This is an archive of the discontinued LLVM Phabricator instance.

Differential D56433

[NewPM] Port tsan
ClosedPublic

Authored by philip.pfaffe on Jan 8 2019, 4:40 AM.

Details

Reviewers
chandlerc
fedor.sergeev
vitalybuka
leonardchan
Commits
rG82f995db7540: [NewPM] Port tsan
rL350647: [NewPM] Port tsan
Summary

A straightforward port of tsan to the new PM, following the same path
as D55647.

Diff Detail

Event Timeline

philip.pfaffe created this revision.Jan 8 2019, 4:40 AM
Herald added subscribers: bollu, hiraditya. · View Herald TranscriptJan 8 2019, 4:40 AM
Harbormaster completed remote builds in B26485: Diff 180641.Jan 8 2019, 4:40 AM
chandlerc added a comment.Jan 8 2019, 9:42 AM

Only one real question... Worried a little about the total cost here, but the code looks fine.

llvm/lib/Transforms/Instrumentation/ThreadSanitizer.cpp
88

Similar documentation update as for msan?

179

There are a lot of functions here, including numerous loops... Is this really ok to do every function?

chandlerc accepted this revision.Jan 8 2019, 9:42 AM

On further thought, what is maybe best is to land this and see how it goes. LGTM overall. We can try again if something blows up.

This revision is now accepted and ready to land.Jan 8 2019, 9:42 AM
Closed by commit rL350647: [NewPM] Port tsan (authored by pfaffe). · Explain WhyJan 8 2019, 11:25 AM
This revision was automatically updated to reflect the committed changes.
delcypher added a subscriber: delcypher.EditedJan 9 2019, 6:25 AM

@philip.pfaffe This patch got reverted (not by me r350719) because it broke TSan on macOS.

If I diff the LLVM IR between a working AppleClang and the important thing I see is

 @.str = private unnamed_addr constant [7 x i8] c"hello\0A\00", align 1
-@llvm.global_ctors = appending global [1 x { i32, void ()*, i8* }] [{ i32, void ()*, i8* } { i32 0, void ()* @tsan.module_ctor, i8* null }]
+@llvm.global_ctors = appending global [1 x { i32, void ()*, i8* }] [{ i32, void ()*, i8* } { i32 0, void ()* @__tsan_init, i8* null }]
 
 ; Function Attrs: noinline norecurse optnone sanitize_thread ssp uwtable
 define i32 @main() #0 personality i32 (...)* @__gcc_personality_v0 {
@@ -30,11 +30,6 @@
 
 declare void @__tsan_init()
 
-define internal void @tsan.module_ctor() {
-  call void @__tsan_init()
-  ret void
-}
-

On macOS it seems dyld doesn't like __tsan_init being called directly from llvm.global_ctors. I get

dyld: initializer function 0x100129cd0 not in mapped image for <path_to_binary>

__tsan_init is external to generated TSan code (it lives in the TSan runtime), where as tsan.module_ctor() was in the same module. Perhaps dyld doesn't like calling functions external to the module directly.

delcypher added a comment.Jan 9 2019, 12:13 PM

@philip.pfaffe

__tsan_init is external to generated TSan code (it lives in the TSan runtime), where as tsan.module_ctor() was in the same module. Perhaps dyld doesn't like calling functions external to the module directly.

I've confirmed this with the authors of dyld. The indirection via tsan.module_ctor() is necessary for Darwin platforms because dyld requires that the global constructors for an image (module) point to functions in the same .TEXT segment as that image.

philip.pfaffe mentioned this in D56538: [NewPM][TSan] Reiterate the TSan port.Jan 10 2019, 4:15 AM
Diffusion mentioned this in rC351314: [NewPM][TSan] Reiterate the TSan port.Jan 16 2019, 1:32 AM
Diffusion mentioned this in rL351314: [NewPM][TSan] Reiterate the TSan port.
philip.pfaffe marked an inline comment as done.Jan 16 2019, 3:19 AM

@delcypher Thanks for pointing it out! Just landed a revised version in rL351314.

