This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
llvm/test/CodeGen/RISCV/
-
test/
-
CodeGen/
-
RISCV/
6/8
calling-conv-vector-on-stack.ll

Differential D145934

[RISCV] Precommit test to show wrong way to pass scalable FP vector on stack
ClosedPublic

Authored by kito-cheng on Mar 13 2023, 7:04 AM.

Download Raw Diff

Details

Reviewers

craig.topper
reames
rogfer01
frasercrmck
asb

Commits

rGba1c7731f15b: [RISCV] Precommit test to show wrong way to pass scalable FP vector on stack

Summary

Test case to demo scaleable vector on stack will cause stack corruption.

Detail explan what happened:

tail call void @foo(i32 0, i32 0, i32 0, i32 0, i32 0, i32 0, i32 0, i32 0,
                    <vscale x 16 x float> zeroinitializer,
                    <vscale x 16 x float> zeroinitializer,
                    <vscale x 16 x float> zeroinitializer)

foo take 13 arguments, first 8 argument pass in GPR, and next 2 LMUL 8 vector
arguments passed in v8-v23, and now we run out of argument register for GPR and
vector register, so we must pass last LMUL 8 vector argument by stack.

However LLVM only reserve 8 byte on stack for the LMUL 8 vector
argument, it will cause stack corruption when we try to store that into
stack.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

kito-cheng created this revision.Mar 13 2023, 7:04 AM

Herald added a project: Restricted Project. · View Herald TranscriptMar 13 2023, 7:04 AM

Herald added subscribers: jobnoorman, luke, VincentWu and 24 others. · View Herald Transcript

kito-cheng requested review of this revision.Mar 13 2023, 7:04 AM

Herald added a project: Restricted Project. · View Herald TranscriptMar 13 2023, 7:04 AM

Herald added subscribers: llvm-commits, • pcwang-thead, eopXD, MaskRay. · View Herald Transcript

kito-cheng edited the summary of this revision. (Show Details)Mar 13 2023, 7:13 AM

kito-cheng added a child revision: D145938: [RISCV] Pass vector argument by stack correctly..

Add comments for easier understand what's wrong for the current code gen.

llvm/test/CodeGen/RISCV/calling-conv-vector-on-stack.ll
3	`-treat-scalable-fixed-error-as-warning` to prevent llvm crash
5	This should not happened, will turn into CHECK-NOT in follow up patch.
10	Stack only reserve 16 byte, 8 byte for backup sp...which mean only left 8 byte for a LMUL 8 value.
12	Set `vl` to `vlmax` here
14	And then store an LMUL 8 value to stack, stack corruption here.

craig.topper retitled this revision from [RISCV] Precommit test to show wrong way to pass scaleable vector on stack to [RISCV] Precommit test to show wrong way to pass scalable FP vector on stack.Mar 13 2023, 2:11 PM

Herald added a subscriber: alextsao1999. · View Herald TranscriptMar 13 2023, 2:11 PM

craig.topper added inline comments.Mar 13 2023, 2:14 PM

llvm/test/CodeGen/RISCV/calling-conv-vector-on-stack.ll
2	This wasn't fully generated by the script. You have a custom line for the warning. I think the script would delete that? I'd remove this comment.

Chagnes:

Drop UTC_ARGS: --version 2

kito-cheng added inline comments.Mar 13 2023, 6:59 PM

llvm/test/CodeGen/RISCV/calling-conv-vector-on-stack.ll
2	You mean the `; CHECK: warning: Invalid size request on a scalable vector`? the file other than the check is generated by `update_llc_test_checks.py`, and it will preserved :)

craig.topper added inline comments.Mar 13 2023, 7:41 PM

llvm/test/CodeGen/RISCV/calling-conv-vector-on-stack.ll
2	I meant the comment about being generated by the script so that people won't naively run the script. But if the script doesn't delete the warning check then its fine. I just the script was pretty aggressive about deleting things it doesn't know about.

Harbormaster completed remote builds in B219222: Diff 504911.Mar 13 2023, 7:50 PM

LGTM

This revision is now accepted and ready to land.Mar 14 2023, 8:46 AM

This revision was landed with ongoing or failed builds.Mar 15 2023, 2:21 AM

Closed by commit rGba1c7731f15b: [RISCV] Precommit test to show wrong way to pass scalable FP vector on stack (authored by kito-cheng). · Explain Why

This revision was automatically updated to reflect the committed changes.

kito-cheng added a commit: rGba1c7731f15b: [RISCV] Precommit test to show wrong way to pass scalable FP vector on stack.

