This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
lib/
-
Target/WebAssembly/
-
WebAssembly/
-
MCTargetDesc/
-
WebAssemblyMCTargetDesc.h
-
WebAssemblyTargetStreamer.h
-
WebAssemblyTargetStreamer.cpp
2/2
WebAssemblyAsmPrinter.cpp
-
Transforms/IPO/
-
IPO/
12/15
LowerTypeTests.cpp

Differential D21768

Support CFI for WebAssembly target
ClosedPublic

Authored by ddcc on Jun 27 2016, 1:16 PM.

Download Raw Diff

Details

Reviewers

dschuff
pcc
sunfish

Commits

rGc64d7655b231: [WebAssembly] Support CFI for WebAssembly target
rL277398: [WebAssembly] Support CFI for WebAssembly target

Summary

This patch implements CFI for WebAssembly. It modifies the LowerTypeTest pass to pre-assign table indexes to functions that are called indirectly, and lowers type checks to test against the appropriate table indexes. It also modifies the WebAssembly backend to support a special ".indidx" assembly directive that propagates the table index assignments out to the linker.

Diff Detail

Event Timeline

ddcc updated this revision to Diff 62011.Jun 27 2016, 1:16 PM

ddcc retitled this revision from to [LowerTypeTests] Support CFI for WebAssembly target [WebAssembly] Propagate indirect function call index assignments out for CFI Don't break debug information with virtual registers.

Herald added subscribers: dschuff, jfb, MatzeB. · View Herald TranscriptJun 27 2016, 1:16 PM

ddcc changed the visibility from "Public (No Login Required)" to "All Users".Jun 27 2016, 1:16 PM

ddcc removed a subscriber: MatzeB.

I'd like to see a few .ll tests as well.

Could you also update the patch description to explain what it's doing?

lib/CodeGen/AsmPrinter/DbgValueHistoryCalculator.cpp
167 ↗	(On Diff #62011)	Would you have a stand-alone test that triggers this separately? I think you should do the changes in the file in a separate patch (it's similar to @dschuff's PEI patch to handle virtual registers).
lib/CodeGen/LiveIntervalAnalysis.cpp
1326 ↗	(On Diff #62011)	Same here, do you have a bitcode file that demonstrates the issue? I'd fix separately (separate from DbgValue*.cpp above as well).
lib/Transforms/IPO/LowerTypeTests.cpp
689	Weird format here, you should run `clang-format` on the parts that you change.
835	`static` here is a bad idea. Is it just used once to fill `GlobalLayout`, or is the function called multiple times?

ddcc retitled this revision from [LowerTypeTests] Support CFI for WebAssembly target [WebAssembly] Propagate indirect function call index assignments out for CFI Don't break debug information with virtual registers to Support CFI for WebAssembly target.Jun 27 2016, 3:35 PM

ddcc updated this object.

Yeah, I should move the commit that modifies debug information and virtual register checking out of this patch. It's a gist by Yury Delendik (https://gist.github.com/yurydelendik/a37b786dae40736ed7a1b04770f9c9ed) that I picked up on this branch while debugging compilation crashes with debug information enabled.

ddcc added inline comments.Jun 27 2016, 3:43 PM

lib/Transforms/IPO/LowerTypeTests.cpp
835	This function is called once for each disjoint equivalence set. I'll move it out to the class level.

Fix formatting, drop gist

jfb added inline comments.Jun 29 2016, 10:37 AM

lib/Target/WebAssembly/WebAssemblyAsmPrinter.cpp
189	You can fold the above lines into one: if (MDNode *Idx = F.getMetadata("wasm.index")) { LLVM usually uses that idiom.
lib/Transforms/IPO/LowerTypeTests.cpp
224	A more descriptive name would be better: what is this counting?
640	This shouldn't get deleted since this is x86-specific?
653	Same, still x86-specific.
680	Same.
842	Why nullptr here?

Rename counter, add more comments

ddcc marked 3 inline comments as done.Jun 29 2016, 11:24 AM

ddcc added inline comments.

lib/Transforms/IPO/LowerTypeTests.cpp
640	I moved the check higher up in `buildBitSetsFromFunctions()` and eliminated the duplicates.
842	Added a comment.

ddcc changed the visibility from "All Users" to "Public (No Login Required)".Jul 1 2016, 3:31 PM

sunfish added a subscriber: sunfish.Jul 1 2016, 3:33 PM

Add tests

Fix some test bugs

jfb added inline comments.Jul 11 2016, 1:49 PM

test/Transforms/LowerTypeTests/function-disjoint.ll
2 ↗	(On Diff #63564)	I'm not sure this will work because the wasm backend is still experimental (IIUC lit will exclude the backend-specific folders, but these files will be executed unconditionally). Is that the case?

jfb added a subscriber: pcc.Jul 11 2016, 1:50 PM

ddcc added reviewers: pcc, dschuff, sunfish.Jul 11 2016, 1:52 PM

ddcc edited subscribers, added: llvm-commits; removed: pcc.

Is there any documentation for this ".indidx" directive?

As far as I know, the assembler format for WebAssembly is relatively undocumented. The pull request adding support for the ".indidx" directive in the WebAssembly linker is https://github.com/WebAssembly/binaryen/pull/616, and there is documentation for the overall CFI approach at https://github.com/ddcc/design/blob/cfi/Security.md#control-flow-integrity.

Thanks, but that only raises more questions.

What is an "index"? Is it something that can be called, like a function pointer?

If that's the case, and indexes start from zero, how do you resolve conflicts between indexes in dynamically loaded modules? Or does your design assume no dynamic loading?

(Also, how do you represent null function pointers if indexes start at zero?)

Yes, in WebAssembly, most uses of memory addresses (pointers) are replaced with indexes into the appropriate section. As part of this, all functions and their types must be explicitly declared, and functions which can be called indirectly must be explicitly listed in a "table" section. The only remaining use of memory addresses is to an isolated linear memory region (for emulating a stack, etc), but this can only be used for storing data. Replacing function pointers with indexes is handled in s2wasm (compile/run process: c/c++ -> emscripten (clang -> opt -> llc -> s2wasm) -> browser) , which looks for functions that have their address taken, generates a table entry for each, and uses the table entry index as the "address". Additionally, s2wasm includes the expected type of the indirect function with the indirect function call. At runtime, two checks are performed at each indirect function call: (1) the specified index is a valid entry in the "table" section, and (2) the type signature specified at the call site matches the call site of the selected function (NULL "function pointers" would presumably fail this). If either of these is violated, then a runtime trap is generated.

