JIT incorrectly reorders constrained call 'this' indirections with other arguments #73615

jakobbotsch · 2022-08-09T10:44:18Z

Small example:

using InlineIL;
using System;
using System.Runtime.CompilerServices;

public class Program
{
    public static void Main()
    {
        Foo(new C("A"));
    }

    [MethodImpl(MethodImplOptions.NoInlining)]
    private static void Foo(C arg)
    {
        IL.Emit.Ldarga(nameof(arg));
        IL.Emit.Ldarga(nameof(arg));
        IL.Emit.Call(new MethodRef(typeof(Program), nameof(Bar)));
        IL.Emit.Constrained<C>();
        IL.Emit.Callvirt(new MethodRef(typeof(C), nameof(arg.Baz)));
    }

    [MethodImpl(MethodImplOptions.NoInlining)]
    private static int Bar(ref C o)
    {
        o = new C("B");
        return 0;
    }
}

public record class C(string Name)
{
    public void Baz(int arg)
    {
        Console.WriteLine(Name);
    }
}

Expected: B
Actual: A

Seen in #73606 (comment)

category:correctness
theme:importer
skill-level:intermediate
cost:small
impact:small

dotnet-issue-labeler · 2022-08-09T10:44:22Z

I couldn't figure out the best area label to add to this issue. If you have write-permissions please help me learn by adding exactly one area label.

ghost · 2022-08-09T10:44:35Z

Tagging subscribers to this area: @JulieLeeMSFT, @jakobbotsch
See info in area-owners.md if you want to be subscribed.

Issue Details

Small example:

using InlineIL;
using System;

public class Program
{
    public static void Main()
    {
        Foo(new C("A"));
    }

    private static void Foo(C arg)
    {
        IL.Emit.Ldarga(nameof(arg));
        IL.Emit.Ldarga(nameof(arg));
        IL.Emit.Call(new MethodRef(typeof(Program), nameof(Bar)));
        IL.Emit.Constrained<C>();
        IL.Emit.Callvirt(new MethodRef(typeof(C), nameof(arg.Baz)));
    }

    private static int Bar(ref C o)
    {
        o = new C("B");
        return 0;
    }
}

public record class C(string Name)
{
    public void Baz(int arg)
    {
        Console.WriteLine(Name);
    }
}

Expected: B
Actual: A

Seen in #73606 (comment)

Author:	jakobbotsch
Assignees:	-
Labels:	`area-CodeGen-coreclr`
Milestone:	-

Constrained calls in IL include an implicit dereference that occurs as part of the call. The JIT was adding this dereference on top of the 'this' argument tree, which makes it happen too early (before other arguments are evaluated). This changes the importer to spill when necessary to preserve ordering. For: ```cil .method private hidebysig static void Foo(class Runtime_73615/C arg) cil managed noinlining { // Code size 21 (0x15) .maxstack 2 IL_0000: ldarga.s arg IL_0002: ldarga.s arg IL_0004: call int32 Runtime_73615::Bar(class Runtime_73615/C&) IL_0009: constrained. Runtime_73615/C IL_000f: callvirt instance void Runtime_73615/C::Baz(int32) IL_0014: ret } ``` Before: ``` ***** BB01 STMT00000 ( 0x000[E-] ... 0x014 ) [000003] --C-G------ ▌ CALL nullcheck void Runtime_73615+C:Baz(int):this [000004] n---G------ this ├──▌ IND ref [000000] ----------- │ └──▌ LCL_ADDR long V00 arg0 [+0] [000002] --C-G------ arg1 └──▌ CALL int Runtime_73615:Bar(byref):int [000001] ----------- arg0 └──▌ LCL_ADDR byref V00 arg0 [+0] ``` After: ``` ***** BB01 STMT00000 ( 0x000[E-] ... 0x014 ) [000005] -AC-G------ ▌ ASG int [000004] D------N--- ├──▌ LCL_VAR int V02 tmp1 [000002] --C-G------ └──▌ CALL int Runtime_73615:Bar(byref):int [000001] ----------- arg0 └──▌ LCL_ADDR byref V00 arg0 [+0] ***** BB01 STMT00001 ( ??? ... ??? ) [000003] --C-G------ ▌ CALL nullcheck void Runtime_73615+C:Baz(int):this [000007] n---G------ this ├──▌ IND ref [000000] ----------- │ └──▌ LCL_ADDR long V00 arg0 [+0] [000006] ----------- arg1 └──▌ LCL_VAR int V02 tmp1 ``` Fix dotnet#73615

