This is an archive of the discontinued LLVM Phabricator instance.

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2199	A patch like this one would need rather more tests to demonstrate that the insertion of the canary word is in a position that is compatible with where the unwinder and other stack-frame-walking tools would look.

jsji added inline comments.May 27 2021, 6:53 AM

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2199	I think this is chicken and egg issue: there is no SSP support in current libunwind support on AIX yet. I would prefer we enable this bits first, we can and will definitely do more test while enable this support in libunwind.

jsji added inline comments.May 27 2021, 6:58 AM

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2199	Also, since there is NO ABI definition of SSP canary word position, I don't think we should assume that it is the compiler's job to ensure the compatibility of canary word, libunwind can do a better job in ensuring the compatibility with legacy compiler in such case.

hubert.reinterpretcast added inline comments.May 27 2021, 9:26 AM

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2199	It is the compiler's responsibility to ensure compatibility of the canary word so that the non-Clang-based IBM XL C++ stack unwinder continues to have whatever ability it did to unwind past C code (that just happens to be compiled with LLVM). Advanced debugging tools may also have an expectation about the positioning of the canary word. As for the ability of libunwind itself to do anything reasonable with this bit, even if the specific positioning is not based on the IBM XL compiler, that there is a concise set of rules for the positioning is necessary. Enabling the bit without identifying such a concise set of rules in prose (that is, improving the documentation of the ABI) seems problematic to me.

I respectfully disagree with the requirement of mandating the canary word position.

But considering that libunwind hasn't support this,
I think we can guard this feature with an option, and disable it for now.
Doing this will make it easier for libunwind development and further testing.

Is that OK for you?

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2199	It is the compiler's responsibility to ensure compatibility of the canary word so that the non-Clang-based IBM XL C++ stack unwinder continues to have whatever ability it did to unwind past C code (that just happens to be compiled with LLVM). Advanced debugging tools may also have an expectation about the positioning of the canary word. I personally don't agree with this. It doesn't make sense to me to force clang-based compiler to ensure something with legacy unwinder just for mixing linkings -- which is not guarantee to work anyway. Advanced debugging tools may also have an expectation about the positioning of the canary word. As I mentioned, there was NO mention of canary word position in ABI, the tooling shouldn't have expectation of fixed position. Also our new clang based compiler does NOT claim to be backward compatibility with all existing toolings. Also, I don't know of any of such advanced debugging tools so far.
2199	As for the ability of libunwind itself to do anything reasonable with this bit, even if the specific positioning is not based on the IBM XL compiler, that there is a concise set of rules for the positioning is necessary. Enabling the bit without identifying such a concise set of rules in prose (that is, improving the documentation of the ABI) seems problematic to me. I don't see the benefit justify the effort here.

In D103202#2785332, @jsji wrote:

I think we can guard this feature with an option, and disable it for now.
Doing this will make it easier for libunwind development and further testing.

Is that OK for you?

Yes, an option control (maybe -mllvm and not a top-level "Clang driver" option) sounds good.

hubert.reinterpretcast added inline comments.May 27 2021, 1:48 PM

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2199	It doesn't make sense to me to force clang-based compiler to ensure something with legacy unwinder just for mixing linkings -- which is not guarantee to work anyway. My understanding is that there is a design intent for C code to be usable in mixed scenarios.
2199	I don't see the benefit justify the effort here. Given the additional option control, I'm fine with deferring this to a later patch that enables this functionality by default.

Add option control to enable this feature.

Harbormaster completed remote builds in B106638: Diff 348430.May 27 2021, 7:35 PM

Ping...

