diff --git a/llvm/include/llvm/Transforms/Instrumentation/AddressSanitizerCommon.h b/llvm/include/llvm/Transforms/Instrumentation/AddressSanitizerCommon.h --- a/llvm/include/llvm/Transforms/Instrumentation/AddressSanitizerCommon.h +++ b/llvm/include/llvm/Transforms/Instrumentation/AddressSanitizerCommon.h @@ -47,51 +47,6 @@ Value *getPtr() { return PtrUse->get(); } }; -// For an alloca valid between lifetime markers Start and Ends, call the -// Callback for all possible exits out of the lifetime in the containing -// function, which can return from the instructions in RetVec. -// -// Returns whether Ends covered all possible exits. If they did not, -// the caller should remove Ends to ensure that work done at the other -// exits does not happen outside of the lifetime. -template -bool forAllReachableExits(const DominatorTree &DT, const PostDominatorTree &PDT, - const Instruction *Start, - const SmallVectorImpl &Ends, - const SmallVectorImpl &RetVec, - F Callback) { - if (Ends.size() == 1 && PDT.dominates(Ends[0], Start)) { - Callback(Ends[0]); - return true; - } - SmallVector ReachableRetVec; - unsigned NumCoveredExits = 0; - for (auto *RI : RetVec) { - if (!isPotentiallyReachable(Start, RI, nullptr, &DT)) - continue; - ReachableRetVec.push_back(RI); - // TODO(fmayer): We don't support diamond shapes, where multiple lifetime - // ends together dominate the RI, but none of them does by itself. - // Check how often this happens and decide whether to support this here. - if (std::any_of(Ends.begin(), Ends.end(), - [&](Instruction *End) { return DT.dominates(End, RI); })) - ++NumCoveredExits; - } - // If there's a mix of covered and non-covered exits, just put the untag - // on exits, so we avoid the redundancy of untagging twice. - if (NumCoveredExits == ReachableRetVec.size()) { - for (auto *End : Ends) - Callback(End); - } else { - for (auto *RI : ReachableRetVec) - Callback(RI); - // We may have inserted untag outside of the lifetime interval. - // Signal the caller to remove the lifetime end call for this alloca. - return false; - } - return true; -} - // Get AddressSanitizer parameters. void getAddressSanitizerParams(const Triple &TargetTriple, int LongSize, bool IsKasan, uint64_t *ShadowBase, diff --git a/llvm/include/llvm/Transforms/Instrumentation/AddressSanitizerCommon.h b/llvm/include/llvm/Transforms/Instrumentation/StackTaggingSupport.h copy from llvm/include/llvm/Transforms/Instrumentation/AddressSanitizerCommon.h copy to llvm/include/llvm/Transforms/Instrumentation/StackTaggingSupport.h --- a/llvm/include/llvm/Transforms/Instrumentation/AddressSanitizerCommon.h +++ b/llvm/include/llvm/Transforms/Instrumentation/StackTaggingSupport.h @@ -1,17 +1,16 @@ -//===--------- Definition of the AddressSanitizer class ---------*- C++ -*-===// -// +//===- StackTaggingSupport.h - helpers for stack tagging implementations --===// // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // See https://llvm.org/LICENSE.txt for license information. // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // //===----------------------------------------------------------------------===// // -// This file declares common infrastructure for AddressSanitizer and -// HWAddressSanitizer. +// This file declares common infrastructure for HWAddressSanitizer and +// Aarch64StackTagging. // //===----------------------------------------------------------------------===// -#ifndef LLVM_TRANSFORMS_INSTRUMENTATION_ADDRESSSANITIZERCOMMON_H -#define LLVM_TRANSFORMS_INSTRUMENTATION_ADDRESSSANITIZERCOMMON_H +#ifndef LLVM_TRANSFORMS_INSTRUMENTATION_STACKTAGGINGSUPPORT_H +#define LLVM_TRANSFORMS_INSTRUMENTATION_STACKTAGGINGSUPPORT_H #include "llvm/Analysis/CFG.h" #include "llvm/Analysis/PostDominators.h" @@ -21,32 +20,6 @@ #include "llvm/IR/Module.h" namespace llvm { - -class InterestingMemoryOperand { -public: - Use *PtrUse; - bool IsWrite; - Type *OpType; - uint64_t TypeSize; - MaybeAlign Alignment; - // The mask Value, if we're looking at a masked load/store. - Value *MaybeMask; - - InterestingMemoryOperand(Instruction *I, unsigned OperandNo, bool IsWrite, - class Type *OpType, MaybeAlign Alignment, - Value *MaybeMask = nullptr) - : IsWrite(IsWrite), OpType(OpType), Alignment(Alignment), - MaybeMask(MaybeMask) { - const DataLayout &DL = I->getModule()->getDataLayout(); - TypeSize = DL.getTypeStoreSizeInBits(OpType); - PtrUse = &I->getOperandUse(OperandNo); - } - - Instruction *getInsn() { return cast(PtrUse->getUser()); } - - Value *getPtr() { return PtrUse->get(); } -}; - // For an alloca valid between lifetime markers Start and Ends, call