This is an archive of the discontinued LLVM Phabricator instance.

Differential D77421

[WPD] Avoid noalias assumptions in unique return value optimization
ClosedPublic

Authored by inglorion on Apr 3 2020, 11:28 AM.

Details

Reviewers
tejohnson
pcc
Commits
rGcc5c58889ec6: [WPD] Avoid noalias assumptions in unique return value optimization
Summary

Changes the type of the @__typeid_.*_unique_member imports we generate
for unique return value optimization from i8 to [0 x i8]. This
prevents assuming that these imports do not alias, such as when
two unique return values occur in the same vtable.

Fixes PR45393.

Diff Detail

Event Timeline

inglorion created this revision.Apr 3 2020, 11:28 AM
Herald added a project: Restricted Project. · View Herald TranscriptApr 3 2020, 11:28 AM
Herald added a subscriber: hiraditya. · View Herald Transcript
dblaikie added a comment.Apr 3 2020, 1:18 PM

Naive question, but I thought LLVM IR didn't have type based alias analysis based on LLVM IR pointer types (given the intention to remove pointee types - and any cases of pointee types being significant to optimizations are bugs, so far as I know). Is that's what's going on here? Because perhaps the right fix is to fix the optimization that's making assumptions based on pointee types instead of this change?

My understanding was any type based alias analysis used the TBAA metadata to describe which pointers could/couldn't point to the same things.

inglorion added a comment.Apr 3 2020, 4:28 PM

@dblaikie: My understanding is that LLVM reserves the right to assume that distinct globals never alias and optimize based on that (e.g. as mentioned under https://releases.llvm.org/10.0.0/docs/AliasAnalysis.html#the-basicaa-pass), and that declaring globals as zero-sized is the accepted way to avoid that (e.g. as mentioned in https://bugs.llvm.org/show_bug.cgi?id=31675#c5).

So it's not so much improperly applied TBAA as it is an assumption that LLVM allows itself to make regardless of type, with a special exception for zero-sized types.

inglorion updated this revision to Diff 254947.Apr 3 2020, 4:44 PM

Added a comment to (hopefully) better explain what the test does.

Harbormaster failed remote builds in B51719: Diff 254947!Apr 3 2020, 5:21 PM
dblaikie added a comment.Apr 5 2020, 11:42 AM
In D77421#1960852, @inglorion wrote:

@dblaikie: My understanding is that LLVM reserves the right to assume that distinct globals never alias and optimize based on that (e.g. as mentioned under https://releases.llvm.org/10.0.0/docs/AliasAnalysis.html#the-basicaa-pass), and that declaring globals as zero-sized is the accepted way to avoid that (e.g. as mentioned in https://bugs.llvm.org/show_bug.cgi?id=31675#c5).

So it's not so much improperly applied TBAA as it is an assumption that LLVM allows itself to make regardless of type, with a special exception for zero-sized types.

Ah - thanks! This is probably sufficiently out of my purview then, but little curious if you've time to explain it further: How does this feature work? Why could these two globals end up aliasing in practice before? Are these globals never actually defined?

rnk added a comment.Apr 6 2020, 8:25 AM

This looks good to me, given LLVM's existing behavior, but I'd like to hear from the reviewers.

I'm increasingly skeptical of the problematic optimization here, but I'm not inclined to open up discussion at the moment.

tejohnson added a comment.Apr 6 2020, 8:53 AM

@pcc is probably the best reviewer here. I've touched WPD but only the single impl devirt part (we can't do the uniq ret value in ThinLTO index-only mode). But the changes look pretty straightforward to me, assuming this is the best solution. Looking at the associated bug, what do the defs of those symbols look like? Is one an alias of the other?

inglorion added a comment.Apr 6 2020, 11:22 AM

@tejohnson: The defs look like

@__typeid__ZTS4Base_16_unique_member = hidden alias i8, getelementptr (i8, i8* bitcast ({ [6 x i8*] }* @_ZTV7Derived to i8*), i64 16)
@__typeid__ZTS4Base_24_unique_member = hidden alias i8, getelementptr (i8, i8* bitcast ({ [6 x i8*] }* @_ZTV7Derived to i8*), i64 16)

So they are both aliases to the same vtable.

These are code generated into the split LTO object that is linked in in the final link step, where they show up as hidden global object, with the same value for each.

inglorion added a comment.Apr 8 2020, 10:58 AM

@pcc, do you have time to take a look?

pcc added inline comments.Apr 8 2020, 12:53 PM
llvm/lib/Transforms/IPO/WholeProgramDevirt.cpp
506

Elsewhere I've called this Int8Arr0Ty but I'm not too picky about the name.

1405

Is this change necessary? As far as I know we aren't passing the result of importGlobal here and it would be nice to avoid introducing a call to PointerType::getElementType() given that we hope to eliminate it one day.

