Skip to content

[CaptureTracking] Do not capture compares of same object #74228

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 3 commits into from
Closed

[CaptureTracking] Do not capture compares of same object #74228

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
1f5b120
[FunctionAttrs] Add test for pointer induction capture (NFC)
caojoshua Jun 6, 2023
ca898a1
[CaptureTracking] Do not capture compares of same object
caojoshua Jun 5, 2023
720875c
Fix formatting
caojoshua Dec 3, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 7 additions & 0 deletions llvm/include/llvm/Analysis/ValueTracking.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -693,6 +693,13 @@ inline Value *getArgumentAliasingToReturnedPointer(CallBase *Call,
bool isIntrinsicReturningPointerAliasingArgumentWithoutCapturing(
const CallBase *Call, bool MustPreserveNullness);

/// This method is a wrapper around getUnderlyingObject to look through PHI
/// nodes. This method will attempt to build a new underlying object based on
/// the incoming values. This method can have high compile time implications and
/// cannot be used as a direct replacement for getUnderlyingObject.
const Value *getUnderlyingObjectLookThrough(const Value *V,
unsigned MaxLookup = 6);

/// This method strips off any GEP address adjustments and pointer casts from
/// the specified value, returning the original object being addressed. Note
/// that the returned value has pointer type if the specified value does. If
Expand Down
6 changes: 5 additions & 1 deletion llvm/lib/Analysis/CaptureTracking.cpp
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -387,7 +387,11 @@ UseCaptureKind llvm::DetermineUseCaptureKind(
if (IsDereferenceableOrNull && IsDereferenceableOrNull(O, DL))
return UseCaptureKind::NO_CAPTURE;
}
}
} else if (cast<ICmpInst>(I)->isEquality() &&
getUnderlyingObjectLookThrough(I->getOperand(Idx)) ==
getUnderlyingObjectLookThrough(I->getOperand(OtherIdx)))
// Equality comparisons against the same pointer do not capture.
return UseCaptureKind::NO_CAPTURE;

// Otherwise, be conservative. There are crazy ways to capture pointers
// using comparisons.
Expand Down
26 changes: 26 additions & 0 deletions llvm/lib/Analysis/ValueTracking.cpp
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5968,6 +5968,32 @@ static bool isSameUnderlyingObjectInLoop(const PHINode *PN,
return true;
}

const Value *llvm::getUnderlyingObjectLookThrough(const Value *V,
unsigned MaxLookup) {
V = getUnderlyingObject(V, MaxLookup);

const PHINode *PN = dyn_cast<PHINode>(V);
if (!PN)
return V;

// We can look through PHIs if each underlying value has the same underlying
// object, or is the phi itself.
const Value *NewUnderlying = PN;
for (const Value *Incoming : PN->incoming_values()) {
const Value *IncomingUnderlying = getUnderlyingObject(Incoming, MaxLookup);
if (IncomingUnderlying == PN || IncomingUnderlying == NewUnderlying)
continue;
if (NewUnderlying == PN)
// Found a new possible underlying object.
NewUnderlying = IncomingUnderlying;
else
// There are >= 2 possible underlying objects. We cannot determine a new
// underlying object.
return V;
}
return NewUnderlying;
}

const Value *llvm::getUnderlyingObject(const Value *V, unsigned MaxLookup) {
if (!V->getType()->isPointerTy())
return V;
Expand Down
65 changes: 65 additions & 0 deletions llvm/test/Transforms/FunctionAttrs/nocapture.ll
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -900,6 +900,71 @@ define void @readnone_indirec(ptr %f, ptr %p) {
ret void
}

; FNATTR: define i1 @identity_icmp(ptr nocapture readnone %p)
define i1 @identity_icmp(ptr %p) {
%r = icmp eq ptr %p, %p
ret i1 %r
}

; FNATTR: define i1 @compare_against_offset(ptr nocapture readnone %p)
define i1 @compare_against_offset(ptr %p) {
%offset = getelementptr inbounds i32, ptr %p, i64 1
%r = icmp eq ptr %p, %offset
ret i1 %r
}

