| blob | c165542019532c462a23f9df6fad783773c27b56 |
1 //=== WebAssemblyLowerEmscriptenEHSjLj.cpp - Lower exceptions for Emscripten =//
2 //
3 // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
4 // See https://llvm.org/LICENSE.txt for license information.
5 // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
6 //
7 //===----------------------------------------------------------------------===//
8 ///
9 /// \file
10 /// This file lowers exception-related instructions and setjmp/longjmp function
11 /// calls to use Emscripten's library functions. The pass uses JavaScript's try
12 /// and catch mechanism in case of Emscripten EH/SjLj and Wasm EH intrinsics in
13 /// case of Emscripten SjLJ.
14 ///
15 /// * Emscripten exception handling
16 /// This pass lowers invokes and landingpads into library functions in JS glue
17 /// code. Invokes are lowered into function wrappers called invoke wrappers that
18 /// exist in JS side, which wraps the original function call with JS try-catch.
19 /// If an exception occurred, cxa_throw() function in JS side sets some
20 /// variables (see below) so we can check whether an exception occurred from
21 /// wasm code and handle it appropriately.
22 ///
23 /// * Emscripten setjmp-longjmp handling
24 /// This pass lowers setjmp to a reasonably-performant approach for emscripten.
25 /// The idea is that each block with a setjmp is broken up into two parts: the
26 /// part containing setjmp and the part right after the setjmp. The latter part
27 /// is either reached from the setjmp, or later from a longjmp. To handle the
28 /// longjmp, all calls that might longjmp are also called using invoke wrappers
29 /// and thus JS / try-catch. JS longjmp() function also sets some variables so
30 /// we can check / whether a longjmp occurred from wasm code. Each block with a
31 /// function call that might longjmp is also split up after the longjmp call.
32 /// After the longjmp call, we check whether a longjmp occurred, and if it did,
33 /// which setjmp it corresponds to, and jump to the right post-setjmp block.
34 /// We assume setjmp-longjmp handling always run after EH handling, which means
35 /// we don't expect any exception-related instructions when SjLj runs.
36 /// FIXME Currently this scheme does not support indirect call of setjmp,
37 /// because of the limitation of the scheme itself. fastcomp does not support it
38 /// either.
39 ///
40 /// In detail, this pass does following things:
41 ///
42 /// 1) Assumes the existence of global variables: __THREW__, __threwValue
43 /// __THREW__ and __threwValue are defined in compiler-rt in Emscripten.
44 /// These variables are used for both exceptions and setjmp/longjmps.
45 /// __THREW__ indicates whether an exception or a longjmp occurred or not. 0
46 /// means nothing occurred, 1 means an exception occurred, and other numbers
47 /// mean a longjmp occurred. In the case of longjmp, __THREW__ variable
48 /// indicates the corresponding setjmp buffer the longjmp corresponds to.
49 /// __threwValue is 0 for exceptions, and the argument to longjmp in case of
50 /// longjmp.
51 ///
52 /// * Emscripten exception handling
53 ///
54 /// 2) We assume the existence of setThrew and setTempRet0/getTempRet0 functions
55 /// at link time. setThrew exists in Emscripten's compiler-rt:
56 ///
57 /// void setThrew(uintptr_t threw, int value) {
58 /// if (__THREW__ == 0) {
59 /// __THREW__ = threw;
60 /// __threwValue = value;
61 /// }
62 /// }
63 //
64 /// setTempRet0 is called from __cxa_find_matching_catch() in JS glue code.
65 /// In exception handling, getTempRet0 indicates the type of an exception
66 /// caught, and in setjmp/longjmp, it means the second argument to longjmp
67 /// function.
68 ///
69 /// 3) Lower
70 /// invoke @func(arg1, arg2) to label %invoke.cont unwind label %lpad
71 /// into
72 /// __THREW__ = 0;
73 /// call @__invoke_SIG(func, arg1, arg2)
74 /// %__THREW__.val = __THREW__;
75 /// __THREW__ = 0;
76 /// if (%__THREW__.val == 1)
77 /// goto %lpad
78 /// else
79 /// goto %invoke.cont
80 /// SIG is a mangled string generated based on the LLVM IR-level function
81 /// signature. After LLVM IR types are lowered to the target wasm types,
82 /// the names for these wrappers will change based on wasm types as well,
83 /// as in invoke_vi (function takes an int and returns void). The bodies of
84 /// these wrappers will be generated in JS glue code, and inside those
85 /// wrappers we use JS try-catch to generate actual exception effects. It
86 /// also calls the original callee function. An example wrapper in JS code
87 /// would look like this:
88 /// function invoke_vi(index,a1) {
89 /// try {
90 /// Module["dynCall_vi"](index,a1); // This calls original callee
91 /// } catch(e) {
92 /// if (typeof e !== 'number' && e !== 'longjmp') throw e;
93 /// _setThrew(1, 0); // setThrew is called here
94 /// }
95 /// }
96 /// If an exception is thrown, __THREW__ will be set to true in a wrapper,
97 /// so we can jump to the right BB based on this value.
