fb0b311844
Global constants can be defined in wasm or in ModuleBuilder. In either case, they end up being decoded and interpreted during instantiation. This chooses signed encoding to avoid surprises. A more comprehensive explanation was added to RATIONALE.md, but the motivation was a global 100 coming out negative. Signed-off-by: Adrian Cole <adrian@tetrate.io>
531 lines
17 KiB
Go
531 lines
17 KiB
Go
package wasm
|
|
|
|
import (
|
|
"bytes"
|
|
"context"
|
|
"fmt"
|
|
"reflect"
|
|
"sync"
|
|
|
|
"github.com/tetratelabs/wazero/api"
|
|
"github.com/tetratelabs/wazero/internal/ieee754"
|
|
"github.com/tetratelabs/wazero/internal/leb128"
|
|
)
|
|
|
|
type (
|
|
// Store is the runtime representation of "instantiated" Wasm module and objects.
|
|
// Multiple modules can be instantiated within a single store, and each instance,
|
|
// (e.g. function instance) can be referenced by other module instances in a Store via Module.ImportSection.
|
|
//
|
|
// Every type whose name ends with "Instance" suffix belongs to exactly one store.
|
|
//
|
|
// Note that store is not thread (concurrency) safe, meaning that using single Store
|
|
// via multiple goroutines might result in race conditions. In that case, the invocation
|
|
// and access to any methods and field of Store must be guarded by mutex.
|
|
//
|
|
// See https://www.w3.org/TR/2019/REC-wasm-core-1-20191205/#store%E2%91%A0
|
|
Store struct {
|
|
// Engine is a global context for a Store which is in responsible for compilation and execution of Wasm modules.
|
|
engine Engine
|
|
|
|
// EnabledFeatures are read-only to allow optimizations.
|
|
EnabledFeatures Features
|
|
|
|
// moduleNames ensures no race conditions instantiating two modules of the same name
|
|
moduleNames map[string]struct{} // guarded by mux
|
|
|
|
// modules holds the instantiated Wasm modules by module name from Instantiate.
|
|
modules map[string]*ModuleInstance // guarded by mux
|
|
|
|
// typeIDs maps each FunctionType.String() to a unique FunctionTypeID. This is used at runtime to
|
|
// do type-checks on indirect function calls.
|
|
typeIDs map[string]FunctionTypeID
|
|
|
|
// functionMaxTypes represents the limit on the number of function types in a store.
|
|
// Note: this is fixed to 2^27 but have this a field for testability.
|
|
functionMaxTypes uint32
|
|
|
|
// mux is used to guard the fields from concurrent access.
|
|
mux sync.RWMutex
|
|
}
|
|
|
|
// ModuleInstance represents instantiated wasm module.
|
|
// The difference from the spec is that in wazero, a ModuleInstance holds pointers
|
|
// to the instances, rather than "addresses" (i.e. index to Store.Functions, Globals, etc) for convenience.
|
|
//
|
|
// See https://www.w3.org/TR/2019/REC-wasm-core-1-20191205/#syntax-moduleinst
|
|
ModuleInstance struct {
|
|
Name string
|
|
Exports map[string]*ExportInstance
|
|
Functions []*FunctionInstance
|
|
Globals []*GlobalInstance
|
|
// Memory is set when Module.MemorySection had a memory, regardless of whether it was exported.
|
|
Memory *MemoryInstance
|
|
Table *TableInstance
|
|
Types []*TypeInstance
|
|
|
|
// Ctx holds default function call context from this function instance.
|
|
Ctx *ModuleContext
|
|
|
|
// Engine implements function calls for this module.
|
|
Engine ModuleEngine
|
|
}
|
|
|
|
// ExportInstance represents an exported instance in a Store.
|
|
// The difference from the spec is that in wazero, a ExportInstance holds pointers
|
|
// to the instances, rather than "addresses" (i.e. index to Store.Functions, Globals, etc) for convenience.
