This is an archive of the discontinued LLVM Phabricator instance.

Differential D116677

[2/4] [MC][NFC] Add an optional PreviousInst argument to MCInstrAnalysis::evaluateBranch
Needs ReviewPublic

Authored by asb on Jan 5 2022, 10:33 AM.

Details

Reviewers
jhenderson
MaskRay
simoncook
craig.topper
luismarques
Summary

evaluateBranch currently takes a single instruction. This works for most
targets, but is insufficient for e.g. auipc+jalr pairs on RISC-V. This
commit adds a new optional argument for the previous instruction,
allowing these targets to implement evaluateBranch for such instruction
pairs.

This patch simply adds the argument, and modifies llvm-objdump to pass
it.

This isn't a pretty solution, so if you have alternate proposals I'd be keen to discuss.

Diff Detail

Event Timeline

asb created this revision.Jan 5 2022, 10:33 AM
Herald added a reviewer: jhenderson. · View Herald TranscriptJan 5 2022, 10:33 AM
Herald added a reviewer: MaskRay. · View Herald Transcript
Herald added subscribers: luke957, foad, frasercrmck and 30 others. · View Herald Transcript
asb requested review of this revision.Jan 5 2022, 10:33 AM
Herald added a project: Restricted Project. · View Herald TranscriptJan 5 2022, 10:34 AM
Herald added subscribers: llvm-commits, StephenFan. · View Herald Transcript
asb added a parent revision: D116676: [1/4] [llvm-objdump][test] Add RISC-V objdump test case.Jan 5 2022, 10:34 AM
asb added a child revision: D116678: [3/4][RISCV][MC] Teach MCInstrAnalysis::evaluateBranch to determine the target of an auipc+jalr.Jan 5 2022, 10:37 AM
asb added reviewers: simoncook, craig.topper, luismarques.Jan 5 2022, 10:39 AM
Harbormaster completed remote builds in B141715: Diff 397635.Jan 5 2022, 11:58 AM
MaskRay added a comment.Jan 12 2022, 7:07 PM

Checking the consecutive pair of instructions likely works for the majority of cases for some architectures. It fails when a RISC architecture interleaves the high and low parts with an unrelated instruction. This pattern is pretty common on AArch64.
Ideally that case should be handled as well.

% cat a.c
int a, b;
int foo() { return a + b; }
% clang --target=aarch64-linux-gnu -nostdlib -fuse-ld=lld -O1 a.c -o a
% llvm-objdump -d a
...
000000000021022c <foo>:
  21022c: 88 00 00 90   adrp    x8, 0x220000 <foo+0x40>
  210230: 89 00 00 90   adrp    x9, 0x220000 <foo+0x44>
  210234: 08 45 42 b9   ldr     w8, [x8, #580]
  210238: 29 49 42 b9   ldr     w9, [x9, #584]
  21023c: 20 01 08 0b   add     w0, w9, w8
  210240: c0 03 5f d6   ret

To obtain the addresses of a and b, we need to have states, which can be in MCInstrAnalysis itself.
llvm-objdump output is a disassembly dead listing. It is not a recursive disassembler and there is no basic block information.
So something may be fundamentally difficult to do, e.g. we may not reliably clear states when a new instruction is at the start of a new basic block...

asb added a comment.Jan 13 2022, 3:24 AM

Thanks for the review @MaskRay, I had thought about options such as adding state to MCInstrAnalysis, but perhaps was too quick to dismiss it (obviously partly influenced by the fact that the current RISC-V backend doesn't seem to generate output where just checking instruction pairs doesn't work!). As you suggest, an issue will be around tracking/clearing state upon basic block boundaries, but perhaps a simple heuristic will work well enough.

So perhaps:

  • Keep the existing evaluateBranch interface (i.e. pass a single MCInst)
  • Add a reset() method to MCInstrAnalysis to allow users to reset state as desired
  • Adding state to RISCVMCInstrAnalysis, and having evaluateBranch manipulate it.
  • Have evaluateBranch reset the state whenever encountering a control flow instruction. This is imprecise - it will be overly conservative in some potential cases and too restrictive in others, but hopefully on real-world code it means simple cases are appropriately annotated, and there are few/no instances of confusing, incorrect output.

What do you think? (Especially on the last bulletpoint)?

MaskRay added a comment.Jan 13 2022, 11:09 AM
In D116677#3240206, @asb wrote:

Thanks for the review @MaskRay, I had thought about options such as adding state to MCInstrAnalysis, but perhaps was too quick to dismiss it (obviously partly influenced by the fact that the current RISC-V backend doesn't seem to generate output where just checking instruction pairs doesn't work!). As you suggest, an issue will be around tracking/clearing state upon basic block boundaries, but perhaps a simple heuristic will work well enough.

So perhaps:

  • Keep the existing evaluateBranch interface (i.e. pass a single MCInst)
  • Add a reset() method to MCInstrAnalysis to allow users to reset state as desired
  • Adding state to RISCVMCInstrAnalysis, and having evaluateBranch manipulate it.
  • Have evaluateBranch reset the state whenever encountering a control flow instruction. This is imprecise - it will be overly conservative in some potential cases and too restrictive in others, but hopefully on real-world code it means simple cases are appropriately annotated, and there are few/no instances of confusing, incorrect output.

What do you think? (Especially on the last bulletpoint)?

Sounds good!

MaskRay mentioned this in D117447: [llvm-objdump] Annotate symbol names under `--symbolize-operands`..Jan 18 2022, 10:18 AM
jobnoorman mentioned this in D159114: [llvm-objdump][RISCV] Print target of auipc+jalr calls.Sep 6 2023, 6:48 AM
jobnoorman added a subscriber: jobnoorman.
In D116677#3241354, @MaskRay wrote:
In D116677#3240206, @asb wrote:

Thanks for the review @MaskRay, I had thought about options such as adding state to MCInstrAnalysis, but perhaps was too quick to dismiss it (obviously partly influenced by the fact that the current RISC-V backend doesn't seem to generate output where just checking instruction pairs doesn't work!). As you suggest, an issue will be around tracking/clearing state upon basic block boundaries, but perhaps a simple heuristic will work well enough.

