boot2

cg.scm (50336B)

---

 ;; cc/cg.scm — codegen state and emission API.
 ;; Realization of docs/CC-INTERNALS.md §cg.scm.
 ;; Conversion split per CC-CONTRACTS §4: parse owns promotion etc;
 ;; cg owns sign extension, signed/unsigned dispatch, pointer scaling.
 ;;
 ;; Output uses libp1pp's structured macros (%fn, %ifelse_nez,
 ;; %loop_tag, %break, %continue) per docs/LIBP1PP.md.
 ;;
 ;; Frame layout (CC-CONTRACTS §3):
 ;;   [sp + 0 .. staging*8)        outgoing-arg staging
 ;;   [sp + staging*8 ..)          locals + spilled vstack values
 ;; Slot offsets are emitted symbolically as `(+ %<fn>__SO N)` so the
 ;; staging size, only known at fn-end, can be filled in via a 0-arg
 ;; M1pp macro `<fn>__SO` defined just before the `%fn(...)` block.
 
 (define (%cg-emit-buf cg)
   (let ((fb (cg-fn-buf cg))) (if fb fb (cg-text cg))))
 
 (define (%cg-emit cg bv)
   (buf-push! (%cg-emit-buf cg) bv))
 
 (define (%cg-emit-many cg bvs)
   (for-each (lambda (b) (%cg-emit cg b)) bvs))
 
 (define (%n n) (number->string n 10))
 
 ;; Per-fn metadata (name, ret-slot, ret-type) is stashed on cg-globals
 ;; under symbol keys that don't collide with bv name keys.
 (define (%cg-fn-set! cg key val)
   (cg-globals-set! cg (alist-update key (lambda (_) val) (cg-globals cg))))
 
 (define (%cg-fn-get cg key) (alist-ref/eq key (cg-globals cg)))
 
 (define (%cg-fresh-label cg prefix)
   (let* ((n (cg-label-ctr cg))
          (bv (bytevector-append prefix (%n n))))
     (cg-label-ctr-set! cg (+ n 1))
     bv))
 
 (define (%cg-fresh-loop-tag cg) (%cg-fresh-label cg "L"))
 (define (%cg-fresh-lbl cg)      (%cg-fresh-label cg "lbl_"))
 
 (define (%cg-bump-outgoing! cg n)
   (if (< (cg-max-outgoing cg) n) (cg-max-outgoing-set! cg n) 0))
 
 (define (%cg-slot-expr cg logical-off)
   (let ((nm (%cg-fn-get cg '%fn-name)))
     (bv-cat (list "(+ %" nm "__SO " (%n logical-off) ")"))))
 
 (define (%cg-mangle-global name-bv)
   (bytevector-append "cc__" name-bv))
 
 (define (%cg-reg->bv r) (symbol->string r))
 
 (define (%cg-emit-li cg reg n)
   (%cg-emit-many cg (list "%li(" (%cg-reg->bv reg) ", " (%n n) ")\n")))
 
 (define (%cg-emit-la cg reg label-bv)
   (%cg-emit-many cg (list "%la(" (%cg-reg->bv reg) ", &" label-bv ")\n")))
 
 (define (%cg-emit-ld-slot cg reg logical-off)
   (%cg-emit-many cg (list "%ld(" (%cg-reg->bv reg) ", sp, "
                           (%cg-slot-expr cg logical-off) ")\n")))
 
 (define (%cg-emit-st-slot cg reg logical-off)
   (%cg-emit-many cg (list "%st(" (%cg-reg->bv reg) ", sp, "
                           (%cg-slot-expr cg logical-off) ")\n")))
 
 (define (%cg-emit-ld cg reg base off)
   (%cg-emit-many cg (list "%ld(" (%cg-reg->bv reg) ", "
                           (%cg-reg->bv base) ", " (%n off) ")\n")))
 
 (define (%cg-emit-st cg reg base off)
   (%cg-emit-many cg (list "%st(" (%cg-reg->bv reg) ", "
                           (%cg-reg->bv base) ", " (%n off) ")\n")))
 
 ;; Width-aware load/store. Dispatches on ctype-size:
 ;;   1: %lb / %sb (LB zero-extends; for signed i8 we sign-extend by
 ;;      shli/sari 56 to materialize the canonical 64-bit form).
 ;;   2/4: byte-decomposed (P1 has only 1-byte and 8-byte memory ops,
 ;;      and word ops require natural alignment which we can't promise
 ;;      for struct fields or non-word-aligned local slots). Loads
 ;;      gather bytes via %lb + shli/or; stores scatter via shri/%sb.
 ;;      Signed loads (i16/i32) sign-extend via shli/sari to canonical
 ;;      64-bit form.
 ;;   8 (or anything else for now): %ld / %st.
 ;; Scratch convention: helpers may clobber t1; callers never pass
 ;; reg=t1.
 
 (define (%cg-emit-ldN-bytes cg reg base-bv off-expr-fn n-bytes)
   ;; Emit n-bytes %lb gathers into reg with shift+OR. byte 0 is low.
   ;; off-expr-fn is a procedure: (off-expr-fn k) returns the bv
   ;; expression for offset k.
   (%cg-emit-many cg (list "%lb(" (%cg-reg->bv reg) ", " base-bv ", "
                           (off-expr-fn 0) ")\n"))
   (let loop ((k 1))
     (cond
       ((= k n-bytes) 0)
       (else
        (%cg-emit-many cg (list
          "%lb(t1, " base-bv ", " (off-expr-fn k) ")\n"
          "%shli(t1, t1, " (%n (* 8 k)) ")\n"
          "%or(" (%cg-reg->bv reg) ", " (%cg-reg->bv reg) ", t1)\n"))
        (loop (+ k 1))))))
 
 (define (%cg-emit-stN-bytes cg reg base-bv off-expr-fn n-bytes)
   ;; Emit n-bytes %sb scatters from reg via shri-shifted t1.
   (%cg-emit-many cg (list "%sb(" (%cg-reg->bv reg) ", " base-bv ", "
                           (off-expr-fn 0) ")\n"))
   (let loop ((k 1))
     (cond
       ((= k n-bytes) 0)
       (else
        (%cg-emit-many cg (list
          "%shri(t1, " (%cg-reg->bv reg) ", " (%n (* 8 k)) ")\n"
          "%sb(t1, " base-bv ", " (off-expr-fn k) ")\n"))
        (loop (+ k 1))))))
 
 (define (%cg-emit-sext cg reg shift-amount)
   (%cg-emit-many cg (list
     "%shli(" (%cg-reg->bv reg) ", " (%cg-reg->bv reg) ", "
     (%n shift-amount) ")\n"
     "%sari(" (%cg-reg->bv reg) ", " (%cg-reg->bv reg) ", "
     (%n shift-amount) ")\n")))
 
 (define (%cg-emit-ld-slot-typed cg reg ctype logical-off)
   (let* ((sz (ctype-size ctype)) (kind (ctype-kind ctype))
          (off-fn (lambda (k) (%cg-slot-expr cg (+ logical-off k)))))
     (cond
       ((= sz 1)
        (%cg-emit-many cg (list "%lb(" (%cg-reg->bv reg) ", sp, "
                                (off-fn 0) ")\n"))
        (cond ((eq? kind 'i8) (%cg-emit-sext cg reg 56))))
       ((= sz 2)
        (%cg-emit-ldN-bytes cg reg "sp" off-fn 2)
        (cond ((eq? kind 'i16) (%cg-emit-sext cg reg 48))))
       ((= sz 4)
        (%cg-emit-ldN-bytes cg reg "sp" off-fn 4)
        (cond ((eq? kind 'i32) (%cg-emit-sext cg reg 32))))
       (else (%cg-emit-ld-slot cg reg logical-off)))))
 
