sledge-serverles-framwork/runtime/include/wasm_stack.h

#pragma once

#include <stdint.h>
#include <stdlib.h>
#include <sys/mman.h>
#include <string.h>

#include "types.h"

/**
 * @brief wasm_stack is a stack used to execute an AOT-compiled WebAssembly instance. It is allocated with a static size
 * and a guard page beneath the lowest usuable address. Because the stack grows down, this protects against stack
 * overflow.
 *
 * Low Address  <---------------------------------------------------------------------------> High Address
 *              | GUARD PAGE    | USEABE FOR STACK FRAMES (SIZE of capacity)                |
 *             /\              /\                                                          /\
 *            buffer           low                                                        high
 *
 *                                                            | Frame 2 | Frame 1 | Frame 0 |
 *                                                          <<<<<<< Direction of Stack Growth
 */
struct wasm_stack {
	struct ps_list list;     /* Linked List Node used for object pool */
	uint64_t       capacity; /* Usable capacity. Excludes size of guard page that we need to free */
	uint8_t       *high;     /* The highest address of the stack. Grows down from here */
	uint8_t       *low;      /* The address of the lowest useabe address. Above guard page */
	uint8_t       *buffer;   /* Points base address of backing heap allocation (Guard Page) */
};

static struct wasm_stack *wasm_stack_alloc(uint64_t capacity);
static inline int         wasm_stack_init(struct wasm_stack *wasm_stack, uint64_t capacity);
static inline void        wasm_stack_reinit(struct wasm_stack *wasm_stack);
static inline void        wasm_stack_deinit(struct wasm_stack *wasm_stack);
static inline void        wasm_stack_free(struct wasm_stack *wasm_stack);

/**
 * Allocates a static sized stack for a sandbox with a guard page underneath
 * Because a stack grows down, this protects against stack overflow
 * TODO: Should this use MAP_GROWSDOWN to enable demand paging for the stack?
 * @param sandbox sandbox that we want to allocate a stack for
 * @returns 0 on success, -1 on error
 */
static inline int
wasm_stack_init(struct wasm_stack *wasm_stack, uint64_t capacity)
{
	assert(wasm_stack);

	int rc = 0;

	wasm_stack->buffer = (uint8_t *)mmap(NULL, /* guard page */ PAGE_SIZE + capacity, PROT_NONE,
	                                     MAP_PRIVATE | MAP_ANONYMOUS, -1, 0);
	if (unlikely(wasm_stack->buffer == MAP_FAILED)) {
		perror("sandbox allocate stack");
		goto err_stack_allocation_failed;
	}

	wasm_stack->low      = wasm_stack->buffer + /* guard page */ PAGE_SIZE;
	wasm_stack->capacity = capacity;
	wasm_stack->high     = wasm_stack->low + capacity;

	/* Set the initial bytes to read / write */
	rc = mprotect(wasm_stack->low, capacity, PROT_READ | PROT_WRITE);
	if (unlikely(rc != 0)) {
		perror("sandbox set stack read/write");
		goto err_stack_prot_failed;
	}

	ps_list_init_d(wasm_stack);

	rc = 0;
done:
	return rc;
err_stack_prot_failed:
	rc = munmap(wasm_stack->buffer, PAGE_SIZE + capacity);
	if (rc == -1) perror("munmap");
err_stack_allocation_failed:
	wasm_stack->buffer = NULL;
	rc                 = -1;
	goto done;
}

static struct wasm_stack *
wasm_stack_alloc(uint64_t capacity)
{
	struct wasm_stack *wasm_stack = calloc(1, sizeof(struct wasm_stack));
	int                rc         = wasm_stack_init(wasm_stack, capacity);
	if (rc < 0) {
		wasm_stack_free(wasm_stack);
		return NULL;
	}

	return wasm_stack;
}

static inline void
wasm_stack_deinit(struct wasm_stack *wasm_stack)
{
	assert(wasm_stack != NULL);
	assert(wasm_stack->buffer != NULL);