1437

The type doesn't matter in this case (in fact it may be slightly more beneficial to use [0 x i8] here in order to allow the absolute symbols to "alias" when their values are the same), so could we just use it everywhere?

inglorion updated this revision to Diff 256196.Apr 8 2020, 11:34 PM
inglorion marked 5 inline comments as done.

Thanks, Peter! I've implemented your suggestions.

inglorion added inline comments.Apr 8 2020, 11:36 PM
llvm/lib/Transforms/IPO/WholeProgramDevirt.cpp
506

I've changed it to Int8Arr0Ty for consistency, and reworded the comment somewhat.

1405

No, we can keep this as i8. I've removed this change.

Harbormaster failed remote builds in B52458: Diff 256196!Apr 9 2020, 12:30 AM
aganea added a subscriber: aganea.Apr 9 2020, 6:29 AM
inglorion added a comment.Apr 13 2020, 12:06 PM

@pcc, do you have time for another look?

saudi mentioned this in D55153: [ThinLTO] Implement index-based WPD.Apr 14 2020, 2:38 PM
pcc accepted this revision.Apr 16 2020, 1:45 PM

LGTM

This revision is now accepted and ready to land.Apr 16 2020, 1:45 PM
inglorion added a comment.Apr 16 2020, 2:54 PM

Thanks!

Closed by commit rGcc5c58889ec6: [WPD] Avoid noalias assumptions in unique return value optimization (authored by inglorion). · Explain WhyApr 16 2020, 3:05 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents

PathSize
llvm/
lib/
Transforms/
IPO/
12 lines
test/
Transforms/
WholeProgramDevirt/
Inputs/
17 lines
18 lines
59 lines
7 lines

Diff 258184

llvm/lib/Transforms/IPO/WholeProgramDevirt.cpp

Show First 20 LinesShow All 494 Lines▼ Show 20 Linesstruct DevirtModule {
ModuleSummaryIndex *ExportSummary; ModuleSummaryIndex *ExportSummary;
const ModuleSummaryIndex *ImportSummary; const ModuleSummaryIndex *ImportSummary;
IntegerType *Int8Ty; IntegerType *Int8Ty;
PointerType *Int8PtrTy; PointerType *Int8PtrTy;
IntegerType *Int32Ty; IntegerType *Int32Ty;
IntegerType *Int64Ty; IntegerType *Int64Ty;
IntegerType *IntPtrTy; IntegerType *IntPtrTy;
/// Sizeless array type, used for imported vtables. This provides a signal
/// to analyzers that these imports may alias, as they do for example
/// when multiple unique return values occur in the same vtable.
ArrayType *Int8Arr0Ty;
pccUnsubmitted
Done
ReplyInline Actions

Elsewhere I've called this Int8Arr0Ty but I'm not too picky about the name.

pcc: Elsewhere I've called this `Int8Arr0Ty` but I'm not too picky about the name.
inglorionAuthorUnsubmitted
Done
ReplyInline Actions

I've changed it to Int8Arr0Ty for consistency, and reworded the comment somewhat.

