stack.scm 30 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875
  1. ;;; Stack effects for instruction validation
  2. ;;; Copyright (C) 2023, 2024 Igalia, S.L.
  3. ;;; Copyright (C) 2023 David Thompson <dave@spritely.institute>
  4. ;;;
  5. ;;; Licensed under the Apache License, Version 2.0 (the "License");
  6. ;;; you may not use this file except in compliance with the License.
  7. ;;; You may obtain a copy of the License at
  8. ;;;
  9. ;;; http://www.apache.org/licenses/LICENSE-2.0
  10. ;;;
  11. ;;; Unless required by applicable law or agreed to in writing, software
  12. ;;; distributed under the License is distributed on an "AS IS" BASIS,
  13. ;;; WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  14. ;;; See the License for the specific language governing permissions and
  15. ;;; limitations under the License.
  16. ;;; Commentary:
  17. ;;;
  18. ;;; Computes and applies stack effects for individual instructions for
  19. ;;; the purposes of validation.
  20. ;;;
  21. ;;; Code:
  22. (define-module (wasm stack)
  23. #:use-module (ice-9 match)
  24. #:use-module ((srfi srfi-1) #:select (append-map filter-map))
  25. #:use-module (srfi srfi-9)
  26. #:use-module (wasm canonical-types)
  27. #:use-module (wasm types)
  28. #:export (<ctx>
  29. ctx?
  30. ctx-func-info
  31. ctx-block
  32. ctx-stack
  33. <unreachable-ctx>
  34. unreachable-ctx?
  35. unreachable-ctx-block
  36. unreachable-ctx-stack
  37. <invalid-ctx>
  38. invalid-ctx?
  39. invalid-ctx-reason
  40. <block>
  41. block?
  42. block-id
  43. block-type
  44. block-branch-arg-types
  45. block-result-types
  46. block-parent
  47. <stack-effect>
  48. stack-effect?
  49. stack-effect-params
  50. stack-effect-results
  51. stack-effect-block-end?
  52. initial-ctx
  53. push-block
  54. lookup-block
  55. lookup-tag
  56. compute-stack-effect
  57. apply-stack-effect
  58. fallthrough-stack-effect
  59. fallthrough))
  60. (define-record-type <func-info>
  61. (%make-func-info types funcs globals tables tags locals)
  62. func-info?
  63. (types func-info-types)
  64. (funcs func-info-funcs)
  65. (globals func-info-globals)
  66. (tables func-info-tables)
  67. (tags func-info-tags)
  68. (locals func-info-locals))
  69. (define-record-type <ctx>
  70. (make-ctx func-info block stack)
  71. ctx?
  72. (func-info ctx-func-info)
  73. (block ctx-block)
  74. (stack ctx-stack))
  75. (define-record-type <unreachable-ctx>
  76. (make-unreachable-ctx func-info block stack)
  77. unreachable-ctx?
  78. (func-info unreachable-ctx-func-info)
  79. (block unreachable-ctx-block)
  80. (stack unreachable-ctx-stack))
  81. (define-record-type <invalid-ctx>
  82. (make-invalid-ctx reason)
  83. invalid-ctx?
  84. (reason invalid-ctx-reason))
  85. (define-record-type <block>
  86. (make-block id type branch-arg-types result-types parent)
  87. block?
  88. (id block-id)
  89. (type block-type) ; 'block', 'loop', 'try', 'catch', etc.
  90. ;; If you jump to this block's label, what types do you pass? Usually
  91. ;; the block results, but for loops it's the loop parameters.
  92. (branch-arg-types block-branch-arg-types)
  93. ;; When control falls through the end of a block, what types must be
  94. ;; on the stack?
  95. (result-types block-result-types)
  96. (parent block-parent))
  97. (define-record-type <stack-effect>
  98. (make-stack-effect params results block-end?)
  99. stack-effect?
  100. (params stack-effect-params)
  101. ;; Results can be #f if the effect causes an exit.
  102. (results stack-effect-results)
  103. ;; The stack at the end of a block is expected to contain the param
  104. ;; types and nothing else below them.
  105. (block-end? stack-effect-block-end?))
