This is an archive of the discontinued LLVM Phabricator instance.

Differential D133394

[sanitizers] Invalidate GlobalsAA
ClosedPublic

Authored by vitalybuka on Sep 6 2022, 7:23 PM.

Details

Reviewers
aeubanks
asbirlea
Commits
rG0f2f1c2be164: [sanitizers] Invalidate GlobalsAA
Summary

GlobalsAA is considered stateless as usually transformations do not introduce
new global accesses, and removed global access is not a problem for GlobalsAA
users.
Sanitizers introduce new global accesses:

  • Msan and Dfsan tracks origins and parameters with TLS, and to store stack origins.
    • Sancov uses global counters. HWAsan store tag state in TLS.
    • Asan modifies globals, but I am not sure if invalidation is required.

I see no evidence that TSan needs invalidation.

Diff Detail

Event Timeline

vitalybuka created this revision.Sep 6 2022, 7:23 PM
Herald added a project: Restricted Project. · View Herald TranscriptSep 6 2022, 7:23 PM
Herald added subscribers: Enna1, hiraditya. · View Herald Transcript
vitalybuka requested review of this revision.Sep 6 2022, 7:23 PM
Herald added a project: Restricted Project. · View Herald TranscriptSep 6 2022, 7:23 PM
Herald added a subscriber: llvm-commits. · View Herald Transcript
vitalybuka added reviewers: aeubanks, asbirlea.Sep 6 2022, 7:24 PM
Harbormaster completed remote builds in B185343: Diff 458346.Sep 6 2022, 8:00 PM
aeubanks added a comment.Sep 7 2022, 12:59 PM

Mentioning in the summary that GlobalsAA only expects simplification and therefore doesn't expect new globals (as I understand). Also that GlobalsAA is special in the way it's invalidated/updated.
I'd like somebody like @asbirlea to confirm this.

llvm/lib/Transforms/Instrumentation/DataFlowSanitizer.cpp
3374

adding comments here would be helpful

asbirlea added a comment.EditedSep 8 2022, 9:30 AM

Confirming this is necessary - the patch came after an offline discussion of the issue.
+1 to adding comments to explain why this is needed: GlobalsAA is considered stateless and does not get invalidated unless explicitly invalidated; PreservedAnalyses::none() is not enough. Sanitizers make changes that require GlobalsAA to be invalidated.

aeubanks added a comment.Sep 8 2022, 10:30 AM

also it would be nice to have some sort of check to detect this sort of issue with GlobalsAA and instrumentation passes, perhaps gated under expensive checks. haven't thought too hard on how that would work

vitalybuka edited the summary of this revision. (Show Details)Sep 8 2022, 11:24 AM
vitalybuka added a comment.Sep 8 2022, 11:26 AM
In D133394#3777688, @aeubanks wrote:

also it would be nice to have some sort of check to detect this sort of issue with GlobalsAA and instrumentation passes, perhaps gated under expensive checks. haven't thought too hard on how that would work

I assume not in this patch?

vitalybuka updated this revision to Diff 458810.Sep 8 2022, 11:26 AM

comments

aeubanks accepted this revision.Sep 8 2022, 11:35 AM
In D133394#3777909, @vitalybuka wrote:
In D133394#3777688, @aeubanks wrote:

also it would be nice to have some sort of check to detect this sort of issue with GlobalsAA and instrumentation passes, perhaps gated under expensive checks. haven't thought too hard on how that would work

I assume not in this patch?

yeah not here, I'm just randomly throwing out ideas

llvm/test/Instrumentation/MemorySanitizer/msan_invalidate.ll
8

if possible could you reduce this test case? e.g. dso_local/target datalayout/triple/lifetime/noundef

This revision is now accepted and ready to land.Sep 8 2022, 11:35 AM
Harbormaster completed remote builds in B185666: Diff 458810.Sep 8 2022, 12:14 PM
vitalybuka updated this revision to Diff 458840.Sep 8 2022, 1:18 PM

simplify tests

vitalybuka marked an inline comment as done.Sep 8 2022, 1:18 PM
vitalybuka marked an inline comment as done.
This revision was landed with ongoing or failed builds.Sep 8 2022, 2:01 PM
Closed by commit rG0f2f1c2be164: [sanitizers] Invalidate GlobalsAA (authored by vitalybuka). · Explain Why
This revision was automatically updated to reflect the committed changes.
vitalybuka added a commit: rG0f2f1c2be164: [sanitizers] Invalidate GlobalsAA.
Harbormaster completed remote builds in B185691: Diff 458840.Sep 8 2022, 2:04 PM
vitalybuka mentioned this in rG7dc073456721: [msan] Insert simplification passes after instrumentation.Sep 9 2022, 12:33 AM
vitalybuka mentioned this in D133537: [pipelines] Require GlobalsAA after sanitizers.Sep 12 2022, 3:42 PM

