From 58e3e5d957b7b1b2b166bdd9452778387427116a Mon Sep 17 00:00:00 2001
From: Dan Gohman <dev@sunfishcode.online>
Date: Thu, 20 Jul 2023 10:24:41 -0700
Subject: [PATCH] Remove the device and inode numbers from the API.

As discussed [here], remove the fields which correspond to `st_dev`, `st_ino`,
and `d_ino` in POSIX from the stat and directory entry structs.

 - Device numbers assume the existence of a global device number space,
   which creates implicit relationships between otherwise unrelated
   components.

 - Not all filesystem implementations have these numbers. And some that
   do have these numbers require extra implementation cost to retrieve them.

 - These numbers leak potentially sensitive or identifying information from the
   underlying filesystem implementation.

In their place, provide some functions, `is-same-object`,
`metadata-hash`, and `metadata-hash-at`, for explicitly testing whether two
handles are the same file or have the same metadata, respectively. This doesn't
cover all possible use cases for device and inode numbers, but we can
add more functions as need arises.

[here]: #65 (comment)
---
 example-world.md | 486 +++++++++++++++++++++++++----------------------
 1 file changed, 258 insertions(+), 228 deletions(-)

diff --git a/example-world.md b/example-world.md
index 9920763..a45e65d 100644
--- a/example-world.md
+++ b/example-world.md
@@ -71,21 +71,6 @@ when it does, they are expected to subsume this API.</p>
 <p>An error type returned from a stream operation. Currently this
 doesn't provide any additional information.</p>
 <h5>Record Fields</h5>
-<h4><a name="output_stream"><code>type output-stream</code></a></h4>
-<p><code>u32</code></p>
-<p>An output bytestream. In the future, this will be replaced by handle
-types.
-<p>This conceptually represents a <code>stream&lt;u8, _&gt;</code>. It's temporary
-scaffolding until component-model's async features are ready.</p>
-<p><a href="#output_stream"><code>output-stream</code></a>s are <em>non-blocking</em> to the extent practical on
-underlying platforms. Except where specified otherwise, I/O operations also
-always return promptly, after the number of bytes that can be written
-promptly, which could even be zero. To wait for the stream to be ready to
-accept data, the <a href="#subscribe_to_output_stream"><code>subscribe-to-output-stream</code></a> function to obtain a
-<a href="#pollable"><code>pollable</code></a> which can be polled for using <code>wasi_poll</code>.</p>
-<p>And at present, it is a <code>u32</code> instead of being an actual handle, until
-the wit-bindgen implementation of handles and resources is ready.</p>
-<p>This <a href="https://github.com/WebAssembly/WASI/blob/main/docs/WitInWasi.md#Resources">represents a resource</a>.</p>
 <h4><a name="input_stream"><code>type input-stream</code></a></h4>
 <p><code>u32</code></p>
 <p>An input bytestream. In the future, this will be replaced by handle
@@ -101,6 +86,21 @@ can be polled for using <code>wasi_poll</code>.</p>
 <p>And at present, it is a <code>u32</code> instead of being an actual handle, until
 the wit-bindgen implementation of handles and resources is ready.</p>
 <p>This <a href="https://github.com/WebAssembly/WASI/blob/main/docs/WitInWasi.md#Resources">represents a resource</a>.</p>
+<h4><a name="output_stream"><code>type output-stream</code></a></h4>
+<p><code>u32</code></p>
+<p>An output bytestream. In the future, this will be replaced by handle
+types.
+<p>This conceptually represents a <code>stream&lt;u8, _&gt;</code>. It's temporary
+scaffolding until component-model's async features are ready.</p>
+<p><a href="#output_stream"><code>output-stream</code></a>s are <em>non-blocking</em> to the extent practical on
+underlying platforms. Except where specified otherwise, I/O operations also
+always return promptly, after the number of bytes that can be written
+promptly, which could even be zero. To wait for the stream to be ready to
+accept data, the <a href="#subscribe_to_output_stream"><code>subscribe-to-output-stream</code></a> function to obtain a
+<a href="#pollable"><code>pollable</code></a> which can be polled for using <code>wasi_poll</code>.</p>
+<p>And at present, it is a <code>u32</code> instead of being an actual handle, until
+the wit-bindgen implementation of handles and resources is ready.</p>
+<p>This <a href="https://github.com/WebAssembly/WASI/blob/main/docs/WitInWasi.md#Resources">represents a resource</a>.</p>
 <hr />
 <h3>Functions</h3>
 <h4><a name="read"><code>read: func</code></a></h4>
@@ -377,7 +377,108 @@ underlying filesystem, the function fails with <a href="#error_code.not_permitte
 #### <a name="datetime">`type datetime`</a>
 [`datetime`](#datetime)
 <p>
-#### <a name="path_flags">`flags path-flags`</a>
+#### <a name="filesize">`type filesize`</a>
+`u64`
+<p>File size or length of a region within a file.