  106. (define (make-func-info wasm func)
  107. (define types
  108. (list->vector
  109. (map (match-lambda
  110. (($ <type> id type)
  111. (cons id type)))
  112. (canonicalize-types! (wasm-types wasm)))))
  113. (define (select-imports kind)
  114. (filter-map (lambda (import)
  115. (and (eq? (import-kind import) kind)
  116. (cons (import-id import) (import-type import))))
  117. (wasm-imports wasm)))
  118. (define funcs
  119. (list->vector
  120. (append (select-imports 'func)
  121. (map (lambda (def)
  122. (cons (func-id def) (func-type def)))
  123. (wasm-funcs wasm)))))
  124. (define globals
  125. (list->vector
  126. (append (select-imports 'global)
  127. (map (lambda (def)
  128. (cons (global-id def) (global-type def)))
  129. (wasm-globals wasm)))))
  130. (define tables
  131. (list->vector
  132. (append (select-imports 'table)
  133. (map (lambda (def)
  134. (cons (table-id def) (table-type def)))
  135. (wasm-tables wasm)))))
  136. (define tags
  137. (list->vector
  138. (append (select-imports 'tag)
  139. (map (lambda (def)
  140. (cons (tag-id def) (tag-type def)))
  141. (wasm-tags wasm)))))
  142. (define locals
  143. (match func
  144. (($ <func>
  145. id
  146. ($ <type-use>
  147. _
  148. ($ <func-sig>
  149. (($ <param> param-id param-type) ...)
  150. (result-type ...)))
  151. (($ <local> local-id local-type) ...)
  152. body)
  153. (list->vector
  154. (append (map cons param-id param-type)
  155. (map cons local-id local-type))))))
  156. (%make-func-info types funcs globals tables tags locals))
  157. (define (initial-ctx module func)
  158. (match func
  159. (($ <func> _ ($ <type-use> _ ($ <func-sig> _ results)))
  160. (make-ctx (make-func-info module func)
  161. (make-block 'func #f results results #f)
  162. '()))))
  163. (define (push-block ctx id type param-types result-types)
  164. (match ctx
  165. (($ <ctx> info block _)
  166. (let ((branch-arg-types (if (eq? type 'loop) param-types result-types)))
  167. (make-ctx info
  168. (make-block id type branch-arg-types result-types block)
  169. (reverse param-types))))))
  170. (define (peek ctx)
  171. (match ctx
  172. ((or ($ <ctx> _ _ stack)
  173. ($ <unreachable-ctx> _ _ stack))
  174. (match stack
  175. ((top . stack) top)
  176. (() #f)))
  177. (($ <invalid-ctx>) #f)))
  178. (define (vector-assq v k)
  179. (let lp ((i 0))
  180. (and (< i (vector-length v))
  181. (let ((pair (vector-ref v i)))
  182. (if (eq? k (car pair))
  183. pair
  184. (lp (1+ i)))))))
  185. (define (vector-lookup v k)
  186. (if (integer? k)
  187. (vector-ref v k)
  188. (vector-assq v k)))
  189. (define (ctx-info-lookup ctx getter def)
  190. (match ctx
  191. (($ <ctx> info)
  192. (cdr (vector-lookup (getter info) def)))
  193. (($ <unreachable-ctx> info)
  194. (cdr (vector-lookup (getter info) def)))))
  195. (define (lookup-type ctx def)
  196. (ctx-info-lookup ctx func-info-types def))
  197. (define (lookup-func-type-use ctx def)
  198. (ctx-info-lookup ctx func-info-funcs def))
  199. (define (lookup-global ctx def)
  200. (ctx-info-lookup ctx func-info-globals def))
  201. (define (lookup-table ctx def)
  202. (ctx-info-lookup ctx func-info-tables def))
  203. (define (lookup-tag ctx def)
  204. (ctx-info-lookup ctx func-info-tags def))
  205. (define (lookup-local ctx def)
  206. (ctx-info-lookup ctx func-info-locals def))
  207. (define (lookup-func-sig ctx def)
  208. (match (lookup-type ctx def)
  209. (($ <sub-type> _ _ (and sig ($ <func-sig>))) sig)
  210. ((and sig ($ <func-sig>)) sig)
  211. (x (error "unexpected type" def x))))
  212. (define (lookup-struct-fields ctx def)
  213. (match (lookup-type ctx def)
  214. (($ <sub-type> _ _ ($ <struct-type> fields)) fields)
  215. (($ <struct-type> fields) fields)))
  216. (define (lookup-struct-field-types ctx struct-type)
  217. (map field-type (lookup-struct-fields ctx struct-type)))
  218. (define (lookup-struct-field-type ctx struct-type field)
  219. (match (lookup-struct-fields ctx struct-type)
  220. ((($ <field> id mutable? type) ...)
