| blob | daf5114a5405957517078af0295281e31deb1e57 |
1 //=== WebAssemblyLowerEmscriptenEHSjLj.cpp - Lower exceptions for Emscripten =//
2 //
3 // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
4 // See https://llvm.org/LICENSE.txt for license information.
5 // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
6 //
7 //===----------------------------------------------------------------------===//
8 ///
9 /// \file
10 /// This file lowers exception-related instructions and setjmp/longjmp
11 /// function calls in order to use Emscripten's JavaScript try and catch
12 /// mechanism.
13 ///
14 /// To handle exceptions and setjmp/longjmps, this scheme relies on JavaScript's
15 /// try and catch syntax and relevant exception-related libraries implemented
16 /// in JavaScript glue code that will be produced by Emscripten.
17 ///
18 /// * Exception handling
19 /// This pass lowers invokes and landingpads into library functions in JS glue
20 /// code. Invokes are lowered into function wrappers called invoke wrappers that
21 /// exist in JS side, which wraps the original function call with JS try-catch.
22 /// If an exception occurred, cxa_throw() function in JS side sets some
23 /// variables (see below) so we can check whether an exception occurred from
24 /// wasm code and handle it appropriately.
25 ///
26 /// * Setjmp-longjmp handling
27 /// This pass lowers setjmp to a reasonably-performant approach for emscripten.
28 /// The idea is that each block with a setjmp is broken up into two parts: the
29 /// part containing setjmp and the part right after the setjmp. The latter part
30 /// is either reached from the setjmp, or later from a longjmp. To handle the
31 /// longjmp, all calls that might longjmp are also called using invoke wrappers
32 /// and thus JS / try-catch. JS longjmp() function also sets some variables so
33 /// we can check / whether a longjmp occurred from wasm code. Each block with a
34 /// function call that might longjmp is also split up after the longjmp call.
35 /// After the longjmp call, we check whether a longjmp occurred, and if it did,
36 /// which setjmp it corresponds to, and jump to the right post-setjmp block.
37 /// We assume setjmp-longjmp handling always run after EH handling, which means
38 /// we don't expect any exception-related instructions when SjLj runs.
39 /// FIXME Currently this scheme does not support indirect call of setjmp,
40 /// because of the limitation of the scheme itself. fastcomp does not support it
41 /// either.
42 ///
43 /// In detail, this pass does following things:
44 ///
45 /// 1) Assumes the existence of global variables: __THREW__, __threwValue
46 /// __THREW__ and __threwValue are defined in compiler-rt in Emscripten.
47 /// These variables are used for both exceptions and setjmp/longjmps.
48 /// __THREW__ indicates whether an exception or a longjmp occurred or not. 0
49 /// means nothing occurred, 1 means an exception occurred, and other numbers
50 /// mean a longjmp occurred. In the case of longjmp, __THREW__ variable
51 /// indicates the corresponding setjmp buffer the longjmp corresponds to.
52 /// __threwValue is 0 for exceptions, and the argument to longjmp in case of
53 /// longjmp.
54 ///
55 /// * Exception handling
56 ///
57 /// 2) We assume the existence of setThrew and setTempRet0/getTempRet0 functions
58 /// at link time. setThrew exists in Emscripten's compiler-rt:
59 ///
60 /// void setThrew(uintptr_t threw, int value) {
61 /// if (__THREW__ == 0) {
62 /// __THREW__ = threw;
63 /// __threwValue = value;
64 /// }
65 /// }
66 //
67 /// setTempRet0 is called from __cxa_find_matching_catch() in JS glue code.
68 /// In exception handling, getTempRet0 indicates the type of an exception
69 /// caught, and in setjmp/longjmp, it means the second argument to longjmp
70 /// function.
