This is an archive of the discontinued LLVM Phabricator instance.

Differential D97310

[dfsan] Conservative solution to atomic load/store
ClosedPublic

Authored by stephan.yichao.zhao on Feb 23 2021, 11:31 AM.

Details

Reviewers
morehouse
Commits
rGc88fedef2a5d: [dfsan] Conservative solution to atomic load/store
Summary

DFSan at store does store shadow data; store app data; and at load does
load shadow data; load app data.

When an application data is atomic, one overtainting case is

thread A: load shadow
thread B: store shadow
thread B: store app
thread A: load app

If the application address had been used by other flows, thread A reads
previous shadow, causing overtainting.

The change is similar to MSan's solution.

  1. enforce ordering of app load/store
  2. load shadow after load app; store shadow before shadow app
  3. do not track atomic store by reseting its shadow to be 0.

The last one is to address a case like this.

Thread A: load app
Thread B: store shadow
Thread A: load shadow
Thread B: store app

This approach eliminates overtainting as a trade-off between undertainting
flows via shadow data race.

Note that this change addresses only native atomic instructions, but
does not support builtin atomic libcalls yet.

Diff Detail

Unit TestsFailed

TimeTest
100 msx64 debian > LLVM.Instrumentation/DataFlowSanitizer::atomics.ll
130 msx64 windows > LLVM.Instrumentation/DataFlowSanitizer::atomics.ll

Event Timeline

stephan.yichao.zhao created this revision.Feb 23 2021, 11:31 AM
Herald added subscribers: jfb, hiraditya. · View Herald TranscriptFeb 23 2021, 11:31 AM
stephan.yichao.zhao requested review of this revision.Feb 23 2021, 11:31 AM
Herald added projects: Restricted Project, Restricted Project. · View Herald TranscriptFeb 23 2021, 11:31 AM
Herald added subscribers: llvm-commits, Restricted Project. · View Herald Transcript
stephan.yichao.zhao edited the summary of this revision. (Show Details)Feb 23 2021, 11:35 AM
stephan.yichao.zhao added a subscriber: gbalats.Feb 23 2021, 11:45 AM
Harbormaster completed remote builds in B90439: Diff 325846.Feb 23 2021, 12:12 PM
stephan.yichao.zhao updated this revision to Diff 325894.Feb 23 2021, 1:51 PM
stephan.yichao.zhao edited the summary of this revision. (Show Details)

fixed test failures

stephan.yichao.zhao updated this revision to Diff 325911.Feb 23 2021, 3:12 PM

use -fno-exceptions to avoid instrumenting some C++ exception
handling functions in the test.

Harbormaster completed remote builds in B90479: Diff 325894.Feb 23 2021, 4:55 PM
stephan.yichao.zhao updated this revision to Diff 325939.Feb 23 2021, 5:01 PM

Removed testing about origin-tracking from atomics.ll.
It cannot be tested until the origin tracking is complete.

Harbormaster completed remote builds in B90490: Diff 325911.Feb 23 2021, 6:04 PM
Harbormaster completed remote builds in B90508: Diff 325939.Feb 23 2021, 8:11 PM
morehouse added a comment.Feb 24 2021, 12:03 PM

Please fix lints.

compiler-rt/test/dfsan/atomic.cpp
38

This test seems to miss the mark. All it checks is that atomic stores set shadow to 0, and all the thread stuff is unnecessary to check this.

But where multiple threads *would* be helpful is to write a test where overtainting would occur before this change, but not after.

40

Should we also test builtin atomics? https://gcc.gnu.org/onlinedocs/gcc/_005f_005fatomic-Builtins.html

llvm/lib/Transforms/Instrumentation/DataFlowSanitizer.cpp
2009

Any reason not to use the load app, load shadow ordering always?

2041

Should we call this function storeZeroPrimitiveShadow then?

2174

Please add comments to visitAtomicRMWInst and visitAtomicCmpXchgInst explaining why we modify the atomic orderings.

llvm/test/Instrumentation/DataFlowSanitizer/atomics.ll
55

I don't see %a's shadow being checked anywhere.

stephan.yichao.zhao updated this revision to Diff 326206.Feb 24 2021, 2:28 PM
stephan.yichao.zhao marked 5 inline comments as done.

update

stephan.yichao.zhao added a subscriber: evghenii.Feb 24 2021, 2:28 PM
stephan.yichao.zhao added inline comments.
compiler-rt/test/dfsan/atomic.cpp
38

Updated the test case. Set atomic_i with an initial label to ensure load can get only initial labels or zeros.

40

Yes.

DFSan needs some extension to work with Builtins. MSan uses a function pass TargetLibraryInfoWrapperPass to identify builtin calls, while DFSan is a module pass.
And DFSan's ABI does not work with builtins because builtins do not have C libcalls.

Our current internal use cases do not support Builtins. But we need to support them in the next step.

llvm/lib/Transforms/Instrumentation/DataFlowSanitizer.cpp
2009

This code could seem confusing. Actually it does not skip a line. It sets the code insertion point after app atomic load. None-atomic load still inserts instrumented code before them. Actually they can be the same but that would require updating a lot of tests...

2041

done. Thank you.

2174

This is a good point. Since we always use 0 shadows, what their orderings are does not matter.

@evghenii, this followed MSan. Do you think it is fine not to change their orderings?

llvm/test/Instrumentation/DataFlowSanitizer/atomics.ll
55

updated comments.

morehouse accepted this revision.Feb 24 2021, 3:15 PM
morehouse added inline comments.
compiler-rt/test/dfsan/atomic.cpp
40

Please add a TODO for this.

