This is an archive of the discontinued LLVM Phabricator instance.

Differential D64115

[WebAssembly] Prevent inline assembly from being mangled by SjLj
ClosedPublic

Authored by quantum on Jul 2 2019, 5:23 PM.

Details

Reviewers
aheejin
tlively
sbc100
Commits
rGb88ebe8cc9a8: [WebAssembly] Prevent inline assembly from being mangled by SjLj
rL364985: [WebAssembly] Prevent inline assembly from being mangled by SjLj
Summary

Before, inline assembly gets mangled by the SjLj transformation.

For example, in a function with setjmp/longjmp, this LLVM IR code

call void asm sideeffect "", ""()

would be transformed into

call void @__invoke_void(void ()* asm sideeffect "", "")

This is invalid, and results in the error:

Cannot take the address of an inline asm!

In this diff, we skip the transformation for inline assembly.

Diff Detail

Repository
rL LLVM

Event Timeline

quantum created this revision.Jul 2 2019, 5:23 PM
Herald added a project: Restricted Project. · View Herald TranscriptJul 2 2019, 5:23 PM
Herald added subscribers: llvm-commits, sunfish, hiraditya and 3 others. · View Herald Transcript
Harbormaster completed remote builds in B34234: Diff 207667.Jul 2 2019, 5:23 PM
tlively accepted this revision.Jul 2 2019, 5:29 PM

LGTM with a quick explanatory comment!

llvm/lib/Target/WebAssembly/WebAssemblyLowerEmscriptenEHSjLj.cpp
964 ↗(On Diff #207667)

Please add a comment about why InlineAsm needs to be skipped.

This revision is now accepted and ready to land.Jul 2 2019, 5:29 PM
sbc100 accepted this revision.Jul 2 2019, 5:29 PM
sbc100 added inline comments.
llvm/lib/Target/WebAssembly/WebAssemblyLowerEmscriptenEHSjLj.cpp
964 ↗(On Diff #207667)

Why move this into calLongjmp?

tlively added inline comments.Jul 2 2019, 5:32 PM
llvm/lib/Target/WebAssembly/WebAssemblyLowerEmscriptenEHSjLj.cpp
964 ↗(On Diff #207667)

That seems like a good idea.

quantum updated this revision to Diff 207669.Jul 2 2019, 5:36 PM
quantum marked 3 inline comments as done.

Moved into canLongjmp and added comments.

quantum added a comment.Jul 2 2019, 5:37 PM

Applied suggestions.

Harbormaster completed remote builds in B34235: Diff 207669.Jul 2 2019, 5:38 PM
Closed by commit rL364985: [WebAssembly] Prevent inline assembly from being mangled by SjLj (authored by quantum). · Explain WhyJul 2 2019, 5:38 PM
This revision was automatically updated to reflect the committed changes.
aheejin added a comment.EditedJul 2 2019, 5:39 PM

Doesn't this only prevent longjmp from generated? Shouldn't we also prevent exception-related invokes from generated?

aheejin added a comment.Jul 2 2019, 5:49 PM

Thank you for fixing this. This pass does two things: exception handling and setjmp-longjmp handling. This CL only fixes setjmp-longjmp. Could you fix the exception case too if that's not too much of a burden? You can fix the NeedInvoke part as I told you before. This is basically my bug so I can do it too, in case it takes time though.

llvm/trunk/test/CodeGen/WebAssembly/lower-em-sjlj.ll
192

Nit: please delete hidden and #0

210

We can simplify this test case further: We don't need longjmp in the same function to test this. You can refer to setjmp_other function in this file; you can make this as a single BB function, replacing the call to foo with your inline asm call, because with a few exceptions, most function calls in the same function as setjmp are turned into invokes.

quantum added a comment.Jul 2 2019, 6:01 PM

I don't think this is actually a problem in the exception case. To call something that throws, you'd use invoke instead of call, but inline assembly is generated with call and not invoke.

quantum mentioned this in D64117: [WebAssembly][NFC] simplify SjLj inline assembly test.Jul 2 2019, 6:22 PM
aheejin added a comment.Jul 2 2019, 6:49 PM

Hmm right, invokes don't seem to be generated from inline assembly except for handwritten test cases.

quantum mentioned this in rL365089: [WebAssembly][NFC] simplify SjLj inline assembly test.Jul 3 2019, 3:11 PM
quantum mentioned this in rG8bb1e1527ca5: [WebAssembly][NFC] simplify SjLj inline assembly test.Jul 3 2019, 3:16 PM

Revision Contents

PathSize
llvm/
trunk/
lib/
Target/
WebAssembly/
7 lines
test/
CodeGen/
WebAssembly/
21 lines

