Fix subtype check of linear memories to look at page sizes (bytecodealliance#2477)

* Fix subtype check of linear memories to look at page sizes

This commit fixes validation of `MemoryType` in `wasmparser` to ensure
that the page size of two linear memories are the same for them to be
considered subtypes of one another. This fixes an issue where components
could accidentally use 1-byte-page memories for lifting/lowering which
isn't allowed by the component model right now. The component model
currently has a restriction that all memories must be a subtype of
`(memory 0)`, or must have a 64k page size.

* Fix bless'd files

Author: alexcrichton

crates/wasm-encoder/src/core/memories.rs

@@ -114,3 +114,20 @@ impl Encode for MemoryType {
         }
     }
 }
+
+impl MemoryType {
+    /// Returns the actual log2 of the page size of this linear memory,
+    /// returning the default if the memory itself doesn't specify.
+    pub const fn page_size_log2(&self) -> u32 {
+        const DEFAULT_WASM_PAGE_SIZE_LOG2: u32 = 16;
+        match self.page_size_log2 {
+            Some(log2) => log2,
+            None => DEFAULT_WASM_PAGE_SIZE_LOG2,
+        }
+    }
+
+    /// Returns the page size, in bytes, of this linear memory.
+    pub const fn page_size(&self) -> u32 {
+        1 << self.page_size_log2()
+    }
+}

crates/wasm-smith/src/core.rs

@@ -2916,7 +2916,7 @@ impl Module {
 
         // Interesting values related to memory bounds.
         for m in self.memories.iter() {
-            let min = m.minimum.saturating_mul(crate::page_size(m).into());
+            let min = m.minimum.saturating_mul(m.page_size().into());
             interesting(min);
             for i in 0..5 {
                 if let Some(x) = min.checked_add(1 << i) {
@@ -2928,7 +2928,7 @@ impl Module {
             }
 
             if let Some(max) = m.maximum {
-                let max = max.saturating_mul(crate::page_size(m).into());
+                let max = max.saturating_mul(m.page_size().into());
                 interesting(max);
                 for i in 0..5 {
                     if let Some(x) = max.checked_add(1 << i) {

crates/wasm-smith/src/core/code_builder.rs

@@ -5367,10 +5367,10 @@ fn memory_offset(u: &mut Unstructured, module: &Module, memory_index: u32) -> Re
     let memory_type = &module.memories[memory_index as usize];
     let min = memory_type
         .minimum
-        .saturating_mul(crate::page_size(memory_type).into());
+        .saturating_mul(memory_type.page_size().into());
     let max = memory_type
         .maximum
-        .map(|max| max.saturating_mul(crate::page_size(memory_type).into()))
+        .map(|max| max.saturating_mul(memory_type.page_size().into()))
         .unwrap_or(u64::MAX);
 
     let (min, max, true_max) = match (memory_type.memory64, module.config.disallow_traps) {

crates/wasm-smith/src/core/code_builder/no_traps.rs

@@ -37,10 +37,7 @@ pub(crate) fn load<'a>(
             // []
             insts.push(Instruction::MemorySize(memarg.memory_index));
             // [mem_size_in_pages:address_type]
-            insts.push(int_const_inst(
-                address_type,
-                crate::page_size(memory).into(),
-            ));
+            insts.push(int_const_inst(address_type, memory.page_size().into()));
             // [mem_size_in_pages:address_type wasm_page_size:address_type]
             insts.push(int_mul_inst(address_type));
             // [mem_size_in_bytes:address_type]
@@ -119,10 +116,7 @@ pub(crate) fn store<'a>(
     // []
     insts.push(Instruction::MemorySize(memarg.memory_index));
     // [mem_size_in_pages:address_type]
-    insts.push(int_const_inst(
-        address_type,
-        crate::page_size(memory).into(),
-    ));
+    insts.push(int_const_inst(address_type, memory.page_size().into()));
     // [mem_size_in_pages:address_type wasm_page_size:address_type]
     insts.push(int_mul_inst(address_type));
     // [mem_size_in_bytes:address_type]

crates/wasm-smith/src/lib.rs

@@ -68,16 +68,10 @@ use arbitrary::{Result, Unstructured};
 pub use component::Component;
 pub use config::{Config, MemoryOffsetChoices};
 use std::{collections::HashSet, fmt::Write, str};
-use wasm_encoder::MemoryType;
 
