Bug fixes for dynamic reflection invoke using the call converter:

1) Rassing InvokeUtils.DynamicInvokeParamType.Ref flag to InvokeUtils.DynamicInvokeParamHelperCore() only when the argument is explicitly passed byref (method signature has 'byref').

2) When the argument type of the callee was a reference type, we were using typeof(object) as the arg type, and calling InvokeUtils.DynamicInvokeParamHelperCore (which checks for argument types). This is incorrect, and we should use the exact typehandle of the argument type when calling InvokeUtils.DynamicInvokeParamHelperCore.
To fix this, I changed all the call converter APIs to always return the TypeHandle of the argument/return type, and not just in the cases of valuetypes. There is no reason to return default(TypeHandle) for reference types. There is an API called IsValueType on TypeHandle. If we need to check if a th is valuetype, just call the IsValueType API instead of .IsNull (which makes a lot more sense really).

3) Reflection invokers emulated by the calling convention converter, and returning void, need to return a 'null' object back to the caller (the signature of the invoker has return type of object. The statically compiled versions of these invokers return null in the "return void" scenarios)

[tfs-changeset: 1679620]

Author: Fadi Hanna

src/System.Private.TypeLoader/src/Internal/Runtime/TypeLoader/CallConverterThunk.CallConversionParameters.cs

@@ -378,10 +378,11 @@ private object BoxedCallerFirstArgument
 
                 byte* pSrc = _callerTransitionBlock + ofsCaller;
 
-                TypeHandle thValueType;
-                _callerArgs.GetArgType(out thValueType);
+                TypeHandle thArgType;
+                _callerArgs.GetArgType(out thArgType);
+                Debug.Assert(!thArgType.IsNull());
 
-                if (thValueType.IsNull())
+                if (!thArgType.IsValueType())
                 {
                     Debug.Assert(_callerArgs.GetArgSize() == IntPtr.Size);
 
@@ -395,7 +396,7 @@ private object BoxedCallerFirstArgument
                 }
                 else
                 {
-                    RuntimeTypeHandle argEEType = thValueType.GetRuntimeTypeHandle();
+                    RuntimeTypeHandle argEEType = thArgType.GetRuntimeTypeHandle();
 
                     if (_callerArgs.IsArgPassedByRef())
                     {
@@ -506,7 +507,7 @@ internal void* CallerReturnBuffer
                     // We'll need to create a return buffer, or assign into the return buffer when the actual call completes.
                     if (_calleeArgs.HasRetBuffArg())
                     {
-                        TypeHandle thValueType;
+                        TypeHandle thRetType;
                         bool forceByRefUnused;
                         void* callerRetBuffer = null;
 
@@ -516,8 +517,9 @@ internal void* CallerReturnBuffer
                             // value, of the same type as the return value type handle in the callee's arguments.
                             Debug.Assert(!_callerArgs.HasRetBuffArg());
 
-                            CorElementType returnType = _calleeArgs.GetReturnType(out thValueType, out forceByRefUnused);
-                            RuntimeTypeHandle returnValueType = thValueType.IsNull() ? typeof(object).TypeHandle : thValueType.GetRuntimeTypeHandle();
+                            CorElementType returnType = _calleeArgs.GetReturnType(out thRetType, out forceByRefUnused);
+                            Debug.Assert(!thRetType.IsNull());
+                            RuntimeTypeHandle returnValueType = thRetType.IsValueType() ? thRetType.GetRuntimeTypeHandle() : typeof(object).TypeHandle;
                             s_pinnedGCHandles._returnObjectHandle.Target = RuntimeAugments.RawNewObject(returnValueType);
 
                             // The transition block has a space reserved for storing return buffer data. This is protected conservatively.
@@ -537,8 +539,8 @@ internal void* CallerReturnBuffer
                             callerRetBuffer = _callerTransitionBlock + TransitionBlock.GetOffsetOfReturnValuesBlock();
 
                             // Make sure buffer is nulled out, and setup the return buffer location.
-                            CorElementType returnType = _callerArgs.GetReturnType(out thValueType, out forceByRefUnused);
-                            int returnSize = TypeHandle.GetElemSize(returnType, thValueType);
+                            CorElementType returnType = _callerArgs.GetReturnType(out thRetType, out forceByRefUnused);
+                            int returnSize = TypeHandle.GetElemSize(returnType, thRetType);
                             CallConverterThunk.memzeroPointerAligned((byte*)callerRetBuffer, returnSize);
                         }
 