Revision Contents

PathSize
llvm/
include/
llvm/
2 lines
Transforms/
3 lines
Instrumentation/
19 lines
lib/
Passes/
1 line
1 line
Transforms/
Instrumentation/
2 lines
90 lines
test/
Instrumentation/
ThreadSanitizer/
6 lines

Diff 180641

llvm/include/llvm/InitializePasses.h

Show First 20 LinesShow All 385 Lines▼ Show 20 Lines
void initializeStripNonLineTableDebugInfoPass(PassRegistry&); void initializeStripNonLineTableDebugInfoPass(PassRegistry&);
void initializeStripSymbolsPass(PassRegistry&); void initializeStripSymbolsPass(PassRegistry&);
void initializeStructurizeCFGPass(PassRegistry&); void initializeStructurizeCFGPass(PassRegistry&);
void initializeTailCallElimPass(PassRegistry&); void initializeTailCallElimPass(PassRegistry&);
void initializeTailDuplicatePass(PassRegistry&); void initializeTailDuplicatePass(PassRegistry&);
void initializeTargetLibraryInfoWrapperPassPass(PassRegistry&); void initializeTargetLibraryInfoWrapperPassPass(PassRegistry&);
void initializeTargetPassConfigPass(PassRegistry&); void initializeTargetPassConfigPass(PassRegistry&);
void initializeTargetTransformInfoWrapperPassPass(PassRegistry&); void initializeTargetTransformInfoWrapperPassPass(PassRegistry&);
void initializeThreadSanitizerPass(PassRegistry&); void initializeThreadSanitizerLegacyPassPass(PassRegistry&);
void initializeTwoAddressInstructionPassPass(PassRegistry&); void initializeTwoAddressInstructionPassPass(PassRegistry&);
void initializeTypeBasedAAWrapperPassPass(PassRegistry&); void initializeTypeBasedAAWrapperPassPass(PassRegistry&);
void initializeUnifyFunctionExitNodesPass(PassRegistry&); void initializeUnifyFunctionExitNodesPass(PassRegistry&);
void initializeUnpackMachineBundlesPass(PassRegistry&); void initializeUnpackMachineBundlesPass(PassRegistry&);
void initializeUnreachableBlockElimLegacyPassPass(PassRegistry&); void initializeUnreachableBlockElimLegacyPassPass(PassRegistry&);
void initializeUnreachableMachineBlockElimPass(PassRegistry&); void initializeUnreachableMachineBlockElimPass(PassRegistry&);
void initializeVerifierLegacyPassPass(PassRegistry&); void initializeVerifierLegacyPassPass(PassRegistry&);
void initializeVirtRegMapPass(PassRegistry&); void initializeVirtRegMapPass(PassRegistry&);
Show All 12 Lines

llvm/include/llvm/Transforms/Instrumentation.h

Show First 20 LinesShow All 149 Lines▼ Show 20 Lines
ModulePass *createAddressSanitizerModulePass(bool CompileKernel = false, ModulePass *createAddressSanitizerModulePass(bool CompileKernel = false,
bool Recover = false, bool Recover = false,
bool UseGlobalsGC = true, bool UseGlobalsGC = true,
bool UseOdrIndicator = true); bool UseOdrIndicator = true);
FunctionPass *createHWAddressSanitizerPass(bool CompileKernel = false, FunctionPass *createHWAddressSanitizerPass(bool CompileKernel = false,
bool Recover = false); bool Recover = false);
// Insert ThreadSanitizer (race detection) instrumentation
FunctionPass *createThreadSanitizerPass();
// Insert DataFlowSanitizer (dynamic data flow analysis) instrumentation // Insert DataFlowSanitizer (dynamic data flow analysis) instrumentation
ModulePass *createDataFlowSanitizerPass( ModulePass *createDataFlowSanitizerPass(
const std::vector<std::string> &ABIListFiles = std::vector<std::string>(), const std::vector<std::string> &ABIListFiles = std::vector<std::string>(),
void *(*getArgTLS)() = nullptr, void *(*getRetValTLS)() = nullptr); void *(*getArgTLS)() = nullptr, void *(*getRetValTLS)() = nullptr);
// Options for EfficiencySanitizer sub-tools. // Options for EfficiencySanitizer sub-tools.
struct EfficiencySanitizerOptions { struct EfficiencySanitizerOptions {
enum Type { enum Type {
▲ Show 20 LinesShow All 62 LinesShow Last 20 Lines

