JIT: fix gc hole in peephole optimizations (#78074)

AndyAyersMS · web-flow · commit af494f4060cd · 2022-11-09T08:06:23.000-08:00
We cannot safely peephole instructions that straddle a gc enable boundary. Detecting when this might happen is a bit subtle; currently we rely on `emitForceNewIG` to be set. Add a new utility 'emitCanPeepholeLastIns` to centralize the logic that decides whether basing current emission on `emitLastIns` is safe. Closes #77661.
diff --git a/src/coreclr/jit/emit.h b/src/coreclr/jit/emit.h
@@ -2180,6 +2180,20 @@ class emitter
 
     instrDesc* emitLastIns;
 
+    // Check if a peephole optimization involving emitLastIns is safe.
+    //
+    // We must have a lastInstr to consult.
+    // The emitForceNewIG check here prevents peepholes from crossing nogc boundaries.
+    // The final check prevents looking across an IG boundary unless we're in an extension IG.
+    bool emitCanPeepholeLastIns()
+    {
+        return (emitLastIns != nullptr) &&                 // there is an emitLastInstr
+               !emitForceNewIG &&                          // and we're not about to start a new IG
+               ((emitCurIGinsCnt > 0) ||                   // and we're not at the start of a new IG
+                ((emitCurIG->igFlags & IGF_EXTEND) != 0)); //    or we are at the start of a new IG,
+                                                           //    and it's an extension IG
+    }
+
 #ifdef TARGET_ARMARCH
     instrDesc* emitLastMemBarrier;
 #endif
diff --git a/src/coreclr/jit/emitarm64.cpp b/src/coreclr/jit/emitarm64.cpp
@@ -15957,7 +15957,7 @@ bool emitter::IsRedundantMov(instruction ins, emitAttr size, regNumber dst, regN
         return false;
     }
 
-    const bool isFirstInstrInBlock = (emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0);
+    const bool canOptimize = emitCanPeepholeLastIns();
 
     if (dst == src)
     {
@@ -15977,17 +15977,16 @@ bool emitter::IsRedundantMov(instruction ins, emitAttr size, regNumber dst, regN
         else if (isGeneralRegisterOrSP(dst) && (size == EA_4BYTE))
         {
             // See if the previous instruction already cleared upper 4 bytes for us unintentionally
-            if (!isFirstInstrInBlock && (emitLastIns != nullptr) && (emitLastIns->idReg1() == dst) &&
-                (emitLastIns->idOpSize() == size) && emitLastIns->idInsIs(INS_ldr, INS_ldrh, INS_ldrb))
+            if (canOptimize && (emitLastIns->idReg1() == dst) && (emitLastIns->idOpSize() == size) &&
+                emitLastIns->idInsIs(INS_ldr, INS_ldrh, INS_ldrb))
             {
                 JITDUMP("\n -- suppressing mov because ldr already cleared upper 4 bytes\n");
                 return true;
             }
         }
     }
 
-    if (!isFirstInstrInBlock && // Don't optimize if instruction is not the first instruction in IG.
-        (emitLastIns != nullptr) &&
+    if (canOptimize &&                       // Don't optimize if unsafe.
         (emitLastIns->idIns() == INS_mov) && // Don't optimize if last instruction was not 'mov'.
         (emitLastIns->idOpSize() == size))   // Don't optimize if operand size is different than previous instruction.
     {
@@ -16065,9 +16064,7 @@ bool emitter::IsRedundantMov(instruction ins, emitAttr size, regNumber dst, regN
 bool emitter::IsRedundantLdStr(
     instruction ins, regNumber reg1, regNumber reg2, ssize_t imm, emitAttr size, insFormat fmt)
 {
-    bool isFirstInstrInBlock = (emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0);
-
-    if (((ins != INS_ldr) && (ins != INS_str)) || (isFirstInstrInBlock) || (emitLastIns == nullptr))
+    if (((ins != INS_ldr) && (ins != INS_str)) || !emitCanPeepholeLastIns())
     {
         return false;
     }
diff --git a/src/coreclr/jit/emitxarch.cpp b/src/coreclr/jit/emitxarch.cpp
@@ -486,10 +486,9 @@ bool emitter::IsFlagsAlwaysModified(instrDesc* id)
 
 bool emitter::AreUpper32BitsZero(regNumber reg)
 {
-    // If there are no instructions in this IG, we can look back at
-    // the previous IG's instructions if this IG is an extension.
+    // Only consider if safe
     //
-    if ((emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0))
+    if (!emitCanPeepholeLastIns())
     {
         return false;
     }
@@ -569,8 +568,9 @@ bool emitter::AreFlagsSetToZeroCmp(regNumber reg, emitAttr opSize, genTreeOps tr
         return false;
     }
 
