This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
llvm/
-
test/tools/llvm-profgen/
-
tools/
-
llvm-profgen/
-
Inputs/
-
external-address.perfscript
-
inline-cs-noprobe.perfscript
-
cs-external-address.test
-
cs-interrupt.test
2/3
inline-noprobe2.test
-
tools/llvm-profgen/
-
llvm-profgen/
3/6
PerfReader.h
14/31
PerfReader.cpp

Differential D115538

[CSSPGO][llvm-profgen] Fix external address issues of perf reader (leading external LBR part)
ClosedPublic

Authored by wlei on Dec 10 2021, 10:19 AM.

Download Raw Diff

Details

Reviewers

hoy
wenlei

Commits

rG3dcb60db9a53: [CSSPGO][llvm-profgen] Fix external address issues of perf reader (leading…

Summary

We can have the sampling just hit into the external addresses, in that case, both the top stack frame and the latest LBR target are external addresses. For example:

	        ffffffff
 0x4006c8/0xffffffff/P/-/-/0  0x40069b/0x400670/M/-/-/0

 	          ffffffff
	          40067e
0xffffffff/0xffffffff/P/-/-/0  0x4006c8/0xffffffff/P/-/-/0  0x40069b/0x400670/M/-/-/0

Before we will ignore the entire samples. However, we found there exists some internal LBRs in the remaining part of sample, the range between them is still a valid range, we will lose some valid LBRs. Those LBRs will be unwinded based on a empty(context-less) call stack.

This change tries to fix it, instead of ignoring the entire sample, we only ignore the leading external addresses.

Note that the first outgoing LBR is useful since there is a valid range between it's source and next LBR's target.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

wlei created this revision.Dec 10 2021, 10:19 AM

Herald added subscribers: hoy, wenlei. · View Herald TranscriptDec 10 2021, 10:19 AM

wlei requested review of this revision.Dec 10 2021, 10:19 AM

Herald added a project: Restricted Project. · View Herald TranscriptDec 10 2021, 10:19 AM

Herald added a subscriber: llvm-commits. · View Herald Transcript

wlei edited the summary of this revision. (Show Details)Dec 10 2021, 10:38 AM

wlei added reviewers: hoy, wenlei.

wlei edited the summary of this revision. (Show Details)Dec 10 2021, 10:41 AM

Harbormaster completed remote builds in B138697: Diff 393530.Dec 10 2021, 11:07 AM

wlei added a child revision: D115550: [CSSPGO][llvm-profgen] Fix external address issues of perf reader (return to external addr part).Dec 10 2021, 2:28 PM

wenlei added inline comments.Dec 11 2021, 10:16 AM

llvm/test/tools/llvm-profgen/inline-noprobe2.test
92	Ok, so this happens with existing test cases too. I didn't realize the entire function profile for small function could be missing due to external addresses even in contrived tests. Did you verify what is the external address (what function from what library) leads to samples involving `quick_sort` being ignored?
llvm/tools/llvm-profgen/PerfReader.cpp
256–257	A bit confused by the comment on "unwinded using a context-less frame stack" - I thought after we strip out the leading external frame and external LBR, we would still use the remaining stack as context, hence it's not context-less.
259	I think we can do some sanity check here: assert that we have a paired LBR here? ie. LBR target is external. also assert that the next frame on stack aligns with LBR source?
260	Should this be `pushFrame`/`popFrame` instead of `switchToFrame` depending on the instruction at the source of LBR? Basically we are unwinding through the internal->external LBR here, which should be either a call or return, right?
612	If only leaf frames are external, can we keep the remaining frames for unwinding?
973	nit: move this into `parseSample`
1157	nit: top->leaf to make it explicit, for message and variable name.

addressing feedbacks.

wlei added inline comments.Dec 12 2021, 10:57 AM

llvm/test/tools/llvm-profgen/inline-noprobe2.test
80–85	Here it's indeed fixed by this patch.
92	Sorry for the confusing. This is not related with this patch, I deleted this part by mistake in https://reviews.llvm.org/D115013. When I fixed this test case, I realized it and tried to sneak in this diff :)
llvm/tools/llvm-profgen/PerfReader.cpp
256–257	Good point. Based on this, we don't need the code here. We can have CALL/Return/JMP to external address and current unwinder all covered this, we can just reuse them. One exception is return to external code, that should be handed by the next patch. Removed this code.
259	assert that we have a paired LBR here? ie. LBR target is external. Sounds good, added assertion in `validateInitialState`. also assert that the next frame on stack aligns with LBR source? If I understand correctly, that assumes the LBR source should be a CALL? The tricky part is we don't only have CALL into external address, we can have RETURN, JMP. One common cases is the PLT, internal call --> PLT--> external address. PLT code is a JMP. How about to give a warning if the following CALL unwinding hit a mismatched frame.
260	Yeah, same to above comment. the current unwinder should already covered pushFrame/popFrame. One difference is the Return. For returning to external address, we don't have a target callsite, hence we can't push a valid frame. But this case should be handled by `https://reviews.llvm.org/D115550` which used an artificial frame to truncate the call stack. which should be either a call or return. You see, it appeared that the PLT code is a JMP.
612	Sounds good, tried to keep the remaining internal call stack for unwinding.
973	fixed, thanks!
1157	Fixed

Harbormaster completed remote builds in B138872: Diff 393765.Dec 12 2021, 11:50 AM

wenlei added inline comments.Dec 12 2021, 11:17 PM

llvm/tools/llvm-profgen/PerfReader.cpp
62	Actually do we need the check on `isLeadingFrameExternal`? Should we always expect parent frame address and LBR source to align for any calls? Additionally, should there a one instruction shift between frame address and source/call address (see `getCallAddrFromFrameAddr`)? And when mismatch happens, should we abort unwinding? It seems that at this point it's guaranteed to generate incorrect context? How you seen such mismatch happening?
240	nit: this is more like total branches. usually LBR record is considered the full 16/32 entires of branch pairs in LBR. same applies to the warning message.
259	On 2nd thought, you're right that if the transfer is not a call, there will be mismatch, PLT is one, tail call jump can be another. Thought for PLT, perhaps we can treat PLT as external too, so anything involved PLT will be stripped too. I was hoping that we can have a sense of how intrusive this kind of mismatch is. Hopefully it's rare. Warning is good but perhaps PLT case can be handled?
271–272	Update the comment as it's no longer accurate - it could regular intra function branch, or artificial branch cross function boundaries when there're external functions involved (example would be good).
llvm/tools/llvm-profgen/PerfReader.h
302	nit: LeadingFrame -> LeafFrame. LeafLBR -> LastLBR. Leaf or root is used for frame, but there's no leaf or root for LBR, which isn't hierarchical. If there're other inconsistent usage of the terms, we can fix them too. Additionally, why not check on CurrentLeafFrame instead given the function name says "Frame"?

hoy added inline comments.Dec 13 2021, 12:23 PM

llvm/tools/llvm-profgen/PerfReader.cpp
524	nit: unwinded -> unwound
532	nit: NumLeadingExternalLBR -> NumLeadingOutgoingLBR?
612	Maybe we can keep the whole call stack by replacing consecutive external frames with an artificial frame introduced in the other patch. This should be synchronized with the LBR parser where we replace consecutive external LBRs with an artificial branch.
llvm/tools/llvm-profgen/PerfReader.h
217	nit: address -> addresses Also enum class is preferred.
305	nit: use a single return statement `return !LBRStack.empty() && LBRStack[0].Target == ExternalAddr` .

addressing reviewer's feedback

wlei added inline comments.Dec 13 2021, 8:45 PM

llvm/tools/llvm-profgen/PerfReader.cpp
62	Should we always expect parent frame address and LBR source to align for any calls? you see there is a comment to explain "// TODO: Currently we just assume all the addr that can't match the 2nd frame is in prolog/epilog.", so before we saw frame in prolog/epilog mismatch the call stack. Additionally, should there a one instruction shift between frame address and source/call address (see getCallAddrFromFrameAddr)? We already fix this mismatch in `extractCallstack` see // We need to translate return address to call address for non-leaf frames. if (!CallStack.empty()) { auto CallAddr = Binary->getCallAddrFromFrameAddr(FrameAddr); if (!CallAddr) { .... And when mismatch happens, should we abort unwinding? It seems that at this point it's guaranteed to generate incorrect context? Yeah, before for the frame in prolog/epilog, we didn't abort. If mismatch happen, we still can process using a context-less stack, but that will make things even complicated. How you seen such mismatch happening? I haven't tested it. I will add a warning for both leading frame issue and frame prolog/epilog. Maybe we can see how many cases of them to decide if we need to abort.
240	thanks for the suggestion.
259	PLT case can be handled, we can have a diff to make PLT code as external code. then we can have some statistic base on this. I will have a separated diff for PLT stuffs.
524	fixed, thanks!
532	fixed, thanks!
612	Good point. Changed to both use `external branch`, update in the next patch.
llvm/tools/llvm-profgen/PerfReader.h
217	Fixed, thanks Also enum class is preferred. It appeared that an complication issue to initialize the static const variable in ProfiledFrame
302	Thanks for the suggestion. The warning is moved to the next patch.
305	The warning is moved to the next patch, thanks!

lgtm, thanks.

llvm/tools/llvm-profgen/PerfReader.cpp
259	Dealing with PLT in separate patch sounds good. And I guess we only need to deal with it if it's important enough.