 #[doc(hidden)]
 pub use config::InternalOptionalConfig;
 
-pub(crate) fn page_size(mem: &MemoryType) -> u32 {
-    const DEFAULT_WASM_PAGE_SIZE_LOG2: u32 = 16;
-    1 << mem.page_size_log2.unwrap_or(DEFAULT_WASM_PAGE_SIZE_LOG2)
-}
-
 /// Do something an arbitrary number of times.
 ///
 /// The callback can return `false` to exit the loop early.

crates/wasmparser/src/readers/core/types.rs

@@ -1995,13 +1995,28 @@ pub struct MemoryType {
 
 impl MemoryType {
     /// Gets the index type for the memory.
-    pub fn index_type(&self) -> ValType {
+    pub const fn index_type(&self) -> ValType {
         if self.memory64 {
             ValType::I64
         } else {
             ValType::I32
         }
     }
+
+    /// Returns the actual log2 of the page size of this linear memory,
+    /// returning the default if the memory itself doesn't specify.
+    pub const fn page_size_log2(&self) -> u32 {
+        const DEFAULT_WASM_PAGE_SIZE_LOG2: u32 = 16;
+        match self.page_size_log2 {
+            Some(log2) => log2,
+            None => DEFAULT_WASM_PAGE_SIZE_LOG2,
+        }
+    }
+
+    /// Returns the page size, in bytes, of this linear memory.
+    pub const fn page_size(&self) -> u32 {
+        1 << self.page_size_log2()
+    }
 }
 
 /// Represents a global's type.

crates/wasmparser/src/validator/component_types.rs

@@ -3670,6 +3670,9 @@ impl<'a> SubtypeCx<'a> {
         if a.memory64 != b.memory64 {
             bail!(offset, "mismatch in index type used for memories")
         }
+        if a.page_size_log2() != b.page_size_log2() {
+            bail!(offset, "mismatch in page size for memories")
+        }
         if limits_match!(a, b) {
             Ok(())
         } else {

tests/cli/component-model/custom-page-sizes.wast

@@ -0,0 +1,84 @@
+;; RUN: wast --assert default --snapshot tests/snapshots % -f custom-page-sizes
+
+;; explicitly specifying the page size is ok
+(component
+  (import "f" (func $f (param "x" string)))
+  (core module $m
+    (memory (export "m") 1 (pagesize 65536))
+  )
+  (core instance $i (instantiate $m))
+  (core func (canon lower (func $f) (memory $i "m")))
+)
+
+;; currently the component model requires all memories are a subtype of
+;; `(memory 0)`, AKA no compat with custom page sizes. This has not yet been
+;; relaxed at the spec level.
+(assert_invalid
+  (component
+    (import "f" (func $f (param "x" string)))
+    (core module $m
+      (memory (export "m") 1 (pagesize 1))
+    )
+    (core instance $i (instantiate $m))
+    (core func (canon lower (func $f) (memory $i "m")))
+  )
+  "mismatch in page size for memories"
+)
+
+;; subtyping works with custom-page-sizes
+(component
+  (core module $a (memory (export "m") 1 (pagesize 65536)))
+  (core module $b (import "a" "m" (memory 1 (pagesize 65536))))
+  (core instance $a (instantiate $a))
+  (core instance $b (instantiate $b (with "a" (instance $a))))
+)
+
+(component
+  (core module $a (memory (export "m") 1 (pagesize 65536)))
+  (core module $b (import "a" "m" (memory 1)))
+  (core instance $a (instantiate $a))
+  (core instance $b (instantiate $b (with "a" (instance $a))))
+)
+
+(component
+  (core module $a (memory (export "m") 1))
+  (core module $b (import "a" "m" (memory 1 (pagesize 65536))))
+  (core instance $a (instantiate $a))
+  (core instance $b (instantiate $b (with "a" (instance $a))))
+)
+
+(assert_invalid
+  (component
+    (core module $a (memory (export "m") 1 (pagesize 1)))
+    (core module $b (import "a" "m" (memory 1 (pagesize 65536))))
+    (core instance $a (instantiate $a))
+    (core instance $b (instantiate $b (with "a" (instance $a))))
+  )
+  "mismatch in page size for memories")
+
+(assert_invalid
+  (component
+    (core module $a (memory (export "m") 1 (pagesize 65536)))
+    (core module $b (import "a" "m" (memory 1 (pagesize 1))))
+    (core instance $a (instantiate $a))
+    (core instance $b (instantiate $b (with "a" (instance $a))))
+  )
+  "mismatch in page size for memories")
+
+(assert_invalid
+  (component
+    (core module $a (memory (export "m") 1 (pagesize 1)))
+    (core module $b (import "a" "m" (memory 1)))
+    (core instance $a (instantiate $a))
+    (core instance $b (instantiate $b (with "a" (instance $a))))
+  )
+  "mismatch in page size for memories")
+
+(assert_invalid
+  (component
+    (core module $a (memory (export "m") 1))
+    (core module $b (import "a" "m" (memory 1 (pagesize 1))))
+    (core instance $a (instantiate $a))
+    (core instance $b (instantiate $b (with "a" (instance $a))))
+  )
+  "mismatch in page size for memories")