However, this current approach has some downsides: it doesn't protect against code reuse attacks, and the signature check is fairly coarse grained, since it is performed at the WebAssembly type level (which only has four unique types: int/float, 32/64-bit). This patch adds support for Clang/LLVM's CFI implementation in WebAssembly programs, by pre-assigning continuous indexes in LLVM for each disjoint set, and introducing a new primitive (.indidx) to tell the linker that a function must be given an index. The corresponding patch to the linker first preallocates entries for functions with a preassigned index, then falls back to the normal behavior of generating new entries for each remaining function called indirectly. Unfortunately, this approach corrects the two drawbacks, but adds some runtime overhead. A future patch will use support for multiple tables with homogeneous type in WebAssembly to eliminate the runtime CFI overhead.

Dynamic linking support (https://github.com/WebAssembly/design/blob/master/DynamicLinking.md) has only recently been introduced into WebAssembly as of approx. two weeks ago, and the interaction between CFI and dynamic linking hasn't been decided yet. Currently, calling dlsym finds the imported function, copies it to the function and table sections of the host, and returns its index for use in an indirect call. Clearly, this doesn't work well with CFI; different implementations include requiring a forward declaration of dynamically-linked functions for placeholder entries, fixing table offsets and set boundaries at runtime, etc. Alternatively, if tables with homogeneous type are used for CFI, then the tables from two modules could just be joined directly: two tables with the same type are merged, otherwise new tables are created and table references are updated.

ddcc added a child revision: D22246: Add multiple tables support for WebAssembly and update CFI implementation.Jul 11 2016, 4:34 PM

Thanks for that writeup, it helped me understand what's going on here more clearly. Please also include those details in your commit message.

Also, how do you represent null function pointers if indexes start at zero?

I'm still a little unclear about this. Suppose I have some code that looks like this:

void f() {}

bool foo(void (*fp)()) {
  return fp != nullptr;
}

What result will foo(f) yield if this pass happens to assign index 0 to the function f, and why?

Currently, calling dlsym finds the imported function, copies it to the function and table sections of the host, and returns its index for use in an indirect call. Clearly, this doesn't work well with CFI; different implementations include requiring a forward declaration of dynamically-linked functions for placeholder entries, fixing table offsets and set boundaries at runtime, etc. Alternatively, if tables with homogeneous type are used for CFI, then the tables from two modules could just be joined directly: two tables with the same type are merged, otherwise new tables are created and table references are updated.

Okay, I'm happy for the design here to match the current wasm design, and for it to evolve as wasm does.

lib/Target/WebAssembly/WebAssemblyAsmPrinter.cpp
191	clang-format this line.
lib/Transforms/IPO/LowerTypeTests.cpp
683–684	This comment belongs on `buildBitSetsFromFunctionsX86`.
687–693	Remove all braces here.
839	You could set the function metadata here instead of in the loop below.
841	Please explain why you are passing a null pointer here (i.e. because wasm does not use jump tables directly...)
test/Transforms/LowerTypeTests/function-disjoint.ll
3 ↗	(On Diff #63566)	I think this should be fine because we aren't using the backend here.

Cleanup formatting, update comments, skip metadata for unused functions

Hmm, good question. Currently, if I compile that example with optimizations enabled, it simply gets optimized out to always return true. However, if I compile it without optimizations, it actually returns false. This is because f() gets assigned to table index 0 by s2wasm, and the check fails. Note that this is true regardless of whether the CFI pass is enabled; there are no indirect function calls being executed, so it doesn't affect the IR at all.

Now, suppose that I execute the following example code. Without CFI, it will trigger a runtime type check failure, because the indirect call table has the entries (0: f, 1: g), and fp2 is assigned index 0, but this doesn't match the expected type at the call site. Now, the behavior is different with CFI, because the indirect call table has the entries (0: g, 1: main, 2: f), and fp2 is assigned index 0, which executes successfully. This is because {g, main} are in the same type set and are assigned indexes {0, 1}, respectively, whereas f is skipped by the CFI pass because the type of f is never referenced by llvm.type.test() (since it is never explicitly called), but it is automatically assigned index 2 in s2wasm (since it has its address taken). However, this behavior is suboptimal and actually increases the attack surface by adding more indirect call targets, so I've modified this patch to skip index assignments for functions that are not used anywhere. With the new version of this patch, the indirect call table has the entries (0: g, 1: f), and fp2 is assigned index 0, which executes successfully. If NULL + 1 is assigned to fp2, then a CFI trap is triggered, as expected.

In general, the rationale for undefined behavior is discussed in the documentation; essentially undefined behavior in C or C++ (e.g. dereferencing a NULL pointer) is still a bug when compiling for WebAssembly, even when the corresponding behavior in WebAssembly itself is defined.

void f() {
}

int g() {
  return 2;
}

int main() __attribute__((optnone)) {
  int i = 0;
  void (*fp1)() = f;
  int (*fp2)() = i ? g : NULL;
  return fp2();
}

This is because f() gets assigned to table index 0 by s2wasm, and the check fails. Note that this is true regardless of whether the CFI pass is enabled; there are no indirect function calls being executed, so it doesn't affect the IR at all.

So it sounds like maybe s2wasm and this pass should both be assigning indexes starting at 1? Although calls to null function pointers are undefined, null comparisons are well-defined in C++. Feel free to ignore this though with regard to this patch, as it seems like a pre-existing design issue.

lib/Transforms/IPO/LowerTypeTests.cpp
841	You may want to use `Function::hasAddressTaken` to exclude direct function calls here. Please also document how this interacts with dynamic loading (i.e. not at all at the moment, right?)

Revise comments, use hasAddressTaken()

The issue with null pointer comparisons is definitely something that should be addressed in WebAssembly. I've filed a design bug for this at https://github.com/WebAssembly/spec/issues/312 .

This looks ready to go to me, unless @pcc has remaining questions or issues?

This revision is now accepted and ready to land.Aug 1 2016, 2:14 PM

Rebase

Closed by commit rL277398: [WebAssembly] Support CFI for WebAssembly target (authored by dschuff). · Explain WhyAug 1 2016, 3:32 PM

This revision was automatically updated to reflect the committed changes.