So perhaps:

  • Keep the existing evaluateBranch interface (i.e. pass a single MCInst)
  • Add a reset() method to MCInstrAnalysis to allow users to reset state as desired
  • Adding state to RISCVMCInstrAnalysis, and having evaluateBranch manipulate it.
  • Have evaluateBranch reset the state whenever encountering a control flow instruction. This is imprecise - it will be overly conservative in some potential cases and too restrictive in others, but hopefully on real-world code it means simple cases are appropriately annotated, and there are few/no instances of confusing, incorrect output.

What do you think? (Especially on the last bulletpoint)?

Sounds good!

I've opened #65479 to implement this state idea and #65480 to implement it for auipc+jalr on RISC-V.

Herald added a project: Restricted Project. · View Herald TranscriptSep 6 2023, 6:49 AM
Herald added subscribers: wangpc, luke, wingo and 3 others. · View Herald Transcript

Revision Contents

PathSize
llvm/
include/
llvm/
MC/
11 lines
lib/
MC/
5 lines
Target/
AArch64/
MCTargetDesc/
3 lines
AMDGPU/
MCTargetDesc/
3 lines
ARM/
MCTargetDesc/
3 lines
BPF/
MCTargetDesc/
3 lines
Hexagon/
MCTargetDesc/
5 lines
Lanai/
MCTargetDesc/
3 lines
Mips/
MCTargetDesc/
3 lines
PowerPC/
MCTargetDesc/
3 lines
RISCV/
MCTargetDesc/
3 lines
X86/
MCTargetDesc/
2 lines
2 lines
9 lines
tools/
llvm-cfi-verify/
lib/
13 lines
7 lines
llvm-objdump/
19 lines
sancov/
3 lines

Diff 397635

llvm/include/llvm/MC/MCInstrAnalysis.h

Show First 20 LinesShow All 141 Lines▼ Show 20 Linespublic:
/// elimination cannot specify the same register for both source and /// elimination cannot specify the same register for both source and
/// destination. /// destination.
virtual bool isOptimizableRegisterMove(const MCInst &MI, virtual bool isOptimizableRegisterMove(const MCInst &MI,
unsigned CPUID) const { unsigned CPUID) const {
return false; return false;
} }
/// Given a branch instruction try to get the address the branch /// Given a branch instruction try to get the address the branch
/// targets. Return true on success, and the address in Target. /// targets. Some callers may pass PreviousInst, which (if present) will be
virtual bool /// used on targets that use two-instruction branch sequences. Return true
evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, /// on success, and the address in Target.
virtual bool evaluateBranch(const MCInst &Inst,
const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const; uint64_t &Target) const;
/// Given an instruction tries to get the address of a memory operand. Returns /// Given an instruction tries to get the address of a memory operand. Returns
/// the address on success. /// the address on success.
virtual Optional<uint64_t> virtual Optional<uint64_t>
evaluateMemoryOperandAddress(const MCInst &Inst, const MCSubtargetInfo *STI, evaluateMemoryOperandAddress(const MCInst &Inst, const MCSubtargetInfo *STI,
uint64_t Addr, uint64_t Size) const; uint64_t Addr, uint64_t Size) const;
/// Given an instruction with a memory operand that could require relocation, /// Given an instruction with a memory operand that could require relocation,
Show All 15 Lines

llvm/lib/MC/MCInstrAnalysis.cpp

Show All 17 Lines
bool MCInstrAnalysis::clearsSuperRegisters(const MCRegisterInfo &MRI, bool MCInstrAnalysis::clearsSuperRegisters(const MCRegisterInfo &MRI,
const MCInst &Inst, const MCInst &Inst,
APInt &Writes) const { APInt &Writes) const {
Writes.clearAllBits(); Writes.clearAllBits();
return false; return false;
} }
bool MCInstrAnalysis::evaluateBranch(const MCInst & /*Inst*/, uint64_t /*Addr*/, bool MCInstrAnalysis::evaluateBranch(const MCInst & /*Inst*/,
uint64_t /*Size*/, const Optional<MCInst> & /*PreviousInst*/,
uint64_t /*Addr*/, uint64_t /*Size*/,
uint64_t & /*Target*/) const { uint64_t & /*Target*/) const {
return false; return false;
} }
Optional<uint64_t> MCInstrAnalysis::evaluateMemoryOperandAddress( Optional<uint64_t> MCInstrAnalysis::evaluateMemoryOperandAddress(
const MCInst &Inst, const MCSubtargetInfo *STI, uint64_t Addr, const MCInst &Inst, const MCSubtargetInfo *STI, uint64_t Addr,
uint64_t Size) const { uint64_t Size) const {
return None; return None;
} }
Optional<uint64_t> Optional<uint64_t>
MCInstrAnalysis::getMemoryOperandRelocationOffset(const MCInst &Inst, MCInstrAnalysis::getMemoryOperandRelocationOffset(const MCInst &Inst,
uint64_t Size) const { uint64_t Size) const {
return None; return None;
} }

