Implement changes of function reference proposal #2562
Conversation
|
@sbc100 @keithw since I don't know enough about the project, these are just some random changes in the parser. The aim is parsing https://github.com/WebAssembly/function-references/blob/main/test/core/call_ref.wast It is doing something (parsing correctly is surely an exaggeration) with Could you check that these changes makes sense? There is a Thank you for the help. |
|
This patch goes to a new direction. The 32 bit type filed of |
zherczeg
force-pushed
the
function_ref
branch
2 times, most recently
from
c804a98 to
c40c098
Compare
|
There is something I don't understand. There is a The key change of the patch is that Btw, may I ask how actively maintained the wabt project? |
|
I believe |
|
That is possible. Unfortunately not everything is described clearly in the text. For example, |
|
I have tried to track down the v8 implementation for https://github.com/v8/v8/blob/main/src/wasm/function-body-decoder-impl.h#L386 It calls https://github.com/v8/v8/blob/main/src/wasm/function-body-decoder-impl.h#L217 Starts with: So it looks like it uses the s33 decoding which the specification mentioned. |
zherczeg
force-pushed
the
function_ref
branch
5 times, most recently
from
c94e5a1 to
a959acb
Compare
|
I have some good news! This test is fully working now (including the interpreter): Only 9 fails remained, they all look like CallRef syntax change related, so some tests need to be updated. The patch is quite large. There are some parts which are questionable. I will comment about these parts later to help review. |
zherczeg
force-pushed
the
function_ref
branch
2 times, most recently
from
78596d6 to
b79aead
Compare
| @@ -181,7 +181,7 @@ class BinaryReaderLogging : public BinaryReaderDelegate { | |||
| Result OnCatchExpr(Index tag_index) override; | |||
| Result OnCatchAllExpr() override; | |||
| Result OnCallIndirectExpr(Index sig_index, Index table_index) override; | |||
| Result OnCallRefExpr() override; | |||
| Result OnCallRefExpr(Type sig_type) override; | |||
There was a problem hiding this comment.
I think type sounds better than Index, although it could be an Index.
| Index, | ||
| Name, | ||
| }; | ||
|
|
||
| struct Var { | ||
| // Var can represent variables or types. |
There was a problem hiding this comment.
This is a major internal change. It does not increase the size of Var. I think it is better than constructing a Var/Type pair.
|
|
||
| Location loc; | ||
|
|
||
| private: | ||
| void Destroy(); | ||
|
|
||
| VarType type_; | ||
| // Can be set to Type::Enum types, 0 represent no optional type. | ||
| int16_t opt_type_; |
There was a problem hiding this comment.
This range should be enough for a long time.
| @@ -63,6 +63,7 @@ void WriteS32Leb128(Stream* stream, T value, const char* desc) { | |||
| size_t ReadU32Leb128(const uint8_t* p, const uint8_t* end, uint32_t* out_value); | |||
| size_t ReadU64Leb128(const uint8_t* p, const uint8_t* end, uint64_t* out_value); | |||
| size_t ReadS32Leb128(const uint8_t* p, const uint8_t* end, uint32_t* out_value); | |||
| size_t ReadS33Leb128(const uint8_t* p, const uint8_t* end, uint64_t* out_value); | |||
There was a problem hiding this comment.
The spec adds this new type, the output is uint64_t. It could be merged with ReadS32Leb128 by adding a bool* argument.
| @@ -220,18 +221,6 @@ class SharedValidator { | |||
| Result OnUnreachable(const Location&); | |||
|
|
|||
| private: | |||
| struct FuncType { | |||
There was a problem hiding this comment.
This is moved to type checker.
| @@ -46,6 +46,8 @@ class Type { | |||
| FuncRef = -0x10, // 0x70 | |||
| ExternRef = -0x11, // 0x6f | |||
| Reference = -0x15, // 0x6b | |||
There was a problem hiding this comment.
This is completely missing from the proposal. Maybe it was removed at some point? Currently Ref and Reference are considered equal, and randomly used one or the other. I wanted to wait a feedback before doing anything with it.
There was a problem hiding this comment.
In v8 it is kStructRefCode:
https://chromium.googlesource.com/v8/v8/+/refs/heads/main/src/wasm/wasm-constants.h#46
Probably used by GC. Probably kArrayRefCode will be needed as well.
| Result BinaryReaderLogging::name(Type type) { \ | ||
| LOGF(#name "(%s)\n", type.GetName().c_str()); \ | ||
| return reader_->name(type); \ | ||
| #define DEFINE_TYPE(name) \ |
There was a problem hiding this comment.
