1 //===- RaiseAllocations.cpp - Convert @malloc & @free calls to insts ------===//
3 // The LLVM Compiler Infrastructure
5 // This file is distributed under the University of Illinois Open Source
6 // License. See LICENSE.TXT for details.
8 //===----------------------------------------------------------------------===//
10 // This file defines the RaiseAllocations pass which convert malloc and free
11 // calls to malloc and free instructions.
13 //===----------------------------------------------------------------------===//
15 #define DEBUG_TYPE "raiseallocs"
16 #include "llvm/Transforms/IPO.h"
17 #include "llvm/Constants.h"
18 #include "llvm/DerivedTypes.h"
19 #include "llvm/LLVMContext.h"
20 #include "llvm/Module.h"
21 #include "llvm/Instructions.h"
22 #include "llvm/Pass.h"
23 #include "llvm/Support/CallSite.h"
24 #include "llvm/Support/Compiler.h"
25 #include "llvm/ADT/Statistic.h"
29 STATISTIC(NumRaised, "Number of allocations raised");
32 // RaiseAllocations - Turn @malloc and @free calls into the appropriate
35 class VISIBILITY_HIDDEN RaiseAllocations : public ModulePass {
36 Function *MallocFunc; // Functions in the module we are processing
37 Function *FreeFunc; // Initialized by doPassInitializationVirt
39 static char ID; // Pass identification, replacement for typeid
41 : ModulePass(&ID), MallocFunc(0), FreeFunc(0) {}
43 // doPassInitialization - For the raise allocations pass, this finds a
44 // declaration for malloc and free if they exist.
46 void doInitialization(Module &M);
48 // run - This method does the actual work of converting instructions over.
50 bool runOnModule(Module &M);
52 } // end anonymous namespace
54 char RaiseAllocations::ID = 0;
55 static RegisterPass<RaiseAllocations>
56 X("raiseallocs", "Raise allocations from calls to instructions");
58 // createRaiseAllocationsPass - The interface to this file...
59 ModulePass *llvm::createRaiseAllocationsPass() {
60 return new RaiseAllocations();
64 // If the module has a symbol table, they might be referring to the malloc and
65 // free functions. If this is the case, grab the method pointers that the
68 // Lookup @malloc and @free in the symbol table, for later use. If they don't
69 // exist, or are not external, we do not worry about converting calls to that
70 // function into the appropriate instruction.
72 void RaiseAllocations::doInitialization(Module &M) {
74 // Get Malloc and free prototypes if they exist!
75 MallocFunc = M.getFunction("malloc");
77 const FunctionType* TyWeHave = MallocFunc->getFunctionType();
79 // Get the expected prototype for malloc
80 const FunctionType *Malloc1Type =
81 Context->getFunctionType(Context->getPointerTypeUnqual(Type::Int8Ty),
82 std::vector<const Type*>(1, Type::Int64Ty), false);
84 // Chck to see if we got the expected malloc
85 if (TyWeHave != Malloc1Type) {
86 // Check to see if the prototype is wrong, giving us i8*(i32) * malloc
87 // This handles the common declaration of: 'void *malloc(unsigned);'
88 const FunctionType *Malloc2Type =
89 Context->getFunctionType(Context->getPointerTypeUnqual(Type::Int8Ty),
90 std::vector<const Type*>(1, Type::Int32Ty), false);
91 if (TyWeHave != Malloc2Type) {
92 // Check to see if the prototype is missing, giving us
94 // This handles the common declaration of: 'void *malloc();'
95 const FunctionType *Malloc3Type =
96 Context->getFunctionType(Context->getPointerTypeUnqual(Type::Int8Ty),
98 if (TyWeHave != Malloc3Type)
105 FreeFunc = M.getFunction("free");
107 const FunctionType* TyWeHave = FreeFunc->getFunctionType();
109 // Get the expected prototype for void free(i8*)
110 const FunctionType *Free1Type = Context->getFunctionType(Type::VoidTy,
111 std::vector<const Type*>(1, Context->getPointerTypeUnqual(Type::Int8Ty)),
114 if (TyWeHave != Free1Type) {
115 // Check to see if the prototype was forgotten, giving us
117 // This handles the common forward declaration of: 'void free();'
118 const FunctionType* Free2Type = Context->getFunctionType(Type::VoidTy,
121 if (TyWeHave != Free2Type) {
122 // One last try, check to see if we can find free as
123 // int (...)* free. This handles the case where NOTHING was declared.