Ping ...

shchenz added inline comments.Jun 9 2021, 6:06 PM

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2198	Will it cause some issue in unwinder if we set the ssp canary bit in the traceback table but there is no canary word in the stack? Could you please comment @xingxue @DiggerLin @hubert.reinterpretcast

hubert.reinterpretcast added inline comments.Jun 9 2021, 7:13 PM

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2198	The `FIXME` indicates a problem (as is appropriate for a `FIXME`). Even if it is possible to recover from this by more complicated logic in the unwinder, the preference should be for it to be resolved by the compiler (pay for it at compile time). The patch does not have to be blocked by the pending `FIXME`, because the bit is only set when an internal/experimental flag is set.

jsji added inline comments.Jun 9 2021, 7:17 PM

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2198	As I mentioned, there is NO unwinder support yet, so this is chicken and egg issue. We can fix this in a following patch if the unwinder will not able to handle it and complain. Also this is a very corner case -- with legacy XL, we set this bit on whenever the options is on, no checking, and we never hit problem -- so legacy unwinder can tolerate this.

LGTM, thanks.

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp
2198	OK, LGTM then. We can revisit the impact of the redundant ssp canary bit later when unwinder supports this. And also this flag will not be set by default in the compiler.

This revision is now accepted and ready to land.Jun 9 2021, 7:30 PM

This revision was landed with ongoing or failed builds.Jun 9 2021, 7:58 PM

Closed by commit rG4a89ed373cda: [AIX] Add traceback ssp canary bit support (authored by jsji). · Explain Why

This revision was automatically updated to reflect the committed changes.

jsji added a commit: rG4a89ed373cda: [AIX] Add traceback ssp canary bit support.

Revision Contents

Path

Size

llvm/

include/

llvm/

CodeGen/

TargetLoweringObjectFileImpl.h

1 line

lib/

CodeGen/

TargetLoweringObjectFileImpl.cpp

11 lines

Target/

PowerPC/

PPCAsmPrinter.cpp

7 lines

test/

CodeGen/

PowerPC/

aix-emit-tracebacktable-ssp.ll

37 lines

Diff 351049

llvm/include/llvm/CodeGen/TargetLoweringObjectFileImpl.h

	Show First 20 Lines • Show All 223 Lines • ▼ Show 20 Lines
	};			};

	class TargetLoweringObjectFileXCOFF : public TargetLoweringObjectFile {			class TargetLoweringObjectFileXCOFF : public TargetLoweringObjectFile {
	public:			public:
	TargetLoweringObjectFileXCOFF() = default;			TargetLoweringObjectFileXCOFF() = default;
	~TargetLoweringObjectFileXCOFF() override = default;			~TargetLoweringObjectFileXCOFF() override = default;

	static bool ShouldEmitEHBlock(const MachineFunction *MF);			static bool ShouldEmitEHBlock(const MachineFunction *MF);
				static bool ShouldSetSSPCanaryBitInTB(const MachineFunction *MF);

	static MCSymbol getEHInfoTableSymbol(const MachineFunction MF);			static MCSymbol getEHInfoTableSymbol(const MachineFunction MF);

	void Initialize(MCContext &Ctx, const TargetMachine &TM) override;			void Initialize(MCContext &Ctx, const TargetMachine &TM) override;

	bool shouldPutJumpTableInFunctionSection(bool UsesLabelDifference,			bool shouldPutJumpTableInFunctionSection(bool UsesLabelDifference,
	const Function &F) const override;			const Function &F) const override;

	▲ Show 20 Lines • Show All 49 Lines • Show Last 20 Lines

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp

Show First 20 Lines • Show All 2,182 Lines • ▼ Show 20 Lines	const GlobalValue *Per =
dyn_cast<GlobalValue>(F.getPersonalityFn()->stripPointerCasts());		dyn_cast<GlobalValue>(F.getPersonalityFn()->stripPointerCasts());
assert(Per && "Personality routine is not a GlobalValue type.");		assert(Per && "Personality routine is not a GlobalValue type.");
if (isNoOpWithoutInvoke(classifyEHPersonality(Per)))		if (isNoOpWithoutInvoke(classifyEHPersonality(Per)))
return false;		return false;

