[DevMSAN] Fix missed symbols __msan_memcpy & __msan_memmove (#16535)

zhaomaosu · web-flow · commit 35823681e641 · 2025-01-07T15:12:47.000Z
diff --git a/libdevice/sanitizer/msan_rtl.cpp b/libdevice/sanitizer/msan_rtl.cpp
@@ -221,18 +221,82 @@ DEVICE_EXTERN_C_NOINLINE uptr __msan_get_shadow(uptr addr, uint32_t as) {
 }
 
 #define MSAN_MEMSET(as)                                                        \
-  DEVICE_EXTERN_C_NOINLINE void __msan_memset_p##as(                           \
+  DEVICE_EXTERN_C_NOINLINE                                                     \
+  __attribute__((address_space(as))) void *__msan_memset_p##as(                \
       __attribute__((address_space(as))) char *dest, int val, size_t size) {   \
     uptr shadow = __msan_get_shadow((uptr)dest, as);                           \
     for (size_t i = 0; i < size; i++) {                                        \
       dest[i] = val;                                                           \
       ((__SYCL_GLOBAL__ char *)shadow)[i] = 0;                                 \
     }                                                                          \
+    return dest;                                                               \
   }
 
 MSAN_MEMSET(0)
 MSAN_MEMSET(1)
 MSAN_MEMSET(3)
 MSAN_MEMSET(4)
 
+#define MSAN_MEMMOVE_BASE(dst_as, src_as)                                      \
+  DEVICE_EXTERN_C_NOINLINE __attribute__((address_space(dst_as))) void         \
+      *__msan_memmove_p##dst_as##_p##src_as(                                   \
+          __attribute__((address_space(dst_as))) char *dest,                   \
+          __attribute__((address_space(src_as))) char *src, size_t size) {     \
+    uptr dest_shadow = __msan_get_shadow((uptr)dest, dst_as);                  \
+    uptr src_shadow = __msan_get_shadow((uptr)src, src_as);                    \
+    if ((uptr)dest > (uptr)src) {                                              \
+      for (size_t i = size - 1; i < size; i--) {                               \
+        dest[i] = src[i];                                                      \
+        ((__SYCL_GLOBAL__ char *)dest_shadow)[i] =                             \
+            ((__SYCL_GLOBAL__ char *)src_shadow)[i];                           \
+      }                                                                        \
+    } else {                                                                   \
+      for (size_t i = 0; i < size; i++) {                                      \
+        dest[i] = src[i];                                                      \
+        ((__SYCL_GLOBAL__ char *)dest_shadow)[i] =                             \
+            ((__SYCL_GLOBAL__ char *)src_shadow)[i];                           \
+      }                                                                        \
+    }                                                                          \
+    return dest;                                                               \
+  }
+
+#define MSAN_MEMMOVE(dst_as)                                                   \
+  MSAN_MEMMOVE_BASE(dst_as, 0)                                                 \
+  MSAN_MEMMOVE_BASE(dst_as, 1)                                                 \
+  MSAN_MEMMOVE_BASE(dst_as, 2)                                                 \
+  MSAN_MEMMOVE_BASE(dst_as, 3)                                                 \
+  MSAN_MEMMOVE_BASE(dst_as, 4)
+
+MSAN_MEMMOVE(0)
+MSAN_MEMMOVE(1)
+MSAN_MEMMOVE(3)
+MSAN_MEMMOVE(4)
+
+#define MSAN_MEMCPY_BASE(dst_as, src_as)                                       \
+  DEVICE_EXTERN_C_NOINLINE __attribute__((address_space(dst_as))) void         \
+      *__msan_memcpy_p##dst_as##_p##src_as(                                    \
+          __attribute__((address_space(dst_as))) char *dest,                   \
+          __attribute__((address_space(src_as))) char *src, size_t size) {     \
+    uptr dest_shadow = __msan_get_shadow((uptr)dest, dst_as);                  \
+    uptr src_shadow = __msan_get_shadow((uptr)src, src_as);                    \
+    for (size_t i = 0; i < size; i++) {                                        \
+      dest[i] = src[i];                                                        \
+      ((__SYCL_GLOBAL__ char *)dest_shadow)[i] =                               \
+          ((__SYCL_GLOBAL__ char *)src_shadow)[i];                             \
+    }                                                                          \
+    return dest;                                                               \
+  }
+
+#define MSAN_MEMCPY(dst_as)                                                    \
+  MSAN_MEMCPY_BASE(dst_as, 0)                                                  \
+  MSAN_MEMCPY_BASE(dst_as, 1)                                                  \
+  MSAN_MEMCPY_BASE(dst_as, 2)                                                  \
+  MSAN_MEMCPY_BASE(dst_as, 3)                                                  \
+  MSAN_MEMCPY_BASE(dst_as, 4)
+
+MSAN_MEMCPY(0)
+MSAN_MEMCPY(1)
+MSAN_MEMCPY(3)
+MSAN_MEMCPY(4)
+
 #endif // __SPIR__ || __SPIRV__
diff --git a/llvm/lib/Transforms/Instrumentation/MemorySanitizer.cpp b/llvm/lib/Transforms/Instrumentation/MemorySanitizer.cpp
@@ -681,7 +681,9 @@ class MemorySanitizer {
   FunctionCallee MemmoveFn, MemcpyFn, MemsetFn;
 
