crash fuzz init

Author: kirjavascript

tests/src/crash.rs

@@ -0,0 +1,97 @@
+use crate::{util, video, playfield};
+
+pub fn fuzz() {
+    let mut emu = util::emulator(Some(util::OG_ROM));
+
+    emu.reset();
+
+    util::run_n_vblanks(&mut emu, 8);
+
+    let p1_score = 0x73;
+    let score = 0x53;
+    let game_mode = 0xC0;
+    let level_number = 0x44;
+    let p1_level_number = 0x64;
+    let lines = 0x50;
+    let p1_lines = 0x70;
+    let main_loop = 0x8138;
+    let x = 0x40;
+    let y = 0x41;
+    let p1_x = 0x60;
+    let p1_y = 0x61;
+    let current_piece = 0x42;
+    let p1_current_piece = 0x62;
+    let auto_repeat_y = 0x4E;
+    let p1_auto_repeat_y = 0x6E;
+    let push_down = 0x4F;
+    let p1_push_down = 0x6F;
+    let render_flags = 0xA3;
+    let clear_count = 0xD8;
+    let play_state = 0x48;
+    let p1_play_state = 0x68;
+
+    emu.memory.iram_raw[game_mode] = 4;
+    emu.registers.pc = main_loop;
+
+    util::run_n_vblanks(&mut emu, 7);
+
+    emu.memory.iram_raw[level_number] = 154;
+    emu.memory.iram_raw[p1_level_number] = 154;
+    emu.memory.iram_raw[lines] = 0x89;
+    emu.memory.iram_raw[lines+1] = 0xE;
+    emu.memory.iram_raw[p1_lines] = 0x89;
+    emu.memory.iram_raw[p1_lines+1] = 0xE;
+    emu.memory.iram_raw[p1_score] = 0x99;
+    emu.memory.iram_raw[p1_score+1] = 0x99;
+    emu.memory.iram_raw[p1_score+2] = 0x99;
+    emu.memory.iram_raw[score] = 0x99;
+    emu.memory.iram_raw[score+1] = 0x99;
+    emu.memory.iram_raw[score+2] = 0x99;
+
+    emu.memory.iram_raw[render_flags] = 7;
+
+    util::run_n_vblanks(&mut emu, 1);
+
+    // playfield::clear(&mut emu);
+
+    playfield::set_str_addr(&mut emu, 0x400, match 1 {
+        0 => "",
+        1 => "##### ####",
+        2 => "##### ####\n##### ####",
+        3 => "##### ####\n##### ####\n##### ####",
+        4 => "##### ####\n##### ####\n##### ####\n##### ####",
+        _ => unreachable!("line"),
+    });
+
+    emu.memory.iram_raw[current_piece] = 0x11;
+    emu.memory.iram_raw[p1_current_piece] = 0x11;
+    emu.memory.iram_raw[x] = 0x5;
+    emu.memory.iram_raw[y] = 0x12;
+    emu.memory.iram_raw[p1_x] = 0x5;
+    emu.memory.iram_raw[p1_y] = 0x12;
+    emu.memory.iram_raw[auto_repeat_y] = 0;
+    emu.memory.iram_raw[p1_auto_repeat_y] = 0;
+    // emu.memory.iram_raw[push_down] = 8;
+    // emu.memory.iram_raw[p1_push_down] = 8;
+    // emu.memory.iram_raw[clear_count] = 9;
+    // emu.memory.iram_raw[clear_count+1] = 5;
+    // emu.memory.iram_raw[clear_count+2] = 5;
+    // emu.memory.iram_raw[clear_count+3] = 5;
+
+    for _ in 0..100 {
+        if emu.memory.iram_raw[play_state] == 5 || emu.memory.iram_raw[p1_play_state] == 5 {
+            break;
+        }
+    println!("{}", emu.registers.pc);
+        emu.run_until_vblank();
+    }
+
+    println!("{}", emu.registers.pc);
+
+    video::preview(&mut emu);
+
+
+    println!("{}", emu.memory.iram_raw[p1_push_down]);
+
+    // uncrash by replacing the PC
+}

tests/src/main.rs

@@ -1,11 +1,13 @@
 mod block;
-mod cycle_count;
 mod input;
 mod labels;
 mod playfield;
 mod util;
 mod video;
 
