Use indempotent operation to signal execute_data reloading

arnaud-lb · arnaud-lb · commit dbcf4a132bb5 · 2025-02-28T14:11:57.000+01:00
This simplies JIT compared to returning -opline,
and doesn't require EX(opline) to be in sync.
diff --git a/Zend/zend_vm_execute.h b/Zend/zend_vm_execute.h
diff --git a/Zend/zend_vm_gen.php b/Zend/zend_vm_gen.php
@@ -1944,9 +1944,9 @@ function gen_executor($f, $skl, $spec, $kind, $executor_name, $initializer_name)
                             out($f,"# define ZEND_VM_ENTER()           opline = EG(current_execute_data)->opline; ZEND_VM_ENTER_EX()\n");
                             out($f,"# define ZEND_VM_LEAVE()           return  2\n");
                             out($f,"#else\n");
-                            out($f,"# define ZEND_VM_ENTER_EX()        return (zend_op*)-(uintptr_t)opline\n");
+                            out($f,"# define ZEND_VM_ENTER_EX()        return (zend_op*)((uintptr_t)opline | (1ULL<<63))\n");
                             out($f,"# define ZEND_VM_ENTER()           execute_data = EG(current_execute_data); LOAD_OPLINE(); ZEND_VM_ENTER_EX()\n");
-                            out($f,"# define ZEND_VM_LEAVE()           return (zend_op*)-(uintptr_t)opline\n");
+                            out($f,"# define ZEND_VM_LEAVE()           return (zend_op*)((uintptr_t)opline | (1ULL<<63))\n");
                             out($f,"#endif\n");
                             out($f,"#define ZEND_VM_INTERRUPT()      ZEND_VM_TAIL_CALL(zend_interrupt_helper".($spec?"_SPEC":"")."(ZEND_OPCODE_HANDLER_ARGS_PASSTHRU));\n");
                             out($f,"#define ZEND_VM_LOOP_INTERRUPT() zend_interrupt_helper".($spec?"_SPEC":"")."(ZEND_OPCODE_HANDLER_ARGS_PASSTHRU);\n");
@@ -2181,7 +2181,7 @@ function gen_executor($f, $skl, $spec, $kind, $executor_name, $initializer_name)
                                 $m[1]."return;\n" .
                                 "#else\n" .
                                 $m[1]."if (EXPECTED(opline != NULL)) {\n" .
-                                $m[1]."\topline = (zend_op*)-(uintptr_t)opline;\n".
+                                $m[1]."\topline = (zend_op*)((uintptr_t)opline & ~(1ULL<<63));\n".
                                 $m[1]."\texecute_data = EG(current_execute_data);\n".
                                 $m[1]."\tZEND_VM_LOOP_INTERRUPT_CHECK();\n".
                                 $m[1]."} else {\n" .
diff --git a/ext/opcache/jit/ir/ir_builder.h b/ext/opcache/jit/ir/ir_builder.h
@@ -145,7 +145,6 @@ extern "C" {
 #define ir_MOD_I64(_op1, _op2)            ir_BINARY_OP_I64(IR_MOD, (_op1), (_op2))
 
 #define ir_NEG(_type, _op1)               ir_UNARY_OP(IR_NEG, (_type), (_op1))
-#define ir_NEG_A(_op1)                    ir_UNARY_OP_A(IR_NEG, (_op1))
 #define ir_NEG_C(_op1)                    ir_UNARY_OP_C(IR_NEG, (_op1))
 #define ir_NEG_I8(_op1)                   ir_UNARY_OP_I8(IR_NEG, (_op1))
 #define ir_NEG_I16(_op1)                  ir_UNARY_OP_I16(IR_NEG, (_op1))
diff --git a/ext/opcache/jit/zend_jit_ir.c b/ext/opcache/jit/zend_jit_ir.c
@@ -1984,6 +1984,16 @@ static int zend_jit_exception_handler_free_op2_stub(zend_jit_ctx *jit)
 	return 1;
 }
 
