[CHERI] Clean up the CHERI capability format support functions to be more ergonomic.

Author: resistor

clang/lib/StaticAnalyzer/Checkers/CHERI/SubObjectRepresentabilityChecker.cpp

@@ -23,17 +23,17 @@
 #include "clang/StaticAnalyzer/Core/CheckerManager.h"
 #include "clang/StaticAnalyzer/Core/PathSensitive/AnalysisManager.h"
 #include "llvm/ADT/SmallString.h"
-#include "llvm/CHERI/CompressedCapability.h"
+#include "llvm/CHERI/CapabilityFormat.h"
 #include "llvm/Support/raw_ostream.h"
 
 using namespace clang;
 using namespace ento;
 
 namespace {
 
-template <llvm::CompressedCapability::CapabilityFormat>
-std::unique_ptr<BugReport> checkFieldImpl(const FieldDecl *D, BugReporter &BR,
-                                          const BugType &BT);
+std::unique_ptr<BugReport> checkField(const FieldDecl *D, BugReporter &BR,
+                                      const BugType &BT,
+                                      llvm::CHERICapabilityFormat CapFormat);
 
 class SubObjectRepresentabilityChecker
     : public Checker<check::ASTDecl<RecordDecl>, check::ASTCodeBody> {
@@ -49,11 +49,8 @@ class SubObjectRepresentabilityChecker
                         BugReporter &BR) const;
 
 private:
-  using CheckFieldFn = std::unique_ptr<BugReport> (*)(const FieldDecl *D,
-                                                      BugReporter &BR,
-                                                      const BugType &BT);
-
-  CheckFieldFn getCheckFieldFn(ASTContext &ASTCtx) const;
+  std::optional<llvm::CHERICapabilityFormat>
+  getCapabilityFormat(ASTContext &ASTCtx) const;
 };
 
 } // namespace
@@ -97,9 +94,9 @@ reportExposedFields(const FieldDecl *D, ASTContext &ASTCtx, BugReporter &BR,
   return Report;
 }
 
-template <llvm::CompressedCapability::CapabilityFormat CapFormat>
-std::unique_ptr<BugReport> checkFieldImpl(const FieldDecl *D, BugReporter &BR,
-                                          const BugType &BT) {
+std::unique_ptr<BugReport> checkField(const FieldDecl *D, BugReporter &BR,
+                                      const BugType &BT,
+                                      llvm::CHERICapabilityFormat CapFormat) {
   QualType T = D->getType();
 
   // If the parent struct is explicitly marked as packed, then don't emit a
@@ -111,9 +108,7 @@ std::unique_ptr<BugReport> checkFieldImpl(const FieldDecl *D, BugReporter &BR,
   uint64_t Offset = ASTCtx.getFieldOffset(D) / 8;
   if (Offset > 0) {
     uint64_t Size = ASTCtx.getTypeSize(T) / 8;
-    uint64_t ReqAlign =
-        llvm::CompressedCapability::GetRequiredAlignment(Size, CapFormat)
-            .value();
+    uint64_t ReqAlign = CapFormat.getRequiredAlignment(Size).value();
     uint64_t CurAlign = 1 << llvm::countr_zero(Offset);
     if (CurAlign < ReqAlign) {
       /* Emit warning */
@@ -131,9 +126,8 @@ std::unique_ptr<BugReport> checkFieldImpl(const FieldDecl *D, BugReporter &BR,
       uint64_t OffsetToAlign = Offset % ReqAlign;
       uint64_t Base = Offset - OffsetToAlign;
       uint64_t AlignedSize = Size + OffsetToAlign;
-      uint64_t TailPadding = static_cast<uint64_t>(
-          llvm::CompressedCapability::GetRequiredTailPadding(AlignedSize,
-                                                             CapFormat));
+      uint64_t TailPadding =
+          static_cast<uint64_t>(CapFormat.getRequiredTailPadding(AlignedSize));
       uint64_t Top = Base + AlignedSize + TailPadding;
       OS << " Current bounds: " << Base << "-" << Top;
 
@@ -156,40 +150,40 @@ std::unique_ptr<BugReport> checkFieldImpl(const FieldDecl *D, BugReporter &BR,
 
