[GR-63542] Backport to 24.2.1: Wasm Memory not cleared when WasmInstance out of scope.

PullRequest: graal/20403

Author: ansalond

wasm/src/org.graalvm.wasm.test/src/org/graalvm/wasm/test/WasmFileSuite.java

@@ -82,6 +82,7 @@
 import org.graalvm.wasm.WasmFunctionInstance;
 import org.graalvm.wasm.WasmInstance;
 import org.graalvm.wasm.WasmLanguage;
+import org.graalvm.wasm.WasmStore;
 import org.graalvm.wasm.memory.WasmMemory;
 import org.graalvm.wasm.memory.WasmMemoryLibrary;
 import org.graalvm.wasm.test.options.WasmTestOptions;
@@ -164,8 +165,8 @@ private static boolean isPoorShell() {
         return inCI() || inWindows();
     }
 
-    private static Value findMain(WasmContext wasmContext) {
-        for (final WasmInstance instance : wasmContext.moduleInstances().values()) {
+    private static Value findMain(WasmStore wasmStore) {
+        for (final WasmInstance instance : wasmStore.moduleInstances().values()) {
             final WasmFunctionInstance function = instance.inferEntryPoint();
             if (function != null) {
                 return Value.asValue(function);
@@ -192,7 +193,8 @@ private void runInContext(WasmCase testCase, Context context, List<Source> sourc
             }
 
             final WasmContext wasmContext = WasmContext.get(null);
-            final Value mainFunction = findMain(wasmContext);
+            final var contextStore = wasmContext.contextStore();
+            final Value mainFunction = findMain(contextStore);
 
             resetStatus(System.out, phaseIcon, phaseLabel);
 
@@ -222,37 +224,40 @@ private void runInContext(WasmCase testCase, Context context, List<Source> sourc
                     e.setStackTrace(new StackTraceElement[0]);
                     throw e;
                 } finally {
-                    // Save context state, and check that it's consistent with the previous one.
-                    if (iterationNeedsStateCheck(i)) {
-                        final ContextState contextState = saveContext(wasmContext);
-                        if (firstIterationContextState == null) {
-                            firstIterationContextState = contextState;
-                        } else {
-                            assertContextEqual(firstIterationContextState, contextState);
+                    // Context may have already been closed, e.g. by __wasi_proc_exit.
+                    if (!wasmContext.environment().getContext().isClosed()) {
+                        // Save context state, and check that it's consistent with the previous one.
+                        if (iterationNeedsStateCheck(i)) {
+                            final ContextState contextState = saveContext(contextStore);
+                            if (firstIterationContextState == null) {
+                                firstIterationContextState = contextState;
+                            } else {
+                                assertContextEqual(firstIterationContextState, contextState);
+                            }
                         }
-                    }
 
-                    // Reset context state.
-                    final boolean reinitMemory = requiresZeroMemory || iterationNeedsStateCheck(i + 1);
-                    if (reinitMemory) {
-                        for (int j = 0; j < wasmContext.memories().count(); ++j) {
-                            WasmMemoryLibrary.getUncached().reset(wasmContext.memories().memory(j));
-                        }
-                        for (int j = 0; j < wasmContext.tables().tableCount(); ++j) {
-                            wasmContext.tables().table(j).reset();
+                        // Reset context state.
+                        final boolean reinitMemory = requiresZeroMemory || iterationNeedsStateCheck(i + 1);
+                        if (reinitMemory) {
+                            for (int j = 0; j < contextStore.memories().count(); ++j) {
+                                WasmMemoryLibrary.getUncached().reset(contextStore.memories().memory(j));
+                            }
+                            for (int j = 0; j < contextStore.tables().tableCount(); ++j) {
+                                contextStore.tables().table(j).reset();
+                            }
                         }
-                    }
-                    List<WasmInstance> instanceList = new ArrayList<>(wasmContext.moduleInstances().values());
-                    instanceList.sort(Comparator.comparingInt(RuntimeState::startFunctionIndex));
-                    for (WasmInstance instance : instanceList) {
-                        if (!instance.isBuiltin()) {
-                            wasmContext.reinitInstance(instance, reinitMemory);
+                        List<WasmInstance> instanceList = new ArrayList<>(contextStore.moduleInstances().values());
+                        instanceList.sort(Comparator.comparingInt(RuntimeState::startFunctionIndex));
+                        for (WasmInstance instance : instanceList) {
+                            if (!instance.isBuiltin()) {
+                                contextStore.reinitInstance(instance, reinitMemory);
+                            }
                         }
-                    }
 