 (define (%cg-emit-st-slot-typed cg reg ctype logical-off)
   (let* ((sz (ctype-size ctype))
          (off-fn (lambda (k) (%cg-slot-expr cg (+ logical-off k)))))
     (cond
       ((= sz 1)
        (%cg-emit-many cg (list "%sb(" (%cg-reg->bv reg) ", sp, "
                                (off-fn 0) ")\n")))
       ((= sz 2) (%cg-emit-stN-bytes cg reg "sp" off-fn 2))
       ((= sz 4) (%cg-emit-stN-bytes cg reg "sp" off-fn 4))
       (else (%cg-emit-st-slot cg reg logical-off)))))
 
 (define (%cg-emit-ld-typed cg reg ctype base off)
   (let* ((sz (ctype-size ctype)) (kind (ctype-kind ctype))
          (base-bv (%cg-reg->bv base))
          (off-fn (lambda (k) (%n (+ off k)))))
     (cond
       ((= sz 1)
        (%cg-emit-many cg (list "%lb(" (%cg-reg->bv reg) ", "
                                base-bv ", " (off-fn 0) ")\n"))
        (cond ((eq? kind 'i8) (%cg-emit-sext cg reg 56))))
       ((= sz 2)
        (%cg-emit-ldN-bytes cg reg base-bv off-fn 2)
        (cond ((eq? kind 'i16) (%cg-emit-sext cg reg 48))))
       ((= sz 4)
        (%cg-emit-ldN-bytes cg reg base-bv off-fn 4)
        (cond ((eq? kind 'i32) (%cg-emit-sext cg reg 32))))
       (else (%cg-emit-ld cg reg base off)))))
 
 (define (%cg-emit-st-typed cg reg ctype base off)
   (let* ((sz (ctype-size ctype))
          (base-bv (%cg-reg->bv base))
          (off-fn (lambda (k) (%n (+ off k)))))
     (cond
       ((= sz 1)
        (%cg-emit-many cg (list "%sb(" (%cg-reg->bv reg) ", "
                                base-bv ", " (off-fn 0) ")\n")))
       ((= sz 2) (%cg-emit-stN-bytes cg reg base-bv off-fn 2))
       ((= sz 4) (%cg-emit-stN-bytes cg reg base-bv off-fn 4))
       (else (%cg-emit-st cg reg base off)))))
 
 (define (%cg-load-opnd-into cg op reg)
   (let ((kind (opnd-kind op)) (lv? (opnd-lval? op))
         (ext (opnd-ext op)) (ty (opnd-type op)))
     (cond
       ((eq? kind 'imm)    (%cg-emit-li cg reg ext))
       ;; frame lval: load value at type width. frame rval is a spilled
       ;; word (alloc-slot 8 8 in %cg-spill-reg) — always 8-byte load.
       ((eq? kind 'frame)
        (cond (lv? (%cg-emit-ld-slot-typed cg reg ty ext))
              (else (%cg-emit-ld-slot cg reg ext))))
       ((eq? kind 'global)
        (cond
          ((not lv?) (%cg-emit-la cg reg ext))
          (else
           ;; Width > 1 byte-gathers must not alias dest with base —
           ;; the first %lb would otherwise clobber the address before
           ;; subsequent byte loads. Stage the address in t2.
           (%cg-emit-la cg 't2 ext)
           (%cg-emit-ld-typed cg reg ty 't2 0))))
       (else (die #f "cg internal: unknown opnd-kind" kind)))))
 
 (define (%cg-spill-reg cg reg ty)
   (let* ((off (cg-alloc-slot cg 8 8))
          (op  (%opnd 'frame ty off #f)))
     (%cg-emit-st-slot cg reg off)
     (cg-vstack-set! cg (cons op (cg-vstack cg)))
     op))
 
 (define (%ctype-ptr? t)
   (let ((k (ctype-kind t)))
     (if (eq? k 'ptr) #t (eq? k 'arr))))
 
 (define (%ctype-pointee t)
   (cond ((eq? (ctype-kind t) 'ptr) (ctype-ext t))
         ((eq? (ctype-kind t) 'arr) (car (ctype-ext t)))
         (else #f)))
 
 (define (%ctype-unsigned? t)
   (let ((k (ctype-kind t)))
     (cond ((eq? k 'u8) #t) ((eq? k 'u16) #t) ((eq? k 'u32) #t)
           ((eq? k 'u64) #t) ((eq? k 'bool) #t)
           ((eq? k 'ptr) #t) ((eq? k 'arr) #t) ((eq? k 'fn) #t)
           (else #f))))
 
 (define (%ctype-size t) (ctype-size t))
 
 (define (%reg-by-idx i)
   (cond ((= i 0) 'a0) ((= i 1) 'a1) ((= i 2) 'a2) ((= i 3) 'a3)
         (else (die #f "cg: param idx > 3 needs ldarg path" i))))
 
 ;; --------------------------------------------------------------------
 ;; Lifecycle
 ;; --------------------------------------------------------------------
 
 (define (cg-init)
   (%cg (make-buf) (make-buf) (make-buf) '() 0 0 '() '() #f #f 0))
 
 (define (cg-finish cg)
   ;; Entry stub. P1's program-entry contract (docs/P1.md §Program Entry)
   ;; delivers argc in a0 and argv in a1 at p1_main. %call doesn't
   ;; clobber a0/a1, so falling straight through to cc__main forwards
   ;; them unchanged. The 16-byte frame is just enough for %enter's
   ;; saved-fp/lr to fit; cc__main builds its own frame on top.
   ;; (CC-CONTRACTS §J.1, §5.4.)
   (let ((stub (bv-cat (list
                        "# entry stub: forwards argc=a0, argv=a1 to cc__main\n"
                        "%fn(p1_main, 16, {\n"
                        "%call(&cc__main)\n"
                        "})\n"))))
     (buf-push! (cg-text cg) stub))
   ;; Every P1pp translation unit must end with :ELF_end so the ELF
   ;; header can compute file-size and ph_memsz boundaries.
   (bv-cat (list (buf-flush (cg-text cg))
                 (buf-flush (cg-data cg))
                 (buf-flush (cg-bss  cg))
                 ":ELF_end\n")))
 
 (define (cg-fn-begin cg name params return-type)
   (cg-fn-begin/v cg name params return-type #f))
 
