FFI JIT for FETCH_DIM/OBJ_W

Author: dstogov

Zend/zend.c

@@ -99,6 +99,7 @@ ZEND_ATTRIBUTE_NONNULL ZEND_API void (*zend_random_bytes_insecure)(zend_random_b
 
 ZEND_API zend_class_entry *zend_ffi_ce = NULL;
 ZEND_API zend_class_entry *zend_ffi_cdata_ce = NULL;
+ZEND_API zend_ffi_cdata* (*zend_ffi_cdata_create)(void *ptr, zend_ffi_type *type) = NULL;
 ZEND_API zend_ffi_dcl*   (*zend_ffi_cache_type_get)(zend_string *str, void *context) = NULL;
 ZEND_API zend_ffi_dcl*   (*zend_ffi_cache_type_add)(zend_string *str, zend_ffi_dcl *dcl, void *context) = NULL;
 ZEND_API zend_ffi_scope* (*zend_ffi_cache_scope_get)(zend_string *str) = NULL;

Zend/zend.h

@@ -394,9 +394,12 @@ extern ZEND_API zend_utility_values zend_uv;
 extern ZEND_API zend_class_entry *zend_ffi_ce;
 extern ZEND_API zend_class_entry *zend_ffi_cdata_ce;
 
-typedef struct _zend_ffi_dcl zend_ffi_dcl;
+typedef struct _zend_ffi_dcl   zend_ffi_dcl;
 typedef struct _zend_ffi_scope zend_ffi_scope;
+typedef struct _zend_ffi_cdata zend_ffi_cdata;
+typedef struct _zend_ffi_type  zend_ffi_type;
 
+ZEND_API extern zend_ffi_cdata* (*zend_ffi_cdata_create)(void *ptr, zend_ffi_type *type);
 ZEND_API extern zend_ffi_dcl*   (*zend_ffi_cache_type_get)(zend_string *str, void *context);
 ZEND_API extern zend_ffi_dcl*   (*zend_ffi_cache_type_add)(zend_string *str, zend_ffi_dcl *dcl, void *context);
 ZEND_API extern zend_ffi_scope* (*zend_ffi_cache_scope_get)(zend_string *str);

ext/ffi/ffi.c

@@ -354,6 +354,22 @@ static ffi_type *zend_ffi_get_type(zend_ffi_type *type) /* {{{ */
 }
 /* }}} */
 
+static zend_ffi_cdata* _zend_ffi_cdata_create(void *ptr, zend_ffi_type *type) /* {{{ */
+{
+	zend_ffi_cdata *cdata = emalloc(sizeof(zend_ffi_cdata));
+
+	zend_ffi_object_init(&cdata->std, zend_ffi_cdata_ce);
+	cdata->std.handlers =
+		(type->kind < ZEND_FFI_TYPE_POINTER) ?
+		&zend_ffi_cdata_value_handlers :
+		&zend_ffi_cdata_handlers;
+	cdata->type = type;
+	cdata->flags = 0;
+	cdata->ptr = ptr;
+	return cdata;
+}
+/* }}} */
+
 static zend_never_inline zend_ffi_cdata *zend_ffi_cdata_to_zval_slow(void *ptr, zend_ffi_type *type, zend_ffi_flags flags) /* {{{ */
 {
 	zend_ffi_cdata *cdata = emalloc(sizeof(zend_ffi_cdata));
@@ -5533,6 +5549,8 @@ ZEND_MINIT_FUNCTION(ffi)
 	zend_ffi_ctype_handlers.get_properties       = zend_fake_get_properties;
 	zend_ffi_ctype_handlers.get_gc               = zend_fake_get_gc;
 
+	zend_ffi_cdata_create = _zend_ffi_cdata_create;
+
 	if (FFI_G(preload)) {
 		return zend_ffi_preload(FFI_G(preload));
 	}

ext/opcache/jit/zend_jit_ir.c

@@ -13087,20 +13087,21 @@ static int zend_jit_ffi_symbols_guard(zend_jit_ctx       *jit,
 	return 1;
 }
 
-static int zend_jit_ffi_fetch_dim_read(zend_jit_ctx       *jit,
-                                       const zend_op      *opline,
-                                       zend_ssa           *ssa,
-                                       const zend_ssa_op  *ssa_op,
-                                       uint32_t            op1_info,
-                                       zend_jit_addr       op1_addr,
-                                       bool                op1_avoid_refcounting,
-                                       uint32_t            op2_info,
-                                       zend_jit_addr       op2_addr,
-                                       zend_ssa_range     *op2_range,
-                                       uint32_t            res_info,
-                                       zend_jit_addr       res_addr,
-                                       zend_ffi_type      *op1_ffi_type,
-                                       zend_jit_ffi_info  *ffi_info)
+static int zend_jit_ffi_fetch_dim(zend_jit_ctx       *jit,
+                                  const zend_op      *opline,
+                                  zend_ssa           *ssa,
+                                  const zend_ssa_op  *ssa_op,
+                                  uint32_t            op1_info,
+                                  zend_jit_addr       op1_addr,
+                                  bool                op1_indirect,
+                                  bool                op1_avoid_refcounting,
+                                  uint32_t            op2_info,
+                                  zend_jit_addr       op2_addr,
+                                  zend_ssa_range     *op2_range,
+                                  uint32_t            res_info,
+                                  zend_jit_addr       res_addr,
+                                  zend_ffi_type      *op1_ffi_type,
+                                  zend_jit_ffi_info  *ffi_info)
 {
 	zend_ffi_type *el_type = ZEND_FFI_TYPE(op1_ffi_type->array.type);
 	ir_ref obj_ref = jit_Z_PTR(jit, op1_addr);
@@ -13122,16 +13123,23 @@ static int zend_jit_ffi_fetch_dim_read(zend_jit_ctx       *jit,
 