-                    // Reset stdin
-                    if (wasmContext.environment().in() instanceof ByteArrayInputStream) {
-                        wasmContext.environment().in().reset();
+                        // Reset stdin
+                        if (wasmContext.environment().in() instanceof ByteArrayInputStream) {
+                            wasmContext.environment().in().reset();
+                        }
                     }
                 }
             }
@@ -586,10 +591,10 @@ protected String suiteName() {
         return getClass().getSimpleName();
     }
 
-    private static ContextState saveContext(WasmContext context) {
-        final MemoryRegistry memories = context.memories().duplicate();
-        final GlobalRegistry globals = context.globals().duplicate();
-        return new ContextState(memories, globals, context.fdManager().size());
+    private static ContextState saveContext(WasmStore store) {
+        final MemoryRegistry memories = store.memories().duplicate();
+        final GlobalRegistry globals = store.globals().duplicate();
+        return new ContextState(memories, globals, store.fdManager().size());
     }
 
     private static void assertContextEqual(ContextState expectedState, ContextState actualState) {

wasm/src/org.graalvm.wasm.test/src/org/graalvm/wasm/test/WasmJsApiSuite.java

@@ -107,9 +107,13 @@ public class WasmJsApiSuite {
     private static WasmFunctionInstance createWasmFunctionInstance(WasmContext context, byte[] paramTypes, byte[] resultTypes, RootNode functionRootNode) {
         WasmModule module = WasmModule.createBuiltin("dummyModule");
         module.allocateFunctionType(paramTypes, resultTypes, context.getContextOptions().supportMultiValue());
-        WasmFunction func = module.declareExportedFunction(0, "dummyFunction");
+        WasmFunction func = module.declareFunction(0);
         func.setTarget(functionRootNode.getCallTarget());
-        WasmInstance moduleInstance = new WasmInstance(context, module, context.environment().getContext());
+        WasmInstance moduleInstance = context.contextStore().readInstance(module);
+        // Perform normal linking steps, incl. assignTypeEquivalenceClasses().
+        // Functions need to have type equivalence classes assigned for indirect calls.
+        moduleInstance.store().linker().tryLink(moduleInstance);
+        assert func.typeEquivalenceClass() >= 0 : "type equivalence class must be assigned";
         return new WasmFunctionInstance(moduleInstance, func, functionRootNode.getCallTarget());
     }
 
@@ -902,9 +906,8 @@ public void testTableInstanceOutOfBoundsSet() throws IOException {
             final WasmInstance instance = moduleInstantiate(wasm, binaryWithMixedExports, null);
             final InteropLibrary lib = InteropLibrary.getUncached();
 
-            WasmContext wasmContext = WasmContext.get(null);
-            final WasmFunctionInstance functionInstance = createWasmFunctionInstance(wasmContext, WasmType.VOID_TYPE_ARRAY, WasmType.I32_TYPE_ARRAY,
-                            new RootNode(wasmContext.language()) {
+            final WasmFunctionInstance functionInstance = createWasmFunctionInstance(context, WasmType.VOID_TYPE_ARRAY, WasmType.I32_TYPE_ARRAY,
+                            new RootNode(context.language()) {
                                 @Override
                                 public Object execute(VirtualFrame frame) {
                                     return 42;
@@ -2511,11 +2514,11 @@ private static void runMemoryTest(Consumer<WasmContext> testCase) throws IOExcep
         runTest(options -> options.option("wasm.UseUnsafeMemory", "true"), testCase);
     }
 