Revision Contents

Path

Size

lib/

Target/

WebAssembly/

MCTargetDesc/

WebAssemblyMCTargetDesc.h

4 lines

WebAssemblyTargetStreamer.h

4 lines

WebAssemblyTargetStreamer.cpp

12 lines

WebAssemblyAsmPrinter.cpp

9 lines

Transforms/

IPO/

LowerTypeTests.cpp

79 lines

Diff 62029

lib/Target/WebAssembly/MCTargetDesc/WebAssemblyMCTargetDesc.h

Show First 20 Lines • Show All 53 Lines • ▼ Show 20 Lines

/// WebAssembly-specific directive identifiers.		/// WebAssembly-specific directive identifiers.
enum Directive {		enum Directive {
// FIXME: This is not the real binary encoding.		// FIXME: This is not the real binary encoding.
DotParam = UINT64_MAX - 0, ///< .param		DotParam = UINT64_MAX - 0, ///< .param
DotResult = UINT64_MAX - 1, ///< .result		DotResult = UINT64_MAX - 1, ///< .result
DotLocal = UINT64_MAX - 2, ///< .local		DotLocal = UINT64_MAX - 2, ///< .local
DotEndFunc = UINT64_MAX - 3, ///< .endfunc		DotEndFunc = UINT64_MAX - 3, ///< .endfunc
		DotIndIdx = UINT64_MAX - 4, /// < .indidx
};		};

} // end namespace WebAssembly		} // end namespace WebAssembly

namespace WebAssemblyII {		namespace WebAssemblyII {
enum {		enum {
// For variadic instructions, this flag indicates whether an operand		// For variadic instructions, this flag indicates whether an operand
// in the variable_ops range is an immediate value.		// in the variable_ops range is an immediate value.
▲ Show 20 Lines • Show All 48 Lines • ▼ Show 20 Lines	inline unsigned GetDefaultP2Align(unsigned Opcode) {
case WebAssembly::LOAD32_U_I64:		case WebAssembly::LOAD32_U_I64:
case WebAssembly::STORE32_I64:		case WebAssembly::STORE32_I64:
return 2;		return 2;
case WebAssembly::LOAD_I64:		case WebAssembly::LOAD_I64:
case WebAssembly::LOAD_F64:		case WebAssembly::LOAD_F64:
case WebAssembly::STORE_I64:		case WebAssembly::STORE_I64:
case WebAssembly::STORE_F64:		case WebAssembly::STORE_F64:
return 3;		return 3;
default: llvm_unreachable("Only loads and stores have p2align values");		default:
		llvm_unreachable("Only loads and stores have p2align values");
}		}
}		}

/// The operand number of the load or store address in load/store instructions.		/// The operand number of the load or store address in load/store instructions.
static const unsigned MemOpAddressOperandNo = 2;		static const unsigned MemOpAddressOperandNo = 2;
/// The operand number of the stored value in a store instruction.		/// The operand number of the stored value in a store instruction.
static const unsigned StoreValueOperandNo = 4;		static const unsigned StoreValueOperandNo = 4;

} // end namespace WebAssembly		} // end namespace WebAssembly
} // end namespace llvm		} // end namespace llvm

#endif		#endif

lib/Target/WebAssembly/MCTargetDesc/WebAssemblyTargetStreamer.h

Show All 37 Lines	public:
/// .endfunc		/// .endfunc
virtual void emitEndFunc() = 0;		virtual void emitEndFunc() = 0;
/// .functype		/// .functype
virtual void emitIndirectFunctionType(StringRef name,		virtual void emitIndirectFunctionType(StringRef name,
SmallVectorImpl<MVT> &SignatureVTs,		SmallVectorImpl<MVT> &SignatureVTs,
size_t NumResults) {		size_t NumResults) {
llvm_unreachable("emitIndirectFunctionType not implemented");		llvm_unreachable("emitIndirectFunctionType not implemented");
}		}
		/// .indidx
		virtual void emitIndIdx(const MCExpr *Value) = 0;
};		};

/// This part is for ascii assembly output		/// This part is for ascii assembly output
class WebAssemblyTargetAsmStreamer final : public WebAssemblyTargetStreamer {		class WebAssemblyTargetAsmStreamer final : public WebAssemblyTargetStreamer {
formatted_raw_ostream &OS;		formatted_raw_ostream &OS;

public:		public:
WebAssemblyTargetAsmStreamer(MCStreamer &S, formatted_raw_ostream &OS);		WebAssemblyTargetAsmStreamer(MCStreamer &S, formatted_raw_ostream &OS);

void emitParam(ArrayRef<MVT> Types) override;		void emitParam(ArrayRef<MVT> Types) override;
void emitResult(ArrayRef<MVT> Types) override;		void emitResult(ArrayRef<MVT> Types) override;
void emitLocal(ArrayRef<MVT> Types) override;		void emitLocal(ArrayRef<MVT> Types) override;
void emitEndFunc() override;		void emitEndFunc() override;
void emitIndirectFunctionType(StringRef name,		void emitIndirectFunctionType(StringRef name,
SmallVectorImpl<MVT> &SignatureVTs,		SmallVectorImpl<MVT> &SignatureVTs,
size_t NumResults) override;		size_t NumResults) override;
		void emitIndIdx(const MCExpr *Value) override;
};		};

/// This part is for ELF object output		/// This part is for ELF object output
class WebAssemblyTargetELFStreamer final : public WebAssemblyTargetStreamer {		class WebAssemblyTargetELFStreamer final : public WebAssemblyTargetStreamer {
public:		public:
explicit WebAssemblyTargetELFStreamer(MCStreamer &S);		explicit WebAssemblyTargetELFStreamer(MCStreamer &S);

void emitParam(ArrayRef<MVT> Types) override;		void emitParam(ArrayRef<MVT> Types) override;
void emitResult(ArrayRef<MVT> Types) override;		void emitResult(ArrayRef<MVT> Types) override;
void emitLocal(ArrayRef<MVT> Types) override;		void emitLocal(ArrayRef<MVT> Types) override;
void emitEndFunc() override;		void emitEndFunc() override;
		void emitIndIdx(const MCExpr *Value) override;
};		};

} // end namespace llvm		} // end namespace llvm

#endif		#endif

lib/Target/WebAssembly/MCTargetDesc/WebAssemblyTargetStreamer.cpp

Show First 20 Lines • Show All 61 Lines • ▼ Show 20 Lines	void WebAssemblyTargetAsmStreamer::emitLocal(ArrayRef<MVT> Types) {
PrintTypes(OS, Types);		PrintTypes(OS, Types);
}		}

void WebAssemblyTargetAsmStreamer::emitEndFunc() { OS << "\t.endfunc\n"; }		void WebAssemblyTargetAsmStreamer::emitEndFunc() { OS << "\t.endfunc\n"; }

void WebAssemblyTargetAsmStreamer::emitIndirectFunctionType(		void WebAssemblyTargetAsmStreamer::emitIndirectFunctionType(
StringRef name, SmallVectorImpl<MVT> &SignatureVTs, size_t NumResults) {		StringRef name, SmallVectorImpl<MVT> &SignatureVTs, size_t NumResults) {
OS << "\t.functype\t" << name;		OS << "\t.functype\t" << name;
if (NumResults == 0) OS << ", void";		if (NumResults == 0)
		OS << ", void";
for (auto Ty : SignatureVTs) {		for (auto Ty : SignatureVTs) {
OS << ", " << WebAssembly::TypeToString(Ty);		OS << ", " << WebAssembly::TypeToString(Ty);
}		}
OS << "\n";		OS << "\n";
}		}

		void WebAssemblyTargetAsmStreamer::emitIndIdx(const MCExpr *Value) {
		OS << "\t.indidx \t" << *Value << '\n';
		}

