phantom/bitcoin
1
0
Fork 0
mirror of https://github.com/bitcoin/bitcoin.git synced 2025-01-25 10:43:19 -03:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

tests: Add deserialization fuzzing harnesses

Browse source
This commit is contained in:
practicalswift 2019-10-03 14:18:31 +00:00
parent 16f0a186dc
commit 897849d8c2
4 changed files with 359 additions and 108 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

126
src/Makefile.test.include
View file

@ -4,11 +4,15 @@
FUZZ_TARGETS = \ FUZZ_TARGETS = \
test/fuzz/addr_info_deserialize \
test/fuzz/address_deserialize \ test/fuzz/address_deserialize \
test/fuzz/addrman_deserialize \ test/fuzz/addrman_deserialize \
test/fuzz/banentry_deserialize \ test/fuzz/banentry_deserialize \
test/fuzz/bech32 \ test/fuzz/bech32 \
test/fuzz/block_deserialize \ test/fuzz/block_deserialize \
test/fuzz/block_file_info_deserialize \
test/fuzz/block_filter_deserialize \
test/fuzz/block_header_and_short_txids_deserialize \
test/fuzz/blockheader_deserialize \ test/fuzz/blockheader_deserialize \
test/fuzz/blocklocator_deserialize \ test/fuzz/blocklocator_deserialize \
test/fuzz/blockmerkleroot \ test/fuzz/blockmerkleroot \
@ -20,16 +24,30 @@ FUZZ_TARGETS = \
test/fuzz/descriptor_parse \ test/fuzz/descriptor_parse \
test/fuzz/diskblockindex_deserialize \ test/fuzz/diskblockindex_deserialize \
test/fuzz/eval_script \ test/fuzz/eval_script \
test/fuzz/fee_rate_deserialize \
test/fuzz/flat_file_pos_deserialize \
test/fuzz/inv_deserialize \ test/fuzz/inv_deserialize \
test/fuzz/key_origin_info_deserialize \
test/fuzz/merkle_block_deserialize \
test/fuzz/messageheader_deserialize \ test/fuzz/messageheader_deserialize \
test/fuzz/netaddr_deserialize \ test/fuzz/netaddr_deserialize \
test/fuzz/out_point_deserialize \
test/fuzz/parse_iso8601 \ test/fuzz/parse_iso8601 \
test/fuzz/partial_merkle_tree_deserialize \
test/fuzz/partially_signed_transaction_deserialize \
test/fuzz/prefilled_transaction_deserialize \
test/fuzz/psbt \ test/fuzz/psbt \
test/fuzz/psbt_input_deserialize \
test/fuzz/psbt_output_deserialize \
test/fuzz/pub_key_deserialize \
test/fuzz/script \ test/fuzz/script \
test/fuzz/script_deserialize \
test/fuzz/script_flags \ test/fuzz/script_flags \
test/fuzz/service_deserialize \ test/fuzz/service_deserialize \
test/fuzz/spanparsing \ test/fuzz/spanparsing \
test/fuzz/sub_net_deserialize \
test/fuzz/transaction \ test/fuzz/transaction \
test/fuzz/tx_in_deserialize \
test/fuzz/txoutcompressor_deserialize \ test/fuzz/txoutcompressor_deserialize \
test/fuzz/txundo_deserialize test/fuzz/txundo_deserialize
@ -383,6 +401,114 @@ test_fuzz_transaction_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_transaction_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS) test_fuzz_transaction_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_transaction_LDADD = $(FUZZ_SUITE_LD_COMMON) test_fuzz_transaction_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_addr_info_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_addr_info_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DADDR_INFO_DESERIALIZE=1
test_fuzz_addr_info_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_addr_info_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_addr_info_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_block_file_info_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_block_file_info_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DBLOCK_FILE_INFO_DESERIALIZE=1
test_fuzz_block_file_info_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_block_file_info_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_block_file_info_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_block_filter_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_block_filter_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DBLOCK_FILTER_DESERIALIZE=1
test_fuzz_block_filter_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_block_filter_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_block_filter_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_block_header_and_short_txids_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_block_header_and_short_txids_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DBLOCK_HEADER_AND_SHORT_TXIDS_DESERIALIZE=1
test_fuzz_block_header_and_short_txids_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_block_header_and_short_txids_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_block_header_and_short_txids_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_fee_rate_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_fee_rate_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DFEE_RATE_DESERIALIZE=1
test_fuzz_fee_rate_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_fee_rate_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_fee_rate_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_flat_file_pos_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_flat_file_pos_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DFLAT_FILE_POS_DESERIALIZE=1
test_fuzz_flat_file_pos_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_flat_file_pos_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_flat_file_pos_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_key_origin_info_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_key_origin_info_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DKEY_ORIGIN_INFO_DESERIALIZE=1
test_fuzz_key_origin_info_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_key_origin_info_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_key_origin_info_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_merkle_block_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_merkle_block_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DMERKLE_BLOCK_DESERIALIZE=1
test_fuzz_merkle_block_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_merkle_block_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_merkle_block_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_out_point_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_out_point_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DOUT_POINT_DESERIALIZE=1
test_fuzz_out_point_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_out_point_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_out_point_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_partially_signed_transaction_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_partially_signed_transaction_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DPARTIALLY_SIGNED_TRANSACTION_DESERIALIZE=1
test_fuzz_partially_signed_transaction_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_partially_signed_transaction_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_partially_signed_transaction_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_partial_merkle_tree_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_partial_merkle_tree_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DPARTIAL_MERKLE_TREE_DESERIALIZE=1
test_fuzz_partial_merkle_tree_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_partial_merkle_tree_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_partial_merkle_tree_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_prefilled_transaction_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_prefilled_transaction_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DPREFILLED_TRANSACTION_DESERIALIZE=1
test_fuzz_prefilled_transaction_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_prefilled_transaction_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_prefilled_transaction_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_psbt_input_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_psbt_input_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DPSBT_INPUT_DESERIALIZE=1
test_fuzz_psbt_input_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_psbt_input_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_psbt_input_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_psbt_output_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_psbt_output_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DPSBT_OUTPUT_DESERIALIZE=1
test_fuzz_psbt_output_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_psbt_output_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_psbt_output_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_pub_key_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_pub_key_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DPUB_KEY_DESERIALIZE=1
test_fuzz_pub_key_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_pub_key_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_pub_key_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_script_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_script_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DSCRIPT_DESERIALIZE=1
test_fuzz_script_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_script_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_script_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_sub_net_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_sub_net_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DSUB_NET_DESERIALIZE=1
test_fuzz_sub_net_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_sub_net_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_sub_net_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
test_fuzz_tx_in_deserialize_SOURCES = $(FUZZ_SUITE) test/fuzz/deserialize.cpp
test_fuzz_tx_in_deserialize_CPPFLAGS = $(AM_CPPFLAGS) $(BITCOIN_INCLUDES) -DTX_IN_DESERIALIZE=1
test_fuzz_tx_in_deserialize_CXXFLAGS = $(AM_CXXFLAGS) $(PIE_FLAGS)
test_fuzz_tx_in_deserialize_LDFLAGS = $(RELDFLAGS) $(AM_LDFLAGS) $(LIBTOOL_APP_LDFLAGS)
test_fuzz_tx_in_deserialize_LDADD = $(FUZZ_SUITE_LD_COMMON)
endif # ENABLE_FUZZ endif # ENABLE_FUZZ
nodist_test_test_bitcoin_SOURCES = $(GENERATED_TEST_FILES) nodist_test_test_bitcoin_SOURCES = $(GENERATED_TEST_FILES)