|
|
//
|
|
// See https://www.w3.org/TR/2019/REC-wasm-core-1-20191205/#syntax-exportinst
|
|
ExportInstance struct {
|
|
Type ExternType
|
|
Function *FunctionInstance
|
|
Global *GlobalInstance
|
|
Memory *MemoryInstance
|
|
Table *TableInstance
|
|
}
|
|
|
|
// FunctionInstance represents a function instance in a Store.
|
|
// See https://www.w3.org/TR/2019/REC-wasm-core-1-20191205/#function-instances%E2%91%A0
|
|
FunctionInstance struct {
|
|
// DebugName is for debugging purpose, and is used to augment stack traces.
|
|
DebugName string
|
|
|
|
// Kind describes how this function should be called.
|
|
Kind FunctionKind
|
|
|
|
// Type is the signature of this function.
|
|
Type *FunctionType
|
|
|
|
// LocalTypes holds types of locals, set when Kind == FunctionKindWasm
|
|
LocalTypes []ValueType
|
|
|
|
// Body is the function body in WebAssembly Binary Format, set when Kind == FunctionKindWasm
|
|
Body []byte
|
|
|
|
// GoFunc holds the runtime representation of host functions.
|
|
// This is nil when Kind == FunctionKindWasm. Otherwise, all the above fields are ignored as they are
|
|
// specific to Wasm functions.
|
|
GoFunc *reflect.Value
|
|
|
|
// Fields above here are settable prior to instantiation. Below are set by the Store during instantiation.
|
|
|
|
// ModuleInstance holds the pointer to the module instance to which this function belongs.
|
|
Module *ModuleInstance
|
|
|
|
// TypeID is assigned by a store for FunctionType.
|
|
TypeID FunctionTypeID
|
|
|
|
// Index holds the index of this function instance in the function index namespace (beginning with imports).
|
|
Index Index
|
|
}
|
|
|
|
// TypeInstance is a store-specific representation of FunctionType where the function type
|
|
// is coupled with TypeID which is specific in a store.
|
|
TypeInstance struct {
|
|
Type *FunctionType
|
|
// TypeID is assigned by a store for FunctionType.
|
|
TypeID FunctionTypeID
|
|
}
|
|
|
|
// GlobalInstance represents a global instance in a store.
|
|
// See https://www.w3.org/TR/2019/REC-wasm-core-1-20191205/#global-instances%E2%91%A0
|
|
GlobalInstance struct {
|
|
Type *GlobalType
|
|
// Val holds a 64-bit representation of the actual value.
|
|
Val uint64
|
|
// ^^ TODO: this should be guarded with atomics when mutable
|
|
}
|
|
|
|
// FunctionTypeID is a uniquely assigned integer for a function type.
|
|
// This is wazero specific runtime object and specific to a store,
|
|
// and used at runtime to do type-checks on indirect function calls.
|
|
FunctionTypeID uint32
|
|
)
|
|
|
|
// The wazero specific limitations described at RATIONALE.md.
|
|
const (
|
|
maximumFunctionTypes = 1 << 27
|
|
)
|
|
|
|
// addSections adds section elements to the ModuleInstance
|
|
func (m *ModuleInstance) addSections(module *Module, importedFunctions, functions []*FunctionInstance,
|
|
importedGlobals, globals []*GlobalInstance, table *TableInstance, memory, importedMemory *MemoryInstance,
|
|
typeInstances []*TypeInstance) {
|
|
|
|
m.Types = typeInstances
|
|
|
|
m.Functions = append(m.Functions, importedFunctions...)
|
|
for i, f := range functions {
|
|
// Associate each function with the type instance and the module instance's pointer.
|
|
f.Module = m
|
|
f.TypeID = typeInstances[module.FunctionSection[i]].TypeID
|
|
m.Functions = append(m.Functions, f)
|
|
}
|
|
|
|
m.Globals = append(m.Globals, importedGlobals...)
