Fixed

stevenfontanella · stevenfontanella · commit a7faf92bce1d · 2025-12-09T07:02:45.000Z
diff --git a/src/shell-interface.h b/src/shell-interface.h
@@ -148,7 +148,7 @@ struct ShellExternalInterface : ModuleRunner::ExternalInterface {
       // Use a null instance because these are host functions.
       return Literal(
         std::make_shared<FuncData>(import->name,
-                                   nullptr,
+                                   /*instanceId=*/0,
                                    [](const Literals& arguments) -> Flow {
                                      for (auto argument : arguments) {
                                        std::cout << argument << " : "
@@ -159,7 +159,7 @@ struct ShellExternalInterface : ModuleRunner::ExternalInterface {
         import->type);
     } else if (import->module == ENV && import->base == EXIT) {
       return Literal(std::make_shared<FuncData>(import->name,
-                                                nullptr,
+                                                /*instanceId=*/0,
                                                 [](const Literals&) -> Flow {
                                                   // XXX hack for torture tests
                                                   std::cout << "exit()\n";
diff --git a/src/tools/execution-results.h b/src/tools/execution-results.h
@@ -210,7 +210,7 @@ struct LoggingExternalInterface : public ShellExternalInterface {
       return {};
     };
     // Use a null instance because this is a host function.
-    return Literal(std::make_shared<FuncData>(import->name, nullptr, f),
+    return Literal(std::make_shared<FuncData>(import->name, /*instanceId=*/0, f),
                    import->type);
   }
 
diff --git a/src/tools/wasm-ctor-eval.cpp b/src/tools/wasm-ctor-eval.cpp
@@ -104,8 +104,9 @@ class EvallingModuleRunner : public ModuleRunnerBase<EvallingModuleRunner> {
 
   // This needs to be duplicated from ModuleRunner, unfortunately.
   Literal makeFuncData(Name name, Type type) {
+    // TODO fix this too
     auto allocation =
-      std::make_shared<FuncData>(name, this, [this, name](Literals arguments) {
+      std::make_shared<FuncData>(name, reinterpret_cast<uintptr_t>(this), [this, name](Literals arguments) {
         return callFunction(name, arguments);
       });
 #if __has_feature(leak_sanitizer) || __has_feature(address_sanitizer)
@@ -320,7 +321,7 @@ struct CtorEvalExternalInterface : EvallingModuleRunner::ExternalInterface {
     // Use a null instance because these are either host functions or imported
     // from unknown sources.
     // TODO: Be more precise about the types we allow these imports to have.
-    return Literal(std::make_shared<FuncData>(import->name, nullptr, f),
+    return Literal(std::make_shared<FuncData>(import->name, /*instanceId=*/0, f),
                    import->type);
   }
 
diff --git a/src/wasm-interpreter.h b/src/wasm-interpreter.h
@@ -86,7 +86,7 @@ class Flow {
   }
 
   Literals values;
-  Name breakTo;              // if non-null, a break is going on
+  Name breakTo; // if non-null, a break is going on
   Tag* suspendTag = nullptr; // if non-null, breakTo must be SUSPEND_FLOW, and
                              // this is the tag being suspended
 
@@ -140,17 +140,18 @@ struct FuncData {
   // an unknown source.) Two functions are equal iff they have the same name and
   // are defined by the same instance (in particular, we do *not* compare the
   // |call| field below, which is an execution detail).
-  void* self;
+  uintptr_t instanceId;
 
   // A way to execute this function. We use this when it is called.
   using Call = std::function<Flow(const Literals&)>;
   Call call;
 
-  FuncData(Name name, void* self = nullptr, Call call = {})
-    : name(name), self(self), call(call) {}
+  // todo?
+  FuncData(Name name, uintptr_t instanceId = 0, Call call = {})
+    : name(name), instanceId(instanceId), call(call) {}
 
   bool operator==(const FuncData& other) const {
-    return name == other.name && self == other.self;
+    return name == other.name && instanceId == other.instanceId;
   }
 
   Flow doCall(const Literals& arguments) {
@@ -361,7 +362,7 @@ class ExpressionRunner : public OverriddenVisitor<SubType, Flow> {
   Literal makeFuncData(Name name, Type type) {
     // Identify the interpreter, but do not provide a way to actually call the
     // function.
-    auto allocation = std::make_shared<FuncData>(name, this);
+    auto allocation = std::make_shared<FuncData>(name, (uintptr_t)this);
 #if __has_feature(leak_sanitizer) || __has_feature(address_sanitizer)
     __lsan_ignore_object(allocation.get());
 #endif
@@ -2916,7 +2917,7 @@ using GlobalValueSet = std::map<Name, Literals>;
 //
 
