Nuke the C++ implementation of Zig from orbit using WASI

[andrewrk]

The idea here is to use a small WASI binary as a stage1 kernel that is committed to source control and therefore can be used to build any commit from source. We provide a minimal WASI interpreter implementation that is built from C source, and then used to translate the Zig self-hosted compiler source code into C code. The C code is then compiled & linked, again by the system C compiler, into a stage2 binary. The stage2 binary can then be used repeatedly with zig build to build from source from that point on.

The WASI stage1 blob only needs to be updated when a breaking change or new feature affects the self-hosted compiler when building itself. For example, a bug fix that the self-hosted compiler does not trigger when building itself can be ignored. However, if the bug fix is required for zig to build itself, then the stage1 WASI blob needs to be updated. Similarly when the language is changed and the compiler wants to use the changes to build itself, the blob needs to be updated.

The WASI blob is produced with zig build update-zig1 which uses the LLVM backend to produce a ReleaseSmall binary that targets wasm32-wasi with a CPU of generic+bulk_memory. This produces a 2.6 MiB file. It is then optimized with wasm-opt -Oz --enable-bulk-memory bringing the total down to 2.4 MiB. Finally, it is compressed with zstd, bringing the total down to 655 KB. This is offset by the size of the zstd decoder implementation in C, however it is worth it because the zstd implementation will change rarely if ever, saving a total of 1.8 MiB every time the blob is updated.

I built this branch and master branch from source at the same time and got these results:

compiling from source with `ninja install`,
configured with `-DCMAKE_BUILD_TYPE=Release -DZIG_NO_LIB=ON`:

        master branch: 13m20s with 10.3 GiB peak RSS
wasi-bootstrap branch: 10m53s with  3.2 GiB peak RSS

Big thanks to @jacobly0 who has done significant work on the C backend to enable this possibility, as well as helping write the WASI interpreter and make it go fast, over in the external zig-wasi repo. In fact, after rewriting the interpreter a few times he figured out how to make it run even faster by translating the wasm code to C instead of interpreting it directly.

Closes #5246
Closes #6378
Closes #6485

Prerequisites:

These are already merged inside this branch:

• remove -fstage1 option #13383
• WebAssembly-only fast allocator #13513
• C backend: unblock progress on #13560 #13561
• cbe bug fixes and improvements #13715

Enhancements Needed

Merge blockers:

• make zig1.c detect the host -target and pass correct flags to WASI argv
• avoid hard-coding --color on in CMake
• fix the -target parameter computation in CMake

Nice to have:

• look into compressing zig1.wasm with zstd or gzip and having a mini zstd or gzip decoder in zig1.c
• enhance C backend so it generates fewer bytes of .c code
• enhance C backend so it generates .c code that compiles faster
• enhance C backend so compiling the .c code generates no warnings
• C backend: generate MSVC-compatible code  #13574
• C backend: generate GCC-compatible code #13575

[mlvzk]

A further enhancement may introduce zstd compression, bringing the total down to 655 KB

Idea: you could create and store a dictionary from builds for different commits, so then you can store say a 400 KB dictionary and a 255 KB (likely a lot less) compressed file that uses the dictionary. Only the 255 KB file would change between commits, new binaries would be compressed using the same dictionary.

[misanthrop]

Anyone who would like using it needs to download a C compiler. Why not downloading a "stable" version of Zig compiler instead?
C compilers have tons of dependencies, but Zig is a static binary, so it's more convenient for bootstrapping.
Currently Zig is available for Linux, FreeBSD, Windows and MacOS. Theoretically WASI might unlock compiling from other OS/CPUs. But what are these exotic OS/CPUs and who is going to use them for development instead of cross-compiling from one of supported platforms?

[squeek502]

@misanthrop see #853 (comment) (and related issues like #5246, #6378)

[misanthrop]

@misanthrop see #853 (comment) (and related issues like #5246, #6378)

How the huge WASM blob differs from just a binary blob for package maintainers? Do you think it will be easy to spot a virus injection in the 2.4 MiB of WASM?

[AntonioNoack]

@misanthrop see #853 (comment) (and related issues like #5246, #6378)

Do you think it will be easy to spot a virus injection in the 2.4 MiB of WASM?

No, WASM is (virtual) machine code. Reading it needs decoding first, and then it's just assembly. Checking > 2.4 MB of assembly sounds hard.

[pfgithub]

How the huge WASM blob differ from just a binary blob for package maintainers?

It does not. The plan for now is to temporarily make it harder for package maintainers to bootstrap zig: #6378

Using wasm instead of a binary blob was chosen because wasm is platform-independent, so only one wasm blob is needed to build zig on any platform from source.

[lambdadog]

To clarify, #13383 is still blocked by #6025 but is already merged into this branch, is #6025 considered a blocker for this PR as a result or is the current stage1 planned to be removed before async is in stage2?

[kangalio]

If the goal of the multi-stage, C-based bootstrap process is to prevent Trusting Trust attacks, how it it ok to use an opaque WASM blob as stage1? That blob can't be verified manually, and to recreate it, you already need a working Zig installation. How is this cycle resolved?

[ghost]

If the goal of the multi-stage, C-based bootstrap process is to prevent Trusting Trust attacks,

It's a goal. There are others. The full rationale is explained here.

[ghost]

Good to go. continue to improve it.