 } // namespace
 
-SubObjectRepresentabilityChecker::CheckFieldFn
-SubObjectRepresentabilityChecker::getCheckFieldFn(ASTContext &ASTCtx) const {
+std::optional<llvm::CHERICapabilityFormat>
+SubObjectRepresentabilityChecker::getCapabilityFormat(
+    ASTContext &ASTCtx) const {
   const TargetInfo &TI = ASTCtx.getTargetInfo();
   if (!TI.areAllPointersCapabilities())
-    return nullptr;
+    return std::nullopt;
 
   const auto &T = TI.getTriple();
   if (T.getArch() == llvm::Triple::riscv32 && TI.hasFeature("xcheriot")) {
-    return &checkFieldImpl<llvm::CompressedCapability::Cheriot64>;
+    return llvm::CHERICapabilityFormat::Cheriot64;
   }
 
-  static constexpr std::array CheckFieldFnMap = {
-      std::make_pair(llvm::Triple::mips,
-                     &checkFieldImpl<llvm::CompressedCapability::Cheri64>),
+  static constexpr std::array CapabilityFormatMap = {
+      std::make_pair(llvm::Triple::mips, &llvm::CHERICapabilityFormat::Cheri64),
       std::make_pair(llvm::Triple::mips64,
-                     &checkFieldImpl<llvm::CompressedCapability::Cheri128>),
+                     &llvm::CHERICapabilityFormat::Cheri128),
       std::make_pair(llvm::Triple::riscv32,
-                     &checkFieldImpl<llvm::CompressedCapability::Cheri64>),
+                     &llvm::CHERICapabilityFormat::Cheri64),
       std::make_pair(llvm::Triple::riscv64,
-                     &checkFieldImpl<llvm::CompressedCapability::Cheri128>),
+                     &llvm::CHERICapabilityFormat::Cheri128),
   };
 
-  auto It = std::find_if(CheckFieldFnMap.begin(), CheckFieldFnMap.end(),
+  auto It = std::find_if(CapabilityFormatMap.begin(), CapabilityFormatMap.end(),
                          [A = T.getArch()](auto p) { return p.first == A; });
-  if (It == CheckFieldFnMap.end())
-    return nullptr;
-  return It->second;
+  if (It == CapabilityFormatMap.end())
+    return std::nullopt;
+  return *It->second;
 }
 
 void SubObjectRepresentabilityChecker::checkASTDecl(const RecordDecl *R,
                                                     AnalysisManager &mgr,
                                                     BugReporter &BR) const {
-  CheckFieldFn checkField = getCheckFieldFn(mgr.getASTContext());
-  if (!checkField)
+  auto CapFormat = getCapabilityFormat(mgr.getASTContext());
+  if (!CapFormat)
     return; // skip this target
 
   if (!R->isCompleteDefinition() || R->isDependentType())
@@ -199,7 +193,7 @@ void SubObjectRepresentabilityChecker::checkASTDecl(const RecordDecl *R,
     return;
 
   for (FieldDecl *D : R->fields()) {
-    auto Report = checkField(D, BR, BT_1);
+    auto Report = checkField(D, BR, BT_1, *CapFormat);
     if (Report)
       BR.emitReport(std::move(Report));
   }
@@ -208,8 +202,8 @@ void SubObjectRepresentabilityChecker::checkASTDecl(const RecordDecl *R,
 void SubObjectRepresentabilityChecker::checkASTCodeBody(const Decl *D,
                                                         AnalysisManager &mgr,
                                                         BugReporter &BR) const {
-  CheckFieldFn checkField = getCheckFieldFn(mgr.getASTContext());
-  if (!checkField)
+  auto CapFormat = getCapabilityFormat(mgr.getASTContext());
+  if (!CapFormat)
     return; // skip this target
 
   using namespace ast_matchers;
@@ -228,7 +222,7 @@ void SubObjectRepresentabilityChecker::checkASTCodeBody(const Decl *D,
       if (const MemberExpr *ME = Match.getNodeAs<MemberExpr>("member")) {
         ValueDecl *VD = ME->getMemberDecl();
         if (FieldDecl *FD = dyn_cast<FieldDecl>(VD)) {
-          auto Report = checkField(FD, BR, BT_2);
+          auto Report = checkField(FD, BR, BT_2, *CapFormat);
           if (Report) {
             PathDiagnosticLocation LN = PathDiagnosticLocation::createBegin(
                 CE, BR.getSourceManager(), mgr.getAnalysisDeclContext(D));
@@ -242,7 +236,7 @@ void SubObjectRepresentabilityChecker::checkASTCodeBody(const Decl *D,
       if (const MemberExpr *ME = Match.getNodeAs<MemberExpr>("member")) {
         ValueDecl *VD = ME->getMemberDecl();
         if (FieldDecl *FD = dyn_cast<FieldDecl>(VD)) {
-          auto Report = checkField(FD, BR, BT_2);
+          auto Report = checkField(FD, BR, BT_2, *CapFormat);
           if (Report) {
             PathDiagnosticLocation LN = PathDiagnosticLocation::createBegin(
                 UO, BR.getSourceManager(), mgr.getAnalysisDeclContext(D));