jakobbotsch · 2023-05-23T15:14:45Z

This needs to wait for dotnet/roslyn#63221 for a runtime side fix. As of writing this the C# compiler has been fixed, but not the VB.NET compiler.

jakobbotsch · 2023-07-24T15:43:47Z

I'm going to move this to 9.0 since it's blocked waiting for a Roslyn VB.NET fix.

AlekseyTs · 2023-11-02T21:36:28Z

@jakobbotsch FYI, the fix for dotnet/roslyn#63221 for VB got merged into Roslyn.

Constrained calls in IL include an implicit dereference that occurs as part of the call. The JIT was adding this dereference on top of the 'this' argument tree, which makes it happen too early (before other arguments are evaluated). This changes the importer to spill when necessary to preserve ordering. For: ```cil .method private hidebysig static void Foo(class Runtime_73615/C arg) cil managed noinlining { // Code size 21 (0x15) .maxstack 2 IL_0000: ldarga.s arg IL_0002: ldarga.s arg IL_0004: call int32 Runtime_73615::Bar(class Runtime_73615/C&) IL_0009: constrained. Runtime_73615/C IL_000f: callvirt instance void Runtime_73615/C::Baz(int32) IL_0014: ret } ``` Before: ``` ***** BB01 STMT00000 ( 0x000[E-] ... 0x014 ) [000003] --C-G------ ▌ CALL nullcheck void Runtime_73615+C:Baz(int):this [000004] n---G------ this ├──▌ IND ref [000000] ----------- │ └──▌ LCL_ADDR long V00 arg0 [+0] [000002] --C-G------ arg1 └──▌ CALL int Runtime_73615:Bar(byref):int [000001] ----------- arg0 └──▌ LCL_ADDR byref V00 arg0 [+0] ``` After: ``` ***** BB01 STMT00000 ( 0x000[E-] ... 0x014 ) [000005] -AC-G------ ▌ ASG int [000004] D------N--- ├──▌ LCL_VAR int V02 tmp1 [000002] --C-G------ └──▌ CALL int Runtime_73615:Bar(byref):int [000001] ----------- arg0 └──▌ LCL_ADDR byref V00 arg0 [+0] ***** BB01 STMT00001 ( ??? ... ??? ) [000003] --C-G------ ▌ CALL nullcheck void Runtime_73615+C:Baz(int):this [000007] n---G------ this ├──▌ IND ref [000000] ----------- │ └──▌ LCL_ADDR long V00 arg0 [+0] [000006] ----------- arg1 └──▌ LCL_VAR int V02 tmp1 ``` Fix #73615