Diff 207671

llvm/trunk/lib/Target/WebAssembly/WebAssemblyLowerEmscriptenEHSjLj.cpp

Show First 20 LinesShow All 479 Lines▼ Show 20 Lines
} }
bool WebAssemblyLowerEmscriptenEHSjLj::canLongjmp(Module &M, bool WebAssemblyLowerEmscriptenEHSjLj::canLongjmp(Module &M,
const Value *Callee) const { const Value *Callee) const {
if (auto *CalleeF = dyn_cast<Function>(Callee)) if (auto *CalleeF = dyn_cast<Function>(Callee))
if (CalleeF->isIntrinsic()) if (CalleeF->isIntrinsic())
return false; return false;
// Attempting to transform inline assembly will result in something like:
// call void @__invoke_void(void ()* asm ...)
// which is invalid because inline assembly blocks do not have addresses
// and can't be passed by pointer. The result is a crash with illegal IR.
if (isa<InlineAsm>(Callee))
return false;
// The reason we include malloc/free here is to exclude the malloc/free // The reason we include malloc/free here is to exclude the malloc/free
// calls generated in setjmp prep / cleanup routines. // calls generated in setjmp prep / cleanup routines.
Function *SetjmpF = M.getFunction("setjmp"); Function *SetjmpF = M.getFunction("setjmp");
Function *MallocF = M.getFunction("malloc"); Function *MallocF = M.getFunction("malloc");
Function *FreeF = M.getFunction("free"); Function *FreeF = M.getFunction("free");
if (Callee == SetjmpF || Callee == MallocF || Callee == FreeF) if (Callee == SetjmpF || Callee == MallocF || Callee == FreeF)
return false; return false;
▲ Show 20 LinesShow All 608 LinesShow Last 20 Lines

llvm/trunk/test/CodeGen/WebAssembly/lower-em-sjlj.ll

Show First 20 LinesShow All 182 Lines▼ Show 20 Linesentry:
%buf = alloca [1 x %struct.__jmp_buf_tag], align 16 %buf = alloca [1 x %struct.__jmp_buf_tag], align 16
%arraydecay = getelementptr inbounds [1 x %struct.__jmp_buf_tag], [1 x %struct.__jmp_buf_tag]* %buf, i32 0, i32 0 %arraydecay = getelementptr inbounds [1 x %struct.__jmp_buf_tag], [1 x %struct.__jmp_buf_tag]* %buf, i32 0, i32 0
call void @longjmp(%struct.__jmp_buf_tag* %arraydecay, i32 5) #1 call void @longjmp(%struct.__jmp_buf_tag* %arraydecay, i32 5) #1
unreachable unreachable
; CHECK: %[[ARRAYDECAY:.*]] = getelementptr inbounds ; CHECK: %[[ARRAYDECAY:.*]] = getelementptr inbounds
; CHECK-NEXT: call void @emscripten_longjmp_jmpbuf(%struct.__jmp_buf_tag* %[[ARRAYDECAY]], i32 5) #1 ; CHECK-NEXT: call void @emscripten_longjmp_jmpbuf(%struct.__jmp_buf_tag* %[[ARRAYDECAY]], i32 5) #1
} }
; Test inline asm handling
define hidden void @inline_asm() #0 {
aheejinUnsubmitted
Not Done
ReplyInline Actions

Nit: please delete hidden and #0

aheejin: Nit: please delete `hidden` and `#0`
; CHECK-LABEL: @inline_asm
entry:
%env = alloca [1 x %struct.__jmp_buf_tag], align 16
%arraydecay = getelementptr inbounds [1 x %struct.__jmp_buf_tag], [1 x %struct.__jmp_buf_tag]* %env, i32 0, i32 0
%call = call i32 @setjmp(%struct.__jmp_buf_tag* %arraydecay) #4
%cmp = icmp eq i32 %call, 0
br i1 %cmp, label %if.then, label %if.else
if.then: ; preds = %entry
; CHECK: call void asm sideeffect "", ""()
call void asm sideeffect "", ""()
%arraydecay1 = getelementptr inbounds [1 x %struct.__jmp_buf_tag], [1 x %struct.__jmp_buf_tag]* %env, i32 0, i32 0
call void @longjmp(%struct.__jmp_buf_tag* %arraydecay1, i32 1) #5
unreachable
if.else: ; preds = %entry
ret void
}
aheejinUnsubmitted
Not Done
ReplyInline Actions

We can simplify this test case further: We don't need longjmp in the same function to test this. You can refer to setjmp_other function in this file; you can make this as a single BB function, replacing the call to foo with your inline asm call, because with a few exceptions, most function calls in the same function as setjmp are turned into invokes.

aheejin: We can simplify this test case further: We don't need `longjmp` in the same function to test…
declare void @foo() declare void @foo()
; Function Attrs: returns_twice ; Function Attrs: returns_twice
declare i32 @setjmp(%struct.__jmp_buf_tag*) #0 declare i32 @setjmp(%struct.__jmp_buf_tag*) #0
; Function Attrs: noreturn ; Function Attrs: noreturn
declare void @longjmp(%struct.__jmp_buf_tag*, i32) #1 declare void @longjmp(%struct.__jmp_buf_tag*, i32) #1
declare i32 @__gxx_personality_v0(...) declare i32 @__gxx_personality_v0(...)
declare i8* @__cxa_begin_catch(i8*) declare i8* @__cxa_begin_catch(i8*)
declare void @__cxa_end_catch() declare void @__cxa_end_catch()
Show All 16 Lines