Add jump-to-trampoline peephole optimization.

GJDuck · GJDuck · commit faa3695a78ce · 2021-06-30T14:40:33.000+08:00
Adds a modest speedup for some examples.
diff --git a/src/e9patch/e9api.cpp b/src/e9patch/e9api.cpp
@@ -393,6 +393,65 @@ static void parsePatch(Binary *B, const Message &msg)
     queuePatch(B, I, T);
 }
 
+/*
+ * Optimize CFT instructions that target patched instructions trampolines.
+ * We can instead jump directly to the trampoline if possible.
+ */
+static void optimizePeephole2(Binary *B)
+{
+    for (const auto &entry: B->Is)
+    {
+        off_t offset = entry.first;
+        Instr *I = entry.second;
+        if (I->trampoline != INTPTR_MIN)
+            continue;
+        if (I->size != /*sizeof(jmpq/call rel32)=*/5 &&
+                I->size != /*sizeof(jcc rel32)=*/6)
+            continue;
+        bool jcc = false;
+        switch (I->original.bytes[0])
+        {
+            case 0xE8: case 0xE9:
+                break;
+            case 0x0F:
+                switch (I->original.bytes[1])
+                {
+                    case 0x80: case 0x81: case 0x82: case 0x83: case 0x84:
+                    case 0x85: case 0x86: case 0x87: case 0x88: case 0x89:
+                    case 0x8A: case 0x8B: case 0x8C: case 0x8D: case 0x8E:
+                    case 0x8F:
+                        jcc = true;
+                        break;
+                    default:
+                        continue;
+                }
+                break;
+            default:
+                continue;
+        }
+        bool ok = true;
+        for (size_t i = 0; ok && i < I->size; i++)
+            ok = (I->patched.state[i] == STATE_INSTRUCTION);
+        if (!ok)
+            continue;
+
+        int32_t rel32 = *(int32_t *)(I->original.bytes + (jcc? 2: 1));
+        intptr_t target = I->addr + (intptr_t)I->size + (intptr_t)rel32;
+        offset += (off_t)I->size + (off_t)rel32;
+        auto i = B->Is.find(offset);
+        if (i == B->Is.end())
+            continue;
+        Instr *J = i->second;
+        if (J->addr != target || J->trampoline == INTPTR_MIN)
+            continue;
+        intptr_t diff = J->trampoline - (I->addr + (intptr_t)I->size);
+        if (diff < INT32_MIN || diff > INT32_MAX)
+            continue;
+        int32_t diff32 = (int32_t)diff;
+        *(int32_t *)(I->patched.bytes + (jcc? 2: 1)) = diff32;
+    }
+}
+
 /*
  * Parse an emit message.
  */
@@ -425,11 +484,14 @@ static void parseEmit(Binary *B, const Message &msg)
         error("failed to parse \"emit\" message (id=%u); duplicate "
             "parameters detected");
 
-
     // Flush the queue:
     queueFlush(B, INTPTR_MIN);
     putchar('\n');
 
+    // Post-processing optimizations:
+    if (option_Ojump_peephole_2)
+        optimizePeephole2(B);
+
     // Create and optimize the mappings:
     MappingSet mappings;
     buildMappings(B->allocator, option_mem_mapping_size, mappings);
diff --git a/src/e9patch/e9patch.cpp b/src/e9patch/e9patch.cpp
@@ -40,6 +40,7 @@ bool option_tactic_backward_T3  = true;
 unsigned option_Ojump_elim      = 0;
 unsigned option_Ojump_elim_size = 64;
 bool option_Ojump_peephole      = true;
+bool option_Ojump_peephole_2    = true;
 bool option_Oorder_trampolines  = false;
 bool option_Oscratch_stack      = false;
 size_t option_mem_granularity   = 64;
@@ -186,6 +187,10 @@ static void usage(FILE *stream, const char *progname)
         "\t\tEnables [disables] jump-from-trampoline peephole optimization.\n"
         "\t\tDefault: true (enabled)\n"
         "\n"
+        "\t-Ojump-peephole-2[=false]\n"
+        "\t\tEnables [disables] jump-to-trampoline peephole optimization.\n"
+        "\t\tDefault: true (enabled)\n"
+        "\n"
         "\t-Oorder-trampolines[=false]\n"
         "\t\tEnables [disables] the ordering of trampolines with respect\n"
         "\t\tto the original instruction ordering (as much as is possible).\n"
@@ -295,6 +300,7 @@ enum Option
     OPTION_OJUMP_ELIM,
     OPTION_OJUMP_ELIM_SIZE,
     OPTION_OJUMP_PEEPHOLE,
+    OPTION_OJUMP_PEEPHOLE_2,
     OPTION_OORDER_TRAMPOLINES,
     OPTION_OSCRATCH_STACK,
     OPTION_OUTPUT,
@@ -322,6 +328,7 @@ void parseOptions(int argc, char * const argv[], bool api)
         {"Ojump-elim",         req_arg, nullptr, OPTION_OJUMP_ELIM},
         {"Ojump-elim-size",    req_arg, nullptr, OPTION_OJUMP_ELIM_SIZE},
         {"Ojump-peephole",     opt_arg, nullptr, OPTION_OJUMP_PEEPHOLE},
+        {"Ojump-peephole-2",   opt_arg, nullptr, OPTION_OJUMP_PEEPHOLE_2},
         {"Oorder-trampolines", opt_arg, nullptr, OPTION_OORDER_TRAMPOLINES},
         {"Oscratch-stack",     opt_arg, nullptr, OPTION_OSCRATCH_STACK},
         {"debug",              no_arg,  nullptr, OPTION_DEBUG},
@@ -391,6 +398,10 @@ void parseOptions(int argc, char * const argv[], bool api)
                 option_Ojump_peephole =
                     parseBoolOptArg("-Ojump-peephole", optarg);
                 break;
+            case OPTION_OJUMP_PEEPHOLE_2:
+                option_Ojump_peephole_2 =
+                    parseBoolOptArg("-Ojump-peephole-2", optarg);
+                break;
             case OPTION_OORDER_TRAMPOLINES:
                 option_Oorder_trampolines =
                     parseBoolOptArg("-Oorder-trampolines", optarg);
diff --git a/src/e9patch/e9patch.h b/src/e9patch/e9patch.h
@@ -396,6 +396,7 @@ extern bool option_debug;
 extern unsigned option_Ojump_elim;
 extern unsigned option_Ojump_elim_size;
 extern bool option_Ojump_peephole;
+extern bool option_Ojump_peephole_2;
 extern bool option_Oorder_trampolines;
 extern bool option_Oscratch_stack;
 extern bool option_tactic_B1;
diff --git a/src/e9tool/e9frontend.h b/src/e9tool/e9frontend.h
@@ -2055,8 +2055,9 @@ struct Instr
     size_t data:1;                  // (E9Tool internal)
     size_t patch:1;                 // (E9Tool internal)
     size_t emitted:1;               // (E9Tool internal)
+    size_t jump:1;                  // (E9Tool internal)
 