Revision Contents

PathSize
llvm/
lib/
Transforms/
Instrumentation/
11 lines
14 lines
13 lines
12 lines
13 lines
test/
Instrumentation/
MemorySanitizer/
26 lines
30 lines

Diff 458852

llvm/lib/Transforms/Instrumentation/AddressSanitizer.cpp

Show All 20 Lines
#include "llvm/ADT/DepthFirstIterator.h" #include "llvm/ADT/DepthFirstIterator.h"
#include "llvm/ADT/SmallPtrSet.h" #include "llvm/ADT/SmallPtrSet.h"
#include "llvm/ADT/SmallVector.h" #include "llvm/ADT/SmallVector.h"
#include "llvm/ADT/Statistic.h" #include "llvm/ADT/Statistic.h"
#include "llvm/ADT/StringExtras.h" #include "llvm/ADT/StringExtras.h"
#include "llvm/ADT/StringRef.h" #include "llvm/ADT/StringRef.h"
#include "llvm/ADT/Triple.h" #include "llvm/ADT/Triple.h"
#include "llvm/ADT/Twine.h" #include "llvm/ADT/Twine.h"
#include "llvm/Analysis/GlobalsModRef.h"
#include "llvm/Analysis/MemoryBuiltins.h" #include "llvm/Analysis/MemoryBuiltins.h"
#include "llvm/Analysis/StackSafetyAnalysis.h" #include "llvm/Analysis/StackSafetyAnalysis.h"
#include "llvm/Analysis/TargetLibraryInfo.h" #include "llvm/Analysis/TargetLibraryInfo.h"
#include "llvm/Analysis/ValueTracking.h" #include "llvm/Analysis/ValueTracking.h"
#include "llvm/BinaryFormat/MachO.h" #include "llvm/BinaryFormat/MachO.h"
#include "llvm/Demangle/Demangle.h" #include "llvm/Demangle/Demangle.h"
#include "llvm/IR/Argument.h" #include "llvm/IR/Argument.h"
#include "llvm/IR/Attributes.h" #include "llvm/IR/Attributes.h"
▲ Show 20 LinesShow All 1,101 Lines▼ Show 20 LinesPreservedAnalyses AddressSanitizerPass::run(Module &M,
for (Function &F : M) { for (Function &F : M) {
AddressSanitizer FunctionSanitizer(M, SSGI, Options.CompileKernel, AddressSanitizer FunctionSanitizer(M, SSGI, Options.CompileKernel,
Options.Recover, Options.UseAfterScope, Options.Recover, Options.UseAfterScope,
Options.UseAfterReturn); Options.UseAfterReturn);
const TargetLibraryInfo &TLI = FAM.getResult<TargetLibraryAnalysis>(F); const TargetLibraryInfo &TLI = FAM.getResult<TargetLibraryAnalysis>(F);
Modified |= FunctionSanitizer.instrumentFunction(F, &TLI); Modified |= FunctionSanitizer.instrumentFunction(F, &TLI);
} }
Modified |= ModuleSanitizer.instrumentModule(M); Modified |= ModuleSanitizer.instrumentModule(M);
return Modified ? PreservedAnalyses::none() : PreservedAnalyses::all(); if (!Modified)
return PreservedAnalyses::all();
PreservedAnalyses PA = PreservedAnalyses::none();
// GlobalsAA is considered stateless and does not get invalidated unless
// explicitly invalidated; PreservedAnalyses::none() is not enough. Sanitizers
// make changes that require GlobalsAA to be invalidated.
PA.abandon<GlobalsAA>();
return PA;
} }
static size_t TypeSizeToSizeIndex(uint32_t TypeSize) { static size_t TypeSizeToSizeIndex(uint32_t TypeSize) {
size_t Res = countTrailingZeros(TypeSize / 8); size_t Res = countTrailingZeros(TypeSize / 8);
assert(Res < kNumberOfAccessSizes); assert(Res < kNumberOfAccessSizes);
return Res; return Res;
} }
▲ Show 20 LinesShow All 2,292 LinesShow Last 20 Lines

