| blob | f70b39b4f51a77a333eec89ab16ce2b3961b9c6c |
1 //===- BasicAliasAnalysis.cpp - Stateless Alias Analysis Impl -------------===//
2 //
3 // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
4 // See https://llvm.org/LICENSE.txt for license information.
5 // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
6 //
7 //===----------------------------------------------------------------------===//
8 //
9 // This file defines the primary stateless implementation of the
10 // Alias Analysis interface that implements identities (two different
11 // globals cannot alias, etc), but does no stateful analysis.
12 //
13 //===----------------------------------------------------------------------===//
57 #include <cassert>
58 #include <cstdint>
59 #include <cstdlib>
60 #include <optional>
61 #include <utility>
67 /// Enable analysis of recursive PHI nodes.
74 /// SearchLimitReached / SearchTimes shows how often the limit of
75 /// to decompose GEPs is reached. It will affect the precision
76 /// of basic alias analysis.
81 // The max limit of the search depth in DecomposeGEPExpression() and
82 // getUnderlyingObject().
87 // We don't care if this analysis itself is preserved, it has no state. But
88 // we need to check that the analyses it depends on have been. Note that we
89 // may be created without handles to some analyses and in that case don't
90 // depend on them.
95 // Otherwise this analysis result remains valid.
97 }
99 //===----------------------------------------------------------------------===//
100 // Useful predicates
101 //===----------------------------------------------------------------------===//
103 /// Returns the size of the object specified by V or UnknownSize if unknown.
110 ObjectSizeOpts Opts;
116 }
118 /// Returns true if we can prove that the object specified by V is smaller than
119 /// Size.
124 // Note that the meanings of the "object" are slightly different in the
125 // following contexts:
126 // c1: llvm::getObjectSize()
127 // c2: llvm.objectsize() intrinsic
128 // c3: isObjectSmallerThan()
129 // c1 and c2 share the same meaning; however, the meaning of "object" in c3
130 // refers to the "entire object".
131 //
132 // Consider this example:
133 // char *p = (char*)malloc(100)
134 // char *q = p+80;
135 //
136 // In the context of c1 and c2, the "object" pointed by q refers to the
137 // stretch of memory of q[0:19]. So, getObjectSize(q) should return 20.
138 //
139 // However, in the context of c3, the "object" refers to the chunk of memory
140 // being allocated. So, the "object" has 100 bytes, and q points to the middle
141 // the "object". In case q is passed to isObjectSmallerThan() as the 1st
142 // parameter, before the llvm::getObjectSize() is called to get the size of
143 // entire object, we should:
144 // - either rewind the pointer q to the base-address of the object in
145 // question (in this case rewind to p), or
146 // - just give up. It is up to caller to make sure the pointer is pointing
147 // to the base address the object.
148 //
149 // We go for 2nd option for simplicity.
153 // This function needs to use the aligned object size because we allow
154 // reads a bit past the end given sufficient alignment.
159 }
161 /// Return the minimal extent from \p V to the end of the underlying object,
162 /// assuming the result is used in an aliasing query. E.g., we do use the query
163 /// location size and the fact that null pointers cannot alias here.
168 // If we have dereferenceability information we know a lower bound for the
169 // extent as accesses for a lower offset would be valid. We need to exclude
170 // the "or null" part if null is a valid pointer. We can ignore frees, as an
171 // access after free would be undefined behavior.
176 // If queried with a precise location size, we assume that location size to be
177 // accessed, thus valid.
181 }
183 /// Returns true if we can prove that the object specified by V has size Size.
189 }
191 //===----------------------------------------------------------------------===//
192 // CaptureInfo implementations
193 //===----------------------------------------------------------------------===//
200 }
215 }
217 }
219 // No capturing instruction.
225 }
233 }
234 }
236 //===----------------------------------------------------------------------===//
237 // GetElementPtr Instruction Decomposition and Analysis
238 //===----------------------------------------------------------------------===//
241 /// Represents zext(sext(trunc(V))).