// FIXME: What follows is not the real binary encoding.		// FIXME: What follows is not the real binary encoding.

static void EncodeTypes(MCStreamer &Streamer, ArrayRef<MVT> Types) {		static void EncodeTypes(MCStreamer &Streamer, ArrayRef<MVT> Types) {
Streamer.EmitIntValue(Types.size(), sizeof(uint64_t));		Streamer.EmitIntValue(Types.size(), sizeof(uint64_t));
for (MVT Type : Types)		for (MVT Type : Types)
Streamer.EmitIntValue(Type.SimpleTy, sizeof(uint64_t));		Streamer.EmitIntValue(Type.SimpleTy, sizeof(uint64_t));
}		}

Show All 10 Lines
void WebAssemblyTargetELFStreamer::emitLocal(ArrayRef<MVT> Types) {		void WebAssemblyTargetELFStreamer::emitLocal(ArrayRef<MVT> Types) {
Streamer.EmitIntValue(WebAssembly::DotLocal, sizeof(uint64_t));		Streamer.EmitIntValue(WebAssembly::DotLocal, sizeof(uint64_t));
EncodeTypes(Streamer, Types);		EncodeTypes(Streamer, Types);
}		}

void WebAssemblyTargetELFStreamer::emitEndFunc() {		void WebAssemblyTargetELFStreamer::emitEndFunc() {
Streamer.EmitIntValue(WebAssembly::DotEndFunc, sizeof(uint64_t));		Streamer.EmitIntValue(WebAssembly::DotEndFunc, sizeof(uint64_t));
}		}

		void WebAssemblyTargetELFStreamer::emitIndIdx(const MCExpr *Value) {
		Streamer.EmitIntValue(WebAssembly::DotIndIdx, sizeof(uint64_t));
		Streamer.EmitValue(Value, sizeof(uint64_t));
		}

lib/Target/WebAssembly/WebAssemblyAsmPrinter.cpp

	Show First 20 Lines • Show All 177 Lines • ▼ Show 20 Lines
	}			}

	void WebAssemblyAsmPrinter::EmitFunctionBodyStart() {			void WebAssemblyAsmPrinter::EmitFunctionBodyStart() {
	if (!MFI->getParams().empty())			if (!MFI->getParams().empty())
	getTargetStreamer()->emitParam(MFI->getParams());			getTargetStreamer()->emitParam(MFI->getParams());

	SmallVector<MVT, 4> ResultVTs;			SmallVector<MVT, 4> ResultVTs;
	const Function &F(*MF->getFunction());			const Function &F(*MF->getFunction());

				// Emit the function index.
				MDNode *Idx;
				if ((Idx = F.getMetadata("wasm.index"))) {
				jfbUnsubmitted Done Reply Inline Actions You can fold the above lines into one: if (MDNode Idx = F.getMetadata("wasm.index")) { LLVM usually uses that idiom. jfb:* You can fold the above lines into one: ``` if (MDNode *Idx = F.getMetadata("wasm.index")) { ```…
				assert(Idx->getNumOperands() == 1);

				pccUnsubmitted Done Reply Inline Actions clang-format this line. pcc: clang-format this line.
				getTargetStreamer()->emitIndIdx(AsmPrinter::lowerConstant(cast<ConstantAsMetadata>(Idx->getOperand(0))->getValue()));
				}

	ComputeLegalValueVTs(F, TM, F.getReturnType(), ResultVTs);			ComputeLegalValueVTs(F, TM, F.getReturnType(), ResultVTs);

	// If the return type needs to be legalized it will get converted into			// If the return type needs to be legalized it will get converted into
	// passing a pointer.			// passing a pointer.
	if (ResultVTs.size() == 1)			if (ResultVTs.size() == 1)
	getTargetStreamer()->emitResult(ResultVTs);			getTargetStreamer()->emitResult(ResultVTs);

	bool AnyWARegs = false;			bool AnyWARegs = false;
	▲ Show 20 Lines • Show All 141 Lines • Show Last 20 Lines

lib/Transforms/IPO/LowerTypeTests.cpp

//===-- LowerTypeTests.cpp - type metadata lowering pass ------------------===//		//===-- LowerTypeTests.cpp - type metadata lowering pass ------------------===//
//		//
// The LLVM Compiler Infrastructure		// The LLVM Compiler Infrastructure
//		//
// This file is distributed under the University of Illinois Open Source		// This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details.		// License. See LICENSE.TXT for details.
//		//
//===----------------------------------------------------------------------===//		//===----------------------------------------------------------------------===//
//		//
// This pass lowers type metadata and calls to the llvm.type.test intrinsic.		// This pass lowers type metadata and calls to the llvm.type.test intrinsic.
// See http://llvm.org/docs/TypeMetadata.html for more information.		// See http://llvm.org/docs/TypeMetadata.html for more information.
//		//
//===----------------------------------------------------------------------===//		//===----------------------------------------------------------------------===//

#include "llvm/Transforms/IPO/LowerTypeTests.h"		#include "llvm/Transforms/IPO/LowerTypeTests.h"
#include "llvm/Transforms/IPO.h"
#include "llvm/ADT/EquivalenceClasses.h"		#include "llvm/ADT/EquivalenceClasses.h"
#include "llvm/ADT/Statistic.h"		#include "llvm/ADT/Statistic.h"
#include "llvm/ADT/Triple.h"		#include "llvm/ADT/Triple.h"
#include "llvm/IR/Constant.h"		#include "llvm/IR/Constant.h"
#include "llvm/IR/Constants.h"		#include "llvm/IR/Constants.h"
#include "llvm/IR/Function.h"		#include "llvm/IR/Function.h"
#include "llvm/IR/GlobalObject.h"		#include "llvm/IR/GlobalObject.h"
#include "llvm/IR/GlobalVariable.h"		#include "llvm/IR/GlobalVariable.h"
#include "llvm/IR/IRBuilder.h"		#include "llvm/IR/IRBuilder.h"
#include "llvm/IR/Instructions.h"		#include "llvm/IR/Instructions.h"
#include "llvm/IR/Intrinsics.h"		#include "llvm/IR/Intrinsics.h"
#include "llvm/IR/Module.h"		#include "llvm/IR/Module.h"
#include "llvm/IR/Operator.h"		#include "llvm/IR/Operator.h"
#include "llvm/Pass.h"		#include "llvm/Pass.h"
#include "llvm/Support/Debug.h"		#include "llvm/Support/Debug.h"
#include "llvm/Support/raw_ostream.h"		#include "llvm/Support/raw_ostream.h"
		#include "llvm/Transforms/IPO.h"
#include "llvm/Transforms/Utils/BasicBlockUtils.h"		#include "llvm/Transforms/Utils/BasicBlockUtils.h"

using namespace llvm;		using namespace llvm;
using namespace lowertypetests;		using namespace lowertypetests;