llvm/lib/Transforms/Instrumentation/DataFlowSanitizer.cpp

Show First 20 LinesShow All 64 Lines▼ Show 20 Lines
#include "llvm/ADT/DepthFirstIterator.h" #include "llvm/ADT/DepthFirstIterator.h"
#include "llvm/ADT/None.h" #include "llvm/ADT/None.h"
#include "llvm/ADT/SmallPtrSet.h" #include "llvm/ADT/SmallPtrSet.h"
#include "llvm/ADT/SmallVector.h" #include "llvm/ADT/SmallVector.h"
#include "llvm/ADT/StringRef.h" #include "llvm/ADT/StringRef.h"
#include "llvm/ADT/StringSet.h" #include "llvm/ADT/StringSet.h"
#include "llvm/ADT/Triple.h" #include "llvm/ADT/Triple.h"
#include "llvm/ADT/iterator.h" #include "llvm/ADT/iterator.h"
#include "llvm/Analysis/GlobalsModRef.h"
#include "llvm/Analysis/TargetLibraryInfo.h" #include "llvm/Analysis/TargetLibraryInfo.h"
#include "llvm/Analysis/ValueTracking.h" #include "llvm/Analysis/ValueTracking.h"
#include "llvm/IR/Argument.h" #include "llvm/IR/Argument.h"
#include "llvm/IR/Attributes.h" #include "llvm/IR/Attributes.h"
#include "llvm/IR/BasicBlock.h" #include "llvm/IR/BasicBlock.h"
#include "llvm/IR/Constant.h" #include "llvm/IR/Constant.h"
#include "llvm/IR/Constants.h" #include "llvm/IR/Constants.h"
#include "llvm/IR/DataLayout.h" #include "llvm/IR/DataLayout.h"
▲ Show 20 LinesShow All 3,280 Lines▼ Show 20 Lines
ModulePass *llvm::createDataFlowSanitizerLegacyPassPass( ModulePass *llvm::createDataFlowSanitizerLegacyPassPass(
const std::vector<std::string> &ABIListFiles) { const std::vector<std::string> &ABIListFiles) {
return new DataFlowSanitizerLegacyPass(ABIListFiles); return new DataFlowSanitizerLegacyPass(ABIListFiles);
} }
PreservedAnalyses DataFlowSanitizerPass::run(Module &M, PreservedAnalyses DataFlowSanitizerPass::run(Module &M,
ModuleAnalysisManager &AM) { ModuleAnalysisManager &AM) {
if (DataFlowSanitizer(ABIListFiles).runImpl(M, &AM)) { if (!DataFlowSanitizer(ABIListFiles).runImpl(M, &AM))
return PreservedAnalyses::none();
}
return PreservedAnalyses::all(); return PreservedAnalyses::all();
PreservedAnalyses PA = PreservedAnalyses::none();
// GlobalsAA is considered stateless and does not get invalidated unless
aeubanksUnsubmitted
Done
ReplyInline Actions

adding comments here would be helpful

aeubanks: adding comments here would be helpful
// explicitly invalidated; PreservedAnalyses::none() is not enough. Sanitizers
// make changes that require GlobalsAA to be invalidated.
PA.abandon<GlobalsAA>();
return PA;
} }

