitSPDescriptorParent(StackProtectorDescriptor &SPD,
MachineBasicBlock *ParentBB) { MachineBasicBlock *ParentBB) {
Show All 12 Linesvoid SelectionDAGBuilder::visitSPDescriptorParent(StackProtectorDescriptor &SPD,
SDValue GuardPtr = getValue(IRGuard); SDValue GuardPtr = getValue(IRGuard);
SDValue StackSlotPtr = DAG.getFrameIndex(FI, PtrTy); SDValue StackSlotPtr = DAG.getFrameIndex(FI, PtrTy);
unsigned Align = DL->getPrefTypeAlignment(IRGuard->getType()); unsigned Align = DL->getPrefTypeAlignment(IRGuard->getType());
SDValue Guard; SDValue Guard;
SDLoc dl = getCurSDLoc(); SDLoc dl = getCurSDLoc();
// If GuardReg is set and useLoadStackGuardNode returns true, retrieve the // If useLoadStackGuardNode returns true, generate LOAD_STACK_GUARD.
// guard value from the virtual register holding the value. Otherwise, emit a // Otherwise, emit a volatile load to retrieve the stack guard value.
// volatile load to retrieve the stack guard value. SDValue Chain = DAG.getEntryNode();
unsigned GuardReg = SPD.getGuardReg(); if (TLI.useLoadStackGuardNode())
Guard = getLoadStackGuard(DAG, dl, Chain);
if (GuardReg && TLI.useLoadStackGuardNode())
Guard = DAG.getCopyFromReg(DAG.getEntryNode(), dl, GuardReg,
PtrTy);
else else
Guard = DAG.getLoad(PtrTy, dl, DAG.getEntryNode(), Guard =
GuardPtr, MachinePointerInfo(IRGuard, 0), DAG.getLoad(PtrTy, dl, Chain, GuardPtr, MachinePointerInfo(IRGuard, 0),
true, false, false, Align); true, false, false, Align);
SDValue StackSlot = DAG.getLoad( SDValue StackSlot = DAG.getLoad(
PtrTy, dl, DAG.getEntryNode(), StackSlotPtr, PtrTy, dl, DAG.getEntryNode(), StackSlotPtr,
MachinePointerInfo::getFixedStack(DAG.getMachineFunction(), FI), true, MachinePointerInfo::getFixedStack(DAG.getMachineFunction(), FI), true,
false, false, Align); false, false, Align);
// Perform the comparison via a subtract/getsetcc. // Perform the comparison via a subtract/getsetcc.
EVT VT = Guard.getValueType(); EVT VT = Guard.getValueType();
▲ Show 20 LinesShow All 3,234 Lines▼ Show 20 Lines if (PtrTy != ResTy)
report_fatal_error("Wrong result type for @llvm.get.dynamic.area.offset" report_fatal_error("Wrong result type for @llvm.get.dynamic.area.offset"
" intrinsic!"); " intrinsic!");
Res = DAG.getNode(ISD::GET_DYNAMIC_AREA_OFFSET, sdl, DAG.getVTList(ResTy), Res = DAG.getNode(ISD::GET_DYNAMIC_AREA_OFFSET, sdl, DAG.getVTList(ResTy),
Op); Op);
DAG.setRoot(Op); DAG.setRoot(Op);
setValue(&I, Res); setValue(&I, Res);
return nullptr; return nullptr;
} }
case Intrinsic::stackguard: {
EVT PtrTy = TLI.getPointerTy(DAG.getDataLayout());
MachineFunction &MF = DAG.getMachineFunction();
const Module &M = *MF.getFunction()->getParent();
SDValue Chain = getRoot();
if (TLI.useLoadStackGuardNode()) {
Res = getLoadStackGuard(DAG, sdl, Chain);
} else {
const Value *Global = TLI.getSDStackGuard(M);
unsigned Align = DL->getPrefTypeAlignment(Global->getType());
Res =
DAG.getLoad(PtrTy, sdl, Chain, getValue(Global),
MachinePointerInfo(Global, 0), true, false, false, Align);
}
DAG.setRoot(Chain);
setValue(&I, Res);
return nullptr;
}
case Intrinsic::stackprotector: { case Intrinsic::stackprotector: {
// Emit code into the DAG to store the stack guard onto the stack. // Emit code into the DAG to store the stack guard onto the stack.
MachineFunction &MF = DAG.getMachineFunction(); MachineFunction &MF = DAG.getMachineFunction();
MachineFrameInfo *MFI = MF.getFrameInfo(); MachineFrameInfo *MFI = MF.getFrameInfo();
EVT PtrTy = TLI.getPointerTy(DAG.getDataLayout()); EVT PtrTy = TLI.getPointerTy(DAG.getDataLayout());
SDValue Src, Chain = getRoot(); SDValue Src, Chain = getRoot();
const Value *Ptr = cast<LoadInst>(I.getArgOperand(0))->getPointerOperand();
const GlobalVariable *GV = dyn_cast<GlobalVariable>(Ptr);
// See if Ptr is a bitcast. If it is, look through it and see if we can get if (TLI.useLoadStackGuardNode())
// global variable __stack_chk_guard. Src = getLoadStackGuard(DAG, sdl, Chain);
if (!GV) else
if (const Operator *BC = dyn_cast<Operator>(Ptr))
if (BC->getOpcode() == Instruction::BitCast)
GV = dyn_cast<GlobalVariable>(BC->getOperand(0));
if (GV && TLI.useLoadStackGuardNode()) {
// Emit a LOAD_STACK_GUARD node.
MachineSDNode *Node = DAG.getMachineNode(TargetOpcode::LOAD_STACK_GUARD,
sdl, PtrTy, Chain);
MachinePointerInfo MPInfo(GV);
MachineInstr::mmo_iterator MemRefs = MF.allocateMemRefsArray(1);
unsigned Flags = MachineMemOperand::MOLoad |
MachineMemOperand::MOInvariant;
*MemRefs = MF.getMachineMemOperand(MPInfo, Flags,
PtrTy.getSizeInBits() / 8,
DAG.getEVTAlignment(PtrTy));
Node->setMemRefs(MemRefs, MemRefs + 1);
// Copy the guard value to a virtual register so that it can be
// retrieved in the epilogue.
Src = SDValue(Node, 0);
const TargetRegisterClass *RC =
TLI.getRegClassFor(Src.getSimpleValueType());
unsigned Reg = MF.getRegInfo().createVirtualRegister(RC);
SPDescriptor.setGuardReg(Reg);
Chain = DAG.getCopyToReg(Chain, sdl, Reg, Src);
} else {
Src = getValue(I.getArgOperand(0)); // The guard's value. Src = getValue(I.getArgOperand(0)); // The guard's value.
}
AllocaInst *Slot = cast<AllocaInst>(I.getArgOperand(1)); AllocaInst *Slot = cast<AllocaInst>(I.getArgOperand(1));
int FI = FuncInfo.StaticAllocaMap[Slot]; int FI = FuncInfo.StaticAllocaMap[Slot];
MFI->setStackProtectorIndex(FI); MFI->setStackProtectorIndex(FI);
SDValue FIN = DAG.getFrameIndex(FI, PtrTy); SDValue FIN = DAG.getFrameIndex(FI, PtrTy);
▲ Show 20 LinesShow All 3,732 LinesShow Last 20 Lines

