This is an archive of the discontinued LLVM Phabricator instance.

Differential D104246

X86: balance the frame prologue and epilogue on Win64
ClosedPublic

Authored by compnerd on Jun 14 2021, 11:07 AM.

Details

Reviewers
rnk
t.p.northover
Commits
rG17bdc0ff6f2e: X86: balance the frame prologue and epilogue on Win64
Summary

This was broken in ba1509da7b89c850c89f0f98afbab375794cd3c8. The Win64
frame would not perform the setup of the Swift async context parameter
but would tear down the setup in the epilogue resulting in crashes.
This ensures that we do the full setup when we do the tear down.
Although this is non-conforming to the Win64 calling convention, it
corrects the setup and exposes the actual issue that the change
introduced: incorrect frame setup.

Diff Detail

Event Timeline

compnerd created this revision.Jun 14 2021, 11:07 AM
Herald added subscribers: pengfei, hiraditya. · View Herald TranscriptJun 14 2021, 11:07 AM
compnerd requested review of this revision.Jun 14 2021, 11:07 AM
Herald added a project: Restricted Project. · View Herald TranscriptJun 14 2021, 11:07 AM
Harbormaster completed remote builds in B109146: Diff 351935.Jun 14 2021, 12:00 PM
rnk accepted this revision.Jun 14 2021, 12:04 PM

lgtm

The code change is just adjusting some if conditions and changing indentation, so there's no reason to hold it up with my design questions. Please consider implementing the refactoring suggestion as a follow-up, though.

llvm/lib/Target/X86/X86FrameLowering.cpp
1486

As a style comment, I think this code would be easier to read if it was moved out of line. The emitPrologue/emitEpilog functions are really, really long. Anything you can do to shorten them helps with understanding. If you can pair the swift async context setup and teardown code somewhere later in the file, it would help. The main state going in and out is MBB, MBBI, DL. See BuildStackAlignAND for an example of this.

llvm/test/CodeGen/X86/swift-async-win64.ll
10–11

Maybe I misunderstand, but won't this prevent every existing Windows unwinder, debuggers included, from unwinding the native stack? BTS *sets* bit 60 of RBP before it is pushed. If the caller's frame uses RBP as a frame pointer, how will a Swift-unaware stack unwinder use RBP to continue unwinding? It won't know to clear out bit 60.

Is it really the plan to make it so that you cannot debug Swift code from a Swift-unaware debugger? I'm not sure LLDB on Windows is really ready, so I imagine that folks will want to use windbg to debug Swift code in the near future. This isn't a Windows-specific concern either. Anyone using gdb, rr, perf, and other stack samplers on Linux will have similar issues, right?

This revision is now accepted and ready to land.Jun 14 2021, 12:04 PM
compnerd updated this revision to Diff 352035.Jun 14 2021, 8:05 PM
compnerd added inline comments.Jun 14 2021, 8:23 PM
llvm/lib/Target/X86/X86FrameLowering.cpp
1486

I completely agree with you on this point. I really want to see if I can split out the functions somewhat in follow ups. The reason is that right now the code is really difficult to read as there are the following paths:

  • Win32
    • Funclet
    • Non-Funclet
  • Win64
    • Funclet
    • Non-Funclet
  • Non-Windows

It really feels like this should be three different implementations but I dont fully see how to structure this yet.

llvm/test/CodeGen/X86/swift-async-win64.ll
10–11

Yes, it does break other unwinders AIUI. The bit 60 is the marker that debugger uses to determine if the frame contains an async context (or NULL), which is expected to be the next value after the base pointer.

Swift debugging is already broken entirely with non-lldb debuggers sadly. However, that does does misrepresent the reality that WinDBG is really the debugger of choice currently on Windows. Debugging Swift on Linux already requires LLDB on Linux, and that includes gdb, rr, perf, or any other stack samplers.

Harbormaster completed remote builds in B109227: Diff 352035.Jun 14 2021, 8:47 PM
Closed by commit rG17bdc0ff6f2e: X86: balance the frame prologue and epilogue on Win64 (authored by compnerd). · Explain WhyJun 15 2021, 8:15 PM
This revision was automatically updated to reflect the committed changes.
compnerd added a commit: rG17bdc0ff6f2e: X86: balance the frame prologue and epilogue on Win64.