318
src/test/fuzz/deserialize.cpp
View file

@ -5,18 +5,24 @@
#include <addrdb.h> #include <addrdb.h>
#include <addrman.h> #include <addrman.h>
#include <blockencodings.h> #include <blockencodings.h>
#include <blockfilter.h>
#include <chain.h> #include <chain.h>
#include <coins.h> #include <coins.h>
#include <compressor.h> #include <compressor.h>
#include <consensus/merkle.h> #include <consensus/merkle.h>
#include <key.h>
#include <merkleblock.h>
#include <net.h> #include <net.h>
#include <primitives/block.h> #include <primitives/block.h>
#include <protocol.h> #include <protocol.h>
#include <psbt.h>
#include <pubkey.h> #include <pubkey.h>
#include <script/keyorigin.h>
#include <streams.h> #include <streams.h>
#include <undo.h> #include <undo.h>
#include <version.h> #include <version.h>
#include <stdexcept>
#include <stdint.h> #include <stdint.h>
#include <unistd.h> #include <unistd.h>
@ -37,129 +43,237 @@ void test_one_input(const std::vector<uint8_t>& buffer)
int nVersion; int nVersion;
ds >> nVersion; ds >> nVersion;
ds.SetVersion(nVersion); ds.SetVersion(nVersion);
} catch (const std::ios_base::failure& e) { } catch (const std::ios_base::failure&) {
return; return;
} }
#if BLOCK_DESERIALIZE #if BLOCK_FILTER_DESERIALIZE
try try {
{ BlockFilter block_filter;
CBlock block; ds >> block_filter;
ds >> block; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif ADDR_INFO_DESERIALIZE
try {
CAddrInfo addr_info;
ds >> addr_info;
} catch (const std::ios_base::failure&) {
}
#elif BLOCK_FILE_INFO_DESERIALIZE
try {
CBlockFileInfo block_file_info;
ds >> block_file_info;
} catch (const std::ios_base::failure&) {
}
#elif BLOCK_HEADER_AND_SHORT_TXIDS_DESERIALIZE
try {
CBlockHeaderAndShortTxIDs block_header_and_short_txids;
ds >> block_header_and_short_txids;
} catch (const std::ios_base::failure&) {
}
#elif FEE_RATE_DESERIALIZE
try {
CFeeRate fee_rate;
ds >> fee_rate;
} catch (const std::ios_base::failure&) {
}
#elif MERKLE_BLOCK_DESERIALIZE
try {
CMerkleBlock merkle_block;
ds >> merkle_block;
} catch (const std::ios_base::failure&) {
}
#elif OUT_POINT_DESERIALIZE
try {
COutPoint out_point;
ds >> out_point;
} catch (const std::ios_base::failure&) {
}
#elif PARTIAL_MERKLE_TREE_DESERIALIZE
try {
CPartialMerkleTree partial_merkle_tree;
ds >> partial_merkle_tree;
} catch (const std::ios_base::failure&) {
}
#elif PUB_KEY_DESERIALIZE
try {
CPubKey pub_key;
ds >> pub_key;
} catch (const std::ios_base::failure&) {
}
#elif SCRIPT_DESERIALIZE
try {
CScript script;
ds >> script;
} catch (const std::ios_base::failure&) {
}
#elif SUB_NET_DESERIALIZE
try {
CSubNet sub_net;
ds >> sub_net;
} catch (const std::ios_base::failure&) {
}
#elif TX_IN_DESERIALIZE
try {
CTxIn tx_in;
ds >> tx_in;
} catch (const std::ios_base::failure&) {
}
#elif FLAT_FILE_POS_DESERIALIZE
try {
FlatFilePos flat_file_pos;
ds >> flat_file_pos;
} catch (const std::ios_base::failure&) {
}
#elif KEY_ORIGIN_INFO_DESERIALIZE
try {
KeyOriginInfo key_origin_info;
ds >> key_origin_info;
} catch (const std::ios_base::failure&) {
}
#elif PARTIALLY_SIGNED_TRANSACTION_DESERIALIZE
try {
PartiallySignedTransaction partially_signed_transaction;
ds >> partially_signed_transaction;
} catch (const std::ios_base::failure&) {
}
#elif PREFILLED_TRANSACTION_DESERIALIZE
try {
PrefilledTransaction prefilled_transaction;
ds >> prefilled_transaction;
} catch (const std::ios_base::failure&) {
}
#elif PSBT_INPUT_DESERIALIZE
try {
PSBTInput psbt_input;
ds >> psbt_input;
} catch (const std::ios_base::failure&) {
}
#elif PSBT_OUTPUT_DESERIALIZE
try {
PSBTOutput psbt_output;
ds >> psbt_output;
} catch (const std::ios_base::failure&) {
}
#elif BLOCK_DESERIALIZE
try {
CBlock block;
ds >> block;