|
|
m.Globals = append(m.Globals, globals...)
|
|
|
|
m.Table = table
|
|
|
|
if importedMemory != nil {
|
|
m.Memory = importedMemory
|
|
} else {
|
|
m.Memory = memory
|
|
}
|
|
|
|
m.buildExports(module.ExportSection)
|
|
}
|
|
|
|
func (m *ModuleInstance) buildExports(exports map[string]*Export) {
|
|
m.Exports = make(map[string]*ExportInstance, len(exports))
|
|
for _, exp := range exports {
|
|
index := exp.Index
|
|
var ei *ExportInstance
|
|
switch exp.Type {
|
|
case ExternTypeFunc:
|
|
ei = &ExportInstance{Type: exp.Type, Function: m.Functions[index]}
|
|
case ExternTypeGlobal:
|
|
ei = &ExportInstance{Type: exp.Type, Global: m.Globals[index]}
|
|
case ExternTypeMemory:
|
|
ei = &ExportInstance{Type: exp.Type, Memory: m.Memory}
|
|
case ExternTypeTable:
|
|
ei = &ExportInstance{Type: exp.Type, Table: m.Table}
|
|
}
|
|
|
|
// We already validated the duplicates during module validation phase.
|
|
m.Exports[exp.Name] = ei
|
|
}
|
|
}
|
|
|
|
func (m *ModuleInstance) validateData(data []*DataSegment) (err error) {
|
|
for _, d := range data {
|
|
offset := int(executeConstExpression(m.Globals, d.OffsetExpression).(int32))
|
|
|
|
ceil := offset + len(d.Init)
|
|
if offset < 0 || ceil > len(m.Memory.Buffer) {
|
|
return fmt.Errorf("out of bounds memory access")
|
|
}
|
|
}
|
|
return
|
|
}
|
|
|
|
func (m *ModuleInstance) applyData(data []*DataSegment) {
|
|
for _, d := range data {
|
|
offset := executeConstExpression(m.Globals, d.OffsetExpression).(int32)
|
|
copy(m.Memory.Buffer[offset:], d.Init)
|
|
}
|
|
}
|
|
|
|
// GetExport returns an export of the given name and type or errs if not exported or the wrong type.
|
|
func (m *ModuleInstance) getExport(name string, et ExternType) (*ExportInstance, error) {
|
|
exp, ok := m.Exports[name]
|
|
if !ok {
|
|
return nil, fmt.Errorf("%q is not exported in module %q", name, m.Name)
|
|
}
|
|
if exp.Type != et {
|
|
return nil, fmt.Errorf("export %q in module %q is a %s, not a %s", name, m.Name, ExternTypeName(exp.Type), ExternTypeName(et))
|
|
}
|
|
return exp, nil
|
|
}
|
|
|
|
func NewStore(engine Engine, enabledFeatures Features) *Store {
|
|
return &Store{
|
|
engine: engine,
|
|
EnabledFeatures: enabledFeatures,
|
|
moduleNames: map[string]struct{}{},
|
|
modules: map[string]*ModuleInstance{},
|
|
typeIDs: map[string]FunctionTypeID{},
|
|
functionMaxTypes: maximumFunctionTypes,
|
|
}
|
|
}
|
|
|
|
// Instantiate uses name instead of the Module.NameSection ModuleName as it allows instantiating the same module under
|
|
// different names safely and concurrently.
|
|
//
|
|
// * ctx: the default context used for function calls.
|
|
// * name: the name of the module.
|
|
// * sys: the system context, which will be closed (SysContext.Close) on ModuleContext.Close.
|
|
//
|
|
// Note: Module.Validate must be called prior to instantiation.