   /// MSan runtime replacements for memset with address space.
-  FunctionCallee MemsetOffloadFn[kNumberOfAddressSpace];
+  FunctionCallee MemmoveOffloadFn[kNumberOfAddressSpace][kNumberOfAddressSpace],
+      MemcpyOffloadFn[kNumberOfAddressSpace][kNumberOfAddressSpace],
+      MemsetOffloadFn[kNumberOfAddressSpace];
 
   /// KMSAN callback for task-local function argument shadow.
   StructType *MsanContextStateTy;
@@ -948,7 +950,7 @@ static Constant *getOrInsertGlobal(Module &M, StringRef Name, Type *Ty) {
   // FIXME: spirv target doesn't support TLS, need to handle it later.
   if (Triple(M.getTargetTriple()).isSPIROrSPIRV()) {
     return M.getOrInsertGlobal(Name, Ty, [&] {
-      return new GlobalVariable(M, Ty, false, GlobalVariable::ExternalLinkage,
+      return new GlobalVariable(M, Ty, false, GlobalVariable::InternalLinkage,
                                 Constant::getNullValue(Ty), Name, nullptr,
                                 GlobalVariable::NotThreadLocal,
                                 kSpirOffloadGlobalAS);
@@ -1088,11 +1090,23 @@ void MemorySanitizer::initializeCallbacks(Module &M,
   } else {
     for (unsigned FirstArgAS = 0; FirstArgAS < kNumberOfAddressSpace;
          FirstArgAS++) {
-      const std::string Suffix = "_p" + itostr(FirstArgAS);
+      const std::string Suffix1 = "_p" + itostr(FirstArgAS);
       PointerType *FirstArgPtrTy = IRB.getPtrTy(FirstArgAS);
       MemsetOffloadFn[FirstArgAS] = M.getOrInsertFunction(
-          "__msan_memset" + Suffix, TLI.getAttrList(C, {1}, /*Signed=*/true),
+          "__msan_memset" + Suffix1, TLI.getAttrList(C, {1}, /*Signed=*/true),
           FirstArgPtrTy, FirstArgPtrTy, IRB.getInt32Ty(), IntptrTy);
+
+      for (unsigned SecondArgAS = 0; SecondArgAS < kNumberOfAddressSpace;
+           SecondArgAS++) {
+        const std::string Suffix2 = Suffix1 + "_p" + itostr(SecondArgAS);
+        PointerType *SecondArgPtrTy = IRB.getPtrTy(SecondArgAS);
+        MemmoveOffloadFn[FirstArgAS][SecondArgAS] =
+            M.getOrInsertFunction("__msan_memmove" + Suffix2, FirstArgPtrTy,
+                                  FirstArgPtrTy, SecondArgPtrTy, IntptrTy);
+        MemcpyOffloadFn[FirstArgAS][SecondArgAS] =
+            M.getOrInsertFunction("__msan_memcpy" + Suffix2, FirstArgPtrTy,
+                                  FirstArgPtrTy, SecondArgPtrTy, IntptrTy);
+      }
     }
   }
 
@@ -1320,8 +1334,6 @@ static void setNoSanitizedMetadataSPIR(Instruction &I) {
     Addr = XCHG->getPointerOperand();
   else if (const auto *ASC = dyn_cast<AddrSpaceCastInst>(&I))
     Addr = ASC->getPointerOperand();
-  else if (isa<MemCpyInst>(&I))
-    I.setNoSanitizeMetadata();
   else if (isa<AllocaInst>(&I))
     I.setNoSanitizeMetadata();
   else if (const auto *CI = dyn_cast<CallInst>(&I)) {
@@ -3180,9 +3192,19 @@ struct MemorySanitizerVisitor : public InstVisitor<MemorySanitizerVisitor> {
   ///
   /// Similar situation exists for memcpy and memset.
   void visitMemMoveInst(MemMoveInst &I) {
+    if (SpirOrSpirv && ((isa<Instruction>(I.getArgOperand(0)) &&
+                         cast<Instruction>(I.getArgOperand(0))
+                             ->getMetadata(LLVMContext::MD_nosanitize)) ||
+                        (isa<Instruction>(I.getArgOperand(1)) &&
+                         cast<Instruction>(I.getArgOperand(1))
+                             ->getMetadata(LLVMContext::MD_nosanitize))))
+      return;
+
     getShadow(I.getArgOperand(1)); // Ensure shadow initialized
     IRBuilder<> IRB(&I);
-    IRB.CreateCall(MS.MemmoveFn,
+    IRB.CreateCall(SpirOrSpirv ? MS.MemmoveOffloadFn[I.getDestAddressSpace()]
+                                                    [I.getSourceAddressSpace()]
+                               : MS.MemmoveFn,
                    {I.getArgOperand(0), I.getArgOperand(1),
                     IRB.CreateIntCast(I.getArgOperand(2), MS.IntptrTy, false)});
     I.eraseFromParent();
@@ -3203,9 +3225,19 @@ struct MemorySanitizerVisitor : public InstVisitor<MemorySanitizerVisitor> {
   /// __msan_memcpy(). Should this be wrong, such as when implementing memcpy()
   /// itself, instrumentation should be disabled with the no_sanitize attribute.
   void visitMemCpyInst(MemCpyInst &I) {
+    if (SpirOrSpirv && ((isa<Instruction>(I.getArgOperand(0)) &&
+                         cast<Instruction>(I.getArgOperand(0))
+                             ->getMetadata(LLVMContext::MD_nosanitize)) ||
+                        (isa<Instruction>(I.getArgOperand(1)) &&
+                         cast<Instruction>(I.getArgOperand(1))
+                             ->getMetadata(LLVMContext::MD_nosanitize))))
+      return;
+
     getShadow(I.getArgOperand(1)); // Ensure shadow initialized
     IRBuilder<> IRB(&I);
-    IRB.CreateCall(MS.MemcpyFn,
+    IRB.CreateCall(SpirOrSpirv ? MS.MemcpyOffloadFn[I.getDestAddressSpace()]
+                                                   [I.getSourceAddressSpace()]
+                               : MS.MemcpyFn,
                    {I.getArgOperand(0), I.getArgOperand(1),
                     IRB.CreateIntCast(I.getArgOperand(2), MS.IntptrTy, false)});
     I.eraseFromParent();
@@ -3220,10 +3252,7 @@ struct MemorySanitizerVisitor : public InstVisitor<MemorySanitizerVisitor> {
 
