This is an archive of the discontinued LLVM Phabricator instance.

Differential D28141

[COFF] Use 32-bit jump table entries in .rdata for Win64
ClosedPublic

Authored by rnk on Dec 28 2016, 1:42 PM.

Details

Reviewers
compnerd
majnemer
Commits
rGc9e0a153cfb3: [COFF] Use 32-bit jump table entries in .rdata for Win64
rL290694: [COFF] Use 32-bit jump table entries in .rdata for Win64
Summary

We were already using 32-bit jump table entries, but this was a
consequence of the default PIC model on Win64, and not an intentional
design decision. This patch ensures that we always use 32-bit label
difference jump table entries on Win64 regardless of the PIC model. This
is a good idea because it saves executable size and object file size.

Moving the jump tables to .rdata cleans up the disassembled object code
and reduces the available ROP targets, but it requires adding one more
RIP-relative lea to the code. COFF doesn't have relocations to express
the difference between two arbitrary symbols, so we can't use the jump
table label in the label difference like we do elsewhere.

Fixes PR31488

Diff Detail

Event Timeline

rnk updated this revision to Diff 82616.Dec 28 2016, 1:42 PM
rnk retitled this revision from to [COFF] Use 32-bit jump table entries in .rdata for Win64.
rnk updated this object.
rnk added reviewers: majnemer, compnerd.
rnk added a subscriber: llvm-commits.
majnemer accepted this revision.Dec 28 2016, 3:14 PM
majnemer edited edge metadata.

LGTM

This revision is now accepted and ready to land.Dec 28 2016, 3:14 PM
Closed by commit rL290694: [COFF] Use 32-bit jump table entries in .rdata for Win64 (authored by rnk). · Explain WhyDec 28 2016, 4:23 PM
This revision was automatically updated to reflect the committed changes.
wxiao3 added a subscriber: wxiao3.Feb 21 2023, 7:22 PM

@rnk do you have plan to bring this back?

Herald added projects: Restricted Project, Restricted Project. · View Herald TranscriptFeb 21 2023, 7:22 PM
Herald added a subscriber: pengfei. · View Herald Transcript
rnk added a comment.May 3 2023, 1:08 PM
In D28141#4143347, @wxiao3 wrote:

@rnk do you have plan to bring this back?

As far as I can tell, the issue is currently fixed, see the usage of .section .rdata and .long directives from llc here: https://gcc.godbolt.org/z/1znoroP74

wxiao3 added a comment.May 4 2023, 2:45 AM
In D28141#4316637, @rnk wrote:
In D28141#4143347, @wxiao3 wrote:

@rnk do you have plan to bring this back?

As far as I can tell, the issue is currently fixed, see the usage of .section .rdata and .long directives from llc here: https://gcc.godbolt.org/z/1znoroP74

Yes, I fix it at: https://reviews.llvm.org/D144701

Revision Contents

PathSize
include/
llvm/
CodeGen/
3 lines
lib/
CodeGen/
7 lines
Target/
X86/
1 line
25 lines
test/
CodeGen/
X86/
12 lines

Diff 82616

include/llvm/CodeGen/TargetLoweringObjectFileImpl.h

Show First 20 LinesShow All 150 Lines▼ Show 20 Lines MCSection *SelectSectionForGlobal(const GlobalObject *GO, SectionKind Kind,
const TargetMachine &TM) const override; const TargetMachine &TM) const override;
void getNameWithPrefix(SmallVectorImpl<char> &OutName, const GlobalValue *GV, void getNameWithPrefix(SmallVectorImpl<char> &OutName, const GlobalValue *GV,
const TargetMachine &TM) const override; const TargetMachine &TM) const override;
MCSection *getSectionForJumpTable(const Function &F, MCSection *getSectionForJumpTable(const Function &F,
const TargetMachine &TM) const override; const TargetMachine &TM) const override;
bool shouldPutJumpTableInFunctionSection(bool UsesLabelDifference,
const Function &F) const override;
/// Emit Obj-C garbage collection and linker options. Only linker option /// Emit Obj-C garbage collection and linker options. Only linker option
/// emission is implemented for COFF. /// emission is implemented for COFF.
void emitModuleFlags(MCStreamer &Streamer, void emitModuleFlags(MCStreamer &Streamer,
ArrayRef<Module::ModuleFlagEntry> ModuleFlags, ArrayRef<Module::ModuleFlagEntry> ModuleFlags,
const TargetMachine &TM) const override; const TargetMachine &TM) const override;
MCSection *getStaticCtorSection(unsigned Priority, MCSection *getStaticCtorSection(unsigned Priority,
const MCSymbol *KeySym) const override; const MCSymbol *KeySym) const override;
Show All 10 Lines

