Google Git
Sign in
dawn / tint / 19b77cc4604512d81f0d5ec715b2f2864fcdb2c3 / . / src / tint / lang / core / ir / transform / robustness.cc
blob: 228b8228952e14156aff4170f050098f63803c7c [file] [log] [blame]
// Copyright 2023 The Dawn & Tint Authors
//
// Redistribution and use in source and binary forms, with or without
// modification, are permitted provided that the following conditions are met:
//
// 1. Redistributions of source code must retain the above copyright notice, this
// list of conditions and the following disclaimer.
//
// 2. Redistributions in binary form must reproduce the above copyright notice,
// this list of conditions and the following disclaimer in the documentation
// and/or other materials provided with the distribution.
//
// 3. Neither the name of the copyright holder nor the names of its
// contributors may be used to endorse or promote products derived from
// this software without specific prior written permission.
//
// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
// AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
// IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
// DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
// FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
// DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
// SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
// CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
// OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
#include "src/tint/lang/core/ir/transform/robustness.h"
#include <algorithm>
#include <utility>
#include "src/tint/lang/core/ir/builder.h"
#include "src/tint/lang/core/ir/module.h"
#include "src/tint/lang/core/ir/validator.h"
#include "src/tint/lang/core/type/depth_texture.h"
#include "src/tint/lang/core/type/sampled_texture.h"
#include "src/tint/lang/core/type/texture.h"
using namespace tint::core::fluent_types; // NOLINT
using namespace tint::core::number_suffixes; // NOLINT
namespace tint::core::ir::transform {
namespace {
/// PIMPL state for the transform.
struct State {
/// The robustness config.
const RobustnessConfig& config;
/// The IR module.
Module& ir;
/// The IR builder.
Builder b{ir};
/// The type manager.
core::type::Manager& ty{ir.Types()};
/// Process the module.
void Process() {
// Find the access instructions that may need to be clamped.
Vector<ir::Access*, 64> accesses;
Vector<ir::LoadVectorElement*, 64> vector_loads;
Vector<ir::StoreVectorElement*, 64> vector_stores;
Vector<ir::CoreBuiltinCall*, 64> texture_calls;
for (auto* inst : ir.Instructions()) {
tint::Switch(
inst, //
[&](ir::Access* access) {
// Check if accesses into this object should be clamped.
auto* ptr = access->Object()->Type()->As<type::Pointer>();
if (ptr) {
if (ShouldClamp(ptr->AddressSpace())) {
accesses.Push(access);
}
} else {
if (config.clamp_value) {
accesses.Push(access);
}
}
},
[&](ir::LoadVectorElement* lve) {
// Check if loads from this address space should be clamped.
auto* ptr = lve->From()->Type()->As<type::Pointer>();
if (ShouldClamp(ptr->AddressSpace())) {
vector_loads.Push(lve);
}
},
[&](ir::StoreVectorElement* sve) {
// Check if stores to this address space should be clamped.
auto* ptr = sve->To()->Type()->As<type::Pointer>();
if (ShouldClamp(ptr->AddressSpace())) {
vector_stores.Push(sve);
}
},
[&](ir::CoreBuiltinCall* call) {
// Check if this is a texture builtin that needs to be clamped.
if (config.clamp_texture) {
if (call->Func() == core::BuiltinFn::kTextureDimensions ||
call->Func() == core::BuiltinFn::kTextureLoad ||
call->Func() == core::BuiltinFn::kTextureStore) {
texture_calls.Push(call);
}
}
});
}
// Clamp access indices.
for (auto* access : accesses) {
b.InsertBefore(access, [&] { //
ClampAccessIndices(access);
});
}
// Clamp load-vector-element instructions.
for (auto* lve : vector_loads) {
auto* vec = lve->From()->Type()->UnwrapPtr()->As<type::Vector>();
b.InsertBefore(lve, [&] { //
ClampOperand(lve, LoadVectorElement::kIndexOperandOffset,
b.Constant(u32(vec->Width() - 1u)));
});
}
// Clamp store-vector-element instructions.
for (auto* sve : vector_stores) {
auto* vec = sve->To()->Type()->UnwrapPtr()->As<type::Vector>();
b.InsertBefore(sve, [&] { //
ClampOperand(sve, StoreVectorElement::kIndexOperandOffset,
b.Constant(u32(vec->Width() - 1u)));
});
}
// Clamp indices and coordinates for texture builtins calls.
for (auto* call : texture_calls) {
b.InsertBefore(call, [&] { //
ClampTextureCallArgs(call);
});
}
// TODO(jrprice): Handle config.bindings_ignored.
if (!config.bindings_ignored.empty()) {
// Also update robustness_fuzz.cc
TINT_UNIMPLEMENTED();
}
}
/// Check if clamping should be applied to a particular address space.