     IRBuilder<> IRB(&I);
     IRB.CreateCall(
-        SpirOrSpirv ? MS.MemsetOffloadFn[cast<PointerType>(
-                                             I.getArgOperand(0)->getType())
-                                             ->getAddressSpace()]
-                    : MS.MemsetFn,
+        SpirOrSpirv ? MS.MemsetOffloadFn[I.getDestAddressSpace()] : MS.MemsetFn,
         {I.getArgOperand(0),
          IRB.CreateIntCast(I.getArgOperand(1), IRB.getInt32Ty(), false),
          IRB.CreateIntCast(I.getArgOperand(2), MS.IntptrTy, false)});
diff --git a/llvm/test/Instrumentation/MemorySanitizer/SPIRV/check_memfunc.ll b/llvm/test/Instrumentation/MemorySanitizer/SPIRV/check_memfunc.ll
@@ -0,0 +1,39 @@
+; RUN: opt < %s -passes=msan -msan-instrumentation-with-call-threshold=0 -msan-eager-checks=1 -S | FileCheck %s
+target datalayout = "e-i64:64-v16:16-v24:32-v32:32-v48:64-v96:128-v192:256-v256:256-v512:512-v1024:1024-n8:16:32:64-G1"
+target triple = "spir64-unknown-unknown"
+
+define spir_kernel void @MyKernelMemset(ptr %offset.i) {
+; CHECK-LABEL: @MyKernelMemset
+entry:
+  call void @llvm.memset.p0.i64(ptr %offset.i, i8 0, i64 0, i1 false)
+; CHECK: call ptr @__msan_memset_p0
+  ret void
+}
+
+define spir_kernel void @MyKernelMemmove(ptr %x, ptr %y) {
+; CHECK-LABEL: @MyKernelMemmove
+entry:
+  tail call void @llvm.memmove.p0.p0.i64(ptr %x, ptr %y, i64 0, i1 false)
+; CHECK: call ptr @__msan_memmove_p0_p0
+  ret void
+}
+
+define spir_kernel void @MyKernelMemcpy(ptr %x, ptr %y) {
+; CHECK-LABEL: @MyKernelMemcpy
+entry:
+  tail call void @llvm.memcpy.p0.p0.i64(ptr %x, ptr %y, i64 0, i1 false)
+; CHECK: call ptr @__msan_memcpy_p0_p0
+  ret void
+}
+
+; Function Attrs: nocallback nofree nounwind willreturn memory(argmem: write)
+declare void @llvm.memset.p0.i64(ptr nocapture writeonly, i8, i64, i1 immarg) #0
+
+; Function Attrs: nocallback nofree nounwind willreturn memory(argmem: readwrite)
+declare void @llvm.memmove.p0.p0.i64(ptr nocapture writeonly, ptr nocapture readonly, i64, i1 immarg) #1
+
+; Function Attrs: nocallback nofree nounwind willreturn memory(argmem: readwrite)
+declare void @llvm.memcpy.p0.p0.i64(ptr nocapture writeonly, ptr nocapture readonly, i64, i1 immarg) #1
+
+attributes #0 = { nocallback nofree nounwind willreturn memory(argmem: write) }
+attributes #1 = { nocallback nofree nounwind willreturn memory(argmem: readwrite) }
diff --git a/llvm/test/Instrumentation/MemorySanitizer/SPIRV/check_memset.ll b/llvm/test/Instrumentation/MemorySanitizer/SPIRV/check_memset.ll