llvm/lib/Target/AArch64/MCTargetDesc/AArch64MCTargetDesc.cpp

Show First 20 LinesShow All 316 Lines▼ Show 20 Lines
} }
namespace { namespace {
class AArch64MCInstrAnalysis : public MCInstrAnalysis { class AArch64MCInstrAnalysis : public MCInstrAnalysis {
public: public:
AArch64MCInstrAnalysis(const MCInstrInfo *Info) : MCInstrAnalysis(Info) {} AArch64MCInstrAnalysis(const MCInstrInfo *Info) : MCInstrAnalysis(Info) {}
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override { uint64_t &Target) const override {
// Search for a PC-relative argument. // Search for a PC-relative argument.
// This will handle instructions like bcc (where the first argument is the // This will handle instructions like bcc (where the first argument is the
// condition code) and cbz (where it is a register). // condition code) and cbz (where it is a register).
const auto &Desc = Info->get(Inst.getOpcode()); const auto &Desc = Info->get(Inst.getOpcode());
for (unsigned i = 0, e = Inst.getNumOperands(); i != e; i++) { for (unsigned i = 0, e = Inst.getNumOperands(); i != e; i++) {
if (Desc.OpInfo[i].OperandType == MCOI::OPERAND_PCREL) { if (Desc.OpInfo[i].OperandType == MCOI::OPERAND_PCREL) {
int64_t Imm = Inst.getOperand(i).getImm() * 4; int64_t Imm = Inst.getOperand(i).getImm() * 4;
▲ Show 20 LinesShow All 93 LinesShow Last 20 Lines

llvm/lib/Target/AMDGPU/MCTargetDesc/AMDGPUMCTargetDesc.cpp

Show First 20 LinesShow All 112 Lines▼ Show 20 Lines
namespace { namespace {
class AMDGPUMCInstrAnalysis : public MCInstrAnalysis { class AMDGPUMCInstrAnalysis : public MCInstrAnalysis {
public: public:
explicit AMDGPUMCInstrAnalysis(const MCInstrInfo *Info) explicit AMDGPUMCInstrAnalysis(const MCInstrInfo *Info)
: MCInstrAnalysis(Info) {} : MCInstrAnalysis(Info) {}
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override { uint64_t &Target) const override {
if (Inst.getNumOperands() == 0 || !Inst.getOperand(0).isImm() || if (Inst.getNumOperands() == 0 || !Inst.getOperand(0).isImm() ||
Info->get(Inst.getOpcode()).OpInfo[0].OperandType != Info->get(Inst.getOpcode()).OpInfo[0].OperandType !=
MCOI::OPERAND_PCREL) MCOI::OPERAND_PCREL)
return false; return false;
int64_t Imm = Inst.getOperand(0).getImm(); int64_t Imm = Inst.getOperand(0).getImm();
// Our branches take a simm16, but we need two extra bits to account for // Our branches take a simm16, but we need two extra bits to account for
▲ Show 20 LinesShow All 43 LinesShow Last 20 Lines

llvm/lib/Target/ARM/MCTargetDesc/ARMMCTargetDesc.cpp

Show First 20 LinesShow All 420 Lines▼ Show 20 Linespublic:
bool isConditionalBranch(const MCInst &Inst) const override { bool isConditionalBranch(const MCInst &Inst) const override {
// BCCs with the "always" predicate are unconditional branches. // BCCs with the "always" predicate are unconditional branches.
if (Inst.getOpcode() == ARM::Bcc && Inst.getOperand(1).getImm()==ARMCC::AL) if (Inst.getOpcode() == ARM::Bcc && Inst.getOperand(1).getImm()==ARMCC::AL)
return false; return false;
return MCInstrAnalysis::isConditionalBranch(Inst); return MCInstrAnalysis::isConditionalBranch(Inst);
} }
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override { uint64_t &Target) const override {
const MCInstrDesc &Desc = Info->get(Inst.getOpcode()); const MCInstrDesc &Desc = Info->get(Inst.getOpcode());
// Find the PC-relative immediate operand in the instruction. // Find the PC-relative immediate operand in the instruction.
for (unsigned OpNum = 0; OpNum < Desc.getNumOperands(); ++OpNum) { for (unsigned OpNum = 0; OpNum < Desc.getNumOperands(); ++OpNum) {
if (Inst.getOperand(OpNum).isImm() && if (Inst.getOperand(OpNum).isImm() &&
Desc.OpInfo[OpNum].OperandType == MCOI::OPERAND_PCREL) { Desc.OpInfo[OpNum].OperandType == MCOI::OPERAND_PCREL) {
int64_t Imm = Inst.getOperand(OpNum).getImm(); int64_t Imm = Inst.getOperand(OpNum).getImm();
▲ Show 20 LinesShow All 267 LinesShow Last 20 Lines

llvm/lib/Target/BPF/MCTargetDesc/BPFMCTargetDesc.cpp

Show First 20 LinesShow All 69 Lines▼ Show 20 Lines
namespace { namespace {
class BPFMCInstrAnalysis : public MCInstrAnalysis { class BPFMCInstrAnalysis : public MCInstrAnalysis {
public: public:
explicit BPFMCInstrAnalysis(const MCInstrInfo *Info) explicit BPFMCInstrAnalysis(const MCInstrInfo *Info)
: MCInstrAnalysis(Info) {} : MCInstrAnalysis(Info) {}
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override { uint64_t &Target) const override {
// The target is the 3rd operand of cond inst and the 1st of uncond inst. // The target is the 3rd operand of cond inst and the 1st of uncond inst.
int16_t Imm; int16_t Imm;
if (isConditionalBranch(Inst)) { if (isConditionalBranch(Inst)) {
Imm = Inst.getOperand(2).getImm(); Imm = Inst.getOperand(2).getImm();
} else if (isUnconditionalBranch(Inst)) } else if (isUnconditionalBranch(Inst))
Imm = Inst.getOperand(0).getImm(); Imm = Inst.getOperand(0).getImm();
else else
▲ Show 20 LinesShow All 64 LinesShow Last 20 Lines

