Enable unreachable-pub for the interpreter

[charlesxsh]

crates/interpreter/src/toctou.rs:111

pub fn get(xs: &[u8], i: usize) -> u8 {
    #[cfg(not(feature = "toctou"))]
    return unsafe { *xs.get_unchecked(i) };
    #[cfg(feature = "toctou")]
    xs[i]
}

pub fn split_at(xs: &[u8], mid: usize) -> (&[u8], &[u8]) {
    #[cfg(not(feature = "toctou"))]
    return unsafe { xs.split_at_unchecked(mid) };
    #[cfg(feature = "toctou")]
    xs.split_at(mid)
}

Functions get and split_atare public and safe, they accept parameters and used in unsafe functions without sufficient checks (when certain feature flag is set up), which might cause memory risks. In Rust, we should not face any security risks when merely using safe function.

[ia0]

Thanks for the issue!

Functions get and split_atare public and safe

Those functions are not really public. The crate doesn't use the unreachable-pub lint yet (it's a TODO). So even though, these functions use pub, they are semantically pub(crate) because they are not re-exposed by src/lib.rs. If you're open to contribute, it would be a good addition to enable this lint and fix all cases. To start, it suffices to remove interpreter from this line:

wasefire/scripts/sync.sh

Line 47 in e61dec7

interpreter|runner-*|scheduler|xtask|*/fuzz) ;;

And rerun ./scripts/sync.sh, then run ./test.sh in the crates/interpreter directory and fix all reported cases.