This is an archive of the discontinued LLVM Phabricator instance.

Differential D32029

[ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt
ClosedPublic

Authored by kubamracek on Apr 13 2017, 10:10 AM.

Details

Reviewers
rjmccall
ahatanak
Commits
rG5e5e4e790f87: [ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt [take…
rG8f56846d4f86: [ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt
rC300340: [ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt [take…
rC300287: [ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt
rL300340: [ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt [take…
rL300287: [ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt
Summary

CodeGenFunction::EmitObjCForCollectionStmt currently emits lifetime markers for the loop variable in an inconsistent way: lifetime.start is emitted before the loop is entered, but lifetime.end is emitted inside the loop:

; entry block
  %u = alloca %1*, align 8
  %1 = bitcast %1** %u to i8*
  call void @llvm.lifetime.start(i64 8, i8* %1) #5
  ...

; loop body
  ...
  %14 = bitcast %1** %u to i8*
  call void @llvm.lifetime.end(i64 8, i8* %14) #5
  ...
  br i1 %21, ... ; loop

; loop ended
  ret void

AddressSanitizer uses these markers to track out-of-scope accesses to local variables, and we get false positives in Obj-C foreach loops (in the 2nd iteration of the loop). The markers of the loop variable need to be either both inside the loop (so that we poison and unpoison the variable in each iteration), or both outside. This patch implements the "both inside" approach and makes EmitObjCForCollectionStmt emit:

; entry block
  %u = alloca %1*, align 8
  ...

; loop body
  %12 = bitcast %1** %u to i8*
  call void @llvm.lifetime.start(i64 8, i8* %12) #5
  ...
  %14 = bitcast %1** %u to i8*
  call void @llvm.lifetime.end(i64 8, i8* %14) #5
  br label %15

; loop ended
  ret void

The test fixups are only changing the order of allocas. There's some related discussion at https://reviews.llvm.org/D18618.

Diff Detail

Repository
rL LLVM

Event Timeline

kubamracek created this revision.Apr 13 2017, 10:10 AM
kubamracek added a comment.Apr 13 2017, 4:48 PM

Note that C++ foreach loops also generate lifetime.start and lifetime.end inside of the loop body.

rjmccall accepted this revision.Apr 13 2017, 4:57 PM

Yes, looks good to me.

This revision is now accepted and ready to land.Apr 13 2017, 4:57 PM
Closed by commit rL300287: [ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt (authored by kuba.brecka). · Explain WhyApr 13 2017, 5:45 PM
This revision was automatically updated to reflect the committed changes.
kubamracek reopened this revision.Apr 13 2017, 9:45 PM

Reverted because this fails for-in.m by crashing the compiler when compiling:

void t2(NSArray *array) {
  for (NSArray *array in array) { // expected-warning {{collection expression type 'NSArray *' may not respond}}
  }
}
This revision is now accepted and ready to land.Apr 13 2017, 9:45 PM
kubamracek updated this revision to Diff 95271.Apr 13 2017, 10:50 PM

Trying a different approach: Keeping the loop variable alive for the whole loop by extending ForScope and registering the cleanup function inside EmitAutoVarAlloca.

rjmccall added a comment.Apr 13 2017, 11:31 PM

Those test changes are smaller than I thought they might be; great.

Closed by commit rL300340: [ObjC] Fix lifetime markers of loop variable in EmitObjCForCollectionStmt [take… (authored by kuba.brecka). · Explain WhyApr 14 2017, 10:06 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents

PathSize
cfe/
trunk/
lib/
CodeGen/
13 lines
4 lines
test/
CodeGenObjC/
6 lines
CodeGenObjCXX/
4 lines