@@ -630,20 +632,21 @@ internal IntPtr InvokeObjectArrayDelegate(object[] arguments)
             Debug.Assert(targetDelegate != null);
 
             object result = targetDelegate(arguments ?? Array.Empty<object>());
-            TypeHandle thValueType;
-            bool forceByRefUnused;
 
-            _calleeArgs.GetReturnType(out thValueType, out forceByRefUnused);
+            TypeHandle thArgType;
+            bool forceByRefUnused;
+            _calleeArgs.GetReturnType(out thArgType, out forceByRefUnused);
+            Debug.Assert(!thArgType.IsNull());
 
             unsafe
             {
-                if (!thValueType.IsNull() && thValueType.GetRuntimeTypeHandle().ToEETypePtr()->IsNullable)
+                if (thArgType.IsValueType() && thArgType.GetRuntimeTypeHandle().ToEETypePtr()->IsNullable)
                 {
-                    object nullableObj = RuntimeAugments.RawNewObject(thValueType.GetRuntimeTypeHandle());
+                    object nullableObj = RuntimeAugments.RawNewObject(thArgType.GetRuntimeTypeHandle());
                     s_pinnedGCHandles._returnObjectHandle.Target = nullableObj;
                     if (result != null)
                     {
-                        RuntimeAugments.StoreValueTypeField(ref RuntimeAugments.GetRawData(nullableObj), result, thValueType.GetRuntimeTypeHandle());
+                        RuntimeAugments.StoreValueTypeField(ref RuntimeAugments.GetRawData(nullableObj), result, thArgType.GetRuntimeTypeHandle());
                     }
                 }
                 else

src/System.Private.TypeLoader/src/Internal/Runtime/TypeLoader/CallConverterThunk.cs

@@ -611,7 +611,8 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
             int ofsCallee;
             int ofsCaller;
             TypeHandle thDummy;
-            TypeHandle thValueType;
+            TypeHandle thArgType;
+            TypeHandle thRetType;
             IntPtr argPtr;
 #if CALLDESCR_FPARGREGS
             FloatArgumentRegisters* pFloatArgumentRegisters = null;
@@ -688,7 +689,8 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
                             InvokeUtils.DynamicInvokeParamLookupType paramLookupType;
 
                             RuntimeTypeHandle argumentRuntimeTypeHandle;
-                            CorElementType argType = conversionParams._calleeArgs.GetArgType(out thValueType);
+                            CorElementType argType = conversionParams._calleeArgs.GetArgType(out thArgType);
+                            Debug.Assert(!thArgType.IsNull());
 
                             if (argType == CorElementType.ELEMENT_TYPE_BYREF)
                             {
@@ -700,14 +702,15 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
                             }
                             else
                             {
-                                argumentRuntimeTypeHandle = (thValueType.IsNull() ? typeof(object).TypeHandle : thValueType.GetRuntimeTypeHandle());
+                                // We need to check the exact type handle of the argument being passed during reflection invoke scenarios.
+                                argumentRuntimeTypeHandle = thArgType.GetRuntimeTypeHandle();
                             }
 
                             object invokeParam = InvokeUtils.DynamicInvokeParamHelperCore(
                                 argumentRuntimeTypeHandle,
                                 out paramLookupType,
                                 out index,
-                                conversionParams._calleeArgs.IsArgPassedByRef() ? InvokeUtils.DynamicInvokeParamType.Ref : InvokeUtils.DynamicInvokeParamType.In);
+                                argType == CorElementType.ELEMENT_TYPE_BYREF ? InvokeUtils.DynamicInvokeParamType.Ref : InvokeUtils.DynamicInvokeParamType.In);
 
                             if (paramLookupType == InvokeUtils.DynamicInvokeParamLookupType.ValuetypeObjectReturned)
                             {
@@ -786,9 +789,10 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
 
                         argumentsAsObjectArray = argumentsAsObjectArray ?? new object[conversionParams._callerArgs.NumFixedArgs()];
 
-                        conversionParams._callerArgs.GetArgType(out thValueType);
+                        conversionParams._callerArgs.GetArgType(out thArgType);
+                        Debug.Assert(!thArgType.IsNull());
 