lib/CodeGen/TargetLoweringObjectFileImpl.cpp

Show First 20 LinesShow All 1,049 Lines▼ Show 20 LinesMCSection *TargetLoweringObjectFileCOFF::getSectionForJumpTable(
unsigned Characteristics = getCOFFSectionFlags(Kind, TM); unsigned Characteristics = getCOFFSectionFlags(Kind, TM);
Characteristics |= COFF::IMAGE_SCN_LNK_COMDAT; Characteristics |= COFF::IMAGE_SCN_LNK_COMDAT;
unsigned UniqueID = NextUniqueID++; unsigned UniqueID = NextUniqueID++;
return getContext().getCOFFSection(Name, Characteristics, Kind, COMDATSymName, return getContext().getCOFFSection(Name, Characteristics, Kind, COMDATSymName,
COFF::IMAGE_COMDAT_SELECT_ASSOCIATIVE, UniqueID); COFF::IMAGE_COMDAT_SELECT_ASSOCIATIVE, UniqueID);
} }
bool TargetLoweringObjectFileCOFF::shouldPutJumpTableInFunctionSection(
bool UsesLabelDifference, const Function &F) const {
// We can always create relative relocations, so use another section
// that can be marked non-executable.
return false;
}
void TargetLoweringObjectFileCOFF::emitModuleFlags( void TargetLoweringObjectFileCOFF::emitModuleFlags(
MCStreamer &Streamer, ArrayRef<Module::ModuleFlagEntry> ModuleFlags, MCStreamer &Streamer, ArrayRef<Module::ModuleFlagEntry> ModuleFlags,
const TargetMachine &TM) const { const TargetMachine &TM) const {
MDNode *LinkerOptions = nullptr; MDNode *LinkerOptions = nullptr;
for (const auto &MFE : ModuleFlags) { for (const auto &MFE : ModuleFlags) {
StringRef Key = MFE.Key->getString(); StringRef Key = MFE.Key->getString();
if (Key == "Linker Options") if (Key == "Linker Options")
▲ Show 20 LinesShow All 89 LinesShow Last 20 Lines

lib/Target/X86/X86ISelLowering.h

Show First 20 LinesShow All 678 Lines▼ Show 20 Linesnamespace llvm {
//===--------------------------------------------------------------------===// //===--------------------------------------------------------------------===//
// X86 Implementation of the TargetLowering interface // X86 Implementation of the TargetLowering interface
class X86TargetLowering final : public TargetLowering { class X86TargetLowering final : public TargetLowering {
public: public:
explicit X86TargetLowering(const X86TargetMachine &TM, explicit X86TargetLowering(const X86TargetMachine &TM,
const X86Subtarget &STI); const X86Subtarget &STI);
unsigned getJumpTableEncoding() const override; unsigned getJumpTableEncoding() const override;
bool isJumpTableRelative() const override;
bool useSoftFloat() const override; bool useSoftFloat() const override;
MVT getScalarShiftAmountTy(const DataLayout &, EVT) const override { MVT getScalarShiftAmountTy(const DataLayout &, EVT) const override {
return MVT::i8; return MVT::i8;
} }
const MCExpr * const MCExpr *
LowerCustomJumpTableEntry(const MachineJumpTableInfo *MJTI, LowerCustomJumpTableEntry(const MachineJumpTableInfo *MJTI,
▲ Show 20 LinesShow All 688 LinesShow Last 20 Lines