  221. (vector-lookup (list->vector type) field))))
  222. (define (lookup-array-type ctx def)
  223. (match (lookup-type ctx def)
  224. (($ <sub-type> _ _ ($ <array-type> mutable? type)) type)
  225. (($ <array-type> mutable? type) type)))
  226. (define (lookup-return-type ctx)
  227. (let lp ((block (ctx-block ctx)))
  228. (cond
  229. ((block-parent block) => lp)
  230. (else (block-branch-arg-types block)))))
  231. (define (lookup-block ctx target)
  232. (match ctx
  233. ((or ($ <ctx> _ block) ($ <unreachable-ctx> _ block))
  234. (if (integer? target)
  235. (let lp ((block block) (target target))
  236. (match block
  237. (($ <block> id _ _ _ parent)
  238. (if (zero? target)
  239. block
  240. (lp parent (1- target))))))
  241. (let lp ((block block))
  242. (match block
  243. (($ <block> id _ _ _ parent)
  244. (if (eq? target id)
  245. block
  246. (lp parent)))))))))
  247. (define $i8-array (canonicalize-type! (make-array-type #t 'i8)))
  248. (define $i16-array (canonicalize-type! (make-array-type #t 'i16)))
  249. (define (compute-stack-effect ctx inst)
  250. (define (-> params results)
  251. (make-stack-effect params results #f))
  252. (define (branch-arg-types target)
  253. (block-branch-arg-types (lookup-block ctx target)))
  254. (define (block-stack-effect type)
  255. (match type
  256. (#f (-> '() '()))
  257. ;; Lookup signature by index in func info.
  258. ((? exact-integer? idx)
  259. (match ctx
  260. ((or ($ <ctx> ($ <func-info> types))
  261. ($ <unreachable-ctx> ($ <func-info> types)))
  262. (match (vector-ref types idx)
  263. ((_ . ($ <func-sig> (($ <param> _ params) ...) results))
  264. (-> params results))))))
  265. (($ <type-use> _
  266. ($ <func-sig> (($ <param> _ params) ...) results))
  267. (-> params results))
  268. ((or (? symbol?) ($ <ref-type>))
  269. (-> '() (list type)))))
  270. (define (global-type global)
  271. (match (lookup-global ctx global)
  272. (($ <global-type> mutable? type) type)))
  273. (define (table-type def)
  274. (match (lookup-table ctx def)
  275. (($ <table-type> limits elem-type) elem-type)))
  276. (match inst
  277. ((op . args)
  278. (match op
  279. ('unreachable (-> '() #f))
  280. ('nop (-> '() '()))
  281. ((or 'block 'loop 'try 'try_delegate)
  282. (match args
  283. ((label type . _)
  284. (block-stack-effect type))))
  285. ('if
  286. (match args
  287. ((label type _ _)
  288. (match (block-stack-effect type)
  289. (($ <stack-effect> params results)
  290. (-> (append params '(i32)) results))))))
  291. ('throw
  292. (match args
  293. ((tag)
  294. (match (lookup-tag ctx tag)
  295. (($ <tag-type>
  296. _ ($ <type-use>
  297. _ ($ <func-sig> (($ <param> _ type) ...))))
  298. (-> type #f))))))
  299. ('rethrow
  300. (-> '() #f))
  301. ('br
  302. (match args
  303. ((target)
  304. (-> (branch-arg-types target) #f))))
  305. ('br_if
  306. (match args
  307. ((target)
  308. (let ((types (branch-arg-types target)))
  309. (-> (append types '(i32)) types)))))
  310. ('br_table
  311. (match args
  312. ((_ target)
  313. (-> (append (branch-arg-types target) '(i32)) #f))))
  314. ('return
  315. (-> (lookup-return-type ctx) #f))
  316. ('call
  317. (match args
  318. ((callee)
  319. (match (lookup-func-type-use ctx callee)
  320. (($ <type-use> _
  321. ($ <func-sig> (($ <param> id type) ...) results))
  322. (-> type results))))))
  323. ('call_indirect
  324. (match args
  325. ((table type)
  326. (match (lookup-func-sig ctx type)
  327. (($ <func-sig> (($ <param> id type) ...) results)
  328. (-> (append type '(i32)) results))))))
  329. ('return_call
  330. (match args
  331. ((callee)
  332. (match (lookup-func-type-use ctx callee)
  333. (($ <type-use> _
  334. ($ <func-sig> (($ <param> id type) ...) results))
  335. (-> type #f))))))
  336. ('return_call_indirect
  337. (match args
  338. ((type)
  339. (match (lookup-func-sig ctx type)
  340. (($ <func-sig> (($ <param> id type) ...) results)
  341. (-> (append type '(i32)) #f))))))
  342. ('call_ref
  343. (match args
  344. ((type)
  345. (match (lookup-func-sig ctx type)
  346. (($ <func-sig> (($ <param> id params) ...) results)
  347. (-> (append params (list (make-ref-type #t type))) results))))))
  348. ('return_call_ref
  349. (match args
  350. ((type)
  351. (match (lookup-func-sig ctx type)
  352. (($ <func-sig> (($ <param> id params) ...) results)
  353. (-> (append params (list (make-ref-type #t type))) #f))))))
  354. ('drop (-> (list (peek ctx)) '()))
  355. ('select (match args
  356. (()
  357. (let ((top (peek ctx)))
  358. (-> (list top top 'i32) (list top))))
  359. ((type ...)