	/* The stack start is the bottom of the usable stack, but we allocated a guard page below this */
	munmap(wasm_stack->buffer, wasm_stack->capacity + PAGE_SIZE);
	wasm_stack->buffer = NULL;
	wasm_stack->high   = NULL;
	wasm_stack->low    = NULL;
}

static inline void
wasm_stack_free(struct wasm_stack *wasm_stack)
{
	assert(wasm_stack != NULL);
	assert(wasm_stack->buffer != NULL);
	wasm_stack_deinit(wasm_stack);
	free(wasm_stack);
}

static inline void
wasm_stack_reinit(struct wasm_stack *wasm_stack)
{
	assert(wasm_stack != NULL);
	assert(wasm_stack->buffer != NULL);

	wasm_stack->low = wasm_stack->buffer + /* guard page */ PAGE_SIZE;

	memset(wasm_stack->low, 0, wasm_stack->capacity);
	ps_list_init_d(wasm_stack);
	wasm_stack->high = wasm_stack->low + wasm_stack->capacity;
}
refactor: Eliminate sandbox request 3 years ago			`#pragma once`

			`#include <stdint.h>`
			`#include <stdlib.h>`
			`#include <sys/mman.h>`
refactor: Add missing header 3 years ago			`#include <string.h>`
refactor: Eliminate sandbox request 3 years ago
refactor: Use INLINE macro throughout compiletime 3 years ago			`#include "types.h"`
refactor: Eliminate sandbox request 3 years ago
docs: Add more inline docs about buffers 3 years ago			`/**`
			`* @brief wasm_stack is a stack used to execute an AOT-compiled WebAssembly instance. It is allocated with a static size`
			`* and a guard page beneath the lowest usuable address. Because the stack grows down, this protects against stack`
			`* overflow.`
			`*`
			`* Low Address <---------------------------------------------------------------------------> High Address`
			`* \| GUARD PAGE \| USEABE FOR STACK FRAMES (SIZE of capacity) \|`
			`* /\ /\ /\`
			`* buffer low high`
			`*`
			`* \| Frame 2 \| Frame 1 \| Frame 0 \|`
			`* <<<<<<< Direction of Stack Growth`
			`*/`
refactor: Eliminate sandbox request 3 years ago			`struct wasm_stack {`
feat: wasm_stack object pool 3 years ago			`struct ps_list list; /* Linked List Node used for object pool */`
refactor: remove size_t from wasm_stack 3 years ago			`uint64_t capacity; /* Usable capacity. Excludes size of guard page that we need to free */`
WIP: WASI Support (#267) * feat: Preliminary WASI with fib workload * refactor: Clarify initialize globals * chore: Update empty to WASI * chore: cleanup fib test * chore: cleanup build tooling * chore: cleanup test Makefiles and some nits * chore: Update LLVM and install WASI-SDK * chore: Update build tools and specs * docs: Update example module spec in README * refactor: Clean up HTTP handling * feat: Implement exit WASI call * style: apply clang-format * ci: rewrite compile sledge step * build: Remove LLVM install shims * build: Try manually adding libunwind * build: Try adding libunwind-dev * ci: break out aWsm compile step * fix: Correct test build error * fix: Correct error in WASI fd_write * chore: Increase gocr http buffer size * test: Correct image resize test * chore: Remove zombie wasmception functions * chore: Reduce dummy args to single arg * chore: Add debugging makefile fivebyeight * chore: Remove erronious PHONYs in tests Makefile * ci: Disable gocr tests * chore: Add wat Make rule to fibonacci test * chore: fix apt package name * chore: Enable clean of failed ck install * chore: use LLVM 12 * test: Disable gocr tests * chore: Enhance test makefile * chore: Add CFILES as sledgert dep * chore: Add NULL check for function table pointer * chore: Add missing header * chore: uncomment cleanup in imageresize test * refactor: Remove unused linear memory functions * build: Add bimodal debug makefile * chore: Add linear memory debug logs * refactor: Cleanup region initialization * build: Correct PHONY in runtime Makefile * chore: deb install script for outside of container * refactor: Remove zombie extern. * feat: WebAssembly traps * refactor: Use C18 features * chore: Remove git diff annotations * fix: tweaks to run all sample apps with WASI * test: convert shell script to Makefile * build: clean generated ck Makefile * chore: Use awsm branch with fixes * chore: Revert name changes * fix: Correct type issues * refactor: Reverse additional name change * refactor: Remove awsm compat shims * chore: Remove libc association * build: Better detect header file changes * refactor: current_wasm_module_instance_trap * test: reenable tests * chore: Delete copied script * build: Fix test workloads * fix: Implement HTTP 500 * fix: Protect against overflow on comparison * build: Replace test.sh with makefile * refactor: blow away tmp directory conflicts * refactor: centralize wasm in single submodule * feat: libsledge and sledge ABI * chore: move tests * refactor: tests * chore: update wasm_apps with new sample data * doc: Initial ABI README * feat: globals table * docs: Merge aWsm ABI docs * docs: libsledge ABI * build: rename apps to keep consistent * build: Disable wasm proposals * build: Update wasm apps and fix typo * test: test makefiles * test: Additional test makefiles * build: top-level build and install rules wo Docker * docs: Add wasm lld comment * build: top level makefile * chore: merge debug flags * fix: Correct out of bounds error * feat: indirection to awsm ABI * fix: Correct link hack with proper flag * fix: gps typo * chore: format nit * ci: update makefile rules * ci: check WASI_SDK_PATH * fix: Adjust paths * ci: fix make rule name * refactor: Attempt to use generic vec * refactor: Remove type-specific vec * fix: Resolve assorted TODOs * chore: fix clang format issue * ci: Invalidate app cache on libsledge changes * fix: Correct wasm trap check * fix: free wasm globals * docs: example of running top level tests via make * chore: option to log unsupported wasi * test: add preempt client generator for fib bimodal * refactor: Allocate wasm memory with 4096 align * fix: Handle build without runtime globals * refactor: bypass runtime call for first global * fix: Correct sandbox logging * test: fix incorrect paths in test.mk * refactor: remove wasm traps * refactor: Revert additional traps and changes * refactor: Remove additional traps * refactor: Disable exit support * fix: block preemption in memory allocation * feat: wasm g0 write back * build: cleanup applications Makefile * chore: Reorder bash variables * docs: Add comment explaining LOG_SANDBOX_STDERR * fix: Remove tracking of nonpreemptive siglarms * chore: Validate Linux, C, and POSIX requirements * build: Dry up libsledge makefile * refactor: Remove unused macros * fix: Writeback global 0 on cooperative sched * refactor: Fork WASI from aWsm uvwasi example * build: remove awsm-wasi rules * chore: clang-format 15 * ci: apt update * chore: clang 13 * ci: use llvm script * ci: Use LLVM 13 * refactor: Remove WASI indirection 3 years ago			`uint8_t high; / The highest address of the stack. Grows down from here */`
			`uint8_t low; / The address of the lowest useabe address. Above guard page */`
			`uint8_t buffer; / Points base address of backing heap allocation (Guard Page) */`
refactor: Eliminate sandbox request 3 years ago			`};`