98 ///
99 /// 4) Lower
100 /// %val = landingpad catch c1 catch c2 catch c3 ...
101 /// ... use %val ...
102 /// into
103 /// %fmc = call @__cxa_find_matching_catch_N(c1, c2, c3, ...)
104 /// %val = {%fmc, getTempRet0()}
105 /// ... use %val ...
106 /// Here N is a number calculated based on the number of clauses.
107 /// setTempRet0 is called from __cxa_find_matching_catch() in JS glue code.
108 ///
109 /// 5) Lower
110 /// resume {%a, %b}
111 /// into
112 /// call @__resumeException(%a)
113 /// where __resumeException() is a function in JS glue code.
114 ///
115 /// 6) Lower
116 /// call @llvm.eh.typeid.for(type) (intrinsic)
117 /// into
118 /// call @llvm_eh_typeid_for(type)
119 /// llvm_eh_typeid_for function will be generated in JS glue code.
120 ///
121 /// * Emscripten setjmp / longjmp handling
122 ///
123 /// If there are calls to longjmp()
124 ///
125 /// 1) Lower
126 /// longjmp(env, val)
127 /// into
128 /// emscripten_longjmp(env, val)
129 ///
130 /// If there are calls to setjmp()
131 ///
132 /// 2) In the function entry that calls setjmp, initialize setjmpTable and
133 /// sejmpTableSize as follows:
134 /// setjmpTableSize = 4;
135 /// setjmpTable = (int *) malloc(40);
136 /// setjmpTable[0] = 0;
137 /// setjmpTable and setjmpTableSize are used to call saveSetjmp() function in
138 /// Emscripten compiler-rt.
139 ///
140 /// 3) Lower
141 /// setjmp(env)
142 /// into
143 /// setjmpTable = saveSetjmp(env, label, setjmpTable, setjmpTableSize);
144 /// setjmpTableSize = getTempRet0();
145 /// For each dynamic setjmp call, setjmpTable stores its ID (a number which
146 /// is incrementally assigned from 0) and its label (a unique number that
147 /// represents each callsite of setjmp). When we need more entries in
148 /// setjmpTable, it is reallocated in saveSetjmp() in Emscripten's
149 /// compiler-rt and it will return the new table address, and assign the new
150 /// table size in setTempRet0(). saveSetjmp also stores the setjmp's ID into
151 /// the buffer 'env'. A BB with setjmp is split into two after setjmp call in
152 /// order to make the post-setjmp BB the possible destination of longjmp BB.
153 ///
154 /// 4) Lower every call that might longjmp into
155 /// __THREW__ = 0;
156 /// call @__invoke_SIG(func, arg1, arg2)
157 /// %__THREW__.val = __THREW__;
158 /// __THREW__ = 0;
159 /// %__threwValue.val = __threwValue;
160 /// if (%__THREW__.val != 0 & %__threwValue.val != 0) {
161 /// %label = testSetjmp(mem[%__THREW__.val], setjmpTable,
162 /// setjmpTableSize);
163 /// if (%label == 0)
164 /// emscripten_longjmp(%__THREW__.val, %__threwValue.val);
165 /// setTempRet0(%__threwValue.val);
166 /// } else {
167 /// %label = -1;
168 /// }
169 /// longjmp_result = getTempRet0();
170 /// switch %label {
171 /// label 1: goto post-setjmp BB 1
172 /// label 2: goto post-setjmp BB 2
173 /// ...
174 /// default: goto splitted next BB
175 /// }
176 /// testSetjmp examines setjmpTable to see if there is a matching setjmp
177 /// call. After calling an invoke wrapper, if a longjmp occurred, __THREW__
178 /// will be the address of matching jmp_buf buffer and __threwValue be the
179 /// second argument to longjmp. mem[%__THREW__.val] is a setjmp ID that is
180 /// stored in saveSetjmp. testSetjmp returns a setjmp label, a unique ID to
181 /// each setjmp callsite. Label 0 means this longjmp buffer does not
182 /// correspond to one of the setjmp callsites in this function, so in this
183 /// case we just chain the longjmp to the caller. Label -1 means no longjmp
184 /// occurred. Otherwise we jump to the right post-setjmp BB based on the
185 /// label.
186 ///
187 /// * Wasm setjmp / longjmp handling
188 /// This mode still uses some Emscripten library functions but not JavaScript's
189 /// try-catch mechanism. It instead uses Wasm exception handling intrinsics,
190 /// which will be lowered to exception handling instructions.