lib/Target/X86/X86ISelLowering.cpp

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 1,920 Lines▼ Show 20 Lines
/// current function. The returned value is a member of the /// current function. The returned value is a member of the
/// MachineJumpTableInfo::JTEntryKind enum. /// MachineJumpTableInfo::JTEntryKind enum.
unsigned X86TargetLowering::getJumpTableEncoding() const { unsigned X86TargetLowering::getJumpTableEncoding() const {
// In GOT pic mode, each entry in the jump table is emitted as a @GOTOFF // In GOT pic mode, each entry in the jump table is emitted as a @GOTOFF
// symbol. // symbol.
if (isPositionIndependent() && Subtarget.isPICStyleGOT()) if (isPositionIndependent() && Subtarget.isPICStyleGOT())
return MachineJumpTableInfo::EK_Custom32; return MachineJumpTableInfo::EK_Custom32;
// On Win64, we want to use both label differences and a separate section.
if (Subtarget.isTargetWin64())
return MachineJumpTableInfo::EK_LabelDifference32;
// Otherwise, use the normal jump table encoding heuristics. // Otherwise, use the normal jump table encoding heuristics.
return TargetLowering::getJumpTableEncoding(); return TargetLowering::getJumpTableEncoding();
} }
bool X86TargetLowering::isJumpTableRelative() const {
if (Subtarget.isTargetWin64())
return true;
return TargetLowering::isJumpTableRelative();
}
bool X86TargetLowering::useSoftFloat() const { bool X86TargetLowering::useSoftFloat() const {
return Subtarget.useSoftFloat(); return Subtarget.useSoftFloat();
} }
const MCExpr * const MCExpr *
X86TargetLowering::LowerCustomJumpTableEntry(const MachineJumpTableInfo *MJTI, X86TargetLowering::LowerCustomJumpTableEntry(const MachineJumpTableInfo *MJTI,
const MachineBasicBlock *MBB, const MachineBasicBlock *MBB,
unsigned uid,MCContext &Ctx) const{ unsigned uid,MCContext &Ctx) const{
assert(isPositionIndependent() && Subtarget.isPICStyleGOT()); assert(isPositionIndependent() && Subtarget.isPICStyleGOT());
// In 32-bit ELF systems, our jump table entries are formed with @GOTOFF // In 32-bit ELF systems, our jump table entries are formed with @GOTOFF
// entries. // entries.
return MCSymbolRefExpr::create(MBB->getSymbol(), return MCSymbolRefExpr::create(MBB->getSymbol(),
MCSymbolRefExpr::VK_GOTOFF, Ctx); MCSymbolRefExpr::VK_GOTOFF, Ctx);
} }
/// Returns relocation base for the given PIC jumptable. /// Returns relocation base for the given PIC jumptable.
SDValue X86TargetLowering::getPICJumpTableRelocBase(SDValue Table, SDValue X86TargetLowering::getPICJumpTableRelocBase(SDValue Table,
SelectionDAG &DAG) const { SelectionDAG &DAG) const {
// COFF doesn't have relocations to take the difference between two arbitrary
// symbols. The assembler, however, can resolve a fixup between the function
// entry and a basic block label, so use the function entry as the base.
if (Subtarget.isTargetWin64())
return DAG.getGlobalAddress(DAG.getMachineFunction().getFunction(), SDLoc(),
getPointerTy(DAG.getDataLayout()));
if (!Subtarget.is64Bit()) if (!Subtarget.is64Bit())
// This doesn't have SDLoc associated with it, but is not really the // This doesn't have SDLoc associated with it, but is not really the
// same as a Register. // same as a Register.
return DAG.getNode(X86ISD::GlobalBaseReg, SDLoc(), return DAG.getNode(X86ISD::GlobalBaseReg, SDLoc(),
getPointerTy(DAG.getDataLayout())); getPointerTy(DAG.getDataLayout()));
return Table; return Table;
} }
/// This returns the relocation base for the given PIC jumptable, /// This returns the relocation base for the given PIC jumptable,
/// the same as getPICJumpTableRelocBase, but as an MCExpr. /// the same as getPICJumpTableRelocBase, but as an MCExpr.
const MCExpr *X86TargetLowering:: const MCExpr *X86TargetLowering::
getPICJumpTableRelocBaseExpr(const MachineFunction *MF, unsigned JTI, getPICJumpTableRelocBaseExpr(const MachineFunction *MF, unsigned JTI,
MCContext &Ctx) const { MCContext &Ctx) const {
// COFF doesn't have relocations to take the difference between two arbitrary
// symbols. The assembler, however, can resolve a fixup between the function
// entry and a basic block label, so use the function entry as the base.
if (Subtarget.isTargetCOFF())
return MCSymbolRefExpr::create(
getTargetMachine().getSymbol(MF->getFunction()), Ctx);
// X86-64 uses RIP relative addressing based on the jump table label. // X86-64 uses RIP relative addressing based on the jump table label.
if (Subtarget.isPICStyleRIPRel()) if (Subtarget.isPICStyleRIPRel())
return TargetLowering::getPICJumpTableRelocBaseExpr(MF, JTI, Ctx); return TargetLowering::getPICJumpTableRelocBaseExpr(MF, JTI, Ctx);
// Otherwise, the reference is relative to the PIC base. // Otherwise, the reference is relative to the PIC base.
return MCSymbolRefExpr::create(MF->getPICBaseSymbol(), Ctx); return MCSymbolRefExpr::create(MF->getPICBaseSymbol(), Ctx);
} }
▲ Show 20 LinesShow All 32,424 LinesShow Last 20 Lines