lib/CodeGen/StackProtector.cpp

Show First 20 LinesShow All 265 Lines▼ Show 20 Lines for (const Instruction &I : BB) {
} }
} }
} }
} }
return NeedsProtector; return NeedsProtector;
} }
/// Insert code into the entry block that stores the __stack_chk_guard /// Create a stack guard loading and populate whether SelectionDAG SSP is
/// supported.
static Value *getStackGuard(const TargetLoweringBase *TLI, Module *M,
IRBuilder<> &B,
bool *SupportsSelectionDAGSP = nullptr) {
if (Value *Guard = TLI->getIRStackGuard(B))
return B.CreateLoad(Guard, true, "StackGuard");
// Use SelectionDAG SSP handling, since there isn't an IR guard.
//
// This is more or less weird, since we optionally output whether we
echristoUnsubmitted
Done
ReplyInline Actions

This looks weird, can you explain it?

echristo: This looks weird, can you explain it?
// should perform a SelectionDAG SP here. The reason is that it's strictly
// defined as !TLI->getIRStackGuard(B), where getIRStackGuard is also
// mutating. There is no way to get this bit without mutating the IR, so
// getting this bit has to happen in this right time.
//
// We could have define a new function TLI::supportsSelectionDAGSP(), but that
// will put more burden on the backends' overriding work, especially when it
// actually conveys the same information getIRStackGuard() already gives.
if (SupportsSelectionDAGSP)
*SupportsSelectionDAGSP = true;
TLI->insertSSPDeclarations(*M);
return B.CreateCall(Intrinsic::getDeclaration(M, Intrinsic::stackguard));
}
/// Insert code into the entry block that stores the stack guard
/// variable onto the stack: /// variable onto the stack:
/// ///
/// entry: /// entry:
/// StackGuardSlot = alloca i8* /// StackGuardSlot = alloca i8*
/// StackGuard = load __stack_chk_guard /// StackGuard = <stack guard>
/// call void @llvm.stackprotect.create(StackGuard, StackGuardSlot) /// call void @llvm.stackprotector(StackGuard, StackGuardSlot)
/// ///
/// Returns true if the platform/triple supports the stackprotectorcreate pseudo /// Returns true if the platform/triple supports the stackprotectorcreate pseudo
/// node. /// node.
static bool CreatePrologue(Function *F, Module *M, ReturnInst *RI, static bool CreatePrologue(Function *F, Module *M, ReturnInst *RI,
const TargetLoweringBase *TLI, AllocaInst *&AI, const TargetLoweringBase *TLI, AllocaInst *&AI) {
Value *&StackGuardVar) {
bool SupportsSelectionDAGSP = false; bool SupportsSelectionDAGSP = false;
IRBuilder<> B(&F->getEntryBlock().front()); IRBuilder<> B(&F->getEntryBlock().front());
StackGuardVar = TLI->getIRStackGuard(B);
if (!StackGuardVar) {
/// Use SelectionDAG SSP handling, since there isn't an IR guard.
SupportsSelectionDAGSP = true;
TLI->insertSSPDeclarations(*M);
StackGuardVar = TLI->getSDStackGuard(*M);
}
assert(StackGuardVar && "Must have stack guard available");
PointerType *PtrTy = Type::getInt8PtrTy(RI->getContext()); PointerType *PtrTy = Type::getInt8PtrTy(RI->getContext());
AI = B.CreateAlloca(PtrTy, nullptr, "StackGuardSlot"); AI = B.CreateAlloca(PtrTy, nullptr, "StackGuardSlot");
LoadInst *LI = B.CreateLoad(StackGuardVar, "StackGuard");
Value *Guard = getStackGuard(TLI, M, B, &SupportsSelectionDAGSP);
B.CreateCall(Intrinsic::getDeclaration(M, Intrinsic::stackprotector), B.CreateCall(Intrinsic::getDeclaration(M, Intrinsic::stackprotector),
{LI, AI}); {Guard, AI});
return SupportsSelectionDAGSP; return SupportsSelectionDAGSP;
} }
/// InsertStackProtectors - Insert code into the prologue and epilogue of the /// InsertStackProtectors - Insert code into the prologue and epilogue of the
/// function. /// function.
/// ///
/// - The prologue code loads and stores the stack guard onto the stack. /// - The prologue code loads and stores the stack guard onto the stack.