#define DEBUG_TYPE "lowertypetests"		#define DEBUG_TYPE "lowertypetests"

STATISTIC(ByteArraySizeBits, "Byte array size in bits");		STATISTIC(ByteArraySizeBits, "Byte array size in bits");
Show All 33 Lines	bool BitSetInfo::containsValue(
}		}

if (auto GEP = dyn_cast<GEPOperator>(V)) {		if (auto GEP = dyn_cast<GEPOperator>(V)) {
APInt APOffset(DL.getPointerSizeInBits(0), 0);		APInt APOffset(DL.getPointerSizeInBits(0), 0);
bool Result = GEP->accumulateConstantOffset(DL, APOffset);		bool Result = GEP->accumulateConstantOffset(DL, APOffset);
if (!Result)		if (!Result)
return false;		return false;
COffset += APOffset.getZExtValue();		COffset += APOffset.getZExtValue();
return containsValue(DL, GlobalLayout, GEP->getPointerOperand(),		return containsValue(DL, GlobalLayout, GEP->getPointerOperand(), COffset);
COffset);
}		}

if (auto Op = dyn_cast<Operator>(V)) {		if (auto Op = dyn_cast<Operator>(V)) {
if (Op->getOpcode() == Instruction::BitCast)		if (Op->getOpcode() == Instruction::BitCast)
return containsValue(DL, GlobalLayout, Op->getOperand(0), COffset);		return containsValue(DL, GlobalLayout, Op->getOperand(0), COffset);

if (Op->getOpcode() == Instruction::Select)		if (Op->getOpcode() == Instruction::Select)
return containsValue(DL, GlobalLayout, Op->getOperand(1), COffset) &&		return containsValue(DL, GlobalLayout, Op->getOperand(1), COffset) &&
▲ Show 20 Lines • Show All 125 Lines • ▼ Show 20 Lines	struct LowerTypeTests : public ModulePass {
Triple::ObjectFormatType ObjectFormat;		Triple::ObjectFormatType ObjectFormat;
IntegerType *Int1Ty;		IntegerType *Int1Ty;
IntegerType *Int8Ty;		IntegerType *Int8Ty;
IntegerType *Int32Ty;		IntegerType *Int32Ty;
Type *Int32PtrTy;		Type *Int32PtrTy;
IntegerType *Int64Ty;		IntegerType *Int64Ty;
IntegerType *IntPtrTy;		IntegerType *IntPtrTy;

		uint64_t Counter;
		jfbUnsubmitted Done Reply Inline Actions A more descriptive name would be better: what is this counting? jfb: A more descriptive name would be better: what is this counting?

// Mapping from type identifiers to the call sites that test them.		// Mapping from type identifiers to the call sites that test them.
DenseMap<Metadata , std::vector<CallInst >> TypeTestCallSites;		DenseMap<Metadata , std::vector<CallInst >> TypeTestCallSites;

std::vector<ByteArrayInfo> ByteArrayInfos;		std::vector<ByteArrayInfo> ByteArrayInfos;

BitSetInfo		BitSetInfo
buildBitSet(Metadata *TypeId,		buildBitSet(Metadata *TypeId,
const DenseMap<GlobalObject *, uint64_t> &GlobalLayout);		const DenseMap<GlobalObject *, uint64_t> &GlobalLayout);
Show All 12 Lines	void buildBitSetsFromGlobalVariables(ArrayRef<Metadata *> TypeIds,
ArrayRef<GlobalVariable *> Globals);		ArrayRef<GlobalVariable *> Globals);
unsigned getJumpTableEntrySize();		unsigned getJumpTableEntrySize();
Type *getJumpTableEntryType();		Type *getJumpTableEntryType();
Constant createJumpTableEntry(GlobalObject Src, Function *Dest,		Constant createJumpTableEntry(GlobalObject Src, Function *Dest,
unsigned Distance);		unsigned Distance);
void verifyTypeMDNode(GlobalObject GO, MDNode Type);		void verifyTypeMDNode(GlobalObject GO, MDNode Type);
void buildBitSetsFromFunctions(ArrayRef<Metadata *> TypeIds,		void buildBitSetsFromFunctions(ArrayRef<Metadata *> TypeIds,
ArrayRef<Function *> Functions);		ArrayRef<Function *> Functions);
		void buildBitSetsFromFunctionsX86(ArrayRef<Metadata *> TypeIds,
		ArrayRef<Function *> Functions);
		void buildBitSetsFromFunctionsWASM(ArrayRef<Metadata *> TypeIds,
		ArrayRef<Function *> Functions);
void buildBitSetsFromDisjointSet(ArrayRef<Metadata *> TypeIds,		void buildBitSetsFromDisjointSet(ArrayRef<Metadata *> TypeIds,
ArrayRef<GlobalObject *> Globals);		ArrayRef<GlobalObject *> Globals);
bool lower();		bool lower();

bool doInitialization(Module &M) override;		bool doInitialization(Module &M) override;
bool runOnModule(Module &M) override;		bool runOnModule(Module &M) override;
};		};

Show All 16 Lines	bool LowerTypeTests::doInitialization(Module &Mod) {

Int1Ty = Type::getInt1Ty(M->getContext());		Int1Ty = Type::getInt1Ty(M->getContext());
Int8Ty = Type::getInt8Ty(M->getContext());		Int8Ty = Type::getInt8Ty(M->getContext());
Int32Ty = Type::getInt32Ty(M->getContext());		Int32Ty = Type::getInt32Ty(M->getContext());
Int32PtrTy = PointerType::getUnqual(Int32Ty);		Int32PtrTy = PointerType::getUnqual(Int32Ty);
Int64Ty = Type::getInt64Ty(M->getContext());		Int64Ty = Type::getInt64Ty(M->getContext());
IntPtrTy = DL.getIntPtrType(M->getContext(), 0);		IntPtrTy = DL.getIntPtrType(M->getContext(), 0);

		Counter = 0;

TypeTestCallSites.clear();		TypeTestCallSites.clear();

return false;		return false;
}		}

/// Build a bit set for TypeId using the object layouts in		/// Build a bit set for TypeId using the object layouts in
/// GlobalLayout.		/// GlobalLayout.
BitSetInfo LowerTypeTests::buildBitSet(		BitSetInfo LowerTypeTests::buildBitSet(
Metadata *TypeId,		Metadata TypeId, const DenseMap<GlobalObject , uint64_t> &GlobalLayout) {
const DenseMap<GlobalObject *, uint64_t> &GlobalLayout) {
BitSetBuilder BSB;		BitSetBuilder BSB;