255 SExtBits;
256 }
260 }
262 /// Replace V with zext(NewV)
269 // zext(sext(zext(NewV))) == zext(zext(zext(NewV)))
272 }
274 /// Replace V with sext(NewV)
281 // zext(sext(sext(NewV)))
284 }
293 }
302 }
305 // zext(x op<nuw> y) == zext(x) op<nuw> zext(y)
306 // sext(x op<nsw> y) == sext(x) op<nsw> sext(y)
307 // trunc(x op y) == trunc(x) op trunc(y)
309 }
314 }
315 };
317 /// Represents zext(sext(trunc(V))) * Scale + Offset.
319 CastedValue Val;
320 APInt Scale;
321 APInt Offset;
323 /// True if all operations in this expression are NSW.
334 }
337 // The check for zero offset is necessary, because generally
338 // (X +nsw Y) *nsw Z does not imply (X *nsw Z) +nsw (Y *nsw Z).
341 }
342 };
343 }
345 /// Analyzes the specified value as a linear expression: "A*V + B", where A and
346 /// B are constant integers.
350 // Limit our recursion depth.
361 // The only non-OBO case we deal with is or, and only limited to the
362 // case where it is both nuw and nsw.
367 }
371 // While we can distribute over trunc, we cannot preserve nowrap flags
372 // in that case.
379 // We don't understand this instruction, so we can't decompose it any
380 // further.
383 // X|C == X+C if all the bits in C are unset in X. Otherwise we can't
384 // analyze it.
396 }
403 }
410 // We're trying to linearize an expression of the kind:
411 // shl i8 -128, 36
412 // where the shift count exceeds the bitwidth of the type.
413 // We can't decompose this further (the expression would return
414 // a poison value).
424 }
426 }
427 }
440 }
442 /// To ensure a pointer offset fits in an integer of size IndexSize
443 /// (in bits) when that size is smaller than the maximum index size. This is
444 /// an issue, for example, in particular for 32b pointers with negative indices
445 /// that rely on two's complement wrap-arounds for precise alias information
446 /// where the maximum index size is 64b.
451 }
454 // A linear transformation of a Value; this class represents
455 // ZExt(SExt(Trunc(V, TruncBits), SExtBits), ZExtBits) * Scale.
457 CastedValue Val;
458 APInt Scale;
460 // Context instruction to use when querying information about this index.
463 /// True if all operations in this expression are NSW.
466 /// True if the index should be subtracted rather than added. We don't simply
467 /// negate the Scale, to avoid losing the NSW flag: X - INT_MIN*1 may be
468 /// non-wrapping, while X + INT_MIN*(-1) wraps.
475 }
480 }
489 }
490 };
491 }
493 // Represents the internal structure of a GEP, decomposed into a base pointer,
494 // constant offsets, and variable scaled indices.
496 // Base pointer of the GEP
498 // Total constant offset from base.
499 APInt Offset;
500 // Scaled variable (non-constant) indices.
502 // Are all operations inbounds GEPs or non-indexing operations?
503 // (std::nullopt iff expression doesn't involve any geps)
509 }
518 }
520 }
521 };
524 /// If V is a symbolic pointer expression, decompose it into a base pointer
525 /// with a constant offset and a number of scaled symbolic offsets.
526 ///
527 /// The scaled symbolic offsets (represented by pairs of a Value* and a scale
528 /// in the VarIndices vector) are Value*'s that are known to be scaled by the
529 /// specified amount, but which may have other unrepresented high bits. As
530 /// such, the gep cannot necessarily be reconstructed from its decomposed form.
534 // Limit recursion depth to limit compile time in crazy cases.
536 SearchTimes++;
540 DecomposedGEP Decomposed;
543 // See if this is a bitcast or GEP.
546 // The only non-operator case we can handle are GlobalAliases.
551 }
552 }
555 }
561 }
566 // Look through single-arg phi nodes created by LCSSA.
570 }
572 // CaptureTracking can know about special capturing properties of some
573 // intrinsics like launder.invariant.group, that can't be expressed with
574 // the attributes, but have properties like returning aliasing pointer.