return true;		return true;
}		}

		bool TargetLoweringObjectFileXCOFF::ShouldSetSSPCanaryBitInTB(
		const MachineFunction *MF) {
		const Function &F = MF->getFunction();
		if (!F.hasStackProtectorFnAttr())
		return false;
		// FIXME: check presence of canary word
		// There are cases that the stack protectors are not really inserted even if
		// the attributes are on.
		shchenzUnsubmitted Not Done Reply Inline Actions Will it cause some issue in unwinder if we set the ssp canary bit in the traceback table but there is no canary word in the stack? Could you please comment @xingxue @DiggerLin @hubert.reinterpretcast shchenz: Will it cause some issue in unwinder if we set the ssp canary bit in the traceback table but…
		hubert.reinterpretcastUnsubmitted Not Done Reply Inline Actions The `FIXME` indicates a problem (as is appropriate for a `FIXME`). Even if it is possible to recover from this by more complicated logic in the unwinder, the preference should be for it to be resolved by the compiler (pay for it at compile time). The patch does not have to be blocked by the pending `FIXME`, because the bit is only set when an internal/experimental flag is set. hubert.reinterpretcast: The `FIXME` indicates a problem (as is appropriate for a `FIXME`). Even if it is possible to…
		jsjiAuthorUnsubmitted Done Reply Inline Actions As I mentioned, there is NO unwinder support yet, so this is chicken and egg issue. We can fix this in a following patch if the unwinder will not able to handle it and complain. Also this is a very corner case -- with legacy XL, we set this bit on whenever the options is on, no checking, and we never hit problem -- so legacy unwinder can tolerate this. jsji: As I mentioned, there is NO unwinder support yet, so this is chicken and egg issue. We can fix…
		shchenzUnsubmitted Not Done Reply Inline Actions OK, LGTM then. We can revisit the impact of the redundant ssp canary bit later when unwinder supports this. And also this flag will not be set by default in the compiler. shchenz: OK, LGTM then. We can revisit the impact of the redundant ssp canary bit later when unwinder…
		return true;
		hubert.reinterpretcastUnsubmitted Not Done Reply Inline Actions A patch like this one would need rather more tests to demonstrate that the insertion of the canary word is in a position that is compatible with where the unwinder and other stack-frame-walking tools would look. hubert.reinterpretcast: A patch like this one would need rather more tests to demonstrate that the insertion of the…
		jsjiAuthorUnsubmitted Done Reply Inline Actions I think this is chicken and egg issue: there is no SSP support in current libunwind support on AIX yet. I would prefer we enable this bits first, we can and will definitely do more test while enable this support in libunwind. jsji: I think this is chicken and egg issue: there is no SSP support in current libunwind support on…
		jsjiAuthorUnsubmitted Done Reply Inline Actions Also, since there is NO ABI definition of SSP canary word position, I don't think we should assume that it is the compiler's job to ensure the compatibility of canary word, libunwind can do a better job in ensuring the compatibility with legacy compiler in such case. jsji: Also, since there is NO ABI definition of SSP canary word position, I don't think we should…
		hubert.reinterpretcastUnsubmitted Not Done Reply Inline Actions It is the compiler's responsibility to ensure compatibility of the canary word so that the non-Clang-based IBM XL C++ stack unwinder continues to have whatever ability it did to unwind past C code (that just happens to be compiled with LLVM). Advanced debugging tools may also have an expectation about the positioning of the canary word. As for the ability of libunwind itself to do anything reasonable with this bit, even if the specific positioning is not based on the IBM XL compiler, that there is a concise set of rules for the positioning is necessary. Enabling the bit without identifying such a concise set of rules in prose (that is, improving the documentation of the ABI) seems problematic to me. hubert.reinterpretcast: It is the compiler's responsibility to ensure compatibility of the canary word so that the non…
		jsjiAuthorUnsubmitted Done Reply Inline Actions It is the compiler's responsibility to ensure compatibility of the canary word so that the non-Clang-based IBM XL C++ stack unwinder continues to have whatever ability it did to unwind past C code (that just happens to be compiled with LLVM). Advanced debugging tools may also have an expectation about the positioning of the canary word. I personally don't agree with this. It doesn't make sense to me to force clang-based compiler to ensure something with legacy unwinder just for mixing linkings -- which is not guarantee to work anyway. Advanced debugging tools may also have an expectation about the positioning of the canary word. As I mentioned, there was NO mention of canary word position in ABI, the tooling shouldn't have expectation of fixed position. Also our new clang based compiler does NOT claim to be backward compatibility with all existing toolings. Also, I don't know of any of such advanced debugging tools so far. jsji: > It is the compiler's responsibility to ensure compatibility of the canary word so that the…
		hubert.reinterpretcastUnsubmitted Not Done Reply Inline Actions It doesn't make sense to me to force clang-based compiler to ensure something with legacy unwinder just for mixing linkings -- which is not guarantee to work anyway. My understanding is that there is a design intent for C code to be usable in mixed scenarios. hubert.reinterpretcast: > It doesn't make sense to me to force clang-based compiler to ensure something with legacy…
		jsjiAuthorUnsubmitted Done Reply Inline Actions As for the ability of libunwind itself to do anything reasonable with this bit, even if the specific positioning is not based on the IBM XL compiler, that there is a concise set of rules for the positioning is necessary. Enabling the bit without identifying such a concise set of rules in prose (that is, improving the documentation of the ABI) seems problematic to me. I don't see the benefit justify the effort here. jsji: > As for the ability of libunwind itself to do anything reasonable with this bit, even if the…
		hubert.reinterpretcastUnsubmitted Not Done Reply Inline Actions I don't see the benefit justify the effort here. Given the additional option control, I'm fine with deferring this to a later patch that enables this functionality by default. hubert.reinterpretcast: > I don't see the benefit justify the effort here. Given the additional option control, I'm…
		}