 	ir_ref ptr = ir_ADD_A(cdata_ref, ir_MUL_L(jit_Z_LVAL(jit, op2_addr), ir_CONST_LONG(el_type->size)));
 
-	if (!zend_jit_ffi_read(jit, el_type, ptr, res_addr)) {
-		return 0;
+	if (opline->opcode == ZEND_FETCH_DIM_W || opline->opcode == ZEND_FETCH_DIM_RW) {
+		jit_set_Z_PTR(jit, res_addr,
+			ir_CALL_2(IR_ADDR, ir_CONST_FC_FUNC(zend_ffi_cdata_create),
+				ptr, ir_CONST_ADDR(el_type)));
+		jit_set_Z_TYPE_INFO(jit, res_addr, IS_OBJECT_EX);
+	} else {
+		if (!zend_jit_ffi_read(jit, el_type, ptr, res_addr)) {
+			return 0;
+		}
 	}
 
 	if (res_info & MAY_BE_GUARD) {
 		// TODO: ???
 		ssa->var_info[ssa_op->result_def].type &= ~MAY_BE_GUARD;
 	}
 
-	if (opline->opcode != ZEND_FETCH_LIST_R && !op1_avoid_refcounting) {
+	if (opline->opcode != ZEND_FETCH_LIST_R && !op1_avoid_refcounting && !op1_indirect) {
 		if (opline->op1_type & (IS_TMP_VAR|IS_VAR)) {
 			jit_FREE_OP(jit,  opline->op1_type, opline->op1, op1_info, opline);
 		}
@@ -15005,16 +15013,23 @@ static int zend_jit_ffi_fetch_obj(zend_jit_ctx        *jit,
 	ir_ref cdata_ref = ir_LOAD_A(ir_ADD_OFFSET(obj_ref, offsetof(zend_ffi_cdata, ptr)));
 	ir_ref ptr = ir_ADD_A(cdata_ref, ir_CONST_LONG(field->offset));
 
-	if (!zend_jit_ffi_read(jit, field_type, ptr, res_addr)) {
-		return 0;
+	if (opline->opcode == ZEND_FETCH_OBJ_W) {
+		jit_set_Z_PTR(jit, res_addr,
+			ir_CALL_2(IR_ADDR, ir_CONST_FC_FUNC(zend_ffi_cdata_create),
+				ptr, ir_CONST_ADDR(field_type)));
+		jit_set_Z_TYPE_INFO(jit, res_addr, IS_OBJECT_EX);
+	} else {
+		if (!zend_jit_ffi_read(jit, field_type, ptr, res_addr)) {
+			return 0;
+		}
 	}
 
 	if (res_info & MAY_BE_GUARD) {
 		// TODO: ???
 		ssa->var_info[ssa_op->result_def].type &= ~MAY_BE_GUARD;
 	}
 
-	if (!op1_avoid_refcounting) {
+	if (!op1_avoid_refcounting && !op1_indirect) {
 		if (opline->op1_type & (IS_TMP_VAR|IS_VAR)) {
 			jit_FREE_OP(jit,  opline->op1_type, opline->op1, op1_info, opline);
 		}
@@ -15045,16 +15060,24 @@ static int zend_jit_ffi_fetch_sym(zend_jit_ctx        *jit,
 	}
 
 	ir_ref ptr = ir_CONST_ADDR(sym->addr);
-	if (!zend_jit_ffi_read(jit, sym_type, ptr, res_addr)) {
-		return 0;
+
+	if (opline->opcode == ZEND_FETCH_OBJ_W) {
+		jit_set_Z_PTR(jit, res_addr,
+			ir_CALL_2(IR_ADDR, ir_CONST_FC_FUNC(zend_ffi_cdata_create),
+				ptr, ir_CONST_ADDR(sym_type)));
+		jit_set_Z_TYPE_INFO(jit, res_addr, IS_OBJECT_EX);
+	} else {
+		if (!zend_jit_ffi_read(jit, sym_type, ptr, res_addr)) {
+			return 0;
+		}
 	}
 
 	if (res_info & MAY_BE_GUARD) {
 		// TODO: ???
 		ssa->var_info[ssa_op->result_def].type &= ~MAY_BE_GUARD;
 	}
 