// Compute the byte offset of each address associated with this type		// Compute the byte offset of each address associated with this type
// identifier.		// identifier.
SmallVector<MDNode *, 2> Types;		SmallVector<MDNode *, 2> Types;
for (auto &GlobalAndOffset : GlobalLayout) {		for (auto &GlobalAndOffset : GlobalLayout) {
Types.clear();		Types.clear();
GlobalAndOffset.first->getMetadata(LLVMContext::MD_type, Types);		GlobalAndOffset.first->getMetadata(LLVMContext::MD_type, Types);
for (MDNode *Type : Types) {		for (MDNode *Type : Types) {
if (Type->getOperand(1) != TypeId)		if (Type->getOperand(1) != TypeId)
continue;		continue;
uint64_t Offset =		uint64_t Offset =
cast<ConstantInt>(cast<ConstantAsMetadata>(Type->getOperand(0))		cast<ConstantInt>(
->getValue())->getZExtValue();		cast<ConstantAsMetadata>(Type->getOperand(0))->getValue())
		->getZExtValue();
BSB.addOffset(GlobalAndOffset.second + Offset);		BSB.addOffset(GlobalAndOffset.second + Offset);
}		}
}		}

return BSB.build();		return BSB.build();
}		}

/// Build a test that bit BitOffset mod sizeof(Bits)*8 is set in		/// Build a test that bit BitOffset mod sizeof(Bits)*8 is set in
Show All 12 Lines
}		}

ByteArrayInfo *LowerTypeTests::createByteArray(BitSetInfo &BSI) {		ByteArrayInfo *LowerTypeTests::createByteArray(BitSetInfo &BSI) {
// Create globals to stand in for byte arrays and masks. These never actually		// Create globals to stand in for byte arrays and masks. These never actually
// get initialized, we RAUW and erase them later in allocateByteArrays() once		// get initialized, we RAUW and erase them later in allocateByteArrays() once
// we know the offset and mask to use.		// we know the offset and mask to use.
auto ByteArrayGlobal = new GlobalVariable(		auto ByteArrayGlobal = new GlobalVariable(
M, Int8Ty, /isConstant=*/true, GlobalValue::PrivateLinkage, nullptr);		M, Int8Ty, /isConstant=*/true, GlobalValue::PrivateLinkage, nullptr);
auto MaskGlobal = new GlobalVariable(		auto MaskGlobal = new GlobalVariable(M, Int8Ty, /isConstant=*/true,
M, Int8Ty, /isConstant=*/true, GlobalValue::PrivateLinkage, nullptr);		GlobalValue::PrivateLinkage, nullptr);

ByteArrayInfos.emplace_back();		ByteArrayInfos.emplace_back();
ByteArrayInfo *BAI = &ByteArrayInfos.back();		ByteArrayInfo *BAI = &ByteArrayInfos.back();

BAI->Bits = BSI.Bits;		BAI->Bits = BSI.Bits;
BAI->BitSize = BSI.BitSize;		BAI->BitSize = BSI.BitSize;
BAI->ByteArray = ByteArrayGlobal;		BAI->ByteArray = ByteArrayGlobal;
BAI->Mask = ConstantExpr::getPtrToInt(MaskGlobal, Int8Ty);		BAI->Mask = ConstantExpr::getPtrToInt(MaskGlobal, Int8Ty);
▲ Show 20 Lines • Show All 259 Lines • ▼ Show 20 Lines	for (CallInst *CI : TypeTestCallSites[TypeId]) {
CI->replaceAllUsesWith(Lowered);		CI->replaceAllUsesWith(Lowered);
CI->eraseFromParent();		CI->eraseFromParent();
}		}
}		}
}		}

void LowerTypeTests::verifyTypeMDNode(GlobalObject GO, MDNode Type) {		void LowerTypeTests::verifyTypeMDNode(GlobalObject GO, MDNode Type) {
if (Type->getNumOperands() != 2)		if (Type->getNumOperands() != 2)
report_fatal_error(		report_fatal_error("All operands of type metadata must have 2 elements");
"All operands of type metadata must have 2 elements");

if (GO->isThreadLocal())		if (GO->isThreadLocal())
report_fatal_error("Bit set element may not be thread-local");		report_fatal_error("Bit set element may not be thread-local");
if (isa<GlobalVariable>(GO) && GO->hasSection())		if (isa<GlobalVariable>(GO) && GO->hasSection())
report_fatal_error(		report_fatal_error(
"A member of a type identifier may not have an explicit section");		"A member of a type identifier may not have an explicit section");

if (isa<GlobalVariable>(GO) && GO->isDeclarationForLinker())		if (isa<GlobalVariable>(GO) && GO->isDeclarationForLinker())
report_fatal_error(		report_fatal_error(
"A global var member of a type identifier must be a definition");		"A global var member of a type identifier must be a definition");

auto OffsetConstMD = dyn_cast<ConstantAsMetadata>(Type->getOperand(0));		auto OffsetConstMD = dyn_cast<ConstantAsMetadata>(Type->getOperand(0));
if (!OffsetConstMD)		if (!OffsetConstMD)
report_fatal_error("Type offset must be a constant");		report_fatal_error("Type offset must be a constant");
auto OffsetInt = dyn_cast<ConstantInt>(OffsetConstMD->getValue());		auto OffsetInt = dyn_cast<ConstantInt>(OffsetConstMD->getValue());
if (!OffsetInt)		if (!OffsetInt)
report_fatal_error("Type offset must be an integer constant");		report_fatal_error("Type offset must be an integer constant");
}		}

static const unsigned kX86JumpTableEntrySize = 8;		static const unsigned kX86JumpTableEntrySize = 8;

unsigned LowerTypeTests::getJumpTableEntrySize() {		unsigned LowerTypeTests::getJumpTableEntrySize() {
if (Arch != Triple::x86 && Arch != Triple::x86_64)
report_fatal_error("Unsupported architecture for jump tables");

jfbUnsubmitted Done Reply Inline Actions This shouldn't get deleted since this is x86-specific? jfb: This shouldn't get deleted since this is x86-specific?
ddccAuthorUnsubmitted Not Done Reply Inline Actions I moved the check higher up in `buildBitSetsFromFunctions()` and eliminated the duplicates. ddcc: I moved the check higher up in `buildBitSetsFromFunctions()` and eliminated the duplicates.
return kX86JumpTableEntrySize;		return kX86JumpTableEntrySize;
}		}