This revision is now accepted and ready to land.Feb 24 2021, 3:15 PM
stephan.yichao.zhao updated this revision to Diff 326217.Feb 24 2021, 3:21 PM
stephan.yichao.zhao marked an inline comment as done.

added TODO

Harbormaster completed remote builds in B90687: Diff 326206.Feb 24 2021, 4:58 PM
Harbormaster completed remote builds in B90694: Diff 326217.Feb 24 2021, 5:48 PM
stephan.yichao.zhao updated this revision to Diff 326515.Feb 25 2021, 2:40 PM

added comments to RMW and ChmpXchg.

stephan.yichao.zhao marked an inline comment as done.Feb 25 2021, 2:40 PM
This revision was landed with ongoing or failed builds.Feb 25 2021, 3:35 PM
Closed by commit rGc88fedef2a5d: [dfsan] Conservative solution to atomic load/store (authored by Jianzhou Zhao <jianzhouzh@google.com>). · Explain Why
This revision was automatically updated to reflect the committed changes.
Jianzhou Zhao <jianzhouzh@google.com> added a commit: rGc88fedef2a5d: [dfsan] Conservative solution to atomic load/store.
Harbormaster completed remote builds in B90907: Diff 326515.Feb 25 2021, 5:46 PM

Revision Contents

PathSize
compiler-rt/
test/
dfsan/
39 lines
llvm/
lib/
Transforms/
Instrumentation/
133 lines
test/
Instrumentation/
DataFlowSanitizer/
323 lines

Diff 325911

compiler-rt/test/dfsan/atomic.cpp

  • This file was added.
// RUN: %clangxx_dfsan %s -fno-exceptions -o %t && %run %t
// RUN: %clangxx_dfsan -mllvm -dfsan-track-origins=1 -mllvm -dfsan-fast-16-labels=true %s -fno-exceptions -o %t && %run %t
//
// Use -fno-exceptions to turn off exceptions to avoid instrumenting
// __cxa_begin_catch, std::terminate and __gxx_personality_v0.
#include <sanitizer/dfsan_interface.h>
#include <assert.h>
#include <atomic>
#include <pthread.h>
std::atomic<int> atomic_i{0};
static void *ThreadFn(void *arg) {
if ((size_t)arg % 2) {
int i = 10;
dfsan_set_label(8, (void *)&i, sizeof(i));
atomic_i.store(i, std::memory_order_relaxed);
return 0;
}
int j = atomic_i.load();
assert(dfsan_get_label(j) == 0);
return 0;
}
int main(void) {
const int kNumThreads = 24;
pthread_t t[kNumThreads];
for (int i = 0; i < kNumThreads; ++i) {
pthread_create(&t[i], 0, ThreadFn, (void *)i);
}
for (int i = 0; i < kNumThreads; ++i) {
pthread_join(t[i], 0);
}
return 0;
morehouseUnsubmitted
Done
ReplyInline Actions

This test seems to miss the mark. All it checks is that atomic stores set shadow to 0, and all the thread stuff is unnecessary to check this.

But where multiple threads *would* be helpful is to write a test where overtainting would occur before this change, but not after.

morehouse: This test seems to miss the mark. All it checks is that atomic stores set shadow to 0, and all…
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

Updated the test case. Set atomic_i with an initial label to ensure load can get only initial labels or zeros.

stephan.yichao.zhao: Updated the test case. Set atomic_i with an initial label to ensure load can get only initial…
}
morehouseUnsubmitted
Done
ReplyInline Actions

Should we also test builtin atomics? https://gcc.gnu.org/onlinedocs/gcc/_005f_005fatomic-Builtins.html

morehouse: Should we also test builtin atomics? https://gcc.gnu.org/onlinedocs/gcc/_005f_005fatomic…
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

Yes.

DFSan needs some extension to work with Builtins. MSan uses a function pass TargetLibraryInfoWrapperPass to identify builtin calls, while DFSan is a module pass.
And DFSan's ABI does not work with builtins because builtins do not have C libcalls.

Our current internal use cases do not support Builtins. But we need to support them in the next step.

stephan.yichao.zhao: Yes. DFSan needs some extension to work with Builtins. MSan uses a function pass…
morehouseUnsubmitted
Done
ReplyInline Actions

Please add a TODO for this.

morehouse: Please add a TODO for this.