tests/snapshots/cli/component-model/custom-page-sizes.wast.json

@@ -0,0 +1,64 @@
+{
+  "source_filename": "tests/cli/component-model/custom-page-sizes.wast",
+  "commands": [
+    {
+      "type": "module",
+      "line": 4,
+      "filename": "custom-page-sizes.0.wasm",
+      "module_type": "binary"
+    },
+    {
+      "type": "assert_invalid",
+      "line": 17,
+      "filename": "custom-page-sizes.1.wasm",
+      "module_type": "binary",
+      "text": "mismatch in page size for memories"
+    },
+    {
+      "type": "module",
+      "line": 29,
+      "filename": "custom-page-sizes.2.wasm",
+      "module_type": "binary"
+    },
+    {
+      "type": "module",
+      "line": 36,
+      "filename": "custom-page-sizes.3.wasm",
+      "module_type": "binary"
+    },
+    {
+      "type": "module",
+      "line": 43,
+      "filename": "custom-page-sizes.4.wasm",
+      "module_type": "binary"
+    },
+    {
+      "type": "assert_invalid",
+      "line": 51,
+      "filename": "custom-page-sizes.5.wasm",
+      "module_type": "binary",
+      "text": "mismatch in page size for memories"
+    },
+    {
+      "type": "assert_invalid",
+      "line": 60,
+      "filename": "custom-page-sizes.6.wasm",
+      "module_type": "binary",
+      "text": "mismatch in page size for memories"
+    },
+    {
+      "type": "assert_invalid",
+      "line": 69,
+      "filename": "custom-page-sizes.7.wasm",
+      "module_type": "binary",
+      "text": "mismatch in page size for memories"
+    },
+    {
+      "type": "assert_invalid",
+      "line": 78,
+      "filename": "custom-page-sizes.8.wasm",
+      "module_type": "binary",
+      "text": "mismatch in page size for memories"
+    }
+  ]
+}

tests/snapshots/cli/component-model/custom-page-sizes.wast/0.print

@@ -0,0 +1,11 @@
+(component
+  (type (;0;) (func (param "x" string)))
+  (import "f" (func $f (;0;) (type 0)))
+  (core module $m (;0;)
+    (memory (;0;) 1 (pagesize 0x10000))
+    (export "m" (memory 0))
+  )
+  (core instance $i (;0;) (instantiate $m))
+  (alias core export $i "m" (core memory (;0;)))
+  (core func (;0;) (canon lower (func $f) (memory 0)))
+)