llvm/include/llvm/Transforms/Instrumentation/ThreadSanitizer.h

  • This file was added.
#ifndef LLVM_TRANSFORMS_INSTRUMENTATION_THREADSANITIZER_H
#define LLVM_TRANSFORMS_INSTRUMENTATION_THREADSANITIZER_H
#include "llvm/IR/PassManager.h"
namespace llvm {
// Insert ThreadSanitizer (race detection) instrumentation
FunctionPass *createThreadSanitizerLegacyPassPass();
/// A function pass for tsan instrumentation.
///
/// Instruments functions to detect race conditions reads. This function pass
/// inserts calls to runtime library functions. If the functions aren't declared
/// yet, the pass inserts the declarations. Otherwise the existing globals are
struct ThreadSanitizerPass : public PassInfoMixin<ThreadSanitizerPass> {
PreservedAnalyses run(Function &F, FunctionAnalysisManager &FAM);
};
}
#endif /* LLVM_TRANSFORMS_INSTRUMENTATION_THREADSANITIZER_H */

llvm/lib/Passes/PassBuilder.cpp

Show First 20 LinesShow All 89 Lines▼ Show 20 Lines
#include "llvm/Transforms/InstCombine/InstCombine.h" #include "llvm/Transforms/InstCombine/InstCombine.h"
#include "llvm/Transforms/Instrumentation.h" #include "llvm/Transforms/Instrumentation.h"
#include "llvm/Transforms/Instrumentation/BoundsChecking.h" #include "llvm/Transforms/Instrumentation/BoundsChecking.h"
#include "llvm/Transforms/Instrumentation/CGProfile.h" #include "llvm/Transforms/Instrumentation/CGProfile.h"
#include "llvm/Transforms/Instrumentation/ControlHeightReduction.h" #include "llvm/Transforms/Instrumentation/ControlHeightReduction.h"
#include "llvm/Transforms/Instrumentation/GCOVProfiler.h" #include "llvm/Transforms/Instrumentation/GCOVProfiler.h"
#include "llvm/Transforms/Instrumentation/InstrProfiling.h" #include "llvm/Transforms/Instrumentation/InstrProfiling.h"
#include "llvm/Transforms/Instrumentation/MemorySanitizer.h" #include "llvm/Transforms/Instrumentation/MemorySanitizer.h"
#include "llvm/Transforms/Instrumentation/ThreadSanitizer.h"
#include "llvm/Transforms/Instrumentation/PGOInstrumentation.h" #include "llvm/Transforms/Instrumentation/PGOInstrumentation.h"
#include "llvm/Transforms/Scalar/ADCE.h" #include "llvm/Transforms/Scalar/ADCE.h"
#include "llvm/Transforms/Scalar/AlignmentFromAssumptions.h" #include "llvm/Transforms/Scalar/AlignmentFromAssumptions.h"
#include "llvm/Transforms/Scalar/BDCE.h" #include "llvm/Transforms/Scalar/BDCE.h"
#include "llvm/Transforms/Scalar/CallSiteSplitting.h" #include "llvm/Transforms/Scalar/CallSiteSplitting.h"
#include "llvm/Transforms/Scalar/ConstantHoisting.h" #include "llvm/Transforms/Scalar/ConstantHoisting.h"
#include "llvm/Transforms/Scalar/CorrelatedValuePropagation.h" #include "llvm/Transforms/Scalar/CorrelatedValuePropagation.h"
#include "llvm/Transforms/Scalar/DCE.h" #include "llvm/Transforms/Scalar/DCE.h"
▲ Show 20 LinesShow All 1,871 LinesShow Last 20 Lines

llvm/lib/Passes/PassRegistry.def

Show First 20 LinesShow All 227 Lines▼ Show 20 Lines
FUNCTION_PASS("verify<domtree>", DominatorTreeVerifierPass()) FUNCTION_PASS("verify<domtree>", DominatorTreeVerifierPass())
FUNCTION_PASS("verify<loops>", LoopVerifierPass()) FUNCTION_PASS("verify<loops>", LoopVerifierPass())
FUNCTION_PASS("verify<memoryssa>", MemorySSAVerifierPass()) FUNCTION_PASS("verify<memoryssa>", MemorySSAVerifierPass())
FUNCTION_PASS("verify<regions>", RegionInfoVerifierPass()) FUNCTION_PASS("verify<regions>", RegionInfoVerifierPass())
FUNCTION_PASS("view-cfg", CFGViewerPass()) FUNCTION_PASS("view-cfg", CFGViewerPass())
FUNCTION_PASS("view-cfg-only", CFGOnlyViewerPass()) FUNCTION_PASS("view-cfg-only", CFGOnlyViewerPass())
FUNCTION_PASS("transform-warning", WarnMissedTransformationsPass()) FUNCTION_PASS("transform-warning", WarnMissedTransformationsPass())
FUNCTION_PASS("msan", MemorySanitizerPass()) FUNCTION_PASS("msan", MemorySanitizerPass())
FUNCTION_PASS("tsan", ThreadSanitizerPass())
#undef FUNCTION_PASS #undef FUNCTION_PASS
#ifndef LOOP_ANALYSIS #ifndef LOOP_ANALYSIS
#define LOOP_ANALYSIS(NAME, CREATE_PASS) #define LOOP_ANALYSIS(NAME, CREATE_PASS)
#endif #endif
LOOP_ANALYSIS("no-op-loop", NoOpLoopAnalysis()) LOOP_ANALYSIS("no-op-loop", NoOpLoopAnalysis())
LOOP_ANALYSIS("access-info", LoopAccessAnalysis()) LOOP_ANALYSIS("access-info", LoopAccessAnalysis())
LOOP_ANALYSIS("ivusers", IVUsersAnalysis()) LOOP_ANALYSIS("ivusers", IVUsersAnalysis())
Show All 25 Lines

