2007-08-24 13:35:26 +08:00
|
|
|
//===--- CGExprScalar.cpp - Emit LLVM Code for Scalar Exprs ---------------===//
|
|
|
|
|
//
|
2019-01-19 16:50:56 +08:00
|
|
|
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
|
|
|
|
|
// See https://llvm.org/LICENSE.txt for license information.
|
|
|
|
|
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
|
2007-08-24 13:35:26 +08:00
|
|
|
//
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
//
|
|
|
|
|
// This contains code to emit Expr nodes with scalar LLVM types as LLVM code.
|
|
|
|
|
//
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
2010-08-31 15:33:07 +08:00
|
|
|
#include "CGCXXABI.h"
|
2018-10-16 00:07:02 +08:00
|
|
|
#include "CGCleanup.h"
|
2012-12-04 17:13:33 +08:00
|
|
|
#include "CGDebugInfo.h"
|
2009-10-11 04:07:56 +08:00
|
|
|
#include "CGObjCRuntime.h"
|
2018-10-16 00:07:02 +08:00
|
|
|
#include "CodeGenFunction.h"
|
2007-08-24 13:35:26 +08:00
|
|
|
#include "CodeGenModule.h"
|
2015-07-02 11:40:19 +08:00
|
|
|
#include "TargetInfo.h"
|
2008-08-11 13:00:27 +08:00
|
|
|
#include "clang/AST/ASTContext.h"
|
2008-08-12 13:08:18 +08:00
|
|
|
#include "clang/AST/DeclObjC.h"
|
2016-12-15 16:09:08 +08:00
|
|
|
#include "clang/AST/Expr.h"
|
2009-07-19 03:43:29 +08:00
|
|
|
#include "clang/AST/RecordLayout.h"
|
2008-08-11 13:00:27 +08:00
|
|
|
#include "clang/AST/StmtVisitor.h"
|
2018-12-11 11:18:39 +08:00
|
|
|
#include "clang/Basic/CodeGenOptions.h"
|
2018-10-16 00:07:02 +08:00
|
|
|
#include "clang/Basic/FixedPoint.h"
|
2008-04-20 08:50:39 +08:00
|
|
|
#include "clang/Basic/TargetInfo.h"
|
2017-02-25 08:43:36 +08:00
|
|
|
#include "llvm/ADT/Optional.h"
|
2014-03-04 19:46:22 +08:00
|
|
|
#include "llvm/IR/CFG.h"
|
2013-01-02 19:45:17 +08:00
|
|
|
#include "llvm/IR/Constants.h"
|
|
|
|
|
#include "llvm/IR/DataLayout.h"
|
|
|
|
|
#include "llvm/IR/Function.h"
|
2017-06-02 03:22:18 +08:00
|
|
|
#include "llvm/IR/GetElementPtrTypeIterator.h"
|
2013-01-02 19:45:17 +08:00
|
|
|
#include "llvm/IR/GlobalVariable.h"
|
|
|
|
|
#include "llvm/IR/Intrinsics.h"
|
|
|
|
|
#include "llvm/IR/Module.h"
|
2008-01-03 15:05:49 +08:00
|
|
|
#include <cstdarg>
|
2007-12-11 07:44:32 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
using namespace clang;
|
|
|
|
|
using namespace CodeGen;
|
|
|
|
|
using llvm::Value;
|
|
|
|
|
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
// Scalar Expression Emitter
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
2010-10-23 00:48:22 +08:00
|
|
|
namespace {
|
2017-06-02 03:22:18 +08:00
|
|
|
|
|
|
|
|
/// Determine whether the given binary operation may overflow.
|
|
|
|
|
/// Sets \p Result to the value of the operation for BO_Add, BO_Sub, BO_Mul,
|
|
|
|
|
/// and signed BO_{Div,Rem}. For these opcodes, and for unsigned BO_{Div,Rem},
|
|
|
|
|
/// the returned overflow check is precise. The returned value is 'true' for
|
|
|
|
|
/// all other opcodes, to be conservative.
|
|
|
|
|
bool mayHaveIntegerOverflow(llvm::ConstantInt *LHS, llvm::ConstantInt *RHS,
|
|
|
|
|
BinaryOperator::Opcode Opcode, bool Signed,
|
|
|
|
|
llvm::APInt &Result) {
|
|
|
|
|
// Assume overflow is possible, unless we can prove otherwise.
|
|
|
|
|
bool Overflow = true;
|
|
|
|
|
const auto &LHSAP = LHS->getValue();
|
|
|
|
|
const auto &RHSAP = RHS->getValue();
|
|
|
|
|
if (Opcode == BO_Add) {
|
|
|
|
|
if (Signed)
|
|
|
|
|
Result = LHSAP.sadd_ov(RHSAP, Overflow);
|
|
|
|
|
else
|
|
|
|
|
Result = LHSAP.uadd_ov(RHSAP, Overflow);
|
|
|
|
|
} else if (Opcode == BO_Sub) {
|
|
|
|
|
if (Signed)
|
|
|
|
|
Result = LHSAP.ssub_ov(RHSAP, Overflow);
|
|
|
|
|
else
|
|
|
|
|
Result = LHSAP.usub_ov(RHSAP, Overflow);
|
|
|
|
|
} else if (Opcode == BO_Mul) {
|
|
|
|
|
if (Signed)
|
|
|
|
|
Result = LHSAP.smul_ov(RHSAP, Overflow);
|
|
|
|
|
else
|
|
|
|
|
Result = LHSAP.umul_ov(RHSAP, Overflow);
|
|
|
|
|
} else if (Opcode == BO_Div || Opcode == BO_Rem) {
|
|
|
|
|
if (Signed && !RHS->isZero())
|
|
|
|
|
Result = LHSAP.sdiv_ov(RHSAP, Overflow);
|
|
|
|
|
else
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
return Overflow;
|
|
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
struct BinOpInfo {
|
|
|
|
|
Value *LHS;
|
|
|
|
|
Value *RHS;
|
2007-08-25 05:00:35 +08:00
|
|
|
QualType Ty; // Computation Type.
|
2010-06-27 05:48:21 +08:00
|
|
|
BinaryOperator::Opcode Opcode; // Opcode of BinOp to perform
|
2017-03-28 03:17:25 +08:00
|
|
|
FPOptions FPFeatures;
|
2010-06-27 05:48:21 +08:00
|
|
|
const Expr *E; // Entire expr, for error unsupported. May not be binop.
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
|
|
|
|
|
/// Check if the binop can result in integer overflow.
|
|
|
|
|
bool mayHaveIntegerOverflow() const {
|
|
|
|
|
// Without constant input, we can't rule out overflow.
|
2017-06-02 03:22:18 +08:00
|
|
|
auto *LHSCI = dyn_cast<llvm::ConstantInt>(LHS);
|
|
|
|
|
auto *RHSCI = dyn_cast<llvm::ConstantInt>(RHS);
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
if (!LHSCI || !RHSCI)
|
|
|
|
|
return true;
|
|
|
|
|
|
2017-06-02 03:22:18 +08:00
|
|
|
llvm::APInt Result;
|
|
|
|
|
return ::mayHaveIntegerOverflow(
|
|
|
|
|
LHSCI, RHSCI, Opcode, Ty->hasSignedIntegerRepresentation(), Result);
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Check if the binop computes a division or a remainder.
|
2017-05-09 08:12:33 +08:00
|
|
|
bool isDivremOp() const {
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
return Opcode == BO_Div || Opcode == BO_Rem || Opcode == BO_DivAssign ||
|
|
|
|
|
Opcode == BO_RemAssign;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Check if the binop can result in an integer division by zero.
|
|
|
|
|
bool mayHaveIntegerDivisionByZero() const {
|
2017-05-09 08:12:33 +08:00
|
|
|
if (isDivremOp())
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
if (auto *CI = dyn_cast<llvm::ConstantInt>(RHS))
|
|
|
|
|
return CI->isZero();
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Check if the binop can result in a float division by zero.
|
|
|
|
|
bool mayHaveFloatDivisionByZero() const {
|
2017-05-09 08:12:33 +08:00
|
|
|
if (isDivremOp())
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
if (auto *CFP = dyn_cast<llvm::ConstantFP>(RHS))
|
|
|
|
|
return CFP->isZero();
|
|
|
|
|
return true;
|
|
|
|
|
}
|
2019-01-17 02:13:59 +08:00
|
|
|
|
2019-02-22 04:50:09 +08:00
|
|
|
/// Check if either operand is a fixed point type or integer type, with at
|
|
|
|
|
/// least one being a fixed point type. In any case, this
|
2019-01-17 02:13:59 +08:00
|
|
|
/// operation did not follow usual arithmetic conversion and both operands may
|
|
|
|
|
/// not be the same.
|
|
|
|
|
bool isFixedPointBinOp() const {
|
2019-02-22 04:50:09 +08:00
|
|
|
// We cannot simply check the result type since comparison operations return
|
|
|
|
|
// an int.
|
|
|
|
|
if (const auto *BinOp = dyn_cast<BinaryOperator>(E)) {
|
|
|
|
|
QualType LHSType = BinOp->getLHS()->getType();
|
|
|
|
|
QualType RHSType = BinOp->getRHS()->getType();
|
|
|
|
|
return LHSType->isFixedPointType() || RHSType->isFixedPointType();
|
|
|
|
|
}
|
|
|
|
|
return false;
|
2019-01-17 02:13:59 +08:00
|
|
|
}
|
2007-08-24 13:35:26 +08:00
|
|
|
};
|
|
|
|
|
|
2010-11-13 09:35:44 +08:00
|
|
|
static bool MustVisitNullValue(const Expr *E) {
|
|
|
|
|
// If a null pointer expression's type is the C++0x nullptr_t, then
|
|
|
|
|
// it's not necessarily a simple constant and it must be evaluated
|
|
|
|
|
// for its potential side effects.
|
|
|
|
|
return E->getType()->isNullPtrType();
|
|
|
|
|
}
|
|
|
|
|
|
2017-02-25 08:43:36 +08:00
|
|
|
/// If \p E is a widened promoted integer, get its base (unpromoted) type.
|
|
|
|
|
static llvm::Optional<QualType> getUnwidenedIntegerType(const ASTContext &Ctx,
|
|
|
|
|
const Expr *E) {
|
|
|
|
|
const Expr *Base = E->IgnoreImpCasts();
|
|
|
|
|
if (E == Base)
|
|
|
|
|
return llvm::None;
|
|
|
|
|
|
|
|
|
|
QualType BaseTy = Base->getType();
|
|
|
|
|
if (!BaseTy->isPromotableIntegerType() ||
|
|
|
|
|
Ctx.getTypeSize(BaseTy) >= Ctx.getTypeSize(E->getType()))
|
|
|
|
|
return llvm::None;
|
|
|
|
|
|
|
|
|
|
return BaseTy;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Check if \p E is a widened promoted integer.
|
|
|
|
|
static bool IsWidenedIntegerOp(const ASTContext &Ctx, const Expr *E) {
|
|
|
|
|
return getUnwidenedIntegerType(Ctx, E).hasValue();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Check if we can skip the overflow check for \p Op.
|
|
|
|
|
static bool CanElideOverflowCheck(const ASTContext &Ctx, const BinOpInfo &Op) {
|
2017-02-25 14:47:00 +08:00
|
|
|
assert((isa<UnaryOperator>(Op.E) || isa<BinaryOperator>(Op.E)) &&
|
|
|
|
|
"Expected a unary or binary operator");
|
2017-02-25 08:43:36 +08:00
|
|
|
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
// If the binop has constant inputs and we can prove there is no overflow,
|
|
|
|
|
// we can elide the overflow check.
|
|
|
|
|
if (!Op.mayHaveIntegerOverflow())
|
|
|
|
|
return true;
|
2018-04-16 16:31:08 +08:00
|
|
|
|
|
|
|
|
// If a unary op has a widened operand, the op cannot overflow.
|
|
|
|
|
if (const auto *UO = dyn_cast<UnaryOperator>(Op.E))
|
|
|
|
|
return !UO->canOverflow();
|
|
|
|
|
|
|
|
|
|
// We usually don't need overflow checks for binops with widened operands.
|
|
|
|
|
// Multiplication with promoted unsigned operands is a special case.
|
2017-02-25 08:43:36 +08:00
|
|
|
const auto *BO = cast<BinaryOperator>(Op.E);
|
|
|
|
|
auto OptionalLHSTy = getUnwidenedIntegerType(Ctx, BO->getLHS());
|
|
|
|
|
if (!OptionalLHSTy)
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
auto OptionalRHSTy = getUnwidenedIntegerType(Ctx, BO->getRHS());
|
|
|
|
|
if (!OptionalRHSTy)
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
QualType LHSTy = *OptionalLHSTy;
|
|
|
|
|
QualType RHSTy = *OptionalRHSTy;
|
|
|
|
|
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
// This is the simple case: binops without unsigned multiplication, and with
|
|
|
|
|
// widened operands. No overflow check is needed here.
|
2017-02-25 08:43:36 +08:00
|
|
|
if ((Op.Opcode != BO_Mul && Op.Opcode != BO_MulAssign) ||
|
|
|
|
|
!LHSTy->isUnsignedIntegerType() || !RHSTy->isUnsignedIntegerType())
|
|
|
|
|
return true;
|
|
|
|
|
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
// For unsigned multiplication the overflow check can be elided if either one
|
|
|
|
|
// of the unpromoted types are less than half the size of the promoted type.
|
2017-02-25 08:43:36 +08:00
|
|
|
unsigned PromotedSize = Ctx.getTypeSize(Op.E->getType());
|
|
|
|
|
return (2 * Ctx.getTypeSize(LHSTy)) < PromotedSize ||
|
|
|
|
|
(2 * Ctx.getTypeSize(RHSTy)) < PromotedSize;
|
|
|
|
|
}
|
|
|
|
|
|
2017-04-05 05:18:30 +08:00
|
|
|
/// Update the FastMathFlags of LLVM IR from the FPOptions in LangOptions.
|
|
|
|
|
static void updateFastMathFlags(llvm::FastMathFlags &FMF,
|
|
|
|
|
FPOptions FPFeatures) {
|
|
|
|
|
FMF.setAllowContract(FPFeatures.allowFPContractAcrossStatement());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Propagate fast-math flags from \p Op to the instruction in \p V.
|
|
|
|
|
static Value *propagateFMFlags(Value *V, const BinOpInfo &Op) {
|
|
|
|
|
if (auto *I = dyn_cast<llvm::Instruction>(V)) {
|
|
|
|
|
llvm::FastMathFlags FMF = I->getFastMathFlags();
|
|
|
|
|
updateFastMathFlags(FMF, Op.FPFeatures);
|
|
|
|
|
I->setFastMathFlags(FMF);
|
|
|
|
|
}
|
|
|
|
|
return V;
|
|
|
|
|
}
|
|
|
|
|
|
2009-11-29 03:45:26 +08:00
|
|
|
class ScalarExprEmitter
|
2007-08-24 13:35:26 +08:00
|
|
|
: public StmtVisitor<ScalarExprEmitter, Value*> {
|
|
|
|
|
CodeGenFunction &CGF;
|
2008-11-01 09:53:16 +08:00
|
|
|
CGBuilderTy &Builder;
|
2009-05-29 23:46:01 +08:00
|
|
|
bool IgnoreResultAssign;
|
2009-07-15 07:10:40 +08:00
|
|
|
llvm::LLVMContext &VMContext;
|
2007-08-24 13:35:26 +08:00
|
|
|
public:
|
|
|
|
|
|
2009-05-29 23:46:01 +08:00
|
|
|
ScalarExprEmitter(CodeGenFunction &cgf, bool ira=false)
|
2009-09-09 21:00:44 +08:00
|
|
|
: CGF(cgf), Builder(CGF.Builder), IgnoreResultAssign(ira),
|
2009-07-15 07:10:40 +08:00
|
|
|
VMContext(cgf.getLLVMContext()) {
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
//===--------------------------------------------------------------------===//
|
|
|
|
|
// Utilities
|
|
|
|
|
//===--------------------------------------------------------------------===//
|
|
|
|
|
|
2009-05-29 23:46:01 +08:00
|
|
|
bool TestAndClearIgnoreResultAssign() {
|
2009-07-08 09:08:03 +08:00
|
|
|
bool I = IgnoreResultAssign;
|
|
|
|
|
IgnoreResultAssign = false;
|
|
|
|
|
return I;
|
|
|
|
|
}
|
2009-05-29 23:46:01 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *ConvertType(QualType T) { return CGF.ConvertType(T); }
|
2007-08-24 13:35:26 +08:00
|
|
|
LValue EmitLValue(const Expr *E) { return CGF.EmitLValue(E); }
|
2012-09-08 10:08:36 +08:00
|
|
|
LValue EmitCheckedLValue(const Expr *E, CodeGenFunction::TypeCheckKind TCK) {
|
|
|
|
|
return CGF.EmitCheckedLValue(E, TCK);
|
2012-08-24 08:54:33 +08:00
|
|
|
}
|
2007-08-24 13:35:26 +08:00
|
|
|
|
2015-05-12 05:39:14 +08:00
|
|
|
void EmitBinOpCheck(ArrayRef<std::pair<Value *, SanitizerMask>> Checks,
|
2014-11-12 06:03:54 +08:00
|
|
|
const BinOpInfo &Info);
|
2012-10-10 03:52:38 +08:00
|
|
|
|
2013-10-02 10:29:49 +08:00
|
|
|
Value *EmitLoadOfLValue(LValue LV, SourceLocation Loc) {
|
|
|
|
|
return CGF.EmitLoadOfLValue(LV, Loc).getScalarVal();
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2014-10-04 23:26:49 +08:00
|
|
|
void EmitLValueAlignmentAssumption(const Expr *E, Value *V) {
|
|
|
|
|
const AlignValueAttr *AVAttr = nullptr;
|
|
|
|
|
if (const auto *DRE = dyn_cast<DeclRefExpr>(E)) {
|
|
|
|
|
const ValueDecl *VD = DRE->getDecl();
|
|
|
|
|
|
|
|
|
|
if (VD->getType()->isReferenceType()) {
|
|
|
|
|
if (const auto *TTy =
|
|
|
|
|
dyn_cast<TypedefType>(VD->getType().getNonReferenceType()))
|
|
|
|
|
AVAttr = TTy->getDecl()->getAttr<AlignValueAttr>();
|
|
|
|
|
} else {
|
|
|
|
|
// Assumptions for function parameters are emitted at the start of the
|
[clang][UBSan] Sanitization for alignment assumptions.
Summary:
UB isn't nice. It's cool and powerful, but not nice.
Having a way to detect it is nice though.
[[ https://wg21.link/p1007r3 | P1007R3: std::assume_aligned ]] / http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2018/p1007r2.pdf says:
```
We propose to add this functionality via a library function instead of a core language attribute.
...
If the pointer passed in is not aligned to at least N bytes, calling assume_aligned results in undefined behaviour.
```
This differential teaches clang to sanitize all the various variants of this assume-aligned attribute.
Requires D54588 for LLVM IRBuilder changes.
The compiler-rt part is D54590.
This is a second commit, the original one was r351105,
which was mass-reverted in r351159 because 2 compiler-rt tests were failing.
Reviewers: ABataev, craig.topper, vsk, rsmith, rnk, #sanitizers, erichkeane, filcab, rjmccall
Reviewed By: rjmccall
Subscribers: chandlerc, ldionne, EricWF, mclow.lists, cfe-commits, bkramer
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D54589
llvm-svn: 351177
2019-01-15 17:44:25 +08:00
|
|
|
// function, so there is no need to repeat that here,
|
|
|
|
|
// unless the alignment-assumption sanitizer is enabled,
|
|
|
|
|
// then we prefer the assumption over alignment attribute
|
|
|
|
|
// on IR function param.
|
|
|
|
|
if (isa<ParmVarDecl>(VD) && !CGF.SanOpts.has(SanitizerKind::Alignment))
|
2014-10-04 23:26:49 +08:00
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
AVAttr = VD->getAttr<AlignValueAttr>();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!AVAttr)
|
|
|
|
|
if (const auto *TTy =
|
|
|
|
|
dyn_cast<TypedefType>(E->getType()))
|
|
|
|
|
AVAttr = TTy->getDecl()->getAttr<AlignValueAttr>();
|
|
|
|
|
|
|
|
|
|
if (!AVAttr)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
Value *AlignmentValue = CGF.EmitScalarExpr(AVAttr->getAlignment());
|
|
|
|
|
llvm::ConstantInt *AlignmentCI = cast<llvm::ConstantInt>(AlignmentValue);
|
[clang][UBSan] Sanitization for alignment assumptions.
Summary:
UB isn't nice. It's cool and powerful, but not nice.
Having a way to detect it is nice though.
[[ https://wg21.link/p1007r3 | P1007R3: std::assume_aligned ]] / http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2018/p1007r2.pdf says:
```
We propose to add this functionality via a library function instead of a core language attribute.
...
If the pointer passed in is not aligned to at least N bytes, calling assume_aligned results in undefined behaviour.
```
This differential teaches clang to sanitize all the various variants of this assume-aligned attribute.
Requires D54588 for LLVM IRBuilder changes.
The compiler-rt part is D54590.
This is a second commit, the original one was r351105,
which was mass-reverted in r351159 because 2 compiler-rt tests were failing.
Reviewers: ABataev, craig.topper, vsk, rsmith, rnk, #sanitizers, erichkeane, filcab, rjmccall
Reviewed By: rjmccall
Subscribers: chandlerc, ldionne, EricWF, mclow.lists, cfe-commits, bkramer
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D54589
llvm-svn: 351177
2019-01-15 17:44:25 +08:00
|
|
|
CGF.EmitAlignmentAssumption(V, E, AVAttr->getLocation(),
|
|
|
|
|
AlignmentCI->getZExtValue());
|
2014-10-04 23:26:49 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
/// EmitLoadOfLValue - Given an expression with complex type that represents a
|
|
|
|
|
/// value l-value, this method emits the address of the l-value, then loads
|
|
|
|
|
/// and returns the result.
|
|
|
|
|
Value *EmitLoadOfLValue(const Expr *E) {
|
2014-10-04 23:26:49 +08:00
|
|
|
Value *V = EmitLoadOfLValue(EmitCheckedLValue(E, CodeGenFunction::TCK_Load),
|
|
|
|
|
E->getExprLoc());
|
|
|
|
|
|
|
|
|
|
EmitLValueAlignmentAssumption(E, V);
|
|
|
|
|
return V;
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-27 00:42:57 +08:00
|
|
|
/// EmitConversionToBool - Convert the specified expression value to a
|
2007-08-27 01:25:57 +08:00
|
|
|
/// boolean (i1) truth value. This is equivalent to "Val != 0".
|
2007-08-27 00:42:57 +08:00
|
|
|
Value *EmitConversionToBool(Value *Src, QualType DstTy);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2015-08-05 14:19:26 +08:00
|
|
|
/// Emit a check that a conversion to or from a floating-point type does not
|
|
|
|
|
/// overflow.
|
2012-10-13 06:57:06 +08:00
|
|
|
void EmitFloatConversionCheck(Value *OrigSrc, QualType OrigSrcType,
|
2015-08-11 12:19:28 +08:00
|
|
|
Value *Src, QualType SrcType, QualType DstType,
|
|
|
|
|
llvm::Type *DstTy, SourceLocation Loc);
|
2012-10-13 06:57:06 +08:00
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
/// Known implicit conversion check kinds.
|
|
|
|
|
/// Keep in sync with the enum of the same name in ubsan_handlers.h
|
|
|
|
|
enum ImplicitConversionCheckKind : unsigned char {
|
2018-10-11 17:09:50 +08:00
|
|
|
ICCK_IntegerTruncation = 0, // Legacy, was only used by clang 7.
|
|
|
|
|
ICCK_UnsignedIntegerTruncation = 1,
|
|
|
|
|
ICCK_SignedIntegerTruncation = 2,
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
ICCK_IntegerSignChange = 3,
|
|
|
|
|
ICCK_SignedIntegerTruncationOrSignChange = 4,
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
/// Emit a check that an [implicit] truncation of an integer does not
|
|
|
|
|
/// discard any bits. It is not UB, so we use the value after truncation.
|
|
|
|
|
void EmitIntegerTruncationCheck(Value *Src, QualType SrcType, Value *Dst,
|
|
|
|
|
QualType DstType, SourceLocation Loc);
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
/// Emit a check that an [implicit] conversion of an integer does not change
|
|
|
|
|
/// the sign of the value. It is not UB, so we use the value after conversion.
|
|
|
|
|
/// NOTE: Src and Dst may be the exact same value! (point to the same thing)
|
|
|
|
|
void EmitIntegerSignChangeCheck(Value *Src, QualType SrcType, Value *Dst,
|
|
|
|
|
QualType DstType, SourceLocation Loc);
|
|
|
|
|
|
2015-08-05 14:19:26 +08:00
|
|
|
/// Emit a conversion from the specified type to the specified destination
|
|
|
|
|
/// type, both of which are LLVM scalar types.
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
struct ScalarConversionOpts {
|
|
|
|
|
bool TreatBooleanAsSigned;
|
|
|
|
|
bool EmitImplicitIntegerTruncationChecks;
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
bool EmitImplicitIntegerSignChangeChecks;
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
|
|
|
|
|
ScalarConversionOpts()
|
|
|
|
|
: TreatBooleanAsSigned(false),
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
EmitImplicitIntegerTruncationChecks(false),
|
|
|
|
|
EmitImplicitIntegerSignChangeChecks(false) {}
|
[clang][CodeGen] Implicit Conversion Sanitizer: discover the world of CompoundAssign operators
Summary:
As reported by @regehr (thanks!) on twitter (https://twitter.com/johnregehr/status/1057681496255815686),
we (me) has completely forgot about the binary assignment operator.
In AST, it isn't represented as separate `ImplicitCastExpr`'s,
but as a single `CompoundAssignOperator`, that does all the casts internally.
Which means, out of these two, only the first one is diagnosed:
```
auto foo() {
unsigned char c = 255;
c = c + 1;
return c;
}
auto bar() {
unsigned char c = 255;
c += 1;
return c;
}
```
https://godbolt.org/z/JNyVc4
This patch does handle the `CompoundAssignOperator`:
```
int main() {
unsigned char c = 255;
c += 1;
return c;
}
```
```
$ ./bin/clang -g -fsanitize=integer /tmp/test.c && ./a.out
/tmp/test.c:3:5: runtime error: implicit conversion from type 'int' of value 256 (32-bit, signed) to type 'unsigned char' changed the value to 0 (8-bit, unsigned)
#0 0x2392b8 in main /tmp/test.c:3:5
#1 0x7fec4a612b16 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x22b16)
#2 0x214029 in _start (/build/llvm-build-GCC-release/a.out+0x214029)
```
However, the pre/post increment/decrement is still not handled.
Reviewers: rsmith, regehr, vsk, rjmccall, #sanitizers
Reviewed By: rjmccall
Subscribers: mclow.lists, cfe-commits, regehr
Tags: #clang, #sanitizers
Differential Revision: https://reviews.llvm.org/D53949
llvm-svn: 347258
2018-11-20 03:56:43 +08:00
|
|
|
|
|
|
|
|
ScalarConversionOpts(clang::SanitizerSet SanOpts)
|
|
|
|
|
: TreatBooleanAsSigned(false),
|
|
|
|
|
EmitImplicitIntegerTruncationChecks(
|
|
|
|
|
SanOpts.hasOneOf(SanitizerKind::ImplicitIntegerTruncation)),
|
|
|
|
|
EmitImplicitIntegerSignChangeChecks(
|
|
|
|
|
SanOpts.has(SanitizerKind::ImplicitIntegerSignChange)) {}
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
};
|
|
|
|
|
Value *
|
|
|
|
|
EmitScalarConversion(Value *Src, QualType SrcTy, QualType DstTy,
|
|
|
|
|
SourceLocation Loc,
|
|
|
|
|
ScalarConversionOpts Opts = ScalarConversionOpts());
|
2015-10-05 19:27:41 +08:00
|
|
|
|
2019-03-06 08:28:43 +08:00
|
|
|
/// Convert between either a fixed point and other fixed point or fixed point
|
|
|
|
|
/// and an integer.
|
2018-10-16 00:07:02 +08:00
|
|
|
Value *EmitFixedPointConversion(Value *Src, QualType SrcTy, QualType DstTy,
|
|
|
|
|
SourceLocation Loc);
|
2019-01-17 02:13:59 +08:00
|
|
|
Value *EmitFixedPointConversion(Value *Src, FixedPointSemantics &SrcFixedSema,
|
|
|
|
|
FixedPointSemantics &DstFixedSema,
|
2019-03-06 08:28:43 +08:00
|
|
|
SourceLocation Loc,
|
|
|
|
|
bool DstIsInteger = false);
|
2018-10-16 00:07:02 +08:00
|
|
|
|
2015-08-05 14:19:26 +08:00
|
|
|
/// Emit a conversion from the specified complex type to the specified
|
|
|
|
|
/// destination type, where the destination type is an LLVM scalar type.
|
2007-08-27 00:34:22 +08:00
|
|
|
Value *EmitComplexToScalarConversion(CodeGenFunction::ComplexPairTy Src,
|
2015-08-11 12:19:28 +08:00
|
|
|
QualType SrcTy, QualType DstTy,
|
|
|
|
|
SourceLocation Loc);
|
2009-02-13 02:29:15 +08:00
|
|
|
|
2010-05-23 01:45:10 +08:00
|
|
|
/// EmitNullValue - Emit a value that corresponds to null for the given type.
|
|
|
|
|
Value *EmitNullValue(QualType Ty);
|
|
|
|
|
|
2010-11-15 17:13:47 +08:00
|
|
|
/// EmitFloatToBoolConversion - Perform an FP to boolean conversion.
|
|
|
|
|
Value *EmitFloatToBoolConversion(Value *V) {
|
|
|
|
|
// Compare against 0.0 for fp scalars.
|
|
|
|
|
llvm::Value *Zero = llvm::Constant::getNullValue(V->getType());
|
|
|
|
|
return Builder.CreateFCmpUNE(V, Zero, "tobool");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// EmitPointerToBoolConversion - Perform a pointer to boolean conversion.
|
2016-12-15 16:09:08 +08:00
|
|
|
Value *EmitPointerToBoolConversion(Value *V, QualType QT) {
|
|
|
|
|
Value *Zero = CGF.CGM.getNullPointer(cast<llvm::PointerType>(V->getType()), QT);
|
|
|
|
|
|
2010-11-15 17:13:47 +08:00
|
|
|
return Builder.CreateICmpNE(V, Zero, "tobool");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *EmitIntToBoolConversion(Value *V) {
|
|
|
|
|
// Because of the type rules of C, we often end up computing a
|
|
|
|
|
// logical value, then zero extending it to int, then wanting it
|
|
|
|
|
// as a logical value again. Optimize this common case.
|
|
|
|
|
if (llvm::ZExtInst *ZI = dyn_cast<llvm::ZExtInst>(V)) {
|
|
|
|
|
if (ZI->getOperand(0)->getType() == Builder.getInt1Ty()) {
|
|
|
|
|
Value *Result = ZI->getOperand(0);
|
|
|
|
|
// If there aren't any more uses, zap the instruction to save space.
|
|
|
|
|
// Note that there can be more uses, for example if this
|
|
|
|
|
// is the result of an assignment.
|
|
|
|
|
if (ZI->use_empty())
|
|
|
|
|
ZI->eraseFromParent();
|
|
|
|
|
return Result;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-04-20 06:55:03 +08:00
|
|
|
return Builder.CreateIsNotNull(V, "tobool");
|
2010-11-15 17:13:47 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
//===--------------------------------------------------------------------===//
|
|
|
|
|
// Visitor Methods
|
|
|
|
|
//===--------------------------------------------------------------------===//
|
|
|
|
|
|
2010-09-17 23:51:28 +08:00
|
|
|
Value *Visit(Expr *E) {
|
DebugInfo: Use the preferred location rather than the start location for expression line info
This causes things like assignment to refer to the '=' rather than the
LHS when attributing the store instruction, for example.
There were essentially 3 options for this:
* The beginning of an expression (this was the behavior prior to this
commit). This meant that stepping through subexpressions would bounce
around from subexpressions back to the start of the outer expression,
etc. (eg: x + y + z would go x, y, x, z, x (the repeated 'x's would be
where the actual addition occurred)).
* The end of an expression. This seems to be what GCC does /mostly/, and
certainly this for function calls. This has the advantage that
progress is always 'forwards' (never jumping backwards - except for
independent subexpressions if they're evaluated in interesting orders,
etc). "x + y + z" would go "x y z" with the additions occurring at y
and z after the respective loads.
The problem with this is that the user would still have to think
fairly hard about precedence to realize which subexpression is being
evaluated or which operator overload is being called in, say, an asan
backtrace.
* The preferred location or 'exprloc'. In this case you get sort of what
you'd expect, though it's a bit confusing in its own way due to going
'backwards'. In this case the locations would be: "x y + z +" in
lovely postfix arithmetic order. But this does mean that if the op+
were an operator overload, say, and in a backtrace, the backtrace will
point to the exact '+' that's being called, not to the end of one of
its operands.
(actually the operator overload case doesn't work yet for other reasons,
but that's being fixed - but this at least gets scalar/complex
assignments and other plain operators right)
llvm-svn: 227027
2015-01-25 09:19:10 +08:00
|
|
|
ApplyDebugLocation DL(CGF, E);
|
2010-09-17 23:51:28 +08:00
|
|
|
return StmtVisitor<ScalarExprEmitter, Value*>::Visit(E);
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitStmt(Stmt *S) {
|
2007-12-12 05:27:55 +08:00
|
|
|
S->dump(CGF.getContext().getSourceManager());
|
2011-09-23 13:06:16 +08:00
|
|
|
llvm_unreachable("Stmt can't have complex result type!");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
Value *VisitExpr(Expr *S);
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2018-11-09 08:41:36 +08:00
|
|
|
Value *VisitConstantExpr(ConstantExpr *E) {
|
|
|
|
|
return Visit(E->getSubExpr());
|
|
|
|
|
}
|
2010-09-17 23:51:28 +08:00
|
|
|
Value *VisitParenExpr(ParenExpr *PE) {
|
2013-07-26 14:16:11 +08:00
|
|
|
return Visit(PE->getSubExpr());
|
2010-09-17 23:51:28 +08:00
|
|
|
}
|
2011-07-15 13:09:51 +08:00
|
|
|
Value *VisitSubstNonTypeTemplateParmExpr(SubstNonTypeTemplateParmExpr *E) {
|
2013-07-26 14:16:11 +08:00
|
|
|
return Visit(E->getReplacement());
|
2011-07-15 13:09:51 +08:00
|
|
|
}
|
2011-04-15 08:35:48 +08:00
|
|
|
Value *VisitGenericSelectionExpr(GenericSelectionExpr *GE) {
|
|
|
|
|
return Visit(GE->getResultExpr());
|
|
|
|
|
}
|
2017-03-26 10:18:05 +08:00
|
|
|
Value *VisitCoawaitExpr(CoawaitExpr *S) {
|
|
|
|
|
return CGF.EmitCoawaitExpr(*S).getScalarVal();
|
|
|
|
|
}
|
|
|
|
|
Value *VisitCoyieldExpr(CoyieldExpr *S) {
|
|
|
|
|
return CGF.EmitCoyieldExpr(*S).getScalarVal();
|
|
|
|
|
}
|
|
|
|
|
Value *VisitUnaryCoawait(const UnaryOperator *E) {
|
|
|
|
|
return Visit(E->getSubExpr());
|
|
|
|
|
}
|
2007-08-24 13:35:26 +08:00
|
|
|
|
|
|
|
|
// Leaves.
|
|
|
|
|
Value *VisitIntegerLiteral(const IntegerLiteral *E) {
|
2011-04-20 06:55:03 +08:00
|
|
|
return Builder.getInt(E->getValue());
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2018-06-21 01:19:40 +08:00
|
|
|
Value *VisitFixedPointLiteral(const FixedPointLiteral *E) {
|
|
|
|
|
return Builder.getInt(E->getValue());
|
|
|
|
|
}
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitFloatingLiteral(const FloatingLiteral *E) {
|
2009-07-28 05:00:51 +08:00
|
|
|
return llvm::ConstantFP::get(VMContext, E->getValue());
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
Value *VisitCharacterLiteral(const CharacterLiteral *E) {
|
2009-07-25 07:12:58 +08:00
|
|
|
return llvm::ConstantInt::get(ConvertType(E->getType()), E->getValue());
|
2007-11-15 13:40:03 +08:00
|
|
|
}
|
2012-03-07 04:05:56 +08:00
|
|
|
Value *VisitObjCBoolLiteralExpr(const ObjCBoolLiteralExpr *E) {
|
|
|
|
|
return llvm::ConstantInt::get(ConvertType(E->getType()), E->getValue());
|
|
|
|
|
}
|
2007-11-15 13:40:03 +08:00
|
|
|
Value *VisitCXXBoolLiteralExpr(const CXXBoolLiteralExpr *E) {
|
2009-07-25 07:12:58 +08:00
|
|
|
return llvm::ConstantInt::get(ConvertType(E->getType()), E->getValue());
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2010-07-08 14:14:04 +08:00
|
|
|
Value *VisitCXXScalarValueInitExpr(const CXXScalarValueInitExpr *E) {
|
2010-05-23 01:45:10 +08:00
|
|
|
return EmitNullValue(E->getType());
|
2008-08-24 03:35:47 +08:00
|
|
|
}
|
2008-12-22 06:39:40 +08:00
|
|
|
Value *VisitGNUNullExpr(const GNUNullExpr *E) {
|
2010-05-23 01:45:10 +08:00
|
|
|
return EmitNullValue(E->getType());
|
2008-12-22 06:39:40 +08:00
|
|
|
}
|
2010-08-05 17:58:49 +08:00
|
|
|
Value *VisitOffsetOfExpr(OffsetOfExpr *E);
|
2011-03-12 03:24:49 +08:00
|
|
|
Value *VisitUnaryExprOrTypeTraitExpr(const UnaryExprOrTypeTraitExpr *E);
|
2008-08-05 00:51:22 +08:00
|
|
|
Value *VisitAddrLabelExpr(const AddrLabelExpr *E) {
|
2009-10-29 07:59:40 +08:00
|
|
|
llvm::Value *V = CGF.GetAddrOfLabel(E->getLabel());
|
|
|
|
|
return Builder.CreateBitCast(V, ConvertType(E->getType()));
|
2008-08-05 00:51:22 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-01-13 06:11:34 +08:00
|
|
|
Value *VisitSizeOfPackExpr(SizeOfPackExpr *E) {
|
2011-04-20 06:55:03 +08:00
|
|
|
return llvm::ConstantInt::get(ConvertType(E->getType()),E->getPackLength());
|
2011-01-13 06:11:34 +08:00
|
|
|
}
|
2011-02-16 16:02:54 +08:00
|
|
|
|
2011-11-06 17:01:30 +08:00
|
|
|
Value *VisitPseudoObjectExpr(PseudoObjectExpr *E) {
|
|
|
|
|
return CGF.EmitPseudoObjectRValue(E).getScalarVal();
|
|
|
|
|
}
|
|
|
|
|
|
2011-02-16 16:02:54 +08:00
|
|
|
Value *VisitOpaqueValueExpr(OpaqueValueExpr *E) {
|
2011-02-17 18:25:35 +08:00
|
|
|
if (E->isGLValue())
|
2018-03-20 09:47:58 +08:00
|
|
|
return EmitLoadOfLValue(CGF.getOrCreateOpaqueLValueMapping(E),
|
|
|
|
|
E->getExprLoc());
|
2011-02-16 16:02:54 +08:00
|
|
|
|
|
|
|
|
// Otherwise, assume the mapping is the scalar directly.
|
2018-03-20 09:47:58 +08:00
|
|
|
return CGF.getOrCreateOpaqueRValueMapping(E).getScalarVal();
|
2011-02-16 16:02:54 +08:00
|
|
|
}
|
2012-03-07 09:58:44 +08:00
|
|
|
|
2012-03-10 11:05:10 +08:00
|
|
|
// l-values.
|
2012-03-10 17:33:50 +08:00
|
|
|
Value *VisitDeclRefExpr(DeclRefExpr *E) {
|
2017-08-25 18:07:00 +08:00
|
|
|
if (CodeGenFunction::ConstantEmission Constant = CGF.tryEmitAsConstant(E))
|
2018-11-02 05:57:05 +08:00
|
|
|
return CGF.emitScalarConstant(Constant, E);
|
2012-03-10 17:33:50 +08:00
|
|
|
return EmitLoadOfLValue(E);
|
2012-03-10 11:05:10 +08:00
|
|
|
}
|
|
|
|
|
|
2009-09-09 21:00:44 +08:00
|
|
|
Value *VisitObjCSelectorExpr(ObjCSelectorExpr *E) {
|
|
|
|
|
return CGF.EmitObjCSelectorExpr(E);
|
2008-08-27 14:57:25 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
Value *VisitObjCProtocolExpr(ObjCProtocolExpr *E) {
|
|
|
|
|
return CGF.EmitObjCProtocolExpr(E);
|
2008-08-27 14:57:25 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
Value *VisitObjCIvarRefExpr(ObjCIvarRefExpr *E) {
|
2008-08-27 14:57:25 +08:00
|
|
|
return EmitLoadOfLValue(E);
|
|
|
|
|
}
|
|
|
|
|
Value *VisitObjCMessageExpr(ObjCMessageExpr *E) {
|
2013-07-26 14:16:11 +08:00
|
|
|
if (E->getMethodDecl() &&
|
2014-01-26 00:55:45 +08:00
|
|
|
E->getMethodDecl()->getReturnType()->isReferenceType())
|
2011-03-03 04:09:49 +08:00
|
|
|
return EmitLoadOfLValue(E);
|
2008-08-27 14:57:25 +08:00
|
|
|
return CGF.EmitObjCMessageExpr(E).getScalarVal();
|
2008-08-23 18:51:21 +08:00
|
|
|
}
|
|
|
|
|
|
2009-12-10 03:05:56 +08:00
|
|
|
Value *VisitObjCIsaExpr(ObjCIsaExpr *E) {
|
2009-12-10 07:35:29 +08:00
|
|
|
LValue LV = CGF.EmitObjCIsaExpr(E);
|
2013-10-02 10:29:49 +08:00
|
|
|
Value *V = CGF.EmitLoadOfLValue(LV, E->getExprLoc()).getScalarVal();
|
2009-12-10 03:05:56 +08:00
|
|
|
return V;
|
|
|
|
|
}
|
|
|
|
|
|
2017-02-24 05:08:08 +08:00
|
|
|
Value *VisitObjCAvailabilityCheckExpr(ObjCAvailabilityCheckExpr *E) {
|
|
|
|
|
VersionTuple Version = E->getVersion();
|
|
|
|
|
|
|
|
|
|
// If we're checking for a platform older than our minimum deployment
|
|
|
|
|
// target, we can fold the check away.
|
|
|
|
|
if (Version <= CGF.CGM.getTarget().getPlatformMinVersion())
|
|
|
|
|
return llvm::ConstantInt::get(Builder.getInt1Ty(), 1);
|
|
|
|
|
|
|
|
|
|
Optional<unsigned> Min = Version.getMinor(), SMin = Version.getSubminor();
|
|
|
|
|
llvm::Value *Args[] = {
|
|
|
|
|
llvm::ConstantInt::get(CGF.CGM.Int32Ty, Version.getMajor()),
|
|
|
|
|
llvm::ConstantInt::get(CGF.CGM.Int32Ty, Min ? *Min : 0),
|
|
|
|
|
llvm::ConstantInt::get(CGF.CGM.Int32Ty, SMin ? *SMin : 0),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
return CGF.EmitBuiltinAvailable(Args);
|
|
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitArraySubscriptExpr(ArraySubscriptExpr *E);
|
2008-05-15 03:38:39 +08:00
|
|
|
Value *VisitShuffleVectorExpr(ShuffleVectorExpr *E);
|
2013-09-18 11:29:45 +08:00
|
|
|
Value *VisitConvertVectorExpr(ConvertVectorExpr *E);
|
2009-11-26 11:22:21 +08:00
|
|
|
Value *VisitMemberExpr(MemberExpr *E);
|
2008-04-19 07:10:10 +08:00
|
|
|
Value *VisitExtVectorElementExpr(Expr *E) { return EmitLoadOfLValue(E); }
|
2008-10-27 07:53:12 +08:00
|
|
|
Value *VisitCompoundLiteralExpr(CompoundLiteralExpr *E) {
|
|
|
|
|
return EmitLoadOfLValue(E);
|
|
|
|
|
}
|
2007-10-25 01:18:43 +08:00
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
Value *VisitInitListExpr(InitListExpr *E);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2016-12-12 10:53:20 +08:00
|
|
|
Value *VisitArrayInitIndexExpr(ArrayInitIndexExpr *E) {
|
|
|
|
|
assert(CGF.getArrayInitIndex() &&
|
|
|
|
|
"ArrayInitIndexExpr not inside an ArrayInitLoopExpr?");
|
|
|
|
|
return CGF.getArrayInitIndex();
|
|
|
|
|
}
|
|
|
|
|
|
2009-01-30 01:44:32 +08:00
|
|
|
Value *VisitImplicitValueInitExpr(const ImplicitValueInitExpr *E) {
|
2012-12-21 11:17:28 +08:00
|
|
|
return EmitNullValue(E->getType());
|
2009-01-30 01:44:32 +08:00
|
|
|
}
|
2011-06-25 05:55:10 +08:00
|
|
|
Value *VisitExplicitCastExpr(ExplicitCastExpr *E) {
|
2015-10-20 12:24:12 +08:00
|
|
|
CGF.CGM.EmitExplicitCastExprType(E, &CGF);
|
2011-06-25 05:55:10 +08:00
|
|
|
return VisitCastExpr(E);
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2011-06-25 05:55:10 +08:00
|
|
|
Value *VisitCastExpr(CastExpr *E);
|
2007-08-24 13:35:26 +08:00
|
|
|
|
|
|
|
|
Value *VisitCallExpr(const CallExpr *E) {
|
2015-02-26 01:36:15 +08:00
|
|
|
if (E->getCallReturnType(CGF.getContext())->isReferenceType())
|
2009-05-27 11:37:57 +08:00
|
|
|
return EmitLoadOfLValue(E);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2014-10-04 23:26:49 +08:00
|
|
|
Value *V = CGF.EmitCallExpr(E).getScalarVal();
|
|
|
|
|
|
|
|
|
|
EmitLValueAlignmentAssumption(E, V);
|
|
|
|
|
return V;
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2008-08-23 11:46:30 +08:00
|
|
|
|
2007-09-01 06:09:40 +08:00
|
|
|
Value *VisitStmtExpr(const StmtExpr *E);
|
2009-02-22 04:00:35 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Unary Operators.
|
|
|
|
|
Value *VisitUnaryPostDec(const UnaryOperator *E) {
|
2010-06-27 06:09:34 +08:00
|
|
|
LValue LV = EmitLValue(E->getSubExpr());
|
|
|
|
|
return EmitScalarPrePostIncDec(E, LV, false, false);
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
Value *VisitUnaryPostInc(const UnaryOperator *E) {
|
2010-06-27 06:09:34 +08:00
|
|
|
LValue LV = EmitLValue(E->getSubExpr());
|
|
|
|
|
return EmitScalarPrePostIncDec(E, LV, true, false);
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
Value *VisitUnaryPreDec(const UnaryOperator *E) {
|
2010-06-27 06:09:34 +08:00
|
|
|
LValue LV = EmitLValue(E->getSubExpr());
|
|
|
|
|
return EmitScalarPrePostIncDec(E, LV, false, true);
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
Value *VisitUnaryPreInc(const UnaryOperator *E) {
|
2010-06-27 06:09:34 +08:00
|
|
|
LValue LV = EmitLValue(E->getSubExpr());
|
|
|
|
|
return EmitScalarPrePostIncDec(E, LV, true, true);
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2010-06-27 06:09:34 +08:00
|
|
|
|
2015-04-23 09:50:45 +08:00
|
|
|
llvm::Value *EmitIncDecConsiderOverflowBehavior(const UnaryOperator *E,
|
|
|
|
|
llvm::Value *InVal,
|
|
|
|
|
bool IsInc);
|
2011-02-07 10:17:30 +08:00
|
|
|
|
2010-06-27 06:09:34 +08:00
|
|
|
llvm::Value *EmitScalarPrePostIncDec(const UnaryOperator *E, LValue LV,
|
|
|
|
|
bool isInc, bool isPre);
|
|
|
|
|
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitUnaryAddrOf(const UnaryOperator *E) {
|
2011-02-03 16:15:49 +08:00
|
|
|
if (isa<MemberPointerType>(E->getType())) // never sugared
|
|
|
|
|
return CGF.CGM.getMemberPointerConstant(E);
|
|
|
|
|
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
return EmitLValue(E->getSubExpr()).getPointer();
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2010-12-04 20:43:24 +08:00
|
|
|
Value *VisitUnaryDeref(const UnaryOperator *E) {
|
|
|
|
|
if (E->getType()->isVoidType())
|
|
|
|
|
return Visit(E->getSubExpr()); // the actual value should be unused
|
|
|
|
|
return EmitLoadOfLValue(E);
|
|
|
|
|
}
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitUnaryPlus(const UnaryOperator *E) {
|
2009-05-29 23:46:01 +08:00
|
|
|
// This differs from gcc, though, most likely due to a bug in gcc.
