[KLC-884] Potential code bloat in wasm smart contract deployment (#7)

* Create tests to ensure function constraints * Upgrade wasmer version
klever-io · Jul 30, 2024 · 1700d88 · 1700d88
1 parent 8badd21
commit 1700d88
Show file tree

Hide file tree

Showing 5 changed files with 42 additions and 4 deletions.
diff --git a/vm-executor-wasmer/Cargo.toml b/vm-executor-wasmer/Cargo.toml
@@ -11,15 +11,15 @@ version = "0.2.2"
 path = "../vm-executor"
 
 [dependencies]
-wasmer = { git = "https://github.com/klever-io/wasmer", rev = "480f263", default-features = false, features = [
+wasmer = { git = "https://github.com/klever-io/wasmer", rev = "3ab6ec4", default-features = false, features = [
     "singlepass",
     "sys",
     "universal",
     "wat",
 ] }
 
-wasmer-vm = { git = "https://github.com/klever-io/wasmer", rev = "480f263" }
-wasmer-types = { git = "https://github.com/klever-io/wasmer", rev = "480f263" }
+wasmer-vm = { git = "https://github.com/klever-io/wasmer", rev = "3ab6ec4" }
+wasmer-types = { git = "https://github.com/klever-io/wasmer", rev = "3ab6ec4" }
 
 chrono = "0.4.23"
 log = "0.4.17"

diff --git a/vm-executor-wasmer/tests/assets/code_bloat_attack.wasm b/vm-executor-wasmer/tests/assets/code_bloat_attack.wasm
diff --git a/vm-executor-wasmer/tests/assets/web3-dns.wasm b/vm-executor-wasmer/tests/assets/web3-dns.wasm
diff --git a/vm-executor-wasmer/tests/common/test_instance.rs b/vm-executor-wasmer/tests/common/test_instance.rs
@@ -2,7 +2,7 @@ use klever_chain_vm_executor::{CompilationOptions, ExecutorService, Instance, VM
 use klever_chain_vm_executor_wasmer::BasicExecutorService;
 use wasmer::wat2wasm;
 
-const DUMMY_COMPILATION_OPTIONS: CompilationOptions = CompilationOptions {
+pub const DUMMY_COMPILATION_OPTIONS: CompilationOptions = CompilationOptions {
     gas_limit: 0,
     unmetered_locals: 0,
     max_memory_grow: 0,

diff --git a/vm-executor-wasmer/tests/endpoints_test.rs b/vm-executor-wasmer/tests/endpoints_test.rs
@@ -1,3 +1,11 @@
+use std::fs;
+use std::fs::File;
+use std::io::Read;
+use std::path::PathBuf;
+use klever_chain_vm_executor::{ExecutorService, VMHooksDefault};
+use klever_chain_vm_executor_wasmer::BasicExecutorService;
+use crate::common::DUMMY_COMPILATION_OPTIONS;
+
 mod common;
 
 #[test]
@@ -31,3 +39,33 @@ fn bad_init_result() {
     let instance = common::test_instance(common::BAD_INIT_RESULT);
     assert!(!instance.check_signatures());
 }
+
+#[test]
+fn test_functions_constraints() {
+    // code bloat attack, should fail
+    let bytes = get_file_as_byte_vec("tests/assets/code_bloat_attack.wasm");
+    let service = BasicExecutorService::new();
+    let executor = service.new_executor(Box::new(VMHooksDefault)).unwrap();
+    executor.new_instance(&bytes, &DUMMY_COMPILATION_OPTIONS).err().expect("should fail");
+
+    // web3 dns, should pass
+    let bytes = get_file_as_byte_vec("tests/assets/web3-dns.wasm");
+    let service = BasicExecutorService::new();
+    let executor = service.new_executor(Box::new(VMHooksDefault)).unwrap();
+    executor.new_instance(&bytes, &DUMMY_COMPILATION_OPTIONS).expect("should pass");
+}
+
+fn get_file_as_byte_vec(contract_name: &str) -> Vec<u8> {
+    // relative path from cargo
+    let mut d = PathBuf::from(env!("CARGO_MANIFEST_DIR"));
+    d.push(contract_name);
+    let filename = d.to_str().unwrap().to_string();
+
+    // load contents
+    let mut f = File::open(&filename).expect("no file found");
+    let metadata = fs::metadata(&filename).expect("unable to read metadata");
+    let mut buffer = vec![0; metadata.len() as usize];
+    f.read(&mut buffer).expect("buffer overflow");
+
+    buffer
+}