Add class abd FFI type guards

dstogov · dstogov · commit 49f86a701e8d · 2024-07-02T21:06:33.000+03:00
diff --git a/ext/opcache/jit/zend_jit_ir.c b/ext/opcache/jit/zend_jit_ir.c
@@ -12426,6 +12426,23 @@ static int zend_jit_fetch_dim_read(zend_jit_ctx       *jit,
 }
 
 #ifdef HAVE_FFI
+static int zend_jit_class_guard(zend_jit_ctx *jit, const zend_op *opline, ir_ref obj_ref, zend_class_entry *ce);
+
+static int zend_jit_ffi_type_guard(zend_jit_ctx *jit, const zend_op *opline, ir_ref obj_ref, zend_ffi_type *ffi_type)
+{
+	int32_t exit_point = zend_jit_trace_get_exit_point(opline, 0);
+	const void *exit_addr = zend_jit_trace_get_exit_addr(exit_point);
+
+	if (!exit_addr) {
+		return 0;
+	}
+
+	ir_GUARD(ir_EQ(ir_LOAD_A(ir_ADD_OFFSET(obj_ref, offsetof(zend_ffi_cdata, type))), ir_CONST_ADDR(ffi_type)),
+		ir_CONST_ADDR(exit_addr));
+
+	return 1;
+}
+
 static int zend_jit_ffi_abc(zend_jit_ctx       *jit,
                             const zend_op      *opline,
                             zend_ffi_type      *ffi_type,
@@ -12492,15 +12509,30 @@ static int zend_jit_ffi_fetch_dim_read(zend_jit_ctx       *jit,
 {
 	uint32_t res_type;
 	zend_ffi_type *el_type = ZEND_FFI_TYPE(op1_ffi_type->array.type);
+	ir_ref obj_ref = jit_Z_PTR(jit, op1_addr);
+
+	if (ssa->var_info
+	 && ssa_op->op1_use >= 0
+	 && ssa->var_info[ssa_op->op1_use].ce != zend_ffi_cdata_ce) {
+		if (!zend_jit_class_guard(jit, opline, obj_ref, zend_ffi_cdata_ce)) {
+			return 0;
+		}
+		if (ssa->var_info && ssa_op->op1_use >= 0) {
+			ssa->var_info[ssa_op->op1_use].type |= MAY_BE_CLASS_GUARD;
+			ssa->var_info[ssa_op->op1_use].ce = zend_ffi_cdata_ce;
+			ssa->var_info[ssa_op->op1_use].is_instanceof = 0;
+		}
+	}
 
-	// TODO: ce guard ???
 	// TODO: ffi type guard ???
+	if (!zend_jit_ffi_type_guard(jit, opline, obj_ref, op1_ffi_type)) {
+		return 0;
+	}
 
 	if (!zend_jit_ffi_abc(jit, opline, op1_ffi_type, op2_info, op2_addr, op2_range)) {
 		return 0;
 	}
 
-	ir_ref obj_ref = jit_Z_PTR(jit, op1_addr);
 	ir_ref cdata_ref = ir_LOAD_A(ir_ADD_OFFSET(obj_ref, offsetof(zend_ffi_cdata, ptr)));
 
 	if (op1_ffi_type->kind == ZEND_FFI_TYPE_POINTER) {
@@ -13238,29 +13270,51 @@ static int zend_jit_assign_dim(zend_jit_ctx  *jit,
 }
 