// Create a constant representing a jump table entry for the target. This		// Create a constant representing a jump table entry for the target. This
// consists of an instruction sequence containing a relative branch to Dest. The		// consists of an instruction sequence containing a relative branch to Dest. The
// constant will be laid out at address Src+(Len*Distance) where Len is the		// constant will be laid out at address Src+(Len*Distance) where Len is the
// target-specific jump table entry size.		// target-specific jump table entry size.
Constant LowerTypeTests::createJumpTableEntry(GlobalObject Src,		Constant LowerTypeTests::createJumpTableEntry(GlobalObject Src,
Function *Dest,		Function *Dest,
unsigned Distance) {		unsigned Distance) {
if (Arch != Triple::x86 && Arch != Triple::x86_64)
report_fatal_error("Unsupported architecture for jump tables");

jfbUnsubmitted Done Reply Inline Actions Same, still x86-specific. jfb: Same, still x86-specific.
const unsigned kJmpPCRel32Code = 0xe9;		const unsigned kJmpPCRel32Code = 0xe9;
const unsigned kInt3Code = 0xcc;		const unsigned kInt3Code = 0xcc;

ConstantInt *Jmp = ConstantInt::get(Int8Ty, kJmpPCRel32Code);		ConstantInt *Jmp = ConstantInt::get(Int8Ty, kJmpPCRel32Code);

// Build a constant representing the displacement between the constant's		// Build a constant representing the displacement between the constant's
// address and Dest. This will resolve to a PC32 relocation referring to Dest.		// address and Dest. This will resolve to a PC32 relocation referring to Dest.
Constant *DestInt = ConstantExpr::getPtrToInt(Dest, IntPtrTy);		Constant *DestInt = ConstantExpr::getPtrToInt(Dest, IntPtrTy);
Constant *SrcInt = ConstantExpr::getPtrToInt(Src, IntPtrTy);		Constant *SrcInt = ConstantExpr::getPtrToInt(Src, IntPtrTy);
Constant *Disp = ConstantExpr::getSub(DestInt, SrcInt);		Constant *Disp = ConstantExpr::getSub(DestInt, SrcInt);
ConstantInt *DispOffset =		ConstantInt *DispOffset =
ConstantInt::get(IntPtrTy, Distance * kX86JumpTableEntrySize + 5);		ConstantInt::get(IntPtrTy, Distance * kX86JumpTableEntrySize + 5);
Constant *OffsetedDisp = ConstantExpr::getSub(Disp, DispOffset);		Constant *OffsetedDisp = ConstantExpr::getSub(Disp, DispOffset);
OffsetedDisp = ConstantExpr::getTruncOrBitCast(OffsetedDisp, Int32Ty);		OffsetedDisp = ConstantExpr::getTruncOrBitCast(OffsetedDisp, Int32Ty);

ConstantInt *Int3 = ConstantInt::get(Int8Ty, kInt3Code);		ConstantInt *Int3 = ConstantInt::get(Int8Ty, kInt3Code);

Constant *Fields[] = {		Constant *Fields[] = {
Jmp, OffsetedDisp, Int3, Int3, Int3,		Jmp, OffsetedDisp, Int3, Int3, Int3,
};		};
return ConstantStruct::getAnon(Fields, /Packed=/true);		return ConstantStruct::getAnon(Fields, /Packed=/true);
}		}

Type *LowerTypeTests::getJumpTableEntryType() {		Type *LowerTypeTests::getJumpTableEntryType() {
if (Arch != Triple::x86 && Arch != Triple::x86_64)
report_fatal_error("Unsupported architecture for jump tables");

jfbUnsubmitted Done Reply Inline Actions Same. jfb: Same.
return StructType::get(M->getContext(),		return StructType::get(M->getContext(),
{Int8Ty, Int32Ty, Int8Ty, Int8Ty, Int8Ty},		{Int8Ty, Int32Ty, Int8Ty, Int8Ty, Int8Ty},
/Packed=/true);		/Packed=/true);
}		}

/// Given a disjoint set of type identifiers and functions, build a jump table		/// Given a disjoint set of type identifiers and functions, build a jump table
/// for the functions, build the bit sets and lower the llvm.type.test calls.		/// for the functions, build the bit sets and lower the llvm.type.test calls.
		pccUnsubmitted Done Reply Inline Actions This comment belongs on `buildBitSetsFromFunctionsX86`. pcc: This comment belongs on `buildBitSetsFromFunctionsX86`.
void LowerTypeTests::buildBitSetsFromFunctions(ArrayRef<Metadata *> TypeIds,		void LowerTypeTests::buildBitSetsFromFunctions(ArrayRef<Metadata *> TypeIds,
ArrayRef<Function *> Functions) {		ArrayRef<Function *> Functions) {
		if (Arch == Triple::x86 \|\| Arch == Triple::x86_64) {
		buildBitSetsFromFunctionsX86(TypeIds, Functions);
		} else if (Arch == Triple::wasm32 \|\| Arch == Triple::wasm64) {
		jfbUnsubmitted Done Reply Inline Actions Weird format here, you should run `clang-format` on the parts that you change. jfb: Weird format here, you should run `clang-format` on the parts that you change.
		buildBitSetsFromFunctionsWASM(TypeIds, Functions);
		} else {
		report_fatal_error("Unsupported architecture for jump tables");
		}
		pccUnsubmitted Done Reply Inline Actions Remove all braces here. pcc: Remove all braces here.
		}

		void LowerTypeTests::buildBitSetsFromFunctionsX86(
		ArrayRef<Metadata > TypeIds, ArrayRef<Function > Functions) {
// Unlike the global bitset builder, the function bitset builder cannot		// Unlike the global bitset builder, the function bitset builder cannot
// re-arrange functions in a particular order and base its calculations on the		// re-arrange functions in a particular order and base its calculations on the
// layout of the functions' entry points, as we have no idea how large a		// layout of the functions' entry points, as we have no idea how large a
// particular function will end up being (the size could even depend on what		// particular function will end up being (the size could even depend on what
// this pass does!) Instead, we build a jump table, which is a block of code		// this pass does!) Instead, we build a jump table, which is a block of code
// consisting of one branch instruction for each of the functions in the bit		// consisting of one branch instruction for each of the functions in the bit
// set that branches to the target function, and redirect any taken function		// set that branches to the target function, and redirect any taken function
// addresses to the corresponding jump table entry. In the object file's		// addresses to the corresponding jump table entry. In the object file's
▲ Show 20 Lines • Show All 115 Lines • ▼ Show 20 Lines	void LowerTypeTests::buildBitSetsFromFunctionsX86(
std::vector<Constant *> JumpTableEntries;		std::vector<Constant *> JumpTableEntries;
for (unsigned I = 0; I != Functions.size(); ++I)		for (unsigned I = 0; I != Functions.size(); ++I)
JumpTableEntries.push_back(		JumpTableEntries.push_back(
createJumpTableEntry(JumpTable, Functions[I], I));		createJumpTableEntry(JumpTable, Functions[I], I));
JumpTable->setInitializer(		JumpTable->setInitializer(
ConstantArray::get(JumpTableType, JumpTableEntries));		ConstantArray::get(JumpTableType, JumpTableEntries));
}		}