+<h4><a name="descriptor_type"><code>enum descriptor-type</code></a></h4>
+<p>The type of a filesystem object referenced by a descriptor.</p>
+<p>Note: This was called <code>filetype</code> in earlier versions of WASI.</p>
+<h5>Enum Cases</h5>
+<ul>
+<li>
+<p><a name="descriptor_type.unknown"><code>unknown</code></a></p>
+<p>The type of the descriptor or file is unknown or is different from
+any of the other types specified.
+</li>
+<li>
+<p><a name="descriptor_type.block_device"><code>block-device</code></a></p>
+<p>The descriptor refers to a block device inode.
+</li>
+<li>
+<p><a name="descriptor_type.character_device"><code>character-device</code></a></p>
+<p>The descriptor refers to a character device inode.
+</li>
+<li>
+<p><a name="descriptor_type.directory"><code>directory</code></a></p>
+<p>The descriptor refers to a directory inode.
+</li>
+<li>
+<p><a name="descriptor_type.fifo"><code>fifo</code></a></p>
+<p>The descriptor refers to a named pipe.
+</li>
+<li>
+<p><a name="descriptor_type.symbolic_link"><code>symbolic-link</code></a></p>
+<p>The file refers to a symbolic link inode.
+</li>
+<li>
+<p><a name="descriptor_type.regular_file"><code>regular-file</code></a></p>
+<p>The descriptor refers to a regular file inode.
+</li>
+<li>
+<p><a name="descriptor_type.socket"><code>socket</code></a></p>
+<p>The descriptor refers to a socket.
+</li>
+</ul>
+<h4><a name="descriptor_flags"><code>flags descriptor-flags</code></a></h4>
+<p>Descriptor flags.</p>
+<p>Note: This was called <code>fdflags</code> in earlier versions of WASI.</p>
+<h5>Flags members</h5>
+<ul>
+<li>
+<p><a name="descriptor_flags.read"><a href="#read"><code>read</code></a></a>: </p>
+<p>Read mode: Data can be read.
+</li>
+<li>
+<p><a name="descriptor_flags.write"><a href="#write"><code>write</code></a></a>: </p>
+<p>Write mode: Data can be written to.
+</li>
+<li>
+<p><a name="descriptor_flags.non_blocking"><code>non-blocking</code></a>: </p>
+<p>Requests non-blocking operation.
+<p>When this flag is enabled, functions may return immediately with an
+<a href="#error_code.would_block"><code>error-code::would-block</code></a> error code in situations where they would
+otherwise block. However, this non-blocking behavior is not
+required. Implementations are permitted to ignore this flag and
+block. This is similar to <code>O_NONBLOCK</code> in POSIX.</p>
+</li>
+<li>
+<p><a name="descriptor_flags.file_integrity_sync"><code>file-integrity-sync</code></a>: </p>
+<p>Request that writes be performed according to synchronized I/O file
+integrity completion. The data stored in the file and the file's
+metadata are synchronized. This is similar to `O_SYNC` in POSIX.
+<p>The precise semantics of this operation have not yet been defined for
+WASI. At this time, it should be interpreted as a request, and not a
+requirement.</p>
+</li>
+<li>
+<p><a name="descriptor_flags.data_integrity_sync"><code>data-integrity-sync</code></a>: </p>
+<p>Request that writes be performed according to synchronized I/O data
+integrity completion. Only the data stored in the file is
+synchronized. This is similar to `O_DSYNC` in POSIX.
+<p>The precise semantics of this operation have not yet been defined for
+WASI. At this time, it should be interpreted as a request, and not a
+requirement.</p>
+</li>
+<li>
+<p><a name="descriptor_flags.requested_write_sync"><code>requested-write-sync</code></a>: </p>
+<p>Requests that reads be performed at the same level of integrety
+requested for writes. This is similar to `O_RSYNC` in POSIX.