-    // Don't look back across IG boundaries (possible control flow)
-    if (emitCurIGinsCnt == 0 && ((emitCurIG->igFlags & IGF_EXTEND) == 0))
+    // Only consider if safe
+    //
+    if (!emitCanPeepholeLastIns())
     {
         return false;
     }
@@ -652,8 +652,9 @@ bool emitter::AreFlagsSetForSignJumpOpt(regNumber reg, emitAttr opSize, GenTree*
         return false;
     }
 
-    // Don't look back across IG boundaries (possible control flow)
-    if (emitCurIGinsCnt == 0 && ((emitCurIG->igFlags & IGF_EXTEND) == 0))
+    // Only consider if safe
+    //
+    if (!emitCanPeepholeLastIns())
     {
         return false;
     }
@@ -5717,13 +5718,10 @@ bool emitter::IsRedundantMov(
         return true;
     }
 
-    bool isFirstInstrInBlock = (emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0);
-
     // TODO-XArch-CQ: Certain instructions, such as movaps vs movups, are equivalent in
     // functionality even if their actual identifier differs and we should optimize these
 
-    if (isFirstInstrInBlock ||               // Don't optimize if instruction is the first instruction in IG.
-        (emitLastIns == nullptr) ||          // or if a last instruction doesn't exist
+    if (!emitCanPeepholeLastIns() ||         // Don't optimize if unsafe
         (emitLastIns->idIns() != ins) ||     // or if the instruction is different from the last instruction
         (emitLastIns->idOpSize() != size) || // or if the operand size is different from the last instruction
         (emitLastIns->idInsFmt() != fmt))    // or if the format is different from the last instruction
@@ -8410,14 +8408,10 @@ bool emitter::IsRedundantStackMov(instruction ins, insFormat fmt, emitAttr size,
         return false;
     }
 
-    bool hasSideEffect = HasSideEffect(ins, size);
-
-    bool isFirstInstrInBlock = (emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0);
     // TODO-XArch-CQ: Certain instructions, such as movaps vs movups, are equivalent in
     // functionality even if their actual identifier differs and we should optimize these
 
-    if (isFirstInstrInBlock ||             // Don't optimize if instruction is the first instruction in IG.
-        (emitLastIns == nullptr) ||        // or if a last instruction doesn't exist
+    if (!emitCanPeepholeLastIns() ||       // Don't optimize if unsafe
         (emitLastIns->idIns() != ins) ||   // or if the instruction is different from the last instruction
         (emitLastIns->idOpSize() != size)) // or if the operand size is different from the last instruction
     {
@@ -8434,6 +8428,8 @@ bool emitter::IsRedundantStackMov(instruction ins, insFormat fmt, emitAttr size,
     int       varNum   = emitLastIns->idAddr()->iiaLclVar.lvaVarNum();
     int       lastOffs = emitLastIns->idAddr()->iiaLclVar.lvaOffset();
 
+    const bool hasSideEffect = HasSideEffect(ins, size);
+
     // Check if the last instruction and current instructions use the same register and local memory.
     if (varNum == varx && lastReg1 == ireg && lastOffs == offs)
     {