71 ///
72 /// 3) Lower
73 /// invoke @func(arg1, arg2) to label %invoke.cont unwind label %lpad
74 /// into
75 /// __THREW__ = 0;
76 /// call @__invoke_SIG(func, arg1, arg2)
77 /// %__THREW__.val = __THREW__;
78 /// __THREW__ = 0;
79 /// if (%__THREW__.val == 1)
80 /// goto %lpad
81 /// else
82 /// goto %invoke.cont
83 /// SIG is a mangled string generated based on the LLVM IR-level function
84 /// signature. After LLVM IR types are lowered to the target wasm types,
85 /// the names for these wrappers will change based on wasm types as well,
86 /// as in invoke_vi (function takes an int and returns void). The bodies of
87 /// these wrappers will be generated in JS glue code, and inside those
88 /// wrappers we use JS try-catch to generate actual exception effects. It
89 /// also calls the original callee function. An example wrapper in JS code
90 /// would look like this:
91 /// function invoke_vi(index,a1) {
92 /// try {
93 /// Module["dynCall_vi"](index,a1); // This calls original callee
94 /// } catch(e) {
95 /// if (typeof e !== 'number' && e !== 'longjmp') throw e;
96 /// _setThrew(1, 0); // setThrew is called here
97 /// }
98 /// }
99 /// If an exception is thrown, __THREW__ will be set to true in a wrapper,
100 /// so we can jump to the right BB based on this value.
101 ///
102 /// 4) Lower
103 /// %val = landingpad catch c1 catch c2 catch c3 ...
104 /// ... use %val ...
105 /// into
106 /// %fmc = call @__cxa_find_matching_catch_N(c1, c2, c3, ...)
107 /// %val = {%fmc, getTempRet0()}
108 /// ... use %val ...
109 /// Here N is a number calculated based on the number of clauses.
110 /// setTempRet0 is called from __cxa_find_matching_catch() in JS glue code.
111 ///
112 /// 5) Lower
113 /// resume {%a, %b}
114 /// into
115 /// call @__resumeException(%a)
116 /// where __resumeException() is a function in JS glue code.
117 ///
118 /// 6) Lower
119 /// call @llvm.eh.typeid.for(type) (intrinsic)
120 /// into
121 /// call @llvm_eh_typeid_for(type)
122 /// llvm_eh_typeid_for function will be generated in JS glue code.
123 ///
124 /// * Setjmp / Longjmp handling
125 ///
126 /// In case calls to longjmp() exists
127 ///
128 /// 1) Lower
129 /// longjmp(buf, value)
130 /// into
131 /// emscripten_longjmp(buf, value)
132 ///
133 /// In case calls to setjmp() exists
134 ///
135 /// 2) In the function entry that calls setjmp, initialize setjmpTable and
136 /// sejmpTableSize as follows:
137 /// setjmpTableSize = 4;
138 /// setjmpTable = (int *) malloc(40);
139 /// setjmpTable[0] = 0;
140 /// setjmpTable and setjmpTableSize are used to call saveSetjmp() function in
141 /// Emscripten compiler-rt.
142 ///
143 /// 3) Lower
144 /// setjmp(buf)
145 /// into
146 /// setjmpTable = saveSetjmp(buf, label, setjmpTable, setjmpTableSize);
147 /// setjmpTableSize = getTempRet0();
148 /// For each dynamic setjmp call, setjmpTable stores its ID (a number which
149 /// is incrementally assigned from 0) and its label (a unique number that
150 /// represents each callsite of setjmp). When we need more entries in
151 /// setjmpTable, it is reallocated in saveSetjmp() in Emscripten's
152 /// compiler-rt and it will return the new table address, and assign the new
153 /// table size in setTempRet0(). saveSetjmp also stores the setjmp's ID into
154 /// the buffer buf. A BB with setjmp is split into two after setjmp call in
155 /// order to make the post-setjmp BB the possible destination of longjmp BB.
156 ///
157 ///
158 /// 4) Lower every call that might longjmp into
159 /// __THREW__ = 0;
160 /// call @__invoke_SIG(func, arg1, arg2)
161 /// %__THREW__.val = __THREW__;
162 /// __THREW__ = 0;
163 /// %__threwValue.val = __threwValue;
164 /// if (%__THREW__.val != 0 & %__threwValue.val != 0) {
165 /// %label = testSetjmp(mem[%__THREW__.val], setjmpTable,
166 /// setjmpTableSize);
167 /// if (%label == 0)
168 /// emscripten_longjmp(%__THREW__.val, %__threwValue.val);
169 /// setTempRet0(%__threwValue.val);
170 /// } else {
171 /// %label = -1;
172 /// }
173 /// longjmp_result = getTempRet0();
174 /// switch label {
175 /// label 1: goto post-setjmp BB 1
176 /// label 2: goto post-setjmp BB 2
177 /// ...
