This is an archive of the discontinued LLVM Phabricator instance.

Differential D41576

[SCEV] Be careful with nuw/nsw/exact in InsertBinop
ClosedPublic

Authored by skatkov on Dec 26 2017, 1:23 AM.

Details

Reviewers
sanjoy
mkazantsev
sebpop
jbhateja
Commits
rGda56a7f38847: [SCEV] Be careful with nuw/nsw/exact in InsertBinop
rL321475: [SCEV] Be careful with nuw/nsw/exact in InsertBinop
Summary

InsertBinop tries to find an appropriate instruction instead of
creating a new instruction. When it checks whether instruction is
the same as we need to create it ignores nuw/nsw/exact flags.

It leads to invalid behavior when poison instruction can be used
when it was not expected. Specifically, for example Expander
expands the SCEV built for instruction
%a = add i32 %v, 1
It is possible that InsertBinop can find an instruction
% b = add nuw nsw i32 %v, 1
and will use it instead of version w/o nuw nsw.
It is incorrect.

The patch conservatively ignores all instructions with any of
poison flags installed.

Diff Detail

Event Timeline

skatkov created this revision.Dec 26 2017, 1:23 AM
sanjoy requested changes to this revision.Dec 26 2017, 1:23 PM
sanjoy added inline comments.
lib/Analysis/ScalarEvolutionExpander.cpp
204

Good catch!

I think you also need to check for I having the exact bit set since it looks like InsertBinop is used for shifts and divisions as well.

Finally, please also add a TODO that we can be more aggressive here by piping in the flags for the SCEV expression whose expansion we want to insert (nsw/nuw/exact).

This revision now requires changes to proceed.Dec 26 2017, 1:23 PM
skatkov updated this revision to Diff 128194.Dec 26 2017, 9:29 PM
skatkov retitled this revision from [SCEV] Be careful with nuw/nsw in InsertBinop to [SCEV] Be careful with nuw/nsw/exact in InsertBinop.
skatkov edited the summary of this revision. (Show Details)
sanjoy accepted this revision.Dec 26 2017, 10:03 PM

lgtm!

lib/Analysis/ScalarEvolutionExpander.cpp
204

I also think s/hasPoisonFlags`/canGeneratePoison/ sounds better.

This revision is now accepted and ready to land.Dec 26 2017, 10:03 PM
Closed by commit rL321475: [SCEV] Be careful with nuw/nsw/exact in InsertBinop (authored by skatkov). · Explain WhyDec 27 2017, 12:27 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents

PathSize
lib/
Analysis/
15 lines
unittests/
Analysis/
104 lines

Diff 128194

lib/Analysis/ScalarEvolutionExpander.cpp

Show First 20 LinesShow All 181 Lines▼ Show 20 LinesValue *SCEVExpander::InsertBinop(Instruction::BinaryOps Opcode,
BasicBlock::iterator IP = Builder.GetInsertPoint(); BasicBlock::iterator IP = Builder.GetInsertPoint();
if (IP != BlockBegin) { if (IP != BlockBegin) {
--IP; --IP;
for (; ScanLimit; --IP, --ScanLimit) { for (; ScanLimit; --IP, --ScanLimit) {
// Don't count dbg.value against the ScanLimit, to avoid perturbing the // Don't count dbg.value against the ScanLimit, to avoid perturbing the
// generated code. // generated code.
if (isa<DbgInfoIntrinsic>(IP)) if (isa<DbgInfoIntrinsic>(IP))
ScanLimit++; ScanLimit++;
// Conservatively, do not use any instruction which has any of wrap/exact
// flags installed.
// TODO: Instead of simply disable poison instructions we can be clever
// here and match SCEV to this instruction.
auto hasPoisonFlags = [](Instruction *I) {
if (isa<OverflowingBinaryOperator>(I) &&
(I->hasNoSignedWrap() || I->hasNoUnsignedWrap()))
return true;
if (isa<PossiblyExactOperator>(I) && I->isExact())
return true;
return false;
};
if (IP->getOpcode() == (unsigned)Opcode && IP->getOperand(0) == LHS && if (IP->getOpcode() == (unsigned)Opcode && IP->getOperand(0) == LHS &&
IP->getOperand(1) == RHS) IP->getOperand(1) == RHS && !hasPoisonFlags(&*IP))
sanjoyUnsubmitted
Not Done
ReplyInline Actions

Good catch!

I think you also need to check for I having the exact bit set since it looks like InsertBinop is used for shifts and divisions as well.

Finally, please also add a TODO that we can be more aggressive here by piping in the flags for the SCEV expression whose expansion we want to insert (nsw/nuw/exact).

sanjoy: Good catch! I think you also need to check for `I` having the `exact` bit set since it looks…
sanjoyUnsubmitted
Not Done
ReplyInline Actions

I also think s/hasPoisonFlags`/canGeneratePoison/ sounds better.