  360. (-> (append type type '(i32)) type))))
  361. ('local.get (match args
  362. ((local)
  363. (let ((type (lookup-local ctx local)))
  364. (-> '() (list type))))))
  365. ('local.set (match args
  366. ((local)
  367. (let ((type (lookup-local ctx local)))
  368. (-> (list type) '())))))
  369. ('local.tee (match args
  370. ((local)
  371. (let ((type (lookup-local ctx local)))
  372. (-> (list type) (list type))))))
  373. ('global.get (match args
  374. ((global)
  375. (-> '() (list (global-type global))))))
  376. ('global.set (match args
  377. ((global)
  378. (-> (list (global-type global)) '()))))
  379. ('table.get (match args
  380. ((table)
  381. (-> '(i32) (list (table-type table))))))
  382. ('table.set (match args
  383. ((table)
  384. (-> (list 'i32 (table-type table)) '()))))
  385. ('table.size (-> '() '(i32)))
  386. ('table.init (-> '(i32 i32 i32) '()))
  387. ('table.copy (-> '(i32 i32 i32) '()))
  388. ('table.fill (match args
  389. ((table)
  390. (-> (list 'i32 (table-type table) 'i32) '()))))
  391. ('table.grow (match args
  392. ((table)
  393. (-> (list (table-type table) 'i32) '(i32)))))
  394. ('elem.drop (-> '() '()))
  395. ('memory.size (-> '() '(i32)))
  396. ('memory.grow (-> '(i32) '(i32)))
  397. ('memory.fill (-> '(i32 i32 i32) '()))
  398. ('memory.copy (-> '(i32 i32 i32) '()))
  399. ('memory.init (-> '(i32 i32 i32) '()))
  400. ('data.drop (-> '() '()))
  401. ('i32.const (-> '() '(i32)))
  402. ('i64.const (-> '() '(i64)))
  403. ('f32.const (-> '() '(f32)))
  404. ('f64.const (-> '() '(f64)))
  405. ((or 'i32.load
  406. 'i32.load8_s 'i32.load8_u 'i32.load16_s 'i32.load16_u)
  407. (-> '(i32) '(i32)))
  408. ((or 'i64.load
  409. 'i64.load8_s 'i64.load8_u 'i64.load16_s 'i64.load16_u
  410. 'i64.load32_s 'i64.load32_u)
  411. (-> '(i32) '(i64)))
  412. ('f32.load (-> '(i32) '(f32)))
  413. ('f64.load (-> '(i32) '(f64)))
  414. ((or 'i32.store 'i32.store8 'i32.store16)
  415. (-> '(i32 i32) '()))
  416. ((or 'i64.store 'i64.store8 'i64.store16 'i64.store32)
  417. (-> '(i32 i64) '()))
  418. ('f32.store (-> '(i32 f32) '()))
  419. ('f64.store (-> '(i32 f64) '()))
  420. ('i32.eqz (-> '(i32) '(i32)))
  421. ((or 'i32.eq 'i32.ne 'i32.lt_s 'i32.lt_u 'i32.gt_s
  422. 'i32.gt_u 'i32.le_s 'i32.le_u 'i32.ge_s 'i32.ge_u)
  423. (-> '(i32 i32) '(i32)))
  424. ('i64.eqz (-> '(i64) '(i32)))
  425. ((or 'i64.eq 'i64.ne 'i64.lt_s 'i64.lt_u 'i64.gt_s
  426. 'i64.gt_u 'i64.le_s 'i64.le_u 'i64.ge_s 'i64.ge_u)
  427. (-> '(i64 i64) '(i32)))
  428. ((or 'f32.eq 'f32.ne 'f32.lt 'f32.gt 'f32.le 'f32.ge)
  429. (-> '(f32 f32) '(i32)))
  430. ((or 'f64.eq 'f64.ne 'f64.lt 'f64.gt 'f64.le 'f64.ge)
  431. (-> '(f64 f64) '(i32)))
  432. ((or 'i32.clz 'i32.ctz 'i32.popcnt
  433. 'i32.extend8_s 'i32.extend16_s)
  434. (-> '(i32) '(i32)))
  435. ((or 'i32.add 'i32.sub 'i32.mul 'i32.div_s 'i32.div_u
  436. 'i32.rem_s 'i32.rem_u
  437. 'i32.and 'i32.or 'i32.xor 'i32.shl 'i32.shr_s 'i32.shr_u
  438. 'i32.rotl 'i32.rotr)
  439. (-> '(i32 i32) '(i32)))
  440. ('i32.wrap_i64
  441. (-> '(i64) '(i32)))
  442. ((or 'i32.trunc_f32_s 'i32.trunc_f32_u
  443. 'i32.trunc_sat_f32_s 'i32.trunc_sat_f32_u
  444. 'i32.reinterpret_f32)
  445. (-> '(f32) '(i32)))
  446. ((or 'i32.trunc_f64_s 'i32.trunc_f64_u
