diff options
| author | Henry Yu <hnryu@ucdavis.edu> | 2023-04-26 16:43:48 -0700 |
|---|---|---|
| committer | Peter Rong <PeterRong96@gmail.com> | 2023-04-26 16:45:49 -0700 |
| commit | 66892f25af005e42adf55f9615d4919b0cd3ac7d (patch) | |
| tree | 400350b353a94b81959432a4b5321a0b7ae192fd /llvm/lib/CodeGen/MachineDebugify.cpp | |
| parent | 5b7fa4a48d4e1dc5d412add989ce5c1b2dc7a448 (diff) | |
| download | llvm-66892f25af005e42adf55f9615d4919b0cd3ac7d.zip llvm-66892f25af005e42adf55f9615d4919b0cd3ac7d.tar.gz llvm-66892f25af005e42adf55f9615d4919b0cd3ac7d.tar.bz2 | |
[FuzzMutate] Skip EHPad during mutation and avoid replacing callee with pointer when sinking
This patch addresses 2 problems:
- In `ShuffleBlockStrategy`, when `BB` is an EHPad, `BB.getFirstInsertionPt()` will return `BB.end()`, which cannot be dereferenced and will cause crash in following loop.
- In `isCompatibleReplacement`, a call instruction's callee might be replaced by a pointer, causing 2 subproblems:
- we cannot guarantee that the pointer is a function pointer (even if it is, we cannot guarantee it matches the signature).
- after such a replacement, `getCalledFunction` will from then on return `nullptr` (since it's indirect call) which causes Segmentation Fault in the lines below.
This patch fixes the first problem by checking if a block to be mutated is an EHPad in base class `IRMutationStrategy` and skipping mutating it if so.
This patch fixes the second problem by avoiding replacing callee with pointer and adding a null check for indirect calls.
Reviewed By: Peter
Differential Revision: https://reviews.llvm.org/D148853
Diffstat (limited to 'llvm/lib/CodeGen/MachineDebugify.cpp')
0 files changed, 0 insertions, 0 deletions