191 ///
192 /// If there are calls to longjmp()
193 ///
194 /// 1) Lower
195 /// longjmp(env, val)
196 /// into
197 /// __wasm_longjmp(env, val)
198 ///
199 /// If there are calls to setjmp()
200 ///
201 /// 2) and 3): The same as 2) and 3) in Emscripten SjLj.
202 /// (setjmpTable/setjmpTableSize initialization + setjmp callsite
203 /// transformation)
204 ///
205 /// 4) Create a catchpad with a wasm.catch() intrinsic, which returns the value
206 /// thrown by __wasm_longjmp function. In Emscripten library, we have this
207 /// struct:
208 ///
209 /// struct __WasmLongjmpArgs {
210 /// void *env;
211 /// int val;
212 /// };
213 /// struct __WasmLongjmpArgs __wasm_longjmp_args;
214 ///
215 /// The thrown value here is a pointer to __wasm_longjmp_args struct object. We
216 /// use this struct to transfer two values by throwing a single value. Wasm
217 /// throw and catch instructions are capable of throwing and catching multiple
218 /// values, but it also requires multivalue support that is currently not very
219 /// reliable.
220 /// TODO Switch to throwing and catching two values without using the struct
221 ///
222 /// All longjmpable function calls will be converted to an invoke that will
223 /// unwind to this catchpad in case a longjmp occurs. Within the catchpad, we
224 /// test the thrown values using testSetjmp function as we do for Emscripten
225 /// SjLj. The main difference is, in Emscripten SjLj, we need to transform every
226 /// longjmpable callsite into a sequence of code including testSetjmp() call; in
227 /// Wasm SjLj we do the testing in only one place, in this catchpad.
228 ///
229 /// After testing calling testSetjmp(), if the longjmp does not correspond to
230 /// one of the setjmps within the current function, it rethrows the longjmp
231 /// by calling __wasm_longjmp(). If it corresponds to one of setjmps in the
232 /// function, we jump to the beginning of the function, which contains a switch
233 /// to each post-setjmp BB. Again, in Emscripten SjLj, this switch is added for
234 /// every longjmpable callsite; in Wasm SjLj we do this only once at the top of
235 /// the function. (after setjmpTable/setjmpTableSize initialization)
236 ///
237 /// The below is the pseudocode for what we have described
238 ///
239 /// entry:
240 /// Initialize setjmpTable and setjmpTableSize
241 ///
242 /// setjmp.dispatch:
243 /// switch %label {
244 /// label 1: goto post-setjmp BB 1
245 /// label 2: goto post-setjmp BB 2
246 /// ...
247 /// default: goto splitted next BB
248 /// }
249 /// ...
250 ///
251 /// bb:
252 /// invoke void @foo() ;; foo is a longjmpable function
253 /// to label %next unwind label %catch.dispatch.longjmp
254 /// ...
255 ///
256 /// catch.dispatch.longjmp:
257 /// %0 = catchswitch within none [label %catch.longjmp] unwind to caller
258 ///
259 /// catch.longjmp:
260 /// %longjmp.args = wasm.catch() ;; struct __WasmLongjmpArgs
261 /// %env = load 'env' field from __WasmLongjmpArgs
262 /// %val = load 'val' field from __WasmLongjmpArgs
263 /// %label = testSetjmp(mem[%env], setjmpTable, setjmpTableSize);
264 /// if (%label == 0)
265 /// __wasm_longjmp(%env, %val)
266 /// catchret to %setjmp.dispatch
267 ///
268 ///===----------------------------------------------------------------------===//
293 "exception handling is enabled (see emscripten "
316 // type of 'struct __WasmLongjmpArgs' defined in emscripten
319 // __cxa_find_matching_catch_N functions.
320 // Indexed by the number of clauses in an original landingpad instruction.
322 // Map of <function signature string, invoke_ wrappers>
324 // Set of allowed function names for exception handling
326 // Functions that contains calls to setjmp
331 }
340 void
359 }
376 }
381 }
382 };
392 }
396 // Intrinsics cannot throw
400 // leave setjmp and longjmp (mostly) alone, we process them properly later
404 }
405 // not a function, so an indirect call - can throw, we can't tell
407 }
409 // Get a thread-local global variable with the given name. If it doesn't exist
410 // declare it, which will generate an import and assume that it will exist at
411 // link time.
419 // Variables created by this function are thread local. If the target does not
420 // support TLS, we depend on CoalesceFeaturesAndStripAtomics to downgrade it
421 // to non-thread-local ones, in which case we don't allow this object to be
422 // linked with other objects using shared memory.
