This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
llvm/
-
lib/Transforms/Utils/
-
Transforms/
-
Utils/
4/7
SimplifyLibCalls.cpp
-
test/Transforms/InstCombine/
-
Transforms/
-
InstCombine/
-
bcopy-chk.ll

Differential D91677

Avoid simplification of library functions when callee has an implementation
Needs ReviewPublic

Authored by siddhesh on Nov 17 2020, 8:12 PM.

Download Raw Diff

Details

Reviewers

serge-sans-paille
gchatelet
efriedma
lebedev.ri

Summary

During simplification, a library function with an implementation body would mean that it is not a standard library call and hence simplification should be avoided.

This fixes code generation for bcopy when built with -D_FORTIFY_SOURCE since the simplification would otherwise transform the bcopy calls to memmove and not builtin_memmove_chk as is expected with source fortification.

Diff Detail

Event Timeline

siddhesh created this revision.Nov 17 2020, 8:12 PM

Herald added subscribers: llvm-commits, hiraditya. · View Herald TranscriptNov 17 2020, 8:12 PM

siddhesh requested review of this revision.Nov 17 2020, 8:12 PM

Sorry, I think I ran only check-llvm. I'll look at the test breakage.

Harbormaster completed remote builds in B79218: Diff 305960.Nov 17 2020, 9:00 PM

The problem you're trying to solve doesn't seem specific to bcopy: any function with an inline definition should probably *not* be replaced, and the inlined definition should be favored. This was the spirit of that patch https://reviews.llvm.org/D71082. i wonder why your test case doesn't fall into that configuration.

In D91677#2401770, @serge-sans-paille wrote:

The problem you're trying to solve doesn't seem specific to bcopy: any function with an inline definition should probably *not* be replaced, and the inlined definition should be favored. This was the spirit of that patch https://reviews.llvm.org/D71082. i wonder why your test case doesn't fall into that configuration.

Maybe because that D71082 is limited to clang? The bcopy survives clang but llvm forces it into a memmove without this patch. Would you like to see this change be more generic, i.e. for any libcall, if the callee has a function body that has a call instruction in its first BB, avoid optimizing it?

! In D91677#2401785, @siddhesh wrote:
Maybe because that D71082 is limited to clang? The bcopy survives clang but llvm forces it into a memmove without this patch.

ok, got it. bcopy is somehow special here, because it doesn't have an associated llvm builtin like memcpy has.

Would you like to see this change be more generic, i.e. for any libcall, if the callee has a function body that has a call instruction in its first BB, avoid optimizing it?

I'd go even further: if the callee has a function body and is known has a library function, then don't optimize it because there's a provided implementation. I don't think the requirement of a call instruction in the body should be mandatory: the fortified version could provide, say, an inlined implementation ? Or maybe some setup code before calling the _chk version?

Made the change more generic, avoiding simplification if the callee has an implementation, i.e. its body is not empty.

lebedev.ri requested changes to this revision.Nov 18 2020, 9:07 AM

lebedev.ri added a subscriber: lebedev.ri.

lebedev.ri added inline comments.

llvm/lib/Transforms/Utils/SimplifyLibCalls.cpp
3023–3027	Isn't the problem that you need to mark your `@bcopy` with `nobuiltin` attribute?
3076–3079	And if it happens to be in another TU?

This revision now requires changes to proceed.Nov 18 2020, 9:07 AM

siddhesh added inline comments.Nov 18 2020, 9:21 AM

llvm/lib/Transforms/Utils/SimplifyLibCalls.cpp
3023–3027	`nobuiltin` is clang-specific and to make this effective, all inline versions of bcopy would have to be marked `nobuiltin`. There's no precedence for that in glibc, I'm not sure about other libraries.
3076–3079	It does the simplification; it is not relevant for fortify-source since those implementations are always inline.

And by mark them, you could also use -fno-builtin=???, see D68028.

In D91677#2403232, @lebedev.ri wrote:

And by mark them, you could also use -fno-builtin=???, see D68028.

That would imply having to always add -fno-builtin along with -D_FORTIFY_SOURCE, which seems even worse than adding __attribute__((no_builtin)) to fortified bcopy implementations in libc since it would have to be done for all sources when building with llvm just so that it does not optimize away fortifications.

Could you elaborate on why you would like to keep the option to simplify calls to library functions with implementations by default and not the other way around as this patch proposes?

xbolva00 added a reviewer: efriedma.Nov 18 2020, 10:09 AM

Interestingly, gcc and clang have different behavior here: https://godbolt.org/z/hdadhY
And clang already honors the user-defined bcopy why is -D_FORTIFY_SOURCE different from the example here?

llvm/lib/Transforms/Utils/SimplifyLibCalls.cpp
3076–3079	Would it make sense to check that the function is marked inline? Redefining a libc function locally is probably not a good thing?