|
|
|
|
|
TestAndClearIgnoreResultAssign();
|
2007-08-24 13:35:26 +08:00
|
|
|
return Visit(E->getSubExpr());
|
|
|
|
|
}
|
|
|
|
|
Value *VisitUnaryMinus (const UnaryOperator *E);
|
|
|
|
|
Value *VisitUnaryNot (const UnaryOperator *E);
|
|
|
|
|
Value *VisitUnaryLNot (const UnaryOperator *E);
|
2007-08-25 05:20:17 +08:00
|
|
|
Value *VisitUnaryReal (const UnaryOperator *E);
|
|
|
|
|
Value *VisitUnaryImag (const UnaryOperator *E);
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitUnaryExtension(const UnaryOperator *E) {
|
|
|
|
|
return Visit(E->getSubExpr());
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-04-15 00:58:56 +08:00
|
|
|
// C++
|
2011-08-09 08:37:14 +08:00
|
|
|
Value *VisitMaterializeTemporaryExpr(const MaterializeTemporaryExpr *E) {
|
2011-08-14 12:50:34 +08:00
|
|
|
return EmitLoadOfLValue(E);
|
2011-08-09 08:37:14 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2008-04-08 12:40:51 +08:00
|
|
|
Value *VisitCXXDefaultArgExpr(CXXDefaultArgExpr *DAE) {
|
|
|
|
|
return Visit(DAE->getExpr());
|
|
|
|
|
}
|
2013-04-21 06:23:05 +08:00
|
|
|
Value *VisitCXXDefaultInitExpr(CXXDefaultInitExpr *DIE) {
|
|
|
|
|
CodeGenFunction::CXXDefaultInitExprScope Scope(CGF);
|
|
|
|
|
return Visit(DIE->getExpr());
|
|
|
|
|
}
|
2009-04-15 00:58:56 +08:00
|
|
|
Value *VisitCXXThisExpr(CXXThisExpr *TE) {
|
|
|
|
|
return CGF.LoadCXXThis();
|
2009-09-09 21:00:44 +08:00
|
|
|
}
|
|
|
|
|
|
2017-03-07 06:18:34 +08:00
|
|
|
Value *VisitExprWithCleanups(ExprWithCleanups *E);
|
2009-05-31 09:40:14 +08:00
|
|
|
Value *VisitCXXNewExpr(const CXXNewExpr *E) {
|
|
|
|
|
return CGF.EmitCXXNewExpr(E);
|
|
|
|
|
}
|
2009-08-17 05:13:42 +08:00
|
|
|
Value *VisitCXXDeleteExpr(const CXXDeleteExpr *E) {
|
|
|
|
|
CGF.EmitCXXDeleteExpr(E);
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2009-08-17 05:13:42 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2013-12-14 04:49:58 +08:00
|
|
|
Value *VisitTypeTraitExpr(const TypeTraitExpr *E) {
|
2010-12-09 06:35:30 +08:00
|
|
|
return llvm::ConstantInt::get(ConvertType(E->getType()), E->getValue());
|
2010-12-07 08:08:36 +08:00
|
|
|
}
|
|
|
|
|
|
2011-04-28 08:16:57 +08:00
|
|
|
Value *VisitArrayTypeTraitExpr(const ArrayTypeTraitExpr *E) {
|
|
|
|
|
return llvm::ConstantInt::get(Builder.getInt32Ty(), E->getValue());
|
|
|
|
|
}
|
|
|
|
|
|
2011-04-25 14:54:41 +08:00
|
|
|
Value *VisitExpressionTraitExpr(const ExpressionTraitExpr *E) {
|
|
|
|
|
return llvm::ConstantInt::get(Builder.getInt1Ty(), E->getValue());
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-05 01:36:40 +08:00
|
|
|
Value *VisitCXXPseudoDestructorExpr(const CXXPseudoDestructorExpr *E) {
|
|
|
|
|
// C++ [expr.pseudo]p1:
|
2009-09-09 21:00:44 +08:00
|
|
|
// The result shall only be used as the operand for the function call
|
2009-09-05 01:36:40 +08:00
|
|
|
// operator (), and the result of such a call has type void. The only
|
|
|
|
|
// effect is the evaluation of the postfix-expression before the dot or
|
|
|
|
|
// arrow.
|
|
|
|
|
CGF.EmitScalarExpr(E->getBase());
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2009-09-05 01:36:40 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2009-09-15 12:39:46 +08:00
|
|
|
Value *VisitCXXNullPtrLiteralExpr(const CXXNullPtrLiteralExpr *E) {
|
2010-05-23 01:45:10 +08:00
|
|
|
return EmitNullValue(E->getType());
|
2009-09-15 12:39:46 +08:00
|
|
|
}
|
2009-10-30 09:42:31 +08:00
|
|
|
|
|
|
|
|
Value *VisitCXXThrowExpr(const CXXThrowExpr *E) {
|
|
|
|
|
CGF.EmitCXXThrowExpr(E);
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2009-10-30 09:42:31 +08:00
|
|
|
}
|
|
|
|
|
|
2010-09-11 05:04:00 +08:00
|
|
|
Value *VisitCXXNoexceptExpr(const CXXNoexceptExpr *E) {
|
2011-04-20 06:55:03 +08:00
|
|
|
return Builder.getInt1(E->getValue());
|
2010-09-11 05:04:00 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Binary Operators.
|
|
|
|
|
Value *EmitMul(const BinOpInfo &Ops) {
|
2011-05-21 00:38:50 +08:00
|
|
|
if (Ops.Ty->isSignedIntegerOrEnumerationType()) {
|
2012-11-02 06:30:59 +08:00
|
|
|
switch (CGF.getLangOpts().getSignedOverflowBehavior()) {
|
2010-06-27 05:25:03 +08:00
|
|
|
case LangOptions::SOB_Defined:
|
|
|
|
|
return Builder.CreateMul(Ops.LHS, Ops.RHS, "mul");
|
2012-08-25 08:32:28 +08:00
|
|
|
case LangOptions::SOB_Undefined:
|
2014-11-08 06:29:38 +08:00
|
|
|
if (!CGF.SanOpts.has(SanitizerKind::SignedIntegerOverflow))
|
2012-08-25 08:32:28 +08:00
|
|
|
return Builder.CreateNSWMul(Ops.LHS, Ops.RHS, "mul");
|
Fix clang -Wimplicit-fallthrough warnings across llvm, NFC
This patch should not introduce any behavior changes. It consists of
mostly one of two changes:
1. Replacing fall through comments with the LLVM_FALLTHROUGH macro
2. Inserting 'break' before falling through into a case block consisting
of only 'break'.
We were already using this warning with GCC, but its warning behaves
slightly differently. In this patch, the following differences are
relevant:
1. GCC recognizes comments that say "fall through" as annotations, clang
doesn't
2. GCC doesn't warn on "case N: foo(); default: break;", clang does
3. GCC doesn't warn when the case contains a switch, but falls through
the outer case.
I will enable the warning separately in a follow-up patch so that it can
be cleanly reverted if necessary.
Reviewers: alexfh, rsmith, lattner, rtrieu, EricWF, bollu
Differential Revision: https://reviews.llvm.org/D53950
llvm-svn: 345882
2018-11-02 03:54:45 +08:00
|
|
|
LLVM_FALLTHROUGH;
|
2010-06-27 05:25:03 +08:00
|
|
|
case LangOptions::SOB_Trapping:
|
2017-02-25 08:43:36 +08:00
|
|
|
if (CanElideOverflowCheck(CGF.getContext(), Ops))
|
|
|
|
|
return Builder.CreateNSWMul(Ops.LHS, Ops.RHS, "mul");
|
2010-06-27 05:25:03 +08:00
|
|
|
return EmitOverflowCheckedBinOp(Ops);
|
|
|
|
|
}
|
|
|
|
|
}
|
2012-11-06 06:21:05 +08:00
|
|
|
|
2014-11-08 06:29:38 +08:00
|
|
|
if (Ops.Ty->isUnsignedIntegerType() &&
|
2017-02-25 08:43:36 +08:00
|
|
|
CGF.SanOpts.has(SanitizerKind::UnsignedIntegerOverflow) &&
|
|
|
|
|
!CanElideOverflowCheck(CGF.getContext(), Ops))
|
2012-11-27 23:01:55 +08:00
|
|
|
return EmitOverflowCheckedBinOp(Ops);
|
|
|
|
|
|
2017-04-05 05:18:30 +08:00
|
|
|
if (Ops.LHS->getType()->isFPOrFPVectorTy()) {
|
|
|
|
|
Value *V = Builder.CreateFMul(Ops.LHS, Ops.RHS, "mul");
|
|
|
|
|
return propagateFMFlags(V, Ops);
|
|
|
|
|
}
|
2007-08-24 13:35:26 +08:00
|
|
|
return Builder.CreateMul(Ops.LHS, Ops.RHS, "mul");
|
|
|
|
|
}
|
2009-04-02 04:28:16 +08:00
|
|
|
/// Create a binary op that checks for overflow.
|
|
|
|
|
/// Currently only supports +, - and *.
|
|
|
|
|
Value *EmitOverflowCheckedBinOp(const BinOpInfo &Ops);
|
2012-09-08 10:08:36 +08:00
|
|
|
|
2010-09-12 05:47:09 +08:00
|
|
|
// Check for undefined division and modulus behaviors.
|
2013-07-26 14:16:11 +08:00
|
|
|
void EmitUndefinedBehaviorIntegerDivAndRemCheck(const BinOpInfo &Ops,
|
2010-09-12 05:47:09 +08:00
|
|
|
llvm::Value *Zero,bool isDiv);
|
2013-01-08 00:43:27 +08:00
|
|
|
// Common helper for getting how wide LHS of shift is.
|
|
|
|
|
static Value *GetWidthMinusOneValue(Value* LHS,Value* RHS);
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *EmitDiv(const BinOpInfo &Ops);
|
|
|
|
|
Value *EmitRem(const BinOpInfo &Ops);
|
|
|
|
|
Value *EmitAdd(const BinOpInfo &Ops);
|
|
|
|
|
Value *EmitSub(const BinOpInfo &Ops);
|
|
|
|
|
Value *EmitShl(const BinOpInfo &Ops);
|
|
|
|
|
Value *EmitShr(const BinOpInfo &Ops);
|
|
|
|
|
Value *EmitAnd(const BinOpInfo &Ops) {
|
|
|
|
|
return Builder.CreateAnd(Ops.LHS, Ops.RHS, "and");
|
|
|
|
|
}
|
|
|
|
|
Value *EmitXor(const BinOpInfo &Ops) {
|
|
|
|
|
return Builder.CreateXor(Ops.LHS, Ops.RHS, "xor");
|
|
|
|
|
}
|
|
|
|
|
Value *EmitOr (const BinOpInfo &Ops) {
|
|
|
|
|
return Builder.CreateOr(Ops.LHS, Ops.RHS, "or");
|
|
|
|
|
}
|
|
|
|
|
|
2019-01-17 02:13:59 +08:00
|
|
|
// Helper functions for fixed point binary operations.
|
2019-01-17 03:53:50 +08:00
|
|
|
Value *EmitFixedPointBinOp(const BinOpInfo &Ops);
|
2019-01-17 02:13:59 +08:00
|
|
|
|
2007-08-25 05:00:35 +08:00
|
|
|
BinOpInfo EmitBinOps(const BinaryOperator *E);
|
2010-04-23 12:16:32 +08:00
|
|
|
LValue EmitCompoundAssignLValue(const CompoundAssignOperator *E,
|
|
|
|
|
Value *(ScalarExprEmitter::*F)(const BinOpInfo &),
|
2010-06-30 06:00:45 +08:00
|
|
|
Value *&Result);
|
2010-04-23 12:16:32 +08:00
|
|
|
|
2007-08-27 05:41:21 +08:00
|
|
|
Value *EmitCompoundAssign(const CompoundAssignOperator *E,
|
2007-08-25 05:00:35 +08:00
|
|
|
Value *(ScalarExprEmitter::*F)(const BinOpInfo &));
|
|
|
|
|
|
|
|
|
|
// Binary operators and binary compound assignment operators.
|
|
|
|
|
#define HANDLEBINOP(OP) \
|
2007-08-27 05:41:21 +08:00
|
|
|
Value *VisitBin ## OP(const BinaryOperator *E) { \
|
|
|
|
|
return Emit ## OP(EmitBinOps(E)); \
|
|
|
|
|
} \
|
|
|
|
|
Value *VisitBin ## OP ## Assign(const CompoundAssignOperator *E) { \
|
|
|
|
|
return EmitCompoundAssign(E, &ScalarExprEmitter::Emit ## OP); \
|
2007-08-25 05:00:35 +08:00
|
|
|
}
|
2009-12-20 01:50:07 +08:00
|
|
|
HANDLEBINOP(Mul)
|
|
|
|
|
HANDLEBINOP(Div)
|
|
|
|
|
HANDLEBINOP(Rem)
|
|
|
|
|
HANDLEBINOP(Add)
|
|
|
|
|
HANDLEBINOP(Sub)
|
|
|
|
|
HANDLEBINOP(Shl)
|
|
|
|
|
HANDLEBINOP(Shr)
|
|
|
|
|
HANDLEBINOP(And)
|
|
|
|
|
HANDLEBINOP(Xor)
|
|
|
|
|
HANDLEBINOP(Or)
|
2007-08-25 05:00:35 +08:00
|
|
|
#undef HANDLEBINOP
|
2008-08-06 10:00:38 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Comparisons.
|
2015-12-16 14:24:28 +08:00
|
|
|
Value *EmitCompare(const BinaryOperator *E, llvm::CmpInst::Predicate UICmpOpc,
|
|
|
|
|
llvm::CmpInst::Predicate SICmpOpc,
|
|
|
|
|
llvm::CmpInst::Predicate FCmpOpc);
|
2007-08-24 13:35:26 +08:00
|
|
|
#define VISITCOMP(CODE, UI, SI, FP) \
|
|
|
|
|
Value *VisitBin##CODE(const BinaryOperator *E) { \
|
|
|
|
|
return EmitCompare(E, llvm::ICmpInst::UI, llvm::ICmpInst::SI, \
|
|
|
|
|
llvm::FCmpInst::FP); }
|
2009-12-20 01:50:07 +08:00
|
|
|
VISITCOMP(LT, ICMP_ULT, ICMP_SLT, FCMP_OLT)
|
|
|
|
|
VISITCOMP(GT, ICMP_UGT, ICMP_SGT, FCMP_OGT)
|
|
|
|
|
VISITCOMP(LE, ICMP_ULE, ICMP_SLE, FCMP_OLE)
|
|
|
|
|
VISITCOMP(GE, ICMP_UGE, ICMP_SGE, FCMP_OGE)
|
|
|
|
|
VISITCOMP(EQ, ICMP_EQ , ICMP_EQ , FCMP_OEQ)
|
|
|
|
|
VISITCOMP(NE, ICMP_NE , ICMP_NE , FCMP_UNE)
|
2007-08-24 13:35:26 +08:00
|
|
|
#undef VISITCOMP
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitBinAssign (const BinaryOperator *E);
|
|
|
|
|
|
|
|
|
|
Value *VisitBinLAnd (const BinaryOperator *E);
|
|
|
|
|
Value *VisitBinLOr (const BinaryOperator *E);
|
|
|
|
|
Value *VisitBinComma (const BinaryOperator *E);
|
|
|
|
|
|
2009-11-18 17:41:26 +08:00
|
|
|
Value *VisitBinPtrMemD(const Expr *E) { return EmitLoadOfLValue(E); }
|
|
|
|
|
Value *VisitBinPtrMemI(const Expr *E) { return EmitLoadOfLValue(E); }
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Other Operators.
|
2009-02-13 02:29:15 +08:00
|
|
|
Value *VisitBlockExpr(const BlockExpr *BE);
|
2011-02-17 18:25:35 +08:00
|
|
|
Value *VisitAbstractConditionalOperator(const AbstractConditionalOperator *);
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitChooseExpr(ChooseExpr *CE);
|
2007-10-16 04:28:48 +08:00
|
|
|
Value *VisitVAArgExpr(VAArgExpr *VE);
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *VisitObjCStringLiteral(const ObjCStringLiteral *E) {
|
|
|
|
|
return CGF.EmitObjCStringLiteral(E);
|
|
|
|
|
}
|
2012-04-19 08:25:12 +08:00
|
|
|
Value *VisitObjCBoxedExpr(ObjCBoxedExpr *E) {
|
|
|
|
|
return CGF.EmitObjCBoxedExpr(E);
|
2012-03-07 04:05:56 +08:00
|
|
|
}
|
|
|
|
|
Value *VisitObjCArrayLiteral(ObjCArrayLiteral *E) {
|
|
|
|
|
return CGF.EmitObjCArrayLiteral(E);
|
|
|
|
|
}
|
|
|
|
|
Value *VisitObjCDictionaryLiteral(ObjCDictionaryLiteral *E) {
|
|
|
|
|
return CGF.EmitObjCDictionaryLiteral(E);
|
|
|
|
|
}
|
2011-06-04 08:47:47 +08:00
|
|
|
Value *VisitAsTypeExpr(AsTypeExpr *CE);
|
2011-10-11 10:20:01 +08:00
|
|
|
Value *VisitAtomicExpr(AtomicExpr *AE);
|
2007-08-24 13:35:26 +08:00
|
|
|
};
|
|
|
|
|
} // end anonymous namespace.
|
|
|
|
|
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
// Utilities
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
2007-08-27 00:42:57 +08:00
|
|
|
/// EmitConversionToBool - Convert the specified expression value to a
|
2007-08-27 01:25:57 +08:00
|
|
|
/// boolean (i1) truth value. This is equivalent to "Val != 0".
|
2007-08-27 00:42:57 +08:00
|
|
|
Value *ScalarExprEmitter::EmitConversionToBool(Value *Src, QualType SrcType) {
|
2009-10-23 04:10:53 +08:00
|
|
|
assert(SrcType.isCanonical() && "EmitScalarConversion strips typedefs");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-11-15 17:13:47 +08:00
|
|
|
if (SrcType->isRealFloatingType())
|
|
|
|
|
return EmitFloatToBoolConversion(Src);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-08-23 09:21:21 +08:00
|
|
|
if (const MemberPointerType *MPT = dyn_cast<MemberPointerType>(SrcType))
|
|
|
|
|
return CGF.CGM.getCXXABI().EmitMemberPointerIsNotNull(CGF, Src, MPT);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2008-08-25 18:38:11 +08:00
|
|
|
assert((SrcType->isIntegerType() || isa<llvm::PointerType>(Src->getType())) &&
|
2007-08-27 00:42:57 +08:00
|
|
|
"Unknown scalar type to convert");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-11-15 17:13:47 +08:00
|
|
|
if (isa<llvm::IntegerType>(Src->getType()))
|
|
|
|
|
return EmitIntToBoolConversion(Src);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-11-15 17:13:47 +08:00
|
|
|
assert(isa<llvm::PointerType>(Src->getType()));
|
2016-12-15 16:09:08 +08:00
|
|
|
return EmitPointerToBoolConversion(Src, SrcType);
|
2007-08-27 00:42:57 +08:00
|
|
|
}
|
|
|
|
|
|
2015-08-11 12:19:28 +08:00
|
|
|
void ScalarExprEmitter::EmitFloatConversionCheck(
|
|
|
|
|
Value *OrigSrc, QualType OrigSrcType, Value *Src, QualType SrcType,
|
|
|
|
|
QualType DstType, llvm::Type *DstTy, SourceLocation Loc) {
|
2014-07-18 02:46:27 +08:00
|
|
|
CodeGenFunction::SanitizerScope SanScope(&CGF);
|
2012-10-13 06:57:06 +08:00
|
|
|
using llvm::APFloat;
|
|
|
|
|
using llvm::APSInt;
|
|
|
|
|
|
|
|
|
|
llvm::Type *SrcTy = Src->getType();
|
|
|
|
|
|
2014-05-21 13:09:00 +08:00
|
|
|
llvm::Value *Check = nullptr;
|
2012-10-13 06:57:06 +08:00
|
|
|
if (llvm::IntegerType *IntTy = dyn_cast<llvm::IntegerType>(SrcTy)) {
|
|
|
|
|
// Integer to floating-point. This can fail for unsigned short -> __half
|
|
|
|
|
// or unsigned __int128 -> float.
|
|
|
|
|
assert(DstType->isFloatingType());
|
|
|
|
|
bool SrcIsUnsigned = OrigSrcType->isUnsignedIntegerOrEnumerationType();
|
|
|
|
|
|
|
|
|
|
APFloat LargestFloat =
|
|
|
|
|
APFloat::getLargest(CGF.getContext().getFloatTypeSemantics(DstType));
|
|
|
|
|
APSInt LargestInt(IntTy->getBitWidth(), SrcIsUnsigned);
|
|
|
|
|
|
|
|
|
|
bool IsExact;
|
|
|
|
|
if (LargestFloat.convertToInteger(LargestInt, APFloat::rmTowardZero,
|
|
|
|
|
&IsExact) != APFloat::opOK)
|
|
|
|
|
// The range of representable values of this floating point type includes
|
|
|
|
|
// all values of this integer type. Don't need an overflow check.
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
llvm::Value *Max = llvm::ConstantInt::get(VMContext, LargestInt);
|
|
|
|
|
if (SrcIsUnsigned)
|
|
|
|
|
Check = Builder.CreateICmpULE(Src, Max);
|
|
|
|
|
else {
|
|
|
|
|
llvm::Value *Min = llvm::ConstantInt::get(VMContext, -LargestInt);
|
|
|
|
|
llvm::Value *GE = Builder.CreateICmpSGE(Src, Min);
|
|
|
|
|
llvm::Value *LE = Builder.CreateICmpSLE(Src, Max);
|
|
|
|
|
Check = Builder.CreateAnd(GE, LE);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
const llvm::fltSemantics &SrcSema =
|
|
|
|
|
CGF.getContext().getFloatTypeSemantics(OrigSrcType);
|
|
|
|
|
if (isa<llvm::IntegerType>(DstTy)) {
|
2013-03-28 07:20:25 +08:00
|
|
|
// Floating-point to integer. This has undefined behavior if the source is
|
|
|
|
|
// +-Inf, NaN, or doesn't fit into the destination type (after truncation
|
|
|
|
|
// to an integer).
|
2012-10-13 06:57:06 +08:00
|
|
|
unsigned Width = CGF.getContext().getIntWidth(DstType);
|
|
|
|
|
bool Unsigned = DstType->isUnsignedIntegerOrEnumerationType();
|
|
|
|
|
|
|
|
|
|
APSInt Min = APSInt::getMinValue(Width, Unsigned);
|
2013-03-28 07:20:25 +08:00
|
|
|
APFloat MinSrc(SrcSema, APFloat::uninitialized);
|
2012-10-13 06:57:06 +08:00
|
|
|
if (MinSrc.convertFromAPInt(Min, !Unsigned, APFloat::rmTowardZero) &
|
|
|
|
|
APFloat::opOverflow)
|
|
|
|
|
// Don't need an overflow check for lower bound. Just check for
|
|
|
|
|
// -Inf/NaN.
|
2013-03-19 08:01:12 +08:00
|
|
|
MinSrc = APFloat::getInf(SrcSema, true);
|
|
|
|
|
else
|
|
|
|
|
// Find the largest value which is too small to represent (before
|
|
|
|
|
// truncation toward zero).
|
|
|
|
|
MinSrc.subtract(APFloat(SrcSema, 1), APFloat::rmTowardNegative);
|
2012-10-13 06:57:06 +08:00
|
|
|
|
|
|
|
|
APSInt Max = APSInt::getMaxValue(Width, Unsigned);
|
2013-03-28 07:20:25 +08:00
|
|
|
APFloat MaxSrc(SrcSema, APFloat::uninitialized);
|
2012-10-13 06:57:06 +08:00
|
|
|
if (MaxSrc.convertFromAPInt(Max, !Unsigned, APFloat::rmTowardZero) &
|
|
|
|
|
APFloat::opOverflow)
|
|
|
|
|
// Don't need an overflow check for upper bound. Just check for
|
|
|
|
|
// +Inf/NaN.
|
2013-03-19 08:01:12 +08:00
|
|
|
MaxSrc = APFloat::getInf(SrcSema, false);
|
|
|
|
|
else
|
|
|
|
|
// Find the smallest value which is too large to represent (before
|
|
|
|
|
// truncation toward zero).
|
|
|
|
|
MaxSrc.add(APFloat(SrcSema, 1), APFloat::rmTowardPositive);
|
2012-10-13 06:57:06 +08:00
|
|
|
|
2013-03-28 07:20:25 +08:00
|
|
|
// If we're converting from __half, convert the range to float to match
|
|
|
|
|
// the type of src.
|
|
|
|
|
if (OrigSrcType->isHalfType()) {
|
|
|
|
|
const llvm::fltSemantics &Sema =
|
|
|
|
|
CGF.getContext().getFloatTypeSemantics(SrcType);
|
|
|
|
|
bool IsInexact;
|
|
|
|
|
MinSrc.convert(Sema, APFloat::rmTowardZero, &IsInexact);
|
|
|
|
|
MaxSrc.convert(Sema, APFloat::rmTowardZero, &IsInexact);
|
|
|
|
|
}
|
2012-10-13 06:57:06 +08:00
|
|
|
|
2013-03-19 08:01:12 +08:00
|
|
|
llvm::Value *GE =
|
|
|
|
|
Builder.CreateFCmpOGT(Src, llvm::ConstantFP::get(VMContext, MinSrc));
|
|
|
|
|
llvm::Value *LE =
|
|
|
|
|
Builder.CreateFCmpOLT(Src, llvm::ConstantFP::get(VMContext, MaxSrc));
|
|
|
|
|
Check = Builder.CreateAnd(GE, LE);
|
|
|
|
|
} else {
|
2013-03-28 07:20:25 +08:00
|
|
|
// FIXME: Maybe split this sanitizer out from float-cast-overflow.
|
|
|
|
|
//
|
|
|
|
|
// Floating-point to floating-point. This has undefined behavior if the
|
|
|
|
|
// source is not in the range of representable values of the destination
|
|
|
|
|
// type. The C and C++ standards are spectacularly unclear here. We
|
|
|
|
|
// diagnose finite out-of-range conversions, but allow infinities and NaNs
|
|
|
|
|
// to convert to the corresponding value in the smaller type.
|
|
|
|
|
//
|
|
|
|
|
// C11 Annex F gives all such conversions defined behavior for IEC 60559
|
|
|
|
|
// conforming implementations. Unfortunately, LLVM's fptrunc instruction
|
|
|
|
|
// does not.
|
|
|
|
|
|
|
|
|
|
// Converting from a lower rank to a higher rank can never have
|
|
|
|
|
// undefined behavior, since higher-rank types must have a superset
|
|
|
|
|
// of values of lower-rank types.
|
|
|
|
|
if (CGF.getContext().getFloatingTypeOrder(OrigSrcType, DstType) != 1)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
assert(!OrigSrcType->isHalfType() &&
|
|
|
|
|
"should not check conversion from __half, it has the lowest rank");
|
|
|
|
|
|
|
|
|
|
const llvm::fltSemantics &DstSema =
|
|
|
|
|
CGF.getContext().getFloatTypeSemantics(DstType);
|
|
|
|
|
APFloat MinBad = APFloat::getLargest(DstSema, false);
|
|
|
|
|
APFloat MaxBad = APFloat::getInf(DstSema, false);
|
|
|
|
|
|
|
|
|
|
bool IsInexact;
|
|
|
|
|
MinBad.convert(SrcSema, APFloat::rmTowardZero, &IsInexact);
|
|
|
|
|
MaxBad.convert(SrcSema, APFloat::rmTowardZero, &IsInexact);
|
|
|
|
|
|
|
|
|
|
Value *AbsSrc = CGF.EmitNounwindRuntimeCall(
|
|
|
|
|
CGF.CGM.getIntrinsic(llvm::Intrinsic::fabs, Src->getType()), Src);
|
2013-03-19 08:01:12 +08:00
|
|
|
llvm::Value *GE =
|
2013-03-28 07:20:25 +08:00
|
|
|
Builder.CreateFCmpOGT(AbsSrc, llvm::ConstantFP::get(VMContext, MinBad));
|
2013-03-19 08:01:12 +08:00
|
|
|
llvm::Value *LE =
|
2013-03-28 07:20:25 +08:00
|
|
|
Builder.CreateFCmpOLT(AbsSrc, llvm::ConstantFP::get(VMContext, MaxBad));
|
|
|
|
|
Check = Builder.CreateNot(Builder.CreateAnd(GE, LE));
|
2013-03-19 08:01:12 +08:00
|
|
|
}
|
2012-10-13 06:57:06 +08:00
|
|
|
}
|
|
|
|
|
|
2015-08-11 12:19:28 +08:00
|
|
|
llvm::Constant *StaticArgs[] = {CGF.EmitCheckSourceLocation(Loc),
|
|
|
|
|
CGF.EmitCheckTypeDescriptor(OrigSrcType),
|
|
|
|
|
CGF.EmitCheckTypeDescriptor(DstType)};
|
2014-11-12 06:03:54 +08:00
|
|
|
CGF.EmitCheck(std::make_pair(Check, SanitizerKind::FloatCastOverflow),
|
2016-12-13 00:18:40 +08:00
|
|
|
SanitizerHandler::FloatCastOverflow, StaticArgs, OrigSrc);
|
2012-10-13 06:57:06 +08:00
|
|
|
}
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
// Should be called within CodeGenFunction::SanitizerScope RAII scope.
|
|
|
|
|
// Returns 'i1 false' when the truncation Src -> Dst was lossy.
|
|
|
|
|
static std::pair<ScalarExprEmitter::ImplicitConversionCheckKind,
|
|
|
|
|
std::pair<llvm::Value *, SanitizerMask>>
|
|
|
|
|
EmitIntegerTruncationCheckHelper(Value *Src, QualType SrcType, Value *Dst,
|
|
|
|
|
QualType DstType, CGBuilderTy &Builder) {
|
|
|
|
|
llvm::Type *SrcTy = Src->getType();
|
|
|
|
|
llvm::Type *DstTy = Dst->getType();
|
2018-10-31 07:01:15 +08:00
|
|
|
(void)DstTy; // Only used in assert()
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
|
|
|
|
|
// This should be truncation of integral types.
|
|
|
|
|
assert(Src != Dst);
|
|
|
|
|
assert(SrcTy->getScalarSizeInBits() > Dst->getType()->getScalarSizeInBits());
|
|
|
|
|
assert(isa<llvm::IntegerType>(SrcTy) && isa<llvm::IntegerType>(DstTy) &&
|
|
|
|
|
"non-integer llvm type");
|
|
|
|
|
|
|
|
|
|
bool SrcSigned = SrcType->isSignedIntegerOrEnumerationType();
|
|
|
|
|
bool DstSigned = DstType->isSignedIntegerOrEnumerationType();
|
|
|
|
|
|
|
|
|
|
// If both (src and dst) types are unsigned, then it's an unsigned truncation.
|
|
|
|
|
// Else, it is a signed truncation.
|
|
|
|
|
ScalarExprEmitter::ImplicitConversionCheckKind Kind;
|
|
|
|
|
SanitizerMask Mask;
|
|
|
|
|
if (!SrcSigned && !DstSigned) {
|
|
|
|
|
Kind = ScalarExprEmitter::ICCK_UnsignedIntegerTruncation;
|
|
|
|
|
Mask = SanitizerKind::ImplicitUnsignedIntegerTruncation;
|
|
|
|
|
} else {
|
|
|
|
|
Kind = ScalarExprEmitter::ICCK_SignedIntegerTruncation;
|
|
|
|
|
Mask = SanitizerKind::ImplicitSignedIntegerTruncation;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
llvm::Value *Check = nullptr;
|
|
|
|
|
// 1. Extend the truncated value back to the same width as the Src.
|
|
|
|
|
Check = Builder.CreateIntCast(Dst, SrcTy, DstSigned, "anyext");
|
|
|
|
|
// 2. Equality-compare with the original source value
|
|
|
|
|
Check = Builder.CreateICmpEQ(Check, Src, "truncheck");
|
|
|
|
|
// If the comparison result is 'i1 false', then the truncation was lossy.
|
|
|
|
|
return std::make_pair(Kind, std::make_pair(Check, Mask));
|
|
|
|
|
}
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
void ScalarExprEmitter::EmitIntegerTruncationCheck(Value *Src, QualType SrcType,
|
|
|
|
|
Value *Dst, QualType DstType,
|
|
|
|
|
SourceLocation Loc) {
|
2018-10-11 17:09:50 +08:00
|
|
|
if (!CGF.SanOpts.hasOneOf(SanitizerKind::ImplicitIntegerTruncation))
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
// We only care about int->int conversions here.
|
|
|
|
|
// We ignore conversions to/from pointer and/or bool.
|
|
|
|
|
if (!(SrcType->isIntegerType() && DstType->isIntegerType()))
|
|
|
|
|
return;
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
unsigned SrcBits = Src->getType()->getScalarSizeInBits();
|
|
|
|
|
unsigned DstBits = Dst->getType()->getScalarSizeInBits();
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
// This must be truncation. Else we do not care.
|
|
|
|
|
if (SrcBits <= DstBits)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
assert(!DstType->isBooleanType() && "we should not get here with booleans.");
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
// If the integer sign change sanitizer is enabled,
|
|
|
|
|
// and we are truncating from larger unsigned type to smaller signed type,
|
|
|
|
|
// let that next sanitizer deal with it.
|
2018-10-11 17:09:50 +08:00
|
|
|
bool SrcSigned = SrcType->isSignedIntegerOrEnumerationType();
|
|
|
|
|
bool DstSigned = DstType->isSignedIntegerOrEnumerationType();
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
if (CGF.SanOpts.has(SanitizerKind::ImplicitIntegerSignChange) &&
|
|
|
|
|
(!SrcSigned && DstSigned))
|
|
|
|
|
return;
|
2018-10-11 17:09:50 +08:00
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
CodeGenFunction::SanitizerScope SanScope(&CGF);
|
|
|
|
|
|
|
|
|
|
std::pair<ScalarExprEmitter::ImplicitConversionCheckKind,
|
|
|
|
|
std::pair<llvm::Value *, SanitizerMask>>
|
|
|
|
|
Check =
|
|
|
|
|
EmitIntegerTruncationCheckHelper(Src, SrcType, Dst, DstType, Builder);
|
|
|
|
|
// If the comparison result is 'i1 false', then the truncation was lossy.
|
2018-10-11 17:09:50 +08:00
|
|
|
|
|
|
|
|
// Do we care about this type of truncation?
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
if (!CGF.SanOpts.has(Check.second.second))
|
2018-10-11 17:09:50 +08:00
|
|
|
return;
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
llvm::Constant *StaticArgs[] = {
|
|
|
|
|
CGF.EmitCheckSourceLocation(Loc), CGF.EmitCheckTypeDescriptor(SrcType),
|
|
|
|
|
CGF.EmitCheckTypeDescriptor(DstType),
|
|
|
|
|
llvm::ConstantInt::get(Builder.getInt8Ty(), Check.first)};
|
|
|
|
|
CGF.EmitCheck(Check.second, SanitizerHandler::ImplicitConversion, StaticArgs,
|
|
|
|
|
{Src, Dst});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Should be called within CodeGenFunction::SanitizerScope RAII scope.
|
|
|
|
|
// Returns 'i1 false' when the conversion Src -> Dst changed the sign.
|
|
|
|
|
static std::pair<ScalarExprEmitter::ImplicitConversionCheckKind,
|
|
|
|
|
std::pair<llvm::Value *, SanitizerMask>>
|
|
|
|
|
EmitIntegerSignChangeCheckHelper(Value *Src, QualType SrcType, Value *Dst,
|
|
|
|
|
QualType DstType, CGBuilderTy &Builder) {
|
|
|
|
|
llvm::Type *SrcTy = Src->getType();
|
|
|
|
|
llvm::Type *DstTy = Dst->getType();
|
|
|
|
|
|
|
|
|
|
assert(isa<llvm::IntegerType>(SrcTy) && isa<llvm::IntegerType>(DstTy) &&
|
|
|
|
|
"non-integer llvm type");
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
bool SrcSigned = SrcType->isSignedIntegerOrEnumerationType();
|
|
|
|
|
bool DstSigned = DstType->isSignedIntegerOrEnumerationType();
|
2018-10-31 07:01:15 +08:00
|
|
|
(void)SrcSigned; // Only used in assert()
|
|
|
|
|
(void)DstSigned; // Only used in assert()
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
unsigned SrcBits = SrcTy->getScalarSizeInBits();
|
|
|
|
|
unsigned DstBits = DstTy->getScalarSizeInBits();
|
|
|
|
|
(void)SrcBits; // Only used in assert()
|
|
|
|
|
(void)DstBits; // Only used in assert()
|
|
|
|
|
|
|
|
|
|
assert(((SrcBits != DstBits) || (SrcSigned != DstSigned)) &&
|
|
|
|
|
"either the widths should be different, or the signednesses.");
|
|
|
|
|
|
|
|
|
|
// NOTE: zero value is considered to be non-negative.
|
|
|
|
|
auto EmitIsNegativeTest = [&Builder](Value *V, QualType VType,
|
|
|
|
|
const char *Name) -> Value * {
|
|
|
|
|
// Is this value a signed type?
|
|
|
|
|
bool VSigned = VType->isSignedIntegerOrEnumerationType();
|
|
|
|
|
llvm::Type *VTy = V->getType();
|
|
|
|
|
if (!VSigned) {
|
|
|
|
|
// If the value is unsigned, then it is never negative.
|
|
|
|
|
// FIXME: can we encounter non-scalar VTy here?
|
|
|
|
|
return llvm::ConstantInt::getFalse(VTy->getContext());
|
|
|
|
|
}
|
|
|
|
|
// Get the zero of the same type with which we will be comparing.
|
|
|
|
|
llvm::Constant *Zero = llvm::ConstantInt::get(VTy, 0);
|
|
|
|
|
// %V.isnegative = icmp slt %V, 0
|
|
|
|
|
// I.e is %V *strictly* less than zero, does it have negative value?
|
|
|
|
|
return Builder.CreateICmp(llvm::ICmpInst::ICMP_SLT, V, Zero,
|
|
|
|
|
llvm::Twine(Name) + "." + V->getName() +
|
|
|
|
|
".negativitycheck");
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
// 1. Was the old Value negative?
|
|
|
|
|
llvm::Value *SrcIsNegative = EmitIsNegativeTest(Src, SrcType, "src");
|
|
|
|
|
// 2. Is the new Value negative?
|
|
|
|
|
llvm::Value *DstIsNegative = EmitIsNegativeTest(Dst, DstType, "dst");
|
|
|
|
|
// 3. Now, was the 'negativity status' preserved during the conversion?
|
|
|
|
|
// NOTE: conversion from negative to zero is considered to change the sign.
|
|
|
|
|
// (We want to get 'false' when the conversion changed the sign)
|
|
|
|
|
// So we should just equality-compare the negativity statuses.
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
llvm::Value *Check = nullptr;
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
Check = Builder.CreateICmpEQ(SrcIsNegative, DstIsNegative, "signchangecheck");
|
|
|
|
|
// If the comparison result is 'false', then the conversion changed the sign.
|
|
|
|
|
return std::make_pair(
|
|
|
|
|
ScalarExprEmitter::ICCK_IntegerSignChange,
|
|
|
|
|
std::make_pair(Check, SanitizerKind::ImplicitIntegerSignChange));
|
|
|
|
|
}
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
void ScalarExprEmitter::EmitIntegerSignChangeCheck(Value *Src, QualType SrcType,
|
|
|
|
|
Value *Dst, QualType DstType,
|
|
|
|
|
SourceLocation Loc) {
|
|
|
|
|
if (!CGF.SanOpts.has(SanitizerKind::ImplicitIntegerSignChange))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
llvm::Type *SrcTy = Src->getType();
|
|
|
|
|
llvm::Type *DstTy = Dst->getType();
|
|
|
|
|
|
|
|
|
|
// We only care about int->int conversions here.
|
|
|
|
|
// We ignore conversions to/from pointer and/or bool.
|
|
|
|
|
if (!(SrcType->isIntegerType() && DstType->isIntegerType()))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
bool SrcSigned = SrcType->isSignedIntegerOrEnumerationType();
|
|
|
|
|
bool DstSigned = DstType->isSignedIntegerOrEnumerationType();
|
|
|
|
|
unsigned SrcBits = SrcTy->getScalarSizeInBits();
|
|
|
|
|
unsigned DstBits = DstTy->getScalarSizeInBits();
|
|
|
|
|
|
|
|
|
|
// Now, we do not need to emit the check in *all* of the cases.
|
|
|
|
|
// We can avoid emitting it in some obvious cases where it would have been
|
|
|
|
|
// dropped by the opt passes (instcombine) always anyways.
|
2018-11-01 16:56:51 +08:00
|
|
|
// If it's a cast between effectively the same type, no check.
|
|
|
|
|
// NOTE: this is *not* equivalent to checking the canonical types.
|
|
|
|
|
if (SrcSigned == DstSigned && SrcBits == DstBits)
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
return;
|
|
|
|
|
// At least one of the values needs to have signed type.
|
|
|
|
|
// If both are unsigned, then obviously, neither of them can be negative.
|
|
|
|
|
if (!SrcSigned && !DstSigned)
|
|
|
|
|
return;
|
|
|
|
|
// If the conversion is to *larger* *signed* type, then no check is needed.
|
|
|
|
|
// Because either sign-extension happens (so the sign will remain),
|
|
|
|
|
// or zero-extension will happen (the sign bit will be zero.)
|
|
|
|
|
if ((DstBits > SrcBits) && DstSigned)
|
|
|
|
|
return;
|
|
|
|
|
if (CGF.SanOpts.has(SanitizerKind::ImplicitSignedIntegerTruncation) &&
|
|
|
|
|
(SrcBits > DstBits) && SrcSigned) {
|
|
|
|
|
// If the signed integer truncation sanitizer is enabled,
|
|
|
|
|
// and this is a truncation from signed type, then no check is needed.
|
|
|
|
|
// Because here sign change check is interchangeable with truncation check.
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// That's it. We can't rule out any more cases with the data we have.
|
|
|
|
|
|
|
|
|
|
CodeGenFunction::SanitizerScope SanScope(&CGF);
|
|
|
|
|
|
|
|
|
|
std::pair<ScalarExprEmitter::ImplicitConversionCheckKind,
|
|
|
|
|
std::pair<llvm::Value *, SanitizerMask>>
|
|
|
|
|
Check;
|
|
|
|
|
|
|
|
|
|
// Each of these checks needs to return 'false' when an issue was detected.
|
|
|
|
|
ImplicitConversionCheckKind CheckKind;
|
|
|
|
|
llvm::SmallVector<std::pair<llvm::Value *, SanitizerMask>, 2> Checks;
|
|
|
|
|
// So we can 'and' all the checks together, and still get 'false',
|
|
|
|
|
// if at least one of the checks detected an issue.
|
|
|
|
|
|
|
|
|
|
Check = EmitIntegerSignChangeCheckHelper(Src, SrcType, Dst, DstType, Builder);
|
|
|
|
|
CheckKind = Check.first;
|
|
|
|
|
Checks.emplace_back(Check.second);
|
|
|
|
|
|
|
|
|
|
if (CGF.SanOpts.has(SanitizerKind::ImplicitSignedIntegerTruncation) &&
|
|
|
|
|
(SrcBits > DstBits) && !SrcSigned && DstSigned) {
|
|
|
|
|
// If the signed integer truncation sanitizer was enabled,
|
|
|
|
|
// and we are truncating from larger unsigned type to smaller signed type,
|
|
|
|
|
// let's handle the case we skipped in that check.
|
|
|
|
|
Check =
|
|
|
|
|
EmitIntegerTruncationCheckHelper(Src, SrcType, Dst, DstType, Builder);
|
|
|
|
|
CheckKind = ICCK_SignedIntegerTruncationOrSignChange;
|
|
|
|
|
Checks.emplace_back(Check.second);
|
|
|
|
|
// If the comparison result is 'i1 false', then the truncation was lossy.
|
|
|
|
|
}
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
|
|
|
|
|
llvm::Constant *StaticArgs[] = {
|
|
|
|
|
CGF.EmitCheckSourceLocation(Loc), CGF.EmitCheckTypeDescriptor(SrcType),
|
|
|
|
|
CGF.EmitCheckTypeDescriptor(DstType),
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
llvm::ConstantInt::get(Builder.getInt8Ty(), CheckKind)};
|
|
|
|
|
// EmitCheck() will 'and' all the checks together.
|
|
|
|
|
CGF.EmitCheck(Checks, SanitizerHandler::ImplicitConversion, StaticArgs,
|
|
|
|
|
{Src, Dst});
|
2015-10-05 19:27:41 +08:00
|
|
|
}
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
/// Emit a conversion from the specified type to the specified destination type,
|
|
|
|
|
/// both of which are LLVM scalar types.
|
2015-10-05 19:27:41 +08:00
|
|
|
Value *ScalarExprEmitter::EmitScalarConversion(Value *Src, QualType SrcType,
|
|
|
|
|
QualType DstType,
|
|
|
|
|
SourceLocation Loc,
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
ScalarConversionOpts Opts) {
|
2018-10-24 01:55:35 +08:00
|
|
|
// All conversions involving fixed point types should be handled by the
|
|
|
|
|
// EmitFixedPoint family functions. This is done to prevent bloating up this
|
|
|
|
|
// function more, and although fixed point numbers are represented by
|
|
|
|
|
// integers, we do not want to follow any logic that assumes they should be
|
|
|
|
|
// treated as integers.
|
|
|
|
|
// TODO(leonardchan): When necessary, add another if statement checking for
|
|
|
|
|
// conversions to fixed point types from other types.
|
|
|
|
|
if (SrcType->isFixedPointType()) {
|
2019-03-06 08:28:43 +08:00
|
|
|
if (DstType->isBooleanType())
|
|
|
|
|
// It is important that we check this before checking if the dest type is
|
|
|
|
|
// an integer because booleans are technically integer types.
|
2018-10-24 01:55:35 +08:00
|
|
|
// We do not need to check the padding bit on unsigned types if unsigned
|
|
|
|
|
// padding is enabled because overflow into this bit is undefined
|
|
|
|
|
// behavior.
|
2018-10-27 00:12:12 +08:00
|
|
|
return Builder.CreateIsNotNull(Src, "tobool");
|
2019-03-06 08:28:43 +08:00
|
|
|
if (DstType->isFixedPointType() || DstType->isIntegerType())
|
|
|
|
|
return EmitFixedPointConversion(Src, SrcType, DstType, Loc);
|
2018-10-24 01:55:35 +08:00
|
|
|
|
|
|
|
|
llvm_unreachable(
|
2019-03-06 08:28:43 +08:00
|
|
|
"Unhandled scalar conversion from a fixed point type to another type.");
|
|
|
|
|
} else if (DstType->isFixedPointType()) {
|
|
|
|
|
if (SrcType->isIntegerType())
|
|
|
|
|
// This also includes converting booleans and enums to fixed point types.
|
|
|
|
|
return EmitFixedPointConversion(Src, SrcType, DstType, Loc);
|
|
|
|
|
|
|
|
|
|
llvm_unreachable(
|
|
|
|
|
"Unhandled scalar conversion to a fixed point type from another type.");
|
2018-10-24 01:55:35 +08:00
|
|
|
}
|
2018-10-16 00:07:02 +08:00
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
QualType NoncanonicalSrcType = SrcType;
|
|
|
|
|
QualType NoncanonicalDstType = DstType;
|
|
|
|
|
|
2008-07-27 06:37:01 +08:00
|
|
|
SrcType = CGF.getContext().getCanonicalType(SrcType);
|
|
|
|
|
DstType = CGF.getContext().getCanonicalType(DstType);
|
2007-08-26 14:48:56 +08:00
|
|
|
if (SrcType == DstType) return Src;
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2014-05-21 13:09:00 +08:00
|
|
|
if (DstType->isVoidType()) return nullptr;
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2012-10-13 06:57:06 +08:00
|
|
|
llvm::Value *OrigSrc = Src;
|
|
|
|
|
QualType OrigSrcType = SrcType;
|
2011-10-15 07:23:15 +08:00
|
|
|
llvm::Type *SrcTy = Src->getType();
|
|
|
|
|
|
2015-03-24 01:48:07 +08:00
|
|
|
// Handle conversions to bool first, they are special: comparisons against 0.
|
|
|
|
|
if (DstType->isBooleanType())
|
|
|
|
|
return EmitConversionToBool(Src, SrcType);
|
|
|
|
|
|
|
|
|
|
llvm::Type *DstTy = ConvertType(DstType);
|
|
|
|
|
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
// Cast from half through float if half isn't a native type.
|
|
|
|
|
if (SrcType->isHalfType() && !CGF.getContext().getLangOpts().NativeHalfType) {
|
|
|
|
|
// Cast to FP using the intrinsic if the half type itself isn't supported.
|
|
|
|
|
if (DstTy->isFloatingPointTy()) {
|
[CodeGen][X86] Fix handling of __fp16 vectors.
