[CoroutineAccessors] Sign de/allocation functions.

Allocator structs are passed in to new ABI yield-once coroutines and
contain pointers to functions to de/allocate memory.  Here, those
pointers are signed.

Author: nate-chandler

include/swift/ABI/MetadataValues.h

@@ -1793,6 +1793,10 @@ namespace SpecialPointerAuthDiscriminators {
   /// IsCurrentGlobalActor function used between the Swift runtime and
   /// concurrency runtime.
   const uint16_t IsCurrentGlobalActorFunction = 0xd1b8; // = 53688
+
+  /// Function pointers stored in the coro allocator struct.
+  const uint16_t CoroAllocationFunction = 0x5f95;   // = 24469
+  const uint16_t CoroDeallocationFunction = 0x9faf; // = 40879
 }
 
 /// The number of arguments that will be passed directly to a generic

include/swift/AST/IRGenOptions.h

@@ -251,6 +251,12 @@ struct PointerAuthOptions : clang::PointerAuthOptions {
 
   /// Like PartialApplyCapture but for use with CoroFunctionPointer values.
   PointerAuthSchema CoroPartialApplyCapture;
+
+  /// Stored in a coro allocator struct, the function used to allocate memory.
+  PointerAuthSchema CoroAllocationFunction;
+
+  /// Stored in a coro allocator struct, the function used to deallocate memory.
+  PointerAuthSchema CoroDeallocationFunction;
 };
 
 enum class JITDebugArtifact : unsigned {

lib/IRGen/GenCoro.cpp

@@ -21,6 +21,7 @@
 #include "ConstantBuilder.h"
 #include "Explosion.h"
 #include "GenCoro.h"
+#include "GenPointerAuth.h"
 #include "IRGenFunction.h"
 #include "IRGenModule.h"
 
@@ -669,6 +670,17 @@ struct Allocator {
         return IGM.CoroDeallocateFnTy;
       }
     }
+
+    const PointerAuthSchema &getSchema(IRGenModule &IGM) {
+      switch (kind) {
+      case Flags:
+        llvm_unreachable("no schema");
+      case Field::Allocate:
+        return IGM.getOptions().PointerAuth.CoroAllocationFunction;
+      case Field::Deallocate:
+        return IGM.getOptions().PointerAuth.CoroDeallocationFunction;
+      }
+    }
   };
 
   llvm::Value *address;
@@ -713,6 +725,11 @@ struct Allocator {
 private:
   FunctionPointer getFunctionPointer(Field field) {
     llvm::Value *callee = getField(field);
+    if (auto &schema = field.getSchema(IGF.IGM)) {
+      auto info =
+          PointerAuthInfo::emit(IGF, schema, nullptr, PointerAuthEntity());
+      callee = emitPointerAuthAuth(IGF, callee, info);
+    }
     return FunctionPointer::createUnsigned(
         FunctionPointer::Kind::Function, callee,
         Signature(field.getFunctionType(IGF.IGM), {}, IGF.IGM.SwiftCC));
@@ -767,7 +784,7 @@ llvm::Constant *swift::irgen::getCoroDeallocFn(IRGenModule &IGM) {
       {IGM.CoroAllocatorPtrTy, IGM.Int8PtrTy},
       [isSwiftCoroCCAvailable](IRGenFunction &IGF) {
         auto parameters = IGF.collectParameters();
-        auto allocator = ::Allocator(parameters.claimNext(), IGF);
+        auto allocator = Allocator(parameters.claimNext(), IGF);
         auto *ptr = parameters.claimNext();
         if (isSwiftCoroCCAvailable) {
           // swiftcorocc is available, so if there's no allocator pointer,
@@ -825,8 +842,12 @@ static llvm::Constant *getAddrOfGlobalCoroAllocator(
         auto flags = CoroAllocatorFlags(kind);
         flags.setShouldDeallocateImmediately(shouldDeallocateImmediately);
         allocator.addInt32(flags.getOpaqueValue());
-        allocator.add(allocFn);
-        allocator.add(deallocFn);
+        allocator.addSignedPointer(
+            allocFn, IGM.getOptions().PointerAuth.CoroAllocationFunction,
+            PointerAuthEntity::Special::CoroAllocationFunction);
+        allocator.addSignedPointer(
+            deallocFn, IGM.getOptions().PointerAuth.CoroDeallocationFunction,
+            PointerAuthEntity::Special::CoroDeallocationFunction);
         return allocator.finishAndCreateFuture();
       },
       [&](llvm::GlobalVariable *var) { var->setConstant(true); });