/// - The epilogue checks the value stored in the prologue against the original /// - The epilogue checks the value stored in the prologue against the original
/// value. It calls __stack_chk_fail if they differ. /// value. It calls __stack_chk_fail if they differ.
bool StackProtector::InsertStackProtectors() { bool StackProtector::InsertStackProtectors() {
bool SupportsSelectionDAGSP = bool SupportsSelectionDAGSP =
EnableSelectionDAGSP && !TM->Options.EnableFastISel; EnableSelectionDAGSP && !TM->Options.EnableFastISel;
AllocaInst *AI = nullptr; // Place on stack that stores the stack guard. AllocaInst *AI = nullptr; // Place on stack that stores the stack guard.
Value *StackGuardVar = nullptr; // The stack guard variable.
for (Function::iterator I = F->begin(), E = F->end(); I != E;) { for (Function::iterator I = F->begin(), E = F->end(); I != E;) {
BasicBlock *BB = &*I++; BasicBlock *BB = &*I++;
ReturnInst *RI = dyn_cast<ReturnInst>(BB->getTerminator()); ReturnInst *RI = dyn_cast<ReturnInst>(BB->getTerminator());
if (!RI) if (!RI)
continue; continue;
if (!HasPrologue) { if (!HasPrologue) {
HasPrologue = true; HasPrologue = true;
SupportsSelectionDAGSP &= SupportsSelectionDAGSP &= CreatePrologue(F, M, RI, TLI, AI);
CreatePrologue(F, M, RI, TLI, AI, StackGuardVar);
} }
if (!SupportsSelectionDAGSP) { if (!SupportsSelectionDAGSP) {
// If we do not support SelectionDAG based tail calls, generate IR level // If we do not support SelectionDAG based tail calls, generate IR level
// tail calls. // tail calls.
// //
// For each block with a return instruction, convert this: // For each block with a return instruction, convert this:
// //
// return: // return:
// ... // ...
// ret ... // ret ...
// //
// into this: // into this:
// //
// return: // return:
// ... // ...
// %1 = load __stack_chk_guard // %1 = <stack guard>
// %2 = load StackGuardSlot // %2 = load StackGuardSlot
// %3 = cmp i1 %1, %2 // %3 = cmp i1 %1, %2
// br i1 %3, label %SP_return, label %CallStackCheckFailBlk // br i1 %3, label %SP_return, label %CallStackCheckFailBlk
// //
// SP_return: // SP_return:
// ret ... // ret ...
// //
// CallStackCheckFailBlk: // CallStackCheckFailBlk:
Show All 22 Lines if (!SupportsSelectionDAGSP) {
BB->getTerminator()->eraseFromParent(); BB->getTerminator()->eraseFromParent();
// Move the newly created basic block to the point right after the old // Move the newly created basic block to the point right after the old
// basic block so that it's in the "fall through" position. // basic block so that it's in the "fall through" position.
NewBB->moveAfter(BB); NewBB->moveAfter(BB);
// Generate the stack protector instructions in the old basic block. // Generate the stack protector instructions in the old basic block.
IRBuilder<> B(BB); IRBuilder<> B(BB);
LoadInst *LI1 = B.CreateLoad(StackGuardVar); Value *Guard = getStackGuard(TLI, M, B);
LoadInst *LI2 = B.CreateLoad(AI); LoadInst *LI2 = B.CreateLoad(AI, true);
Value *Cmp = B.CreateICmpEQ(LI1, LI2); Value *Cmp = B.CreateICmpEQ(Guard, LI2);
auto SuccessProb = auto SuccessProb =
BranchProbabilityInfo::getBranchProbStackProtector(true); BranchProbabilityInfo::getBranchProbStackProtector(true);
auto FailureProb = auto FailureProb =
BranchProbabilityInfo::getBranchProbStackProtector(false); BranchProbabilityInfo::getBranchProbStackProtector(false);
MDNode *Weights = MDBuilder(F->getContext()) MDNode *Weights = MDBuilder(F->getContext())
.createBranchWeights(SuccessProb.getNumerator(), .createBranchWeights(SuccessProb.getNumerator(),
FailureProb.getNumerator()); FailureProb.getNumerator());
B.CreateCondBr(Cmp, NewBB, FailBB, Weights); B.CreateCondBr(Cmp, NewBB, FailBB, Weights);
Show All 34 Lines