575 // Because some analysis may assume that nocaptured pointer is not
576 // returned from some special intrinsic (because function would have to
577 // be marked with returns attribute), it is crucial to use this function
578 // because it should be in sync with CaptureTracking. Not using it may
579 // cause weird miscompilations where 2 aliasing pointers are assumed to
580 // noalias.
584 }
585 }
589 }
591 // Track whether we've seen at least one in bounds gep, and if so, whether
592 // all geps parsed were in bounds.
601 // Walk the indices of the GEP, accumulating them into BaseOff/VarIndices.
604 // Assume all GEP operands are constants until proven otherwise.
609 // Compute the (potentially symbolic) offset in bytes for this index.
611 // For a struct, add the member offset.
618 }
620 // For an array/pointer, add the element offset, explicitly scaled.
625 // Don't attempt to analyze GEPs if the scalable index is not zero.
630 }
635 }
641 }
645 // If the integer type is smaller than the index size, it is implicitly
646 // sign extended or truncated to index size.
653 // Scale by the type size.
659 // If we already had an occurrence of this index variable, merge this
660 // scale into it. For example, we want to handle:
661 // A[x][x] -> x*16 + x*4 -> x*20
662 // This also ensures that 'x' only appears in the index list once.
670 }
671 }
673 // Make sure that we have a scale that makes sense for this target's
674 // index size.
681 }
682 }
684 // Take care of wrap-arounds
688 // Analyze the base pointer next.
692 // If the chain of expressions is too deep, just return early.
694 SearchLimitReached++;
696 }
714 // Ignore allocas if we were instructed to do so.
718 // If the location points to memory that is known to be invariant for
719 // the life of the underlying SSA value, then we can exclude Mod from
720 // the set of valid memory effects.
721 //
722 // An argument that is marked readonly and noalias is known to be
723 // invariant while that function is executing.
728 }
729 }
731 // A global constant can't be mutated.
733 // Note: this doesn't require GV to be "ODR" because it isn't legal for a
734 // global to be marked constant in some modules and non-constant in
735 // others. GV may even be a declaration, not a definition.
739 }
741 // If both select values point to local memory, then so does the select.
746 }
748 // If all values incoming to a phi node point to local memory, then so does
749 // the phi.
751 // Don't bother inspecting phi nodes with many operands.
756 }
758 // Otherwise be conservative.
762 // If we hit the maximum number of instructions to examine, be conservative.
767 }
772 }
774 /// Returns the behavior when calling the given call site.
781 // Operand bundles on the call may also read or write memory, in addition
782 // to the behavior of the called function.
788 }
791 }
793 /// Returns the behavior when calling the given function. For use when the call
794 /// site is not known.
799 // These intrinsics can read arbitrary memory, and additionally modref
800 // inaccessible memory to model control dependence.
803 }
806 }
820 }
822 #ifndef NDEBUG
828 }
834 }
842 }
843 #endif
851 }
853 /// Checks to see if the specified callsite can clobber the specified memory
854 /// object.
855 ///
856 /// Since we only look at local properties of this function, we really can't
857 /// say much about this query. We do, however, use simple "address taken"
858 /// analysis on local objects.
867 // Calls marked 'tail' cannot read or write allocas from the current frame
868 // because the current frame might be destroyed by the time they run. However,
869 // a tail call may use an alloca with byval. Calling with byval copies the
870 // contents of the alloca into argument registers or stack slots, so there is
871 // no lifetime issue.
878 // Stack restore is able to modify unescaped dynamic allocas. Assume it may
879 // modify them even though the alloca is not escaped.
884 // A call can access a locally allocated object either because it is passed as
885 // an argument to the call, or because it has escaped prior to the call.
886 //
887 // Make sure the object has not escaped here, and then check that none of the
888 // call arguments alias the object below.
892 // Optimistically assume that call doesn't touch Object and check this
893 // assumption in the following loop.
902 // Call doesn't access memory through this operand, so we don't care
903 // if it aliases with Object.
907 // If this is a no-capture pointer argument, see if we can tell that it
908 // is impossible to alias the pointer we're checking.
