[llvm-branch-commits] [clang] 508bc2e - Revert "[ubsan] Display correct runtime messages for negative _BitInt (#93612)"
via llvm-branch-commits
llvm-branch-commits at lists.llvm.org
Thu Jun 20 14:39:08 PDT 2024
Author: earnol
Date: 2024-06-20T17:39:06-04:00
New Revision: 508bc2e44b59c26955e9b1226f84b4ff2cc05fee
URL: https://github.com/llvm/llvm-project/commit/508bc2e44b59c26955e9b1226f84b4ff2cc05fee
DIFF: https://github.com/llvm/llvm-project/commit/508bc2e44b59c26955e9b1226f84b4ff2cc05fee.diff
LOG: Revert "[ubsan] Display correct runtime messages for negative _BitInt (#93612)"
This reverts commit 49001d584c69726eb7b5069468c5216da3fc3263.
Added:
Modified:
clang/lib/CodeGen/CGExpr.cpp
compiler-rt/lib/ubsan/ubsan_value.cpp
compiler-rt/lib/ubsan/ubsan_value.h
Removed:
compiler-rt/test/ubsan/TestCases/Integer/bit-int-pass.c
compiler-rt/test/ubsan/TestCases/Integer/bit-int.c
################################################################################
diff --git a/clang/lib/CodeGen/CGExpr.cpp b/clang/lib/CodeGen/CGExpr.cpp
index 55b2b4337fab8..3dfe5e09c778d 100644
--- a/clang/lib/CodeGen/CGExpr.cpp
+++ b/clang/lib/CodeGen/CGExpr.cpp
@@ -41,7 +41,6 @@
#include "llvm/IR/MatrixBuilder.h"
#include "llvm/Passes/OptimizationLevel.h"
#include "llvm/Support/ConvertUTF.h"
-#include "llvm/Support/Endian.h"
#include "llvm/Support/MathExtras.h"
#include "llvm/Support/Path.h"
#include "llvm/Support/SaveAndRestore.h"
@@ -65,22 +64,6 @@ static llvm::cl::opt<bool> ClSanitizeGuardChecks(
"ubsan-guard-checks", llvm::cl::Optional,
llvm::cl::desc("Guard UBSAN checks with `llvm.allow.ubsan.check()`."));
-//===--------------------------------------------------------------------===//
-// Defines for metadata
-//===--------------------------------------------------------------------===//
-
-// Those values are crucial to be the SAME as in ubsan runtime library.
-enum VariableTypeDescriptorKind : uint16_t {
- /// An integer type.
- TK_Integer = 0x0000,
- /// A floating-point type.
- TK_Float = 0x0001,
- /// An _BitInt(N) type.
- TK_BitInt = 0x0002,
- /// Any other type. The value representation is unspecified.
- TK_Unknown = 0xffff
-};
-
//===--------------------------------------------------------------------===//
// Miscellaneous Helper Methods
//===--------------------------------------------------------------------===//
@@ -3315,40 +3298,22 @@ LValue CodeGenFunction::EmitPredefinedLValue(const PredefinedExpr *E) {
/// { i16 TypeKind, i16 TypeInfo }
/// \endcode
///
-/// followed by an array of i8 containing the type name with extra information
-/// for BitInt. TypeKind is TK_Integer(0) for an integer, TK_Float(1) for a
-/// floating point value, TK_BitInt(2) for BitInt and TK_Unknown(0xFFFF) for
-/// anything else.
+/// followed by an array of i8 containing the type name. TypeKind is 0 for an
+/// integer, 1 for a floating point value, and -1 for anything else.
llvm::Constant *CodeGenFunction::EmitCheckTypeDescriptor(QualType T) {
// Only emit each type's descriptor once.
if (llvm::Constant *C = CGM.getTypeDescriptorFromMap(T))
return C;
- uint16_t TypeKind = TK_Unknown;
+ uint16_t TypeKind = -1;
uint16_t TypeInfo = 0;
- bool IsBitInt = false;
if (T->isIntegerType()) {
- TypeKind = TK_Integer;
+ TypeKind = 0;
TypeInfo = (llvm::Log2_32(getContext().getTypeSize(T)) << 1) |
(T->isSignedIntegerType() ? 1 : 0);
- // Follow suggestion from https://github.com/llvm/llvm-project/issues/64100
- // So we can write the exact amount of bits in TypeName after '\0'
- // making it <diagnostic-like type name>.'\0'.<32-bit width>.
- if (T->isSignedIntegerType() && T->getAs<BitIntType>()) {
- // Do a sanity checks as we are using 32-bit type to store bit length.