 ;; Variadic-aware variant. variadic? = #t reserves 16 contiguous 8-byte
 ;; slots covering incoming arg indices 0..15, populating each from the
 ;; appropriate source: a-register for idx 0..3, LDARG slot (idx-4) for
 ;; idx 4..15. va_start computes the address of the slot at index =
 ;; named-arg count, so va_arg walks linearly through the rest.
 ;; Indices 4..15 may be garbage when the caller passed fewer args; user
 ;; code stops walking based on a count or sentinel before those slots
 ;; are read. Limit of 15 variadic args (after named) is enough for
 ;; tcc.c's logging shapes; bump VARARG_WINDOW if you need more.
 (define (cg-fn-begin/v cg name params return-type variadic?)
   (cg-fn-buf-set!       cg (make-buf))
   (cg-prologue-buf-set! cg (make-buf))
   (cg-vstack-set!       cg '())
   (cg-frame-hi-set!     cg 0)
   (cg-label-ctr-set!    cg 0)
   (cg-max-outgoing-set! cg 0)
   (%cg-fn-set! cg '%fn-name        name)
   (%cg-fn-set! cg '%fn-ret-type    return-type)
   (%cg-fn-set! cg '%indirect-slots '())
   (%cg-fn-set! cg '%fn-variadic?   variadic?)
   (let ((ret-slot (cg-alloc-slot cg 8 8)))
     (%cg-fn-set! cg '%fn-ret-slot ret-slot)
     (cond
       ((not (eq? (ctype-kind return-type) 'void))
        (buf-push! (cg-prologue-buf cg)
                   (bv-cat (list "%li(t0, 0)\n"
                                 "%st(t0, sp, "
                                 (%cg-slot-expr cg ret-slot) ")\n"))))))
   ;; params per CC-CONTRACTS §3.1: list of (name-bv . ctype). We
   ;; return an alist (name-bv . sym) the parser binds into scope.
   (let walk ((ps params) (idx 0) (out '()) (first-slot #f))
     (cond
       ((null? ps)
        (cond
          (variadic?
           ;; Pad the incoming-arg window out to 16 slots. For idx 0..3
           ;; the slot is filled from a-register; for idx 4..15 from
           ;; LDARG slot (idx-4). va_start points at the slot whose
           ;; index equals the named-arg count, and va_arg walks
           ;; linearly from there through the rest of the window.
           (let pad ((i idx) (vfirst #f) (fs first-slot))
             (cond
               ((>= i 16)
                ;; If named-arg count was 0, vfirst is the very first
                ;; slot of the save area (= fs).
                (%cg-fn-set! cg '%fn-vararg-first-slot
                             (or vfirst fs))
                (reverse out))
               (else
                (let ((off (cg-alloc-slot cg 8 8)))
                  (cond
                    ((< i 4)
                     (let ((ar (%reg-by-idx i)))
                       (buf-push! (cg-prologue-buf cg)
                                  (bv-cat (list "%st(" (%cg-reg->bv ar)
                                                ", sp, "
                                                (%cg-slot-expr cg off) ")\n")))))
                    (else
                     (buf-push! (cg-prologue-buf cg)
                                (bv-cat (list "%ldarg(t0, " (%n (- i 4)) ")\n"
                                              "%st(t0, sp, "
                                              (%cg-slot-expr cg off) ")\n")))))
                  (pad (+ i 1)
                       (or vfirst off)
                       (or fs off)))))))
          (else (reverse out))))
       (else
        (let* ((p    (car ps))
               (nm   (car p))
               (ty   (cdr p))
               (off  (cg-alloc-slot cg 8 8))
               (psym (%sym nm 'param #f ty off)))
          (cond
            ((< idx 4)
             (let ((ar (%reg-by-idx idx)))
               (buf-push! (cg-prologue-buf cg)
                          (bv-cat (list "%st(" (%cg-reg->bv ar)
                                        ", sp, " (%cg-slot-expr cg off) ")\n")))))
            (else
             (buf-push! (cg-prologue-buf cg)
                        (bv-cat (list "%ldarg(t0, " (%n (- idx 4)) ")\n"
                                      "%st(t0, sp, " (%cg-slot-expr cg off) ")\n")))))
          (walk (cdr ps) (+ idx 1) (cons (cons nm psym) out)
                (or first-slot off)))))))
 
 (define (cg-fn-end cg)
   (let* ((name        (%cg-fn-get cg '%fn-name))
          (ret-slot    (%cg-fn-get cg '%fn-ret-slot))
          (ret-type    (%cg-fn-get cg '%fn-ret-type))
          (locals-hi   (cg-frame-hi cg))
          (staging-bytes (* 8 (cg-max-outgoing cg)))
          (raw-size    (+ staging-bytes locals-hi))
          (frame-size  (align-up raw-size 16))
          (ret-block
           (cond
             ((eq? (ctype-kind ret-type) 'void)
              (bv-cat (list "::ret\n%li(a0, 0)\n")))
             (else
              (bv-cat (list "::ret\n%ld(a0, sp, "
                            (%cg-slot-expr cg ret-slot) ")\n")))))
          (so-macro
           (bv-cat (list "%macro " name "__SO()\n"
                         (%n staging-bytes) "\n%endm\n")))
          (prologue (buf-flush (cg-prologue-buf cg)))
          (body     (buf-flush (cg-fn-buf cg)))
          (mangled  (%cg-mangle-global name))
          (fn-block (bv-cat (list
                             so-macro
                             "%fn(" mangled ", " (%n frame-size) ", {\n"
                             prologue body ret-block
                             "})\n"))))
     (buf-push! (cg-text cg) fn-block)
     (cg-fn-buf-set!       cg #f)
     (cg-prologue-buf-set! cg #f)
     (cg-vstack-set!       cg '())
     (cg-frame-hi-set!     cg 0)
     (cg-max-outgoing-set! cg 0)
     0))
 
 ;; --------------------------------------------------------------------
 ;; Vstack
 ;; --------------------------------------------------------------------
 (define (cg-push cg op)
   (cg-vstack-set! cg (cons op (cg-vstack cg)))
   op)
 
 (define (cg-pop cg)
   (let ((s (cg-vstack cg)))
     (cond ((null? s) (die #f "cg-pop: empty vstack"))
           (else (cg-vstack-set! cg (cdr s)) (car s)))))
 
 (define (cg-top cg)
   (let ((s (cg-vstack cg)))
     (cond ((null? s) (die #f "cg-top: empty vstack")) (else (car s)))))
 
 (define (cg-depth cg) (length (cg-vstack cg)))
 
 ;; Duplicate the top vstack entry. For lvals this is safe — the slot
 ;; (or label, or indirect-marked frame) backing the lval keeps existing
 ;; until the function ends. For rvals it duplicates the descriptor of
 ;; the spilled value; both copies refer to the same already-emitted
 ;; storage. CC-CONTRACTS §4.1: used for `lhs += rhs` and `++lhs` to
 ;; preserve the lhs across a `cg-load` so the subsequent `cg-assign`
 ;; still has its address.
 (define (cg-dup cg)
   (let ((p (cg-top cg))) (cg-push cg p) p))
 
 ;; --------------------------------------------------------------------
 ;; Materialize
 ;; --------------------------------------------------------------------
 (define (cg-push-imm cg ctype value)
   (cg-push cg (%opnd 'imm ctype value #f)))
 
 (define (cg-push-string cg bv-content)
   (let* ((label (cg-intern-string cg bv-content))
          (cp-ty (%ctype 'ptr 8 8 %t-i8)))
     (cg-push cg (%opnd 'global cp-ty label #f))))
 
 (define (cg-push-sym cg sym)
   (let ((k (sym-kind sym)) (ty (sym-type sym)))
     (cond
       ((eq? k 'fn)
        (cg-push cg (%opnd 'global ty (%cg-mangle-global (sym-name sym)) #f)))
       ((eq? k 'enum-const)
        (cg-push cg (%opnd 'imm ty (sym-slot sym) #f)))
       ((eq? k 'var)
        (let ((stg (sym-storage sym)))
          (cond
            ((eq? stg 'extern)
             (cg-push cg (%opnd 'global ty (%cg-mangle-global (sym-name sym)) #t)))
            ((eq? stg 'static)
             (cg-push cg (%opnd 'global ty (%cg-mangle-global (sym-name sym)) #t)))
            (else
             (cg-push cg (%opnd 'frame ty (sym-slot sym) #t))))))
       ((eq? k 'param)
        (cg-push cg (%opnd 'frame ty (sym-slot sym) #t)))
       (else (die #f "cg-push-sym: unsupported sym-kind" k)))))
 
 ;; A cg-push-deref result is a frame-lval whose slot HOLDS THE ADDRESS
 ;; (not the value). To distinguish from ordinary frame-lvals (whose
 ;; slot holds the value directly), we tag indirect slots in
 ;; %indirect-slots so cg-load and cg-assign can do the extra
 ;; indirection.
 (define (%cg-mark-indirect! cg off)
   (let ((cur (or (%cg-fn-get cg '%indirect-slots) '())))
     (%cg-fn-set! cg '%indirect-slots (cons off cur))))
 
 (define (%cg-indirect? cg off)
   (let ((cur (or (%cg-fn-get cg '%indirect-slots) '())))
     (let loop ((xs cur))
       (cond ((null? xs) #f) ((= (car xs) off) #t) (else (loop (cdr xs)))))))
 