425 }
427 // Simple function name mangler.
428 // This function simply takes LLVM's string representation of parameter types
429 // and concatenate them with '_'. There are non-alphanumeric characters but llc
430 // is ok with it, and we need to postprocess these names after the lowering
431 // phase anyway.
442 // When s2wasm parses .s file, a comma means the end of an argument. So a
443 // mangled function name can contain any character but a comma.
446 }
451 // Tell the linker that this function is expected to be imported from the
452 // 'env' module.
457 }
462 }
464 }
466 // Returns an integer type for the target architecture's address space.
467 // i32 for wasm32 and i64 for wasm64.
471 }
473 // Returns an integer pointer type for the target architecture's address space.
474 // i32* for wasm32 and i64* for wasm64.
478 }
480 // Returns an integer whose type is the integer type for the target's address
481 // space. Returns (i32 C) for wasm32 and (i64 C) for wasm64, when C is the
482 // integer.
486 }
488 // Returns __cxa_find_matching_catch_N function, where N = NumClauses + 2.
489 // This is because a landingpad instruction contains two more arguments, a
490 // personality function and a cleanup bit, and __cxa_find_matching_catch_N
491 // functions are named after the number of arguments in the original landingpad
492 // instruction.
493 Function *
505 }
507 // Generate invoke wrapper seqence with preamble and postamble
508 // Preamble:
509 // __THREW__ = 0;
510 // Postamble:
511 // %__THREW__.val = __THREW__; __THREW__ = 0;
512 // Returns %__THREW__.val, which indicates whether an exception is thrown (or
513 // whether longjmp occurred), for future use.
521 // Pre-invoke
522 // __THREW__ = 0;
525 // Invoke function wrapper in JavaScript
527 // Put the pointer to the callee as first argument, so it can be called
528 // within the invoke wrapper later
536 // Because we added the pointer to the callee as first argument, all
537 // argument attribute indices have to be incremented by one.
541 // No attributes for the callee pointer.
543 // Copy the argument attributes from the original
549 // The allocsize attribute (if any) referes to parameters by index and needs
550 // to be adjusted.
558 }
559 // In case the callee has 'noreturn' attribute, We need to remove it, because
560 // we expect invoke wrappers to return.
563 // Reconstruct the AttributesList based on the vector we constructed.
570 // Post-invoke
571 // %__THREW__.val = __THREW__; __THREW__ = 0;
576 }
578 // Get matching invoke wrapper based on callee signature
588 // Put the pointer to the callee as first argument
590 // Add argument types
598 }
605 // Attempting to transform inline assembly will result in something like:
606 // call void @__invoke_void(void ()* asm ...)
607 // which is invalid because inline assembly blocks do not have addresses
608 // and can't be passed by pointer. The result is a crash with illegal IR.
613 // TODO Include more functions or consider checking with mangled prefixes
615 // The reason we include malloc/free here is to exclude the malloc/free
616 // calls generated in setjmp prep / cleanup routines.
620 // There are functions in Emscripten's JS glue code or compiler-rt
626 // __cxa_find_matching_catch_N functions cannot longjmp
630 // Exception-catching related functions
631 //
632 // We intentionally treat __cxa_end_catch longjmpable in Wasm SjLj even though
633 // it surely cannot longjmp, in order to maintain the unwind relationship from
634 // all existing catchpads (and calls within them) to catch.dispatch.longjmp.
635 //
636 // In Wasm EH + Wasm SjLj, we
637 // 1. Make all catchswitch and cleanuppad that unwind to caller unwind to
638 // catch.dispatch.longjmp instead
639 // 2. Convert all longjmpable calls to invokes that unwind to
640 // catch.dispatch.longjmp
641 // But catchswitch BBs are removed in isel, so if an EH catchswitch (generated
642 // from an exception)'s catchpad does not contain any calls that are converted
643 // into invokes unwinding to catch.dispatch.longjmp, this unwind relationship
644 // (EH catchswitch BB -> catch.dispatch.longjmp BB) is lost and
645 // catch.dispatch.longjmp BB can be placed before the EH catchswitch BB in
646 // CFGSort.
647 // int ret = setjmp(buf);
648 // try {
649 // foo(); // longjmps
650 // } catch (...) {
651 // }
652 // Then in this code, if 'foo' longjmps, it first unwinds to 'catch (...)'
653 // catchswitch, and is not caught by that catchswitch because it is a longjmp,
654 // then it should next unwind to catch.dispatch.longjmp BB. But if this 'catch
655 // (...)' catchswitch -> catch.dispatch.longjmp unwind relationship is lost,
656 // it will not unwind to catch.dispatch.longjmp, producing an incorrect
657 // result.