llvm/lib/Transforms/Instrumentation/DataFlowSanitizer.cpp

Show First 20 LinesShow All 587 Lines▼ Show 20 Linesstruct DFSanFunction {
/// primitive shadow values in the process. Returns the final primitive /// primitive shadow values in the process. Returns the final primitive
/// shadow value. /// shadow value.
/// ///
/// CTP({V1,V2, ...}) = UNION(CFP(V1,PS),CFP(V2,PS),...) /// CTP({V1,V2, ...}) = UNION(CFP(V1,PS),CFP(V2,PS),...)
/// CTP([V1,V2,...]) = UNION(CFP(V1,PS),CFP(V2,PS),...) /// CTP([V1,V2,...]) = UNION(CFP(V1,PS),CFP(V2,PS),...)
/// CTP(other types, PS) = PS /// CTP(other types, PS) = PS
Value *collapseToPrimitiveShadow(Value *Shadow, Instruction *Pos); Value *collapseToPrimitiveShadow(Value *Shadow, Instruction *Pos);
void storeZeroPrimitiveShadowOrigin(Value *Addr, uint64_t Size,
Align ShadowAlign, Instruction *Pos);
Align getShadowAlign(Align InstAlignment);
private: private:
/// Collapses the shadow with aggregate type into a single primitive shadow /// Collapses the shadow with aggregate type into a single primitive shadow
/// value. /// value.
template <class AggregateType> template <class AggregateType>
Value *collapseAggregateShadow(AggregateType *AT, Value *Shadow, Value *collapseAggregateShadow(AggregateType *AT, Value *Shadow,
IRBuilder<> &IRB); IRBuilder<> &IRB);
Value *collapseToPrimitiveShadow(Value *Shadow, IRBuilder<> &IRB); Value *collapseToPrimitiveShadow(Value *Shadow, IRBuilder<> &IRB);
Show All 25 Linespublic:
void visitUnaryOperator(UnaryOperator &UO); void visitUnaryOperator(UnaryOperator &UO);
void visitBinaryOperator(BinaryOperator &BO); void visitBinaryOperator(BinaryOperator &BO);
void visitCastInst(CastInst &CI); void visitCastInst(CastInst &CI);
void visitCmpInst(CmpInst &CI); void visitCmpInst(CmpInst &CI);
void visitGetElementPtrInst(GetElementPtrInst &GEPI); void visitGetElementPtrInst(GetElementPtrInst &GEPI);
void visitLoadInst(LoadInst &LI); void visitLoadInst(LoadInst &LI);
void visitStoreInst(StoreInst &SI); void visitStoreInst(StoreInst &SI);
void visitAtomicRMWInst(AtomicRMWInst &I);
void visitAtomicCmpXchgInst(AtomicCmpXchgInst &I);
void visitReturnInst(ReturnInst &RI); void visitReturnInst(ReturnInst &RI);
void visitCallBase(CallBase &CB); void visitCallBase(CallBase &CB);
void visitPHINode(PHINode &PN); void visitPHINode(PHINode &PN);
void visitExtractElementInst(ExtractElementInst &I); void visitExtractElementInst(ExtractElementInst &I);
void visitInsertElementInst(InsertElementInst &I); void visitInsertElementInst(InsertElementInst &I);
void visitShuffleVectorInst(ShuffleVectorInst &I); void visitShuffleVectorInst(ShuffleVectorInst &I);
void visitExtractValueInst(ExtractValueInst &I); void visitExtractValueInst(ExtractValueInst &I);
void visitInsertValueInst(InsertValueInst &I); void visitInsertValueInst(InsertValueInst &I);
void visitAllocaInst(AllocaInst &I); void visitAllocaInst(AllocaInst &I);
void visitSelectInst(SelectInst &I); void visitSelectInst(SelectInst &I);
void visitMemSetInst(MemSetInst &I); void visitMemSetInst(MemSetInst &I);
void visitMemTransferInst(MemTransferInst &I); void visitMemTransferInst(MemTransferInst &I);
private: private:
void visitCASOrRMW(Align InstAlignment, Instruction &I);
// Returns false when this is an invoke of a custom function. // Returns false when this is an invoke of a custom function.
bool visitWrappedCallBase(Function &F, CallBase &CB); bool visitWrappedCallBase(Function &F, CallBase &CB);
// Combines origins for all of I's operands. // Combines origins for all of I's operands.
void visitInstOperandOrigins(Instruction &I); void visitInstOperandOrigins(Instruction &I);
}; };
} // end anonymous namespace } // end anonymous namespace
▲ Show 20 LinesShow All 1,137 Lines▼ Show 20 Lines
void DFSanVisitor::visitInstOperandOrigins(Instruction &I) { void DFSanVisitor::visitInstOperandOrigins(Instruction &I) {
if (!DFSF.DFS.shouldTrackOrigins()) if (!DFSF.DFS.shouldTrackOrigins())
return; return;
Value *CombinedOrigin = DFSF.combineOperandOrigins(&I); Value *CombinedOrigin = DFSF.combineOperandOrigins(&I);
DFSF.setOrigin(&I, CombinedOrigin); DFSF.setOrigin(&I, CombinedOrigin);
} }
Align DFSanFunction::getShadowAlign(Align InstAlignment) {
const Align Alignment = ClPreserveAlignment ? InstAlignment : Align(1);
return Align(Alignment.value() * DFS.ShadowWidthBytes);
}
Value *DFSanFunction::loadFast16ShadowFast(Value *ShadowAddr, uint64_t Size, Value *DFSanFunction::loadFast16ShadowFast(Value *ShadowAddr, uint64_t Size,
Align ShadowAlign, Align ShadowAlign,
Instruction *Pos) { Instruction *Pos) {
// First OR all the WideShadows, then OR individual shadows within the // First OR all the WideShadows, then OR individual shadows within the
// combined WideShadow. This is fewer instructions than ORing shadows // combined WideShadow. This is fewer instructions than ORing shadows
// individually. // individually.
IRBuilder<> IRB(Pos); IRBuilder<> IRB(Pos);
Value *WideAddr = Value *WideAddr =
▲ Show 20 LinesShow All 141 Lines▼ Show 20 LinesValue *DFSanFunction::loadShadow(Value *Addr, uint64_t Size, uint64_t Align,
FunctionCallee &UnionLoadFn = FunctionCallee &UnionLoadFn =
ClFast16Labels ? DFS.DFSanUnionLoadFast16LabelsFn : DFS.DFSanUnionLoadFn; ClFast16Labels ? DFS.DFSanUnionLoadFast16LabelsFn : DFS.DFSanUnionLoadFn;
CallInst *FallbackCall = IRB.CreateCall( CallInst *FallbackCall = IRB.CreateCall(
UnionLoadFn, {ShadowAddr, ConstantInt::get(DFS.IntptrTy, Size)}); UnionLoadFn, {ShadowAddr, ConstantInt::get(DFS.IntptrTy, Size)});
FallbackCall->addAttribute(AttributeList::ReturnIndex, Attribute::ZExt); FallbackCall->addAttribute(AttributeList::ReturnIndex, Attribute::ZExt);
return FallbackCall; return FallbackCall;
} }
static AtomicOrdering AddAcquireOrdering(AtomicOrdering AO) {
Lint: Pre-merge checks
Inline Actions

clang-tidy: warning: invalid case style for function 'AddAcquireOrdering' [readability-identifier-naming]
not useful

Lint: Pre-merge checks: clang-tidy: warning: invalid case style for function 'AddAcquireOrdering' [readability…
switch (AO) {
case AtomicOrdering::NotAtomic:
return AtomicOrdering::NotAtomic;
case AtomicOrdering::Unordered:
case AtomicOrdering::Monotonic:
case AtomicOrdering::Acquire:
return AtomicOrdering::Acquire;
case AtomicOrdering::Release:
case AtomicOrdering::AcquireRelease:
return AtomicOrdering::AcquireRelease;
case AtomicOrdering::SequentiallyConsistent:
return AtomicOrdering::SequentiallyConsistent;
}
llvm_unreachable("Unknown ordering");
}
void DFSanVisitor::visitLoadInst(LoadInst &LI) { void DFSanVisitor::visitLoadInst(LoadInst &LI) {
auto &DL = LI.getModule()->getDataLayout(); auto &DL = LI.getModule()->getDataLayout();
uint64_t Size = DL.getTypeStoreSize(LI.getType()); uint64_t Size = DL.getTypeStoreSize(LI.getType());
if (Size == 0) { if (Size == 0) {
DFSF.setShadow(&LI, DFSF.DFS.getZeroShadow(&LI)); DFSF.setShadow(&LI, DFSF.DFS.getZeroShadow(&LI));
return; return;
} }
// When an application load is atomic, increase atomic ordering between
// atomic application loads and stores to ensure happen-before order; load
// shadow data after application data; store zero shadow data before
// application data. This ensure shadow loads return either labels of the
// initial application data or zeros.
if (LI.isAtomic())
LI.setOrdering(AddAcquireOrdering(LI.getOrdering()));
Align Alignment = ClPreserveAlignment ? LI.getAlign() : Align(1); Align Alignment = ClPreserveAlignment ? LI.getAlign() : Align(1);
Instruction *Pos = LI.isAtomic() ? LI.getNextNode() : &LI;
morehouseUnsubmitted
Done
ReplyInline Actions

Any reason not to use the load app, load shadow ordering always?

morehouse: Any reason not to use the load app, load shadow ordering always?
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

This code could seem confusing. Actually it does not skip a line. It sets the code insertion point after app atomic load. None-atomic load still inserts instrumented code before them. Actually they can be the same but that would require updating a lot of tests...