llvm/lib/Transforms/Instrumentation/Instrumentation.cpp

Show First 20 LinesShow All 107 Lines▼ Show 20 Linesvoid llvm::initializeInstrumentation(PassRegistry &Registry) {
initializeGCOVProfilerLegacyPassPass(Registry); initializeGCOVProfilerLegacyPassPass(Registry);
initializePGOInstrumentationGenLegacyPassPass(Registry); initializePGOInstrumentationGenLegacyPassPass(Registry);
initializePGOInstrumentationUseLegacyPassPass(Registry); initializePGOInstrumentationUseLegacyPassPass(Registry);
initializePGOIndirectCallPromotionLegacyPassPass(Registry); initializePGOIndirectCallPromotionLegacyPassPass(Registry);
initializePGOMemOPSizeOptLegacyPassPass(Registry); initializePGOMemOPSizeOptLegacyPassPass(Registry);
initializeInstrProfilingLegacyPassPass(Registry); initializeInstrProfilingLegacyPassPass(Registry);
initializeMemorySanitizerLegacyPassPass(Registry); initializeMemorySanitizerLegacyPassPass(Registry);
initializeHWAddressSanitizerPass(Registry); initializeHWAddressSanitizerPass(Registry);
initializeThreadSanitizerPass(Registry); initializeThreadSanitizerLegacyPassPass(Registry);
initializeSanitizerCoverageModulePass(Registry); initializeSanitizerCoverageModulePass(Registry);
initializeDataFlowSanitizerPass(Registry); initializeDataFlowSanitizerPass(Registry);
initializeEfficiencySanitizerPass(Registry); initializeEfficiencySanitizerPass(Registry);
} }
/// LLVMInitializeInstrumentation - C binding for /// LLVMInitializeInstrumentation - C binding for
/// initializeInstrumentation. /// initializeInstrumentation.
void LLVMInitializeInstrumentation(LLVMPassRegistryRef R) { void LLVMInitializeInstrumentation(LLVMPassRegistryRef R) {
initializeInstrumentation(*unwrap(R)); initializeInstrumentation(*unwrap(R));
} }