llvm/lib/Target/Hexagon/MCTargetDesc/HexagonMCTargetDesc.cpp

Show First 20 LinesShow All 582 Lines▼ Show 20 Lines bool isUnconditionalBranch(MCInst const &Inst) const override {
return MCInstrAnalysis::isUnconditionalBranch(Inst); return MCInstrAnalysis::isUnconditionalBranch(Inst);
} }
bool isConditionalBranch(MCInst const &Inst) const override { bool isConditionalBranch(MCInst const &Inst) const override {
//assert(!HexagonMCInstrInfo::isBundle(Inst)); //assert(!HexagonMCInstrInfo::isBundle(Inst));
return MCInstrAnalysis::isConditionalBranch(Inst); return MCInstrAnalysis::isConditionalBranch(Inst);
} }
bool evaluateBranch(MCInst const &Inst, uint64_t Addr, bool evaluateBranch(MCInst const &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Size, uint64_t &Target) const override { uint64_t Addr, uint64_t Size,
uint64_t &Target) const override {
if (!(isCall(Inst) || isUnconditionalBranch(Inst) || if (!(isCall(Inst) || isUnconditionalBranch(Inst) ||
isConditionalBranch(Inst))) isConditionalBranch(Inst)))
return false; return false;
//assert(!HexagonMCInstrInfo::isBundle(Inst)); //assert(!HexagonMCInstrInfo::isBundle(Inst));
if(!HexagonMCInstrInfo::isExtendable(*Info, Inst)) if(!HexagonMCInstrInfo::isExtendable(*Info, Inst))
return false; return false;
auto const &Extended(HexagonMCInstrInfo::getExtendableOperand(*Info, Inst)); auto const &Extended(HexagonMCInstrInfo::getExtendableOperand(*Info, Inst));
▲ Show 20 LinesShow All 60 LinesShow Last 20 Lines

llvm/lib/Target/Lanai/MCTargetDesc/LanaiMCTargetDesc.cpp

Show First 20 LinesShow All 87 Lines▼ Show 20 Lines
namespace { namespace {
class LanaiMCInstrAnalysis : public MCInstrAnalysis { class LanaiMCInstrAnalysis : public MCInstrAnalysis {
public: public:
explicit LanaiMCInstrAnalysis(const MCInstrInfo *Info) explicit LanaiMCInstrAnalysis(const MCInstrInfo *Info)
: MCInstrAnalysis(Info) {} : MCInstrAnalysis(Info) {}
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override { uint64_t &Target) const override {
if (Inst.getNumOperands() == 0) if (Inst.getNumOperands() == 0)
return false; return false;
if (!isConditionalBranch(Inst) && !isUnconditionalBranch(Inst) && if (!isConditionalBranch(Inst) && !isUnconditionalBranch(Inst) &&
!isCall(Inst)) !isCall(Inst))
return false; return false;
if (Info->get(Inst.getOpcode()).OpInfo[0].OperandType == if (Info->get(Inst.getOpcode()).OpInfo[0].OperandType ==
▲ Show 20 LinesShow All 63 LinesShow Last 20 Lines

llvm/lib/Target/Mips/MCTargetDesc/MipsMCTargetDesc.cpp

Show First 20 LinesShow All 131 Lines▼ Show 20 Lines
} }
namespace { namespace {
class MipsMCInstrAnalysis : public MCInstrAnalysis { class MipsMCInstrAnalysis : public MCInstrAnalysis {
public: public:
MipsMCInstrAnalysis(const MCInstrInfo *Info) : MCInstrAnalysis(Info) {} MipsMCInstrAnalysis(const MCInstrInfo *Info) : MCInstrAnalysis(Info) {}
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override { uint64_t &Target) const override {
unsigned NumOps = Inst.getNumOperands(); unsigned NumOps = Inst.getNumOperands();
if (NumOps == 0) if (NumOps == 0)
return false; return false;
switch (Info->get(Inst.getOpcode()).OpInfo[NumOps - 1].OperandType) { switch (Info->get(Inst.getOpcode()).OpInfo[NumOps - 1].OperandType) {
case MCOI::OPERAND_UNKNOWN: case MCOI::OPERAND_UNKNOWN:
case MCOI::OPERAND_IMMEDIATE: { case MCOI::OPERAND_IMMEDIATE: {
// j, jal, jalx, jals // j, jal, jalx, jals
▲ Show 20 LinesShow All 64 LinesShow Last 20 Lines

llvm/lib/Target/PowerPC/MCTargetDesc/PPCMCTargetDesc.cpp

Show First 20 LinesShow All 370 Lines▼ Show 20 Lines
namespace { namespace {
class PPCMCInstrAnalysis : public MCInstrAnalysis { class PPCMCInstrAnalysis : public MCInstrAnalysis {
public: public:
explicit PPCMCInstrAnalysis(const MCInstrInfo *Info) explicit PPCMCInstrAnalysis(const MCInstrInfo *Info)
: MCInstrAnalysis(Info) {} : MCInstrAnalysis(Info) {}
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override { uint64_t &Target) const override {
unsigned NumOps = Inst.getNumOperands(); unsigned NumOps = Inst.getNumOperands();
if (NumOps == 0 || if (NumOps == 0 ||
Info->get(Inst.getOpcode()).OpInfo[NumOps - 1].OperandType != Info->get(Inst.getOpcode()).OpInfo[NumOps - 1].OperandType !=
MCOI::OPERAND_PCREL) MCOI::OPERAND_PCREL)
return false; return false;
Target = Addr + Inst.getOperand(NumOps - 1).getImm() * Size; Target = Addr + Inst.getOperand(NumOps - 1).getImm() * Size;
return true; return true;
▲ Show 20 LinesShow All 50 LinesShow Last 20 Lines

llvm/lib/Target/RISCV/MCTargetDesc/RISCVMCTargetDesc.cpp

Show First 20 LinesShow All 113 Lines▼ Show 20 Lines
namespace { namespace {
class RISCVMCInstrAnalysis : public MCInstrAnalysis { class RISCVMCInstrAnalysis : public MCInstrAnalysis {
public: public:
explicit RISCVMCInstrAnalysis(const MCInstrInfo *Info) explicit RISCVMCInstrAnalysis(const MCInstrInfo *Info)
: MCInstrAnalysis(Info) {} : MCInstrAnalysis(Info) {}
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override { uint64_t &Target) const override {
if (isConditionalBranch(Inst)) { if (isConditionalBranch(Inst)) {
int64_t Imm; int64_t Imm;
if (Size == 2) if (Size == 2)
Imm = Inst.getOperand(1).getImm(); Imm = Inst.getOperand(1).getImm();
else else
Imm = Inst.getOperand(2).getImm(); Imm = Inst.getOperand(2).getImm();
Target = Addr + Imm; Target = Addr + Imm;
▲ Show 20 LinesShow All 56 LinesShow Last 20 Lines

