test/fuzzer/wasm-call.cc - Issue 2444863002: [wasm] Cleanup the wasm-call fuzzer

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: test/fuzzer/wasm-call.cc

Issue 2444863002: [wasm] Cleanup the wasm-call fuzzer (Closed)

Patch Set: Created 4 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: test/fuzzer/wasm-call.cc

diff --git a/test/fuzzer/wasm-call.cc b/test/fuzzer/wasm-call.cc

index 90ed8c9b97db5d8bb970538d92bcd74e142d6d6d..e91dd2752a60871cf9e636999b2f9eaea75193ce 100644

--- a/test/fuzzer/wasm-call.cc

+++ b/test/fuzzer/wasm-call.cc

@@ -8,6 +8,7 @@

#include "include/v8.h"

#include "src/isolate.h"

#include "src/objects.h"

+#include "src/utils.h"

#include "src/wasm/wasm-interpreter.h"

#include "src/wasm/wasm-module-builder.h"

#include "src/wasm/wasm-module.h"

@@ -19,11 +20,6 @@

#define MAX_NUM_FUNCTIONS 3

#define MAX_NUM_PARAMS 3

-#define FUZZER_TYPE_FLOAT32 0

-#define FUZZER_TYPE_FLOAT64 1

-#define FUZZER_TYPE_INT32 2

-#define FUZZER_TYPE_INT64 3

using namespace v8::internal::wasm;

template <typename V>

@@ -32,32 +28,32 @@ static inline V read_value(const uint8_t** data, size_t* size, bool* ok) {

// that a value of type V can be read without problems.

*ok &= (*size > sizeof(V));

if (!(*ok)) return 0;

- V result = *reinterpret_cast<const V*>(*data);

+ V result = v8::internal::ReadLittleEndianValue<V>(*data);

*data += sizeof(V);

*size -= sizeof(V);

return result;

}

static void add_argument(

- v8::internal::Isolate* isolate, uint8_t type, WasmVal* interpreter_args,

+ v8::internal::Isolate* isolate, LocalType type, WasmVal* interpreter_args,

v8::internal::Handle<v8::internal::Object>* compiled_args, int* argc,

const uint8_t** data, size_t* size, bool* ok) {

if (!(*ok)) return;

switch (type) {

- case FUZZER_TYPE_FLOAT32: {

+ case kAstF32: {

float value = read_value<float>(data, size, ok);

interpreter_args[*argc] = WasmVal(value);

compiled_args[*argc] =

isolate->factory()->NewNumber(static_cast<double>(value));

break;

}

- case FUZZER_TYPE_FLOAT64: {

+ case kAstF64: {

double value = read_value<double>(data, size, ok);

interpreter_args[*argc] = WasmVal(value);

compiled_args[*argc] = isolate->factory()->NewNumber(value);

break;

}

- case FUZZER_TYPE_INT32: {

+ case kAstI32: {

int32_t value = read_value<int32_t>(data, size, ok);

interpreter_args[*argc] = WasmVal(value);

compiled_args[*argc] =

@@ -106,9 +102,9 @@ extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {

sig_builder.AddReturn(kAstI32);

for (size_t param = 0; param < num_params; param++) {

// The main function cannot handle int64 parameters.

- uint8_t param_type = (read_value<uint8_t>(&data, &size, &ok) %

- (arraysize(types) - (fun == 0 ? 1 : 0)));

- sig_builder.AddParam(types[param_type]);

+ LocalType param_type = types[(read_value<uint8_t>(&data, &size, &ok) %

+ (arraysize(types) - (fun == 0 ? 1 : 0)))];

+ sig_builder.AddParam(param_type);

if (fun == 0) {

add_argument(i_isolate, param_type, interpreter_args, compiled_args,

&argc, &data, &size, &ok);

« no previous file with comments | « no previous file | no next file » | no next file with comments »