stephan.yichao.zhao: This code could seem confusing. Actually it does not skip a line. It sets the code insertion…
Value *PrimitiveShadow = Value *PrimitiveShadow =
DFSF.loadShadow(LI.getPointerOperand(), Size, Alignment.value(), &LI); DFSF.loadShadow(LI.getPointerOperand(), Size, Alignment.value(), Pos);
if (ClCombinePointerLabelsOnLoad) { if (ClCombinePointerLabelsOnLoad) {
Value *PtrShadow = DFSF.getShadow(LI.getPointerOperand()); Value *PtrShadow = DFSF.getShadow(LI.getPointerOperand());
PrimitiveShadow = DFSF.combineShadows(PrimitiveShadow, PtrShadow, &LI); PrimitiveShadow = DFSF.combineShadows(PrimitiveShadow, PtrShadow, Pos);
} }
if (!DFSF.DFS.isZeroShadow(PrimitiveShadow)) if (!DFSF.DFS.isZeroShadow(PrimitiveShadow))
DFSF.NonZeroChecks.push_back(PrimitiveShadow); DFSF.NonZeroChecks.push_back(PrimitiveShadow);
Value *Shadow = Value *Shadow =
DFSF.expandFromPrimitiveShadow(LI.getType(), PrimitiveShadow, &LI); DFSF.expandFromPrimitiveShadow(LI.getType(), PrimitiveShadow, Pos);
DFSF.setShadow(&LI, Shadow); DFSF.setShadow(&LI, Shadow);
if (ClEventCallbacks) { if (ClEventCallbacks) {
IRBuilder<> IRB(&LI); IRBuilder<> IRB(Pos);
Value *Addr8 = IRB.CreateBitCast(LI.getPointerOperand(), DFSF.DFS.Int8Ptr); Value *Addr8 = IRB.CreateBitCast(LI.getPointerOperand(), DFSF.DFS.Int8Ptr);
IRB.CreateCall(DFSF.DFS.DFSanLoadCallbackFn, {PrimitiveShadow, Addr8}); IRB.CreateCall(DFSF.DFS.DFSanLoadCallbackFn, {PrimitiveShadow, Addr8});
} }
} }
void DFSanFunction::storeZeroPrimitiveShadowOrigin(Value *Addr, uint64_t Size,
Align ShadowAlign,
Instruction *Pos) {
IRBuilder<> IRB(Pos);
IntegerType *ShadowTy =
IntegerType::get(*DFS.Ctx, Size * DFS.ShadowWidthBits);
Value *ExtZeroShadow = ConstantInt::get(ShadowTy, 0);
Value *ShadowAddr = DFS.getShadowAddress(Addr, Pos);
Value *ExtShadowAddr =
IRB.CreateBitCast(ShadowAddr, PointerType::getUnqual(ShadowTy));
IRB.CreateAlignedStore(ExtZeroShadow, ExtShadowAddr, ShadowAlign);
// Do not write origins for 0 shadows because we do not trace origins for
// untainted sinks.
morehouseUnsubmitted
Done
ReplyInline Actions

Should we call this function storeZeroPrimitiveShadow then?

morehouse: Should we call this function `storeZeroPrimitiveShadow` then?
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

done. Thank you.

stephan.yichao.zhao: done. Thank you.
}
void DFSanFunction::storePrimitiveShadow(Value *Addr, uint64_t Size, void DFSanFunction::storePrimitiveShadow(Value *Addr, uint64_t Size,
Align Alignment, Align Alignment,
Value *PrimitiveShadow, Value *PrimitiveShadow,
Instruction *Pos) { Instruction *Pos) {
if (AllocaInst *AI = dyn_cast<AllocaInst>(Addr)) { if (AllocaInst *AI = dyn_cast<AllocaInst>(Addr)) {
const auto i = AllocaShadowMap.find(AI); const auto i = AllocaShadowMap.find(AI);
if (i != AllocaShadowMap.end()) { if (i != AllocaShadowMap.end()) {
IRBuilder<> IRB(Pos); IRBuilder<> IRB(Pos);
IRB.CreateStore(PrimitiveShadow, i->second); IRB.CreateStore(PrimitiveShadow, i->second);
return; return;
} }
} }
const Align ShadowAlign(Alignment.value() * DFS.ShadowWidthBytes); const Align ShadowAlign(Alignment.value() * DFS.ShadowWidthBytes);
IRBuilder<> IRB(Pos);
Value *ShadowAddr = DFS.getShadowAddress(Addr, Pos);
if (DFS.isZeroShadow(PrimitiveShadow)) { if (DFS.isZeroShadow(PrimitiveShadow)) {
IntegerType *ShadowTy = storeZeroPrimitiveShadowOrigin(Addr, Size, ShadowAlign, Pos);
IntegerType::get(*DFS.Ctx, Size * DFS.ShadowWidthBits);
Value *ExtZeroShadow = ConstantInt::get(ShadowTy, 0);
Value *ExtShadowAddr =
IRB.CreateBitCast(ShadowAddr, PointerType::getUnqual(ShadowTy));
IRB.CreateAlignedStore(ExtZeroShadow, ExtShadowAddr, ShadowAlign);
return; return;
} }
IRBuilder<> IRB(Pos);
Value *ShadowAddr = DFS.getShadowAddress(Addr, Pos);
const unsigned ShadowVecSize = 128 / DFS.ShadowWidthBits; const unsigned ShadowVecSize = 128 / DFS.ShadowWidthBits;
uint64_t Offset = 0; uint64_t Offset = 0;
if (Size >= ShadowVecSize) { if (Size >= ShadowVecSize) {
auto *ShadowVecTy = auto *ShadowVecTy =
FixedVectorType::get(DFS.PrimitiveShadowTy, ShadowVecSize); FixedVectorType::get(DFS.PrimitiveShadowTy, ShadowVecSize);
Value *ShadowVec = UndefValue::get(ShadowVecTy); Value *ShadowVec = UndefValue::get(ShadowVecTy);
for (unsigned i = 0; i != ShadowVecSize; ++i) { for (unsigned i = 0; i != ShadowVecSize; ++i) {
ShadowVec = IRB.CreateInsertElement( ShadowVec = IRB.CreateInsertElement(
Show All 15 Lines while (Size > 0) {
Value *CurShadowAddr = Value *CurShadowAddr =
IRB.CreateConstGEP1_32(DFS.PrimitiveShadowTy, ShadowAddr, Offset); IRB.CreateConstGEP1_32(DFS.PrimitiveShadowTy, ShadowAddr, Offset);
IRB.CreateAlignedStore(PrimitiveShadow, CurShadowAddr, ShadowAlign); IRB.CreateAlignedStore(PrimitiveShadow, CurShadowAddr, ShadowAlign);
--Size; --Size;
++Offset; ++Offset;
} }
} }
static AtomicOrdering AddReleaseOrdering(AtomicOrdering AO) {
Lint: Pre-merge checks
Inline Actions

clang-tidy: warning: invalid case style for function 'AddReleaseOrdering' [readability-identifier-naming]
not useful