This commit fixes a bug in IRGen where it generates completely broken
code for __fp16 vectors on X86. For example when the following code is
compiled:
half4 hv0, hv1, hv2; // these are vectors of __fp16.
void foo221() {
hv0 = hv1 + hv2;
}
clang generates the following IR, in which two i16 vectors are added:
@hv1 = common global <4 x i16> zeroinitializer, align 8
@hv2 = common global <4 x i16> zeroinitializer, align 8
@hv0 = common global <4 x i16> zeroinitializer, align 8
define void @foo221() {
%0 = load <4 x i16>, <4 x i16>* @hv1, align 8
%1 = load <4 x i16>, <4 x i16>* @hv2, align 8
%add = add <4 x i16> %0, %1
store <4 x i16> %add, <4 x i16>* @hv0, align 8
ret void
}
To fix the bug, this commit uses the code committed in r314056, which
modified clang to promote and truncate __fp16 vectors to and from float
vectors in the AST. It also fixes another IRGen bug where a short value
is assigned to an __fp16 variable without any integer-to-floating-point
conversion, as shown in the following example:
__fp16 a;
short b;
void foo1() {
a = b;
}
@b = common global i16 0, align 2
@a = common global i16 0, align 2
define void @foo1() #0 {
%0 = load i16, i16* @b, align 2
store i16 %0, i16* @a, align 2
ret void
}
rdar://problem/20625184
Differential Revision: https://reviews.llvm.org/D40112
llvm-svn: 320215
2017-12-09 08:02:37 +08:00
|
|
|
if (CGF.getContext().getTargetInfo().useFP16ConversionIntrinsics())
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
return Builder.CreateCall(
|
|
|
|
|
CGF.CGM.getIntrinsic(llvm::Intrinsic::convert_from_fp16, DstTy),
|
|
|
|
|
Src);
|
|
|
|
|
} else {
|
|
|
|
|
// Cast to other types through float, using either the intrinsic or FPExt,
|
|
|
|
|
// depending on whether the half type itself is supported
|
|
|
|
|
// (as opposed to operations on half, available with NativeHalfType).
|
[CodeGen][X86] Fix handling of __fp16 vectors.
This commit fixes a bug in IRGen where it generates completely broken
code for __fp16 vectors on X86. For example when the following code is
compiled:
half4 hv0, hv1, hv2; // these are vectors of __fp16.
void foo221() {
hv0 = hv1 + hv2;
}
clang generates the following IR, in which two i16 vectors are added:
@hv1 = common global <4 x i16> zeroinitializer, align 8
@hv2 = common global <4 x i16> zeroinitializer, align 8
@hv0 = common global <4 x i16> zeroinitializer, align 8
define void @foo221() {
%0 = load <4 x i16>, <4 x i16>* @hv1, align 8
%1 = load <4 x i16>, <4 x i16>* @hv2, align 8
%add = add <4 x i16> %0, %1
store <4 x i16> %add, <4 x i16>* @hv0, align 8
ret void
}
To fix the bug, this commit uses the code committed in r314056, which
modified clang to promote and truncate __fp16 vectors to and from float
vectors in the AST. It also fixes another IRGen bug where a short value
is assigned to an __fp16 variable without any integer-to-floating-point
conversion, as shown in the following example:
__fp16 a;
short b;
void foo1() {
a = b;
}
@b = common global i16 0, align 2
@a = common global i16 0, align 2
define void @foo1() #0 {
%0 = load i16, i16* @b, align 2
store i16 %0, i16* @a, align 2
ret void
}
rdar://problem/20625184
Differential Revision: https://reviews.llvm.org/D40112
llvm-svn: 320215
2017-12-09 08:02:37 +08:00
|
|
|
if (CGF.getContext().getTargetInfo().useFP16ConversionIntrinsics()) {
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
Src = Builder.CreateCall(
|
|
|
|
|
CGF.CGM.getIntrinsic(llvm::Intrinsic::convert_from_fp16,
|
|
|
|
|
CGF.CGM.FloatTy),
|
|
|
|
|
Src);
|
|
|
|
|
} else {
|
|
|
|
|
Src = Builder.CreateFPExt(Src, CGF.CGM.FloatTy, "conv");
|
|
|
|
|
}
|
|
|
|
|
SrcType = CGF.getContext().FloatTy;
|
|
|
|
|
SrcTy = CGF.FloatTy;
|
|
|
|
|
}
|
2011-10-15 07:23:15 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-26 14:48:56 +08:00
|
|
|
// Ignore conversions like int -> uint.
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
if (SrcTy == DstTy) {
|
|
|
|
|
if (Opts.EmitImplicitIntegerSignChangeChecks)
|
|
|
|
|
EmitIntegerSignChangeCheck(Src, NoncanonicalSrcType, Src,
|
|
|
|
|
NoncanonicalDstType, Loc);
|
|
|
|
|
|
2007-08-26 14:48:56 +08:00
|
|
|
return Src;
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
}
|
2007-08-26 14:48:56 +08:00
|
|
|
|
2009-09-09 21:00:44 +08:00
|
|
|
// Handle pointer conversions next: pointers can only be converted to/from
|
|
|
|
|
// other pointers and integers. Check for pointer types in terms of LLVM, as
|
|
|
|
|
// some native types (like Obj-C id) may map to a pointer type.
|
2016-08-19 13:17:25 +08:00
|
|
|
if (auto DstPT = dyn_cast<llvm::PointerType>(DstTy)) {
|
2007-08-26 14:48:56 +08:00
|
|
|
// The source value may be an integer, or a pointer.
|
2011-10-15 07:23:15 +08:00
|
|
|
if (isa<llvm::PointerType>(SrcTy))
|
2007-08-26 14:48:56 +08:00
|
|
|
return Builder.CreateBitCast(Src, DstTy, "conv");
|
2009-09-12 12:57:16 +08:00
|
|
|
|
2007-08-26 14:48:56 +08:00
|
|
|
assert(SrcType->isIntegerType() && "Not ptr->ptr or int->ptr conversion?");
|
2009-03-04 12:02:35 +08:00
|
|
|
// First, convert to the correct width so that we control the kind of
|
|
|
|
|
// extension.
|
2016-08-19 13:17:25 +08:00
|
|
|
llvm::Type *MiddleTy = CGF.CGM.getDataLayout().getIntPtrType(DstPT);
|
2011-05-21 00:38:50 +08:00
|
|
|
bool InputSigned = SrcType->isSignedIntegerOrEnumerationType();
|
2009-03-04 12:02:35 +08:00
|
|
|
llvm::Value* IntResult =
|
|
|
|
|
Builder.CreateIntCast(Src, MiddleTy, InputSigned, "conv");
|
|
|
|
|
// Then, cast to pointer.
|
|
|
|
|
return Builder.CreateIntToPtr(IntResult, DstTy, "conv");
|
2007-08-26 14:48:56 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-10-15 07:23:15 +08:00
|
|
|
if (isa<llvm::PointerType>(SrcTy)) {
|
2007-08-26 14:48:56 +08:00
|
|
|
// Must be an ptr to int cast.
|
|
|
|
|
assert(isa<llvm::IntegerType>(DstTy) && "not ptr->int?");
|
2007-11-01 07:18:02 +08:00
|
|
|
return Builder.CreatePtrToInt(Src, DstTy, "conv");
|
2007-08-26 14:48:56 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2008-04-19 07:10:10 +08:00
|
|
|
// A scalar can be splatted to an extended vector of the same element type
|
2009-08-11 07:49:36 +08:00
|
|
|
if (DstType->isExtVectorType() && !SrcType->isVectorType()) {
|
2016-01-13 09:52:39 +08:00
|
|
|
// Sema should add casts to make sure that the source expression's type is
|
|
|
|
|
// the same as the vector's element type (sans qualifiers)
|
|
|
|
|
assert(DstType->castAs<ExtVectorType>()->getElementType().getTypePtr() ==
|
|
|
|
|
SrcType.getTypePtr() &&
|
|
|
|
|
"Splatted expr doesn't match with vector element type?");
|
2009-01-18 14:42:49 +08:00
|
|
|
|
|
|
|
|
// Splat the element across to all elements
|
2016-07-08 10:17:35 +08:00
|
|
|
unsigned NumElements = DstTy->getVectorNumElements();
|
2016-01-13 09:52:39 +08:00
|
|
|
return Builder.CreateVectorSplat(NumElements, Src, "splat");
|
2009-01-18 14:42:49 +08:00
|
|
|
}
|
2007-12-30 10:59:45 +08:00
|
|
|
|
2017-09-23 13:02:02 +08:00
|
|
|
if (isa<llvm::VectorType>(SrcTy) || isa<llvm::VectorType>(DstTy)) {
|
|
|
|
|
// Allow bitcast from vector to integer/fp of the same size.
|
|
|
|
|
unsigned SrcSize = SrcTy->getPrimitiveSizeInBits();
|
|
|
|
|
unsigned DstSize = DstTy->getPrimitiveSizeInBits();
|
|
|
|
|
if (SrcSize == DstSize)
|
|
|
|
|
return Builder.CreateBitCast(Src, DstTy, "conv");
|
|
|
|
|
|
|
|
|
|
// Conversions between vectors of different sizes are not allowed except
|
|
|
|
|
// when vectors of half are involved. Operations on storage-only half
|
|
|
|
|
// vectors require promoting half vector operands to float vectors and
|
|
|
|
|
// truncating the result, which is either an int or float vector, to a
|
|
|
|
|
// short or half vector.
|
|
|
|
|
|
|
|
|
|
// Source and destination are both expected to be vectors.
|
|
|
|
|
llvm::Type *SrcElementTy = SrcTy->getVectorElementType();
|
|
|
|
|
llvm::Type *DstElementTy = DstTy->getVectorElementType();
|
2017-09-24 00:08:48 +08:00
|
|
|
(void)DstElementTy;
|
2017-09-23 13:02:02 +08:00
|
|
|
|
|
|
|
|
assert(((SrcElementTy->isIntegerTy() &&
|
|
|
|
|
DstElementTy->isIntegerTy()) ||
|
|
|
|
|
(SrcElementTy->isFloatingPointTy() &&
|
|
|
|
|
DstElementTy->isFloatingPointTy())) &&
|
|
|
|
|
"unexpected conversion between a floating-point vector and an "
|
|
|
|
|
"integer vector");
|
|
|
|
|
|
|
|
|
|
// Truncate an i32 vector to an i16 vector.
|
|
|
|
|
if (SrcElementTy->isIntegerTy())
|
|
|
|
|
return Builder.CreateIntCast(Src, DstTy, false, "conv");
|
|
|
|
|
|
|
|
|
|
// Truncate a float vector to a half vector.
|
|
|
|
|
if (SrcSize > DstSize)
|
|
|
|
|
return Builder.CreateFPTrunc(Src, DstTy, "conv");
|
|
|
|
|
|
|
|
|
|
// Promote a half vector to a float vector.
|
|
|
|
|
return Builder.CreateFPExt(Src, DstTy, "conv");
|
|
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-26 14:48:56 +08:00
|
|
|
// Finally, we have the arithmetic types: real int/float.
|
2014-05-21 13:09:00 +08:00
|
|
|
Value *Res = nullptr;
|
2011-10-15 07:23:15 +08:00
|
|
|
llvm::Type *ResTy = DstTy;
|
|
|
|
|
|
2012-10-13 06:57:06 +08:00
|
|
|
// An overflowing conversion has undefined behavior if either the source type
|
|
|
|
|
// or the destination type is a floating-point type.
|
2014-11-08 06:29:38 +08:00
|
|
|
if (CGF.SanOpts.has(SanitizerKind::FloatCastOverflow) &&
|
2012-10-13 06:57:06 +08:00
|
|
|
(OrigSrcType->isFloatingType() || DstType->isFloatingType()))
|
2015-08-11 12:19:28 +08:00
|
|
|
EmitFloatConversionCheck(OrigSrc, OrigSrcType, Src, SrcType, DstType, DstTy,
|
|
|
|
|
Loc);
|
2012-10-13 06:57:06 +08:00
|
|
|
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
// Cast to half through float if half isn't a native type.
|
|
|
|
|
if (DstType->isHalfType() && !CGF.getContext().getLangOpts().NativeHalfType) {
|
|
|
|
|
// Make sure we cast in a single step if from another FP type.
|
|
|
|
|
if (SrcTy->isFloatingPointTy()) {
|
|
|
|
|
// Use the intrinsic if the half type itself isn't supported
|
|
|
|
|
// (as opposed to operations on half, available with NativeHalfType).
|
[CodeGen][X86] Fix handling of __fp16 vectors.
This commit fixes a bug in IRGen where it generates completely broken
code for __fp16 vectors on X86. For example when the following code is
compiled:
half4 hv0, hv1, hv2; // these are vectors of __fp16.
void foo221() {
hv0 = hv1 + hv2;
}
clang generates the following IR, in which two i16 vectors are added:
@hv1 = common global <4 x i16> zeroinitializer, align 8
@hv2 = common global <4 x i16> zeroinitializer, align 8
@hv0 = common global <4 x i16> zeroinitializer, align 8
define void @foo221() {
%0 = load <4 x i16>, <4 x i16>* @hv1, align 8
%1 = load <4 x i16>, <4 x i16>* @hv2, align 8
%add = add <4 x i16> %0, %1
store <4 x i16> %add, <4 x i16>* @hv0, align 8
ret void
}
To fix the bug, this commit uses the code committed in r314056, which
modified clang to promote and truncate __fp16 vectors to and from float
vectors in the AST. It also fixes another IRGen bug where a short value
is assigned to an __fp16 variable without any integer-to-floating-point
conversion, as shown in the following example:
__fp16 a;
short b;
void foo1() {
a = b;
}
@b = common global i16 0, align 2
@a = common global i16 0, align 2
define void @foo1() #0 {
%0 = load i16, i16* @b, align 2
store i16 %0, i16* @a, align 2
ret void
}
rdar://problem/20625184
Differential Revision: https://reviews.llvm.org/D40112
llvm-svn: 320215
2017-12-09 08:02:37 +08:00
|
|
|
if (CGF.getContext().getTargetInfo().useFP16ConversionIntrinsics())
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
return Builder.CreateCall(
|
|
|
|
|
CGF.CGM.getIntrinsic(llvm::Intrinsic::convert_to_fp16, SrcTy), Src);
|
|
|
|
|
// If the half type is supported, just use an fptrunc.
|
|
|
|
|
return Builder.CreateFPTrunc(Src, DstTy);
|
|
|
|
|
}
|
2012-02-07 08:39:47 +08:00
|
|
|
DstTy = CGF.FloatTy;
|
2015-03-24 01:48:07 +08:00
|
|
|
}
|
2011-10-15 07:23:15 +08:00
|
|
|
|
|
|
|
|
if (isa<llvm::IntegerType>(SrcTy)) {
|
2011-05-21 00:38:50 +08:00
|
|
|
bool InputSigned = SrcType->isSignedIntegerOrEnumerationType();
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
if (SrcType->isBooleanType() && Opts.TreatBooleanAsSigned) {
|
2015-10-05 19:27:41 +08:00
|
|
|
InputSigned = true;
|
|
|
|
|
}
|
2007-12-27 02:20:19 +08:00
|
|
|
if (isa<llvm::IntegerType>(DstTy))
|
2011-10-15 07:23:15 +08:00
|
|
|
Res = Builder.CreateIntCast(Src, DstTy, InputSigned, "conv");
|
2007-12-27 02:20:19 +08:00
|
|
|
else if (InputSigned)
|
2011-10-15 07:23:15 +08:00
|
|
|
Res = Builder.CreateSIToFP(Src, DstTy, "conv");
|
2007-12-27 02:20:19 +08:00
|
|
|
else
|
2011-10-15 07:23:15 +08:00
|
|
|
Res = Builder.CreateUIToFP(Src, DstTy, "conv");
|
|
|
|
|
} else if (isa<llvm::IntegerType>(DstTy)) {
|
|
|
|
|
assert(SrcTy->isFloatingPointTy() && "Unknown real conversion");
|
2011-05-21 00:38:50 +08:00
|
|
|
if (DstType->isSignedIntegerOrEnumerationType())
|
2011-10-15 07:23:15 +08:00
|
|
|
Res = Builder.CreateFPToSI(Src, DstTy, "conv");
|
|
|
|
|
else
|
|
|
|
|
Res = Builder.CreateFPToUI(Src, DstTy, "conv");
|
|
|
|
|
} else {
|
|
|
|
|
assert(SrcTy->isFloatingPointTy() && DstTy->isFloatingPointTy() &&
|
|
|
|
|
"Unknown real conversion");
|
|
|
|
|
if (DstTy->getTypeID() < SrcTy->getTypeID())
|
|
|
|
|
Res = Builder.CreateFPTrunc(Src, DstTy, "conv");
|
2007-12-27 02:20:19 +08:00
|
|
|
else
|
2011-10-15 07:23:15 +08:00
|
|
|
Res = Builder.CreateFPExt(Src, DstTy, "conv");
|
2007-08-26 14:48:56 +08:00
|
|
|
}
|
|
|
|
|
|
2011-10-15 07:23:15 +08:00
|
|
|
if (DstTy != ResTy) {
|
[CodeGen][X86] Fix handling of __fp16 vectors.
This commit fixes a bug in IRGen where it generates completely broken
code for __fp16 vectors on X86. For example when the following code is
compiled:
half4 hv0, hv1, hv2; // these are vectors of __fp16.
void foo221() {
hv0 = hv1 + hv2;
}
clang generates the following IR, in which two i16 vectors are added:
@hv1 = common global <4 x i16> zeroinitializer, align 8
@hv2 = common global <4 x i16> zeroinitializer, align 8
@hv0 = common global <4 x i16> zeroinitializer, align 8
define void @foo221() {
%0 = load <4 x i16>, <4 x i16>* @hv1, align 8
%1 = load <4 x i16>, <4 x i16>* @hv2, align 8
%add = add <4 x i16> %0, %1
store <4 x i16> %add, <4 x i16>* @hv0, align 8
ret void
}
To fix the bug, this commit uses the code committed in r314056, which
modified clang to promote and truncate __fp16 vectors to and from float
vectors in the AST. It also fixes another IRGen bug where a short value
is assigned to an __fp16 variable without any integer-to-floating-point
conversion, as shown in the following example:
__fp16 a;
short b;
void foo1() {
a = b;
}
@b = common global i16 0, align 2
@a = common global i16 0, align 2
define void @foo1() #0 {
%0 = load i16, i16* @b, align 2
store i16 %0, i16* @a, align 2
ret void
}
rdar://problem/20625184
Differential Revision: https://reviews.llvm.org/D40112
llvm-svn: 320215
2017-12-09 08:02:37 +08:00
|
|
|
if (CGF.getContext().getTargetInfo().useFP16ConversionIntrinsics()) {
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
assert(ResTy->isIntegerTy(16) && "Only half FP requires extra conversion");
|
|
|
|
|
Res = Builder.CreateCall(
|
2014-07-17 18:51:31 +08:00
|
|
|
CGF.CGM.getIntrinsic(llvm::Intrinsic::convert_to_fp16, CGF.CGM.FloatTy),
|
|
|
|
|
Res);
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
} else {
|
|
|
|
|
Res = Builder.CreateFPTrunc(Res, ResTy, "conv");
|
|
|
|
|
}
|
2011-10-15 07:23:15 +08:00
|
|
|
}
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
if (Opts.EmitImplicitIntegerTruncationChecks)
|
|
|
|
|
EmitIntegerTruncationCheck(Src, NoncanonicalSrcType, Res,
|
|
|
|
|
NoncanonicalDstType, Loc);
|
|
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
if (Opts.EmitImplicitIntegerSignChangeChecks)
|
|
|
|
|
EmitIntegerSignChangeCheck(Src, NoncanonicalSrcType, Res,
|
|
|
|
|
NoncanonicalDstType, Loc);
|
|
|
|
|
|
2011-10-15 07:23:15 +08:00
|
|
|
return Res;
|
2007-08-26 14:48:56 +08:00
|
|
|
}
|
|
|
|
|
|
2018-10-16 00:07:02 +08:00
|
|
|
Value *ScalarExprEmitter::EmitFixedPointConversion(Value *Src, QualType SrcTy,
|
|
|
|
|
QualType DstTy,
|
|
|
|
|
SourceLocation Loc) {
|
|
|
|
|
FixedPointSemantics SrcFPSema =
|
|
|
|
|
CGF.getContext().getFixedPointSemantics(SrcTy);
|
|
|
|
|
FixedPointSemantics DstFPSema =
|
|
|
|
|
CGF.getContext().getFixedPointSemantics(DstTy);
|
2019-03-06 08:28:43 +08:00
|
|
|
return EmitFixedPointConversion(Src, SrcFPSema, DstFPSema, Loc,
|
|
|
|
|
DstTy->isIntegerType());
|
2019-01-17 02:13:59 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::EmitFixedPointConversion(
|
|
|
|
|
Value *Src, FixedPointSemantics &SrcFPSema, FixedPointSemantics &DstFPSema,
|
2019-03-06 08:28:43 +08:00
|
|
|
SourceLocation Loc, bool DstIsInteger) {
|
2019-01-17 02:13:59 +08:00
|
|
|
using llvm::APInt;
|
|
|
|
|
using llvm::ConstantInt;
|
|
|
|
|
using llvm::Value;
|
|
|
|
|
|
2018-10-16 00:07:02 +08:00
|
|
|
unsigned SrcWidth = SrcFPSema.getWidth();
|
|
|
|
|
unsigned DstWidth = DstFPSema.getWidth();
|
|
|
|
|
unsigned SrcScale = SrcFPSema.getScale();
|
|
|
|
|
unsigned DstScale = DstFPSema.getScale();
|
2018-10-27 00:12:12 +08:00
|
|
|
bool SrcIsSigned = SrcFPSema.isSigned();
|
|
|
|
|
bool DstIsSigned = DstFPSema.isSigned();
|
|
|
|
|
|
|
|
|
|
llvm::Type *DstIntTy = Builder.getIntNTy(DstWidth);
|
2018-10-16 00:07:02 +08:00
|
|
|
|
|
|
|
|
Value *Result = Src;
|
|
|
|
|
unsigned ResultWidth = SrcWidth;
|
|
|
|
|
|
2019-03-06 08:28:43 +08:00
|
|
|
// Downscale.
|
|
|
|
|
if (DstScale < SrcScale) {
|
|
|
|
|
// When converting to integers, we round towards zero. For negative numbers,
|
|
|
|
|
// right shifting rounds towards negative infinity. In this case, we can
|
|
|
|
|
// just round up before shifting.
|
|
|
|
|
if (DstIsInteger && SrcIsSigned) {
|
|
|
|
|
Value *Zero = llvm::Constant::getNullValue(Result->getType());
|
|
|
|
|
Value *IsNegative = Builder.CreateICmpSLT(Result, Zero);
|
|
|
|
|
Value *LowBits = ConstantInt::get(
|
|
|
|
|
CGF.getLLVMContext(), APInt::getLowBitsSet(ResultWidth, SrcScale));
|
|
|
|
|
Value *Rounded = Builder.CreateAdd(Result, LowBits);
|
|
|
|
|
Result = Builder.CreateSelect(IsNegative, Rounded, Result);
|
|
|
|
|
}
|
2018-10-16 00:07:02 +08:00
|
|
|
|
2019-03-06 08:28:43 +08:00
|
|
|
Result = SrcIsSigned
|
|
|
|
|
? Builder.CreateAShr(Result, SrcScale - DstScale, "downscale")
|
|
|
|
|
: Builder.CreateLShr(Result, SrcScale - DstScale, "downscale");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!DstFPSema.isSaturated()) {
|
2018-10-27 00:12:12 +08:00
|
|
|
// Resize.
|
|
|
|
|
Result = Builder.CreateIntCast(Result, DstIntTy, SrcIsSigned, "resize");
|
2018-10-16 00:07:02 +08:00
|
|
|
|
2018-10-27 00:12:12 +08:00
|
|
|
// Upscale.
|
2018-10-16 00:07:02 +08:00
|
|
|
if (DstScale > SrcScale)
|
2018-10-27 00:12:12 +08:00
|
|
|
Result = Builder.CreateShl(Result, DstScale - SrcScale, "upscale");
|
2018-10-16 00:07:02 +08:00
|
|
|
} else {
|
2018-10-27 00:12:12 +08:00
|
|
|
// Adjust the number of fractional bits.
|
2018-10-16 00:07:02 +08:00
|
|
|
if (DstScale > SrcScale) {
|
2019-01-17 02:13:59 +08:00
|
|
|
// Compare to DstWidth to prevent resizing twice.
|
|
|
|
|
ResultWidth = std::max(SrcWidth + DstScale - SrcScale, DstWidth);
|
2018-10-16 00:07:02 +08:00
|
|
|
llvm::Type *UpscaledTy = Builder.getIntNTy(ResultWidth);
|
2018-10-27 00:12:12 +08:00
|
|
|
Result = Builder.CreateIntCast(Result, UpscaledTy, SrcIsSigned, "resize");
|
|
|
|
|
Result = Builder.CreateShl(Result, DstScale - SrcScale, "upscale");
|
2018-10-16 00:07:02 +08:00
|
|
|
}
|
|
|
|
|
|
2018-10-27 00:12:12 +08:00
|
|
|
// Handle saturation.
|
|
|
|
|
bool LessIntBits = DstFPSema.getIntegralBits() < SrcFPSema.getIntegralBits();
|
|
|
|
|
if (LessIntBits) {
|
|
|
|
|
Value *Max = ConstantInt::get(
|
2018-10-16 00:07:02 +08:00
|
|
|
CGF.getLLVMContext(),
|
|
|
|
|
APFixedPoint::getMax(DstFPSema).getValue().extOrTrunc(ResultWidth));
|
2018-10-27 00:12:12 +08:00
|
|
|
Value *TooHigh = SrcIsSigned ? Builder.CreateICmpSGT(Result, Max)
|
|
|
|
|
: Builder.CreateICmpUGT(Result, Max);
|
|
|
|
|
Result = Builder.CreateSelect(TooHigh, Max, Result, "satmax");
|
|
|
|
|
}
|
|
|
|
|
// Cannot overflow min to dest type if src is unsigned since all fixed
|
|
|
|
|
// point types can cover the unsigned min of 0.
|
|
|
|
|
if (SrcIsSigned && (LessIntBits || !DstIsSigned)) {
|
|
|
|
|
Value *Min = ConstantInt::get(
|
|
|
|
|
CGF.getLLVMContext(),
|
|
|
|
|
APFixedPoint::getMin(DstFPSema).getValue().extOrTrunc(ResultWidth));
|
|
|
|
|
Value *TooLow = Builder.CreateICmpSLT(Result, Min);
|
|
|
|
|
Result = Builder.CreateSelect(TooLow, Min, Result, "satmin");
|
2018-10-16 00:07:02 +08:00
|
|
|
}
|
|
|
|
|
|
2018-10-27 00:12:12 +08:00
|
|
|
// Resize the integer part to get the final destination size.
|
2019-01-17 02:13:59 +08:00
|
|
|
if (ResultWidth != DstWidth)
|
|
|
|
|
Result = Builder.CreateIntCast(Result, DstIntTy, SrcIsSigned, "resize");
|
2018-10-16 00:07:02 +08:00
|
|
|
}
|
|
|
|
|
return Result;
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-05 14:19:26 +08:00
|
|
|
/// Emit a conversion from the specified complex type to the specified
|
|
|
|
|
/// destination type, where the destination type is an LLVM scalar type.
|
2015-08-11 12:19:28 +08:00
|
|
|
Value *ScalarExprEmitter::EmitComplexToScalarConversion(
|
|
|
|
|
CodeGenFunction::ComplexPairTy Src, QualType SrcTy, QualType DstTy,
|
|
|
|
|
SourceLocation Loc) {
|
2007-08-27 00:52:28 +08:00
|
|
|
// Get the source element type.
|
2013-03-08 05:37:08 +08:00
|
|
|
SrcTy = SrcTy->castAs<ComplexType>()->getElementType();
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-27 00:52:28 +08:00
|
|
|
// Handle conversions to bool first, they are special: comparisons against 0.
|
|
|
|
|
if (DstTy->isBooleanType()) {
|
|
|
|
|
// Complex != 0 -> (Real != 0) | (Imag != 0)
|
2015-08-11 12:19:28 +08:00
|
|
|
Src.first = EmitScalarConversion(Src.first, SrcTy, DstTy, Loc);
|
|
|
|
|
Src.second = EmitScalarConversion(Src.second, SrcTy, DstTy, Loc);
|
2007-08-27 00:52:28 +08:00
|
|
|
return Builder.CreateOr(Src.first, Src.second, "tobool");
|
|
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-27 00:34:22 +08:00
|
|
|
// C99 6.3.1.7p2: "When a value of complex type is converted to a real type,
|
|
|
|
|
// the imaginary part of the complex value is discarded and the value of the
|
|
|
|
|
// real part is converted according to the conversion rules for the
|
2009-09-09 21:00:44 +08:00
|
|
|
// corresponding real type.
|
2015-08-11 12:19:28 +08:00
|
|
|
return EmitScalarConversion(Src.first, SrcTy, DstTy, Loc);
|
2007-08-27 00:34:22 +08:00
|
|
|
}
|
|
|
|
|
|
2010-05-23 01:45:10 +08:00
|
|
|
Value *ScalarExprEmitter::EmitNullValue(QualType Ty) {
|
2012-12-21 11:17:28 +08:00
|
|
|
return CGF.EmitFromMemory(CGF.CGM.EmitNullConstant(Ty), Ty);
|
2010-05-23 01:45:10 +08:00
|
|
|
}
|
2007-08-27 00:34:22 +08:00
|
|
|
|
2018-05-09 09:00:01 +08:00
|
|
|
/// Emit a sanitization check for the given "binary" operation (which
|
2012-10-10 03:52:38 +08:00
|
|
|
/// might actually be a unary increment which has been lowered to a binary
|
2014-11-12 06:03:54 +08:00
|
|
|
/// operation). The check passes if all values in \p Checks (which are \c i1),
|
|
|
|
|
/// are \c true.
|
|
|
|
|
void ScalarExprEmitter::EmitBinOpCheck(
|
2015-05-12 05:39:14 +08:00
|
|
|
ArrayRef<std::pair<Value *, SanitizerMask>> Checks, const BinOpInfo &Info) {
|
2014-07-18 02:46:27 +08:00
|
|
|
assert(CGF.IsSanitizerScope);
|
2016-12-13 00:18:40 +08:00
|
|
|
SanitizerHandler Check;
|
2013-01-13 03:30:44 +08:00
|
|
|
SmallVector<llvm::Constant *, 4> StaticData;
|
|
|
|
|
SmallVector<llvm::Value *, 2> DynamicData;
|
2012-10-10 03:52:38 +08:00
|
|
|
|
|
|
|
|
BinaryOperatorKind Opcode = Info.Opcode;
|
|
|
|
|
if (BinaryOperator::isCompoundAssignmentOp(Opcode))
|
|
|
|
|
Opcode = BinaryOperator::getOpForCompoundAssignment(Opcode);
|
|
|
|
|
|
|
|
|
|
StaticData.push_back(CGF.EmitCheckSourceLocation(Info.E->getExprLoc()));
|
|
|
|
|
const UnaryOperator *UO = dyn_cast<UnaryOperator>(Info.E);
|
|
|
|
|
if (UO && UO->getOpcode() == UO_Minus) {
|
2016-12-13 00:18:40 +08:00
|
|
|
Check = SanitizerHandler::NegateOverflow;
|
2012-10-10 03:52:38 +08:00
|
|
|
StaticData.push_back(CGF.EmitCheckTypeDescriptor(UO->getType()));
|
|
|
|
|
DynamicData.push_back(Info.RHS);
|
|
|
|
|
} else {
|
|
|
|
|
if (BinaryOperator::isShiftOp(Opcode)) {
|
|
|
|
|
// Shift LHS negative or too large, or RHS out of bounds.
|
2016-12-13 00:18:40 +08:00
|
|
|
Check = SanitizerHandler::ShiftOutOfBounds;
|
2012-10-10 03:52:38 +08:00
|
|
|
const BinaryOperator *BO = cast<BinaryOperator>(Info.E);
|
|
|
|
|
StaticData.push_back(
|
|
|
|
|
CGF.EmitCheckTypeDescriptor(BO->getLHS()->getType()));
|
|
|
|
|
StaticData.push_back(
|
|
|
|
|
CGF.EmitCheckTypeDescriptor(BO->getRHS()->getType()));
|
|
|
|
|
} else if (Opcode == BO_Div || Opcode == BO_Rem) {
|
|
|
|
|
// Divide or modulo by zero, or signed overflow (eg INT_MAX / -1).
|
2016-12-13 00:18:40 +08:00
|
|
|
Check = SanitizerHandler::DivremOverflow;
|
2013-01-08 06:25:52 +08:00
|
|
|
StaticData.push_back(CGF.EmitCheckTypeDescriptor(Info.Ty));
|
2012-10-10 03:52:38 +08:00
|
|
|
} else {
|
2014-11-11 06:27:30 +08:00
|
|
|
// Arithmetic overflow (+, -, *).
|
2012-10-10 03:52:38 +08:00
|
|
|
switch (Opcode) {
|
2016-12-13 00:18:40 +08:00
|
|
|
case BO_Add: Check = SanitizerHandler::AddOverflow; break;
|
|
|
|
|
case BO_Sub: Check = SanitizerHandler::SubOverflow; break;
|
|
|
|
|
case BO_Mul: Check = SanitizerHandler::MulOverflow; break;
|
2012-10-10 03:52:38 +08:00
|
|
|
default: llvm_unreachable("unexpected opcode for bin op check");
|
|
|
|
|
}
|
2013-01-08 06:25:52 +08:00
|
|
|
StaticData.push_back(CGF.EmitCheckTypeDescriptor(Info.Ty));
|
2012-10-10 03:52:38 +08:00
|
|
|
}
|
|
|
|
|
DynamicData.push_back(Info.LHS);
|
|
|
|
|
DynamicData.push_back(Info.RHS);
|
|
|
|
|
}
|
|
|
|
|
|
2016-12-13 00:18:40 +08:00
|
|
|
CGF.EmitCheck(Checks, Check, StaticData, DynamicData);
|
2012-10-10 03:52:38 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
// Visitor Methods
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitExpr(Expr *E) {
|
2008-08-16 08:56:44 +08:00
|
|
|
CGF.ErrorUnsupported(E, "scalar expression");
|
2007-08-24 13:35:26 +08:00
|
|
|
if (E->getType()->isVoidType())
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2009-07-31 07:11:26 +08:00
|
|
|
return llvm::UndefValue::get(CGF.ConvertType(E->getType()));
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
2008-05-15 03:38:39 +08:00
|
|
|
Value *ScalarExprEmitter::VisitShuffleVectorExpr(ShuffleVectorExpr *E) {
|
2010-06-08 08:16:34 +08:00
|
|
|
// Vector Mask Case
|
2016-05-18 12:11:25 +08:00
|
|
|
if (E->getNumSubExprs() == 2) {
|
2010-06-27 15:15:29 +08:00
|
|
|
Value *LHS = CGF.EmitScalarExpr(E->getExpr(0));
|
|
|
|
|
Value *RHS = CGF.EmitScalarExpr(E->getExpr(1));
|
|
|
|
|
Value *Mask;
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::VectorType *LTy = cast<llvm::VectorType>(LHS->getType());
|
2010-06-08 08:16:34 +08:00
|
|
|
unsigned LHSElts = LTy->getNumElements();
|
|
|
|
|
|
2016-05-18 12:11:25 +08:00
|
|
|
Mask = RHS;
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::VectorType *MTy = cast<llvm::VectorType>(Mask->getType());
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-06-08 08:16:34 +08:00
|
|
|
// Mask off the high bits of each shuffle index.
|
2015-07-29 00:25:32 +08:00
|
|
|
Value *MaskBits =
|
|
|
|
|
llvm::ConstantInt::get(MTy, llvm::NextPowerOf2(LHSElts - 1) - 1);
|
2010-06-08 08:16:34 +08:00
|
|
|
Mask = Builder.CreateAnd(Mask, MaskBits, "mask");
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-06-08 08:16:34 +08:00
|
|
|
// newv = undef
|
|
|
|
|
// mask = mask & maskbits
|
|
|
|
|
// for each elt
|
|
|
|
|
// n = extract mask i
|
|
|
|
|
// x = extract val n
|
|
|
|
|
// newv = insert newv, x, i
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::VectorType *RTy = llvm::VectorType::get(LTy->getElementType(),
|
2013-07-27 13:00:42 +08:00
|
|
|
MTy->getNumElements());
|
2010-06-08 08:16:34 +08:00
|
|
|
Value* NewV = llvm::UndefValue::get(RTy);
|
|
|
|
|
for (unsigned i = 0, e = MTy->getNumElements(); i != e; ++i) {
|
2014-05-31 08:22:12 +08:00
|
|
|
Value *IIndx = llvm::ConstantInt::get(CGF.SizeTy, i);
|
2012-04-06 05:48:40 +08:00
|
|
|
Value *Indx = Builder.CreateExtractElement(Mask, IIndx, "shuf_idx");
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-06-08 08:16:34 +08:00
|
|
|
Value *VExt = Builder.CreateExtractElement(LHS, Indx, "shuf_elt");
|
2012-04-06 05:48:40 +08:00
|
|
|
NewV = Builder.CreateInsertElement(NewV, VExt, IIndx, "shuf_ins");
|
2010-06-08 08:16:34 +08:00
|
|
|
}
|
|
|
|
|
return NewV;
|
2008-05-15 03:38:39 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2008-05-15 03:38:39 +08:00
|
|
|
Value* V1 = CGF.EmitScalarExpr(E->getExpr(0));
|
|
|
|
|
Value* V2 = CGF.EmitScalarExpr(E->getExpr(1));
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-23 18:55:15 +08:00
|
|
|
SmallVector<llvm::Constant*, 32> indices;
|
2013-08-01 12:51:48 +08:00
|
|
|
for (unsigned i = 2; i < E->getNumSubExprs(); ++i) {
|
2013-08-04 01:40:38 +08:00
|
|
|
llvm::APSInt Idx = E->getShuffleMaskIdx(CGF.getContext(), i-2);
|
|
|
|
|
// Check for -1 and output it as undef in the IR.
|
|
|
|
|
if (Idx.isSigned() && Idx.isAllOnesValue())
|
|
|
|
|
indices.push_back(llvm::UndefValue::get(CGF.Int32Ty));
|
|
|
|
|
else
|
|
|
|
|
indices.push_back(Builder.getInt32(Idx.getZExtValue()));
|
2010-06-08 08:16:34 +08:00
|
|
|
}
|
|
|
|
|
|
2011-02-15 08:14:06 +08:00
|
|
|
Value *SV = llvm::ConstantVector::get(indices);
|
2008-05-15 03:38:39 +08:00
|
|
|
return Builder.CreateShuffleVector(V1, V2, SV, "shuffle");
|
|
|
|
|
}
|
2013-09-18 11:29:45 +08:00
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitConvertVectorExpr(ConvertVectorExpr *E) {
|
|
|
|
|
QualType SrcType = E->getSrcExpr()->getType(),
|
|
|
|
|
DstType = E->getType();
|
|
|
|
|
|
|
|
|
|
Value *Src = CGF.EmitScalarExpr(E->getSrcExpr());
|
|
|
|
|
|
|
|
|
|
SrcType = CGF.getContext().getCanonicalType(SrcType);
|
|
|
|
|
DstType = CGF.getContext().getCanonicalType(DstType);
|
|
|
|
|
if (SrcType == DstType) return Src;
|
|
|
|
|
|
|
|
|
|
assert(SrcType->isVectorType() &&
|
|
|
|
|
"ConvertVector source type must be a vector");
|
|
|
|
|
assert(DstType->isVectorType() &&
|
|
|
|
|
"ConvertVector destination type must be a vector");
|
|
|
|
|
|
|
|
|
|
llvm::Type *SrcTy = Src->getType();
|
|
|
|
|
llvm::Type *DstTy = ConvertType(DstType);
|
|
|
|
|
|
|
|
|
|
// Ignore conversions like int -> uint.
|
|
|
|
|
if (SrcTy == DstTy)
|
|
|
|
|
return Src;
|
|
|
|
|
|
|
|
|
|
QualType SrcEltType = SrcType->getAs<VectorType>()->getElementType(),
|
|
|
|
|
DstEltType = DstType->getAs<VectorType>()->getElementType();
|
|
|
|
|
|
|
|
|
|
assert(SrcTy->isVectorTy() &&
|
|
|
|
|
"ConvertVector source IR type must be a vector");
|
|
|
|
|
assert(DstTy->isVectorTy() &&
|
|
|
|
|
"ConvertVector destination IR type must be a vector");
|
|
|
|
|
|
|
|
|
|
llvm::Type *SrcEltTy = SrcTy->getVectorElementType(),
|
|
|
|
|
*DstEltTy = DstTy->getVectorElementType();
|
|
|
|
|
|
|
|
|
|
if (DstEltType->isBooleanType()) {
|
|
|
|
|
assert((SrcEltTy->isFloatingPointTy() ||
|
|
|
|
|
isa<llvm::IntegerType>(SrcEltTy)) && "Unknown boolean conversion");
|
|
|
|
|
|
|
|
|
|
llvm::Value *Zero = llvm::Constant::getNullValue(SrcTy);
|
|
|
|
|
if (SrcEltTy->isFloatingPointTy()) {
|
|
|
|
|
return Builder.CreateFCmpUNE(Src, Zero, "tobool");
|
|
|
|
|
} else {
|
|
|
|
|
return Builder.CreateICmpNE(Src, Zero, "tobool");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// We have the arithmetic types: real int/float.
|
2014-05-21 13:09:00 +08:00
|
|
|
Value *Res = nullptr;
|
2013-09-18 11:29:45 +08:00
|
|
|
|
|
|
|
|
if (isa<llvm::IntegerType>(SrcEltTy)) {
|
|
|
|
|
bool InputSigned = SrcEltType->isSignedIntegerOrEnumerationType();
|
|
|
|
|
if (isa<llvm::IntegerType>(DstEltTy))
|
|
|
|
|
Res = Builder.CreateIntCast(Src, DstTy, InputSigned, "conv");
|
|
|
|
|
else if (InputSigned)
|
|
|
|
|
Res = Builder.CreateSIToFP(Src, DstTy, "conv");
|
|
|
|
|
else
|
|
|
|
|
Res = Builder.CreateUIToFP(Src, DstTy, "conv");
|
|
|
|
|
} else if (isa<llvm::IntegerType>(DstEltTy)) {
|
|
|
|
|
assert(SrcEltTy->isFloatingPointTy() && "Unknown real conversion");
|
|
|
|
|
if (DstEltType->isSignedIntegerOrEnumerationType())
|
|
|
|
|
Res = Builder.CreateFPToSI(Src, DstTy, "conv");
|
|
|
|
|
else
|
|
|
|
|
Res = Builder.CreateFPToUI(Src, DstTy, "conv");
|
|
|
|
|
} else {
|
|
|
|
|
assert(SrcEltTy->isFloatingPointTy() && DstEltTy->isFloatingPointTy() &&
|
|
|
|
|
"Unknown real conversion");
|
|
|
|
|
if (DstEltTy->getTypeID() < SrcEltTy->getTypeID())
|
|
|
|
|
Res = Builder.CreateFPTrunc(Src, DstTy, "conv");
|
|
|
|
|
else
|
|
|
|
|
Res = Builder.CreateFPExt(Src, DstTy, "conv");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return Res;
|
|
|
|
|
}
|
|
|
|
|
|
2009-11-26 11:22:21 +08:00
|
|
|
Value *ScalarExprEmitter::VisitMemberExpr(MemberExpr *E) {
|
2017-08-25 18:07:00 +08:00
|
|
|
if (CodeGenFunction::ConstantEmission Constant = CGF.tryEmitAsConstant(E)) {
|
|
|
|
|
CGF.EmitIgnoredExpr(E->getBase());
|
2018-11-02 05:57:05 +08:00
|
|
|
return CGF.emitScalarConstant(Constant, E);
|
2017-08-25 18:07:00 +08:00
|
|
|
} else {
|
2018-12-01 07:41:18 +08:00
|
|
|
Expr::EvalResult Result;
|
|
|
|
|
if (E->EvaluateAsInt(Result, CGF.getContext(), Expr::SE_AllowSideEffects)) {
|
|
|
|
|
llvm::APSInt Value = Result.Val.getInt();
|
2017-08-25 18:07:00 +08:00
|
|
|
CGF.EmitIgnoredExpr(E->getBase());
|
|
|
|
|
return Builder.getInt(Value);
|
|
|
|
|
}
|
2009-11-26 11:22:21 +08:00
|
|
|
}
|
2010-10-05 05:46:04 +08:00
|
|
|
|
2009-11-26 11:22:21 +08:00
|
|
|
return EmitLoadOfLValue(E);
|
|
|
|
|
}
|
2008-05-15 03:38:39 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *ScalarExprEmitter::VisitArraySubscriptExpr(ArraySubscriptExpr *E) {
|
2009-05-29 23:46:01 +08:00
|
|
|
TestAndClearIgnoreResultAssign();
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Emit subscript expressions in rvalue context's. For most cases, this just
|
|
|
|
|
// loads the lvalue formed by the subscript expr. However, we have to be
|
|
|
|
|
// careful, because the base of a vector subscript is occasionally an rvalue,
|
|
|
|
|
// so we can't get it as an lvalue.
|
|
|
|
|
if (!E->getBase()->getType()->isVectorType())
|
|
|
|
|
return EmitLoadOfLValue(E);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Handle the vector case. The base must be a vector, the index must be an
|
|
|
|
|
// integer value.