 (define (cg-push-deref cg)
   (let* ((p  (cg-pop cg))
          (pt (opnd-type p))
          (pe (cond ((eq? (ctype-kind pt) 'ptr) (ctype-ext pt))
                    ((eq? (ctype-kind pt) 'arr) (car (ctype-ext pt)))
                    (else #f))))
     (cond
       ((not pe) (die #f "cg-push-deref: not a pointer" pt))
       (else
        (%cg-load-opnd-into cg p 't0)
        (let ((off (cg-alloc-slot cg 8 8)))
          (%cg-emit-st-slot cg 't0 off)
          (%cg-mark-indirect! cg off)
          (cg-push cg (%opnd 'frame pe off #t)))))))
 
 ;; --------------------------------------------------------------------
 ;; Aggregate field access (§D.1–D.4)
 ;; --------------------------------------------------------------------
 ;; cg-push-field cg fname:
 ;;   pop a struct/union lval; look up `fname` in the struct's fields
 ;;   list (data.scm: ext = (tag complete? fields), where each field
 ;;   is (name-bv ctype offset)); push a new lval at the field's
 ;;   offset with the field's ctype.
 ;;
 ;; Three input cases:
 ;;   - direct frame lval at slot `off`        -> frame lval at off+fo
 ;;   - indirect frame lval (slot holds addr)  -> new indirect slot for
 ;;                                                addr+fo
 ;;   - global lval at label L                 -> indirect slot for
 ;;                                                la(L)+fo
 ;; In all cases the resulting lval has the field's ctype.
 
 (define (%cg-find-field fields fname)
   (let loop ((xs fields))
     (cond
       ((null? xs) #f)
       ((bv= (car (car xs)) fname) (car xs))
       (else (loop (cdr xs))))))
 
 (define (cg-push-field cg fname)
   (let* ((s   (cg-pop cg))
          (sty (opnd-type s))
          (k   (ctype-kind sty)))
     (cond
       ((not (or (eq? k 'struct) (eq? k 'union)))
        (die #f "cg-push-field: not a struct/union" k))
       ((not (opnd-lval? s))
        (die #f "cg-push-field: not an lvalue" k))
       (else
        (let* ((fields (car (cddr (ctype-ext sty))))
               (f (%cg-find-field fields fname)))
          (cond
            ((not f) (die #f "cg-push-field: no such field" fname))
            (else
             (let* ((fty (cadr f)) (fo (car (cddr f))))
               (cond
                 ;; direct frame lval: just shift the slot offset.
                 ((and (eq? (opnd-kind s) 'frame)
                       (not (%cg-indirect? cg (opnd-ext s))))
                  (cg-push cg (%opnd 'frame fty (+ (opnd-ext s) fo) #t)))
                 ;; indirect frame lval: addr lives in the slot. Compute
                 ;; addr+fo into a new indirect slot.
                 ((eq? (opnd-kind s) 'frame)
                  (%cg-emit-ld-slot cg 't0 (opnd-ext s))
                  (cond
                    ((> fo 0)
                     (%cg-emit-many cg (list "%addi(t0, t0, " (%n fo) ")\n"))))
                  (let ((no (cg-alloc-slot cg 8 8)))
                    (%cg-emit-st-slot cg 't0 no)
                    (%cg-mark-indirect! cg no)
                    (cg-push cg (%opnd 'frame fty no #t))))
                 ;; global lval: load addr, add offset, indirect slot.
                 ((eq? (opnd-kind s) 'global)
                  (%cg-emit-la cg 't0 (opnd-ext s))
                  (cond
                    ((> fo 0)
                     (%cg-emit-many cg (list "%addi(t0, t0, " (%n fo) ")\n"))))
                  (let ((no (cg-alloc-slot cg 8 8)))
                    (%cg-emit-st-slot cg 't0 no)
                    (%cg-mark-indirect! cg no)
                    (cg-push cg (%opnd 'frame fty no #t))))
                 (else
                  (die #f "cg-push-field: unsupported lval kind"
                       (opnd-kind s))))))))))))
 
 ;; cg-decay-array:
 ;;   if top of vstack is an arr-typed lval, replace it with a ptr-rval
 ;;   to the first element. C arrays decay to T* in most contexts;
 ;;   parse calls this before rval-style operations. No-op otherwise.
 (define (cg-decay-array cg)
   (let ((tp (cg-top cg)))
     (cond
       ((and (opnd-lval? tp) (eq? (ctype-kind (opnd-type tp)) 'arr))
        (let* ((p  (cg-pop cg))
               (et (car (ctype-ext (opnd-type p))))
               (pty (%ctype 'ptr 8 8 et)))
          (cond
            ;; direct frame lval: address is sp+off.
            ((and (eq? (opnd-kind p) 'frame)
                  (not (%cg-indirect? cg (opnd-ext p))))
             (%cg-emit-many cg (list "%mov(t0, sp)\n"
                                     "%addi(t0, t0, "
                                     (%cg-slot-expr cg (opnd-ext p)) ")\n"))
             (%cg-spill-reg cg 't0 pty))
            ;; indirect frame lval (rare for arrays, but support it):
            ;; the slot holds the address already.
            ((eq? (opnd-kind p) 'frame)
             (%cg-emit-ld-slot cg 't0 (opnd-ext p))
             (%cg-spill-reg cg 't0 pty))
            ;; global array: la(label) is the address.
            ((eq? (opnd-kind p) 'global)
             (%cg-emit-la cg 't0 (opnd-ext p))
             (%cg-spill-reg cg 't0 pty))
            (else (die #f "cg-decay-array: unsupported lval kind"
                       (opnd-kind p))))))
       (else tp))))
 
 ;; --------------------------------------------------------------------
 ;; Address & deref
 ;; --------------------------------------------------------------------
 (define (cg-take-addr cg)
   (let* ((p   (cg-pop cg))
          (ty  (opnd-type p))
          ;; &arr yields T(*)[N] per strict C. Pointer arithmetic on
          ;; the result scales by sizeof(T[N]) (the whole array), so
          ;; &arr + 1 is one-past-end. Array-to-pointer decay happens
          ;; on use via cg-decay-array, not at the & operator.
          (pty (%ctype 'ptr 8 8 ty)))
     (cond
       ((not (opnd-lval? p))
        (die #f "cg-take-addr: not an lvalue"))
       ((eq? (opnd-kind p) 'frame)
        (cond
          ((%cg-indirect? cg (opnd-ext p))
           ;; The address itself lives at sp+slot — &*p degenerates to p.
           (%cg-emit-ld-slot cg 't0 (opnd-ext p))
           (%cg-spill-reg cg 't0 pty))
          (else
           ;; %mov(rd, sp) gives the portable-sp pointer (the backend
           ;; handles any hidden frame-header offset). Then add slot.
           (%cg-emit-many cg (list "%mov(t0, sp)\n"
                                   "%addi(t0, t0, "
                                   (%cg-slot-expr cg (opnd-ext p)) ")\n"))
           (%cg-spill-reg cg 't0 pty))))
       ((eq? (opnd-kind p) 'global)
        (%cg-emit-la cg 't0 (opnd-ext p))
        (%cg-spill-reg cg 't0 pty))
       (else (die #f "cg-take-addr: non-addressable" (opnd-kind p))))))
 
 (define (cg-load cg)
   (let* ((p (cg-pop cg)) (ty (opnd-type p)))
     (cond
       ((not (opnd-lval? p)) (die #f "cg-load: not an lvalue"))
       ;; Array lvalues decay to a ptr-rval addressing the first
       ;; element (C array-to-pointer decay). We push the lval back
       ;; and route through cg-decay-array for a single source of truth.
       ((eq? (ctype-kind ty) 'arr)
        (cg-push cg p) (cg-decay-array cg))
       ((and (eq? (opnd-kind p) 'frame)
             (%cg-indirect? cg (opnd-ext p)))
        ;; Indirect frame-lval: slot holds the address. Stage the
        ;; address in t2 so multi-byte gathers don't alias dest with
        ;; base.
        (%cg-emit-ld-slot cg 't2 (opnd-ext p))
        (%cg-emit-ld-typed cg 't0 ty 't2 0)
        (%cg-spill-reg cg 't0 ty))
       (else (%cg-load-opnd-into cg p 't0) (%cg-spill-reg cg 't0 ty)))))
 
