wasi_virt_layer 0.4.7

A virtual layer for WASI modules
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188

// Multi-memory lowering offset global protection.
//
// When multiple memories are condensed into a single combined memory,
// offset globals track where each original memory begins. These offsets
// are updated during `memory.grow` (data shift). In a multi-threaded
// environment, concurrent reads of offset globals during a grow would
// produce inconsistent addresses. This module provides an atomic
// counter-based RwLock so that:
//
//   - Target memory accesses hold a **read lock** while computing
//     the effective address from the offset global and performing the
//     memory instruction.
//   - `memory.grow` helpers hold a **write lock** while growing the
//     combined memory, shifting data, and updating offset globals.
//
// The lock state lives in a single `AtomicI32`:
//   0    : free
//   N > 0: N active readers
//   -1   : writer active

use core::sync::atomic::{AtomicI32, Ordering};

/// Atomic RwLock state variable.
///
/// Layout:
/// -  `0`   → unlocked
/// -  `N>0` → N readers active
/// -  `-1`  → writer active
static RWLOCK_STATE: AtomicI32 = AtomicI32::new(0);

// ---------------------------------------------------------------------------
// wvl_atomic primitives (resolved by CLI generator to VFS memory instructions)
// ---------------------------------------------------------------------------

#[link(wasm_import_module = "wvl_atomic")]
unsafe extern "C" {
    fn __wvl_atomic_wait32_vfs(addr: *const u32, expected: u32, timeout: i64) -> i32;
    fn __wvl_atomic_notify_vfs(addr: *const u32, count: u32) -> i32;
}

// ---------------------------------------------------------------------------
// Exported lock functions — called from generated code
// ---------------------------------------------------------------------------

/// Acquire a read lock (blocks if a writer is active).
///
/// Multiple readers can hold the lock concurrently.
/// # Safety
/// Called from generated wasm code via C-ABI.
#[unsafe(no_mangle)]
pub extern "C" fn __wasip1_vfs_memory_lock_read_acquire() {
    loop {
        let old = RWLOCK_STATE.load(Ordering::Relaxed);
        if old >= 0 {
            // Attempt to increment reader count
            if RWLOCK_STATE
                .compare_exchange_weak(old, old + 1, Ordering::Acquire, Ordering::Relaxed)
                .is_ok()
            {
                return;
            }
            // CAS failed — retry immediately (no wait needed, state just changed)
            continue;
        }
        // Writer is active (state < 0) — wait until state changes
        unsafe {
            __wvl_atomic_wait32_vfs(
                RWLOCK_STATE.as_ptr() as *const u32,
                old as u32, // wait while state == old (i.e. writer still active)
                -1,         // no timeout
            );
        }
    }
}

/// Release a read lock.
///
/// If this was the last reader, wakes one waiting writer.
/// # Safety
/// Called from generated wasm code via C-ABI.
#[unsafe(no_mangle)]
pub extern "C" fn __wasip1_vfs_memory_lock_read_release() {
    let old = RWLOCK_STATE.fetch_sub(1, Ordering::Release);
    if old == 1 {
        // Last reader released — wake a waiting writer
        unsafe {
            __wvl_atomic_notify_vfs(RWLOCK_STATE.as_ptr() as *const u32, 1);
        }
    }
}

/// Acquire a write lock (blocks until all readers and other writers release).
///
/// Only one writer can hold the lock at a time. No readers can be active.
/// # Safety
/// Called from generated wasm code via C-ABI.
#[unsafe(no_mangle)]
pub extern "C" fn __wasip1_vfs_memory_lock_write_acquire() {
    loop {
        match RWLOCK_STATE.compare_exchange_weak(0, -1, Ordering::Acquire, Ordering::Relaxed) {
            Ok(_) => return, // Successfully acquired write lock
            Err(current) => {
                // Someone else holds the lock — wait until state changes
                unsafe {
                    __wvl_atomic_wait32_vfs(
                        RWLOCK_STATE.as_ptr() as *const u32,
                        current as u32,
                        -1,
                    );
                }
            }
        }
    }
}

/// Release the write lock and wake all waiting threads.
/// # Safety
/// Called from generated wasm code via C-ABI.
#[unsafe(no_mangle)]
pub extern "C" fn __wasip1_vfs_memory_lock_write_release() {
    RWLOCK_STATE.store(0, Ordering::Release);
    unsafe {
        __wvl_atomic_notify_vfs(RWLOCK_STATE.as_ptr() as *const u32, u32::MAX);
    }
}

// ---------------------------------------------------------------------------
// Legacy API — used by gen_alt_global! macro (kept for backward compatibility)
// ---------------------------------------------------------------------------

/// Acquire a read lock and return a guard-like token.
///
/// The caller must call [`lock_read_release`] when done.
/// This is used by the `gen_alt_global!` macro's `_global_alt_get` functions.
pub fn lock_read() -> ReadGuard {
    __wasip1_vfs_memory_lock_read_acquire();
    ReadGuard(())
}

/// Acquire a write lock and return a guard-like token.
///
/// The caller must call [`lock_write_release`] when done.
/// This is used by the `gen_alt_global!` macro's `_global_alt_set_with_lock` functions.
pub fn lock_write() -> WriteGuard {
    __wasip1_vfs_memory_lock_write_acquire();
    WriteGuard(())
}

/// RAII guard for read lock. Releases the lock on drop.
pub struct ReadGuard(());

impl Drop for ReadGuard {
    fn drop(&mut self) {
        __wasip1_vfs_memory_lock_read_release();
    }
}

/// RAII guard for write lock. Releases the lock on drop.
pub struct WriteGuard(());

impl Drop for WriteGuard {
    fn drop(&mut self) {
        __wasip1_vfs_memory_lock_write_release();
    }
}

// ---------------------------------------------------------------------------
// VFS external memory manager offset global proxy
// ---------------------------------------------------------------------------

crate::gen_alt_global!(vfs_external_memory_manager);

// ---------------------------------------------------------------------------
// Memory grow locker (legacy — wraps memory.grow with write lock)
// ---------------------------------------------------------------------------

#[link(wasm_import_module = "wasip1-vfs_single_memory")]
unsafe extern "C" {
    fn __wasip1_vfs_memory_grow_alt(_: i32) -> i32;
}

/// Wraps `memory.grow` with a write lock to prevent concurrent access
/// to the combined memory while it is being resized and data is shifted.
#[unsafe(no_mangle)]
extern "C" fn __wasip1_vfs_memory_grow_locker(page_size: i32) -> i32 {
    let _guard = lock_write();
    unsafe { __wasip1_vfs_memory_grow_alt(page_size) }
}