|
|
|
|
|
Value *Base = Visit(E->getBase());
|
|
|
|
|
Value *Idx = Visit(E->getIdx());
|
2013-02-23 10:53:19 +08:00
|
|
|
QualType IdxTy = E->getIdx()->getType();
|
|
|
|
|
|
2014-11-08 06:29:38 +08:00
|
|
|
if (CGF.SanOpts.has(SanitizerKind::ArrayBounds))
|
2013-02-23 10:53:19 +08:00
|
|
|
CGF.EmitBoundsCheck(E, E->getBase(), Idx, IdxTy, /*Accessed*/true);
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
return Builder.CreateExtractElement(Base, Idx, "vecext");
|
|
|
|
|
}
|
|
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
static llvm::Constant *getMaskElt(llvm::ShuffleVectorInst *SVI, unsigned Idx,
|
2011-07-18 12:24:23 +08:00
|
|
|
unsigned Off, llvm::Type *I32Ty) {
|
2009-10-19 04:10:40 +08:00
|
|
|
int MV = SVI->getMaskValue(Idx);
|
2013-07-26 14:16:11 +08:00
|
|
|
if (MV == -1)
|
2009-10-19 04:10:40 +08:00
|
|
|
return llvm::UndefValue::get(I32Ty);
|
|
|
|
|
return llvm::ConstantInt::get(I32Ty, Off+MV);
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-02 23:28:10 +08:00
|
|
|
static llvm::Constant *getAsInt32(llvm::ConstantInt *C, llvm::Type *I32Ty) {
|
|
|
|
|
if (C->getBitWidth() != 32) {
|
|
|
|
|
assert(llvm::ConstantInt::isValueValidForType(I32Ty,
|
|
|
|
|
C->getZExtValue()) &&
|
|
|
|
|
"Index operand too large for shufflevector mask!");
|
|
|
|
|
return llvm::ConstantInt::get(I32Ty, C->getZExtValue());
|
|
|
|
|
}
|
|
|
|
|
return C;
|
|
|
|
|
}
|
|
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
Value *ScalarExprEmitter::VisitInitListExpr(InitListExpr *E) {
|
|
|
|
|
bool Ignore = TestAndClearIgnoreResultAssign();
|
|
|
|
|
(void)Ignore;
|
|
|
|
|
assert (Ignore == false && "init list ignored");
|
|
|
|
|
unsigned NumInitElements = E->getNumInits();
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
if (E->hadArrayRangeDesignator())
|
|
|
|
|
CGF.ErrorUnsupported(E, "GNU array range designator extension");
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::VectorType *VType =
|
2009-10-19 04:10:40 +08:00
|
|
|
dyn_cast<llvm::VectorType>(ConvertType(E->getType()));
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-09-25 01:48:14 +08:00
|
|
|
if (!VType) {
|
|
|
|
|
if (NumInitElements == 0) {
|
|
|
|
|
// C++11 value-initialization for the scalar.
|
|
|
|
|
return EmitNullValue(E->getType());
|
|
|
|
|
}
|
|
|
|
|
// We have a scalar in braces. Just use the first element.
|
2009-10-19 04:10:40 +08:00
|
|
|
return Visit(E->getInit(0));
|
2011-09-25 01:48:14 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
unsigned ResElts = VType->getNumElements();
|
2013-07-26 14:16:11 +08:00
|
|
|
|
|
|
|
|
// Loop over initializers collecting the Value for each, and remembering
|
2009-10-19 04:10:40 +08:00
|
|
|
// whether the source was swizzle (ExtVectorElementExpr). This will allow
|
|
|
|
|
// us to fold the shuffle for the swizzle into the shuffle for the vector
|
|
|
|
|
// initializer, since LLVM optimizers generally do not want to touch
|
|
|
|
|
// shuffles.
|
|
|
|
|
unsigned CurIdx = 0;
|
|
|
|
|
bool VIsUndefShuffle = false;
|
|
|
|
|
llvm::Value *V = llvm::UndefValue::get(VType);
|
|
|
|
|
for (unsigned i = 0; i != NumInitElements; ++i) {
|
|
|
|
|
Expr *IE = E->getInit(i);
|
|
|
|
|
Value *Init = Visit(IE);
|
2011-07-23 18:55:15 +08:00
|
|
|
SmallVector<llvm::Constant*, 16> Args;
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::VectorType *VVT = dyn_cast<llvm::VectorType>(Init->getType());
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
// Handle scalar elements. If the scalar initializer is actually one
|
2013-07-26 14:16:11 +08:00
|
|
|
// element of a different vector of the same width, use shuffle instead of
|
2009-10-19 04:10:40 +08:00
|
|
|
// extract+insert.
|
|
|
|
|
if (!VVT) {
|
|
|
|
|
if (isa<ExtVectorElementExpr>(IE)) {
|
|
|
|
|
llvm::ExtractElementInst *EI = cast<llvm::ExtractElementInst>(Init);
|
|
|
|
|
|
|
|
|
|
if (EI->getVectorOperandType()->getNumElements() == ResElts) {
|
|
|
|
|
llvm::ConstantInt *C = cast<llvm::ConstantInt>(EI->getIndexOperand());
|
2014-05-21 13:09:00 +08:00
|
|
|
Value *LHS = nullptr, *RHS = nullptr;
|
2009-10-19 04:10:40 +08:00
|
|
|
if (CurIdx == 0) {
|
|
|
|
|
// insert into undef -> shuffle (src, undef)
|
2015-08-02 23:28:10 +08:00
|
|
|
// shufflemask must use an i32
|
|
|
|
|
Args.push_back(getAsInt32(C, CGF.Int32Ty));
|
2012-02-14 20:06:21 +08:00
|
|
|
Args.resize(ResElts, llvm::UndefValue::get(CGF.Int32Ty));
|
2009-10-19 04:10:40 +08:00
|
|
|
|
|
|
|
|
LHS = EI->getVectorOperand();
|
|
|
|
|
RHS = V;
|
|
|
|
|
VIsUndefShuffle = true;
|
|
|
|
|
} else if (VIsUndefShuffle) {
|
|
|
|
|
// insert into undefshuffle && size match -> shuffle (v, src)
|
|
|
|
|
llvm::ShuffleVectorInst *SVV = cast<llvm::ShuffleVectorInst>(V);
|
|
|
|
|
for (unsigned j = 0; j != CurIdx; ++j)
|
2010-06-27 15:15:29 +08:00
|
|
|
Args.push_back(getMaskElt(SVV, j, 0, CGF.Int32Ty));
|
2011-04-20 06:55:03 +08:00
|
|
|
Args.push_back(Builder.getInt32(ResElts + C->getZExtValue()));
|
2012-02-14 20:06:21 +08:00
|
|
|
Args.resize(ResElts, llvm::UndefValue::get(CGF.Int32Ty));
|
|
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
LHS = cast<llvm::ShuffleVectorInst>(V)->getOperand(0);
|
|
|
|
|
RHS = EI->getVectorOperand();
|
|
|
|
|
VIsUndefShuffle = false;
|
|
|
|
|
}
|
|
|
|
|
if (!Args.empty()) {
|
2011-02-15 08:14:06 +08:00
|
|
|
llvm::Constant *Mask = llvm::ConstantVector::get(Args);
|
2009-10-19 04:10:40 +08:00
|
|
|
V = Builder.CreateShuffleVector(LHS, RHS, Mask);
|
|
|
|
|
++CurIdx;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-04-20 06:55:03 +08:00
|
|
|
V = Builder.CreateInsertElement(V, Init, Builder.getInt32(CurIdx),
|
|
|
|
|
"vecinit");
|
2009-10-19 04:10:40 +08:00
|
|
|
VIsUndefShuffle = false;
|
|
|
|
|
++CurIdx;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
unsigned InitElts = VVT->getNumElements();
|
|
|
|
|
|
2013-07-26 14:16:11 +08:00
|
|
|
// If the initializer is an ExtVecEltExpr (a swizzle), and the swizzle's
|
2009-10-19 04:10:40 +08:00
|
|
|
// input is the same width as the vector being constructed, generate an
|
|
|
|
|
// optimized shuffle of the swizzle input into the result.
|
2009-10-25 10:26:01 +08:00
|
|
|
unsigned Offset = (CurIdx == 0) ? 0 : ResElts;
|
2009-10-19 04:10:40 +08:00
|
|
|
if (isa<ExtVectorElementExpr>(IE)) {
|
|
|
|
|
llvm::ShuffleVectorInst *SVI = cast<llvm::ShuffleVectorInst>(Init);
|
|
|
|
|
Value *SVOp = SVI->getOperand(0);
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::VectorType *OpTy = cast<llvm::VectorType>(SVOp->getType());
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
if (OpTy->getNumElements() == ResElts) {
|
|
|
|
|
for (unsigned j = 0; j != CurIdx; ++j) {
|
|
|
|
|
// If the current vector initializer is a shuffle with undef, merge
|
|
|
|
|
// this shuffle directly into it.
|
|
|
|
|
if (VIsUndefShuffle) {
|
|
|
|
|
Args.push_back(getMaskElt(cast<llvm::ShuffleVectorInst>(V), j, 0,
|
2010-06-27 15:15:29 +08:00
|
|
|
CGF.Int32Ty));
|
2009-10-19 04:10:40 +08:00
|
|
|
} else {
|
2011-04-20 06:55:03 +08:00
|
|
|
Args.push_back(Builder.getInt32(j));
|
2009-10-19 04:10:40 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
for (unsigned j = 0, je = InitElts; j != je; ++j)
|
2010-06-27 15:15:29 +08:00
|
|
|
Args.push_back(getMaskElt(SVI, j, Offset, CGF.Int32Ty));
|
2012-02-14 20:06:21 +08:00
|
|
|
Args.resize(ResElts, llvm::UndefValue::get(CGF.Int32Ty));
|
2009-10-19 04:10:40 +08:00
|
|
|
|
|
|
|
|
if (VIsUndefShuffle)
|
|
|
|
|
V = cast<llvm::ShuffleVectorInst>(V)->getOperand(0);
|
|
|
|
|
|
|
|
|
|
Init = SVOp;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Extend init to result vector length, and then shuffle its contribution
|
|
|
|
|
// to the vector initializer into V.
|
|
|
|
|
if (Args.empty()) {
|
|
|
|
|
for (unsigned j = 0; j != InitElts; ++j)
|
2011-04-20 06:55:03 +08:00
|
|
|
Args.push_back(Builder.getInt32(j));
|
2012-02-14 20:06:21 +08:00
|
|
|
Args.resize(ResElts, llvm::UndefValue::get(CGF.Int32Ty));
|
2011-02-15 08:14:06 +08:00
|
|
|
llvm::Constant *Mask = llvm::ConstantVector::get(Args);
|
2009-10-19 04:10:40 +08:00
|
|
|
Init = Builder.CreateShuffleVector(Init, llvm::UndefValue::get(VVT),
|
2009-10-25 10:26:01 +08:00
|
|
|
Mask, "vext");
|
2009-10-19 04:10:40 +08:00
|
|
|
|
|
|
|
|
Args.clear();
|
|
|
|
|
for (unsigned j = 0; j != CurIdx; ++j)
|
2011-04-20 06:55:03 +08:00
|
|
|
Args.push_back(Builder.getInt32(j));
|
2009-10-19 04:10:40 +08:00
|
|
|
for (unsigned j = 0; j != InitElts; ++j)
|
2011-04-20 06:55:03 +08:00
|
|
|
Args.push_back(Builder.getInt32(j+Offset));
|
2012-02-14 20:06:21 +08:00
|
|
|
Args.resize(ResElts, llvm::UndefValue::get(CGF.Int32Ty));
|
2009-10-19 04:10:40 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If V is undef, make sure it ends up on the RHS of the shuffle to aid
|
|
|
|
|
// merging subsequent shuffles into this one.
|
|
|
|
|
if (CurIdx == 0)
|
|
|
|
|
std::swap(V, Init);
|
2011-02-15 08:14:06 +08:00
|
|
|
llvm::Constant *Mask = llvm::ConstantVector::get(Args);
|
2009-10-19 04:10:40 +08:00
|
|
|
V = Builder.CreateShuffleVector(V, Init, Mask, "vecinit");
|
|
|
|
|
VIsUndefShuffle = isa<llvm::UndefValue>(Init);
|
|
|
|
|
CurIdx += InitElts;
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
// FIXME: evaluate codegen vs. shuffling against constant null vector.
|
|
|
|
|
// Emit remaining default initializers.
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *EltTy = VType->getElementType();
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-10-19 04:10:40 +08:00
|
|
|
// Emit remaining default initializers
|
|
|
|
|
for (/* Do not initialize i*/; CurIdx < ResElts; ++CurIdx) {
|
2011-04-20 06:55:03 +08:00
|
|
|
Value *Idx = Builder.getInt32(CurIdx);
|
2009-10-19 04:10:40 +08:00
|
|
|
llvm::Value *Init = llvm::Constant::getNullValue(EltTy);
|
|
|
|
|
V = Builder.CreateInsertElement(V, Init, Idx, "vecinit");
|
|
|
|
|
}
|
|
|
|
|
return V;
|
|
|
|
|
}
|
|
|
|
|
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
bool CodeGenFunction::ShouldNullCheckClassCastValue(const CastExpr *CE) {
|
2009-11-24 01:57:54 +08:00
|
|
|
const Expr *E = CE->getSubExpr();
|
2010-03-31 07:58:03 +08:00
|
|
|
|
2010-08-25 19:45:40 +08:00
|
|
|
if (CE->getCastKind() == CK_UncheckedDerivedToBase)
|
2010-03-31 07:58:03 +08:00
|
|
|
return false;
|
2013-07-26 14:16:11 +08:00
|
|
|
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
if (isa<CXXThisExpr>(E->IgnoreParens())) {
|
2009-11-24 01:57:54 +08:00
|
|
|
// We always assume that 'this' is never null.
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-11-24 01:57:54 +08:00
|
|
|
if (const ImplicitCastExpr *ICE = dyn_cast<ImplicitCastExpr>(CE)) {
|
2010-07-20 12:20:21 +08:00
|
|
|
// And that glvalue casts are never null.
|
2010-08-25 18:28:54 +08:00
|
|
|
if (ICE->getValueKind() != VK_RValue)
|
2009-11-24 01:57:54 +08:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2009-08-25 02:37:17 +08:00
|
|
|
// VisitCastExpr - Emit code for an explicit or implicit cast. Implicit casts
|
|
|
|
|
// have to handle a more broad range of conversions than explicit casts, as they
|
|
|
|
|
// handle things like function to ptr-to-function decay etc.
|
2011-06-25 05:55:10 +08:00
|
|
|
Value *ScalarExprEmitter::VisitCastExpr(CastExpr *CE) {
|
2009-11-27 12:41:50 +08:00
|
|
|
Expr *E = CE->getSubExpr();
|
2009-09-23 06:00:46 +08:00
|
|
|
QualType DestTy = CE->getType();
|
2010-08-25 19:45:40 +08:00
|
|
|
CastKind Kind = CE->getCastKind();
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2016-01-28 02:32:30 +08:00
|
|
|
// These cases are generally not written to ignore the result of
|
|
|
|
|
// evaluating their sub-expressions, so we clear this now.
|
|
|
|
|
bool Ignored = TestAndClearIgnoreResultAssign();
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2009-11-27 10:07:44 +08:00
|
|
|
// Since almost all cast kinds apply to scalars, this switch doesn't have
|
|
|
|
|
// a default case, so the compiler will warn on a missing case. The cases
|
|
|
|
|
// are in the same order as in the CastKind enum.
|
2009-08-25 02:37:17 +08:00
|
|
|
switch (Kind) {
|
2010-11-15 17:13:47 +08:00
|
|
|
case CK_Dependent: llvm_unreachable("dependent cast kind in IR gen!");
|
2012-08-31 08:14:07 +08:00
|
|
|
case CK_BuiltinFnToFnPtr:
|
|
|
|
|
llvm_unreachable("builtin functions are handled elsewhere");
|
|
|
|
|
|
2013-07-26 14:16:11 +08:00
|
|
|
case CK_LValueBitCast:
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_ObjCObjectLValueCast: {
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Address Addr = EmitLValue(E).getAddress();
|
2015-10-07 18:22:08 +08:00
|
|
|
Addr = Builder.CreateElementBitCast(Addr, CGF.ConvertTypeForMem(DestTy));
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
LValue LV = CGF.MakeAddrLValue(Addr, DestTy);
|
|
|
|
|
return EmitLoadOfLValue(LV, CE->getExprLoc());
|
2010-07-14 07:17:26 +08:00
|
|
|
}
|
2011-09-10 09:16:55 +08:00
|
|
|
|
2011-09-09 13:25:32 +08:00
|
|
|
case CK_CPointerToObjCPointerCast:
|
|
|
|
|
case CK_BlockPointerToObjCPointerCast:
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_AnyPointerToBlockPointerCast:
|
|
|
|
|
case CK_BitCast: {
|
2009-09-02 04:52:42 +08:00
|
|
|
Value *Src = Visit(const_cast<Expr*>(E));
|
2013-12-11 21:39:46 +08:00
|
|
|
llvm::Type *SrcTy = Src->getType();
|
|
|
|
|
llvm::Type *DstTy = ConvertType(DestTy);
|
2014-02-18 03:20:59 +08:00
|
|
|
if (SrcTy->isPtrOrPtrVectorTy() && DstTy->isPtrOrPtrVectorTy() &&
|
2013-12-11 21:39:46 +08:00
|
|
|
SrcTy->getPointerAddressSpace() != DstTy->getPointerAddressSpace()) {
|
2014-11-26 23:36:41 +08:00
|
|
|
llvm_unreachable("wrong cast for pointers in different address spaces"
|
|
|
|
|
"(must be an address space cast)!");
|
2013-12-11 21:39:46 +08:00
|
|
|
}
|
2015-03-14 10:42:25 +08:00
|
|
|
|
|
|
|
|
if (CGF.SanOpts.has(SanitizerKind::CFIUnrelatedCast)) {
|
|
|
|
|
if (auto PT = DestTy->getAs<PointerType>())
|
|
|
|
|
CGF.EmitVTablePtrCheckForCast(PT->getPointeeType(), Src,
|
2015-06-19 09:51:54 +08:00
|
|
|
/*MayBeNull=*/true,
|
|
|
|
|
CodeGenFunction::CFITCK_UnrelatedCast,
|
2018-08-10 05:08:08 +08:00
|
|
|
CE->getBeginLoc());
|
2015-03-14 10:42:25 +08:00
|
|
|
}
|
|
|
|
|
|
2018-07-03 03:21:36 +08:00
|
|
|
if (CGF.CGM.getCodeGenOpts().StrictVTablePointers) {
|
|
|
|
|
const QualType SrcType = E->getType();
|
|
|
|
|
|
|
|
|
|
if (SrcType.mayBeNotDynamicClass() && DestTy.mayBeDynamicClass()) {
|
|
|
|
|
// Casting to pointer that could carry dynamic information (provided by
|
|
|
|
|
// invariant.group) requires launder.
|
|
|
|
|
Src = Builder.CreateLaunderInvariantGroup(Src);
|
|
|
|
|
} else if (SrcType.mayBeDynamicClass() && DestTy.mayBeNotDynamicClass()) {
|
|
|
|
|
// Casting to pointer that does not carry dynamic information (provided
|
|
|
|
|
// by invariant.group) requires stripping it. Note that we don't do it
|
|
|
|
|
// if the source could not be dynamic type and destination could be
|
|
|
|
|
// dynamic because dynamic information is already laundered. It is
|
|
|
|
|
// because launder(strip(src)) == launder(src), so there is no need to
|
|
|
|
|
// add extra strip before launder.
|
|
|
|
|
Src = Builder.CreateStripInvariantGroup(Src);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2013-12-11 21:39:46 +08:00
|
|
|
return Builder.CreateBitCast(Src, DstTy);
|
|
|
|
|
}
|
|
|
|
|
case CK_AddressSpaceConversion: {
|
2016-12-15 16:09:08 +08:00
|
|
|
Expr::EvalResult Result;
|
|
|
|
|
if (E->EvaluateAsRValue(Result, CGF.getContext()) &&
|
|
|
|
|
Result.Val.isNullPointer()) {
|
|
|
|
|
// If E has side effect, it is emitted even if its final result is a
|
|
|
|
|
// null pointer. In that case, a DCE pass should be able to
|
|
|
|
|
// eliminate the useless instructions emitted during translating E.
|
|
|
|
|
if (Result.HasSideEffects)
|
|
|
|
|
Visit(E);
|
|
|
|
|
return CGF.CGM.getNullPointer(cast<llvm::PointerType>(
|
|
|
|
|
ConvertType(DestTy)), DestTy);
|
|
|
|
|
}
|
2016-04-13 03:03:49 +08:00
|
|
|
// Since target may map different address spaces in AST to the same address
|
|
|
|
|
// space, an address space conversion may end up as a bitcast.
|
2017-05-19 02:51:09 +08:00
|
|
|
return CGF.CGM.getTargetCodeGenInfo().performAddrSpaceCast(
|
|
|
|
|
CGF, Visit(E), E->getType()->getPointeeType().getAddressSpace(),
|
|
|
|
|
DestTy->getPointeeType().getAddressSpace(), ConvertType(DestTy));
|
2009-09-02 04:52:42 +08:00
|
|
|
}
|
2012-01-17 01:27:18 +08:00
|
|
|
case CK_AtomicToNonAtomic:
|
|
|
|
|
case CK_NonAtomicToAtomic:
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_NoOp:
|
|
|
|
|
case CK_UserDefinedConversion:
|
2009-11-17 05:33:53 +08:00
|
|
|
return Visit(const_cast<Expr*>(E));
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_BaseToDerived: {
|
2012-10-03 09:08:28 +08:00
|
|
|
const CXXRecordDecl *DerivedClassDecl = DestTy->getPointeeCXXRecordDecl();
|
|
|
|
|
assert(DerivedClassDecl && "BaseToDerived arg isn't a C++ object pointer!");
|
|
|
|
|
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Address Base = CGF.EmitPointerWithAlignment(E);
|
|
|
|
|
Address Derived =
|
|
|
|
|
CGF.GetAddressOfDerivedClass(Base, DerivedClassDecl,
|
2013-08-08 09:08:17 +08:00
|
|
|
CE->path_begin(), CE->path_end(),
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
CGF.ShouldNullCheckClassCastValue(CE));
|
2013-08-08 09:08:17 +08:00
|
|
|
|
2013-02-14 05:18:23 +08:00
|
|
|
// C++11 [expr.static.cast]p11: Behavior is undefined if a downcast is
|
|
|
|
|
// performed and the object is not of the derived type.
|
2014-07-08 07:59:57 +08:00
|
|
|
if (CGF.sanitizePerformTypeCheck())
|
2013-02-14 05:18:23 +08:00
|
|
|
CGF.EmitTypeCheck(CodeGenFunction::TCK_DowncastPointer, CE->getExprLoc(),
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Derived.getPointer(), DestTy->getPointeeType());
|
2013-02-14 05:18:23 +08:00
|
|
|
|
2015-03-14 10:42:25 +08:00
|
|
|
if (CGF.SanOpts.has(SanitizerKind::CFIDerivedCast))
|
2018-08-10 05:08:08 +08:00
|
|
|
CGF.EmitVTablePtrCheckForCast(
|
|
|
|
|
DestTy->getPointeeType(), Derived.getPointer(),
|
|
|
|
|
/*MayBeNull=*/true, CodeGenFunction::CFITCK_DerivedCast,
|
|
|
|
|
CE->getBeginLoc());
|
2015-03-14 10:42:25 +08:00
|
|
|
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
return Derived.getPointer();
|
2009-11-24 01:57:54 +08:00
|
|
|
}
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_UncheckedDerivedToBase:
|
|
|
|
|
case CK_DerivedToBase: {
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
// The EmitPointerWithAlignment path does this fine; just discard
|
|
|
|
|
// the alignment.
|
|
|
|
|
return CGF.EmitPointerWithAlignment(CE).getPointer();
|
2009-09-12 12:57:16 +08:00
|
|
|
}
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
|
2011-04-11 10:03:26 +08:00
|
|
|
case CK_Dynamic: {
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Address V = CGF.EmitPointerWithAlignment(E);
|
2009-11-27 10:07:44 +08:00
|
|
|
const CXXDynamicCastExpr *DCE = cast<CXXDynamicCastExpr>(CE);
|
|
|
|
|
return CGF.EmitDynamicCast(V, DCE);
|
|
|
|
|
}
|
2009-11-27 12:41:50 +08:00
|
|
|
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
case CK_ArrayToPointerDecay:
|
|
|
|
|
return CGF.EmitArrayToPointerDecay(E).getPointer();
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_FunctionToPointerDecay:
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
return EmitLValue(E).getPointer();
|
2009-11-17 05:33:53 +08:00
|
|
|
|
2010-11-13 09:35:44 +08:00
|
|
|
case CK_NullToPointer:
|
|
|
|
|
if (MustVisitNullValue(E))
|
2018-11-03 10:23:33 +08:00
|
|
|
(void) Visit(E);
|
2010-11-13 09:35:44 +08:00
|
|
|
|
2016-12-15 16:09:08 +08:00
|
|
|
return CGF.CGM.getNullPointer(cast<llvm::PointerType>(ConvertType(DestTy)),
|
|
|
|
|
DestTy);
|
2010-11-13 09:35:44 +08:00
|
|
|
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_NullToMemberPointer: {
|
2010-11-13 09:35:44 +08:00
|
|
|
if (MustVisitNullValue(E))
|
2018-11-03 10:23:33 +08:00
|
|
|
(void) Visit(E);
|
2010-08-22 18:59:02 +08:00
|
|
|
|
2010-08-23 09:21:21 +08:00
|
|
|
const MemberPointerType *MPT = CE->getType()->getAs<MemberPointerType>();
|
|
|
|
|
return CGF.CGM.getCXXABI().EmitNullMemberPointer(MPT);
|
|
|
|
|
}
|
2009-09-12 12:57:16 +08:00
|
|
|
|
2012-02-15 09:22:51 +08:00
|
|
|
case CK_ReinterpretMemberPointer:
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_BaseToDerivedMemberPointer:
|
|
|
|
|
case CK_DerivedToBaseMemberPointer: {
|
2009-11-27 12:41:50 +08:00
|
|
|
Value *Src = Visit(E);
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-08-22 18:59:02 +08:00
|
|
|
// Note that the AST doesn't distinguish between checked and
|
|
|
|
|
// unchecked member pointer conversions, so we always have to
|
|
|
|
|
// implement checked conversions here. This is inefficient when
|
|
|
|
|
// actual control flow may be required in order to perform the
|
|
|
|
|
// check, which it is for data member pointers (but not member
|
|
|
|
|
// function pointers on Itanium and ARM).
|
2010-08-23 09:21:21 +08:00
|
|
|
return CGF.CGM.getCXXABI().EmitMemberPointerConversion(CGF, CE, Src);
|
2009-11-27 12:41:50 +08:00
|
|
|
}
|
2011-06-16 07:02:42 +08:00
|
|
|
|
2011-09-10 14:18:15 +08:00
|
|
|
case CK_ARCProduceObject:
|
2011-06-16 07:02:42 +08:00
|
|
|
return CGF.EmitARCRetainScalarExpr(E);
|
2011-09-10 14:18:15 +08:00
|
|
|
case CK_ARCConsumeObject:
|
2011-06-16 07:02:42 +08:00
|
|
|
return CGF.EmitObjCConsumeObject(E->getType(), Visit(E));
|
2016-01-28 02:32:30 +08:00
|
|
|
case CK_ARCReclaimReturnedObject:
|
|
|
|
|
return CGF.EmitARCReclaimReturnedObject(E, /*allowUnsafe*/ Ignored);
|
2011-10-04 14:23:45 +08:00
|
|
|
case CK_ARCExtendBlockObject:
|
|
|
|
|
return CGF.EmitARCExtendBlockObject(E);
|
2011-06-16 07:02:42 +08:00
|
|
|
|
2012-02-22 13:02:47 +08:00
|
|
|
case CK_CopyAndAutoreleaseBlockObject:
|
2012-02-28 09:08:45 +08:00
|
|
|
return CGF.EmitBlockCopyAndAutorelease(Visit(E), E->getType());
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-11-13 17:02:35 +08:00
|
|
|
case CK_FloatingRealToComplex:
|
|
|
|
|
case CK_FloatingComplexCast:
|
|
|
|
|
case CK_IntegralRealToComplex:
|
|
|
|
|
case CK_IntegralComplexCast:
|
2010-11-14 16:17:51 +08:00
|
|
|
case CK_IntegralComplexToFloatingComplex:
|
|
|
|
|
case CK_FloatingComplexToIntegralComplex:
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_ConstructorConversion:
|
2010-11-16 14:21:14 +08:00
|
|
|
case CK_ToUnion:
|
|
|
|
|
llvm_unreachable("scalar cast to non-scalar value");
|
2010-12-04 11:47:34 +08:00
|
|
|
|
2010-12-01 12:43:34 +08:00
|
|
|
case CK_LValueToRValue:
|
|
|
|
|
assert(CGF.getContext().hasSameUnqualifiedType(E->getType(), DestTy));
|
2010-12-04 11:47:34 +08:00
|
|
|
assert(E->isGLValue() && "lvalue-to-rvalue applied to r-value!");
|
2010-12-01 12:43:34 +08:00
|
|
|
return Visit(const_cast<Expr*>(E));
|
2009-11-27 10:07:44 +08:00
|
|
|
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_IntegralToPointer: {
|
2009-09-15 12:48:33 +08:00
|
|
|
Value *Src = Visit(const_cast<Expr*>(E));
|
2010-08-25 11:32:38 +08:00
|
|
|
|
2009-10-19 02:12:03 +08:00
|
|
|
// First, convert to the correct width so that we control the kind of
|
|
|
|
|
// extension.
|
2016-08-19 13:17:25 +08:00
|
|
|
auto DestLLVMTy = ConvertType(DestTy);
|
|
|
|
|
llvm::Type *MiddleTy = CGF.CGM.getDataLayout().getIntPtrType(DestLLVMTy);
|
2011-05-21 00:38:50 +08:00
|
|
|
bool InputSigned = E->getType()->isSignedIntegerOrEnumerationType();
|
2009-10-19 02:12:03 +08:00
|
|
|
llvm::Value* IntResult =
|
|
|
|
|
Builder.CreateIntCast(Src, MiddleTy, InputSigned, "conv");
|
2010-08-25 11:32:38 +08:00
|
|
|
|
2018-07-03 03:21:36 +08:00
|
|
|
auto *IntToPtr = Builder.CreateIntToPtr(IntResult, DestLLVMTy);
|
|
|
|
|
|
|
|
|
|
if (CGF.CGM.getCodeGenOpts().StrictVTablePointers) {
|
|
|
|
|
// Going from integer to pointer that could be dynamic requires reloading
|
|
|
|
|
// dynamic information from invariant.group.
|
|
|
|
|
if (DestTy.mayBeDynamicClass())
|
|
|
|
|
IntToPtr = Builder.CreateLaunderInvariantGroup(IntToPtr);
|
|
|
|
|
}
|
|
|
|
|
return IntToPtr;
|
2009-09-15 12:48:33 +08:00
|
|
|
}
|
2018-07-03 03:21:36 +08:00
|
|
|
case CK_PointerToIntegral: {
|
2011-06-25 10:58:47 +08:00
|
|
|
assert(!DestTy->isBooleanType() && "bool should use PointerToBool");
|
2018-07-03 03:21:36 +08:00
|
|
|
auto *PtrExpr = Visit(E);
|
|
|
|
|
|
|
|
|
|
if (CGF.CGM.getCodeGenOpts().StrictVTablePointers) {
|
|
|
|
|
const QualType SrcType = E->getType();
|
2010-08-25 11:32:38 +08:00
|
|
|
|
2018-07-03 03:21:36 +08:00
|
|
|
// Casting to integer requires stripping dynamic information as it does
|
|
|
|
|
// not carries it.
|
|
|
|
|
if (SrcType.mayBeDynamicClass())
|
|
|
|
|
PtrExpr = Builder.CreateStripInvariantGroup(PtrExpr);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return Builder.CreatePtrToInt(PtrExpr, ConvertType(DestTy));
|
|
|
|
|
}
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_ToVoid: {
|
2010-12-05 10:00:02 +08:00
|
|
|
CGF.EmitIgnoredExpr(E);
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2009-11-17 05:33:53 +08:00
|
|
|
}
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_VectorSplat: {
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *DstTy = ConvertType(DestTy);
|
2016-01-13 09:52:39 +08:00
|
|
|
Value *Elt = Visit(const_cast<Expr*>(E));
|
2009-11-17 05:33:53 +08:00
|
|
|
// Splat the element across to all elements
|
2016-07-08 10:17:35 +08:00
|
|
|
unsigned NumElements = DstTy->getVectorNumElements();
|
2014-04-20 07:55:49 +08:00
|
|
|
return Builder.CreateVectorSplat(NumElements, Elt, "splat");
|
2009-11-17 05:33:53 +08:00
|
|
|
}
|
2010-11-15 17:13:47 +08:00
|
|
|
|
2018-10-16 00:07:02 +08:00
|
|
|
case CK_FixedPointCast:
|
2018-10-24 01:55:35 +08:00
|
|
|
return EmitScalarConversion(Visit(E), E->getType(), DestTy,
|
|
|
|
|
CE->getExprLoc());
|
|
|
|
|
|
|
|
|
|
case CK_FixedPointToBoolean:
|
|
|
|
|
assert(E->getType()->isFixedPointType() &&
|
|
|
|
|
"Expected src type to be fixed point type");
|
|
|
|
|
assert(DestTy->isBooleanType() && "Expected dest type to be boolean type");
|
|
|
|
|
return EmitScalarConversion(Visit(E), E->getType(), DestTy,
|
|
|
|
|
CE->getExprLoc());
|
2019-03-06 08:28:43 +08:00
|
|
|
|
|
|
|
|
case CK_FixedPointToIntegral:
|
|
|
|
|
assert(E->getType()->isFixedPointType() &&
|
|
|
|
|
"Expected src type to be fixed point type");
|
|
|
|
|
assert(DestTy->isIntegerType() && "Expected dest type to be an integer");
|
|
|
|
|
return EmitScalarConversion(Visit(E), E->getType(), DestTy,
|
|
|
|
|
CE->getExprLoc());
|
|
|
|
|
|
|
|
|
|
case CK_IntegralToFixedPoint:
|
|
|
|
|
assert(E->getType()->isIntegerType() &&
|
|
|
|
|
"Expected src type to be an integer");
|
|
|
|
|
assert(DestTy->isFixedPointType() &&
|
|
|
|
|
"Expected dest type to be fixed point type");
|
|
|
|
|
return EmitScalarConversion(Visit(E), E->getType(), DestTy,
|
|
|
|
|
CE->getExprLoc());
|
2018-10-16 00:07:02 +08:00
|
|
|
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
case CK_IntegralCast: {
|
|
|
|
|
ScalarConversionOpts Opts;
|
[clang][ubsan] Implicit Conversion Sanitizer - integer sign change - clang part
This is the second half of Implicit Integer Conversion Sanitizer.
It completes the first half, and finally makes the sanitizer
fully functional! Only the bitfield handling is missing.
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
void consume(unsigned int val);
void test(int val) {
consume(val);
// The 'val' is `signed int`, but `consume()` takes `unsigned int`.
// If val is negative, then consume() will be operating on a large
// unsigned value, and you may or may not have a bug.
// But yes, sometimes this is intentional.
// Making the conversion explicit silences the sanitizer.
consume((unsigned int)val);
}
```
Yes, there is a `-Wsign-conversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, likely there are cases where it does **not** warn.
The actual detection is pretty easy. We just need to check each of the values
whether it is negative, and equality-compare the results of those comparisons.
The unsigned value is obviously non-negative. Zero is non-negative too.
https://godbolt.org/g/w93oj2
We do not have to emit the check *always*, there are obvious situations
where we can avoid emitting it, since it would **always** get optimized-out.
But i do think the tautological IR (`icmp ult %x, 0`, which is always false)
should be emitted, and the middle-end should cleanup it.
This sanitizer is in the `-fsanitize=implicit-conversion` group,
and is a logical continuation of D48958 `-fsanitize=implicit-integer-truncation`.
As for the ordering, i'we opted to emit the check **after**
`-fsanitize=implicit-integer-truncation`. At least on these simple 16 test cases,
this results in 1 of the 12 emitted checks being optimized away,
as compared to 0 checks being optimized away if the order is reversed.
This is a clang part.
The compiler-rt part is D50251.
Finishes fixing [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Finishes partially fixing [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Finishes fixing https://github.com/google/sanitizers/issues/940.
Only the bitfield handling is missing.
Reviewers: vsk, rsmith, rjmccall, #sanitizers, erichkeane
Reviewed By: rsmith
Subscribers: chandlerc, filcab, cfe-commits, regehr
Tags: #sanitizers, #clang
Differential Revision: https://reviews.llvm.org/D50250
llvm-svn: 345660
2018-10-31 05:58:56 +08:00
|
|
|
if (auto *ICE = dyn_cast<ImplicitCastExpr>(CE)) {
|
[clang][CodeGen] Implicit Conversion Sanitizer: discover the world of CompoundAssign operators
Summary:
As reported by @regehr (thanks!) on twitter (https://twitter.com/johnregehr/status/1057681496255815686),
we (me) has completely forgot about the binary assignment operator.
In AST, it isn't represented as separate `ImplicitCastExpr`'s,
but as a single `CompoundAssignOperator`, that does all the casts internally.
Which means, out of these two, only the first one is diagnosed:
```
auto foo() {
unsigned char c = 255;
c = c + 1;
return c;
}
auto bar() {
unsigned char c = 255;
c += 1;
return c;
}
```
https://godbolt.org/z/JNyVc4
This patch does handle the `CompoundAssignOperator`:
```
int main() {
unsigned char c = 255;
c += 1;
return c;
}
```
```
$ ./bin/clang -g -fsanitize=integer /tmp/test.c && ./a.out
/tmp/test.c:3:5: runtime error: implicit conversion from type 'int' of value 256 (32-bit, signed) to type 'unsigned char' changed the value to 0 (8-bit, unsigned)
#0 0x2392b8 in main /tmp/test.c:3:5
#1 0x7fec4a612b16 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x22b16)
#2 0x214029 in _start (/build/llvm-build-GCC-release/a.out+0x214029)
```
However, the pre/post increment/decrement is still not handled.
Reviewers: rsmith, regehr, vsk, rjmccall, #sanitizers
Reviewed By: rjmccall
Subscribers: mclow.lists, cfe-commits, regehr
Tags: #clang, #sanitizers
Differential Revision: https://reviews.llvm.org/D53949
llvm-svn: 347258
2018-11-20 03:56:43 +08:00
|
|
|
if (!ICE->isPartOfExplicitCast())
|
|
|
|
|
Opts = ScalarConversionOpts(CGF.SanOpts);
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
}
|
|
|
|
|
return EmitScalarConversion(Visit(E), E->getType(), DestTy,
|
|
|
|
|
CE->getExprLoc(), Opts);
|
|
|
|
|
}
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_IntegralToFloating:
|
|
|
|
|
case CK_FloatingToIntegral:
|
|
|
|
|
case CK_FloatingCast:
|
2015-08-11 12:19:28 +08:00
|
|
|
return EmitScalarConversion(Visit(E), E->getType(), DestTy,
|
|
|
|
|
CE->getExprLoc());
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
case CK_BooleanToSignedIntegral: {
|
|
|
|
|
ScalarConversionOpts Opts;
|
|
|
|
|
Opts.TreatBooleanAsSigned = true;
|
2016-01-13 09:52:39 +08:00
|
|
|
return EmitScalarConversion(Visit(E), E->getType(), DestTy,
|
[clang][ubsan] Implicit Conversion Sanitizer - integer truncation - clang part
Summary:
C and C++ are interesting languages. They are statically typed, but weakly.
The implicit conversions are allowed. This is nice, allows to write code
while balancing between getting drowned in everything being convertible,
and nothing being convertible. As usual, this comes with a price:
```
unsigned char store = 0;
bool consume(unsigned int val);
void test(unsigned long val) {
if (consume(val)) {
// the 'val' is `unsigned long`, but `consume()` takes `unsigned int`.
// If their bit widths are different on this platform, the implicit
// truncation happens. And if that `unsigned long` had a value bigger
// than UINT_MAX, then you may or may not have a bug.
// Similarly, integer addition happens on `int`s, so `store` will
// be promoted to an `int`, the sum calculated (0+768=768),
// and the result demoted to `unsigned char`, and stored to `store`.
// In this case, the `store` will still be 0. Again, not always intended.
store = store + 768; // before addition, 'store' was promoted to int.
}
// But yes, sometimes this is intentional.
// You can either make the conversion explicit
(void)consume((unsigned int)val);
// or mask the value so no bits will be *implicitly* lost.
(void)consume((~((unsigned int)0)) & val);
}
```
Yes, there is a `-Wconversion`` diagnostic group, but first, it is kinda
noisy, since it warns on everything (unlike sanitizers, warning on an
actual issues), and second, there are cases where it does **not** warn.
So a Sanitizer is needed. I don't have any motivational numbers, but i know
i had this kind of problem 10-20 times, and it was never easy to track down.
The logic to detect whether an truncation has happened is pretty simple
if you think about it - https://godbolt.org/g/NEzXbb - basically, just
extend (using the new, not original!, signedness) the 'truncated' value
back to it's original width, and equality-compare it with the original value.
The most non-trivial thing here is the logic to detect whether this
`ImplicitCastExpr` AST node is **actually** an implicit conversion, //or//
part of an explicit cast. Because the explicit casts are modeled as an outer
`ExplicitCastExpr` with some `ImplicitCastExpr`'s as **direct** children.
https://godbolt.org/g/eE1GkJ
Nowadays, we can just use the new `part_of_explicit_cast` flag, which is set
on all the implicitly-added `ImplicitCastExpr`'s of an `ExplicitCastExpr`.
So if that flag is **not** set, then it is an actual implicit conversion.
As you may have noted, this isn't just named `-fsanitize=implicit-integer-truncation`.
There are potentially some more implicit conversions to be warned about.
Namely, implicit conversions that result in sign change; implicit conversion
between different floating point types, or between fp and an integer,
when again, that conversion is lossy.
One thing i know isn't handled is bitfields.
This is a clang part.
The compiler-rt part is D48959.
Fixes [[ https://bugs.llvm.org/show_bug.cgi?id=21530 | PR21530 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=37552 | PR37552 ]], [[ https://bugs.llvm.org/show_bug.cgi?id=35409 | PR35409 ]].
Partially fixes [[ https://bugs.llvm.org/show_bug.cgi?id=9821 | PR9821 ]].
Fixes https://github.com/google/sanitizers/issues/940. (other than sign-changing implicit conversions)
Reviewers: rjmccall, rsmith, samsonov, pcc, vsk, eugenis, efriedma, kcc, erichkeane
Reviewed By: rsmith, vsk, erichkeane
Subscribers: erichkeane, klimek, #sanitizers, aaron.ballman, RKSimon, dtzWill, filcab, danielaustin, ygribov, dvyukov, milianw, mclow.lists, cfe-commits, regehr
Tags: #sanitizers
Differential Revision: https://reviews.llvm.org/D48958
llvm-svn: 338288
2018-07-31 02:58:30 +08:00
|
|
|
CE->getExprLoc(), Opts);
|
|
|
|
|
}
|
2010-11-15 17:13:47 +08:00
|
|
|
case CK_IntegralToBoolean:
|
|
|
|
|
return EmitIntToBoolConversion(Visit(E));
|
|
|
|
|
case CK_PointerToBoolean:
|
2016-12-15 16:09:08 +08:00
|
|
|
return EmitPointerToBoolConversion(Visit(E), E->getType());
|
2010-11-15 17:13:47 +08:00
|
|
|
case CK_FloatingToBoolean:
|
|
|
|
|
return EmitFloatToBoolConversion(Visit(E));
|
2010-08-25 19:45:40 +08:00
|
|
|
case CK_MemberPointerToBoolean: {
|
2010-08-23 09:21:21 +08:00
|
|
|
llvm::Value *MemPtr = Visit(E);
|
|
|
|
|
const MemberPointerType *MPT = E->getType()->getAs<MemberPointerType>();
|
|
|
|
|
return CGF.CGM.getCXXABI().EmitMemberPointerIsNotNull(CGF, MemPtr, MPT);
|
2009-08-25 02:26:39 +08:00
|
|
|
}
|
2010-11-14 16:17:51 +08:00
|
|
|
|
|
|
|
|
case CK_FloatingComplexToReal:
|
|
|
|
|
case CK_IntegralComplexToReal:
|
2010-11-16 18:08:07 +08:00
|
|
|
return CGF.EmitComplexExpr(E, false, true).first;
|
2010-11-14 16:17:51 +08:00
|
|
|
|
|
|
|
|
case CK_FloatingComplexToBoolean:
|
|
|
|
|
case CK_IntegralComplexToBoolean: {
|
2010-11-16 18:08:07 +08:00
|
|
|
CodeGenFunction::ComplexPairTy V = CGF.EmitComplexExpr(E);
|
2010-11-14 16:17:51 +08:00
|
|
|
|
|
|
|
|
// TODO: kill this function off, inline appropriate case here
|
2015-08-11 12:19:28 +08:00
|
|
|
return EmitComplexToScalarConversion(V, E->getType(), DestTy,
|
|
|
|
|
CE->getExprLoc());
|
2010-11-14 16:17:51 +08:00
|
|
|
}
|
|
|
|
|
|
2018-10-23 23:19:20 +08:00
|
|
|
case CK_ZeroToOCLOpaqueType: {
|
2018-11-08 19:25:41 +08:00
|
|
|
assert((DestTy->isEventT() || DestTy->isQueueT() ||
|
|
|
|
|
DestTy->isOCLIntelSubgroupAVCType()) &&
|
2018-10-23 23:19:20 +08:00
|
|
|
"CK_ZeroToOCLEvent cast on non-event type");
|
2016-12-23 22:55:49 +08:00
|
|
|
return llvm::Constant::getNullValue(ConvertType(DestTy));
|
|
|
|
|
}
|
|
|
|
|
|
2016-07-29 03:26:30 +08:00
|
|
|
case CK_IntToOCLSampler:
|
2017-09-08 23:15:00 +08:00
|
|
|
return CGF.CGM.createOpenCLIntToSamplerConversion(E, CGF);
|
2016-07-29 03:26:30 +08:00
|
|
|
|
|
|
|
|
} // end of switch
|
2007-08-26 15:16:41 +08:00
|
|
|
|
2010-11-16 14:21:14 +08:00
|
|
|
llvm_unreachable("unknown scalar cast");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
2007-09-01 06:09:40 +08:00
|
|
|
Value *ScalarExprEmitter::VisitStmtExpr(const StmtExpr *E) {
|
2011-01-26 12:00:11 +08:00
|
|
|
CodeGenFunction::StmtExprEvaluation eval(CGF);
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Address RetAlloca = CGF.EmitCompoundStmt(*E->getSubStmt(),
|
|
|
|
|
!E->getType()->isVoidType());
|
|
|
|
|
if (!RetAlloca.isValid())
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2013-10-02 10:29:49 +08:00
|
|
|
return CGF.EmitLoadOfScalar(CGF.MakeAddrLValue(RetAlloca, E->getType()),
|
|
|
|
|
E->getExprLoc());
|
2007-09-01 06:09:40 +08:00
|
|
|
}
|
|
|
|
|
|
2017-03-07 06:18:34 +08:00
|
|
|
Value *ScalarExprEmitter::VisitExprWithCleanups(ExprWithCleanups *E) {
|
|
|
|
|
CGF.enterFullExpression(E);
|
|
|
|
|
CodeGenFunction::RunCleanupsScope Scope(CGF);
|
|
|
|
|
Value *V = Visit(E->getSubExpr());
|
|
|
|
|
// Defend against dominance problems caused by jumps out of expression
|
|
|
|
|
// evaluation through the shared cleanup block.
|
|
|
|
|
Scope.ForceCleanup({&V});
|
|
|
|
|
return V;
|
|
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
// Unary Operators
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
2015-04-23 09:50:45 +08:00
|
|
|
static BinOpInfo createBinOpInfoFromIncDec(const UnaryOperator *E,
|
|
|
|
|
llvm::Value *InVal, bool IsInc) {
|
|
|
|
|
BinOpInfo BinOp;
|
|
|
|
|
BinOp.LHS = InVal;
|
|
|
|
|
BinOp.RHS = llvm::ConstantInt::get(InVal->getType(), 1, false);
|
|
|
|
|
BinOp.Ty = E->getType();
|
|
|
|
|
BinOp.Opcode = IsInc ? BO_Add : BO_Sub;
|
2017-03-28 03:17:25 +08:00
|
|
|
// FIXME: once UnaryOperator carries FPFeatures, copy it here.
|
2015-04-23 09:50:45 +08:00
|
|
|
BinOp.E = E;
|
|
|
|
|
return BinOp;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
llvm::Value *ScalarExprEmitter::EmitIncDecConsiderOverflowBehavior(
|
|
|
|
|
const UnaryOperator *E, llvm::Value *InVal, bool IsInc) {
|
|
|
|
|
llvm::Value *Amount =
|
|
|
|
|
llvm::ConstantInt::get(InVal->getType(), IsInc ? 1 : -1, true);
|
|
|
|
|
StringRef Name = IsInc ? "inc" : "dec";
|
2012-11-02 06:30:59 +08:00
|
|
|
switch (CGF.getLangOpts().getSignedOverflowBehavior()) {
|
2011-02-07 10:17:30 +08:00
|
|
|
case LangOptions::SOB_Defined:
|
2015-04-23 09:50:45 +08:00
|
|
|
return Builder.CreateAdd(InVal, Amount, Name);
|
2012-08-25 08:32:28 +08:00
|
|
|
case LangOptions::SOB_Undefined:
|
2014-11-08 06:29:38 +08:00
|
|
|
if (!CGF.SanOpts.has(SanitizerKind::SignedIntegerOverflow))
|
2018-04-16 16:31:08 +08:00
|
|
|
return Builder.CreateNSWAdd(InVal, Amount, Name);
|
Fix clang -Wimplicit-fallthrough warnings across llvm, NFC
This patch should not introduce any behavior changes. It consists of
mostly one of two changes:
1. Replacing fall through comments with the LLVM_FALLTHROUGH macro
2. Inserting 'break' before falling through into a case block consisting
of only 'break'.