+<p>The precise semantics of this operation have not yet been defined for
+WASI. At this time, it should be interpreted as a request, and not a
+requirement.</p>
+</li>
+<li>
+<p><a name="descriptor_flags.mutate_directory"><code>mutate-directory</code></a>: </p>
+<p>Mutating directories mode: Directory contents may be mutated.
+<p>When this flag is unset on a descriptor, operations using the
+descriptor which would create, rename, delete, modify the data or
+metadata of filesystem objects, or obtain another handle which
+would permit any of those, shall fail with <a href="#error_code.read_only"><code>error-code::read-only</code></a> if
+they would otherwise succeed.</p>
+<p>This may only be set on directories.</p>
+</li>
+</ul>
+<h4><a name="path_flags"><code>flags path-flags</code></a></h4>
 <p>Flags determining the method of how paths are resolved.</p>
 <h5>Flags members</h5>
 <ul>
@@ -427,15 +528,84 @@ filesystem.
 filesystem. This does not apply to directories.
 </li>
 </ul>
+<h4><a name="access_type"><code>variant access-type</code></a></h4>
+<p>Access type used by <a href="#access_at"><code>access-at</code></a>.</p>
+<h5>Variant Cases</h5>
+<ul>
+<li>
+<p><a name="access_type.access"><code>access</code></a>: <a href="#modes"><a href="#modes"><code>modes</code></a></a></p>
+<p>Test for readability, writeability, or executability.
+</li>
+<li>
+<p><a name="access_type.exists"><code>exists</code></a></p>
+<p>Test whether the path exists.
+</li>
+</ul>
 <h4><a name="link_count"><code>type link-count</code></a></h4>
 <p><code>u64</code></p>
 <p>Number of hard links to an inode.
-<h4><a name="inode"><code>type inode</code></a></h4>
-<p><code>u64</code></p>
-<p>Filesystem object serial number that is unique within its file system.
-<h4><a name="filesize"><code>type filesize</code></a></h4>
-<p><code>u64</code></p>
-<p>File size or length of a region within a file.
+<h4><a name="descriptor_stat"><code>record descriptor-stat</code></a></h4>
+<p>File attributes.</p>
+<p>Note: This was called <code>filestat</code> in earlier versions of WASI.</p>
+<h5>Record Fields</h5>
+<ul>
+<li>
+<p><a name="descriptor_stat.type"><code>type</code></a>: <a href="#descriptor_type"><a href="#descriptor_type"><code>descriptor-type</code></a></a></p>
+<p>File type.
+</li>
+<li>
+<p><a name="descriptor_stat.link_count"><a href="#link_count"><code>link-count</code></a></a>: <a href="#link_count"><a href="#link_count"><code>link-count</code></a></a></p>
+<p>Number of hard links to the file.
+</li>
+<li>
+<p><a name="descriptor_stat.size"><code>size</code></a>: <a href="#filesize"><a href="#filesize"><code>filesize</code></a></a></p>
+<p>For regular files, the file size in bytes. For symbolic links, the
+length in bytes of the pathname contained in the symbolic link.
+</li>
+<li>
+<p><a name="descriptor_stat.data_access_timestamp"><code>data-access-timestamp</code></a>: <a href="#datetime"><a href="#datetime"><code>datetime</code></a></a></p>
+<p>Last data access timestamp.
+</li>
+<li>
+<p><a name="descriptor_stat.data_modification_timestamp"><code>data-modification-timestamp</code></a>: <a href="#datetime"><a href="#datetime"><code>datetime</code></a></a></p>
+<p>Last data modification timestamp.
+</li>
+<li>
+<p><a name="descriptor_stat.status_change_timestamp"><code>status-change-timestamp</code></a>: <a href="#datetime"><a href="#datetime"><code>datetime</code></a></a></p>
+<p>Last file status change timestamp.
+</li>
+</ul>
+<h4><a name="new_timestamp"><code>variant new-timestamp</code></a></h4>
+<p>When setting a timestamp, this gives the value to set it to.</p>
+<h5>Variant Cases</h5>
+<ul>
+<li>
+<p><a name="new_timestamp.no_change"><code>no-change</code></a></p>
+<p>Leave the timestamp set to its previous value.
