Zero-extended i1 value becomes 255 at -O2 on x86_64 #56585

topolarity · 2022-07-18T07:46:25Z

; ModuleID = 'test'
source_filename = "test"
target datalayout = "e-m:e-p270:32:32-p271:32:32-p272:64:64-i64:64-f80:128-n8:16:32:64-S128"
target triple = "x86_64-unknown-linux-gnu"

define external ccc void @"_start"() unnamed_addr {
Entry:
  %0 = alloca i1
  call fastcc void @foo(i1* sret(i1) %0)
  %1 = load i1, i1* %0
  %2 = zext i1 %1 to i64
  call i64 asm sideeffect "syscall", "={rax},{rax},{rdi},~{rcx},~{r11},~{memory},~{dirflag},~{fpsr},~{flags}"(i64 231, i64 %2)
  unreachable
}

define internal fastcc void @foo(i1* nocapture nonnull writeonly sret(i1) %0) unnamed_addr noinline {
Entry: 
  %1 = alloca i1
  store i1 true, i1* %1
  %2 = bitcast i1* %0 to i8*
  %3 = bitcast i1* %1 to i8*
  %4 = load i8, i8* %3
  store i8 %4, i8* %2
  ret void
}

With LLVM 14.0.5, this program gives a correct result at -O0, but at -O1 the zero-extended i1 value is 255:

$ opt-14 test.ll -o test.bc -filetype=obj -O0
$ llc-14 ./test.bc -O0 -o ./test.o -filetype=obj
$ ld.lld -o test ./test.o && ./test
$ echo $?
1
$ opt-14 test.ll -o test.bc -filetype=obj -O1
$ llc-14 ./test.bc -O1 -o ./test.o -filetype=obj
$ ld.lld -o test ./test.o && ./test
$ echo $?
255

Does not reproduce with LLVM 13.0.1:

$ opt-13 test.ll -o test.bc -filetype=obj -O0
$ llc-13 ./test.bc -O0 -o ./test.o -filetype=obj
$ ld.lld -o test ./test.o && ./test
$ echo $?
1
$ opt-13 test.ll -o test.bc -filetype=obj -O1
$ llc-13 ./test.bc -O1 -o ./test.o -filetype=obj
$ ld.lld -o test ./test.o && ./test
$ echo $?
1

The text was updated successfully, but these errors were encountered:

llvmbot · 2022-07-18T13:50:48Z

@llvm/issue-subscribers-backend-x86

llvmbot · 2022-07-18T18:27:45Z

@llvm/issue-subscribers-bug

topolarity · 2022-07-19T02:33:06Z

Looks like this is already fixed on trunk: https://godbolt.org/z/Ehbxz7471

It would be good to know what change includes the fix, if possible

This is a possible workaround for llvm/llvm-project#56585 On my computer it makes stage3-release go from false positive compilation errors on the behavior tests to "segmentation fault". Is this forwards progress or backwards progress? I have no idea. See #11450

This is a workaround for llvm/llvm-project#56585 which causes writes to i1 in memory to be optimized to an incorrect value. Unfortunately, this does not save users from running into this bug with u1 in their own types. However, this does seem to be enough to get the behavior tests working. This resolves ziglang#11450 on my machine.

nikic · 2022-07-19T07:33:35Z

This was probably fixed by 930a687.

This is a workaround for llvm/llvm-project#56585 which causes writes to i1 in memory to be optimized to an incorrect value. Unfortunately, this does not save users from running into this bug with u1 in their own types. However, this does seem to be enough to get the behavior tests working. This resolves #11450 on my machine.

topolarity · 2022-07-19T17:38:29Z

Indeed, applying that fix locally resolves this bug for me. Thank you!

This is a possible workaround for llvm/llvm-project#56585 On my computer it makes stage3-release go from false positive compilation errors on the behavior tests to "segmentation fault". Is this forwards progress or backwards progress? I have no idea. See #11450

This is a workaround for llvm/llvm-project#56585 which causes writes to i1 in memory to be optimized to an incorrect value. Unfortunately, this does not save users from running into this bug with u1 in their own types. However, this does seem to be enough to get the behavior tests working. This resolves #11450 on my machine.