|
|
func (s *Store) Instantiate(ctx context.Context, module *Module, name string, sys *SysContext) (*ModuleContext, error) {
|
|
if err := s.requireModuleName(name); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
types, err := s.getTypes(module.TypeSection)
|
|
if err != nil {
|
|
s.deleteModule(name)
|
|
return nil, err
|
|
}
|
|
|
|
importedFunctions, importedGlobals, importedTable, importedMemory, err := s.resolveImports(module)
|
|
if err != nil {
|
|
s.deleteModule(name)
|
|
return nil, err
|
|
}
|
|
|
|
table, tableInit, err := module.buildTable(importedTable, importedGlobals)
|
|
if err != nil {
|
|
s.deleteModule(name)
|
|
return nil, err
|
|
}
|
|
globals, memory := module.buildGlobals(importedGlobals), module.buildMemory()
|
|
|
|
// If there are no module-defined functions, assume this is a host module.
|
|
var functions []*FunctionInstance
|
|
var funcSection SectionID
|
|
if module.HostFunctionSection == nil {
|
|
funcSection = SectionIDFunction
|
|
functions = module.buildFunctions(name)
|
|
} else {
|
|
funcSection = SectionIDHostFunction
|
|
functions = module.buildHostFunctions(name)
|
|
}
|
|
|
|
// Now we have all instances from imports and local ones, so ready to create a new ModuleInstance.
|
|
m := &ModuleInstance{Name: name}
|
|
m.addSections(module, importedFunctions, functions, importedGlobals, globals, table, importedMemory, memory, types)
|
|
|
|
if err = m.validateData(module.DataSection); err != nil {
|
|
s.deleteModule(name)
|
|
return nil, err
|
|
}
|
|
|
|
// Plus, we are ready to compile functions.
|
|
m.Engine, err = s.engine.NewModuleEngine(name, importedFunctions, functions, table, tableInit)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("compilation failed: %w", err)
|
|
}
|
|
|
|
// Now all the validation passes, we are safe to mutate memory instances (possibly imported ones).
|
|
m.applyData(module.DataSection)
|
|
|
|
// Build the default context for calls to this module.
|
|
m.Ctx = NewModuleContext(ctx, s, m, sys)
|
|
|
|
// Execute the start function.
|
|
if module.StartSection != nil {
|
|
funcIdx := *module.StartSection
|
|
f := m.Functions[funcIdx]
|
|
if _, err = f.Module.Engine.Call(m.Ctx, f); err != nil {
|
|
s.deleteModule(name)
|
|
return nil, fmt.Errorf("start %s failed: %w", module.funcDesc(funcSection, funcIdx), err)
|
|
}
|
|
}
|
|
|
|
// Now that the instantiation is complete without error, add it. This makes it visible for import.
|
|
s.addModule(m)
|
|
return m.Ctx, nil
|
|
}
|
|
|
|
// deleteModule makes the moduleName available for instantiation again.
|
|
func (s *Store) deleteModule(moduleName string) {
|
|
s.mux.Lock()
|
|
defer s.mux.Unlock()
|
|
delete(s.modules, moduleName)
|
|
delete(s.moduleNames, moduleName)
|
|
}
|
|
|
|
// requireModuleName is a pre-flight check to reserve a module.
|
|
// This must be reverted on error with deleteModule if initialization fails.