- assert((getContext().getTypeSize(T) > 0) &&
- " non positive amount of bits in __BitInt type");
- assert((getContext().getTypeSize(T) <= 0xFFFFFFFF) &&
- " too many bits in __BitInt type");
-
- // Redefine TypeKind with the actual __BitInt type if we have signed
- // BitInt.
- TypeKind = TK_BitInt;
- IsBitInt = true;
- }
} else if (T->isFloatingType()) {
- TypeKind = TK_Float;
+ TypeKind = 1;
TypeInfo = getContext().getTypeSize(T);
}
@@ -3359,20 +3324,6 @@ llvm::Constant *CodeGenFunction::EmitCheckTypeDescriptor(QualType T) {
DiagnosticsEngine::ak_qualtype, (intptr_t)T.getAsOpaquePtr(), StringRef(),
StringRef(), std::nullopt, Buffer, std::nullopt);
- if (IsBitInt) {
- // The Structure is: 0 to end the string, 32 bit unsigned integer in target
- // endianness, zero.
- char S[6] = {'\0', '\0', '\0', '\0', '\0', '\0'};
- const auto *EIT = T->castAs<BitIntType>();
- uint32_t Bits = EIT->getNumBits();
- llvm::support::endian::write32(S + 1, Bits,
- getTarget().isBigEndian()
- ? llvm::endianness::big
- : llvm::endianness::little);
- StringRef str = StringRef(S, sizeof(S) / sizeof(decltype(S[0])));
- Buffer.append(str);
- }
-
llvm::Constant *Components[] = {
Builder.getInt16(TypeKind), Builder.getInt16(TypeInfo),
llvm::ConstantDataArray::getString(getLLVMContext(), Buffer)
diff --git a/compiler-rt/lib/ubsan/ubsan_value.cpp b/compiler-rt/lib/ubsan/ubsan_value.cpp
index 6e88ebaf34d4b..dc61e5b939d95 100644
--- a/compiler-rt/lib/ubsan/ubsan_value.cpp
+++ b/compiler-rt/lib/ubsan/ubsan_value.cpp
@@ -67,21 +67,18 @@ const char *__ubsan::getObjCClassName(ValueHandle Pointer) {
SIntMax Value::getSIntValue() const {
CHECK(getType().isSignedIntegerTy());
- // Val was zero-extended to ValueHandle. Sign-extend from original width
- // to SIntMax.
- const unsigned ExtraBits =
- sizeof(SIntMax) * 8 - getType().getIntegerBitCount();
if (isInlineInt()) {
+ // Val was zero-extended to ValueHandle. Sign-extend from original width
+ // to SIntMax.
+ const unsigned ExtraBits =
+ sizeof(SIntMax) * 8 - getType().getIntegerBitWidth();
return SIntMax(UIntMax(Val) << ExtraBits) >> ExtraBits;
}
- if (getType().getIntegerBitWidth() == 64) {
- return SIntMax(UIntMax(*reinterpret_cast<s64 *>(Val)) << ExtraBits) >>
- ExtraBits;
- }
+ if (getType().getIntegerBitWidth() == 64)
+ return *reinterpret_cast<s64*>(Val);
#if HAVE_INT128_T
if (getType().getIntegerBitWidth() == 128)
- return SIntMax(UIntMax(*reinterpret_cast<s128 *>(Val)) << ExtraBits) >>
- ExtraBits;
+ return *reinterpret_cast<s128*>(Val);
#else
if (getType().getIntegerBitWidth() == 128)
UNREACHABLE("libclang_rt.ubsan was built without __int128 support");
diff --git a/compiler-rt/lib/ubsan/ubsan_value.h b/compiler-rt/lib/ubsan/ubsan_value.h
index b8ca3a0b1d476..e0957276dd241 100644
--- a/compiler-rt/lib/ubsan/ubsan_value.h
+++ b/compiler-rt/lib/ubsan/ubsan_value.h
@@ -103,13 +103,6 @@ class TypeDescriptor {
/// representation is that of bitcasting the floating-point value to an
/// integer type.
TK_Float = 0x0001,
- /// An _BitInt(N) type. Lowest bit is 1 for a signed value, 0 for an
- /// unsigned value. Remaining bits are log_2(bit_width). The value
- /// representation is the integer itself if it fits into a ValueHandle, and
- /// a pointer to the integer otherwise. TypeName contains the true width
- /// of the type for the signed _BitInt(N) type stored after zero bit after
- /// TypeName as 32-bit unsigned integer.