llvm/lib/Transforms/Instrumentation/HWAddressSanitizer.cpp

Show All 12 Lines
#include "llvm/Transforms/Instrumentation/HWAddressSanitizer.h" #include "llvm/Transforms/Instrumentation/HWAddressSanitizer.h"
#include "llvm/ADT/MapVector.h" #include "llvm/ADT/MapVector.h"
#include "llvm/ADT/STLExtras.h" #include "llvm/ADT/STLExtras.h"
#include "llvm/ADT/SmallVector.h" #include "llvm/ADT/SmallVector.h"
#include "llvm/ADT/StringExtras.h" #include "llvm/ADT/StringExtras.h"
#include "llvm/ADT/StringRef.h" #include "llvm/ADT/StringRef.h"
#include "llvm/ADT/Triple.h" #include "llvm/ADT/Triple.h"
#include "llvm/Analysis/GlobalsModRef.h"
#include "llvm/Analysis/PostDominators.h" #include "llvm/Analysis/PostDominators.h"
#include "llvm/Analysis/StackSafetyAnalysis.h" #include "llvm/Analysis/StackSafetyAnalysis.h"
#include "llvm/Analysis/ValueTracking.h" #include "llvm/Analysis/ValueTracking.h"
#include "llvm/BinaryFormat/Dwarf.h" #include "llvm/BinaryFormat/Dwarf.h"
#include "llvm/BinaryFormat/ELF.h" #include "llvm/BinaryFormat/ELF.h"
#include "llvm/IR/Attributes.h" #include "llvm/IR/Attributes.h"
#include "llvm/IR/BasicBlock.h" #include "llvm/IR/BasicBlock.h"
#include "llvm/IR/Constant.h" #include "llvm/IR/Constant.h"
▲ Show 20 LinesShow All 389 Lines▼ Show 20 LinesPreservedAnalyses HWAddressSanitizerPass::run(Module &M,
if (shouldUseStackSafetyAnalysis(TargetTriple, Options.DisableOptimization)) if (shouldUseStackSafetyAnalysis(TargetTriple, Options.DisableOptimization))
SSI = &MAM.getResult<StackSafetyGlobalAnalysis>(M); SSI = &MAM.getResult<StackSafetyGlobalAnalysis>(M);
HWAddressSanitizer HWASan(M, Options.CompileKernel, Options.Recover, SSI); HWAddressSanitizer HWASan(M, Options.CompileKernel, Options.Recover, SSI);
bool Modified = false; bool Modified = false;
auto &FAM = MAM.getResult<FunctionAnalysisManagerModuleProxy>(M).getManager(); auto &FAM = MAM.getResult<FunctionAnalysisManagerModuleProxy>(M).getManager();
for (Function &F : M) for (Function &F : M)
Modified |= HWASan.sanitizeFunction(F, FAM); Modified |= HWASan.sanitizeFunction(F, FAM);
if (Modified) if (!Modified)
return PreservedAnalyses::none();
return PreservedAnalyses::all(); return PreservedAnalyses::all();
PreservedAnalyses PA = PreservedAnalyses::none();
// GlobalsAA is considered stateless and does not get invalidated unless
// explicitly invalidated; PreservedAnalyses::none() is not enough. Sanitizers
// make changes that require GlobalsAA to be invalidated.
PA.abandon<GlobalsAA>();
return PA;
} }
void HWAddressSanitizerPass::printPipeline( void HWAddressSanitizerPass::printPipeline(
raw_ostream &OS, function_ref<StringRef(StringRef)> MapClassName2PassName) { raw_ostream &OS, function_ref<StringRef(StringRef)> MapClassName2PassName) {
static_cast<PassInfoMixin<HWAddressSanitizerPass> *>(this)->printPipeline( static_cast<PassInfoMixin<HWAddressSanitizerPass> *>(this)->printPipeline(
OS, MapClassName2PassName); OS, MapClassName2PassName);
OS << "<"; OS << "<";
if (Options.CompileKernel) if (Options.CompileKernel)
OS << "kernel;"; OS << "kernel;";
▲ Show 20 LinesShow All 1,287 LinesShow Last 20 Lines