In D91677#2405137, @serge-sans-paille wrote:

Interestingly, gcc and clang have different behavior here: https://godbolt.org/z/hdadhY

Hmm, looks like I opened a pandora's box box with this one; the behaviour seems to be very different for different ways in which one implements bcopy and some of them seem incorrect for both compilers.

Without <string.h> for example, both compilers converge and ignore the locally defined bcopy and replace the call with a memmove. This seems incorrect but I'll take a closer look. It shouldn't impact this patch though since the bcopy signature is different. I can restrict the change to non-empty *and* inline if it makes sense.

And clang already honors the user-defined bcopy why is -D_FORTIFY_SOURCE different from the example here?

I suspect clang is doing something weird there because it doesn't actually inline the bcopy; it simply removes the call; see: https://godbolt.org/z/PEssMe . I think this will be avoided altogether if bcopy simplification is avoided whenever a local definition is available. Even if the local definition is preemptable, it is always going to be selected first and the compiler should not assume that it will behave the same as the library bcopy.

That said, the _FORTIFY_SOURCE definition is not just an inline hint, it is: extern inline __attribute__((always_inline)) __attribute__((__gnu_inline__)). This should ensure that bcopy is inlined, except that clang doesn't actually inline it and replaces it with a memmove instead. This one shows more clearly how the behaviour is different between gcc and llvm for fortify-source: https://godbolt.org/z/3baWfY

llvm/lib/Transforms/Utils/SimplifyLibCalls.cpp
3076–3079	Strictly speaking, I think the local function should always get precedence but if for this patch we want to limit scope, we could limit this to non-empty, inline functions. Redefining a libc function locally is not uncommon; in fact it is a common way to build an interposition library and take advantage of symbol resolution precedence.

siddhesh added inline comments.Nov 19 2020, 5:54 AM

llvm/lib/Transforms/Utils/SimplifyLibCalls.cpp
3076–3079	Redefining a libc function locally is not uncommon; in fact it is a common way to build an interposition library and take advantage of symbol resolution precedence. I misspoke here; there is a subtle difference between the idea of the interposition library and interposition/overriding of functions. I meant to specifically refer to overriding of functions here, i.e. making sure that the current TU uses the local version of the function and not the global one. It is not prohibited or even discouraged.

gchatelet added a subscriber: courbet.Nov 19 2020, 7:46 AM

This review seems to be stuck/dead, consider abandoning if no longer relevant.

This revision now requires review to proceed.Jan 12 2023, 4:46 PM

Herald added a project: Restricted Project. · View Herald TranscriptJan 12 2023, 4:46 PM

Herald added a subscriber: StephenFan. · View Herald Transcript

Revision Contents

Path

Size

llvm/

lib/

Transforms/

Utils/

SimplifyLibCalls.cpp

5 lines

test/

Transforms/

InstCombine/

bcopy-chk.ll

27 lines

Diff 306133

llvm/lib/Transforms/Utils/SimplifyLibCalls.cpp

Show First 20 Lines • Show All 3,014 Lines • ▼ Show 20 Lines	Value LibCallSimplifier::optimizeFloatingPointLibCall(CallInst CI,
case LibFunc_cabsl:		case LibFunc_cabsl:
return optimizeCAbs(CI, Builder);		return optimizeCAbs(CI, Builder);
default:		default:
return nullptr;		return nullptr;
}		}
}		}

Value LibCallSimplifier::optimizeCall(CallInst CI, IRBuilderBase &Builder) {		Value LibCallSimplifier::optimizeCall(CallInst CI, IRBuilderBase &Builder) {
// TODO: Split out the code below that operates on FP calls so that		// TODO: Split out the code below that operates on FP calls so that
// we can all non-FP calls with the StrictFP attribute to be		// we can all non-FP calls with the StrictFP attribute to be
// optimized.		// optimized.
if (CI->isNoBuiltin())		if (CI->isNoBuiltin())
return nullptr;		return nullptr;
		lebedev.riUnsubmitted Not Done Reply Inline Actions Isn't the problem that you need to mark your `@bcopy` with `nobuiltin` attribute? lebedev.ri: Isn't the problem that you need to mark your `@bcopy` with `nobuiltin` attribute?
		siddheshAuthorUnsubmitted Done Reply Inline Actions `nobuiltin` is clang-specific and to make this effective, all inline versions of bcopy would have to be marked `nobuiltin`. There's no precedence for that in glibc, I'm not sure about other libraries. siddhesh: `nobuiltin` is clang-specific and to make this effective, all inline versions of bcopy would…

LibFunc Func;		LibFunc Func;
Function *Callee = CI->getCalledFunction();		Function *Callee = CI->getCalledFunction();
bool isCallingConvC = isCallingConvCCompatible(CI);		bool isCallingConvC = isCallingConvCCompatible(CI);

SmallVector<OperandBundleDef, 2> OpBundles;		SmallVector<OperandBundleDef, 2> OpBundles;
CI->getOperandBundlesAsDefs(OpBundles);		CI->getOperandBundlesAsDefs(OpBundles);