909 AliasResult AR =
912 // Operand doesn't alias 'Object', continue looking for other aliases
915 // Operand aliases 'Object', but call doesn't modify it. Strengthen
916 // initial assumption and keep looking in case if there are more aliases.
920 }
921 // Operand aliases 'Object' but call only writes into it.
925 }
926 // This operand aliases 'Object' and call reads and writes into it.
927 // Setting ModRef will not yield an early return below, MustAlias is not
928 // used further.
931 }
933 // Early return if we improved mod ref information
936 }
938 // If the call is malloc/calloc like, we can assume that it doesn't
939 // modify any IR visible value. This is only valid because we assume these
940 // routines do not read values visible in the IR. TODO: Consider special
941 // casing realloc and strdup routines which access only their arguments as
942 // well. Or alternatively, replace all of this with inaccessiblememonly once
943 // that's implemented fully.
945 // Be conservative if the accessed pointer may alias the allocation -
946 // fallback to the generic handling below.
950 }
952 // Like assumes, invariant.start intrinsics were also marked as arbitrarily
953 // writing so that proper control dependencies are maintained but they never
954 // mod any particular memory location visible to the IR.
955 // *Unlike* assumes (which are now modeled as NoModRef), invariant.start
956 // intrinsic is now modeled as reading memory. This prevents hoisting the
957 // invariant.start intrinsic over stores. Consider:
958 // *ptr = 40;
959 // *ptr = 50;
960 // invariant_start(ptr)
961 // int val = *ptr;
962 // print(val);
963 //
964 // This cannot be transformed to:
965 //
966 // *ptr = 40;
967 // invariant_start(ptr)
968 // *ptr = 50;
969 // int val = *ptr;
970 // print(val);
971 //
972 // The transformation will cause the second store to be ignored (based on
973 // rules of invariant.start) and print 40, while the first program always
974 // prints 50.
978 // Be conservative.
980 }
985 // Guard intrinsics are marked as arbitrarily writing so that proper control
986 // dependencies are maintained but they never mods any particular memory
987 // location.
988 //
989 // *Unlike* assumes, guard intrinsics are modeled as reading memory since the
990 // heap state at the point the guard is issued needs to be consistent in case
991 // the guard invokes the "deopt" continuation.
993 // NB! This function is *not* commutative, so we special case two
994 // possibilities for guard intrinsics.
1006 // Be conservative.
1008 }
1010 /// Return true if we know V to the base address of the corresponding memory
1011 /// object. This implies that any address less than V must be out of bounds
1012 /// for the underlying object. Note that just being isIdentifiedObject() is
1013 /// not enough - For example, a negative offset from a noalias argument or call
1014 /// can be inbounds w.r.t the actual underlying object.
1016 // TODO: We can handle other cases here
1017 // 1) For GC languages, arguments to functions are often required to be
1018 // base pointers.
1019 // 2) Result of allocation routines are often base pointers. Leverage TLI.
1021 }
1023 /// Provides a bunch of ad-hoc rules to disambiguate a GEP instruction against
1024 /// another pointer.
1025 ///
1026 /// We know that V1 is a GEP, but we don't know anything about V2.
1027 /// UnderlyingV1 is getUnderlyingObject(GEP1), UnderlyingV2 is the same for
1028 /// V2.
1034 // TODO: This limitation exists for compile-time reasons. Relax it if we
1035 // can avoid exponential pathological cases.
1039 // If both accesses have unknown size, we can only check whether the base
1040 // objects don't alias.
1041 AliasResult BaseAlias =
1046 }
1051 // Bail if we were not able to decompose anything.
1055 // Subtract the GEP2 pointer from the GEP1 pointer to find out their
1056 // symbolic difference.
1059 // If an inbounds GEP would have to start from an out of bounds address
1060 // for the two to alias, then we can assume noalias.
1061 // TODO: Remove !isScalable() once BasicAA fully support scalable location
1062 // size
1070 // Symmetric case to above.
1076 }
1078 // For GEPs with identical offsets, we can preserve the size and AAInfo
1079 // when performing the alias check on the underlying objects.
1084 // Do the base pointers alias?