 #ifdef HAVE_FFI
-static int zend_jit_ffi_assign_dim(zend_jit_ctx  *jit,
-                                   const zend_op *opline,
-                                   uint32_t       op1_info,
-                                   zend_jit_addr  op1_addr,
-                                   uint32_t       op2_info,
-                                   zend_jit_addr  op2_addr,
-                                   zend_ssa_range *op2_range,
-                                   uint32_t       val_info,
-                                   zend_jit_addr  op3_addr,
-                                   zend_jit_addr  op3_def_addr,
-                                   zend_jit_addr  res_addr,
-                                   zend_ffi_type  *op1_ffi_type)
+static int zend_jit_ffi_assign_dim(zend_jit_ctx      *jit,
+                                   const zend_op     *opline,
+                                   zend_ssa          *ssa,
+                                   const zend_ssa_op *ssa_op,
+                                   uint32_t           op1_info,
+                                   zend_jit_addr      op1_addr,
+                                   uint32_t           op2_info,
+                                   zend_jit_addr      op2_addr,
+                                   zend_ssa_range    *op2_range,
+                                   uint32_t           val_info,
+                                   zend_jit_addr      op3_addr,
+                                   zend_jit_addr      op3_def_addr,
+                                   zend_jit_addr      res_addr,
+                                   zend_ffi_type     *op1_ffi_type)
 {
 	zend_ffi_type *el_type = ZEND_FFI_TYPE(op1_ffi_type->array.type);
+	ir_ref obj_ref = jit_Z_PTR(jit, op1_addr);
+
+	if (ssa->var_info
+	 && ssa_op->op1_use >= 0
+	 && ssa->var_info[ssa_op->op1_use].ce != zend_ffi_cdata_ce) {
+		if (!zend_jit_class_guard(jit, opline, obj_ref, zend_ffi_cdata_ce)) {
+			return 0;
+		}
+		if (ssa->var_info && ssa_op->op1_use >= 0) {
+			ssa->var_info[ssa_op->op1_use].type |= MAY_BE_CLASS_GUARD;
+			ssa->var_info[ssa_op->op1_use].ce = zend_ffi_cdata_ce;
+			ssa->var_info[ssa_op->op1_use].is_instanceof = 0;
+		}
+		if (ssa->var_info && ssa_op->op1_def >= 0) {
+			ssa->var_info[ssa_op->op1_def].type |= MAY_BE_CLASS_GUARD;
+			ssa->var_info[ssa_op->op1_def].ce = zend_ffi_cdata_ce;
+			ssa->var_info[ssa_op->op1_def].is_instanceof = 0;
+		}
+	}
 
-	// TODO: ce guard ???
 	// TODO: ffi type guard ???
+	if (!zend_jit_ffi_type_guard(jit, opline, obj_ref, op1_ffi_type)) {
+		return 0;
+	}
 
 	if (!zend_jit_ffi_abc(jit, opline, op1_ffi_type, op2_info, op2_addr, op2_range)) {
 		return 0;
 	}
 
-	ir_ref obj_ref = jit_Z_PTR(jit, op1_addr);
 	ir_ref cdata_ref = ir_LOAD_A(ir_ADD_OFFSET(obj_ref, offsetof(zend_ffi_cdata, ptr)));
 
 	if (op1_ffi_type->kind == ZEND_FFI_TYPE_POINTER) {
@@ -13730,29 +13784,51 @@ static int zend_jit_ffi_assign_op_helper(zend_jit_ctx   *jit,
 	return 1;
 }
 
