sikkienl/dash
1
0
Fork 0
mirror of https://github.com/dashpay/dash.git synced 2024-12-26 20:42:59 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #5144 from vijaydasmp/bp21_11

Browse Source 
backport: Merge bitcoin#18664,18917,18901,18939,18875,19452,19548,19595,20300,20375
This commit is contained in:
PastaPastaPasta 2023-01-23 11:23:08 -06:00 committed by GitHub
commit 02afdfa444
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
12 changed files with 56 additions and 27 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.gitignore vendored
View File

@ -11,7 +11,7 @@ src/dashd
src/dash-cli src/dash-cli
src/dash-tx src/dash-tx
src/dash-wallet src/dash-wallet
src/test/fuzz src/test/fuzz/*
!src/test/fuzz/*.* !src/test/fuzz/*.*
src/test/test_dash src/test/test_dash
src/qt/test/test_dash-qt src/qt/test/test_dash-qt

2
ci/test/00_setup_env_native_fuzz.sh
View File

@ -15,4 +15,4 @@ export RUN_UNIT_TESTS=false
export RUN_INTEGRATION_TESTS=false export RUN_INTEGRATION_TESTS=false
export RUN_FUZZ_TESTS=true export RUN_FUZZ_TESTS=true
export GOAL="install" export GOAL="install"
export BITCOIN_CONFIG="--enable-zmq --disable-ccache --enable-fuzz --with-sanitizers=fuzzer,address,undefined CC=clang CXX=clang++" export BITCOIN_CONFIG="--enable-zmq --disable-ccache --enable-fuzz --with-sanitizers=fuzzer,address,undefined --enable-c++17 CC=clang CXX=clang++"

2
ci/test/00_setup_env_native_fuzz_with_valgrind.sh
View File

@ -14,5 +14,5 @@ export RUN_FUNCTIONAL_TESTS=false
export RUN_FUZZ_TESTS=true export RUN_FUZZ_TESTS=true
export FUZZ_TESTS_CONFIG="--valgrind" export FUZZ_TESTS_CONFIG="--valgrind"
export GOAL="install" export GOAL="install"
export BITCOIN_CONFIG="--enable-fuzz --with-sanitizers=fuzzer CC=clang-8 CXX=clang++-8" export BITCOIN_CONFIG="--enable-fuzz --with-sanitizers=fuzzer --enable-c++17 CC=clang-8 CXX=clang++-8"
# Use clang-8, instead of default clang on bionic, which is clang-6 and does not come with libfuzzer on aarch64 # Use clang-8, instead of default clang on bionic, which is clang-6 and does not come with libfuzzer on aarch64

10
doc/fuzzing.md
View File

@ -8,7 +8,7 @@ To quickly get started fuzzing Dash Core using [libFuzzer](https://llvm.org/docs
$ git clone https://github.com/dashpay/dash $ git clone https://github.com/dashpay/dash
$ cd dash/ $ cd dash/
$ ./autogen.sh $ ./autogen.sh
$ CC=clang CXX=clang++ ./configure --enable-fuzz --with-sanitizers=address,fuzzer,undefined $ CC=clang CXX=clang++ ./configure --enable-fuzz --with-sanitizers=address,fuzzer,undefined --enable-c++17
# macOS users: If you have problem with this step then make sure to read "macOS hints for # macOS users: If you have problem with this step then make sure to read "macOS hints for
# libFuzzer" on https://github.com/dashpay/dash/blob/develop/doc/fuzzing.md#macos-hints-for-libfuzzer # libFuzzer" on https://github.com/dashpay/dash/blob/develop/doc/fuzzing.md#macos-hints-for-libfuzzer
$ make $ make
@ -103,7 +103,7 @@ You may also need to take care of giving the correct path for `clang` and
Full configure that was tested on macOS Catalina with `brew` installed `llvm`: Full configure that was tested on macOS Catalina with `brew` installed `llvm`:
```sh ```sh
./configure --enable-fuzz --with-sanitizers=fuzzer,address,undefined CC=/usr/local/opt/llvm/bin/clang CXX=/usr/local/opt/llvm/bin/clang++ --disable-asm ./configure --enable-fuzz --with-sanitizers=fuzzer,address,undefined CC=/usr/local/opt/llvm/bin/clang CXX=/usr/local/opt/llvm/bin/clang++ --disable-asm --enable-c++17
``` ```
Read the [libFuzzer documentation](https://llvm.org/docs/LibFuzzer.html) for more information. This [libFuzzer tutorial](https://github.com/google/fuzzing/blob/master/tutorial/libFuzzerTutorial.md) might also be of interest. Read the [libFuzzer documentation](https://llvm.org/docs/LibFuzzer.html) for more information. This [libFuzzer tutorial](https://github.com/google/fuzzing/blob/master/tutorial/libFuzzerTutorial.md) might also be of interest.
@ -121,7 +121,9 @@ $ git clone https://github.com/google/afl
$ make -C afl/ $ make -C afl/
$ make -C afl/llvm_mode/ $ make -C afl/llvm_mode/
$ ./autogen.sh $ ./autogen.sh
$ CC=$(pwd)/afl/afl-clang-fast CXX=$(pwd)/afl/afl-clang-fast++ ./configure --enable-fuzz # It is possible to compile with afl-gcc and afl-g++ instead of afl-clang. However, running afl-fuzz
# may require more memory via the -m flag.
$ CC=$(pwd)/afl/afl-clang-fast CXX=$(pwd)/afl/afl-clang-fast++ ./configure --enable-fuzz --enable-c++17
$ make $ make
# For macOS you may need to ignore x86 compilation checks when running "make". If so, # For macOS you may need to ignore x86 compilation checks when running "make". If so,
# try compiling using: AFL_NO_X86=1 make # try compiling using: AFL_NO_X86=1 make
@ -148,7 +150,7 @@ $ git clone https://github.com/google/honggfuzz
$ cd honggfuzz/ $ cd honggfuzz/
$ make $ make
$ cd .. $ cd ..
$ CC=$(pwd)/honggfuzz/hfuzz_cc/hfuzz-clang CXX=$(pwd)/honggfuzz/hfuzz_cc/hfuzz-clang++ ./configure --enable-fuzz --with-sanitizers=address,undefined $ CC=$(pwd)/honggfuzz/hfuzz_cc/hfuzz-clang CXX=$(pwd)/honggfuzz/hfuzz_cc/hfuzz-clang++ ./configure --enable-fuzz --with-sanitizers=address,undefined --enable-c++17
$ make $ make
$ mkdir -p inputs/ $ mkdir -p inputs/
$ FUZZ=process_message honggfuzz/honggfuzz -i inputs/ -- src/test/fuzz/fuzz $ FUZZ=process_message honggfuzz/honggfuzz -i inputs/ -- src/test/fuzz/fuzz