lib/Target/AArch64/AArch64ISelLowering.cpp

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 10,108 Lines▼ Show 20 Lines case ISD::FP_TO_SINT:
return; return;
case ISD::ATOMIC_CMP_SWAP: case ISD::ATOMIC_CMP_SWAP:
ReplaceCMP_SWAP_128Results(N, Results, DAG); ReplaceCMP_SWAP_128Results(N, Results, DAG);
return; return;
} }
} }
bool AArch64TargetLowering::useLoadStackGuardNode() const { bool AArch64TargetLowering::useLoadStackGuardNode() const {
if (!Subtarget->isTargetAndroid())
return true; return true;
return TargetLowering::useLoadStackGuardNode();
} }
unsigned AArch64TargetLowering::combineRepeatedFPDivisors() const { unsigned AArch64TargetLowering::combineRepeatedFPDivisors() const {
// Combine multiple FDIVs with the same divisor into multiple FMULs by the // Combine multiple FDIVs with the same divisor into multiple FMULs by the
// reciprocal if there are three or more FDIVs. // reciprocal if there are three or more FDIVs.
return 3; return 3;
} }
▲ Show 20 LinesShow All 221 LinesShow Last 20 Lines

lib/Target/X86/X86ISelLowering.cpp

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 2,010 Lines▼ Show 20 LinesValue *X86TargetLowering::getIRStackGuard(IRBuilder<> &IRB) const {
return ConstantExpr::getIntToPtr( return ConstantExpr::getIntToPtr(
ConstantInt::get(Type::getInt32Ty(IRB.getContext()), Offset), ConstantInt::get(Type::getInt32Ty(IRB.getContext()), Offset),
Type::getInt8PtrTy(IRB.getContext())->getPointerTo(AddressSpace)); Type::getInt8PtrTy(IRB.getContext())->getPointerTo(AddressSpace));
} }
void X86TargetLowering::insertSSPDeclarations(Module &M) const { void X86TargetLowering::insertSSPDeclarations(Module &M) const {
if (!Subtarget.isTargetLinux()) if (!Subtarget.isTargetLinux())
TargetLowering::insertSSPDeclarations(M); TargetLowering::insertSSPDeclarations(M);
else
llvm_unreachable("X86 Linux supports customized IR stack guard load");
} }
Value *X86TargetLowering::getSDStackGuard(const Module &M) const { Value *X86TargetLowering::getSDStackGuard(const Module &M) const {
if (!Subtarget.isTargetLinux()) if (!Subtarget.isTargetLinux())
return TargetLowering::getSDStackGuard(M); return TargetLowering::getSDStackGuard(M);
llvm_unreachable("X86 Linux supports customized IR stack guard load"); return nullptr;
} }
Value *X86TargetLowering::getSafeStackPointerLocation(IRBuilder<> &IRB) const { Value *X86TargetLowering::getSafeStackPointerLocation(IRBuilder<> &IRB) const {
if (!Subtarget.isTargetAndroid()) if (!Subtarget.isTargetAndroid())
return TargetLowering::getSafeStackPointerLocation(IRB); return TargetLowering::getSafeStackPointerLocation(IRB);
// Android provides a fixed TLS slot for the SafeStack pointer. See the // Android provides a fixed TLS slot for the SafeStack pointer. See the
// definition of TLS_SLOT_SAFESTACK in // definition of TLS_SLOT_SAFESTACK in
▲ Show 20 LinesShow All 28,532 LinesShow Last 20 Lines

test/CodeGen/AArch64/stack-guard-remat-bitcast.ll

; RUN: llc < %s -mtriple=arm64-apple-ios -relocation-model=pic -disable-fp-elim | FileCheck %s ; RUN: llc < %s -mtriple=arm64-apple-ios -relocation-model=pic -disable-fp-elim | FileCheck %s
@__stack_chk_guard = external global i64* @__stack_chk_guard = external global i64*
; PR20558 ; PR20558
; CHECK: adrp [[R0:x[0-9]+]], ___stack_chk_guard@GOTPAGE ; CHECK: adrp [[R0:x[0-9]+]], ___stack_chk_guard@GOTPAGE
; CHECK: ldr [[R1:x[0-9]+]], {{\[}}[[R0]], ___stack_chk_guard@GOTPAGEOFF{{\]}} ; CHECK: ldr [[R1:x[0-9]+]], {{\[}}[[R0]], ___stack_chk_guard@GOTPAGEOFF{{\]}}
; Load the stack guard for the second time, just in case the previous value gets spilled.
echristoUnsubmitted
Done
ReplyInline Actions