test/CodeGen/X86/win64-jumptable.ll

Show All 35 Linessw.epilog: ; preds = %entry, %sw.bb3, %sw.bb2, %sw.bb1, %sw.bb
ret void ret void
} }
declare void @g(i32) declare void @g(i32)
; CHECK: .text ; CHECK: .text
; CHECK: f: ; CHECK: f:
; CHECK: .seh_proc f ; CHECK: .seh_proc f
; CHECK: jmpq *.LJTI0_0 ; CHECK: movslq .LJTI0_0(,%{{.*}},4), %[[target:[^ ]*]]
; CHECK: leaq f(%[[target]]), %[[target]]
; CHECK: jmpq *%[[target]]
; CHECK: .LBB0_{{.*}}: # %sw.bb ; CHECK: .LBB0_{{.*}}: # %sw.bb
; CHECK: .LBB0_{{.*}}: # %sw.bb1 ; CHECK: .LBB0_{{.*}}: # %sw.bb1
; CHECK: .LBB0_{{.*}}: # %sw.bb2 ; CHECK: .LBB0_{{.*}}: # %sw.bb2
; CHECK: .LBB0_{{.*}}: # %sw.bb3 ; CHECK: .LBB0_{{.*}}: # %sw.bb3
; CHECK: callq g ; CHECK: callq g
; CHECK: jmp g # TAILCALL ; CHECK: jmp g # TAILCALL
; CHECK: .section .rdata,"dr" ; CHECK: .section .rdata,"dr"
; CHECK: .quad .LBB0_ ; CHECK: .long .LBB0_{{.*}}-f
; CHECK: .quad .LBB0_ ; CHECK: .long .LBB0_{{.*}}-f
; CHECK: .quad .LBB0_ ; CHECK: .long .LBB0_{{.*}}-f
; CHECK: .quad .LBB0_ ; CHECK: .long .LBB0_{{.*}}-f
; CHECK: .seh_handlerdata ; CHECK: .seh_handlerdata
; It's important that we switch back to .text here, not .rdata. ; It's important that we switch back to .text here, not .rdata.
; CHECK: .text ; CHECK: .text
; CHECK: .seh_endproc ; CHECK: .seh_endproc