llvm/lib/Transforms/Instrumentation/MemorySanitizer.cpp

Show First 20 LinesShow All 146 Lines▼ Show 20 Lines
#include "llvm/ADT/ArrayRef.h" #include "llvm/ADT/ArrayRef.h"
#include "llvm/ADT/DepthFirstIterator.h" #include "llvm/ADT/DepthFirstIterator.h"
#include "llvm/ADT/SetVector.h" #include "llvm/ADT/SetVector.h"
#include "llvm/ADT/SmallString.h" #include "llvm/ADT/SmallString.h"
#include "llvm/ADT/SmallVector.h" #include "llvm/ADT/SmallVector.h"
#include "llvm/ADT/StringExtras.h" #include "llvm/ADT/StringExtras.h"
#include "llvm/ADT/StringRef.h" #include "llvm/ADT/StringRef.h"
#include "llvm/ADT/Triple.h" #include "llvm/ADT/Triple.h"
#include "llvm/Analysis/GlobalsModRef.h"
#include "llvm/Analysis/TargetLibraryInfo.h" #include "llvm/Analysis/TargetLibraryInfo.h"
#include "llvm/Analysis/ValueTracking.h" #include "llvm/Analysis/ValueTracking.h"
#include "llvm/IR/Argument.h" #include "llvm/IR/Argument.h"
#include "llvm/IR/Attributes.h" #include "llvm/IR/Attributes.h"
#include "llvm/IR/BasicBlock.h" #include "llvm/IR/BasicBlock.h"
#include "llvm/IR/CallingConv.h" #include "llvm/IR/CallingConv.h"
#include "llvm/IR/Constant.h" #include "llvm/IR/Constant.h"
#include "llvm/IR/Constants.h" #include "llvm/IR/Constants.h"
▲ Show 20 LinesShow All 517 Lines▼ Show 20 LinesPreservedAnalyses MemorySanitizerPass::run(Module &M,
auto &FAM = AM.getResult<FunctionAnalysisManagerModuleProxy>(M).getManager(); auto &FAM = AM.getResult<FunctionAnalysisManagerModuleProxy>(M).getManager();
for (Function &F : M) { for (Function &F : M) {
if (F.empty()) if (F.empty())
continue; continue;
MemorySanitizer Msan(*F.getParent(), Options); MemorySanitizer Msan(*F.getParent(), Options);
Modified |= Modified |=
Msan.sanitizeFunction(F, FAM.getResult<TargetLibraryAnalysis>(F)); Msan.sanitizeFunction(F, FAM.getResult<TargetLibraryAnalysis>(F));
} }
return Modified ? PreservedAnalyses::none() : PreservedAnalyses::all();
if (!Modified)
return PreservedAnalyses::all();
PreservedAnalyses PA = PreservedAnalyses::none();
// GlobalsAA is considered stateless and does not get invalidated unless
// explicitly invalidated; PreservedAnalyses::none() is not enough. Sanitizers
// make changes that require GlobalsAA to be invalidated.
PA.abandon<GlobalsAA>();
return PA;
} }
void MemorySanitizerPass::printPipeline( void MemorySanitizerPass::printPipeline(
raw_ostream &OS, function_ref<StringRef(StringRef)> MapClassName2PassName) { raw_ostream &OS, function_ref<StringRef(StringRef)> MapClassName2PassName) {
static_cast<PassInfoMixin<MemorySanitizerPass> *>(this)->printPipeline( static_cast<PassInfoMixin<MemorySanitizerPass> *>(this)->printPipeline(
OS, MapClassName2PassName); OS, MapClassName2PassName);
OS << "<"; OS << "<";
if (Options.Recover) if (Options.Recover)
▲ Show 20 LinesShow All 4,754 LinesShow Last 20 Lines

llvm/lib/Transforms/Instrumentation/SanitizerCoverage.cpp

Show All 9 Lines
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "llvm/Transforms/Instrumentation/SanitizerCoverage.h" #include "llvm/Transforms/Instrumentation/SanitizerCoverage.h"
#include "llvm/ADT/ArrayRef.h" #include "llvm/ADT/ArrayRef.h"
#include "llvm/ADT/SmallVector.h" #include "llvm/ADT/SmallVector.h"
#include "llvm/ADT/Triple.h" #include "llvm/ADT/Triple.h"
#include "llvm/Analysis/EHPersonalities.h" #include "llvm/Analysis/EHPersonalities.h"
#include "llvm/Analysis/GlobalsModRef.h"
#include "llvm/Analysis/PostDominators.h" #include "llvm/Analysis/PostDominators.h"
#include "llvm/IR/Constant.h" #include "llvm/IR/Constant.h"
#include "llvm/IR/DataLayout.h" #include "llvm/IR/DataLayout.h"
#include "llvm/IR/Dominators.h" #include "llvm/IR/Dominators.h"
#include "llvm/IR/Function.h" #include "llvm/IR/Function.h"
#include "llvm/IR/GlobalVariable.h" #include "llvm/IR/GlobalVariable.h"
#include "llvm/IR/IRBuilder.h" #include "llvm/IR/IRBuilder.h"
#include "llvm/IR/IntrinsicInst.h" #include "llvm/IR/IntrinsicInst.h"
▲ Show 20 LinesShow All 260 Lines▼ Show 20 Lines ModuleSanitizerCoverage ModuleSancov(Options, Allowlist.get(),
Blocklist.get()); Blocklist.get());
auto &FAM = MAM.getResult<FunctionAnalysisManagerModuleProxy>(M).getManager(); auto &FAM = MAM.getResult<FunctionAnalysisManagerModuleProxy>(M).getManager();
auto DTCallback = [&FAM](Function &F) -> const DominatorTree * { auto DTCallback = [&FAM](Function &F) -> const DominatorTree * {
return &FAM.getResult<DominatorTreeAnalysis>(F); return &FAM.getResult<DominatorTreeAnalysis>(F);
}; };
auto PDTCallback = [&FAM](Function &F) -> const PostDominatorTree * { auto PDTCallback = [&FAM](Function &F) -> const PostDominatorTree * {
return &FAM.getResult<PostDominatorTreeAnalysis>(F); return &FAM.getResult<PostDominatorTreeAnalysis>(F);
}; };
if (ModuleSancov.instrumentModule(M, DTCallback, PDTCallback)) if (!ModuleSancov.instrumentModule(M, DTCallback, PDTCallback))
return PreservedAnalyses::none();
return PreservedAnalyses::all(); return PreservedAnalyses::all();
PreservedAnalyses PA = PreservedAnalyses::none();
// GlobalsAA is considered stateless and does not get invalidated unless
// explicitly invalidated; PreservedAnalyses::none() is not enough. Sanitizers
// make changes that require GlobalsAA to be invalidated.
PA.abandon<GlobalsAA>();
return PA;
} }
std::pair<Value *, Value *> std::pair<Value *, Value *>
ModuleSanitizerCoverage::CreateSecStartEnd(Module &M, const char *Section, ModuleSanitizerCoverage::CreateSecStartEnd(Module &M, const char *Section,
Type *Ty) { Type *Ty) {
// Use ExternalWeak so that if all sections are discarded due to section // Use ExternalWeak so that if all sections are discarded due to section
// garbage collection, the linker will not report undefined symbol errors. // garbage collection, the linker will not report undefined symbol errors.
// Windows defines the start/stop symbols in compiler-rt so no need for // Windows defines the start/stop symbols in compiler-rt so no need for
▲ Show 20 LinesShow All 725 LinesShow Last 20 Lines