inglorion: I've changed it to Int8Arr0Ty for consistency, and reworded the comment somewhat.
bool RemarksEnabled; bool RemarksEnabled;
function_ref<OptimizationRemarkEmitter &(Function *)> OREGetter; function_ref<OptimizationRemarkEmitter &(Function *)> OREGetter;
MapVector<VTableSlot, VTableSlotInfo> CallSlots; MapVector<VTableSlot, VTableSlotInfo> CallSlots;
// This map keeps track of the number of "unsafe" uses of a loaded function // This map keeps track of the number of "unsafe" uses of a loaded function
// pointer. The key is the associated llvm.type.test intrinsic call generated // pointer. The key is the associated llvm.type.test intrinsic call generated
Show All 13 Lines DevirtModule(Module &M, function_ref<AAResults &(Function &)> AARGetter,
const ModuleSummaryIndex *ImportSummary) const ModuleSummaryIndex *ImportSummary)
: M(M), AARGetter(AARGetter), LookupDomTree(LookupDomTree), : M(M), AARGetter(AARGetter), LookupDomTree(LookupDomTree),
ExportSummary(ExportSummary), ImportSummary(ImportSummary), ExportSummary(ExportSummary), ImportSummary(ImportSummary),
Int8Ty(Type::getInt8Ty(M.getContext())), Int8Ty(Type::getInt8Ty(M.getContext())),
Int8PtrTy(Type::getInt8PtrTy(M.getContext())), Int8PtrTy(Type::getInt8PtrTy(M.getContext())),
Int32Ty(Type::getInt32Ty(M.getContext())), Int32Ty(Type::getInt32Ty(M.getContext())),
Int64Ty(Type::getInt64Ty(M.getContext())), Int64Ty(Type::getInt64Ty(M.getContext())),
IntPtrTy(M.getDataLayout().getIntPtrType(M.getContext(), 0)), IntPtrTy(M.getDataLayout().getIntPtrType(M.getContext(), 0)),
Int8Arr0Ty(ArrayType::get(Type::getInt8Ty(M.getContext()), 0)),
RemarksEnabled(areRemarksEnabled()), OREGetter(OREGetter) { RemarksEnabled(areRemarksEnabled()), OREGetter(OREGetter) {
assert(!(ExportSummary && ImportSummary)); assert(!(ExportSummary && ImportSummary));
FunctionsToSkip.init(SkipFunctionNames); FunctionsToSkip.init(SkipFunctionNames);
} }
bool areRemarksEnabled(); bool areRemarksEnabled();
void scanTypeTestUsers(Function *TypeTestFunc); void scanTypeTestUsers(Function *TypeTestFunc);
▲ Show 20 LinesShow All 852 Lines▼ Show 20 Linesbool DevirtModule::shouldExportConstantsAsAbsoluteSymbols() {
Triple T(M.getTargetTriple()); Triple T(M.getTargetTriple());
return T.isX86() && T.getObjectFormat() == Triple::ELF; return T.isX86() && T.getObjectFormat() == Triple::ELF;
} }
void DevirtModule::exportGlobal(VTableSlot Slot, ArrayRef<uint64_t> Args, void DevirtModule::exportGlobal(VTableSlot Slot, ArrayRef<uint64_t> Args,
StringRef Name, Constant *C) { StringRef Name, Constant *C) {
GlobalAlias *GA = GlobalAlias::create(Int8Ty, 0, GlobalValue::ExternalLinkage, GlobalAlias *GA = GlobalAlias::create(Int8Ty, 0, GlobalValue::ExternalLinkage,
getGlobalName(Slot, Args, Name), C, &M); getGlobalName(Slot, Args, Name), C, &M);
GA->setVisibility(GlobalValue::HiddenVisibility); GA->setVisibility(GlobalValue::HiddenVisibility);
pccUnsubmitted
Done
ReplyInline Actions

Is this change necessary? As far as I know we aren't passing the result of importGlobal here and it would be nice to avoid introducing a call to PointerType::getElementType() given that we hope to eliminate it one day.

pcc: Is this change necessary? As far as I know we aren't passing the result of `importGlobal` here…
inglorionAuthorUnsubmitted
Done
ReplyInline Actions

No, we can keep this as i8. I've removed this change.

inglorion: No, we can keep this as i8. I've removed this change.
} }
void DevirtModule::exportConstant(VTableSlot Slot, ArrayRef<uint64_t> Args, void DevirtModule::exportConstant(VTableSlot Slot, ArrayRef<uint64_t> Args,
StringRef Name, uint32_t Const, StringRef Name, uint32_t Const,
uint32_t &Storage) { uint32_t &Storage) {
if (shouldExportConstantsAsAbsoluteSymbols()) { if (shouldExportConstantsAsAbsoluteSymbols()) {
exportGlobal( exportGlobal(
Slot, Args, Name, Slot, Args, Name,
ConstantExpr::getIntToPtr(ConstantInt::get(Int32Ty, Const), Int8PtrTy)); ConstantExpr::getIntToPtr(ConstantInt::get(Int32Ty, Const), Int8PtrTy));
return; return;
} }
Storage = Const; Storage = Const;
} }
Constant *DevirtModule::importGlobal(VTableSlot Slot, ArrayRef<uint64_t> Args, Constant *DevirtModule::importGlobal(VTableSlot Slot, ArrayRef<uint64_t> Args,
StringRef Name) { StringRef Name) {
Constant *C = M.getOrInsertGlobal(getGlobalName(Slot, Args, Name), Int8Ty); Constant *C =
M.getOrInsertGlobal(getGlobalName(Slot, Args, Name), Int8Arr0Ty);
auto *GV = dyn_cast<GlobalVariable>(C); auto *GV = dyn_cast<GlobalVariable>(C);
if (GV) if (GV)
GV->setVisibility(GlobalValue::HiddenVisibility); GV->setVisibility(GlobalValue::HiddenVisibility);
return C; return C;
} }
Constant *DevirtModule::importConstant(VTableSlot Slot, ArrayRef<uint64_t> Args, Constant *DevirtModule::importConstant(VTableSlot Slot, ArrayRef<uint64_t> Args,
StringRef Name, IntegerType *IntTy, StringRef Name, IntegerType *IntTy,
uint32_t Storage) { uint32_t Storage) {
if (!shouldExportConstantsAsAbsoluteSymbols()) if (!shouldExportConstantsAsAbsoluteSymbols())
return ConstantInt::get(IntTy, Storage); return ConstantInt::get(IntTy, Storage);
Constant *C = importGlobal(Slot, Args, Name); Constant *C = importGlobal(Slot, Args, Name);
pccUnsubmitted
Done
ReplyInline Actions

