This is an archive of the discontinued LLVM Phabricator instance.

Differential D7182

[MSan][MIPS] VarArgHelper for MIPS64
ClosedPublic

Authored by mohit.bhakkad on Jan 26 2015, 10:58 AM.

Details

Reviewers
kcc
samsonov
eugenis
petarj
Commits
rG518946e44097: [MSan][MIPS] VarArgHelper for MIPS64
rL229667: [MSan][MIPS] VarArgHelper for MIPS64

Diff Detail

Repository
rL LLVM

Event Timeline

mohit.bhakkad updated this revision to Diff 18773.Jan 26 2015, 10:58 AM
mohit.bhakkad retitled this revision from to [MSan][MIPS] VarArgHelper for MIPS64.
mohit.bhakkad updated this object.
mohit.bhakkad edited the test plan for this revision. (Show Details)
mohit.bhakkad added reviewers: eugenis, kcc, samsonov, petarj.
mohit.bhakkad set the repository for this revision to rL LLVM.
mohit.bhakkad added subscribers: dsanders, slthakur.
mohit.bhakkad added a subscriber: Unknown Object (MLST).
eugenis accepted this revision.Jan 30 2015, 2:42 PM
eugenis edited edge metadata.

LGTM w/ inline comments

lib/Transforms/Instrumentation/MemorySanitizer.cpp
437 ↗(On Diff #18773)

Please reuse VAArgSizeTLS instead of creating a new member variable, with a comment somewhere in VarArgHelper that it is used to pass the full argument size (effectively, all arguments on MIPS64 go to the overflow area in terms of X86_64).

It's confusing, unless you want to rename __msan_va_arg_overflow_size_tls as well.

2979 ↗(On Diff #18773)

Above, we use the following to check for MIPS64:

case Triple::mips64:
case Triple::mips64el:

Do you need to check for Triple::mips64 here as well?

This revision is now accepted and ready to land.Jan 30 2015, 2:42 PM
mohit.bhakkad updated this revision to Diff 19220.Feb 3 2015, 7:34 AM
mohit.bhakkad edited edge metadata.

Changes in this revision:

  • removed VAArgSizeTLS
  • adding support for mips64 EB (big endian)
mohit.bhakkad added a comment.Feb 11 2015, 6:01 AM

@eugenis any comment/suggestion on this? This will provide provide msan for VarArgs on mips64/mips64el.

eugenis added a comment.Feb 11 2015, 2:01 PM

Sorry for the delay, I've been travelling for the last 2 weeks.

lib/Transforms/Instrumentation/MemorySanitizer.cpp
2889 ↗(On Diff #19220)

Should it be += (8 - ArgSize) ?
I assume each argument is extended to 8 bytes.

mohit.bhakkad added inline comments.Feb 12 2015, 4:23 AM
lib/Transforms/Instrumentation/MemorySanitizer.cpp
2889 ↗(On Diff #19220)

For variable args, types char and short int are automatically promoted to int, so anything less than size 8 is of size 4.
So += (8 - ArgSize) and += ArgSize should work same.

eugenis added inline comments.Feb 16 2015, 12:11 AM
lib/Transforms/Instrumentation/MemorySanitizer.cpp
2889 ↗(On Diff #19220)

If you want to rely on that, then please add a CHECK that ArgSize == 4.

mohit.bhakkad updated this revision to Diff 20068.Feb 17 2015, 12:27 AM

Changes in this revision:

  • as per @eugenis suggestion changed += ArgSize to += (8 - ArgSize)
mohit.bhakkad added inline comments.Feb 17 2015, 12:32 AM
lib/Transforms/Instrumentation/MemorySanitizer.cpp
2889 ↗(On Diff #19220)

Going ahead with += (8 - ArgSize) in next revision, as it matches the context, and I don't want another CHECK.

eugenis added a comment.Feb 17 2015, 1:28 AM

Looks good.

lib/Transforms/Instrumentation/MemorySanitizer.cpp
2889 ↗(On Diff #19220)

Yes, I think it's less confusing.