Lint: Pre-merge checks: clang-tidy: warning: invalid case style for function 'AddReleaseOrdering' [readability…
switch (AO) {
case AtomicOrdering::NotAtomic:
return AtomicOrdering::NotAtomic;
case AtomicOrdering::Unordered:
case AtomicOrdering::Monotonic:
case AtomicOrdering::Release:
return AtomicOrdering::Release;
case AtomicOrdering::Acquire:
case AtomicOrdering::AcquireRelease:
return AtomicOrdering::AcquireRelease;
case AtomicOrdering::SequentiallyConsistent:
return AtomicOrdering::SequentiallyConsistent;
}
llvm_unreachable("Unknown ordering");
}
void DFSanVisitor::visitStoreInst(StoreInst &SI) { void DFSanVisitor::visitStoreInst(StoreInst &SI) {
auto &DL = SI.getModule()->getDataLayout(); auto &DL = SI.getModule()->getDataLayout();
uint64_t Size = DL.getTypeStoreSize(SI.getValueOperand()->getType()); Value *Val = SI.getValueOperand();
uint64_t Size = DL.getTypeStoreSize(Val->getType());
if (Size == 0) if (Size == 0)
return; return;
// When an application store is atomic, increase atomic ordering between
// atomic application loads and stores to ensure happen-before order; load
// shadow data after application data; store zero shadow data before
// application data. This ensure shadow loads return either labels of the
// initial application data or zeros.
if (SI.isAtomic())
SI.setOrdering(AddReleaseOrdering(SI.getOrdering()));
const Align Alignment = ClPreserveAlignment ? SI.getAlign() : Align(1); const Align Alignment = ClPreserveAlignment ? SI.getAlign() : Align(1);
Value* Shadow = DFSF.getShadow(SI.getValueOperand()); Value *Shadow =
SI.isAtomic() ? DFSF.DFS.getZeroShadow(Val) : DFSF.getShadow(Val);
Value *PrimitiveShadow; Value *PrimitiveShadow;
if (ClCombinePointerLabelsOnStore) { if (ClCombinePointerLabelsOnStore) {
Value *PtrShadow = DFSF.getShadow(SI.getPointerOperand()); Value *PtrShadow = DFSF.getShadow(SI.getPointerOperand());
PrimitiveShadow = DFSF.combineShadows(Shadow, PtrShadow, &SI); PrimitiveShadow = DFSF.combineShadows(Shadow, PtrShadow, &SI);
} else { } else {
PrimitiveShadow = DFSF.collapseToPrimitiveShadow(Shadow, &SI); PrimitiveShadow = DFSF.collapseToPrimitiveShadow(Shadow, &SI);
} }
DFSF.storePrimitiveShadow(SI.getPointerOperand(), Size, Alignment, DFSF.storePrimitiveShadow(SI.getPointerOperand(), Size, Alignment,
PrimitiveShadow, &SI); PrimitiveShadow, &SI);
if (ClEventCallbacks) { if (ClEventCallbacks) {
IRBuilder<> IRB(&SI); IRBuilder<> IRB(&SI);
Value *Addr8 = IRB.CreateBitCast(SI.getPointerOperand(), DFSF.DFS.Int8Ptr); Value *Addr8 = IRB.CreateBitCast(SI.getPointerOperand(), DFSF.DFS.Int8Ptr);
IRB.CreateCall(DFSF.DFS.DFSanStoreCallbackFn, {PrimitiveShadow, Addr8}); IRB.CreateCall(DFSF.DFS.DFSanStoreCallbackFn, {PrimitiveShadow, Addr8});
} }
} }
void DFSanVisitor::visitCASOrRMW(Align InstAlignment, Instruction &I) {
assert(isa<AtomicRMWInst>(I) || isa<AtomicCmpXchgInst>(I));
Value *Val = I.getOperand(1);
const auto &DL = I.getModule()->getDataLayout();
uint64_t Size = DL.getTypeStoreSize(Val->getType());
if (Size == 0)
return;
// Conservatively set data at stored addresses and return with zero shadow to
// prevent shadow data races.
IRBuilder<> IRB(&I);
Value *Addr = I.getOperand(0);
const Align ShadowAlign = DFSF.getShadowAlign(InstAlignment);
DFSF.storeZeroPrimitiveShadowOrigin(Addr, Size, ShadowAlign, &I);
DFSF.setShadow(&I, DFSF.DFS.getZeroShadow(&I));
DFSF.setOrigin(&I, DFSF.DFS.ZeroOrigin);
}
void DFSanVisitor::visitAtomicRMWInst(AtomicRMWInst &I) {
visitCASOrRMW(I.getAlign(), I);
I.setOrdering(AddReleaseOrdering(I.getOrdering()));
}
void DFSanVisitor::visitAtomicCmpXchgInst(AtomicCmpXchgInst &I) {
visitCASOrRMW(I.getAlign(), I);
I.setSuccessOrdering(AddReleaseOrdering(I.getSuccessOrdering()));
}
morehouseUnsubmitted
Done
ReplyInline Actions

Please add comments to visitAtomicRMWInst and visitAtomicCmpXchgInst explaining why we modify the atomic orderings.

morehouse: Please add comments to `visitAtomicRMWInst` and `visitAtomicCmpXchgInst` explaining why we…
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

This is a good point. Since we always use 0 shadows, what their orderings are does not matter.