/// @param addrspace the address space to check
/// @returns true if pointer accesses in @p param addrspace should be clamped
bool ShouldClamp(AddressSpace addrspace) {
switch (addrspace) {
case AddressSpace::kFunction:
return config.clamp_function;
case AddressSpace::kPrivate:
return config.clamp_private;
case AddressSpace::kPushConstant:
return config.clamp_push_constant;
case AddressSpace::kStorage:
return config.clamp_storage;
case AddressSpace::kUniform:
return config.clamp_uniform;
case AddressSpace::kWorkgroup:
return config.clamp_workgroup;
case AddressSpace::kUndefined:
case AddressSpace::kPixelLocal:
case AddressSpace::kHandle:
case AddressSpace::kIn:
case AddressSpace::kOut:
return false;
}
return false;
}
/// Convert a value to a u32 if needed.
/// @param value the value to convert
/// @returns the converted value, or @p value if it is already a u32
ir::Value* CastToU32(ir::Value* value) {
if (value->Type()->is_unsigned_integer_scalar_or_vector()) {
return value;
}
const type::Type* type = ty.u32();
if (auto* vec = value->Type()->As<type::Vector>()) {
type = ty.vec(type, vec->Width());
}
return b.Convert(type, value)->Result(0);
}
/// Clamp operand @p op_idx of @p inst to ensure it is within @p limit.
/// @param inst the instruction
/// @param op_idx the index of the operand that should be clamped
/// @param limit the limit to clamp to
void ClampOperand(ir::Instruction* inst, size_t op_idx, ir::Value* limit) {
auto* idx = inst->Operands()[op_idx];
auto* const_idx = idx->As<ir::Constant>();
auto* const_limit = limit->As<ir::Constant>();
ir::Value* clamped_idx = nullptr;
if (const_idx && const_limit) {
// Generate a new constant index that is clamped to the limit.
clamped_idx = b.Constant(u32(std::min(const_idx->Value()->ValueAs<uint32_t>(),
const_limit->Value()->ValueAs<uint32_t>())));
} else {
// Clamp it to the dynamic limit.
clamped_idx = b.Call(ty.u32(), core::BuiltinFn::kMin, CastToU32(idx), limit)->Result(0);
}
// Replace the index operand with the clamped version.
inst->SetOperand(op_idx, clamped_idx);
}
/// Clamp the indices of an access instruction to ensure they are within the limits of the types
/// that they are indexing into.
/// @param access the access instruction
void ClampAccessIndices(ir::Access* access) {
auto* type = access->Object()->Type()->UnwrapPtr();
auto indices = access->Indices();
for (size_t i = 0; i < indices.Length(); i++) {
auto* idx = indices[i];
auto* const_idx = idx->As<ir::Constant>();
// Determine the limit of the type being indexed into.
auto limit = tint::Switch(
type, //
[&](const type::Vector* vec) -> ir::Value* {
return b.Constant(u32(vec->Width() - 1u));
},
[&](const type::Matrix* mat) -> ir::Value* {
return b.Constant(u32(mat->columns() - 1u));
},
[&](const type::Array* arr) -> ir::Value* {
if (arr->ConstantCount()) {
return b.Constant(u32(arr->ConstantCount().value() - 1u));
}
TINT_ASSERT_OR_RETURN_VALUE(arr->Count()->Is<type::RuntimeArrayCount>(),
nullptr);
// Skip clamping runtime-sized array indices if requested.
if (config.disable_runtime_sized_array_index_clamping) {
return nullptr;
}
auto* object = access->Object();
if (i > 0) {
// Generate a pointer to the runtime-sized array if it isn't the base of
// this access instruction.
