mirror of
https://github.com/ethereum/solidity
synced 2023-10-03 13:03:40 +00:00
147 lines
4.6 KiB
C++
147 lines
4.6 KiB
C++
/*
|
|
This file is part of solidity.
|
|
|
|
solidity is free software: you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
(at your option) any later version.
|
|
|
|
solidity is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with solidity. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
#include <test/tools/ossfuzz/yulProto.pb.h>
|
|
#include <test/tools/ossfuzz/protoToYul.h>
|
|
|
|
#include <test/EVMHost.h>
|
|
|
|
#include <test/tools/ossfuzz/YulEvmoneInterface.h>
|
|
|
|
#include <libyul/Exceptions.h>
|
|
|
|
#include <libyul/backends/evm/EVMCodeTransform.h>
|
|
#include <libyul/backends/evm/EVMDialect.h>
|
|
|
|
#include <libevmasm/Instruction.h>
|
|
|
|
#include <liblangutil/EVMVersion.h>
|
|
|
|
#include <evmone/evmone.h>
|
|
|
|
#include <src/libfuzzer/libfuzzer_macro.h>
|
|
|
|
#include <fstream>
|
|
|
|
using namespace solidity;
|
|
using namespace solidity::test;
|
|
using namespace solidity::test::fuzzer;
|
|
using namespace solidity::yul;
|
|
using namespace solidity::yul::test;
|
|
using namespace solidity::yul::test::yul_fuzzer;
|
|
using namespace solidity::langutil;
|
|
using namespace std;
|
|
|
|
static evmc::VM evmone = evmc::VM{evmc_create_evmone()};
|
|
|
|
DEFINE_PROTO_FUZZER(Program const& _input)
|
|
{
|
|
bool filterStatefulInstructions = true;
|
|
bool filterUnboundedLoops = true;
|
|
ProtoConverter converter(
|
|
filterStatefulInstructions,
|
|
filterUnboundedLoops
|
|
);
|
|
string yul_source = converter.programToString(_input);
|
|
// Fuzzer also fuzzes the EVM version field.
|
|
langutil::EVMVersion version = converter.version();
|
|
EVMHost hostContext(version, evmone);
|
|
hostContext.reset();
|
|
|
|
if (const char* dump_path = getenv("PROTO_FUZZER_DUMP_PATH"))
|
|
{
|
|
ofstream of(dump_path);
|
|
of.write(yul_source.data(), static_cast<streamsize>(yul_source.size()));
|
|
}
|
|
|
|
// Do not proceed with tests that are too large. 1200 is an arbitrary
|
|
// threshold.
|
|
if (yul_source.size() > 1200)
|
|
return;
|
|
|
|
YulStringRepository::reset();
|
|
|
|
solidity::frontend::OptimiserSettings settings = solidity::frontend::OptimiserSettings::full();
|
|
settings.runYulOptimiser = false;
|
|
settings.optimizeStackAllocation = false;
|
|
bytes unoptimisedByteCode;
|
|
try
|
|
{
|
|
unoptimisedByteCode = YulAssembler{version, settings, yul_source}.assemble();
|
|
}
|
|
catch (solidity::yul::StackTooDeepError const&)
|
|
{
|
|
return;
|
|
}
|
|
|
|
evmc::result deployResult = YulEvmoneUtility{}.deployCode(unoptimisedByteCode, hostContext);
|
|
if (deployResult.status_code != EVMC_SUCCESS)
|
|
return;
|
|
auto callMessage = YulEvmoneUtility{}.callMessage(deployResult.create_address);
|
|
evmc::result callResult = hostContext.call(callMessage);
|
|
// If the fuzzer synthesized input does not contain the revert opcode which
|
|
// we lazily check by string find, the EVM call should not revert.
|
|
bool noRevertInSource = yul_source.find("revert") == string::npos;
|
|
if (noRevertInSource)
|
|
solAssert(
|
|
callResult.status_code != EVMC_REVERT,
|
|
"SolidityEvmoneInterface: EVM One reverted"
|
|
);
|
|
// Out of gas errors are problematic because it is possible that the
|
|
// optimizer makes them go away, making EVM state impossible to
|
|
// compare in general.
|
|
if (callResult.status_code == EVMC_OUT_OF_GAS)
|
|
return;
|
|
|
|
if (YulEvmoneUtility{}.checkSelfDestructs(hostContext, deployResult.create_address))
|
|
return;
|
|
ostringstream unoptimizedStorage;
|
|
hostContext.print_storage_at(deployResult.create_address, unoptimizedStorage);
|
|
|
|
settings.runYulOptimiser = true;
|
|
settings.optimizeStackAllocation = true;
|
|
bytes optimisedByteCode;
|
|
try
|
|
{
|
|
optimisedByteCode = YulAssembler{version, settings, yul_source}.assemble();
|
|
}
|
|
catch (solidity::yul::StackTooDeepError const&)
|
|
{
|
|
return;
|
|
}
|
|
evmc::result deployResultOpt = YulEvmoneUtility{}.deployCode(optimisedByteCode, hostContext);
|
|
solAssert(
|
|
deployResultOpt.status_code == EVMC_SUCCESS,
|
|
"Evmone: Optimized contract creation failed"
|
|
);
|
|
auto callMessageOpt = YulEvmoneUtility{}.callMessage(deployResultOpt.create_address);
|
|
evmc::result callResultOpt = hostContext.call(callMessageOpt);
|
|
if (noRevertInSource)
|
|
solAssert(
|
|
callResultOpt.status_code != EVMC_REVERT,
|
|
"SolidityEvmoneInterface: EVM One reverted"
|
|
);
|
|
if (YulEvmoneUtility{}.checkSelfDestructs(hostContext, deployResultOpt.create_address))
|
|
return;
|
|
ostringstream optimizedStorage;
|
|
hostContext.print_storage_at(deployResultOpt.create_address, optimizedStorage);
|
|
solAssert(
|
|
unoptimizedStorage.str() == optimizedStorage.str(),
|
|
"Storage of unoptimised and optimised stack reused code do not match."
|
|
);
|
|
}
|