 ;; --------------------------------------------------------------------
 ;; Type conversions
 ;; --------------------------------------------------------------------
 (define (cg-cast cg to-type)
   (let* ((p       (cg-pop cg))
          (from-ty (opnd-type p))
          (from-sz (%ctype-size from-ty))
          (to-sz   (%ctype-size to-type))
          (to-kind (ctype-kind to-type)))
     (cond
       ((eq? to-kind 'bool)
        (%cg-load-opnd-into cg p 't0)
        (%cg-emit-many cg (list
                           "%ifelse_eqz(t0, { %li(t0, 0) }, { %li(t0, 1) })\n"))
        (%cg-spill-reg cg 't0 to-type))
       ((or (eq? to-kind 'ptr)
            (and (or (eq? to-kind 'i64) (eq? to-kind 'u64))
                 (or (eq? (ctype-kind from-ty) 'ptr)
                     (eq? (ctype-kind from-ty) 'arr))))
        (cg-push cg (%opnd (opnd-kind p) to-type (opnd-ext p) (opnd-lval? p))))
       ((>= to-sz from-sz)
        (cg-push cg (%opnd (opnd-kind p) to-type (opnd-ext p) (opnd-lval? p))))
       (else
        ;; Narrowing cast. Signed targets (i8/i16/i32) shli/sari to
        ;; truncate-and-sign-extend in one step, so the slot holds the
        ;; canonical 64-bit form and a subsequent widening cast (which
        ;; is relabel-only) restores the value. Unsigned targets mask
        ;; off high bits to zero-extend.
        (%cg-load-opnd-into cg p 't0)
        (cond
          ((eq? to-kind 'i8)  (%cg-emit-sext cg 't0 56))
          ((eq? to-kind 'i16) (%cg-emit-sext cg 't0 48))
          ((eq? to-kind 'i32) (%cg-emit-sext cg 't0 32))
          ((= to-sz 1) (%cg-emit-many cg (list "%andi(t0, t0, 255)\n")))
          ((= to-sz 2)
           (%cg-emit-many cg (list "%li(t1, 65535)\n%and(t0, t0, t1)\n")))
          ((= to-sz 4)
           (%cg-emit-many cg (list "%li(t1, 4294967295)\n%and(t0, t0, t1)\n")))
          (else 0))
        (%cg-spill-reg cg 't0 to-type)))))
 
 (define (cg-promote cg)
   (let* ((p  (cg-pop cg))
          (ty (opnd-type p))
          (sz (%ctype-size ty)))
     (cond
       ((< sz 4)
        (cond
          ((%ctype-unsigned? ty)
           (cg-push cg (%opnd (opnd-kind p) %t-u32 (opnd-ext p) (opnd-lval? p))))
          (else
           (cg-push cg (%opnd (opnd-kind p) %t-i32 (opnd-ext p) (opnd-lval? p))))))
       (else (cg-push cg p)))))
 
 (define (cg-arith-conv cg)
   ;; Usual arithmetic conversions. CC-CONTRACTS §4.2: applies to
   ;; arithmetic operands. When either operand is a pointer (or array,
   ;; which behaves as a pointer in arithmetic), the pair is a
   ;; pointer-arith case — leave the types alone so cg-binop can detect
   ;; the ptr operand and apply the right scaling.
   (let* ((b  (cg-pop cg))
          (a  (cg-pop cg))
          (ta (opnd-type a))
          (tb (opnd-type b))
          (sa (%ctype-size ta))
          (sb (%ctype-size tb)))
     (cond
       ;; Pointer/array arithmetic: leave types alone so cg-binop's
       ;; ptr-aware add/sub branch fires with the correct pointee type
       ;; (and doesn't see two pointers, which would skip scaling).
       ((or (%ctype-ptr? ta) (%ctype-ptr? tb))
        (cg-push cg a)
        (cg-push cg b))
       (else
        (let ((common (cond
                        ((> sa sb) ta)
                        ((> sb sa) tb)
                        ((%ctype-unsigned? ta) ta)
                        ((%ctype-unsigned? tb) tb)
                        (else ta))))
          (cg-push cg (%opnd (opnd-kind a) common (opnd-ext a) (opnd-lval? a)))
          (cg-push cg (%opnd (opnd-kind b) common (opnd-ext b) (opnd-lval? b))))))))
 
 ;; --------------------------------------------------------------------
 ;; Operators
 ;; --------------------------------------------------------------------
 (define (%cg-emit-rrr cg op rd ra rb)
   (%cg-emit-many cg (list "%" op "(" (%cg-reg->bv rd) ", "
                           (%cg-reg->bv ra) ", " (%cg-reg->bv rb) ")\n")))
 
 (define (%cg-emit-cmp cg cc ra rb rd)
   (%cg-emit-many cg (list "%ifelse_" cc "("
                           (%cg-reg->bv ra) ", " (%cg-reg->bv rb)
                           ", { %li(" (%cg-reg->bv rd) ", 1) }, "
                           "{ %li(" (%cg-reg->bv rd) ", 0) })\n")))
 
