T0b1/wasmtime
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #3157 from alexcrichton/centralize-error-handling

Browse Source 
fuzz: Centralize handling instantiation errors
This commit is contained in:
Nick Fitzgerald
2021-08-06 10:38:48 -07:00
committed by GitHub
parent 45896e0533 3bdf6c7a48
commit e5ef1455a3
1 changed files with 42 additions and 78 deletions
Download Patch File Download Diff File Expand all files Collapse all files

120
crates/fuzzing/src/oracles.rs
View File

@@ -13,7 +13,6 @@
pub mod dummy; pub mod dummy;
use arbitrary::Arbitrary; use arbitrary::Arbitrary;
use dummy::dummy_linker;
use log::debug; use log::debug;
use std::sync::atomic::{AtomicUsize, Ordering::SeqCst}; use std::sync::atomic::{AtomicUsize, Ordering::SeqCst};
use std::sync::{Arc, Condvar, Mutex}; use std::sync::{Arc, Condvar, Mutex};
@@ -172,56 +171,48 @@ pub fn instantiate_with_config(
Err(_) if !known_valid => return, Err(_) if !known_valid => return,
Err(e) => panic!("failed to compile module: {:?}", e), Err(e) => panic!("failed to compile module: {:?}", e),
}; };
let linker = match dummy_linker(&mut store, &module) {
Ok(linker) => linker,
Err(e) => {
eprintln!("Warning: failed to create host imports: {:?}", e);
// Currently the only error we want to allow here is ones where we instantiate_with_dummy(&mut store, &module);
// ran out of resources creating imports. For example memory }
// creation may not succeed if the host is running low on resources.
// fn instantiate_with_dummy(store: &mut Store<StoreLimits>, module: &Module) -> Option<Instance> {
// Other errors, however, are bugs in creation of the host resource. // Creation of imports can fail due to resource limit constraints, and then
let string = e.to_string(); // instantiation can naturally fail for a number of reasons as well. Bundle
assert!( // the two steps together to match on the error below.
string.contains("Insufficient resources") let instance =
&& string.contains("exceeds memory limits") dummy::dummy_linker(store, module).and_then(|l| l.instantiate(&mut *store, module));
);
return; let e = match instance {
} Ok(i) => return Some(i),
Err(e) => e,
}; };
match linker.instantiate(&mut store, &module) { // If the instantiation hit OOM for some reason then that's ok, it's
Ok(_) => {} // expected that fuzz-generated programs try to allocate lots of
Err(e) => { // stuff.
// If the instantiation hit OOM for some reason then that's ok, it's if store.data().oom {
// expected that fuzz-generated programs try to allocate lots of return None;
// stuff.
if store.data().oom {
return;
}
// Allow traps which can happen normally with `unreachable` or a
// timeout or such
if e.downcast_ref::<Trap>().is_some() {
return;
}
let string = e.to_string();
// Also allow errors related to fuel consumption
if string.contains("all fuel consumed")
// Currently we instantiate with a `Linker` which can't instantiate
// every single module under the sun due to using name-based resolution
// rather than positional-based resolution
|| string.contains("incompatible import type")
{
return;
}
// Everything else should be a bug in the fuzzer
panic!("failed to instantiate {:?}", e);
}
} }
// Allow traps which can happen normally with `unreachable` or a
// timeout or such
if e.downcast_ref::<Trap>().is_some() {
return None;
}
let string = e.to_string();
// Also allow errors related to fuel consumption
if string.contains("all fuel consumed")
// Currently we instantiate with a `Linker` which can't instantiate
// every single module under the sun due to using name-based resolution
// rather than positional-based resolution
|| string.contains("incompatible import type")
{
return None;
}
// Everything else should be a bug in the fuzzer or a bug in wasmtime
panic!("failed to instantiate {:?}", e);
} }
/// Compile the Wasm buffer, and implicitly fail if we have an unexpected /// Compile the Wasm buffer, and implicitly fail if we have an unexpected
@@ -286,27 +277,9 @@ pub fn differential_execution(
// in and with what values. Like the results of exported functions, // in and with what values. Like the results of exported functions,
// calls to imports should also yield the same values for each // calls to imports should also yield the same values for each
// configuration, and we should assert that. // configuration, and we should assert that.
let linker = match dummy_linker(&mut store, &module) { let instance = match instantiate_with_dummy(&mut store, &module) {
Ok(linker) => linker, Some(instance) => instance,
Err(e) => { None => continue,
eprintln!("Warning: failed to create host imports: {:?}", e);
continue;
}
};
// Don't unwrap this: there can be instantiation-/link-time errors that
// aren't caught during validation or compilation. For example, an imported
// table might not have room for an element segment that we want to
// initialize into it.
let instance = match linker.instantiate(&mut store, &module) {
Ok(instance) => instance,
Err(e) => {
eprintln!(
"Warning: failed to instantiate `wasm-opt -ttf` module: {}",
e
);
continue;
}
}; };
let exports = instance let exports = instance
@@ -462,16 +435,7 @@ pub fn make_api_calls(api: crate::generators::api::ApiCalls) {
}; };
let store = store.as_mut().unwrap(); let store = store.as_mut().unwrap();
let linker = match dummy_linker(store, module) { if let Some(instance) = instantiate_with_dummy(store, module) {
Ok(linker) => linker,
Err(_) => continue,
};
// Don't unwrap this: there can be instantiation-/link-time errors that
// aren't caught during validation or compilation. For example, an imported
// table might not have room for an element segment that we want to
// initialize into it.
if let Ok(instance) = linker.instantiate(store, &module) {
instances.insert(id, instance); instances.insert(id, instance);
} }
} }