the // Callback for all possible exits out of the lifetime in the containing // function, which can return from the instructions in RetVec. @@ -92,11 +65,35 @@ return true; } -// Get AddressSanitizer parameters. -void getAddressSanitizerParams(const Triple &TargetTriple, int LongSize, - bool IsKasan, uint64_t *ShadowBase, - int *MappingScale, bool *OrShadowOffset); +static bool +maybeReachableFromEachOther(const SmallVectorImpl &Insts, + const DominatorTree &DT, size_t MaxLifetimes) { + // If we have too many lifetime ends, give up, as the algorithm below is N^2. + if (Insts.size() > MaxLifetimes) + return true; + for (size_t I = 0; I < Insts.size(); ++I) { + for (size_t J = 0; J < Insts.size(); ++J) { + if (I == J) + continue; + if (isPotentiallyReachable(Insts[I], Insts[J], nullptr, &DT)) + return true; + } + } + return false; +} +static bool +isStandardLifetime(const SmallVectorImpl &LifetimeStart, + const SmallVectorImpl &LifetimeEnd, + const DominatorTree &DT, size_t MaxLifetimes) { + // An alloca that has exactly one start and end in every possible execution. + // If it has multiple ends, they have to be unreachable from each other, so + // at most one of them is actually used for each execution of the function. + return LifetimeStart.size() == 1 && + (LifetimeEnd.size() == 1 || + (LifetimeEnd.size() > 0 && + !maybeReachableFromEachOther(LifetimeEnd, DT, MaxLifetimes))); +} } // namespace llvm -#endif +#endif \ No newline at end of file diff --git a/llvm/lib/Target/AArch64/AArch64StackTagging.cpp b/llvm/lib/Target/AArch64/AArch64StackTagging.cpp --- a/llvm/lib/Target/AArch64/AArch64StackTagging.cpp +++ b/llvm/lib/Target/AArch64/AArch64StackTagging.cpp @@ -52,7 +52,7 @@ #include "llvm/Support/Casting.h" #include "llvm/Support/Debug.h" #include "llvm/Support/raw_ostream.h" -#include "llvm/Transforms/Instrumentation/AddressSanitizerCommon.h" +#include "llvm/Transforms/Instrumentation/StackTaggingSupport.h" #include "llvm/Transforms/Utils/Local.h" #include #include diff --git a/llvm/lib/Transforms/Instrumentation/HWAddressSanitizer.cpp b/llvm/lib/Transforms/Instrumentation/HWAddressSanitizer.cpp --- a/llvm/lib/Transforms/Instrumentation/HWAddressSanitizer.cpp +++ b/llvm/lib/Transforms/Instrumentation/HWAddressSanitizer.cpp @@ -52,6 +52,7 @@ #include "llvm/Support/raw_ostream.h" #include "llvm/Transforms/Instrumentation.h" #include "llvm/Transforms/Instrumentation/AddressSanitizerCommon.h" +#include "llvm/Transforms/Instrumentation/StackTaggingSupport.h" #include "llvm/Transforms/Utils/BasicBlockUtils.h" #include "llvm/Transforms/Utils/ModuleUtils.h" #include "llvm/Transforms/Utils/PromoteMemToReg.h" @@ -301,8 +302,6 @@ void tagAlloca(IRBuilder<> &IRB, AllocaInst *AI, Value *Tag, size_t Size); Value *tagPointer(IRBuilder<> &IRB, Type *Ty, Value *PtrLong, Value *Tag); Value *untagPointer(IRBuilder<> &IRB, Value *PtrLong); - static bool isStandardLifetime(const AllocaInfo &AllocaInfo, - const DominatorTree &DT); bool instrumentStack( bool ShouldDetectUseAfterScope, MapVector &AllocasToInstrument, @@ -1330,34 +1329,7 @@ return true; } -static bool -maybeReachableFromEachOther(const SmallVectorImpl &Insts, - const DominatorTree &DT) { - // If we have too many lifetime ends, give up, as the algorithm below is N^2. - if (Insts.size() > ClMaxLifetimes) - return true; - for (size_t I = 0; I < Insts.size(); ++I) { - for (size_t J = 0; J < Insts.size(); ++J) { - if (I == J) - continue; - if (isPotentiallyReachable(Insts[I], Insts[J], nullptr, &DT)) - return true; - } - } - return false; -} -// static -bool HWAddressSanitizer::isStandardLifetime(const AllocaInfo &AllocaInfo, - const DominatorTree &DT) { - // An alloca that has exactly one start and end in every possible execution. - // If it has multiple ends, they have to be unreachable from each other, so - // at most one of them is actually used for each execution of the function. - return AllocaInfo.LifetimeStart.size() == 1 && - (AllocaInfo.LifetimeEnd.size() == 1 || - (AllocaInfo.LifetimeEnd.size() > 0 && - !maybeReachableFromEachOther(AllocaInfo.LifetimeEnd, DT))); -} bool HWAddressSanitizer::instrumentStack( bool ShouldDetectUseAfterScope, @@ -1411,7 +1383,9 @@ tagAlloca(IRB, AI, UARTag, AlignedSize); }; bool StandardLifetime = - UnrecognizedLifetimes.empty() && isStandardLifetime(Info, GetDT()); + UnrecognizedLifetimes.empty() && + isStandardLifetime(Info.LifetimeStart, Info.LifetimeEnd, GetDT(), + ClMaxLifetimes); if (ShouldDetectUseAfterScope && StandardLifetime) { IntrinsicInst *Start = Info.LifetimeStart[0]; IRB.SetInsertPoint(Start->getNextNode());