178 /// default: goto splitted next BB
179 /// }
180 /// testSetjmp examines setjmpTable to see if there is a matching setjmp
181 /// call. After calling an invoke wrapper, if a longjmp occurred, __THREW__
182 /// will be the address of matching jmp_buf buffer and __threwValue be the
183 /// second argument to longjmp. mem[%__THREW__.val] is a setjmp ID that is
184 /// stored in saveSetjmp. testSetjmp returns a setjmp label, a unique ID to
185 /// each setjmp callsite. Label 0 means this longjmp buffer does not
186 /// correspond to one of the setjmp callsites in this function, so in this
187 /// case we just chain the longjmp to the caller. Label -1 means no longjmp
188 /// occurred. Otherwise we jump to the right post-setjmp BB based on the
189 /// label.
190 ///
191 ///===----------------------------------------------------------------------===//
211 "exception handling is enabled (see emscripten "
231 // __cxa_find_matching_catch_N functions.
232 // Indexed by the number of clauses in an original landingpad instruction.
234 // Map of <function signature string, invoke_ wrappers>
236 // Set of allowed function names for exception handling
238 // Functions that contains calls to setjmp
243 }
259 }
270 }
275 }
276 };
287 }
291 // Intrinsics cannot throw
295 // leave setjmp and longjmp (mostly) alone, we process them properly later
299 }
300 // not a function, so an indirect call - can throw, we can't tell
302 }
304 // Get a global variable with the given name. If it doesn't exist declare it,
305 // which will generate an import and assume that it will exist at link time.
313 // If the target supports TLS, make this variable thread-local. We can't just
314 // unconditionally make it thread-local and depend on
315 // CoalesceFeaturesAndStripAtomics to downgrade it, because stripping TLS has
316 // the side effect of disallowing the object from being linked into a
317 // shared-memory module, which we don't want to be responsible for.
324 }
326 // Simple function name mangler.
327 // This function simply takes LLVM's string representation of parameter types
328 // and concatenate them with '_'. There are non-alphanumeric characters but llc
329 // is ok with it, and we need to postprocess these names after the lowering
330 // phase anyway.
341 // When s2wasm parses .s file, a comma means the end of an argument. So a
342 // mangled function name can contain any character but a comma.
345 }
350 // Tell the linker that this function is expected to be imported from the
351 // 'env' module.
356 }
361 }
363 }
365 // Returns an integer type for the target architecture's address space.
366 // i32 for wasm32 and i64 for wasm64.
370 }
372 // Returns an integer pointer type for the target architecture's address space.
373 // i32* for wasm32 and i64* for wasm64.
377 }
379 // Returns an integer whose type is the integer type for the target's address
380 // space. Returns (i32 C) for wasm32 and (i64 C) for wasm64, when C is the
381 // integer.
385 }
387 // Returns __cxa_find_matching_catch_N function, where N = NumClauses + 2.
388 // This is because a landingpad instruction contains two more arguments, a
389 // personality function and a cleanup bit, and __cxa_find_matching_catch_N
390 // functions are named after the number of arguments in the original landingpad
391 // instruction.
392 Function *
404 }
406 // Generate invoke wrapper seqence with preamble and postamble
407 // Preamble:
408 // __THREW__ = 0;
409 // Postamble:
410 // %__THREW__.val = __THREW__; __THREW__ = 0;
411 // Returns %__THREW__.val, which indicates whether an exception is thrown (or
412 // whether longjmp occurred), for future use.
417 // If we are calling a function that is noreturn, we must remove that
418 // attribute. The code we insert here does expect it to return, after we
419 // catch the exception.
424 }
429 // Pre-invoke
430 // __THREW__ = 0;
433 // Invoke function wrapper in JavaScript
435 // Put the pointer to the callee as first argument, so it can be called
436 // within the invoke wrapper later
444 // Because we added the pointer to the callee as first argument, all
445 // argument attribute indices have to be incremented by one.