MCSymbol *		MCSymbol *
TargetLoweringObjectFileXCOFF::getEHInfoTableSymbol(const MachineFunction *MF) {		TargetLoweringObjectFileXCOFF::getEHInfoTableSymbol(const MachineFunction *MF) {
return MF->getMMI().getContext().getOrCreateSymbol(		return MF->getMMI().getContext().getOrCreateSymbol(
"__ehinfo." + Twine(MF->getFunctionNumber()));		"__ehinfo." + Twine(MF->getFunctionNumber()));
}		}

MCSymbol *		MCSymbol *
TargetLoweringObjectFileXCOFF::getTargetSymbol(const GlobalValue *GV,		TargetLoweringObjectFileXCOFF::getTargetSymbol(const GlobalValue *GV,
▲ Show 20 Lines • Show All 315 Lines • Show Last 20 Lines

llvm/lib/Target/PowerPC/PPCAsmPrinter.cpp

Show First 20 Lines • Show All 72 Lines • ▼ Show 20 Lines
#include <memory>		#include <memory>
#include <new>		#include <new>

using namespace llvm;		using namespace llvm;
using namespace llvm::XCOFF;		using namespace llvm::XCOFF;

#define DEBUG_TYPE "asmprinter"		#define DEBUG_TYPE "asmprinter"

		static cl::opt<bool> EnableSSPCanaryBitInTB(
		"aix-ssp-tb-bit", cl::init(false),
		cl::desc("Enable Passing SSP Canary info in Trackback on AIX"), cl::Hidden);

// Specialize DenseMapInfo to allow		// Specialize DenseMapInfo to allow
// std::pair<const MCSymbol *, MCSymbolRefExpr::VariantKind> in DenseMap.		// std::pair<const MCSymbol *, MCSymbolRefExpr::VariantKind> in DenseMap.
// This specialization is needed here because that type is used as keys in the		// This specialization is needed here because that type is used as keys in the
// map representing TOC entries.		// map representing TOC entries.
namespace llvm {		namespace llvm {
template <>		template <>
struct DenseMapInfo<std::pair<const MCSymbol *, MCSymbolRefExpr::VariantKind>> {		struct DenseMapInfo<std::pair<const MCSymbol *, MCSymbolRefExpr::VariantKind>> {
using TOCKey = std::pair<const MCSymbol *, MCSymbolRefExpr::VariantKind>;		using TOCKey = std::pair<const MCSymbol *, MCSymbolRefExpr::VariantKind>;
▲ Show 20 Lines • Show All 2,026 Lines • ▼ Show 20 Lines	if (FirstHalfOfMandatoryField & TracebackTable::IsAllocaUsedMask) {
OutStreamer->AddComment("AllocaUsed");		OutStreamer->AddComment("AllocaUsed");
OutStreamer->emitIntValueInHex(AllocReg, sizeof(AllocReg));		OutStreamer->emitIntValueInHex(AllocReg, sizeof(AllocReg));
}		}

