| blob | ddf76c44643bcf045ac71d81a188afddf1cff989 |
1 /*
2 +----------------------------------------------------------------------+
3 | HipHop for PHP |
4 +----------------------------------------------------------------------+
5 | Copyright (c) 2010-present Facebook, Inc. (http://www.facebook.com) |
6 +----------------------------------------------------------------------+
7 | This source file is subject to version 3.01 of the PHP license, |
8 | that is bundled with this package in the file LICENSE, and is |
9 | available through the world-wide-web at the following url: |
10 | http://www.php.net/license/3_01.txt |
11 | If you did not receive a copy of the PHP license and are unable to |
12 | obtain it through the world-wide-web, please send a note to |
13 | license@php.net so we can mail you a copy immediately. |
14 +----------------------------------------------------------------------+
15 */
16 #pragma once
18 #include <vector>
19 #include <string>
20 #include <map>
22 #include <boost/variant.hpp>
32 //////////////////////////////////////////////////////////////////////
39 //////////////////////////////////////////////////////////////////////
41 /*
42 * State of an iterator in the program.
43 *
44 * We track iterator liveness precisely, so if an iterator is DeadIter, its
45 * definitely dead and vice-versa. We only track "normal" iterators (non-weak,
46 * non-mutable), so iterators not of those type are considered "dead".
47 *
48 * We use this state to check if the "local iterator" optimization is valid.
49 * In this optimization, we leave the iterator base in a local slot instead of
50 * inc-ref-ing it and storing it in the iter.
51 *
52 * Local iteration is only possible if the positions of the keys of the base
53 * iterator are unchanged. We call an update that leaves these key positions
54 * unchanged a "safe" update; the only one that we can account for is updating
55 * the value of the current iteration key, as in:
56 *
57 * foreach ($base as $key => $value) {
58 * $base[$key] = $value + 1;
59 * }
60 *
61 * Finally, we also track a flag that is set whenever we see *any* update to
62 * the base (including "safe" updates). If we know the base is unchanged during
63 * iteration, we can further optimize the iterator in HHIR.
64 */
67 IterTypes types;
68 // If the base came from a local, and all updates to it have been "safe",
69 // this field will be the id of that local. Otherwise, it will be NoLocalId.
71 // The local that is known to be equivalent to the current key in the iter.
72 // Used to detect "safe" updates to the base.
74 // The block id where this iterator was initialized. If there's more than one
75 // such block, it will be NoBlockId.
77 // Set whenever we see any mutation, even "safe" ones that don't affect keys.
79 };
82 /*
83 * Tag indicating what sort of thing contains the current member base.
84 *
85 * Note that if we're in an array-chain, the base location always reflects the
86 * location of the array which started the array-chain.
87 */
89 None,
91 /*
92 * Base is in a number of possible places after an Elem op. It
93 * cannot possibly be in an object property (although it certainly
94 * may alias one). See miElem for details.
95 *
96 * This is only used if its unclear if its actually in an array. If it is
97 * definitely in an array, then arrayChain will be non-empty and the base
98 * location will reflect where the array is located.
99 */
100 Elem,
102 /*
103 * Base is in possible locations after a Prop op. This means it
104 * possibly lives in a property on an object, but possibly not
105 * (e.g. it could be a null in tvScratch). See miProp for
106 * details.
107 *
108 * If it is definitely known to be a property in an object, the
109 * locTy in the Base will be a subtype of TObj.
110 */
111 Prop,
113 /*
114 * Known to be a static property on an object. This is only
115 * possible as an initial base.
116 */
117 StaticProp,
119 /*
120 * Known to be contained in the current frame as a local, as the
121 * frame $this, by the evaluation stack, or inside $GLOBALS. Only
122 * possible as initial bases.
123 */
124 Local,
125 This,
126 Stack,
127 Global,
128 };
130 /*
131 * Information about the current member base's type and location.
132 */
137 SString locName = {},
147 Type type;
148 BaseLoc loc;
150 /*
151 * We also need to track effects of intermediate dims on the type of the base.
152 * So we have a type, name, and possibly associated local or stack slot for
153 * the base's container.
154 *
155 * For StaticProp, locName is the name of the property if known, or nullptr,
156 * and locTy is the type of the class containing the static property.
157 *
158 * For Prop, locName is the name of the property if it was known, and locTy
159 * gives as much information about the object type it is in. (If we actually
160 * *know* it is in an object, locTy will be a subtype of TObj.)
161 *
162 * For Local, locName is the name of the local if known, or nullptr, and
163 * locLocal is the LocalId corresponding to the local (or NoLocalId if not
164 * known).
165 *
166 * For Stack, locSlot is the stack index of the corresponding stack slot.
167 */
168 Type locTy;
169 SString locName;
170 LocalId locLocal;
172 };
174 // An element on the eval stack
178 Type type;
179 // A location which is known to have an equivalent value to this
180 // stack value. This could be a valid LocalId, the special value
181 // StackDupId to indicate that its equivalent to the stack element
182 // below it, the special value StackThisId to indicate that its the
183 // value of $this, or NoLocalId if it has no known equivalents.
184 // Note that the location may not match the stack value wrt Uninit.
185 LocalId equivLoc;
188 };
198 }
202 }
206 }
209 }
212 }
216 }
219 }
220 // very special helper for use with Add*ElemC. To prevent
221 // quadratic time/space when appending to an array, we need to
222 // ensure we're appending to an array with a single reference; but
223 // popping from an InterpStack doesn't actually remove the
224 // element. This allows us to drop the type's datatag. It means
225 // that rewinding wouldn't see the original type; but Add*ElemC is
226 // very carefully coded anyway.