llvm/lib/Target/X86/MCTargetDesc/X86ATTInstPrinter.cpp

Show First 20 LinesShow All 411 Lines▼ Show 20 Lines
} }
void X86ATTInstPrinter::printMemReference(const MCInst *MI, unsigned Op, void X86ATTInstPrinter::printMemReference(const MCInst *MI, unsigned Op,
raw_ostream &O) { raw_ostream &O) {
// Do not print the exact form of the memory operand if it references a known // Do not print the exact form of the memory operand if it references a known
// binary object. // binary object.
if (SymbolizeOperands && MIA) { if (SymbolizeOperands && MIA) {
uint64_t Target; uint64_t Target;
if (MIA->evaluateBranch(*MI, 0, 0, Target)) if (MIA->evaluateBranch(*MI, Optional<MCInst>(), 0, 0, Target))
return; return;
if (MIA->evaluateMemoryOperandAddress(*MI, /*STI=*/nullptr, 0, 0)) if (MIA->evaluateMemoryOperandAddress(*MI, /*STI=*/nullptr, 0, 0))
return; return;
} }
const MCOperand &BaseReg = MI->getOperand(Op + X86::AddrBaseReg); const MCOperand &BaseReg = MI->getOperand(Op + X86::AddrBaseReg);
const MCOperand &IndexReg = MI->getOperand(Op + X86::AddrIndexReg); const MCOperand &IndexReg = MI->getOperand(Op + X86::AddrIndexReg);
const MCOperand &DispSpec = MI->getOperand(Op + X86::AddrDisp); const MCOperand &DispSpec = MI->getOperand(Op + X86::AddrDisp);
▲ Show 20 LinesShow All 98 LinesShow Last 20 Lines

llvm/lib/Target/X86/MCTargetDesc/X86IntelInstPrinter.cpp

Show First 20 LinesShow All 369 Lines▼ Show 20 Lines
} }
void X86IntelInstPrinter::printMemReference(const MCInst *MI, unsigned Op, void X86IntelInstPrinter::printMemReference(const MCInst *MI, unsigned Op,
raw_ostream &O) { raw_ostream &O) {
// Do not print the exact form of the memory operand if it references a known // Do not print the exact form of the memory operand if it references a known
// binary object. // binary object.
if (SymbolizeOperands && MIA) { if (SymbolizeOperands && MIA) {
uint64_t Target; uint64_t Target;
if (MIA->evaluateBranch(*MI, 0, 0, Target)) if (MIA->evaluateBranch(*MI, Optional<MCInst>(), 0, 0, Target))
return; return;
if (MIA->evaluateMemoryOperandAddress(*MI, /*STI=*/nullptr, 0, 0)) if (MIA->evaluateMemoryOperandAddress(*MI, /*STI=*/nullptr, 0, 0))
return; return;
} }
const MCOperand &BaseReg = MI->getOperand(Op+X86::AddrBaseReg); const MCOperand &BaseReg = MI->getOperand(Op+X86::AddrBaseReg);
unsigned ScaleVal = MI->getOperand(Op+X86::AddrScaleAmt).getImm(); unsigned ScaleVal = MI->getOperand(Op+X86::AddrScaleAmt).getImm();
const MCOperand &IndexReg = MI->getOperand(Op+X86::AddrIndexReg); const MCOperand &IndexReg = MI->getOperand(Op+X86::AddrIndexReg);
const MCOperand &DispSpec = MI->getOperand(Op+X86::AddrDisp); const MCOperand &DispSpec = MI->getOperand(Op+X86::AddrDisp);
▲ Show 20 LinesShow All 96 LinesShow Last 20 Lines

llvm/lib/Target/X86/MCTargetDesc/X86MCTargetDesc.cpp

Show First 20 LinesShow All 396 Lines▼ Show 20 Lines#include "X86GenSubtargetInfo.inc"
bool clearsSuperRegisters(const MCRegisterInfo &MRI, const MCInst &Inst, bool clearsSuperRegisters(const MCRegisterInfo &MRI, const MCInst &Inst,
APInt &Mask) const override; APInt &Mask) const override;
std::vector<std::pair<uint64_t, uint64_t>> std::vector<std::pair<uint64_t, uint64_t>>
findPltEntries(uint64_t PltSectionVA, ArrayRef<uint8_t> PltContents, findPltEntries(uint64_t PltSectionVA, ArrayRef<uint8_t> PltContents,
uint64_t GotSectionVA, uint64_t GotSectionVA,
const Triple &TargetTriple) const override; const Triple &TargetTriple) const override;
bool evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, bool evaluateBranch(const MCInst &Inst, const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const override; uint64_t &Target) const override;
Optional<uint64_t> evaluateMemoryOperandAddress(const MCInst &Inst, Optional<uint64_t> evaluateMemoryOperandAddress(const MCInst &Inst,
const MCSubtargetInfo *STI, const MCSubtargetInfo *STI,
uint64_t Addr, uint64_t Addr,
uint64_t Size) const override; uint64_t Size) const override;
Optional<uint64_t> Optional<uint64_t>
getMemoryOperandRelocationOffset(const MCInst &Inst, getMemoryOperandRelocationOffset(const MCInst &Inst,
uint64_t Size) const override; uint64_t Size) const override;
▲ Show 20 LinesShow All 107 Lines▼ Show 20 Lines case Triple::x86:
return findX86PltEntries(PltSectionVA, PltContents, GotPltSectionVA); return findX86PltEntries(PltSectionVA, PltContents, GotPltSectionVA);
case Triple::x86_64: case Triple::x86_64:
return findX86_64PltEntries(PltSectionVA, PltContents); return findX86_64PltEntries(PltSectionVA, PltContents);
default: default:
return {}; return {};
} }
} }
bool X86MCInstrAnalysis::evaluateBranch(const MCInst &Inst, uint64_t Addr, bool X86MCInstrAnalysis::evaluateBranch(const MCInst &Inst,
uint64_t Size, uint64_t &Target) const { const Optional<MCInst> &PreviousInst,
uint64_t Addr, uint64_t Size,
uint64_t &Target) const {
if (Inst.getNumOperands() == 0 || if (Inst.getNumOperands() == 0 ||
Info->get(Inst.getOpcode()).OpInfo[0].OperandType != MCOI::OPERAND_PCREL) Info->get(Inst.getOpcode()).OpInfo[0].OperandType != MCOI::OPERAND_PCREL)
return false; return false;
Target = Addr + Size + Inst.getOperand(0).getImm(); Target = Addr + Size + Inst.getOperand(0).getImm();
return true; return true;
} }
Optional<uint64_t> X86MCInstrAnalysis::evaluateMemoryOperandAddress( Optional<uint64_t> X86MCInstrAnalysis::evaluateMemoryOperandAddress(
▲ Show 20 LinesShow All 281 LinesShow Last 20 Lines