Show All 32 Lines	case Intrinsic::memcpy:
return optimizeMemCpy(CI, Builder);		return optimizeMemCpy(CI, Builder);
case Intrinsic::memmove:		case Intrinsic::memmove:
return optimizeMemMove(CI, Builder);		return optimizeMemMove(CI, Builder);
default:		default:
return nullptr;		return nullptr;
}		}
}		}

		// Simplification is for external library calls, so bail out if the callee
		// has an implementation.
		if (!Callee->empty())
		return nullptr;
		lebedev.riUnsubmitted Not Done Reply Inline Actions And if it happens to be in another TU? lebedev.ri: And if it happens to be in another TU?
		siddheshAuthorUnsubmitted Done Reply Inline Actions It does the simplification; it is not relevant for fortify-source since those implementations are always inline. siddhesh: It does the simplification; it is not relevant for fortify-source since those implementations…
		serge-sans-pailleUnsubmitted Not Done Reply Inline Actions Would it make sense to check that the function is marked inline? Redefining a libc function locally is probably not a good thing? serge-sans-paille: Would it make sense to check that the function is marked inline? Redefining a libc function…
		siddheshAuthorUnsubmitted Done Reply Inline Actions Strictly speaking, I think the local function should always get precedence but if for this patch we want to limit scope, we could limit this to non-empty, inline functions. Redefining a libc function locally is not uncommon; in fact it is a common way to build an interposition library and take advantage of symbol resolution precedence. siddhesh: Strictly speaking, I think the local function should always get precedence but if for this…
		siddheshAuthorUnsubmitted Done Reply Inline Actions Redefining a libc function locally is not uncommon; in fact it is a common way to build an interposition library and take advantage of symbol resolution precedence. I misspoke here; there is a subtle difference between the idea of the interposition library and interposition/overriding of functions. I meant to specifically refer to overriding of functions here, i.e. making sure that the current TU uses the local version of the function and not the global one. It is not prohibited or even discouraged. siddhesh: > Redefining a libc function locally is not uncommon; in fact it is a common way to build an…

// Also try to simplify calls to fortified library functions.		// Also try to simplify calls to fortified library functions.
if (Value *SimplifiedFortifiedCI =		if (Value *SimplifiedFortifiedCI =
FortifiedSimplifier.optimizeCall(CI, Builder)) {		FortifiedSimplifier.optimizeCall(CI, Builder)) {
// Try to further simplify the result.		// Try to further simplify the result.
CallInst *SimplifiedCI = dyn_cast<CallInst>(SimplifiedFortifiedCI);		CallInst *SimplifiedCI = dyn_cast<CallInst>(SimplifiedFortifiedCI);
if (SimplifiedCI && SimplifiedCI->getCalledFunction()) {		if (SimplifiedCI && SimplifiedCI->getCalledFunction()) {
// Ensure that SimplifiedCI's uses are complete, since some calls have		// Ensure that SimplifiedCI's uses are complete, since some calls have
// their uses analyzed.		// their uses analyzed.
▲ Show 20 Lines • Show All 454 Lines • Show Last 20 Lines

llvm/test/Transforms/InstCombine/bcopy-chk.ll

This file was added.

				; NOTE: Assertions have been autogenerated by utils/update_test_checks.py
				; RUN: opt < %s -O1 -S \| FileCheck %s

				declare i8* @__memmove_chk(i8, i8, i64, i64)
				declare i64 @llvm.objectsize.i64.p0i8(i8*, i1, i1, i1)

				define available_externally dso_local void @bcopy(i8* nocapture readonly %src, i8* nocapture %dst, i64 %len) #0 {
				%size = call i64 @llvm.objectsize.i64.p0i8(i8* %dst, i1 false, i1 true, i1 false)
				call i8* @__memmove_chk(i8* %dst, i8* %src, i64 %len, i64 %size)
				ret void
				}

				@buf = dso_local global [4 x i8] zeroinitializer, align 1

				define dso_local void @fortified_bcopy(i64 %argc) {
				; CHECK-LABEL: @fortified_bcopy(
				; CHECK-NEXT: [[ADD:%.]] = add i64 [[ARGC:%.]], 1
				; CHECK-NEXT: [[TMP1:%.]] = call i8 @__memmove_chk(i8* getelementptr inbounds ([4 x i8], [4 x i8]* @buf, i64 0, i64 2), i8* getelementptr inbounds ([4 x i8], [4 x i8]* @buf, i64 0, i64 1), i64 [[ADD]], i64 2)
				; CHECK-NEXT: ret void
				;
				%add = add i64 %argc, 1
				tail call void @bcopy(i8* getelementptr inbounds ([4 x i8], [4 x i8]* @buf, i64 0, i64 1), i8* getelementptr inbounds ([4 x i8], [4 x i8]* @buf, i64 0, i64 2), i64 %add) #1
				ret void
				}

				attributes #0 = { alwaysinline }
				attributes #1 = { builtin }