+mod cycle_count;
+mod crash;
+
 mod drought;
 mod floor;
 mod garbage;
@@ -37,6 +39,8 @@ struct TestOptions {
     test_single: Option<String>,
     #[options(help = "count cycles")]
     cycles: bool,
+    #[options(help = "fuzz crash")]
+    crash: bool,
     #[options(help = "set SPS seed", parse(try_from_str = "parse_hex"))]
     sps_seed: u32,
     #[options(help = "print SPS pieces")]
@@ -88,6 +92,11 @@ fn main() {
         }
     }
 
+    // fuzz crash
+    if options.crash {
+        crash::fuzz();
+    }
+
     // count cycles
     if options.cycles {
         cycle_count::count_cycles();

tests/src/patch.rs

@@ -1,5 +1,5 @@
 pub fn test() {
-    let clean = include_bytes!("../../clean.nes");
+    let clean = crate::util::OG_ROM;
     let patch = include_bytes!("../../tetris.bps");
 
     // check original file hasn't changed

tests/src/playfield.rs

@@ -2,12 +2,20 @@ use rusticnes_core::nes::NesState;
 use crate::labels;
 
 pub fn set(emu: &mut NesState, x: u16, y: u16, value: u8) {
-    let index = ((y * 10) + x) + labels::get("playfield");
+    set_addr(emu, labels::get("playfield"), x, y, value);
+}
+
+pub fn set_addr(emu: &mut NesState, playfield_addr: u16, x: u16, y: u16, value: u8) {
+    let index = ((y * 10) + x) + playfield_addr;
     emu.memory.iram_raw[index as usize] = value;
 }
 
 pub fn get(emu: &NesState, x: u16, y: u16) -> u8 {
-    let index = ((y * 10) + x) + labels::get("playfield");
+    get_addr(emu, labels::get("playfield"), x, y)
+}
+
+pub fn get_addr(emu: &NesState, playfield_addr: u16, x: u16, y: u16) -> u8 {
+    let index = ((y * 10) + x) + playfield_addr;
     emu.memory.iram_raw[index as usize]
 }
 
@@ -20,15 +28,19 @@ pub fn clear(emu: &mut NesState) {
 }
 
 pub fn set_str(emu: &mut NesState, playfield: &str) {
-    set_str_inner(emu, playfield, false);
+    set_str_inner_addr(emu, labels::get("playfield"), playfield, false);
+}
+
+pub fn set_str_addr(emu: &mut NesState, playfield_addr: u16, playfield: &str) {
+    set_str_inner_addr(emu, playfield_addr, playfield, false);
 }
 
 #[allow(dead_code)]
 pub fn set_str_top(emu: &mut NesState, playfield: &str) {
-    set_str_inner(emu, playfield, true);
+    set_str_inner_addr(emu, labels::get("playfield"), playfield, true);
 }
 
-fn set_str_inner(emu: &mut NesState, playfield: &str, top: bool) {
+fn set_str_inner_addr(emu: &mut NesState, playfield_addr: u16, playfield: &str, top: bool) {
     let rows = playfield.trim_start_matches('\n').split("\n").collect::<Vec<_>>();
     let offset = if top {
         0
@@ -37,7 +49,7 @@ fn set_str_inner(emu: &mut NesState, playfield: &str, top: bool) {
     };
     rows.iter().enumerate().for_each(|(y, line)| {
         line.chars().enumerate().for_each(|(x, ch)| {
-            self::set(emu, x as _, offset + y as u16, if ch == '#' { 0x7b } else { 0xef });
+            self::set_addr(emu, playfield_addr, x as _, offset + y as u16, if ch == '#' { 0x7b } else { 0xef });
         });
     });
 

tests/src/util.rs

@@ -3,6 +3,7 @@ use rusticnes_core::{ cartridge, opcodes, opcode_info };
 use crate::{input, labels};
 
 pub static ROM: &'static [u8] = include_bytes!("../../tetris.nes");
+pub static OG_ROM: &'static [u8] = include_bytes!("../../clean.nes");
 
 pub fn rom_data() -> &'static [u8] {
     &ROM[0x10..]