The type doesn't matter in this case (in fact it may be slightly more beneficial to use [0 x i8] here in order to allow the absolute symbols to "alias" when their values are the same), so could we just use it everywhere?

pcc: The type doesn't matter in this case (in fact it may be slightly more beneficial to use [0 x…
auto *GV = cast<GlobalVariable>(C->stripPointerCasts()); auto *GV = cast<GlobalVariable>(C->stripPointerCasts());
C = ConstantExpr::getPtrToInt(C, IntTy); C = ConstantExpr::getPtrToInt(C, IntTy);
// We only need to set metadata if the global is newly created, in which // We only need to set metadata if the global is newly created, in which
// case it would not have hidden visibility. // case it would not have hidden visibility.
if (GV->hasMetadata(LLVMContext::MD_absolute_symbol)) if (GV->hasMetadata(LLVMContext::MD_absolute_symbol))
return C; return C;
Show All 12 Lines
} }
void DevirtModule::applyUniqueRetValOpt(CallSiteInfo &CSInfo, StringRef FnName, void DevirtModule::applyUniqueRetValOpt(CallSiteInfo &CSInfo, StringRef FnName,
bool IsOne, bool IsOne,
Constant *UniqueMemberAddr) { Constant *UniqueMemberAddr) {
for (auto &&Call : CSInfo.CallSites) { for (auto &&Call : CSInfo.CallSites) {
IRBuilder<> B(Call.CS.getInstruction()); IRBuilder<> B(Call.CS.getInstruction());
Value *Cmp = Value *Cmp =
B.CreateICmp(IsOne ? ICmpInst::ICMP_EQ : ICmpInst::ICMP_NE, B.CreateICmp(IsOne ? ICmpInst::ICMP_EQ : ICmpInst::ICMP_NE, Call.VTable,
B.CreateBitCast(Call.VTable, Int8PtrTy), UniqueMemberAddr); B.CreateBitCast(UniqueMemberAddr, Call.VTable->getType()));
Cmp = B.CreateZExt(Cmp, Call.CS->getType()); Cmp = B.CreateZExt(Cmp, Call.CS->getType());
Call.replaceAndErase("unique-ret-val", FnName, RemarksEnabled, OREGetter, Call.replaceAndErase("unique-ret-val", FnName, RemarksEnabled, OREGetter,
Cmp); Cmp);
} }
CSInfo.markDevirt(); CSInfo.markDevirt();
} }
Constant *DevirtModule::getMemberAddr(const TypeMemberInfo *M) { Constant *DevirtModule::getMemberAddr(const TypeMemberInfo *M) {
▲ Show 20 LinesShow All 695 LinesShow Last 20 Lines

llvm/test/Transforms/WholeProgramDevirt/Inputs/unique-retval-same-vtable.yaml

  • This file was added.
---
TypeIdMap:
_ZTS1C:
WPDRes:
16:
Kind: Indir
ResByArg:
'':
Kind: UniqueRetVal
Info: 1
24:
Kind: Indir
ResByArg:
'':
Kind: UniqueRetVal
Info: 1
...