-	if (!op1_avoid_refcounting) {
+	if (!op1_avoid_refcounting && !op1_indirect) {
 		if (opline->op1_type & (IS_TMP_VAR|IS_VAR)) {
 			jit_FREE_OP(jit,  opline->op1_type, opline->op1, op1_info, opline);
 		}

ext/opcache/jit/zend_jit_trace.c

@@ -6001,8 +6001,8 @@ static const void *zend_jit_trace(zend_jit_trace_rec *trace_buffer, uint32_t par
 							if (!ffi_info) {
 								ffi_info = zend_arena_calloc(&CG(arena), ssa->vars_count, sizeof(zend_jit_ffi_info));
 							}
-							if (!zend_jit_ffi_fetch_dim_read(&ctx, opline, ssa, ssa_op,
-									op1_info, op1_addr, avoid_refcounting,
+							if (!zend_jit_ffi_fetch_dim(&ctx, opline, ssa, ssa_op,
+									op1_info, op1_addr, 0, avoid_refcounting,
 									op2_info, OP2_REG_ADDR(), OP2_RANGE(),
 									res_info, RES_REG_ADDR(),
 									op1_ffi_type, ffi_info)) {
@@ -6031,9 +6031,11 @@ static const void *zend_jit_trace(zend_jit_trace_rec *trace_buffer, uint32_t par
 						}
 						op1_info = OP1_INFO();
 						op1_addr = OP1_REG_ADDR();
+						op1_indirect = 0;
 						if (opline->op1_type == IS_VAR) {
 							if (orig_op1_type != IS_UNKNOWN
 							 && (orig_op1_type & IS_TRACE_INDIRECT)) {
+								op1_indirect = 1;
 								if (!zend_jit_fetch_indirect_var(&ctx, opline, orig_op1_type,
 										&op1_info, &op1_addr, !ssa->var_info[ssa_op->op1_use].indirect_reference)) {
 									goto jit_failure;
@@ -6058,6 +6060,24 @@ static const void *zend_jit_trace(zend_jit_trace_rec *trace_buffer, uint32_t par
 						op2_info = OP2_INFO();
 						CHECK_OP2_TRACE_TYPE();
 						op1_def_info = OP1_DEF_INFO();
+#ifdef HAVE_FFI
+						if (op1_ffi_type
+						 && (op1_ffi_type->kind == ZEND_FFI_TYPE_ARRAY || op1_ffi_type->kind == ZEND_FFI_TYPE_POINTER)
+						 && op2_info == MAY_BE_LONG
+						 && ZEND_FFI_TYPE(op1_ffi_type->array.type)->kind != ZEND_FFI_TYPE_VOID
+						 && zend_jit_ffi_supported_type(ZEND_FFI_TYPE(op1_ffi_type->array.type))) {
+							if (!ffi_info) {
+								ffi_info = zend_arena_calloc(&CG(arena), ssa->vars_count, sizeof(zend_jit_ffi_info));
+							}
+							if (!zend_jit_ffi_fetch_dim(&ctx, opline, ssa, ssa_op,
+									op1_info, op1_addr, op1_indirect, avoid_refcounting,
+									op2_info, OP2_REG_ADDR(), OP2_RANGE(),
+									res_info, RES_REG_ADDR(),
+									op1_ffi_type, ffi_info)) {
+								goto jit_failure;
+							}
+						} else
+#endif
 						if (!zend_jit_fetch_dim(&ctx, opline,
 								op1_info, op1_addr,
 								op2_info, (opline->op2_type != IS_UNUSED) ? OP2_REG_ADDR() : 0,
@@ -6246,7 +6266,8 @@ static const void *zend_jit_trace(zend_jit_trace_rec *trace_buffer, uint32_t par
 						}
 #ifdef HAVE_FFI
 						if ((opline->opcode == ZEND_FETCH_OBJ_R
-						  || opline->opcode == ZEND_FETCH_OBJ_FUNC_ARG)
+						  || opline->opcode == ZEND_FETCH_OBJ_FUNC_ARG
+						  || opline->opcode == ZEND_FETCH_OBJ_W)
 						 && op1_ffi_type && op1_ffi_type->kind == ZEND_FFI_TYPE_STRUCT) {
 							zend_ffi_field *field = zend_hash_find_ptr(&op1_ffi_type->record.fields,
 								Z_STR_P(RT_CONSTANT(opline, opline->op2)));
@@ -6268,7 +6289,8 @@ static const void *zend_jit_trace(zend_jit_trace_rec *trace_buffer, uint32_t par
 								goto done;
 							}
 						} else if ((opline->opcode == ZEND_FETCH_OBJ_R
-						  || opline->opcode == ZEND_FETCH_OBJ_FUNC_ARG)
+						  || opline->opcode == ZEND_FETCH_OBJ_FUNC_ARG
+						  || opline->opcode == ZEND_FETCH_OBJ_W)
 						 && op1_ffi_symbols) {
 							zend_ffi_symbol *sym = zend_hash_find_ptr(op1_ffi_symbols,
 								Z_STR_P(RT_CONSTANT(opline, opline->op2)));