From 1580e3be83bd03985b2f288ed70de510903068d9 Mon Sep 17 00:00:00 2001 From: josibake Date: Tue, 29 Aug 2023 09:19:41 +0200 Subject: fuzz: add ConstructPubKeyBytes function Today, this code only has one spot where it needs well-formed pubkeys, but future PRs will want to reuse this code. Add a function which creates a well-formed byte array that can be turned into a pubkey. It is not required that the pubkey is valid, just that it can be recognized as a compressed or uncompressed pubkey. Note: while the main intent of this commit is to wrap the existing logic into a function, it also switches to `PickValueFromArray` so that we are only choosing one of 0x04, 0x06, or 0x07. The previous code, `ConsumeIntegralInRange` would have also picked 0x05, which is not definied in the context of compressed vs uncompressed keys. See https://bitcoin.stackexchange.com/questions/57855/c-secp256k1-what-do-prefixes-0x06-and-0x07-in-an-uncompressed-public-key-signif for more details. --- src/test/fuzz/util.cpp | 23 ++++++++++++++++------- 1 file changed, 16 insertions(+), 7 deletions(-) (limited to 'src') diff --git a/src/test/fuzz/util.cpp b/src/test/fuzz/util.cpp index 9da84fe90e..73727286fc 100644 --- a/src/test/fuzz/util.cpp +++ b/src/test/fuzz/util.cpp @@ -14,6 +14,19 @@ #include +std::vector ConstructPubKeyBytes(FuzzedDataProvider& fuzzed_data_provider, Span byte_data, const bool compressed) noexcept +{ + uint8_t pk_type; + if (compressed) { + pk_type = fuzzed_data_provider.PickValueInArray({0x02, 0x03}); + } else { + pk_type = fuzzed_data_provider.PickValueInArray({0x04, 0x06, 0x07}); + } + std::vector pk_data{byte_data.begin(), byte_data.begin() + (compressed ? CPubKey::COMPRESSED_SIZE : CPubKey::SIZE)}; + pk_data[0] = pk_type; + return pk_data; +} + CAmount ConsumeMoney(FuzzedDataProvider& fuzzed_data_provider, const std::optional& max) noexcept { return fuzzed_data_provider.ConsumeIntegralInRange(0, max.value_or(MAX_MONEY)); @@ -103,16 +116,12 @@ CScript ConsumeScript(FuzzedDataProvider& fuzzed_data_provider, const bool maybe // navigate the highly structured multisig format. r_script << fuzzed_data_provider.ConsumeIntegralInRange(0, 22); int num_data{fuzzed_data_provider.ConsumeIntegralInRange(1, 22)}; - std::vector pubkey_comp{buffer.begin(), buffer.begin() + CPubKey::COMPRESSED_SIZE}; - pubkey_comp.front() = fuzzed_data_provider.ConsumeIntegralInRange(2, 3); // Set first byte for GetLen() to pass - std::vector pubkey_uncomp{buffer.begin(), buffer.begin() + CPubKey::SIZE}; - pubkey_uncomp.front() = fuzzed_data_provider.ConsumeIntegralInRange(4, 7); // Set first byte for GetLen() to pass while (num_data--) { - auto& pubkey{fuzzed_data_provider.ConsumeBool() ? pubkey_uncomp : pubkey_comp}; + auto pubkey_bytes{ConstructPubKeyBytes(fuzzed_data_provider, buffer, fuzzed_data_provider.ConsumeBool())}; if (fuzzed_data_provider.ConsumeBool()) { - pubkey.back() = num_data; // Make each pubkey different + pubkey_bytes.back() = num_data; // Make each pubkey different } - r_script << pubkey; + r_script << pubkey_bytes; } r_script << fuzzed_data_provider.ConsumeIntegralInRange(0, 22); }, -- cgit v1.2.3