We were already using this warning with GCC, but its warning behaves
slightly differently. In this patch, the following differences are
relevant:
1. GCC recognizes comments that say "fall through" as annotations, clang
doesn't
2. GCC doesn't warn on "case N: foo(); default: break;", clang does
3. GCC doesn't warn when the case contains a switch, but falls through
the outer case.
I will enable the warning separately in a follow-up patch so that it can
be cleanly reverted if necessary.
Reviewers: alexfh, rsmith, lattner, rtrieu, EricWF, bollu
Differential Revision: https://reviews.llvm.org/D53950
llvm-svn: 345882
2018-11-02 03:54:45 +08:00
|
|
|
LLVM_FALLTHROUGH;
|
2018-04-16 16:31:08 +08:00
|
|
|
case LangOptions::SOB_Trapping:
|
|
|
|
|
if (!E->canOverflow())
|
|
|
|
|
return Builder.CreateNSWAdd(InVal, Amount, Name);
|
|
|
|
|
return EmitOverflowCheckedBinOp(createBinOpInfoFromIncDec(E, InVal, IsInc));
|
|
|
|
|
}
|
2011-09-23 13:06:16 +08:00
|
|
|
llvm_unreachable("Unknown SignedOverflowBehaviorTy");
|
2011-02-07 10:17:30 +08:00
|
|
|
}
|
|
|
|
|
|
2011-02-15 17:22:45 +08:00
|
|
|
llvm::Value *
|
|
|
|
|
ScalarExprEmitter::EmitScalarPrePostIncDec(const UnaryOperator *E, LValue LV,
|
|
|
|
|
bool isInc, bool isPre) {
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-02-15 17:22:45 +08:00
|
|
|
QualType type = E->getSubExpr()->getType();
|
2014-05-21 13:09:00 +08:00
|
|
|
llvm::PHINode *atomicPHI = nullptr;
|
2013-03-04 00:02:42 +08:00
|
|
|
llvm::Value *value;
|
|
|
|
|
llvm::Value *input;
|
2011-02-15 17:22:45 +08:00
|
|
|
|
|
|
|
|
int amount = (isInc ? 1 : -1);
|
2017-07-14 04:55:26 +08:00
|
|
|
bool isSubtraction = !isInc;
|
2011-02-15 17:22:45 +08:00
|
|
|
|
2012-01-17 01:27:18 +08:00
|
|
|
if (const AtomicType *atomicTy = type->getAs<AtomicType>()) {
|
2013-03-04 00:02:42 +08:00
|
|
|
type = atomicTy->getValueType();
|
|
|
|
|
if (isInc && type->isBooleanType()) {
|
|
|
|
|
llvm::Value *True = CGF.EmitToMemory(Builder.getTrue(), type);
|
|
|
|
|
if (isPre) {
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Builder.CreateStore(True, LV.getAddress(), LV.isVolatileQualified())
|
2016-04-07 01:26:42 +08:00
|
|
|
->setAtomic(llvm::AtomicOrdering::SequentiallyConsistent);
|
2013-03-04 00:02:42 +08:00
|
|
|
return Builder.getTrue();
|
|
|
|
|
}
|
|
|
|
|
// For atomic bool increment, we just store true and return it for
|
|
|
|
|
// preincrement, do an atomic swap with true for postincrement
|
2016-04-07 01:26:42 +08:00
|
|
|
return Builder.CreateAtomicRMW(
|
|
|
|
|
llvm::AtomicRMWInst::Xchg, LV.getPointer(), True,
|
|
|
|
|
llvm::AtomicOrdering::SequentiallyConsistent);
|
2013-03-04 00:02:42 +08:00
|
|
|
}
|
|
|
|
|
// Special case for atomic increment / decrement on integers, emit
|
|
|
|
|
// atomicrmw instructions. We skip this if we want to be doing overflow
|
2013-07-26 14:16:11 +08:00
|
|
|
// checking, and fall into the slow path with the atomic cmpxchg loop.
|
2013-03-04 00:02:42 +08:00
|
|
|
if (!type->isBooleanType() && type->isIntegerType() &&
|
|
|
|
|
!(type->isUnsignedIntegerType() &&
|
2014-11-08 06:29:38 +08:00
|
|
|
CGF.SanOpts.has(SanitizerKind::UnsignedIntegerOverflow)) &&
|
2013-03-04 00:02:42 +08:00
|
|
|
CGF.getLangOpts().getSignedOverflowBehavior() !=
|
2014-11-08 06:29:38 +08:00
|
|
|
LangOptions::SOB_Trapping) {
|
2013-03-04 00:02:42 +08:00
|
|
|
llvm::AtomicRMWInst::BinOp aop = isInc ? llvm::AtomicRMWInst::Add :
|
|
|
|
|
llvm::AtomicRMWInst::Sub;
|
|
|
|
|
llvm::Instruction::BinaryOps op = isInc ? llvm::Instruction::Add :
|
|
|
|
|
llvm::Instruction::Sub;
|
|
|
|
|
llvm::Value *amt = CGF.EmitToMemory(
|
|
|
|
|
llvm::ConstantInt::get(ConvertType(type), 1, true), type);
|
|
|
|
|
llvm::Value *old = Builder.CreateAtomicRMW(aop,
|
2016-04-07 01:26:42 +08:00
|
|
|
LV.getPointer(), amt, llvm::AtomicOrdering::SequentiallyConsistent);
|
2013-03-04 00:02:42 +08:00
|
|
|
return isPre ? Builder.CreateBinOp(op, old, amt) : old;
|
|
|
|
|
}
|
2013-10-02 10:29:49 +08:00
|
|
|
value = EmitLoadOfLValue(LV, E->getExprLoc());
|
2013-03-04 00:02:42 +08:00
|
|
|
input = value;
|
|
|
|
|
// For every other atomic operation, we need to emit a load-op-cmpxchg loop
|
2012-01-17 01:27:18 +08:00
|
|
|
llvm::BasicBlock *startBB = Builder.GetInsertBlock();
|
|
|
|
|
llvm::BasicBlock *opBB = CGF.createBasicBlock("atomic_op", CGF.CurFn);
|
2013-03-04 00:02:42 +08:00
|
|
|
value = CGF.EmitToMemory(value, type);
|
2012-01-17 01:27:18 +08:00
|
|
|
Builder.CreateBr(opBB);
|
|
|
|
|
Builder.SetInsertPoint(opBB);
|
|
|
|
|
atomicPHI = Builder.CreatePHI(value->getType(), 2);
|
|
|
|
|
atomicPHI->addIncoming(value, startBB);
|
|
|
|
|
value = atomicPHI;
|
2013-03-04 00:02:42 +08:00
|
|
|
} else {
|
2013-10-02 10:29:49 +08:00
|
|
|
value = EmitLoadOfLValue(LV, E->getExprLoc());
|
2013-03-04 00:02:42 +08:00
|
|
|
input = value;
|
2012-01-17 01:27:18 +08:00
|
|
|
}
|
|
|
|
|
|
2011-02-15 17:22:45 +08:00
|
|
|
// Special case of integer increment that we have to check first: bool++.
|
|
|
|
|
// Due to promotion rules, we get:
|
|
|
|
|
// bool++ -> bool = bool + 1
|
|
|
|
|
// -> bool = (int)bool + 1
|
|
|
|
|
// -> bool = ((int)bool + 1 != 0)
|
|
|
|
|
// An interesting aspect of this is that increment is always true.
|
|
|
|
|
// Decrement does not have this property.
|
|
|
|
|
if (isInc && type->isBooleanType()) {
|
|
|
|
|
value = Builder.getTrue();
|
|
|
|
|
|
|
|
|
|
// Most common case by far: integer increment.
|
2018-04-16 16:31:08 +08:00
|
|
|
} else if (type->isIntegerType()) {
|
|
|
|
|
// Note that signed integer inc/dec with width less than int can't
|
|
|
|
|
// overflow because of promotion rules; we're just eliding a few steps here.
|
|
|
|
|
if (E->canOverflow() && type->isSignedIntegerOrEnumerationType()) {
|
|
|
|
|
value = EmitIncDecConsiderOverflowBehavior(E, value, isInc);
|
|
|
|
|
} else if (E->canOverflow() && type->isUnsignedIntegerType() &&
|
|
|
|
|
CGF.SanOpts.has(SanitizerKind::UnsignedIntegerOverflow)) {
|
|
|
|
|
value =
|
|
|
|
|
EmitOverflowCheckedBinOp(createBinOpInfoFromIncDec(E, value, isInc));
|
2015-04-23 09:50:45 +08:00
|
|
|
} else {
|
|
|
|
|
llvm::Value *amt = llvm::ConstantInt::get(value->getType(), amount, true);
|
2011-02-15 17:22:45 +08:00
|
|
|
value = Builder.CreateAdd(value, amt, isInc ? "inc" : "dec");
|
2015-04-23 09:50:45 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-02-15 17:22:45 +08:00
|
|
|
// Next most common: pointer increment.
|
|
|
|
|
} else if (const PointerType *ptr = type->getAs<PointerType>()) {
|
|
|
|
|
QualType type = ptr->getPointeeType();
|
|
|
|
|
|
|
|
|
|
// VLA types don't have constant size.
|
2011-06-25 09:32:37 +08:00
|
|
|
if (const VariableArrayType *vla
|
|
|
|
|
= CGF.getContext().getAsVariableArrayType(type)) {
|
2018-02-03 21:55:59 +08:00
|
|
|
llvm::Value *numElts = CGF.getVLASize(vla).NumElts;
|
2011-06-25 05:55:10 +08:00
|
|
|
if (!isInc) numElts = Builder.CreateNSWNeg(numElts, "vla.negsize");
|
2012-11-02 06:30:59 +08:00
|
|
|
if (CGF.getLangOpts().isSignedOverflowDefined())
|
2011-06-25 05:55:10 +08:00
|
|
|
value = Builder.CreateGEP(value, numElts, "vla.inc");
|
2011-03-01 08:03:48 +08:00
|
|
|
else
|
2017-07-14 04:55:26 +08:00
|
|
|
value = CGF.EmitCheckedInBoundsGEP(
|
|
|
|
|
value, numElts, /*SignedIndices=*/false, isSubtraction,
|
|
|
|
|
E->getExprLoc(), "vla.inc");
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-02-15 17:22:45 +08:00
|
|
|
// Arithmetic on function pointers (!) is just +-1.
|
|
|
|
|
} else if (type->isFunctionType()) {
|
2011-04-20 06:55:03 +08:00
|
|
|
llvm::Value *amt = Builder.getInt32(amount);
|
2011-02-15 17:22:45 +08:00
|
|
|
|
|
|
|
|
value = CGF.EmitCastToVoidPtr(value);
|
2012-11-02 06:30:59 +08:00
|
|
|
if (CGF.getLangOpts().isSignedOverflowDefined())
|
2011-03-01 08:03:48 +08:00
|
|
|
value = Builder.CreateGEP(value, amt, "incdec.funcptr");
|
|
|
|
|
else
|
2017-07-14 04:55:26 +08:00
|
|
|
value = CGF.EmitCheckedInBoundsGEP(value, amt, /*SignedIndices=*/false,
|
|
|
|
|
isSubtraction, E->getExprLoc(),
|
|
|
|
|
"incdec.funcptr");
|
2011-02-15 17:22:45 +08:00
|
|
|
value = Builder.CreateBitCast(value, input->getType());
|
|
|
|
|
|
|
|
|
|
// For everything else, we can just do a simple increment.
|
2010-06-27 06:09:34 +08:00
|
|
|
} else {
|
2011-04-20 06:55:03 +08:00
|
|
|
llvm::Value *amt = Builder.getInt32(amount);
|
2012-11-02 06:30:59 +08:00
|
|
|
if (CGF.getLangOpts().isSignedOverflowDefined())
|
2011-03-01 08:03:48 +08:00
|
|
|
value = Builder.CreateGEP(value, amt, "incdec.ptr");
|
|
|
|
|
else
|
2017-07-14 04:55:26 +08:00
|
|
|
value = CGF.EmitCheckedInBoundsGEP(value, amt, /*SignedIndices=*/false,
|
|
|
|
|
isSubtraction, E->getExprLoc(),
|
|
|
|
|
"incdec.ptr");
|
2010-06-27 06:09:34 +08:00
|
|
|
}
|
2011-02-15 17:22:45 +08:00
|
|
|
|
|
|
|
|
// Vector increment/decrement.
|
|
|
|
|
} else if (type->isVectorType()) {
|
|
|
|
|
if (type->hasIntegerRepresentation()) {
|
|
|
|
|
llvm::Value *amt = llvm::ConstantInt::get(value->getType(), amount);
|
|
|
|
|
|
2011-05-07 02:04:18 +08:00
|
|
|
value = Builder.CreateAdd(value, amt, isInc ? "inc" : "dec");
|
2011-02-07 10:17:30 +08:00
|
|
|
} else {
|
2011-02-15 17:22:45 +08:00
|
|
|
value = Builder.CreateFAdd(
|
|
|
|
|
value,
|
|
|
|
|
llvm::ConstantFP::get(value->getType(), amount),
|
2011-02-07 10:17:30 +08:00
|
|
|
isInc ? "inc" : "dec");
|
|
|
|
|
}
|
|
|
|
|
|
2011-02-15 17:22:45 +08:00
|
|
|
// Floating point.
|
|
|
|
|
} else if (type->isRealFloatingType()) {
|
2010-06-27 06:09:34 +08:00
|
|
|
// Add the inc/dec to the real part.
|
2011-02-15 17:22:45 +08:00
|
|
|
llvm::Value *amt;
|
2011-10-15 07:23:15 +08:00
|
|
|
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
if (type->isHalfType() && !CGF.getContext().getLangOpts().NativeHalfType) {
|
2011-10-15 07:23:15 +08:00
|
|
|
// Another special case: half FP increment should be done via float
|
[CodeGen][X86] Fix handling of __fp16 vectors.
This commit fixes a bug in IRGen where it generates completely broken
code for __fp16 vectors on X86. For example when the following code is
compiled:
half4 hv0, hv1, hv2; // these are vectors of __fp16.
void foo221() {
hv0 = hv1 + hv2;
}
clang generates the following IR, in which two i16 vectors are added:
@hv1 = common global <4 x i16> zeroinitializer, align 8
@hv2 = common global <4 x i16> zeroinitializer, align 8
@hv0 = common global <4 x i16> zeroinitializer, align 8
define void @foo221() {
%0 = load <4 x i16>, <4 x i16>* @hv1, align 8
%1 = load <4 x i16>, <4 x i16>* @hv2, align 8
%add = add <4 x i16> %0, %1
store <4 x i16> %add, <4 x i16>* @hv0, align 8
ret void
}
To fix the bug, this commit uses the code committed in r314056, which
modified clang to promote and truncate __fp16 vectors to and from float
vectors in the AST. It also fixes another IRGen bug where a short value
is assigned to an __fp16 variable without any integer-to-floating-point
conversion, as shown in the following example:
__fp16 a;
short b;
void foo1() {
a = b;
}
@b = common global i16 0, align 2
@a = common global i16 0, align 2
define void @foo1() #0 {
%0 = load i16, i16* @b, align 2
store i16 %0, i16* @a, align 2
ret void
}
rdar://problem/20625184
Differential Revision: https://reviews.llvm.org/D40112
llvm-svn: 320215
2017-12-09 08:02:37 +08:00
|
|
|
if (CGF.getContext().getTargetInfo().useFP16ConversionIntrinsics()) {
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
value = Builder.CreateCall(
|
|
|
|
|
CGF.CGM.getIntrinsic(llvm::Intrinsic::convert_from_fp16,
|
|
|
|
|
CGF.CGM.FloatTy),
|
|
|
|
|
input, "incdec.conv");
|
|
|
|
|
} else {
|
|
|
|
|
value = Builder.CreateFPExt(input, CGF.CGM.FloatTy, "incdec.conv");
|
|
|
|
|
}
|
2011-10-15 07:23:15 +08:00
|
|
|
}
|
|
|
|
|
|
2011-02-15 17:22:45 +08:00
|
|
|
if (value->getType()->isFloatTy())
|
|
|
|
|
amt = llvm::ConstantFP::get(VMContext,
|
|
|
|
|
llvm::APFloat(static_cast<float>(amount)));
|
|
|
|
|
else if (value->getType()->isDoubleTy())
|
|
|
|
|
amt = llvm::ConstantFP::get(VMContext,
|
|
|
|
|
llvm::APFloat(static_cast<double>(amount)));
|
2010-06-27 06:09:34 +08:00
|
|
|
else {
|
2016-05-09 16:52:33 +08:00
|
|
|
// Remaining types are Half, LongDouble or __float128. Convert from float.
|
2011-02-15 17:22:45 +08:00
|
|
|
llvm::APFloat F(static_cast<float>(amount));
|
2010-06-27 06:09:34 +08:00
|
|
|
bool ignored;
|
2016-05-09 16:52:33 +08:00
|
|
|
const llvm::fltSemantics *FS;
|
2015-03-25 07:44:42 +08:00
|
|
|
// Don't use getFloatTypeSemantics because Half isn't
|
|
|
|
|
// necessarily represented using the "half" LLVM type.
|
2016-05-09 16:52:33 +08:00
|
|
|
if (value->getType()->isFP128Ty())
|
|
|
|
|
FS = &CGF.getTarget().getFloat128Format();
|
|
|
|
|
else if (value->getType()->isHalfTy())
|
|
|
|
|
FS = &CGF.getTarget().getHalfFormat();
|
|
|
|
|
else
|
|
|
|
|
FS = &CGF.getTarget().getLongDoubleFormat();
|
|
|
|
|
F.convert(*FS, llvm::APFloat::rmTowardZero, &ignored);
|
2011-02-15 17:22:45 +08:00
|
|
|
amt = llvm::ConstantFP::get(VMContext, F);
|
2010-06-27 06:09:34 +08:00
|
|
|
}
|
2011-02-15 17:22:45 +08:00
|
|
|
value = Builder.CreateFAdd(value, amt, isInc ? "inc" : "dec");
|
|
|
|
|
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
if (type->isHalfType() && !CGF.getContext().getLangOpts().NativeHalfType) {
|
[CodeGen][X86] Fix handling of __fp16 vectors.
This commit fixes a bug in IRGen where it generates completely broken
code for __fp16 vectors on X86. For example when the following code is
compiled:
half4 hv0, hv1, hv2; // these are vectors of __fp16.
void foo221() {
hv0 = hv1 + hv2;
}
clang generates the following IR, in which two i16 vectors are added:
@hv1 = common global <4 x i16> zeroinitializer, align 8
@hv2 = common global <4 x i16> zeroinitializer, align 8
@hv0 = common global <4 x i16> zeroinitializer, align 8
define void @foo221() {
%0 = load <4 x i16>, <4 x i16>* @hv1, align 8
%1 = load <4 x i16>, <4 x i16>* @hv2, align 8
%add = add <4 x i16> %0, %1
store <4 x i16> %add, <4 x i16>* @hv0, align 8
ret void
}
To fix the bug, this commit uses the code committed in r314056, which
modified clang to promote and truncate __fp16 vectors to and from float
vectors in the AST. It also fixes another IRGen bug where a short value
is assigned to an __fp16 variable without any integer-to-floating-point
conversion, as shown in the following example:
__fp16 a;
short b;
void foo1() {
a = b;
}
@b = common global i16 0, align 2
@a = common global i16 0, align 2
define void @foo1() #0 {
%0 = load i16, i16* @b, align 2
store i16 %0, i16* @a, align 2
ret void
}
rdar://problem/20625184
Differential Revision: https://reviews.llvm.org/D40112
llvm-svn: 320215
2017-12-09 08:02:37 +08:00
|
|
|
if (CGF.getContext().getTargetInfo().useFP16ConversionIntrinsics()) {
|
[CodeGen] Properly support the half FP type with non-native operations.
On AArch64, the -fallow-half-args-and-returns option is the default.
With it, the half type is considered legal (rather than the i16 used
normally for __fp16), but no operation is, except conversions and
load/stores and such.
The previous behavior was tantamount to saying LangOpts.NativeHalfType
was implied by LangOpts.HalfArgsAndReturns, which isn't true.
Instead, teach the various parts of CodeGen that already know about
half (using the intrinsics or not) about this weird in-between case,
where the "half" type is legal, but operations on it aren't.
This is a smaller intermediate step to the end-goal of removing the
intrinsic, always using "half", and letting the backend legalize.
Builds on r232968.
rdar://20045970, rdar://17468714
Differential Revision: http://reviews.llvm.org/D8367
llvm-svn: 232971
2015-03-24 01:54:16 +08:00
|
|
|
value = Builder.CreateCall(
|
|
|
|
|
CGF.CGM.getIntrinsic(llvm::Intrinsic::convert_to_fp16,
|
|
|
|
|
CGF.CGM.FloatTy),
|
|
|
|
|
value, "incdec.conv");
|
|
|
|
|
} else {
|
|
|
|
|
value = Builder.CreateFPTrunc(value, input->getType(), "incdec.conv");
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-10-15 07:23:15 +08:00
|
|
|
|
2011-02-15 17:22:45 +08:00
|
|
|
// Objective-C pointer types.
|
|
|
|
|
} else {
|
|
|
|
|
const ObjCObjectPointerType *OPT = type->castAs<ObjCObjectPointerType>();
|
|
|
|
|
value = CGF.EmitCastToVoidPtr(value);
|
|
|
|
|
|
|
|
|
|
CharUnits size = CGF.getContext().getTypeSizeInChars(OPT->getObjectType());
|
|
|
|
|
if (!isInc) size = -size;
|
|
|
|
|
llvm::Value *sizeValue =
|
|
|
|
|
llvm::ConstantInt::get(CGF.SizeTy, size.getQuantity());
|
|
|
|
|
|
2012-11-02 06:30:59 +08:00
|
|
|
if (CGF.getLangOpts().isSignedOverflowDefined())
|
2011-03-01 08:03:48 +08:00
|
|
|
value = Builder.CreateGEP(value, sizeValue, "incdec.objptr");
|
|
|
|
|
else
|
2017-07-14 04:55:26 +08:00
|
|
|
value = CGF.EmitCheckedInBoundsGEP(value, sizeValue,
|
|
|
|
|
/*SignedIndices=*/false, isSubtraction,
|
2017-06-13 02:42:51 +08:00
|
|
|
E->getExprLoc(), "incdec.objptr");
|
2011-02-15 17:22:45 +08:00
|
|
|
value = Builder.CreateBitCast(value, input->getType());
|
2010-06-27 06:09:34 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2012-01-17 01:27:18 +08:00
|
|
|
if (atomicPHI) {
|
2019-02-28 08:47:55 +08:00
|
|
|
llvm::BasicBlock *curBlock = Builder.GetInsertBlock();
|
2012-01-17 01:27:18 +08:00
|
|
|
llvm::BasicBlock *contBB = CGF.createBasicBlock("atomic_cont", CGF.CurFn);
|
2014-12-15 13:25:25 +08:00
|
|
|
auto Pair = CGF.EmitAtomicCompareExchange(
|
2015-03-30 13:20:59 +08:00
|
|
|
LV, RValue::get(atomicPHI), RValue::get(value), E->getExprLoc());
|
|
|
|
|
llvm::Value *old = CGF.EmitToMemory(Pair.first.getScalarVal(), type);
|
|
|
|
|
llvm::Value *success = Pair.second;
|
2019-02-28 08:47:55 +08:00
|
|
|
atomicPHI->addIncoming(old, curBlock);
|
|
|
|
|
Builder.CreateCondBr(success, contBB, atomicPHI->getParent());
|
2012-01-17 01:27:18 +08:00
|
|
|
Builder.SetInsertPoint(contBB);
|
|
|
|
|
return isPre ? value : input;
|
|
|
|
|
}
|
2011-10-15 07:23:15 +08:00
|
|
|
|
2010-06-27 06:09:34 +08:00
|
|
|
// Store the updated result through the lvalue.
|
|
|
|
|
if (LV.isBitField())
|
2011-06-25 10:11:03 +08:00
|
|
|
CGF.EmitStoreThroughBitfieldLValue(RValue::get(value), LV, &value);
|
2010-06-27 06:09:34 +08:00
|
|
|
else
|
2011-06-25 10:11:03 +08:00
|
|
|
CGF.EmitStoreThroughLValue(RValue::get(value), LV);
|
2011-10-15 07:23:15 +08:00
|
|
|
|
2010-06-27 06:09:34 +08:00
|
|
|
// If this is a postinc, return the value read from memory, otherwise use the
|
|
|
|
|
// updated value.
|
2011-02-15 17:22:45 +08:00
|
|
|
return isPre ? value : input;
|
2010-06-27 06:09:34 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *ScalarExprEmitter::VisitUnaryMinus(const UnaryOperator *E) {
|
2009-05-29 23:46:01 +08:00
|
|
|
TestAndClearIgnoreResultAssign();
|
2010-06-27 05:48:21 +08:00
|
|
|
// Emit unary minus with EmitSub so we handle overflow cases etc.
|
|
|
|
|
BinOpInfo BinOp;
|
2010-06-29 01:12:37 +08:00
|
|
|
BinOp.RHS = Visit(E->getSubExpr());
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-06-29 01:12:37 +08:00
|
|
|
if (BinOp.RHS->getType()->isFPOrFPVectorTy())
|
|
|
|
|
BinOp.LHS = llvm::ConstantFP::getZeroValueForNegation(BinOp.RHS->getType());
|
2013-07-26 14:16:11 +08:00
|
|
|
else
|
2010-06-29 01:12:37 +08:00
|
|
|
BinOp.LHS = llvm::Constant::getNullValue(BinOp.RHS->getType());
|
2010-06-27 05:48:21 +08:00
|
|
|
BinOp.Ty = E->getType();
|
2010-08-25 19:45:40 +08:00
|
|
|
BinOp.Opcode = BO_Sub;
|
2017-03-28 03:17:25 +08:00
|
|
|
// FIXME: once UnaryOperator carries FPFeatures, copy it here.
|
2010-06-27 05:48:21 +08:00
|
|
|
BinOp.E = E;
|
|
|
|
|
return EmitSub(BinOp);
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitUnaryNot(const UnaryOperator *E) {
|
2009-05-29 23:46:01 +08:00
|
|
|
TestAndClearIgnoreResultAssign();
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *Op = Visit(E->getSubExpr());
|
|
|
|
|
return Builder.CreateNot(Op, "neg");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitUnaryLNot(const UnaryOperator *E) {
|
2012-01-17 05:02:28 +08:00
|
|
|
// Perform vector logical not on comparison with zero vector.
|
|
|
|
|
if (E->getType()->isExtVectorType()) {
|
|
|
|
|
Value *Oper = Visit(E->getSubExpr());
|
|
|
|
|
Value *Zero = llvm::Constant::getNullValue(Oper->getType());
|
2013-02-21 19:49:56 +08:00
|
|
|
Value *Result;
|
|
|
|
|
if (Oper->getType()->isFPOrFPVectorTy())
|
|
|
|
|
Result = Builder.CreateFCmp(llvm::CmpInst::FCMP_OEQ, Oper, Zero, "cmp");
|
|
|
|
|
else
|
|
|
|
|
Result = Builder.CreateICmp(llvm::CmpInst::ICMP_EQ, Oper, Zero, "cmp");
|
2012-01-17 05:02:28 +08:00
|
|
|
return Builder.CreateSExt(Result, ConvertType(E->getType()), "sext");
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Compare operand to zero.
|
|
|
|
|
Value *BoolVal = CGF.EvaluateExprAsBool(E->getSubExpr());
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Invert value.
|
|
|
|
|
// TODO: Could dynamically modify easy computations here. For example, if
|
|
|
|
|
// the operand is an icmp ne, turn into icmp eq.
|
|
|
|
|
BoolVal = Builder.CreateNot(BoolVal, "lnot");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2009-05-20 02:44:53 +08:00
|
|
|
// ZExt result to the expr type.
|
|
|
|
|
return Builder.CreateZExt(BoolVal, ConvertType(E->getType()), "lnot.ext");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
2010-08-05 17:58:49 +08:00
|
|
|
Value *ScalarExprEmitter::VisitOffsetOfExpr(OffsetOfExpr *E) {
|
|
|
|
|
// Try folding the offsetof to a constant.
|
2018-12-01 07:41:18 +08:00
|
|
|
Expr::EvalResult EVResult;
|
|
|
|
|
if (E->EvaluateAsInt(EVResult, CGF.getContext())) {
|
|
|
|
|
llvm::APSInt Value = EVResult.Val.getInt();
|
2011-12-29 03:48:30 +08:00
|
|
|
return Builder.getInt(Value);
|
2018-12-01 07:41:18 +08:00
|
|
|
}
|
2010-08-05 17:58:49 +08:00
|
|
|
|
|
|
|
|
// Loop over the components of the offsetof to compute the value.
|
|
|
|
|
unsigned n = E->getNumComponents();
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type* ResultType = ConvertType(E->getType());
|
2010-08-05 17:58:49 +08:00
|
|
|
llvm::Value* Result = llvm::Constant::getNullValue(ResultType);
|
|
|
|
|
QualType CurrentType = E->getTypeSourceInfo()->getType();
|
|
|
|
|
for (unsigned i = 0; i != n; ++i) {
|
2015-12-30 06:31:18 +08:00
|
|
|
OffsetOfNode ON = E->getComponent(i);
|
2014-05-21 13:09:00 +08:00
|
|
|
llvm::Value *Offset = nullptr;
|
2010-08-05 17:58:49 +08:00
|
|
|
switch (ON.getKind()) {
|
2015-12-30 06:31:18 +08:00
|
|
|
case OffsetOfNode::Array: {
|
2010-08-05 17:58:49 +08:00
|
|
|
// Compute the index
|
|
|
|
|
Expr *IdxExpr = E->getIndexExpr(ON.getArrayExprIndex());
|
|
|
|
|
llvm::Value* Idx = CGF.EmitScalarExpr(IdxExpr);
|
2011-05-21 00:38:50 +08:00
|
|
|
bool IdxSigned = IdxExpr->getType()->isSignedIntegerOrEnumerationType();
|
2010-08-05 17:58:49 +08:00
|
|
|
Idx = Builder.CreateIntCast(Idx, ResultType, IdxSigned, "conv");
|
|
|
|
|
|
|
|
|
|
// Save the element type
|
|
|
|
|
CurrentType =
|
|
|
|
|
CGF.getContext().getAsArrayType(CurrentType)->getElementType();
|
|
|
|
|
|
|
|
|
|
// Compute the element size
|
|
|
|
|
llvm::Value* ElemSize = llvm::ConstantInt::get(ResultType,
|
|
|
|
|
CGF.getContext().getTypeSizeInChars(CurrentType).getQuantity());
|
|
|
|
|
|
|
|
|
|
// Multiply out to compute the result
|
|
|
|
|
Offset = Builder.CreateMul(Idx, ElemSize);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
2015-12-30 06:31:18 +08:00
|
|
|
case OffsetOfNode::Field: {
|
2010-08-05 17:58:49 +08:00
|
|
|
FieldDecl *MemberDecl = ON.getField();
|
|
|
|
|
RecordDecl *RD = CurrentType->getAs<RecordType>()->getDecl();
|
|
|
|
|
const ASTRecordLayout &RL = CGF.getContext().getASTRecordLayout(RD);
|
|
|
|
|
|
|
|
|
|
// Compute the index of the field in its parent.
|
|
|
|
|
unsigned i = 0;
|
|
|
|
|
// FIXME: It would be nice if we didn't have to loop here!
|
|
|
|
|
for (RecordDecl::field_iterator Field = RD->field_begin(),
|
|
|
|
|
FieldEnd = RD->field_end();
|
2012-04-30 10:36:29 +08:00
|
|
|
Field != FieldEnd; ++Field, ++i) {
|
2012-06-07 04:45:41 +08:00
|
|
|
if (*Field == MemberDecl)
|
2010-08-05 17:58:49 +08:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
assert(i < RL.getFieldCount() && "offsetof field in wrong type");
|
|
|
|
|
|
|
|
|
|
// Compute the offset to the field
|
|
|
|
|
int64_t OffsetInt = RL.getFieldOffset(i) /
|
|
|
|
|
CGF.getContext().getCharWidth();
|
|
|
|
|
Offset = llvm::ConstantInt::get(ResultType, OffsetInt);
|
|
|
|
|
|
|
|
|
|
// Save the element type.
|
|
|
|
|
CurrentType = MemberDecl->getType();
|
|
|
|
|
break;
|
|
|
|
|
}
|
2010-08-07 00:37:05 +08:00
|
|
|
|
2015-12-30 06:31:18 +08:00
|
|
|
case OffsetOfNode::Identifier:
|
2010-08-06 09:17:25 +08:00
|
|
|
llvm_unreachable("dependent __builtin_offsetof");
|
2010-08-07 00:37:05 +08:00
|
|
|
|
2015-12-30 06:31:18 +08:00
|
|
|
case OffsetOfNode::Base: {
|
2010-08-05 17:58:49 +08:00
|
|
|
if (ON.getBase()->isVirtual()) {
|
|
|
|
|
CGF.ErrorUnsupported(E, "virtual base in offsetof");
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RecordDecl *RD = CurrentType->getAs<RecordType>()->getDecl();
|
|
|
|
|
const ASTRecordLayout &RL = CGF.getContext().getASTRecordLayout(RD);
|
|
|
|
|
|
|
|
|
|
// Save the element type.
|
|
|
|
|
CurrentType = ON.getBase()->getType();
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-08-05 17:58:49 +08:00
|
|
|
// Compute the offset to the base.
|
|
|
|
|
const RecordType *BaseRT = CurrentType->getAs<RecordType>();
|
|
|
|
|
CXXRecordDecl *BaseRD = cast<CXXRecordDecl>(BaseRT->getDecl());
|
2012-07-05 02:45:14 +08:00
|
|
|
CharUnits OffsetInt = RL.getBaseClassOffset(BaseRD);
|
|
|
|
|
Offset = llvm::ConstantInt::get(ResultType, OffsetInt.getQuantity());
|
2010-08-05 17:58:49 +08:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
Result = Builder.CreateAdd(Result, Offset);
|
|
|
|
|
}
|
|
|
|
|
return Result;
|
Completely reimplement __builtin_offsetof, based on a patch by Roberto
Amadini.
This change introduces a new expression node type, OffsetOfExpr, that
describes __builtin_offsetof. Previously, __builtin_offsetof was
implemented using a unary operator whose subexpression involved
various synthesized array-subscript and member-reference expressions,
which was ugly and made it very hard to instantiate as a
template. OffsetOfExpr represents the AST more faithfully, with proper
type source information and a more compact representation.
OffsetOfExpr also has support for dependent __builtin_offsetof
expressions; it can be value-dependent, but will never be
type-dependent (like sizeof or alignof). This commit introduces
template instantiation for __builtin_offsetof as well.
There are two major caveats to this patch:
1) CodeGen cannot handle the case where __builtin_offsetof is not a
constant expression, so it produces an error. So, to avoid
regressing in C, we retain the old UnaryOperator-based
__builtin_offsetof implementation in C while using the shiny new
OffsetOfExpr implementation in C++. The old implementation can go
away once we have proper CodeGen support for this case, which we
expect won't cause much trouble in C++.
2) __builtin_offsetof doesn't work well with non-POD class types,
particularly when the designated field is found within a base
class. I will address this in a subsequent patch.
Fixes PR5880 and a bunch of assertions when building Boost.Python
tests.
llvm-svn: 102542
2010-04-29 06:16:22 +08:00
|
|
|
}
|
|
|
|
|
|
2011-03-12 03:24:49 +08:00
|
|
|
/// VisitUnaryExprOrTypeTraitExpr - Return the size or alignment of the type of
|
2008-11-12 01:56:53 +08:00
|
|
|
/// argument of the sizeof expression as an integer.
|
|
|
|
|
Value *
|
2011-03-12 03:24:49 +08:00
|
|
|
ScalarExprEmitter::VisitUnaryExprOrTypeTraitExpr(
|
|
|
|
|
const UnaryExprOrTypeTraitExpr *E) {
|
2008-11-12 01:56:53 +08:00
|
|
|
QualType TypeToSize = E->getTypeOfArgument();
|
2011-03-12 03:24:49 +08:00
|
|
|
if (E->getKind() == UETT_SizeOf) {
|
2009-09-09 21:00:44 +08:00
|
|
|
if (const VariableArrayType *VAT =
|
2009-01-25 06:19:05 +08:00
|
|
|
CGF.getContext().getAsVariableArrayType(TypeToSize)) {
|
|
|
|
|
if (E->isArgumentType()) {
|
|
|
|
|
// sizeof(type) - make sure to emit the VLA size.
|
2011-06-25 05:55:10 +08:00
|
|
|
CGF.EmitVariablyModifiedType(TypeToSize);
|
2009-04-20 11:21:44 +08:00
|
|
|
} else {
|
|
|
|
|
// C99 6.5.3.4p2: If the argument is an expression of type
|
|
|
|
|
// VLA, it is evaluated.
|
2010-12-05 10:00:02 +08:00
|
|
|
CGF.EmitIgnoredExpr(E->getArgumentExpr());
|
2009-01-25 06:19:05 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2018-02-03 21:55:59 +08:00
|
|
|
auto VlaSize = CGF.getVLASize(VAT);
|
|
|
|
|
llvm::Value *size = VlaSize.NumElts;
|
2011-06-25 05:55:10 +08:00
|
|
|
|
|
|
|
|
// Scale the number of non-VLA elements by the non-VLA element size.
|
2018-02-03 21:55:59 +08:00
|
|
|
CharUnits eltSize = CGF.getContext().getTypeSizeInChars(VlaSize.Type);
|
2011-06-25 05:55:10 +08:00
|
|
|
if (!eltSize.isOne())
|
2018-02-03 21:55:59 +08:00
|
|
|
size = CGF.Builder.CreateNUWMul(CGF.CGM.getSize(eltSize), size);
|
2011-06-25 05:55:10 +08:00
|
|
|
|
|
|
|
|
return size;
|
2008-12-21 11:33:21 +08:00
|
|
|
}
|
2015-07-02 11:40:19 +08:00
|
|
|
} else if (E->getKind() == UETT_OpenMPRequiredSimdAlign) {
|
|
|
|
|
auto Alignment =
|
|
|
|
|
CGF.getContext()
|
|
|
|
|
.toCharUnitsFromBits(CGF.getContext().getOpenMPDefaultSimdAlign(
|
|
|
|
|
E->getTypeOfArgument()->getPointeeType()))
|
|
|
|
|
.getQuantity();
|
|
|
|
|
return llvm::ConstantInt::get(CGF.SizeTy, Alignment);
|
2008-12-12 15:38:43 +08:00
|
|
|
}
|
2009-01-25 06:19:05 +08:00
|
|
|
|
2009-09-09 21:00:44 +08:00
|
|
|
// If this isn't sizeof(vla), the result must be constant; use the constant
|
|
|
|
|
// folding logic so we don't have to duplicate it here.
|
2011-12-29 03:48:30 +08:00
|
|
|
return Builder.getInt(E->EvaluateKnownConstInt(CGF.getContext()));
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-25 05:20:17 +08:00
|
|
|
Value *ScalarExprEmitter::VisitUnaryReal(const UnaryOperator *E) {
|
|
|
|
|
Expr *Op = E->getSubExpr();
|
2010-11-16 18:08:07 +08:00
|
|
|
if (Op->getType()->isAnyComplexType()) {
|
|
|
|
|
// If it's an l-value, load through the appropriate subobject l-value.
|
|
|
|
|
// Note that we have to ask E because Op might be an l-value that
|
|
|
|
|
// this won't work for, e.g. an Obj-C property.
|
2010-11-24 13:12:34 +08:00
|
|
|
if (E->isGLValue())
|
2013-10-02 10:29:49 +08:00
|
|
|
return CGF.EmitLoadOfLValue(CGF.EmitLValue(E),
|
|
|
|
|
E->getExprLoc()).getScalarVal();
|
2010-11-16 18:08:07 +08:00
|
|
|
|
|
|
|
|
// Otherwise, calculate and project.
|
|
|
|
|
return CGF.EmitComplexExpr(Op, false, true).first;
|
|
|
|
|
}
|
|
|
|
|
|
2007-08-25 05:20:17 +08:00
|
|
|
return Visit(Op);
|
|
|
|
|
}
|
2010-11-16 18:08:07 +08:00
|
|
|
|
2007-08-25 05:20:17 +08:00
|
|
|
Value *ScalarExprEmitter::VisitUnaryImag(const UnaryOperator *E) {
|
|
|
|
|
Expr *Op = E->getSubExpr();
|
2010-11-16 18:08:07 +08:00
|
|
|
if (Op->getType()->isAnyComplexType()) {
|
|
|
|
|
// If it's an l-value, load through the appropriate subobject l-value.
|
|
|
|
|
// Note that we have to ask E because Op might be an l-value that
|
|
|
|
|
// this won't work for, e.g. an Obj-C property.
|
2010-11-24 13:12:34 +08:00
|
|
|
if (Op->isGLValue())
|
2013-10-02 10:29:49 +08:00
|
|
|
return CGF.EmitLoadOfLValue(CGF.EmitLValue(E),
|
|
|
|
|
E->getExprLoc()).getScalarVal();
|
2010-11-16 18:08:07 +08:00
|
|
|
|
|
|
|
|
// Otherwise, calculate and project.
|
|
|
|
|
return CGF.EmitComplexExpr(Op, true, false).second;
|
|
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2009-05-29 23:46:01 +08:00
|
|
|
// __imag on a scalar returns zero. Emit the subexpr to ensure side
|
|
|
|
|
// effects are evaluated, but not the actual value.
|
2012-02-19 04:53:32 +08:00
|
|
|
if (Op->isGLValue())
|
|
|
|
|
CGF.EmitLValue(Op);
|
|
|
|
|
else
|
|
|
|
|
CGF.EmitScalarExpr(Op, true);
|
2009-08-01 04:28:54 +08:00
|
|
|
return llvm::Constant::getNullValue(ConvertType(E->getType()));
|
2007-08-25 05:20:17 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
// Binary Operators
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
|
|
|
|
BinOpInfo ScalarExprEmitter::EmitBinOps(const BinaryOperator *E) {
|
2009-05-29 23:46:01 +08:00
|
|
|
TestAndClearIgnoreResultAssign();
|
2007-08-24 13:35:26 +08:00
|
|
|
BinOpInfo Result;
|
|
|
|
|
Result.LHS = Visit(E->getLHS());
|
|
|
|
|
Result.RHS = Visit(E->getRHS());
|
2007-08-25 05:00:35 +08:00
|
|
|
Result.Ty = E->getType();
|
2010-06-27 05:48:21 +08:00
|
|
|
Result.Opcode = E->getOpcode();
|
2017-03-28 03:17:25 +08:00
|
|
|
Result.FPFeatures = E->getFPFeatures();
|
2007-08-24 13:35:26 +08:00
|
|
|
Result.E = E;
|
|
|
|
|
return Result;
|
|
|
|
|
}
|
|
|
|
|
|
2010-04-23 12:16:32 +08:00
|
|
|
LValue ScalarExprEmitter::EmitCompoundAssignLValue(
|
|
|
|
|
const CompoundAssignOperator *E,
|
|
|
|
|
Value *(ScalarExprEmitter::*Func)(const BinOpInfo &),
|
2010-06-30 06:00:45 +08:00
|
|
|
Value *&Result) {
|
2009-12-25 23:43:36 +08:00
|
|
|
QualType LHSTy = E->getLHS()->getType();
|
2007-08-25 05:00:35 +08:00
|
|
|
BinOpInfo OpInfo;
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2013-06-12 09:40:06 +08:00
|
|
|
if (E->getComputationResultType()->isAnyComplexType())
|
2015-02-13 05:23:20 +08:00
|
|
|
return CGF.EmitScalarCompoundAssignWithComplex(E, Result);
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-05-23 03:07:20 +08:00
|
|
|
// Emit the RHS first. __block variables need to have the rhs evaluated
|
|
|
|
|
// first, plus this should improve codegen a little.
|
|
|
|
|
OpInfo.RHS = Visit(E->getRHS());
|
|
|
|
|
OpInfo.Ty = E->getComputationResultType();
|
2010-06-27 05:48:21 +08:00
|
|
|
OpInfo.Opcode = E->getOpcode();
|
2017-03-28 03:17:25 +08:00
|
|
|
OpInfo.FPFeatures = E->getFPFeatures();
|
2009-05-23 03:07:20 +08:00
|
|
|
OpInfo.E = E;
|
2009-03-28 09:22:36 +08:00
|
|
|
// Load/convert the LHS.
|
2012-09-08 10:08:36 +08:00
|
|
|
LValue LHSLV = EmitCheckedLValue(E->getLHS(), CodeGenFunction::TCK_Store);
|
2012-01-17 01:27:18 +08:00
|
|
|
|
2014-05-21 13:09:00 +08:00
|
|
|
llvm::PHINode *atomicPHI = nullptr;
|
2013-03-04 00:02:42 +08:00
|
|
|
if (const AtomicType *atomicTy = LHSTy->getAs<AtomicType>()) {
|
|
|
|
|
QualType type = atomicTy->getValueType();
|
|
|
|
|
if (!type->isBooleanType() && type->isIntegerType() &&
|
2014-11-08 06:29:38 +08:00
|
|
|
!(type->isUnsignedIntegerType() &&
|
|
|
|
|
CGF.SanOpts.has(SanitizerKind::UnsignedIntegerOverflow)) &&
|
|
|
|
|
CGF.getLangOpts().getSignedOverflowBehavior() !=
|
|
|
|
|
LangOptions::SOB_Trapping) {
|
2013-03-04 00:02:42 +08:00
|
|
|
llvm::AtomicRMWInst::BinOp aop = llvm::AtomicRMWInst::BAD_BINOP;
|
|
|
|
|
switch (OpInfo.Opcode) {
|
|
|
|
|
// We don't have atomicrmw operands for *, %, /, <<, >>
|
|
|
|
|
case BO_MulAssign: case BO_DivAssign:
|
|
|
|
|
case BO_RemAssign:
|
|
|
|
|
case BO_ShlAssign:
|
|
|
|
|
case BO_ShrAssign:
|
|
|
|
|
break;
|
|
|
|
|
case BO_AddAssign:
|
|
|
|
|
aop = llvm::AtomicRMWInst::Add;
|
|
|
|
|
break;
|
|
|
|
|
case BO_SubAssign:
|
|
|
|
|
aop = llvm::AtomicRMWInst::Sub;
|
|
|
|
|
break;
|
|
|
|
|
case BO_AndAssign:
|
|
|
|
|
aop = llvm::AtomicRMWInst::And;
|
|
|
|
|
break;
|
|
|
|
|
case BO_XorAssign:
|
|
|
|
|
aop = llvm::AtomicRMWInst::Xor;
|
|
|
|
|
break;
|
|
|
|
|
case BO_OrAssign:
|
|
|
|
|
aop = llvm::AtomicRMWInst::Or;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
llvm_unreachable("Invalid compound assignment type");
|
|
|
|
|
}
|
|
|
|
|
if (aop != llvm::AtomicRMWInst::BAD_BINOP) {
|
2015-08-11 12:19:28 +08:00
|
|
|
llvm::Value *amt = CGF.EmitToMemory(
|
|
|
|
|
EmitScalarConversion(OpInfo.RHS, E->getRHS()->getType(), LHSTy,
|
|
|
|
|
E->getExprLoc()),
|
|
|
|
|
LHSTy);
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Builder.CreateAtomicRMW(aop, LHSLV.getPointer(), amt,
|
2016-04-07 01:26:42 +08:00
|
|
|
llvm::AtomicOrdering::SequentiallyConsistent);
|
2013-03-04 00:02:42 +08:00
|
|
|
return LHSLV;
|
|
|
|
|
}
|
|
|
|
|
}
|
2012-01-17 01:27:18 +08:00
|
|
|
// FIXME: For floating point types, we should be saving and restoring the
|
|
|
|
|
// floating point environment in the loop.
|
|
|
|
|
llvm::BasicBlock *startBB = Builder.GetInsertBlock();
|
|
|
|
|
llvm::BasicBlock *opBB = CGF.createBasicBlock("atomic_op", CGF.CurFn);
|
2013-10-02 10:29:49 +08:00
|
|
|
OpInfo.LHS = EmitLoadOfLValue(LHSLV, E->getExprLoc());
|
2013-03-04 00:02:42 +08:00
|
|
|
OpInfo.LHS = CGF.EmitToMemory(OpInfo.LHS, type);
|
2012-01-17 01:27:18 +08:00
|
|
|
Builder.CreateBr(opBB);
|
|
|
|
|
Builder.SetInsertPoint(opBB);
|
|
|
|
|
atomicPHI = Builder.CreatePHI(OpInfo.LHS->getType(), 2);
|
|
|
|
|
atomicPHI->addIncoming(OpInfo.LHS, startBB);
|
|
|
|
|
OpInfo.LHS = atomicPHI;
|
|
|
|
|
}
|
2013-03-04 00:02:42 +08:00
|
|
|
else
|
2013-10-02 10:29:49 +08:00
|
|
|
OpInfo.LHS = EmitLoadOfLValue(LHSLV, E->getExprLoc());
|
2012-06-16 10:19:17 +08:00
|
|
|
|
2015-08-11 12:19:28 +08:00
|
|
|
SourceLocation Loc = E->getExprLoc();
|
|
|
|
|
OpInfo.LHS =
|
|
|
|
|
EmitScalarConversion(OpInfo.LHS, LHSTy, E->getComputationLHSType(), Loc);
|
2012-06-16 10:19:17 +08:00
|
|
|
|
2007-08-25 05:00:35 +08:00
|
|
|
// Expand the binary operator.
|
2010-06-30 06:00:45 +08:00
|
|
|
Result = (this->*Func)(OpInfo);
|
2013-07-26 14:16:11 +08:00
|
|
|
|
[clang][CodeGen] Implicit Conversion Sanitizer: discover the world of CompoundAssign operators
Summary:
As reported by @regehr (thanks!) on twitter (https://twitter.com/johnregehr/status/1057681496255815686),
we (me) has completely forgot about the binary assignment operator.