@evghenii, this followed MSan. Do you think it is fine not to change their orderings?

stephan.yichao.zhao: This is a good point. Since we always use 0 shadows, what their orderings are does not matter.
void DFSanVisitor::visitUnaryOperator(UnaryOperator &UO) { void DFSanVisitor::visitUnaryOperator(UnaryOperator &UO) {
visitInstOperands(UO); visitInstOperands(UO);
} }
void DFSanVisitor::visitBinaryOperator(BinaryOperator &BO) { void DFSanVisitor::visitBinaryOperator(BinaryOperator &BO) {
visitInstOperands(BO); visitInstOperands(BO);
} }
▲ Show 20 LinesShow All 512 LinesShow Last 20 Lines

llvm/test/Instrumentation/DataFlowSanitizer/atomics.ll

  • This file was added.
; RUN: opt < %s -dfsan -dfsan-fast-16-labels=true -S | FileCheck %s --check-prefix=CHECK
; RUN: opt < %s -dfsan -dfsan-track-origins=1 -dfsan-fast-16-labels=true -S | FileCheck %s --check-prefixes=CHECK,CHECK_ORIGIN
; RUN: opt < %s -dfsan -dfsan-track-origins=1 -dfsan-fast-16-labels=true -dfsan-instrumentation-with-call-threshold=0 -S | FileCheck %s --check-prefixes=CHECK,CHECK_ORIGIN
target datalayout = "e-p:64:64:64-i1:8:8-i8:8:8-i16:16:16-i32:32:32-i64:64:64-f32:32:32-f64:64:64-v64:64:64-v128:128:128-a0:0:64-s0:64:64-f80:128:128-n8:16:32:64-S128"
target triple = "x86_64-unknown-linux-gnu"
; atomicrmw xchg: store clean shadow/origin, return clean shadow/origin
define i32 @AtomicRmwXchg(i32* %p, i32 %x) {
entry:
%0 = atomicrmw xchg i32* %p, i32 %x seq_cst
ret i32 %0
}
; CHECK-LABEL: @"dfs$AtomicRmwXchg"
; CHECK-NOT: @__dfsan_arg_origin_tls
; CHECK-NOT: @__dfsan_arg_tls
; CHECK: [[INTP:%.*]] = ptrtoint i32* %p to i64
; CHECK-NEXT: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK-NEXT: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK-NEXT: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK-NEXT: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK-NEXT: store i64 0, i64* [[SHADOW_PTR64]], align 2
; CHECK-NEXT: atomicrmw xchg i32* %p, i32 %x seq_cst
; CHECK-NEXT: store i16 0, i16* bitcast ([100 x i64]* @__dfsan_retval_tls to i16*), align 2
; CHECK_ORIGIN-NEXT: store i32 0, i32* @__dfsan_retval_origin_tls, align 4
; CHECK-NEXT: ret i32
; atomicrmw max: exactly the same as above
define i32 @AtomicRmwMax(i32* %p, i32 %x) {
entry:
%0 = atomicrmw max i32* %p, i32 %x seq_cst
ret i32 %0
}
; CHECK-LABEL: @"dfs$AtomicRmwMax"
; CHECK-NOT: @__dfsan_arg_origin_tls
; CHECK-NOT: @__dfsan_arg_tls
; CHECK: [[INTP:%.*]] = ptrtoint i32* %p to i64
; CHECK-NEXT: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK-NEXT: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK-NEXT: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK-NEXT: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK-NEXT: store i64 0, i64* [[SHADOW_PTR64]], align 2
; CHECK-NEXT: atomicrmw max i32* %p, i32 %x seq_cst
; CHECK-NEXT: store i16 0, i16* bitcast ([100 x i64]* @__dfsan_retval_tls to i16*), align 2
; CHECK_ORIGIN-NEXT: store i32 0, i32* @__dfsan_retval_origin_tls, align 4
; CHECK-NEXT: ret i32
; cmpxchg: the same as above, but also check %a shadow
morehouseUnsubmitted
Done
ReplyInline Actions

I don't see %a's shadow being checked anywhere.

morehouse: I don't see `%a`'s shadow being checked anywhere.
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

updated comments.

