[ownership] Treat open_existential_box as an interior pointer producting instruction.

This means that it can only have a guaranteed object as an operandand that we
validate that all uses of the result address of open_existential_box occur only
within the lifetime of said object's borrow scope.

Author: gottesmm

include/swift/SIL/OwnershipUtils.h

@@ -388,11 +388,10 @@ Optional<BorrowScopeIntroducingValue>
 getSingleBorrowIntroducingValue(SILValue inputValue);
 
 struct InteriorPointerOperandKind {
-  using UnderlyingKindTy = std::underlying_type<SILInstructionKind>::type;
-
-  enum Kind : UnderlyingKindTy {
-    RefElementAddr = UnderlyingKindTy(SILInstructionKind::RefElementAddrInst),
-    RefTailAddr = UnderlyingKindTy(SILInstructionKind::RefTailAddrInst),
+  enum Kind : uint8_t {
+    RefElementAddr,
+    RefTailAddr,
+    OpenExistentialBox,
   };
 
   Kind value;
@@ -410,6 +409,8 @@ struct InteriorPointerOperandKind {
       return InteriorPointerOperandKind(RefElementAddr);
     case SILInstructionKind::RefTailAddrInst:
       return InteriorPointerOperandKind(RefTailAddr);
+    case SILInstructionKind::OpenExistentialBoxInst:
+      return InteriorPointerOperandKind(OpenExistentialBox);
     }
   }
 
@@ -457,6 +458,8 @@ struct InteriorPointerOperand {
       return cast<RefElementAddrInst>(operand->getUser());
     case InteriorPointerOperandKind::RefTailAddr:
       return cast<RefTailAddrInst>(operand->getUser());
+    case InteriorPointerOperandKind::OpenExistentialBox:
+      return cast<OpenExistentialBoxInst>(operand->getUser());
     }
     llvm_unreachable("Covered switch isn't covered?!");
   }

lib/SIL/OperandOwnership.cpp

@@ -167,6 +167,7 @@ INTERIOR_POINTER_PROJECTION(RefTailAddr)
   }
 CONSTANT_OWNERSHIP_INST(Guaranteed, MustBeLive, OpenExistentialValue)
 CONSTANT_OWNERSHIP_INST(Guaranteed, MustBeLive, OpenExistentialBoxValue)
+CONSTANT_OWNERSHIP_INST(Guaranteed, MustBeLive, OpenExistentialBox)
 CONSTANT_OWNERSHIP_INST(Owned, MustBeInvalidated, AutoreleaseValue)
 CONSTANT_OWNERSHIP_INST(Owned, MustBeInvalidated, DeallocBox)
 CONSTANT_OWNERSHIP_INST(Owned, MustBeInvalidated, DeallocExistentialBox)
@@ -282,7 +283,6 @@ ACCEPTS_ANY_OWNERSHIP_INST(SuperMethod)
 ACCEPTS_ANY_OWNERSHIP_INST(BridgeObjectToWord)
 ACCEPTS_ANY_OWNERSHIP_INST(ClassifyBridgeObject)
 ACCEPTS_ANY_OWNERSHIP_INST(CopyBlock)
-ACCEPTS_ANY_OWNERSHIP_INST(OpenExistentialBox)
 ACCEPTS_ANY_OWNERSHIP_INST(RefToRawPointer)
 ACCEPTS_ANY_OWNERSHIP_INST(SetDeallocating)
 ACCEPTS_ANY_OWNERSHIP_INST(ProjectExistentialBox)

lib/SILGen/SILGenBuilder.cpp

@@ -664,6 +664,15 @@ ManagedValue SILGenBuilder::createOpenExistentialBoxValue(SILLocation loc,
   return ManagedValue::forUnmanaged(openedExistential);
 }
 