refactor: remove size_t from wasm_stack 3 years ago			`static struct wasm_stack *wasm_stack_alloc(uint64_t capacity);`
			`static inline int wasm_stack_init(struct wasm_stack *wasm_stack, uint64_t capacity);`
refactor: Eliminate _new and _delete functions 3 years ago			`static inline void wasm_stack_reinit(struct wasm_stack *wasm_stack);`
			`static inline void wasm_stack_deinit(struct wasm_stack *wasm_stack);`
			`static inline void wasm_stack_free(struct wasm_stack *wasm_stack);`
feat: wasm_stack object pool 3 years ago
refactor: Eliminate sandbox request 3 years ago			`/**`
			`* Allocates a static sized stack for a sandbox with a guard page underneath`
			`* Because a stack grows down, this protects against stack overflow`
			`* TODO: Should this use MAP_GROWSDOWN to enable demand paging for the stack?`
			`* @param sandbox sandbox that we want to allocate a stack for`
			`* @returns 0 on success, -1 on error`
			`*/`
			`static inline int`
refactor: remove size_t from wasm_stack 3 years ago			`wasm_stack_init(struct wasm_stack *wasm_stack, uint64_t capacity)`
refactor: Eliminate sandbox request 3 years ago			`{`
refactor: rename self 3 years ago			`assert(wasm_stack);`
refactor: Eliminate sandbox request 3 years ago
			`int rc = 0;`

refactor: rename self 3 years ago			`wasm_stack->buffer = (uint8_t )mmap(NULL, / guard page */ PAGE_SIZE + capacity, PROT_NONE,`
docs: Add more inline docs about buffers 3 years ago			`MAP_PRIVATE \| MAP_ANONYMOUS, -1, 0);`
refactor: rename self 3 years ago			`if (unlikely(wasm_stack->buffer == MAP_FAILED)) {`
refactor: Eliminate sandbox request 3 years ago			`perror("sandbox allocate stack");`
			`goto err_stack_allocation_failed;`
			`}`

refactor: stack use mprotect 3 years ago			`wasm_stack->low = wasm_stack->buffer + /* guard page */ PAGE_SIZE;`
			`wasm_stack->capacity = capacity;`
			`wasm_stack->high = wasm_stack->low + capacity;`