Diff 95313

cfe/trunk/lib/CodeGen/CGDecl.cpp

Show First 20 LinesShow All 1,112 Lines▼ Show 20 Lines if (CGDebugInfo *DI = getDebugInfo()) {
DI->setLocation(D.getLocation()); DI->setLocation(D.getLocation());
DI->EmitDeclareOfAutoVariable(&D, address.getPointer(), Builder); DI->EmitDeclareOfAutoVariable(&D, address.getPointer(), Builder);
} }
} }
if (D.hasAttr<AnnotateAttr>()) if (D.hasAttr<AnnotateAttr>())
EmitVarAnnotations(&D, address.getPointer()); EmitVarAnnotations(&D, address.getPointer());
// Make sure we call @llvm.lifetime.end.
if (emission.useLifetimeMarkers())
EHStack.pushCleanup<CallLifetimeEnd>(NormalEHLifetimeMarker,
emission.getAllocatedAddress(),
emission.getSizeForLifetimeMarkers());
return emission; return emission;
} }
/// Determines whether the given __block variable is potentially /// Determines whether the given __block variable is potentially
/// captured by the given expression. /// captured by the given expression.
static bool isCapturedBy(const VarDecl &var, const Expr *e) { static bool isCapturedBy(const VarDecl &var, const Expr *e) {
// Skip the most common kinds of expressions that make // Skip the most common kinds of expressions that make
// hierarchy-walking expensive. // hierarchy-walking expensive.
▲ Show 20 LinesShow All 274 Lines▼ Show 20 Linesvoid CodeGenFunction::EmitAutoVarCleanups(const AutoVarEmission &emission) {
if (emission.wasEmittedAsGlobal()) return; if (emission.wasEmittedAsGlobal()) return;
// If we don't have an insertion point, we're done. Sema prevents // If we don't have an insertion point, we're done. Sema prevents
// us from jumping into any of these scopes anyway. // us from jumping into any of these scopes anyway.
if (!HaveInsertPoint()) return; if (!HaveInsertPoint()) return;
const VarDecl &D = *emission.Variable; const VarDecl &D = *emission.Variable;
// Make sure we call @llvm.lifetime.end. This needs to happen
// *last*, so the cleanup needs to be pushed *first*.
if (emission.useLifetimeMarkers())
EHStack.pushCleanup<CallLifetimeEnd>(NormalEHLifetimeMarker,
emission.getAllocatedAddress(),
emission.getSizeForLifetimeMarkers());
// Check the type for a cleanup. // Check the type for a cleanup.
if (QualType::DestructionKind dtorKind = D.getType().isDestructedType()) if (QualType::DestructionKind dtorKind = D.getType().isDestructedType())
emitAutoVarTypeCleanup(emission, dtorKind); emitAutoVarTypeCleanup(emission, dtorKind);
// In GC mode, honor objc_precise_lifetime. // In GC mode, honor objc_precise_lifetime.
if (getLangOpts().getGC() != LangOptions::NonGC && if (getLangOpts().getGC() != LangOptions::NonGC &&
D.hasAttr<ObjCPreciseLifetimeAttr>()) { D.hasAttr<ObjCPreciseLifetimeAttr>()) {
EHStack.pushCleanup<ExtendGCLifetime>(NormalCleanup, &D); EHStack.pushCleanup<ExtendGCLifetime>(NormalCleanup, &D);
▲ Show 20 LinesShow All 504 LinesShow Last 20 Lines