In AST, it isn't represented as separate `ImplicitCastExpr`'s,
but as a single `CompoundAssignOperator`, that does all the casts internally.
Which means, out of these two, only the first one is diagnosed:
```
auto foo() {
unsigned char c = 255;
c = c + 1;
return c;
}
auto bar() {
unsigned char c = 255;
c += 1;
return c;
}
```
https://godbolt.org/z/JNyVc4
This patch does handle the `CompoundAssignOperator`:
```
int main() {
unsigned char c = 255;
c += 1;
return c;
}
```
```
$ ./bin/clang -g -fsanitize=integer /tmp/test.c && ./a.out
/tmp/test.c:3:5: runtime error: implicit conversion from type 'int' of value 256 (32-bit, signed) to type 'unsigned char' changed the value to 0 (8-bit, unsigned)
#0 0x2392b8 in main /tmp/test.c:3:5
#1 0x7fec4a612b16 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x22b16)
#2 0x214029 in _start (/build/llvm-build-GCC-release/a.out+0x214029)
```
However, the pre/post increment/decrement is still not handled.
Reviewers: rsmith, regehr, vsk, rjmccall, #sanitizers
Reviewed By: rjmccall
Subscribers: mclow.lists, cfe-commits, regehr
Tags: #clang, #sanitizers
Differential Revision: https://reviews.llvm.org/D53949
llvm-svn: 347258
2018-11-20 03:56:43 +08:00
|
|
|
// Convert the result back to the LHS type,
|
|
|
|
|
// potentially with Implicit Conversion sanitizer check.
|
|
|
|
|
Result = EmitScalarConversion(Result, E->getComputationResultType(), LHSTy,
|
|
|
|
|
Loc, ScalarConversionOpts(CGF.SanOpts));
|
2012-01-17 01:27:18 +08:00
|
|
|
|
|
|
|
|
if (atomicPHI) {
|
2019-02-28 08:47:55 +08:00
|
|
|
llvm::BasicBlock *curBlock = Builder.GetInsertBlock();
|
2012-01-17 01:27:18 +08:00
|
|
|
llvm::BasicBlock *contBB = CGF.createBasicBlock("atomic_cont", CGF.CurFn);
|
2014-12-15 13:25:25 +08:00
|
|
|
auto Pair = CGF.EmitAtomicCompareExchange(
|
2015-03-30 13:20:59 +08:00
|
|
|
LHSLV, RValue::get(atomicPHI), RValue::get(Result), E->getExprLoc());
|
|
|
|
|
llvm::Value *old = CGF.EmitToMemory(Pair.first.getScalarVal(), LHSTy);
|
|
|
|
|
llvm::Value *success = Pair.second;
|
2019-02-28 08:47:55 +08:00
|
|
|
atomicPHI->addIncoming(old, curBlock);
|
|
|
|
|
Builder.CreateCondBr(success, contBB, atomicPHI->getParent());
|
2012-01-17 01:27:18 +08:00
|
|
|
Builder.SetInsertPoint(contBB);
|
|
|
|
|
return LHSLV;
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2009-09-09 21:00:44 +08:00
|
|
|
// Store the result value into the LHS lvalue. Bit-fields are handled
|
|
|
|
|
// specially because the result is altered by the store, i.e., [C99 6.5.16p1]
|
|
|
|
|
// 'An assignment expression has the value of the left operand after the
|
|
|
|
|
// assignment...'.
|
2010-06-30 06:00:45 +08:00
|
|
|
if (LHSLV.isBitField())
|
2011-06-25 10:11:03 +08:00
|
|
|
CGF.EmitStoreThroughBitfieldLValue(RValue::get(Result), LHSLV, &Result);
|
2010-06-30 06:00:45 +08:00
|
|
|
else
|
2011-06-25 10:11:03 +08:00
|
|
|
CGF.EmitStoreThroughLValue(RValue::get(Result), LHSLV);
|
2010-06-30 06:00:45 +08:00
|
|
|
|
2010-04-23 12:16:32 +08:00
|
|
|
return LHSLV;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::EmitCompoundAssign(const CompoundAssignOperator *E,
|
|
|
|
|
Value *(ScalarExprEmitter::*Func)(const BinOpInfo &)) {
|
|
|
|
|
bool Ignore = TestAndClearIgnoreResultAssign();
|
2010-06-30 06:00:45 +08:00
|
|
|
Value *RHS;
|
|
|
|
|
LValue LHS = EmitCompoundAssignLValue(E, Func, RHS);
|
|
|
|
|
|
|
|
|
|
// If the result is clearly ignored, return now.
|
2009-05-29 23:46:01 +08:00
|
|
|
if (Ignore)
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2010-06-30 06:00:45 +08:00
|
|
|
|
2010-11-16 18:08:07 +08:00
|
|
|
// The result of an assignment in C is the assigned r-value.
|
2012-11-02 06:30:59 +08:00
|
|
|
if (!CGF.getLangOpts().CPlusPlus)
|
2010-11-16 18:08:07 +08:00
|
|
|
return RHS;
|
|
|
|
|
|
2010-06-30 06:00:45 +08:00
|
|
|
// If the lvalue is non-volatile, return the computed value of the assignment.
|
|
|
|
|
if (!LHS.isVolatileQualified())
|
|
|
|
|
return RHS;
|
|
|
|
|
|
|
|
|
|
// Otherwise, reload the value.
|
2013-10-02 10:29:49 +08:00
|
|
|
return EmitLoadOfLValue(LHS, E->getExprLoc());
|
2007-08-25 05:00:35 +08:00
|
|
|
}
|
|
|
|
|
|
2010-09-12 05:47:09 +08:00
|
|
|
void ScalarExprEmitter::EmitUndefinedBehaviorIntegerDivAndRemCheck(
|
2012-09-08 10:08:36 +08:00
|
|
|
const BinOpInfo &Ops, llvm::Value *Zero, bool isDiv) {
|
2015-05-12 05:39:14 +08:00
|
|
|
SmallVector<std::pair<llvm::Value *, SanitizerMask>, 2> Checks;
|
2012-11-06 10:30:30 +08:00
|
|
|
|
2014-11-11 06:27:30 +08:00
|
|
|
if (CGF.SanOpts.has(SanitizerKind::IntegerDivideByZero)) {
|
2014-11-12 06:03:54 +08:00
|
|
|
Checks.push_back(std::make_pair(Builder.CreateICmpNE(Ops.RHS, Zero),
|
|
|
|
|
SanitizerKind::IntegerDivideByZero));
|
2014-11-11 06:27:30 +08:00
|
|
|
}
|
2012-11-06 10:30:30 +08:00
|
|
|
|
2017-02-25 08:43:36 +08:00
|
|
|
const auto *BO = cast<BinaryOperator>(Ops.E);
|
2014-11-08 06:29:38 +08:00
|
|
|
if (CGF.SanOpts.has(SanitizerKind::SignedIntegerOverflow) &&
|
2017-02-25 08:43:36 +08:00
|
|
|
Ops.Ty->hasSignedIntegerRepresentation() &&
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
!IsWidenedIntegerOp(CGF.getContext(), BO->getLHS()) &&
|
|
|
|
|
Ops.mayHaveIntegerOverflow()) {
|
2012-11-06 10:30:30 +08:00
|
|
|
llvm::IntegerType *Ty = cast<llvm::IntegerType>(Zero->getType());
|
2010-09-12 05:47:09 +08:00
|
|
|
|
|
|
|
|
llvm::Value *IntMin =
|
2011-04-20 06:55:03 +08:00
|
|
|
Builder.getInt(llvm::APInt::getSignedMinValue(Ty->getBitWidth()));
|
2010-09-12 05:47:09 +08:00
|
|
|
llvm::Value *NegOne = llvm::ConstantInt::get(Ty, -1ULL);
|
|
|
|
|
|
2012-09-08 10:08:36 +08:00
|
|
|
llvm::Value *LHSCmp = Builder.CreateICmpNE(Ops.LHS, IntMin);
|
|
|
|
|
llvm::Value *RHSCmp = Builder.CreateICmpNE(Ops.RHS, NegOne);
|
2014-11-12 06:03:54 +08:00
|
|
|
llvm::Value *NotOverflow = Builder.CreateOr(LHSCmp, RHSCmp, "or");
|
|
|
|
|
Checks.push_back(
|
|
|
|
|
std::make_pair(NotOverflow, SanitizerKind::SignedIntegerOverflow));
|
2010-09-12 05:47:09 +08:00
|
|
|
}
|
2012-11-06 10:30:30 +08:00
|
|
|
|
2014-11-12 06:03:54 +08:00
|
|
|
if (Checks.size() > 0)
|
|
|
|
|
EmitBinOpCheck(Checks, Ops);
|
2010-09-12 05:47:09 +08:00
|
|
|
}
|
2007-08-25 05:00:35 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *ScalarExprEmitter::EmitDiv(const BinOpInfo &Ops) {
|
2014-07-18 02:46:27 +08:00
|
|
|
{
|
|
|
|
|
CodeGenFunction::SanitizerScope SanScope(&CGF);
|
2014-11-08 06:29:38 +08:00
|
|
|
if ((CGF.SanOpts.has(SanitizerKind::IntegerDivideByZero) ||
|
|
|
|
|
CGF.SanOpts.has(SanitizerKind::SignedIntegerOverflow)) &&
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
Ops.Ty->isIntegerType() &&
|
|
|
|
|
(Ops.mayHaveIntegerDivisionByZero() || Ops.mayHaveIntegerOverflow())) {
|
2014-07-18 02:46:27 +08:00
|
|
|
llvm::Value *Zero = llvm::Constant::getNullValue(ConvertType(Ops.Ty));
|
|
|
|
|
EmitUndefinedBehaviorIntegerDivAndRemCheck(Ops, Zero, true);
|
2014-11-08 06:29:38 +08:00
|
|
|
} else if (CGF.SanOpts.has(SanitizerKind::FloatDivideByZero) &&
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
Ops.Ty->isRealFloatingType() &&
|
|
|
|
|
Ops.mayHaveFloatDivisionByZero()) {
|
2014-07-18 02:46:27 +08:00
|
|
|
llvm::Value *Zero = llvm::Constant::getNullValue(ConvertType(Ops.Ty));
|
2014-11-12 06:03:54 +08:00
|
|
|
llvm::Value *NonZero = Builder.CreateFCmpUNE(Ops.RHS, Zero);
|
|
|
|
|
EmitBinOpCheck(std::make_pair(NonZero, SanitizerKind::FloatDivideByZero),
|
|
|
|
|
Ops);
|
2014-07-18 02:46:27 +08:00
|
|
|
}
|
2010-09-12 05:47:09 +08:00
|
|
|
}
|
2012-11-27 23:01:55 +08:00
|
|
|
|
2011-10-28 03:19:51 +08:00
|
|
|
if (Ops.LHS->getType()->isFPOrFPVectorTy()) {
|
|
|
|
|
llvm::Value *Val = Builder.CreateFDiv(Ops.LHS, Ops.RHS, "div");
|
2016-08-10 04:10:18 +08:00
|
|
|
if (CGF.getLangOpts().OpenCL &&
|
|
|
|
|
!CGF.CGM.getCodeGenOpts().CorrectlyRoundedDivSqrt) {
|
|
|
|
|
// OpenCL v1.1 s7.4: minimum accuracy of single precision / is 2.5ulp
|
|
|
|
|
// OpenCL v1.2 s5.6.4.2: The -cl-fp32-correctly-rounded-divide-sqrt
|
|
|
|
|
// build option allows an application to specify that single precision
|
|
|
|
|
// floating-point divide (x/y and 1/x) and sqrt used in the program
|
|
|
|
|
// source are correctly rounded.
|
2011-10-28 03:19:51 +08:00
|
|
|
llvm::Type *ValTy = Val->getType();
|
|
|
|
|
if (ValTy->isFloatTy() ||
|
|
|
|
|
(isa<llvm::VectorType>(ValTy) &&
|
|
|
|
|
cast<llvm::VectorType>(ValTy)->getElementType()->isFloatTy()))
|
2012-04-10 16:23:07 +08:00
|
|
|
CGF.SetFPAccuracy(Val, 2.5);
|
2011-10-28 03:19:51 +08:00
|
|
|
}
|
|
|
|
|
return Val;
|
|
|
|
|
}
|
2010-07-23 23:58:24 +08:00
|
|
|
else if (Ops.Ty->hasUnsignedIntegerRepresentation())
|
2007-08-24 13:35:26 +08:00
|
|
|
return Builder.CreateUDiv(Ops.LHS, Ops.RHS, "div");
|
|
|
|
|
else
|
|
|
|
|
return Builder.CreateSDiv(Ops.LHS, Ops.RHS, "div");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::EmitRem(const BinOpInfo &Ops) {
|
|
|
|
|
// Rem in C can't be a floating point type: C99 6.5.5p2.
|
2017-02-25 08:43:39 +08:00
|
|
|
if ((CGF.SanOpts.has(SanitizerKind::IntegerDivideByZero) ||
|
|
|
|
|
CGF.SanOpts.has(SanitizerKind::SignedIntegerOverflow)) &&
|
[ubsan] Skip overflow checks on safe arithmetic (fixes PR32874)
Currently, ubsan emits overflow checks for arithmetic that is known to
be safe at compile-time, e.g:
1 + 1 => CheckedAdd(1, 1)
This leads to breakage when using the __builtin_prefetch intrinsic. LLVM
expects the arguments to @llvm.prefetch to be constant integers, and
when ubsan inserts unnecessary checks on the operands to the intrinsic,
this contract is broken, leading to verifier failures (see PR32874).
Instead of special-casing __builtin_prefetch for ubsan, this patch fixes
the underlying problem, i.e that clang currently emits unnecessary
overflow checks.
Testing: I ran the check-clang and check-ubsan targets with a stage2,
ubsan-enabled build of clang. I added a regression test for PR32874, and
some extra checking to make sure we don't regress runtime checking for
unsafe arithmetic. The existing ubsan-promoted-arithmetic.cpp test also
provides coverage for this change.
llvm-svn: 301988
2017-05-03 07:46:56 +08:00
|
|
|
Ops.Ty->isIntegerType() &&
|
|
|
|
|
(Ops.mayHaveIntegerDivisionByZero() || Ops.mayHaveIntegerOverflow())) {
|
2014-07-18 02:46:27 +08:00
|
|
|
CodeGenFunction::SanitizerScope SanScope(&CGF);
|
2010-09-12 05:47:09 +08:00
|
|
|
llvm::Value *Zero = llvm::Constant::getNullValue(ConvertType(Ops.Ty));
|
2017-02-25 08:43:39 +08:00
|
|
|
EmitUndefinedBehaviorIntegerDivAndRemCheck(Ops, Zero, false);
|
2010-09-12 05:47:09 +08:00
|
|
|
}
|
|
|
|
|
|
2011-04-10 12:44:11 +08:00
|
|
|
if (Ops.Ty->hasUnsignedIntegerRepresentation())
|
2007-08-24 13:35:26 +08:00
|
|
|
return Builder.CreateURem(Ops.LHS, Ops.RHS, "rem");
|
|
|
|
|
else
|
|
|
|
|
return Builder.CreateSRem(Ops.LHS, Ops.RHS, "rem");
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-02 04:28:16 +08:00
|
|
|
Value *ScalarExprEmitter::EmitOverflowCheckedBinOp(const BinOpInfo &Ops) {
|
|
|
|
|
unsigned IID;
|
|
|
|
|
unsigned OpID = 0;
|
2009-04-02 09:03:55 +08:00
|
|
|
|
2012-11-27 23:01:55 +08:00
|
|
|
bool isSigned = Ops.Ty->isSignedIntegerOrEnumerationType();
|
2010-06-27 05:48:21 +08:00
|
|
|
switch (Ops.Opcode) {
|
2010-08-25 19:45:40 +08:00
|
|
|
case BO_Add:
|
|
|
|
|
case BO_AddAssign:
|
2009-04-03 02:15:54 +08:00
|
|
|
OpID = 1;
|
2012-11-27 23:01:55 +08:00
|
|
|
IID = isSigned ? llvm::Intrinsic::sadd_with_overflow :
|
|
|
|
|
llvm::Intrinsic::uadd_with_overflow;
|
2009-04-03 02:15:54 +08:00
|
|
|
break;
|
2010-08-25 19:45:40 +08:00
|
|
|
case BO_Sub:
|
|
|
|
|
case BO_SubAssign:
|
2009-04-03 02:15:54 +08:00
|
|
|
OpID = 2;
|
2012-11-27 23:01:55 +08:00
|
|
|
IID = isSigned ? llvm::Intrinsic::ssub_with_overflow :
|
|
|
|
|
llvm::Intrinsic::usub_with_overflow;
|
2009-04-03 02:15:54 +08:00
|
|
|
break;
|
2010-08-25 19:45:40 +08:00
|
|
|
case BO_Mul:
|
|
|
|
|
case BO_MulAssign:
|
2009-04-03 02:15:54 +08:00
|
|
|
OpID = 3;
|
2012-11-27 23:01:55 +08:00
|
|
|
IID = isSigned ? llvm::Intrinsic::smul_with_overflow :
|
|
|
|
|
llvm::Intrinsic::umul_with_overflow;
|
2009-04-03 02:15:54 +08:00
|
|
|
break;
|
|
|
|
|
default:
|
2011-09-23 13:06:16 +08:00
|
|
|
llvm_unreachable("Unsupported operation for overflow detection");
|
2009-04-03 02:15:54 +08:00
|
|
|
}
|
|
|
|
|
OpID <<= 1;
|
2012-11-27 23:01:55 +08:00
|
|
|
if (isSigned)
|
|
|
|
|
OpID |= 1;
|
2009-04-03 02:15:54 +08:00
|
|
|
|
2017-05-10 07:34:49 +08:00
|
|
|
CodeGenFunction::SanitizerScope SanScope(&CGF);
|
2011-07-10 01:41:47 +08:00
|
|
|
llvm::Type *opTy = CGF.CGM.getTypes().ConvertType(Ops.Ty);
|
2009-04-02 04:28:16 +08:00
|
|
|
|
2011-07-15 01:45:50 +08:00
|
|
|
llvm::Function *intrinsic = CGF.CGM.getIntrinsic(IID, opTy);
|
2009-04-02 04:28:16 +08:00
|
|
|
|
2015-05-19 06:14:03 +08:00
|
|
|
Value *resultAndOverflow = Builder.CreateCall(intrinsic, {Ops.LHS, Ops.RHS});
|
2009-04-02 04:28:16 +08:00
|
|
|
Value *result = Builder.CreateExtractValue(resultAndOverflow, 0);
|
|
|
|
|
Value *overflow = Builder.CreateExtractValue(resultAndOverflow, 1);
|
|
|
|
|
|
2012-09-08 10:08:36 +08:00
|
|
|
// Handle overflow with llvm.trap if no custom handler has been specified.
|
|
|
|
|
const std::string *handlerName =
|
2012-11-02 06:30:59 +08:00
|
|
|
&CGF.getLangOpts().OverflowHandler;
|
2012-09-08 10:08:36 +08:00
|
|
|
if (handlerName->empty()) {
|
2012-11-06 06:21:05 +08:00
|
|
|
// If the signed-integer-overflow sanitizer is enabled, emit a call to its
|
2012-11-02 06:15:34 +08:00
|
|
|
// runtime. Otherwise, this is a -ftrapv check, so just emit a trap.
|
2014-11-08 06:29:38 +08:00
|
|
|
if (!isSigned || CGF.SanOpts.has(SanitizerKind::SignedIntegerOverflow)) {
|
2014-11-12 06:03:54 +08:00
|
|
|
llvm::Value *NotOverflow = Builder.CreateNot(overflow);
|
2015-05-12 05:39:14 +08:00
|
|
|
SanitizerMask Kind = isSigned ? SanitizerKind::SignedIntegerOverflow
|
2014-11-12 06:03:54 +08:00
|
|
|
: SanitizerKind::UnsignedIntegerOverflow;
|
|
|
|
|
EmitBinOpCheck(std::make_pair(NotOverflow, Kind), Ops);
|
2014-07-18 02:46:27 +08:00
|
|
|
} else
|
2013-01-30 07:31:22 +08:00
|
|
|
CGF.EmitTrapCheck(Builder.CreateNot(overflow));
|
2012-09-08 10:08:36 +08:00
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-02 04:28:16 +08:00
|
|
|
// Branch in case of overflow.
|
2010-09-18 02:29:54 +08:00
|
|
|
llvm::BasicBlock *initialBB = Builder.GetInsertBlock();
|
2016-08-17 11:15:29 +08:00
|
|
|
llvm::BasicBlock *continueBB =
|
|
|
|
|
CGF.createBasicBlock("nooverflow", CGF.CurFn, initialBB->getNextNode());
|
2010-08-07 08:20:46 +08:00
|
|
|
llvm::BasicBlock *overflowBB = CGF.createBasicBlock("overflow", CGF.CurFn);
|
2009-04-02 04:28:16 +08:00
|
|
|
|
|
|
|
|
Builder.CreateCondBr(overflow, overflowBB, continueBB);
|
|
|
|
|
|
2010-09-18 02:29:54 +08:00
|
|
|
// If an overflow handler is set, then we want to call it and then use its
|
|
|
|
|
// result, if it returns.
|
|
|
|
|
Builder.SetInsertPoint(overflowBB);
|
|
|
|
|
|
|
|
|
|
// Get the overflow handler.
|
2012-02-07 08:39:47 +08:00
|
|
|
llvm::Type *Int8Ty = CGF.Int8Ty;
|
2011-07-10 01:41:47 +08:00
|
|
|
llvm::Type *argTypes[] = { CGF.Int64Ty, CGF.Int64Ty, Int8Ty, Int8Ty };
|
2010-09-18 02:29:54 +08:00
|
|
|
llvm::FunctionType *handlerTy =
|
|
|
|
|
llvm::FunctionType::get(CGF.Int64Ty, argTypes, true);
|
2019-02-06 00:42:33 +08:00
|
|
|
llvm::FunctionCallee handler =
|
|
|
|
|
CGF.CGM.CreateRuntimeFunction(handlerTy, *handlerName);
|
2010-09-18 02:29:54 +08:00
|
|
|
|
|
|
|
|
// Sign extend the args to 64-bit, so that we can use the same handler for
|
|
|
|
|
// all types of overflow.
|
|
|
|
|
llvm::Value *lhs = Builder.CreateSExt(Ops.LHS, CGF.Int64Ty);
|
|
|
|
|
llvm::Value *rhs = Builder.CreateSExt(Ops.RHS, CGF.Int64Ty);
|
|
|
|
|
|
|
|
|
|
// Call the handler with the two arguments, the operation, and the size of
|
|
|
|
|
// the result.
|
2013-03-01 03:01:20 +08:00
|
|
|
llvm::Value *handlerArgs[] = {
|
|
|
|
|
lhs,
|
|
|
|
|
rhs,
|
|
|
|
|
Builder.getInt8(OpID),
|
|
|
|
|
Builder.getInt8(cast<llvm::IntegerType>(opTy)->getBitWidth())
|
|
|
|
|
};
|
|
|
|
|
llvm::Value *handlerResult =
|
|
|
|
|
CGF.EmitNounwindRuntimeCall(handler, handlerArgs);
|
2010-09-18 02:29:54 +08:00
|
|
|
|
|
|
|
|
// Truncate the result back to the desired size.
|
|
|
|
|
handlerResult = Builder.CreateTrunc(handlerResult, opTy);
|
|
|
|
|
Builder.CreateBr(continueBB);
|
|
|
|
|
|
2009-04-02 04:28:16 +08:00
|
|
|
Builder.SetInsertPoint(continueBB);
|
2011-03-30 19:28:58 +08:00
|
|
|
llvm::PHINode *phi = Builder.CreatePHI(opTy, 2);
|
2010-09-18 02:29:54 +08:00
|
|
|
phi->addIncoming(result, initialBB);
|
|
|
|
|
phi->addIncoming(handlerResult, overflowBB);
|
|
|
|
|
|
|
|
|
|
return phi;
|
2009-04-02 04:28:16 +08:00
|
|
|
}
|
2007-08-24 13:35:26 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
/// Emit pointer + index arithmetic.
|
|
|
|
|
static Value *emitPointerArithmetic(CodeGenFunction &CGF,
|
|
|
|
|
const BinOpInfo &op,
|
|
|
|
|
bool isSubtraction) {
|
|
|
|
|
// Must have binary (not unary) expr here. Unary pointer
|
|
|
|
|
// increment/decrement doesn't use this path.
|
|
|
|
|
const BinaryOperator *expr = cast<BinaryOperator>(op.E);
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
Value *pointer = op.LHS;
|
|
|
|
|
Expr *pointerOperand = expr->getLHS();
|
|
|
|
|
Value *index = op.RHS;
|
|
|
|
|
Expr *indexOperand = expr->getRHS();
|
|
|
|
|
|
|
|
|
|
// In a subtraction, the LHS is always the pointer.
|
|
|
|
|
if (!isSubtraction && !pointer->getType()->isPointerTy()) {
|
|
|
|
|
std::swap(pointer, index);
|
|
|
|
|
std::swap(pointerOperand, indexOperand);
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-13 02:42:51 +08:00
|
|
|
bool isSigned = indexOperand->getType()->isSignedIntegerOrEnumerationType();
|
|
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
unsigned width = cast<llvm::IntegerType>(index->getType())->getBitWidth();
|
2016-08-19 13:17:25 +08:00
|
|
|
auto &DL = CGF.CGM.getDataLayout();
|
|
|
|
|
auto PtrTy = cast<llvm::PointerType>(pointer->getType());
|
2017-09-20 04:26:40 +08:00
|
|
|
|
|
|
|
|
// Some versions of glibc and gcc use idioms (particularly in their malloc
|
|
|
|
|
// routines) that add a pointer-sized integer (known to be a pointer value)
|
|
|
|
|
// to a null pointer in order to cast the value back to an integer or as
|
|
|
|
|
// part of a pointer alignment algorithm. This is undefined behavior, but
|
|
|
|
|
// we'd like to be able to compile programs that use it.
|
|
|
|
|
//
|
|
|
|
|
// Normally, we'd generate a GEP with a null-pointer base here in response
|
|
|
|
|
// to that code, but it's also UB to dereference a pointer created that
|
|
|
|
|
// way. Instead (as an acknowledged hack to tolerate the idiom) we will
|
|
|
|
|
// generate a direct cast of the integer value to a pointer.
|
|
|
|
|
//
|
|
|
|
|
// The idiom (p = nullptr + N) is not met if any of the following are true:
|
|
|
|
|
//
|
|
|
|
|
// The operation is subtraction.
|
|
|
|
|
// The index is not pointer-sized.
|
|
|
|
|
// The pointer type is not byte-sized.
|
|
|
|
|
//
|
|
|
|
|
if (BinaryOperator::isNullPointerArithmeticExtension(CGF.getContext(),
|
|
|
|
|
op.Opcode,
|
2018-07-31 03:24:48 +08:00
|
|
|
expr->getLHS(),
|
2017-09-20 04:26:40 +08:00
|
|
|
expr->getRHS()))
|
|
|
|
|
return CGF.Builder.CreateIntToPtr(index, pointer->getType());
|
|
|
|
|
|
2016-08-19 13:17:25 +08:00
|
|
|
if (width != DL.getTypeSizeInBits(PtrTy)) {
|
2011-06-25 09:32:37 +08:00
|
|
|
// Zero-extend or sign-extend the pointer value according to
|
|
|
|
|
// whether the index is signed or not.
|
2016-08-19 13:17:25 +08:00
|
|
|
index = CGF.Builder.CreateIntCast(index, DL.getIntPtrType(PtrTy), isSigned,
|
2011-06-25 09:32:37 +08:00
|
|
|
"idx.ext");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If this is subtraction, negate the index.
|
|
|
|
|
if (isSubtraction)
|
|
|
|
|
index = CGF.Builder.CreateNeg(index, "idx.neg");
|
|
|
|
|
|
2014-11-08 06:29:38 +08:00
|
|
|
if (CGF.SanOpts.has(SanitizerKind::ArrayBounds))
|
2013-02-23 10:53:19 +08:00
|
|
|
CGF.EmitBoundsCheck(op.E, pointerOperand, index, indexOperand->getType(),
|
|
|
|
|
/*Accessed*/ false);
|
|
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
const PointerType *pointerType
|
|
|
|
|
= pointerOperand->getType()->getAs<PointerType>();
|
|
|
|
|
if (!pointerType) {
|
|
|
|
|
QualType objectType = pointerOperand->getType()
|
|
|
|
|
->castAs<ObjCObjectPointerType>()
|
|
|
|
|
->getPointeeType();
|
|
|
|
|
llvm::Value *objectSize
|
|
|
|
|
= CGF.CGM.getSize(CGF.getContext().getTypeSizeInChars(objectType));
|
|
|
|
|
|
|
|
|
|
index = CGF.Builder.CreateMul(index, objectSize);
|
|
|
|
|
|
|
|
|
|
Value *result = CGF.Builder.CreateBitCast(pointer, CGF.VoidPtrTy);
|
|
|
|
|
result = CGF.Builder.CreateGEP(result, index, "add.ptr");
|
|
|
|
|
return CGF.Builder.CreateBitCast(result, pointer->getType());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
QualType elementType = pointerType->getPointeeType();
|
|
|
|
|
if (const VariableArrayType *vla
|
|
|
|
|
= CGF.getContext().getAsVariableArrayType(elementType)) {
|
|
|
|
|
// The element count here is the total number of non-VLA elements.
|
2018-02-03 21:55:59 +08:00
|
|
|
llvm::Value *numElements = CGF.getVLASize(vla).NumElts;
|
2011-06-25 09:32:37 +08:00
|
|
|
|
|
|
|
|
// Effectively, the multiply by the VLA size is part of the GEP.
|
|
|
|
|
// GEP indexes are signed, and scaling an index isn't permitted to
|
|
|
|
|
// signed-overflow, so we use the same semantics for our explicit
|
|
|
|
|
// multiply. We suppress this if overflow is not undefined behavior.
|
2012-03-11 15:00:24 +08:00
|
|
|
if (CGF.getLangOpts().isSignedOverflowDefined()) {
|
2011-06-25 09:32:37 +08:00
|
|
|
index = CGF.Builder.CreateMul(index, numElements, "vla.index");
|
|
|
|
|
pointer = CGF.Builder.CreateGEP(pointer, index, "add.ptr");
|
|
|
|
|
} else {
|
|
|
|
|
index = CGF.Builder.CreateNSWMul(index, numElements, "vla.index");
|
2017-06-13 02:42:51 +08:00
|
|
|
pointer =
|
2017-07-14 04:55:26 +08:00
|
|
|
CGF.EmitCheckedInBoundsGEP(pointer, index, isSigned, isSubtraction,
|
2017-06-13 02:42:51 +08:00
|
|
|
op.E->getExprLoc(), "add.ptr");
|
2011-06-25 09:32:37 +08:00
|
|
|
}
|
|
|
|
|
return pointer;
|
2009-09-09 21:00:44 +08:00
|
|
|
}
|
2009-04-25 13:08:32 +08:00
|
|
|
|
2009-09-09 21:00:44 +08:00
|
|
|
// Explicitly handle GNU void* and function pointer arithmetic extensions. The
|
|
|
|
|
// GNU void* casts amount to no-ops since our void* type is i8*, but this is
|
|
|
|
|
// future proof.
|
2011-06-25 09:32:37 +08:00
|
|
|
if (elementType->isVoidType() || elementType->isFunctionType()) {
|
|
|
|
|
Value *result = CGF.Builder.CreateBitCast(pointer, CGF.VoidPtrTy);
|
|
|
|
|
result = CGF.Builder.CreateGEP(result, index, "add.ptr");
|
|
|
|
|
return CGF.Builder.CreateBitCast(result, pointer->getType());
|
2009-09-09 21:00:44 +08:00
|
|
|
}
|
|
|
|
|
|
2012-03-11 15:00:24 +08:00
|
|
|
if (CGF.getLangOpts().isSignedOverflowDefined())
|
2011-06-25 09:32:37 +08:00
|
|
|
return CGF.Builder.CreateGEP(pointer, index, "add.ptr");
|
|
|
|
|
|
2017-07-14 04:55:26 +08:00
|
|
|
return CGF.EmitCheckedInBoundsGEP(pointer, index, isSigned, isSubtraction,
|
2017-06-13 02:42:51 +08:00
|
|
|
op.E->getExprLoc(), "add.ptr");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
2012-10-02 12:45:10 +08:00
|
|
|
// Construct an fmuladd intrinsic to represent a fused mul-add of MulOp and
|
|
|
|
|
// Addend. Use negMul and negAdd to negate the first operand of the Mul or
|
|
|
|
|
// the add operand respectively. This allows fmuladd to represent a*b-c, or
|
|
|
|
|
// c-a*b. Patterns in LLVM should catch the negated forms and translate them to
|
|
|
|
|
// efficient operations.
|
|
|
|
|
static Value* buildFMulAdd(llvm::BinaryOperator *MulOp, Value *Addend,
|
|
|
|
|
const CodeGenFunction &CGF, CGBuilderTy &Builder,
|
|
|
|
|
bool negMul, bool negAdd) {
|
|
|
|
|
assert(!(negMul && negAdd) && "Only one of negMul and negAdd should be set.");
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2012-10-02 12:45:10 +08:00
|
|
|
Value *MulOp0 = MulOp->getOperand(0);
|
|
|
|
|
Value *MulOp1 = MulOp->getOperand(1);
|
|
|
|
|
if (negMul) {
|
|
|
|
|
MulOp0 =
|
|
|
|
|
Builder.CreateFSub(
|
|
|
|
|
llvm::ConstantFP::getZeroValueForNegation(MulOp0->getType()), MulOp0,
|
|
|
|
|
"neg");
|
|
|
|
|
} else if (negAdd) {
|
|
|
|
|
Addend =
|
|
|
|
|
Builder.CreateFSub(
|
|
|
|
|
llvm::ConstantFP::getZeroValueForNegation(Addend->getType()), Addend,
|
|
|
|
|
"neg");
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-19 06:14:03 +08:00
|
|
|
Value *FMulAdd = Builder.CreateCall(
|
2012-10-02 12:45:10 +08:00
|
|
|
CGF.CGM.getIntrinsic(llvm::Intrinsic::fmuladd, Addend->getType()),
|
2015-05-19 06:14:03 +08:00
|
|
|
{MulOp0, MulOp1, Addend});
|
2012-10-02 12:45:10 +08:00
|
|
|
MulOp->eraseFromParent();
|
|
|
|
|
|
|
|
|
|
return FMulAdd;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check whether it would be legal to emit an fmuladd intrinsic call to
|
|
|
|
|
// represent op and if so, build the fmuladd.
|
|
|
|
|
//
|
|
|
|
|
// Checks that (a) the operation is fusable, and (b) -ffp-contract=on.
|
|
|
|
|
// Does NOT check the type of the operation - it's assumed that this function
|
|
|
|
|
// will be called from contexts where it's known that the type is contractable.
|
2013-07-26 14:16:11 +08:00
|
|
|
static Value* tryEmitFMulAdd(const BinOpInfo &op,
|
2012-10-02 12:45:10 +08:00
|
|
|
const CodeGenFunction &CGF, CGBuilderTy &Builder,
|
|
|
|
|
bool isSub=false) {
|
|
|
|
|
|
|
|
|
|
assert((op.Opcode == BO_Add || op.Opcode == BO_AddAssign ||
|
|
|
|
|
op.Opcode == BO_Sub || op.Opcode == BO_SubAssign) &&
|
|
|
|
|
"Only fadd/fsub can be the root of an fmuladd.");
|
|
|
|
|
|
|
|
|
|
// Check whether this op is marked as fusable.
|
2017-03-30 05:54:24 +08:00
|
|
|
if (!op.FPFeatures.allowFPContractWithinStatement())
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2012-10-02 12:45:10 +08:00
|
|
|
|
|
|
|
|
// We have a potentially fusable op. Look for a mul on one of the operands.
|
2015-12-03 09:25:12 +08:00
|
|
|
// Also, make sure that the mul result isn't used directly. In that case,
|
|
|
|
|
// there's no point creating a muladd operation.
|
|
|
|
|
if (auto *LHSBinOp = dyn_cast<llvm::BinaryOperator>(op.LHS)) {
|
|
|
|
|
if (LHSBinOp->getOpcode() == llvm::Instruction::FMul &&
|
|
|
|
|
LHSBinOp->use_empty())
|
2012-10-02 12:45:10 +08:00
|
|
|
return buildFMulAdd(LHSBinOp, op.RHS, CGF, Builder, false, isSub);
|
2015-12-03 09:25:12 +08:00
|
|
|
}
|
|
|
|
|
if (auto *RHSBinOp = dyn_cast<llvm::BinaryOperator>(op.RHS)) {
|
|
|
|
|
if (RHSBinOp->getOpcode() == llvm::Instruction::FMul &&
|
|
|
|
|
RHSBinOp->use_empty())
|
2012-10-02 12:45:10 +08:00
|
|
|
return buildFMulAdd(RHSBinOp, op.LHS, CGF, Builder, isSub, false);
|
|
|
|
|
}
|
|
|
|
|
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2012-10-02 12:45:10 +08:00
|
|
|
}
|
|
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
Value *ScalarExprEmitter::EmitAdd(const BinOpInfo &op) {
|
|
|
|
|
if (op.LHS->getType()->isPointerTy() ||
|
|
|
|
|
op.RHS->getType()->isPointerTy())
|
2017-07-14 04:55:26 +08:00
|
|
|
return emitPointerArithmetic(CGF, op, CodeGenFunction::NotSubtraction);
|
2011-06-25 09:32:37 +08:00
|
|
|
|
|
|
|
|
if (op.Ty->isSignedIntegerOrEnumerationType()) {
|
2012-11-02 06:30:59 +08:00
|
|
|
switch (CGF.getLangOpts().getSignedOverflowBehavior()) {
|
2011-06-25 09:32:37 +08:00
|
|
|
case LangOptions::SOB_Defined:
|
|
|
|
|
return Builder.CreateAdd(op.LHS, op.RHS, "add");
|
2012-08-25 08:32:28 +08:00
|
|
|
case LangOptions::SOB_Undefined:
|
2014-11-08 06:29:38 +08:00
|
|
|
if (!CGF.SanOpts.has(SanitizerKind::SignedIntegerOverflow))
|
2012-08-25 08:32:28 +08:00
|
|
|
return Builder.CreateNSWAdd(op.LHS, op.RHS, "add");
|
Fix clang -Wimplicit-fallthrough warnings across llvm, NFC
This patch should not introduce any behavior changes. It consists of
mostly one of two changes:
1. Replacing fall through comments with the LLVM_FALLTHROUGH macro
2. Inserting 'break' before falling through into a case block consisting
of only 'break'.
We were already using this warning with GCC, but its warning behaves
slightly differently. In this patch, the following differences are
relevant:
1. GCC recognizes comments that say "fall through" as annotations, clang
doesn't
2. GCC doesn't warn on "case N: foo(); default: break;", clang does
3. GCC doesn't warn when the case contains a switch, but falls through
the outer case.
I will enable the warning separately in a follow-up patch so that it can
be cleanly reverted if necessary.
Reviewers: alexfh, rsmith, lattner, rtrieu, EricWF, bollu
Differential Revision: https://reviews.llvm.org/D53950
llvm-svn: 345882
2018-11-02 03:54:45 +08:00
|
|
|
LLVM_FALLTHROUGH;
|
2011-06-25 09:32:37 +08:00
|
|
|
case LangOptions::SOB_Trapping:
|
2017-02-25 08:43:36 +08:00
|
|
|
if (CanElideOverflowCheck(CGF.getContext(), op))
|
|
|
|
|
return Builder.CreateNSWAdd(op.LHS, op.RHS, "add");
|
2011-06-25 09:32:37 +08:00
|
|
|
return EmitOverflowCheckedBinOp(op);
|
|
|
|
|
}
|
|
|
|
|
}
|
2012-11-27 23:01:55 +08:00
|
|
|
|
2014-11-08 06:29:38 +08:00
|
|
|
if (op.Ty->isUnsignedIntegerType() &&
|
2017-02-25 08:43:36 +08:00
|
|
|
CGF.SanOpts.has(SanitizerKind::UnsignedIntegerOverflow) &&
|
|
|
|
|
!CanElideOverflowCheck(CGF.getContext(), op))
|
2012-11-27 23:01:55 +08:00
|
|
|
return EmitOverflowCheckedBinOp(op);
|
|
|
|
|
|
2012-10-02 12:45:10 +08:00
|
|
|
if (op.LHS->getType()->isFPOrFPVectorTy()) {
|
|
|
|
|
// Try to form an fmuladd.
|
|
|
|
|
if (Value *FMulAdd = tryEmitFMulAdd(op, CGF, Builder))
|
|
|
|
|
return FMulAdd;
|
|
|
|
|
|
2017-04-05 05:18:30 +08:00
|
|
|
Value *V = Builder.CreateFAdd(op.LHS, op.RHS, "add");
|
|
|
|
|
return propagateFMFlags(V, op);
|
2012-10-02 12:45:10 +08:00
|
|
|
}
|
2011-06-25 09:32:37 +08:00
|
|
|
|
2019-01-17 02:13:59 +08:00
|
|
|
if (op.isFixedPointBinOp())
|
2019-01-17 03:53:50 +08:00
|
|
|
return EmitFixedPointBinOp(op);
|
2019-01-17 02:13:59 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
return Builder.CreateAdd(op.LHS, op.RHS, "add");
|
|
|
|
|
}
|
|
|
|
|
|
2019-01-17 02:13:59 +08:00
|
|
|
/// The resulting value must be calculated with exact precision, so the operands
|
|
|
|
|
/// may not be the same type.
|
2019-01-17 03:53:50 +08:00
|
|
|
Value *ScalarExprEmitter::EmitFixedPointBinOp(const BinOpInfo &op) {
|
2019-01-17 02:13:59 +08:00
|
|
|
using llvm::APSInt;
|
|
|
|
|
using llvm::ConstantInt;
|
|
|
|
|
|
|
|
|
|
const auto *BinOp = cast<BinaryOperator>(op.E);
|
|
|
|
|
|
|
|
|
|
// The result is a fixed point type and at least one of the operands is fixed
|
|
|
|
|
// point while the other is either fixed point or an int. This resulting type
|
|
|
|
|
// should be determined by Sema::handleFixedPointConversions().
|
|
|
|
|
QualType ResultTy = op.Ty;
|
|
|
|
|
QualType LHSTy = BinOp->getLHS()->getType();
|
|
|
|
|
QualType RHSTy = BinOp->getRHS()->getType();
|
|
|
|
|
ASTContext &Ctx = CGF.getContext();
|
|
|
|
|
Value *LHS = op.LHS;
|
|
|
|
|
Value *RHS = op.RHS;
|
|
|
|
|
|
|
|
|
|
auto LHSFixedSema = Ctx.getFixedPointSemantics(LHSTy);
|
|
|
|
|
auto RHSFixedSema = Ctx.getFixedPointSemantics(RHSTy);
|
|
|
|
|
auto ResultFixedSema = Ctx.getFixedPointSemantics(ResultTy);
|
|
|
|
|
auto CommonFixedSema = LHSFixedSema.getCommonSemantics(RHSFixedSema);
|
|
|
|
|
|
|
|
|
|
// Convert the operands to the full precision type.
|
|
|
|
|
Value *FullLHS = EmitFixedPointConversion(LHS, LHSFixedSema, CommonFixedSema,
|
|
|
|
|
BinOp->getExprLoc());
|
|
|
|
|
Value *FullRHS = EmitFixedPointConversion(RHS, RHSFixedSema, CommonFixedSema,
|
|
|
|
|
BinOp->getExprLoc());
|
|
|
|
|
|
|
|
|
|
// Perform the actual addition.
|
|
|
|
|
Value *Result;
|
2019-01-17 03:53:50 +08:00
|
|
|
switch (BinOp->getOpcode()) {
|
|
|
|
|
case BO_Add: {
|
|
|
|
|
if (ResultFixedSema.isSaturated()) {
|
|
|
|
|
llvm::Intrinsic::ID IID = ResultFixedSema.isSigned()
|
|
|
|
|
? llvm::Intrinsic::sadd_sat
|
|
|
|
|
: llvm::Intrinsic::uadd_sat;
|
|
|
|
|
Result = Builder.CreateBinaryIntrinsic(IID, FullLHS, FullRHS);
|
|
|
|
|
} else {
|
|
|
|
|
Result = Builder.CreateAdd(FullLHS, FullRHS);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case BO_Sub: {
|
|
|
|
|
if (ResultFixedSema.isSaturated()) {
|
|
|
|
|
llvm::Intrinsic::ID IID = ResultFixedSema.isSigned()
|
|
|
|
|
? llvm::Intrinsic::ssub_sat
|
|
|
|
|
: llvm::Intrinsic::usub_sat;
|
|
|
|
|
Result = Builder.CreateBinaryIntrinsic(IID, FullLHS, FullRHS);
|
|
|
|
|
} else {
|
|
|
|
|
Result = Builder.CreateSub(FullLHS, FullRHS);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case BO_LT:
|
2019-02-22 04:50:09 +08:00
|
|
|
return CommonFixedSema.isSigned() ? Builder.CreateICmpSLT(FullLHS, FullRHS)
|
|
|
|
|
: Builder.CreateICmpULT(FullLHS, FullRHS);
|
2019-01-17 03:53:50 +08:00
|
|
|
case BO_GT:
|
2019-02-22 04:50:09 +08:00
|
|
|
return CommonFixedSema.isSigned() ? Builder.CreateICmpSGT(FullLHS, FullRHS)
|
|
|
|
|
: Builder.CreateICmpUGT(FullLHS, FullRHS);
|
2019-01-17 03:53:50 +08:00
|
|
|
case BO_LE:
|
2019-02-22 04:50:09 +08:00
|
|
|
return CommonFixedSema.isSigned() ? Builder.CreateICmpSLE(FullLHS, FullRHS)
|
|
|
|
|
: Builder.CreateICmpULE(FullLHS, FullRHS);
|
2019-01-17 03:53:50 +08:00
|
|
|
case BO_GE:
|
2019-02-22 04:50:09 +08:00
|
|
|
return CommonFixedSema.isSigned() ? Builder.CreateICmpSGE(FullLHS, FullRHS)
|
|
|
|
|
: Builder.CreateICmpUGE(FullLHS, FullRHS);
|
2019-01-17 03:53:50 +08:00
|
|
|
case BO_EQ:
|
2019-02-22 04:50:09 +08:00
|
|
|
// For equality operations, we assume any padding bits on unsigned types are
|
|
|
|
|
// zero'd out. They could be overwritten through non-saturating operations
|
|
|
|
|
// that cause overflow, but this leads to undefined behavior.
|
|
|
|
|
return Builder.CreateICmpEQ(FullLHS, FullRHS);
|
2019-01-17 03:53:50 +08:00
|
|
|
case BO_NE:
|
2019-02-22 04:50:09 +08:00
|
|
|
return Builder.CreateICmpNE(FullLHS, FullRHS);
|
|
|
|
|
case BO_Mul:
|
|
|
|
|
case BO_Div:
|
|
|
|
|
case BO_Shl:
|
|
|
|
|
case BO_Shr:
|
|
|
|
|
case BO_Cmp:
|
2019-01-17 03:53:50 +08:00
|
|
|
case BO_LAnd:
|
|
|
|
|
case BO_LOr:
|
|
|
|
|
case BO_MulAssign:
|
|
|
|
|
case BO_DivAssign:
|
|
|
|
|
case BO_AddAssign:
|
|
|
|
|
case BO_SubAssign:
|
|
|
|
|
case BO_ShlAssign:
|
|
|
|
|
case BO_ShrAssign:
|
|
|
|
|
llvm_unreachable("Found unimplemented fixed point binary operation");
|
|
|
|
|
case BO_PtrMemD:
|
|
|
|
|
case BO_PtrMemI:
|
|
|
|
|
case BO_Rem:
|
|
|
|
|
case BO_Xor:
|
|
|
|
|
case BO_And:
|
|
|
|
|
case BO_Or:
|
|
|
|
|
case BO_Assign:
|
|
|
|
|
case BO_RemAssign:
|
|
|
|
|
case BO_AndAssign:
|
|
|
|
|
case BO_XorAssign:
|
|
|
|
|
case BO_OrAssign:
|
|
|
|
|
case BO_Comma:
|
|
|
|
|
llvm_unreachable("Found unsupported binary operation for fixed point types.");
|
2019-01-17 02:13:59 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Convert to the result type.
|
|
|
|
|
return EmitFixedPointConversion(Result, CommonFixedSema, ResultFixedSema,
|
|
|
|
|
BinOp->getExprLoc());
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
Value *ScalarExprEmitter::EmitSub(const BinOpInfo &op) {
|
|
|
|
|
// The LHS is always a pointer if either side is.
|
|
|
|
|
if (!op.LHS->getType()->isPointerTy()) {
|
|
|
|
|
if (op.Ty->isSignedIntegerOrEnumerationType()) {
|
2012-11-02 06:30:59 +08:00
|
|
|
switch (CGF.getLangOpts().getSignedOverflowBehavior()) {
|
2010-06-27 05:25:03 +08:00
|
|
|
case LangOptions::SOB_Defined:
|
2011-06-25 09:32:37 +08:00
|
|
|
return Builder.CreateSub(op.LHS, op.RHS, "sub");
|
2012-08-25 08:32:28 +08:00
|
|
|
case LangOptions::SOB_Undefined:
|
2014-11-08 06:29:38 +08:00
|
|
|
if (!CGF.SanOpts.has(SanitizerKind::SignedIntegerOverflow))
|
2012-08-25 08:32:28 +08:00
|
|
|
return Builder.CreateNSWSub(op.LHS, op.RHS, "sub");
|
Fix clang -Wimplicit-fallthrough warnings across llvm, NFC
This patch should not introduce any behavior changes. It consists of
mostly one of two changes:
1. Replacing fall through comments with the LLVM_FALLTHROUGH macro
2. Inserting 'break' before falling through into a case block consisting
of only 'break'.
