Ensure that we check for compressed displacement using the signed value

tannergooding · tannergooding · commit 9d66a2b4cd41 · 2025-07-05T14:26:01.000-07:00
diff --git a/src/coreclr/jit/emitxarch.cpp b/src/coreclr/jit/emitxarch.cpp
@@ -5158,7 +5158,7 @@ inline UNATIVE_OFFSET emitter::emitInsSizeSVCalcDisp(instrDesc* id, code_t code,
                     ssize_t compressedDsp;
                     bool    fitsInByte;
 
-                    if (TryEvexCompressDisp8Byte(id, offs, &compressedDsp, &fitsInByte))
+                    if (TryEvexCompressDisp8Byte(id, int(offs), &compressedDsp, &fitsInByte))
                     {
                         if (!TakesEvexPrefix(id))
                         {
@@ -5213,7 +5213,7 @@ inline UNATIVE_OFFSET emitter::emitInsSizeSVCalcDisp(instrDesc* id, code_t code,
     {
         ssize_t compressedDsp;
 
-        if (TryEvexCompressDisp8Byte(id, offs, &compressedDsp, &useSmallEncoding))
+        if (TryEvexCompressDisp8Byte(id, int(offs), &compressedDsp, &useSmallEncoding))
         {
             if (!TakesEvexPrefix(id))
             {
@@ -14694,6 +14694,8 @@ BYTE* emitter::emitOutputAM(BYTE* dst, instrDesc* id, code_t code, CnsVal* addc)
         }
         else if (TakesEvexPrefix(id) || TakesApxExtendedEvexPrefix(id))
         {
+            ssize_t compressedDsp;
+            assert(!TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte));
             dspInByte = false;
         }
         else
@@ -15567,16 +15569,17 @@ BYTE* emitter::emitOutputSV(BYTE* dst, instrDesc* id, code_t code, CnsVal* addc)
 
     if (IsEvexEncodableInstruction(ins) || IsApxExtendedEvexInstruction(ins))
     {
+        ssize_t compressedDsp;
+
         if (HasCompressedDisplacement(id))
         {
-            ssize_t compressedDsp;
-            bool    isCompressed = TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte);
-
+            bool isCompressed = TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte);
             assert(isCompressed && dspInByte);
             dsp = (int)compressedDsp;
         }
         else if (TakesEvexPrefix(id) || TakesApxExtendedEvexPrefix(id))
         {
+            assert(!TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte));
             dspInByte = false;
         }
         else
@@ -15626,10 +15629,25 @@ BYTE* emitter::emitOutputSV(BYTE* dst, instrDesc* id, code_t code, CnsVal* addc)
         // Adjust the offset by the amount currently pushed on the CPU stack
         dsp += emitCurStackLvl;
 
-        if (TakesEvexPrefix(id) || TakesApxExtendedEvexPrefix(id))
+        if (IsEvexEncodableInstruction(ins) || IsApxExtendedEvexInstruction(ins))
         {
-            assert(!HasCompressedDisplacement(id));
-            dspInByte = false;
+            ssize_t compressedDsp;
+
+            if (HasCompressedDisplacement(id))
+            {
+                bool isCompressed = TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte);
+                assert(isCompressed && dspInByte);
+                dsp = (int)compressedDsp;
+            }
+            else if (TakesEvexPrefix(id) || TakesApxExtendedEvexPrefix(id))
+            {
+                assert(!TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte));
+                dspInByte = false;
+            }
+            else
+            {
+                dspInByte = ((signed char)dsp == (ssize_t)dsp);
+            }
         }
         else
         {
@@ -18020,13 +18038,27 @@ bool emitter::TryEvexCompressDisp8Byte(instrDesc* id, ssize_t dsp, ssize_t* comp
         return *fitsInByte;
     }
 
-    if (*fitsInByte && !TakesEvexPrefix(id))
+    if (*fitsInByte)
     {
-        // We already fit into a byte and do not otherwise require the EVEX prefix
-        // which means we can use the VEX encoding instead and be even smaller.
+        if (!TakesEvexPrefix(id))
+        {
+            // We already fit into a byte and do not otherwise require the EVEX prefix
+            // which means we can use the VEX encoding instead and be even smaller.
 