+ManagedValue SILGenBuilder::createOpenExistentialBox(SILLocation loc,
+                                                     ManagedValue original,
+                                                     SILType type) {
+  ManagedValue borrowedExistential = original.formalAccessBorrow(SGF, loc);
+  SILValue openedExistentialAddr =
+      createOpenExistentialBox(loc, borrowedExistential.getValue(), type);
+  return ManagedValue::forUnmanaged(openedExistentialAddr);
+}
+
 ManagedValue SILGenBuilder::createOpenExistentialMetatype(SILLocation loc,
                                                           ManagedValue value,
                                                           SILType openedType) {

lib/SILGen/SILGenBuilder.h

@@ -294,6 +294,10 @@ class SILGenBuilder : public SILBuilder {
   ManagedValue createOpenExistentialBoxValue(SILLocation loc,
                                           ManagedValue original, SILType type);
 
+  using SILBuilder::createOpenExistentialBox;
+  ManagedValue createOpenExistentialBox(SILLocation loc, ManagedValue original,
+                                        SILType type);
+
   using SILBuilder::createOpenExistentialMetatype;
   ManagedValue createOpenExistentialMetatype(SILLocation loc,
                                              ManagedValue value,

lib/SILGen/SILGenConvert.cpp

@@ -971,9 +971,8 @@ SILGenFunction::emitOpenExistential(
     existentialType = existentialValue.getType();
     assert(existentialType.isObject());
     if (loweredOpenedType.isAddress()) {
-      return ManagedValue::forUnmanaged(
-        B.createOpenExistentialBox(loc, existentialValue.getValue(),
-                                   loweredOpenedType));
+      return B.createOpenExistentialBox(loc, existentialValue,
+                                        loweredOpenedType);
     } else {
       assert(!silConv.useLoweredAddresses());
       return B.createOpenExistentialBoxValue(

lib/SILGen/SILGenLValue.cpp

@@ -873,9 +873,14 @@ namespace {
           auto &TL = SGF.getTypeLowering(base.getType());
           error = SGF.emitLoad(loc, base.getValue(), TL,
                                SGFContext(), IsNotTake);
+          // Error comes back to us with a +1 cleanup that is not a formal
+          // access cleanup. We need it to be that so that the load nests
+          // properly with other lvalue scoped things like the borrow below.
+          error = SGF.emitFormalAccessManagedRValueWithCleanup(
+              loc, error.forward(SGF));
         }
-        addr = SGF.B.createOpenExistentialBox(
-          loc, error.getValue(), getTypeOfRValue().getAddressType());
+        SILType addrType = getTypeOfRValue().getAddressType();
+        addr = SGF.B.createOpenExistentialBox(loc, error, addrType).getValue();
         break;
       }
       default:

lib/SILGen/SILGenPoly.cpp

@@ -4141,6 +4141,7 @@ void SILGenFunction::emitProtocolWitness(AbstractionPattern reqtOrigTy,
     break;
   }
 
+  formalEvalScope.pop();
   scope.pop();
   B.createReturn(loc, reqtResultValue);
 }

test/SIL/ownership-verifier/use_verifier.sil

@@ -238,8 +238,10 @@ bb0(%0 : @owned $SomeError):
   %1 = alloc_existential_box $Error, $SomeError
   %2 = project_existential_box $SomeError in %1 : $Error
   store %0 to [init] %2 : $*SomeError
-  %4 = open_existential_box %1 : $Error to $*@opened("01234567-89AB-CDEF-0123-333333333333") Error
+  %1a = begin_borrow %1 : $Error
+  %4 = open_existential_box %1a : $Error to $*@opened("01234567-89AB-CDEF-0123-333333333333") Error
   destroy_addr %4 : $*@opened("01234567-89AB-CDEF-0123-333333333333") Error
+  end_borrow %1a : $Error
   dealloc_existential_box %1 : $Error, $SomeError
   %9999 = tuple()
   return %9999 : $()

test/SILGen/boxed_existentials.swift

@@ -1,4 +1,3 @@
-
 // RUN: %target-swift-emit-silgen -module-name boxed_existentials -Xllvm -sil-full-demangle %s | %FileCheck %s
 // RUN: %target-swift-emit-silgen -module-name boxed_existentials -Xllvm -sil-full-demangle %s | %FileCheck %s --check-prefix=GUARANTEED
 