449 // No attributes for the callee pointer.
451 // Copy the argument attributes from the original
457 // The allocsize attribute (if any) referes to parameters by index and needs
458 // to be adjusted.
466 }
468 // Reconstruct the AttributesList based on the vector we constructed.
475 // Post-invoke
476 // %__THREW__.val = __THREW__; __THREW__ = 0;
481 }
483 // Get matching invoke wrapper based on callee signature
493 // Put the pointer to the callee as first argument
495 // Add argument types
503 }
510 // Attempting to transform inline assembly will result in something like:
511 // call void @__invoke_void(void ()* asm ...)
512 // which is invalid because inline assembly blocks do not have addresses
513 // and can't be passed by pointer. The result is a crash with illegal IR.
518 // The reason we include malloc/free here is to exclude the malloc/free
519 // calls generated in setjmp prep / cleanup routines.
523 // There are functions in Emscripten's JS glue code or compiler-rt
529 // __cxa_find_matching_catch_N functions cannot longjmp
533 // Exception-catching related functions
539 // Otherwise we don't know
541 }
545 // This is an exhaustive list from Emscripten's <emscripten/em_asm.h>.
551 }
553 // Generate testSetjmp function call seqence with preamble and postamble.
554 // The code this generates is equivalent to the following JavaScript code:
555 // %__threwValue.val = __threwValue;
556 // if (%__THREW__.val != 0 & %__threwValue.val != 0) {
557 // %label = testSetjmp(mem[%__THREW__.val], setjmpTable, setjmpTableSize);
558 // if (%label == 0)
559 // emscripten_longjmp(%__THREW__.val, %__threwValue.val);
560 // setTempRet0(%__threwValue.val);
561 // } else {
562 // %label = -1;
563 // }
564 // %longjmp_result = getTempRet0();
565 //
566 // As output parameters. returns %label, %longjmp_result, and the BB the last
567 // instruction (%longjmp_result = ...) is in.
578 // if (%__THREW__.val != 0 & %__threwValue.val != 0)
590 // %label = testSetjmp(mem[%__THREW__.val], setjmpTable, setjmpTableSize);
591 // if (%label == 0)
604 // emscripten_longjmp(%__THREW__.val, %__threwValue.val);
609 // setTempRet0(%__threwValue.val);
617 // longjmp_result = getTempRet0();
624 // Output parameter assignment
628 }
633 SSAUpdater SSA;
649 }
650 }
651 }
652 }
654 // Replace uses of longjmp with emscripten_longjmp. emscripten_longjmp takes
655 // arguments of type {i32, i32} (wasm32) / {i64, i32} (wasm64) and longjmp takes
656 // {jmp_buf*, i32}, so we need a ptrtoint instruction here to make the type
657 // match. jmp_buf* will eventually be lowered to i32/i64 in the wasm backend.
665 // For calls to longjmp, replace it with emscripten_longjmp and cast its first
666 // argument (jmp_buf*) to int
675 }
676 }
680 // If we have any remaining uses of longjmp's function pointer, replace it
681 // with (int(*)(jmp_buf*, int))emscripten_longjmp.
686 }
687 }
696 }
715 // Declare (or get) global variables __THREW__, __threwValue, and
716 // getTempRet0/setTempRet0 function which are used in common for both
717 // exception handling and setjmp/longjmp handling
730 // Function registration for exception handling
732 // Register __resumeException function
737 // Register llvm_eh_typeid_for function
741 }
744 // Precompute setjmp users
747 // If a function that calls setjmp does not contain any other calls that
748 // can longjmp, we don't need to do any transformation on that function,
749 // so can ignore it
752 }
753 }
759 // Function registration and data pre-gathering for setjmp/longjmp handling
761 // Register emscripten_longjmp function
767 // Register saveSetjmp function
775 // Register testSetjmp function
781 }
782 }
784 // Exception handling transformation
790 }
791 }
793 // Setjmp/longjmp handling transformation
798 // Only traverse functions that uses setjmp in order not to insert
799 // unnecessary prep / cleanup code in every function
803 }
806 // Delete unused global variables and functions
818 }
821 }
842 // Wrap invoke with invoke wrapper and generate preamble/postamble
846 // If setjmp/longjmp handling is enabled, the thrown value can be not an
847 // exception but a longjmp. If the current function contains calls to
848 // setjmp, it will be appropriately handled in runSjLjOnFunction. But even
849 // if the function does not contain setjmp calls, we shouldn't silently
850 // ignore longjmps; we should rethrow them so they can be correctly
851 // handled in somewhere up the call chain where setjmp is. __THREW__'s
852 // value is 0 when nothing happened, 1 when an exception is thrown, and
853 // other values when longjmp is thrown.