This is a possible workaround for llvm/llvm-project#56585 On my computer it makes stage3-release go from false positive compilation errors on the behavior tests to "segmentation fault". Is this forwards progress or backwards progress? I have no idea. See #11450

This is a workaround for llvm/llvm-project#56585 which causes writes to i1 in memory to be optimized to an incorrect value. Unfortunately, this does not save users from running into this bug with u1 in their own types. However, this does seem to be enough to get the behavior tests working. This resolves ziglang#11450 on my machine.

This is a possible workaround for llvm/llvm-project#56585 On my computer it makes stage3-release go from false positive compilation errors on the behavior tests to "segmentation fault". Is this forwards progress or backwards progress? I have no idea. See ziglang#11450

CGQAQ · 2023-05-25T01:52:18Z

This was probably fixed by 930a687.

930a687#diff-06e121216084579cd62acf88c315555529dc0dbfbeba81787c70ab7e606bdb21L507-R508

HOW????
the DL.getTypeSizeInBits and DL.getTypeStoreSize should be 8 anyway, thus TypeSize::isKnownLE(LoadSize, StoreSize) in the next line is true, why this change will fix the issue, I don't understand

EDIT 1
is it the other way around? after this change the TypeSize::isKnownLE(LoadSize, StoreSize) will be false ( LoadSize is 8, StoreSize is 1), and the branch is not hit, the function returns nullptr?

EDIT 2
I think I got it, the issue hit this case, which is not valid, and trigger the UB

github-actions bot added the new issue label Jul 18, 2022

EugeneZelenko added backend:X86 and removed new issue labels Jul 18, 2022

topolarity mentioned this issue Jul 18, 2022

stage3 fails the behavior tests ziglang/zig#11450

Closed

andrewrk added this to the LLVM 15.0.0 Release milestone Jul 18, 2022

andrewrk added bug Indicates an unexpected problem or unintended behavior regression miscompilation labels Jul 18, 2022

andrewrk mentioned this issue Jul 19, 2022

LLVM: lower optional types as byref=true ziglang/zig#12164

Merged

topolarity closed this as completed Jul 19, 2022

EugeneZelenko added llvm:optimizations and removed backend:X86 labels Jul 19, 2022

tstellar added this to LLVM Release Status Aug 2, 2022

tstellar moved this to Needs Triage in LLVM Release Status Aug 2, 2022

tstellar moved this from Needs Triage to Needs Pull Request in LLVM Release Status Aug 2, 2022

nikic moved this from Needs Pull Request to Done in LLVM Release Status Aug 2, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Zero-extended i1 value becomes 255 at -O2 on x86_64 #56585

Zero-extended i1 value becomes 255 at -O2 on x86_64 #56585

topolarity commented Jul 18, 2022 •

edited

Loading

llvmbot commented Jul 18, 2022

Uh oh!

llvmbot commented Jul 18, 2022

Uh oh!

topolarity commented Jul 19, 2022 •

edited

Loading

Uh oh!

nikic commented Jul 19, 2022

Uh oh!

topolarity commented Jul 19, 2022

Uh oh!

CGQAQ commented May 25, 2023 •

edited

Loading

Uh oh!

Zero-extended i1 value becomes 255 at -O2 on x86_64 #56585

Zero-extended i1 value becomes 255 at -O2 on x86_64 #56585

Comments

topolarity commented Jul 18, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

llvmbot commented Jul 18, 2022

Uh oh!

llvmbot commented Jul 18, 2022

Uh oh!

topolarity commented Jul 19, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

nikic commented Jul 19, 2022

Uh oh!

topolarity commented Jul 19, 2022

Uh oh!

CGQAQ commented May 25, 2023 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

topolarity commented Jul 18, 2022 •

edited

Loading

topolarity commented Jul 19, 2022 •

edited

Loading

CGQAQ commented May 25, 2023 •

edited

Loading