llvm/tools/llvm-cfi-verify/lib/FileAnalysis.cpp

Show First 20 LinesShow All 169 Lines▼ Show 20 Linesbool FileAnalysis::isCFITrap(const Instr &InstrMeta) const {
return InstrDesc.isTrap() || willTrapOnCFIViolation(InstrMeta); return InstrDesc.isTrap() || willTrapOnCFIViolation(InstrMeta);
} }
bool FileAnalysis::willTrapOnCFIViolation(const Instr &InstrMeta) const { bool FileAnalysis::willTrapOnCFIViolation(const Instr &InstrMeta) const {
const auto &InstrDesc = MII->get(InstrMeta.Instruction.getOpcode()); const auto &InstrDesc = MII->get(InstrMeta.Instruction.getOpcode());
if (!InstrDesc.isCall()) if (!InstrDesc.isCall())
return false; return false;
uint64_t Target; uint64_t Target;
if (!MIA->evaluateBranch(InstrMeta.Instruction, InstrMeta.VMAddress, if (!MIA->evaluateBranch(InstrMeta.Instruction, Optional<MCInst>(),
InstrMeta.InstructionSize, Target)) InstrMeta.VMAddress, InstrMeta.InstructionSize,
Target))
return false; return false;
return TrapOnFailFunctionAddresses.contains(Target); return TrapOnFailFunctionAddresses.contains(Target);
} }
bool FileAnalysis::canFallThrough(const Instr &InstrMeta) const { bool FileAnalysis::canFallThrough(const Instr &InstrMeta) const {
if (!InstrMeta.Valid) if (!InstrMeta.Valid)
return false; return false;
Show All 17 LinesFileAnalysis::getDefiniteNextInstruction(const Instr &InstrMeta) const {
const auto &InstrDesc = MII->get(InstrMeta.Instruction.getOpcode()); const auto &InstrDesc = MII->get(InstrMeta.Instruction.getOpcode());
const Instr *NextMetaPtr; const Instr *NextMetaPtr;
if (InstrDesc.mayAffectControlFlow(InstrMeta.Instruction, *RegisterInfo)) { if (InstrDesc.mayAffectControlFlow(InstrMeta.Instruction, *RegisterInfo)) {
if (InstrDesc.isConditionalBranch()) if (InstrDesc.isConditionalBranch())
return nullptr; return nullptr;
uint64_t Target; uint64_t Target;
if (!MIA->evaluateBranch(InstrMeta.Instruction, InstrMeta.VMAddress, if (!MIA->evaluateBranch(InstrMeta.Instruction, Optional<MCInst>(),
InstrMeta.InstructionSize, Target)) InstrMeta.VMAddress, InstrMeta.InstructionSize,
Target))
return nullptr; return nullptr;
NextMetaPtr = getInstruction(Target); NextMetaPtr = getInstruction(Target);
} else { } else {
NextMetaPtr = NextMetaPtr =
getInstruction(InstrMeta.VMAddress + InstrMeta.InstructionSize); getInstruction(InstrMeta.VMAddress + InstrMeta.InstructionSize);
} }
▲ Show 20 LinesShow All 276 Lines▼ Show 20 Lines for (uint64_t Byte = 0; Byte < SectionBytes.size();) {
// Skip additional parsing for instructions that do not affect the control // Skip additional parsing for instructions that do not affect the control
// flow. // flow.
const auto &InstrDesc = MII->get(Instruction.getOpcode()); const auto &InstrDesc = MII->get(Instruction.getOpcode());
if (!InstrDesc.mayAffectControlFlow(Instruction, *RegisterInfo)) if (!InstrDesc.mayAffectControlFlow(Instruction, *RegisterInfo))
continue; continue;
uint64_t Target; uint64_t Target;
if (MIA->evaluateBranch(Instruction, VMAddress, InstructionSize, Target)) { if (MIA->evaluateBranch(Instruction, Optional<MCInst>(), VMAddress,
InstructionSize, Target)) {
// If the target can be evaluated, it's not indirect. // If the target can be evaluated, it's not indirect.
StaticBranchTargetings[Target].push_back(VMAddress); StaticBranchTargetings[Target].push_back(VMAddress);
continue; continue;
} }
if (!usesRegisterOperand(InstrMeta)) if (!usesRegisterOperand(InstrMeta))
continue; continue;
▲ Show 20 LinesShow All 84 LinesShow Last 20 Lines