sanjoy: I also think s/hasPoisonFlags`/canGeneratePoison/ sounds better.
return &*IP; return &*IP;
if (IP == BlockBegin) break; if (IP == BlockBegin) break;
} }
} }
// Save the original insertion point so we can restore it when we're done. // Save the original insertion point so we can restore it when we're done.
DebugLoc Loc = Builder.GetInsertPoint()->getDebugLoc(); DebugLoc Loc = Builder.GetInsertPoint()->getDebugLoc();
SCEVInsertPointGuard Guard(Builder, this); SCEVInsertPointGuard Guard(Builder, this);
▲ Show 20 LinesShow All 2,124 LinesShow Last 20 Lines

unittests/Analysis/ScalarEvolutionTest.cpp

Show First 20 LinesShow All 1,178 Lines▼ Show 20 LinesTEST_F(ScalarEvolutionsTest, SCEVExpanderIsSafeToExpandAt) {
const SCEVAddRecExpr *AR = cast<SCEVAddRecExpr>(S); const SCEVAddRecExpr *AR = cast<SCEVAddRecExpr>(S);
EXPECT_TRUE(AR->isAffine()); EXPECT_TRUE(AR->isAffine());
EXPECT_FALSE(isSafeToExpandAt(AR, Top->getTerminator(), SE)); EXPECT_FALSE(isSafeToExpandAt(AR, Top->getTerminator(), SE));
EXPECT_FALSE(isSafeToExpandAt(AR, LPh->getTerminator(), SE)); EXPECT_FALSE(isSafeToExpandAt(AR, LPh->getTerminator(), SE));
EXPECT_TRUE(isSafeToExpandAt(AR, L->getTerminator(), SE)); EXPECT_TRUE(isSafeToExpandAt(AR, L->getTerminator(), SE));
EXPECT_TRUE(isSafeToExpandAt(AR, Post->getTerminator(), SE)); EXPECT_TRUE(isSafeToExpandAt(AR, Post->getTerminator(), SE));
} }
// Check that SCEV expander does not use the nuw instruction
// for expansion.
TEST_F(ScalarEvolutionsTest, SCEVExpanderNUW) {
/*
* Create the following code:
* func(i64 %a)
* entry:
* br false, label %exit, label %body
* body:
* %s1 = add i64 %a, -1
* br label %exit
* exit:
* %s = add nuw i64 %a, -1
* ret %s
*/
// Create a module.
Module M("SCEVExpanderNUW", Context);
Type *T_int64 = Type::getInt64Ty(Context);
FunctionType *FTy =
FunctionType::get(Type::getVoidTy(Context), { T_int64 }, false);
Function *F = cast<Function>(M.getOrInsertFunction("func", FTy));
Argument *Arg = &*F->arg_begin();
ConstantInt *C = ConstantInt::get(Context, APInt(64, -1));
BasicBlock *Entry = BasicBlock::Create(Context, "entry", F);
BasicBlock *Body = BasicBlock::Create(Context, "body", F);
BasicBlock *Exit = BasicBlock::Create(Context, "exit", F);
IRBuilder<> Builder(Entry);
ConstantInt *Cond = ConstantInt::get(Context, APInt(1, 0));
Builder.CreateCondBr(Cond, Exit, Body);
Builder.SetInsertPoint(Body);
auto *S1 = cast<Instruction>(Builder.CreateAdd(Arg, C, "add"));
Builder.CreateBr(Exit);
Builder.SetInsertPoint(Exit);
auto *S2 = cast<Instruction>(Builder.CreateAdd(Arg, C, "add"));
S2->setHasNoUnsignedWrap(true);
auto *R = cast<Instruction>(Builder.CreateRetVoid());
ScalarEvolution SE = buildSE(*F);
const SCEV *S = SE.getSCEV(S1);
EXPECT_TRUE(isa<SCEVAddExpr>(S));
SCEVExpander Exp(SE, M.getDataLayout(), "expander");
auto *I = cast<Instruction>(Exp.expandCodeFor(S, nullptr, R));
EXPECT_FALSE(I->hasNoUnsignedWrap());
}
// Check that SCEV expander does not use the nsw instruction
// for expansion.
TEST_F(ScalarEvolutionsTest, SCEVExpanderNSW) {
/*
* Create the following code:
* func(i64 %a)
* entry:
* br false, label %exit, label %body
* body:
* %s1 = add i64 %a, -1
* br label %exit
* exit:
* %s = add nsw i64 %a, -1
* ret %s
*/
// Create a module.
Module M("SCEVExpanderNSW", Context);
Type *T_int64 = Type::getInt64Ty(Context);
FunctionType *FTy =
FunctionType::get(Type::getVoidTy(Context), { T_int64 }, false);
Function *F = cast<Function>(M.getOrInsertFunction("func", FTy));
Argument *Arg = &*F->arg_begin();
ConstantInt *C = ConstantInt::get(Context, APInt(64, -1));
BasicBlock *Entry = BasicBlock::Create(Context, "entry", F);
BasicBlock *Body = BasicBlock::Create(Context, "body", F);
BasicBlock *Exit = BasicBlock::Create(Context, "exit", F);
IRBuilder<> Builder(Entry);
ConstantInt *Cond = ConstantInt::get(Context, APInt(1, 0));
Builder.CreateCondBr(Cond, Exit, Body);
Builder.SetInsertPoint(Body);
auto *S1 = cast<Instruction>(Builder.CreateAdd(Arg, C, "add"));
Builder.CreateBr(Exit);
Builder.SetInsertPoint(Exit);
auto *S2 = cast<Instruction>(Builder.CreateAdd(Arg, C, "add"));
S2->setHasNoSignedWrap(true);
auto *R = cast<Instruction>(Builder.CreateRetVoid());
ScalarEvolution SE = buildSE(*F);
const SCEV *S = SE.getSCEV(S1);
EXPECT_TRUE(isa<SCEVAddExpr>(S));
SCEVExpander Exp(SE, M.getDataLayout(), "expander");
auto *I = cast<Instruction>(Exp.expandCodeFor(S, nullptr, R));
EXPECT_FALSE(I->hasNoSignedWrap());
}
} // end anonymous namespace } // end anonymous namespace
} // end namespace llvm } // end namespace llvm