1085 AliasResult BaseAlias =
1089 // If we get a No or May, then return it immediately, no amount of analysis
1090 // will improve this situation.
1095 }
1097 // Bail on analysing scalable LocationSize
1101 // If there is a constant difference between the pointers, but the difference
1102 // is less than the size of the associated memory object, then we know
1103 // that the objects are partially overlapping. If the difference is
1104 // greater, we know they do not overlap.
1108 // Initialize for Off >= 0 (V2 <= GEP1) case.
1116 // Swap if we have the situation where:
1117 // + +
1118 // | BaseOffset |
1119 // ---------------->|
1120 // |-->V1Size |-------> V2Size
1121 // GEP1 V2
1125 }
1132 // Conservatively drop processing if a phi was visited and/or offset is
1133 // too big.
1137 // Memory referenced by right pointer is nested. Save the offset in
1138 // cache. Note that originally offset estimated as GEP1-V2, but
1139 // AliasResult contains the shift that represents GEP1+Offset=V2.
1142 }
1144 }
1146 }
1148 // We need to know both acess sizes for all the following heuristics.
1152 APInt GCD;
1159 ScaleForGCD =
1164 else
1169 KnownBits Known =
1180 else
1185 else
1187 }
1189 // We now have accesses at two offsets from the same base:
1190 // 1. (...)*GCD + DecompGEP1.Offset with size V1Size
1191 // 2. 0 with size V2Size
1192 // Using arithmetic modulo GCD, the accesses are at
1193 // [ModOffset..ModOffset+V1Size) and [0..V2Size). If the first access fits
1194 // into the range [V2Size..GCD), then we know they cannot overlap.
1202 // Compute ranges of potentially accessed bytes for both accesses. If the
1203 // interseciton is empty, there can be no overlap.
1207 ConstantRange Range2 =
1212 // Try to determine the range of values for VarIndex such that
1213 // VarIndex <= -MinAbsVarIndex || MinAbsVarIndex <= VarIndex.
1216 // VarIndex = Scale*V.
1220 // If V != 0, then abs(VarIndex) > 0.
1223 // Check if abs(V*Scale) >= abs(Scale) holds in the presence of
1224 // potentially wrapping math.
1230 // If Scale is small enough so that abs(V*Scale) >= abs(Scale) holds.
1231 // The max value of abs(V) is 2^ValOrigBW - 1. Multiplying with a
1232 // constant smaller than 2^(bitwidth(Val) - ValOrigBW) won't wrap.
1238 };
1239 // Refine MinAbsVarIndex, if abs(Scale*V) >= abs(Scale) holds in the
1240 // presence of potentially wrapping math.
1242 // If V != 0 then abs(VarIndex) >= abs(Scale).
1244 }
1245 }
1247 // VarIndex = Scale*V0 + (-Scale)*V1.
1248 // If V0 != V1 then abs(VarIndex) >= abs(Scale).
1249 // Check that MayBeCrossIteration is false, to avoid reasoning about
1250 // inequality of values across loop iterations.
1256 DT))
1258 }
1261 // The constant offset will have added at least +/-MinAbsVarIndex to it.
1264 // We know that Offset <= OffsetLo || Offset >= OffsetHi
1268 }
1273 // Statically, we can see that the base objects are the same, but the
1274 // pointers have dynamic offsets which we can't resolve. And none of our
1275 // little tricks above worked.
1277 }
1280 // If the results agree, take it.
1283 // A mix of PartialAlias and MustAlias is PartialAlias.
1287 // Otherwise, we don't know anything.
1289 }
1291 /// Provides a bunch of ad-hoc rules to disambiguate a Select instruction
1292 /// against another.
1293 AliasResult
1297 // If the values are Selects with the same condition, we can do a more precise
1298 // check: just check for aliases between the values on corresponding arms.
1301 AAQI)) {
1302 AliasResult Alias =
1307 AliasResult ThisAlias =
1311 }
1313 // If both arms of the Select node NoAlias or MustAlias V2, then returns
1314 // NoAlias / MustAlias. Otherwise, returns MayAlias.
1320 AliasResult ThisAlias =
1324 }
1326 /// Provide a bunch of ad-hoc rules to disambiguate a PHI instruction against
1327 /// another.