This looks like what I'd expect, but can you explain why the test changed?

echristo: This looks like what I'd expect, but can you explain why the test changed?
; CHECK: adrp [[GUARD_PAGE:x[0-9]+]], ___stack_chk_guard@GOTPAGE
; CHECK: ldr [[R2:x[0-9]+]], {{\[}}[[R1]]{{\]}} ; CHECK: ldr [[R2:x[0-9]+]], {{\[}}[[R1]]{{\]}}
; CHECK: stur [[R2]], {{\[}}x29, [[SLOT0:[0-9#\-]+]]{{\]}} ; CHECK: stur [[R2]], {{\[}}x29, [[SLOT0:[0-9#\-]+]]{{\]}}
; CHECK: ldur [[R3:x[0-9]+]], {{\[}}x29, [[SLOT0]]{{\]}} ; CHECK: ldur [[R3:x[0-9]+]], {{\[}}x29, [[SLOT0]]{{\]}}
; CHECK: sub [[R4:x[0-9]+]], [[R2]], [[R3]] ; CHECK: ldr [[GUARD_ADDR:x[0-9]+]], {{\[}}[[GUARD_PAGE]], ___stack_chk_guard@GOTPAGEOFF{{\]}}
; CHECK: ldr [[GUARD:x[0-9]+]], {{\[}}[[GUARD_ADDR]]{{\]}}
; CHECK: sub [[R4:x[0-9]+]], [[GUARD]], [[R3]]
; CHECK: cbnz [[R4]], LBB ; CHECK: cbnz [[R4]], LBB
define i32 @test_stack_guard_remat2() { define i32 @test_stack_guard_remat2() {
entry: entry:
%StackGuardSlot = alloca i8* %StackGuardSlot = alloca i8*
%StackGuard = load i8*, i8** bitcast (i64** @__stack_chk_guard to i8**) %StackGuard = load i8*, i8** bitcast (i64** @__stack_chk_guard to i8**)
call void @llvm.stackprotector(i8* %StackGuard, i8** %StackGuardSlot) call void @llvm.stackprotector(i8* %StackGuard, i8** %StackGuardSlot)
%container = alloca [32 x i8], align 1 %container = alloca [32 x i8], align 1
call void @llvm.stackprotectorcheck(i8** bitcast (i64** @__stack_chk_guard to i8**)) call void @llvm.stackprotectorcheck(i8** bitcast (i64** @__stack_chk_guard to i8**))
ret i32 -1 ret i32 -1
} }
declare void @llvm.stackprotector(i8*, i8**) declare void @llvm.stackprotector(i8*, i8**)
declare void @llvm.stackprotectorcheck(i8**) declare void @llvm.stackprotectorcheck(i8**)

test/CodeGen/ARM/warn-stack.ll

; RUN: llc -mtriple thumbv7-apple-ios3.0.0 -warn-stack-size=80 < %s 2>&1 >/dev/null | FileCheck %s ; RUN: llc -mtriple thumbv7-apple-ios3.0.0 -warn-stack-size=80 < %s 2>&1 >/dev/null | FileCheck %s
; Check the internal option that warns when the stack size exceeds the ; Check the internal option that warns when the stack size exceeds the
; given amount. ; given amount.
; <rdar://13987214> ; <rdar://13987214>
; CHECK-NOT: nowarn ; CHECK-NOT: nowarn
define void @nowarn() nounwind ssp { define void @nowarn() nounwind ssp {
entry: entry:
%buffer = alloca [12 x i8], align 1 %buffer = alloca [12 x i8], align 1
%arraydecay = getelementptr inbounds [12 x i8], [12 x i8]* %buffer, i64 0, i64 0 %arraydecay = getelementptr inbounds [12 x i8], [12 x i8]* %buffer, i64 0, i64 0
call void @doit(i8* %arraydecay) nounwind call void @doit(i8* %arraydecay) nounwind
ret void ret void
} }
; CHECK: warning: stack size limit exceeded (96) in warn ; CHECK: warning: stack size limit exceeded (92) in warn
define void @warn() nounwind ssp { define void @warn() nounwind ssp {
entry: entry:
%buffer = alloca [80 x i8], align 1 %buffer = alloca [80 x i8], align 1
%arraydecay = getelementptr inbounds [80 x i8], [80 x i8]* %buffer, i64 0, i64 0 %arraydecay = getelementptr inbounds [80 x i8], [80 x i8]* %buffer, i64 0, i64 0
call void @doit(i8* %arraydecay) nounwind call void @doit(i8* %arraydecay) nounwind
ret void ret void
} }
declare void @doit(i8*) declare void @doit(i8*)

