This is an archive of the discontinued LLVM Phabricator instance.

Differential D156226

[DebugInfo] Fix crash when printing malformed DBG machine instructions
ClosedPublic

Authored by foad on Jul 25 2023, 3:53 AM.

Details

Reviewers
jmorse
StephenTozer
Orlando
arsenm
Commits
rG8f973d5c455c: [DebugInfo] Fix crash when printing malformed DBG machine instructions
Summary

MachineVerifier does not check that DBG_VALUE, DBG_VALUE_LIST and
DBG_INSTR_REF have the expected number of operands, so printing them
(e.g. with -print-after-all) should not crash.

Diff Detail

Event Timeline

foad created this revision.Jul 25 2023, 3:53 AM
Herald added a project: Restricted Project. · View Herald TranscriptJul 25 2023, 3:53 AM
Herald added subscribers: StephenFan, hiraditya. · View Herald Transcript
foad requested review of this revision.Jul 25 2023, 3:53 AM
Herald added a project: Restricted Project. · View Herald TranscriptJul 25 2023, 3:53 AM
Herald added subscribers: llvm-commits, wdng. · View Herald Transcript
jmorse added a comment.Jul 25 2023, 4:02 AM

This sounds like a good direction to take. As for why the verifier doesn't check things, IIRC there are some MIR tests out there where we don't bother to feed in any metadata, so that you can put meaningless DBG_VALUE's in MIR tests to test behaviours with little overhead. And which then leads to the behaviour you're patching against here.

Just to confirm my understanding: this is only suppressing printing the operands of debug instructions when there aren't enough operands, yes? It'd be unfortunate if we completely skipped printing an instruction because it was malformed, thus hiding it from developers.

llvm/lib/CodeGen/MachineInstr.cpp
1886–1899

I believe these should be >= operators rather than == . The instructions that can be variadic may have several operands or none, and we want the Variable and DebugLoc printed in those scenarios.

foad added a comment.Jul 25 2023, 5:24 AM

Just to confirm my understanding: this is only suppressing printing the operands of debug instructions when there aren't enough operands, yes? It'd be unfortunate if we completely skipped printing an instruction because it was malformed, thus hiding it from developers.

Correct, it only suppresses pretty-printing of the debug variable info as a comment.

As an alternative approach maybe all the accessors like getDebugVariableOp should check getNumOperands and return a failure value if the operand does not exist. But I do not want to get too deeply involved in this, I just wanted to stop llc -print-after-all from crashing.

llvm/lib/CodeGen/MachineInstr.cpp
1886–1899

OK. I was copying from MachineVerifier which does this:

// A fully-formed DBG_VALUE must have a location. Ignore partially formed
// DBG_VALUEs: these are convenient to use in tests, but should never get
// generated.
if (MI->isDebugValue() && MI->getNumOperands() == 4)
  if (!MI->getDebugLoc())
    report("Missing DebugLoc for debug instruction", MI);

But I guess that is slightly wrong for DBG_VALUE (should be >= 4), very wrong for DBG_VALUE_LIST (should be >= 2) and completely misses DBG_INSTR_REF.

Harbormaster completed remote builds in B247950: Diff 543917.Jul 25 2023, 10:16 AM
jmorse added a comment.Jul 27 2023, 9:29 AM

(LGTM with the nit inline fixed)

llvm/lib/CodeGen/MachineInstr.cpp
1886–1899

Interesting, paging @StephenTozer , is the MachineVerifier accidentally skipping verification of DBG_VALUE_LIST?

Even in the verifier is wrong though, IMO this patch should use the greater-than test to ensure variadic info gets printed.

foad updated this revision to Diff 544821.Jul 27 2023, 9:34 AM

Use >=.

foad marked an inline comment as done.Jul 27 2023, 9:35 AM
Harbormaster completed remote builds in B248607: Diff 544821.Jul 27 2023, 12:25 PM
arsenm accepted this revision.Aug 1 2023, 5:53 PM
This revision is now accepted and ready to land.Aug 1 2023, 5:53 PM
This revision was landed with ongoing or failed builds.Aug 2 2023, 12:28 AM
Closed by commit rG8f973d5c455c: [DebugInfo] Fix crash when printing malformed DBG machine instructions (authored by foad). · Explain Why
This revision was automatically updated to reflect the committed changes.
foad added a commit: rG8f973d5c455c: [DebugInfo] Fix crash when printing malformed DBG machine instructions.

