This is an archive of the discontinued LLVM Phabricator instance.

[ARM] Fix offset calculation off the base pointer with stack realignment and no reserved call frame
Needs ReviewPublic

Authored by ssijaric on May 22 2018, 1:50 PM.

Download Raw Diff

Details

Reviewers

MatzeB
t.p.northover
javed.absar

Summary

The offset calculation in ARMFrameLowering::ResolveFrameIndexReference for accessing local variables off a base pointer when both stack realignment and stack adjustment are needed looks to be incorrect. The stack adjustment is added onto the offset from the base pointer, which is already calculated and is fixed.

Compiling the following example (using -mcpu=cortex-a9 -fno-inline-functions) and running it will print out

1 2

instead of

1 1023.

#include <cstdio>

struct A {
  int arr[2000];
};

struct alignas(16) B {
  int val;
};

void bar(int &c, struct A) {
  c = 1023;
}

void init(A &a) {
  for (int i = 0; i < 2000; ++i)
    a.arr[i] = 0;
}

void init(B &b) {
  b.val = 2;
}

int main() {
  struct A big_struct;
  struct B small_struct = {2};
  int val = 1;
  init(big_struct);
  init(small_struct);
  bar(val, big_struct);
  printf("%d %d\n", val, small_struct.val);
  return 0;
}

Diff Detail

Event Timeline

ssijaric created this revision.May 22 2018, 1:50 PM

Herald added a reviewer: javed.absar. · View Herald TranscriptMay 22 2018, 1:50 PM

Herald added subscribers: chrib, kristof.beyls. · View Herald Transcript

ssijaric edited the summary of this revision. (Show Details)May 22 2018, 1:52 PM

ssijaric edited the summary of this revision. (Show Details)

thegameg added a subscriber: thegameg.Aug 6 2018, 3:25 AM

Revision Contents

Path

Size

lib/

Target/

ARM/

ARMFrameLowering.cpp

14 lines

test/

CodeGen/

ARM/

alloca-align.ll

3 lines

stack_align_with_base_register.ll

59 lines

Diff 148058

lib/Target/ARM/ARMFrameLowering.cpp

Context not available.
	bool isFixed = MFI.isFixedObjectIndex(FI);	bool isFixed = MFI.isFixedObjectIndex(FI);

	FrameReg = ARM::SP;	FrameReg = ARM::SP;
	Offset += SPAdj;

	// SP can move around if there are allocas. We may also lose track of SP	// SP can move around if there are allocas. We may also lose track of SP
	// when emergency spilling inside a non-reserved call frame setup.	// when emergency spilling inside a non-reserved call frame setup.
Context not available.
	assert(RegInfo->hasBasePointer(MF) &&	assert(RegInfo->hasBasePointer(MF) &&
	"VLAs and dynamic stack alignment, but missing base pointer!");	"VLAs and dynamic stack alignment, but missing base pointer!");
	FrameReg = RegInfo->getBaseRegister();	FrameReg = RegInfo->getBaseRegister();
	}	} else
		Offset += SPAdj;
	return Offset;	return Offset;
	}	}

		Offset += SPAdj;

	// If there is a frame pointer, use it when we can.	// If there is a frame pointer, use it when we can.
	if (hasFP(MF) && AFI->hasStackFrame()) {	if (hasFP(MF) && AFI->hasStackFrame()) {
	// Use frame pointer to reference fixed objects. Use it for locals if	// Use frame pointer to reference fixed objects. Use it for locals if
Context not available.
	}	}
	}	}
	// Use the base pointer if we have one.	// Use the base pointer if we have one.
	if (RegInfo->hasBasePointer(MF))	// The only time this check can be true is when we have a thumb function with
		// VLAs and no stack realignment. But this means that the call frame pseudos
		// are eliminated during frame info calculation, which in turn means that
		// there is no need to keep track of the sp. So, SPAdj will be 0.
		if (RegInfo->hasBasePointer(MF)) {
		assert(SPAdj == 0 && "Using base pointer with non-zero SP adjustment");
	FrameReg = RegInfo->getBaseRegister();	FrameReg = RegInfo->getBaseRegister();
		}
	return Offset;	return Offset;
	}	}

Context not available.

test/CodeGen/ARM/alloca-align.ll

Context not available.
	; And a base pointer getting used.	; And a base pointer getting used.
	; CHECK: mov r6, sp	; CHECK: mov r6, sp
	; Which is passed to the call	; Which is passed to the call
	; CHECK: add [[REG:r[0-9]+\|lr]], r6, #19456	; CHECK: mov r0, r6
	; CHECK: add r0, [[REG]], #536
	; CHECK: bl bar	; CHECK: bl bar
	define void @foo([20000 x i8]* %addr) {	define void @foo([20000 x i8]* %addr) {
	%tmp = alloca [4 x i32], align 32	%tmp = alloca [4 x i32], align 32
Context not available.

test/CodeGen/ARM/stack_align_with_base_register.ll

This file was added.