658 //
659 // Every catchpad generated by Wasm C++ contains __cxa_end_catch, so we
660 // intentionally treat it as longjmpable to work around this problem. This is
661 // a hacky fix but an easy one.
662 //
663 // The comment block in findWasmUnwindDestinations() in
664 // SelectionDAGBuilder.cpp is addressing a similar problem.
672 // std::terminate, which is generated when another exception occurs while
673 // handling an exception, cannot longjmp.
677 // Otherwise we don't know
679 }
683 // This is an exhaustive list from Emscripten's <emscripten/em_asm.h>.
689 }
691 // Generate testSetjmp function call seqence with preamble and postamble.
692 // The code this generates is equivalent to the following JavaScript code:
693 // %__threwValue.val = __threwValue;
694 // if (%__THREW__.val != 0 & %__threwValue.val != 0) {
695 // %label = testSetjmp(mem[%__THREW__.val], setjmpTable, setjmpTableSize);
696 // if (%label == 0)
697 // emscripten_longjmp(%__THREW__.val, %__threwValue.val);
698 // setTempRet0(%__threwValue.val);
699 // } else {
700 // %label = -1;
701 // }
702 // %longjmp_result = getTempRet0();
703 //
704 // As output parameters. returns %label, %longjmp_result, and the BB the last
705 // instruction (%longjmp_result = ...) is in.
717 // if (%__THREW__.val != 0 & %__threwValue.val != 0)
729 // Generate call.em.longjmp BB once and share it within the function
731 // emscripten_longjmp(%__THREW__.val, %__threwValue.val);
735 CallEmLongjmpBBThrewValuePHI =
745 }
747 // %label = testSetjmp(mem[%__THREW__.val], setjmpTable, setjmpTableSize);
748 // if (%label == 0)
760 // setTempRet0(%__threwValue.val);
768 // longjmp_result = getTempRet0();
775 // Output parameter assignment
779 }
785 SSAUpdaterBulk SSA;
789 // If a value is defined by an invoke instruction, it is only available in
790 // its normal destination and not in its unwind destination.
793 else
803 }
804 }
805 }
807 }
809 // Replace uses of longjmp with a new longjmp function in Emscripten library.
810 // In Emscripten SjLj, the new function is
811 // void emscripten_longjmp(uintptr_t, i32)
812 // In Wasm SjLj, the new function is
813 // void __wasm_longjmp(i8*, i32)
814 // Because the original libc longjmp function takes (jmp_buf*, i32), we need a
815 // ptrtoint/bitcast instruction here to make the type match. jmp_buf* will
816 // eventually be lowered to i32/i64 in the wasm backend.
825 // For calls to longjmp, replace it with emscripten_longjmp/__wasm_longjmp and
826 // cast its first argument (jmp_buf*) appropriately
833 Env =
836 Env =
840 }
841 }
845 // If we have any remaining uses of longjmp's function pointer, replace it
846 // with (void(*)(jmp_buf*, int))emscripten_longjmp / __wasm_longjmp.
851 }
852 }
861 }
863 // When a function contains a setjmp call but not other calls that can longjmp,
864 // we don't do setjmp transformation for that setjmp. But we need to convert the
865 // setjmp calls into "i32 0" so they don't cause link time errors. setjmp always
866 // returns 0 when called directly.
879 // setjmp cannot throw. So if it is an invoke, lower it to a call
882 else
886 }
889 }
900 // In some platforms _setjmp and _longjmp are used instead. Change these to
901 // use setjmp/longjmp instead, because we later detect these functions by
902 // their names.
912 }
914 }
923 }
925 }
931 // Declare (or get) global variables __THREW__, __threwValue, and
932 // getTempRet0/setTempRet0 function which are used in common for both
933 // exception handling and setjmp/longjmp handling
946 // Function registration for exception handling
948 // Register __resumeException function
954 // Register llvm_eh_typeid_for function
958 }
960 // Functions that contains calls to setjmp but don't have other longjmpable
961 // calls within them.
965 // Precompute setjmp users
969 // If a function that calls setjmp does not contain any other calls that
970 // can longjmp, we don't need to do any transformation on that function,
971 // so can ignore it
974 else
982 }
983 }
984 }
990 // Function registration and data pre-gathering for setjmp/longjmp handling
994 // Register emscripten_longjmp function
1000 // Register __wasm_longjmp function, which calls __builtin_wasm_longjmp.
1005 }
1008 // Register saveSetjmp function
1017 // Register testSetjmp function
1024 // wasm.catch() will be lowered down to wasm 'catch' instruction in
1025 // instruction selection.