@@ -88,16 +87,17 @@ func test_property_of_lvalue(_ x: Error) -> String {
 // CHECK:         store [[ARG_COPY]] to [init] [[PVAR]]
 // CHECK:         [[ACCESS:%.*]] = begin_access [read] [unknown] [[PVAR]] : $*Error
 // CHECK:         [[VALUE_BOX:%.*]] = load [copy] [[ACCESS]]
-// CHECK:         [[VALUE:%.*]] = open_existential_box [[VALUE_BOX]] : $Error to $*[[VALUE_TYPE:@opened\(.*\) Error]]
+// CHECK:         [[BORROWED_VALUE_BOX:%.*]] = begin_borrow [[VALUE_BOX]]
+// CHECK:         [[VALUE:%.*]] = open_existential_box [[BORROWED_VALUE_BOX]] : $Error to $*[[VALUE_TYPE:@opened\(.*\) Error]]
 // CHECK:         [[COPY:%.*]] = alloc_stack $[[VALUE_TYPE]]
 // CHECK:         copy_addr [[VALUE]] to [initialization] [[COPY]]
+// CHECK:         destroy_value [[VALUE_BOX]]
 // CHECK:         [[BORROW:%.*]] = alloc_stack $[[VALUE_TYPE]]
 // CHECK:         copy_addr [[COPY]] to [initialization] [[BORROW]]
 // CHECK:         [[METHOD:%.*]] = witness_method $[[VALUE_TYPE]], #Error._domain!getter.1
 // CHECK:         [[RESULT:%.*]] = apply [[METHOD]]<[[VALUE_TYPE]]>([[BORROW]])
 // CHECK:         destroy_addr [[COPY]]
 // CHECK:         dealloc_stack [[COPY]]
-// CHECK:         destroy_value [[VALUE_BOX]]
 // CHECK:         destroy_value [[VAR]]
 // CHECK-NOT:         destroy_value [[ARG]]
 // CHECK:         return [[RESULT]]
@@ -153,7 +153,8 @@ func test_open_existential_semantics(_ guaranteed: Error,
   // CHECK: [[ACCESS:%.*]] = begin_access [read] [unknown] [[PB]] : $*Error
   // CHECK: [[IMMEDIATE:%.*]] = load [copy] [[ACCESS]]
   // -- need a copy_value to guarantee
-  // CHECK: [[VALUE:%.*]] = open_existential_box [[IMMEDIATE]]
+  // CHECK: [[IMMEDIATE_BORROW:%.*]] = begin_borrow [[IMMEDIATE]]
+  // CHECK: [[VALUE:%.*]] = open_existential_box [[IMMEDIATE_BORROW]]
   // CHECK: [[METHOD:%.*]] = function_ref
   // CHECK-NOT: copy_addr
   // CHECK: apply [[METHOD]]<{{.*}}>([[VALUE]])
@@ -165,7 +166,8 @@ func test_open_existential_semantics(_ guaranteed: Error,
   // GUARANTEED: [[ACCESS:%.*]] = begin_access [read] [unknown] [[PB]] : $*Error
   // GUARANTEED: [[IMMEDIATE:%.*]] = load [copy] [[ACCESS]]
   // -- need a copy_value to guarantee
-  // GUARANTEED: [[VALUE:%.*]] = open_existential_box [[IMMEDIATE]]
+  // GUARANTEED: [[BORROWED_IMMEDIATE:%.*]] = begin_borrow [[IMMEDIATE]]
+  // GUARANTEED: [[VALUE:%.*]] = open_existential_box [[BORROWED_IMMEDIATE]]
   // GUARANTEED: [[METHOD:%.*]] = function_ref
   // GUARANTEED: apply [[METHOD]]<{{.*}}>([[VALUE]])
   // GUARANTEED-NOT: destroy_addr [[VALUE]]
@@ -175,15 +177,17 @@ func test_open_existential_semantics(_ guaranteed: Error,
 
