compiler: zero struct padding during map operations

dgryski · dgryski · commit 1e40948994dd · 2023-02-15T20:51:32.000-08:00
Fixes #3358
diff --git a/compiler/compiler_test.go b/compiler/compiler_test.go
@@ -49,6 +49,7 @@ func TestCompiler(t *testing.T) {
 		{"goroutine.go", "cortex-m-qemu", "tasks"},
 		{"channel.go", "", ""},
 		{"gc.go", "", ""},
+		{"zeromap.go", "", ""},
 	}
 	if goMinor >= 20 {
 		tests = append(tests, testCase{"go1.20.go", "", ""})
diff --git a/compiler/map.go b/compiler/map.go
@@ -89,6 +89,7 @@ func (b *builder) createMapLookup(keyType, valueType types.Type, m, key llvm.Val
 		// growth.
 		mapKeyAlloca, mapKeyPtr, mapKeySize := b.createTemporaryAlloca(key.Type(), "hashmap.key")
 		b.CreateStore(key, mapKeyAlloca)
+		b.zeroUndefBytes(b.getLLVMType(keyType), mapKeyAlloca)
 		// Fetch the value from the hashmap.
 		params := []llvm.Value{m, mapKeyPtr, mapValuePtr, mapValueSize}
 		commaOkValue = b.createRuntimeCall("hashmapBinaryGet", params, "")
@@ -133,6 +134,7 @@ func (b *builder) createMapUpdate(keyType types.Type, m, key, value llvm.Value,
 		// key can be compared with runtime.memequal
 		keyAlloca, keyPtr, keySize := b.createTemporaryAlloca(key.Type(), "hashmap.key")
 		b.CreateStore(key, keyAlloca)
+		b.zeroUndefBytes(b.getLLVMType(keyType), keyAlloca)
 		params := []llvm.Value{m, keyPtr, valuePtr}
 		b.createRuntimeCall("hashmapBinarySet", params, "")
 		b.emitLifetimeEnd(keyPtr, keySize)
@@ -161,6 +163,7 @@ func (b *builder) createMapDelete(keyType types.Type, m, key llvm.Value, pos tok
 	} else if hashmapIsBinaryKey(keyType) {
 		keyAlloca, keyPtr, keySize := b.createTemporaryAlloca(key.Type(), "hashmap.key")
 		b.CreateStore(key, keyAlloca)
+		b.zeroUndefBytes(b.getLLVMType(keyType), keyAlloca)
 		params := []llvm.Value{m, keyPtr}
 		b.createRuntimeCall("hashmapBinaryDelete", params, "")
 		b.emitLifetimeEnd(keyPtr, keySize)
@@ -240,7 +243,8 @@ func (b *builder) createMapIteratorNext(rangeVal ssa.Value, llvmRangeVal, it llv
 }
 
 // Returns true if this key type does not contain strings, interfaces etc., so
-// can be compared with runtime.memequal.
+// can be compared with runtime.memequal.  Note that padding bytes are undef
+// and can alter two "equal" structs being equal when compared with memequal.
 func hashmapIsBinaryKey(keyType types.Type) bool {
 	switch keyType := keyType.(type) {
 	case *types.Basic:
@@ -263,3 +267,71 @@ func hashmapIsBinaryKey(keyType types.Type) bool {
 		return false
 	}
 }
+
+func (b *builder) zeroUndefBytes(llvmType llvm.Type, ptr llvm.Value) error {
+	// We know that hashmapIsBinaryKey is true, so we only have to handle those types that can show up there.
+	// To zero all undefined bytes, we iterate over all the fields in the type.  For each element, compute the
+	// offset of that element.  If it's Basic type, there are no internal padding bytes.  For compound types, we recurse to ensure
+	// we handle nested types.  Next, we determine if there are any padding bytes before the next
+	// element and zero those as well.