cfe/trunk/lib/CodeGen/CGObjC.cpp

Show First 20 LinesShow All 1,463 Lines▼ Show 20 Linesvoid CodeGenFunction::EmitObjCForCollectionStmt(const ObjCForCollectionStmt &S){
} }
CGCallee EnumerationMutationFn = CGCallee EnumerationMutationFn =
CGCallee::forDirect(EnumerationMutationFnPtr); CGCallee::forDirect(EnumerationMutationFnPtr);
CGDebugInfo *DI = getDebugInfo(); CGDebugInfo *DI = getDebugInfo();
if (DI) if (DI)
DI->EmitLexicalBlockStart(Builder, S.getSourceRange().getBegin()); DI->EmitLexicalBlockStart(Builder, S.getSourceRange().getBegin());
RunCleanupsScope ForScope(*this);
// The local variable comes into scope immediately. // The local variable comes into scope immediately.
AutoVarEmission variable = AutoVarEmission::invalid(); AutoVarEmission variable = AutoVarEmission::invalid();
if (const DeclStmt *SD = dyn_cast<DeclStmt>(S.getElement())) if (const DeclStmt *SD = dyn_cast<DeclStmt>(S.getElement()))
variable = EmitAutoVarAlloca(*cast<VarDecl>(SD->getSingleDecl())); variable = EmitAutoVarAlloca(*cast<VarDecl>(SD->getSingleDecl()));
JumpDest LoopEnd = getJumpDestInCurrentScope("forcoll.end"); JumpDest LoopEnd = getJumpDestInCurrentScope("forcoll.end");
// Fast enumeration state. // Fast enumeration state.
Show All 14 Lines Selector FastEnumSel =
CGM.getContext().Selectors.getSelector(llvm::array_lengthof(II), &II[0]); CGM.getContext().Selectors.getSelector(llvm::array_lengthof(II), &II[0]);
QualType ItemsTy = QualType ItemsTy =
getContext().getConstantArrayType(getContext().getObjCIdType(), getContext().getConstantArrayType(getContext().getObjCIdType(),
llvm::APInt(32, NumItems), llvm::APInt(32, NumItems),
ArrayType::Normal, 0); ArrayType::Normal, 0);
Address ItemsPtr = CreateMemTemp(ItemsTy, "items.ptr"); Address ItemsPtr = CreateMemTemp(ItemsTy, "items.ptr");
RunCleanupsScope ForScope(*this);
// Emit the collection pointer. In ARC, we do a retain. // Emit the collection pointer. In ARC, we do a retain.
llvm::Value *Collection; llvm::Value *Collection;
if (getLangOpts().ObjCAutoRefCount) { if (getLangOpts().ObjCAutoRefCount) {
Collection = EmitARCRetainScalarExpr(S.getCollection()); Collection = EmitARCRetainScalarExpr(S.getCollection());
// Enter a cleanup to do the release. // Enter a cleanup to do the release.
EmitObjCConsumeObject(S.getCollection()->getType(), Collection); EmitObjCConsumeObject(S.getCollection()->getType(), Collection);
} else { } else {
▲ Show 20 LinesShow All 1,941 LinesShow Last 20 Lines

cfe/trunk/test/CodeGenObjC/arc-blocks.m

Show First 20 LinesShow All 526 Lines▼ Show 20 Linesvoid test13(id x) {
// CHECK-NEXT: [[T2:%.*]] = call i8* @objc_retainBlock(i8* [[T1]]) // CHECK-NEXT: [[T2:%.*]] = call i8* @objc_retainBlock(i8* [[T1]])
// CHECK-NEXT: [[T3:%.*]] = bitcast i8* [[T2]] to void ()* // CHECK-NEXT: [[T3:%.*]] = bitcast i8* [[T2]] to void ()*
// CHECK-NEXT: store void ()* [[T3]], void ()** [[B]], align 8 // CHECK-NEXT: store void ()* [[T3]], void ()** [[B]], align 8
// CHECK-NEXT: [[T0:%.*]] = load void ()*, void ()** [[B]], align 8 // CHECK-NEXT: [[T0:%.*]] = load void ()*, void ()** [[B]], align 8
// CHECK-NEXT: call void @test13_use(void ()* [[T0]]) // CHECK-NEXT: call void @test13_use(void ()* [[T0]])
// CHECK-NEXT: [[T0:%.*]] = load void ()*, void ()** [[B]] // CHECK-NEXT: [[T0:%.*]] = load void ()*, void ()** [[B]]
// CHECK-NEXT: [[T1:%.*]] = bitcast void ()* [[T0]] to i8* // CHECK-NEXT: [[T1:%.*]] = bitcast void ()* [[T0]] to i8*
// CHECK-NEXT: call void @objc_release(i8* [[T1]]) // CHECK-NEXT: call void @objc_release(i8* [[T1]])
// CHECK-NEXT: [[BPTR2:%.*]] = bitcast void ()** [[B]] to i8*
// CHECK-NEXT: call void @llvm.lifetime.end.p0i8(i64 8, i8* [[BPTR2]])
// CHECK-NEXT: [[T0:%.*]] = load i1, i1* [[CLEANUP_ACTIVE]] // CHECK-NEXT: [[T0:%.*]] = load i1, i1* [[CLEANUP_ACTIVE]]
// CHECK-NEXT: br i1 [[T0]] // CHECK-NEXT: br i1 [[T0]]
// CHECK: [[T0:%.*]] = load i8*, i8** [[CLEANUP_ADDR]] // CHECK: [[T0:%.*]] = load i8*, i8** [[CLEANUP_ADDR]]
// CHECK-NEXT: call void @objc_release(i8* [[T0]]) // CHECK-NEXT: call void @objc_release(i8* [[T0]])
// CHECK-NEXT: br label // CHECK-NEXT: br label
// CHECK: [[T0:%.*]] = load i8*, i8** [[X]] // CHECK: [[BPTR2:%.*]] = bitcast void ()** [[B]] to i8*
// CHECK-NEXT: call void @llvm.lifetime.end.p0i8(i64 8, i8* [[BPTR2]])
// CHECK-NEXT: [[T0:%.*]] = load i8*, i8** [[X]]
// CHECK-NEXT: call void @objc_release(i8* [[T0]]) // CHECK-NEXT: call void @objc_release(i8* [[T0]])
// CHECK-NEXT: ret void // CHECK-NEXT: ret void
} }
// <rdar://problem/10907510> // <rdar://problem/10907510>
void test14() { void test14() {
void (^const x[1])(void) = { ^{} }; void (^const x[1])(void) = { ^{} };
} }
▲ Show 20 LinesShow All 193 LinesShow Last 20 Lines