  447. 'i32.trunc_sat_f64_s 'i32.trunc_sat_f64_u)
  448. (-> '(f64) '(i32)))
  449. ((or 'i64.clz 'i64.ctz 'i64.popcnt
  450. 'i64.extend8_s 'i64.extend16_s 'i64.extend32_s)
  451. (-> '(i64) '(i64)))
  452. ((or 'i64.add 'i64.sub 'i64.mul 'i64.div_s 'i64.div_u
  453. 'i64.rem_s 'i64.rem_u
  454. 'i64.and 'i64.or 'i64.xor 'i64.shl 'i64.shr_s 'i64.shr_u
  455. 'i64.rotl 'i64.rotr)
  456. (-> '(i64 i64) '(i64)))
  457. ((or 'i64.extend_i32_s 'i64.extend_i32_u)
  458. (-> '(i32) '(i64)))
  459. ((or 'i64.trunc_f32_s 'i64.trunc_f32_u
  460. 'i64.trunc_sat_f32_s 'i64.trunc_sat_f32_u)
  461. (-> '(f32) '(i64)))
  462. ((or 'i64.trunc_f64_s 'i64.trunc_f64_u
  463. 'i64.trunc_sat_f64_s 'i64.trunc_sat_f64_u
  464. 'i64.reinterpret_f64)
  465. (-> '(f64) '(i64)))
  466. ((or 'f32.abs 'f32.neg 'f32.ceil 'f32.floor 'f32.trunc 'f32.nearest
  467. 'f32.sqrt)
  468. (-> '(f32) '(f32)))
  469. ((or 'f32.add 'f32.sub 'f32.mul 'f32.div 'f32.min 'f32.max
  470. 'f32.copysign)
  471. (-> '(f32 f32) '(f32)))
  472. ((or 'f32.convert_i32_s 'f32.convert_i32_u
  473. 'f32.reinterpret_i32)
  474. (-> '(i32) '(f32)))
  475. ((or 'f32.convert_i64_s 'f32.convert_i64_u)
  476. (-> '(i64) '(f32)))
  477. ('f32.demote_f64
  478. (-> '(f64) '(f32)))
  479. ((or 'f64.abs 'f64.neg 'f64.ceil 'f64.floor 'f64.trunc 'f64.nearest
  480. 'f64.sqrt)
  481. (-> '(f64) '(f64)))
  482. ((or 'f64.add 'f64.sub 'f64.mul 'f64.div 'f64.min 'f64.max
  483. 'f64.copysign)
  484. (-> '(f64 f64) '(f64)))
  485. ((or 'f64.convert_i32_s 'f64.convert_i32_u)
  486. (-> '(i32) '(f64)))
  487. ((or 'f64.convert_i64_s 'f64.convert_i64_u
  488. 'f64.reinterpret_i64)
  489. (-> '(i64) '(f64)))
  490. ('f64.promote_f32
  491. (-> '(f32) '(f64)))
  492. ('ref.null
  493. (match args
  494. ((ht)
  495. (-> '() (list (make-ref-type #t ht))))))
  496. ((or 'ref.is_null 'ref.test)
  497. ;; FIXME: ref.is_null only valid on ref types
  498. ;; FIXME: ref.test only valid if tested type matches top
  499. (-> (list (peek ctx)) '(i32)))
  500. ('ref.eq
  501. (-> (list (make-ref-type #t 'eq) (make-ref-type #t 'eq)) '(i32)))
  502. ('ref.func
  503. (match args
  504. ((callee)
  505. (match (lookup-func-type-use ctx callee)
  506. (($ <type-use> id sig)
  507. (-> '() (list (make-ref-type #f id))))))))
  508. ('ref.as_non_null
  509. (match (peek ctx)
  510. ((and top ($ <ref-type> nullable? ht))
  511. (-> (list top)
  512. (list (make-ref-type #f ht))))))
  513. ('ref.cast
  514. (match args
  515. ((($ <ref-type> nullable? ht))
  516. (match (peek ctx)
  517. ((and top ($ <ref-type> nullable?* ht*))
  518. ;; FIXME: assert that (nullable?,ht) <= (nullable?*,ht*)
  519. (-> (list top) (list (make-ref-type nullable? ht))))))))
  520. ((or 'br_on_cast 'br_on_cast_fail)
  521. (match args
  522. ((target rt1 rt2)
  523. (let ((types (branch-arg-types target)))
  524. (-> (append types (list rt1))
  525. (append types (list (if (eq? op 'br_on_cast) rt1 rt2))))))))
  526. ('struct.get
  527. (match args
  528. ((ht field)
  529. (-> (list (make-ref-type #t ht))
  530. (list (lookup-struct-field-type ctx ht field))))))
  531. ((or 'struct.get_s 'struct.get_u)
  532. (match args
  533. ((ht field)
  534. (-> (list (make-ref-type #t ht)) '(i32)))))
  535. ('struct.set
  536. (match args
  537. ((ht field)
