This is an archive of the discontinued LLVM Phabricator instance.

Differential D107574

[GlobalOpt] [MemoryBuiltins] Update getMallocType with bitcast on stored pointer
AbandonedPublic

Authored by scui on Aug 5 2021, 8:16 AM.

Details

Reviewers
efriedma
george.burgess.iv
vsk
fhahn
reames
Summary

Currently, getMallocType checks the bitcast uses of the malloc call. If there is no bitcast uses of the malloc call, malloc function’s return type is returned. Sometimes, the bitcast is on the stored-to pointer instead of on the malloc call. This patch is to also consider the cases like this:

%call = call i8* @malloc
store i8* %call, i8** bitcast (%T** @g to i8**)

Diff Detail

Event Timeline

scui created this revision.Aug 5 2021, 8:16 AM
Herald added a subscriber: hiraditya. · View Herald TranscriptAug 5 2021, 8:16 AM
scui requested review of this revision.Aug 5 2021, 8:16 AM
Herald added a project: Restricted Project. · View Herald TranscriptAug 5 2021, 8:16 AM
Herald added a subscriber: llvm-commits. · View Herald Transcript
Harbormaster completed remote builds in B118170: Diff 364488.Aug 5 2021, 9:07 AM
efriedma added a comment.Aug 5 2021, 10:46 AM

If you going to mess with this code, can you just kill off all the malloc use type heuristics, and just unconditionally create an [i8 x n] array? The existing type sniffing code won't work with opaque pointers anyway.

scui added a comment.Aug 5 2021, 3:07 PM
In D107574#2929159, @efriedma wrote:

If you going to mess with this code, can you just kill off all the malloc use type heuristics, and just unconditionally create an [i8 x n] array? The existing type sniffing code won't work with opaque pointers anyway.

The existing code has been there for a while. It tries to get the type for the code in the following pattern:

%call = call i8* @malloc
 %0 = bitcast i8* to T*
 store T* %0, %T** @g

This somehow can be transformed to the code:

%call = call i8* @malloc
store i8* %call, i8** bitcast (%T** @g to i8**)

The code here is trying to recognize the code pattern.

It looks to me the IR code will be sub-optimal for some cases if we simply return Type i8* for getMallocType. I’m thinking maybe we can return just either the only bitcasted type or the malloc return type, ie, no nullptr return, but I’m not sure if this really matters for real cases.

efriedma added a comment.Aug 5 2021, 3:51 PM
In D107574#2929796, @scui wrote:

It looks to me the IR code will be sub-optimal for some cases if we simply return Type i8* for getMallocType.

Will it? Almost all optimizations can deal with bitcasts of global variables without getting confused.

Anyway, if you want to refine the type of the global created by the transform, I guess that's okay, but confusion about the types involved shouldn't ever block the transform.

scui added a comment.Aug 6 2021, 8:29 AM
In D107574#2929921, @efriedma wrote:
In D107574#2929796, @scui wrote:

It looks to me the IR code will be sub-optimal for some cases if we simply return Type i8* for getMallocType.

Will it? Almost all optimizations can deal with bitcasts of global variables without getting confused.

I could be wrong. One case I can imagine is to set initial value, for example, an i32 value for [4 x i8] global.

Anyway, if you want to refine the type of the global created by the transform, I guess that's okay, but confusion about the types involved shouldn't ever block the transform.

I'm also confused with the nullptr return with the existing code. I'll try another version to limit to looking into only the store from the malloc call, and see if that will make more sense.

scui updated this revision to Diff 364837.Aug 6 2021, 10:02 AM

Rewrite getMallocType - only look at the bitcast feeding into the store (value or pointer) for malloc call, and no longer return nullptr.

Herald added a subscriber: ormris. · View Herald TranscriptAug 6 2021, 10:02 AM
Harbormaster completed remote builds in B118412: Diff 364837.Aug 6 2021, 10:32 AM
efriedma added a comment.Aug 10 2021, 1:55 PM

At this point, the code is really specific to GlobalOpt transform; maybe we want to move it into GlobalOpt.cpp?

llvm/lib/Analysis/MemoryBuiltins.cpp
354

Update here as well?