 (define (cg-binop cg op)
   (let* ((b  (cg-pop cg))
          (a  (cg-pop cg))
          (ta (opnd-type a))
          (tb (opnd-type b))
          (unsigned? (or (%ctype-unsigned? ta) (%ctype-unsigned? tb)))
          (a-ptr? (%ctype-ptr? ta))
          (b-ptr? (%ctype-ptr? tb))
          (result-ty
           (cond
             ((or (eq? op 'eq) (eq? op 'ne)
                  (eq? op 'lt) (eq? op 'le) (eq? op 'gt) (eq? op 'ge))
              %t-i32)
             ((and a-ptr? b-ptr? (eq? op 'sub)) %t-i64)
             (a-ptr? ta)
             (b-ptr? tb)
             (else ta))))
     (cond
       ((and a-ptr? (or (eq? op 'add) (eq? op 'sub)) (not b-ptr?))
        (%cg-load-opnd-into cg a 'a0)
        (%cg-load-opnd-into cg b 'a1)
        (let ((sz (%ctype-size (%ctype-pointee ta))))
          (cond ((> sz 1) (%cg-emit-many cg (list "%li(t0, " (%n sz) ")\n"))
                          (%cg-emit-rrr cg "mul" 'a1 'a1 't0))
                (else 0)))
        (%cg-emit-rrr cg (if (eq? op 'add) "add" "sub") 't0 'a0 'a1)
        (%cg-spill-reg cg 't0 result-ty))
       ((and b-ptr? (eq? op 'add) (not a-ptr?))
        (%cg-load-opnd-into cg a 'a0)
        (%cg-load-opnd-into cg b 'a1)
        (let ((sz (%ctype-size (%ctype-pointee tb))))
          (cond ((> sz 1) (%cg-emit-many cg (list "%li(t0, " (%n sz) ")\n"))
                          (%cg-emit-rrr cg "mul" 'a0 'a0 't0))
                (else 0)))
        (%cg-emit-rrr cg "add" 't0 'a0 'a1)
        (%cg-spill-reg cg 't0 result-ty))
       ((and a-ptr? b-ptr? (eq? op 'sub))
        (%cg-load-opnd-into cg a 'a0)
        (%cg-load-opnd-into cg b 'a1)
        (%cg-emit-rrr cg "sub" 't0 'a0 'a1)
        (let ((sz (%ctype-size (%ctype-pointee ta))))
          (cond ((> sz 1) (%cg-emit-many cg (list "%li(t1, " (%n sz) ")\n"))
                          (%cg-emit-rrr cg "div" 't0 't0 't1))
                (else 0)))
        (%cg-spill-reg cg 't0 result-ty))
       (else
        (%cg-load-opnd-into cg a 'a0)
        (%cg-load-opnd-into cg b 'a1)
        (cond
          ((eq? op 'add) (%cg-emit-rrr cg "add" 't0 'a0 'a1))
          ((eq? op 'sub) (%cg-emit-rrr cg "sub" 't0 'a0 'a1))
          ((eq? op 'mul) (%cg-emit-rrr cg "mul" 't0 'a0 'a1))
          ((eq? op 'and) (%cg-emit-rrr cg "and" 't0 'a0 'a1))
          ((eq? op 'or)  (%cg-emit-rrr cg "or"  't0 'a0 'a1))
          ((eq? op 'xor) (%cg-emit-rrr cg "xor" 't0 'a0 'a1))
          ((eq? op 'shl) (%cg-emit-rrr cg "shl" 't0 'a0 'a1))
          ((eq? op 'shr)
           (if unsigned? (%cg-emit-rrr cg "shr" 't0 'a0 'a1)
                         (%cg-emit-rrr cg "sar" 't0 'a0 'a1)))
          ((eq? op 'div) (%cg-emit-rrr cg "div" 't0 'a0 'a1))
          ((eq? op 'rem) (%cg-emit-rrr cg "rem" 't0 'a0 'a1))
          ((eq? op 'eq) (%cg-emit-cmp cg "eq"  'a0 'a1 't0))
          ((eq? op 'ne) (%cg-emit-cmp cg "ne"  'a0 'a1 't0))
          ((eq? op 'lt) (%cg-emit-cmp cg (if unsigned? "ltu" "lt") 'a0 'a1 't0))
          ((eq? op 'gt) (%cg-emit-cmp cg (if unsigned? "ltu" "lt") 'a1 'a0 't0))
          ((eq? op 'le)
           (%cg-emit-cmp cg (if unsigned? "ltu" "lt") 'a1 'a0 't0)
           (%cg-emit-many cg (list "%li(t1, 1)\n%xor(t0, t0, t1)\n")))
          ((eq? op 'ge)
           (%cg-emit-cmp cg (if unsigned? "ltu" "lt") 'a0 'a1 't0)
           (%cg-emit-many cg (list "%li(t1, 1)\n%xor(t0, t0, t1)\n")))
          (else (die #f "cg-binop: unknown op" op)))
        (%cg-spill-reg cg 't0 result-ty)))))
 
 ;; Post-increment / post-decrement on the top-of-vstack lval.
 ;; Pushes the OLD value (per C semantics) and emits the +1 / -1 store.
 ;; Uses cg-dup + cg-load to capture the old rval (which is then in a
 ;; never-reused spill slot), then runs the regular dup+load+add+assign
 ;; pattern for the store. Pointer scaling falls out of cg-binop add.
 (define (%cg-post-inc-dec cg op)
   (cg-dup cg)
   (cg-load cg)
   (let ((old (cg-pop cg)))
     (cg-dup cg)
     (cg-load cg)
     (cg-push-imm cg %t-i32 1)
     (cg-binop cg op)
     (cg-assign cg)
     (cg-pop cg)
     (cg-push cg old)))
 
 (define (cg-postinc cg) (%cg-post-inc-dec cg 'add))
 (define (cg-postdec cg) (%cg-post-inc-dec cg 'sub))
 
 (define (cg-unop cg op)
   (let* ((p  (cg-pop cg)) (ty (opnd-type p)))
     (%cg-load-opnd-into cg p 't0)
     (cond
       ((eq? op 'neg)
        (%cg-emit-many cg (list "%li(t1, 0)\n%sub(t0, t1, t0)\n"))
        (%cg-spill-reg cg 't0 ty))
       ((eq? op 'bnot)
        (%cg-emit-many cg (list "%li(t1, -1)\n%xor(t0, t0, t1)\n"))
        (%cg-spill-reg cg 't0 ty))
       ((eq? op 'lnot)
        (%cg-emit-many cg (list "%ifelse_eqz(t0, { %li(t0, 1) }, { %li(t0, 0) })\n"))
        (%cg-spill-reg cg 't0 %t-i32))
       (else (die #f "cg-unop: unknown op" op)))))
 
 (define (cg-assign cg)
   ;; Pops rhs, pops lhs, casts rhs to lhs's type (parser cannot peek
   ;; deeper than vstack top to do this itself — CC-CONTRACTS §4.2),
   ;; emits the store, pushes the assigned value as the result rval.
   (let* ((rhs0 (cg-pop cg))
          (lhs  (cg-pop cg))
          (ty   (opnd-type lhs)))
     (cond ((not (opnd-lval? lhs)) (die #f "cg-assign: lhs not lvalue")))
     ;; Cast rhs to lhs's type (no-op when the types already match).
     (cg-push cg rhs0)
     (cg-cast cg ty)
     (let ((rhs (cg-pop cg)))
     (%cg-load-opnd-into cg rhs 'a0)
     (cond
       ((eq? (opnd-kind lhs) 'frame)
        (cond
          ((%cg-indirect? cg (opnd-ext lhs))
           (%cg-emit-ld-slot cg 't0 (opnd-ext lhs))
           (%cg-emit-st-typed cg 'a0 ty 't0 0))
          (else
           (%cg-emit-st-slot-typed cg 'a0 ty (opnd-ext lhs)))))
       ((eq? (opnd-kind lhs) 'global)
        (%cg-emit-la cg 't0 (opnd-ext lhs))
        (%cg-emit-st-typed cg 'a0 ty 't0 0))
       (else (die #f "cg-assign: unsupported lhs kind" (opnd-kind lhs))))
     (%cg-spill-reg cg 'a0 ty))))
 
 ;; --------------------------------------------------------------------
 ;; Calls
 ;; --------------------------------------------------------------------
 (define (cg-call cg arity has-result?)
   (let* ((args (let loop ((i 0) (acc '()))
                  (cond ((= i arity) acc)
                        (else (loop (+ i 1) (cons (cg-pop cg) acc))))))
          (fn-op (cg-pop cg)))
     (let stage ((xs args) (idx 0))
       (cond
         ((null? xs) 0)
         ((< idx 4)
          (%cg-load-opnd-into cg (car xs) (%reg-by-idx idx))
          (stage (cdr xs) (+ idx 1)))
         (else
          (%cg-load-opnd-into cg (car xs) 't0)
          (%cg-emit-st cg 't0 'sp (* 8 (- idx 4)))
          (stage (cdr xs) (+ idx 1)))))
     (cond ((> arity 4) (%cg-bump-outgoing! cg (- arity 4))) (else 0))
     (cond
       ((and (eq? (opnd-kind fn-op) 'global) (not (opnd-lval? fn-op)))
        (%cg-emit-many cg (list "%call(&" (opnd-ext fn-op) ")\n")))
       (else
        (%cg-load-opnd-into cg fn-op 't0)
        (%cg-emit-many cg (list "%callr(t0)\n"))))
     (cond
       (has-result?
        (let* ((fty (opnd-type fn-op))
               (rty (cond
                      ((eq? (ctype-kind fty) 'fn) (car (ctype-ext fty)))
                      ((eq? (ctype-kind fty) 'ptr)
                       (let ((p (ctype-ext fty)))
                         (if (eq? (ctype-kind p) 'fn) (car (ctype-ext p)) %t-i64)))
                      (else %t-i64))))
          (%cg-spill-reg cg 'a0 rty)))
       (else #f))))
 