+</li>
+<li>
+<p><a name="new_timestamp.now"><a href="#now"><code>now</code></a></a></p>
+<p>Set the timestamp to the current time of the system clock associated
+with the filesystem.
+</li>
+<li>
+<p><a name="new_timestamp.timestamp"><code>timestamp</code></a>: <a href="#datetime"><a href="#datetime"><code>datetime</code></a></a></p>
+<p>Set the timestamp to the given value.
+</li>
+</ul>
+<h4><a name="directory_entry"><code>record directory-entry</code></a></h4>
+<p>A directory entry.</p>
+<h5>Record Fields</h5>
+<ul>
+<li>
+<p><a name="directory_entry.type"><code>type</code></a>: <a href="#descriptor_type"><a href="#descriptor_type"><code>descriptor-type</code></a></a></p>
+<p>The type of the file referred to by this directory entry.
+</li>
+<li>
+<p><a name="directory_entry.name"><code>name</code></a>: <code>string</code></p>
+<p>The name of the object.
+</li>
+</ul>
 <h4><a name="error_code"><code>enum error-code</code></a></h4>
 <p>Error codes returned by functions, similar to <code>errno</code> in POSIX.
 Not all of these error codes are returned by the functions provided by this
@@ -592,197 +762,6 @@ merely for alignment with POSIX.</p>
 <p>Cross-device link, similar to `EXDEV` in POSIX.
 </li>
 </ul>
-<h4><a name="directory_entry_stream"><code>type directory-entry-stream</code></a></h4>
-<p><code>u32</code></p>
-<p>A stream of directory entries.
-<p>This <a href="https://github.com/WebAssembly/WASI/blob/main/docs/WitInWasi.md#Streams">represents a stream of <code>dir-entry</code></a>.</p>
-<h4><a name="device"><code>type device</code></a></h4>
-<p><code>u64</code></p>
-<p>Identifier for a device containing a file system. Can be used in
-combination with `inode` to uniquely identify a file or directory in
-the filesystem.
-<h4><a name="descriptor_type"><code>enum descriptor-type</code></a></h4>
-<p>The type of a filesystem object referenced by a descriptor.</p>
-<p>Note: This was called <code>filetype</code> in earlier versions of WASI.</p>
-<h5>Enum Cases</h5>
-<ul>
-<li>
-<p><a name="descriptor_type.unknown"><code>unknown</code></a></p>
-<p>The type of the descriptor or file is unknown or is different from
-any of the other types specified.
-</li>
-<li>
-<p><a name="descriptor_type.block_device"><code>block-device</code></a></p>
-<p>The descriptor refers to a block device inode.
-</li>
-<li>
-<p><a name="descriptor_type.character_device"><code>character-device</code></a></p>
-<p>The descriptor refers to a character device inode.
-</li>
-<li>
-<p><a name="descriptor_type.directory"><code>directory</code></a></p>
-<p>The descriptor refers to a directory inode.
-</li>
-<li>
-<p><a name="descriptor_type.fifo"><code>fifo</code></a></p>
-<p>The descriptor refers to a named pipe.
-</li>
-<li>
-<p><a name="descriptor_type.symbolic_link"><code>symbolic-link</code></a></p>
-<p>The file refers to a symbolic link inode.
-</li>
-<li>
-<p><a name="descriptor_type.regular_file"><code>regular-file</code></a></p>
-<p>The descriptor refers to a regular file inode.
-</li>
-<li>
-<p><a name="descriptor_type.socket"><code>socket</code></a></p>
-<p>The descriptor refers to a socket.
-</li>
-</ul>
-<h4><a name="directory_entry"><code>record directory-entry</code></a></h4>
-<p>A directory entry.</p>
-<h5>Record Fields</h5>
-<ul>
-<li>
-<p><a name="directory_entry.inode"><a href="#inode"><code>inode</code></a></a>: option&lt;<a href="#inode"><a href="#inode"><code>inode</code></a></a>&gt;</p>
-<p>The serial number of the object referred to by this directory entry.
-May be none if the inode value is not known.
-<p>When this is none, libc implementations might do an extra <a href="#stat_at"><code>stat-at</code></a>
-call to retrieve the inode number to fill their <code>d_ino</code> fields, so
-implementations which can set this to a non-none value should do so.</p>
-</li>
-<li>
-<p><a name="directory_entry.type"><code>type</code></a>: <a href="#descriptor_type"><a href="#descriptor_type"><code>descriptor-type</code></a></a></p>
-<p>The type of the file referred to by this directory entry.