llvm/test/Transforms/WholeProgramDevirt/import.ll

; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-single-impl.yaml < %s | FileCheck --check-prefixes=CHECK,SINGLE-IMPL %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-single-impl.yaml < %s | FileCheck --check-prefixes=CHECK,SINGLE-IMPL %s
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-uniform-ret-val.yaml < %s | FileCheck --check-prefixes=CHECK,INDIR,UNIFORM-RET-VAL %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-uniform-ret-val.yaml < %s | FileCheck --check-prefixes=CHECK,INDIR,UNIFORM-RET-VAL %s
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-unique-ret-val0.yaml < %s | FileCheck --check-prefixes=CHECK,INDIR,UNIQUE-RET-VAL0 %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-unique-ret-val0.yaml < %s | FileCheck --check-prefixes=CHECK,INDIR,UNIQUE-RET-VAL0 %s
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-unique-ret-val1.yaml < %s | FileCheck --check-prefixes=CHECK,INDIR,UNIQUE-RET-VAL1 %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-unique-ret-val1.yaml < %s | FileCheck --check-prefixes=CHECK,INDIR,UNIQUE-RET-VAL1 %s
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-vcp.yaml < %s | FileCheck --check-prefixes=CHECK,VCP,VCP-X86,VCP64,INDIR %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-vcp.yaml < %s | FileCheck --check-prefixes=CHECK,VCP,VCP-X86,VCP64,INDIR %s
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-vcp.yaml -mtriple=i686-unknown-linux -data-layout=e-p:32:32 < %s | FileCheck --check-prefixes=CHECK,VCP,VCP-X86,VCP32 %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-vcp.yaml -mtriple=i686-unknown-linux -data-layout=e-p:32:32 < %s | FileCheck --check-prefixes=CHECK,VCP,VCP-X86,VCP32 %s
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-vcp.yaml -mtriple=armv7-unknown-linux -data-layout=e-p:32:32 < %s | FileCheck --check-prefixes=CHECK,VCP,VCP-ARM %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-vcp.yaml -mtriple=armv7-unknown-linux -data-layout=e-p:32:32 < %s | FileCheck --check-prefixes=CHECK,VCP,VCP-ARM %s
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-vcp-branch-funnel.yaml < %s | FileCheck --check-prefixes=CHECK,VCP,VCP-X86,VCP64,BRANCH-FUNNEL %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-vcp-branch-funnel.yaml < %s | FileCheck --check-prefixes=CHECK,VCP,VCP-X86,VCP64,BRANCH-FUNNEL %s
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-branch-funnel.yaml < %s | FileCheck --check-prefixes=CHECK,BRANCH-FUNNEL,BRANCH-FUNNEL-NOVCP %s ; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import -wholeprogramdevirt-read-summary=%S/Inputs/import-branch-funnel.yaml < %s | FileCheck --check-prefixes=CHECK,BRANCH-FUNNEL,BRANCH-FUNNEL-NOVCP %s
target datalayout = "e-p:64:64" target datalayout = "e-p:64:64"
target triple = "x86_64-unknown-linux-gnu" target triple = "x86_64-unknown-linux-gnu"
; VCP-X86: @__typeid_typeid1_0_1_byte = external hidden global i8, !absolute_symbol !0 ; VCP-X86: @__typeid_typeid1_0_1_byte = external hidden global [0 x i8], !absolute_symbol !0
; VCP-X86: @__typeid_typeid1_0_1_bit = external hidden global i8, !absolute_symbol !1 ; VCP-X86: @__typeid_typeid1_0_1_bit = external hidden global [0 x i8], !absolute_symbol !1
; VCP-X86: @__typeid_typeid2_8_3_byte = external hidden global i8, !absolute_symbol !0 ; VCP-X86: @__typeid_typeid2_8_3_byte = external hidden global [0 x i8], !absolute_symbol !0
; VCP-X86: @__typeid_typeid2_8_3_bit = external hidden global i8, !absolute_symbol !1 ; VCP-X86: @__typeid_typeid2_8_3_bit = external hidden global [0 x i8], !absolute_symbol !1
; Test cases where the argument values are known and we can apply virtual ; Test cases where the argument values are known and we can apply virtual
; constant propagation. ; constant propagation.
; CHECK: define i32 @call1 ; CHECK: define i32 @call1
define i32 @call1(i8* %obj) #0 { define i32 @call1(i8* %obj) #0 {
%vtableptr = bitcast i8* %obj to [3 x i8*]** %vtableptr = bitcast i8* %obj to [3 x i8*]**
%vtable = load [3 x i8*]*, [3 x i8*]** %vtableptr %vtable = load [3 x i8*]*, [3 x i8*]** %vtableptr
%vtablei8 = bitcast [3 x i8*]* %vtable to i8* %vtablei8 = bitcast [3 x i8*]* %vtable to i8*
%p = call i1 @llvm.type.test(i8* %vtablei8, metadata !"typeid1") %p = call i1 @llvm.type.test(i8* %vtablei8, metadata !"typeid1")