llvm/lib/Transforms/Instrumentation/ThreadSanitizer.cpp

Show All 13 Lines
// //
// The instrumentation phase is quite simple: // The instrumentation phase is quite simple:
// - Insert calls to run-time library before every memory access. // - Insert calls to run-time library before every memory access.
// - Optimizations may apply to avoid instrumenting some of the accesses. // - Optimizations may apply to avoid instrumenting some of the accesses.
// - Insert calls at function entry/exit. // - Insert calls at function entry/exit.
// The rest is handled by the run-time library. // The rest is handled by the run-time library.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "llvm/Transforms/Instrumentation/ThreadSanitizer.h"
#include "llvm/ADT/SmallPtrSet.h" #include "llvm/ADT/SmallPtrSet.h"
#include "llvm/ADT/SmallString.h" #include "llvm/ADT/SmallString.h"
#include "llvm/ADT/SmallVector.h" #include "llvm/ADT/SmallVector.h"
#include "llvm/ADT/Statistic.h" #include "llvm/ADT/Statistic.h"
#include "llvm/ADT/StringExtras.h" #include "llvm/ADT/StringExtras.h"
#include "llvm/Analysis/CaptureTracking.h" #include "llvm/Analysis/CaptureTracking.h"
#include "llvm/Analysis/TargetLibraryInfo.h" #include "llvm/Analysis/TargetLibraryInfo.h"
#include "llvm/Transforms/Utils/Local.h" #include "llvm/Transforms/Utils/Local.h"
▲ Show 20 LinesShow All 45 Lines▼ Show 20 Lines
STATISTIC(NumAccessesWithBadSize, "Number of accesses with bad size"); STATISTIC(NumAccessesWithBadSize, "Number of accesses with bad size");
STATISTIC(NumInstrumentedVtableWrites, "Number of vtable ptr writes"); STATISTIC(NumInstrumentedVtableWrites, "Number of vtable ptr writes");
STATISTIC(NumInstrumentedVtableReads, "Number of vtable ptr reads"); STATISTIC(NumInstrumentedVtableReads, "Number of vtable ptr reads");
STATISTIC(NumOmittedReadsFromConstantGlobals, STATISTIC(NumOmittedReadsFromConstantGlobals,
"Number of reads from constant globals"); "Number of reads from constant globals");
STATISTIC(NumOmittedReadsFromVtable, "Number of vtable reads"); STATISTIC(NumOmittedReadsFromVtable, "Number of vtable reads");
STATISTIC(NumOmittedNonCaptured, "Number of accesses ignored due to capturing"); STATISTIC(NumOmittedNonCaptured, "Number of accesses ignored due to capturing");
static const char *const kTsanModuleCtorName = "tsan.module_ctor";
static const char *const kTsanInitName = "__tsan_init"; static const char *const kTsanInitName = "__tsan_init";
namespace { namespace {
/// ThreadSanitizer: instrument the code in module to find races. /// ThreadSanitizer: instrument the code in module to find races.
chandlercUnsubmitted
Done
ReplyInline Actions

Similar documentation update as for msan?

chandlerc: Similar documentation update as for msan?
struct ThreadSanitizer : public FunctionPass { struct ThreadSanitizer {
ThreadSanitizer() : FunctionPass(ID) {} ThreadSanitizer(Module &M);
StringRef getPassName() const override; bool sanitizeFunction(Function &F, const TargetLibraryInfo &TLI);
void getAnalysisUsage(AnalysisUsage &AU) const override;
bool runOnFunction(Function &F) override;
bool doInitialization(Module &M) override;
static char ID; // Pass identification, replacement for typeid.
private: private:
void initializeCallbacks(Module &M); void initializeCallbacks(Module &M);
bool instrumentLoadOrStore(Instruction *I, const DataLayout &DL); bool instrumentLoadOrStore(Instruction *I, const DataLayout &DL);
bool instrumentAtomic(Instruction *I, const DataLayout &DL); bool instrumentAtomic(Instruction *I, const DataLayout &DL);
