This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
llvm/lib/CodeGen/
-
lib/
-
CodeGen/
3
TypePromotion.cpp

Differential D113164

[NFC] Avoid nullptr dereference
AbandonedPublic

Authored by FreddyYe on Nov 3 2021, 7:38 PM.

Download Raw Diff

Details

Reviewers

skan
LuoYuanke
pengfei

Summary

These warning are reported by static code analysis tool: Klocwork

Diff Detail

Repository: rG LLVM Github Monorepo

Unit TestsFailed

	Time	Test
	290 ms	x64 debian > LLVM.CodeGen/AArch64::and-mask-removal.ll
	290 ms	x64 debian > LLVM.CodeGen/AArch64::arm64-addr-mode-folding.ll
	300 ms	x64 debian > LLVM.CodeGen/AArch64::arm64-addr-type-promotion.ll
	270 ms	x64 debian > LLVM.CodeGen/AArch64::arm64-andCmpBrToTBZ.ll
	350 ms	x64 debian > LLVM.CodeGen/AArch64::arm64-bitfield-extract.ll
		View Full Test Results (103 Failed)

Event Timeline

FreddyYe created this revision.Nov 3 2021, 7:38 PM

Herald added a subscriber: hiraditya. · View Herald TranscriptNov 3 2021, 7:38 PM

FreddyYe requested review of this revision.Nov 3 2021, 7:38 PM

Herald added a project: Restricted Project. · View Herald TranscriptNov 3 2021, 7:38 PM

Herald added a subscriber: llvm-commits. · View Herald Transcript

FreddyYe added reviewers: skan, LuoYuanke, pengfei.Nov 3 2021, 7:38 PM

Harbormaster completed remote builds in B132373: Diff 384642.Nov 3 2021, 8:46 PM

skan added inline comments.Nov 3 2021, 10:23 PM

llvm/lib/CodeGen/TypePromotion.cpp
259–260	You mean `Return->getReturnValue()` may return a NULL pointer but `LessOrEqualTypeSize` assumes its argument is never be a NULL? If the answer is yes, you need to provide a test case tiggering the compfail.

pengfei added inline comments.Nov 3 2021, 10:47 PM

llvm/lib/CodeGen/TypePromotion.cpp
259–260	Agreed with @skan . You changed the functionality here. Besides, I didn't find difference between `StoreInst` and `ReturnInst`, why only warn here?

Besides, I didn't find difference between StoreInst and ReturnInst, why only warn here?

The difference is Store->getValueOperand() doesn't return a nullptr but Return->getValueOperand() does.

Hi both, thx for review. This is reported by static code analysis tool, so I don't have a reproduce. I can also add assert() to these callees to satisfy the tool, but there will be more than only one of them. Does that sound OK to you?

changed into assert()

In D113164#3108071, @FreddyYe wrote:

Hi both, thx for review. This is reported by static code analysis tool, so I don't have a reproduce. I can also add assert() to these callees to satisfy the tool, but there will be more than only one of them. Does that sound OK to you?

Why not add the assert in this if clause if you make sure Return->getReturnValue() can never be NULL here.

skan added inline comments.Nov 3 2021, 11:19 PM

llvm/lib/CodeGen/TypePromotion.cpp
207	I don't know if this `assert` is necessary... https://llvm.org/docs/CodingStandards.html#assert-liberally The code standard suggests using the “assert” macro to its fullest. However I think the NULL ptr check can be omitted b/c we can get error message like "null pointer deference" at run time even w/o the assert.

Harbormaster completed remote builds in B132391: Diff 384668.Nov 3 2021, 11:47 PM

dblaikie added a subscriber: dblaikie.Nov 8 2021, 10:50 PM

After reading the whole logic, I'll judge this as not a defect. Since TypePromotion::isSupportedValue() has checked before codes here. ReturnInst's operand won't be null. So getReturnValue() here won't return Null. I'll close this PR, sorry for the noise.