		// Assign a dummy layout based using an incrementing counter, and store this as
		// metadata. During generation of the indexed indirect function call table, the
		// backend will ensure that the appropriate indexes are used.
		void LowerTypeTests::buildBitSetsFromFunctionsWASM(
		ArrayRef<Metadata > TypeIds, ArrayRef<Function > Functions) {
		assert(!Functions.empty());

		jfbUnsubmitted Done Reply Inline Actions `static` here is a bad idea. Is it just used once to fill `GlobalLayout`, or is the function called multiple times? jfb: `static` here is a bad idea. Is it just used once to fill `GlobalLayout`, or is the function…
		ddccAuthorUnsubmitted Done Reply Inline Actions This function is called once for each disjoint equivalence set. I'll move it out to the class level. ddcc: This function is called once for each disjoint equivalence set. I'll move it out to the class…
		// Build a dummy layout.
		DenseMap<GlobalObject *, uint64_t> GlobalLayout;
		for (Function *F : Functions)
		GlobalLayout[F] = Counter++;
		pccUnsubmitted Done Reply Inline Actions You could set the function metadata here instead of in the loop below. pcc: You could set the function metadata here instead of in the loop below.

		lowerTypeTestCalls(TypeIds,
		pccUnsubmitted Done Reply Inline Actions Please explain why you are passing a null pointer here (i.e. because wasm does not use jump tables directly...) pcc: Please explain why you are passing a null pointer here (i.e. because wasm does not use jump…
		pccUnsubmitted Not Done Reply Inline Actions You may want to use `Function::hasAddressTaken` to exclude direct function calls here. Please also document how this interacts with dynamic loading (i.e. not at all at the moment, right?) pcc: You may want to use `Function::hasAddressTaken` to exclude direct function calls here. Please…
		ConstantPointerNull::get(cast<PointerType>(Int32PtrTy)),
		jfbUnsubmitted Done Reply Inline Actions Why nullptr here? jfb: Why nullptr here?
		ddccAuthorUnsubmitted Not Done Reply Inline Actions Added a comment. ddcc: Added a comment.
		GlobalLayout);

		// Generate metadata for the indirect function indexes.
		for (const auto &P : GlobalLayout) {
		MDNode *MD = MDNode::get(P.first->getContext(),
		ArrayRef<Metadata *>(ConstantAsMetadata::get(
		ConstantInt::get(Int64Ty, P.second))));
		cast<Function>(P.first)->setMetadata("wasm.index", MD);
		}
		}

void LowerTypeTests::buildBitSetsFromDisjointSet(		void LowerTypeTests::buildBitSetsFromDisjointSet(
ArrayRef<Metadata > TypeIds, ArrayRef<GlobalObject > Globals) {		ArrayRef<Metadata > TypeIds, ArrayRef<GlobalObject > Globals) {
llvm::DenseMap<Metadata *, uint64_t> TypeIdIndices;		llvm::DenseMap<Metadata *, uint64_t> TypeIdIndices;
for (unsigned I = 0; I != TypeIds.size(); ++I)		for (unsigned I = 0; I != TypeIds.size(); ++I)
TypeIdIndices[TypeIds[I]] = I;		TypeIdIndices[TypeIds[I]] = I;

// For each type identifier, build a set of indices that refer to members of		// For each type identifier, build a set of indices that refer to members of
// the type identifier.		// the type identifier.
▲ Show 20 Lines • Show All 89 Lines • ▼ Show 20 Lines	for (GlobalObject &GO : M->global_objects()) {
}		}
}		}

for (const Use &U : TypeTestFunc->uses()) {		for (const Use &U : TypeTestFunc->uses()) {
auto CI = cast<CallInst>(U.getUser());		auto CI = cast<CallInst>(U.getUser());

auto BitSetMDVal = dyn_cast<MetadataAsValue>(CI->getArgOperand(1));		auto BitSetMDVal = dyn_cast<MetadataAsValue>(CI->getArgOperand(1));
if (!BitSetMDVal)		if (!BitSetMDVal)
report_fatal_error(		report_fatal_error("Second argument of llvm.type.test must be metadata");
"Second argument of llvm.type.test must be metadata");
auto BitSet = BitSetMDVal->getMetadata();		auto BitSet = BitSetMDVal->getMetadata();

// Add the call site to the list of call sites for this type identifier. We		// Add the call site to the list of call sites for this type identifier. We
// also use TypeTestCallSites to keep track of whether we have seen this		// also use TypeTestCallSites to keep track of whether we have seen this
// type identifier before. If we have, we don't need to re-add the		// type identifier before. If we have, we don't need to re-add the
// referenced globals to the equivalence class.		// referenced globals to the equivalence class.
std::pair<DenseMap<Metadata , std::vector<CallInst >>::iterator, bool>		std::pair<DenseMap<Metadata , std::vector<CallInst >>::iterator, bool>
Ins = TypeTestCallSites.insert(		Ins = TypeTestCallSites.insert(
Show All 21 Lines	if (GlobalClasses.empty())
return false;		return false;

// Build a list of disjoint sets ordered by their maximum global index for		// Build a list of disjoint sets ordered by their maximum global index for
// determinism.		// determinism.
std::vector<std::pair<GlobalClassesTy::iterator, unsigned>> Sets;		std::vector<std::pair<GlobalClassesTy::iterator, unsigned>> Sets;
for (GlobalClassesTy::iterator I = GlobalClasses.begin(),		for (GlobalClassesTy::iterator I = GlobalClasses.begin(),
E = GlobalClasses.end();		E = GlobalClasses.end();
I != E; ++I) {		I != E; ++I) {
if (!I->isLeader()) continue;		if (!I->isLeader())
		continue;
++NumTypeIdDisjointSets;		++NumTypeIdDisjointSets;

unsigned MaxIndex = 0;		unsigned MaxIndex = 0;
for (GlobalClassesTy::member_iterator MI = GlobalClasses.member_begin(I);		for (GlobalClassesTy::member_iterator MI = GlobalClasses.member_begin(I);
MI != GlobalClasses.member_end(); ++MI) {		MI != GlobalClasses.member_end(); ++MI) {
if ((MI).is<Metadata >())		if ((MI).is<Metadata >())
MaxIndex = std::max(MaxIndex, TypeIdIndices[MI->get<Metadata *>()]);		MaxIndex = std::max(MaxIndex, TypeIdIndices[MI->get<Metadata *>()]);
}		}
▲ Show 20 Lines • Show All 43 Lines • Show Last 20 Lines