Original file line number	Diff line number	Diff line change
`@@ -15957,7 +15957,7 @@ bool emitter::IsRedundantMov(instruction ins, emitAttr size, regNumber dst, regN`
`15957`	`15957`	`return false;`
`15958`	`15958`	`}`
`15959`	`15959`
`15960`		`- const bool isFirstInstrInBlock = (emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0);`
	`15960`	`+ const bool canOptimize = emitCanPeepholeLastIns();`
`15961`	`15961`
`15962`	`15962`	`if (dst == src)`
`15963`	`15963`	`{`
`@@ -15977,17 +15977,16 @@ bool emitter::IsRedundantMov(instruction ins, emitAttr size, regNumber dst, regN`
`15977`	`15977`	`else if (isGeneralRegisterOrSP(dst) && (size == EA_4BYTE))`
`15978`	`15978`	`{`
`15979`	`15979`	`// See if the previous instruction already cleared upper 4 bytes for us unintentionally`
`15980`		`- if (!isFirstInstrInBlock && (emitLastIns != nullptr) && (emitLastIns->idReg1() == dst) &&`
`15981`		`- (emitLastIns->idOpSize() == size) && emitLastIns->idInsIs(INS_ldr, INS_ldrh, INS_ldrb))`
	`15980`	`+ if (canOptimize && (emitLastIns->idReg1() == dst) && (emitLastIns->idOpSize() == size) &&`
	`15981`	`+ emitLastIns->idInsIs(INS_ldr, INS_ldrh, INS_ldrb))`
`15982`	`15982`	`{`
`15983`	`15983`	`JITDUMP("\n -- suppressing mov because ldr already cleared upper 4 bytes\n");`
`15984`	`15984`	`return true;`
`15985`	`15985`	`}`
`15986`	`15986`	`}`
`15987`	`15987`	`}`
`15988`	`15988`
`15989`		`- if (!isFirstInstrInBlock && // Don't optimize if instruction is not the first instruction in IG.`
`15990`		`- (emitLastIns != nullptr) &&`
	`15989`	`+ if (canOptimize && // Don't optimize if unsafe.`
`15991`	`15990`	`(emitLastIns->idIns() == INS_mov) && // Don't optimize if last instruction was not 'mov'.`
`15992`	`15991`	`(emitLastIns->idOpSize() == size)) // Don't optimize if operand size is different than previous instruction.`
`15993`	`15992`	`{`
`@@ -16065,9 +16064,7 @@ bool emitter::IsRedundantMov(instruction ins, emitAttr size, regNumber dst, regN`
`16065`	`16064`	`bool emitter::IsRedundantLdStr(`
`16066`	`16065`	`instruction ins, regNumber reg1, regNumber reg2, ssize_t imm, emitAttr size, insFormat fmt)`
`16067`	`16066`	`{`
`16068`		`- bool isFirstInstrInBlock = (emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0);`
`16069`		`-`
`16070`		`- if (((ins != INS_ldr) && (ins != INS_str)) \|\| (isFirstInstrInBlock) \|\| (emitLastIns == nullptr))`
	`16067`	`+ if (((ins != INS_ldr) && (ins != INS_str)) \|\| !emitCanPeepholeLastIns())`
`16071`	`16068`	`{`
`16072`	`16069`	`return false;`
`16073`	`16070`	`}`
Original file line number	Diff line number	Diff line change
`@@ -486,10 +486,9 @@ bool emitter::IsFlagsAlwaysModified(instrDesc* id)`
`486`	`486`
`487`	`487`	`bool emitter::AreUpper32BitsZero(regNumber reg)`
`488`	`488`	`{`
`489`		`- // If there are no instructions in this IG, we can look back at`
`490`		`- // the previous IG's instructions if this IG is an extension.`
	`489`	`+ // Only consider if safe`
`491`	`490`	`//`
`492`		`- if ((emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0))`
	`491`	`+ if (!emitCanPeepholeLastIns())`
`493`	`492`	`{`
`494`	`493`	`return false;`
`495`	`494`	`}`
`@@ -569,8 +568,9 @@ bool emitter::AreFlagsSetToZeroCmp(regNumber reg, emitAttr opSize, genTreeOps tr`
`569`	`568`	`return false;`
`570`	`569`	`}`
`571`	`570`
`572`		`- // Don't look back across IG boundaries (possible control flow)`