+static void zend_jit_vm_enter(zend_jit_ctx *jit, ir_ref to_opline)
+{
+	ir_RETURN(ir_OR_A(to_opline, ir_CONST_ADDR((uintptr_t)1ULL<<63)));
+}
+
+static void zend_jit_vm_leave(zend_jit_ctx *jit, ir_ref to_opline)
+{
+	ir_RETURN(ir_OR_A(to_opline, ir_CONST_ADDR((uintptr_t)1ULL<<63)));
+}
+
 static int zend_jit_interrupt_handler_stub(zend_jit_ctx *jit)
 {
 	ir_ref if_timeout, if_exception;
@@ -2011,7 +2021,7 @@ static int zend_jit_interrupt_handler_stub(zend_jit_ctx *jit)
 	if (GCC_GLOBAL_REGS) {
 		ir_TAILCALL(IR_VOID, ir_LOAD_A(jit_IP(jit)));
 	} else {
-		ir_RETURN(ir_NEG_A(jit_IP(jit))); // ZEND_VM_ENTER
+		zend_jit_vm_enter(jit, jit_IP(jit));
 	}
 	return 1;
 }
@@ -2212,7 +2222,7 @@ static int zend_jit_leave_throw_stub(zend_jit_ctx *jit)
 		// JIT: HANDLE_EXCEPTION()
 		ir_IJMP(jit_STUB_ADDR(jit, jit_stub_exception_handler));
 	} else {
-		ir_RETURN(ir_NEG_A(jit_IP(jit))); // ZEND_VM_LEAVE
+		zend_jit_vm_leave(jit, jit_IP(jit));
 	}
 
 	return 1;
@@ -2407,8 +2417,7 @@ static int zend_jit_trace_escape_stub(zend_jit_ctx *jit)
 	if (GCC_GLOBAL_REGS) {
 		ir_TAILCALL(IR_VOID, ir_LOAD_A(jit_IP(jit)));
 	} else {
-		// TODO: tailcall?
-		ir_RETURN(ir_NEG_A(jit_IP(jit))); // ZEND_VM_ENTER
+		zend_jit_vm_enter(jit, jit_IP(jit));
 	}
 
 	return 1;
@@ -2427,15 +2436,15 @@ static int zend_jit_trace_exit_stub(zend_jit_ctx *jit)
 
 	ir_IF_TRUE(if_zero);
 
+	ref = jit_EG(current_execute_data);
+	jit_STORE_FP(jit, ir_LOAD_A(ref));
+	ref = ir_LOAD_A(jit_EX(opline));
+	jit_STORE_IP(jit, ref);
+
 	if (GCC_GLOBAL_REGS) {
-		ref = jit_EG(current_execute_data);
-		jit_STORE_FP(jit, ir_LOAD_A(ref));
-		ref = ir_LOAD_A(jit_EX(opline));
-		jit_STORE_IP(jit, ref);
 		ir_TAILCALL(IR_VOID, ir_LOAD_A(jit_IP(jit)));
 	} else {
-		ref = ir_LOAD_A(jit_EX(opline));
-		ir_RETURN(ir_NEG_A(ref)); // ZEND_VM_ENTER
+		zend_jit_vm_enter(jit, ref);
 	}
 
 	ir_IF_FALSE(if_zero);
@@ -2459,12 +2468,7 @@ static int zend_jit_trace_exit_stub(zend_jit_ctx *jit)
 		addr = ir_CAST_FC_FUNC(addr);
 #endif
 		ref = ir_CALL_2(IR_ADDR, addr, jit_FP(jit), jit_IP(jit));
-		// Force reload execute_ex in VM
-		ir_ref is_positive = ir_IF(ir_GE(ref, ir_CONST_I32(0)));
-		ir_IF_TRUE(is_positive);
-		ir_RETURN(ir_NEG_A(ref)); // ZEND_VM_ENTER
-		ir_IF_FALSE(is_positive);
-		ir_RETURN(ref);
+		zend_jit_vm_enter(jit, ref);
 	}
 