Closed by commit rL229667: [MSan][MIPS] VarArgHelper for MIPS64 (authored by mohit.bhakkad). · Explain WhyFeb 18 2015, 3:43 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents

PathSize
llvm/
trunk/
lib/
Transforms/
Instrumentation/
104 lines

Diff 20159

llvm/trunk/lib/Transforms/Instrumentation/MemorySanitizer.cpp

Show First 20 LinesShow All 331 Lines▼ Show 20 Lines private:
MDNode *ColdCallWeights; MDNode *ColdCallWeights;
/// \brief Branch weights for origin store. /// \brief Branch weights for origin store.
MDNode *OriginStoreWeights; MDNode *OriginStoreWeights;
/// \brief An empty volatile inline asm that prevents callback merge. /// \brief An empty volatile inline asm that prevents callback merge.
InlineAsm *EmptyAsm; InlineAsm *EmptyAsm;
friend struct MemorySanitizerVisitor; friend struct MemorySanitizerVisitor;
friend struct VarArgAMD64Helper; friend struct VarArgAMD64Helper;
friend struct VarArgMIPS64Helper;
}; };
} // namespace } // namespace
char MemorySanitizer::ID = 0; char MemorySanitizer::ID = 0;
INITIALIZE_PASS(MemorySanitizer, "msan", INITIALIZE_PASS(MemorySanitizer, "msan",
"MemorySanitizer: detects uninitialized reads.", "MemorySanitizer: detects uninitialized reads.",
false, false) false, false)
▲ Show 20 LinesShow All 2,491 Lines▼ Show 20 Lines for (size_t i = 0, n = VAStartInstrumentationList.size(); i < n; i++) {
Value *OverflowArgAreaShadowPtr = Value *OverflowArgAreaShadowPtr =
MSV.getShadowPtr(OverflowArgAreaPtr, IRB.getInt8Ty(), IRB); MSV.getShadowPtr(OverflowArgAreaPtr, IRB.getInt8Ty(), IRB);
Value *SrcPtr = IRB.CreateConstGEP1_32(VAArgTLSCopy, AMD64FpEndOffset); Value *SrcPtr = IRB.CreateConstGEP1_32(VAArgTLSCopy, AMD64FpEndOffset);
IRB.CreateMemCpy(OverflowArgAreaShadowPtr, SrcPtr, VAArgOverflowSize, 16); IRB.CreateMemCpy(OverflowArgAreaShadowPtr, SrcPtr, VAArgOverflowSize, 16);
} }
} }
}; };
/// \brief MIPS64-specific implementation of VarArgHelper.
struct VarArgMIPS64Helper : public VarArgHelper {
Function &F;
MemorySanitizer &MS;
MemorySanitizerVisitor &MSV;
Value *VAArgTLSCopy;
Value *VAArgSize;
SmallVector<CallInst*, 16> VAStartInstrumentationList;
VarArgMIPS64Helper(Function &F, MemorySanitizer &MS,
MemorySanitizerVisitor &MSV)
: F(F), MS(MS), MSV(MSV), VAArgTLSCopy(nullptr),
VAArgSize(nullptr) {}
void visitCallSite(CallSite &CS, IRBuilder<> &IRB) override {
unsigned VAArgOffset = 0;
for (CallSite::arg_iterator ArgIt = CS.arg_begin() + 1, End = CS.arg_end();
ArgIt != End; ++ArgIt) {
Value *A = *ArgIt;
Value *Base;
uint64_t ArgSize = MS.DL->getTypeAllocSize(A->getType());
#if defined(__MIPSEB__) || defined(MIPSEB)
// Adjusting the shadow for argument with size < 8 to match the placement
// of bits in big endian system
if (ArgSize < 8)
VAArgOffset += (8 - ArgSize);
#endif
Base = getShadowPtrForVAArgument(A->getType(), IRB, VAArgOffset);
VAArgOffset += ArgSize;
VAArgOffset = RoundUpToAlignment(VAArgOffset, 8);
IRB.CreateAlignedStore(MSV.getShadow(A), Base, kShadowTLSAlignment);
}
Constant *TotalVAArgSize = ConstantInt::get(IRB.getInt64Ty(), VAArgOffset);
// Here using VAArgOverflowSizeTLS as VAArgSizeTLS to avoid creation of
// a new class member i.e. it is the total size of all VarArgs.
IRB.CreateStore(TotalVAArgSize, MS.VAArgOverflowSizeTLS);
}
/// \brief Compute the shadow address for a given va_arg.
Value *getShadowPtrForVAArgument(Type *Ty, IRBuilder<> &IRB,
int ArgOffset) {
Value *Base = IRB.CreatePointerCast(MS.VAArgTLS, MS.IntptrTy);
Base = IRB.CreateAdd(Base, ConstantInt::get(MS.IntptrTy, ArgOffset));
return IRB.CreateIntToPtr(Base, PointerType::get(MSV.getShadowTy(Ty), 0),
"_msarg");
}
void visitVAStartInst(VAStartInst &I) override {
IRBuilder<> IRB(&I);
VAStartInstrumentationList.push_back(&I);
Value *VAListTag = I.getArgOperand(0);