-</li>
-<li>
-<p><a name="directory_entry.name"><code>name</code></a>: <code>string</code></p>
-<p>The name of the object.
-</li>
-</ul>
-<h4><a name="descriptor_flags"><code>flags descriptor-flags</code></a></h4>
-<p>Descriptor flags.</p>
-<p>Note: This was called <code>fdflags</code> in earlier versions of WASI.</p>
-<h5>Flags members</h5>
-<ul>
-<li>
-<p><a name="descriptor_flags.read"><a href="#read"><code>read</code></a></a>: </p>
-<p>Read mode: Data can be read.
-</li>
-<li>
-<p><a name="descriptor_flags.write"><a href="#write"><code>write</code></a></a>: </p>
-<p>Write mode: Data can be written to.
-</li>
-<li>
-<p><a name="descriptor_flags.non_blocking"><code>non-blocking</code></a>: </p>
-<p>Requests non-blocking operation.
-<p>When this flag is enabled, functions may return immediately with an
-<a href="#error_code.would_block"><code>error-code::would-block</code></a> error code in situations where they would
-otherwise block. However, this non-blocking behavior is not
-required. Implementations are permitted to ignore this flag and
-block. This is similar to <code>O_NONBLOCK</code> in POSIX.</p>
-</li>
-<li>
-<p><a name="descriptor_flags.file_integrity_sync"><code>file-integrity-sync</code></a>: </p>
-<p>Request that writes be performed according to synchronized I/O file
-integrity completion. The data stored in the file and the file's
-metadata are synchronized. This is similar to `O_SYNC` in POSIX.
-<p>The precise semantics of this operation have not yet been defined for
-WASI. At this time, it should be interpreted as a request, and not a
-requirement.</p>
-</li>
-<li>
-<p><a name="descriptor_flags.data_integrity_sync"><code>data-integrity-sync</code></a>: </p>
-<p>Request that writes be performed according to synchronized I/O data
-integrity completion. Only the data stored in the file is
-synchronized. This is similar to `O_DSYNC` in POSIX.
-<p>The precise semantics of this operation have not yet been defined for
-WASI. At this time, it should be interpreted as a request, and not a
-requirement.</p>
-</li>
-<li>
-<p><a name="descriptor_flags.requested_write_sync"><code>requested-write-sync</code></a>: </p>
-<p>Requests that reads be performed at the same level of integrety
-requested for writes. This is similar to `O_RSYNC` in POSIX.
-<p>The precise semantics of this operation have not yet been defined for
-WASI. At this time, it should be interpreted as a request, and not a
-requirement.</p>
-</li>
-<li>
-<p><a name="descriptor_flags.mutate_directory"><code>mutate-directory</code></a>: </p>
-<p>Mutating directories mode: Directory contents may be mutated.
-<p>When this flag is unset on a descriptor, operations using the
-descriptor which would create, rename, delete, modify the data or
-metadata of filesystem objects, or obtain another handle which
-would permit any of those, shall fail with <a href="#error_code.read_only"><code>error-code::read-only</code></a> if
-they would otherwise succeed.</p>
-<p>This may only be set on directories.</p>
-</li>
-</ul>
-<h4><a name="descriptor"><code>type descriptor</code></a></h4>
-<p><code>u32</code></p>
-<p>A descriptor is a reference to a filesystem object, which may be a file,
-directory, named pipe, special file, or other object on which filesystem
-calls may be made.
-<p>This <a href="https://github.com/WebAssembly/WASI/blob/main/docs/WitInWasi.md#Resources">represents a resource</a>.</p>
-<h4><a name="new_timestamp"><code>variant new-timestamp</code></a></h4>
-<p>When setting a timestamp, this gives the value to set it to.</p>
-<h5>Variant Cases</h5>
-<ul>
-<li>
-<p><a name="new_timestamp.no_change"><code>no-change</code></a></p>
-<p>Leave the timestamp set to its previous value.
-</li>
-<li>
-<p><a name="new_timestamp.now"><a href="#now"><code>now</code></a></a></p>
-<p>Set the timestamp to the current time of the system clock associated
-with the filesystem.
-</li>
-<li>
-<p><a name="new_timestamp.timestamp"><code>timestamp</code></a>: <a href="#datetime"><a href="#datetime"><code>datetime</code></a></a></p>
-<p>Set the timestamp to the given value.