			`/* Set the initial bytes to read / write */`
			`rc = mprotect(wasm_stack->low, capacity, PROT_READ \| PROT_WRITE);`
			`if (unlikely(rc != 0)) {`
refactor: Eliminate sandbox request 3 years ago			`perror("sandbox set stack read/write");`
			`goto err_stack_prot_failed;`
			`}`

refactor: rename self 3 years ago			`ps_list_init_d(wasm_stack);`
refactor: Eliminate sandbox request 3 years ago
			`rc = 0;`
			`done:`
			`return rc;`
			`err_stack_prot_failed:`
refactor: rename self 3 years ago			`rc = munmap(wasm_stack->buffer, PAGE_SIZE + capacity);`
refactor: Eliminate sandbox request 3 years ago			`if (rc == -1) perror("munmap");`
			`err_stack_allocation_failed:`
refactor: rename self 3 years ago			`wasm_stack->buffer = NULL;`
docs: Add more inline docs about buffers 3 years ago			`rc = -1;`
refactor: Eliminate sandbox request 3 years ago			`goto done;`
			`}`

feat: wasm_stack object pool 3 years ago			`static struct wasm_stack *`
refactor: remove size_t from wasm_stack 3 years ago			`wasm_stack_alloc(uint64_t capacity)`
feat: wasm_stack object pool 3 years ago			`{`
refactor: Eliminate _new and _delete functions 3 years ago			`struct wasm_stack *wasm_stack = calloc(1, sizeof(struct wasm_stack));`
docs: Add more inline docs about buffers 3 years ago			`int rc = wasm_stack_init(wasm_stack, capacity);`
feat: wasm_stack object pool 3 years ago			`if (rc < 0) {`
refactor: rename self 3 years ago			`wasm_stack_free(wasm_stack);`
feat: wasm_stack object pool 3 years ago			`return NULL;`
			`}`

refactor: rename self 3 years ago			`return wasm_stack;`
feat: wasm_stack object pool 3 years ago			`}`

			`static inline void`
refactor: rename self 3 years ago			`wasm_stack_deinit(struct wasm_stack *wasm_stack)`
feat: wasm_stack object pool 3 years ago			`{`
refactor: rename self 3 years ago			`assert(wasm_stack != NULL);`
			`assert(wasm_stack->buffer != NULL);`
feat: wasm_stack object pool 3 years ago
refactor: Eliminate sandbox request 3 years ago			`/* The stack start is the bottom of the usable stack, but we allocated a guard page below this */`
refactor: rename self 3 years ago			`munmap(wasm_stack->buffer, wasm_stack->capacity + PAGE_SIZE);`
			`wasm_stack->buffer = NULL;`
			`wasm_stack->high = NULL;`
			`wasm_stack->low = NULL;`
feat: wasm_stack object pool 3 years ago			`}`

			`static inline void`
refactor: Eliminate _new and _delete functions 3 years ago			`wasm_stack_free(struct wasm_stack *wasm_stack)`
feat: wasm_stack object pool 3 years ago			`{`
refactor: rename self 3 years ago			`assert(wasm_stack != NULL);`
			`assert(wasm_stack->buffer != NULL);`
			`wasm_stack_deinit(wasm_stack);`
refactor: Eliminate _new and _delete functions 3 years ago			`free(wasm_stack);`
feat: wasm_stack object pool 3 years ago			`}`

			`static inline void`
refactor: rename self 3 years ago			`wasm_stack_reinit(struct wasm_stack *wasm_stack)`
feat: wasm_stack object pool 3 years ago			`{`
refactor: rename self 3 years ago			`assert(wasm_stack != NULL);`
			`assert(wasm_stack->buffer != NULL);`
feat: wasm_stack object pool 3 years ago
refactor: rename self 3 years ago			`wasm_stack->low = wasm_stack->buffer + /* guard page */ PAGE_SIZE;`
feat: wasm_stack object pool 3 years ago
refactor: rename self 3 years ago			`memset(wasm_stack->low, 0, wasm_stack->capacity);`
			`ps_list_init_d(wasm_stack);`
			`wasm_stack->high = wasm_stack->low + wasm_stack->capacity;`
refactor: Eliminate sandbox request 3 years ago			`}`