feat(analyze): Replace wasm-bindgen with jco generated bindings

Author: blaine-arcjet

analyze/.gitignore

@@ -133,3 +133,4 @@ dist
 index.js
 index.d.ts
 test/*.js
+_virtual/*.js

analyze/index.ts

@@ -1,79 +1,111 @@
-import initWasm, {
-  detect_bot,
-  generate_fingerprint,
-  is_valid_email,
-  type EmailValidationConfig,
-} from "./wasm/arcjet_analyze_js_req.js";
-
-export { type EmailValidationConfig };
-
-type WasmAPI = {
-  /**
-   * The WASM detect_bot function. Initialized by calling `init()`. Defined at a
-   * class level to avoid having to load the WASM module multiple times.
-   */
-  detectBot: typeof detect_bot;
-  /**
-   * The WASM fingerprint function. Initialized by calling `init()`. Defined at
-   * a class level to avoid having to load the WASM module multiple times.
-   */
-  fingerprint: typeof generate_fingerprint;
-  /**
-   * The WASM email validation function. Initialized by calling `init()`. Defined at
-   * a class level to avoid having to load the WASM module multiple times.
-   */
-  isValidEmail: typeof is_valid_email;
-};
-
-type WasmState = "initialized" | "uninitialized" | "unsupported" | "errored";
-
-let state: WasmState = "uninitialized";
-
-/**
- * Initialize the WASM module. This can be explicitly called after creating
- * the client, but it will be called automatically if it has not been called
- * when the first request is made. This uses a factory-style pattern because
- * the call must be async and the constructor cannot be async.
- */
-async function init(): Promise<WasmAPI | undefined> {
-  if (state === "errored" || state === "unsupported") return;
-
-  if (typeof WebAssembly === "undefined") {
-    state = "unsupported";
-    return;
+import logger from "@arcjet/logger";
+
+import * as core from "./wasm/arcjet_analyze_js_req.component.js";
+import type {
+  ImportObject,
+  EmailValidationConfig,
+  BotDetectionResult,
+  BotType,
+} from "./wasm/arcjet_analyze_js_req.component.js";
+
+// TODO: Do we actually need this wasmCache or does `import` cache correctly?
+const wasmCache = new Map<string, WebAssembly.Module>();
+
+async function moduleFromPath(path: string): Promise<WebAssembly.Module> {
+  const cachedModule = wasmCache.get(path);
+  if (typeof cachedModule !== "undefined") {
+    return cachedModule;
   }
 
-  if (state === "uninitialized") {
-    try {
-      let wasmModule: WebAssembly.Module;
-      // We use `NEXT_RUNTIME` env var to DCE the Node/Browser code in the `else` block
-      // possible values: "edge" | "nodejs" | undefined
-      if (process.env["NEXT_RUNTIME"] === "edge") {
-        const mod = await import(
-          // @ts-expect-error
-          "./wasm/arcjet_analyze_js_req_bg.wasm?module"
-        );
-        wasmModule = mod.default;
-      } else {
-        const { wasm } = await import("./wasm/arcjet.wasm.js");
-        wasmModule = await WebAssembly.compile(await wasm());
-      }
-
-      await initWasm(wasmModule);
-      state = "initialized";
-    } catch (err) {
-      state = "errored";
-      return;
+  if (process.env["NEXT_RUNTIME"] === "edge") {
+    if (path === "arcjet_analyze_js_req.component.core.wasm") {
+      const mod = await import(
+        "./wasm/arcjet_analyze_js_req.component.core.wasm?module"
+      );
+      wasmCache.set(path, mod.default);
+      return mod.default;
+    }
+    if (path === "arcjet_analyze_js_req.component.core2.wasm") {
+      const mod = await import(
+        "./wasm/arcjet_analyze_js_req.component.core2.wasm?module"
+      );
+      wasmCache.set(path, mod.default);
+      return mod.default;
+    }
+    if (path === "arcjet_analyze_js_req.component.core3.wasm") {
+      const mod = await import(
+        "./wasm/arcjet_analyze_js_req.component.core3.wasm?module"
+      );
+      wasmCache.set(path, mod.default);
+      return mod.default;
+    }
+  } else {
+    if (path === "arcjet_analyze_js_req.component.core.wasm") {
+      const { wasm } = await import(
+        "./wasm/arcjet_analyze_js_req.component.core.wasm"
+      );
+      const mod = await wasm();
+      wasmCache.set(path, mod);
+      return mod;
+    }
+    if (path === "arcjet_analyze_js_req.component.core2.wasm") {
+      const { wasm } = await import(
+        "./wasm/arcjet_analyze_js_req.component.core2.wasm"
+      );
+      const mod = await wasm();
+      wasmCache.set(path, mod);
+      return mod;
+    }
+    if (path === "arcjet_analyze_js_req.component.core3.wasm") {
+      const { wasm } = await import(
+        "./wasm/arcjet_analyze_js_req.component.core3.wasm"
+      );
+      const mod = await wasm();
+      wasmCache.set(path, mod);
+      return mod;
     }
   }
 