`573`		`- if (emitCurIGinsCnt == 0 && ((emitCurIG->igFlags & IGF_EXTEND) == 0))`
	`571`	`+ // Only consider if safe`
	`572`	`+ //`
	`573`	`+ if (!emitCanPeepholeLastIns())`
`574`	`574`	`{`
`575`	`575`	`return false;`
`576`	`576`	`}`
`@@ -652,8 +652,9 @@ bool emitter::AreFlagsSetForSignJumpOpt(regNumber reg, emitAttr opSize, GenTree*`
`652`	`652`	`return false;`
`653`	`653`	`}`
`654`	`654`
`655`		`- // Don't look back across IG boundaries (possible control flow)`
`656`		`- if (emitCurIGinsCnt == 0 && ((emitCurIG->igFlags & IGF_EXTEND) == 0))`
	`655`	`+ // Only consider if safe`
	`656`	`+ //`
	`657`	`+ if (!emitCanPeepholeLastIns())`
`657`	`658`	`{`
`658`	`659`	`return false;`
`659`	`660`	`}`
`@@ -5717,13 +5718,10 @@ bool emitter::IsRedundantMov(`
`5717`	`5718`	`return true;`
`5718`	`5719`	`}`
`5719`	`5720`
`5720`		`- bool isFirstInstrInBlock = (emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0);`
`5721`		`-`
`5722`	`5721`	`// TODO-XArch-CQ: Certain instructions, such as movaps vs movups, are equivalent in`
`5723`	`5722`	`// functionality even if their actual identifier differs and we should optimize these`
`5724`	`5723`
`5725`		`- if (isFirstInstrInBlock \|\| // Don't optimize if instruction is the first instruction in IG.`
`5726`		`- (emitLastIns == nullptr) \|\| // or if a last instruction doesn't exist`
	`5724`	`+ if (!emitCanPeepholeLastIns() \|\| // Don't optimize if unsafe`
`5727`	`5725`	`(emitLastIns->idIns() != ins) \|\| // or if the instruction is different from the last instruction`
`5728`	`5726`	`(emitLastIns->idOpSize() != size) \|\| // or if the operand size is different from the last instruction`
`5729`	`5727`	`(emitLastIns->idInsFmt() != fmt)) // or if the format is different from the last instruction`
`@@ -8410,14 +8408,10 @@ bool emitter::IsRedundantStackMov(instruction ins, insFormat fmt, emitAttr size,`
`8410`	`8408`	`return false;`
`8411`	`8409`	`}`
`8412`	`8410`
`8413`		`- bool hasSideEffect = HasSideEffect(ins, size);`
`8414`		`-`
`8415`		`- bool isFirstInstrInBlock = (emitCurIGinsCnt == 0) && ((emitCurIG->igFlags & IGF_EXTEND) == 0);`
`8416`	`8411`	`// TODO-XArch-CQ: Certain instructions, such as movaps vs movups, are equivalent in`
`8417`	`8412`	`// functionality even if their actual identifier differs and we should optimize these`
`8418`	`8413`
`8419`		`- if (isFirstInstrInBlock \|\| // Don't optimize if instruction is the first instruction in IG.`
`8420`		`- (emitLastIns == nullptr) \|\| // or if a last instruction doesn't exist`
	`8414`	`+ if (!emitCanPeepholeLastIns() \|\| // Don't optimize if unsafe`
`8421`	`8415`	`(emitLastIns->idIns() != ins) \|\| // or if the instruction is different from the last instruction`
`8422`	`8416`	`(emitLastIns->idOpSize() != size)) // or if the operand size is different from the last instruction`
`8423`	`8417`	`{`
`@@ -8434,6 +8428,8 @@ bool emitter::IsRedundantStackMov(instruction ins, insFormat fmt, emitAttr size,`
`8434`	`8428`	`int varNum = emitLastIns->idAddr()->iiaLclVar.lvaVarNum();`
`8435`	`8429`	`int lastOffs = emitLastIns->idAddr()->iiaLclVar.lvaOffset();`
`8436`	`8430`
	`8431`	`+ const bool hasSideEffect = HasSideEffect(ins, size);`
	`8432`	`+`
`8437`	`8433`	`// Check if the last instruction and current instructions use the same register and local memory.`
`8438`	`8434`	`if (varNum == varx && lastReg1 == ireg && lastOffs == offs)`
`8439`	`8435`	`{`