-                        if (thValueType.IsNull())
+                        if (!thArgType.IsValueType())
                         {
                             Debug.Assert(!isCallerArgPassedByRef);
                             Debug.Assert(conversionParams._callerArgs.GetArgSize() == IntPtr.Size);
@@ -798,11 +802,11 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
                         {
                             if (isCallerArgPassedByRef)
                             {
-                                argumentsAsObjectArray[arg] = RuntimeAugments.Box(thValueType.GetRuntimeTypeHandle(), new IntPtr(*((void**)pSrc)));
+                                argumentsAsObjectArray[arg] = RuntimeAugments.Box(thArgType.GetRuntimeTypeHandle(), new IntPtr(*((void**)pSrc)));
                             }
                             else
                             {
-                                argumentsAsObjectArray[arg] = RuntimeAugments.Box(thValueType.GetRuntimeTypeHandle(), new IntPtr(pSrc));
+                                argumentsAsObjectArray[arg] = RuntimeAugments.Box(thArgType.GetRuntimeTypeHandle(), new IntPtr(pSrc));
                             }
                         }
                     }
@@ -817,7 +821,7 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
                             }
                             else
                             {
-                                CorElementType argElemType = conversionParams._calleeArgs.GetArgType(out thValueType);
+                                CorElementType argElemType = conversionParams._calleeArgs.GetArgType(out thArgType);
                                 ExtendingCopy_NoWriteBarrier(pSrc, pDest, argElemType, stackSizeCaller);
                             }
                         }
@@ -834,7 +838,7 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
                             {
                                 // Copy into the destination the data pointed at by the pointer in the source(caller) data.
                                 byte* pRealSrc = *(byte**)pSrc;
-                                CorElementType argElemType = conversionParams._calleeArgs.GetArgType(out thValueType);
+                                CorElementType argElemType = conversionParams._calleeArgs.GetArgType(out thArgType);
                                 ExtendingCopy_NoWriteBarrier(pRealSrc, pDest, argElemType, stackSizeCaller);
                             }
                         }
@@ -970,16 +974,17 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
             // the target method called by the delegate. Use the callee's ArgIterator instead to get the return type info
             if (conversionParams._conversionInfo.IsAnyDynamicInvokerThunk)
             {
-                returnType = conversionParams._calleeArgs.GetReturnType(out thValueType, out forceByRefUnused);
+                returnType = conversionParams._calleeArgs.GetReturnType(out thRetType, out forceByRefUnused);
             }
             else
             {
-                returnType = conversionParams._callerArgs.GetReturnType(out thValueType, out forceByRefUnused);
+                returnType = conversionParams._callerArgs.GetReturnType(out thRetType, out forceByRefUnused);
             }
-            int returnSize = TypeHandle.GetElemSize(returnType, thValueType);
+            Debug.Assert(!thRetType.IsNull());
+            int returnSize = TypeHandle.GetElemSize(returnType, thRetType);
 
             // Unbox result of object array delegate call
-            if (conversionParams._conversionInfo.IsObjectArrayDelegateThunk && !thValueType.IsNull() && pinnedResultObject != IntPtr.Zero)
+            if (conversionParams._conversionInfo.IsObjectArrayDelegateThunk && thRetType.IsValueType() && pinnedResultObject != IntPtr.Zero)
                 pinnedResultObject += IntPtr.Size;
 
             // Process return values
@@ -1009,7 +1014,7 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
 
                     bool useGCSafeCopy = false;
 
-                    if ((returnType == CorElementType.ELEMENT_TYPE_CLASS) || !thValueType.IsNull())
+                    if ((returnType == CorElementType.ELEMENT_TYPE_CLASS) || thRetType.IsValueType())
                     {
                         // The GC Safe copy assumes that memory pointers are pointer-aligned and copy length is a multiple of pointer-size
                         if (isPointerAligned(incomingRetBufPointer) && isPointerAligned(sourceBuffer) && (returnSize % sizeof(IntPtr) == 0))
@@ -1082,7 +1087,7 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
 
                 if (conversionParams._conversionInfo.IsObjectArrayDelegateThunk)
                 {
-                    if (!thValueType.IsNull())
+                    if (thRetType.IsValueType())
                     {
                         returnValueToCopy = (void*)pinnedResultObject;
 #if _TARGET_X86_
@@ -1107,22 +1112,30 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
 #endif
                     }
                 }
-                else if (conversionParams._conversionInfo.IsAnyDynamicInvokerThunk && !thValueType.IsNull())
+                else if (conversionParams._conversionInfo.IsAnyDynamicInvokerThunk && thRetType.IsValueType())
                 {
                     Debug.Assert(returnValueToCopy != null);
 