We were already using this warning with GCC, but its warning behaves
slightly differently. In this patch, the following differences are
relevant:
1. GCC recognizes comments that say "fall through" as annotations, clang
doesn't
2. GCC doesn't warn on "case N: foo(); default: break;", clang does
3. GCC doesn't warn when the case contains a switch, but falls through
the outer case.
I will enable the warning separately in a follow-up patch so that it can
be cleanly reverted if necessary.
Reviewers: alexfh, rsmith, lattner, rtrieu, EricWF, bollu
Differential Revision: https://reviews.llvm.org/D53950
llvm-svn: 345882
2018-11-02 03:54:45 +08:00
|
|
|
LLVM_FALLTHROUGH;
|
2010-06-27 05:25:03 +08:00
|
|
|
case LangOptions::SOB_Trapping:
|
2017-02-25 08:43:36 +08:00
|
|
|
if (CanElideOverflowCheck(CGF.getContext(), op))
|
|
|
|
|
return Builder.CreateNSWSub(op.LHS, op.RHS, "sub");
|
2011-06-25 09:32:37 +08:00
|
|
|
return EmitOverflowCheckedBinOp(op);
|
2010-06-27 05:25:03 +08:00
|
|
|
}
|
|
|
|
|
}
|
2012-11-27 23:01:55 +08:00
|
|
|
|
2014-11-08 06:29:38 +08:00
|
|
|
if (op.Ty->isUnsignedIntegerType() &&
|
2017-02-25 08:43:36 +08:00
|
|
|
CGF.SanOpts.has(SanitizerKind::UnsignedIntegerOverflow) &&
|
|
|
|
|
!CanElideOverflowCheck(CGF.getContext(), op))
|
2012-11-27 23:01:55 +08:00
|
|
|
return EmitOverflowCheckedBinOp(op);
|
|
|
|
|
|
2012-10-02 12:45:10 +08:00
|
|
|
if (op.LHS->getType()->isFPOrFPVectorTy()) {
|
|
|
|
|
// Try to form an fmuladd.
|
|
|
|
|
if (Value *FMulAdd = tryEmitFMulAdd(op, CGF, Builder, true))
|
|
|
|
|
return FMulAdd;
|
2017-04-05 05:18:30 +08:00
|
|
|
Value *V = Builder.CreateFSub(op.LHS, op.RHS, "sub");
|
|
|
|
|
return propagateFMFlags(V, op);
|
2012-10-02 12:45:10 +08:00
|
|
|
}
|
2010-03-30 01:28:16 +08:00
|
|
|
|
2019-01-17 03:53:50 +08:00
|
|
|
if (op.isFixedPointBinOp())
|
|
|
|
|
return EmitFixedPointBinOp(op);
|
|
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
return Builder.CreateSub(op.LHS, op.RHS, "sub");
|
2009-04-02 04:28:16 +08:00
|
|
|
}
|
2007-08-25 05:00:35 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
// If the RHS is not a pointer, then we have normal pointer
|
|
|
|
|
// arithmetic.
|
|
|
|
|
if (!op.RHS->getType()->isPointerTy())
|
2017-07-14 04:55:26 +08:00
|
|
|
return emitPointerArithmetic(CGF, op, CodeGenFunction::IsSubtraction);
|
2009-04-25 13:08:32 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
// Otherwise, this is a pointer subtraction.
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
// Do the raw subtraction part.
|
|
|
|
|
llvm::Value *LHS
|
|
|
|
|
= Builder.CreatePtrToInt(op.LHS, CGF.PtrDiffTy, "sub.ptr.lhs.cast");
|
|
|
|
|
llvm::Value *RHS
|
|
|
|
|
= Builder.CreatePtrToInt(op.RHS, CGF.PtrDiffTy, "sub.ptr.rhs.cast");
|
|
|
|
|
Value *diffInChars = Builder.CreateSub(LHS, RHS, "sub.ptr.sub");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
// Okay, figure out the element size.
|
|
|
|
|
const BinaryOperator *expr = cast<BinaryOperator>(op.E);
|
|
|
|
|
QualType elementType = expr->getLHS()->getType()->getPointeeType();
|
2009-08-12 06:40:09 +08:00
|
|
|
|
2014-05-21 13:09:00 +08:00
|
|
|
llvm::Value *divisor = nullptr;
|
2011-06-25 09:32:37 +08:00
|
|
|
|
|
|
|
|
// For a variable-length array, this is going to be non-constant.
|
|
|
|
|
if (const VariableArrayType *vla
|
|
|
|
|
= CGF.getContext().getAsVariableArrayType(elementType)) {
|
2018-02-03 21:55:59 +08:00
|
|
|
auto VlaSize = CGF.getVLASize(vla);
|
|
|
|
|
elementType = VlaSize.Type;
|
|
|
|
|
divisor = VlaSize.NumElts;
|
2011-03-01 08:03:48 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
// Scale the number of non-VLA elements by the non-VLA element size.
|
|
|
|
|
CharUnits eltSize = CGF.getContext().getTypeSizeInChars(elementType);
|
|
|
|
|
if (!eltSize.isOne())
|
|
|
|
|
divisor = CGF.Builder.CreateNUWMul(CGF.CGM.getSize(eltSize), divisor);
|
2011-03-01 08:03:48 +08:00
|
|
|
|
2011-06-25 09:32:37 +08:00
|
|
|
// For everything elese, we can just compute it, safe in the
|
|
|
|
|
// assumption that Sema won't let anything through that we can't
|
|
|
|
|
// safely compute the size of.
|
|
|
|
|
} else {
|
|
|
|
|
CharUnits elementSize;
|
|
|
|
|
// Handle GCC extension for pointer arithmetic on void* and
|
|
|
|
|
// function pointer types.
|
|
|
|
|
if (elementType->isVoidType() || elementType->isFunctionType())
|
|
|
|
|
elementSize = CharUnits::One();
|
|
|
|
|
else
|
|
|
|
|
elementSize = CGF.getContext().getTypeSizeInChars(elementType);
|
|
|
|
|
|
|
|
|
|
// Don't even emit the divide for element size of 1.
|
|
|
|
|
if (elementSize.isOne())
|
|
|
|
|
return diffInChars;
|
|
|
|
|
|
|
|
|
|
divisor = CGF.CGM.getSize(elementSize);
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-03-01 08:03:48 +08:00
|
|
|
// Otherwise, do a full sdiv. This uses the "exact" form of sdiv, since
|
|
|
|
|
// pointer difference in C is only defined in the case where both operands
|
|
|
|
|
// are pointing to elements of an array.
|
2011-06-25 09:32:37 +08:00
|
|
|
return Builder.CreateExactSDiv(diffInChars, divisor, "sub.ptr.div");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
2013-01-08 00:43:27 +08:00
|
|
|
Value *ScalarExprEmitter::GetWidthMinusOneValue(Value* LHS,Value* RHS) {
|
2013-01-10 17:11:33 +08:00
|
|
|
llvm::IntegerType *Ty;
|
|
|
|
|
if (llvm::VectorType *VT = dyn_cast<llvm::VectorType>(LHS->getType()))
|
|
|
|
|
Ty = cast<llvm::IntegerType>(VT->getElementType());
|
|
|
|
|
else
|
|
|
|
|
Ty = cast<llvm::IntegerType>(LHS->getType());
|
|
|
|
|
return llvm::ConstantInt::get(RHS->getType(), Ty->getBitWidth() - 1);
|
2013-01-08 00:43:27 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *ScalarExprEmitter::EmitShl(const BinOpInfo &Ops) {
|
|
|
|
|
// LLVM requires the LHS and RHS to be the same type: promote or truncate the
|
|
|
|
|
// RHS to the same size as the LHS.
|
|
|
|
|
Value *RHS = Ops.RHS;
|
|
|
|
|
if (Ops.LHS->getType() != RHS->getType())
|
|
|
|
|
RHS = Builder.CreateIntCast(RHS, Ops.LHS->getType(), false, "sh_prom");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2015-03-10 05:50:19 +08:00
|
|
|
bool SanitizeBase = CGF.SanOpts.has(SanitizerKind::ShiftBase) &&
|
2016-08-16 17:45:36 +08:00
|
|
|
Ops.Ty->hasSignedIntegerRepresentation() &&
|
|
|
|
|
!CGF.getLangOpts().isSignedOverflowDefined();
|
2015-03-10 05:50:19 +08:00
|
|
|
bool SanitizeExponent = CGF.SanOpts.has(SanitizerKind::ShiftExponent);
|
|
|
|
|
// OpenCL 6.3j: shift values are effectively % word size of LHS.
|
|
|
|
|
if (CGF.getLangOpts().OpenCL)
|
|
|
|
|
RHS =
|
|
|
|
|
Builder.CreateAnd(RHS, GetWidthMinusOneValue(Ops.LHS, RHS), "shl.mask");
|
|
|
|
|
else if ((SanitizeBase || SanitizeExponent) &&
|
|
|
|
|
isa<llvm::IntegerType>(Ops.LHS->getType())) {
|
2014-07-18 02:46:27 +08:00
|
|
|
CodeGenFunction::SanitizerScope SanScope(&CGF);
|
2015-05-12 05:39:14 +08:00
|
|
|
SmallVector<std::pair<Value *, SanitizerMask>, 2> Checks;
|
2017-01-31 07:38:54 +08:00
|
|
|
llvm::Value *WidthMinusOne = GetWidthMinusOneValue(Ops.LHS, Ops.RHS);
|
|
|
|
|
llvm::Value *ValidExponent = Builder.CreateICmpULE(Ops.RHS, WidthMinusOne);
|
2015-03-06 05:57:35 +08:00
|
|
|
|
2015-03-10 05:50:19 +08:00
|
|
|
if (SanitizeExponent) {
|
|
|
|
|
Checks.push_back(
|
|
|
|
|
std::make_pair(ValidExponent, SanitizerKind::ShiftExponent));
|
|
|
|
|
}
|
2013-02-26 06:37:49 +08:00
|
|
|
|
2015-03-10 05:50:19 +08:00
|
|
|
if (SanitizeBase) {
|
2012-08-25 08:32:28 +08:00
|
|
|
// Check whether we are shifting any non-zero bits off the top of the
|
2015-03-10 05:50:19 +08:00
|
|
|
// integer. We only emit this check if exponent is valid - otherwise
|
|
|
|
|
// instructions below will have undefined behavior themselves.
|
|
|
|
|
llvm::BasicBlock *Orig = Builder.GetInsertBlock();
|
|
|
|
|
llvm::BasicBlock *Cont = CGF.createBasicBlock("cont");
|
|
|
|
|
llvm::BasicBlock *CheckShiftBase = CGF.createBasicBlock("check");
|
|
|
|
|
Builder.CreateCondBr(ValidExponent, CheckShiftBase, Cont);
|
2017-01-31 07:38:54 +08:00
|
|
|
llvm::Value *PromotedWidthMinusOne =
|
|
|
|
|
(RHS == Ops.RHS) ? WidthMinusOne
|
|
|
|
|
: GetWidthMinusOneValue(Ops.LHS, RHS);
|
2015-03-10 05:50:19 +08:00
|
|
|
CGF.EmitBlock(CheckShiftBase);
|
2017-01-31 07:38:54 +08:00
|
|
|
llvm::Value *BitsShiftedOff = Builder.CreateLShr(
|
|
|
|
|
Ops.LHS, Builder.CreateSub(PromotedWidthMinusOne, RHS, "shl.zeros",
|
|
|
|
|
/*NUW*/ true, /*NSW*/ true),
|
|
|
|
|
"shl.check");
|
2012-08-25 08:32:28 +08:00
|
|
|
if (CGF.getLangOpts().CPlusPlus) {
|
|
|
|
|
// In C99, we are not permitted to shift a 1 bit into the sign bit.
|
|
|
|
|
// Under C++11's rules, shifting a 1 bit into the sign bit is
|
|
|
|
|
// OK, but shifting a 1 bit out of it is not. (C89 and C++03 don't
|
|
|
|
|
// define signed left shifts, so we use the C99 and C++11 rules there).
|
|
|
|
|
llvm::Value *One = llvm::ConstantInt::get(BitsShiftedOff->getType(), 1);
|
|
|
|
|
BitsShiftedOff = Builder.CreateLShr(BitsShiftedOff, One);
|
|
|
|
|
}
|
|
|
|
|
llvm::Value *Zero = llvm::ConstantInt::get(BitsShiftedOff->getType(), 0);
|
2015-03-10 05:50:19 +08:00
|
|
|
llvm::Value *ValidBase = Builder.CreateICmpEQ(BitsShiftedOff, Zero);
|
2015-03-06 05:57:35 +08:00
|
|
|
CGF.EmitBlock(Cont);
|
2015-03-10 05:50:19 +08:00
|
|
|
llvm::PHINode *BaseCheck = Builder.CreatePHI(ValidBase->getType(), 2);
|
|
|
|
|
BaseCheck->addIncoming(Builder.getTrue(), Orig);
|
|
|
|
|
BaseCheck->addIncoming(ValidBase, CheckShiftBase);
|
|
|
|
|
Checks.push_back(std::make_pair(BaseCheck, SanitizerKind::ShiftBase));
|
2012-08-25 08:32:28 +08:00
|
|
|
}
|
2013-02-26 06:37:49 +08:00
|
|
|
|
2015-03-10 05:50:19 +08:00
|
|
|
assert(!Checks.empty());
|
|
|
|
|
EmitBinOpCheck(Checks, Ops);
|
2009-12-15 05:58:14 +08:00
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
return Builder.CreateShl(Ops.LHS, RHS, "shl");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::EmitShr(const BinOpInfo &Ops) {
|
|
|
|
|
// LLVM requires the LHS and RHS to be the same type: promote or truncate the
|
|
|
|
|
// RHS to the same size as the LHS.
|
|
|
|
|
Value *RHS = Ops.RHS;
|
|
|
|
|
if (Ops.LHS->getType() != RHS->getType())
|
|
|
|
|
RHS = Builder.CreateIntCast(RHS, Ops.LHS->getType(), false, "sh_prom");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2015-03-10 05:50:19 +08:00
|
|
|
// OpenCL 6.3j: shift values are effectively % word size of LHS.
|
|
|
|
|
if (CGF.getLangOpts().OpenCL)
|
|
|
|
|
RHS =
|
|
|
|
|
Builder.CreateAnd(RHS, GetWidthMinusOneValue(Ops.LHS, RHS), "shr.mask");
|
|
|
|
|
else if (CGF.SanOpts.has(SanitizerKind::ShiftExponent) &&
|
|
|
|
|
isa<llvm::IntegerType>(Ops.LHS->getType())) {
|
2014-07-18 02:46:27 +08:00
|
|
|
CodeGenFunction::SanitizerScope SanScope(&CGF);
|
2014-11-12 06:03:54 +08:00
|
|
|
llvm::Value *Valid =
|
|
|
|
|
Builder.CreateICmpULE(RHS, GetWidthMinusOneValue(Ops.LHS, RHS));
|
2015-03-10 05:50:19 +08:00
|
|
|
EmitBinOpCheck(std::make_pair(Valid, SanitizerKind::ShiftExponent), Ops);
|
2014-07-18 02:46:27 +08:00
|
|
|
}
|
2013-01-08 00:43:27 +08:00
|
|
|
|
2010-07-23 23:58:24 +08:00
|
|
|
if (Ops.Ty->hasUnsignedIntegerRepresentation())
|
2007-08-24 13:35:26 +08:00
|
|
|
return Builder.CreateLShr(Ops.LHS, RHS, "shr");
|
|
|
|
|
return Builder.CreateAShr(Ops.LHS, RHS, "shr");
|
|
|
|
|
}
|
|
|
|
|
|
2010-11-18 11:19:30 +08:00
|
|
|
enum IntrinsicType { VCMPEQ, VCMPGT };
|
|
|
|
|
// return corresponding comparison intrinsic for given vector type
|
|
|
|
|
static llvm::Intrinsic::ID GetIntrinsic(IntrinsicType IT,
|
|
|
|
|
BuiltinType::Kind ElemKind) {
|
|
|
|
|
switch (ElemKind) {
|
2011-09-23 13:06:16 +08:00
|
|
|
default: llvm_unreachable("unexpected element type");
|
2010-11-18 11:19:30 +08:00
|
|
|
case BuiltinType::Char_U:
|
|
|
|
|
case BuiltinType::UChar:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpequb_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtub_p;
|
|
|
|
|
case BuiltinType::Char_S:
|
|
|
|
|
case BuiltinType::SChar:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpequb_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtsb_p;
|
|
|
|
|
case BuiltinType::UShort:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpequh_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtuh_p;
|
|
|
|
|
case BuiltinType::Short:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpequh_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtsh_p;
|
|
|
|
|
case BuiltinType::UInt:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpequw_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtuw_p;
|
|
|
|
|
case BuiltinType::Int:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpequw_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtsw_p;
|
2017-10-20 04:11:23 +08:00
|
|
|
case BuiltinType::ULong:
|
|
|
|
|
case BuiltinType::ULongLong:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpequd_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtud_p;
|
|
|
|
|
case BuiltinType::Long:
|
|
|
|
|
case BuiltinType::LongLong:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpequd_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtsd_p;
|
2010-11-18 11:19:30 +08:00
|
|
|
case BuiltinType::Float:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_altivec_vcmpeqfp_p :
|
|
|
|
|
llvm::Intrinsic::ppc_altivec_vcmpgtfp_p;
|
2017-10-20 04:11:23 +08:00
|
|
|
case BuiltinType::Double:
|
|
|
|
|
return (IT == VCMPEQ) ? llvm::Intrinsic::ppc_vsx_xvcmpeqdp_p :
|
|
|
|
|
llvm::Intrinsic::ppc_vsx_xvcmpgtdp_p;
|
2010-11-18 11:19:30 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-12-16 14:24:28 +08:00
|
|
|
Value *ScalarExprEmitter::EmitCompare(const BinaryOperator *E,
|
|
|
|
|
llvm::CmpInst::Predicate UICmpOpc,
|
|
|
|
|
llvm::CmpInst::Predicate SICmpOpc,
|
|
|
|
|
llvm::CmpInst::Predicate FCmpOpc) {
|
2009-05-29 23:46:01 +08:00
|
|
|
TestAndClearIgnoreResultAssign();
|
2007-08-27 00:34:22 +08:00
|
|
|
Value *Result;
|
2007-08-24 13:35:26 +08:00
|
|
|
QualType LHSTy = E->getLHS()->getType();
|
2014-10-11 19:03:30 +08:00
|
|
|
QualType RHSTy = E->getRHS()->getType();
|
2010-08-23 09:21:21 +08:00
|
|
|
if (const MemberPointerType *MPT = LHSTy->getAs<MemberPointerType>()) {
|
2010-08-25 19:45:40 +08:00
|
|
|
assert(E->getOpcode() == BO_EQ ||
|
|
|
|
|
E->getOpcode() == BO_NE);
|
2010-08-22 18:59:02 +08:00
|
|
|
Value *LHS = CGF.EmitScalarExpr(E->getLHS());
|
|
|
|
|
Value *RHS = CGF.EmitScalarExpr(E->getRHS());
|
2010-08-23 09:21:21 +08:00
|
|
|
Result = CGF.CGM.getCXXABI().EmitMemberPointerComparison(
|
2010-08-25 19:45:40 +08:00
|
|
|
CGF, LHS, RHS, MPT, E->getOpcode() == BO_NE);
|
2014-10-11 19:03:30 +08:00
|
|
|
} else if (!LHSTy->isAnyComplexType() && !RHSTy->isAnyComplexType()) {
|
2019-02-22 04:50:09 +08:00
|
|
|
BinOpInfo BOInfo = EmitBinOps(E);
|
|
|
|
|
Value *LHS = BOInfo.LHS;
|
|
|
|
|
Value *RHS = BOInfo.RHS;
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-11-18 11:19:30 +08:00
|
|
|
// If AltiVec, the comparison results in a numeric type, so we use
|
|
|
|
|
// intrinsics comparing vectors and giving 0 or 1 as a result
|
2011-03-29 05:00:05 +08:00
|
|
|
if (LHSTy->isVectorType() && !E->getType()->isVectorType()) {
|
2010-11-18 11:19:30 +08:00
|
|
|
// constants for mapping CR6 register bits to predicate result
|
|
|
|
|
enum { CR6_EQ=0, CR6_EQ_REV, CR6_LT, CR6_LT_REV } CR6;
|
|
|
|
|
|
|
|
|
|
llvm::Intrinsic::ID ID = llvm::Intrinsic::not_intrinsic;
|
|
|
|
|
|
|
|
|
|
// in several cases vector arguments order will be reversed
|
|
|
|
|
Value *FirstVecArg = LHS,
|
|
|
|
|
*SecondVecArg = RHS;
|
|
|
|
|
|
|
|
|
|
QualType ElTy = LHSTy->getAs<VectorType>()->getElementType();
|
2011-01-19 14:33:43 +08:00
|
|
|
const BuiltinType *BTy = ElTy->getAs<BuiltinType>();
|
2010-11-18 11:19:30 +08:00
|
|
|
BuiltinType::Kind ElementKind = BTy->getKind();
|
|
|
|
|
|
|
|
|
|
switch(E->getOpcode()) {
|
2011-09-23 13:06:16 +08:00
|
|
|
default: llvm_unreachable("is not a comparison operation");
|
2010-11-18 11:19:30 +08:00
|
|
|
case BO_EQ:
|
|
|
|
|
CR6 = CR6_LT;
|
|
|
|
|
ID = GetIntrinsic(VCMPEQ, ElementKind);
|
|
|
|
|
break;
|
|
|
|
|
case BO_NE:
|
|
|
|
|
CR6 = CR6_EQ;
|
|
|
|
|
ID = GetIntrinsic(VCMPEQ, ElementKind);
|
|
|
|
|
break;
|
|
|
|
|
case BO_LT:
|
|
|
|
|
CR6 = CR6_LT;
|
|
|
|
|
ID = GetIntrinsic(VCMPGT, ElementKind);
|
|
|
|
|
std::swap(FirstVecArg, SecondVecArg);
|
|
|
|
|
break;
|
|
|
|
|
case BO_GT:
|
|
|
|
|
CR6 = CR6_LT;
|
|
|
|
|
ID = GetIntrinsic(VCMPGT, ElementKind);
|
|
|
|
|
break;
|
|
|
|
|
case BO_LE:
|
|
|
|
|
if (ElementKind == BuiltinType::Float) {
|
|
|
|
|
CR6 = CR6_LT;
|
|
|
|
|
ID = llvm::Intrinsic::ppc_altivec_vcmpgefp_p;
|
|
|
|
|
std::swap(FirstVecArg, SecondVecArg);
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
CR6 = CR6_EQ;
|
|
|
|
|
ID = GetIntrinsic(VCMPGT, ElementKind);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case BO_GE:
|
|
|
|
|
if (ElementKind == BuiltinType::Float) {
|
|
|
|
|
CR6 = CR6_LT;
|
|
|
|
|
ID = llvm::Intrinsic::ppc_altivec_vcmpgefp_p;
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
CR6 = CR6_EQ;
|
|
|
|
|
ID = GetIntrinsic(VCMPGT, ElementKind);
|
|
|
|
|
std::swap(FirstVecArg, SecondVecArg);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
2011-04-20 06:55:03 +08:00
|
|
|
Value *CR6Param = Builder.getInt32(CR6);
|
2010-11-18 11:19:30 +08:00
|
|
|
llvm::Function *F = CGF.CGM.getIntrinsic(ID);
|
2015-05-19 06:14:03 +08:00
|
|
|
Result = Builder.CreateCall(F, {CR6Param, FirstVecArg, SecondVecArg});
|
2017-10-11 04:31:27 +08:00
|
|
|
|
|
|
|
|
// The result type of intrinsic may not be same as E->getType().
|
|
|
|
|
// If E->getType() is not BoolTy, EmitScalarConversion will do the
|
|
|
|
|
// conversion work. If E->getType() is BoolTy, EmitScalarConversion will
|
|
|
|
|
// do nothing, if ResultTy is not i1 at the same time, it will cause
|
|
|
|
|
// crash later.
|
|
|
|
|
llvm::IntegerType *ResultTy = cast<llvm::IntegerType>(Result->getType());
|
|
|
|
|
if (ResultTy->getBitWidth() > 1 &&
|
|
|
|
|
E->getType() == CGF.getContext().BoolTy)
|
|
|
|
|
Result = Builder.CreateTrunc(Result, Builder.getInt1Ty());
|
2015-08-11 12:19:28 +08:00
|
|
|
return EmitScalarConversion(Result, CGF.getContext().BoolTy, E->getType(),
|
|
|
|
|
E->getExprLoc());
|
2010-11-18 11:19:30 +08:00
|
|
|
}
|
|
|
|
|
|
2019-02-22 04:50:09 +08:00
|
|
|
if (BOInfo.isFixedPointBinOp()) {
|
|
|
|
|
Result = EmitFixedPointBinOp(BOInfo);
|
|
|
|
|
} else if (LHS->getType()->isFPOrFPVectorTy()) {
|
2015-12-16 14:24:28 +08:00
|
|
|
Result = Builder.CreateFCmp(FCmpOpc, LHS, RHS, "cmp");
|
2010-07-23 23:58:24 +08:00
|
|
|
} else if (LHSTy->hasSignedIntegerRepresentation()) {
|
2015-12-16 14:24:28 +08:00
|
|
|
Result = Builder.CreateICmp(SICmpOpc, LHS, RHS, "cmp");
|
2007-08-24 13:35:26 +08:00
|
|
|
} else {
|
2008-05-29 23:09:15 +08:00
|
|
|
// Unsigned integers and pointers.
|
2018-07-03 03:21:36 +08:00
|
|
|
|
|
|
|
|
if (CGF.CGM.getCodeGenOpts().StrictVTablePointers &&
|
|
|
|
|
!isa<llvm::ConstantPointerNull>(LHS) &&
|
|
|
|
|
!isa<llvm::ConstantPointerNull>(RHS)) {
|
|
|
|
|
|
|
|
|
|
// Dynamic information is required to be stripped for comparisons,
|
|
|
|
|
// because it could leak the dynamic information. Based on comparisons
|
|
|
|
|
// of pointers to dynamic objects, the optimizer can replace one pointer
|
|
|
|
|
// with another, which might be incorrect in presence of invariant
|
|
|
|
|
// groups. Comparison with null is safe because null does not carry any
|
|
|
|
|
// dynamic information.
|
|
|
|
|
if (LHSTy.mayBeDynamicClass())
|
|
|
|
|
LHS = Builder.CreateStripInvariantGroup(LHS);
|
|
|
|
|
if (RHSTy.mayBeDynamicClass())
|
|
|
|
|
RHS = Builder.CreateStripInvariantGroup(RHS);
|
|
|
|
|
}
|
|
|
|
|
|
2015-12-16 14:24:28 +08:00
|
|
|
Result = Builder.CreateICmp(UICmpOpc, LHS, RHS, "cmp");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2009-07-08 09:08:03 +08:00
|
|
|
|
|
|
|
|
// If this is a vector comparison, sign extend the result to the appropriate
|
|
|
|
|
// vector integer type and return it (don't convert to bool).
|
|
|
|
|
if (LHSTy->isVectorType())
|
|
|
|
|
return Builder.CreateSExt(Result, ConvertType(E->getType()), "sext");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
} else {
|
|
|
|
|
// Complex Comparison: can only be an equality comparison.
|
2014-10-11 19:03:30 +08:00
|
|
|
CodeGenFunction::ComplexPairTy LHS, RHS;
|
|
|
|
|
QualType CETy;
|
|
|
|
|
if (auto *CTy = LHSTy->getAs<ComplexType>()) {
|
|
|
|
|
LHS = CGF.EmitComplexExpr(E->getLHS());
|
|
|
|
|
CETy = CTy->getElementType();
|
|
|
|
|
} else {
|
|
|
|
|
LHS.first = Visit(E->getLHS());
|
|
|
|
|
LHS.second = llvm::Constant::getNullValue(LHS.first->getType());
|
|
|
|
|
CETy = LHSTy;
|
|
|
|
|
}
|
|
|
|
|
if (auto *CTy = RHSTy->getAs<ComplexType>()) {
|
|
|
|
|
RHS = CGF.EmitComplexExpr(E->getRHS());
|
|
|
|
|
assert(CGF.getContext().hasSameUnqualifiedType(CETy,
|
|
|
|
|
CTy->getElementType()) &&
|
|
|
|
|
"The element types must always match.");
|
2014-10-11 19:29:26 +08:00
|
|
|
(void)CTy;
|
2014-10-11 19:03:30 +08:00
|
|
|
} else {
|
|
|
|
|
RHS.first = Visit(E->getRHS());
|
|
|
|
|
RHS.second = llvm::Constant::getNullValue(RHS.first->getType());
|
|
|
|
|
assert(CGF.getContext().hasSameUnqualifiedType(CETy, RHSTy) &&
|
|
|
|
|
"The element types must always match.");
|
|
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-27 00:34:22 +08:00
|
|
|
Value *ResultR, *ResultI;
|
2007-08-24 13:35:26 +08:00
|
|
|
if (CETy->isRealFloatingType()) {
|
2015-12-16 14:24:28 +08:00
|
|
|
ResultR = Builder.CreateFCmp(FCmpOpc, LHS.first, RHS.first, "cmp.r");
|
|
|
|
|
ResultI = Builder.CreateFCmp(FCmpOpc, LHS.second, RHS.second, "cmp.i");
|
2007-08-24 13:35:26 +08:00
|
|
|
} else {
|
|
|
|
|
// Complex comparisons can only be equality comparisons. As such, signed
|
|
|
|
|
// and unsigned opcodes are the same.
|
2015-12-16 14:24:28 +08:00
|
|
|
ResultR = Builder.CreateICmp(UICmpOpc, LHS.first, RHS.first, "cmp.r");
|
|
|
|
|
ResultI = Builder.CreateICmp(UICmpOpc, LHS.second, RHS.second, "cmp.i");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-08-25 19:45:40 +08:00
|
|
|
if (E->getOpcode() == BO_EQ) {
|
2007-08-24 13:35:26 +08:00
|
|
|
Result = Builder.CreateAnd(ResultR, ResultI, "and.ri");
|
|
|
|
|
} else {
|
2010-08-25 19:45:40 +08:00
|
|
|
assert(E->getOpcode() == BO_NE &&
|
2007-08-24 13:35:26 +08:00
|
|
|
"Complex comparison other than == or != ?");
|
|
|
|
|
Result = Builder.CreateOr(ResultR, ResultI, "or.ri");
|
|
|
|
|
}
|
|
|
|
|
}
|
2009-01-12 07:22:37 +08:00
|
|
|
|
2015-08-11 12:19:28 +08:00
|
|
|
return EmitScalarConversion(Result, CGF.getContext().BoolTy, E->getType(),
|
|
|
|
|
E->getExprLoc());
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitBinAssign(const BinaryOperator *E) {
|
2009-05-29 23:46:01 +08:00
|
|
|
bool Ignore = TestAndClearIgnoreResultAssign();
|
|
|
|
|
|
2011-06-16 07:02:42 +08:00
|
|
|
Value *RHS;
|
|
|
|
|
LValue LHS;
|
|
|
|
|
|
|
|
|
|
switch (E->getLHS()->getType().getObjCLifetime()) {
|
|
|
|
|
case Qualifiers::OCL_Strong:
|
2014-03-02 21:01:17 +08:00
|
|
|
std::tie(LHS, RHS) = CGF.EmitARCStoreStrong(E, Ignore);
|
2011-06-16 07:02:42 +08:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case Qualifiers::OCL_Autoreleasing:
|
2014-03-02 21:01:17 +08:00
|
|
|
std::tie(LHS, RHS) = CGF.EmitARCStoreAutoreleasing(E);
|
2011-06-16 07:02:42 +08:00
|
|
|
break;
|
|
|
|
|
|
2016-01-28 02:32:30 +08:00
|
|
|
case Qualifiers::OCL_ExplicitNone:
|
|
|
|
|
std::tie(LHS, RHS) = CGF.EmitARCStoreUnsafeUnretained(E, Ignore);
|
|
|
|
|
break;
|
|
|
|
|
|
2011-06-16 07:02:42 +08:00
|
|
|
case Qualifiers::OCL_Weak:
|
|
|
|
|
RHS = Visit(E->getRHS());
|
2012-09-08 10:08:36 +08:00
|
|
|
LHS = EmitCheckedLValue(E->getLHS(), CodeGenFunction::TCK_Store);
|
2011-06-16 07:02:42 +08:00
|
|
|
RHS = CGF.EmitARCStoreWeak(LHS.getAddress(), RHS, Ignore);
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case Qualifiers::OCL_None:
|
|
|
|
|
// __block variables need to have the rhs evaluated first, plus
|
|
|
|
|
// this should improve codegen just a little.
|
|
|
|
|
RHS = Visit(E->getRHS());
|
2012-09-08 10:08:36 +08:00
|
|
|
LHS = EmitCheckedLValue(E->getLHS(), CodeGenFunction::TCK_Store);
|
2011-06-16 07:02:42 +08:00
|
|
|
|
|
|
|
|
// Store the value into the LHS. Bit-fields are handled specially
|
|
|
|
|
// because the result is altered by the store, i.e., [C99 6.5.16p1]
|
|
|
|
|
// 'An assignment expression has the value of the left operand after
|
|
|
|
|
// the assignment...'.
|
2017-03-14 09:56:34 +08:00
|
|
|
if (LHS.isBitField()) {
|
2011-06-25 10:11:03 +08:00
|
|
|
CGF.EmitStoreThroughBitfieldLValue(RValue::get(RHS), LHS, &RHS);
|
2017-03-14 09:56:34 +08:00
|
|
|
} else {
|
|
|
|
|
CGF.EmitNullabilityCheck(LHS, RHS, E->getExprLoc());
|
2011-06-25 10:11:03 +08:00
|
|
|
CGF.EmitStoreThroughLValue(RValue::get(RHS), LHS);
|
2017-03-14 09:56:34 +08:00
|
|
|
}
|
2011-06-16 07:02:42 +08:00
|
|
|
}
|
2010-06-30 06:00:45 +08:00
|
|
|
|
|
|
|
|
// If the result is clearly ignored, return now.
|
2009-05-29 23:46:01 +08:00
|
|
|
if (Ignore)
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2010-06-30 06:00:45 +08:00
|
|
|
|
2010-11-16 18:08:07 +08:00
|
|
|
// The result of an assignment in C is the assigned r-value.
|
2012-11-02 06:30:59 +08:00
|
|
|
if (!CGF.getLangOpts().CPlusPlus)
|
2010-11-16 18:08:07 +08:00
|
|
|
return RHS;
|
|
|
|
|
|
2010-06-30 06:00:45 +08:00
|
|
|
// If the lvalue is non-volatile, return the computed value of the assignment.
|
|
|
|
|
if (!LHS.isVolatileQualified())
|
|
|
|
|
return RHS;
|
|
|
|
|
|
|
|
|
|
// Otherwise, reload the value.
|
2013-10-02 10:29:49 +08:00
|
|
|
return EmitLoadOfLValue(LHS, E->getExprLoc());
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitBinLAnd(const BinaryOperator *E) {
|
2012-01-17 05:02:28 +08:00
|
|
|
// Perform vector logical and on comparisons with zero vectors.
|
|
|
|
|
if (E->getType()->isVectorType()) {
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2014-01-07 06:27:43 +08:00
|
|
|
|
2012-01-17 05:02:28 +08:00
|
|
|
Value *LHS = Visit(E->getLHS());
|
|
|
|
|
Value *RHS = Visit(E->getRHS());
|
|
|
|
|
Value *Zero = llvm::ConstantAggregateZero::get(LHS->getType());
|
2013-02-21 19:49:56 +08:00
|
|
|
if (LHS->getType()->isFPOrFPVectorTy()) {
|
|
|
|
|
LHS = Builder.CreateFCmp(llvm::CmpInst::FCMP_UNE, LHS, Zero, "cmp");
|
|
|
|
|
RHS = Builder.CreateFCmp(llvm::CmpInst::FCMP_UNE, RHS, Zero, "cmp");
|
|
|
|
|
} else {
|
|
|
|
|
LHS = Builder.CreateICmp(llvm::CmpInst::ICMP_NE, LHS, Zero, "cmp");
|
|
|
|
|
RHS = Builder.CreateICmp(llvm::CmpInst::ICMP_NE, RHS, Zero, "cmp");
|
|
|
|
|
}
|
2012-01-17 05:02:28 +08:00
|
|
|
Value *And = Builder.CreateAnd(LHS, RHS);
|
2013-02-21 19:49:56 +08:00
|
|
|
return Builder.CreateSExt(And, ConvertType(E->getType()), "sext");
|
2012-01-17 05:02:28 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *ResTy = ConvertType(E->getType());
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2008-11-12 16:26:50 +08:00
|
|
|
// If we have 0 && RHS, see if we can elide RHS, if so, just return 0.
|
|
|
|
|
// If we have 1 && X, just emit X without inserting the control flow.
|
2011-02-28 07:02:32 +08:00
|
|
|
bool LHSCondVal;
|
|
|
|
|
if (CGF.ConstantFoldsToSimpleInteger(E->getLHS(), LHSCondVal)) {
|
|
|
|
|
if (LHSCondVal) { // If we have 1 && X, just emit X.
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2014-01-07 06:27:43 +08:00
|
|
|
|
2008-11-11 15:41:27 +08:00
|
|
|
Value *RHSCond = CGF.EvaluateExprAsBool(E->getRHS());
|
2009-10-17 12:24:20 +08:00
|
|
|
// ZExt result to int or bool.
|
|
|
|
|
return Builder.CreateZExtOrBitCast(RHSCond, ResTy, "land.ext");
|
2008-11-11 15:41:27 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2009-10-17 12:24:20 +08:00
|
|
|
// 0 && RHS: If it is safe, just elide the RHS, and return 0/false.
|
2008-11-12 16:26:50 +08:00
|
|
|
if (!CGF.ContainsLabel(E->getRHS()))
|
2009-10-17 12:24:20 +08:00
|
|
|
return llvm::Constant::getNullValue(ResTy);
|
2008-11-11 15:41:27 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2008-11-13 09:38:36 +08:00
|
|
|
llvm::BasicBlock *ContBlock = CGF.createBasicBlock("land.end");
|
|
|
|
|
llvm::BasicBlock *RHSBlock = CGF.createBasicBlock("land.rhs");
|
2008-11-12 16:26:50 +08:00
|
|
|
|
2011-01-26 12:00:11 +08:00
|
|
|
CodeGenFunction::ConditionalEvaluation eval(CGF);
|
|
|
|
|
|
2008-11-12 16:38:24 +08:00
|
|
|
// Branch on the LHS first. If it is false, go to the failure (cont) block.
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.EmitBranchOnBoolExpr(E->getLHS(), RHSBlock, ContBlock,
|
|
|
|
|
CGF.getProfileCount(E->getRHS()));
|
2008-11-12 16:38:24 +08:00
|
|
|
|
|
|
|
|
// Any edges into the ContBlock are now from an (indeterminate number of)
|
|
|
|
|
// edges from this first condition. All of these values will be false. Start
|
|
|
|
|
// setting up the PHI node in the Cont Block for this.
|
2011-03-30 19:28:58 +08:00
|
|
|
llvm::PHINode *PN = llvm::PHINode::Create(llvm::Type::getInt1Ty(VMContext), 2,
|
2009-08-14 05:57:51 +08:00
|
|
|
"", ContBlock);
|
2008-11-12 16:38:24 +08:00
|
|
|
for (llvm::pred_iterator PI = pred_begin(ContBlock), PE = pred_end(ContBlock);
|
|
|
|
|
PI != PE; ++PI)
|
2009-08-01 01:39:36 +08:00
|
|
|
PN->addIncoming(llvm::ConstantInt::getFalse(VMContext), *PI);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-01-26 12:00:11 +08:00
|
|
|
eval.begin(CGF);
|
2007-08-24 13:35:26 +08:00
|
|
|
CGF.EmitBlock(RHSBlock);
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *RHSCond = CGF.EvaluateExprAsBool(E->getRHS());
|
2011-01-26 12:00:11 +08:00
|
|
|
eval.end(CGF);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Reaquire the RHS block, as there may be subblocks inserted.
|
|
|
|
|
RHSBlock = Builder.GetInsertBlock();
|
2008-11-12 16:38:24 +08:00
|
|
|
|
2014-07-11 04:42:59 +08:00
|
|
|
// Emit an unconditional branch from this block to ContBlock.
|
|
|
|
|
{
|
2011-03-30 08:08:31 +08:00
|
|
|
// There is no need to emit line number for unconditional branch.
|
2015-02-04 04:00:54 +08:00
|
|
|
auto NL = ApplyDebugLocation::CreateEmpty(CGF);
|
2014-07-11 04:42:59 +08:00
|
|
|
CGF.EmitBlock(ContBlock);
|
|
|
|
|
}
|
|
|
|
|
// Insert an entry into the phi node for the edge with the value of RHSCond.
|
2007-08-24 13:35:26 +08:00
|
|
|
PN->addIncoming(RHSCond, RHSBlock);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2018-06-22 00:53:48 +08:00
|
|
|
// Artificial location to preserve the scope information
|
|
|
|
|
{
|
|
|
|
|
auto NL = ApplyDebugLocation::CreateArtificial(CGF);
|
|
|
|
|
PN->setDebugLoc(Builder.getCurrentDebugLocation());
|
|
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// ZExt result to int.
|
2009-10-17 12:24:20 +08:00
|
|
|
return Builder.CreateZExtOrBitCast(PN, ResTy, "land.ext");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitBinLOr(const BinaryOperator *E) {
|
2012-01-17 05:02:28 +08:00
|
|
|
// Perform vector logical or on comparisons with zero vectors.
|
|
|
|
|
if (E->getType()->isVectorType()) {
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2014-01-07 06:27:43 +08:00
|
|
|
|
2012-01-17 05:02:28 +08:00
|
|
|
Value *LHS = Visit(E->getLHS());
|
|
|
|
|
Value *RHS = Visit(E->getRHS());
|
|
|
|
|
Value *Zero = llvm::ConstantAggregateZero::get(LHS->getType());
|
2013-02-21 19:49:56 +08:00
|
|
|
if (LHS->getType()->isFPOrFPVectorTy()) {
|
|
|
|
|
LHS = Builder.CreateFCmp(llvm::CmpInst::FCMP_UNE, LHS, Zero, "cmp");
|
|
|
|
|
RHS = Builder.CreateFCmp(llvm::CmpInst::FCMP_UNE, RHS, Zero, "cmp");
|
|
|
|
|
} else {
|
|
|
|
|
LHS = Builder.CreateICmp(llvm::CmpInst::ICMP_NE, LHS, Zero, "cmp");
|
|
|
|
|
RHS = Builder.CreateICmp(llvm::CmpInst::ICMP_NE, RHS, Zero, "cmp");
|
|
|
|
|
}
|
2012-01-17 05:02:28 +08:00
|
|
|
Value *Or = Builder.CreateOr(LHS, RHS);
|
2013-02-21 19:49:56 +08:00
|
|
|
return Builder.CreateSExt(Or, ConvertType(E->getType()), "sext");
|
2012-01-17 05:02:28 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *ResTy = ConvertType(E->getType());
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2008-11-12 16:26:50 +08:00
|
|
|
// If we have 1 || RHS, see if we can elide RHS, if so, just return 1.
|
|
|
|
|
// If we have 0 || X, just emit X without inserting the control flow.
|
2011-02-28 07:02:32 +08:00
|
|
|
bool LHSCondVal;
|
|
|
|
|
if (CGF.ConstantFoldsToSimpleInteger(E->getLHS(), LHSCondVal)) {
|
|
|
|
|
if (!LHSCondVal) { // If we have 0 || X, just emit X.