   // CHECK: [[F:%.*]] = function_ref {{.*}}plusOneError
   // CHECK: [[PLUS_ONE:%.*]] = apply [[F]]()
-  // CHECK: [[VALUE:%.*]] = open_existential_box [[PLUS_ONE]]
+  // CHECK: [[PLUS_ONE_BORROW:%.*]] = begin_borrow [[PLUS_ONE]]
+  // CHECK: [[VALUE:%.*]] = open_existential_box [[PLUS_ONE_BORROW]]
   // CHECK: [[METHOD:%.*]] = function_ref
   // CHECK-NOT: copy_addr
   // CHECK: apply [[METHOD]]<{{.*}}>([[VALUE]])
   // CHECK: destroy_value [[PLUS_ONE]]
 
   // GUARANTEED: [[F:%.*]] = function_ref {{.*}}plusOneError
   // GUARANTEED: [[PLUS_ONE:%.*]] = apply [[F]]()
-  // GUARANTEED: [[VALUE:%.*]] = open_existential_box [[PLUS_ONE]]
+  // GUARANTEED: [[BORROWED_PLUS_ONE:%.*]] = begin_borrow [[PLUS_ONE]]
+  // GUARANTEED: [[VALUE:%.*]] = open_existential_box [[BORROWED_PLUS_ONE]]
   // GUARANTEED: [[METHOD:%.*]] = function_ref
   // GUARANTEED: apply [[METHOD]]<{{.*}}>([[VALUE]])
   // GUARANTEED-NOT: destroy_addr [[VALUE]]
@@ -207,15 +211,17 @@ func erasure_to_any(_ guaranteed: Error, _ immediate: Error) -> Any {
   } else if true {
     // CHECK:     [[ACCESS:%.*]] = begin_access [read] [unknown] [[PB]]
     // CHECK:     [[IMMEDIATE:%.*]] = load [copy] [[ACCESS]]
-    // CHECK:     [[FROM_VALUE:%.*]] = open_existential_box [[IMMEDIATE]]
+    // CHECK:     [[BORROWED_IMMEDIATE:%.*]] = begin_borrow [[IMMEDIATE]]
+    // CHECK:     [[FROM_VALUE:%.*]] = open_existential_box [[BORROWED_IMMEDIATE]]
     // CHECK:     [[TO_VALUE:%.*]] = init_existential_addr [[OUT]]
     // CHECK:     copy_addr [[FROM_VALUE]] to [initialization] [[TO_VALUE]]
     // CHECK:     destroy_value [[IMMEDIATE]]
     return immediate
   } else if true {
     // CHECK:     function_ref boxed_existentials.plusOneError
     // CHECK:     [[PLUS_ONE:%.*]] = apply
-    // CHECK:     [[FROM_VALUE:%.*]] = open_existential_box [[PLUS_ONE]]
+    // CHECK:     [[BORROWED_PLUS_ONE:%.*]] = begin_borrow [[PLUS_ONE]]
+    // CHECK:     [[FROM_VALUE:%.*]] = open_existential_box [[BORROWED_PLUS_ONE]]
     // CHECK:     [[TO_VALUE:%.*]] = init_existential_addr [[OUT]]
     // CHECK:     copy_addr [[FROM_VALUE]] to [initialization] [[TO_VALUE]]
     // CHECK:     destroy_value [[PLUS_ONE]]
@@ -236,7 +242,8 @@ extension Error {
 // CHECK:  [[ARRAY_GET:%.*]] = function_ref @$sSayxSicig
 // CHECK:  apply [[ARRAY_GET]]<Error>([[ERROR_ADDR]]
 // CHECK:  [[ERROR:%.*]] = load [take] [[ERROR_ADDR]] : $*Error
-// CHECK:  open_existential_box [[ERROR]]
+// CHECK:  [[BORROWED_ERROR:%.*]] = begin_borrow [[ERROR]]
+// CHECK:  open_existential_box [[BORROWED_ERROR]]
 func test() {
   var errors: [Error] = []
   test_property(errors[0].myError)