Revision Contents

Path

Size

llvm/

lib/

CodeGen/

TypePromotion.cpp

1 line

Diff 384668

llvm/lib/CodeGen/TypePromotion.cpp

Show First 20 Lines • Show All 198 Lines • ▼ Show 20 Lines	return Opc == Instruction::AShr \|\| Opc == Instruction::SDiv \|\|
Opc == Instruction::SRem \|\| Opc == Instruction::SExt;		Opc == Instruction::SRem \|\| Opc == Instruction::SExt;
}		}

bool TypePromotion::EqualTypeSize(Value *V) {		bool TypePromotion::EqualTypeSize(Value *V) {
return V->getType()->getScalarSizeInBits() == TypeSize;		return V->getType()->getScalarSizeInBits() == TypeSize;
}		}

bool TypePromotion::LessOrEqualTypeSize(Value *V) {		bool TypePromotion::LessOrEqualTypeSize(Value *V) {
		assert(!V);
		skanUnsubmitted Not Done Reply Inline Actions I don't know if this `assert` is necessary... https://llvm.org/docs/CodingStandards.html#assert-liberally The code standard suggests using the “assert” macro to its fullest. However I think the NULL ptr check can be omitted b/c we can get error message like "null pointer deference" at run time even w/o the assert. skan: I don't know if this `assert` is necessary... https://llvm.org/docs/CodingStandards.html#assert…
return V->getType()->getScalarSizeInBits() <= TypeSize;		return V->getType()->getScalarSizeInBits() <= TypeSize;
}		}

bool TypePromotion::GreaterThanTypeSize(Value *V) {		bool TypePromotion::GreaterThanTypeSize(Value *V) {
return V->getType()->getScalarSizeInBits() > TypeSize;		return V->getType()->getScalarSizeInBits() > TypeSize;
}		}

bool TypePromotion::LessThanTypeSize(Value *V) {		bool TypePromotion::LessThanTypeSize(Value *V) {
Show All 36 Lines	bool TypePromotion::isSink(Value *V) {
// Sinks are:		// Sinks are:
// - points where the value in the register is being observed, such as an		// - points where the value in the register is being observed, such as an
// icmp, switch or store.		// icmp, switch or store.
// - points where value types have to match, such as calls and returns.		// - points where value types have to match, such as calls and returns.
// - zext are included to ease the transformation and are generally removed		// - zext are included to ease the transformation and are generally removed
// later on.		// later on.
if (auto *Store = dyn_cast<StoreInst>(V))		if (auto *Store = dyn_cast<StoreInst>(V))
return LessOrEqualTypeSize(Store->getValueOperand());		return LessOrEqualTypeSize(Store->getValueOperand());
if (auto *Return = dyn_cast<ReturnInst>(V))		if (auto *Return = dyn_cast<ReturnInst>(V))
return LessOrEqualTypeSize(Return->getReturnValue());		return LessOrEqualTypeSize(Return->getReturnValue());
skanUnsubmitted Not Done Reply Inline Actions You mean `Return->getReturnValue()` may return a NULL pointer but `LessOrEqualTypeSize` assumes its argument is never be a NULL? If the answer is yes, you need to provide a test case tiggering the compfail. skan: You mean `Return->getReturnValue()` may return a NULL pointer but `LessOrEqualTypeSize`…
pengfeiUnsubmitted Not Done Reply Inline Actions Agreed with @skan . You changed the functionality here. Besides, I didn't find difference between `StoreInst` and `ReturnInst`, why only warn here? pengfei: Agreed with @skan . You changed the functionality here. Besides, I didn't find difference…
if (auto *ZExt = dyn_cast<ZExtInst>(V))		if (auto *ZExt = dyn_cast<ZExtInst>(V))
return GreaterThanTypeSize(ZExt);		return GreaterThanTypeSize(ZExt);
if (auto *Switch = dyn_cast<SwitchInst>(V))		if (auto *Switch = dyn_cast<SwitchInst>(V))
return LessThanTypeSize(Switch->getCondition());		return LessThanTypeSize(Switch->getCondition());
if (auto *ICmp = dyn_cast<ICmpInst>(V))		if (auto *ICmp = dyn_cast<ICmpInst>(V))
return ICmp->isSigned() \|\| LessThanTypeSize(ICmp->getOperand(0));		return ICmp->isSigned() \|\| LessThanTypeSize(ICmp->getOperand(0));

return isa<CallInst>(V);		return isa<CallInst>(V);
▲ Show 20 Lines • Show All 736 Lines • Show Last 20 Lines