call void @llvm.assume(i1 %p) call void @llvm.assume(i1 %p)
%fptrptr = getelementptr [3 x i8*], [3 x i8*]* %vtable, i32 0, i32 0 %fptrptr = getelementptr [3 x i8*], [3 x i8*]* %vtable, i32 0, i32 0
%fptr = load i8*, i8** %fptrptr %fptr = load i8*, i8** %fptrptr
%fptr_casted = bitcast i8* %fptr to i32 (i8*, i32)* %fptr_casted = bitcast i8* %fptr to i32 (i8*, i32)*
; CHECK: {{.*}} = bitcast {{.*}} to i8* ; CHECK: {{.*}} = bitcast {{.*}} to i8*
; VCP: [[VT1:%.*]] = bitcast {{.*}} to i8* ; VCP: [[VT1:%.*]] = bitcast {{.*}} to i8*
; SINGLE-IMPL: call i32 bitcast (void ()* @singleimpl1 to i32 (i8*, i32)*) ; SINGLE-IMPL: call i32 bitcast (void ()* @singleimpl1 to i32 (i8*, i32)*)
%result = call i32 %fptr_casted(i8* %obj, i32 1) %result = call i32 %fptr_casted(i8* %obj, i32 1)
; UNIFORM-RET-VAL: ret i32 42 ; UNIFORM-RET-VAL: ret i32 42
; VCP-X86: [[GEP1:%.*]] = getelementptr i8, i8* [[VT1]], i32 ptrtoint (i8* @__typeid_typeid1_0_1_byte to i32) ; VCP-X86: [[GEP1:%.*]] = getelementptr i8, i8* [[VT1]], i32 ptrtoint ([0 x i8]* @__typeid_typeid1_0_1_byte to i32)
; VCP-ARM: [[GEP1:%.*]] = getelementptr i8, i8* [[VT1]], i32 42 ; VCP-ARM: [[GEP1:%.*]] = getelementptr i8, i8* [[VT1]], i32 42
; VCP: [[BC1:%.*]] = bitcast i8* [[GEP1]] to i32* ; VCP: [[BC1:%.*]] = bitcast i8* [[GEP1]] to i32*
; VCP: [[LOAD1:%.*]] = load i32, i32* [[BC1]] ; VCP: [[LOAD1:%.*]] = load i32, i32* [[BC1]]
; VCP: ret i32 [[LOAD1]] ; VCP: ret i32 [[LOAD1]]
; BRANCH-FUNNEL-NOVCP: [[VT1:%.*]] = bitcast {{.*}} to i8* ; BRANCH-FUNNEL-NOVCP: [[VT1:%.*]] = bitcast {{.*}} to i8*
; BRANCH-FUNNEL-NOVCP: call i32 bitcast (void ()* @__typeid_typeid1_0_branch_funnel to i32 (i8*, i8*, i32)*)(i8* nest [[VT1]], i8* %obj, i32 1) ; BRANCH-FUNNEL-NOVCP: call i32 bitcast (void ()* @__typeid_typeid1_0_branch_funnel to i32 (i8*, i8*, i32)*)(i8* nest [[VT1]], i8* %obj, i32 1)
ret i32 %result ret i32 %result
} }
Show All 34 Linesdefine i1 @call3(i8* %obj) #0 {
%pair = call {i8*, i1} @llvm.type.checked.load(i8* %vtablei8, i32 8, metadata !"typeid2") %pair = call {i8*, i1} @llvm.type.checked.load(i8* %vtablei8, i32 8, metadata !"typeid2")
%fptr = extractvalue {i8*, i1} %pair, 0 %fptr = extractvalue {i8*, i1} %pair, 0
%p = extractvalue {i8*, i1} %pair, 1 %p = extractvalue {i8*, i1} %pair, 1
br i1 %p, label %cont, label %trap br i1 %p, label %cont, label %trap
cont: cont:
%fptr_casted = bitcast i8* %fptr to i1 (i8*, i32)* %fptr_casted = bitcast i8* %fptr to i1 (i8*, i32)*
%result = call i1 %fptr_casted(i8* %obj, i32 3) %result = call i1 %fptr_casted(i8* %obj, i32 3)
; UNIQUE-RET-VAL0: icmp ne i8* %vtablei8, @__typeid_typeid2_8_3_unique_member ; UNIQUE-RET-VAL0: icmp ne i8* %vtablei8, getelementptr inbounds ([0 x i8], [0 x i8]* @__typeid_typeid2_8_3_unique_member, i32 0, i32 0)
; UNIQUE-RET-VAL1: icmp eq i8* %vtablei8, @__typeid_typeid2_8_3_unique_member ; UNIQUE-RET-VAL1: icmp eq i8* %vtablei8, getelementptr inbounds ([0 x i8], [0 x i8]* @__typeid_typeid2_8_3_unique_member, i32 0, i32 0)
; VCP: [[VT2:%.*]] = bitcast {{.*}} to i8* ; VCP: [[VT2:%.*]] = bitcast {{.*}} to i8*
; VCP-X86: [[GEP2:%.*]] = getelementptr i8, i8* [[VT2]], i32 ptrtoint (i8* @__typeid_typeid2_8_3_byte to i32) ; VCP-X86: [[GEP2:%.*]] = getelementptr i8, i8* [[VT2]], i32 ptrtoint ([0 x i8]* @__typeid_typeid2_8_3_byte to i32)
; VCP-ARM: [[GEP2:%.*]] = getelementptr i8, i8* [[VT2]], i32 43 ; VCP-ARM: [[GEP2:%.*]] = getelementptr i8, i8* [[VT2]], i32 43
; VCP: [[LOAD2:%.*]] = load i8, i8* [[GEP2]] ; VCP: [[LOAD2:%.*]] = load i8, i8* [[GEP2]]
; VCP-X86: [[AND2:%.*]] = and i8 [[LOAD2]], ptrtoint (i8* @__typeid_typeid2_8_3_bit to i8) ; VCP-X86: [[AND2:%.*]] = and i8 [[LOAD2]], ptrtoint ([0 x i8]* @__typeid_typeid2_8_3_bit to i8)
; VCP-ARM: [[AND2:%.*]] = and i8 [[LOAD2]], -128 ; VCP-ARM: [[AND2:%.*]] = and i8 [[LOAD2]], -128
; VCP: [[ICMP2:%.*]] = icmp ne i8 [[AND2]], 0 ; VCP: [[ICMP2:%.*]] = icmp ne i8 [[AND2]], 0
; VCP: ret i1 [[ICMP2]] ; VCP: ret i1 [[ICMP2]]
; BRANCH-FUNNEL-NOVCP: [[VT2:%.*]] = bitcast {{.*}} to i8* ; BRANCH-FUNNEL-NOVCP: [[VT2:%.*]] = bitcast {{.*}} to i8*
; BRANCH-FUNNEL-NOVCP: call i1 bitcast (void ()* @__typeid_typeid2_8_branch_funnel to i1 (i8*, i8*, i32)*)(i8* nest [[VT2]], i8* %obj, i32 3) ; BRANCH-FUNNEL-NOVCP: call i1 bitcast (void ()* @__typeid_typeid2_8_branch_funnel to i1 (i8*, i8*, i32)*)(i8* nest [[VT2]], i8* %obj, i32 3)
ret i1 %result ret i1 %result
trap: trap:
Show All 19 Lines