366

We still end up blocking the transform in some cases: if the malloc size isn't a multiple of the type inferred by getMallocType(), the transform fails.

nikic added a subscriber: nikic.Aug 10 2021, 2:10 PM

Would it be possible to drop getMallocType, only keep getMallocAllocatedType, and determine the type based on the value type of a (possibly bitcasted) store to the address? That would be forward compatible with opaque pointers.

nikic added a comment.Jan 13 2022, 12:16 AM

D117092 implements @efriedma's suggestion of always using an [i8 x Size] type.

ormris removed a subscriber: ormris.Jan 18 2022, 9:51 AM
reames requested changes to this revision.Feb 3 2022, 9:04 AM
reames added a subscriber: reames.

Appears to have been subsumed by other changes. Please close or rebase if there's still something missing.

This revision now requires changes to proceed.Feb 3 2022, 9:04 AM
scui abandoned this revision.Feb 3 2022, 9:15 AM

Revision Contents

PathSize
llvm/
lib/
Analysis/
35 lines
test/
Transforms/
GlobalOpt/
38 lines

Diff 364488

llvm/lib/Analysis/MemoryBuiltins.cpp

Show First 20 LinesShow All 345 Lines▼ Show 20 Lines
static Value *computeArraySize(const CallInst *CI, const DataLayout &DL, static Value *computeArraySize(const CallInst *CI, const DataLayout &DL,
const TargetLibraryInfo *TLI, const TargetLibraryInfo *TLI,
bool LookThroughSExt = false) { bool LookThroughSExt = false) {
if (!CI) if (!CI)
return nullptr; return nullptr;
// The size of the malloc's result type must be known to determine array size. // The size of the malloc's result type must be known to determine array size.
Type *T = getMallocAllocatedType(CI, TLI); Type *T = getMallocAllocatedType(CI, TLI);
efriedmaUnsubmitted
Not Done
ReplyInline Actions

Update here as well?

efriedma: Update here as well?
if (!T || !T->isSized()) if (!T || !T->isSized())
return nullptr; return nullptr;
unsigned ElementSize = DL.getTypeAllocSize(T); unsigned ElementSize = DL.getTypeAllocSize(T);
if (StructType *ST = dyn_cast<StructType>(T)) if (StructType *ST = dyn_cast<StructType>(T))
ElementSize = DL.getStructLayout(ST)->getSizeInBytes(); ElementSize = DL.getStructLayout(ST)->getSizeInBytes();
// If malloc call's arg can be determined to be a multiple of ElementSize, // If malloc call's arg can be determined to be a multiple of ElementSize,
// return the multiple. Otherwise, return NULL. // return the multiple. Otherwise, return NULL.
Value *MallocArg = CI->getArgOperand(0); Value *MallocArg = CI->getArgOperand(0);
Value *Multiple = nullptr; Value *Multiple = nullptr;
if (ComputeMultiple(MallocArg, ElementSize, Multiple, LookThroughSExt)) if (ComputeMultiple(MallocArg, ElementSize, Multiple, LookThroughSExt))
efriedmaUnsubmitted
Not Done
ReplyInline Actions

We still end up blocking the transform in some cases: if the malloc size isn't a multiple of the type inferred by getMallocType(), the transform fails.