Revision Contents

PathSize
llvm/
lib/
Target/
X86/
62 lines
test/
CodeGen/
X86/
108 lines
52 lines

Diff 352327

llvm/lib/Target/X86/X86FrameLowering.cpp

Show First 20 LinesShow All 1,476 Lines▼ Show 20 Lines if (HasFP) {
if (NeedsWinCFI) { if (NeedsWinCFI) {
HasWinCFI = true; HasWinCFI = true;
BuildMI(MBB, MBBI, DL, TII.get(X86::SEH_PushReg)) BuildMI(MBB, MBBI, DL, TII.get(X86::SEH_PushReg))
.addImm(FramePtr) .addImm(FramePtr)
.setMIFlag(MachineInstr::FrameSetup); .setMIFlag(MachineInstr::FrameSetup);
} }
if (!IsWin64Prologue && !IsFunclet) { if (!IsFunclet) {
// Update EBP with the new base value. if (X86FI->hasSwiftAsyncContext()) {
rnkUnsubmitted
Not Done
ReplyInline Actions

As a style comment, I think this code would be easier to read if it was moved out of line. The emitPrologue/emitEpilog functions are really, really long. Anything you can do to shorten them helps with understanding. If you can pair the swift async context setup and teardown code somewhere later in the file, it would help. The main state going in and out is MBB, MBBI, DL. See BuildStackAlignAND for an example of this.

rnk: As a style comment, I think this code would be easier to read if it was moved out of line. The…
compnerdAuthorUnsubmitted
Done
ReplyInline Actions

I completely agree with you on this point. I really want to see if I can split out the functions somewhat in follow ups. The reason is that right now the code is really difficult to read as there are the following paths:

  • Win32
    • Funclet
    • Non-Funclet
  • Win64
    • Funclet
    • Non-Funclet
  • Non-Windows

It really feels like this should be three different implementations but I dont fully see how to structure this yet.

compnerd: I completely agree with you on this point. I really want to see if I can split out the…
if (!X86FI->hasSwiftAsyncContext()) { const auto &Attrs = MF.getFunction().getAttributes();
BuildMI(MBB, MBBI, DL,
TII.get(Uses64BitFramePtr ? X86::MOV64rr : X86::MOV32rr),
FramePtr)
.addReg(StackPtr)
.setMIFlag(MachineInstr::FrameSetup);
} else {
// Before we update the live frame pointer we have to ensure there's a // Before we update the live frame pointer we have to ensure there's a
// valid (or null) asynchronous context in its slot just before FP in // valid (or null) asynchronous context in its slot just before FP in
// the frame record, so store it now. // the frame record, so store it now.
const auto &Attrs = MF.getFunction().getAttributes();
if (Attrs.hasAttrSomewhere(Attribute::SwiftAsync)) { if (Attrs.hasAttrSomewhere(Attribute::SwiftAsync)) {
// We have an initial context in r14, store it just before the frame // We have an initial context in r14, store it just before the frame
// pointer. // pointer.
MBB.addLiveIn(X86::R14); MBB.addLiveIn(X86::R14);
BuildMI(MBB, MBBI, DL, TII.get(X86::PUSH64r)) BuildMI(MBB, MBBI, DL, TII.get(X86::PUSH64r))
.addReg(X86::R14) .addReg(X86::R14)
.setMIFlag(MachineInstr::FrameSetup); .setMIFlag(MachineInstr::FrameSetup);
} else { } else {
// No initial context, store null so that there's no pointer that // No initial context, store null so that there's no pointer that
// could be misused. // could be misused.
BuildMI(MBB, MBBI, DL, TII.get(X86::PUSH64i8)) BuildMI(MBB, MBBI, DL, TII.get(X86::PUSH64i8))
.addImm(0) .addImm(0)
.setMIFlag(MachineInstr::FrameSetup); .setMIFlag(MachineInstr::FrameSetup);
} }
if (NeedsWinCFI) {
HasWinCFI = true;
BuildMI(MBB, MBBI, DL, TII.get(X86::SEH_PushReg))
.addImm(X86::R14)
.setMIFlag(MachineInstr::FrameSetup);
}
BuildMI(MBB, MBBI, DL, TII.get(X86::LEA64r), FramePtr) BuildMI(MBB, MBBI, DL, TII.get(X86::LEA64r), FramePtr)
.addUse(X86::RSP) .addUse(X86::RSP)
.addImm(1) .addImm(1)
.addUse(X86::NoRegister) .addUse(X86::NoRegister)
.addImm(8) .addImm(8)
.addUse(X86::NoRegister) .addUse(X86::NoRegister)
.setMIFlag(MachineInstr::FrameSetup); .setMIFlag(MachineInstr::FrameSetup);
BuildMI(MBB, MBBI, DL, TII.get(X86::SUB64ri8), X86::RSP) BuildMI(MBB, MBBI, DL, TII.get(X86::SUB64ri8), X86::RSP)
.addUse(X86::RSP) .addUse(X86::RSP)
.addImm(8) .addImm(8)
.setMIFlag(MachineInstr::FrameSetup); .setMIFlag(MachineInstr::FrameSetup);
} }
if (!IsWin64Prologue && !IsFunclet) {
// Update EBP with the new base value.
if (!X86FI->hasSwiftAsyncContext())
BuildMI(MBB, MBBI, DL,
TII.get(Uses64BitFramePtr ? X86::MOV64rr : X86::MOV32rr),
FramePtr)
.addReg(StackPtr)
.setMIFlag(MachineInstr::FrameSetup);
if (NeedsDwarfCFI) { if (NeedsDwarfCFI) {
// Mark effective beginning of when frame pointer becomes valid. // Mark effective beginning of when frame pointer becomes valid.
// Define the current CFA to use the EBP/RBP register. // Define the current CFA to use the EBP/RBP register.
unsigned DwarfFramePtr = TRI->getDwarfRegNum(MachineFramePtr, true); unsigned DwarfFramePtr = TRI->getDwarfRegNum(MachineFramePtr, true);
BuildCFI(MBB, MBBI, DL, MCCFIInstruction::createDefCfaRegister( BuildCFI(
nullptr, DwarfFramePtr)); MBB, MBBI, DL,
MCCFIInstruction::createDefCfaRegister(nullptr, DwarfFramePtr));
} }
if (NeedsWinFPO) { if (NeedsWinFPO) {
// .cv_fpo_setframe $FramePtr // .cv_fpo_setframe $FramePtr
HasWinCFI = true; HasWinCFI = true;
BuildMI(MBB, MBBI, DL, TII.get(X86::SEH_SetFrame)) BuildMI(MBB, MBBI, DL, TII.get(X86::SEH_SetFrame))
.addImm(FramePtr) .addImm(FramePtr)
.addImm(0) .addImm(0)
.setMIFlag(MachineInstr::FrameSetup); .setMIFlag(MachineInstr::FrameSetup);
} }
} }
}
} else { } else {
assert(!IsFunclet && "funclets without FPs not yet implemented"); assert(!IsFunclet && "funclets without FPs not yet implemented");
NumBytes = StackSize - X86FI->getCalleeSavedFrameSize(); NumBytes = StackSize - X86FI->getCalleeSavedFrameSize();
} }
// Update the offset adjustment, which is mainly used by codeview to translate // Update the offset adjustment, which is mainly used by codeview to translate
// from ESP to VFRAME relative local variable offsets. // from ESP to VFRAME relative local variable offsets.
if (!IsFunclet) { if (!IsFunclet) {
▲ Show 20 LinesShow All 2,157 LinesShow Last 20 Lines