+
+	switch llvmType.TypeKind() {
+	case llvm.IntegerTypeKind:
+		// no padding bytes
+		return nil
+	case llvm.PointerTypeKind:
+		// mo padding bytes
+		return nil
+	case llvm.ArrayTypeKind:
+		llvmArrayType := llvmType
+		llvmElemType := llvmType.ElementType()
+
+		for i := 0; i < llvmArrayType.ArrayLength(); i++ {
+			idx := llvm.ConstInt(b.uintptrType, uint64(i), false)
+			elemPtr := b.CreateGEP(llvmArrayType, ptr, []llvm.Value{idx}, "")
+
+			// zero any padding bytes in this element
+			b.zeroUndefBytes(llvmElemType, elemPtr)
+		}
+
+	case llvm.StructTypeKind:
+		llvmStructType := llvmType
+		numFields := llvmStructType.StructElementTypesCount()
+		llvmElementTypes := llvmStructType.StructElementTypes()
+
+		for i := 0; i < llvmStructType.StructElementTypesCount(); i++ {
+			offset := b.targetData.ElementOffset(llvmStructType, i)
+			llvmOffset := llvm.ConstInt(b.uintptrType, offset, false)
+			elemPtr := b.CreateGEP(b.ctx.Int8Type(), ptr, []llvm.Value{llvmOffset}, "")
+
+			// zero any padding bytes in this field
+			llvmElemType := llvmElementTypes[i]
+			b.zeroUndefBytes(llvmElemType, elemPtr)
+
+			// zero any padding bytes before the next field, if any
+			if i < numFields-1 {
+				nextOffset := b.targetData.ElementOffset(llvmStructType, i+1)
+				if storeSize := b.targetData.TypeStoreSize(llvmElemType); offset+storeSize != nextOffset {
+					n := llvm.ConstInt(b.uintptrType, nextOffset-(offset+storeSize), false)
+					llvmSize := llvm.ConstInt(b.uintptrType, storeSize, false)
+					paddingStart := b.CreateGEP(b.ctx.Int8Type(), elemPtr, []llvm.Value{llvmSize}, "")
+					b.createRuntimeCall("memzero", []llvm.Value{paddingStart, n}, "")
+				}
+			}
+		}
+
+		// zero any padding bytes between end of last field and end of struct
+		allocSize := b.targetData.TypeAllocSize(llvmStructType)
+		lastElemOffset := b.targetData.ElementOffset(llvmStructType, numFields-1)
+		lastElemStore := b.targetData.TypeStoreSize(llvmElementTypes[numFields-1])
+
+		if allocSize != lastElemOffset+lastElemStore {
+			n := llvm.ConstInt(b.uintptrType, allocSize-(lastElemOffset+lastElemStore), false)
+			llvmSize := llvm.ConstInt(b.uintptrType, lastElemOffset+lastElemStore, false)
+			paddingStart := b.CreateGEP(b.ctx.Int8Type(), ptr, []llvm.Value{llvmSize}, "")
+			b.createRuntimeCall("memzero", []llvm.Value{paddingStart, n}, "")
+		}
+	}
+
+	return nil
+}
diff --git a/compiler/testdata/zeromap.go b/compiler/testdata/zeromap.go
@@ -0,0 +1,20 @@
+package main
+
+type hasPadding struct {
+	b1 bool
+	i  int
+	b2 bool
+}
+
+func main() {
+	m := make(map[hasPadding]int)
+	var s hasPadding
+
+	for i := 0; i < 10; i++ {
+		s.b1 = i&1 == 0
+		s.i = i
+		s.b2 = i&1 == 1
+		m[s]++
+	}
+	println(len(m))
+}
diff --git a/compiler/testdata/zeromap.ll b/compiler/testdata/zeromap.ll
@@ -0,0 +1,125 @@
+; ModuleID = 'zeromap.go'
+source_filename = "zeromap.go"
+target datalayout = "e-m:e-p:32:32-p10:8:8-p20:8:8-i64:64-n32:64-S128-ni:1:10:20"
+target triple = "wasm32-unknown-wasi"
+
+%main.hasPadding = type { i1, i32, i1 }
+
+declare noalias nonnull ptr @runtime.alloc(i32, ptr, ptr) #0
+
+declare void @runtime.trackPointer(ptr nocapture readonly, ptr, ptr) #0
+
+; Function Attrs: nounwind
+define hidden void @main.init(ptr %context) unnamed_addr #1 {
+entry:
+  ret void
+}
+
+; Function Attrs: nounwind
+define hidden void @main.main(ptr %context) unnamed_addr #1 {
+entry:
+  %hashmap.key6 = alloca %main.hasPadding, align 8
+  %hashmap.value5 = alloca i32, align 4
+  %hashmap.key = alloca %main.hasPadding, align 8
+  %hashmap.value = alloca i32, align 4
+  %s = alloca %main.hasPadding, align 8
+  %stackalloc = alloca i8, align 1
+  %0 = call ptr @runtime.hashmapMake(i32 12, i32 4, i32 8, i8 0, ptr undef) #3
+  call void @runtime.trackPointer(ptr %0, ptr nonnull %stackalloc, ptr undef) #3
+  store %main.hasPadding zeroinitializer, ptr %s, align 8
+  call void @runtime.trackPointer(ptr nonnull %s, ptr nonnull %stackalloc, ptr undef) #3
+  br label %for.loop
+
+for.loop:                                         ; preds = %store.next4, %entry
+  %1 = phi i32 [ 0, %entry ], [ %17, %store.next4 ]
+  %2 = icmp slt i32 %1, 10
+  br i1 %2, label %for.body, label %for.done
+
+for.body:                                         ; preds = %for.loop
+  br i1 false, label %store.throw, label %store.next