test/CodeGen/X86/2009-02-12-DebugInfoVLA.ll

; RUN: llc < %s ; RUN: llc < %s
; RUN: llc < %s -stack-symbol-ordering=0 -march=x86-64 -verify-machineinstrs | FileCheck %s ; RUN: llc < %s -stack-symbol-ordering=0 -march=x86-64 -verify-machineinstrs | FileCheck %s
; PR3538 ; PR3538
target datalayout = "e-p:32:32:32-i1:8:8-i8:8:8-i16:16:16-i32:32:32-i64:32:64-f32:32:32-f64:32:64-v64:64:64-v128:128:128-a0:0:64-f80:128:128" target datalayout = "e-p:32:32:32-i1:8:8-i8:8:8-i16:16:16-i32:32:32-i64:32:64-f32:32:32-f64:32:64-v64:64:64-v128:128:128-a0:0:64-f80:128:128"
target triple = "i386-apple-darwin9" target triple = "i386-apple-darwin9"
define signext i8 @foo(i8* %s1) nounwind ssp { define signext i8 @foo(i8* %s1) nounwind ssp {
; Make sure we generate: ; Make sure we generate:
; movq -40(%rbp), %rsp ; movq -40(%rbp), %rsp
; Instead of: ; Instead of:
; movq -40(%rbp), %rax ; movq -40(%rbp), %rax
; movq %rax, %rsp ; movq %rax, %rsp
; CHECK-LABEL: @foo ; CHECK-LABEL: @foo
; CHECK: movq -40(%rbp), %rsp ; CHECK: movq -{{[0-9]+}}(%rbp), %rsp
entry: entry:
%s1_addr = alloca i8* ; <i8**> [#uses=2] %s1_addr = alloca i8* ; <i8**> [#uses=2]
%retval = alloca i32 ; <i32*> [#uses=2] %retval = alloca i32 ; <i32*> [#uses=2]
%saved_stack.1 = alloca i8* ; <i8**> [#uses=2] %saved_stack.1 = alloca i8* ; <i8**> [#uses=2]
%0 = alloca i32 ; <i32*> [#uses=2] %0 = alloca i32 ; <i32*> [#uses=2]
%str.0 = alloca [0 x i8]* ; <[0 x i8]**> [#uses=3] %str.0 = alloca [0 x i8]* ; <[0 x i8]**> [#uses=3]
%1 = alloca i64 ; <i64*> [#uses=2] %1 = alloca i64 ; <i64*> [#uses=2]
▲ Show 20 LinesShow All 75 LinesShow Last 20 Lines

test/CodeGen/X86/StackColoring.ll

Show First 20 LinesShow All 237 Lines▼ Show 20 Linesbb2:
%t7 = add i32 %t5, %t6 %t7 = add i32 %t5, %t6
ret i32 %t7 ret i32 %t7
bb3: bb3:
ret i32 0 ret i32 0
} }
; Adopt the test from Transforms/Inline/array_merge.ll' ; Adopt the test from Transforms/Inline/array_merge.ll'
;CHECK-LABEL: array_merge: ;CHECK-LABEL: array_merge:
;YESCOLOR: subq $816, %rsp ;YESCOLOR: subq $808, %rsp
;NOCOLOR: subq $1616, %rsp ;NOCOLOR: subq $1608, %rsp
define void @array_merge() nounwind ssp { define void @array_merge() nounwind ssp {
entry: entry:
%A.i1 = alloca [100 x i32], align 4 %A.i1 = alloca [100 x i32], align 4
%B.i2 = alloca [100 x i32], align 4 %B.i2 = alloca [100 x i32], align 4
%A.i = alloca [100 x i32], align 4 %A.i = alloca [100 x i32], align 4
%B.i = alloca [100 x i32], align 4 %B.i = alloca [100 x i32], align 4
%0 = bitcast [100 x i32]* %A.i to i8* %0 = bitcast [100 x i32]* %A.i to i8*
call void @llvm.lifetime.start(i64 -1, i8* %0) nounwind call void @llvm.lifetime.start(i64 -1, i8* %0) nounwind
▲ Show 20 LinesShow All 179 LinesShow Last 20 Lines