bool instrumentMemIntrinsic(Instruction *I); bool instrumentMemIntrinsic(Instruction *I);
void chooseInstructionsToInstrument(SmallVectorImpl<Instruction *> &Local, void chooseInstructionsToInstrument(SmallVectorImpl<Instruction *> &Local,
SmallVectorImpl<Instruction *> &All, SmallVectorImpl<Instruction *> &All,
const DataLayout &DL); const DataLayout &DL);
bool addrPointsToConstantData(Value *Addr); bool addrPointsToConstantData(Value *Addr);
Show All 17 Linesprivate:
Function *TsanAtomicStore[kNumberOfAccessSizes]; Function *TsanAtomicStore[kNumberOfAccessSizes];
Function *TsanAtomicRMW[AtomicRMWInst::LAST_BINOP + 1][kNumberOfAccessSizes]; Function *TsanAtomicRMW[AtomicRMWInst::LAST_BINOP + 1][kNumberOfAccessSizes];
Function *TsanAtomicCAS[kNumberOfAccessSizes]; Function *TsanAtomicCAS[kNumberOfAccessSizes];
Function *TsanAtomicThreadFence; Function *TsanAtomicThreadFence;
Function *TsanAtomicSignalFence; Function *TsanAtomicSignalFence;
Function *TsanVptrUpdate; Function *TsanVptrUpdate;
Function *TsanVptrLoad; Function *TsanVptrLoad;
Function *MemmoveFn, *MemcpyFn, *MemsetFn; Function *MemmoveFn, *MemcpyFn, *MemsetFn;
Function *TsanCtorFunction; };
struct ThreadSanitizerLegacyPass : FunctionPass {
ThreadSanitizerLegacyPass() : FunctionPass(ID) {}
StringRef getPassName() const override;
void getAnalysisUsage(AnalysisUsage &AU) const override;
bool runOnFunction(Function &F) override;
bool doInitialization(Module &M) override;
static char ID; // Pass identification, replacement for typeid.
private:
Optional<ThreadSanitizer> TSan;
}; };
} // namespace } // namespace
char ThreadSanitizer::ID = 0; PreservedAnalyses ThreadSanitizerPass::run(Function &F,
INITIALIZE_PASS_BEGIN( FunctionAnalysisManager &FAM) {
ThreadSanitizer, "tsan", ThreadSanitizer TSan(*F.getParent());
"ThreadSanitizer: detects data races.", if (TSan.sanitizeFunction(F, FAM.getResult<TargetLibraryAnalysis>(F)))
false, false) return PreservedAnalyses::none();
return PreservedAnalyses::all();
}
char ThreadSanitizerLegacyPass::ID = 0;
INITIALIZE_PASS_BEGIN(ThreadSanitizerLegacyPass, "tsan",
"ThreadSanitizer: detects data races.", false, false)
INITIALIZE_PASS_DEPENDENCY(TargetLibraryInfoWrapperPass) INITIALIZE_PASS_DEPENDENCY(TargetLibraryInfoWrapperPass)
INITIALIZE_PASS_END( INITIALIZE_PASS_END(ThreadSanitizerLegacyPass, "tsan",
ThreadSanitizer, "tsan", "ThreadSanitizer: detects data races.", false, false)
"ThreadSanitizer: detects data races.",
false, false)
StringRef ThreadSanitizer::getPassName() const { return "ThreadSanitizer"; } StringRef ThreadSanitizerLegacyPass::getPassName() const {
return "ThreadSanitizerLegacyPass";
}
void ThreadSanitizer::getAnalysisUsage(AnalysisUsage &AU) const { void ThreadSanitizerLegacyPass::getAnalysisUsage(AnalysisUsage &AU) const {
AU.addRequired<TargetLibraryInfoWrapperPass>(); AU.addRequired<TargetLibraryInfoWrapperPass>();
} }
FunctionPass *llvm::createThreadSanitizerPass() { bool ThreadSanitizerLegacyPass::doInitialization(Module &M) {
return new ThreadSanitizer(); TSan.emplace(M);
return true;
}
bool ThreadSanitizerLegacyPass::runOnFunction(Function &F) {
auto &TLI = getAnalysis<TargetLibraryInfoWrapperPass>().getTLI();
TSan->sanitizeFunction(F, TLI);
return true;
}
FunctionPass *llvm::createThreadSanitizerLegacyPassPass() {
return new ThreadSanitizerLegacyPass();
} }
void ThreadSanitizer::initializeCallbacks(Module &M) { void ThreadSanitizer::initializeCallbacks(Module &M) {
chandlercUnsubmitted
Not Done
ReplyInline Actions