llvm/test/Transforms/WholeProgramDevirt/unique-retval-same-vtable.ll

  • This file was added.
; Test for PR45393: Two virtual functions that return unique i1 values
; in the same vtable. Both calls are optimized to a comparison of
; this's vptr against the address of the vtable. When nesting these
; checks, LLVM would previously assume the nested check always fails,
; but that assumption does not hold if both checks refer to the same vtable.
; This tests checks that this case is handled correctly.
;
; RUN: opt -S -wholeprogramdevirt -wholeprogramdevirt-summary-action=import \
; RUN: -wholeprogramdevirt-read-summary=%p/Inputs/unique-retval-same-vtable.yaml \
; RUN: -O2 -o - %s | FileCheck %s
;
; Check that C::f() contains both possible return values.
; CHECK-LABEL: define {{.*}} @_ZNK1C1fEv
; CHECK-NOT: }
; CHECK: 20074028
; CHECK-NOT: }
; CHECK: 1008434
target datalayout = "e-m:e-p270:32:32-p271:32:32-p272:64:64-i64:64-f80:128-n8:16:32:64-S128"
target triple = "x86_64-unknown-linux-gnu"
%class.C = type { i32 (...)** }
define hidden i32 @_ZNK1C1fEv(%class.C* %this) {
entry:
%0 = bitcast %class.C* %this to i1 (%class.C*)***
%vtable = load i1 (%class.C*)**, i1 (%class.C*)*** %0
%1 = bitcast i1 (%class.C*)** %vtable to i8*
%2 = tail call i1 @llvm.type.test(i8* %1, metadata !"_ZTS1C")
tail call void @llvm.assume(i1 %2)
%vfn = getelementptr inbounds i1 (%class.C*)*, i1 (%class.C*)** %vtable, i64 2
%3 = load i1 (%class.C*)*, i1 (%class.C*)** %vfn
%call = tail call zeroext i1 %3(%class.C* %this)
br i1 %call, label %if.then, label %return
if.then:
%vtable2 = load i1 (%class.C*)**, i1 (%class.C*)*** %0
%4 = bitcast i1 (%class.C*)** %vtable2 to i8*
%5 = tail call i1 @llvm.type.test(i8* %4, metadata !"_ZTS1C")
tail call void @llvm.assume(i1 %5)
%vfn3 = getelementptr inbounds i1 (%class.C*)*, i1 (%class.C*)** %vtable2, i64 3
%6 = load i1 (%class.C*)*, i1 (%class.C*)** %vfn3
; The method being called here and the method being called before
; the branch above both return true in the same vtable and only that
; vtable. Therefore, if this call is reached, we must select
; 20074028. Earlier versions of LLVM mistakenly concluded that
; this code *never* selects 200744028.
%call4 = tail call zeroext i1 %6(%class.C* nonnull %this)
%. = select i1 %call4, i32 20074028, i32 3007762
br label %return
return:
%retval.0 = phi i32 [ %., %if.then ], [ 1008434, %entry ]
ret i32 %retval.0
}
declare i1 @llvm.type.test(i8*, metadata)
declare void @llvm.assume(i1)