llvm/tools/llvm-cfi-verify/lib/GraphBuilder.cpp

Show First 20 LinesShow All 131 Lines▼ Show 20 Lines if (BranchNode.Target && !BranchNode.Fallthrough) {
NextAddress = NextMetaPtr->VMAddress; NextAddress = NextMetaPtr->VMAddress;
BranchNode.Fallthrough = BranchNode.Fallthrough =
NextMetaPtr->VMAddress; // Add the new node to the branch head. NextMetaPtr->VMAddress; // Add the new node to the branch head.
} else if (BranchNode.Fallthrough && !BranchNode.Target) { } else if (BranchNode.Fallthrough && !BranchNode.Target) {
// We already know the fallthrough, evaluate the target. // We already know the fallthrough, evaluate the target.
uint64_t Target; uint64_t Target;
if (!Analysis.getMCInstrAnalysis()->evaluateBranch( if (!Analysis.getMCInstrAnalysis()->evaluateBranch(
BranchInstrMeta.Instruction, BranchInstrMeta.VMAddress, BranchInstrMeta.Instruction, Optional<MCInst>(),
BranchInstrMeta.InstructionSize, Target)) { BranchInstrMeta.VMAddress, BranchInstrMeta.InstructionSize,
Target)) {
errs() << "Failed to get branch target for conditional branch at address " errs() << "Failed to get branch target for conditional branch at address "
<< format_hex(BranchInstrMeta.VMAddress, 2) << ".\n"; << format_hex(BranchInstrMeta.VMAddress, 2) << ".\n";
return; return;
} }
// Resolve the meta pointer for the target of this branch. // Resolve the meta pointer for the target of this branch.
NextMetaPtr = Analysis.getInstruction(Target); NextMetaPtr = Analysis.getInstruction(Target);
if (!NextMetaPtr) { if (!NextMetaPtr) {
▲ Show 20 LinesShow All 99 Lines▼ Show 20 Lines if (ParentDesc.isCall()) {
Result.OrphanedNodes.push_back(ParentMeta.VMAddress); Result.OrphanedNodes.push_back(ParentMeta.VMAddress);
continue; continue;
} }
// Evaluate the branch target to ascertain whether this XRef is the result // Evaluate the branch target to ascertain whether this XRef is the result
// of a fallthrough or the target of a branch. // of a fallthrough or the target of a branch.
uint64_t BranchTarget; uint64_t BranchTarget;
if (!Analysis.getMCInstrAnalysis()->evaluateBranch( if (!Analysis.getMCInstrAnalysis()->evaluateBranch(
ParentMeta.Instruction, ParentMeta.VMAddress, ParentMeta.Instruction, Optional<MCInst>(), ParentMeta.VMAddress,
ParentMeta.InstructionSize, BranchTarget)) { ParentMeta.InstructionSize, BranchTarget)) {
errs() << "Failed to evaluate branch target for instruction at address " errs() << "Failed to evaluate branch target for instruction at address "
<< format_hex(ParentMeta.VMAddress, 2) << ".\n"; << format_hex(ParentMeta.VMAddress, 2) << ".\n";
Result.IntermediateNodes[ParentMeta.VMAddress] = Address; Result.IntermediateNodes[ParentMeta.VMAddress] = Address;
Result.OrphanedNodes.push_back(ParentMeta.VMAddress); Result.OrphanedNodes.push_back(ParentMeta.VMAddress);
continue; continue;
} }
▲ Show 20 LinesShow All 74 LinesShow Last 20 Lines