12
src/test/fuzz/asmap_direct.cpp
View File

@ -7,6 +7,7 @@
#include <test/fuzz/fuzz.h> #include <test/fuzz/fuzz.h>
#include <cstddef> #include <cstddef>
#include <optional>
#include <vector> #include <vector>
#include <assert.h> #include <assert.h>
@ -14,20 +15,19 @@
FUZZ_TARGET(asmap_direct) FUZZ_TARGET(asmap_direct)
{ {
// Encoding: [asmap using 1 bit / byte] 0xFF [addr using 1 bit / byte] // Encoding: [asmap using 1 bit / byte] 0xFF [addr using 1 bit / byte]
bool have_sep = false; std::optional<size_t> sep_pos_opt;
size_t sep_pos;
for (size_t pos = 0; pos < buffer.size(); ++pos) { for (size_t pos = 0; pos < buffer.size(); ++pos) {
uint8_t x = buffer[pos]; uint8_t x = buffer[pos];
if ((x & 0xFE) == 0) continue; if ((x & 0xFE) == 0) continue;
if (x == 0xFF) { if (x == 0xFF) {
if (have_sep) return; if (sep_pos_opt) return;
have_sep = true; sep_pos_opt = pos;
sep_pos = pos;
} else { } else {
return; return;
} }
} }
if (!have_sep) return; // Needs exactly 1 separator if (!sep_pos_opt) return; // Needs exactly 1 separator
const size_t sep_pos{sep_pos_opt.value()};
if (buffer.size() - sep_pos - 1 > 128) return; // At most 128 bits in IP address if (buffer.size() - sep_pos - 1 > 128) return; // At most 128 bits in IP address
// Checks on asmap // Checks on asmap

3
src/test/fuzz/descriptor_parse.cpp
View File

@ -12,7 +12,8 @@
void initialize_descriptor_parse() void initialize_descriptor_parse()
{ {
static const ECCVerifyHandle verify_handle; static const ECCVerifyHandle verify_handle;
SelectParams(CBaseChainParams::REGTEST); ECC_Start();
SelectParams(CBaseChainParams::MAIN);
} }
FUZZ_TARGET_INIT(descriptor_parse, initialize_descriptor_parse) FUZZ_TARGET_INIT(descriptor_parse, initialize_descriptor_parse)

