vm: add code generation options

[devsnek]

Checklist

• make -j4 test (UNIX), or vcbuild test (Windows) passes
• tests and/or benchmarks are included
• documentation is changed or added
• commit message follows commit guidelines

Affected core subsystem(s)

vm, src

[addaleax]

Can you use 4 spaces indentation for these lines as well, like other statement continuations?

[addaleax]

Style nit: space after if

[addaleax]

Am I missing something? Shouldn’t this be true? (Or you could probably set the field directly to allowwcg)

[addaleax]

Style nit: Can you make codeGeneration have its own three lines?

[addaleax]

ditto

[bnoordhuis]

Could be just return wcg->IsTrue(); (also below.)

[bnoordhuis]

Apropos the variable names, allow_wasm_code_generation is clearer than allowwcg.

[bnoordhuis]

Naming: allow_code_generation_from_strings

[bnoordhuis]

Likewise: allow_wasm_code_generation

[bnoordhuis]

Make this a static member of ContextifyContext?

[devsnek]

CI https://ci.nodejs.org/job/node-test-pull-request/13382/ https://ci.nodejs.org/job/node-test-pull-request/13385/

also i'm working on some docs now

[devsnek]

CI failures unrelated

@bnoordhuis comments addressed

[bnoordhuis]

Just return wcg->IsUndefined() || wcg->IsTrue();?

Aside: wasm_code_generation, or wasm_code_gen if you think that's too verbose, but no abbrevs.

[bnoordhuis]

Likewise. You don't even need the if.

[bnoordhuis]

Better set it unconditionally because calling GetEmbedderData() on an undefined index is undefined behavior.

[TimothyGu]

A better idea seems to be setting the slot to false unconditionally in NewContext() and then override the value in contextity, since the wasm callback is called on the main context as well.

[devsnek]

i'll do tgu's approach

sidenote @nodejs/v8 is there any reason why we don't have Context::AllowWasmCodeGeneration/can it be added? it seems like the current approach here cause issues for people making native modules and creating a new context under node's isolate? what if someone takes over the callback without realizing that node uses it, etc.

[cjihrig]

If the console.log() is an intended part of the test, can you add a comment. Otherwise, please remove it.

[cjihrig]

This also needs tests for unexpected types of contextCodeGeneration and its properties.

[TimothyGu]

The logic doesn’t currently work when options.contextCodeGeneration is undefined.

[TimothyGu]

The typeof options.contextCodeGeneration === 'object' check should be kept though.

[devsnek]

CI https://ci.nodejs.org/job/node-test-pull-request/13416/

[TimothyGu]

Sorry for keeping going back and forth on this, but we don’t want to allow null here right?

[devsnek]

yea that seems right. I think I accidentally inverted the standard object type check in my head which is why the null is there, I'll fix it

[BridgeAR]

It should be 'Object'. I would also rather combine these validation functions instead of having one for each type.

[devsnek]

how would i combine them

[TimothyGu]

This logic is overly complicated, and would disallow V8 from inlining the typeof check. How it was (one validation function per type) was just fine.

[TimothyGu]

Node.js core shouldn't have to depend on contextify. Please move AllowWasmCodeGeneration to node.cc.

[addaleax]

@TimothyGu I think this was done by an explicit suggestion from @bnoordhuis … is there any specific reason not to do it this way?

[TimothyGu]

Conceptually, AllowWasmCodeGeneration is used for all contexts, not just contexts created by contextify. It feels natural to move this function (which itself doesn't use any contextify-specific machinery) to node.cc.

Sorry for going back and forth on this, I didn't realize @bnoordhuis suggested this way.

[devsnek]

i agree with timothy, but i'm going to wait for my other context pr to get merged before i work on this more

[bnoordhuis]

IIRC, when I made that suggestion, it was only setting it for ContextifyContext objects. It makes sense to move it back now.

[TimothyGu]

nit: move this to before intl_key declaration.

[TimothyGu]

Having the indices this way would make non-VM contexts have a hole at index 1, which doesn't sound too desirable. Also, ditto on the "core should not depend on contextify" comment here.

In other words:

1. Move kAllowWasmCodeGeneration to node_internals.h, and set it to 1. Keep kSandboxObjectIndex here however.
2. Make kSandboxObjectIndex equal to kAllowWasmCodeGeneration + 1.

---

You don't have to fix it now (though you certainly could), but "V8 reserves the first field in context objects for the debugger" is no longer true since v8/v8@5f90a6eb067. This means that kAllowWasmCodeGeneration could just be 0.

Oops, meant to click the "comment" button rather than "approve."

[fhinkel]

Can you please add a few paragraph to the commit message that explain this change. Thanks!

[fhinkel]

We could leave a comment here, that the js part already ensured that we have undefined or an object. Looking only at the C++ part, my first response was that this CHECK would fail a lot.

[devsnek]

this pattern it used a lot with stuff that is validated js-side and we don't leave usually comments, are you worried about something specific not being construed?

[fhinkel]

Should we rather name this function validateObjectOrUndefined?

[devsnek]

none of the others are named like that, and it seems fairly self-explanatory

[devsnek]

landed in cb5f358

[jdalton]

Is there a feature request for this or a usage scenario?

[devsnek]

@jdalton i just have a general agenda of adding as much goodness to vm as possible; i really like vm :D

i also am using this in an eval bot i have in a discord support guild for javascript

[targos]

This is semver-minor, right?

[targos]

Should this be backported to v9.x-staging? If yes please follow the guide and raise a backport PR, if not let me know or add the dont-land-on label.

[devsnek]

looks like 9.x doesn't have v8::Isolate::SetAllowWasmCodeGenerationCallback, maybe it can be cherry picked in?

[gibfahn]

Should be backported with #19440