1027 // Type for struct __WasmLongjmpArgs
1030 );
1031 }
1032 }
1034 // Exception handling transformation
1040 }
1041 }
1043 // Setjmp/longjmp handling transformation
1048 // Only traverse functions that uses setjmp in order not to insert
1049 // unnecessary prep / cleanup code in every function
1053 }
1055 // Replace unnecessary setjmp calls with 0
1061 }
1063 // Delete unused global variables and functions
1073 }
1083 // rethrow.longjmp BB that will be shared within the function.
1085 // PHI node for the loaded value of __THREW__ global variable in
1086 // rethrow.longjmp BB
1100 // Wrap invoke with invoke wrapper and generate preamble/postamble
1104 // If setjmp/longjmp handling is enabled, the thrown value can be not an
1105 // exception but a longjmp. If the current function contains calls to
1106 // setjmp, it will be appropriately handled in runSjLjOnFunction. But even
1107 // if the function does not contain setjmp calls, we shouldn't silently
1108 // ignore longjmps; we should rethrow them so they can be correctly
1109 // handled in somewhere up the call chain where setjmp is. __THREW__'s
1110 // value is 0 when nothing happened, 1 when an exception is thrown, and
1111 // other values when longjmp is thrown.
1112 //
1113 // if (%__THREW__.val == 0 || %__THREW__.val == 1)
1114 // goto %tail
1115 // else
1116 // goto %longjmp.rethrow
1117 //
1118 // rethrow.longjmp: ;; This is longjmp. Rethrow it
1119 // %__threwValue.val = __threwValue
1120 // emscripten_longjmp(%__THREW__.val, %__threwValue.val);
1121 //
1122 // tail: ;; Nothing happened or an exception is thrown
1123 // ... Continue exception handling ...
1126 // Create longjmp.rethrow BB once and share it within the function
1130 RethrowLongjmpBBThrewPHI =
1139 }
1151 }
1153 // Insert a branch based on __THREW__ variable
1158 // This can't throw, and we don't need this invoke, just replace it with a
1159 // call+branch
1161 }
1162 }
1164 // Process resume instructions
1166 // Scan the body of the basic block for resumes
1173 // Split the input into legal values
1177 // Create a call to __resumeException function
1179 // Add a terminator to the block
1182 }
1183 }
1185 // Process llvm.eh.typeid.for intrinsics
1203 }
1204 }
1206 // Look for orphan landingpads, can occur in blocks with no predecessors
1211 }
1214 // Handle all the landingpad for this function together, as multiple invokes
1215 // may share a single lp
1221 // TODO Handle filters (= exception specifications).
1222 // https://bugs.llvm.org/show_bug.cgi?id=50396
1225 }
1227 // Create a call to __cxa_find_matching_catch_N function
1237 }
1239 // Erase everything we no longer need in this function
1244 }
1246 // This tries to get debug info from the instruction before which a new
1247 // instruction will be inserted, and if there's no debug info in that
1248 // instruction, tries to get the info instead from the previous instruction (if
1249 // any). If none of these has debug info and a DISubprogram is provided, it
1250 // creates a dummy debug info with the first line of the function, because IR
1251 // verifier requires all inlinable callsites should have debug info when both a
1252 // caller and callee have DISubprogram. If none of these conditions are met,
1253 // returns empty info.
1265 }
1273 // Vector of %setjmpTable values
1275 // Vector of %setjmpTableSize values
1278 // Setjmp preparation
1280 // This instruction effectively means %setjmpTableSize = 4.
1281 // We create this as an instruction intentionally, and we don't want to fold
1282 // this instruction to a constant 4, because this value will be used in
1283 // SSAUpdater.AddAvailableValue(...) later.
1292 // setjmpTable = (int *) malloc(40);
1297 // CallInst::CreateMalloc may return a bitcast instruction if the result types
1298 // mismatch. We need to set the debug loc for the original call too.
1302 }
1303 // setjmpTable[0] = 0;
1309 // Setjmp transformation
1322 // setjmp cannot throw. So if it is an invoke, lower it to a call
1325 else
1328 // The tail is everything right after the call, and will be reached once
1329 // when setjmp is called, and later when longjmp returns to the setjmp
1331 // Add a phi to the tail, which will be the output of setjmp, which
1332 // indicates if this is the first call or a longjmp back. The phi directly
1333 // uses the right value based on where we arrive from
1337 // setjmp initial call returns 0
1339 // The proper output is now this, not the setjmp call itself
1341 // longjmp returns to the setjmp will add themselves to this phi
1344 // Fix call target
1345 // Our index in the function is our place in the array + 1 to avoid index
1346 // 0, because index 0 means the longjmp is not ours to handle.
1357 }
1359 // Handle longjmpable calls.
