feat(fuzz): enable sanitizers for non-oss-fuzz environment and update README instructions

Author: lum1n0us

tests/fuzz/wasm-mutator-fuzz/CMakeLists.txt

@@ -23,6 +23,12 @@ string(TOLOWER ${CMAKE_HOST_SYSTEM_NAME} WAMR_BUILD_PLATFORM)
 set(CMAKE_SHARED_LIBRARY_LINK_C_FLAGS "")
 set(CMAKE_SHARED_LIBRARY_LINK_CXX_FLAGS "")
 
+# Check if the compiler supports the sanitizer flags
+include(CheckCXXCompilerFlag)
+check_cxx_compiler_flag("-fsanitize=address"   HAS_ADDRESS_SANITIZER)
+check_cxx_compiler_flag("-fsanitize=memory"    HAS_MEMORY_SANITIZER)
+check_cxx_compiler_flag("-fsanitize=undefined" HAS_UNDEFINED_SANITIZER)
+
 # Determine WAMR_BUILD_TARGET based on system properties
 if(NOT DEFINED WAMR_BUILD_TARGET)
   if(CMAKE_SYSTEM_PROCESSOR MATCHES "^(arm64|aarch64)")
@@ -76,6 +82,9 @@ add_definitions(${LLVM_DEFINITIONS_LIST})
 set(SHARED_DIR ${REPO_ROOT_DIR}/core/shared)
 set(IWASM_DIR ${REPO_ROOT_DIR}/core/iwasm)
 
+# Global setting
+add_compile_options(-Wno-unused-command-line-argument)
+
 # Enable fuzzer
 add_definitions(-DWASM_ENABLE_FUZZ_TEST=1)
 add_compile_options(-fsanitize=fuzzer)
@@ -84,17 +93,6 @@ add_link_options(-fsanitize=fuzzer)
 # Enable sanitizers if not in oss-fuzz environment
 set(CFLAGS_ENV $ENV{CFLAGS})
 string(FIND "${CFLAGS_ENV}" "-DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION" IN_OSS_FUZZ)
-if(IN_OSS_FUZZ EQUAL -1)
-  message(STATUS "Enable ASan and UBSan in non-oss-fuzz environment")
-  add_compile_options(
-    -fprofile-instr-generate -fcoverage-mapping
-    -fno-sanitize-recover=all
-    -fsanitize=address,undefined
-    -fsanitize=float-divide-by-zero,unsigned-integer-overflow,local-bounds,nullability
-    -fno-sanitize=alignment
-  )
-  add_link_options(-fsanitize=address -fprofile-instr-generate)
-endif()
 
 add_subdirectory(aot-compiler)
 add_subdirectory(wasm-mutator)

tests/fuzz/wasm-mutator-fuzz/README.md

@@ -2,26 +2,22 @@
 
 ## Install wasm-tools
 
+Download the release suitable for your specific platform from https://github.com/bytecodealliance/wasm-tools/releases/latest, unpack it, and add the executable wasm-tools to the `PATH`. Then, you should be able to verify that the installation was successful by using the following command:
+
 ```bash
-1.git clone https://github.com/bytecodealliance/wasm-tools
-$ cd wasm-tools
-2.This project can be installed and compiled from source with this Cargo command:
-$ cargo install wasm-tools
-3.Installation can be confirmed with:
 $ wasm-tools --version
-4.Subcommands can be explored with:
+# Or learn subcommands with
 $ wasm-tools help
 ```
 
 ## Install clang Toolchain
 
-Refer to: https://apt.llvm.org/ and Make sure you have clang installed.
+Refer to: https://apt.llvm.org/ and ensure that you have clang installed.
 
 ```bash
-$ which clang
-
-$ which clang++
+$ clang --version
 
+$ clang++ --version
 ```
 
 ## Build

tests/fuzz/wasm-mutator-fuzz/aot-compiler/CMakeLists.txt

@@ -148,5 +148,17 @@ target_link_libraries(aotclib
     LLVMWindowsManifest
 )
 
+if(NOT IN_OSS_FUZZ)
+  message(STATUS "Enable ASan and UBSan in non-oss-fuzz environment")
+  target_compile_options(aotclib PUBLIC 
+    -fprofile-instr-generate -fcoverage-mapping
+    -fno-sanitize-recover=all
+    -fsanitize=address,undefined
+    -fsanitize=float-divide-by-zero,unsigned-integer-overflow,local-bounds,nullability
+    -fno-sanitize=alignment
+  )
+  target_link_options(aotclib PUBLIC -fsanitize=address,undefined -fprofile-instr-generate)
+endif()
+
 add_executable(aot_compiler_fuzz aot_compiler_fuzz.cc)
 target_link_libraries(aot_compiler_fuzz PRIVATE stdc++ aotclib)

tests/fuzz/wasm-mutator-fuzz/wasm-mutator/CMakeLists.txt

@@ -55,3 +55,15 @@ target_link_directories(vmlib PUBLIC ${RUNTIME_LIB_LINK_LIST})
 
 add_executable(wasm_mutator_fuzz wasm_mutator_fuzz.cc)
 target_link_libraries(wasm_mutator_fuzz PRIVATE vmlib m)
+
+if(NOT IN_OSS_FUZZ)
+  message(STATUS "Enable ASan and UBSan in non-oss-fuzz environment")
+  target_compile_options(vmlib PUBLIC 
+    -fprofile-instr-generate -fcoverage-mapping
+    -fno-sanitize-recover=all
+    -fsanitize=address,undefined
+    -fsanitize=float-divide-by-zero,unsigned-integer-overflow,local-bounds,nullability
+    -fno-sanitize=alignment
+  )
+  target_link_options(vmlib PUBLIC -fsanitize=address,undefined -fprofile-instr-generate)
+endif()