231 }
236 }
240 }
244 }
250 }
254 };
270 }
275 }
280 }
284 }
287 }
293 }
299 }
307 }
309 }
311 }
312 // rewind the stack to the state it was in before the last
313 // instruction ran (which is known to have popped numPop items and
314 // pushed numPush items).
324 };
326 /*
327 * A program state at a position in a php::Block.
328 *
329 * The `initialized' flag indicates whether the state knows anything. All
330 * other fields are invalid if a state is not initialized, and notably, after
331 * all analysis has run, any blocks that still don't have initialized input
332 * states are not reachable.
333 *
334 * The `unreachable' flag means we've produced this state from analysis, but
335 * the program cannot reach this program position. This flag has two uses:
336 *
337 * o It allows us to determine arbitrary mid-block positions where code
338 * becomes unreachable, and eliminate that code in optimize.cpp.
339 *
340 * o We may still do abstract interpretation of the unreachable code, but
341 * this flag is used when merging states to allow the interpreter to
342 * analyze blocks that are unreachable without pessimizing states for
343 * reachable blocks that would've been their successors.
344 *
345 * TODO: having the interpreter visit blocks when they are unreachable still
346 * potentially merges types into object properties that aren't possible at
347 * runtime.
348 *
349 * We split off a base class from State as a convenience to enable the use
350 * default copy construction and assignment.
351 *
352 */
356 };
366 Type thisType;
370 /*
371 * Mapping of a local to other locals which are known to have
372 * equivalent values. This equivalence ignores Uninit; users should
373 * compare types if they care.
374 */
376 };
387 }
388 }
390 // delete assignment operator, so we have to explicitly choose what
391 // we want to do from amongst the various copies.
398 }
403 }
410 }
411 }
416 }
418 InterpStack stack;
419 };
421 /*
422 * Return a copy of a State without copying the evaluation stack, pushing
423 * Throwable on the stack.
424 */
427 //////////////////////////////////////////////////////////////////////
429 /*
430 * Undo log for mutations to the interp state. If mutating state, this
431 * records enough information to undo that mutation and restore the
432 * state to the previous values.
433 */
435 // Marks an instruction boundary, along with the flags during
436 // interp.
441 };
442 // Push to the stack (undone by a pop)
444 // Pop from the stack (undone by pushing the recorded type)
446 // Location modification (undone by changing the local slot to the
447 // recorded type)
449 // Stack modification (undone by changing the stack slot to the
450 // recorded type).
460 }
463 }
464 };
466 //////////////////////////////////////////////////////////////////////
468 /*
469 * PropertiesInfo packages the PropState for private instance and
470 * static properties, which is cross-block information collected in
471 * CollectedInfo.
472 *
473 * During analysis the ClassAnalysis* is available and the PropState is
474 * retrieved from there. However during optimization the ClassAnalysis is
475 * not available and the PropState has to be retrieved off the Class in
476 * the Index. In that case cls is nullptr and the PropState fields are
477 * populated.
478 */
486 SString name,
489 SString name,
511 PropState m_privateProperties;
512 PropState m_privateStatics;
515 };
517 //////////////////////////////////////////////////////////////////////
519 /*
520 * Encapsulates information about the current class's methods during
521 * class-at-a-time analysis. This might be more refined than the
522 * information in the Index.
523 */
527 // Look up the best known return type for the current class's
528 // method, return std::nullopt if not known, or if the Func is not a
529 // method of the current class.
535 };
537 //////////////////////////////////////////////////////////////////////
539 /*
540 * Map from closure classes to types for each of their used vars.
541 * Shows up in a few different interpreter structures.
542 */
546 >;
548 /*
549 * Merge the types in the vector as possible use vars for the closure
550 * `clo' into the destination map.
551 */
556 //////////////////////////////////////////////////////////////////////
563 };
568 );
569 }
574 );
575 }
580 );
581 }
585 /*
586 * Area used for writing down any information that is collected across
587 * a series of step operations (possibly cross block).
588 */
591 Context ctx,
593 CollectionOpts opts,
597 ClosureUseVarMap closureUseTypes;
598 PropertiesInfo props;
599 MethodsInfo methods;
604 CollectionOpts opts{};
606 PublicSPropMutations publicSPropMutations;
609 /*
610 * The current member base. Updated as we move through bytecodes
611 * representing the operation.
612 */
613 Base base{};
615 /*
616 * Used to track whether a member op sequence is effect free. We use
617 * this information to replace member op sequences with constants.
618 */
622 /*
623 * Chains of member operations on array elements will affect the type of
624 * something further back in the member instruction. This vector tracks the
625 * base,key type pair that was used at each stage. See
626 * interp-minstr.cpp:resolveArrayChain().
627 */
629 Type base;
630 Type key;
631 LocalId keyLoc;
632 };
634 ArrayChain arrayChain;
639 }
640 };
641 MInstrState mInstrState;
643 /*
644 * All blocks encountered (so far) which contain a MemoGet
645 * instruction.
646 */
648 /*
649 * The union of all types used as inputs to a MemoSet instruction,
650 * and whether those types come from an effect-free function.
651 */
653 };
655 //////////////////////////////////////////////////////////////////////
657 /*
658 * State merging functions, based on the union_of operation for types.
659 *
660 * These return true if the destination state changed.
661 */
664 /*
665 * State merging functions, based on the widening_union operation.
666 * See analyze.cpp for details on when this is needed.
667 */
670 //////////////////////////////////////////////////////////////////////
672 /*
673 * Functions to show various aspects of interpreter state as strings.
674 */
681 //////////////////////////////////////////////////////////////////////
683 }