1333 // If the values are PHIs in the same block, we can do a more precise
1334 // as well as efficient check: just check for aliases between the values
1335 // on corresponding edges.
1344 AAQI);
1347 else
1351 }
1353 }
1356 // If a phi operand recurses back to the phi, we can still determine NoAlias
1357 // if we don't alias the underlying objects of the other phi operands, as we
1358 // know that the recursive phi needs to be based on them in some way.
1366 }
1368 };
1373 // Skip the phi itself being the incoming value.
1379 // To control potential compile time explosion, we choose to be
1380 // conserviate when we have more than one Phi input. It is important
1381 // that we handle the single phi case as that lets us handle LCSSA
1382 // phi nodes and (combined with the recursive phi handling) simple
1383 // pointer induction variable patterns.
1385 }
1387 }
1394 }
1397 // Out of an abundance of caution, allow only the trivial lcssa and
1398 // recursive phi cases.
1401 // If V1Srcs is empty then that means that the phi has no underlying non-phi
1402 // value. This should only be possible in blocks unreachable from the entry
1403 // block, but return MayAlias just in case.
1407 // If this PHI node is recursive, indicate that the pointer may be moved
1408 // across iterations. We can only prove NoAlias if different underlying
1409 // objects are involved.
1413 // In the recursive alias queries below, we may compare values from two
1414 // different loop iterations.
1420 // Early exit if the check of the first PHI source against V2 is MayAlias.
1421 // Other results are not possible.
1424 // With recursive phis we cannot guarantee that MustAlias/PartialAlias will
1425 // remain valid to all elements and needs to conservatively return MayAlias.
1429 // If all sources of the PHI node NoAlias or MustAlias V2, then returns
1430 // NoAlias / MustAlias. Otherwise, returns MayAlias.
1439 }
1442 }
1444 /// Provides a bunch of ad-hoc rules to disambiguate in common cases, such as
1445 /// array references.
1450 // If either of the memory references is empty, it doesn't matter what the
1451 // pointer values are.
1455 // Strip off any casts if they exist.
1459 // If V1 or V2 is undef, the result is NoAlias because we can always pick a
1460 // value for undef that aliases nothing in the program.
1464 // Are we checking for alias of the same value?
1465 // Because we look 'through' phi nodes, we could look at "Value" pointers from
1466 // different iterations. We must therefore make sure that this is not the
1467 // case. The function isValueEqualInPotentialCycles ensures that this cannot
1468 // happen by looking at the visited phi nodes and making sure they cannot
1469 // reach the value.
1476 // Figure out what objects these things are pointing to if we can.
1480 // Null values in the default address space don't point to any object, so they
1481 // don't alias any other pointer.
1490 // If V1/V2 point to two different objects, we know that we have no alias.
1494 // Constant pointers can't alias with non-const isIdentifiedObject objects.
1499 // Function arguments can't alias with things that are known to be
1500 // unambigously identified at the function level.
1505 // If one pointer is the result of a call/invoke or load and the other is a
1506 // non-escaping local object within the same function, then we know the
1507 // object couldn't escape to a point where the call could return it.
1508 //
1509 // Note that if the pointers are in different functions, there are a
1510 // variety of complications. A call with a nocapture argument may still
1511 // temporary store the nocapture argument's value in a temporary memory
1512 // location if that memory location doesn't escape. Or it may pass a
1513 // nocapture value to other functions as long as they don't capture it.
1520 }
1522 // If the size of one access is larger than the entire object on the other
1523 // side, then we know such behavior is undefined and can assume no alias.
1546 // This is often a no-op; instcombine rewrites this for us. No-op
1547 // getUnderlyingObject calls are fast, though.
1555 }
1556 }
1557 }
1558 }
1560 // If one the accesses may be before the accessed pointer, canonicalize this
1561 // by using unknown after-pointer sizes for both accesses. This is
1562 // equivalent, because regardless of which pointer is lower, one of them
1563 // will always came after the other, as long as the underlying objects aren't
1564 // disjoint. We do this so that the rest of BasicAA does not have to deal
1565 // with accesses before the base pointer, and to improve cache utilization by
1566 // merging equivalent states.