test/SILGen/objc_bridging_any.swift

@@ -109,7 +109,8 @@ func passingToId<T: CP, U>(receiver: NSIdLover,
   receiver.takesId(existential)
 
   // CHECK:   [[ERROR_COPY:%.*]] = copy_value [[ERROR]] : $Error
-  // CHECK:   [[ERROR_BOX:%[0-9]+]] = open_existential_box [[ERROR_COPY]] : $Error to $*@opened([[ERROR_ARCHETYPE:"[^"]*"]]) Error
+  // CHECK:   [[BORROWED_ERROR_COPY:%.*]] = begin_borrow [[ERROR_COPY]]
+  // CHECK:   [[ERROR_BOX:%[0-9]+]] = open_existential_box [[BORROWED_ERROR_COPY]] : $Error to $*@opened([[ERROR_ARCHETYPE:"[^"]*"]]) Error
   // CHECK:   [[ERROR_STACK:%[0-9]+]] = alloc_stack $@opened([[ERROR_ARCHETYPE]]) Error
   // CHECK:   copy_addr [[ERROR_BOX]] to [initialization] [[ERROR_STACK]] : $*@opened([[ERROR_ARCHETYPE]]) Error
   // CHECK:   [[BRIDGE_FUNCTION:%[0-9]+]] = function_ref @$ss27_bridgeAnythingToObjectiveCyyXlxlF
@@ -320,9 +321,11 @@ func passingToNullableId<T: CP, U>(receiver: NSIdLover,
   receiver.takesNullableId(existential)
 
   // CHECK-NEXT: [[ERROR_COPY:%.*]] = copy_value [[ERROR]] : $Error
-  // CHECK-NEXT: [[ERROR_BOX:%[0-9]+]] = open_existential_box [[ERROR_COPY]] : $Error to $*@opened([[ERROR_ARCHETYPE:"[^"]*"]]) Error
+  // CHECK-NEXT: [[BORROWED_ERROR_COPY:%.*]] = begin_borrow [[ERROR_COPY]]
+  // CHECK-NEXT: [[ERROR_BOX:%[0-9]+]] = open_existential_box [[BORROWED_ERROR_COPY]] : $Error to $*@opened([[ERROR_ARCHETYPE:"[^"]*"]]) Error
   // CHECK-NEXT: [[ERROR_STACK:%[0-9]+]] = alloc_stack $@opened([[ERROR_ARCHETYPE]]) Error
   // CHECK-NEXT: copy_addr [[ERROR_BOX]] to [initialization] [[ERROR_STACK]] : $*@opened([[ERROR_ARCHETYPE]]) Error
+  // CHECK-NEXT: end_borrow [[BORROWED_ERROR_COPY]]
   // CHECK: [[BRIDGE_FUNCTION:%[0-9]+]] = function_ref @$ss27_bridgeAnythingToObjectiveCyyXlxlF
   // CHECK-NEXT: [[BRIDGED_ERROR:%[0-9]+]] = apply [[BRIDGE_FUNCTION]]<@opened([[ERROR_ARCHETYPE]]) Error>([[ERROR_STACK]])
   // CHECK-NEXT: [[BRIDGED_ERROR_OPT:%[0-9]+]] = enum $Optional<AnyObject>, #Optional.some!enumelt.1, [[BRIDGED_ERROR]] : $AnyObject