  538. (-> (list (make-ref-type #t ht)
  539. (lookup-struct-field-type ctx ht field))
  540. '()))))
  541. ('struct.new
  542. (match args
  543. ((ht)
  544. (-> (lookup-struct-field-types ctx ht)
  545. (list (make-ref-type #f ht))))))
  546. ('struct.new_default
  547. (match args
  548. ((ht)
  549. (-> '() (list (make-ref-type #f ht))))))
  550. ('array.get
  551. (match args
  552. ((ht)
  553. (-> (list (make-ref-type #t ht) 'i32)
  554. (list (lookup-array-type ctx ht))))))
  555. ((or 'array.get_s 'array.get_u)
  556. (match args
  557. ((ht)
  558. (-> (list (make-ref-type #t ht) 'i32) '(i32)))))
  559. ('array.set
  560. (match args
  561. ((ht)
  562. (-> (list (make-ref-type #t ht) 'i32 (lookup-array-type ctx ht))
  563. '()))))
  564. ('array.fill
  565. (match args
  566. ((ht)
  567. (-> (list (make-ref-type #t ht) 'i32 (lookup-array-type ctx ht) 'i32)
  568. '()))))
  569. ('array.copy
  570. (match args
  571. ((ht1 ht2)
  572. (-> (list (make-ref-type #t ht1) 'i32
  573. (make-ref-type #t ht2) 'i32 'i32)
  574. '()))))
  575. ('array.len
  576. (-> (list (make-ref-type #t 'array)) '(i32)))
  577. ('array.new
  578. (match args
  579. ((ht)
  580. (-> (list (lookup-array-type ctx ht) 'i32)
  581. (list (make-ref-type #f ht))))))
  582. ('array.new_fixed
  583. (match args
  584. ((ht len)
  585. (-> (make-list len (lookup-array-type ctx ht))
  586. (list (make-ref-type #f ht))))))
  587. ('array.new_default
  588. (match args
  589. ((ht)
  590. (-> '(i32) (list (make-ref-type #f ht))))))
  591. ((or 'array.new_data 'array.new_elem)
  592. (match args
  593. ((ht idx)
  594. (-> '(i32 i32) (list (make-ref-type #f ht))))))
  595. ((or 'array.init_data 'array.init_elem)
  596. (match args
  597. ((ht idx)
  598. (-> (list (make-ref-type #t ht) 'i32 'i32 'i32) '()))))
  599. ('ref.i31
  600. (-> '(i32) (list (make-ref-type #f 'i31))))
  601. ((or 'i31.get_s 'i31.get_u)
  602. (-> (list (make-ref-type #f 'i31)) '(i32)))
  603. ('extern.internalize
  604. (match (peek ctx)
  605. (($ <ref-type> nullable? _)
  606. (-> (list (make-ref-type nullable? 'extern))
  607. (list (make-ref-type nullable? 'any))))))
  608. ('extern.externalize
  609. (match (peek ctx)
  610. (($ <ref-type> nullable? _)
  611. (-> (list (make-ref-type nullable? 'any))
  612. (list (make-ref-type nullable? 'extern))))))
  613. ((or 'string.new_utf8 'string.new_lossy_utf8 'string.new_wtf8
  614. 'string.new_wtf16)
  615. (-> '(i32 i32)
  616. (list (make-ref-type #f 'string))))
  617. ((or 'string.new_utf8_array 'string.new_lossy_utf8_array
  618. 'string.new_wtf8_array)
  619. (-> (list (make-ref-type #t $i8-array) 'i32 'i32)
  620. (list (make-ref-type #f 'string))))
  621. ((or 'string.new_wtf16_array)
  622. (-> (list (make-ref-type #t $i16-array) 'i32 'i32)
  623. (list (make-ref-type #f 'string))))
  624. ((or 'string.measure_utf8 'string.measure_wtf8
  625. 'string.measure_wtf16)
  626. (-> (list (make-ref-type #t 'string))
  627. '(i32)))
  628. ((or 'string.encode_utf8 'string.encode_lossy_utf8 'string.encode_wtf8
  629. 'string.encode_wtf16)
  630. (-> (list (make-ref-type #t 'string) 'i32)
  631. '(i32)))
  632. ((or 'string.encode_utf8_array 'string.encode_lossy_utf8_array
  633. 'string.encode_wtf8_array)