 ;; --------------------------------------------------------------------
 ;; Return
 ;; --------------------------------------------------------------------
 (define (cg-return cg)
   (let ((ret-slot (%cg-fn-get cg '%fn-ret-slot))
         (ret-type (%cg-fn-get cg '%fn-ret-type)))
     (cond
       ((eq? (ctype-kind ret-type) 'void)
        (%cg-emit-many cg (list "%b(&::ret)\n")))
       (else
        (let ((p (cg-pop cg)))
          (%cg-load-opnd-into cg p 'a0)
          (%cg-emit-st-slot cg 'a0 ret-slot)
          (%cg-emit-many cg (list "%b(&::ret)\n")))))))
 
 ;; --------------------------------------------------------------------
 ;; Structured control flow
 ;; --------------------------------------------------------------------
 (define (cg-if cg then-thunk)
   (let ((p (cg-pop cg)))
     (%cg-load-opnd-into cg p 't0)
     (%cg-emit-many cg (list "%if_nez(t0, {\n"))
     (then-thunk)
     (%cg-emit-many cg (list "})\n"))))
 
 (define (cg-ifelse cg then-thunk else-thunk)
   (let ((p (cg-pop cg)))
     (%cg-load-opnd-into cg p 't0)
     (%cg-emit-many cg (list "%ifelse_nez(t0, {\n"))
     (then-thunk)
     (%cg-emit-many cg (list "}, {\n"))
     (else-thunk)
     (%cg-emit-many cg (list "})\n"))))
 
 ;; Conditionals-as-values: `cg-ifelse` is correct for if-statements
 ;; (thunks push nothing) but each thunk for ternary / `&&` / `||` ends
 ;; with one rval on top of the vstack — and after both branches run,
 ;; we'd be left with TWO opnds, which breaks the type contract for
 ;; the surrounding expression. `cg-ifelse-merge` solves that: pop the
 ;; cond, allocate one result slot, and after each thunk runs, pop its
 ;; rval and store into the slot. Push the slot as one frame rval.
 ;; Both branches must push exactly one opnd; the result type is the
 ;; type of the first thunk's pushed opnd (parser must arrange for
 ;; both branches to push compatible types — either by passing
 ;; pre-coerced operands or by injecting a `cg-cast` inside the thunk).
 (define (cg-ifelse-merge cg then-thunk else-thunk)
   (let* ((cond-op (cg-pop cg))
          (slot    (cg-alloc-slot cg 8 8)))
     (%cg-load-opnd-into cg cond-op 't0)
     (%cg-emit-many cg (list "%ifelse_nez(t0, {\n"))
     (then-thunk)
     (let* ((p   (cg-pop cg))
            (rty (opnd-type p)))
       (%cg-load-opnd-into cg p 'a0)
       (%cg-emit-st-slot cg 'a0 slot)
       (%cg-emit-many cg (list "}, {\n"))
       (else-thunk)
       (let ((q (cg-pop cg)))
         (%cg-load-opnd-into cg q 'a0)
         (%cg-emit-st-slot cg 'a0 slot))
       (%cg-emit-many cg (list "})\n"))
       (cg-push cg (%opnd 'frame rty slot #f)))))
 
 (define (cg-loop cg head-thunk body-thunk)
   ;; body-thunk receives the loop tag as its argument; parser uses
   ;; that tag for cg-break / cg-continue inside the body. CC-CONTRACTS
   ;; §1.9 / §3.3.
   (let ((tag (%cg-fresh-loop-tag cg)))
     (%cg-emit-many cg (list "%loop_tag(" tag ", {\n"))
     (head-thunk)
     (cond
       ((zero? (cg-depth cg)) 0)
       (else
        (let ((c (cg-pop cg)))
          (%cg-load-opnd-into cg c 't0)
          (%cg-emit-many cg (list "%if_eqz(t0, { %break(" tag ") })\n")))))
     (body-thunk tag)
     (%cg-emit-many cg (list "})\n"))
     tag))
 
 (define (cg-break cg tag)
   (%cg-emit-many cg (list "%break(" tag ")\n")))
 
 (define (cg-continue cg tag)
   (%cg-emit-many cg (list "%continue(" tag ")\n")))
 
 ;; --------------------------------------------------------------------
 ;; Variadic receive (§G.2). Layout: cg-fn-begin/v reserves a 4-slot
 ;; saved-register area at known frame offsets; va_start sets ap to the
 ;; address of the first slot past the named-arg count; va_arg reads
 ;; *ap, advances ap by 8, and pushes the value as the requested type.
 ;;
 ;; ap is an lval (typically a `va_list` local). cg-va-start pops it,
 ;; computes the address, stores into *ap (or the slot directly), and
 ;; pushes nothing. cg-va-arg pops ap-lval, loads ap, dereferences for
 ;; the value, advances ap, stores back, pushes the loaded value.
 ;;
 ;; Limitation: only first 4 incoming args (named + variadic) live in
 ;; the save area; variadic args at index >= 4 need LDARG and are not
 ;; yet supported. See punchlist §G.2 for the gap.
 ;; --------------------------------------------------------------------
 (define (%cg-vararg-first-slot cg)
   (let ((s (%cg-fn-get cg '%fn-vararg-first-slot)))
     (cond ((not s) (die #f "cg-va-start: not a variadic function"))
           (else s))))
 
 (define (cg-va-start cg)
   ;; Pop ap-lval. Materialize "&sp + vararg-first-slot" into a0,
   ;; store through ap-lval. Pushes nothing.
   (let* ((ap-lv (cg-pop cg))
          (vsl   (%cg-vararg-first-slot cg)))
     (cond ((not (opnd-lval? ap-lv))
            (die #f "cg-va-start: ap not lvalue")))
     ;; Compute address into a0.
     (%cg-emit-many cg (list "%mov(a0, sp)\n"
                             "%addi(a0, a0, "
                             (%cg-slot-expr cg vsl) ")\n"))
     ;; Store a0 at ap-lval.
     (cond
       ((eq? (opnd-kind ap-lv) 'frame)
        (cond
          ((%cg-indirect? cg (opnd-ext ap-lv))
           (%cg-emit-ld-slot cg 't0 (opnd-ext ap-lv))
           (%cg-emit-st cg 'a0 't0 0))
          (else (%cg-emit-st-slot cg 'a0 (opnd-ext ap-lv)))))
       ((eq? (opnd-kind ap-lv) 'global)
        (%cg-emit-la cg 't0 (opnd-ext ap-lv))
        (%cg-emit-st cg 'a0 't0 0))
       (else (die #f "cg-va-start: bad ap kind" (opnd-kind ap-lv))))))
 
 (define (cg-va-arg cg ctype)
   ;; Pop ap-lval. Load ap into a0. Read 8 bytes at [a0] into a1.
   ;; Advance a0 by 8 and store back through ap-lval. Push a1 as rval
   ;; of type ctype (caller cg-cast's if needed).
   (let* ((ap-lv (cg-pop cg)))
     (cond ((not (opnd-lval? ap-lv))
            (die #f "cg-va-arg: ap not lvalue")))
     ;; Load ap into a0.
     (cond
       ((eq? (opnd-kind ap-lv) 'frame)
        (cond
          ((%cg-indirect? cg (opnd-ext ap-lv))
           (%cg-emit-ld-slot cg 't0 (opnd-ext ap-lv))
           (%cg-emit-ld cg 'a0 't0 0))
          (else (%cg-emit-ld-slot cg 'a0 (opnd-ext ap-lv)))))
       ((eq? (opnd-kind ap-lv) 'global)
        (%cg-emit-la cg 't0 (opnd-ext ap-lv))
        (%cg-emit-ld cg 'a0 't0 0))
       (else (die #f "cg-va-arg: bad ap kind" (opnd-kind ap-lv))))
     ;; Load value at [a0] into a1 (full 8 bytes; cg-cast on the rval
     ;; the caller pushes will narrow if needed).
     (%cg-emit-ld cg 'a1 'a0 0)
     ;; Advance ap by 8.
     (%cg-emit-many cg (list "%addi(a0, a0, 8)\n"))
     ;; Store advanced ap back.
     (cond
       ((eq? (opnd-kind ap-lv) 'frame)
        (cond
          ((%cg-indirect? cg (opnd-ext ap-lv))
           (%cg-emit-ld-slot cg 't0 (opnd-ext ap-lv))
           (%cg-emit-st cg 'a0 't0 0))
          (else (%cg-emit-st-slot cg 'a0 (opnd-ext ap-lv)))))
       ((eq? (opnd-kind ap-lv) 'global)
        (%cg-emit-la cg 't0 (opnd-ext ap-lv))
        (%cg-emit-st cg 'a0 't0 0))
       (else 0))
     ;; Spill the loaded value (a1) to a fresh frame slot under ctype.
     (%cg-spill-reg cg 'a1 ctype)))
 