stephan.yichao.zhao: updated comments.
define i32 @Cmpxchg(i32* %p, i32 %a, i32 %b) {
entry:
%pair = cmpxchg i32* %p, i32 %a, i32 %b seq_cst seq_cst
%0 = extractvalue { i32, i1 } %pair, 0
ret i32 %0
}
; CHECK-LABEL: @"dfs$Cmpxchg"
; CHECK-NOT: @__dfsan_arg_origin_tls
; CHECK-NOT: @__dfsan_arg_tls
; CHECK: [[INTP:%.*]] = ptrtoint i32* %p to i64
; CHECK-NEXT: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK-NEXT: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK-NEXT: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK-NEXT: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK-NEXT: store i64 0, i64* [[SHADOW_PTR64]], align 2
; CHECK-NEXT: %pair = cmpxchg i32* %p, i32 %a, i32 %b seq_cst seq_cst
; CHECK: store i16 0, i16* bitcast ([100 x i64]* @__dfsan_retval_tls to i16*), align 2
; CHECK_ORIGIN-NEXT: store i32 0, i32* @__dfsan_retval_origin_tls, align 4
; CHECK-NEXT: ret i32
; relaxed cmpxchg: bump up to "release monotonic"
define i32 @CmpxchgMonotonic(i32* %p, i32 %a, i32 %b) {
entry:
%pair = cmpxchg i32* %p, i32 %a, i32 %b monotonic monotonic
%0 = extractvalue { i32, i1 } %pair, 0
ret i32 %0
}
; CHECK-LABEL: @"dfs$CmpxchgMonotonic"
; CHECK-NOT: @__dfsan_arg_origin_tls
; CHECK-NOT: @__dfsan_arg_tls
; CHECK: [[INTP:%.*]] = ptrtoint i32* %p to i64
; CHECK-NEXT: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK-NEXT: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK-NEXT: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK-NEXT: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK-NEXT: store i64 0, i64* [[SHADOW_PTR64]], align 2
; CHECK-NEXT: %pair = cmpxchg i32* %p, i32 %a, i32 %b release monotonic
; CHECK: store i16 0, i16* bitcast ([100 x i64]* @__dfsan_retval_tls to i16*), align 2
; CHECK_ORIGIN-NEXT: store i32 0, i32* @__dfsan_retval_origin_tls, align 4
; CHECK-NEXT: ret i32
; atomic load: load shadow value after app value
define i32 @AtomicLoad(i32* %p) {
entry:
%a = load atomic i32, i32* %p seq_cst, align 16
ret i32 %a
}
; CHECK-LABEL: @"dfs$AtomicLoad"
; CHECK_ORIGIN: [[PO:%.*]] = load i32, i32* getelementptr inbounds ([200 x i32], [200 x i32]* @__dfsan_arg_origin_tls, i64 0, i64 0), align 4
; CHECK: [[PS:%.*]] = load i16, i16* bitcast ([100 x i64]* @__dfsan_arg_tls to i16*), align 2
; CHECK: %a = load atomic i32, i32* %p seq_cst, align 16
; CHECK: [[INTP:%.*]] = ptrtoint {{.*}} %p to i64
; CHECK: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK_ORIGIN: [[ORIGIN_ADDR:%.*]] = add i64 [[OFFSET]], 35184372088832
; CHECK_ORIGIN: [[ORIGIN_PTR:%.*]] = inttoptr i64 [[ORIGIN_ADDR]] to i32*
; CHECK_ORIGIN: [[AO:%.*]] = load i32, i32* [[ORIGIN_PTR]], align 16
; CHECK: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK: [[SHADOW64:%.*]] = load i64, i64* [[SHADOW_PTR64]], align 2
; CHECK: [[SHADOW64_H32:%.*]] = lshr i64 [[SHADOW64]], 32
; CHECK: [[SHADOW64_HL32:%.*]] = or i64 [[SHADOW64]], [[SHADOW64_H32]]
; CHECK: [[SHADOW64_HL32_H16:%.*]] = lshr i64 [[SHADOW64_HL32]], 16
; CHECK: [[SHADOW64_HL32_HL16:%.*]] = or i64 [[SHADOW64_HL32]], [[SHADOW64_HL32_H16]]
; CHECK: [[AS:%.*]] = trunc i64 [[SHADOW64_HL32_HL16]] to i16
; CHECK: [[AP_S:%.*]] = or i16 [[AS]], [[PS]]
; CHECK_ORIGIN: [[PS_NZ:%.*]] = icmp ne i16 [[PS]], 0
; CHECK_ORIGIN: [[AP_O:%.*]] = select i1 [[PS_NZ]], i32 [[PO]], i32 [[AO]]
; CHECK: store i16 [[AP_S]], i16* bitcast ([100 x i64]* @__dfsan_retval_tls to i16*), align 2
; CHECK_ORIGIN: store i32 [[AP_O]], i32* @__dfsan_retval_origin_tls, align 4
; CHECK: ret i32 %a
; atomic load: load shadow value after app value
define i32 @AtomicLoadAcquire(i32* %p) {
entry:
%a = load atomic i32, i32* %p acquire, align 16
ret i32 %a
}
; CHECK-LABEL: @"dfs$AtomicLoadAcquire"
; CHECK_ORIGIN: [[PO:%.*]] = load i32, i32* getelementptr inbounds ([200 x i32], [200 x i32]* @__dfsan_arg_origin_tls, i64 0, i64 0), align 4
; CHECK: [[PS:%.*]] = load i16, i16* bitcast ([100 x i64]* @__dfsan_arg_tls to i16*), align 2
; CHECK: %a = load atomic i32, i32* %p acquire, align 16
; CHECK: [[INTP:%.*]] = ptrtoint {{.*}} %p to i64
; CHECK: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK_ORIGIN: [[ORIGIN_ADDR:%.*]] = add i64 [[OFFSET]], 35184372088832
; CHECK_ORIGIN: [[ORIGIN_PTR:%.*]] = inttoptr i64 [[ORIGIN_ADDR]] to i32*
; CHECK_ORIGIN: [[AO:%.*]] = load i32, i32* [[ORIGIN_PTR]], align 16
; CHECK: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK: [[SHADOW64:%.*]] = load i64, i64* [[SHADOW_PTR64]], align 2
; CHECK: [[SHADOW64_H32:%.*]] = lshr i64 [[SHADOW64]], 32
; CHECK: [[SHADOW64_HL32:%.*]] = or i64 [[SHADOW64]], [[SHADOW64_H32]]
; CHECK: [[SHADOW64_HL32_H16:%.*]] = lshr i64 [[SHADOW64_HL32]], 16
; CHECK: [[SHADOW64_HL32_HL16:%.*]] = or i64 [[SHADOW64_HL32]], [[SHADOW64_HL32_H16]]
; CHECK: [[AS:%.*]] = trunc i64 [[SHADOW64_HL32_HL16]] to i16
; CHECK: [[AP_S:%.*]] = or i16 [[AS]], [[PS]]
; CHECK_ORIGIN: [[PS_NZ:%.*]] = icmp ne i16 [[PS]], 0
; CHECK_ORIGIN: [[AP_O:%.*]] = select i1 [[PS_NZ]], i32 [[PO]], i32 [[AO]]
; CHECK: store i16 [[AP_S]], i16* bitcast ([100 x i64]* @__dfsan_retval_tls to i16*), align 2
; CHECK_ORIGIN: store i32 [[AP_O]], i32* @__dfsan_retval_origin_tls, align 4
; CHECK: ret i32 %a
; atomic load monotonic: bump up to load acquire
define i32 @AtomicLoadMonotonic(i32* %p) {
entry:
%a = load atomic i32, i32* %p monotonic, align 16
ret i32 %a
}
; CHECK-LABEL: @"dfs$AtomicLoadMonotonic"
; CHECK_ORIGIN: [[PO:%.*]] = load i32, i32* getelementptr inbounds ([200 x i32], [200 x i32]* @__dfsan_arg_origin_tls, i64 0, i64 0), align 4
