You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
It's an initial work towards the goal of #61, it adds a new fuzz crate to the project which is meant to be used to add new fuzz target in order to increase the fuzz coverage.
It's built on top of and with inspiration from previous Antoine's work through the most recent BDK Audit.
So far, this PR:
creates a new fuzz crate with cargo fuzz relying on LibFuzzer engine.
adds an initial fuzz target, which builds and applies an Update to Wallet.
adds both initial fuzzed_data_provider and fuzz_utils with common used fns to build BDK's-specific types from fuzzed bytes.
Still to be done by this PR:
write-up the README.md with instructions for other users.
add helpful bash scripts, to build the environment, and run the existing fuzz targets.
add a new CI step, to briefly run the existing fuzz targets at a certain schedule.
This pull request's base commit is no longer the HEAD commit of its target branch. This means it includes changes from outside the original pull request, including, potentially, unrelated coverage changes.
- creates a new `fuzz` crate, it's meant to run fuzz testing over
bdk_wallet targets, with `cargo fuzz` (libFuzzer).
- creates an initial `wallet_update` fuzz target for `bdk_wallet`.
- creates an initial `fuzzed_data_provider` and `fuzz_utils` files with
useful methods to consume the fuzzed data into `bdk_wallet` API-specific types.
Rather than requiring use of libFuzzer, it might make sense to build a generic fuzz wrapper, possibly based on the LDK fuzz infra at https://github.com/lightningdevkit/rust-lightning/tree/main/fuzz or the rust-bitcoin fuzz infra. libFuzzer is great and one of the more actively maintained fuzz harnesses, but honggfuzz is in many cases easier to run, so we've found it quite useful to offer both (plus AFL, for those who want that).
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
oleonardolima
force-pushed
the
feat/add-initial-fuzz-testing
branch
from
Description
It's an initial work towards the goal of #61, it adds a new
fuzzcrate to the project which is meant to be used to add new fuzz target in order to increase the fuzz coverage.It's built on top of and with inspiration from previous Antoine's work through the most recent BDK Audit.
So far, this PR:
fuzzcrate withcargo fuzzrelying on LibFuzzer engine.UpdatetoWallet.fuzzed_data_providerandfuzz_utilswith common used fns to build BDK's-specific types from fuzzed bytes.Still to be done by this PR:
Notes to the reviewers
Are there any other BDK usage scenarios you'd like to see covered by a fuzz target ? Let's discuss it either on the issue or under this PR comments.
Changelog notice
TBD
Checklists
All Submissions:
just pbefore pushing