				; RUN: llc -mtriple=thumbv7-linux-gnueabi -mcpu=cortex-a9 < %s \| FileCheck %s --check-prefix=CHECK-THUMB
				; RUN: llc -mtriple=armv7-linux-gnueabi -mcpu=cortex-a9 < %s \| FileCheck %s --check-prefix=CHECK-ARM
				; Check that we don't adjust arguments addressed via base pointer by the amount
				; used to adjust the stack pointer when passing arguments on the stack, where a
				; call frame is not reserved in the prologue and the stack needs to be
				; realigned.
				%struct.B = type { i32, [12 x i8] }
				%struct.A = type { [2000 x i32] }

				@_ZZ4funcvE12small_struct = private unnamed_addr constant %struct.B { i32 2, [12 x i8] undef }, align 16

				; CHECK-THUMB: add.w r0, r6, #12
				; CHECK-THUMB: bl _Z3barRi1A
				; CHECK-THUMB: ldr r0, [r6, #12]
				; CHECK-ARM: add r0, r6, #12
				; CHECK-ARM: bl _Z3barRi1A
				; CHECK-ARM: ldr r0, [r6, #12]
				; Function Attrs: noinline
				define dso_local i32 @_Z4funcv() local_unnamed_addr #0 {
				entry:
				%big_struct = alloca %struct.A, align 4
				%small_struct = alloca %struct.B, align 16
				%val = alloca i32, align 4
				%0 = bitcast %struct.A* %big_struct to i8*
				%1 = bitcast %struct.B* %small_struct to i8*
				call void @llvm.memcpy.p0i8.p0i8.i32(i8* nonnull align 16 %1, i8* align 16 bitcast (%struct.B* @_ZZ4funcvE12small_struct to i8*), i32 16, i1 false)
				%2 = bitcast i32* %val to i8*
				store i32 1, i32* %val, align 4, !tbaa !3
				call void @_Z4initR1A(%struct.A* nonnull dereferenceable(8000) %big_struct)
				call void @_Z4initR1B(%struct.B* nonnull dereferenceable(16) %small_struct)
				call void @_Z3barRi1A(i32* nonnull dereferenceable(4) %val, %struct.A* byval nonnull align 4 %big_struct)
				%3 = load i32, i32* %val, align 4, !tbaa !3
				ret i32 %3
				}

				; Function Attrs: argmemonly nounwind
				declare void @llvm.memcpy.p0i8.p0i8.i32(i8* nocapture writeonly, i8* nocapture readonly, i32, i1) #1

				declare dso_local void @_Z4initR1A(%struct.A* dereferenceable(8000)) local_unnamed_addr #2

				declare dso_local void @_Z4initR1B(%struct.B* dereferenceable(16)) local_unnamed_addr #2

				declare dso_local void @_Z3barRi1A(i32* dereferenceable(4), %struct.A* byval align 4) local_unnamed_addr #2

				attributes #0 = { noinline "correctly-rounded-divide-sqrt-fp-math"="false" "disable-tail-calls"="false" "less-precise-fpmad"="false" "no-frame-pointer-elim"="true" "no-frame-pointer-elim-non-leaf" "no-infs-fp-math"="false" "no-jump-tables"="false" "no-nans-fp-math"="false" "no-signed-zeros-fp-math"="false" "no-trapping-math"="false" "stack-protector-buffer-size"="8" "target-cpu"="cortex-a9" "target-features"="+armv7-a,+dsp,+neon,+vfp3,-crc,-crypto,-d16,-dotprod,-fp-armv8,-fp-only-sp,-fp16,-hwdiv,-hwdiv-arm,-ras,-vfp4" "unsafe-fp-math"="false" "use-soft-float"="false" }
				attributes #1 = { argmemonly nounwind }
				attributes #2 = { "correctly-rounded-divide-sqrt-fp-math"="false" "disable-tail-calls"="false" "less-precise-fpmad"="false" "no-frame-pointer-elim"="true" "no-frame-pointer-elim-non-leaf" "no-infs-fp-math"="false" "no-nans-fp-math"="false" "no-signed-zeros-fp-math"="false" "no-trapping-math"="false" "stack-protector-buffer-size"="8" "target-cpu"="cortex-a9" "target-features"="+armv7-a,+dsp,+neon,+vfp3,-crc,-crypto,-d16,-dotprod,-fp-armv8,-fp-only-sp,-fp16,-hwdiv,-hwdiv-arm,-ras,-vfp4" "unsafe-fp-math"="false" "use-soft-float"="false" }
				attributes #3 = { nounwind }

				!llvm.module.flags = !{!0, !1}
				!llvm.ident = !{!2}

				!0 = !{i32 1, !"wchar_size", i32 4}
				!1 = !{i32 1, !"min_enum_size", i32 4}
				!2 = !{!"clang version 7.0.0"}
				!3 = !{!4, !4, i64 0}
				!4 = !{!"int", !5, i64 0}
				!5 = !{!"omnipotent char", !6, i64 0}
				!6 = !{!"Simple C++ TBAA"}