-  return {
-    detectBot: detect_bot,
-    fingerprint: generate_fingerprint,
-    isValidEmail: is_valid_email,
-  };
+  throw new Error(`Unknown path: ${path}`);
 }
 
+const coreImports: ImportObject = {
+  "arcjet:js-req/logger": {
+    debug(msg) {
+      logger.debug(msg);
+    },
+    error(msg) {
+      logger.error(msg);
+    },
+  },
+};
+
+async function init() {
+  try {
+    return core.instantiate(moduleFromPath, coreImports);
+  } catch {
+    logger.debug("WebAssembly is not supported in this runtime");
+  }
+}
+
+export {
+  type EmailValidationConfig,
+  type BotType,
+  /**
+   * Represents the result of the bot detection.
+   *
+   * @property `botType` - What type of bot this is. This will be one of `BotType`.
+   * @property `botScore` - A score ranging from 0 to 99 representing the degree of
+   * certainty. The higher the number within the type category, the greater the
+   * degree of certainty. E.g. `BotType.Automated` with a score of 1 means we are
+   * sure the request was made by an automated bot. `BotType.LikelyNotABot` with a
+   * score of 30 means we don't think this request was a bot, but it's lowest
+   * confidence level. `BotType.LikelyNotABot` with a score of 99 means we are
+   * almost certain this request was not a bot.
+   */
+  type BotDetectionResult,
+};
+
 /**
  * Generate a fingerprint for the client. This is used to identify the client
  * across multiple requests.
@@ -85,48 +117,37 @@ export async function generateFingerprint(ip: string): Promise<string> {
     return "";
   }
 
-  // We use `NEXT_RUNTIME` env var to DCE the JS fallback code in the `else` block
-  // possible values: "edge" | "nodejs" | undefined
-  if (process.env["NEXT_RUNTIME"] === "edge") {
-    const analyze = await init();
-    // We HAVE to have the WasmAPI in Edge
-    const fingerprint = analyze!.fingerprint(ip);
-    return fingerprint;
-  } else {
-    const analyze = await init();
-    if (typeof analyze !== "undefined") {
-      const fingerprint = analyze.fingerprint(ip);
-      return fingerprint;
-    }
-
-    if (hasSubtleCryptoDigest()) {
-      // Fingerprint v1 is just the IP address
-      const fingerprintRaw = `fp_1_${ip}`;
-
-      // Based on MDN example at
-      // https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/digest#converting_a_digest_to_a_hex_string
+  const analyze = await init();
 
-      // Encode the raw fingerprint into a utf-8 Uint8Array
-      const fingerprintUint8 = new TextEncoder().encode(fingerprintRaw);
-      // Hash the message with SHA-256
-      const fingerprintArrayBuffer = await crypto.subtle.digest(
-        "SHA-256",
-        fingerprintUint8,
-      );
-      // Convert the ArrayBuffer to a byte array
-      const fingerprintArray = Array.from(
-        new Uint8Array(fingerprintArrayBuffer),
-      );
-      // Convert the bytes to a hex string
-      const fingerprint = fingerprintArray
-        .map((b) => b.toString(16).padStart(2, "0"))
-        .join("");
+  if (typeof analyze !== "undefined") {
+    return analyze.generateFingerprint(ip);
+  }
 