This revision is now accepted and ready to land.Dec 13 2021, 9:00 PM

Harbormaster completed remote builds in B139135: Diff 394125.Dec 13 2021, 9:12 PM

hoy added inline comments.Dec 13 2021, 10:15 PM

llvm/tools/llvm-profgen/PerfReader.cpp
612	Thanks. Just to be clear, we will no longer need to break, instead, we'll continue whenever the top of stack is also an ExternalAddr. This way we could handle the following case Ext Ext foo Ext Ext bar main Ext/Ext /Ext/Ext foo/Ext foo/foo Ext/foo Ext/Ext bar/Ext bar/bar bar/bar ... Though this should be rare, for completeness does it sounds reasonable?

wlei added inline comments.Dec 13 2021, 10:28 PM

llvm/tools/llvm-profgen/PerfReader.cpp
612	That's a good point. Only one thing: we don't know `Ext/Ext` is a Call or Return or Jmp. So I think we should preprocess to deduplicate the Ext in the call stack. like we also deduplicate the Ext in LBRsample. in your case, we will get. Ext Ext foo Ext Ext bar main to Ext foo Ext bar main

hoy added inline comments.Dec 13 2021, 10:37 PM

llvm/tools/llvm-profgen/PerfReader.cpp
612	Exactly, that is actually what I meant, i.e, to skip the current Ext frame only if the top of stack is already an Ext. Do you think we need the other change to correctly truncate such as mixed callsite when reporting samples? Sounds good to implement there.

wlei added inline comments.Dec 13 2021, 10:44 PM

llvm/tools/llvm-profgen/PerfReader.cpp
612	Sounds good, I can move to code of truncating external addr from the 2nd patch to here. but here it's just truncate the context we need next patch to handle Call/Return of artificial branch.

hoy added inline comments.Dec 13 2021, 10:48 PM

llvm/tools/llvm-profgen/PerfReader.cpp
612	I see. Sounds good to move the truncating code here to make the current patch more complete and self-contained,

wlei added a parent revision: D115699: [llvm-profgen] Skip disassembling for PLT section.Dec 13 2021, 10:56 PM

wlei mentioned this in D115699: [llvm-profgen] Skip disassembling for PLT section.Dec 13 2021, 10:59 PM

addressing Hontao's feedback: Also keep the external address in the middle, deduplicate them. They can still be unwound(in next patch). And truncate the context for them.

Harbormaster completed remote builds in B139159: Diff 394156.Dec 14 2021, 1:18 AM

lgtm, thanks.

This revision was landed with ongoing or failed builds.Dec 14 2021, 4:42 PM

Closed by commit rG3dcb60db9a53: [CSSPGO][llvm-profgen] Fix external address issues of perf reader (leading… (authored by wlei). · Explain Why

This revision was automatically updated to reflect the committed changes.

wlei added a commit: rG3dcb60db9a53: [CSSPGO][llvm-profgen] Fix external address issues of perf reader (leading….

Revision Contents

Path

Size

llvm/

test/

tools/

llvm-profgen/

Inputs/

external-address.perfscript

39 lines

inline-cs-noprobe.perfscript

7 lines

cs-external-address.test

28 lines

cs-interrupt.test

1 line

inline-noprobe2.test

20 lines

tools/

llvm-profgen/

PerfReader.h

34 lines

PerfReader.cpp

80 lines

Diff 394410

llvm/test/tools/llvm-profgen/Inputs/external-address.perfscript

This file was added.

				PERF_RECORD_MMAP2 2854748/2854748: [0x400000(0x1000) @ 0 00:1d 123291722 526021]: r-xp /home/inline-cs-noprobe.perfbin

				; Test for an external top address, should only ignore the call stack and keep unwinding the LBR

				; Valid LBR. The first 4006d7 will be kept for unwinding, the second will be truncated.

				ffffffff
				ffffffff
				4006d7
				ffffffff
				4006d7
				ffffffff
				0x4006c8/0x40067e/P/-/-/0 0x40069b/0x400670/M/-/-/0

				; Valid LBR
				ffffffff
				0x4006c8/0x40067e/P/-/-/0 0x40069b/0x400670/M/-/-/0

				; Valid LBR
				ffffffff
				0x4006c8/0xffffffff/P/-/-/0 0x40069b/0x400670/M/-/-/0

				; Valid LBR
				40067e
				0x4006c8/0xffffffff/P/-/-/0 0x40069b/0x400670/M/-/-/0

				; Valid LBR
				ffffffff
				5541f689495641d7
				0xffffffff/0xffffffff/P/-/-/0 0x4006c8/0xffffffff/P/-/-/0 0x40069b/0x400670/M/-/-/0

				; Empty sample
				ffffffff
				5541f689495641d7
				0xffffffff/0xffffffff/P/-/-/0 0xffffffff/0xffffffff/P/-/-/0

				; Invalid LBR
				ffffffff
				0xffffffff/0xffffffff/P/-/-/0 0x40069b/0x400670/M/-/-/0

llvm/test/tools/llvm-profgen/Inputs/inline-cs-noprobe.perfscript

	PERF_RECORD_MMAP2 2854748/2854748: [0x400000(0x1000) @ 0 00:1d 123291722 526021]: r-xp /home/inline-cs-noprobe.perfbin			PERF_RECORD_MMAP2 2854748/2854748: [0x400000(0x1000) @ 0 00:1d 123291722 526021]: r-xp /home/inline-cs-noprobe.perfbin

	; test for an external or invalid top address, should skip the whole sample

	ffffffff
	40067e
	5541f689495641d7
	0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x40069b/0x400670/M/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0

	40067e			40067e
	5541f689495641d7			5541f689495641d7
	0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x40069b/0x400670/M/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0			0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x40069b/0x400670/M/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0 0x4006c8/0x40067e/P/-/-/0

llvm/test/tools/llvm-profgen/cs-external-address.test

This file was added.

				; RUN: llvm-profgen --format=text --perfscript=%S/Inputs/external-address.perfscript --binary=%S/Inputs/inline-cs-noprobe.perfbin --output=%t --skip-symbolization --profile-summary-hot-count=0 --compress-recursion=0
				; RUN: FileCheck %s --input-file %t --check-prefix=CHECK-UNWINDER


				; CHECK-UNWINDER: [main:1 @ foo]
				; CHECK-UNWINDER: 2
				; CHECK-UNWINDER: 670-6ad:4
				; CHECK-UNWINDER: 6bd-6c8:4
				; CHECK-UNWINDER: 2
				; CHECK-UNWINDER: 69b->670:5
				; CHECK-UNWINDER: 6c8->67e:1
				; CHECK-UNWINDER: [main:1 @ foo:3.1 @ bar]
				; CHECK-UNWINDER: 1
				; CHECK-UNWINDER: 6af-6bb:4
				; CHECK-UNWINDER: 0