- TK_BitInt = 0x0002,
/// Any other type. The value representation is unspecified.
TK_Unknown = 0xffff
};
@@ -120,15 +113,10 @@ class TypeDescriptor {
return static_cast<Kind>(TypeKind);
}
- bool isIntegerTy() const {
- return getKind() == TK_Integer || getKind() == TK_BitInt;
- }
- bool isBitIntTy() const { return getKind() == TK_BitInt; }
-
+ bool isIntegerTy() const { return getKind() == TK_Integer; }
bool isSignedIntegerTy() const {
return isIntegerTy() && (TypeInfo & 1);
}
- bool isSignedBitIntTy() const { return isBitIntTy() && (TypeInfo & 1); }
bool isUnsignedIntegerTy() const {
return isIntegerTy() && !(TypeInfo & 1);
}
@@ -137,26 +125,6 @@ class TypeDescriptor {
return 1 << (TypeInfo >> 1);
}
- const char *getBitIntBitCountPointer() const {
- CHECK(isBitIntTy());
- CHECK(isSignedBitIntTy());
- // Scan Name for zero and return the next address
- const char *p = getTypeName();
- while (*p != '\0') {
- ++p;
- }
- // Return the next address
- return p + 1;
- }
-
- unsigned getIntegerBitCount() const {
- CHECK(isIntegerTy());
- if (isSignedBitIntTy())
- return *reinterpret_cast<const u32 *>(getBitIntBitCountPointer());
- else
- return getIntegerBitWidth();
- }
-
bool isFloatTy() const { return getKind() == TK_Float; }
unsigned getFloatBitWidth() const {
CHECK(isFloatTy());
diff --git a/compiler-rt/test/ubsan/TestCases/Integer/bit-int-pass.c b/compiler-rt/test/ubsan/TestCases/Integer/bit-int-pass.c
deleted file mode 100644
index b9e43c482edc0..0000000000000
--- a/compiler-rt/test/ubsan/TestCases/Integer/bit-int-pass.c
+++ /dev/null
@@ -1,39 +0,0 @@
-// RUN: %clang -Wno-constant-conversion -Wno-array-bounds -Wno-division-by-zero -Wno-shift-negative-value -Wno-shift-count-negative -Wno-int-to-pointer-cast -O0 -fsanitize=alignment,array-bounds,bool,float-cast-overflow,implicit-integer-sign-change,implicit-signed-integer-truncation,implicit-unsigned-integer-truncation,integer-divide-by-zero,nonnull-attribute,null,nullability-arg,nullability-assign,nullability-return,pointer-overflow,returns-nonnull-attribute,shift-base,shift-exponent,signed-integer-overflow,unreachable,unsigned-integer-overflow,unsigned-shift-base,vla-bound %s -o %t1 && %run %t1 2>&1 | FileCheck %s
-
-#include <stdint.h>
-#include <stdio.h>
-
-// In this test there is an expectation of assignment of _BitInt not producing any output.
-uint32_t nullability_arg(_BitInt(37) *_Nonnull x)
- __attribute__((no_sanitize("address"))) {
- _BitInt(37) y = *(_BitInt(37) *)&x;
- return y;
-}
-
-// In this test there is an expectation of ubsan not triggeting on returning random address which is inside address space of the process.
-_BitInt(37) nonnull_attribute(__attribute__((nonnull)) _BitInt(37) * x)
- __attribute__((no_sanitize("address"))) {
- return *(_BitInt(37) *)&x;
-}
-
-// In this test there is an expectation of assignment of uint32_t from "invalid" _BitInt is not producing any output.