lld/ELF/Arch/RISCV.cpp

@@ -13,7 +13,7 @@
 #include "Symbols.h"
 #include "SyntheticSections.h"
 #include "Target.h"
-#include "llvm/CHERI/CompressedCapability.h"
+#include "llvm/CHERI/CapabilityFormat.h"
 #include "llvm/Support/ELFAttributes.h"
 #include "llvm/Support/LEB128.h"
 #include "llvm/Support/RISCVAttributeParser.h"
@@ -761,14 +761,13 @@ static void tlsdescToLe(uint8_t *loc, const Relocation &rel, uint64_t val) {
 }
 
 uint64_t RISCV::cheriRequiredAlignment(uint64_t size) const {
-  auto CapFormat = llvm::CompressedCapability::Cheri128;
+  auto CapFormat = llvm::CHERICapabilityFormat::Cheri128;
   if (ctx.arg.isCheriot)
-    CapFormat = llvm::CompressedCapability::Cheriot64;
+    CapFormat = llvm::CHERICapabilityFormat::Cheriot64;
   else if (!ctx.arg.is64)
-    CapFormat = llvm::CompressedCapability::Cheri64;
+    CapFormat = llvm::CHERICapabilityFormat::Cheri64;
 
-  return llvm::CompressedCapability::GetRequiredAlignment(size, CapFormat)
-      .value();
+  return CapFormat.getRequiredAlignment(size).value();
 }
 
 void RISCV::relocateAlloc(InputSectionBase &sec, uint8_t *buf) const {

llvm/include/llvm/CHERI/CapabilityFormat.h

@@ -0,0 +1,59 @@
+//===--- CHERICompressedCapability.h ----------------------------*- C++ -*-===//
+//
+// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
+// See https://llvm.org/LICENSE.txt for license information.
+// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
+//
+//===----------------------------------------------------------------------===//
+
+#ifndef LLVM_COMPRESSED_CAPABILITY_H
+#define LLVM_COMPRESSED_CAPABILITY_H
+
+#include "llvm/ADT/ArrayRef.h"
+#include "llvm/MC/MCTargetOptions.h"
+#include "llvm/Support/Alignment.h"
+
+#include <algorithm>
+#include <cstdint>
+
+namespace llvm {
+
+class CHERICapabilityFormat {
+  constexpr CHERICapabilityFormat(uint64_t AM,
+                                  ArrayRef<std::pair<uint64_t, uint64_t>> L)
+      : AddressMask(AM), LUT(L) {}
+
+  uint64_t AddressMask;
+  ArrayRef<std::pair<uint64_t, uint64_t>> LUT;
+
+public:
+  inline uint64_t getAddressMask() const { return AddressMask; }
+  uint64_t getAlignmentMask(uint64_t Length) const {
+    auto el = std::find_if(LUT.begin(), LUT.end(),
+                           [=](const auto &p) { return Length <= p.first; });
+    assert(el != LUT.end());
+    return el->second;
+  }
+
+  inline uint64_t getRepresentableLength(uint64_t Length) const {
+    uint64_t Mask = getAlignmentMask(Length);
+    return (Length + ~Mask) & Mask;
+  }
+
+  inline Align getRequiredAlignment(uint64_t Length) const {
+    return Align((~getAlignmentMask(Length) + 1) & getAddressMask());
+  }
+
+  inline TailPaddingAmount getRequiredTailPadding(uint64_t Length) const {
+    return static_cast<TailPaddingAmount>(
+        llvm::alignTo(Length, getRequiredAlignment(Length)) - Length);
+  }
+
+  static const CHERICapabilityFormat Cheriot64;
+  static const CHERICapabilityFormat Cheri64;
+  static const CHERICapabilityFormat Cheri128;
+};
+
+} // namespace llvm
+
+#endif