				; Manually created to test if remaining call stack can be correctly unwinded.
				; CHECK-UNWINDER: [main:1 @ foo:4 @ main:1 @ foo]
				; CHECK-UNWINDER: 2
				; CHECK-UNWINDER: 670-6ad:1
				; CHECK-UNWINDER: 6bd-6c8:1
				; CHECK-UNWINDER: 2
				; CHECK-UNWINDER: 69b->670:1
				; CHECK-UNWINDER: 6c8->67e:1
				; CHECK-UNWINDER: [main:1 @ foo:4 @ main:1 @ foo:3.1 @ bar]
				; CHECK-UNWINDER: 1
				; CHECK-UNWINDER: 6af-6bb:1
				; CHECK-UNWINDER: 0

llvm/test/tools/llvm-profgen/cs-interrupt.test

	;; The test fails on Windows. Fix it before removing the following requirement.			;; The test fails on Windows. Fix it before removing the following requirement.
	; REQUIRES: x86_64-linux			; REQUIRES: x86_64-linux
	; RUN: llvm-profgen --format=text --perfscript=%S/Inputs/cs-interrupt.perfscript --binary=%S/Inputs/noinline-cs-noprobe.perfbin --output=%t --skip-symbolization --profile-summary-cold-count=0			; RUN: llvm-profgen --format=text --perfscript=%S/Inputs/cs-interrupt.perfscript --binary=%S/Inputs/noinline-cs-noprobe.perfbin --output=%t --skip-symbolization --profile-summary-cold-count=0
	; RUN: FileCheck %s --input-file %t --check-prefix=CHECK-UNWINDER			; RUN: FileCheck %s --input-file %t --check-prefix=CHECK-UNWINDER
	; RUN: llvm-profgen --format=text --perfscript=%S/Inputs/cs-interrupt.perfscript --binary=%S/Inputs/noinline-cs-noprobe.perfbin --output=%t --profile-summary-cold-count=0			; RUN: llvm-profgen --format=text --perfscript=%S/Inputs/cs-interrupt.perfscript --binary=%S/Inputs/noinline-cs-noprobe.perfbin --output=%t --profile-summary-cold-count=0
	>>>>>>> 02ea7084c370 ([llvm-profgen] Support LBR only perf script)
	; RUN: FileCheck %s --input-file %t			; RUN: FileCheck %s --input-file %t

	; CHECK:[main:1 @ foo]:88:0			; CHECK:[main:1 @ foo]:88:0
	; CHECK: 2: 5			; CHECK: 2: 5
	; CHECK: 3: 5 bar:5			; CHECK: 3: 5 bar:5
	; CHECK:[main:1 @ foo:3 @ bar]:74:5			; CHECK:[main:1 @ foo:3 @ bar]:74:5
	; CHECK: 0: 5			; CHECK: 0: 5
	; CHECK: 1: 5			; CHECK: 1: 5
	▲ Show 20 Lines • Show All 45 Lines • Show Last 20 Lines

llvm/test/tools/llvm-profgen/inline-noprobe2.test

	Show First 20 Lines • Show All 67 Lines • ▼ Show 20 Lines

	;CHECK: 1: 18			;CHECK: 1: 18
	;CHECK: 2: 18			;CHECK: 2: 18
	;CHECK: 3: 18			;CHECK: 3: 18
	;CHECK: 6: swap:85			;CHECK: 6: swap:85
	;CHECK: 1: 5			;CHECK: 1: 5
	;CHECK: 2: 5			;CHECK: 2: 5
	;CHECK: 3: 5			;CHECK: 3: 5
	;CHECK: main:486:0			;CHECK: main:906:0
	;CHECK: 0: 0			;CHECK: 0: 0
	;CHECK: 3: 0			;CHECK: 3: 0
	;CHECK: 4.1: 0			;CHECK: 4.1: 0
	;CHECK: 4.3: 0			;CHECK: 4.3: 0
	;CHECK: 5.1: 6			;CHECK: 5.1: 11
	;CHECK: 5.3: 6			;CHECK: 5.3: 11
	;CHECK: 6: 6			;CHECK: 6: 11
	;CHECK: 6.1: 6			;CHECK: 6.1: 14
	;CHECK: 6.3: 6			;CHECK: 6.3: 11
				wleiAuthorUnsubmitted Done Reply Inline Actions Here it's indeed fixed by this patch. wlei: Here it's indeed fixed by this patch.
	;CHECK: 7: 0			;CHECK: 7: 0
	;CHECK: 8: 0 quick_sort:1			;CHECK: 8: 0 quick_sort:1
	;CHECK: 9: 0			;CHECK: 9: 0
	;CHECK: 11: 0			;CHECK: 11: 0
	;CHECK: 14: 0			;CHECK: 14: 0
	;CHECK: 65499: 0			;CHECK: 65499: 0
				;CHECK: quick_sort:903:25
				wenleiUnsubmitted Not Done Reply Inline Actions Ok, so this happens with existing test cases too. I didn't realize the entire function profile for small function could be missing due to external addresses even in contrived tests. Did you verify what is the external address (what function from what library) leads to samples involving `quick_sort` being ignored? wenlei: Ok, so this happens with existing test cases too. I didn't realize the entire function profile…
				wleiAuthorUnsubmitted Done Reply Inline Actions Sorry for the confusing. This is not related with this patch, I deleted this part by mistake in https://reviews.llvm.org/D115013. When I fixed this test case, I realized it and tried to sneak in this diff :) wlei: Sorry for the confusing. This is not related with this patch, I deleted this part by mistake in…
				;CHECK: 1: 24
				;CHECK: 2: 12 partition_pivot_last:7 partition_pivot_first:5
				;CHECK: 3: 11 quick_sort:12
				;CHECK: 4: 12 quick_sort:12
				;CHECK: 6: 24
				;CHECK: 65507: 12



	; original code:			; original code:
	; clang -O3 -g -fno-optimize-sibling-calls -fdebug-info-for-profiling qsort.c -o a.out			; clang -O3 -g -fno-optimize-sibling-calls -fdebug-info-for-profiling qsort.c -o a.out
	#include <stdio.h>			#include <stdio.h>
	#include <stdlib.h>			#include <stdlib.h>

	void swap(int a, int b) {			void swap(int a, int b) {
	▲ Show 20 Lines • Show All 47 Lines • Show Last 20 Lines

llvm/tools/llvm-profgen/PerfReader.h

Show First 20 Lines • Show All 207 Lines • ▼ Show 20 Lines
// After parsing the sample, we record the samples by aggregating them		// After parsing the sample, we record the samples by aggregating them
// into this counter. The key stores the sample data and the value is		// into this counter. The key stores the sample data and the value is
// the sample repeat times.		// the sample repeat times.
using AggregatedCounter =		using AggregatedCounter =
std::unordered_map<Hashable<PerfSample>, uint64_t,		std::unordered_map<Hashable<PerfSample>, uint64_t,
Hashable<PerfSample>::Hash, Hashable<PerfSample>::Equal>;		Hashable<PerfSample>::Hash, Hashable<PerfSample>::Equal>;

using SampleVector = SmallVector<std::tuple<uint64_t, uint64_t, uint64_t>, 16>;		using SampleVector = SmallVector<std::tuple<uint64_t, uint64_t, uint64_t>, 16>;

		// The special frame addresses.
		hoyUnsubmitted Not Done Reply Inline Actions nit: address -> addresses Also enum class is preferred. hoy: nit: address -> addresses Also enum class is preferred.
		wleiAuthorUnsubmitted Done Reply Inline Actions Fixed, thanks Also enum class is preferred. It appeared that an complication issue to initialize the static const variable in ProfiledFrame wlei: Fixed, thanks > Also enum class is preferred. It appeared that an complication issue to…
		enum SpecialFrameAddr {
		// Dummy root of frame trie.
		DummyRoot = 0,
		// Represent all the addresses outside of current binary.
		ExternalAddr = 1,
		};

// The state for the unwinder, it doesn't hold the data but only keep the		// The state for the unwinder, it doesn't hold the data but only keep the
// pointer/index of the data, While unwinding, the CallStack is changed		// pointer/index of the data, While unwinding, the CallStack is changed
// dynamicially and will be recorded as the context of the sample		// dynamicially and will be recorded as the context of the sample
struct UnwindState {		struct UnwindState {
// Profiled binary that current frame address belongs to		// Profiled binary that current frame address belongs to
const ProfiledBinary *Binary;		const ProfiledBinary *Binary;
// Call stack trie node		// Call stack trie node
struct ProfiledFrame {		struct ProfiledFrame {
const uint64_t Address = 0;		const uint64_t Address = DummyRoot;
ProfiledFrame *Parent;		ProfiledFrame *Parent;
SampleVector RangeSamples;		SampleVector RangeSamples;
SampleVector BranchSamples;		SampleVector BranchSamples;
std::unordered_map<uint64_t, std::unique_ptr<ProfiledFrame>> Children;		std::unordered_map<uint64_t, std::unique_ptr<ProfiledFrame>> Children;