-    private static void runTest(Consumer<WasmContext> testCase) throws IOException {
+    public static void runTest(Consumer<WasmContext> testCase) throws IOException {
         runTest(null, testCase);
     }
 
-    private static void runTest(Consumer<Context.Builder> options, Consumer<WasmContext> testCase) throws IOException {
+    public static void runTest(Consumer<Context.Builder> options, Consumer<WasmContext> testCase) throws IOException {
         final Context.Builder contextBuilder = Context.newBuilder(WasmLanguage.ID);
         contextBuilder.option("wasm.Builtins", "testutil:testutil");
         if (options != null) {
@@ -2911,7 +2914,7 @@ public void accept(WasmContext context) {
                     (byte) 0x61, (byte) 0x6d, (byte) 0x65, (byte) 0x02, (byte) 0x05, (byte) 0x02, (byte) 0x00, (byte) 0x00, (byte) 0x01, (byte) 0x00,
     };
 
-    private static WasmInstance moduleInstantiate(WebAssembly wasm, byte[] source, Object importObject) {
+    public static WasmInstance moduleInstantiate(WebAssembly wasm, byte[] source, Object importObject) {
         final WasmModule module = wasm.moduleDecode(source);
         return wasm.moduleInstantiate(module, importObject);
     }

wasm/src/org.graalvm.wasm.test/src/org/graalvm/wasm/test/WasmMemoryLeakSuite.java