+
+store.next:                                       ; preds = %for.body
+  %3 = and i32 %1, 1
+  %4 = icmp eq i32 %3, 0
+  store i1 %4, ptr %s, align 8
+  br i1 false, label %store.throw1, label %store.next2
+
+store.next2:                                      ; preds = %store.next
+  %5 = getelementptr inbounds %main.hasPadding, ptr %s, i32 0, i32 1
+  store i32 %1, ptr %5, align 4
+  br i1 false, label %store.throw3, label %store.next4
+
+store.next4:                                      ; preds = %store.next2
+  %6 = getelementptr inbounds %main.hasPadding, ptr %s, i32 0, i32 2
+  %7 = and i32 %1, 1
+  %8 = icmp ne i32 %7, 0
+  store i1 %8, ptr %6, align 8
+  %9 = load %main.hasPadding, ptr %s, align 8
+  call void @llvm.lifetime.start.p0(i64 4, ptr nonnull %hashmap.value)
+  call void @llvm.lifetime.start.p0(i64 12, ptr nonnull %hashmap.key)
+  store %main.hasPadding %9, ptr %hashmap.key, align 8
+  %10 = getelementptr inbounds i8, ptr %hashmap.key, i32 1
+  call void @runtime.memzero(ptr nonnull %10, i32 3, ptr undef) #3
+  %11 = getelementptr inbounds i8, ptr %hashmap.key, i32 9
+  call void @runtime.memzero(ptr nonnull %11, i32 3, ptr undef) #3
+  %12 = call i1 @runtime.hashmapBinaryGet(ptr %0, ptr nonnull %hashmap.key, ptr nonnull %hashmap.value, i32 4, ptr undef) #3
+  call void @llvm.lifetime.end.p0(i64 12, ptr nonnull %hashmap.key)
+  %13 = load i32, ptr %hashmap.value, align 4
+  call void @llvm.lifetime.end.p0(i64 4, ptr nonnull %hashmap.value)
+  %14 = add i32 %13, 1
+  call void @llvm.lifetime.start.p0(i64 4, ptr nonnull %hashmap.value5)
+  store i32 %14, ptr %hashmap.value5, align 4
+  call void @llvm.lifetime.start.p0(i64 12, ptr nonnull %hashmap.key6)
+  store %main.hasPadding %9, ptr %hashmap.key6, align 8
+  %15 = getelementptr inbounds i8, ptr %hashmap.key6, i32 1
+  call void @runtime.memzero(ptr nonnull %15, i32 3, ptr undef) #3
+  %16 = getelementptr inbounds i8, ptr %hashmap.key6, i32 9
+  call void @runtime.memzero(ptr nonnull %16, i32 3, ptr undef) #3
+  call void @runtime.hashmapBinarySet(ptr %0, ptr nonnull %hashmap.key6, ptr nonnull %hashmap.value5, ptr undef) #3
+  call void @llvm.lifetime.end.p0(i64 12, ptr nonnull %hashmap.key6)
+  call void @llvm.lifetime.end.p0(i64 4, ptr nonnull %hashmap.value5)
+  %17 = add i32 %1, 1
+  br label %for.loop
+
+for.done:                                         ; preds = %for.loop
+  %len = call i32 @runtime.hashmapLen(ptr %0, ptr undef) #3
+  call void @runtime.printint32(i32 %len, ptr undef) #3
+  call void @runtime.printnl(ptr undef) #3
+  ret void
+
+store.throw:                                      ; preds = %for.body
+  unreachable
+
+store.throw1:                                     ; preds = %store.next
+  unreachable
+
+store.throw3:                                     ; preds = %store.next2
+  unreachable
+}
+
+declare ptr @runtime.hashmapMake(i32, i32, i32, i8, ptr) #0
+
+declare void @runtime.nilPanic(ptr) #0
+
+; Function Attrs: argmemonly nocallback nofree nosync nounwind willreturn
+declare void @llvm.lifetime.start.p0(i64 immarg, ptr nocapture) #2
+
+declare void @runtime.memzero(ptr, i32, ptr) #0
+
+declare i1 @runtime.hashmapBinaryGet(ptr dereferenceable_or_null(40), ptr, ptr, i32, ptr) #0
+
+; Function Attrs: argmemonly nocallback nofree nosync nounwind willreturn
+declare void @llvm.lifetime.end.p0(i64 immarg, ptr nocapture) #2
+
+declare void @runtime.hashmapBinarySet(ptr dereferenceable_or_null(40), ptr, ptr, ptr) #0
+
+declare i32 @runtime.hashmapLen(ptr dereferenceable_or_null(40), ptr) #0
+
+declare void @runtime.printint32(i32, ptr) #0
+
+declare void @runtime.printnl(ptr) #0
+
+attributes #0 = { "target-features"="+bulk-memory,+nontrapping-fptoint,+sign-ext" }
+attributes #1 = { nounwind "target-features"="+bulk-memory,+nontrapping-fptoint,+sign-ext" }
+attributes #2 = { argmemonly nocallback nofree nosync nounwind willreturn }
+attributes #3 = { nounwind }

Original file line number	Diff line number	Diff line change
`@@ -49,6 +49,7 @@ func TestCompiler(t *testing.T) {`
`49`	`49`	`{"goroutine.go", "cortex-m-qemu", "tasks"},`
`50`	`50`	`{"channel.go", "", ""},`
`51`	`51`	`{"gc.go", "", ""},`
	`52`	`+ {"zeromap.go", "", ""},`
`52`	`53`	`}`
`53`	`54`	`if goMinor >= 20 {`
`54`	`55`	`tests = append(tests, testCase{"go1.20.go", "", ""})`