  634. (-> (list (make-ref-type #t 'string)
  635. (make-ref-type #t $i8-array)
  636. 'i32)
  637. '(i32)))
  638. ('string.encode_wtf16_array
  639. (-> (list (make-ref-type #t 'string)
  640. (make-ref-type #t $i16-array)
  641. 'i32)
  642. '(i32)))
  643. ('string.const
  644. (-> '() (list (make-ref-type #f 'string))))
  645. ('string.concat
  646. (-> (list (make-ref-type #t 'string)
  647. (make-ref-type #t 'string))
  648. (list (make-ref-type #f 'string))))
  649. ((or 'string.eq 'string.compare)
  650. (-> (list (make-ref-type #t 'string)
  651. (make-ref-type #t 'string))
  652. '(i32)))
  653. ('string.is_usv_sequence
  654. (-> (list (make-ref-type #t 'string))
  655. '(i32)))
  656. ('string.from_code_point
  657. (-> (list 'i32)
  658. (list (make-ref-type #f 'string))))
  659. ('string.as_wtf8
  660. (-> (list (make-ref-type #t 'string))
  661. (list (make-ref-type #f 'stringview_wtf8))))
  662. ((or 'stringview_wtf8.encode_utf8
  663. 'stringview_wtf8.encode_lossy_utf8
  664. 'stringview_wtf8.encode_wtf8)
  665. (-> (list (make-ref-type #t 'stringview_wtf8)
  666. 'i32 'i32 'i32)
  667. '(i32 i32)))
  668. ('stringview_wtf8.advance
  669. (-> (list (make-ref-type #t 'stringview_wtf8)
  670. 'i32 'i32)
  671. '(i32)))
  672. ('stringview_wtf8.slice
  673. (-> (list (make-ref-type #t 'stringview_wtf8)
  674. 'i32 'i32)
  675. (list (make-ref-type #f 'string))))
  676. ('string.as_wtf16
  677. (-> (list (make-ref-type #t 'string))
  678. (list (make-ref-type #f 'stringview_wtf16))))
  679. ('stringview_wtf16.length
  680. (-> (list (make-ref-type #t 'stringview_wtf16))
  681. '(i32)))
  682. ('stringview_wtf16.get_codeunit
  683. (-> (list (make-ref-type #t 'stringview_wtf16) 'i32)
  684. '(i32)))
  685. ('stringview_wtf16.encode
  686. (-> (list (make-ref-type #t 'stringview_wtf16) 'i32 'i32 'i32)
  687. '(i32)))
  688. ('stringview_wtf16.slice
  689. (-> (list (make-ref-type #t 'stringview_wtf16)
  690. 'i32 'i32)
  691. (list (make-ref-type #f 'string))))
  692. ('string.as_iter
  693. (-> (list (make-ref-type #t 'string))
  694. (list (make-ref-type #f 'stringview_iter))))
  695. ('stringview_iter.next
  696. (-> (list (make-ref-type #t 'stringview_iter))
  697. '(i32)))
  698. ((or 'stringview_iter.advance 'stringview_iter.rewind)
  699. (-> (list (make-ref-type #t 'stringview_iter) 'i32)
  700. '(i32)))
  701. ('stringview_iter.slice
  702. (-> (list (make-ref-type #t 'stringview_iter)
  703. 'i32)
  704. (list (make-ref-type #f 'string))))
  705. ((or 'i8x16.splat 'i16x8.splat 'i32x4.splat)
  706. (-> '(i32) '(i128)))
  707. ('i64x2.splat (-> '(i64) '(i128)))
  708. ('f32x4.splat (-> '(f32) '(i128)))
  709. ('f64x2.splat (-> '(f64) '(i128)))
  710. (_ (error "unhandled instruction" op))))))
  711. (define (apply-stack-effect ctx effect)
  712. (define (resolve-type x)
  713. (match x
  714. ((? promise?) (force x))
  715. ((? exact-integer?) (lookup-type ctx x))
  716. (_ x)))
  717. (define (heap-type-sub-type? sub super)
  718. (let ((sub (resolve-type sub))
  719. (super (resolve-type super)))
  720. (or (eq? sub super)
  721. (let lp ((sub sub))
  722. (match sub
  723. ('any (eq? super 'any))
  724. ('i31 (memq super '(i31 eq any)))
  725. ('eq (memq super '(eq any)))