llvm/test/CodeGen/X86/swift-async-win64.ll

  • This file was added.
; RUN: llc -mtriple x86_64-unknown-windows-msvc %s -o - | FileCheck %s -check-prefix CHECK64
; RUN: llc -mtriple i686-windows-msvc %s -o - | FileCheck %s -check-prefix CHECK32
define void @simple(i8* swiftasync %context) "frame-pointer"="all" {
ret void
}
; CHECK64-LABEL: simple:
; CHECK64: btsq $60, %rbp
; CHECK64: pushq %rbp
; CHECK64: pushq %r14
rnkUnsubmitted
Not Done
ReplyInline Actions

Maybe I misunderstand, but won't this prevent every existing Windows unwinder, debuggers included, from unwinding the native stack? BTS *sets* bit 60 of RBP before it is pushed. If the caller's frame uses RBP as a frame pointer, how will a Swift-unaware stack unwinder use RBP to continue unwinding? It won't know to clear out bit 60.

Is it really the plan to make it so that you cannot debug Swift code from a Swift-unaware debugger? I'm not sure LLDB on Windows is really ready, so I imagine that folks will want to use windbg to debug Swift code in the near future. This isn't a Windows-specific concern either. Anyone using gdb, rr, perf, and other stack samplers on Linux will have similar issues, right?

rnk: Maybe I misunderstand, but won't this prevent every existing Windows unwinder, debuggers…
compnerdAuthorUnsubmitted
Done
ReplyInline Actions

Yes, it does break other unwinders AIUI. The bit 60 is the marker that debugger uses to determine if the frame contains an async context (or NULL), which is expected to be the next value after the base pointer.