-static int zend_jit_ffi_assign_dim_op(zend_jit_ctx   *jit,
-                                      const zend_op  *opline,
-                                      uint32_t        op1_info,
-                                      uint32_t        op1_def_info,
-                                      zend_jit_addr   op1_addr,
-                                      uint32_t        op2_info,
-                                      zend_jit_addr   op2_addr,
-                                      zend_ssa_range *op2_range,
-                                      uint32_t        op1_data_info,
-                                      zend_jit_addr   op3_addr,
-                                      zend_ssa_range *op1_data_range,
-                                      zend_ffi_type  *op1_ffi_type)
+static int zend_jit_ffi_assign_dim_op(zend_jit_ctx      *jit,
+                                      const zend_op     *opline,
+                                      zend_ssa          *ssa,
+                                      const zend_ssa_op *ssa_op,
+                                      uint32_t           op1_info,
+                                      uint32_t           op1_def_info,
+                                      zend_jit_addr      op1_addr,
+                                      uint32_t           op2_info,
+                                      zend_jit_addr      op2_addr,
+                                      zend_ssa_range    *op2_range,
+                                      uint32_t           op1_data_info,
+                                      zend_jit_addr      op3_addr,
+                                      zend_ssa_range    *op1_data_range,
+                                      zend_ffi_type     *op1_ffi_type)
 {
 	zend_ffi_type *el_type = ZEND_FFI_TYPE(op1_ffi_type->array.type);
+	ir_ref obj_ref = jit_Z_PTR(jit, op1_addr);
+
+	if (ssa->var_info
+	 && ssa_op->op1_use >= 0
+	 && ssa->var_info[ssa_op->op1_use].ce != zend_ffi_cdata_ce) {
+		if (!zend_jit_class_guard(jit, opline, obj_ref, zend_ffi_cdata_ce)) {
+			return 0;
+		}
+		if (ssa->var_info && ssa_op->op1_use >= 0) {
+			ssa->var_info[ssa_op->op1_use].type |= MAY_BE_CLASS_GUARD;
+			ssa->var_info[ssa_op->op1_use].ce = zend_ffi_cdata_ce;
+			ssa->var_info[ssa_op->op1_use].is_instanceof = 0;
+		}
+		if (ssa->var_info && ssa_op->op1_def >= 0) {
+			ssa->var_info[ssa_op->op1_def].type |= MAY_BE_CLASS_GUARD;
+			ssa->var_info[ssa_op->op1_def].ce = zend_ffi_cdata_ce;
+			ssa->var_info[ssa_op->op1_def].is_instanceof = 0;
+		}
+	}
 
-	// TODO: ce guard ???
 	// TODO: ffi type guard ???
+	if (!zend_jit_ffi_type_guard(jit, opline, obj_ref, op1_ffi_type)) {
+		return 0;
+	}
 
 	if (!zend_jit_ffi_abc(jit, opline, op1_ffi_type, op2_info, op2_addr, op2_range)) {
 		return 0;
 	}
 
-	ir_ref obj_ref = jit_Z_PTR(jit, op1_addr);
 	ir_ref cdata_ref = ir_LOAD_A(ir_ADD_OFFSET(obj_ref, offsetof(zend_ffi_cdata, ptr)));
 
 	if (op1_ffi_type->kind == ZEND_FFI_TYPE_POINTER) {
diff --git a/ext/opcache/jit/zend_jit_trace.c b/ext/opcache/jit/zend_jit_trace.c
@@ -4691,7 +4691,7 @@ static const void *zend_jit_trace(zend_jit_trace_rec *trace_buffer, uint32_t par
 						 && ZEND_FFI_TYPE(op1_ffi_type->array.type)->kind >= ZEND_FFI_TYPE_FLOAT
 						 && ZEND_FFI_TYPE(op1_ffi_type->array.type)->kind <= ZEND_FFI_TYPE_ENUM
 						 && op2_info == MAY_BE_LONG) {
-							if (!zend_jit_ffi_assign_dim_op(&ctx, opline,
+							if (!zend_jit_ffi_assign_dim_op(&ctx, opline, ssa, ssa_op,
 									op1_info, op1_def_info, op1_addr,
 									op2_info, (opline->op2_type != IS_UNUSED) ? OP2_REG_ADDR() : 0,
 									(opline->op2_type != IS_UNUSED) ? OP2_RANGE() : NULL,
@@ -5024,7 +5024,7 @@ static const void *zend_jit_trace(zend_jit_trace_rec *trace_buffer, uint32_t par
 						 && ZEND_FFI_TYPE(op1_ffi_type->array.type)->kind >= ZEND_FFI_TYPE_FLOAT
 						 && ZEND_FFI_TYPE(op1_ffi_type->array.type)->kind <= ZEND_FFI_TYPE_ENUM
 						 && op2_info == MAY_BE_LONG) {
-							if (!zend_jit_ffi_assign_dim(&ctx, opline,
+							if (!zend_jit_ffi_assign_dim(&ctx, opline, ssa, ssa_op,
 									op1_info, op1_addr,
 									op2_info, (opline->op2_type != IS_UNUSED) ? OP2_REG_ADDR() : 0,
 									(opline->op2_type != IS_UNUSED) ? OP2_RANGE() : NULL,