ProfiledFrame(uint64_t Addr = 0, ProfiledFrame *P = nullptr)		ProfiledFrame(uint64_t Addr = 0, ProfiledFrame *P = nullptr)
: Address(Addr), Parent(P) {}		: Address(Addr), Parent(P) {}
ProfiledFrame *getOrCreateChildFrame(uint64_t Address) {		ProfiledFrame *getOrCreateChildFrame(uint64_t Address) {
assert(Address && "Address can't be zero!");		assert(Address && "Address can't be zero!");
auto Ret = Children.emplace(		auto Ret = Children.emplace(
Address, std::make_unique<ProfiledFrame>(Address, this));		Address, std::make_unique<ProfiledFrame>(Address, this));
return Ret.first->second.get();		return Ret.first->second.get();
}		}
void recordRangeCount(uint64_t Start, uint64_t End, uint64_t Count) {		void recordRangeCount(uint64_t Start, uint64_t End, uint64_t Count) {
RangeSamples.emplace_back(std::make_tuple(Start, End, Count));		RangeSamples.emplace_back(std::make_tuple(Start, End, Count));
}		}
void recordBranchCount(uint64_t Source, uint64_t Target, uint64_t Count) {		void recordBranchCount(uint64_t Source, uint64_t Target, uint64_t Count) {
BranchSamples.emplace_back(std::make_tuple(Source, Target, Count));		BranchSamples.emplace_back(std::make_tuple(Source, Target, Count));
}		}
bool isDummyRoot() { return Address == 0; }		bool isDummyRoot() { return Address == DummyRoot; }
		bool isExternalFrame() { return Address == ExternalAddr; }
bool isLeafFrame() { return Children.empty(); }		bool isLeafFrame() { return Children.empty(); }
};		};

ProfiledFrame DummyTrieRoot;		ProfiledFrame DummyTrieRoot;
ProfiledFrame *CurrentLeafFrame;		ProfiledFrame *CurrentLeafFrame;
// Used to fall through the LBR stack		// Used to fall through the LBR stack
uint32_t LBRIndex = 0;		uint32_t LBRIndex = 0;
// Reference to PerfSample.LBRStack		// Reference to PerfSample.LBRStack
const SmallVector<LBREntry, 16> &LBRStack;		const SmallVector<LBREntry, 16> &LBRStack;
// Used to iterate the address range		// Used to iterate the address range
InstructionPointer InstPtr;		InstructionPointer InstPtr;
UnwindState(const PerfSample Sample, const ProfiledBinary Binary)		UnwindState(const PerfSample Sample, const ProfiledBinary Binary)
: Binary(Binary), LBRStack(Sample->LBRStack),		: Binary(Binary), LBRStack(Sample->LBRStack),
InstPtr(Binary, Sample->CallStack.front()) {		InstPtr(Binary, Sample->CallStack.front()) {
initFrameTrie(Sample->CallStack);		initFrameTrie(Sample->CallStack);
}		}

bool validateInitialState() {		bool validateInitialState() {
uint64_t LBRLeaf = LBRStack[LBRIndex].Target;		uint64_t LBRLeaf = LBRStack[LBRIndex].Target;
uint64_t LeafAddr = CurrentLeafFrame->Address;		uint64_t LeafAddr = CurrentLeafFrame->Address;
		assert((LBRLeaf != ExternalAddr \|\| LBRLeaf == LeafAddr) &&
		"External leading LBR should match the leaf frame.");

// When we take a stack sample, ideally the sampling distance between the		// When we take a stack sample, ideally the sampling distance between the
// leaf IP of stack and the last LBR target shouldn't be very large.		// leaf IP of stack and the last LBR target shouldn't be very large.
// Use a heuristic size (0x100) to filter out broken records.		// Use a heuristic size (0x100) to filter out broken records.
if (LeafAddr < LBRLeaf \|\| LeafAddr >= LBRLeaf + 0x100) {		if (LeafAddr < LBRLeaf \|\| LeafAddr >= LBRLeaf + 0x100) {
WithColor::warning() << "Bogus trace: stack tip = "		WithColor::warning() << "Bogus trace: stack tip = "
<< format("%#010x", LeafAddr)		<< format("%#010x", LeafAddr)
<< ", LBR tip = " << format("%#010x\n", LBRLeaf);		<< ", LBR tip = " << format("%#010x\n", LBRLeaf);
return false;		return false;
}		}
return true;		return true;
}		}

void checkStateConsistency() {		void checkStateConsistency() {
assert(InstPtr.Address == CurrentLeafFrame->Address &&		assert(InstPtr.Address == CurrentLeafFrame->Address &&
"IP should align with context leaf");		"IP should align with context leaf");
}		}

bool hasNextLBR() const { return LBRIndex < LBRStack.size(); }		bool hasNextLBR() const { return LBRIndex < LBRStack.size(); }
uint64_t getCurrentLBRSource() const { return LBRStack[LBRIndex].Source; }		uint64_t getCurrentLBRSource() const { return LBRStack[LBRIndex].Source; }
uint64_t getCurrentLBRTarget() const { return LBRStack[LBRIndex].Target; }		uint64_t getCurrentLBRTarget() const { return LBRStack[LBRIndex].Target; }
const LBREntry &getCurrentLBR() const { return LBRStack[LBRIndex]; }		const LBREntry &getCurrentLBR() const { return LBRStack[LBRIndex]; }
		bool IsLastLBR() const { return LBRIndex == 0; }
		bool getLBRStackSize() const { return LBRStack.size(); }
void advanceLBR() { LBRIndex++; }		void advanceLBR() { LBRIndex++; }

ProfiledFrame *getParentFrame() { return CurrentLeafFrame->Parent; }		ProfiledFrame *getParentFrame() { return CurrentLeafFrame->Parent; }
		wenleiUnsubmitted Not Done Reply Inline Actions nit: LeadingFrame -> LeafFrame. LeafLBR -> LastLBR. Leaf or root is used for frame, but there's no leaf or root for LBR, which isn't hierarchical. If there're other inconsistent usage of the terms, we can fix them too. Additionally, why not check on CurrentLeafFrame instead given the function name says "Frame"? wenlei: nit: LeadingFrame -> LeafFrame. LeafLBR -> LastLBR. Leaf or root is used for frame, but there's…
		wleiAuthorUnsubmitted Done Reply Inline Actions Thanks for the suggestion. The warning is moved to the next patch. wlei: Thanks for the suggestion. The warning is moved to the next patch.

void pushFrame(uint64_t Address) {		void pushFrame(uint64_t Address) {
CurrentLeafFrame = CurrentLeafFrame->getOrCreateChildFrame(Address);		CurrentLeafFrame = CurrentLeafFrame->getOrCreateChildFrame(Address);
		hoyUnsubmitted Not Done Reply Inline Actions nit: use a single return statement `return !LBRStack.empty() && LBRStack[0].Target == ExternalAddr` . hoy: nit: use a single return statement `return !LBRStack.empty() && LBRStack[0].Target ==…
		wleiAuthorUnsubmitted Done Reply Inline Actions The warning is moved to the next patch, thanks! wlei: The warning is moved to the next patch, thanks!
}		}

void switchToFrame(uint64_t Address) {		void switchToFrame(uint64_t Address) {
if (CurrentLeafFrame->Address == Address)		if (CurrentLeafFrame->Address == Address)
return;		return;
CurrentLeafFrame = CurrentLeafFrame->Parent->getOrCreateChildFrame(Address);		CurrentLeafFrame = CurrentLeafFrame->Parent->getOrCreateChildFrame(Address);
}		}

▲ Show 20 Lines • Show All 107 Lines • ▼ Show 20 Lines	using ContextSampleCounterMap =
std::unordered_map<Hashable<ContextKey>, SampleCounter,		std::unordered_map<Hashable<ContextKey>, SampleCounter,
Hashable<ContextKey>::Hash, Hashable<ContextKey>::Equal>;		Hashable<ContextKey>::Hash, Hashable<ContextKey>::Equal>;

struct FrameStack {		struct FrameStack {
SmallVector<uint64_t, 16> Stack;		SmallVector<uint64_t, 16> Stack;
ProfiledBinary *Binary;		ProfiledBinary *Binary;
FrameStack(ProfiledBinary *B) : Binary(B) {}		FrameStack(ProfiledBinary *B) : Binary(B) {}
bool pushFrame(UnwindState::ProfiledFrame *Cur) {		bool pushFrame(UnwindState::ProfiledFrame *Cur) {
		// Truncate the context for external frame since this isn't a real call
		// context the compiler will see
		if (Cur->isExternalFrame())
		return false;
Stack.push_back(Cur->Address);		Stack.push_back(Cur->Address);
return true;		return true;
}		}

void popFrame() {		void popFrame() {
if (!Stack.empty())		if (!Stack.empty())
Stack.pop_back();		Stack.pop_back();
}		}
std::shared_ptr<StringBasedCtxKey> getContextKey();		std::shared_ptr<StringBasedCtxKey> getContextKey();
};		};