854 //
855 // if (%__THREW__.val == 0 || %__THREW__.val == 1)
856 // goto %tail
857 // else
858 // goto %longjmp.rethrow
859 //
860 // longjmp.rethrow: ;; This is longjmp. Rethrow it
861 // %__threwValue.val = __threwValue
862 // emscripten_longjmp(%__THREW__.val, %__threwValue.val);
863 //
864 // tail: ;; Nothing happened or an exception is thrown
865 // ... Continue exception handling ...
882 }
884 // Insert a branch based on __THREW__ variable
889 // This can't throw, and we don't need this invoke, just replace it with a
890 // call+branch
903 // Remove any PHI node entries from the exception destination
905 }
906 }
908 // Process resume instructions
910 // Scan the body of the basic block for resumes
917 // Split the input into legal values
921 // Create a call to __resumeException function
923 // Add a terminator to the block
926 }
927 }
929 // Process llvm.eh.typeid.for intrinsics
947 }
948 }
950 // Look for orphan landingpads, can occur in blocks with no predecessors
955 }
958 // Handle all the landingpad for this function together, as multiple invokes
959 // may share a single lp
965 // TODO Handle filters (= exception specifications).
966 // https://bugs.llvm.org/show_bug.cgi?id=50396
969 }
971 // Create a call to __cxa_find_matching_catch_N function
981 }
983 // Erase everything we no longer need in this function
988 }
990 // This tries to get debug info from the instruction before which a new
991 // instruction will be inserted, and if there's no debug info in that
992 // instruction, tries to get the info instead from the previous instruction (if
993 // any). If none of these has debug info and a DISubprogram is provided, it
994 // creates a dummy debug info with the first line of the function, because IR
995 // verifier requires all inlinable callsites should have debug info when both a
996 // caller and callee have DISubprogram. If none of these conditions are met,
997 // returns empty info.
1009 }
1016 // Vector of %setjmpTable values
1018 // Vector of %setjmpTableSize values
1021 // Setjmp preparation
1023 // This instruction effectively means %setjmpTableSize = 4.
1024 // We create this as an instruction intentionally, and we don't want to fold
1025 // this instruction to a constant 4, because this value will be used in
1026 // SSAUpdater.AddAvailableValue(...) later.
1033 // setjmpTable = (int *) malloc(40);
1038 // CallInst::CreateMalloc may return a bitcast instruction if the result types
1039 // mismatch. We need to set the debug loc for the original call too.
1043 }
1044 // setjmpTable[0] = 0;
1050 // Setjmp transformation
1062 // The tail is everything right after the call, and will be reached once
1063 // when setjmp is called, and later when longjmp returns to the setjmp
1065 // Add a phi to the tail, which will be the output of setjmp, which
1066 // indicates if this is the first call or a longjmp back. The phi directly
1067 // uses the right value based on where we arrive from
1071 // setjmp initial call returns 0
1073 // The proper output is now this, not the setjmp call itself
1075 // longjmp returns to the setjmp will add themselves to this phi
1078 // Fix call target
1079 // Our index in the function is our place in the array + 1 to avoid index
1080 // 0, because index 0 means the longjmp is not ours to handle.
1091 }
1093 // Update each call that can longjmp so it can return to a setjmp where
1094 // relevant.
1096 // Because we are creating new BBs while processing and don't want to make
1097 // all these newly created BBs candidates again for longjmp processing, we
1098 // first make the vector of candidate BBs.