Revision Contents

PathSize
llvm/
lib/
CodeGen/
22 lines
test/
CodeGen/
MIR/
Generic/
14 lines

Diff 546343

llvm/lib/CodeGen/MachineInstr.cpp

Show First 20 LinesShow All 1,877 Lines▼ Show 20 Lines if (const DebugLoc &DL = getDebugLoc()) {
if (!HaveSemi) { if (!HaveSemi) {
OS << ';'; OS << ';';
HaveSemi = true; HaveSemi = true;
} }
OS << ' '; OS << ' ';
DL.print(OS); DL.print(OS);
} }
// Print extra comments for DEBUG_VALUE. // Print extra comments for DEBUG_VALUE and friends if they are well-formed.
if (isDebugValueLike() && getDebugVariableOp().isMetadata()) { if ((isNonListDebugValue() && getNumOperands() >= 4) ||
(isDebugValueList() && getNumOperands() >= 2) ||
(isDebugRef() && getNumOperands() >= 3)) {
if (getDebugVariableOp().isMetadata()) {
if (!HaveSemi) { if (!HaveSemi) {
OS << ";"; OS << ";";
HaveSemi = true; HaveSemi = true;
} }
auto *DV = getDebugVariable(); auto *DV = getDebugVariable();
OS << " line no:" << DV->getLine(); OS << " line no:" << DV->getLine();
if (isIndirectDebugValue()) if (isIndirectDebugValue())
OS << " indirect"; OS << " indirect";
} }
jmorseUnsubmitted
Not Done
ReplyInline Actions

I believe these should be >= operators rather than == . The instructions that can be variadic may have several operands or none, and we want the Variable and DebugLoc printed in those scenarios.

jmorse: I believe these should be `>=` operators rather than `==` . The instructions that can be…
foadAuthorUnsubmitted
Done
ReplyInline Actions

OK. I was copying from MachineVerifier which does this:

// A fully-formed DBG_VALUE must have a location. Ignore partially formed
// DBG_VALUEs: these are convenient to use in tests, but should never get
// generated.
if (MI->isDebugValue() && MI->getNumOperands() == 4)
  if (!MI->getDebugLoc())
    report("Missing DebugLoc for debug instruction", MI);

But I guess that is slightly wrong for DBG_VALUE (should be >= 4), very wrong for DBG_VALUE_LIST (should be >= 2) and completely misses DBG_INSTR_REF.

foad: OK. I was copying from MachineVerifier which does this: ``` // A fully-formed DBG_VALUE must…
jmorseUnsubmitted
Done
ReplyInline Actions

Interesting, paging @StephenTozer , is the MachineVerifier accidentally skipping verification of DBG_VALUE_LIST?

Even in the verifier is wrong though, IMO this patch should use the greater-than test to ensure variadic info gets printed.

jmorse: Interesting, paging @StephenTozer , is the MachineVerifier accidentally skipping verification…
}
// TODO: DBG_LABEL // TODO: DBG_LABEL
if (AddNewLine) if (AddNewLine)
OS << '\n'; OS << '\n';
} }
bool MachineInstr::addRegisterKilled(Register IncomingReg, bool MachineInstr::addRegisterKilled(Register IncomingReg,
const TargetRegisterInfo *RegInfo, const TargetRegisterInfo *RegInfo,
▲ Show 20 LinesShow All 558 LinesShow Last 20 Lines

llvm/test/CodeGen/MIR/Generic/dbg-value.mir

  • This file was added.
# RUN: llc -run-pass=machineinstr-printer -o - %s | FileCheck %s
---
name: test
body: |
bb.0:
; CHECK-LABEL: name: test
; CHECK: DBG_VALUE
; CHECK-NEXT: DBG_VALUE_LIST
; CHECK-NEXT: DBG_INSTR_REF
DBG_VALUE
DBG_VALUE_LIST
DBG_INSTR_REF
...