mirror of
https://github.com/KhronosGroup/SPIRV-Tools
synced 2024-10-18 19:20:05 +00:00
f12c40f5a6
This fuzzer pass: For each zero-like constant, either finds the existing definition of the corresponding toggled one (OpConstantNull becomes zero-valued scalar OpConstant or vice versa) or creates a new one if it doesn't exist and records that the two are synonyms For each use of these constants, probabilistically decides whether to change it with the corresponding toggled constant id (as described in #3486 ) Only uses inside blocks of instructions are considered and not, for example, in instructions declaring other constants.
64 lines
2.6 KiB
C++
64 lines
2.6 KiB
C++
// Copyright (c) 2020 Stefano Milizia
|
|
// Copyright (c) 2020 Google LLC
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
#ifndef SOURCE_FUZZ_FUZZER_PASS_INTERCHANGE_ZERO_LIKE_CONSTANTS_
|
|
#define SOURCE_FUZZ_FUZZER_PASS_INTERCHANGE_ZERO_LIKE_CONSTANTS_
|
|
|
|
#include "source/fuzz/fuzzer_pass.h"
|
|
|
|
namespace spvtools {
|
|
namespace fuzz {
|
|
|
|
// A pass that:
|
|
// - Finds all the zero-like constant definitions in the module and adds the
|
|
// definitions of the corresponding synonym, recording the fact that they
|
|
// are synonymous. If the synonym is already in the module, it does not
|
|
// add a new one.
|
|
// - For each use of a zero-like constant, decides whether to change it to the
|
|
// id of the toggled constant.
|
|
class FuzzerPassInterchangeZeroLikeConstants : public FuzzerPass {
|
|
public:
|
|
FuzzerPassInterchangeZeroLikeConstants(
|
|
opt::IRContext* ir_context, TransformationContext* transformation_context,
|
|
FuzzerContext* fuzzer_context,
|
|
protobufs::TransformationSequence* transformations);
|
|
|
|
~FuzzerPassInterchangeZeroLikeConstants() override;
|
|
|
|
void Apply() override;
|
|
|
|
private:
|
|
// Given the declaration of a zero-like constant, it finds or creates the
|
|
// corresponding toggled constant (a scalar constant of value 0 becomes a
|
|
// null constant of the same type and vice versa).
|
|
// Returns the id of the toggled instruction if the constant is zero-like,
|
|
// 0 otherwise.
|
|
uint32_t FindOrCreateToggledConstant(opt::Instruction* declaration);
|
|
|
|
// Given an id use (described by an instruction and an index) and an id with
|
|
// which the original one should be replaced, adds a pair (with the elements
|
|
// being the corresponding id use descriptor and the replacement id) to
|
|
// |uses_to_replace| if the use is in an instruction block, otherwise does
|
|
// nothing.
|
|
void MaybeAddUseToReplace(
|
|
opt::Instruction* use_inst, uint32_t use_index, uint32_t replacement_id,
|
|
std::vector<std::pair<protobufs::IdUseDescriptor, uint32_t>>*
|
|
uses_to_replace);
|
|
};
|
|
|
|
} // namespace fuzz
|
|
} // namespace spvtools
|
|
#endif // SOURCE_FUZZ_FUZZER_PASS_INTERCHANGE_ZERO_LIKE_CONSTANTS_
|