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2014-01-07 06:27:43 +08:00
|
|
|
|
2008-11-11 15:41:27 +08:00
|
|
|
Value *RHSCond = CGF.EvaluateExprAsBool(E->getRHS());
|
2009-10-17 12:24:20 +08:00
|
|
|
// ZExt result to int or bool.
|
|
|
|
|
return Builder.CreateZExtOrBitCast(RHSCond, ResTy, "lor.ext");
|
2008-11-11 15:41:27 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2009-10-17 12:24:20 +08:00
|
|
|
// 1 || RHS: If it is safe, just elide the RHS, and return 1/true.
|
2008-11-12 16:26:50 +08:00
|
|
|
if (!CGF.ContainsLabel(E->getRHS()))
|
2009-10-17 12:24:20 +08:00
|
|
|
return llvm::ConstantInt::get(ResTy, 1);
|
2008-11-11 15:41:27 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2008-11-13 09:38:36 +08:00
|
|
|
llvm::BasicBlock *ContBlock = CGF.createBasicBlock("lor.end");
|
|
|
|
|
llvm::BasicBlock *RHSBlock = CGF.createBasicBlock("lor.rhs");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-01-26 12:00:11 +08:00
|
|
|
CodeGenFunction::ConditionalEvaluation eval(CGF);
|
|
|
|
|
|
2008-11-12 16:38:24 +08:00
|
|
|
// Branch on the LHS first. If it is true, go to the success (cont) block.
|
2014-01-07 06:27:43 +08:00
|
|
|
CGF.EmitBranchOnBoolExpr(E->getLHS(), ContBlock, RHSBlock,
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.getCurrentProfileCount() -
|
|
|
|
|
CGF.getProfileCount(E->getRHS()));
|
2008-11-12 16:38:24 +08:00
|
|
|
|
|
|
|
|
// Any edges into the ContBlock are now from an (indeterminate number of)
|
|
|
|
|
// edges from this first condition. All of these values will be true. Start
|
|
|
|
|
// setting up the PHI node in the Cont Block for this.
|
2011-03-30 19:28:58 +08:00
|
|
|
llvm::PHINode *PN = llvm::PHINode::Create(llvm::Type::getInt1Ty(VMContext), 2,
|
2009-08-14 05:57:51 +08:00
|
|
|
"", ContBlock);
|
2008-11-12 16:38:24 +08:00
|
|
|
for (llvm::pred_iterator PI = pred_begin(ContBlock), PE = pred_end(ContBlock);
|
|
|
|
|
PI != PE; ++PI)
|
2009-08-01 01:39:36 +08:00
|
|
|
PN->addIncoming(llvm::ConstantInt::getTrue(VMContext), *PI);
|
2008-11-12 16:38:24 +08:00
|
|
|
|
2011-01-26 12:00:11 +08:00
|
|
|
eval.begin(CGF);
|
2009-06-04 10:53:13 +08:00
|
|
|
|
2008-11-12 16:38:24 +08:00
|
|
|
// Emit the RHS condition as a bool value.
|
2007-08-24 13:35:26 +08:00
|
|
|
CGF.EmitBlock(RHSBlock);
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *RHSCond = CGF.EvaluateExprAsBool(E->getRHS());
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-01-26 12:00:11 +08:00
|
|
|
eval.end(CGF);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Reaquire the RHS block, as there may be subblocks inserted.
|
|
|
|
|
RHSBlock = Builder.GetInsertBlock();
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2008-11-12 16:38:24 +08:00
|
|
|
// Emit an unconditional branch from this block to ContBlock. Insert an entry
|
|
|
|
|
// into the phi node for the edge with the value of RHSCond.
|
|
|
|
|
CGF.EmitBlock(ContBlock);
|
2007-08-24 13:35:26 +08:00
|
|
|
PN->addIncoming(RHSCond, RHSBlock);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// ZExt result to int.
|
2009-10-17 12:24:20 +08:00
|
|
|
return Builder.CreateZExtOrBitCast(PN, ResTy, "lor.ext");
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitBinComma(const BinaryOperator *E) {
|
2010-12-05 10:00:02 +08:00
|
|
|
CGF.EmitIgnoredExpr(E->getLHS());
|
2008-11-12 07:11:34 +08:00
|
|
|
CGF.EnsureInsertPoint();
|
2007-08-24 13:35:26 +08:00
|
|
|
return Visit(E->getRHS());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
// Other Operators
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
2008-11-12 16:55:54 +08:00
|
|
|
/// isCheapEnoughToEvaluateUnconditionally - Return true if the specified
|
|
|
|
|
/// expression is cheap enough and side-effect-free enough to evaluate
|
|
|
|
|
/// unconditionally instead of conditionally. This is used to convert control
|
|
|
|
|
/// flow into selects in some cases.
|
2009-11-04 07:25:48 +08:00
|
|
|
static bool isCheapEnoughToEvaluateUnconditionally(const Expr *E,
|
|
|
|
|
CodeGenFunction &CGF) {
|
2011-04-17 07:15:35 +08:00
|
|
|
// Anything that is an integer or floating point constant is fine.
|
2013-11-09 07:00:12 +08:00
|
|
|
return E->IgnoreParens()->isEvaluatable(CGF.getContext());
|
|
|
|
|
|
|
|
|
|
// Even non-volatile automatic variables can't be evaluated unconditionally.
|
|
|
|
|
// Referencing a thread_local may cause non-trivial initialization work to
|
|
|
|
|
// occur. If we're inside a lambda and one of the variables is from the scope
|
|
|
|
|
// outside the lambda, that function may have returned already. Reading its
|
|
|
|
|
// locals is a bad idea. Also, these reads may introduce races there didn't
|
|
|
|
|
// exist in the source-level program.
|
2008-11-12 16:55:54 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
Value *ScalarExprEmitter::
|
2011-02-17 18:25:35 +08:00
|
|
|
VisitAbstractConditionalOperator(const AbstractConditionalOperator *E) {
|
2009-05-29 23:46:01 +08:00
|
|
|
TestAndClearIgnoreResultAssign();
|
2011-02-17 18:25:35 +08:00
|
|
|
|
|
|
|
|
// Bind the common expression if necessary.
|
2012-01-07 04:42:20 +08:00
|
|
|
CodeGenFunction::OpaqueValueMapping binding(CGF, E);
|
2011-02-17 18:25:35 +08:00
|
|
|
|
|
|
|
|
Expr *condExpr = E->getCond();
|
|
|
|
|
Expr *lhsExpr = E->getTrueExpr();
|
|
|
|
|
Expr *rhsExpr = E->getFalseExpr();
|
|
|
|
|
|
2008-11-12 16:04:58 +08:00
|
|
|
// If the condition constant folds and can be elided, try to avoid emitting
|
|
|
|
|
// the condition and the dead arm.
|
2011-02-28 07:02:32 +08:00
|
|
|
bool CondExprBool;
|
|
|
|
|
if (CGF.ConstantFoldsToSimpleInteger(condExpr, CondExprBool)) {
|
2011-02-17 18:25:35 +08:00
|
|
|
Expr *live = lhsExpr, *dead = rhsExpr;
|
2011-02-28 07:02:32 +08:00
|
|
|
if (!CondExprBool) std::swap(live, dead);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-10-15 10:10:40 +08:00
|
|
|
// If the dead side doesn't have labels we need, just emit the Live part.
|
|
|
|
|
if (!CGF.ContainsLabel(dead)) {
|
2014-01-07 06:27:43 +08:00
|
|
|
if (CondExprBool)
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2011-10-15 10:10:40 +08:00
|
|
|
Value *Result = Visit(live);
|
|
|
|
|
|
|
|
|
|
// If the live part is a throw expression, it acts like it has a void
|
|
|
|
|
// type, so evaluating it returns a null Value*. However, a conditional
|
|
|
|
|
// with non-void type must return a non-null Value*.
|
|
|
|
|
if (!Result && !E->getType()->isVoidType())
|
|
|
|
|
Result = llvm::UndefValue::get(CGF.ConvertType(E->getType()));
|
|
|
|
|
|
|
|
|
|
return Result;
|
|
|
|
|
}
|
2008-11-12 02:56:45 +08:00
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-09-21 06:41:17 +08:00
|
|
|
// OpenCL: If the condition is a vector, we can treat this condition like
|
|
|
|
|
// the select function.
|
2013-07-26 14:16:11 +08:00
|
|
|
if (CGF.getLangOpts().OpenCL
|
2011-02-17 18:25:35 +08:00
|
|
|
&& condExpr->getType()->isVectorType()) {
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2014-01-07 06:27:43 +08:00
|
|
|
|
2011-02-17 18:25:35 +08:00
|
|
|
llvm::Value *CondV = CGF.EmitScalarExpr(condExpr);
|
|
|
|
|
llvm::Value *LHS = Visit(lhsExpr);
|
|
|
|
|
llvm::Value *RHS = Visit(rhsExpr);
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *condType = ConvertType(condExpr->getType());
|
|
|
|
|
llvm::VectorType *vecTy = cast<llvm::VectorType>(condType);
|
2013-07-26 14:16:11 +08:00
|
|
|
|
|
|
|
|
unsigned numElem = vecTy->getNumElements();
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *elemType = vecTy->getElementType();
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2012-01-25 13:34:41 +08:00
|
|
|
llvm::Value *zeroVec = llvm::Constant::getNullValue(vecTy);
|
2010-09-21 06:41:17 +08:00
|
|
|
llvm::Value *TestMSB = Builder.CreateICmpSLT(CondV, zeroVec);
|
2013-07-26 14:16:11 +08:00
|
|
|
llvm::Value *tmp = Builder.CreateSExt(TestMSB,
|
2010-09-21 06:41:17 +08:00
|
|
|
llvm::VectorType::get(elemType,
|
2013-07-26 14:16:11 +08:00
|
|
|
numElem),
|
2010-09-21 06:41:17 +08:00
|
|
|
"sext");
|
|
|
|
|
llvm::Value *tmp2 = Builder.CreateNot(tmp);
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-09-21 06:41:17 +08:00
|
|
|
// Cast float to int to perform ANDs if necessary.
|
|
|
|
|
llvm::Value *RHSTmp = RHS;
|
|
|
|
|
llvm::Value *LHSTmp = LHS;
|
|
|
|
|
bool wasCast = false;
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::VectorType *rhsVTy = cast<llvm::VectorType>(RHS->getType());
|
2012-05-29 08:35:18 +08:00
|
|
|
if (rhsVTy->getElementType()->isFloatingPointTy()) {
|
2010-09-21 06:41:17 +08:00
|
|
|
RHSTmp = Builder.CreateBitCast(RHS, tmp2->getType());
|
|
|
|
|
LHSTmp = Builder.CreateBitCast(LHS, tmp->getType());
|
|
|
|
|
wasCast = true;
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-09-21 06:41:17 +08:00
|
|
|
llvm::Value *tmp3 = Builder.CreateAnd(RHSTmp, tmp2);
|
|
|
|
|
llvm::Value *tmp4 = Builder.CreateAnd(LHSTmp, tmp);
|
|
|
|
|
llvm::Value *tmp5 = Builder.CreateOr(tmp3, tmp4, "cond");
|
|
|
|
|
if (wasCast)
|
|
|
|
|
tmp5 = Builder.CreateBitCast(tmp5, RHS->getType());
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2010-09-21 06:41:17 +08:00
|
|
|
return tmp5;
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2008-11-12 16:55:54 +08:00
|
|
|
// If this is a really simple expression (like x ? 4 : 5), emit this as a
|
|
|
|
|
// select instead of as control flow. We can only do this if it is cheap and
|
2008-11-16 14:16:27 +08:00
|
|
|
// safe to evaluate the LHS and RHS unconditionally.
|
2011-02-17 18:25:35 +08:00
|
|
|
if (isCheapEnoughToEvaluateUnconditionally(lhsExpr, CGF) &&
|
|
|
|
|
isCheapEnoughToEvaluateUnconditionally(rhsExpr, CGF)) {
|
Revert "[profiling] Fix profile counter increment when emitting selects (PR32019)"
This reverts commit r296231. It causes an assertion failure on 32-bit
machines
clang: /export/users/atombot/llvm/clang-atom-d525-fedora-rel/llvm/lib/IR/Instructions.cpp:263: void llvm::CallInst::init(llvm::FunctionType*, llvm::Value*, llvm::ArrayRef<llvm::Value*>, llvm::ArrayRef<llvm::OperandBundleDefT<llvm::Value*> >, const llvm::Twine&): Assertion `(i >= FTy->getNumParams() || FTy->getParamType(i) == Args[i]->getType()) && "Calling a function with a bad signature!"' failed.
llvm::sys::PrintStackTrace(llvm::raw_ostream&) (/export/users/atombot/llvm/clang-atom-d525-fedora-rel/stage1/./bin/clang+0x1c5fbfa)
llvm::sys::RunSignalHandlers() (/export/users/atombot/llvm/clang-atom-d525-fedora-rel/stage1/./bin/clang+0x1c5dc7e)
SignalHandler(int) (/export/users/atombot/llvm/clang-atom-d525-fedora-rel/stage1/./bin/clang+0x1c5dde2)
__restore_rt (/lib64/libpthread.so.0+0x3f1d00efa0)
__GI_raise /home/glibctest/rpmbuild/BUILD/glibc-2.17-c758a686/signal/../nptl/sysdeps/unix/sysv/linux/raise.c:56:0
__GI_abort /home/glibctest/rpmbuild/BUILD/glibc-2.17-c758a686/stdlib/abort.c:92:0
__assert_fail_base /home/glibctest/rpmbuild/BUILD/glibc-2.17-c758a686/assert/assert.c:92:0
(/lib64/libc.so.6+0x3f1c82e622)
llvm::CallInst::init(llvm::FunctionType*, llvm::Value*, llvm::ArrayRef<llvm::Value*>, llvm::ArrayRef<llvm::OperandBundleDefT<llvm::Value*> >, llvm::Twine const&) (/export/users/atombot/llvm/clang-atom-d525-fedora-rel/stage1/./bin/clang+0x1804e3a)
clang::CodeGen::CodeGenPGO::emitCounterIncrement(clang::CodeGen::CGBuilderTy&, clang::Stmt const*, llvm::Value*) (/export/users/atombot/llvm/clang-atom-d525-fedora-rel/stage1/./bin/clang+0x1ec7891)
llvm-svn: 296234
2017-02-25 10:59:47 +08:00
|
|
|
llvm::Value *CondV = CGF.EvaluateExprAsBool(condExpr);
|
2017-02-25 14:35:45 +08:00
|
|
|
llvm::Value *StepV = Builder.CreateZExtOrBitCast(CondV, CGF.Int64Ty);
|
|
|
|
|
|
|
|
|
|
CGF.incrementProfileCounter(E, StepV);
|
|
|
|
|
|
2011-02-17 18:25:35 +08:00
|
|
|
llvm::Value *LHS = Visit(lhsExpr);
|
|
|
|
|
llvm::Value *RHS = Visit(rhsExpr);
|
2011-12-09 06:01:56 +08:00
|
|
|
if (!LHS) {
|
|
|
|
|
// If the conditional has void type, make sure we return a null Value*.
|
|
|
|
|
assert(!RHS && "LHS and RHS types must match");
|
2014-05-21 13:09:00 +08:00
|
|
|
return nullptr;
|
2011-12-09 06:01:56 +08:00
|
|
|
}
|
2008-11-12 16:55:54 +08:00
|
|
|
return Builder.CreateSelect(CondV, LHS, RHS, "cond");
|
|
|
|
|
}
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2008-11-12 18:13:37 +08:00
|
|
|
llvm::BasicBlock *LHSBlock = CGF.createBasicBlock("cond.true");
|
|
|
|
|
llvm::BasicBlock *RHSBlock = CGF.createBasicBlock("cond.false");
|
2008-11-13 09:38:36 +08:00
|
|
|
llvm::BasicBlock *ContBlock = CGF.createBasicBlock("cond.end");
|
2011-01-26 12:00:11 +08:00
|
|
|
|
|
|
|
|
CodeGenFunction::ConditionalEvaluation eval(CGF);
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.EmitBranchOnBoolExpr(condExpr, LHSBlock, RHSBlock,
|
|
|
|
|
CGF.getProfileCount(lhsExpr));
|
2009-06-04 11:00:32 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
CGF.EmitBlock(LHSBlock);
|
2015-04-24 07:06:47 +08:00
|
|
|
CGF.incrementProfileCounter(E);
|
2011-01-26 12:00:11 +08:00
|
|
|
eval.begin(CGF);
|
2011-02-17 18:25:35 +08:00
|
|
|
Value *LHS = Visit(lhsExpr);
|
2011-01-26 12:00:11 +08:00
|
|
|
eval.end(CGF);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
LHSBlock = Builder.GetInsertBlock();
|
2011-01-26 12:00:11 +08:00
|
|
|
Builder.CreateBr(ContBlock);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
CGF.EmitBlock(RHSBlock);
|
2011-01-26 12:00:11 +08:00
|
|
|
eval.begin(CGF);
|
2011-02-17 18:25:35 +08:00
|
|
|
Value *RHS = Visit(rhsExpr);
|
2011-01-26 12:00:11 +08:00
|
|
|
eval.end(CGF);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2011-01-26 12:00:11 +08:00
|
|
|
RHSBlock = Builder.GetInsertBlock();
|
2007-08-24 13:35:26 +08:00
|
|
|
CGF.EmitBlock(ContBlock);
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2009-12-08 04:25:53 +08:00
|
|
|
// If the LHS or RHS is a throw expression, it will be legitimately null.
|
|
|
|
|
if (!LHS)
|
|
|
|
|
return RHS;
|
|
|
|
|
if (!RHS)
|
|
|
|
|
return LHS;
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
// Create a PHI node for the real part.
|
2011-03-30 19:28:58 +08:00
|
|
|
llvm::PHINode *PN = Builder.CreatePHI(LHS->getType(), 2, "cond");
|
2007-08-24 13:35:26 +08:00
|
|
|
PN->addIncoming(LHS, LHSBlock);
|
|
|
|
|
PN->addIncoming(RHS, RHSBlock);
|
|
|
|
|
return PN;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Value *ScalarExprEmitter::VisitChooseExpr(ChooseExpr *E) {
|
2013-07-20 08:40:58 +08:00
|
|
|
return Visit(E->getChosenSubExpr());
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
|
|
|
|
|
2007-12-01 01:56:23 +08:00
|
|
|
Value *ScalarExprEmitter::VisitVAArgExpr(VAArgExpr *VE) {
|
2014-04-15 07:47:48 +08:00
|
|
|
QualType Ty = VE->getType();
|
2014-11-19 18:01:35 +08:00
|
|
|
|
2014-04-15 07:47:48 +08:00
|
|
|
if (Ty->isVariablyModifiedType())
|
|
|
|
|
CGF.EmitVariablyModifiedType(Ty);
|
|
|
|
|
|
2015-09-18 04:55:33 +08:00
|
|
|
Address ArgValue = Address::invalid();
|
|
|
|
|
Address ArgPtr = CGF.EmitVAArg(VE, ArgValue);
|
|
|
|
|
|
2014-11-19 18:01:35 +08:00
|
|
|
llvm::Type *ArgTy = ConvertType(VE->getType());
|
2008-11-04 13:30:00 +08:00
|
|
|
|
Default vaarg lowering should support indirect struct types.
Fixes PR11517 for SPARC.
On most targets, clang lowers va_arg itself, eschewing the use of the
llvm vaarg instruction. This is necessary (at least for now) as the type
argument to the vaarg instruction cannot represent all the ABI
information that is needed to support complex calling conventions.
However, on targets with a simpler varrags ABIs, the LLVM instruction
can work just fine, and clang can simply lower to it. Unfortunately,
even on such targets, vaarg with a struct argument would fail, because
the default lowering to vaarg was naive: it didn't take into account the
ABI attribute computed by classifyArgumentType. In particular, for the
DefaultABIInfo, structs are supposed to be passed indirectly and so
llvm's vaarg instruction should be emitted with a pointer argument.
Now, vaarg instruction emission is able to use computed ABIArgInfo for
the provided argument type, which allows the default ABI support to work
for structs too.
I haven't touched the EmitVAArg implementation for PPC32_SVR4 or XCore,
although I believe both are now redundant, and could be switched over to
use the default implementation as well.
Differential Revision: http://reviews.llvm.org/D16154
llvm-svn: 261717
2016-02-24 10:59:33 +08:00
|
|
|
// If EmitVAArg fails, emit an error.
|
|
|
|
|
if (!ArgPtr.isValid()) {
|
|
|
|
|
CGF.ErrorUnsupported(VE, "va_arg expression");
|
|
|
|
|
return llvm::UndefValue::get(ArgTy);
|
|
|
|
|
}
|
2008-11-04 13:30:00 +08:00
|
|
|
|
2009-05-29 23:46:01 +08:00
|
|
|
// FIXME Volatility.
|
2014-11-19 18:01:35 +08:00
|
|
|
llvm::Value *Val = Builder.CreateLoad(ArgPtr);
|
|
|
|
|
|
|
|
|
|
// If EmitVAArg promoted the type, we must truncate it.
|
2015-01-13 18:47:00 +08:00
|
|
|
if (ArgTy != Val->getType()) {
|
|
|
|
|
if (ArgTy->isPointerTy() && !Val->getType()->isPointerTy())
|
|
|
|
|
Val = Builder.CreateIntToPtr(Val, ArgTy);
|
|
|
|
|
else
|
|
|
|
|
Val = Builder.CreateTrunc(Val, ArgTy);
|
|
|
|
|
}
|
2014-11-19 18:01:35 +08:00
|
|
|
|
|
|
|
|
return Val;
|
2007-10-16 04:28:48 +08:00
|
|
|
}
|
|
|
|
|
|
2011-02-07 18:33:21 +08:00
|
|
|
Value *ScalarExprEmitter::VisitBlockExpr(const BlockExpr *block) {
|
|
|
|
|
return CGF.EmitBlockLiteral(block);
|
2009-02-13 02:29:15 +08:00
|
|
|
}
|
|
|
|
|
|
2016-06-08 23:11:21 +08:00
|
|
|
// Convert a vec3 to vec4, or vice versa.
|
|
|
|
|
static Value *ConvertVec3AndVec4(CGBuilderTy &Builder, CodeGenFunction &CGF,
|
|
|
|
|
Value *Src, unsigned NumElementsDst) {
|
|
|
|
|
llvm::Value *UnV = llvm::UndefValue::get(Src->getType());
|
|
|
|
|
SmallVector<llvm::Constant*, 4> Args;
|
|
|
|
|
Args.push_back(Builder.getInt32(0));
|
|
|
|
|
Args.push_back(Builder.getInt32(1));
|
|
|
|
|
Args.push_back(Builder.getInt32(2));
|
|
|
|
|
if (NumElementsDst == 4)
|
|
|
|
|
Args.push_back(llvm::UndefValue::get(CGF.Int32Ty));
|
|
|
|
|
llvm::Constant *Mask = llvm::ConstantVector::get(Args);
|
|
|
|
|
return Builder.CreateShuffleVector(Src, UnV, Mask);
|
|
|
|
|
}
|
|
|
|
|
|
2016-10-03 22:41:50 +08:00
|
|
|
// Create cast instructions for converting LLVM value \p Src to LLVM type \p
|
|
|
|
|
// DstTy. \p Src has the same size as \p DstTy. Both are single value types
|
|
|
|
|
// but could be scalar or vectors of different lengths, and either can be
|
|
|
|
|
// pointer.
|
|
|
|
|
// There are 4 cases:
|
|
|
|
|
// 1. non-pointer -> non-pointer : needs 1 bitcast
|
|
|
|
|
// 2. pointer -> pointer : needs 1 bitcast or addrspacecast
|
|
|
|
|
// 3. pointer -> non-pointer
|
|
|
|
|
// a) pointer -> intptr_t : needs 1 ptrtoint
|
|
|
|
|
// b) pointer -> non-intptr_t : needs 1 ptrtoint then 1 bitcast
|
|
|
|
|
// 4. non-pointer -> pointer
|
|
|
|
|
// a) intptr_t -> pointer : needs 1 inttoptr
|
|
|
|
|
// b) non-intptr_t -> pointer : needs 1 bitcast then 1 inttoptr
|
|
|
|
|
// Note: for cases 3b and 4b two casts are required since LLVM casts do not
|
|
|
|
|
// allow casting directly between pointer types and non-integer non-pointer
|
|
|
|
|
// types.
|
|
|
|
|
static Value *createCastsForTypeOfSameSize(CGBuilderTy &Builder,
|
|
|
|
|
const llvm::DataLayout &DL,
|
|
|
|
|
Value *Src, llvm::Type *DstTy,
|
|
|
|
|
StringRef Name = "") {
|
|
|
|
|
auto SrcTy = Src->getType();
|
|
|
|
|
|
|
|
|
|
// Case 1.
|
|
|
|
|
if (!SrcTy->isPointerTy() && !DstTy->isPointerTy())
|
|
|
|
|
return Builder.CreateBitCast(Src, DstTy, Name);
|
|
|
|
|
|
|
|
|
|
// Case 2.
|
|
|
|
|
if (SrcTy->isPointerTy() && DstTy->isPointerTy())
|
|
|
|
|
return Builder.CreatePointerBitCastOrAddrSpaceCast(Src, DstTy, Name);
|
|
|
|
|
|
|
|
|
|
// Case 3.
|
|
|
|
|
if (SrcTy->isPointerTy() && !DstTy->isPointerTy()) {
|
|
|
|
|
// Case 3b.
|
|
|
|
|
if (!DstTy->isIntegerTy())
|
|
|
|
|
Src = Builder.CreatePtrToInt(Src, DL.getIntPtrType(SrcTy));
|
|
|
|
|
// Cases 3a and 3b.
|
|
|
|
|
return Builder.CreateBitOrPointerCast(Src, DstTy, Name);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Case 4b.
|
|
|
|
|
if (!SrcTy->isIntegerTy())
|
|
|
|
|
Src = Builder.CreateBitCast(Src, DL.getIntPtrType(DstTy));
|
|
|
|
|
// Cases 4a and 4b.
|
|
|
|
|
return Builder.CreateIntToPtr(Src, DstTy, Name);
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-04 08:47:47 +08:00
|
|
|
Value *ScalarExprEmitter::VisitAsTypeExpr(AsTypeExpr *E) {
|
|
|
|
|
Value *Src = CGF.EmitScalarExpr(E->getSrcExpr());
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *DstTy = ConvertType(E->getType());
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2011-07-18 12:24:23 +08:00
|
|
|
llvm::Type *SrcTy = Src->getType();
|
2016-06-08 23:11:21 +08:00
|
|
|
unsigned NumElementsSrc = isa<llvm::VectorType>(SrcTy) ?
|
|
|
|
|
cast<llvm::VectorType>(SrcTy)->getNumElements() : 0;
|
|
|
|
|
unsigned NumElementsDst = isa<llvm::VectorType>(DstTy) ?
|
|
|
|
|
cast<llvm::VectorType>(DstTy)->getNumElements() : 0;
|
|
|
|
|
|
|
|
|
|
// Going from vec3 to non-vec3 is a special case and requires a shuffle
|
|
|
|
|
// vector to get a vec4, then a bitcast if the target type is different.
|
|
|
|
|
if (NumElementsSrc == 3 && NumElementsDst != 3) {
|
|
|
|
|
Src = ConvertVec3AndVec4(Builder, CGF, Src, 4);
|
2017-04-05 00:40:25 +08:00
|
|
|
|
|
|
|
|
if (!CGF.CGM.getCodeGenOpts().PreserveVec3Type) {
|
|
|
|
|
Src = createCastsForTypeOfSameSize(Builder, CGF.CGM.getDataLayout(), Src,
|
|
|
|
|
DstTy);
|
|
|
|
|
}
|
|
|
|
|
|
2016-06-08 23:11:21 +08:00
|
|
|
Src->setName("astype");
|
|
|
|
|
return Src;
|
|
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2016-06-08 23:11:21 +08:00
|
|
|
// Going from non-vec3 to vec3 is a special case and requires a bitcast
|
|
|
|
|
// to vec4 if the original type is not vec4, then a shuffle vector to
|
|
|
|
|
// get a vec3.
|
|
|
|
|
if (NumElementsSrc != 3 && NumElementsDst == 3) {
|
2017-04-05 00:40:25 +08:00
|
|
|
if (!CGF.CGM.getCodeGenOpts().PreserveVec3Type) {
|
|
|
|
|
auto Vec4Ty = llvm::VectorType::get(DstTy->getVectorElementType(), 4);
|
|
|
|
|
Src = createCastsForTypeOfSameSize(Builder, CGF.CGM.getDataLayout(), Src,
|
|
|
|
|
Vec4Ty);
|
|
|
|
|
}
|
|
|
|
|
|
2016-06-08 23:11:21 +08:00
|
|
|
Src = ConvertVec3AndVec4(Builder, CGF, Src, 3);
|
|
|
|
|
Src->setName("astype");
|
|
|
|
|
return Src;
|
2011-06-04 08:47:47 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2016-10-03 22:41:50 +08:00
|
|
|
return Src = createCastsForTypeOfSameSize(Builder, CGF.CGM.getDataLayout(),
|
|
|
|
|
Src, DstTy, "astype");
|
2011-06-04 08:47:47 +08:00
|
|
|
}
|
|
|
|
|
|
2011-10-11 10:20:01 +08:00
|
|
|
Value *ScalarExprEmitter::VisitAtomicExpr(AtomicExpr *E) {
|
|
|
|
|
return CGF.EmitAtomicExpr(E).getScalarVal();
|
|
|
|
|
}
|
|
|
|
|
|
2007-08-24 13:35:26 +08:00
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
// Entry Point into this File
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
2015-08-05 14:19:26 +08:00
|
|
|
/// Emit the computation of the specified expression of scalar type, ignoring
|
|
|
|
|
/// the result.
|
2009-05-29 23:46:01 +08:00
|
|
|
Value *CodeGenFunction::EmitScalarExpr(const Expr *E, bool IgnoreResultAssign) {
|
2013-03-08 05:37:08 +08:00
|
|
|
assert(E && hasScalarEvaluationKind(E->getType()) &&
|
2007-08-24 13:35:26 +08:00
|
|
|
"Invalid scalar expression to emit");
|
2009-09-09 21:00:44 +08:00
|
|
|
|
2015-02-10 03:13:51 +08:00
|
|
|
return ScalarExprEmitter(*this, IgnoreResultAssign)
|
|
|
|
|
.Visit(const_cast<Expr *>(E));
|
2007-08-24 13:35:26 +08:00
|
|
|
}
|
2007-08-26 14:48:56 +08:00
|
|
|
|
2015-08-05 14:19:26 +08:00
|
|
|
/// Emit a conversion from the specified type to the specified destination type,
|
|
|
|
|
/// both of which are LLVM scalar types.
|
2007-08-27 00:34:22 +08:00
|
|
|
Value *CodeGenFunction::EmitScalarConversion(Value *Src, QualType SrcTy,
|
2015-08-11 12:19:28 +08:00
|
|
|
QualType DstTy,
|
|
|
|
|
SourceLocation Loc) {
|
2013-03-08 05:37:08 +08:00
|
|
|
assert(hasScalarEvaluationKind(SrcTy) && hasScalarEvaluationKind(DstTy) &&
|
2007-08-26 14:48:56 +08:00
|
|
|
"Invalid scalar expression to emit");
|
2015-08-11 12:19:28 +08:00
|
|
|
return ScalarExprEmitter(*this).EmitScalarConversion(Src, SrcTy, DstTy, Loc);
|
2007-08-26 14:48:56 +08:00
|
|
|
}
|
2007-08-27 00:34:22 +08:00
|
|
|
|
2015-08-05 14:19:26 +08:00
|
|
|
/// Emit a conversion from the specified complex type to the specified
|
|
|
|
|
/// destination type, where the destination type is an LLVM scalar type.
|
2007-08-27 00:34:22 +08:00
|
|
|
Value *CodeGenFunction::EmitComplexToScalarConversion(ComplexPairTy Src,
|
|
|
|
|
QualType SrcTy,
|
2015-08-11 12:19:28 +08:00
|
|
|
QualType DstTy,
|
|
|
|
|
SourceLocation Loc) {
|
2013-03-08 05:37:08 +08:00
|
|
|
assert(SrcTy->isAnyComplexType() && hasScalarEvaluationKind(DstTy) &&
|
2007-08-27 00:34:22 +08:00
|
|
|
"Invalid complex -> scalar conversion");
|
2015-08-11 12:19:28 +08:00
|
|
|
return ScalarExprEmitter(*this)
|
|
|
|
|
.EmitComplexToScalarConversion(Src, SrcTy, DstTy, Loc);
|
2007-08-27 00:34:22 +08:00
|
|
|
}
|
2007-12-11 03:35:18 +08:00
|
|
|
|
2010-06-27 06:09:34 +08:00
|
|
|
|
|
|
|
|
llvm::Value *CodeGenFunction::
|
|
|
|
|
EmitScalarPrePostIncDec(const UnaryOperator *E, LValue LV,
|
|
|
|
|
bool isInc, bool isPre) {
|
|
|
|
|
return ScalarExprEmitter(*this).EmitScalarPrePostIncDec(E, LV, isInc, isPre);
|
|
|
|
|
}
|
|
|
|
|
|
2009-12-10 07:35:29 +08:00
|
|
|
LValue CodeGenFunction::EmitObjCIsaExpr(const ObjCIsaExpr *E) {
|
|
|
|
|
// object->isa or (*object).isa
|
|
|
|
|
// Generate code as for: *(Class*)object
|
2010-02-06 03:18:30 +08:00
|
|
|
|
2009-12-10 07:35:29 +08:00
|
|
|
Expr *BaseExpr = E->getBase();
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Address Addr = Address::invalid();
|
2010-11-24 13:12:34 +08:00
|
|
|
if (BaseExpr->isRValue()) {
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Addr = Address(EmitScalarExpr(BaseExpr), getPointerAlign());
|
2010-08-21 11:08:16 +08:00
|
|
|
} else {
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
Addr = EmitLValue(BaseExpr).getAddress();
|
2010-02-06 03:18:30 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
Compute and preserve alignment more faithfully in IR-generation.
Introduce an Address type to bundle a pointer value with an
alignment. Introduce APIs on CGBuilderTy to work with Address
values. Change core APIs on CGF/CGM to traffic in Address where
appropriate. Require alignments to be non-zero. Update a ton
of code to compute and propagate alignment information.
As part of this, I've promoted CGBuiltin's EmitPointerWithAlignment
helper function to CGF and made use of it in a number of places in
the expression emitter.
The end result is that we should now be significantly more correct
when performing operations on objects that are locally known to
be under-aligned. Since alignment is not reliably tracked in the
type system, there are inherent limits to this, but at least we
are no longer confused by standard operations like derived-to-base
conversions and array-to-pointer decay. I've also fixed a large
number of bugs where we were applying the complete-object alignment
to a pointer instead of the non-virtual alignment, although most of
these were hidden by the very conservative approach we took with
member alignment.
Also, because IRGen now reliably asserts on zero alignments, we
should no longer be subject to an absurd but frustrating recurring
bug where an incomplete type would report a zero alignment and then
we'd naively do a alignmentAtOffset on it and emit code using an
alignment equal to the largest power-of-two factor of the offset.
We should also now be emitting much more aggressive alignment
attributes in the presence of over-alignment. In particular,
field access now uses alignmentAtOffset instead of min.
Several times in this patch, I had to change the existing
code-generation pattern in order to more effectively use
the Address APIs. For the most part, this seems to be a strict
improvement, like doing pointer arithmetic with GEPs instead of
ptrtoint. That said, I've tried very hard to not change semantics,
but it is likely that I've failed in a few places, for which I
apologize.
ABIArgInfo now always carries the assumed alignment of indirect and
indirect byval arguments. In order to cut down on what was already
a dauntingly large patch, I changed the code to never set align
attributes in the IR on non-byval indirect arguments. That is,
we still generate code which assumes that indirect arguments have
the given alignment, but we don't express this information to the
backend except where it's semantically required (i.e. on byvals).
This is likely a minor regression for those targets that did provide
this information, but it'll be trivial to add it back in a later
patch.
I partially punted on applying this work to CGBuiltin. Please
do not add more uses of the CreateDefaultAligned{Load,Store}
APIs; they will be going away eventually.
llvm-svn: 246985
2015-09-08 16:05:57 +08:00
|
|
|
// Cast the address to Class*.
|
|
|
|
|
Addr = Builder.CreateElementBitCast(Addr, ConvertType(E->getType()));
|
|
|
|
|
return MakeAddrLValue(Addr, E->getType());
|
2009-12-10 07:35:29 +08:00
|
|
|
}
|
|
|
|
|
|
2010-04-23 12:16:32 +08:00
|
|
|
|
2010-12-05 10:00:02 +08:00
|
|
|
LValue CodeGenFunction::EmitCompoundAssignmentLValue(
|
2010-04-23 12:16:32 +08:00
|
|
|
const CompoundAssignOperator *E) {
|
|
|
|
|
ScalarExprEmitter Scalar(*this);
|
2014-05-21 13:09:00 +08:00
|
|
|
Value *Result = nullptr;
|
2010-04-23 12:16:32 +08:00
|
|
|
switch (E->getOpcode()) {
|
|
|
|
|
#define COMPOUND_OP(Op) \
|
2010-08-25 19:45:40 +08:00
|
|
|
case BO_##Op##Assign: \
|
2010-04-23 12:16:32 +08:00
|
|
|
return Scalar.EmitCompoundAssignLValue(E, &ScalarExprEmitter::Emit##Op, \
|
2010-06-30 06:00:45 +08:00
|
|
|
Result)
|
2010-04-23 12:16:32 +08:00
|
|
|
COMPOUND_OP(Mul);
|
|
|
|
|
COMPOUND_OP(Div);
|
|
|
|
|
COMPOUND_OP(Rem);
|
|
|
|
|
COMPOUND_OP(Add);
|
|
|
|
|
COMPOUND_OP(Sub);
|
|
|
|
|
COMPOUND_OP(Shl);
|
|
|
|
|
COMPOUND_OP(Shr);
|
|
|
|
|
COMPOUND_OP(And);
|
|
|
|
|
COMPOUND_OP(Xor);
|
|
|
|
|
COMPOUND_OP(Or);
|
|
|
|
|
#undef COMPOUND_OP
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-08-25 19:45:40 +08:00
|
|
|
case BO_PtrMemD:
|
|
|
|
|
case BO_PtrMemI:
|
|
|
|
|
case BO_Mul:
|
|
|
|
|
case BO_Div:
|
|
|
|
|
case BO_Rem:
|
|
|
|
|
case BO_Add:
|
|
|
|
|
case BO_Sub:
|
|
|
|
|
case BO_Shl:
|
|
|
|
|
case BO_Shr:
|
|
|
|
|
case BO_LT:
|
|
|
|
|
case BO_GT:
|
|
|
|
|
case BO_LE:
|
|
|
|
|
case BO_GE:
|
|
|
|
|
case BO_EQ:
|
|
|
|
|
case BO_NE:
|
2017-12-14 23:16:18 +08:00
|
|
|
case BO_Cmp:
|
2010-08-25 19:45:40 +08:00
|
|
|
case BO_And:
|
|
|
|
|
case BO_Xor:
|
|
|
|
|
case BO_Or:
|
|
|
|
|
case BO_LAnd:
|
|
|
|
|
case BO_LOr:
|
|
|
|
|
case BO_Assign:
|
|
|
|
|
case BO_Comma:
|
2011-09-23 13:06:16 +08:00
|
|
|
llvm_unreachable("Not valid compound assignment operators");
|
2010-04-23 12:16:32 +08:00
|
|
|
}
|
2013-07-26 14:16:11 +08:00
|
|
|
|
2010-04-23 12:16:32 +08:00
|
|
|
llvm_unreachable("Unhandled compound assignment operator");
|
|
|
|
|
}
|
2017-06-02 03:22:18 +08:00
|
|
|
|
|
|
|
|
Value *CodeGenFunction::EmitCheckedInBoundsGEP(Value *Ptr,
|
|
|
|
|
ArrayRef<Value *> IdxList,
|
2017-06-13 02:42:51 +08:00
|
|
|
bool SignedIndices,
|
2017-07-14 04:55:26 +08:00
|
|
|
bool IsSubtraction,
|
2017-06-02 03:22:18 +08:00
|
|
|
SourceLocation Loc,
|
|
|
|
|
const Twine &Name) {
|
|
|
|
|
Value *GEPVal = Builder.CreateInBoundsGEP(Ptr, IdxList, Name);
|
|
|
|
|
|
|
|
|
|
// If the pointer overflow sanitizer isn't enabled, do nothing.
|
|
|
|
|
if (!SanOpts.has(SanitizerKind::PointerOverflow))
|
|
|
|
|
return GEPVal;
|
|
|
|
|
|
|
|
|
|
// If the GEP has already been reduced to a constant, leave it be.
|
|
|
|
|
if (isa<llvm::Constant>(GEPVal))
|
|
|
|
|
return GEPVal;
|
|
|
|
|
|
|
|
|
|
// Only check for overflows in the default address space.
|
|
|
|
|
if (GEPVal->getType()->getPointerAddressSpace())
|
|
|
|
|
return GEPVal;
|
|
|
|
|
|
|
|
|
|
auto *GEP = cast<llvm::GEPOperator>(GEPVal);
|
|
|
|
|
assert(GEP->isInBounds() && "Expected inbounds GEP");
|
|
|
|
|
|
|
|
|
|
SanitizerScope SanScope(this);
|
|
|
|
|
auto &VMContext = getLLVMContext();
|
|
|
|
|
const auto &DL = CGM.getDataLayout();
|
|
|
|
|
auto *IntPtrTy = DL.getIntPtrType(GEP->getPointerOperandType());
|
|
|
|
|
|
|
|
|
|
// Grab references to the signed add/mul overflow intrinsics for intptr_t.
|
|
|
|
|
auto *Zero = llvm::ConstantInt::getNullValue(IntPtrTy);
|
|
|
|
|
auto *SAddIntrinsic =
|
|
|
|
|
CGM.getIntrinsic(llvm::Intrinsic::sadd_with_overflow, IntPtrTy);
|
|
|
|
|
auto *SMulIntrinsic =
|
|
|
|
|
CGM.getIntrinsic(llvm::Intrinsic::smul_with_overflow, IntPtrTy);
|
|
|
|
|
|
|
|
|
|
// The total (signed) byte offset for the GEP.
|
|
|
|
|
llvm::Value *TotalOffset = nullptr;
|
|
|
|
|
// The offset overflow flag - true if the total offset overflows.
|
|
|
|
|
llvm::Value *OffsetOverflows = Builder.getFalse();
|
|
|
|
|
|
|
|
|
|
/// Return the result of the given binary operation.
|
|
|
|
|
auto eval = [&](BinaryOperator::Opcode Opcode, llvm::Value *LHS,
|
|
|
|
|
llvm::Value *RHS) -> llvm::Value * {
|
2017-06-02 07:55:18 +08:00
|
|
|
assert((Opcode == BO_Add || Opcode == BO_Mul) && "Can't eval binop");
|
2017-06-02 03:22:18 +08:00
|
|
|
|
|
|
|
|
// If the operands are constants, return a constant result.
|
|
|
|
|
if (auto *LHSCI = dyn_cast<llvm::ConstantInt>(LHS)) {
|
|
|
|
|
if (auto *RHSCI = dyn_cast<llvm::ConstantInt>(RHS)) {
|
|
|
|
|
llvm::APInt N;
|
|
|
|
|
bool HasOverflow = mayHaveIntegerOverflow(LHSCI, RHSCI, Opcode,
|
|
|
|
|
/*Signed=*/true, N);
|
|
|
|
|
if (HasOverflow)
|
|
|
|
|
OffsetOverflows = Builder.getTrue();
|
|
|
|
|
return llvm::ConstantInt::get(VMContext, N);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Otherwise, compute the result with checked arithmetic.
|
|
|
|
|
auto *ResultAndOverflow = Builder.CreateCall(
|
|
|
|
|
(Opcode == BO_Add) ? SAddIntrinsic : SMulIntrinsic, {LHS, RHS});
|
|
|
|
|
OffsetOverflows = Builder.CreateOr(
|
2017-06-13 02:42:51 +08:00
|
|
|
Builder.CreateExtractValue(ResultAndOverflow, 1), OffsetOverflows);
|
2017-06-02 03:22:18 +08:00
|
|
|
return Builder.CreateExtractValue(ResultAndOverflow, 0);
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
// Determine the total byte offset by looking at each GEP operand.
|
|
|
|
|
for (auto GTI = llvm::gep_type_begin(GEP), GTE = llvm::gep_type_end(GEP);
|
|
|
|
|
GTI != GTE; ++GTI) {
|
|
|
|
|
llvm::Value *LocalOffset;
|
|
|
|
|
auto *Index = GTI.getOperand();
|
|
|
|
|
// Compute the local offset contributed by this indexing step:
|
|
|
|
|
if (auto *STy = GTI.getStructTypeOrNull()) {
|
|
|
|
|
// For struct indexing, the local offset is the byte position of the
|
|
|
|
|
// specified field.
|
|
|
|
|
unsigned FieldNo = cast<llvm::ConstantInt>(Index)->getZExtValue();
|
|
|
|
|
LocalOffset = llvm::ConstantInt::get(
|
|
|
|
|
IntPtrTy, DL.getStructLayout(STy)->getElementOffset(FieldNo));
|
|
|
|
|
} else {
|
|
|
|
|
// Otherwise this is array-like indexing. The local offset is the index
|
|
|
|
|
// multiplied by the element size.
|
|
|
|
|
auto *ElementSize = llvm::ConstantInt::get(
|
|
|
|
|
IntPtrTy, DL.getTypeAllocSize(GTI.getIndexedType()));
|
|
|
|
|
auto *IndexS = Builder.CreateIntCast(Index, IntPtrTy, /*isSigned=*/true);
|
|
|
|
|
LocalOffset = eval(BO_Mul, ElementSize, IndexS);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If this is the first offset, set it as the total offset. Otherwise, add
|
|
|
|
|
// the local offset into the running total.
|
|
|
|
|
if (!TotalOffset || TotalOffset == Zero)
|
|
|
|
|
TotalOffset = LocalOffset;
|
|
|
|
|
else
|
|
|
|
|
TotalOffset = eval(BO_Add, TotalOffset, LocalOffset);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Common case: if the total offset is zero, don't emit a check.
|
|
|
|
|
if (TotalOffset == Zero)
|
|
|
|
|
return GEPVal;
|
|
|
|
|
|
|
|
|
|
// Now that we've computed the total offset, add it to the base pointer (with
|
|
|
|
|
// wrapping semantics).
|
|
|
|
|
auto *IntPtr = Builder.CreatePtrToInt(GEP->getPointerOperand(), IntPtrTy);
|
|
|
|
|
auto *ComputedGEP = Builder.CreateAdd(IntPtr, TotalOffset);
|
|
|
|
|
|
|
|
|
|
// The GEP is valid if:
|
|
|
|
|
// 1) The total offset doesn't overflow, and
|
|
|
|
|
// 2) The sign of the difference between the computed address and the base
|
|
|
|
|
// pointer matches the sign of the total offset.
|
2017-06-13 02:42:51 +08:00
|
|
|
llvm::Value *ValidGEP;
|
|
|
|
|
auto *NoOffsetOverflow = Builder.CreateNot(OffsetOverflows);
|
|
|
|
|
if (SignedIndices) {
|
2017-07-14 04:55:26 +08:00
|
|
|
auto *PosOrZeroValid = Builder.CreateICmpUGE(ComputedGEP, IntPtr);
|
2017-06-13 02:42:51 +08:00
|
|
|
auto *PosOrZeroOffset = Builder.CreateICmpSGE(TotalOffset, Zero);
|
|
|
|
|
llvm::Value *NegValid = Builder.CreateICmpULT(ComputedGEP, IntPtr);
|
|
|
|
|
ValidGEP = Builder.CreateAnd(
|
|
|
|
|
Builder.CreateSelect(PosOrZeroOffset, PosOrZeroValid, NegValid),
|
|
|
|
|
NoOffsetOverflow);
|
2017-07-14 04:55:26 +08:00
|
|
|
} else if (!SignedIndices && !IsSubtraction) {
|
|
|
|
|
auto *PosOrZeroValid = Builder.CreateICmpUGE(ComputedGEP, IntPtr);
|
2017-06-13 02:42:51 +08:00
|
|
|
ValidGEP = Builder.CreateAnd(PosOrZeroValid, NoOffsetOverflow);
|
2017-07-14 04:55:26 +08:00
|
|
|
} else {
|
|
|
|
|
auto *NegOrZeroValid = Builder.CreateICmpULE(ComputedGEP, IntPtr);
|
|
|
|
|
ValidGEP = Builder.CreateAnd(NegOrZeroValid, NoOffsetOverflow);
|
2017-06-13 02:42:51 +08:00
|
|
|
}
|
2017-06-02 03:22:18 +08:00
|
|
|
|
|
|
|
|
llvm::Constant *StaticArgs[] = {EmitCheckSourceLocation(Loc)};
|
|
|
|
|
// Pass the computed GEP to the runtime to avoid emitting poisoned arguments.
|
|
|
|
|
llvm::Value *DynamicArgs[] = {IntPtr, ComputedGEP};
|
|
|
|
|
EmitCheck(std::make_pair(ValidGEP, SanitizerKind::PointerOverflow),
|
|
|
|
|
SanitizerHandler::PointerOverflow, StaticArgs, DynamicArgs);
|
|
|
|
|
|
|
|
|
|
return GEPVal;
|
|
|
|
|
}
|