lib/IRGen/GenPointerAuth.cpp

@@ -400,6 +400,10 @@ PointerAuthEntity::getDeclDiscriminator(IRGenModule &IGM) const {
       case Special::BlockCopyHelper:
       case Special::BlockDisposeHelper:
         llvm_unreachable("no known discriminator for these foreign entities");
+      case Special::CoroAllocationFunction:
+        return SpecialPointerAuthDiscriminators::CoroAllocationFunction;
+      case Special::CoroDeallocationFunction:
+        return SpecialPointerAuthDiscriminators::CoroDeallocationFunction;
       }
       llvm_unreachable("bad kind");
     };

lib/IRGen/GenPointerAuth.h

@@ -68,6 +68,8 @@ class PointerAuthEntity {
     OpaqueTypeDescriptorAsArgument,
     ContextDescriptorAsArgument,
     TypeLayoutString,
+    CoroAllocationFunction,
+    CoroDeallocationFunction,
   };
 
 private:

lib/IRGen/IRGen.cpp

@@ -990,6 +990,14 @@ static void setPointerAuthOptions(PointerAuthOptions &opts,
 
   opts.CoroPartialApplyCapture =
       PointerAuthSchema(nonABIDataKey, /*address*/ true, Discrimination::Decl);
+
+  opts.CoroAllocationFunction = PointerAuthSchema(
+      codeKey, /*address*/ false, Discrimination::Constant,
+      SpecialPointerAuthDiscriminators::CoroAllocationFunction);
+
+  opts.CoroDeallocationFunction = PointerAuthSchema(
+      codeKey, /*address*/ false, Discrimination::Constant,
+      SpecialPointerAuthDiscriminators::CoroDeallocationFunction);
 }
 
 std::unique_ptr<llvm::TargetMachine>

test/IRGen/coroutine_accessors.swift

@@ -23,14 +23,42 @@
 // CHECK-SAME:    i32 0
 // CHECK-SAME:  }>
 
+// CHECK-arm64e-LABEL: _swift_malloc.ptrauth = private constant {
+// CHECK-arm64e-SAME:    ptr @_swift_malloc,
+// CHECK-arm64e-SAME:    i32 0,
+// CHECK-arm64e-SAME:    i64 0,
+// CHECK-arm64e-SAME:    i64 24469 }
+// CHECK-arm64e-SAME:  section "llvm.ptrauth"
+// CHECK-arm64e-SAME:  align 8
+// CHECK-arm64e-LABEL: _swift_free.ptrauth = private constant {
+// CHECK-arm64e-SAME:    ptr @_swift_free,
+// CHECK-arm64e-SAME:    i32 0,
+// CHECK-arm64e-SAME:    i64 0,
+// CHECK-arm64e-SAME:    i64 40879 },
+// CHECK-arm64e-SAME:  section "llvm.ptrauth",
+// CHECK-arm64e-SAME:  align 8
 // CHECK-LABEL: _swift_coro_malloc_allocator = linkonce_odr hidden constant %swift.coro_allocator {
 // CHECK-SAME:       i32 258,
-// CHECK-SAME:       malloc,
+// CHECK-SAME:       malloc
 // CHECK-SAME:       free
 // CHECK-SAME:  }
+// CHECK-arm64e-LABEL: swift_task_alloc.ptrauth = private constant {
+// CHECK-arm64e-SAME:    ptr @swift_task_alloc,
+// CHECK-arm64e-SAME:    i32 0,
+// CHECK-arm64e-SAME:    i64 0,
+// CHECK-arm64e-SAME:    i64 24469 }
+// CHECK-arm64e-SAME:  section "llvm.ptrauth"
+// CHECK-arm64e-SAME:  align 8
+// CHECK-arm64e-LABEL: @swift_task_dealloc.ptrauth = private constant {
+// CHECK-arm64e-SAME:    ptr @swift_task_dealloc,
+// CHECK-arm64e-SAME:    i32 0,
+// CHECK-arm64e-SAME:    i64 0,
+// CHECK-arm64e-SAME:    i64 40879 },
+// CHECK-arm64e-SAME:  section "llvm.ptrauth",
+// CHECK-arm64e-SAME:  align 8
 // CHECK-LABEL: _swift_coro_async_allocator = linkonce_odr hidden constant %swift.coro_allocator {
 // CHECK-SAME:      i32 1,
-// CHECK-SAME:      swift_task_alloc,
+// CHECK-SAME:      swift_task_alloc
 // CHECK-SAME:      swift_task_dealloc
 // CHECK-SAME:  }
 