 template<typename SubType>
-class ModuleRunnerBase : public ExpressionRunner<SubType> {
+class ModuleRunnerBase : public ExpressionRunner<SubType>, public std::enable_shared_from_this<ModuleRunnerBase<SubType>> {
 public:
   //
   // You need to implement one of these to create a concrete interpreter. The
@@ -3206,9 +3207,9 @@ class ModuleRunnerBase : public ExpressionRunner<SubType> {
     }
     return Literal(std::make_shared<FuncData>(
                      func->name,
-                     this,
-                     [this, func](const Literals& arguments) -> Flow {
-                       return callFunction(func->name, arguments);
+                     reinterpret_cast<uintptr_t>(this),
+                     [self = this->shared_from_this(), func](const Literals& arguments) -> Flow {
+                       return self->callFunction(func->name, arguments);
                      }),
                    func->type);
   }
@@ -4773,7 +4774,7 @@ class ModuleRunnerBase : public ExpressionRunner<SubType> {
         auto func = entry[0];
         auto data = func.getFuncData();
         // We must be in the right module to do the call using that name.
-        if (data->self != self()) {
+        if (data->instanceId != (uintptr_t)self()) {
           // Restore the entry to the resume stack, as the other module's
           // callFunction() will read it. Then call into the other module. This
           // sets this up as if we called into the proper module in the first
@@ -4865,10 +4866,9 @@ class ModuleRunnerBase : public ExpressionRunner<SubType> {
       flow.values.pop_back();
       arguments = flow.values;
 
-      if (nextData->self != this) {
+      if (nextData->instanceId != (uintptr_t)self()) {
         // This function is in another module. Call from there.
-        auto other = (decltype(this))nextData->self;
-        flow = other->callFunction(name, arguments);
+        flow = nextData->doCall(arguments);
         break;
       }
     }
@@ -4998,23 +4998,21 @@ class ModuleRunnerBase : public ExpressionRunner<SubType> {
   std::map<Name, std::shared_ptr<SubType>> linkedInstances;
 };
 
-class ModuleRunner : public ModuleRunnerBase<ModuleRunner>,
-                     public std::enable_shared_from_this<ModuleRunner> {
+class ModuleRunner : public ModuleRunnerBase<ModuleRunner> {
 public:
   ModuleRunner(
     Module& wasm,
     ExternalInterface* externalInterface,
     std::map<Name, std::shared_ptr<ModuleRunner>> linkedInstances = {})
     : ModuleRunnerBase(wasm, externalInterface, linkedInstances) {}
 
-  // As the super's |makeFuncData|, but here we also provide a way to
-  // actually call the function.
   Literal makeFuncData(Name name, Type type) {
-    // This function may outlive the ModuleRunner in the case that instantiation
-    // fails. Use shared_from_this() to extend this ModuleRunner's lifetime.
-    auto allocation = std::make_shared<FuncData>(
-      name, this, [self = shared_from_this(), name](Literals arguments) {
-        return self->callFunction(name, arguments);
+    // As the super's |makeFuncData|, but here we also provide a way to
+    // actually call the function.
+    auto allocation =
+      std::make_shared<FuncData>(name, reinterpret_cast<uintptr_t>(this),
+      [moduleRunner = std::static_pointer_cast<ModuleRunner>(std::enable_shared_from_this<ModuleRunnerBase<ModuleRunner>>::shared_from_this()), name](Literals arguments) {
+        return moduleRunner->callFunction(name, arguments);
       });
 
     return Literal(allocation, type);
diff --git a/test/spec/linking0.wast b/test/spec/linking0.wast
@@ -0,0 +1,30 @@
+;; adapted from test/spec/testsuite/linking0.wast, with some assertions removed
+
+(module $Mt
+  (type (func (result i32)))
+  (type (func))
+
+  (table (export "tab") 10 funcref)
+  (elem (i32.const 2) $g $g $g $g)
+  (func $g (result i32) (i32.const 4))
+  (func (export "h") (result i32) (i32.const -4))
+
+  (func (export "call") (param i32) (result i32)
+    (call_indirect (type 0) (local.get 0))
+  )
+)
+(register "Mt" $Mt)
+
+(assert_trap
+  (module
+    (table (import "Mt" "tab") 10 funcref)
+    (func $f (result i32) (i32.const 0))
+    (elem (i32.const 7) $f)
+    (memory 0)
+    (memory $m 1)
+    (memory 0)
+    (data $m (i32.const 0x10000) "d")  ;; out of bounds
+  )
+  "out of bounds memory access"
+)
+(assert_return (invoke $Mt "call" (i32.const 7)) (i32.const 0))

Original file line number	Diff line number	Diff line change
`@@ -210,7 +210,7 @@ struct LoggingExternalInterface : public ShellExternalInterface {`
`210`	`210`	`return {};`
`211`	`211`	`};`
`212`	`212`	`// Use a null instance because this is a host function.`
`213`		`- return Literal(std::make_shared<FuncData>(import->name, nullptr, f),`
	`213`	`+ return Literal(std::make_shared<FuncData>(import->name, /instanceId=/0, f),`
`214`	`214`	`import->type);`
`215`	`215`	`}`
`216`	`216`