-      return fingerprint;
-    }
+  if (hasSubtleCryptoDigest()) {
+    // Fingerprint v1 is just the IP address
+    const fingerprintRaw = `fp_1_${ip}`;
+
+    // Based on MDN example at
+    // https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/digest#converting_a_digest_to_a_hex_string
+
+    // Encode the raw fingerprint into a utf-8 Uint8Array
+    const fingerprintUint8 = new TextEncoder().encode(fingerprintRaw);
+    // Hash the message with SHA-256
+    const fingerprintArrayBuffer = await crypto.subtle.digest(
+      "SHA-256",
+      fingerprintUint8,
+    );
+    // Convert the ArrayBuffer to a byte array
+    const fingerprintArray = Array.from(new Uint8Array(fingerprintArrayBuffer));
+    // Convert the bytes to a hex string
+    const fingerprint = fingerprintArray
+      .map((b) => b.toString(16).padStart(2, "0"))
+      .join("");
 
-    return "";
+    return fingerprint;
   }
+
+  return "";
 }
 
 export async function isValidEmail(
@@ -143,37 +164,20 @@ export async function isValidEmail(
   }
 }
 
-/**
- * Represents the result of the bot detection.
- *
- * @property `bot_type` - What type of bot this is. This will be one of `BotType`.
- * @property `bot_score` - A score ranging from 0 to 99 representing the degree of
- * certainty. The higher the number within the type category, the greater the
- * degree of certainty. E.g. `BotType.Automated` with a score of 1 means we are
- * sure the request was made by an automated bot. `BotType.LikelyNotABot` with a
- * score of 30 means we don't think this request was a bot, but it's lowest
- * confidence level. `BotType.LikelyNotABot` with a score of 99 means we are
- * almost certain this request was not a bot.
- */
-export interface BotResult {
-  bot_type: number;
-  bot_score: number;
-}
-
 export async function detectBot(
   headers: string,
   patterns_add: string,
   patterns_remove: string,
-): Promise<BotResult> {
+): Promise<BotDetectionResult> {
   const analyze = await init();
 
   if (typeof analyze !== "undefined") {
     return analyze.detectBot(headers, patterns_add, patterns_remove);
   } else {
     // TODO: Fallback to JS if we don't have WASM?
     return {
-      bot_type: 1, // NOT_ANALYZED
-      bot_score: 0,
+      botType: "not-analyzed",
+      botScore: 0,
     };
   }
 }

analyze/package.json

@@ -27,6 +27,7 @@
   "files": [
     "LICENSE",
     "README.md",
+    "_virtual/",
     "wasm/",
     "*.js",
     "*.d.ts",
@@ -35,7 +36,8 @@
   ],
   "scripts": {
     "prepublishOnly": "npm run build",
-    "build": "rollup --config rollup.config.js",
+    "jco": "jco transpile wasm/arcjet_analyze_js_req.component.wasm --no-wasi-shim --instantiation async -o wasm",
+    "build": "npm run jco; rollup --config rollup.config.js",
     "lint": "eslint .",
     "pretest": "npm run build",
     "test": "NODE_OPTIONS=--experimental-vm-modules jest --passWithNoTests"
@@ -50,6 +52,7 @@
     "@arcjet/eslint-config": "1.0.0-alpha.9",
     "@arcjet/rollup-config": "1.0.0-alpha.9",
     "@arcjet/tsconfig": "1.0.0-alpha.9",
+    "@bytecodealliance/jco": "1.0.2",
     "@jest/globals": "29.7.0",
     "@rollup/wasm-node": "4.12.1",
     "@types/node": "18.18.0",