1365 SetjmpRetPHIs);
1367 // Erase everything we no longer need in this function
1371 // Free setjmpTable buffer before each return instruction + function-exiting
1372 // call
1378 // Any 'call' instruction with 'noreturn' attribute exits the function at
1379 // this point. If this throws but unwinds to another EH pad within this
1380 // function instead of exiting, this would have been an 'invoke', which
1381 // happens if we use Wasm EH or Wasm SjLJ.
1389 }
1390 }
1391 }
1394 // If this existing instruction is a call within a catchpad, we should add
1395 // it as "funclet" to the operand bundle of 'free' call
1402 // CallInst::CreateFree may create a bitcast instruction if its argument
1403 // types mismatch. We need to set the debug loc for the bitcast too.
1407 }
1408 }
1410 // Every call to saveSetjmp can change setjmpTable and setjmpTableSize
1411 // (when buffer reallocation occurs)
1412 // entry:
1413 // setjmpTableSize = 4;
1414 // setjmpTable = (int *) malloc(40);
1415 // setjmpTable[0] = 0;
1416 // ...
1417 // somebb:
1418 // setjmpTable = saveSetjmp(env, label, setjmpTable, setjmpTableSize);
1419 // setjmpTableSize = getTempRet0();
1420 // So we need to make sure the SSA for these variables is valid so that every
1421 // saveSetjmp and testSetjmp calls have the correct arguments.
1422 SSAUpdater SetjmpTableSSA;
1423 SSAUpdater SetjmpTableSizeSSA;
1440 // Finally, our modifications to the cfg can break dominance of SSA variables.
1441 // For example, in this code,
1442 // if (x()) { .. setjmp() .. }
1443 // if (y()) { .. longjmp() .. }
1444 // We must split the longjmp block, and it can jump into the block splitted
1445 // from setjmp one. But that means that when we split the setjmp block, it's
1446 // first part no longer dominates its second part - there is a theoretically
1447 // possible control flow path where x() is false, then y() is true and we
1448 // reach the second part of the setjmp block, without ever reaching the first
1449 // part. So, we rebuild SSA form here.
1452 }
1454 // Update each call that can longjmp so it can return to the corresponding
1455 // setjmp. Refer to 4) of "Emscripten setjmp/longjmp handling" section in the
1456 // comments at top of the file for details.
1465 // We need to pass setjmpTable and setjmpTableSize to testSetjmp function.
1466 // These values are defined in the beginning of the function and also in each
1467 // setjmp callsite, but we don't know which values we should use at this
1468 // point. So here we arbitraily use the ones defined in the beginning of the
1469 // function, and SSAUpdater will later update them to the correct values.
1473 // call.em.longjmp BB that will be shared within the function.
1475 // PHI node for the loaded value of __THREW__ global variable in
1476 // call.em.longjmp BB
1478 // PHI node for the loaded value of __threwValue global variable in
1479 // call.em.longjmp BB
1481 // rethrow.exn BB that will be shared within the function.
1484 // Because we are creating new BBs while processing and don't want to make
1485 // all these newly created BBs candidates again for longjmp processing, we
1486 // first make the vector of candidate BBs.
1491 // BBs.size() will change within the loop, so we query it every time
1497 "a restriction that `setjmp` function call and "
1509 ". Please consider using EM_JS, or move the "
1516 // If invoke wrapper has already been generated for this call in
1517 // previous EH phase, search for the load instruction
1518 // %__THREW__.val = __THREW__;
1519 // in postamble after the invoke wrapper call
1529 }
1530 }
1531 // Search for the store instruction after the load above
1532 // __THREW__ = 0;
1541 }
1542 }
1543 }
1544 }
1550 // Wrap call with invoke wrapper and generate preamble/postamble
1555 // If exception handling is enabled, the thrown value can be not a
1556 // longjmp but an exception, in which case we shouldn't silently ignore
1557 // exceptions; we should rethrow them.
1558 // __THREW__'s value is 0 when nothing happened, 1 when an exception is
1559 // thrown, other values when longjmp is thrown.
1560 //
1561 // if (%__THREW__.val == 1)
1562 // goto %eh.rethrow
1563 // else
1564 // goto %normal
1565 //
1566 // eh.rethrow: ;; Rethrow exception
1567 // %exn = call @__cxa_find_matching_catch_2() ;; Retrieve thrown ptr
1568 // __resumeException(%exn)
1569 //
1570 // normal:
1571 // <-- Insertion point. Will insert sjlj handling code from here
1572 // goto %tail
1573 //
1574 // tail:
1575 // ...