-                    if (!conversionParams._callerArgs.HasRetBuffArg() && conversionParams._calleeArgs.HasRetBuffArg())
-                        returnValueToCopy = (void*)(new IntPtr(*((void**)returnValueToCopy)) + IntPtr.Size);
+                    if (conversionParams._calleeArgs.GetReturnType(out thDummy, out dummyBool) == CorElementType.ELEMENT_TYPE_VOID)
+                    {
+                        // Invokers returning void need to return a null object
+                        returnValueToCopy = null;
+                    }
+                    else
+                    {
+                        if (!conversionParams._callerArgs.HasRetBuffArg() && conversionParams._calleeArgs.HasRetBuffArg())
+                            returnValueToCopy = (void*)(new IntPtr(*((void**)returnValueToCopy)) + IntPtr.Size);
 
-                    // Need to box value type before returning it
-                    object returnValue = RuntimeAugments.Box(thValueType.GetRuntimeTypeHandle(), new IntPtr(returnValueToCopy));
-                    CallConversionParameters.s_pinnedGCHandles._returnObjectHandle.Target = returnValue;
-                    pinnedResultObject = CallConversionParameters.s_pinnedGCHandles._returnObjectHandle.GetRawTargetAddress();
-                    returnValueToCopy = (void*)&pinnedResultObject;
+                        // Need to box value type before returning it
+                        object returnValue = RuntimeAugments.Box(thRetType.GetRuntimeTypeHandle(), new IntPtr(returnValueToCopy));
+                        CallConversionParameters.s_pinnedGCHandles._returnObjectHandle.Target = returnValue;
+                        pinnedResultObject = CallConversionParameters.s_pinnedGCHandles._returnObjectHandle.GetRawTargetAddress();
+                        returnValueToCopy = (void*)&pinnedResultObject;
+                    }
                     // Since we've changed the returnValueToCopy here, we need to update the idea of what we are returning
                     returnType = CorElementType.ELEMENT_TYPE_OBJECT;
-                    thValueType = default(TypeHandle);
-                    returnSize = TypeHandle.GetElemSize(returnType, thValueType);
+                    thRetType = default(TypeHandle);
+                    returnSize = TypeHandle.GetElemSize(returnType, thRetType);
 
 #if _TARGET_X86_
                     ((TransitionBlock*)callerTransitionBlock)->m_returnBlock.returnValue = pinnedResultObject;
@@ -1188,23 +1201,14 @@ unsafe private static void InvokeTarget(void* allocatedStackBuffer, ref CallConv
                 return;
 #else
                 // If we reach here, we are returning value in the integer registers.
-                if (conversionParams._conversionInfo.IsObjectArrayDelegateThunk && (!thValueType.IsNull()))
+                if (returnValueToCopy == null)
                 {
-                    if (returnValueToCopy == null)
-                    {
-                        // object array delegate thunk result is a null object. We'll fill the return buffer with 'returnSize' zeros in that case
-                        memzeroPointer(callerTransitionBlock + TransitionBlock.GetOffsetOfArgumentRegisters(), returnSize);
-                    }
-                    else
-                    {
-                        ExtendingCopy_WriteBarrier(returnValueToCopy, callerTransitionBlock + TransitionBlock.GetOffsetOfArgumentRegisters(), returnType, returnSize);
-                    }
+                    // Return result is a null object. We'll fill the return buffer with 'returnSize' zeros in that case
+                    memzeroPointer(callerTransitionBlock + TransitionBlock.GetOffsetOfArgumentRegisters(), returnSize);
                 }
                 else
                 {
-                    Debug.Assert(returnValueToCopy != null);
-
-                    ExtendingCopy_NoWriteBarrier(returnValueToCopy, callerTransitionBlock + TransitionBlock.GetOffsetOfArgumentRegisters(), returnType, returnSize);
+                    ExtendingCopy_WriteBarrier(returnValueToCopy, callerTransitionBlock + TransitionBlock.GetOffsetOfArgumentRegisters(), returnType, returnSize);
                 }
                 conversionParams._invokeReturnValue = ReturnIntegerPointReturnThunk;
 #endif