-        assert(*compressedDsp == dsp);
-        return false;
+            assert(*compressedDsp == dsp);
+            return false;
+        }
+    }
+    else
+    {
+        ssize_t compressedTest = dsp / 64;
+
+        if (static_cast<signed char>(compressedTest) != compressedTest)
+        {
+            // We are larger than the maximum possible compressed displacement
+            assert(*compressedDsp == dsp);
+            return false;
+        }
     }
 
     insTupleType tt = insTupleTypeInfo(ins);

Original file line number	Diff line number	Diff line change
`@@ -5158,7 +5158,7 @@ inline UNATIVE_OFFSET emitter::emitInsSizeSVCalcDisp(instrDesc* id, code_t code,`
`5158`	`5158`	`ssize_t compressedDsp;`
`5159`	`5159`	`bool fitsInByte;`
`5160`	`5160`
`5161`		`- if (TryEvexCompressDisp8Byte(id, offs, &compressedDsp, &fitsInByte))`
	`5161`	`+ if (TryEvexCompressDisp8Byte(id, int(offs), &compressedDsp, &fitsInByte))`
`5162`	`5162`	`{`
`5163`	`5163`	`if (!TakesEvexPrefix(id))`
`5164`	`5164`	`{`
`@@ -5213,7 +5213,7 @@ inline UNATIVE_OFFSET emitter::emitInsSizeSVCalcDisp(instrDesc* id, code_t code,`
`5213`	`5213`	`{`
`5214`	`5214`	`ssize_t compressedDsp;`
`5215`	`5215`
`5216`		`- if (TryEvexCompressDisp8Byte(id, offs, &compressedDsp, &useSmallEncoding))`
	`5216`	`+ if (TryEvexCompressDisp8Byte(id, int(offs), &compressedDsp, &useSmallEncoding))`
`5217`	`5217`	`{`
`5218`	`5218`	`if (!TakesEvexPrefix(id))`
`5219`	`5219`	`{`
`@@ -14694,6 +14694,8 @@ BYTE* emitter::emitOutputAM(BYTE* dst, instrDesc* id, code_t code, CnsVal* addc)`
`14694`	`14694`	`}`
`14695`	`14695`	`else if (TakesEvexPrefix(id) \|\| TakesApxExtendedEvexPrefix(id))`
`14696`	`14696`	`{`
	`14697`	`+ ssize_t compressedDsp;`
	`14698`	`+ assert(!TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte));`
`14697`	`14699`	`dspInByte = false;`
`14698`	`14700`	`}`
`14699`	`14701`	`else`
`@@ -15567,16 +15569,17 @@ BYTE* emitter::emitOutputSV(BYTE* dst, instrDesc* id, code_t code, CnsVal* addc)`
`15567`	`15569`
`15568`	`15570`	`if (IsEvexEncodableInstruction(ins) \|\| IsApxExtendedEvexInstruction(ins))`
`15569`	`15571`	`{`
	`15572`	`+ ssize_t compressedDsp;`
	`15573`	`+`
`15570`	`15574`	`if (HasCompressedDisplacement(id))`
`15571`	`15575`	`{`
`15572`		`- ssize_t compressedDsp;`
`15573`		`- bool isCompressed = TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte);`
`15574`		`-`
	`15576`	`+ bool isCompressed = TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte);`
`15575`	`15577`	`assert(isCompressed && dspInByte);`
`15576`	`15578`	`dsp = (int)compressedDsp;`
`15577`	`15579`	`}`
`15578`	`15580`	`else if (TakesEvexPrefix(id) \|\| TakesApxExtendedEvexPrefix(id))`
`15579`	`15581`	`{`