test/CodeGen/X86/dynamic-allocas-VLAs.ll

Show First 20 LinesShow All 54 Lines▼ Show 20 Linesentry:
call void @t3_helper(i32* %a, i32* %vla) nounwind call void @t3_helper(i32* %a, i32* %vla) nounwind
%0 = load i32, i32* %a, align 4 %0 = load i32, i32* %a, align 4
%add = add nsw i32 %0, 13 %add = add nsw i32 %0, 13
ret i32 %add ret i32 %add
; CHECK: _t3 ; CHECK: _t3
; CHECK: pushq %rbp ; CHECK: pushq %rbp
; CHECK: movq %rsp, %rbp ; CHECK: movq %rsp, %rbp
; CHECK: pushq %rbx
; CHECK-NOT: andq $-{{[0-9]+}}, %rsp ; CHECK-NOT: andq $-{{[0-9]+}}, %rsp
; CHECK: subq ${{[0-9]+}}, %rsp ; CHECK: subq ${{[0-9]+}}, %rsp
; ;
; CHECK: leaq -{{[0-9]+}}(%rbp), %rsp ; CHECK: movq %rbp, %rsp
; CHECK: popq %rbx
; CHECK: popq %rbp ; CHECK: popq %rbp
} }
declare void @t3_helper(i32*, i32*) declare void @t3_helper(i32*, i32*)
; VLAs + Dynamic realignment ; VLAs + Dynamic realignment
define i32 @t4(i64 %sz) nounwind uwtable ssp { define i32 @t4(i64 %sz) nounwind uwtable ssp {
entry: entry:
%a = alloca i32, align 4 %a = alloca i32, align 4
%v = alloca <8 x float>, align 32 %v = alloca <8 x float>, align 32
%vla = alloca i32, i64 %sz, align 16 %vla = alloca i32, i64 %sz, align 16
call void @t4_helper(i32* %a, i32* %vla, <8 x float>* %v) nounwind call void @t4_helper(i32* %a, i32* %vla, <8 x float>* %v) nounwind
%0 = load i32, i32* %a, align 4 %0 = load i32, i32* %a, align 4
%add = add nsw i32 %0, 13 %add = add nsw i32 %0, 13
ret i32 %add ret i32 %add
; CHECK: _t4 ; CHECK: _t4
; CHECK: pushq %rbp ; CHECK: pushq %rbp
; CHECK: movq %rsp, %rbp ; CHECK: movq %rsp, %rbp
; CHECK: pushq %r14
; CHECK: pushq %rbx ; CHECK: pushq %rbx
; CHECK: andq $-32, %rsp ; CHECK: andq $-32, %rsp
; CHECK: subq ${{[0-9]+}}, %rsp ; CHECK: subq ${{[0-9]+}}, %rsp
; CHECK: movq %rsp, %rbx ; CHECK: movq %rsp, %rbx
; ;
; CHECK: leaq {{[0-9]*}}(%rbx), %rdi ; CHECK: leaq {{[0-9]*}}(%rbx), %rdi
; CHECK: leaq {{[0-9]*}}(%rbx), %rdx ; CHECK: leaq {{[0-9]*}}(%rbx), %rdx
; CHECK: callq _t4_helper ; CHECK: callq _t4_helper
; ;
; CHECK: leaq -16(%rbp), %rsp ; CHECK: leaq -{{[0-9]+}}(%rbp), %rsp
; CHECK: popq %rbx ; CHECK: popq %rbx
; CHECK: popq %r14
; CHECK: popq %rbp ; CHECK: popq %rbp
} }
declare void @t4_helper(i32*, i32*, <8 x float>*) declare void @t4_helper(i32*, i32*, <8 x float>*)
; Spilling an AVX register shouldn't cause dynamic realignment ; Spilling an AVX register shouldn't cause dynamic realignment
define i32 @t5(float* nocapture %f) nounwind uwtable ssp { define i32 @t5(float* nocapture %f) nounwind uwtable ssp {
entry: entry:
▲ Show 20 LinesShow All 123 LinesShow Last 20 Lines

test/CodeGen/X86/fast-isel-stackcheck.ll

; RUN: llc -o - %s | FileCheck %s ; RUN: llc -o - %s | FileCheck %s
target datalayout = "e-m:o-i64:64-f80:128-n8:16:32:64-S128" target datalayout = "e-m:o-i64:64-f80:128-n8:16:32:64-S128"
target triple = "x86_64-apple-macosx" target triple = "x86_64-apple-macosx"
; selectiondag stack protector uses a GuardReg which the fast-isel stack ; selectiondag stack protector uses a GuardReg which the fast-isel stack
; protection code did not but the state was not reset properly. ; protection code did not but the state was not reset properly.
; The optnone attribute on @bar forces fast-isel. ; The optnone attribute on @bar forces fast-isel.
; CHECK-LABEL: foo: ; CHECK-LABEL: foo:
; CHECK: movq ___stack_chk_guard@GOTPCREL(%rip), %rax ; CHECK: movq ___stack_chk_guard@GOTPCREL(%rip), %rax
; CHECK-NOT: movq ___stack_chk_guard@GOTPCREL(%rip), %rax ; CHECK: movq ___stack_chk_guard@GOTPCREL(%rip), %rax
define void @foo() #0 { define void @foo() #0 {
entry: entry:
%_tags = alloca [3 x i32], align 4 %_tags = alloca [3 x i32], align 4
ret void ret void
} }
; CHECK-LABEL: bar: ; CHECK-LABEL: bar:
; CHECK: movq ___stack_chk_guard@GOTPCREL(%rip), %rax ; CHECK: movq ___stack_chk_guard@GOTPCREL(%rip), %{{r.x}}
; CHECK: movq ___stack_chk_guard@GOTPCREL(%rip), %rax ; CHECK-DAG: movq ___stack_chk_guard@GOTPCREL(%rip), %[[GUARD:r.x]]
; CHECK-DAG: movq {{[0-9]+}}(%rsp), %[[CANARY:r.x]]
; CHECK: subq %[[CANARY]], %[[GUARD]]
define void @bar() #1 { define void @bar() #1 {
entry: entry:
%vt = alloca [2 x double], align 16 %vt = alloca [2 x double], align 16
br i1 undef, label %cleanup.4091, label %for.cond.3850 br i1 undef, label %cleanup.4091, label %for.cond.3850
unreachable: unreachable:
unreachable unreachable
Show All 16 Lines

test/CodeGen/X86/ssp-guard-spill.ll

  • This file was added.
; RUN: llc < %s | FileCheck %s
target triple = "x86_64-apple-macosx10.4.0"
; __stack_chk_guard must be loaded for twice, once for setting up the canary,
echristoUnsubmitted
Done
ReplyInline Actions