} catch (const std::ios_base::failure&) {
}
#elif BLOCKLOCATOR_DESERIALIZE #elif BLOCKLOCATOR_DESERIALIZE
try try {
{ CBlockLocator bl;
CBlockLocator bl; ds >> bl;
ds >> bl; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif BLOCKMERKLEROOT #elif BLOCKMERKLEROOT
try try {
{ CBlock block;
CBlock block; ds >> block;
ds >> block; bool mutated;
bool mutated; BlockMerkleRoot(block, &mutated);
BlockMerkleRoot(block, &mutated); } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif ADDRMAN_DESERIALIZE #elif ADDRMAN_DESERIALIZE
try try {
{ CAddrMan am;
CAddrMan am; ds >> am;
ds >> am; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif BLOCKHEADER_DESERIALIZE #elif BLOCKHEADER_DESERIALIZE
try try {
{ CBlockHeader bh;
CBlockHeader bh; ds >> bh;
ds >> bh; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif BANENTRY_DESERIALIZE #elif BANENTRY_DESERIALIZE
try try {
{ CBanEntry be;
CBanEntry be; ds >> be;
ds >> be; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif TXUNDO_DESERIALIZE #elif TXUNDO_DESERIALIZE
try try {
{ CTxUndo tu;
CTxUndo tu; ds >> tu;
ds >> tu; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif BLOCKUNDO_DESERIALIZE #elif BLOCKUNDO_DESERIALIZE
try try {
{ CBlockUndo bu;
CBlockUndo bu; ds >> bu;
ds >> bu; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif COINS_DESERIALIZE #elif COINS_DESERIALIZE
try try {
{ Coin coin;
Coin coin; ds >> coin;
ds >> coin; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif NETADDR_DESERIALIZE #elif NETADDR_DESERIALIZE
try try {
{ CNetAddr na;
CNetAddr na; ds >> na;
ds >> na; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif SERVICE_DESERIALIZE #elif SERVICE_DESERIALIZE
try try {
{ CService s;
CService s; ds >> s;
ds >> s; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif MESSAGEHEADER_DESERIALIZE #elif MESSAGEHEADER_DESERIALIZE
CMessageHeader::MessageStartChars pchMessageStart = {0x00, 0x00, 0x00, 0x00}; CMessageHeader::MessageStartChars pchMessageStart = {0x00, 0x00, 0x00, 0x00};
try try {
{ CMessageHeader mh(pchMessageStart);
CMessageHeader mh(pchMessageStart); ds >> mh;
ds >> mh; (void)mh.IsValid(pchMessageStart);
if (!mh.IsValid(pchMessageStart)) {return;} } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif ADDRESS_DESERIALIZE #elif ADDRESS_DESERIALIZE
try try {
{ CAddress a;
CAddress a; ds >> a;
ds >> a; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif INV_DESERIALIZE #elif INV_DESERIALIZE
try try {
{ CInv i;
CInv i; ds >> i;
ds >> i; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif BLOOMFILTER_DESERIALIZE #elif BLOOMFILTER_DESERIALIZE
try try {
{ CBloomFilter bf;
CBloomFilter bf; ds >> bf;
ds >> bf; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif DISKBLOCKINDEX_DESERIALIZE #elif DISKBLOCKINDEX_DESERIALIZE
try try {
{ CDiskBlockIndex dbi;
CDiskBlockIndex dbi; ds >> dbi;
ds >> dbi; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif TXOUTCOMPRESSOR_DESERIALIZE #elif TXOUTCOMPRESSOR_DESERIALIZE
CTxOut to; CTxOut to;
CTxOutCompressor toc(to); CTxOutCompressor toc(to);
try try {
{ ds >> toc;
ds >> toc; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif BLOCKTRANSACTIONS_DESERIALIZE #elif BLOCKTRANSACTIONS_DESERIALIZE
try try {
{ BlockTransactions bt;
BlockTransactions bt; ds >> bt;
ds >> bt; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#elif BLOCKTRANSACTIONSREQUEST_DESERIALIZE #elif BLOCKTRANSACTIONSREQUEST_DESERIALIZE
try try {
{ BlockTransactionsRequest btr;
BlockTransactionsRequest btr; ds >> btr;
ds >> btr; } catch (const std::ios_base::failure&) {
} catch (const std::ios_base::failure& e) {return;} }
#else #else
#error Need at least one fuzz target to compile #error Need at least one fuzz target to compile
#endif #endif