@@ -0,0 +1,161 @@
+/*
+ * Copyright (c) 2025, Oracle and/or its affiliates. All rights reserved.
+ * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
+ *
+ * The Universal Permissive License (UPL), Version 1.0
+ *
+ * Subject to the condition set forth below, permission is hereby granted to any
+ * person obtaining a copy of this software, associated documentation and/or
+ * data (collectively the "Software"), free of charge and under any and all
+ * copyright rights in the Software, and any and all patent rights owned or
+ * freely licensable by each licensor hereunder covering either (i) the
+ * unmodified Software as contributed to or provided by such licensor, or (ii)
+ * the Larger Works (as defined below), to deal in both
+ *
+ * (a) the Software, and
+ *
+ * (b) any piece of software and/or hardware listed in the lrgrwrks.txt file if
+ * one is included with the Software each a "Larger Work" to which the Software
+ * is contributed by such licensors),
+ *
+ * without restriction, including without limitation the rights to copy, create
+ * derivative works of, display, perform, and distribute the Software and make,
+ * use, sell, offer for sale, import, export, have made, and have sold the
+ * Software and the Larger Work(s), and to sublicense the foregoing rights on
+ * either these or other terms.
+ *
+ * This license is subject to the following condition:
+ *
+ * The above copyright notice and either this complete permission notice or at a
+ * minimum a reference to the UPL must be included in all copies or substantial
+ * portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+ * SOFTWARE.
+ */
+package org.graalvm.wasm.test;
+
+import static org.graalvm.wasm.utils.WasmBinaryTools.compileWat;
+
+import java.io.IOException;
+import java.lang.ref.WeakReference;
+import java.nio.ByteOrder;
+import java.util.ArrayList;
+
+import org.graalvm.polyglot.Context;
+import org.graalvm.polyglot.Engine;
+import org.graalvm.wasm.WasmModule;
+import org.graalvm.wasm.WasmTable;
+import org.graalvm.wasm.api.Dictionary;
+import org.graalvm.wasm.api.WebAssembly;
+import org.junit.Assert;
+import org.junit.Test;
+
+import com.oracle.truffle.api.interop.InteropException;
+import com.oracle.truffle.api.interop.InteropLibrary;
+
+public class WasmMemoryLeakSuite {
+
+    @Test
+    public void testMemoryLeak() throws IOException, InterruptedException {
+        final byte[] binary = compileWat("leak", """
+                        (module
+                        (memory (export "mem") 128) ;; 8 MiB
+                        (func $fun (export "fun") (result i32) i32.const 42)
+                        (table (export "tab") 1 funcref)
+                        (elem (i32.const 0) $fun)
+                        )
+                        """);
+        WasmJsApiSuite.runTest(b -> b.engine(Engine.create()), context -> {
+            InteropLibrary lib = InteropLibrary.getUncached();
+            WebAssembly wasm = new WebAssembly(context);
+            WasmModule module = wasm.moduleDecode(binary);
+            Object importObject = new Dictionary();
+            try {
+                var weakStores = new ArrayList<WeakReference<Object>>();
+                var weakInstances = new ArrayList<WeakReference<Object>>();
+                var weakMemories = new ArrayList<WeakReference<Object>>();
+                var weakFunctions = new ArrayList<WeakReference<Object>>();
+                var weakTables = new ArrayList<WeakReference<Object>>();
+                var strongInstances = new ArrayList<>();
+                for (int iter = 0; iter < 16; iter++) {
+                    var instance = wasm.moduleInstantiate(module, importObject);
+                    Object mem = lib.readMember(instance, "mem");
+                    Object fun = lib.readMember(instance, "fun");
+                    Object tab = lib.readMember(instance, "tab");
+
+                    weakStores.add(new WeakReference<>(instance.store()));
+                    weakInstances.add(new WeakReference<>(instance));
+                    weakMemories.add(new WeakReference<>(mem));
+                    weakFunctions.add(new WeakReference<>(fun));
+                    weakTables.add(new WeakReference<>(tab));
+
+                    // a single WasmInstance, WasmFunctionInstance, or WasmMemory instance
+                    // should prevent the context from being closed and garbage-collected.
+                    switch (iter % 4) {
+                        case 0 -> strongInstances.add(instance);
+                        case 1 -> strongInstances.add(fun);
+                        case 2 -> strongInstances.add(mem);
+                        case 3 -> strongInstances.add(tab);
+                    }
+                }
+
+                processReferenceQueueAndGC();
+
+                for (int i = 0; i < strongInstances.size(); i++) {
+                    Object instance = strongInstances.get(i);
+                    Assert.assertNotNull(instance);
+                    switch (i % 4) {
+                        case 0 -> {
+                            // WasmInstance
+                            Assert.assertTrue(lib.isMemberReadable(instance, "fun"));
+                        }
+                        case 1 -> {
+                            // WasmFunction
+                            Assert.assertTrue(lib.isExecutable(instance));
+                            Assert.assertEquals(42, lib.execute(instance));
+                        }
+                        case 2 -> {
+                            // WasmMemory
+                            Assert.assertEquals(128 * 64 * 1024, lib.getBufferSize(instance));
+                            Assert.assertEquals(0, lib.readBufferInt(instance, ByteOrder.LITTLE_ENDIAN, 0));
+                        }
+                        case 3 -> {
+                            // WasmTable
+                            // No table interop support (GR-57847).
+                            Object fun = WebAssembly.tableRead((WasmTable) instance, 0);
+                            Assert.assertTrue(lib.isExecutable(fun));
+                            Assert.assertEquals(42, lib.execute(fun));
+                        }
+                    }
+                }
+
+                // memories are kept alive either by the WasmMemory object itself or by the context
+                Assert.assertTrue("WebAssembly memories should not have been freed yet.",
+                                weakMemories.stream().noneMatch(weakRef -> weakRef.refersTo(null)));
+                // contexts may be freed in the case of only WasmMemory references
+
+                strongInstances.clear();
+                processReferenceQueueAndGC();
+
+                Assert.assertTrue("WebAssembly memories should have been freed.",
+                                weakMemories.stream().anyMatch(weakRef -> weakRef.refersTo(null)));
+                Assert.assertTrue("WebAssembly stores should have been freed.",
+                                weakStores.stream().anyMatch(weakRef -> weakRef.refersTo(null)));
+            } catch (InteropException e) {
+                throw new RuntimeException(e);
+            }
+        });
+    }
+
+    private static void processReferenceQueueAndGC() {
+        System.gc();
+        Context.create().close(); // process reference queue
+        System.gc();
+    }
+}