1570 }
1572 // FIXME: If this depth limit is hit, then we may cache sub-optimal results
1573 // for recursive queries. For this reason, this limit is chosen to be large
1574 // enough to be very rarely hit, while still being small enough to avoid
1575 // stack overflows.
1579 // Check the cache before climbing up use-def chains. This also terminates
1580 // otherwise infinitely recursive queries. Include MayBeCrossIteration in the
1581 // cache key, because some cases where MayBeCrossIteration==false returns
1582 // MustAlias or NoAlias may become MayAlias under MayBeCrossIteration==true.
1593 // Remember that we used an assumption.
1596 }
1597 // Cache contains sorted {V1,V2} pairs but we should return original order.
1601 }
1605 AliasResult Result =
1612 // Check whether a NoAlias assumption has been used, but disproven.
1618 // This is a definitive result now, when considered as a root query.
1621 // Cache contains sorted {V1,V2} pairs.
1625 // If the assumption has been disproven, remove any results that may have
1626 // been based on this assumption. Do this after the Entry updates above to
1627 // avoid iterator invalidation.
1632 // The result may still be based on assumptions higher up in the chain.
1633 // Remember it, so it can be purged from the cache later.
1638 }
1653 }
1664 }
1675 }
1677 // If both pointers are pointing into the same object and one of them
1678 // accesses the entire object, then the accesses must overlap in some way.
1685 }
1688 }
1690 /// Check whether two Values can be considered equivalent.
1691 ///
1692 /// If the values may come from different cycle iterations, this will also
1693 /// check that the values are not part of cycle. We have to do this because we
1694 /// are looking through phi nodes, that is we say
1695 /// noalias(V, phi(VA, VB)) if noalias(V, VA) and noalias(V, VB).
1705 // Non-instructions and instructions in the entry block cannot be part of
1706 // a loop.
1711 // Check whether the instruction is part of a cycle, by checking whether the
1712 // block can (non-trivially) reach itself.
1717 }
1719 /// Computes the symbolic difference between two de-composed GEPs.
1725 // Find V in Dest. This is N^2, but pointer indices almost never have more
1726 // than a few variable indexes.
1734 // Normalize IsNegated if we're going to lose the NSW flag anyway.
1739 }
1741 // If we found it, subtract off Scale V's from the entry in Dest. If it
1742 // goes to zero, remove the entry.
1748 }
1751 }
1753 // If we didn't consume this entry, add it to the end of the Dest list.
1758 }
1759 }
1760 }
1763 LocationSize MaybeV1Size,
1764 LocationSize MaybeV2Size,
1782 // We'll strip off the Extensions of Var0 and Var1 and do another round
1783 // of GetLinearExpression decomposition. In the example above, if Var0
1784 // is zext(%x + 1) we should get V1 == %x and V1Offset == 1.
1786 LinearExpression E0 =
1788 LinearExpression E1 =
1794 // We have a hit - Var0 and Var1 only differ by a constant offset!
1796 // If we've been sext'ed then zext'd the maximum difference between Var0 and
1797 // Var1 is possible to calculate, but we're just interested in the absolute
1798 // minimum difference between the two. The minimum distance may occur due to
1799 // wrapping; consider "add i3 %i, 5": if %i == 7 then 7 + 5 mod 8 == 4, and so
1800 // the minimum distance between %i and %i + 5 is 3.
1803 APInt MinDiffBytes =
1806 // We can't definitely say whether GEP1 is before or after V2 due to wrapping
1807 // arithmetic (i.e. for some values of GEP1 and V2 GEP1 < V2, and for other
1808 // values GEP1 > V2). We'll therefore only declare NoAlias if both V1Size and
1809 // V2Size can fit in the MinDiffBytes gap.
1812 }
1814 //===----------------------------------------------------------------------===//
1815 // BasicAliasAnalysis Pass
1816 //===----------------------------------------------------------------------===//
1825 }
1829 }
1845 }
1857 }
1864 }