) Constrained calls in IL include an implicit dereference that occurs as part of the call. The JIT was adding this dereference on top of the 'this' argument tree, which makes it happen too early (before other arguments are evaluated). This changes the importer to spill when necessary to preserve ordering. For: ```cil .method private hidebysig static void Foo(class Runtime_73615/C arg) cil managed noinlining { // Code size 21 (0x15) .maxstack 2 IL_0000: ldarga.s arg IL_0002: ldarga.s arg IL_0004: call int32 Runtime_73615::Bar(class Runtime_73615/C&) IL_0009: constrained. Runtime_73615/C IL_000f: callvirt instance void Runtime_73615/C::Baz(int32) IL_0014: ret } ``` Before: ``` ***** BB01 STMT00000 ( 0x000[E-] ... 0x014 ) [000003] --C-G------ ▌ CALL nullcheck void Runtime_73615+C:Baz(int):this [000004] n---G------ this ├──▌ IND ref [000000] ----------- │ └──▌ LCL_ADDR long V00 arg0 [+0] [000002] --C-G------ arg1 └──▌ CALL int Runtime_73615:Bar(byref):int [000001] ----------- arg0 └──▌ LCL_ADDR byref V00 arg0 [+0] ``` After: ``` ***** BB01 STMT00000 ( 0x000[E-] ... 0x014 ) [000005] -AC-G------ ▌ ASG int [000004] D------N--- ├──▌ LCL_VAR int V02 tmp1 [000002] --C-G------ └──▌ CALL int Runtime_73615:Bar(byref):int [000001] ----------- arg0 └──▌ LCL_ADDR byref V00 arg0 [+0] ***** BB01 STMT00001 ( ??? ... ??? ) [000003] --C-G------ ▌ CALL nullcheck void Runtime_73615+C:Baz(int):this [000007] n---G------ this ├──▌ IND ref [000000] ----------- │ └──▌ LCL_ADDR long V00 arg0 [+0] [000006] ----------- arg1 └──▌ LCL_VAR int V02 tmp1 ``` Fix dotnet#73615

ghost added the untriaged New issue has not been triaged by the area owner label Aug 9, 2022

jakobbotsch added area-CodeGen-coreclr CLR JIT compiler in src/coreclr/src/jit and related components such as SuperPMI and removed untriaged New issue has not been triaged by the area owner labels Aug 9, 2022

jakobbotsch added this to the 8.0.0 milestone Aug 9, 2022

jakobbotsch added the bug label Aug 9, 2022

This was referenced Aug 9, 2022

Constrained execution behavior change in .net7 preview 6 #73606

Closed

Unnecessary(?) runtime lookups for constrained interface calls #73681

Closed

JulieLeeMSFT assigned jakobbotsch May 18, 2023

jakobbotsch mentioned this issue May 23, 2023

JIT: Fix constrained call dereferences happening too early #86638

Merged

ghost added in-pr There is an active PR which will close this issue when it is merged and removed in-pr There is an active PR which will close this issue when it is merged labels May 23, 2023

jakobbotsch added the blocked Issue/PR is blocked on something - see comments label May 23, 2023

jakobbotsch added the Priority:3 Work that is nice to have label Jun 20, 2023

jakobbotsch modified the milestones: 8.0.0, 9.0.0 Jul 24, 2023

dotnet-policy-service bot added the in-pr There is an active PR which will close this issue when it is merged label Apr 8, 2024

jakobbotsch removed the blocked Issue/PR is blocked on something - see comments label Apr 8, 2024

jakobbotsch closed this as completed in #86638 Apr 16, 2024

github-actions bot locked and limited conversation to collaborators May 16, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

JIT incorrectly reorders constrained call 'this' indirections with other arguments #73615

JIT incorrectly reorders constrained call 'this' indirections with other arguments #73615

jakobbotsch commented Aug 9, 2022 •

edited by BruceForstall

Loading

dotnet-issue-labeler bot commented Aug 9, 2022

ghost commented Aug 9, 2022

jakobbotsch commented May 23, 2023

jakobbotsch commented Jul 24, 2023

AlekseyTs commented Nov 2, 2023

JIT incorrectly reorders constrained call 'this' indirections with other arguments #73615

JIT incorrectly reorders constrained call 'this' indirections with other arguments #73615

Comments

jakobbotsch commented Aug 9, 2022 • edited by BruceForstall Loading

dotnet-issue-labeler bot commented Aug 9, 2022

ghost commented Aug 9, 2022

jakobbotsch commented May 23, 2023

jakobbotsch commented Jul 24, 2023

AlekseyTs commented Nov 2, 2023

jakobbotsch commented Aug 9, 2022 •

edited by BruceForstall

Loading