Hm, this might be reverted. I will check.
| @@ -897,7 +897,7 @@ Result BinaryReaderObjdumpDisassemble::OnOpcodeType(Type type) { | |||
| if (!in_function_body) { | |||
| return Result::Ok; | |||
| } | |||
| if (current_opcode == Opcode::SelectT) { | |||
| if (current_opcode == Opcode::SelectT || current_opcode == Opcode::CallRef) { | |||
There was a problem hiding this comment.
Maybe more opcodes could go here (ref.null?). This is confusing for me, the two toString variants works differently, although they could be merged.
| @@ -288,6 +286,40 @@ size_t ReadS32Leb128(const uint8_t* p, | |||
| } | |||
| } | |||
|
|
|||
| size_t ReadS33Leb128(const uint8_t* p, | |||
There was a problem hiding this comment.
These readers don't check that the minimum amount of bytes is used for encoding. This is important for utf, not sure for leb.
src/wast-parser.cc
Outdated
| @@ -545,6 +546,17 @@ Result ResolveFuncTypes(Module* module, Errors* errors) { | |||
| } | |||
|
|
|||
| if (func) { | |||
| if (!func->local_type_list.empty()) { | |||
There was a problem hiding this comment.
This is kind of a bugfix. Named references has been never resolved for local types. Maybe we could do it on the compressed list, but that can be done in another patch.
zherczeg
force-pushed
the
function_ref
branch
4 times, most recently
from
6587cf7 to
0f7353f
Compare
| @@ -0,0 +1,19 @@ | |||
| ;;; TOOL: run-interp-spec | |||
There was a problem hiding this comment.
It turned out that call_ref.wast is already in the repository, and it is passing now. There are other tests in the directory (e.g. binary.wast) which is also passing now, they could be updated later as well.
|
I think the patch is ready. There are lots of follow-up work ahead. |
| @@ -189,13 +189,32 @@ void ScriptValidator::PrintError(const Location* loc, const char* format, ...) { | |||
| errors_->emplace_back(ErrorLevel::Error, *loc, buffer); | |||
| } | |||
|
|
|||
| static Result CheckType(Type actual, Type expected) { | |||
There was a problem hiding this comment.
If I understand correctly, this is only used by comparing expected results. This means "module" context is not present, and expected values are immediate values. So maybe an even restricted checker could work.
zherczeg
force-pushed
the
function_ref
branch
3 times, most recently
from
58411a5 to
bf0400f
Compare
zherczeg
force-pushed
the
function_ref
branch
3 times, most recently
from
2c100eb to
f4dec03
Compare
src/shared-validator.cc
Outdated
| @@ -282,7 +284,7 @@ Result SharedValidator::OnElemSegmentElemType(const Location& loc, | |||
| if (elem.is_active) { | |||
| // Check that the type of the elem segment matches the table in which | |||
| // it is active. | |||
| result |= CheckType(loc, elem.table_type, elem_type, "elem segment"); | |||
| result |= CheckType(loc, elem_type, elem.table_type, "elem segment"); | |||
There was a problem hiding this comment.
I just found this bug. The actual/expected arguments are swapped. The tests are updated accordingly.
There was a problem hiding this comment.
Is this is pre-existing bug? If so maybe it can be split out into a separate PR?
zherczeg
force-pushed
the
function_ref
branch
2 times, most recently
from
1ce2902 to
0f93fb0
Compare
zherczeg
force-pushed
the
function_ref
branch
2 times, most recently
from
7da12b4 to
dae2b75
Compare
|
Patch is rebased on the top of #2571 Thanks to the fixes, it is now < 900 lines of new code including test changes. |
zherczeg
force-pushed
the
function_ref
branch
3 times, most recently
from
3e533cb to
15fb9eb
Compare
zherczeg
force-pushed
the
function_ref
branch
4 times, most recently
from
7de4b28 to
494ceb1
Compare
zherczeg
force-pushed
the
function_ref
branch
2 times, most recently
from
14ba901 to
3ee857b
Compare
|
This patch now fails with a fuzzer error. Reason: https://github.com/WebAssembly/wabt/blob/main/fuzzers/read_binary_interp_fuzzer.cc#L37 However: This time the exports are parsed and this line crashes: The |
zherczeg
force-pushed
the
function_ref
branch
2 times, most recently
from
d655b40 to
acc1b66
Compare
|
I have a question. In this variant of the patch, Globals / Tables / etc. uses |
zherczeg
force-pushed
the
function_ref
branch
2 times, most recently
from
ea9bd86 to
09523fe
Compare
|
This is the next patch for supporting the function references proposal. It focuses on improving the wabt supported elements of WebAssembly. It is a feature patch now, the bugfixes were extracted and landed as separate patches. The key concept changes of this patch:
Please let me know your opinion about these design concepts. Since the parser can store pointers to types, and check/resolve them later, it is possible to use types only. But using Vars directly is not necessary a problem. |
Support named references for globals, locals, tables, elems Support named references for call_ref, ref_null
No description provided.