mirror of
https://github.com/mimblewimble/grin.git
synced 2025-01-21 03:21:08 +03:00
1f5de6beb9
* Verify headers and blocks only when needed Curretnly we have some lightweigt validation implemented as part of entity deserialization, which is safer and allows us to not parse the entire object if some part is invalid. At the same time this logic always applies when we read an entity, eg when reading from DB. This PR introduces UntrustedHeader/Block which is used when we read from the network. It does partial validation during read, then it is supposed to be converted into regular header/block which doesn't validate itself. Also this PR adds "lightweight" validation to block header read like we have for block body, so we don't parse block body if the header is invalid. Fixes #1642 * Move version validation to untrusted header * update fuzz tests |
||
|---|---|---|
| .. | ||
| fuzz_targets | ||
| src | ||
| .gitignore | ||
| Cargo.lock | ||
| Cargo.toml | ||
| README.md | ||
Fuzz testing
Installation
You have to use Rust nightly at the moment. Cargo-fuzz (https://github.com/rust-fuzz/cargo-fuzz) has been used. To install it:
cargo install cargo-fuzz
Pattern generation for corpus
This step is optional, libFuzz will generate random patterns to populate
corpus (in folder corpus). However we can genearete more meaningful pattern
e.g. use serialized form of a real block or transaction. To generate them:
cd fuzz
cargo run --bin gen-corpus
Run tests
Fuzz test is basically infinite test, run it for some period of time then
stop if no failures are found.
To run the tests make sure youre in folder core otherwise you may get
some misleading errors, then run one of the following tests:
cargo fuzz run transaction_read
cargo fuzz run block_read
cargo fuzz run compact_block_read
Run
cargo fuzz list
or check fuzz/Cargo.toml for the full list of targets.