uint8_t ExtensionTableFlag = 0;		uint8_t ExtensionTableFlag = 0;
if (SecondHalfOfMandatoryField & TracebackTable::HasExtensionTableMask) {		if (SecondHalfOfMandatoryField & TracebackTable::HasExtensionTableMask) {
if (ShouldEmitEHBlock)		if (ShouldEmitEHBlock)
ExtensionTableFlag \|= ExtendedTBTableFlag::TB_EH_INFO;		ExtensionTableFlag \|= ExtendedTBTableFlag::TB_EH_INFO;
		if (EnableSSPCanaryBitInTB &&
		TargetLoweringObjectFileXCOFF::ShouldSetSSPCanaryBitInTB(MF))
		ExtensionTableFlag \|= ExtendedTBTableFlag::TB_SSP_CANARY;

CommentOS << "ExtensionTableFlag = "		CommentOS << "ExtensionTableFlag = "
<< getExtendedTBTableFlagString(ExtensionTableFlag);		<< getExtendedTBTableFlagString(ExtensionTableFlag);
EmitCommentAndValue(ExtensionTableFlag, sizeof(ExtensionTableFlag));		EmitCommentAndValue(ExtensionTableFlag, sizeof(ExtensionTableFlag));
}		}

if (ExtensionTableFlag & ExtendedTBTableFlag::TB_EH_INFO) {		if (ExtensionTableFlag & ExtendedTBTableFlag::TB_EH_INFO) {
auto &Ctx = OutStreamer->getContext();		auto &Ctx = OutStreamer->getContext();
▲ Show 20 Lines • Show All 430 Lines • Show Last 20 Lines

llvm/test/CodeGen/PowerPC/aix-emit-tracebacktable-ssp.ll

This file was added.

				; RUN: llc -aix-ssp-tb-bit -mtriple=powerpc64-ibm-aix-xcoff -O0 < %s \| FileCheck %s

				; CHECK-LABEL: f:
				; CHECK: __ssp_canary_word
				; CHECK: TB_SSP_CANARY
				define i32 @f() #0 personality i8* bitcast (i32 (...)* @__xlcxx_personality_v1 to i8*) {
				invoke i32 undef(i8* undef)
				to label %invoke unwind label %lpad

				invoke:
				%var = alloca i32, align 4
				store i32 0, i32* %var, align 4
				%gep = getelementptr inbounds i32, i32* %var, i32 1
				%ret = load i32, i32* %gep, align 4
				ret i32 %ret
				lpad:
				landingpad { i8*, i32 }
				catch i8* null
				unreachable

				}

				; CHECK-LABEL: f2:
				; CHECK: __ssp_canary_word
				; Not emitting traceback bit when no unwinding needed.
				; CHECK-NOT: TB_SSP_CANARY
				define i32 @f2() #0 {
				%var = alloca i32, align 4
				store i32 0, i32* %var, align 4
				%gep = getelementptr inbounds i32, i32* %var, i32 1
				%ret = load i32, i32* %gep, align 4
				ret i32 %ret
				}

				declare i32 @__xlcxx_personality_v1(...)
				attributes #0 = { sspstrong }

This is an archive of the discontinued LLVM Phabricator instance.

[AIX] Add traceback ssp canary bit supportClosedPublic

Details

Diff Detail

Event Timeline

Revision Contents

Diff 351049

llvm/include/llvm/CodeGen/TargetLoweringObjectFileImpl.h

llvm/lib/CodeGen/TargetLoweringObjectFileImpl.cpp

llvm/lib/Target/PowerPC/PPCAsmPrinter.cpp

llvm/test/CodeGen/PowerPC/aix-emit-tracebacktable-ssp.ll

[AIX] Add traceback ssp canary bit support
ClosedPublic