|
|
func (s *Store) requireModuleName(moduleName string) error {
|
|
s.mux.Lock()
|
|
defer s.mux.Unlock()
|
|
if _, ok := s.moduleNames[moduleName]; ok {
|
|
return fmt.Errorf("module %s has already been instantiated", moduleName)
|
|
}
|
|
s.moduleNames[moduleName] = struct{}{}
|
|
return nil
|
|
}
|
|
|
|
// addModule makes the module visible for import
|
|
func (s *Store) addModule(m *ModuleInstance) {
|
|
s.mux.Lock()
|
|
defer s.mux.Unlock()
|
|
s.modules[m.Name] = m
|
|
}
|
|
|
|
// Module implements wazero.Runtime Module
|
|
func (s *Store) Module(moduleName string) api.Module {
|
|
if m := s.module(moduleName); m != nil {
|
|
return m.Ctx
|
|
} else {
|
|
return nil
|
|
}
|
|
}
|
|
|
|
func (s *Store) module(moduleName string) *ModuleInstance {
|
|
s.mux.RLock()
|
|
defer s.mux.RUnlock()
|
|
return s.modules[moduleName]
|
|
}
|
|
|
|
func (s *Store) resolveImports(module *Module) (
|
|
importedFunctions []*FunctionInstance, importedGlobals []*GlobalInstance,
|
|
importedTable *TableInstance, importedMemory *MemoryInstance,
|
|
err error,
|
|
) {
|
|
s.mux.RLock()
|
|
defer s.mux.RUnlock()
|
|
|
|
for idx, i := range module.ImportSection {
|
|
m, ok := s.modules[i.Module]
|
|
if !ok {
|
|
err = fmt.Errorf("module[%s] not instantiated", i.Module)
|
|
return
|
|
}
|
|
|
|
var imported *ExportInstance
|
|
imported, err = m.getExport(i.Name, i.Type)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
switch i.Type {
|
|
case ExternTypeFunc:
|
|
typeIndex := i.DescFunc
|
|
// TODO: this shouldn't be possible as invalid should fail validate
|
|
if int(typeIndex) >= len(module.TypeSection) {
|
|
err = errorInvalidImport(i, idx, fmt.Errorf("function type out of range"))
|
|
return
|
|
}
|
|
expectedType := module.TypeSection[i.DescFunc]
|
|
importedFunction := imported.Function
|
|
|
|
actualType := importedFunction.Type
|
|
if !expectedType.EqualsSignature(actualType.Params, actualType.Results) {
|
|
err = errorInvalidImport(i, idx, fmt.Errorf("signature mismatch: %s != %s", expectedType, actualType))
|
|
return
|
|
}
|
|
|
|
importedFunctions = append(importedFunctions, importedFunction)
|
|
case ExternTypeTable:
|
|
expected := i.DescTable
|
|
importedTable = imported.Table
|
|
|
|
if expected.Min > importedTable.Min {
|
|
err = errorMinSizeMismatch(i, idx, expected.Min, importedTable.Min)
|
|
return
|
|
}
|
|
|
|
if expected.Max != nil {
|
|
expectedMax := *expected.Max
|
|
if importedTable.Max == nil {
|
|
err = errorNoMax(i, idx, expectedMax)
|
|
return
|
|
} else if expectedMax < *importedTable.Max {
|
|
err = errorMaxSizeMismatch(i, idx, expectedMax, *importedTable.Max)
|
|
return
|
|
}
|
|
}
|
|
case ExternTypeMemory:
|
|
expected := i.DescMem
|
|
importedMemory = imported.Memory
|
|
|
|
if expected.Min > importedMemory.Min {
|
|
err = errorMinSizeMismatch(i, idx, expected.Min, importedMemory.Min)
|
|
return
|
|
}
|
|
|
|
if expected.Max < importedMemory.Max {
|
|
err = errorMaxSizeMismatch(i, idx, expected.Max, importedMemory.Max)
|
|
return
|
|
}
|
|
case ExternTypeGlobal:
|
|
expected := i.DescGlobal
|
|
importedGlobal := imported.Global
|
|
|
|
if expected.Mutable != importedGlobal.Type.Mutable {
|
|