-</li>
-</ul>
-<h4><a name="descriptor_stat"><code>record descriptor-stat</code></a></h4>
-<p>File attributes.</p>
-<p>Note: This was called <code>filestat</code> in earlier versions of WASI.</p>
-<h5>Record Fields</h5>
-<ul>
-<li>
-<p><a name="descriptor_stat.device"><a href="#device"><code>device</code></a></a>: <a href="#device"><a href="#device"><code>device</code></a></a></p>
-<p>Device ID of device containing the file.
-</li>
-<li>
-<p><a name="descriptor_stat.inode"><a href="#inode"><code>inode</code></a></a>: <a href="#inode"><a href="#inode"><code>inode</code></a></a></p>
-<p>File serial number.
-</li>
-<li>
-<p><a name="descriptor_stat.type"><code>type</code></a>: <a href="#descriptor_type"><a href="#descriptor_type"><code>descriptor-type</code></a></a></p>
-<p>File type.
-</li>
-<li>
-<p><a name="descriptor_stat.link_count"><a href="#link_count"><code>link-count</code></a></a>: <a href="#link_count"><a href="#link_count"><code>link-count</code></a></a></p>
-<p>Number of hard links to the file.
-</li>
-<li>
-<p><a name="descriptor_stat.size"><code>size</code></a>: <a href="#filesize"><a href="#filesize"><code>filesize</code></a></a></p>
-<p>For regular files, the file size in bytes. For symbolic links, the
-length in bytes of the pathname contained in the symbolic link.
-</li>
-<li>
-<p><a name="descriptor_stat.data_access_timestamp"><code>data-access-timestamp</code></a>: <a href="#datetime"><a href="#datetime"><code>datetime</code></a></a></p>
-<p>Last data access timestamp.
-</li>
-<li>
-<p><a name="descriptor_stat.data_modification_timestamp"><code>data-modification-timestamp</code></a>: <a href="#datetime"><a href="#datetime"><code>datetime</code></a></a></p>
-<p>Last data modification timestamp.
-</li>
-<li>
-<p><a name="descriptor_stat.status_change_timestamp"><code>status-change-timestamp</code></a>: <a href="#datetime"><a href="#datetime"><code>datetime</code></a></a></p>
-<p>Last file status change timestamp.
-</li>
-</ul>
 <h4><a name="advice"><code>enum advice</code></a></h4>
 <p>File or memory access pattern advisory information.</p>
 <h5>Enum Cases</h5>
@@ -818,19 +797,16 @@ in the near future.
 not reuse it thereafter.
 </li>
 </ul>
-<h4><a name="access_type"><code>variant access-type</code></a></h4>
-<p>Access type used by <a href="#access_at"><code>access-at</code></a>.</p>
-<h5>Variant Cases</h5>
-<ul>
-<li>
-<p><a name="access_type.access"><code>access</code></a>: <a href="#modes"><a href="#modes"><code>modes</code></a></a></p>
-<p>Test for readability, writeability, or executability.
-</li>
-<li>
-<p><a name="access_type.exists"><code>exists</code></a></p>
-<p>Test whether the path exists.
-</li>
-</ul>
+<h4><a name="descriptor"><code>type descriptor</code></a></h4>
+<p><code>u32</code></p>
+<p>A descriptor is a reference to a filesystem object, which may be a file,
+directory, named pipe, special file, or other object on which filesystem
+calls may be made.
+<p>This <a href="https://github.com/WebAssembly/WASI/blob/main/docs/WitInWasi.md#Resources">represents a resource</a>.</p>
+<h4><a name="directory_entry_stream"><code>type directory-entry-stream</code></a></h4>
+<p><code>u32</code></p>
+<p>A stream of directory entries.