-uint32_t nullability_assign(_BitInt(7) * x)
- __attribute__((no_sanitize("address"))) {
- _BitInt(7) *_Nonnull y = x;
- int32_t r = *(_BitInt(7) *)&y;
- return (r > 0) ? r : 0;
-}
-
-// In those examples the file is expected to compile&run with no diagnostics
-// CHECK-NOT: runtime error:
-
-int main(int argc, char **argv) {
- // clang-format off
- uint64_t result =
- 1ULL +
- nullability_arg((_BitInt(37) *)argc) +
- ((uint64_t)nonnull_attribute((_BitInt(37) *)argc) & 0xFFFFFFFF) +
- nullability_assign((_BitInt(7) *)argc);
- // clang-format on
- printf("%u\n", (uint32_t)(result & 0xFFFFFFFF));
-}
diff --git a/compiler-rt/test/ubsan/TestCases/Integer/bit-int.c b/compiler-rt/test/ubsan/TestCases/Integer/bit-int.c
deleted file mode 100644
index f2282e6b5a08e..0000000000000
--- a/compiler-rt/test/ubsan/TestCases/Integer/bit-int.c
+++ /dev/null
@@ -1,169 +0,0 @@
-// RUN: %clang -Wno-constant-conversion -Wno-array-bounds -Wno-division-by-zero -Wno-shift-negative-value -Wno-shift-count-negative -Wno-int-to-pointer-cast -O0 -fsanitize=alignment,array-bounds,bool,float-cast-overflow,implicit-integer-sign-change,implicit-signed-integer-truncation,implicit-unsigned-integer-truncation,integer-divide-by-zero,nonnull-attribute,null,nullability-arg,nullability-assign,nullability-return,pointer-overflow,returns-nonnull-attribute,shift-base,shift-exponent,signed-integer-overflow,unreachable,unsigned-integer-overflow,unsigned-shift-base,vla-bound %s -o %t1 && %run %t1 2>&1 | FileCheck %s --check-prefix=RUNTIME
-// RUN: %clang -Wno-constant-conversion -Wno-array-bounds -Wno-division-by-zero -Wno-shift-negative-value -Wno-shift-count-negative -Wno-int-to-pointer-cast -fsanitize=array-bounds,enum,float-cast-overflow,integer-divide-by-zero,implicit-unsigned-integer-truncation,implicit-signed-integer-truncation,implicit-integer-sign-change,unsigned-integer-overflow,signed-integer-overflow,shift-base,shift-exponent -O0 -S -emit-llvm -o - %s | FileCheck %s --check-prefix=IR
-
-#include <stdint.h>
-#include <stdio.h>
-
-uint32_t float_divide_by_zero() {
- float f = 1.0f / 0.0f;
- // IR: constant { i16, i16, [8 x i8] } { i16 1, i16 32, [8 x i8] c"'float'\00" }
- _BitInt(37) r = (_BitInt(37))f;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:19: runtime error: inf is outside the range of representable values of type
- // IR: constant { i16, i16, [20 x i8] } { i16 2, i16 13, [20 x i8] c"'_BitInt(37)'\00%\00\00\00\00\00" }
- return r;
-}
-
-uint32_t integer_divide_by_zero() __attribute__((no_sanitize("memory"))) {
- _BitInt(37) x = 1 / 0;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:21: runtime error: division by zero
- // IR: constant { i16, i16, [32 x i8] } { i16 0, i16 10, [32 x i8] c"'uint32_t' (aka 'unsigned int')\00" }
- return x;
-}
-
-uint32_t implicit_unsigned_integer_truncation() {
- unsigned _BitInt(37) x = 2U;
- x += float_divide_by_zero();
- x += integer_divide_by_zero();
- x = x + 0xFFFFFFFFFFFFFFFFULL;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:9: runtime error: unsigned integer overflow:
- // IR: constant { i16, i16, [23 x i8] } { i16 0, i16 12, [23 x i8] c"'unsigned _BitInt(37)'\00" }
- uint32_t r = x & 0xFFFFFFFF;
- return r;
-}
-
-uint32_t pointer_overflow() __attribute__((no_sanitize("address"))) {
- _BitInt(37) *x = (_BitInt(37) *)1;
- _BitInt(37) *y = x - 1;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:22: runtime error: pointer index expression with base
- uint32_t r = *(_BitInt(37) *)&y;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:16: runtime error: implicit conversion from type
- return r;
-}
-
-uint32_t vla_bound(_BitInt(37) x) {
- _BitInt(37) a[x - 1];
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:17: runtime error: variable length array bound evaluates to non-positive value
- return 0;
-}
-
-uint32_t unsigned_shift_base() {
- unsigned _BitInt(37) x = ~0U << 1;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:32: runtime error: left shift of 4294967295 by 1 places cannot be represented in type
- return x;
-}
-
-uint32_t array_bounds() {
- _BitInt(37) x[4];
- _BitInt(37) y = x[10];
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:19: runtime error: index 10 out of bounds for type