There are a lot of functions here, including numerous loops... Is this really ok to do every function?

chandlerc: There are a lot of functions here, including numerous loops... Is this really ok to do every…
IRBuilder<> IRB(M.getContext()); IRBuilder<> IRB(M.getContext());
AttributeList Attr; AttributeList Attr;
Attr = Attr.addAttribute(M.getContext(), AttributeList::FunctionIndex, Attr = Attr.addAttribute(M.getContext(), AttributeList::FunctionIndex,
Attribute::NoUnwind); Attribute::NoUnwind);
// Initialize the callbacks. // Initialize the callbacks.
TsanFuncEntry = checkSanitizerInterfaceFunction(M.getOrInsertFunction( TsanFuncEntry = checkSanitizerInterfaceFunction(M.getOrInsertFunction(
"__tsan_func_entry", Attr, IRB.getVoidTy(), IRB.getInt8PtrTy())); "__tsan_func_entry", Attr, IRB.getVoidTy(), IRB.getInt8PtrTy()));
TsanFuncExit = checkSanitizerInterfaceFunction( TsanFuncExit = checkSanitizerInterfaceFunction(
▲ Show 20 LinesShow All 82 Lines▼ Show 20 Linesvoid ThreadSanitizer::initializeCallbacks(Module &M) {
MemcpyFn = checkSanitizerInterfaceFunction( MemcpyFn = checkSanitizerInterfaceFunction(
M.getOrInsertFunction("memcpy", Attr, IRB.getInt8PtrTy(), IRB.getInt8PtrTy(), M.getOrInsertFunction("memcpy", Attr, IRB.getInt8PtrTy(), IRB.getInt8PtrTy(),
IRB.getInt8PtrTy(), IntptrTy)); IRB.getInt8PtrTy(), IntptrTy));
MemsetFn = checkSanitizerInterfaceFunction( MemsetFn = checkSanitizerInterfaceFunction(
M.getOrInsertFunction("memset", Attr, IRB.getInt8PtrTy(), IRB.getInt8PtrTy(), M.getOrInsertFunction("memset", Attr, IRB.getInt8PtrTy(), IRB.getInt8PtrTy(),
IRB.getInt32Ty(), IntptrTy)); IRB.getInt32Ty(), IntptrTy));
} }
bool ThreadSanitizer::doInitialization(Module &M) { ThreadSanitizer::ThreadSanitizer(Module &M) {
const DataLayout &DL = M.getDataLayout(); const DataLayout &DL = M.getDataLayout();
IntptrTy = DL.getIntPtrType(M.getContext()); IntptrTy = DL.getIntPtrType(M.getContext());
std::tie(TsanCtorFunction, std::ignore) = createSanitizerCtorAndInitFunctions( getOrCreateInitFunction(M, kTsanInitName);
M, kTsanModuleCtorName, kTsanInitName, /*InitArgTypes=*/{},
/*InitArgs=*/{});
appendToGlobalCtors(M, TsanCtorFunction, 0);
return true;
} }
static bool isVtableAccess(Instruction *I) { static bool isVtableAccess(Instruction *I) {
if (MDNode *Tag = I->getMetadata(LLVMContext::MD_tbaa)) if (MDNode *Tag = I->getMetadata(LLVMContext::MD_tbaa))
return Tag->isTBAAVtableAccess(); return Tag->isTBAAVtableAccess();
return false; return false;
} }
▲ Show 20 LinesShow All 124 Lines▼ Show 20 Linesvoid ThreadSanitizer::InsertRuntimeIgnores(Function &F) {
IRBuilder<> IRB(F.getEntryBlock().getFirstNonPHI()); IRBuilder<> IRB(F.getEntryBlock().getFirstNonPHI());
IRB.CreateCall(TsanIgnoreBegin); IRB.CreateCall(TsanIgnoreBegin);
EscapeEnumerator EE(F, "tsan_ignore_cleanup", ClHandleCxxExceptions); EscapeEnumerator EE(F, "tsan_ignore_cleanup", ClHandleCxxExceptions);
while (IRBuilder<> *AtExit = EE.Next()) { while (IRBuilder<> *AtExit = EE.Next()) {
AtExit->CreateCall(TsanIgnoreEnd); AtExit->CreateCall(TsanIgnoreEnd);
} }
} }
bool ThreadSanitizer::runOnFunction(Function &F) { bool ThreadSanitizer::sanitizeFunction(Function &F,
// This is required to prevent instrumenting call to __tsan_init from within const TargetLibraryInfo &TLI) {
// the module constructor.
if (&F == TsanCtorFunction)
return false;
initializeCallbacks(*F.getParent()); initializeCallbacks(*F.getParent());
SmallVector<Instruction*, 8> AllLoadsAndStores; SmallVector<Instruction*, 8> AllLoadsAndStores;
SmallVector<Instruction*, 8> LocalLoadsAndStores; SmallVector<Instruction*, 8> LocalLoadsAndStores;
SmallVector<Instruction*, 8> AtomicAccesses; SmallVector<Instruction*, 8> AtomicAccesses;
SmallVector<Instruction*, 8> MemIntrinCalls; SmallVector<Instruction*, 8> MemIntrinCalls;
bool Res = false; bool Res = false;
bool HasCalls = false; bool HasCalls = false;
bool SanitizeFunction = F.hasFnAttribute(Attribute::SanitizeThread); bool SanitizeFunction = F.hasFnAttribute(Attribute::SanitizeThread);
const DataLayout &DL = F.getParent()->getDataLayout(); const DataLayout &DL = F.getParent()->getDataLayout();
const TargetLibraryInfo *TLI =
&getAnalysis<TargetLibraryInfoWrapperPass>().getTLI();
// Traverse all instructions, collect loads/stores/returns, check for calls. // Traverse all instructions, collect loads/stores/returns, check for calls.
for (auto &BB : F) { for (auto &BB : F) {
for (auto &Inst : BB) { for (auto &Inst : BB) {
if (isAtomic(&Inst)) if (isAtomic(&Inst))
AtomicAccesses.push_back(&Inst); AtomicAccesses.push_back(&Inst);
else if (isa<LoadInst>(Inst) || isa<StoreInst>(Inst)) else if (isa<LoadInst>(Inst) || isa<StoreInst>(Inst))
LocalLoadsAndStores.push_back(&Inst); LocalLoadsAndStores.push_back(&Inst);
else if (isa<CallInst>(Inst) || isa<InvokeInst>(Inst)) { else if (isa<CallInst>(Inst) || isa<InvokeInst>(Inst)) {
if (CallInst *CI = dyn_cast<CallInst>(&Inst)) if (CallInst *CI = dyn_cast<CallInst>(&Inst))
maybeMarkSanitizerLibraryCallNoBuiltin(CI, TLI); maybeMarkSanitizerLibraryCallNoBuiltin(CI, &TLI);
if (isa<MemIntrinsic>(Inst)) if (isa<MemIntrinsic>(Inst))
MemIntrinCalls.push_back(&Inst); MemIntrinCalls.push_back(&Inst);
HasCalls = true; HasCalls = true;
chooseInstructionsToInstrument(LocalLoadsAndStores, AllLoadsAndStores, chooseInstructionsToInstrument(LocalLoadsAndStores, AllLoadsAndStores,
DL); DL);
} }
} }
chooseInstructionsToInstrument(LocalLoadsAndStores, AllLoadsAndStores, DL); chooseInstructionsToInstrument(LocalLoadsAndStores, AllLoadsAndStores, DL);
▲ Show 20 LinesShow All 264 LinesShow Last 20 Lines