Value *ShadowPtr = MSV.getShadowPtr(VAListTag, IRB.getInt8Ty(), IRB);
IRB.CreateMemSet(ShadowPtr, Constant::getNullValue(IRB.getInt8Ty()),
/* size */8, /* alignment */8, false);
}
void visitVACopyInst(VACopyInst &I) override {
IRBuilder<> IRB(&I);
Value *VAListTag = I.getArgOperand(0);
Value *ShadowPtr = MSV.getShadowPtr(VAListTag, IRB.getInt8Ty(), IRB);
// Unpoison the whole __va_list_tag.
// FIXME: magic ABI constants.
IRB.CreateMemSet(ShadowPtr, Constant::getNullValue(IRB.getInt8Ty()),
/* size */8, /* alignment */8, false);
}
void finalizeInstrumentation() override {
assert(!VAArgSize && !VAArgTLSCopy &&
"finalizeInstrumentation called twice");
IRBuilder<> IRB(F.getEntryBlock().getFirstNonPHI());
VAArgSize = IRB.CreateLoad(MS.VAArgOverflowSizeTLS);
Value *CopySize = IRB.CreateAdd(ConstantInt::get(MS.IntptrTy, 0),
VAArgSize);
if (!VAStartInstrumentationList.empty()) {
// If there is a va_start in this function, make a backup copy of
// va_arg_tls somewhere in the function entry block.
VAArgTLSCopy = IRB.CreateAlloca(Type::getInt8Ty(*MS.C), CopySize);
IRB.CreateMemCpy(VAArgTLSCopy, MS.VAArgTLS, CopySize, 8);
}
// Instrument va_start.
// Copy va_list shadow from the backup copy of the TLS contents.
for (size_t i = 0, n = VAStartInstrumentationList.size(); i < n; i++) {
CallInst *OrigInst = VAStartInstrumentationList[i];
IRBuilder<> IRB(OrigInst->getNextNode());
Value *VAListTag = OrigInst->getArgOperand(0);
Value *RegSaveAreaPtrPtr =
IRB.CreateIntToPtr(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),
Type::getInt64PtrTy(*MS.C));
Value *RegSaveAreaPtr = IRB.CreateLoad(RegSaveAreaPtrPtr);
Value *RegSaveAreaShadowPtr =
MSV.getShadowPtr(RegSaveAreaPtr, IRB.getInt8Ty(), IRB);
IRB.CreateMemCpy(RegSaveAreaShadowPtr, VAArgTLSCopy, CopySize, 8);
}
}
};
/// \brief A no-op implementation of VarArgHelper. /// \brief A no-op implementation of VarArgHelper.
struct VarArgNoOpHelper : public VarArgHelper { struct VarArgNoOpHelper : public VarArgHelper {
VarArgNoOpHelper(Function &F, MemorySanitizer &MS, VarArgNoOpHelper(Function &F, MemorySanitizer &MS,
MemorySanitizerVisitor &MSV) {} MemorySanitizerVisitor &MSV) {}
void visitCallSite(CallSite &CS, IRBuilder<> &IRB) override {} void visitCallSite(CallSite &CS, IRBuilder<> &IRB) override {}
void visitVAStartInst(VAStartInst &I) override {} void visitVAStartInst(VAStartInst &I) override {}
void visitVACopyInst(VACopyInst &I) override {} void visitVACopyInst(VACopyInst &I) override {}
void finalizeInstrumentation() override {} void finalizeInstrumentation() override {}
}; };
VarArgHelper *CreateVarArgHelper(Function &Func, MemorySanitizer &Msan, VarArgHelper *CreateVarArgHelper(Function &Func, MemorySanitizer &Msan,
MemorySanitizerVisitor &Visitor) { MemorySanitizerVisitor &Visitor) {
// VarArg handling is only implemented on AMD64. False positives are possible // VarArg handling is only implemented on AMD64. False positives are possible
// on other platforms. // on other platforms.
llvm::Triple TargetTriple(Func.getParent()->getTargetTriple()); llvm::Triple TargetTriple(Func.getParent()->getTargetTriple());
if (TargetTriple.getArch() == llvm::Triple::x86_64) if (TargetTriple.getArch() == llvm::Triple::x86_64)
return new VarArgAMD64Helper(Func, Msan, Visitor); return new VarArgAMD64Helper(Func, Msan, Visitor);
else if (TargetTriple.getArch() == llvm::Triple::mips64 ||
TargetTriple.getArch() == llvm::Triple::mips64el)
return new VarArgMIPS64Helper(Func, Msan, Visitor);
else else
return new VarArgNoOpHelper(Func, Msan, Visitor); return new VarArgNoOpHelper(Func, Msan, Visitor);
} }
} // namespace } // namespace
bool MemorySanitizer::runOnFunction(Function &F) { bool MemorySanitizer::runOnFunction(Function &F) {
MemorySanitizerVisitor Visitor(F, *this); MemorySanitizerVisitor Visitor(F, *this);
Show All 11 Lines