This is a fix for PR28697.
An MDNode can indirectly refer to a GlobalValue, through a
ConstantAsMetadata. When the GlobalValue is deleted, the MDNode operand
is reset to nullptr. If the node is uniqued, this can lead to a
hard-to-detect cache invalidation in a Metadata map that's shared across
an LLVMContext.
Consider:
- A map from Metadata* to T called RemappedMDs.
- A node that references a global variable, !{i1* @GV}.
- Insert !{i1* @GV} -> SomeT in the map.
- Delete @GV, leaving behind !{null} -> SomeT.
Looking up the generic and uninteresting !{null} gives you SomeT,
which is likely related to @GV. Worse, SomeT's lifetime may be tied
to the deleted @GV.
This occurs in practice in the shared ValueMap used since r266579 in the
IRMover. Other code that handles more than one Module (with different
lifetimes) in the same LLVMContext could hit it too.
The fix here is a partial revert of r225223: in the rare case that an
MDNode operand is a ConstantAsMetadata (i.e., wrapping a node from the
Value hierarchy), drop uniquing if it gets replaced with nullptr.
This changes step #4 above to leave behind distinct !{null} -> SomeT,
which can't be confused with the generic !{null}.
In theory, this can cause some churn in the LLVMContext's MDNode
uniquing map when Values are being deleted. However:
- The number of GlobalValues referenced from uniqued MDNodes is expected to be quite small. E.g., the debug info metadata schema only references GlobalValues from distinct nodes.
- Other Constants have the lifetime of the LLVMContext, whose teardown is careful to drop references before deleting the constants.
As a result, I don't expect a compile time regression from this change.