22
src/test/fuzz/transaction.cpp
View file

@ -26,19 +26,31 @@ void test_one_input(const std::vector<uint8_t>& buffer)
int nVersion; int nVersion;
ds >> nVersion; ds >> nVersion;
ds.SetVersion(nVersion); ds.SetVersion(nVersion);
} catch (const std::ios_base::failure& e) { } catch (const std::ios_base::failure&) {
return; return;
} }
bool valid = true; bool valid_tx = true;
const CTransaction tx = [&] { const CTransaction tx = [&] {
try { try {
return CTransaction(deserialize, ds); return CTransaction(deserialize, ds);
} catch (const std::ios_base::failure& e) { } catch (const std::ios_base::failure&) {
valid = false; valid_tx = false;
return CTransaction(); return CTransaction();
} }
}(); }();
if (!valid) { bool valid_mutable_tx = true;
CDataStream ds_mtx(buffer, SER_NETWORK, INIT_PROTO_VERSION);
CMutableTransaction mutable_tx;
try {
int nVersion;
ds_mtx >> nVersion;
ds_mtx.SetVersion(nVersion);
ds_mtx >> mutable_tx;
} catch (const std::ios_base::failure&) {
valid_mutable_tx = false;
}
assert(valid_tx == valid_mutable_tx);
if (!valid_tx) {
return; return;
} }

1
test/fuzz/test_runner.py
View file

@ -22,7 +22,6 @@ FUZZERS_MISSING_CORPORA = [
"flat_file_pos_deserialize", "flat_file_pos_deserialize",
"key_origin_info_deserialize", "key_origin_info_deserialize",
"merkle_block_deserialize", "merkle_block_deserialize",
"mutable_transaction_deserialize",
"out_point_deserialize", "out_point_deserialize",
"partial_merkle_tree_deserialize", "partial_merkle_tree_deserialize",
"partially_signed_transaction_deserialize", "partially_signed_transaction_deserialize",