; FNATTR: define i1 @compare_offsets(ptr nocapture readnone %p)
define i1 @compare_offsets(ptr %p) {
%offset1 = getelementptr inbounds i32, ptr %p, i64 1
%offset2 = getelementptr inbounds i32, ptr %p, i64 2
%r = icmp eq ptr %offset1, %offset2
ret i1 %r
}

; FNATTR: define void @phi_induction(ptr nocapture writeonly %p, i64 %n, i32 %x)
define void @phi_induction(ptr %p, i64 %n, i32 %x) {
start:
%end = getelementptr inbounds i32, ptr %p, i64 %n
br label %repeat_loop_body

repeat_loop_body: ; preds = %start, %repeat_loop_body
%induct = phi ptr [ %p, %start ], [ %induct.next, %repeat_loop_body ]
store i32 %x, ptr %induct, align 4
%induct.next = getelementptr inbounds i32, ptr %induct, i64 1
%.not = icmp eq ptr %induct.next, %end
br i1 %.not, label %repeat_loop_next, label %repeat_loop_body

repeat_loop_next:
ret void
}

; FNATTR: define i1 @compare_against_offset_non_equality(ptr readnone %p)
define i1 @compare_against_offset_non_equality(ptr %p) {
; Cannot capture non-equality comparisons. An overflowed GEP can leak bits.
%offset = getelementptr inbounds i32, ptr %p, i64 1
%r = icmp ult ptr %p, %offset
ret i1 %r
}

; FNATTR: define i1 @compare_against_capture(ptr %p)
define i1 @compare_against_capture(ptr %p) {
%offset1 = getelementptr inbounds i32, ptr %p, i64 1
%offset2 = getelementptr inbounds i32, ptr %p, i64 2
store ptr %offset2, ptr @g
%r = icmp eq ptr %offset1, %offset2
ret i1 %r
}

declare ptr @llvm.ptrmask.p0.i64(ptr ,i64)

; FNATTR: define i1 @compare_against_ptrmask(ptr readnone %p, i64 %mask)
define i1 @compare_against_ptrmask(ptr %p, i64 %mask) {
%offset1 = getelementptr inbounds i32, ptr %p, i64 1
%offset2 = getelementptr inbounds i32, ptr %p, i64 2
%masked_ptr = call ptr @llvm.ptrmask.p0.i64(ptr %offset2, i64 %mask)
%r = icmp eq ptr %offset1, %masked_ptr
ret i1 %r
}

declare ptr @llvm.launder.invariant.group.p0(ptr)
declare ptr @llvm.strip.invariant.group.p0(ptr)
9 changes: 1 addition & 8 deletions llvm/unittests/Analysis/CaptureTrackingTest.cpp
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -105,11 +105,10 @@ TEST(CaptureTracking, MultipleUsesInSameInstruction) {
BasicBlock *BB = &F->getEntryBlock();
Instruction *Call = &*BB->begin();
Instruction *CmpXChg = Call->getNextNode();
Instruction *ICmp = CmpXChg->getNextNode();

CollectingCaptureTracker CT;
PointerMayBeCaptured(Arg, &CT);
EXPECT_EQ(7u, CT.Captures.size());
EXPECT_EQ(5u, CT.Captures.size());
// Call arg 1
EXPECT_EQ(Call, CT.Captures[0]->getUser());
EXPECT_EQ(0u, CT.Captures[0]->getOperandNo());
Expand All @@ -125,10 +124,4 @@ TEST(CaptureTracking, MultipleUsesInSameInstruction) {
// Cmpxchg new value operand
EXPECT_EQ(CmpXChg, CT.Captures[4]->getUser());
EXPECT_EQ(2u, CT.Captures[4]->getOperandNo());
// ICmp first operand
EXPECT_EQ(ICmp, CT.Captures[5]->getUser());
EXPECT_EQ(0u, CT.Captures[5]->getOperandNo());
// ICmp second operand
EXPECT_EQ(ICmp, CT.Captures[6]->getUser());
EXPECT_EQ(1u, CT.Captures[6]->getOperandNo());
}