1577 // We will add a new conditional branch. So remove the branch created
1578 // when we split the BB
1581 // Generate rethrow.exn BB once and share it within the function
1589 }
1600 }
1601 }
1603 // We need to replace the terminator in Tail - SplitBlock makes BB go
1604 // straight to Tail, we need to check if a longjmp occurred, and go to the
1605 // right setjmp-tail if so
1608 // Generate a function call to testSetjmp function and preamble/postamble
1609 // code to figure out (1) whether longjmp occurred (2) if longjmp
1610 // occurred, which setjmp it corresponds to
1617 EndBB);
1620 // Create switch instruction
1624 // -1 means no longjmp happened, continue normally (will hit the default
1625 // switch case). 0 means a longjmp that is not ours to handle, needs a
1626 // rethrow. Otherwise the index is the same as the index in P+1 (to avoid
1627 // 0).
1631 }
1633 // We are splitting the block here, and must continue to find other calls
1634 // in the block - which is now split. so continue to traverse in the Tail
1636 }
1637 }
1641 }
1648 }
1650 // Create a catchpad in which we catch a longjmp's env and val arguments, test
1651 // if the longjmp corresponds to one of setjmps in the current function, and if
1652 // so, jump to the setjmp dispatch BB from which we go to one of post-setjmp
1653 // BBs. Refer to 4) of "Wasm setjmp/longjmp handling" section in the comments at
1654 // top of the file for details.
1662 // A function with catchswitch/catchpad instruction should have a personality
1663 // function attached to it. Search for the wasm personality function, and if
1664 // it exists, use it, and if it doesn't, create a dummy personality function.
1665 // (SjLj is not going to call it anyway.)
1673 }
1675 // Use the entry BB's debugloc as a fallback
1680 // Arbitrarily use the ones defined in the beginning of the function.
1681 // SSAUpdater will later update them to the correct values.
1685 // Add setjmp.dispatch BB right after the entry block. Because we have
1686 // initialized setjmpTable/setjmpTableSize in the entry block and split the
1687 // rest into another BB, here 'OrigEntry' is the function's original entry
1688 // block before the transformation.
1689 //
1690 // entry:
1691 // setjmpTable / setjmpTableSize initialization
1692 // setjmp.dispatch:
1693 // switch will be inserted here later
1694 // entry.split: (OrigEntry)
1695 // the original function starts here
1701 // Create catch.dispatch.longjmp BB and a catchswitch instruction
1708 // Create catch.longjmp BB and a catchpad instruction
1714 // Wasm throw and catch instructions can throw and catch multiple values, but
1715 // that requires multivalue support in the toolchain, which is currently not
1716 // very reliable. We instead throw and catch a pointer to a struct value of
1717 // type 'struct __WasmLongjmpArgs', which is defined in Emscripten.
1726 // void *env = __wasm_longjmp_args.env;
1728 // int val = __wasm_longjmp_args.val;
1731 // %label = testSetjmp(mem[%env], setjmpTable, setjmpTableSize);
1732 // if (%label == 0)
1733 // __wasm_longjmp(%env, %val)
1734 // catchret to %setjmp.dispatch
1751 // Jump to setjmp.dispatch block
1754 // Go back to setjmp.dispatch BB
1755 // setjmp.dispatch:
1756 // switch %label {
1757 // label 1: goto post-setjmp BB 1
1758 // label 2: goto post-setjmp BB 2
1759 // ...
1760 // default: goto splitted next BB
1761 // }
1767 // -1 means no longjmp happened, continue normally (will hit the default
1768 // switch case). 0 means a longjmp that is not ours to handle, needs a
1769 // rethrow. Otherwise the index is the same as the index in P+1 (to avoid
1770 // 0).
1774 }
1776 // Convert all longjmpable call instructions to invokes that unwind to the
1777 // newly created catch.dispatch.longjmp BB.
1790 ". Please consider using EM_JS, or move the "
1793 // This is __wasm_longjmp() call we inserted in this function, which
1794 // rethrows the longjmp when the longjmp does not correspond to one of
1795 // setjmps in this function. We should not convert this call to an invoke.
1799 }
1800 }
1803 // Even if the callee function has attribute 'nounwind', which is true for
1804 // all C functions, it can longjmp, which means it can throw a Wasm
1805 // exception now.
1810 // Change it to an invoke and make it unwind to the catch.dispatch.longjmp
1811 // BB. If the call is enclosed in another catchpad/cleanuppad scope, unwind
1812 // to its parent pad's unwind destination instead to preserve the scope
1813 // structure. It will eventually unwind to the catch.dispatch.longjmp.
1822 }
1824 // getCleanupRetUnwindDest() can return nullptr when
1825 // 1. This cleanuppad's matching cleanupret uwninds to caller
1826 // 2. There is no matching cleanupret because it ends with
1827 // unreachable.
1828 // In case of 2, we need to traverse the parent pad chain.
1834 }
1835 }
1836 }
1840 }
1853 }
1854 }
1861 }
1862 }
1863 }
1867 }