-	Instr() : patch(0), emitted(0), action(0)
+	Instr() : patch(0), emitted(0), action(0), jump(0)
     {
         ;
     }
diff --git a/src/e9tool/e9tool.cpp b/src/e9tool/e9tool.cpp
@@ -2538,6 +2538,7 @@ int main(int argc, char **argv)
             options.push_back("-Ojump-elim=0");
             options.push_back("-Ojump-elim-size=0");
             options.push_back("-Ojump-peephole=false");
+            options.push_back("-Ojump-peephole-2=false");
             options.push_back("-Oorder-trampolines=false");
             options.push_back("-Oscratch-stack=false");
             options.push_back("--mem-granularity=64");
@@ -2547,6 +2548,7 @@ int main(int argc, char **argv)
             options.push_back("-Ojump-elim-size=0");
             options.push_back("-Oorder-trampolines=false");
             options.push_back("-Ojump-peephole=true");
+            options.push_back("-Ojump-peephole-2=true");
             options.push_back("-Oscratch-stack=true");
             options.push_back("--mem-granularity=128");
             break;
@@ -2555,6 +2557,7 @@ int main(int argc, char **argv)
             options.push_back("-Ojump-elim-size=64");
             options.push_back("-Oorder-trampolines=true");
             options.push_back("-Ojump-peephole=true");
+            options.push_back("-Ojump-peephole-2=true");
             options.push_back("-Oscratch-stack=true");
             options.push_back("--mem-granularity=128");
             break;
@@ -2563,13 +2566,15 @@ int main(int argc, char **argv)
             options.push_back("-Ojump-elim-size=512");
             options.push_back("-Oorder-trampolines=true");
             options.push_back("-Ojump-peephole=true");
+            options.push_back("-Ojump-peephole-2=true");
             options.push_back("-Oscratch-stack=true");
             options.push_back("--mem-granularity=4096");
             break;
         case 's':
             options.push_back("-Ojump-elim=0");
             options.push_back("-Ojump-elim-size=0");
             options.push_back("-Ojump-peephole=true");
+            options.push_back("-Ojump-peephole-2=true");
             options.push_back("-Oorder-trampolines=true");
             options.push_back("-Oscratch-stack=true");
             options.push_back("--mem-granularity=4096");
@@ -2758,6 +2763,10 @@ int main(int argc, char **argv)
             I.string.instr,
             (matched && option_is_tty? "\33[0m": ""),
             (matched && !option_is_tty? " (matched)": ""));
+        if (I.size >= /*sizeof(jmpq)=*/5 &&
+                ((I.category & CATEGORY_JUMP) != 0 ||
+                 (I.category & CATEGORY_CALL) != 0))
+            Is[i].jump = true;
     }
     notifyPlugins(backend.out, &elf, Is.data(), Is.size(),
         EVENT_MATCHING_COMPLETE);
@@ -2768,6 +2777,18 @@ int main(int argc, char **argv)
     intptr_t id = -1;
     for (ssize_t i = (ssize_t)count - 1; i >= 0; i--)
     {
+        switch (option_optimization_level)
+        {
+            case '2': case '3': case 's':
+                if (!Is[i].emitted && Is[i].jump)
+                {
+                    // Always emits jump/calls for -Ojump-peephole-2
+                    Is[i].emitted = true;
+                    sendInstructionMessage(backend.out, Is[i].address,
+                        Is[i].size, Is[i].offset);
+                }
+                break;
+        }
         if (!Is[i].patch)
             continue;
 

Original file line number	Diff line number	Diff line change
`@@ -2055,8 +2055,9 @@ struct Instr`
`2055`	`2055`	`size_t data:1; // (E9Tool internal)`
`2056`	`2056`	`size_t patch:1; // (E9Tool internal)`
`2057`	`2057`	`size_t emitted:1; // (E9Tool internal)`
	`2058`	`+ size_t jump:1; // (E9Tool internal)`
`2058`	`2059`
`2059`		`- Instr() : patch(0), emitted(0), action(0)`
	`2060`	`+ Instr() : patch(0), emitted(0), action(0), jump(0)`
`2060`	`2061`	`{`
`2061`	`2062`	`;`
`2062`	`2063`	`}`