llvm/test/Transforms/WholeProgramDevirt/unique-retval.ll

Show All 14 Lines
define i1 @vf1(i8* %this) readnone { define i1 @vf1(i8* %this) readnone {
ret i1 1 ret i1 1
} }
; CHECK: define i1 @call1 ; CHECK: define i1 @call1
define i1 @call1(i8* %obj) { define i1 @call1(i8* %obj) {
%vtableptr = bitcast i8* %obj to [1 x i8*]** %vtableptr = bitcast i8* %obj to [1 x i8*]**
%vtable = load [1 x i8*]*, [1 x i8*]** %vtableptr %vtable = load [1 x i8*]*, [1 x i8*]** %vtableptr
; CHECK: {{.*}} = bitcast [1 x i8*]* {{.*}} to i8*
; CHECK: [[VT1:%[^ ]*]] = bitcast [1 x i8*]* {{.*}} to i8*
%vtablei8 = bitcast [1 x i8*]* %vtable to i8* %vtablei8 = bitcast [1 x i8*]* %vtable to i8*
%p = call i1 @llvm.type.test(i8* %vtablei8, metadata !"typeid1") %p = call i1 @llvm.type.test(i8* %vtablei8, metadata !"typeid1")
call void @llvm.assume(i1 %p) call void @llvm.assume(i1 %p)
%fptrptr = getelementptr [1 x i8*], [1 x i8*]* %vtable, i32 0, i32 0 %fptrptr = getelementptr [1 x i8*], [1 x i8*]* %vtable, i32 0, i32 0
%fptr = load i8*, i8** %fptrptr %fptr = load i8*, i8** %fptrptr
%fptr_casted = bitcast i8* %fptr to i1 (i8*)* %fptr_casted = bitcast i8* %fptr to i1 (i8*)*
; CHECK: [[RES1:%[^ ]*]] = icmp eq i8* [[VT1]], bitcast ([1 x i8*]* @vt3 to i8*) ; CHECK: [[RES1:%[^ ]*]] = icmp eq [1 x i8*]* %vtable, @vt3
%result = call i1 %fptr_casted(i8* %obj) %result = call i1 %fptr_casted(i8* %obj)
; CHECK: ret i1 [[RES1]] ; CHECK: ret i1 [[RES1]]
ret i1 %result ret i1 %result
} }
; CHECK: define i32 @call2 ; CHECK: define i32 @call2
define i32 @call2(i8* %obj) { define i32 @call2(i8* %obj) {
%vtableptr = bitcast i8* %obj to [1 x i8*]** %vtableptr = bitcast i8* %obj to [1 x i8*]**
%vtable = load [1 x i8*]*, [1 x i8*]** %vtableptr %vtable = load [1 x i8*]*, [1 x i8*]** %vtableptr
; CHECK: [[VT2:%[^ ]*]] = bitcast [1 x i8*]* {{.*}} to i8*
%vtablei8 = bitcast [1 x i8*]* %vtable to i8* %vtablei8 = bitcast [1 x i8*]* %vtable to i8*
%p = call i1 @llvm.type.test(i8* %vtablei8, metadata !"typeid2") %p = call i1 @llvm.type.test(i8* %vtablei8, metadata !"typeid2")
call void @llvm.assume(i1 %p) call void @llvm.assume(i1 %p)
%fptrptr = getelementptr [1 x i8*], [1 x i8*]* %vtable, i32 0, i32 0 %fptrptr = getelementptr [1 x i8*], [1 x i8*]* %vtable, i32 0, i32 0
%fptr = load i8*, i8** %fptrptr %fptr = load i8*, i8** %fptrptr
; Intentional type mismatch to test zero extend. ; Intentional type mismatch to test zero extend.
%fptr_casted = bitcast i8* %fptr to i32 (i8*)* %fptr_casted = bitcast i8* %fptr to i32 (i8*)*
; CHECK: [[RES2:%[^ ]*]] = icmp ne i8* [[VT1]], bitcast ([1 x i8*]* @vt2 to i8*) ; CHECK: [[RES2:%[^ ]*]] = icmp ne [1 x i8*]* %vtable, @vt2
%result = call i32 %fptr_casted(i8* %obj) %result = call i32 %fptr_casted(i8* %obj)
; CHECK: [[ZEXT2:%[^ ]*]] = zext i1 [[RES2]] to i32 ; CHECK: [[ZEXT2:%[^ ]*]] = zext i1 [[RES2]] to i32
; CHECK: ret i32 [[ZEXT2:%[^ ]*]] ; CHECK: ret i32 [[ZEXT2:%[^ ]*]]
ret i32 %result ret i32 %result
} }
declare i1 @llvm.type.test(i8*, metadata) declare i1 @llvm.type.test(i8*, metadata)
declare void @llvm.assume(i1) declare void @llvm.assume(i1)
!0 = !{i32 0, !"typeid1"} !0 = !{i32 0, !"typeid1"}
!1 = !{i32 0, !"typeid2"} !1 = !{i32 0, !"typeid2"}