phantom/bitcoin
1
0
Fork 0
mirror of https://github.com/bitcoin/bitcoin.git synced 2025-01-10 11:57:28 -03:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

fuzz: Limit p2p fuzz targets to MAX_PROTOCOL_MESSAGE_LENGTH

Browse source
This commit is contained in:
MarcoFalke 2023-12-14 12:40:17 +01:00
parent 9f0f83d650
commit fa769d3e41
No known key found for this signature in database
2 changed files with 3 additions and 11 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
src/test/fuzz/process_message.cpp
View file

@ -1,4 +1,4 @@
// Copyright (c) 2020-2022 The Bitcoin Core developers // Copyright (c) 2020-present The Bitcoin Core developers
// Distributed under the MIT software license, see the accompanying // Distributed under the MIT software license, see the accompanying
// file COPYING or http://www.opensource.org/licenses/mit-license.php. // file COPYING or http://www.opensource.org/licenses/mit-license.php.
@ -8,9 +8,6 @@
#include <primitives/transaction.h> #include <primitives/transaction.h>
#include <protocol.h> #include <protocol.h>
#include <script/script.h> #include <script/script.h>
#include <serialize.h>
#include <span.h>
#include <streams.h>
#include <sync.h> #include <sync.h>
#include <test/fuzz/FuzzedDataProvider.h> #include <test/fuzz/FuzzedDataProvider.h>
#include <test/fuzz/fuzz.h> #include <test/fuzz/fuzz.h>
@ -20,13 +17,10 @@
#include <test/util/net.h> #include <test/util/net.h>
#include <test/util/setup_common.h> #include <test/util/setup_common.h>
#include <test/util/validation.h> #include <test/util/validation.h>
#include <util/chaintype.h>
#include <util/check.h> #include <util/check.h>
#include <util/time.h> #include <util/time.h>
#include <validation.h>
#include <validationinterface.h> #include <validationinterface.h>
#include <atomic>
#include <cstdlib> #include <cstdlib>
#include <iostream> #include <iostream>
#include <memory> #include <memory>
@ -81,8 +75,7 @@ FUZZ_TARGET(process_message, .init = initialize_process_message)
CSerializedNetMsg net_msg; CSerializedNetMsg net_msg;
net_msg.m_type = random_message_type; net_msg.m_type = random_message_type;
// fuzzed_data_provider is fully consumed after this call, don't use it net_msg.data = ConsumeRandomLengthByteVector(fuzzed_data_provider, MAX_PROTOCOL_MESSAGE_LENGTH);
net_msg.data = fuzzed_data_provider.ConsumeRemainingBytes<unsigned char>();
connman.FlushSendBuffer(p2p_node); connman.FlushSendBuffer(p2p_node);
(void)connman.ReceiveMsgFrom(p2p_node, std::move(net_msg)); (void)connman.ReceiveMsgFrom(p2p_node, std::move(net_msg));

3
src/test/fuzz/process_messages.cpp
View file

@ -16,7 +16,6 @@
#include <test/util/net.h> #include <test/util/net.h>
#include <test/util/setup_common.h> #include <test/util/setup_common.h>
#include <test/util/validation.h> #include <test/util/validation.h>
#include <util/chaintype.h>
#include <util/time.h> #include <util/time.h>
#include <validationinterface.h> #include <validationinterface.h>
@ -72,7 +71,7 @@ FUZZ_TARGET(process_messages, .init = initialize_process_messages)
CSerializedNetMsg net_msg; CSerializedNetMsg net_msg;
net_msg.m_type = random_message_type; net_msg.m_type = random_message_type;
net_msg.data = ConsumeRandomLengthByteVector(fuzzed_data_provider); net_msg.data = ConsumeRandomLengthByteVector(fuzzed_data_provider, MAX_PROTOCOL_MESSAGE_LENGTH);
CNode& random_node = *PickValue(fuzzed_data_provider, peers); CNode& random_node = *PickValue(fuzzed_data_provider, peers);