efriedma: We still end up blocking the transform in some cases: if the malloc size isn't a multiple of…
return Multiple; return Multiple;
return nullptr; return nullptr;
} }
/// getMallocType - Returns the PointerType resulting from the malloc call. /// getMallocType - Returns the PointerType resulting from the malloc call.
/// The PointerType depends on the number of bitcast uses of the malloc call: /// The PointerType depends on the number of unique bitcast uses of the malloc
/// call:
/// 0: PointerType is the calls' return type. /// 0: PointerType is the calls' return type.
/// 1: PointerType is the bitcast's result type. /// 1: PointerType is the bitcast's result type.
/// >1: Unique PointerType cannot be determined, return NULL. /// >1: Unique PointerType cannot be determined, return NULL.
PointerType *llvm::getMallocType(const CallInst *CI, PointerType *llvm::getMallocType(const CallInst *CI,
const TargetLibraryInfo *TLI) { const TargetLibraryInfo *TLI) {
assert(isMallocLikeFn(CI, TLI) && "getMallocType and not malloc call"); assert(isMallocLikeFn(CI, TLI) && "getMallocType and not malloc call");
PointerType *MallocType = nullptr; PointerType *MallocType = nullptr;
unsigned NumOfBitCastUses = 0;
// Determine if CallInst has a bitcast use. // Determine if CallInst has a bitcast use.
for (const User *U : CI->users()) // Check both the call and its stored-to.
for (const User *U : CI->users()) {
if (const BitCastInst *BCI = dyn_cast<BitCastInst>(U)) { if (const BitCastInst *BCI = dyn_cast<BitCastInst>(U)) {
MallocType = cast<PointerType>(BCI->getDestTy()); auto *PTy = cast<PointerType>(BCI->getDestTy());
NumOfBitCastUses++; if (!MallocType)
MallocType = PTy;
else if (MallocType != PTy) // Type could not be determined.
return nullptr;
}
if (auto *ST = dyn_cast<StoreInst>(U))
if (ST->getValueOperand() == CI)
if (auto *BCO = dyn_cast<BitCastOperator>(ST->getPointerOperand()))
if (auto *PTy = dyn_cast<PointerType>(
cast<PointerType>(BCO->getOperand(0)->getType())
->getElementType())) {
if (!MallocType)
MallocType = PTy;
else if (MallocType != PTy) // Type could not be determined.
return nullptr;
}
} }
// Malloc call has 1 bitcast use, so type is the bitcast's destination type. // Malloc call has 1 bitcast use, so type is the bitcast's destination type.
if (NumOfBitCastUses == 1) if (MallocType)
return MallocType; return MallocType;
// Malloc call was not bitcast, so type is the malloc function's return type. // Malloc call was not bitcast, so type is the malloc function's return type.
if (NumOfBitCastUses == 0)
return cast<PointerType>(CI->getType()); return cast<PointerType>(CI->getType());
// Type could not be determined.
return nullptr;
} }
/// getMallocAllocatedType - Returns the Type allocated by malloc call. /// getMallocAllocatedType - Returns the Type allocated by malloc call.
/// The Type depends on the number of bitcast uses of the malloc call: /// The Type depends on the number of bitcast uses of the malloc call:
/// 0: PointerType is the malloc calls' return type. /// 0: PointerType is the malloc calls' return type.
/// 1: PointerType is the bitcast's result type. /// 1: PointerType is the bitcast's result type.
/// >1: Unique PointerType cannot be determined, return NULL. /// >1: Unique PointerType cannot be determined, return NULL.
Type *llvm::getMallocAllocatedType(const CallInst *CI, Type *llvm::getMallocAllocatedType(const CallInst *CI,
▲ Show 20 LinesShow All 687 LinesShow Last 20 Lines

llvm/test/Transforms/GlobalOpt/malloc-promote-5.ll

  • This file was added.
; RUN: opt -globalopt -S < %s | FileCheck %s
; RUN: opt -passes=globalopt -S < %s | FileCheck %s
@g = internal global i32* null, align 8
; CHECK: [[G_BODY:@.*]] = internal unnamed_addr global i32 undef
define signext i32 @f() {
; CHECK-LABEL: @f(
; CHECK-NEXT: entry:
; CHECK-NEXT: store i32 1, i32* [[G_BODY]], align 4
; CHECK-NEXT: store i8 2, i8* bitcast (i32* [[G_BODY]] to i8*), align 4
; CHECK-NEXT: ret i32 1
;
entry:
%call = call i8* @malloc(i64 4)
store i8* %call, i8** bitcast (i32** @g to i8**), align 8
%0 = load i32*, i32** @g, align 8
store i32 1, i32* %0, align 4
%1 = load i8*, i8** bitcast (i32** @g to i8**), align 8
store i8 2, i8* %1, align 4
ret i32 1
}
define signext i32 @main() {
; CHECK-LABEL: @main(
; CHECK-NEXT: entry:
; CHECK-NEXT: [[CALL:%.*]] = call signext i32 @f()
; CHECK-NEXT: [[TMP0:%.*]] = load i32, i32* [[G_BODY]], align 4
; CHECK-NEXT: ret i32 [[TMP0]]
;
entry:
%call = call signext i32 @f()
%0 = load i32*, i32** @g, align 8
%1 = load i32, i32* %0, align 4
ret i32 %1
}
declare noalias align 16 i8* @malloc(i64)