llvm/test/Instrumentation/MemorySanitizer/invalidate_global_aa.ll

  • This file was added.
; Check that sanitizers invalidate GlobalsAA
; Msan and Dfsan use globals for origin tracking and TLS for parameters.
; RUN: opt < %s -S -passes='require<globals-aa>,module(msan)' -debug-pass-manager 2>&1 | FileCheck %s
; RUN: opt < %s -S -passes='require<globals-aa>,module(dfsan)' -debug-pass-manager 2>&1 | FileCheck %s
; Some types of coverage use globals.
; RUN: opt < %s -S -passes='require<globals-aa>,module(sancov-module)' -sanitizer-coverage-level=2 -debug-pass-manager 2>&1 | FileCheck %s
; Uses TLS for tags.
; RUN: opt < %s -S -passes='require<globals-aa>,module(hwasan)' -debug-pass-manager 2>&1 | FileCheck %s
; Modifies globals.
; RUN: opt < %s -S -passes='require<globals-aa>,module(asan)' -debug-pass-manager 2>&1 | FileCheck %s
; CHECK: Running analysis: GlobalsAA on [module]
; CHECK: Running pass: {{.*}}Sanitizer{{.*}}Pass on [module]
; CHECK: Invalidating analysis: GlobalsAA on [module]
target triple = "x86_64-unknown-linux"
define i32 @test(ptr readonly %a) local_unnamed_addr sanitize_address sanitize_hwaddress {
entry:
%0 = load i32, ptr %a, align 4
ret i32 %0
}

llvm/test/Instrumentation/MemorySanitizer/msan_invalidate.ll

  • This file was added.
; Regression test for msan not invalidating GlobalsAA.
; RUN: opt < %s -S -passes='require<globals-aa>,module(msan),require<globals-aa>,early-cse<memssa>' 2>&1 | FileCheck %s
target triple = "x86_64-unknown-linux"
define ptr @foo(ptr %p) local_unnamed_addr sanitize_memory {
entry:
ret ptr %p
aeubanksUnsubmitted
Done
ReplyInline Actions

if possible could you reduce this test case? e.g. dso_local/target datalayout/triple/lifetime/noundef

aeubanks: if possible could you reduce this test case? e.g. dso_local/target…
}
define i32 @test() local_unnamed_addr sanitize_memory {
entry:
; CHECK-LABEL: define i32 @test()
%x = alloca i32
store i32 7, ptr %x
; CHECK: store i64 0, ptr @__msan_retval_tls
; CHECK-NEXT: call ptr @foo(
%call = call ptr @foo(ptr %x)
; If GlobalsAA is eliminated correctly, early-cse should not remove next load.
; CHECK-NEXT: %[[MSRET:.*]] = load i64, ptr @__msan_retval_tls
; CHECK-NEXT: %[[MSCMP:.*]] = icmp ne i64 %[[MSRET]], 0
; CHECK-NEXT: br i1 %[[MSCMP]],
%ret = load i32, ptr %call
ret i32 %ret
}