struct ProbeStack {		struct ProbeStack {
SmallVector<const MCDecodedPseudoProbe *, 16> Stack;		SmallVector<const MCDecodedPseudoProbe *, 16> Stack;
ProfiledBinary *Binary;		ProfiledBinary *Binary;
ProbeStack(ProfiledBinary *B) : Binary(B) {}		ProbeStack(ProfiledBinary *B) : Binary(B) {}
bool pushFrame(UnwindState::ProfiledFrame *Cur) {		bool pushFrame(UnwindState::ProfiledFrame *Cur) {
		// Truncate the context for external frame since this isn't a real call
		// context the compiler will see
		if (Cur->isExternalFrame())
		return false;
const MCDecodedPseudoProbe *CallProbe =		const MCDecodedPseudoProbe *CallProbe =
Binary->getCallProbeForAddr(Cur->Address);		Binary->getCallProbeForAddr(Cur->Address);
// We may not find a probe for a merged or external callsite.		// We may not find a probe for a merged or external callsite.
// Callsite merging may cause the loss of original probe IDs.		// Callsite merging may cause the loss of original probe IDs.
// Cutting off the context from here since the inliner will		// Cutting off the context from here since the inliner will
// not know how to consume a context with unknown callsites.		// not know how to consume a context with unknown callsites.
if (!CallProbe)		if (!CallProbe)
return false;		return false;
▲ Show 20 Lines • Show All 56 Lines • ▼ Show 20 Lines	bool isReturnState(UnwindState &State) const {
// Simply check addressIsReturn, as ret is always reliable, both for		// Simply check addressIsReturn, as ret is always reliable, both for
// regular call and tail call.		// regular call and tail call.
return Binary->addressIsReturn(State.getCurrentLBRSource());		return Binary->addressIsReturn(State.getCurrentLBRSource());
}		}

void unwindCall(UnwindState &State);		void unwindCall(UnwindState &State);
void unwindLinear(UnwindState &State, uint64_t Repeat);		void unwindLinear(UnwindState &State, uint64_t Repeat);
void unwindReturn(UnwindState &State);		void unwindReturn(UnwindState &State);
void unwindBranchWithinFrame(UnwindState &State);		void unwindBranch(UnwindState &State);

template <typename T>		template <typename T>
void collectSamplesFromFrame(UnwindState::ProfiledFrame *Cur, T &Stack);		void collectSamplesFromFrame(UnwindState::ProfiledFrame *Cur, T &Stack);
// Collect each samples on trie node by DFS traversal		// Collect each samples on trie node by DFS traversal
template <typename T>		template <typename T>
void collectSamplesFromFrameTrie(UnwindState::ProfiledFrame *Cur, T &Stack);		void collectSamplesFromFrameTrie(UnwindState::ProfiledFrame *Cur, T &Stack);
void collectSamplesFromFrameTrie(UnwindState::ProfiledFrame *Cur);		void collectSamplesFromFrameTrie(UnwindState::ProfiledFrame *Cur);

Show All 29 Lines	public:
bool profileIsCSFlat() { return ProfileIsCSFlat; }		bool profileIsCSFlat() { return ProfileIsCSFlat; }

protected:		protected:
ProfiledBinary *Binary = nullptr;		ProfiledBinary *Binary = nullptr;
StringRef PerfTraceFile;		StringRef PerfTraceFile;

ContextSampleCounterMap SampleCounters;		ContextSampleCounterMap SampleCounters;
bool ProfileIsCSFlat = false;		bool ProfileIsCSFlat = false;

		uint64_t NumTotalSample = 0;
		uint64_t NumLeafExternalFrame = 0;
		uint64_t NumLeadingOutgoingLBR = 0;
};		};

// Read perf script to parse the events and samples.		// Read perf script to parse the events and samples.
class PerfScriptReader : public PerfReaderBase {		class PerfScriptReader : public PerfReaderBase {
public:		public:
PerfScriptReader(ProfiledBinary *B, StringRef PerfTrace)		PerfScriptReader(ProfiledBinary *B, StringRef PerfTrace)
: PerfReaderBase(B, PerfTrace){};		: PerfReaderBase(B, PerfTrace){};

▲ Show 20 Lines • Show All 138 Lines • Show Last 20 Lines

llvm/tools/llvm-profgen/PerfReader.cpp

Show First 20 Lines • Show All 53 Lines • ▼ Show 20 Lines	void VirtualUnwinder::unwindCall(UnwindState &State) {
// The 2nd frame after leaf could be missing if stack sample is		// The 2nd frame after leaf could be missing if stack sample is
// taken when IP is within prolog/epilog, as frame chain isn't		// taken when IP is within prolog/epilog, as frame chain isn't
// setup yet. Fill in the missing frame in that case.		// setup yet. Fill in the missing frame in that case.
// TODO: Currently we just assume all the addr that can't match the		// TODO: Currently we just assume all the addr that can't match the
// 2nd frame is in prolog/epilog. In the future, we will switch to		// 2nd frame is in prolog/epilog. In the future, we will switch to
// pro/epi tracker(Dwarf CFI) for the precise check.		// pro/epi tracker(Dwarf CFI) for the precise check.
uint64_t Source = State.getCurrentLBRSource();		uint64_t Source = State.getCurrentLBRSource();
auto *ParentFrame = State.getParentFrame();		auto *ParentFrame = State.getParentFrame();

		wenleiUnsubmitted Not Done Reply Inline Actions Actually do we need the check on `isLeadingFrameExternal`? Should we always expect parent frame address and LBR source to align for any calls? Additionally, should there a one instruction shift between frame address and source/call address (see `getCallAddrFromFrameAddr`)? And when mismatch happens, should we abort unwinding? It seems that at this point it's guaranteed to generate incorrect context? How you seen such mismatch happening? wenlei: Actually do we need the check on `isLeadingFrameExternal`? Should we always expect parent frame…
		wleiAuthorUnsubmitted Done Reply Inline Actions Should we always expect parent frame address and LBR source to align for any calls? you see there is a comment to explain "// TODO: Currently we just assume all the addr that can't match the 2nd frame is in prolog/epilog.", so before we saw frame in prolog/epilog mismatch the call stack. Additionally, should there a one instruction shift between frame address and source/call address (see getCallAddrFromFrameAddr)? We already fix this mismatch in `extractCallstack` see // We need to translate return address to call address for non-leaf frames. if (!CallStack.empty()) { auto CallAddr = Binary->getCallAddrFromFrameAddr(FrameAddr); if (!CallAddr) { .... And when mismatch happens, should we abort unwinding? It seems that at this point it's guaranteed to generate incorrect context? Yeah, before for the frame in prolog/epilog, we didn't abort. If mismatch happen, we still can process using a context-less stack, but that will make things even complicated. How you seen such mismatch happening? I haven't tested it. I will add a warning for both leading frame issue and frame prolog/epilog. Maybe we can see how many cases of them to decide if we need to abort. wlei: > Should we always expect parent frame address and LBR source to align for any calls? you see…
if (ParentFrame == State.getDummyRootPtr() \|\|		if (ParentFrame == State.getDummyRootPtr() \|\|
ParentFrame->Address != Source) {		ParentFrame->Address != Source) {
State.switchToFrame(Source);		State.switchToFrame(Source);
} else {		} else {
State.popFrame();		State.popFrame();
}		}
State.InstPtr.update(Source);		State.InstPtr.update(Source);
}		}
▲ Show 20 Lines • Show All 46 Lines • ▼ Show 20 Lines	void VirtualUnwinder::unwindReturn(UnwindState &State) {
// Add extra frame as we unwind through the return		// Add extra frame as we unwind through the return
const LBREntry &LBR = State.getCurrentLBR();		const LBREntry &LBR = State.getCurrentLBR();
uint64_t CallAddr = Binary->getCallAddrFromFrameAddr(LBR.Target);		uint64_t CallAddr = Binary->getCallAddrFromFrameAddr(LBR.Target);
State.switchToFrame(CallAddr);		State.switchToFrame(CallAddr);
State.pushFrame(LBR.Source);		State.pushFrame(LBR.Source);
State.InstPtr.update(LBR.Source);		State.InstPtr.update(LBR.Source);
}		}

void VirtualUnwinder::unwindBranchWithinFrame(UnwindState &State) {		void VirtualUnwinder::unwindBranch(UnwindState &State) {
// TODO: Tolerate tail call for now, as we may see tail call from libraries.		// TODO: Tolerate tail call for now, as we may see tail call from libraries.
// This is only for intra function branches, excluding tail calls.		// This is only for intra function branches, excluding tail calls.
uint64_t Source = State.getCurrentLBRSource();		uint64_t Source = State.getCurrentLBRSource();
State.switchToFrame(Source);		State.switchToFrame(Source);
State.InstPtr.update(Source);		State.InstPtr.update(Source);
}		}