Revision Contents

Path

Size

llvm/

test/

CodeGen/

RISCV/

calling-conv-vector-on-stack.ll

32 lines

Diff 505403

llvm/test/CodeGen/RISCV/calling-conv-vector-on-stack.ll

This file was added.

				; NOTE: Assertions have been autogenerated by utils/update_llc_test_checks.py
				; RUN: llc -mtriple=riscv64 -mattr=+v -verify-machineinstrs -treat-scalable-fixed-error-as-warning < %s 2>&1 \| FileCheck %s
				craig.topperUnsubmitted Not Done Reply Inline Actions This wasn't fully generated by the script. You have a custom line for the warning. I think the script would delete that? I'd remove this comment. craig.topper: This wasn't fully generated by the script. You have a custom line for the warning. I think the…
				kito-chengAuthorUnsubmitted Done Reply Inline Actions You mean the `; CHECK: warning: Invalid size request on a scalable vector`? the file other than the check is generated by `update_llc_test_checks.py`, and it will preserved :) kito-cheng: You mean the `; CHECK: warning: Invalid size request on a scalable vector`? the file other than…
				craig.topperUnsubmitted Not Done Reply Inline Actions I meant the comment about being generated by the script so that people won't naively run the script. But if the script doesn't delete the warning check then its fine. I just the script was pretty aggressive about deleting things it doesn't know about. craig.topper: I meant the comment about being generated by the script so that people won't naively run the…

				kito-chengAuthorUnsubmitted Done Reply Inline Actions `-treat-scalable-fixed-error-as-warning` to prevent llvm crash kito-cheng: `-treat-scalable-fixed-error-as-warning` to prevent llvm crash
				; CHECK: warning: Invalid size request on a scalable vector

				kito-chengAuthorUnsubmitted Done Reply Inline Actions This should not happened, will turn into CHECK-NOT in follow up patch. kito-cheng: This should not happened, will turn into CHECK-NOT in follow up patch.
				define void @bar() nounwind {
				; CHECK-LABEL: bar:
				; CHECK: # %bb.0: # %entry
				; CHECK-NEXT: addi sp, sp, -16
				; CHECK-NEXT: sd ra, 8(sp) # 8-byte Folded Spill
				kito-chengAuthorUnsubmitted Done Reply Inline Actions Stack only reserve 16 byte, 8 byte for backup sp...which mean only left 8 byte for a LMUL 8 value. kito-cheng: Stack only reserve 16 byte, 8 byte for backup sp...which mean only left 8 byte for a LMUL 8…
				; CHECK-NEXT: vsetvli a0, zero, e32, m8, ta, ma
				; CHECK-NEXT: vmv.v.i v8, 0
				kito-chengAuthorUnsubmitted Done Reply Inline Actions Set `vl` to `vlmax` here kito-cheng: Set `vl` to `vlmax` here
				; CHECK-NEXT: vs8r.v v8, (sp)
				; CHECK-NEXT: li a0, 0
				kito-chengAuthorUnsubmitted Done Reply Inline Actions And then store an LMUL 8 value to stack, stack corruption here. kito-cheng: And then store an LMUL 8 value to stack, stack corruption here.
				; CHECK-NEXT: li a1, 0
				; CHECK-NEXT: li a2, 0
				; CHECK-NEXT: li a3, 0
				; CHECK-NEXT: li a4, 0
				; CHECK-NEXT: li a5, 0
				; CHECK-NEXT: li a6, 0
				; CHECK-NEXT: li a7, 0
				; CHECK-NEXT: vmv.v.i v16, 0
				; CHECK-NEXT: call foo@plt
				; CHECK-NEXT: ld ra, 8(sp) # 8-byte Folded Reload
				; CHECK-NEXT: addi sp, sp, 16
				; CHECK-NEXT: ret
				entry:
				tail call void @foo(i32 0, i32 0, i32 0, i32 0, i32 0, i32 0, i32 0, i32 0, <vscale x 16 x float> zeroinitializer, <vscale x 16 x float> zeroinitializer, <vscale x 16 x float> zeroinitializer)
				ret void
				}

				declare void @foo(i32, i32, i32, i32, i32, i32, i32, i32, <vscale x 16 x float>, <vscale x 16 x float>, <vscale x 16 x float>) nounwind