Swift debugging is already broken entirely with non-lldb debuggers sadly. However, that does does misrepresent the reality that WinDBG is really the debugger of choice currently on Windows. Debugging Swift on Linux already requires LLDB on Linux, and that includes gdb, rr, perf, or any other stack samplers.

compnerd: Yes, it does break other unwinders AIUI. The bit 60 is the marker that debugger uses to…
; CHECK64: leaq 8(%rsp), %rbp
; [...]
; CHECK64: addq $16, %rsp
; CHECK64: popq %rbp
; CHECK64: btrq $60, %rbp
; CHECK64: retq
; CHECK32-LABEL simple:
; CHECK32: movl 8(%ebp), [[TMP:%.*]]
; CHECK32: movl [[TMP]], {{.*}}(%ebp)
define void @more_csrs(i8* swiftasync %context) "frame-pointer"="all" {
call void asm sideeffect "", "~{r15}"()
ret void
}
; CHECK64-LABEL: more_csrs:
; CHECK64: btsq $60, %rbp
; CHECK64: pushq %rbp
; CHECK64: .seh_pushreg %rbp
; CHECK64: pushq %r14
; CHECK64: .seh_pushreg %r14
; CHECK64: leaq 8(%rsp), %rbp
; CHECK64: subq $8, %rsp
; CHECK64: pushq %r15
; CHECK64: .seh_pushreg %r15
; [...]
; CHECK64: popq %r15
; CHECK64: addq $16, %rsp
; CHECK64: popq %rbp
; CHECK64: btrq $60, %rbp
; CHECK64: retq
declare void @f(i32*)
define void @locals(i8* swiftasync %context) "frame-pointer"="all" {
%var = alloca i32, i32 10
call void @f(i32* %var)
ret void
}
; CHECK64-LABEL: locals:
; CHECK64: btsq $60, %rbp
; CHECK64: pushq %rbp
; CHECK64: .seh_pushreg %rbp
; CHECK64: pushq %r14
; CHECK64: .seh_pushreg %r14
; CHECK64: leaq 8(%rsp), %rbp
; CHECK64: subq $88, %rsp
; CHECK64: leaq -48(%rbp), %rcx
; CHECK64: callq f
; CHECK64: addq $80, %rsp
; CHECK64: addq $16, %rsp
; CHECK64: popq %rbp
; CHECK64: btrq $60, %rbp
; CHECK64: retq
define void @use_input_context(i8* swiftasync %context, i8** %ptr) "frame-pointer"="all" {
store i8* %context, i8** %ptr
ret void
}
; CHECK64-LABEL: use_input_context:
; CHECK64: movq %r14, (%rcx)
declare i8** @llvm.swift.async.context.addr()
define i8** @context_in_func() "frmae-pointer"="non-leaf" {
%ptr = call i8** @llvm.swift.async.context.addr()
ret i8** %ptr
}
; CHECK64-LABEL: context_in_func:
; CHECK64: leaq -8(%rbp), %rax
; CHECK32-LABEL: context_in_func:
; CHECK32: movl %esp, %eax
define void @write_frame_context(i8* swiftasync %context, i8* %new_context) "frame-pointer"="non-leaf" {
%ptr = call i8** @llvm.swift.async.context.addr()
store i8* %new_context, i8** %ptr
ret void
}
; CHECK64-LABEL: write_frame_context:
; CHECK64: movq %rbp, [[TMP:%.*]]
; CHECK64: subq $8, [[TMP]]
; CHECK64: movq %rcx, ([[TMP]])
define void @simple_fp_elim(i8* swiftasync %context) "frame-pointer"="non-leaf" {
ret void
}
; CHECK64-LABEL: simple_fp_elim:
; CHECK64-NOT: btsq

llvm/test/CodeGen/X86/swifttail-async-win64.ll

  • This file was added.
; RUN: llc -mtriple x86_64-unknown-windows-msvc %s -o - | FileCheck %s
declare swifttailcc void @callee()
define swifttailcc void @swift_tail() {
call void asm "","~{r14}"()
tail call swifttailcc void @callee()
ret void
}
; CHECK-LABEL: swift_tail:
; CHECK-NOT: popq %r14
define void @has_swift_async(i8* swiftasync %contet) {
call void asm "","~{r14}"()
ret void
}
; CHECK-LABEL: has_swift_async:
; CHECK: popq %r14
; It's impossible to get a tail call from a function without a swiftasync
; parameter to one with unless the CC is swifttailcc. So it doesn't matter
; whether r14 is callee-saved in this case.
define void @calls_swift_async() {
call void asm "","~{r14}"()
tail call void @has_swift_async(i8* swiftasync null)
ret void
}
; CHECK-LABEL: calls_swift_async:
; CHECK-NOT jmpq has_swift_async
define swifttailcc void @no_preserve_swiftself() {
call void asm "","~{r13}"()
ret void
}
; CHECK-LABEL: no_preserve_swiftself:
; CHECK-NOT: popq %r13
declare swifttailcc i8* @swift_self(i8* swiftasync %context, i8* swiftself %self)
define swiftcc i8* @call_swift_self(i8* swiftself %self, i8* %context) {
; call void asm "","~{r13}"()
; We get a push r13 but why not with the call below?
%res = call swifttailcc i8* @swift_self(i8* swiftasync %context, i8* swiftself %self)
ret i8* %res
}
; CHECK-LABEL: call_swift_self:
; CHECK: pushq %r13