1103 // BBs.size() will change within the loop, so we query it every time
1109 "a restriction that `setjmp` function call and "
1121 ". Please consider using EM_JS, or move the "
1128 // If invoke wrapper has already been generated for this call in
1129 // previous EH phase, search for the load instruction
1130 // %__THREW__.val = __THREW__;
1131 // in postamble after the invoke wrapper call
1141 }
1142 }
1143 // Search for the store instruction after the load above
1144 // __THREW__ = 0;
1153 }
1154 }
1155 }
1156 }
1162 // Wrap call with invoke wrapper and generate preamble/postamble
1167 // If exception handling is enabled, the thrown value can be not a
1168 // longjmp but an exception, in which case we shouldn't silently ignore
1169 // exceptions; we should rethrow them.
1170 // __THREW__'s value is 0 when nothing happened, 1 when an exception is
1171 // thrown, other values when longjmp is thrown.
1172 //
1173 // if (%__THREW__.val == 1)
1174 // goto %eh.rethrow
1175 // else
1176 // goto %normal
1177 //
1178 // eh.rethrow: ;; Rethrow exception
1179 // %exn = call @__cxa_find_matching_catch_2() ;; Retrieve thrown ptr
1180 // __resumeException(%exn)
1181 //
1182 // normal:
1183 // <-- Insertion point. Will insert sjlj handling code from here
1184 // goto %tail
1185 //
1186 // tail:
1187 // ...
1190 // We will add a new conditional branch. So remove the branch created
1191 // when we split the BB
1205 }
1206 }
1208 // We need to replace the terminator in Tail - SplitBlock makes BB go
1209 // straight to Tail, we need to check if a longjmp occurred, and go to the
1210 // right setjmp-tail if so
1213 // Generate a function call to testSetjmp function and preamble/postamble
1214 // code to figure out (1) whether longjmp occurred (2) if longjmp
1215 // occurred, which setjmp it corresponds to
1223 // Create switch instruction
1227 // -1 means no longjmp happened, continue normally (will hit the default
1228 // switch case). 0 means a longjmp that is not ours to handle, needs a
1229 // rethrow. Otherwise the index is the same as the index in P+1 (to avoid
1230 // 0).
1234 }
1236 // We are splitting the block here, and must continue to find other calls
1237 // in the block - which is now split. so continue to traverse in the Tail
1239 }
1240 }
1242 // Erase everything we no longer need in this function
1246 // Free setjmpTable buffer before each return instruction + function-exiting
1247 // call
1259 }
1260 }
1261 }
1266 // CallInst::CreateFree may create a bitcast instruction if its argument
1267 // types mismatch. We need to set the debug loc for the bitcast too.
1271 }
1272 }
1274 // Every call to saveSetjmp can change setjmpTable and setjmpTableSize
1275 // (when buffer reallocation occurs)
1276 // entry:
1277 // setjmpTableSize = 4;
1278 // setjmpTable = (int *) malloc(40);
1279 // setjmpTable[0] = 0;
1280 // ...
1281 // somebb:
1282 // setjmpTable = saveSetjmp(buf, label, setjmpTable, setjmpTableSize);
1283 // setjmpTableSize = getTempRet0();
1284 // So we need to make sure the SSA for these variables is valid so that every
1285 // saveSetjmp and testSetjmp calls have the correct arguments.
1286 SSAUpdater SetjmpTableSSA;
1287 SSAUpdater SetjmpTableSizeSSA;
1297 // Grab the use before incrementing the iterator.
1299 // Increment the iterator before removing the use from the list.
1304 }
1312 }
1314 // Finally, our modifications to the cfg can break dominance of SSA variables.
1315 // For example, in this code,
1316 // if (x()) { .. setjmp() .. }
1317 // if (y()) { .. longjmp() .. }
1318 // We must split the longjmp block, and it can jump into the block splitted
1319 // from setjmp one. But that means that when we split the setjmp block, it's
1320 // first part no longer dominates its second part - there is a theoretically
1321 // possible control flow path where x() is false, then y() is true and we
1322 // reach the second part of the setjmp block, without ever reaching the first
1323 // part. So, we rebuild SSA form here.
1326 }