ff8c26b7ef
The compile step that cranelift-fuzzgen does also triggers IR verification. So all bugs that cranelift-fuzzgen-verify could catch are also caught by cranelift-fuzzgen. Removing redundant fuzzers lets us spend limited fuzz-testing CPU time budgets better.
104 lines
2.3 KiB
TOML
104 lines
2.3 KiB
TOML
[package]
|
|
name = "wasmtime-fuzz"
|
|
version = "0.0.0"
|
|
authors = ["The Wasmtime Project Developers"]
|
|
edition = "2021"
|
|
publish = false
|
|
|
|
[package.metadata]
|
|
cargo-fuzz = true
|
|
|
|
[dependencies]
|
|
cranelift-codegen = { path = "../cranelift/codegen" }
|
|
cranelift-reader = { path = "../cranelift/reader" }
|
|
cranelift-wasm = { path = "../cranelift/wasm" }
|
|
cranelift-filetests = { path = "../cranelift/filetests" }
|
|
cranelift-interpreter = { path = "../cranelift/interpreter" }
|
|
cranelift-fuzzgen = { path = "../cranelift/fuzzgen" }
|
|
libfuzzer-sys = "0.4.0"
|
|
target-lexicon = "0.12"
|
|
wasmtime = { path = "../crates/wasmtime" }
|
|
wasmtime-fuzzing = { path = "../crates/fuzzing" }
|
|
|
|
[features]
|
|
default = ['fuzz-spec-interpreter']
|
|
fuzz-spec-interpreter = ['wasmtime-fuzzing/fuzz-spec-interpreter']
|
|
|
|
[[bin]]
|
|
name = "compile"
|
|
path = "fuzz_targets/compile.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
[[bin]]
|
|
name = "instantiate"
|
|
path = "fuzz_targets/instantiate.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
[[bin]]
|
|
name = "api_calls"
|
|
path = "fuzz_targets/api_calls.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
[[bin]]
|
|
name = "differential"
|
|
path = "fuzz_targets/differential.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
[[bin]]
|
|
name = "differential_spec"
|
|
path = "fuzz_targets/differential_spec.rs"
|
|
test = false
|
|
doc = false
|
|
required-features = ['fuzz-spec-interpreter']
|
|
|
|
[[bin]]
|
|
name = "differential_wasmi"
|
|
path = "fuzz_targets/differential_wasmi.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
[[bin]]
|
|
name = "differential_v8"
|
|
path = "fuzz_targets/differential_v8.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
[[bin]]
|
|
name = "spectests"
|
|
path = "fuzz_targets/spectests.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
[[bin]]
|
|
name = "table_ops"
|
|
path = "fuzz_targets/table_ops.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
[[bin]]
|
|
name = "compile-maybe-invalid"
|
|
path = "fuzz_targets/compile-maybe-invalid.rs"
|
|
test = false
|
|
doc = false
|
|
|
|
# FIXME: the cranelift-fuzzgen fuzz targets are temporarily disabled until
|
|
# the crashes they're finding are fixed. One issue is #3347 but otherwise the
|
|
# oss-fuzz bots are reporting a 100% crash rate with these fuzzers so there may
|
|
# be more issues as well. It's recommended to locally run these fuzzers for a
|
|
# few hours locally before re-enabling.
|
|
# [[bin]]
|
|
# name = "cranelift-fuzzgen"
|
|
# path = "fuzz_targets/cranelift-fuzzgen.rs"
|
|
# test = false
|
|
# doc = false
|
|
|
|
[[bin]]
|
|
name = "instantiate-many"
|
|
path = "fuzz_targets/instantiate-many.rs"
|
|
test = false
|
|
doc = false
|