SILVerifier - disallow borrowed address-only aggregates

atrick · atrick · commit 6794bbae46a8 · 2022-02-16T12:23:01.000-08:00
Verify that address-only values are only forwarded by operations that
either move the value or preserve the representation.
diff --git a/lib/SIL/Verifier/SILVerifier.cpp b/lib/SIL/Verifier/SILVerifier.cpp
@@ -1268,6 +1268,17 @@ class SILVerifier : public SILVerifierBase<SILVerifier> {
     if (auto *term = dyn_cast<OwnershipForwardingTermInst>(i)) {
       checkOwnershipForwardingTermInst(term);
     }
+
+    // Address-only values are potentially move-only, and unmovable if they are
+    // borrowed. Ensure that guaranteed address-only values are forwarded with
+    // the same representation. Non-destructive projection is
+    // allowed. Aggregation and destructive disaggregation is not allowed.
+    if (ownership == OwnershipKind::Guaranteed
+        && OwnershipForwardingMixin::isAddressOnly(i)) {
+      require(OwnershipForwardingMixin::hasSameRepresentation(i),
+              "Forwarding a guaranteed address-only value requires the same "
+              "representation since no move or copy is allowed.");
+    }
   }
 
   void checkDebugVariable(SILInstruction *inst) {