 	return 1;
@@ -4214,12 +4218,7 @@ static int zend_jit_tail_handler(zend_jit_ctx *jit, const zend_op *opline)
 		  || opline->opcode == ZEND_THROW
 		  || opline->opcode == ZEND_VERIFY_NEVER_TYPE)) {
 			ir_ref ip = ir_CALL_2(IR_ADDR, ir_CONST_FC_FUNC(handler), jit_FP(jit), jit_IP(jit));
-			// Force reload execute_ex in VM (TODO: check if we actually need this)
-			ir_ref is_positive = ir_IF(ir_GE(ip, ir_CONST_I32(0)));
-			ir_IF_TRUE(is_positive);
-			ir_RETURN(ir_NEG_A(ip)); // ZEND_VM_ENTER
-			ir_IF_FALSE(is_positive);
-			ir_RETURN(ip);
+			zend_jit_vm_enter(jit, ip);
 		} else {
 			ir_TAILCALL_2(IR_ADDR, ir_CONST_FC_FUNC(handler), jit_FP(jit), jit_IP(jit));
 		}
@@ -10448,7 +10447,7 @@ static int zend_jit_do_fcall(zend_jit_ctx *jit, const zend_op *opline, const zen
 				if (GCC_GLOBAL_REGS) {
 					ir_TAILCALL(IR_VOID, ir_LOAD_A(jit_IP(jit)));
 				} else {
-					ir_RETURN(ir_NEG_A(jit_IP(jit))); // ZEND_VM_ENTER
+					zend_jit_vm_enter(jit, jit_IP(jit));
 				}
 			} while (0);
 
@@ -11216,7 +11215,7 @@ static int zend_jit_leave_func(zend_jit_ctx         *jit,
 	if (GCC_GLOBAL_REGS) {
 		ir_TAILCALL(IR_VOID, ir_LOAD_A(jit_IP(jit)));
 	} else {
-		ir_RETURN(ir_NEG_A(jit_IP(jit))); // ZEND_VM_LEAVE
+		zend_jit_vm_leave(jit, jit_IP(jit));
 	}
 
 	jit->b = -1;
@@ -17346,7 +17345,7 @@ static int zend_jit_trace_return(zend_jit_ctx *jit, bool original_handler, const
 				return 1;
 			}
 		}
-		ir_RETURN(ir_NEG_A(jit_IP(jit))); // ZEND_VM_RETURN
+		zend_jit_vm_enter(jit, jit_IP(jit));
 	}
 	return 1;
 }
diff --git a/ext/opcache/jit/zend_jit_vm_helpers.c b/ext/opcache/jit/zend_jit_vm_helpers.c
@@ -75,14 +75,14 @@ ZEND_OPCODE_HANDLER_RET ZEND_FASTCALL zend_jit_leave_nested_func_helper(ZEND_OPC
 			zval_ptr_dtor(EX_VAR(old_opline->result.var));
 		}
 #ifndef HAVE_GCC_GLOBAL_REGS
-		return (zend_op*)-(uintptr_t)EG(current_execute_data)->opline;
+		return (zend_op*)((uintptr_t)EG(current_execute_data)->opline | (1ULL<<63));
 #endif
 	} else {
 		EX(opline)++;
 #ifdef HAVE_GCC_GLOBAL_REGS
 		opline = EX(opline);
 #else
-		return (zend_op*)-(uintptr_t)EX(opline);
+		return (zend_op*)((uintptr_t)EX(opline) | (1ULL<<63));
 #endif
 	}
 }
@@ -372,7 +372,7 @@ static zend_always_inline ZEND_OPCODE_HANDLER_RET ZEND_FASTCALL zend_jit_trace_c
 #ifdef HAVE_GCC_GLOBAL_REGS
 		return;
 #else
-		return opline ? (zend_op*)-(uintptr_t)opline : NULL; // ZEND_VM_ENTER() : ZEND_VM_RETURN()
+		return opline ? (zend_op*)((uintptr_t)opline | (1ULL<<63)) : NULL; // ZEND_VM_ENTER() : ZEND_VM_RETURN()
 #endif
 	} else {
 		zend_vm_opcode_handler_t handler = (zend_vm_opcode_handler_t)ZEND_OP_TRACE_INFO(opline, offset)->orig_handler;
@@ -952,8 +952,7 @@ zend_jit_trace_stop ZEND_FASTCALL zend_jit_trace_execute(zend_execute_data  *ex,
 				/* return after interrupt handler */
 				ZEND_ASSERT(0 && "TODO");
 			}
-			opline = (zend_op*)-(uintptr_t)opline;
-			ZEND_ASSERT((intptr_t)opline > 0);
+			opline = (zend_op*)((uintptr_t)opline & ~(1ULL<<63));
 			execute_data = EG(current_execute_data);
 #endif
 
diff --git a/ext/opcache/tests/jit/gh8461-001.inc b/ext/opcache/tests/jit/gh8461-001.inc
@@ -1,2 +1,14 @@
 <?php
+
 $x = 0;
+
+class UniqueList
+{
+    const A = 1;
+
+    public static function foo()
+    {
+        global $x;
+        $x += self::A;
+    }
+}