err = errorInvalidImport(i, idx, fmt.Errorf("mutability mismatch: %t != %t",
|
|
expected.Mutable, importedGlobal.Type.Mutable))
|
|
return
|
|
}
|
|
|
|
if expected.ValType != importedGlobal.Type.ValType {
|
|
err = errorInvalidImport(i, idx, fmt.Errorf("value type mismatch: %s != %s",
|
|
ValueTypeName(expected.ValType), ValueTypeName(importedGlobal.Type.ValType)))
|
|
return
|
|
}
|
|
importedGlobals = append(importedGlobals, importedGlobal)
|
|
}
|
|
}
|
|
return
|
|
}
|
|
|
|
func errorMinSizeMismatch(i *Import, idx int, expected, actual uint32) error {
|
|
return errorInvalidImport(i, idx, fmt.Errorf("minimum size mismatch: %d > %d", expected, actual))
|
|
}
|
|
|
|
func errorNoMax(i *Import, idx int, expected uint32) error {
|
|
return errorInvalidImport(i, idx, fmt.Errorf("maximum size mismatch: %d, but actual has no max", expected))
|
|
}
|
|
|
|
func errorMaxSizeMismatch(i *Import, idx int, expected, actual uint32) error {
|
|
return errorInvalidImport(i, idx, fmt.Errorf("maximum size mismatch: %d < %d", expected, actual))
|
|
}
|
|
|
|
func errorInvalidImport(i *Import, idx int, err error) error {
|
|
return fmt.Errorf("import[%d] %s[%s.%s]: %w", idx, ExternTypeName(i.Type), i.Module, i.Name, err)
|
|
}
|
|
|
|
// Global initialization constant expression can only reference the imported globals.
|
|
// See the note on https://www.w3.org/TR/2019/REC-wasm-core-1-20191205/#constant-expressions%E2%91%A0
|
|
func executeConstExpression(globals []*GlobalInstance, expr *ConstantExpression) (v interface{}) {
|
|
r := bytes.NewReader(expr.Data)
|
|
switch expr.Opcode {
|
|
case OpcodeI32Const:
|
|
// Treat constants as signed as their interpretation is not yet known per /RATIONALE.md
|
|
v, _, _ = leb128.DecodeInt32(r)
|
|
case OpcodeI64Const:
|
|
// Treat constants as signed as their interpretation is not yet known per /RATIONALE.md
|
|
v, _, _ = leb128.DecodeInt64(r)
|
|
case OpcodeF32Const:
|
|
v, _ = ieee754.DecodeFloat32(r)
|
|
case OpcodeF64Const:
|
|
v, _ = ieee754.DecodeFloat64(r)
|
|
case OpcodeGlobalGet:
|
|
id, _, _ := leb128.DecodeUint32(r)
|
|
g := globals[id]
|
|
switch g.Type.ValType {
|
|
case ValueTypeI32:
|
|
v = int32(g.Val)
|
|
case ValueTypeI64:
|
|
v = int64(g.Val)
|
|
case ValueTypeF32:
|
|
v = api.DecodeF32(g.Val)
|
|
case ValueTypeF64:
|
|
v = api.DecodeF64(g.Val)
|
|
}
|
|
}
|
|
return
|
|
}
|
|
|
|
func (s *Store) getTypes(ts []*FunctionType) ([]*TypeInstance, error) {
|
|
// We take write-lock here as the following might end up mutating typeIDs map.
|
|
s.mux.Lock()
|
|
defer s.mux.Unlock()
|
|
ret := make([]*TypeInstance, len(ts))
|
|
for i, t := range ts {
|
|
inst, err := s.getTypeInstance(t)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
ret[i] = inst
|
|
}
|
|
return ret, nil
|
|
}
|
|
|
|
func (s *Store) getTypeInstance(t *FunctionType) (*TypeInstance, error) {
|
|
key := t.String()
|
|
id, ok := s.typeIDs[key]
|
|
if !ok {
|
|
l := uint32(len(s.typeIDs))
|
|
if l >= s.functionMaxTypes {
|
|
return nil, fmt.Errorf("too many function types in a store")
|
|
}
|
|
id = FunctionTypeID(len(s.typeIDs))
|
|
s.typeIDs[key] = id
|
|
}
|
|
return &TypeInstance{Type: t, TypeID: id}, nil
|
|
}
|