- // IR: constant { i16, i16, [17 x i8] } { i16 -1, i16 0, [17 x i8] c"'_BitInt(37)[4]'\00" }
- return (uint32_t)y;
-}
-
-uint32_t float_cast_overflow() {
- float a = 100000000.0f;
- _BitInt(7) b = (_BitInt(7))a;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:18: runtime error: 1e+08 is outside the range of representable values of type
- // IR: constant { i16, i16, [19 x i8] } { i16 2, i16 7, [19 x i8] c"'_BitInt(7)'\00\07\00\00\00\00\00" }
- return b;
-}
-
-uint32_t implicit_integer_sign_change(unsigned _BitInt(37) x) {
- _BitInt(37) r = x;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:19: runtime error: implicit conversion from type '{{[^']+}}' of value
- return r & 0xFFFFFFFF;
-}
-
-_BitInt(13) implicit_signed_integer_truncation() {
- _BitInt(73) x = (_BitInt(73)) ~((~0UL) >> 1);
- return x;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:10: runtime error: implicit conversion from type
- // IR: constant { i16, i16, [20 x i8] } { i16 2, i16 {{([[:xdigit:]]{2})}}, [20 x i8] c"'_BitInt(73)'\00I\00\00\00\00\00" }
- // IR: constant { i16, i16, [20 x i8] } { i16 2, i16 9, [20 x i8] c"'_BitInt(13)'\00\0D\00\00\00\00\00" }
-}
-
-_BitInt(37) shift_exponent() {
- _BitInt(37) x = 1 << (-1);
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:21: runtime error: shift exponent -1 is negative
- return x;
-}
-
-_BitInt(37) shift_base() {
- _BitInt(37) x = (-1) << 1;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:24: runtime error: left shift of negative value -1
- return x;
-}
-
-uint32_t negative_shift1(unsigned _BitInt(37) x) {
- _BitInt(9) c = -2;
- return x >> c;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:12: runtime error: shift exponent -2 is negative
- // IR: constant { i16, i16, [19 x i8] } { i16 2, i16 9, [19 x i8] c"'_BitInt(9)'\00\09\00\00\00\00\00" }
-}
-
-uint32_t negative_shift2(unsigned _BitInt(37) x) {
- _BitInt(17) c = -2;
- return x >> c;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:12: runtime error: shift exponent -2 is negative
- // IR: constant { i16, i16, [20 x i8] } { i16 2, i16 11, [20 x i8] c"'_BitInt(17)'\00\11\00\00\00\00\00" }
-}
-
-uint32_t negative_shift3(unsigned _BitInt(37) x) {
- _BitInt(34) c = -2;
- return x >> c;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:12: runtime error: shift exponent -2 is negative
- // IR: constant { i16, i16, [20 x i8] } { i16 2, i16 13, [20 x i8] c"'_BitInt(34)'\00\22\00\00\00\00\00" }
-}
-
-uint32_t negative_shift4(unsigned _BitInt(37) x) {
- int64_t c = -2;
- return x >> c;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:12: runtime error: shift exponent -2 is negative
-}
-
-uint32_t negative_shift5(unsigned _BitInt(37) x) {
- _BitInt(68) c = -2;
- return x >> c;
- // CHECK-R: {{.*}}bit-int.c:[[@LINE-1]]:12: runtime error: shift exponent -2 is negative
- // CHECK-IR: constant { i16, i16, [20 x i8] } { i16 2, i16 {{([[:xdigit:]]{2})}}, [20 x i8] c"'_BitInt(68)'\00D\00\00\00\00\00" }
-}
-
-uint32_t unsigned_integer_overflow() {
- unsigned _BitInt(37) x = ~0U;
- ++x;
- return x;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:10: runtime error: implicit conversion from type
-}
-
-// In this test no run-time overflow expected, so no diagnostics here, but should be a conversion error from the negative number on return.
-uint32_t signed_integer_overflow() {
- _BitInt(37) x = (_BitInt(37)) ~((0x8FFFFFFFFFFFFFFFULL) >> 1);
- --x;
- return x;
- // RUNTIME: {{.*}}bit-int.c:[[@LINE-1]]:10: runtime error: implicit conversion from type
-}
-
-int main(int argc, char **argv) {
- // clang-format off
- uint64_t result =
- 1ULL +
- implicit_unsigned_integer_truncation() +
- pointer_overflow() +
- vla_bound(argc) +
- unsigned_shift_base() +
- (uint32_t)array_bounds() +
- float_cast_overflow() +
- implicit_integer_sign_change((unsigned _BitInt(37))(argc - 2)) +
- (uint64_t)implicit_signed_integer_truncation() +
- shift_exponent() +
- (uint32_t)shift_base() +
- negative_shift1(5) +
- negative_shift2(5) +
- negative_shift3(5) +
- negative_shift4(5) +
- negative_shift5(5) +
- unsigned_integer_overflow() +
- signed_integer_overflow();
- // clang-format on
- printf("%u\n", (uint32_t)(result & 0xFFFFFFFF));
-}
More information about the llvm-branch-commits
mailing list