Add comments of what you're testing here.

echristo: Add comments of what you're testing here.
; another time for performing the check. It is because if we reuse the same
; stack guard value, it may get spilled to the stack, then the for loop may
; corrupt it.
;
; bool Bar(int*);
; bool Foo(int n) {
; int a[10];
; for (int i = 0; i < n; i++) {
; a[i] = 0;
; }
; return Bar(a);
; }
;
; CHECK: movq ___stack_chk_guard
; CHECK: movq ___stack_chk_guard
define zeroext i1 @_Z3Fooi(i32 %n) sspstrong {
entry:
%n.addr = alloca i32, align 4
%a = alloca [10 x i32], align 16
%i = alloca i32, align 4
store i32 %n, i32* %n.addr, align 4
store i32 0, i32* %i, align 4
br label %for.cond
for.cond: ; preds = %for.inc, %entry
%tmp = load i32, i32* %i, align 4
%tmp1 = load i32, i32* %n.addr, align 4
%cmp = icmp slt i32 %tmp, %tmp1
br i1 %cmp, label %for.body, label %for.end
for.body: ; preds = %for.cond
%tmp2 = load i32, i32* %i, align 4
%idxprom = sext i32 %tmp2 to i64
%arrayidx = getelementptr inbounds [10 x i32], [10 x i32]* %a, i64 0, i64 %idxprom
store i32 0, i32* %arrayidx, align 4
br label %for.inc
for.inc: ; preds = %for.body
%tmp3 = load i32, i32* %i, align 4
%inc = add nsw i32 %tmp3, 1
store i32 %inc, i32* %i, align 4
br label %for.cond
for.end: ; preds = %for.cond
%arraydecay = getelementptr inbounds [10 x i32], [10 x i32]* %a, i32 0, i32 0
%call = call zeroext i1 @_Z3BarPi(i32* %arraydecay)
ret i1 %call
}
declare zeroext i1 @_Z3BarPi(i32*)

test/CodeGen/X86/warn-stack.ll

; RUN: llc -mtriple x86_64-apple-macosx10.8.0 -warn-stack-size=80 < %s 2>&1 >/dev/null | FileCheck %s ; RUN: llc -mtriple x86_64-apple-macosx10.8.0 -warn-stack-size=80 < %s 2>&1 >/dev/null | FileCheck %s
; Check the internal option that warns when the stack size exceeds the ; Check the internal option that warns when the stack size exceeds the
; given amount. ; given amount.
; <rdar://13987214> ; <rdar://13987214>
; CHECK-NOT: nowarn ; CHECK-NOT: nowarn
define void @nowarn() nounwind ssp { define void @nowarn() nounwind ssp {
entry: entry:
%buffer = alloca [12 x i8], align 1 %buffer = alloca [12 x i8], align 1
%arraydecay = getelementptr inbounds [12 x i8], [12 x i8]* %buffer, i64 0, i64 0 %arraydecay = getelementptr inbounds [12 x i8], [12 x i8]* %buffer, i64 0, i64 0
call void @doit(i8* %arraydecay) nounwind call void @doit(i8* %arraydecay) nounwind
ret void ret void
} }
; CHECK: warning: stack size limit exceeded (104) in warn ; CHECK: warning: stack size limit exceeded (88) in warn
define void @warn() nounwind ssp { define void @warn() nounwind ssp {
entry: entry:
%buffer = alloca [80 x i8], align 1 %buffer = alloca [80 x i8], align 1
%arraydecay = getelementptr inbounds [80 x i8], [80 x i8]* %buffer, i64 0, i64 0 %arraydecay = getelementptr inbounds [80 x i8], [80 x i8]* %buffer, i64 0, i64 0
call void @doit(i8* %arraydecay) nounwind call void @doit(i8* %arraydecay) nounwind
ret void ret void
} }
declare void @doit(i8*) declare void @doit(i8*)

test/DebugInfo/X86/vla.ll

; RUN: llc -O0 -mtriple=x86_64-apple-darwin -filetype=asm %s -o - | FileCheck %s ; RUN: llc -O0 -mtriple=x86_64-apple-darwin -filetype=asm %s -o - | FileCheck %s
; Ensure that we generate an indirect location for the variable length array a. ; Ensure that we generate an indirect location for the variable length array a.
; CHECK: ##DEBUG_VALUE: vla:a <- [%RDX+0] ; CHECK: ##DEBUG_VALUE: vla:a <- [%RCX+0]
; CHECK: DW_OP_breg1 ; CHECK: DW_OP_breg2
; rdar://problem/13658587 ; rdar://problem/13658587
; ;
; generated from: ; generated from:
; ;
; int vla(int n) { ; int vla(int n) {
; int a[n]; ; int a[n];
; a[0] = 42; ; a[0] = 42;
; return a[n-1]; ; return a[n-1];
▲ Show 20 LinesShow All 94 LinesShow Last 20 Lines