std::shared_ptr<StringBasedCtxKey> FrameStack::getContextKey() {		std::shared_ptr<StringBasedCtxKey> FrameStack::getContextKey() {
▲ Show 20 Lines • Show All 81 Lines • ▼ Show 20 Lines	void VirtualUnwinder::collectSamplesFromFrameTrie(
} else {		} else {
FrameStack Stack(Binary);		FrameStack Stack(Binary);
collectSamplesFromFrameTrie<FrameStack>(Cur, Stack);		collectSamplesFromFrameTrie<FrameStack>(Cur, Stack);
}		}
}		}

void VirtualUnwinder::recordBranchCount(const LBREntry &Branch,		void VirtualUnwinder::recordBranchCount(const LBREntry &Branch,
UnwindState &State, uint64_t Repeat) {		UnwindState &State, uint64_t Repeat) {
if (Branch.IsArtificial)		if (Branch.IsArtificial \|\| Branch.Target == ExternalAddr)
return;		return;

if (Binary->usePseudoProbes()) {		if (Binary->usePseudoProbes()) {
// Same as recordRangeCount, We don't need to top frame probe since we will		// Same as recordRangeCount, We don't need to top frame probe since we will
// extract it from branch's source address		// extract it from branch's source address
State.getParentFrame()->recordBranchCount(Branch.Source, Branch.Target,		State.getParentFrame()->recordBranchCount(Branch.Source, Branch.Target,
Repeat);		Repeat);
} else {		} else {
State.CurrentLeafFrame->recordBranchCount(Branch.Source, Branch.Target,		State.CurrentLeafFrame->recordBranchCount(Branch.Source, Branch.Target,
Repeat);		Repeat);
}		}
}		}

bool VirtualUnwinder::unwind(const PerfSample *Sample, uint64_t Repeat) {		bool VirtualUnwinder::unwind(const PerfSample *Sample, uint64_t Repeat) {
// Capture initial state as starting point for unwinding.		// Capture initial state as starting point for unwinding.
UnwindState State(Sample, Binary);		UnwindState State(Sample, Binary);

		wenleiUnsubmitted Not Done Reply Inline Actions nit: this is more like total branches. usually LBR record is considered the full 16/32 entires of branch pairs in LBR. same applies to the warning message. wenlei: nit: this is more like total branches. usually LBR record is considered the full 16/32 entires…
		wleiAuthorUnsubmitted Done Reply Inline Actions thanks for the suggestion. wlei: thanks for the suggestion.
// Sanity check - making sure leaf of LBR aligns with leaf of stack sample		// Sanity check - making sure leaf of LBR aligns with leaf of stack sample
// Stack sample sometimes can be unreliable, so filter out bogus ones.		// Stack sample sometimes can be unreliable, so filter out bogus ones.
if (!State.validateInitialState())		if (!State.validateInitialState())
return false;		return false;

// Also do not attempt linear unwind for the leaf range as it's incomplete.
bool IsLeaf = true;

// Now process the LBR samples in parrallel with stack sample		// Now process the LBR samples in parrallel with stack sample
// Note that we do not reverse the LBR entry order so we can		// Note that we do not reverse the LBR entry order so we can
// unwind the sample stack as we walk through LBR entries.		// unwind the sample stack as we walk through LBR entries.
while (State.hasNextLBR()) {		while (State.hasNextLBR()) {
State.checkStateConsistency();		State.checkStateConsistency();

		// Do not attempt linear unwind for the leaf range as it's incomplete.
		if (!State.IsLastLBR()) {
// Unwind implicit calls/returns from inlining, along the linear path,		// Unwind implicit calls/returns from inlining, along the linear path,
// break into smaller sub section each with its own calling context.		// break into smaller sub section each with its own calling context.
if (!IsLeaf) {
unwindLinear(State, Repeat);		unwindLinear(State, Repeat);
}		}
		wenleiUnsubmitted Not Done Reply Inline Actions A bit confused by the comment on "unwinded using a context-less frame stack" - I thought after we strip out the leading external frame and external LBR, we would still use the remaining stack as context, hence it's not context-less. wenlei: A bit confused by the comment on "unwinded using a context-less frame stack" - I thought after…
		wleiAuthorUnsubmitted Done Reply Inline Actions Good point. Based on this, we don't need the code here. We can have CALL/Return/JMP to external address and current unwinder all covered this, we can just reuse them. One exception is return to external code, that should be handed by the next patch. Removed this code. wlei: Good point. Based on this, we don't need the code here. We can have CALL/Return/JMP to external…
IsLeaf = false;

// Save the LBR branch before it gets unwound.		// Save the LBR branch before it gets unwound.
		wenleiUnsubmitted Not Done Reply Inline Actions I think we can do some sanity check here: assert that we have a paired LBR here? ie. LBR target is external. also assert that the next frame on stack aligns with LBR source? wenlei: I think we can do some sanity check here: 1. assert that we have a paired LBR here? ie. LBR…
		wleiAuthorUnsubmitted Done Reply Inline Actions assert that we have a paired LBR here? ie. LBR target is external. Sounds good, added assertion in `validateInitialState`. also assert that the next frame on stack aligns with LBR source? If I understand correctly, that assumes the LBR source should be a CALL? The tricky part is we don't only have CALL into external address, we can have RETURN, JMP. One common cases is the PLT, internal call --> PLT--> external address. PLT code is a JMP. How about to give a warning if the following CALL unwinding hit a mismatched frame. wlei: >assert that we have a paired LBR here? ie. LBR target is external. Sounds good, added…
		wenleiUnsubmitted Not Done Reply Inline Actions On 2nd thought, you're right that if the transfer is not a call, there will be mismatch, PLT is one, tail call jump can be another. Thought for PLT, perhaps we can treat PLT as external too, so anything involved PLT will be stripped too. I was hoping that we can have a sense of how intrusive this kind of mismatch is. Hopefully it's rare. Warning is good but perhaps PLT case can be handled? wenlei: On 2nd thought, you're right that if the transfer is not a call, there will be mismatch, PLT is…
		wleiAuthorUnsubmitted Done Reply Inline Actions PLT case can be handled, we can have a diff to make PLT code as external code. then we can have some statistic base on this. I will have a separated diff for PLT stuffs. wlei: PLT case can be handled, we can have a diff to make PLT code as external code. then we can have…
		wenleiUnsubmitted Not Done Reply Inline Actions Dealing with PLT in separate patch sounds good. And I guess we only need to deal with it if it's important enough. wenlei: Dealing with PLT in separate patch sounds good. And I guess we only need to deal with it if…
const LBREntry &Branch = State.getCurrentLBR();		const LBREntry &Branch = State.getCurrentLBR();
		wenleiUnsubmitted Not Done Reply Inline Actions Should this be `pushFrame`/`popFrame` instead of `switchToFrame` depending on the instruction at the source of LBR? Basically we are unwinding through the internal->external LBR here, which should be either a call or return, right? wenlei: Should this be `pushFrame`/`popFrame` instead of `switchToFrame` depending on the instruction…
		wleiAuthorUnsubmitted Done Reply Inline Actions Yeah, same to above comment. the current unwinder should already covered pushFrame/popFrame. One difference is the Return. For returning to external address, we don't have a target callsite, hence we can't push a valid frame. But this case should be handled by `https://reviews.llvm.org/D115550` which used an artificial frame to truncate the call stack. which should be either a call or return. You see, it appeared that the PLT code is a JMP. wlei: Yeah, same to above comment. the current unwinder should already covered pushFrame/popFrame.