6
src/test/fuzz/locale.cpp
View File

File diff suppressed because one or more lines are too long

34
src/test/fuzz/merkleblock.cpp
View File

@ -16,12 +16,36 @@
FUZZ_TARGET(merkleblock) FUZZ_TARGET(merkleblock)
{ {
FuzzedDataProvider fuzzed_data_provider(buffer.data(), buffer.size()); FuzzedDataProvider fuzzed_data_provider(buffer.data(), buffer.size());
std::optional<CPartialMerkleTree> partial_merkle_tree = ConsumeDeserializable<CPartialMerkleTree>(fuzzed_data_provider); CPartialMerkleTree partial_merkle_tree;
if (!partial_merkle_tree) { switch (fuzzed_data_provider.ConsumeIntegralInRange<int>(0, 1)) {
return; case 0: {
const std::optional<CPartialMerkleTree> opt_partial_merkle_tree = ConsumeDeserializable<CPartialMerkleTree>(fuzzed_data_provider);
if (opt_partial_merkle_tree) {
partial_merkle_tree = *opt_partial_merkle_tree;
}
break;
} }
(void)partial_merkle_tree->GetNumTransactions(); case 1: {
CMerkleBlock merkle_block;
const std::optional<CBlock> opt_block = ConsumeDeserializable<CBlock>(fuzzed_data_provider);
CBloomFilter bloom_filter;
std::set<uint256> txids;
if (opt_block && !opt_block->vtx.empty()) {
if (fuzzed_data_provider.ConsumeBool()) {
merkle_block = CMerkleBlock{*opt_block, bloom_filter};
} else if (fuzzed_data_provider.ConsumeBool()) {
while (fuzzed_data_provider.ConsumeBool()) {
txids.insert(ConsumeUInt256(fuzzed_data_provider));
}
merkle_block = CMerkleBlock{*opt_block, txids};
}
}
partial_merkle_tree = merkle_block.txn;
break;
}
}
(void)partial_merkle_tree.GetNumTransactions();
std::vector<uint256> matches; std::vector<uint256> matches;
std::vector<unsigned int> indices; std::vector<unsigned int> indices;
(void)partial_merkle_tree->ExtractMatches(matches, indices); (void)partial_merkle_tree.ExtractMatches(matches, indices);
} }

2
src/test/fuzz/script.cpp
View File

@ -46,7 +46,7 @@ FUZZ_TARGET_INIT(script, initialize_script)
std::vector<unsigned char> compressed; std::vector<unsigned char> compressed;
if (CompressScript(script, compressed)) { if (CompressScript(script, compressed)) {
const unsigned int size = compressed[0]; const unsigned int size = compressed[0];
assert(size >= 0 && size <= 5); assert(size <= 5);
CScript decompressed_script; CScript decompressed_script;
const bool ok = DecompressScript(decompressed_script, size, compressed); const bool ok = DecompressScript(decompressed_script, size, compressed);
assert(ok); assert(ok);

2
src/test/fuzz/scriptnum_ops.cpp
View File

@ -33,7 +33,7 @@ FUZZ_TARGET(scriptnum_ops)
case 0: { case 0: {
const int64_t i = fuzzed_data_provider.ConsumeIntegral<int64_t>(); const int64_t i = fuzzed_data_provider.ConsumeIntegral<int64_t>();
assert((script_num == i) != (script_num != i)); assert((script_num == i) != (script_num != i));
assert((script_num <= i) != script_num > i); assert((script_num <= i) != (script_num > i));
assert((script_num >= i) != (script_num < i)); assert((script_num >= i) != (script_num < i));
// Avoid signed integer overflow: // Avoid signed integer overflow:
// script/script.h:264:93: runtime error: signed integer overflow: -2261405121394637306 + -9223372036854775802 cannot be represented in type 'long' // script/script.h:264:93: runtime error: signed integer overflow: -2261405121394637306 + -9223372036854775802 cannot be represented in type 'long'

6
src/test/fuzz/signature_checker.cpp
View File

@ -27,17 +27,17 @@ public:
{ {
} }
virtual bool CheckSig(const std::vector<unsigned char>& scriptSig, const std::vector<unsigned char>& vchPubKey, const CScript& scriptCode, SigVersion sigversion) const bool CheckSig(const std::vector<unsigned char>& scriptSig, const std::vector<unsigned char>& vchPubKey, const CScript& scriptCode, SigVersion sigversion) const override
{ {
return m_fuzzed_data_provider.ConsumeBool(); return m_fuzzed_data_provider.ConsumeBool();
} }
virtual bool CheckLockTime(const CScriptNum& nLockTime) const bool CheckLockTime(const CScriptNum& nLockTime) const override
{ {
return m_fuzzed_data_provider.ConsumeBool(); return m_fuzzed_data_provider.ConsumeBool();
} }
virtual bool CheckSequence(const CScriptNum& nSequence) const bool CheckSequence(const CScriptNum& nSequence) const override
{ {
return m_fuzzed_data_provider.ConsumeBool(); return m_fuzzed_data_provider.ConsumeBool();
} }

2
src/test/fuzz/system.cpp
View File

@ -85,7 +85,7 @@ FUZZ_TARGET(system)
case 7: { case 7: {
const std::vector<std::string> random_arguments = ConsumeRandomLengthStringVector(fuzzed_data_provider); const std::vector<std::string> random_arguments = ConsumeRandomLengthStringVector(fuzzed_data_provider);
std::vector<const char*> argv; std::vector<const char*> argv;
argv.resize(random_arguments.size()); argv.reserve(random_arguments.size());
for (const std::string& random_argument : random_arguments) { for (const std::string& random_argument : random_arguments) {
argv.push_back(random_argument.c_str()); argv.push_back(random_argument.c_str());
} }