mirror of
https://github.com/mii443/wasmer.git
synced 2025-12-10 06:38:22 +00:00
74 lines
2.1 KiB
Rust
74 lines
2.1 KiB
Rust
#![no_main]
|
|
|
|
use libfuzzer_sys::{arbitrary, arbitrary::Arbitrary, fuzz_target};
|
|
use std::sync::Arc;
|
|
use wasm_smith::{Config, ConfiguredModule};
|
|
use wasmer::wasmparser::Operator;
|
|
use wasmer::{imports, CompilerConfig, Instance, Module, Store};
|
|
use wasmer_compiler_cranelift::Cranelift;
|
|
use wasmer_engine_universal::Universal;
|
|
use wasmer_middlewares::Metering;
|
|
|
|
#[derive(Arbitrary, Debug, Default, Copy, Clone)]
|
|
struct NoImportsConfig;
|
|
impl Config for NoImportsConfig {
|
|
fn max_imports(&self) -> usize {
|
|
0
|
|
}
|
|
fn max_memory_pages(&self) -> u32 {
|
|
// https://github.com/wasmerio/wasmer/issues/2187
|
|
65535
|
|
}
|
|
fn allow_start_export(&self) -> bool {
|
|
false
|
|
}
|
|
}
|
|
|
|
#[derive(Arbitrary)]
|
|
struct WasmSmithModule(ConfiguredModule<NoImportsConfig>);
|
|
impl std::fmt::Debug for WasmSmithModule {
|
|
fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
|
|
f.write_str(&wasmprinter::print_bytes(self.0.to_bytes()).unwrap())
|
|
}
|
|
}
|
|
|
|
fn cost(operator: &Operator) -> u64 {
|
|
match operator {
|
|
Operator::LocalGet { .. } | Operator::I32Const { .. } => 1,
|
|
Operator::I32Add { .. } => 2,
|
|
_ => 0,
|
|
}
|
|
}
|
|
|
|
fuzz_target!(|module: WasmSmithModule| {
|
|
let wasm_bytes = module.0.to_bytes();
|
|
|
|
if let Ok(path) = std::env::var("DUMP_TESTCASE") {
|
|
use std::fs::File;
|
|
use std::io::Write;
|
|
let mut file = File::create(path).unwrap();
|
|
file.write_all(&wasm_bytes).unwrap();
|
|
return;
|
|
}
|
|
|
|
let mut compiler = Cranelift::default();
|
|
compiler.canonicalize_nans(true);
|
|
compiler.enable_verifier();
|
|
let metering = Arc::new(Metering::new(10, cost));
|
|
compiler.push_middleware(metering);
|
|
let store = Store::new(&Universal::new(compiler).engine());
|
|
let module = Module::new(&store, &wasm_bytes).unwrap();
|
|
match Instance::new(&module, &imports! {}) {
|
|
Ok(_) => {}
|
|
Err(e) => {
|
|
let error_message = format!("{}", e);
|
|
if error_message.starts_with("RuntimeError: ")
|
|
&& error_message.contains("out of bounds")
|
|
{
|
|
return;
|
|
}
|
|
panic!("{}", e);
|
|
}
|
|
}
|
|
});
|