if (isCallState(State)) {		if (isCallState(State)) {
// Unwind calls - we know we encountered call if LBR overlaps with		// Unwind calls - we know we encountered call if LBR overlaps with
// transition between leaf the 2nd frame. Note that for calls that		// transition between leaf the 2nd frame. Note that for calls that
// were not in the original stack sample, we should have added the		// were not in the original stack sample, we should have added the
// extra frame when processing the return paired with this call.		// extra frame when processing the return paired with this call.
unwindCall(State);		unwindCall(State);
} else if (isReturnState(State)) {		} else if (isReturnState(State)) {
// Unwind returns - check whether the IP is indeed at a return instruction		// Unwind returns - check whether the IP is indeed at a return instruction
unwindReturn(State);		unwindReturn(State);
} else {		} else {
// Unwind branches - for regular intra function branches, we only		// Unwind branches
		wenleiUnsubmitted Not Done Reply Inline Actions Update the comment as it's no longer accurate - it could regular intra function branch, or artificial branch cross function boundaries when there're external functions involved (example would be good). wenlei: Update the comment as it's no longer accurate - it could regular intra function branch, or…
// need to record branch with context.		// For regular intra function branches, we only need to record branch with
unwindBranchWithinFrame(State);		// context. For an artificial branch cross function boundaries, we got an
		// issue with returning to external code. Take the two LBR enties for
		// example: [foo:8(RETURN), ext:1] [ext:3(CALL), bar:1] After perf reader,
		// we only get[foo:8(RETURN), bar:1], unwinder will be confused like foo
		// return to bar. Here we detect and treat this case as BRANCH instead of
		// RETURN which only update the source address.
		unwindBranch(State);
}		}
State.advanceLBR();		State.advanceLBR();
// Record `branch` with calling context after unwinding.		// Record `branch` with calling context after unwinding.
recordBranchCount(Branch, State, Repeat);		recordBranchCount(Branch, State, Repeat);
}		}
// As samples are aggregated on trie, record them into counter map		// As samples are aggregated on trie, record them into counter map
collectSamplesFromFrameTrie(State.getDummyRootPtr());		collectSamplesFromFrameTrie(State.getDummyRootPtr());

▲ Show 20 Lines • Show All 142 Lines • ▼ Show 20 Lines	if (const auto *CtxKey = dyn_cast<StringBasedCtxKey>(K)) {
llvm_unreachable("unexpected key type");		llvm_unreachable("unexpected key type");
}		}
}		}

void HybridPerfReader::unwindSamples() {		void HybridPerfReader::unwindSamples() {
if (Binary->useFSDiscriminator())		if (Binary->useFSDiscriminator())
exitWithError("FS discriminator is not supported in CS profile.");		exitWithError("FS discriminator is not supported in CS profile.");
std::set<uint64_t> AllUntrackedCallsites;		std::set<uint64_t> AllUntrackedCallsites;
		VirtualUnwinder Unwinder(&SampleCounters, Binary);
for (const auto &Item : AggregatedSamples) {		for (const auto &Item : AggregatedSamples) {
const PerfSample *Sample = Item.first.getPtr();		const PerfSample *Sample = Item.first.getPtr();
VirtualUnwinder Unwinder(&SampleCounters, Binary);
Unwinder.unwind(Sample, Item.second);		Unwinder.unwind(Sample, Item.second);
auto &CurrUntrackedCallsites = Unwinder.getUntrackedCallsites();		auto &CurrUntrackedCallsites = Unwinder.getUntrackedCallsites();
AllUntrackedCallsites.insert(CurrUntrackedCallsites.begin(),		AllUntrackedCallsites.insert(CurrUntrackedCallsites.begin(),
CurrUntrackedCallsites.end());		CurrUntrackedCallsites.end());
}		}

// Warn about untracked frames due to missing probes.		// Warn about untracked frames due to missing probes.
if (ShowDetailedWarning) {		if (ShowDetailedWarning) {
▲ Show 20 Lines • Show All 57 Lines • ▼ Show 20 Lines	while (Index < Records.size()) {

bool SrcIsInternal = Binary->addressIsCode(Src);		bool SrcIsInternal = Binary->addressIsCode(Src);
bool DstIsInternal = Binary->addressIsCode(Dst);		bool DstIsInternal = Binary->addressIsCode(Dst);
bool IsExternal = !SrcIsInternal && !DstIsInternal;		bool IsExternal = !SrcIsInternal && !DstIsInternal;
bool IsIncoming = !SrcIsInternal && DstIsInternal;		bool IsIncoming = !SrcIsInternal && DstIsInternal;
bool IsOutgoing = SrcIsInternal && !DstIsInternal;		bool IsOutgoing = SrcIsInternal && !DstIsInternal;
bool IsArtificial = false;		bool IsArtificial = false;

// Ignore branches outside the current binary. Ignore all remaining branches		// Ignore branches outside the current binary.
// if there's no incoming branch before the external branch in reverse
// order.
if (IsExternal) {		if (IsExternal) {
if (PrevTrDst)		if (!PrevTrDst && !LBRStack.empty()) {
continue;
if (!LBRStack.empty()) {
WithColor::warning()		WithColor::warning()
<< "Invalid transfer to external code in LBR record at line "		<< "Invalid transfer to external code in LBR record at line "
<< TraceIt.getLineNumber() << ": " << TraceIt.getCurrentLine()		<< TraceIt.getLineNumber() << ": " << TraceIt.getCurrentLine()
<< "\n";		<< "\n";
}		}
break;		// Do not ignore the entire samples, the remaining LBR can still be
		// unwound using a context-less stack.
		hoyUnsubmitted Not Done Reply Inline Actions nit: unwinded -> unwound hoy: nit: unwinded -> unwound
		wleiAuthorUnsubmitted Done Reply Inline Actions fixed, thanks! wlei: fixed, thanks!
		continue;
}		}

if (IsOutgoing) {		if (IsOutgoing) {
if (!PrevTrDst) {		if (!PrevTrDst) {
// This is unpaired outgoing jump which is likely due to interrupt or		// This is a leading outgoing LBR, we should keep processing the LBRs.
// incomplete LBR trace. Ignore current and subsequent entries since		if (LBRStack.empty()) {
// they are likely in different contexts.		NumLeadingOutgoingLBR++;
		hoyUnsubmitted Not Done Reply Inline Actions nit: NumLeadingExternalLBR -> NumLeadingOutgoingLBR? hoy: nit: NumLeadingExternalLBR -> NumLeadingOutgoingLBR?
		wleiAuthorUnsubmitted Done Reply Inline Actions fixed, thanks! wlei: fixed, thanks!
		// Record this LBR since current source and next LBR' target is still
		// a valid range.
		LBRStack.emplace_back(LBREntry(Src, ExternalAddr, false));
		continue;
		}
		// This is middle unpaired outgoing jump which is likely due to
		// interrupt or incomplete LBR trace. Ignore current and subsequent
		// entries since they are likely in different contexts.
break;		break;
}		}

if (Binary->addressIsReturn(Src)) {		if (Binary->addressIsReturn(Src)) {
// In a callback case, a return from internal code, say A, to external		// In a callback case, a return from internal code, say A, to external
// runtime can happen. The external runtime can then call back to		// runtime can happen. The external runtime can then call back to
// another internal routine, say B. Making an artificial branch that		// another internal routine, say B. Making an artificial branch that
// looks like a return from A to B can confuse the unwinder to treat		// looks like a return from A to B can confuse the unwinder to treat
▲ Show 20 Lines • Show All 49 Lines • ▼ Show 20 Lines	while (!TraceIt.isAtEoF() && !TraceIt.getCurrentLine().startswith(" 0x")) {
if (FrameStr.getAsInteger(16, FrameAddr)) {		if (FrameStr.getAsInteger(16, FrameAddr)) {
// We might parse a non-perf sample line like empty line and comments,		// We might parse a non-perf sample line like empty line and comments,
// skip it		// skip it
TraceIt.advance();		TraceIt.advance();
return false;		return false;
}		}
TraceIt.advance();		TraceIt.advance();
// Currently intermixed frame from different binaries is not supported.		// Currently intermixed frame from different binaries is not supported.
// Ignore caller frames not from binary of interest.		if (!Binary->addressIsCode(FrameAddr)) {
if (!Binary->addressIsCode(FrameAddr))		if (CallStack.empty())
break;		NumLeafExternalFrame++;
		// Push a special value(ExternalAddr) for the external frames so that
		// unwinder can still work on this with artificial Call/Return branch.
		// After unwinding, the context will be truncated for external frame.
		// Also deduplicate the consecutive external addresses.
		wenleiUnsubmitted Not Done Reply Inline Actions If only leaf frames are external, can we keep the remaining frames for unwinding? wenlei: If only leaf frames are external, can we keep the remaining frames for unwinding?
		wleiAuthorUnsubmitted Done Reply Inline Actions Sounds good, tried to keep the remaining internal call stack for unwinding. wlei: Sounds good, tried to keep the remaining internal call stack for unwinding.
		hoyUnsubmitted Not Done Reply Inline Actions Maybe we can keep the whole call stack by replacing consecutive external frames with an artificial frame introduced in the other patch. This should be synchronized with the LBR parser where we replace consecutive external LBRs with an artificial branch. hoy: Maybe we can keep the whole call stack by replacing consecutive external frames with an…
		wleiAuthorUnsubmitted Done Reply Inline Actions Good point. Changed to both use `external branch`, update in the next patch. wlei: Good point. Changed to both use `external branch`, update in the next patch.
		hoyUnsubmitted Not Done Reply Inline Actions Thanks. Just to be clear, we will no longer need to break, instead, we'll continue whenever the top of stack is also an ExternalAddr. This way we could handle the following case Ext Ext foo Ext Ext bar main Ext/Ext /Ext/Ext foo/Ext foo/foo Ext/foo Ext/Ext bar/Ext bar/bar bar/bar ... Though this should be rare, for completeness does it sounds reasonable? hoy: Thanks. Just to be clear, we will no longer need to break, instead, we'll continue whenever the…
		wleiAuthorUnsubmitted Done Reply Inline Actions That's a good point. Only one thing: we don't know `Ext/Ext` is a Call or Return or Jmp. So I think we should preprocess to deduplicate the Ext in the call stack. like we also deduplicate the Ext in LBRsample. in your case, we will get. Ext Ext foo Ext Ext bar main to Ext foo Ext bar main wlei: That's a good point. Only one thing: we don't know `Ext/Ext` is a Call or Return or Jmp. So I…
		hoyUnsubmitted Not Done Reply Inline Actions Exactly, that is actually what I meant, i.e, to skip the current Ext frame only if the top of stack is already an Ext. Do you think we need the other change to correctly truncate such as mixed callsite when reporting samples? Sounds good to implement there. hoy: Exactly, that is actually what I meant, i.e, to skip the current Ext frame only if the top of…
		wleiAuthorUnsubmitted Done Reply Inline Actions Sounds good, I can move to code of truncating external addr from the 2nd patch to here. but here it's just truncate the context we need next patch to handle Call/Return of artificial branch. wlei: Sounds good, I can move to code of truncating external addr from the 2nd patch to here. but…
		hoyUnsubmitted Not Done Reply Inline Actions I see. Sounds good to move the truncating code here to make the current patch more complete and self-contained, hoy: I see. Sounds good to move the truncating code here to make the current patch more complete and…
		if (CallStack.empty() \|\| CallStack.back() != ExternalAddr)
		CallStack.emplace_back(ExternalAddr);
		continue;
		}

