1924039713
* added wip translate_module fuzzer * use local binaryen-rs fork (with shim) for fuzzing * minor doc cleanup * check fuzzer integration via CI * switch back to upstream binaryen-rs; add forgotten integration test directive
742 B
742 B
Fuzzing
This document describes how to fuzz cretonne with cargo-fuzz. The fuzz targets use wasm-opt from binaryen-rs to generate valid WebAssembly modules from the fuzzed input supplied by cargo-fuzz (via libfuzzer). In this scheme coverage feedback from both cretonne and the wasm-opt input generation code is used to inform the fuzzer.
Usage
- Install all dependencies required to build
binaryen-rsandcargo-fuzz(includingcmake) - Use the rust nightly toolchain (required by
cargo-fuzz):rustup override set nightly - Execute the fuzz target:
cargo fuzz run fuzz_translate_module