 (define (cg-va-end cg)
   ;; va_end is a no-op in this design. Pop and discard ap-lval.
   (cg-pop cg)
   0)
 
 ;; --------------------------------------------------------------------
 ;; Labels and unconditional goto (§F.4 / CC-CONTRACTS §5.3).
 ;; user_<name> namespace keeps the user's label space disjoint from
 ;; the compiler-internal ::ret and ::lbl_<n>. Labels resolve through
 ;; libp1pp's %scope mechanism, so forward references inside the same
 ;; %fn block work without explicit forward declaration.
 ;; --------------------------------------------------------------------
 (define (cg-emit-label cg name-bv)
   (%cg-emit-many cg (list "::user_" name-bv "\n")))
 
 (define (cg-goto cg name-bv)
   (%cg-emit-many cg (list "%b(&::user_" name-bv ")\n")))
 
 ;; --------------------------------------------------------------------
 ;; switch
 ;; --------------------------------------------------------------------
 (define-record-type swctx
   (%swctx ctrl-slot end-tag default-lbl)
   swctx?
   (ctrl-slot   swctx-ctrl-slot)
   (end-tag     swctx-end-tag)
   (default-lbl swctx-default-lbl swctx-default-lbl-set!))
 
 (define (cg-switch-begin cg)
   (let* ((p   (cg-pop cg))
          (off (cg-alloc-slot cg 8 8))
          (tag (%cg-fresh-loop-tag cg))
          (disp-lbl (bytevector-append "sw_disp_" tag)))
     (%cg-load-opnd-into cg p 't0)
     (%cg-emit-st-slot cg 't0 off)
     (%cg-emit-many cg (list "%loop_tag(" tag ", {\n"
                             "%b(&::" disp-lbl ")\n"))
     (%swctx off tag #f)))
 
 (define (cg-switch-case cg sw const-int)
   (let* ((lbl (%cg-fresh-lbl cg))
          (key (string->symbol
                (bytevector-append "%sw_cases__" (swctx-end-tag sw))))
          (cur (or (alist-ref/eq key (cg-globals cg)) '()))
          (entry (cons const-int lbl)))
     (%cg-fn-set! cg key (cons entry cur))
     (%cg-emit-many cg (list "::" lbl "\n"))))
 
 (define (cg-switch-default cg sw)
   (let ((lbl (%cg-fresh-lbl cg)))
     (swctx-default-lbl-set! sw lbl)
     (%cg-emit-many cg (list "::" lbl "\n"))))
 
 (define (cg-switch-end cg sw)
   (let* ((tag (swctx-end-tag sw))
          (key (string->symbol (bytevector-append "%sw_cases__" tag)))
          (cases (reverse (or (alist-ref/eq key (cg-globals cg)) '())))
          (default-lbl (swctx-default-lbl sw))
          (disp-lbl (bytevector-append "sw_disp_" tag)))
     (%cg-emit-many cg (list "%break(" tag ")\n"
                             "::" disp-lbl "\n"))
     (%cg-emit-many cg (list "%ld(t0, sp, "
                             (%cg-slot-expr cg (swctx-ctrl-slot sw)) ")\n"))
     (for-each
      (lambda (c)
        (%cg-emit-many cg (list "%li(t1, " (%n (car c)) ")\n"
                                "%beq(t0, t1, &::" (cdr c) ")\n")))
      cases)
     (cond
       (default-lbl (%cg-emit-many cg (list "%b(&::" default-lbl ")\n")))
       (else 0))
     (%cg-emit-many cg (list "%break(" tag ")\n"
                             "})\n"))))
 
 ;; --------------------------------------------------------------------
 ;; Globals and data
 ;; --------------------------------------------------------------------
 ;; cg-emit-global: emit a global symbol into either .data (initialized)
 ;; or .bss (zero-init).
 ;;
 ;; init can be:
 ;;   #f                       — zero-init in .bss (size from sym's ctype).
 ;;   (piece ...)              — initialized in .data; pieces concatenated.
 ;;
 ;; Each piece is either:
 ;;   <bytevector>             — raw bytes; emitted as N×!(byte) entries.
 ;;   (label-ref . <label-bv>) — 8-byte pointer slot containing &label;
 ;;                              emitted as `&<label> %(0)` (4B label ref +
 ;;                              4B zero pad).
 (define (%cg-init-piece->bv piece)
   (cond
     ((bytevector? piece)
      (let ((n (bytevector-length piece)))
        (let loop ((i 0) (acc '()))
          (cond
            ((= i n) (bv-cat (reverse acc)))
            (else
             (loop (+ i 1)
                   (cons (bv-cat (list "!("
                                       (number->string
                                        (bytevector-u8-ref piece i) 10)
                                       ")\n"))
                         acc)))))))
     ((and (pair? piece) (eq? (car piece) 'label-ref))
      (bv-cat (list "&" (cdr piece) " %(0)\n")))
     (else (die #f "cg-emit-global: bad init piece" piece))))
 
 (define (cg-emit-global cg sym init)
   (let* ((nm  (sym-name sym))
          (lbl (%cg-mangle-global nm))
          (sz  (ctype-size (sym-type sym)))
          (size (if (< sz 0) 8 sz)))
     (cond
       (init
        (buf-push! (cg-data cg) (bv-cat (list "\n:" lbl "\n")))
        (let walk ((ps init))
          (cond
            ((null? ps) 0)
            (else
             (buf-push! (cg-data cg) (%cg-init-piece->bv (car ps)))
             (walk (cdr ps))))))
       (else
        (buf-push! (cg-bss cg)
                   (bv-cat (list "\n:" lbl "\n"
                                 (let zero-loop ((rem size) (acc '()))
                                   (cond
                                     ((<= rem 0) (bv-cat (reverse acc)))
                                     ((>= rem 8)
                                      (zero-loop (- rem 8) (cons "$(0)\n" acc)))
                                     (else
                                      (zero-loop (- rem 1) (cons "!(0)\n" acc))))))))))
   (cg-globals-set! cg (alist-set (sym-name sym) sym (cg-globals cg)))
   0))
 
 (define (cg-emit-extern cg sym)
   (cg-globals-set! cg (alist-set (sym-name sym) sym (cg-globals cg)))
   0)
 
 (define (cg-intern-string cg bv-content)
   (let ((p (alist-ref bv-content (cg-str-pool cg))))
     (cond
       (p p)
       (else
        (let* ((n   (length (cg-str-pool cg)))
               (lbl (bytevector-append "cc__str_" (%n n))))
          (cg-str-pool-set! cg
            (alist-set bv-content lbl (cg-str-pool cg)))
          (buf-push! (cg-data cg)
                     (bv-cat (list "\n:" lbl "\n"
                                   "\"" bv-content "\"\n"
                                   "!(0)\n")))
          lbl)))))
 
 ;; --------------------------------------------------------------------
 ;; Frame
 ;; --------------------------------------------------------------------
 (define (cg-alloc-slot cg bytes align)
   (let* ((aligned (align-up (cg-frame-hi cg) align))
          (new-hi  (+ aligned bytes)))
     (cg-frame-hi-set! cg new-hi)
     aligned))