llvm/tools/llvm-objdump/llvm-objdump.cpp

Show First 20 LinesShow All 981 Lines▼ Show 20 LinescollectLocalBranchTargets(ArrayRef<uint8_t> Bytes, const MCInstrAnalysis *MIA,
if (!STI->getTargetTriple().isPPC() && !STI->getTargetTriple().isX86()) if (!STI->getTargetTriple().isPPC() && !STI->getTargetTriple().isX86())
return; return;
Labels.clear(); Labels.clear();
unsigned LabelCount = 0; unsigned LabelCount = 0;
Start += SectionAddr; Start += SectionAddr;
End += SectionAddr; End += SectionAddr;
uint64_t Index = Start; uint64_t Index = Start;
Optional<MCInst> PreviousInst;
while (Index < End) { while (Index < End) {
// Disassemble a real instruction and record function-local branch labels. // Disassemble a real instruction and record function-local branch labels.
MCInst Inst; MCInst Inst;
uint64_t Size; uint64_t Size;
bool Disassembled = DisAsm->getInstruction( bool Disassembled = DisAsm->getInstruction(
Inst, Size, Bytes.slice(Index - SectionAddr), Index, nulls()); Inst, Size, Bytes.slice(Index - SectionAddr), Index, nulls());
if (Size == 0) if (Size == 0)
Size = 1; Size = 1;
if (Disassembled && MIA) { if (Disassembled && MIA) {
uint64_t Target; uint64_t Target;
bool TargetKnown = MIA->evaluateBranch(Inst, Index, Size, Target); bool TargetKnown =
MIA->evaluateBranch(Inst, PreviousInst, Index, Size, Target);
// On PowerPC, if the address of a branch is the same as the target, it // On PowerPC, if the address of a branch is the same as the target, it
// means that it's a function call. Do not mark the label for this case. // means that it's a function call. Do not mark the label for this case.
if (TargetKnown && (Target >= Start && Target < End) && if (TargetKnown && (Target >= Start && Target < End) &&
!Labels.count(Target) && !Labels.count(Target) &&
!(STI->getTargetTriple().isPPC() && Target == Index)) !(STI->getTargetTriple().isPPC() && Target == Index))
Labels[Target] = ("L" + Twine(LabelCount++)).str(); Labels[Target] = ("L" + Twine(LabelCount++)).str();
} }
if (Disassembled)
PreviousInst = Inst;
else
PreviousInst.reset();
Index += Size; Index += Size;
} }
} }
// Create an MCSymbolizer for the target and add it to the MCDisassembler. // Create an MCSymbolizer for the target and add it to the MCDisassembler.
// This is currently only used on AMDGPU, and assumes the format of the // This is currently only used on AMDGPU, and assumes the format of the
// void * argument passed to AMDGPU's createMCSymbolizer. // void * argument passed to AMDGPU's createMCSymbolizer.
static void addSymbolizer( static void addSymbolizer(
▲ Show 20 LinesShow All 385 Lines▼ Show 20 Lines for (unsigned SI = 0, SE = Symbols.size(); SI != SE; ++SI) {
bool DumpARMELFData = false; bool DumpARMELFData = false;
formatted_raw_ostream FOS(outs()); formatted_raw_ostream FOS(outs());
std::unordered_map<uint64_t, std::string> AllLabels; std::unordered_map<uint64_t, std::string> AllLabels;
if (SymbolizeOperands) if (SymbolizeOperands)
collectLocalBranchTargets(Bytes, MIA, DisAsm, IP, PrimarySTI, collectLocalBranchTargets(Bytes, MIA, DisAsm, IP, PrimarySTI,
SectionAddr, Index, End, AllLabels); SectionAddr, Index, End, AllLabels);
Optional<MCInst> PreviousInst;
while (Index < End) { while (Index < End) {
// ARM and AArch64 ELF binaries can interleave data and text in the // ARM and AArch64 ELF binaries can interleave data and text in the
// same section. We rely on the markers introduced to understand what // same section. We rely on the markers introduced to understand what
// we need to dump. If the data marker is within a function, it is // we need to dump. If the data marker is within a function, it is
// denoted as a word/short etc. // denoted as a word/short etc.
if (CheckARMELFData) { if (CheckARMELFData) {
char Kind = getMappingSymbolKind(MappingSymbols, Index); char Kind = getMappingSymbolKind(MappingSymbols, Index);
DumpARMELFData = Kind == 'd'; DumpARMELFData = Kind == 'd';
▲ Show 20 LinesShow All 59 Lines▼ Show 20 Lines for (unsigned SI = 0, SE = Symbols.size(); SI != SE; ++SI) {
// If disassembly has failed, avoid analysing invalid/incomplete // If disassembly has failed, avoid analysing invalid/incomplete
// instruction information. Otherwise, try to resolve the target // instruction information. Otherwise, try to resolve the target
// address (jump target or memory operand address) and print it on the // address (jump target or memory operand address) and print it on the
// right of the instruction. // right of the instruction.
if (Disassembled && MIA) { if (Disassembled && MIA) {
// Branch targets are printed just after the instructions. // Branch targets are printed just after the instructions.
llvm::raw_ostream *TargetOS = &FOS; llvm::raw_ostream *TargetOS = &FOS;
uint64_t Target; uint64_t Target;
bool PrintTarget = bool PrintTarget = MIA->evaluateBranch(
MIA->evaluateBranch(Inst, SectionAddr + Index, Size, Target); Inst, PreviousInst, SectionAddr + Index, Size, Target);
if (!PrintTarget) if (!PrintTarget)
if (Optional<uint64_t> MaybeTarget = if (Optional<uint64_t> MaybeTarget =
MIA->evaluateMemoryOperandAddress( MIA->evaluateMemoryOperandAddress(
Inst, STI, SectionAddr + Index, Size)) { Inst, STI, SectionAddr + Index, Size)) {
Target = *MaybeTarget; Target = *MaybeTarget;
PrintTarget = true; PrintTarget = true;
// Do not print real address when symbolizing. // Do not print real address when symbolizing.
if (!SymbolizeOperands) { if (!SymbolizeOperands) {
▲ Show 20 LinesShow All 76 Lines▼ Show 20 Lines for (unsigned SI = 0, SE = Symbols.size(); SI != SE; ++SI) {
*TargetOS << " <" << AllLabels[Target] << ">"; *TargetOS << " <" << AllLabels[Target] << ">";
} }
// By convention, each record in the comment stream should be // By convention, each record in the comment stream should be
// terminated. // terminated.
if (TargetOS == &CommentStream) if (TargetOS == &CommentStream)
*TargetOS << "\n"; *TargetOS << "\n";
} }
} }
if (Disassembled)
PreviousInst = Inst;
else
PreviousInst.reset();
} }
assert(Ctx.getAsmInfo()); assert(Ctx.getAsmInfo());
emitPostInstructionInfo(FOS, *Ctx.getAsmInfo(), *STI, emitPostInstructionInfo(FOS, *Ctx.getAsmInfo(), *STI,
CommentStream.str(), LVP); CommentStream.str(), LVP);
Comments.clear(); Comments.clear();
// Hexagon does this in pretty printer // Hexagon does this in pretty printer
▲ Show 20 LinesShow All 1,189 LinesShow Last 20 Lines

llvm/tools/sancov/sancov.cpp

Show First 20 LinesShow All 762 Lines▼ Show 20 Lines for (uint64_t Index = 0, Size = 0; Index < Section.getSize();
Size = 1; Size = 1;
continue; continue;
} }
uint64_t Addr = Index + SectionAddr; uint64_t Addr = Index + SectionAddr;
// Sanitizer coverage uses the address of the next instruction - 1. // Sanitizer coverage uses the address of the next instruction - 1.
uint64_t CovPoint = getPreviousInstructionPc(Addr + Size, TheTriple); uint64_t CovPoint = getPreviousInstructionPc(Addr + Size, TheTriple);
uint64_t Target; uint64_t Target;
if (MIA->isCall(Inst) && if (MIA->isCall(Inst) &&
MIA->evaluateBranch(Inst, SectionAddr + Index, Size, Target) && MIA->evaluateBranch(Inst, Optional<MCInst>(), SectionAddr + Index,
Size, Target) &&
SanCovAddrs.find(Target) != SanCovAddrs.end()) SanCovAddrs.find(Target) != SanCovAddrs.end())
Addrs->insert(CovPoint); Addrs->insert(CovPoint);
} }
} }
} }
static void static void
visitObjectFiles(const object::Archive &A, visitObjectFiles(const object::Archive &A,
▲ Show 20 LinesShow All 415 LinesShow Last 20 Lines