124 const FunctionType* Free3Type = Context->getFunctionType(Type::Int32Ty,
127 if (TyWeHave != Free3Type) {
135 // Don't mess with locally defined versions of these functions...
136 if (MallocFunc && !MallocFunc->isDeclaration()) MallocFunc = 0;
137 if (FreeFunc && !FreeFunc->isDeclaration()) FreeFunc = 0;
140 // run - Transform calls into instructions...
142 bool RaiseAllocations::runOnModule(Module &M) {
143 // Find the malloc/free prototypes...
146 bool Changed = false;
148 // First, process all of the malloc calls...
150 std::vector<User*> Users(MallocFunc->use_begin(), MallocFunc->use_end());
151 std::vector<Value*> EqPointers; // Values equal to MallocFunc
152 while (!Users.empty()) {
153 User *U = Users.back();
156 if (Instruction *I = dyn_cast<Instruction>(U)) {
157 CallSite CS = CallSite::get(I);
158 if (CS.getInstruction() && !CS.arg_empty() &&
159 (CS.getCalledFunction() == MallocFunc ||
160 std::find(EqPointers.begin(), EqPointers.end(),
161 CS.getCalledValue()) != EqPointers.end())) {
163 Value *Source = *CS.arg_begin();
165 // If no prototype was provided for malloc, we may need to cast the
167 if (Source->getType() != Type::Int32Ty)
169 CastInst::CreateIntegerCast(Source, Type::Int32Ty, false/*ZExt*/,
172 MallocInst *MI = new MallocInst(*Context, Type::Int8Ty,
175 I->replaceAllUsesWith(MI);
177 // If the old instruction was an invoke, add an unconditional branch
178 // before the invoke, which will become the new terminator.
179 if (InvokeInst *II = dyn_cast<InvokeInst>(I))
180 BranchInst::Create(II->getNormalDest(), I);
182 // Delete the old call site
183 I->eraseFromParent();
187 } else if (GlobalValue *GV = dyn_cast<GlobalValue>(U)) {
188 Users.insert(Users.end(), GV->use_begin(), GV->use_end());
189 EqPointers.push_back(GV);
190 } else if (ConstantExpr *CE = dyn_cast<ConstantExpr>(U)) {
192 Users.insert(Users.end(), CE->use_begin(), CE->use_end());
193 EqPointers.push_back(CE);
199 // Next, process all free calls...
201 std::vector<User*> Users(FreeFunc->use_begin(), FreeFunc->use_end());
202 std::vector<Value*> EqPointers; // Values equal to FreeFunc
204 while (!Users.empty()) {
205 User *U = Users.back();
208 if (Instruction *I = dyn_cast<Instruction>(U)) {
209 if (isa<InvokeInst>(I))
211 CallSite CS = CallSite::get(I);
212 if (CS.getInstruction() && !CS.arg_empty() &&
213 (CS.getCalledFunction() == FreeFunc ||
214 std::find(EqPointers.begin(), EqPointers.end(),
215 CS.getCalledValue()) != EqPointers.end())) {
217 // If no prototype was provided for free, we may need to cast the
218 // source pointer. This should be really uncommon, but it's necessary
219 // just in case we are dealing with weird code like this:
222 Value *Source = *CS.arg_begin();
223 if (!isa<PointerType>(Source->getType()))
224 Source = new IntToPtrInst(Source,
225 Context->getPointerTypeUnqual(Type::Int8Ty),
227 new FreeInst(Source, I);
229 // If the old instruction was an invoke, add an unconditional branch
230 // before the invoke, which will become the new terminator.
231 if (InvokeInst *II = dyn_cast<InvokeInst>(I))
232 BranchInst::Create(II->getNormalDest(), I);
234 // Delete the old call site
235 if (I->getType() != Type::VoidTy)
236 I->replaceAllUsesWith(Context->getUndef(I->getType()));
237 I->eraseFromParent();
241 } else if (GlobalValue *GV = dyn_cast<GlobalValue>(U)) {
242 Users.insert(Users.end(), GV->use_begin(), GV->use_end());
243 EqPointers.push_back(GV);
244 } else if (ConstantExpr *CE = dyn_cast<ConstantExpr>(U)) {
246 Users.insert(Users.end(), CE->use_begin(), CE->use_end());
247 EqPointers.push_back(CE);