@@ -45,6 +73,9 @@
 // CHECK-SAME:        i32 0
 // CHECK-SAME:        i32 1
 // CHECK:         [[ALLOCATE_FN:%[^,]+]] = load ptr, ptr [[ALLOCATE_FN_PTR]]
+// CHECK-arm64e:  [[ALLOCATE_FN_BITS:%[^,]+]] = ptrtoint ptr [[ALLOCATE_FN]] to i64
+// CHECK-arm64e:  [[ALLOCATE_FN_BITS_AUTHED:%[^,]+]] = call i64 @llvm.ptrauth.auth(i64 [[ALLOCATE_FN_BITS]], i32 0, i64 24469)
+// CHECK-arm64e:  [[ALLOCATE_FN:%[^,]+]] = inttoptr i64 [[ALLOCATE_FN_BITS_AUTHED]]
 // CHECK:         [[ALLOCATION:%[^,]+]] = call swiftcc ptr [[ALLOCATE_FN]]([[INT]] [[SIZE]])
 // CHECK:         ret ptr [[ALLOCATION]]
 // CHECK:       }
@@ -73,6 +104,9 @@
 // CHECK-SAME:          i32 0
 // CHECK-SAME:          i32 2
 // CHECK:           [[DEALLOCATE_FN:%[^,]+]] = load ptr, ptr [[DEALLOCATE_FN_PTR]]
+// CHECK-arm64e:    [[DEALLOCATE_FN_BITS:%[^,]+]] = ptrtoint ptr [[DEALLOCATE_FN]] to i64
+// CHECK-arm64e:    [[DEALLOCATE_FN_BITS_AUTHED:%[^,]+]] = call i64 @llvm.ptrauth.auth(i64 [[DEALLOCATE_FN_BITS]], i32 0, i64 40879)
+// CHECK-arm64e:    [[DEALLOCATE_FN:%[^,]+]] = inttoptr i64 [[DEALLOCATE_FN_BITS_AUTHED]]
 // CHECK:           call swiftcc void [[DEALLOCATE_FN]](ptr [[ADDRESS]])
 // CHECK:         ret void
 // CHECK:       }

