Test Case
(module
(type (;0;) (func (param i32 i32) (result i32)))
(func (;0;) (type 0) (param i32 i32) (result i32)
local.get 0
local.get 1
i32.shr_s
)
(export "test" (func 0))
)Also see attached files (annoyingly renamed with .txt appended due to GitHub upload restrictions):
Steps to Reproduce
On the abrown:meta-diff branch:
$ RUST_LOG=wasmtime_fuzzing=debug cargo +nightly fuzz run differential-new fuzz/artifacts/differential-new/crash-3be2c01861adcd71b08427e6ad1251de6fb3159b
Expected Results
Execution to match for both the Wasmtime and wasm-spec-interpreter run.
Actual Results
The results of the shift do not match:
[2022-08-10T12:14:39Z DEBUG wasmtime_fuzzing::oracles] Evaluating: test([I32(1795123818), I32(-2147483648)])
[2022-08-10T12:14:39Z DEBUG wasmtime_fuzzing::oracles] -> results on spec: [I32(-2097152)]
[2022-08-10T12:14:39Z DEBUG wasmtime_fuzzing::oracles] -> results on wasmtime: [I32(1795123818)]
Versions and Environment
Wasmtime version or commit: abrown:meta-diff branch
Operating system: Fedora 35
Architecture: x86-64
Other
I am reporting this to clean up any fuzz bugs found before trying to merge #4515. In talking to @alexcrichton, the first reaction seemed to be that this is a bug in the spec interpreter OCaml bindings (after all, Wasmtime passes all spec tests for this kind of simple operation as does the spec interpreter, I assume). @conrad-watt, any thoughts on this?
Test Case
Also see attached files (annoyingly renamed with
.txtappended due to GitHub upload restrictions):Steps to Reproduce
On the
abrown:meta-diffbranch:$ RUST_LOG=wasmtime_fuzzing=debug cargo +nightly fuzz run differential-new fuzz/artifacts/differential-new/crash-3be2c01861adcd71b08427e6ad1251de6fb3159bExpected Results
Execution to match for both the Wasmtime and
wasm-spec-interpreterrun.Actual Results
The results of the shift do not match:
Versions and Environment
Wasmtime version or commit:
abrown:meta-diffbranchOperating system: Fedora 35
Architecture: x86-64
Other
I am reporting this to clean up any fuzz bugs found before trying to merge #4515. In talking to @alexcrichton, the first reaction seemed to be that this is a bug in the spec interpreter OCaml bindings (after all, Wasmtime passes all spec tests for this kind of simple operation as does the spec interpreter, I assume). @conrad-watt, any thoughts on this?