	`15582`	`+ assert(!TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte));`
`15580`	`15583`	`dspInByte = false;`
`15581`	`15584`	`}`
`15582`	`15585`	`else`
`@@ -15626,10 +15629,25 @@ BYTE* emitter::emitOutputSV(BYTE* dst, instrDesc* id, code_t code, CnsVal* addc)`
`15626`	`15629`	`// Adjust the offset by the amount currently pushed on the CPU stack`
`15627`	`15630`	`dsp += emitCurStackLvl;`
`15628`	`15631`
`15629`		`- if (TakesEvexPrefix(id) \|\| TakesApxExtendedEvexPrefix(id))`
	`15632`	`+ if (IsEvexEncodableInstruction(ins) \|\| IsApxExtendedEvexInstruction(ins))`
`15630`	`15633`	`{`
`15631`		`- assert(!HasCompressedDisplacement(id));`
`15632`		`- dspInByte = false;`
	`15634`	`+ ssize_t compressedDsp;`
	`15635`	`+`
	`15636`	`+ if (HasCompressedDisplacement(id))`
	`15637`	`+ {`
	`15638`	`+ bool isCompressed = TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte);`
	`15639`	`+ assert(isCompressed && dspInByte);`
	`15640`	`+ dsp = (int)compressedDsp;`
	`15641`	`+ }`
	`15642`	`+ else if (TakesEvexPrefix(id) \|\| TakesApxExtendedEvexPrefix(id))`
	`15643`	`+ {`
	`15644`	`+ assert(!TryEvexCompressDisp8Byte(id, dsp, &compressedDsp, &dspInByte));`
	`15645`	`+ dspInByte = false;`
	`15646`	`+ }`
	`15647`	`+ else`
	`15648`	`+ {`
	`15649`	`+ dspInByte = ((signed char)dsp == (ssize_t)dsp);`
	`15650`	`+ }`
`15633`	`15651`	`}`
`15634`	`15652`	`else`
`15635`	`15653`	`{`
`@@ -18020,13 +18038,27 @@ bool emitter::TryEvexCompressDisp8Byte(instrDesc* id, ssize_t dsp, ssize_t* comp`
`18020`	`18038`	`return *fitsInByte;`
`18021`	`18039`	`}`
`18022`	`18040`
`18023`		`- if (*fitsInByte && !TakesEvexPrefix(id))`
	`18041`	`+ if (*fitsInByte)`
`18024`	`18042`	`{`
`18025`		`- // We already fit into a byte and do not otherwise require the EVEX prefix`
`18026`		`- // which means we can use the VEX encoding instead and be even smaller.`
	`18043`	`+ if (!TakesEvexPrefix(id))`
	`18044`	`+ {`
	`18045`	`+ // We already fit into a byte and do not otherwise require the EVEX prefix`
	`18046`	`+ // which means we can use the VEX encoding instead and be even smaller.`
`18027`	`18047`
`18028`		`- assert(*compressedDsp == dsp);`
`18029`		`- return false;`
	`18048`	`+ assert(*compressedDsp == dsp);`
	`18049`	`+ return false;`
	`18050`	`+ }`
	`18051`	`+ }`
	`18052`	`+ else`
	`18053`	`+ {`
	`18054`	`+ ssize_t compressedTest = dsp / 64;`
	`18055`	`+`
	`18056`	`+ if (static_cast<signed char>(compressedTest) != compressedTest)`
	`18057`	`+ {`
	`18058`	`+ // We are larger than the maximum possible compressed displacement`
	`18059`	`+ assert(*compressedDsp == dsp);`
	`18060`	`+ return false;`
	`18061`	`+ }`
`18030`	`18062`	`}`
`18031`	`18063`
`18032`	`18064`	`insTupleType tt = insTupleTypeInfo(ins);`