auto* base_ptr = object->Type()->As<type::Pointer>();
TINT_ASSERT_OR_RETURN_VALUE(base_ptr != nullptr, nullptr);
TINT_ASSERT_OR_RETURN_VALUE(i == 1, nullptr);
auto* arr_ptr = ty.ptr(base_ptr->AddressSpace(), arr, base_ptr->Access());
object = b.Access(arr_ptr, object, indices[0])->Result(0);
}
// Use the `arrayLength` builtin to get the limit of a runtime-sized array.
auto* length = b.Call(ty.u32(), core::BuiltinFn::kArrayLength, object);
return b.Subtract(ty.u32(), length, b.Constant(1_u))->Result(0);
});
// If there's a dynamic limit that needs enforced, clamp the index operand.
if (limit) {
ClampOperand(access, ir::Access::kIndicesOperandOffset + i, limit);
}
// Get the type that this index produces.
type = const_idx ? type->Element(const_idx->Value()->ValueAs<u32>())
: type->Elements().type;
}
}
/// Clamp the indices and coordinates of a texture builtin call instruction to ensure they are
/// within the limits of the texture that they are accessing.
/// @param call the texture builtin call instruction
void ClampTextureCallArgs(ir::CoreBuiltinCall* call) {
const auto& args = call->Args();
auto* texture = args[0]->Type()->As<type::Texture>();
// Helper for clamping the level argument.
// Keep hold of the clamped value to use for clamping the coordinates.
Value* clamped_level = nullptr;
auto clamp_level = [&](uint32_t idx) {
auto* num_levels = b.Call(ty.u32(), core::BuiltinFn::kTextureNumLevels, args[0]);
auto* limit = b.Subtract(ty.u32(), num_levels, 1_u);
clamped_level =
b.Call(ty.u32(), core::BuiltinFn::kMin, CastToU32(args[idx]), limit)->Result(0);
call->SetOperand(CoreBuiltinCall::kArgsOperandOffset + idx, clamped_level);
};
// Helper for clamping the coordinates.
auto clamp_coords = [&](uint32_t idx) {
const type::Type* type = ty.u32();
auto* one = b.Constant(1_u);
if (auto* vec = args[idx]->Type()->As<type::Vector>()) {
type = ty.vec(type, vec->Width());
one = b.Splat(type, one, vec->Width());
}
auto* dims = clamped_level ? b.Call(type, core::BuiltinFn::kTextureDimensions, args[0],
clamped_level)
: b.Call(type, core::BuiltinFn::kTextureDimensions, args[0]);
auto* limit = b.Subtract(type, dims, one);
call->SetOperand(
CoreBuiltinCall::kArgsOperandOffset + idx,
b.Call(type, core::BuiltinFn::kMin, CastToU32(args[idx]), limit)->Result(0));
};
// Helper for clamping the array index.
auto clamp_array_index = [&](uint32_t idx) {
auto* num_layers = b.Call(ty.u32(), core::BuiltinFn::kTextureNumLayers, args[0]);
auto* limit = b.Subtract(ty.u32(), num_layers, 1_u);
call->SetOperand(
CoreBuiltinCall::kArgsOperandOffset + idx,
b.Call(ty.u32(), core::BuiltinFn::kMin, CastToU32(args[idx]), limit)->Result(0));
};
// Select which arguments to clamp based on the function overload.
switch (call->Func()) {
case core::BuiltinFn::kTextureDimensions: {
if (args.Length() > 1) {
clamp_level(1u);
}
break;
}
case core::BuiltinFn::kTextureLoad: {
clamp_coords(1u);
uint32_t next_arg = 2u;
if (type::IsTextureArray(texture->dim())) {
clamp_array_index(next_arg++);
}
if (texture->IsAnyOf<type::SampledTexture, type::DepthTexture>()) {
clamp_level(next_arg++);
}
break;
}
case core::BuiltinFn::kTextureStore: {
clamp_coords(1u);
if (type::IsTextureArray(texture->dim())) {
clamp_array_index(2u);
}
break;
}
default:
break;
}
}
};
} // namespace
Result<SuccessType> Robustness(Module& ir, const RobustnessConfig& config) {
auto result = ValidateAndDumpIfNeeded(ir, "Robustness transform");
if (result != Success) {
return result;
}
State{config, ir}.Process();
return Success;
}
} // namespace tint::core::ir::transform