Clang miscompiling code when using -fms-hotpatch and optimizations #76958

MolecularMatters · 2024-01-04T14:04:07Z

When using the -fms-hotpatch option (which is a requirement for Live++), the tailcall/sibling call optimizations will lead to clang miscompiling function calls.

Example code:


extern "C" {
    void* mi_new(size_t size);
}

void *mi_new_test(size_t count)
{
    return mi_new(count);
}

void *builtin_malloc_test(size_t count)
{
    return __builtin_malloc(count);
}

Using -O1, the code will compile to the following:

"?mi_new_test@@YAPEAX_K@Z":             # @"?mi_new_test@@YAPEAX_K@Z"
        jmp     mi_new                          # TAILCALL
"?builtin_malloc_test@@YAPEAX_K@Z":     # @"?builtin_malloc_test@@YAPEAX_K@Z"
        jmp     malloc                          # TAILCALL

However, adding -fms-hotpatch, the code will miscompile to this:

"?mi_new_test@@YAPEAX_K@Z":             # @"?mi_new_test@@YAPEAX_K@Z"
        xchg    ax, ax

"?builtin_malloc_test@@YAPEAX_K@Z":     # @"?builtin_malloc_test@@YAPEAX_K@Z"
        xchg    ax, ax

As a workaround, specifying -fno-optimize-sibling-calls will produce the correct (but suboptimal) following code:

"?mi_new_test@@YAPEAX_K@Z":             # @"?mi_new_test@@YAPEAX_K@Z"
        sub     rsp, 40
        call    mi_new
        nop
        add     rsp, 40
        ret
"?builtin_malloc_test@@YAPEAX_K@Z":     # @"?builtin_malloc_test@@YAPEAX_K@Z"
        sub     rsp, 40
        call    malloc
        nop
        add     rsp, 40
        ret

Please refer to this godbolt compiler explorer repro: https://gcc.godbolt.org/z/r86nYbqvo

The text was updated successfully, but these errors were encountered:

sylvain-audi · 2024-01-04T18:29:41Z

Linking this issue with #59039, it looks like it's the same pattern.

shafik · 2024-01-04T23:59:26Z

Duplicate of: #76879

…77245) Previously, tail jump pseudo-opcodes were skipped by the `encodeInstruction()` call inside `X86AsmPrinter::LowerPATCHABLE_OP`. This caused emission of a 2-byte NOP and dropping of the tail jump. With this PR, we change `PATCHABLE_OP` to not wrap the first `MachineInstr` anymore, but inserting itself before, leaving the instruction unaltered. At lowering time in `X86AsmPrinter`, we now "look ahead" for the next non-pseudo `MachineInstr` and lower+encode it, to inspect its size. If the size is below what `PATCHABLE_OP` expects, it inserts NOPs; otherwise it does nothing. That way, now the first `MachineInstr` is always lowered as usual even if `"patchable-function"="prologue-short-redirect"` is used. Fixes #76879, #76958 and #59039

github-actions bot added the clang Clang issues not falling into any other category label Jan 4, 2024

EugeneZelenko added the miscompilation label Jan 4, 2024

MolecularMatters mentioned this issue Jan 4, 2024

[CodeGen][X86] Improving robustness of PATCHABLE_OP wrapper instruction #59039

Closed

shafik closed this as not planned Won't fix, can't repro, duplicate, stale Jan 4, 2024

shafik added the duplicate Resolved as duplicate label Jan 4, 2024

EugeneZelenko added llvm:optimizations and removed clang Clang issues not falling into any other category labels Jan 5, 2024

aganea mentioned this issue Jan 7, 2024

[CodeGen][X86] Fix lowering of tailcalls when -ms-hotpatch is used #77245

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Clang miscompiling code when using -fms-hotpatch and optimizations #76958

Clang miscompiling code when using -fms-hotpatch and optimizations #76958

MolecularMatters commented Jan 4, 2024 •

edited

Loading

sylvain-audi commented Jan 4, 2024

shafik commented Jan 4, 2024

Clang miscompiling code when using -fms-hotpatch and optimizations #76958

Clang miscompiling code when using -fms-hotpatch and optimizations #76958

Comments

MolecularMatters commented Jan 4, 2024 • edited Loading

sylvain-audi commented Jan 4, 2024

shafik commented Jan 4, 2024

MolecularMatters commented Jan 4, 2024 •

edited

Loading