// We need to translate return address to call address for non-leaf frames.		// We need to translate return address to call address for non-leaf frames.
if (!CallStack.empty()) {		if (!CallStack.empty()) {
auto CallAddr = Binary->getCallAddrFromFrameAddr(FrameAddr);		auto CallAddr = Binary->getCallAddrFromFrameAddr(FrameAddr);
if (!CallAddr) {		if (!CallAddr) {
// Stop at an invalid return address caused by bad unwinding. This could		// Stop at an invalid return address caused by bad unwinding. This could
// happen to frame-pointer-based unwinding and the callee functions that		// happen to frame-pointer-based unwinding and the callee functions that
// do not have the frame pointer chain set up.		// do not have the frame pointer chain set up.
InvalidReturnAddresses.insert(FrameAddr);		InvalidReturnAddresses.insert(FrameAddr);
break;		break;
}		}
FrameAddr = CallAddr;		FrameAddr = CallAddr;
}		}

CallStack.emplace_back(FrameAddr);		CallStack.emplace_back(FrameAddr);
}		}

		// Strip out the bottom external addr.
		if (CallStack.size() > 1 && CallStack.back() == ExternalAddr)
		CallStack.pop_back();

// Skip other unrelated line, find the next valid LBR line		// Skip other unrelated line, find the next valid LBR line
// Note that even for empty call stack, we should skip the address at the		// Note that even for empty call stack, we should skip the address at the
// bottom, otherwise the following pass may generate a truncated callstack		// bottom, otherwise the following pass may generate a truncated callstack
while (!TraceIt.isAtEoF() && !TraceIt.getCurrentLine().startswith(" 0x")) {		while (!TraceIt.isAtEoF() && !TraceIt.getCurrentLine().startswith(" 0x")) {
TraceIt.advance();		TraceIt.advance();
}		}
// Filter out broken stack sample. We may not have complete frame info		// Filter out broken stack sample. We may not have complete frame info
// if sample end up in prolog/epilog, the result is dangling context not		// if sample end up in prolog/epilog, the result is dangling context not
▲ Show 20 Lines • Show All 256 Lines • ▼ Show 20 Lines	uint64_t PerfScriptReader::parseAggregatedCount(TraceStream &TraceIt) {
// it's unmatched		// it's unmatched
uint64_t Count = 1;		uint64_t Count = 1;
if (!TraceIt.getCurrentLine().getAsInteger(10, Count))		if (!TraceIt.getCurrentLine().getAsInteger(10, Count))
TraceIt.advance();		TraceIt.advance();
return Count;		return Count;
}		}

void PerfScriptReader::parseSample(TraceStream &TraceIt) {		void PerfScriptReader::parseSample(TraceStream &TraceIt) {
		NumTotalSample++;
uint64_t Count = parseAggregatedCount(TraceIt);		uint64_t Count = parseAggregatedCount(TraceIt);
assert(Count >= 1 && "Aggregated count should be >= 1!");		assert(Count >= 1 && "Aggregated count should be >= 1!");
parseSample(TraceIt, Count);		parseSample(TraceIt, Count);
}		}

bool PerfScriptReader::extractMMap2EventForBinary(ProfiledBinary *Binary,		bool PerfScriptReader::extractMMap2EventForBinary(ProfiledBinary *Binary,
StringRef Line,		StringRef Line,
MMapEvent &MMap) {		MMapEvent &MMap) {
▲ Show 20 Lines • Show All 46 Lines • ▼ Show 20 Lines	if (extractMMap2EventForBinary(Binary, TraceIt.getCurrentLine(), MMap))
updateBinaryAddress(MMap);		updateBinaryAddress(MMap);
TraceIt.advance();		TraceIt.advance();
}		}

void PerfScriptReader::parseEventOrSample(TraceStream &TraceIt) {		void PerfScriptReader::parseEventOrSample(TraceStream &TraceIt) {
if (isMMap2Event(TraceIt.getCurrentLine()))		if (isMMap2Event(TraceIt.getCurrentLine()))
parseMMap2Event(TraceIt);		parseMMap2Event(TraceIt);
else		else
parseSample(TraceIt);		parseSample(TraceIt);
		wenleiUnsubmitted Not Done Reply Inline Actions nit: move this into `parseSample` wenlei: nit: move this into `parseSample`
		wleiAuthorUnsubmitted Done Reply Inline Actions fixed, thanks! wlei: fixed, thanks!
}		}

void PerfScriptReader::parseAndAggregateTrace() {		void PerfScriptReader::parseAndAggregateTrace() {
// Trace line iterator		// Trace line iterator
TraceStream TraceIt(PerfTraceFile);		TraceStream TraceIt(PerfTraceFile);
while (!TraceIt.isAtEoF())		while (!TraceIt.isAtEoF())
parseEventOrSample(TraceIt);		parseEventOrSample(TraceIt);
}		}
▲ Show 20 Lines • Show All 167 Lines • ▼ Show 20 Lines	void PerfScriptReader::warnInvalidRange() {
emitWarningSummary(RangeCrossFunc, TotalRangeNum,		emitWarningSummary(RangeCrossFunc, TotalRangeNum,
"of profiled ranges do cross function boundaries.");		"of profiled ranges do cross function boundaries.");
}		}

void PerfScriptReader::parsePerfTraces() {		void PerfScriptReader::parsePerfTraces() {
// Parse perf traces and do aggregation.		// Parse perf traces and do aggregation.
parseAndAggregateTrace();		parseAndAggregateTrace();

		emitWarningSummary(NumLeafExternalFrame, NumTotalSample,
		wenleiUnsubmitted Not Done Reply Inline Actions nit: top->leaf to make it explicit, for message and variable name. wenlei: nit: top->leaf to make it explicit, for message and variable name.
		wleiAuthorUnsubmitted Done Reply Inline Actions Fixed wlei: Fixed
		"of samples have leaf external frame in call stack.");
		emitWarningSummary(NumLeadingOutgoingLBR, NumTotalSample,
		"of samples have leading external LBR.");

// Generate unsymbolized profile.		// Generate unsymbolized profile.
warnTruncatedStack();		warnTruncatedStack();
warnInvalidRange();		warnInvalidRange();
generateUnsymbolizedProfile();		generateUnsymbolizedProfile();

if (SkipSymbolization)		if (SkipSymbolization)
writeUnsymbolizedProfile(OutputFilename);		writeUnsymbolizedProfile(OutputFilename);
}		}

} // end namespace sampleprof		} // end namespace sampleprof
} // end namespace llvm		} // end namespace llvm