; CHECK: [[PS:%.*]] = load i16, i16* bitcast ([100 x i64]* @__dfsan_arg_tls to i16*), align 2
; CHECK: %a = load atomic i32, i32* %p acquire, align 16
; CHECK: [[INTP:%.*]] = ptrtoint {{.*}} %p to i64
; CHECK: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK_ORIGIN: [[ORIGIN_ADDR:%.*]] = add i64 [[OFFSET]], 35184372088832
; CHECK_ORIGIN: [[ORIGIN_PTR:%.*]] = inttoptr i64 [[ORIGIN_ADDR]] to i32*
; CHECK_ORIGIN: [[AO:%.*]] = load i32, i32* [[ORIGIN_PTR]], align 16
; CHECK: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK: [[SHADOW64:%.*]] = load i64, i64* [[SHADOW_PTR64]], align 2
; CHECK: [[SHADOW64_H32:%.*]] = lshr i64 [[SHADOW64]], 32
; CHECK: [[SHADOW64_HL32:%.*]] = or i64 [[SHADOW64]], [[SHADOW64_H32]]
; CHECK: [[SHADOW64_HL32_H16:%.*]] = lshr i64 [[SHADOW64_HL32]], 16
; CHECK: [[SHADOW64_HL32_HL16:%.*]] = or i64 [[SHADOW64_HL32]], [[SHADOW64_HL32_H16]]
; CHECK: [[AS:%.*]] = trunc i64 [[SHADOW64_HL32_HL16]] to i16
; CHECK: [[AP_S:%.*]] = or i16 [[AS]], [[PS]]
; CHECK_ORIGIN: [[PS_NZ:%.*]] = icmp ne i16 [[PS]], 0
; CHECK_ORIGIN: [[AP_O:%.*]] = select i1 [[PS_NZ]], i32 [[PO]], i32 [[AO]]
; CHECK: store i16 [[AP_S]], i16* bitcast ([100 x i64]* @__dfsan_retval_tls to i16*), align 2
; CHECK_ORIGIN: store i32 [[AP_O]], i32* @__dfsan_retval_origin_tls, align 4
; CHECK: ret i32 %a
; atomic load unordered: bump up to load acquire
define i32 @AtomicLoadUnordered(i32* %p) {
entry:
%a = load atomic i32, i32* %p unordered, align 16
ret i32 %a
}
; CHECK-LABEL: @"dfs$AtomicLoadUnordered"
; CHECK_ORIGIN: [[PO:%.*]] = load i32, i32* getelementptr inbounds ([200 x i32], [200 x i32]* @__dfsan_arg_origin_tls, i64 0, i64 0), align 4
; CHECK: [[PS:%.*]] = load i16, i16* bitcast ([100 x i64]* @__dfsan_arg_tls to i16*), align 2
; CHECK: %a = load atomic i32, i32* %p acquire, align 16
; CHECK: [[INTP:%.*]] = ptrtoint {{.*}} %p to i64
; CHECK: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK_ORIGIN: [[ORIGIN_ADDR:%.*]] = add i64 [[OFFSET]], 35184372088832
; CHECK_ORIGIN: [[ORIGIN_PTR:%.*]] = inttoptr i64 [[ORIGIN_ADDR]] to i32*
; CHECK_ORIGIN: [[AO:%.*]] = load i32, i32* [[ORIGIN_PTR]], align 16
; CHECK: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK: [[SHADOW64:%.*]] = load i64, i64* [[SHADOW_PTR64]], align 2
; CHECK: [[SHADOW64_H32:%.*]] = lshr i64 [[SHADOW64]], 32
; CHECK: [[SHADOW64_HL32:%.*]] = or i64 [[SHADOW64]], [[SHADOW64_H32]]
; CHECK: [[SHADOW64_HL32_H16:%.*]] = lshr i64 [[SHADOW64_HL32]], 16
; CHECK: [[SHADOW64_HL32_HL16:%.*]] = or i64 [[SHADOW64_HL32]], [[SHADOW64_HL32_H16]]
; CHECK: [[AS:%.*]] = trunc i64 [[SHADOW64_HL32_HL16]] to i16
; CHECK: [[AP_S:%.*]] = or i16 [[AS]], [[PS]]
; CHECK_ORIGIN: [[PS_NZ:%.*]] = icmp ne i16 [[PS]], 0
; CHECK_ORIGIN: [[AP_O:%.*]] = select i1 [[PS_NZ]], i32 [[PO]], i32 [[AO]]
; CHECK: store i16 [[AP_S]], i16* bitcast ([100 x i64]* @__dfsan_retval_tls to i16*), align 2
; CHECK_ORIGIN: store i32 [[AP_O]], i32* @__dfsan_retval_origin_tls, align 4
; CHECK: ret i32 %a
; atomic store: store clean shadow value before app value
define void @AtomicStore(i32* %p, i32 %x) {
entry:
store atomic i32 %x, i32* %p seq_cst, align 16
ret void
}
; CHECK-LABEL: @"dfs$AtomicStore"
; CHECK-NOT: @__dfsan_arg_tls
; CHECK-NOT: @__dfsan_arg_origin_tls
; CHECK_ORIGIN-NOT: 35184372088832
; CHECK: [[INTP:%.*]] = ptrtoint i32* %p to i64
; CHECK: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK: store i64 0, i64* [[SHADOW_PTR64]], align 2
; CHECK: store atomic i32 %x, i32* %p seq_cst, align 16
; CHECK: ret void
; atomic store: store clean shadow value before app value
define void @AtomicStoreRelease(i32* %p, i32 %x) {
entry:
store atomic i32 %x, i32* %p release, align 16
ret void
}
; CHECK-LABEL: @"dfs$AtomicStoreRelease"
; CHECK-NOT: @__dfsan_arg_tls
; CHECK-NOT: @__dfsan_arg_origin_tls
; CHECK_ORIGIN-NOT: 35184372088832
; CHECK: [[INTP:%.*]] = ptrtoint i32* %p to i64
; CHECK: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK: store i64 0, i64* [[SHADOW_PTR64]], align 2
; CHECK: store atomic i32 %x, i32* %p release, align 16
; CHECK: ret void
; atomic store monotonic: bumped up to store release
define void @AtomicStoreMonotonic(i32* %p, i32 %x) {
entry:
store atomic i32 %x, i32* %p monotonic, align 16
ret void
}
; CHECK-LABEL: @"dfs$AtomicStoreMonotonic"
; CHECK-NOT: @__dfsan_arg_tls
; CHECK-NOT: @__dfsan_arg_origin_tls
; CHECK_ORIGIN-NOT: 35184372088832
; CHECK: [[INTP:%.*]] = ptrtoint i32* %p to i64
; CHECK: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK: store i64 0, i64* [[SHADOW_PTR64]], align 2
; CHECK: store atomic i32 %x, i32* %p release, align 16
; CHECK: ret void
; atomic store unordered: bumped up to store release
define void @AtomicStoreUnordered(i32* %p, i32 %x) {
entry:
store atomic i32 %x, i32* %p unordered, align 16
ret void
}
; CHECK-LABEL: @"dfs$AtomicStoreUnordered"
; CHECK-NOT: @__dfsan_arg_tls
; CHECK-NOT: @__dfsan_arg_origin_tls
; CHECK_ORIGIN-NOT: 35184372088832
; CHECK: [[INTP:%.*]] = ptrtoint i32* %p to i64
; CHECK: [[OFFSET:%.*]] = and i64 [[INTP]], -123145302310913
; CHECK: [[SHADOW_ADDR:%.*]] = mul i64 [[OFFSET]], 2
; CHECK: [[SHADOW_PTR:%.*]] = inttoptr i64 [[SHADOW_ADDR]] to i16*
; CHECK: [[SHADOW_PTR64:%.*]] = bitcast i16* [[SHADOW_PTR]] to i64*
; CHECK: store i64 0, i64* [[SHADOW_PTR64]], align 2
; CHECK: store atomic i32 %x, i32* %p release, align 16
; CHECK: ret void