cfe/trunk/test/CodeGenObjCXX/arc-references.mm

Show All 15 Linesvoid test0() {
callee(); callee();
// CHECK: call i8* @_Z9getObjectv // CHECK: call i8* @_Z9getObjectv
// CHECK-NEXT: call i8* @objc_retainAutoreleasedReturnValue // CHECK-NEXT: call i8* @objc_retainAutoreleasedReturnValue
// CHECK-NEXT: call i8* @objc_autorelease // CHECK-NEXT: call i8* @objc_autorelease
const __autoreleasing id &ref2 = getObject(); const __autoreleasing id &ref2 = getObject();
// CHECK: call void @_Z6calleev // CHECK: call void @_Z6calleev
callee(); callee();
// CHECK: call void @objc_release // CHECK: call void @objc_release
// CHECK-NEXT: ret // CHECK: ret
} }
// No lifetime extension when we're binding a reference to an lvalue. // No lifetime extension when we're binding a reference to an lvalue.
// CHECK-LABEL: define void @_Z5test1RU8__strongP11objc_objectRU6__weakS0_ // CHECK-LABEL: define void @_Z5test1RU8__strongP11objc_objectRU6__weakS0_
void test1(__strong id &x, __weak id &y) { void test1(__strong id &x, __weak id &y) {
// CHECK-NOT: release // CHECK-NOT: release
const __strong id &ref1 = x; const __strong id &ref1 = x;
const __autoreleasing id &ref2 = x; const __autoreleasing id &ref2 = x;
const __weak id &ref3 = y; const __weak id &ref3 = y;
// CHECK: ret void // CHECK: ret void
} }
typedef __strong id strong_id; typedef __strong id strong_id;
//CHECK: define void @_Z5test3v //CHECK: define void @_Z5test3v
void test3() { void test3() {
// CHECK: [[REF:%.*]] = alloca i8**, align 8 // CHECK: [[REF:%.*]] = alloca i8**, align 8
// CHECK: call i8* @objc_initWeak // CHECK: call i8* @objc_initWeak
// CHECK-NEXT: store i8** // CHECK-NEXT: store i8**
const __weak id &ref = strong_id(); const __weak id &ref = strong_id();
// CHECK-NEXT: call void @_Z6calleev() // CHECK-NEXT: call void @_Z6calleev()
callee(); callee();
// CHECK-NEXT: call void @objc_destroyWeak
// CHECK-NEXT: [[PTR:%.*]] = bitcast i8*** [[REF]] to i8* // CHECK-NEXT: [[PTR:%.*]] = bitcast i8*** [[REF]] to i8*
// CHECK-NEXT: call void @llvm.lifetime.end.p0i8(i64 8, i8* [[PTR]]) // CHECK-NEXT: call void @llvm.lifetime.end.p0i8(i64 8, i8* [[PTR]])
// CHECK-NEXT: call void @objc_destroyWeak
// CHECK-NEXT: ret void // CHECK-NEXT: ret void
} }
// CHECK-LABEL: define void @_Z5test4RU8__strongP11objc_object // CHECK-LABEL: define void @_Z5test4RU8__strongP11objc_object
void test4(__strong id &x) { void test4(__strong id &x) {
// CHECK: call i8* @objc_retain // CHECK: call i8* @objc_retain
__strong A* const &ar = x; __strong A* const &ar = x;
// CHECK: store i32 17, i32* // CHECK: store i32 17, i32*
Show All 35 Lines