#### Reverse-Engineering Textual WASM

In [1]:
def runpywasm(wasmfile):
    import pywasm
    def write(s, i): print(i, end=' ')
    def writeln(s): print()
    def read(s): return int(input())
    vm = pywasm.load(wasmfile, {'P0lib': {'write': write, 'writeln': writeln, 'read': read}})

In [2]:
import nbimporter; nbimporter.options["only_defs"] = False
from P0 import compileString

Consider the following P0 program:

In [3]:
compileString("""
program max
  var x, y: integer
    x ← read(); y ← read()
    if x > y then write(x) else write(y)
""", 'max.wat')

Display the generated code, either by leaving out the last parameter with the file in the above command or by running `!cat max.wat`:

In [4]:
!cat max.wat

(module
(import "P0lib" "write" (func $write (param i32)))
(import "P0lib" "writeln" (func $writeln))
(import "P0lib" "read" (func $read (result i32)))
(global $_memsize (mut i32) i32.const 0)
(func $program
(local $x i32)
(local $y i32)
(local $0 i32)
call $read
local.set $x
call $read
local.set $y
local.get $x
local.get $y
i32.gt_s
if
local.get $x
call $write
else
local.get $y
call $write
end
)
(memory 1)
(start $program)
)

Now convert the textual WebAssembly file to a binary file and then back again to a textual file:

In [5]:
!wat2wasm max.wat

In [6]:
!wasm2wat max.wasm

(module
  (type (;0;) (func (param i32)))
  (type (;1;) (func))
  (type (;2;) (func (result i32)))
  (import "P0lib" "write" (func (;0;) (type 0)))
  (import "P0lib" "writeln" (func (;1;) (type 1)))
  (import "P0lib" "read" (func (;2;) (type 2)))
  (func (;3;) (type 1)
    (local i32 i32 i32)
    call 2
    local.set 0
    call 2
    local.set 1
    local.get 0
    local.get 1
    i32.gt_s
    if  ;; label = @1
      local.get 0
      call 0
    else
      local.get 1
      call 0
    end)
  (memory (;0;) 1)
  (global (;0;) (mut i32) (i32.const 0))
  (start 3))


##### Part A

What do you observe is the difference between the version that was generated by P0 and the version that is "reverse-engineered" from the binary form?

 - In the binary form, local variables are not referred to by their name but by their index in the list of local variables
 - In the binary form, functions are no called or referred by their name but by their index in the list of function
 - In the binary form, functions does not come with their parameter types but come with their parameter type index

##### Part B

Annotate the reverse-engineered binary form with the corresponding lines of the P0 program!

```
(module
  (type (;0;) (func (param i32)))
  (type (;1;) (func))
  (type (;2;) (func (result i32)))
  (import "P0lib" "write" (func (;0;) (type 0)))
  (import "P0lib" "writeln" (func (;1;) (type 1)))
  (import "P0lib" "read" (func (;2;) (type 2)))
  (func (;3;) (type 1)
    (local i32 i32 i32)    ;; var x, y, and auxiliary local variables
    call 2        ;; x <- read()
    local.set 0
    call 2        ;; y <- read()
    local.set 1
    local.get 0
    local.get 1
    i32.gt_s      ;; if x > y
    if  ;; label = @1
      local.get 0   ;; write(x)
      call 0
    else
      local.get 1   ;; write(y)
      call 0
    end)
  (memory (;0;) 1)
  (global (;0;) (mut i32) (i32.const 0))
  (start 3))        ;; start program
```