rustjitwasmwebassemblyruntimewasicraneliftsandboxwasmtime

You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Tree: 49bab6db7f

cfallin/lucet-pr612-base

fitzgen-patch-1

main

pch/bound_tcp_userland_buffer

pch/bump_wasm_tools_210

pch/cli_wasi_legacy

pch/component_call_hooks

pch/resource_table

pch/resource_table_2

pch/upstream_wave

release-0.32.0

release-0.33.0

release-0.34.0

release-0.35.0

release-0.36.0

release-0.37.0

release-0.38.0

release-0.39.0

release-0.40.0

release-1.0.0

release-10.0.0

release-11.0.0

release-12.0.0

release-13.0.0

release-14.0.0

release-15.0.0

release-16.0.0

release-17.0.0

release-18.0.0

release-19.0.0

release-2.0.0

release-20.0.0

release-21.0.0

release-22.0.0

release-23.0.0

release-24.0.0

release-3.0.0

release-4.0.0

release-5.0.0

release-6.0.0

release-7.0.0

release-8.0.0

release-9.0.0

revert-9191-trevor/upgrade-regalloc

revert-union-find

stable-v0.26

trevor/fuzz-pcc

trevor/hyper-rc4

trevor/io-error-interface

0.2.0

0.3.0

cranelift-v0.31.0

cranelift-v0.32.0

cranelift-v0.33.0

cranelift-v0.34.0

cranelift-v0.35.0

cranelift-v0.36.0

cranelift-v0.37.0

cranelift-v0.39.0

cranelift-v0.40.0

cranelift-v0.41.0

cranelift-v0.42.0

cranelift-v0.43.0

cranelift-v0.43.1

cranelift-v0.44.0

cranelift-v0.45.0

cranelift-v0.46.0

cranelift-v0.46.1

cranelift-v0.60.0

cranelift-v0.61.0

cranelift-v0.62.0

cranelift-v0.69.0

dev

filecheck-v0.0.1

minimum-viable-wasi-proxy-serve

v0.10.0

v0.11.0

v0.12.0

v0.15.0

v0.16.0

v0.17.0

v0.18.0

v0.19.0

v0.2.0

v0.20.0

v0.21.0

v0.22.0

v0.22.1

v0.23.0

v0.24.0

v0.25.0

v0.26.0

v0.26.1

v0.27.0

v0.28.0

v0.29.0

v0.3.0

v0.30.0

v0.31.0

v0.32.0

v0.32.1

v0.33.0

v0.33.1

v0.34.0

v0.34.1

v0.34.2

v0.35.0

v0.35.1

v0.35.2

v0.35.3

v0.36.0

v0.37.0

v0.38.0

v0.38.1

v0.38.2

v0.38.3

v0.39.0

v0.39.1

v0.4.0

v0.40.0

v0.40.1

v0.6.0

v0.8.0

v0.9.0

v1.0.0

v1.0.1

v1.0.2

v10.0.0

v10.0.1

v10.0.2

v11.0.0

v11.0.1

v11.0.2

v12.0.0

v12.0.1

v12.0.2

v13.0.0

v13.0.1

v14.0.0

v14.0.1

v14.0.2

v14.0.3

v14.0.4

v15.0.0

v15.0.1

v16.0.0

v17.0.0

v17.0.1

v17.0.2

v17.0.3

v18.0.0

v18.0.1

v18.0.2

v18.0.3

v18.0.4

v19.0.0

v19.0.1

v19.0.2

v2.0.0

v2.0.1

v2.0.2

v20.0.0

v20.0.1

v20.0.2

v21.0.0

v21.0.1

v22.0.0

v23.0.0

v23.0.1

v23.0.2

v24.0.0

v3.0.0

v3.0.1

v4.0.0

v4.0.1

v5.0.0

v5.0.1

v6.0.0

v6.0.1

v6.0.2

v7.0.0

v7.0.1

v8.0.0

v8.0.1

v9.0.0

v9.0.1

v9.0.2

v9.0.3

v9.0.4

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '49bab6db7f'

${ noResults }

cranelift/tests

History

Nick Fitzgerald 2e48babf23 cranelift-wasm: Add a bounds-checking optimization for dynamic memories and guard pages (#6031) * cranelift-wasm: Add a bounds-checking optimization for dynamic memories and guard pages This is a new special case for when we know that there are enough guard pages to cover the memory access's offset and access size. The precise should-we-trap condition is index + offset + access_size > bound However, if we instead check only the partial condition index > bound then the most out of bounds that the access can be, while that partial check still succeeds, is `offset + access_size`. However, when we have a guard region that is at least as large as `offset + access_size`, we can rely on the virtual memory subsystem handling these out-of-bounds errors at runtime. Therefore, the partial `index > bound` check is sufficient for this heap configuration. Additionally, this has the advantage that a series of Wasm loads that use the same dynamic index operand but different static offset immediates -- which is a common code pattern when accessing multiple fields in the same struct that is in linear memory -- will all emit the same `index > bound` check, which we can GVN. * cranelift: Add WAT tests for accessing dynamic memories with the same index but different offsets The bounds check comparison is GVN'd but we still branch on values we should know will always be true if we get this far in the code. This is actual `br_if`s in the non-Spectre code and `select_spectre_guard`s that we should know will always go a certain way if we have Spectre mitigations enabled. Improving the non-Spectre case is pretty straightforward: walk the dominator tree and remember which values we've already branched on at this point, and therefore we can simplify any further conditional branches on those same values into direct jumps. Improving the Spectre case requires something that is morally the same, but has a few snags: * We don't have actual `br_if`s to determine whether the bounds checking condition succeeded or not. We need to instead reason about dominating `select_spectre_guard; {load, store}` instruction pairs. * We have to be SUPER careful about reasoning "through" `select_spectre_guard`s. Our general rule is never to do that, since it could break the speculative execution sandboxing that the instruction is designed for.		2 years ago
..
all	cranelift-wasm: Add a bounds-checking optimization for dynamic memories and guard pages (#6031)	2 years ago
misc_testsuite	Update the spec test suite submodule (#5970)	2 years ago
spec_testsuite@7ef86ddeed	Update the spec test suite submodule (#5970)	2 years ago
wasi_testsuite	wasi-threads: run test suite (#5907)	2 years ago
host_segfault.rs	Implement inline stack probes for AArch64 (#5353)	2 years ago
rlimited-memory.rs	Remove dependency on the `region` crate (#4407)	2 years ago