  726. (($ <sub-type> _ ((= resolve-type supers) ...) (= resolve-type type))
  727. (or (and supers (memq super supers))
  728. (lp type)))
  729. (($ <array-type> mutable? type)
  730. (memq super '(array eq any)))
  731. (($ <struct-type>)
  732. (memq super '(struct eq any)))
  733. (($ <func-sig>)
  734. (eq? super 'func)))))))
  735. (define (is-subtype? sub super)
  736. (cond
  737. ((eq? sub super) #t)
  738. ((and (eq? sub 'i32) (memq super '(i32 i16 i8))) #t)
  739. ((and (ref-type? sub) (ref-type? super))
  740. (and (or (ref-type-nullable? super)
  741. (not (ref-type-nullable? sub)))
  742. (heap-type-sub-type? (ref-type-heap-type sub)
  743. (ref-type-heap-type super))))
  744. ;; The funcref type works for any function reference.
  745. ((and (eq? super 'funcref) (ref-type? sub)
  746. (heap-type-sub-type? (ref-type-heap-type sub) 'func))
  747. #t)
  748. (else #f)))
  749. (match ctx
  750. (($ <invalid-ctx>) ctx)
  751. (($ <unreachable-ctx> info block stack)
  752. (match effect
  753. (($ <stack-effect> params results block-end?)
  754. (let lp ((params (reverse params)) (stack stack))
  755. (match params
  756. ((param . params)
  757. (match stack
  758. ;; The bottom of the unreachable stack is treated as a
  759. ;; polymorphic stack that contains any type, so there
  760. ;; is no reason to continue type checking.
  761. (()
  762. (lp '() '()))
  763. ;; Peeking at the unreachable stack may return #f,
  764. ;; which can stand in for any type.
  765. ((#f . stack)
  766. (lp params stack))
  767. ;; A proper type is on top of the stack, type checking
  768. ;; happens the same as in <ctx>.
  769. ((top . stack)
  770. (if (is-subtype? top param)
  771. (lp params stack)
  772. (make-invalid-ctx
  773. (format #f "expected ~a, got ~a" param top))))))
  774. (()
  775. (if (and block-end? (not (null? stack)))
  776. (make-invalid-ctx
  777. (format #f "extra values on stack at block end ~a" stack))
  778. (match results
  779. (#f (make-unreachable-ctx info block '()))
  780. ((result ...)
  781. (make-unreachable-ctx info block (append (reverse result) stack)))))))))))
  782. (($ <ctx> info block stack)
  783. (match effect
  784. (($ <stack-effect> params results block-end?)
  785. (let lp ((params (reverse params)) (stack stack))
  786. (match params
  787. ((param . params)
  788. (match stack
  789. (()
  790. (make-invalid-ctx
  791. (format #f "expected ~a, got empty stack" param)))
  792. ((top . stack)
  793. (if (is-subtype? top param)
  794. (lp params stack)
  795. ;; FIXME: more info here.
  796. (make-invalid-ctx
  797. (format #f "expected ~a, got ~a" param top))))))
  798. (()
  799. (if (and block-end? (not (null? stack)))
  800. (make-invalid-ctx
  801. (format #f "extra values on stack at block end ~a" stack))
  802. (match results
  803. (#f (make-unreachable-ctx info block '()))
  804. ((result ...)
  805. (make-ctx info block (append (reverse result) stack)))))))))))))
  806. (define (fallthrough-stack-effect ctx)
  807. (let ((types
  808. (match ctx
  809. (($ <unreachable-ctx> _ ($ <block> _ _ _ types)) types)
  810. (($ <ctx> _ ($ <block> _ _ _ types)) types))))
  811. (make-stack-effect types #f #t)))
  812. (define (fallthrough ctx)
  813. (apply-stack-effect ctx (fallthrough-stack-effect ctx)))