wasmi
wasmi copied to clipboard
wasmi-labs
Implement backtraces in `wasmi`
Even though wasmi is an interpreter VM for Wasm we are missing proper debugging functionality such as backtraces.
This is a heavily requested feature by smart contract users so that they can finally properly debug and analyze their smart contract exeuctions.
Having backtraces is not sufficient by its own since we also are required to show proper function and local variable names for a nice debugging UX. For this purpose we also need to support the Wasm name section that provides a Wasm VM with those names for a given Wasm blob.
Furthermore any backtrace implementation for wasmi should ideally not conflict with the performance in case those backtraces are not required. Therefore we need to find a design that has zero cost for non-debug executions.
@cmichi
ToDos
- [ ] Implement support for Wasm
namesection. - [ ] Implement backtraces for
wasmiexecution debugging without overhead of non-debug executions.
Related Work
- Wasmtime
- We want similar behavior as Wasmtime with respect to its backtrace functionality and serialization of its backtraces.
Config::wasm_backtrace: https://docs.rs/wasmtime/2.0.0/wasmtime/struct.Config.html#method.wasm_backtraceConfig::wasm_backtrace_details: https://docs.rs/wasmtime/2.0.0/wasmtime/struct.Config.html#method.wasm_backtrace_details
Past discussions on wasmi execution debugging: https://github.com/paritytech/wasmi/issues/28
It might be a better idea to generate a coredump on trap. Then the debug information doesn't need to be attached to the wasm binary and parsed by wasmi. That's one of the debug modes that is supported by wasmtime and wasmer.
Would you be interested in me sponsoring your work on this issue? I'm making Firefly Zero, a wasmi-powered handheld game console, and tracebacks is the most requested feature gamedevs have so far. With the current implementation, if a trap occurs, I can only provide information about the guest function that failed and the last called host function.
Hi @orsinium, very cool to hear about Firefly Zero and that it uses Wasmi. :) I absolutely love the mascot and the idea.
I personally have not yet taken a look into the technical aspects of coredumps and what is going to be necessary for Wasmi to support producing them when encountering a trap but will take a look as I think it is a very valuable addition to Wasmi.
What do you mean by sponsoring exactly? Implementing it yourself and sponsoring a PR? (great if it meets the quality) Or sponsoring this feature monetarily for me to implement?
Implementing it yourself and sponsoring a PR? (great if it meets the quality) Or sponsoring this feature monetarily for me to implement?
The latter. I looked around to see if there is a link to financially sponsor you or wasmi and haven't found any. I want to support the most important project that powers Firefly Zero, especially if it can bring closer some of the important features like the one in question.
I could also look into implementing coredumps for wasmi myself but I'll have the capacity only in October.
I personally have not yet taken a look into the technical aspects of coredumps and what is going to be necessary for Wasmi to support producing them
It shouldn't be that hard! This repo contains some Rust libraries and tools:
https://github.com/xtuc/wasm-coredump
The most important one for us is wasm-coredump-builder:
https://docs.rs/wasm-coredump-builder/0.1.22/wasm_coredump_builder/
The docs above have a code example:
let mut coredump_builder = wasm_coredump_builder::CoredumpBuilder::new()
.executable_name("/usr/bin/true.exe");
{
let mut thread_builder = wasm_coredump_builder::ThreadBuilder::new()
.thread_name("main");
let coredump_frame = wasm_coredump_builder::FrameBuilder::new()
.codeoffset(123)
.funcidx(6)
.build();
thread_builder.add_frame(coredump_frame);
coredump_builder.add_thread(thread_builder.build());
}
let coredump = coredump_builder.serialize().unwrap();
So, all you need to provide it is the instruction and function offset for each frame in the trace. Then people can use wasmgdb from the same repo to map the coredump to a DWARF to produce a proper traceback.
Interesting, just today I was thinking about making use of GitHub sponsoring system but wasn't sure if anybody would actually use it. 🤔 Need to think about it.
Thanks for the wasm_coredump_builder link. Looks simple, indeed. Unfortunately it looks as if it does not (yet) support no_std and thus cannot be used in Wasmi unless std mode is enabled. This is probably natural since it creates files, but technically a coredump could be stored differently on no_std platforms, I wonder how or if there was a good proven alternative or if the solution is to just not do anything as is the case right now.
It's not that hard to add no_std support in there! There is not that much code, and seems like only std::io::Write is used not out of core or alloc. I've opened an issue: https://github.com/xtuc/wasm-coredump/issues/6
I drafted a PR for lb128 as well:
https://github.com/gimli-rs/leb128/pull/26
It's not as pretty as I wish it was and there are a few small things left to implement. Let's see what the Gimli core team folks say.
- Bad news: none of that is merged yet.
- Good news: I gave a shot to implementing coredumps encoding from scratch, with less allocations and no_std, and it's under 100 lines of code.
- Bad news: I use wasm_encoder so far, and it's not no_std, see https://github.com/paritytech/polkadot-sdk/issues/118. I might need to write all the needed bytes directly.
Hi @orsinium,
that's pretty cool news! Looking forward to see a PR. :) Maybe together we can hash out some plans how to deal with the TODOs you mentioned.
I think the Bytecode Alliance is more open to no_std than they were back in 2022. So maybe this is closer to reality than it looks. They are currently trying to get no_std support in many of their tools and even Cranelift.
I managed to drop wasm_encoder! Now the whole thing is 126 lines. I'll test it next week and then it's ready.
The code is ready! With a few quick tests, it seems like my implementation works even better than wasm-coredump-builder. I've made it no_std, zero-dependency, with far fewer allocations, and even found and fixed a few bugs along the way.
Now, how do you want to proceed? I can make a separate repo and crate or we can keep things simple and put it right into wasmi. I don't mind either option, I do it not for fame.
I'm also looking for this functionality-- @orsinium is it possible for you to upload your fork/PR?
Yes! I think the best is if I send a PR into wasmi adding a module with all the helpers and stuff for generating coredump. Then @Robbepop or someone else with better knowledge of wasmi internals can integrate it into trap reports in wasmi core itself.
Having support for backtraces would be great for debugging and help lots of Wasmi users.
If it has overhead we might have to put it behind a crate feature.
The only requirements I have is that it is cross-platform and no_std compatible but from past discussions it looks as if that is the case with your implementation.
If it requires std we might still be able to make use of it but a no_std implementation is to be preferred imo.
Yes, it's no_std. If we construct the coredump only on demand, it's zero overhead for the execution runtime. Tracking the current stacktrace, however, will have some overhead if it's not done already. The good thing is that we are flexible about what info we put into the coredump. The initial implementation might have not the whole traceback bu only the offset of the instruction that caused the trap, which should be possible to calculate with the current implementation without tracking any additional info.
Okay I am curious. Best to file a PR and we will see from there what to do.