+<p>This <a href="https://github.com/WebAssembly/WASI/blob/main/docs/WitInWasi.md#Streams">represents a stream of <code>dir-entry</code></a>.</p>
 <hr />
 <h3>Functions</h3>
 <h4><a name="read_via_stream"><code>read-via-stream: func</code></a></h4>
@@ -1051,7 +1027,11 @@ opened for writing.</p>
 </ul>
 <h4><a name="stat"><code>stat: func</code></a></h4>
 <p>Return the attributes of an open file or directory.</p>
-<p>Note: This is similar to <code>fstat</code> in POSIX.</p>
+<p>Note: This is similar to <code>fstat</code> in POSIX, except that it does not return
+device and inode information. For testing whether two descriptors refer to
+the same underlying filesystem object, use <a href="#is_same_object"><code>is-same-object</code></a>. To obtain
+additional data that can be used do determine whether a file has been
+modified, use <a href="#metadata_hash"><code>metadata-hash</code></a>.</p>
 <p>Note: This was called <code>fd_filestat_get</code> in earlier versions of WASI.</p>
 <h5>Params</h5>
 <ul>
@@ -1063,7 +1043,9 @@ opened for writing.</p>
 </ul>
 <h4><a name="stat_at"><code>stat-at: func</code></a></h4>
 <p>Return the attributes of a file or directory.</p>
-<p>Note: This is similar to <code>fstatat</code> in POSIX.</p>
+<p>Note: This is similar to <code>fstatat</code> in POSIX, except that it does not
+return device and inode information. See the <a href="#stat"><code>stat</code></a> description for a
+discussion of alternatives.</p>
 <p>Note: This was called <code>path_filestat_get</code> in earlier versions of WASI.</p>
 <h5>Params</h5>
 <ul>
@@ -1387,6 +1369,54 @@ be used.</p>
 <ul>
 <li><a name="drop_directory_entry_stream.this"><code>this</code></a>: <a href="#directory_entry_stream"><a href="#directory_entry_stream"><code>directory-entry-stream</code></a></a></li>
 </ul>
+<h4><a name="is_same_object"><code>is-same-object: func</code></a></h4>
+<p>Test whether two descriptors refer to the same filesystem object.</p>
+<p>In POSIX, this corresponds to testing whether the two descriptors have the
+same device (<code>st_dev</code>) and inode (<code>st_ino</code> or <code>d_ino</code>) numbers.
+wasi-filesystem does not expose device and inode numbers, so this function
+may be used instead.</p>
+<h5>Params</h5>
+<ul>
+<li><a name="is_same_object.other"><code>other</code></a>: <a href="#descriptor"><a href="#descriptor"><code>descriptor</code></a></a></li>
+</ul>
+<h5>Return values</h5>
+<ul>
+<li><a name="is_same_object.0"></a> <code>bool</code></li>
+</ul>
+<h4><a name="metadata_hash"><code>metadata-hash: func</code></a></h4>
+<p>Return a hash of the metadata associated with a filesystem object referred
+to by a descriptor.</p>
+<p>This returns a hash of the last-modification timestamp and file size, and
+may also include the inode number, device number, birth timestamp, and
+other metadata fields that may change when the file is modified or
+replaced.</p>
+<p>Implementations are encourated to provide the following properties:</p>
+<ul>
+<li>If the file is not modified or replaced, the computed hash value should
+usually not change.</li>
+<li>If the object is modified or replaced, the computed hash value should
+usually change.</li>
+<li>The inputs to the hash should not be easily computable from the
+computed hash.</li>
+</ul>
+<p>However, none of these is required.</p>
+<h5>Return values</h5>
+<ul>
+<li><a name="metadata_hash.0"></a> result&lt;(<code>u64</code>, <code>u64</code>), <a href="#error_code"><a href="#error_code"><code>error-code</code></a></a>&gt;</li>
+</ul>
+<h4><a name="metadata_hash_at"><code>metadata-hash-at: func</code></a></h4>
+<p>Return a hash of the metadata associated with a filesystem object referred
+to by a directory descriptor and a relative path.</p>
+<p>This performs the same hash computation as <a href="#metadata_hash"><code>metadata-hash</code></a>.</p>
+<h5>Params</h5>
+<ul>
+<li><a name="metadata_hash_at.path_flags"><a href="#path_flags"><code>path-flags</code></a></a>: <a href="#path_flags"><a href="#path_flags"><code>path-flags</code></a></a></li>
+<li><a name="metadata_hash_at.path"><code>path</code></a>: <code>string</code></li>
+</ul>
+<h5>Return values</h5>
+<ul>
+<li><a name="metadata_hash_at.0"></a> result&lt;(<code>u64</code>, <code>u64</code>), <a href="#error_code"><a href="#error_code"><code>error-code</code></a></a>&gt;</li>
+</ul>
 <h2><a name="wasi:filesystem_preopens">Import interface wasi:filesystem/preopens</a></h2>
 <hr />
 <h3>Types</h3>