Remove a layer of recursion in adapter compilation (#4657)

In #4640 a feature was added to adapter modules that whenever translation goes through memory it instead goes through a helper function as opposed to inlining it directly. The generation of the helper function happened recursively at compile time, however, and sure enough oss-fuzz has found an input which blows the host stack at compile time. This commit removes the compile-time recursion from the adapter compiler when translating these helper functions by deferring the translation to a worklist which is processed after the original function is translated. This makes the stack-based recursion instead heap-based, removing the stack overflow.
2022-08-09 12:59:53 -05:00
parent de8d44d0e5
commit 66025636fd
2 changed files with 35 additions and 20 deletions
--- a/crates/environ/src/fact.rs
+++ b/crates/environ/src/fact.rs
@@ -66,6 +66,7 @@ pub struct Module<'a> {

    funcs: PrimaryMap<FunctionId, Function>,
    translate_mem_funcs: HashMap<(InterfaceType, InterfaceType, Options, Options), FunctionId>,
+    translate_mem_worklist: Vec<(FunctionId, InterfaceType, InterfaceType, Options, Options)>,
 }

 struct AdapterData {
@@ -138,6 +139,7 @@ impl<'a> Module<'a> {
            imported_globals: PrimaryMap::new(),
            funcs: PrimaryMap::new(),
            translate_mem_funcs: HashMap::new(),
+            translate_mem_worklist: Vec::new(),
        }
    }

@@ -185,6 +187,10 @@ impl<'a> Module<'a> {
                called_as_export: true,
            },
        );
+
+        while let Some((result, src, dst, src_opts, dst_opts)) = self.translate_mem_worklist.pop() {
+            trampoline::compile_translate_mem(self, result, src, &src_opts, dst, &dst_opts);
+        }
    }

    fn import_options(&mut self, ty: TypeFuncIndex, options: &AdapterOptionsDfg) -> AdapterOptions {
@@ -315,6 +321,29 @@ impl<'a> Module<'a> {
            })
    }

+    fn translate_mem(
+        &mut self,
+        src: InterfaceType,
+        src_opts: &Options,
+        dst: InterfaceType,
+        dst_opts: &Options,
+    ) -> FunctionId {
+        *self
+            .translate_mem_funcs
+            .entry((src, dst, *src_opts, *dst_opts))
+            .or_insert_with(|| {
+                // Generate a fresh `Function` with a unique id for what we're about to
+                // generate.
+                let ty = self
+                    .core_types
+                    .function(&[src_opts.ptr(), dst_opts.ptr()], &[]);
+                let id = self.funcs.push(Function::new(None, ty));
+                self.translate_mem_worklist
+                    .push((id, src, dst, *src_opts, *dst_opts));
+                id
+            })
+    }
+
    /// Encodes this module into a WebAssembly binary.
    pub fn encode(&mut self) -> Vec<u8> {
        // Build the function/export sections of the wasm module in a first pass