llvm/test/Instrumentation/ThreadSanitizer/tsan_basic.ll

; RUN: opt < %s -tsan -S | FileCheck %s ; RUN: opt < %s -tsan -S | FileCheck %s
; RUN: opt < %s -passes=tsan -S | FileCheck %s
target datalayout = "e-p:64:64:64-i1:8:8-i8:8:8-i16:16:16-i32:32:32-i64:64:64-f32:32:32-f64:64:64-v64:64:64-v128:128:128-a0:0:64-s0:64:64-f80:128:128-n8:16:32:64" target datalayout = "e-p:64:64:64-i1:8:8-i8:8:8-i16:16:16-i32:32:32-i64:64:64-f32:32:32-f64:64:64-v64:64:64-v128:128:128-a0:0:64-s0:64:64-f80:128:128-n8:16:32:64"
target triple = "x86_64-unknown-linux-gnu" target triple = "x86_64-unknown-linux-gnu"
define i32 @read_4_bytes(i32* %a) sanitize_thread { define i32 @read_4_bytes(i32* %a) sanitize_thread {
entry: entry:
%tmp1 = load i32, i32* %a, align 4 %tmp1 = load i32, i32* %a, align 4
ret i32 %tmp1 ret i32 %tmp1
} }
; CHECK: @llvm.global_ctors = {{.*}}@tsan.module_ctor ; CHECK: @llvm.global_ctors = {{.*}}@__tsan_init
; CHECK: define i32 @read_4_bytes(i32* %a) ; CHECK: define i32 @read_4_bytes(i32* %a)
; CHECK: call void @__tsan_func_entry(i8* %0) ; CHECK: call void @__tsan_func_entry(i8* %0)
; CHECK-NEXT: %1 = bitcast i32* %a to i8* ; CHECK-NEXT: %1 = bitcast i32* %a to i8*
; CHECK-NEXT: call void @__tsan_read4(i8* %1) ; CHECK-NEXT: call void @__tsan_read4(i8* %1)
; CHECK-NEXT: %tmp1 = load i32, i32* %a, align 4 ; CHECK-NEXT: %tmp1 = load i32, i32* %a, align 4
; CHECK-NEXT: call void @__tsan_func_exit() ; CHECK-NEXT: call void @__tsan_func_exit()
; CHECK: ret i32 ; CHECK: ret i32
▲ Show 20 LinesShow All 51 Lines▼ Show 20 Lines
; CHECK-NOT: __tsan_write ; CHECK-NOT: __tsan_write
; CHECK: ret ; CHECK: ret
define void @SwiftErrorCall(i8** swifterror) sanitize_thread { define void @SwiftErrorCall(i8** swifterror) sanitize_thread {
%swifterror_addr = alloca swifterror i8* %swifterror_addr = alloca swifterror i8*
store i8* null, i8** %0 store i8* null, i8** %0
call void @SwiftError(i8** %0) call void @SwiftError(i8** %0)
ret void ret void
} }
; CHECK: define internal void @tsan.module_ctor()
; CHECK: call void @__tsan_init()