test/IRGen/coroutine_accessors_popless.swift

@@ -25,14 +25,42 @@
 // CHECK-SAME:    i32 0
 // CHECK-SAME:  }>
 
+// CHECK-arm64e-LABEL: swift_task_alloc.ptrauth = private constant {
+// CHECK-arm64e-SAME:    ptr @swift_task_alloc,
+// CHECK-arm64e-SAME:    i32 0,
+// CHECK-arm64e-SAME:    i64 0,
+// CHECK-arm64e-SAME:    i64 24469 }
+// CHECK-arm64e-SAME:  section "llvm.ptrauth"
+// CHECK-arm64e-SAME:  align 8
+// CHECK-arm64e-LABEL: @swift_task_dealloc.ptrauth = private constant {
+// CHECK-arm64e-SAME:    ptr @swift_task_dealloc,
+// CHECK-arm64e-SAME:    i32 0,
+// CHECK-arm64e-SAME:    i64 0,
+// CHECK-arm64e-SAME:    i64 40879 },
+// CHECK-arm64e-SAME:  section "llvm.ptrauth",
+// CHECK-arm64e-SAME:  align 8
 // CHECK-LABEL: _swift_coro_async_allocator = linkonce_odr hidden constant %swift.coro_allocator {
 // CHECK-SAME:      i32 1,
-// CHECK-SAME:      swift_task_alloc,
+// CHECK-SAME:      swift_task_alloc
 // CHECK-SAME:      swift_task_dealloc
 // CHECK-SAME:  }
+// CHECK-arm64e-LABEL: _swift_malloc.ptrauth = private constant {
+// CHECK-arm64e-SAME:    ptr @_swift_malloc,
+// CHECK-arm64e-SAME:    i32 0,
+// CHECK-arm64e-SAME:    i64 0,
+// CHECK-arm64e-SAME:    i64 24469 }
+// CHECK-arm64e-SAME:  section "llvm.ptrauth"
+// CHECK-arm64e-SAME:  align 8
+// CHECK-arm64e-LABEL: _swift_free.ptrauth = private constant {
+// CHECK-arm64e-SAME:    ptr @_swift_free,
+// CHECK-arm64e-SAME:    i32 0,
+// CHECK-arm64e-SAME:    i64 0,
+// CHECK-arm64e-SAME:    i64 40879 },
+// CHECK-arm64e-SAME:  section "llvm.ptrauth",
+// CHECK-arm64e-SAME:  align 8
 // CHECK-LABEL: _swift_coro_malloc_allocator = linkonce_odr hidden constant %swift.coro_allocator {
 // CHECK-SAME:       i32 258,
-// CHECK-SAME:       malloc,
+// CHECK-SAME:       malloc
 // CHECK-SAME:       free
 // CHECK-SAME:  }
 
@@ -56,7 +84,10 @@
 // CHECK-SAME:        i32 0
 // CHECK-SAME:        i32 1
 // CHECK:         [[ALLOCATE_FN:%[^,]+]] = load ptr, ptr [[ALLOCATE_FN_PTR]]
-// CHECK:         [[ALLOCATION:%[^,]+]] = call swiftcc ptr [[ALLOCATE_FN]](i64 [[SIZE]])
+// CHECK-arm64e:  [[ALLOCATE_FN_BITS:%[^,]+]] = ptrtoint ptr [[ALLOCATE_FN]] to i64
+// CHECK-arm64e:  [[ALLOCATE_FN_BITS_AUTHED:%[^,]+]] = call i64 @llvm.ptrauth.auth(i64 [[ALLOCATE_FN_BITS]], i32 0, i64 24469)
+// CHECK-arm64e:  [[ALLOCATE_FN:%[^,]+]] = inttoptr i64 [[ALLOCATE_FN_BITS_AUTHED]]
+// CHECK:         [[ALLOCATION:%[^,]+]] = call swiftcc ptr [[ALLOCATE_FN]]([[INT]] [[SIZE]])
 // CHECK:         ret ptr [[ALLOCATION]]
 // CHECK:       }
 
@@ -91,6 +122,9 @@
 // CHECK-SAME:          i32 0
 // CHECK-SAME:          i32 2
 // CHECK:           [[DEALLOCATE_FN:%[^,]+]] = load ptr, ptr [[DEALLOCATE_FN_PTR]]
+// CHECK-arm64e:    [[DEALLOCATE_FN_BITS:%[^,]+]] = ptrtoint ptr [[DEALLOCATE_FN]] to i64
+// CHECK-arm64e:    [[DEALLOCATE_FN_BITS_AUTHED:%[^,]+]] = call i64 @llvm.ptrauth.auth(i64 [[DEALLOCATE_FN_BITS]], i32 0, i64 40879)
+// CHECK-arm64e:    [[DEALLOCATE_FN:%[^,]+]] = inttoptr i64 [[DEALLOCATE_FN_BITS_AUTHED]]
 // CHECK:           call swiftcc void [[DEALLOCATE_FN]](ptr [[ADDRESS]])
 // CHECK:         ret void
 // CHECK:       }