mirror of
https://github.com/bitcoin/bitcoin.git
synced 2026-05-13 15:33:51 +02:00
af0ee28eb6
Replace hard-coded MiB byte conversions (e.g. `1024*1024`, `1<<20`, `1048576`) with the existing `_MiB` literal to improve readability and avoid repeating constants.
In the few spots where arithmetic involves signed values, the result is identical to the previous code assuming those quantities never turn negative.
Also switch to brace init on every declaration assigned from `_MiB`/`_GiB` literals so a future oversized value (e.g. `unsigned int x{4096_MiB}`) becomes a compile error through the C++11 narrowing check instead of silently truncating.
Extend unit tests to cover the 32-bit `size_t` overflow boundary and to assert equivalence for integer and floating-point conversions.
Co-authored-by: MarcoFalke <*~=`'#}+{/-|&$^_@721217.xyz>
Co-authored-by: w0xlt <94266259+w0xlt@users.noreply.github.com>
149 lines
4.6 KiB
C++
149 lines
4.6 KiB
C++
// Copyright (c) 2022-present The Bitcoin Core developers
|
|
// Distributed under the MIT software license, see the accompanying
|
|
// file COPYING or http://www.opensource.org/licenses/mit-license.php.
|
|
|
|
#include <random.h>
|
|
#include <span.h>
|
|
#include <support/allocators/pool.h>
|
|
#include <test/fuzz/FuzzedDataProvider.h>
|
|
#include <test/fuzz/fuzz.h>
|
|
#include <test/fuzz/util.h>
|
|
#include <test/util/poolresourcetester.h>
|
|
#include <util/byte_units.h>
|
|
|
|
#include <cstdint>
|
|
#include <tuple>
|
|
#include <vector>
|
|
|
|
namespace {
|
|
|
|
template <std::size_t MAX_BLOCK_SIZE_BYTES, std::size_t ALIGN_BYTES>
|
|
class PoolResourceFuzzer
|
|
{
|
|
FuzzedDataProvider& m_provider;
|
|
PoolResource<MAX_BLOCK_SIZE_BYTES, ALIGN_BYTES> m_test_resource;
|
|
uint64_t m_sequence{0};
|
|
size_t m_total_allocated{};
|
|
|
|
struct Entry {
|
|
std::span<std::byte> span;
|
|
size_t alignment;
|
|
uint64_t seed;
|
|
|
|
Entry(std::span<std::byte> s, size_t a, uint64_t se) : span(s), alignment(a), seed(se) {}
|
|
};
|
|
|
|
std::vector<Entry> m_entries;
|
|
|
|
public:
|
|
PoolResourceFuzzer(FuzzedDataProvider& provider)
|
|
: m_provider{provider},
|
|
m_test_resource{provider.ConsumeIntegralInRange<size_t>(MAX_BLOCK_SIZE_BYTES, 262144)}
|
|
{
|
|
}
|
|
|
|
void Allocate(size_t size, size_t alignment)
|
|
{
|
|
assert(size > 0); // Must allocate at least 1 byte.
|
|
assert(alignment > 0); // Alignment must be at least 1.
|
|
assert((alignment & (alignment - 1)) == 0); // Alignment must be power of 2.
|
|
assert((size & (alignment - 1)) == 0); // Size must be a multiple of alignment.
|
|
|
|
auto span = std::span(static_cast<std::byte*>(m_test_resource.Allocate(size, alignment)), size);
|
|
m_total_allocated += size;
|
|
|
|
auto ptr_val = reinterpret_cast<std::uintptr_t>(span.data());
|
|
assert((ptr_val & (alignment - 1)) == 0);
|
|
|
|
uint64_t seed = m_sequence++;
|
|
RandomContentFill(m_entries.emplace_back(span, alignment, seed));
|
|
}
|
|
|
|
void
|
|
Allocate()
|
|
{
|
|
if (m_total_allocated > 16_MiB) return;
|
|
size_t alignment_bits = m_provider.ConsumeIntegralInRange<size_t>(0, 7);
|
|
size_t alignment = size_t{1} << alignment_bits;
|
|
size_t size_bits = m_provider.ConsumeIntegralInRange<size_t>(0, 16 - alignment_bits);
|
|
size_t size = m_provider.ConsumeIntegralInRange<size_t>(size_t{1} << size_bits, (size_t{1} << (size_bits + 1)) - 1U) << alignment_bits;
|
|
Allocate(size, alignment);
|
|
}
|
|
|
|
void RandomContentFill(Entry& entry)
|
|
{
|
|
InsecureRandomContext(entry.seed).fillrand(entry.span);
|
|
}
|
|
|
|
void RandomContentCheck(const Entry& entry)
|
|
{
|
|
std::vector<std::byte> expect(entry.span.size());
|
|
InsecureRandomContext(entry.seed).fillrand(expect);
|
|
assert(std::ranges::equal(entry.span, expect));
|
|
}
|
|
|
|
void Deallocate(const Entry& entry)
|
|
{
|
|
auto ptr_val = reinterpret_cast<std::uintptr_t>(entry.span.data());
|
|
assert((ptr_val & (entry.alignment - 1)) == 0);
|
|
RandomContentCheck(entry);
|
|
m_total_allocated -= entry.span.size();
|
|
m_test_resource.Deallocate(entry.span.data(), entry.span.size(), entry.alignment);
|
|
}
|
|
|
|
void Deallocate()
|
|
{
|
|
if (m_entries.empty()) {
|
|
return;
|
|
}
|
|
|
|
size_t idx = m_provider.ConsumeIntegralInRange<size_t>(0, m_entries.size() - 1);
|
|
Deallocate(m_entries[idx]);
|
|
if (idx != m_entries.size() - 1) {
|
|
m_entries[idx] = std::move(m_entries.back());
|
|
}
|
|
m_entries.pop_back();
|
|
}
|
|
|
|
void Clear()
|
|
{
|
|
while (!m_entries.empty()) {
|
|
Deallocate();
|
|
}
|
|
|
|
PoolResourceTester::CheckAllDataAccountedFor(m_test_resource);
|
|
}
|
|
|
|
void Fuzz()
|
|
{
|
|
LIMITED_WHILE(m_provider.ConsumeBool(), 10000)
|
|
{
|
|
CallOneOf(
|
|
m_provider,
|
|
[&] { Allocate(); },
|
|
[&] { Deallocate(); });
|
|
}
|
|
Clear();
|
|
}
|
|
};
|
|
|
|
|
|
} // namespace
|
|
|
|
FUZZ_TARGET(pool_resource)
|
|
{
|
|
FuzzedDataProvider provider(buffer.data(), buffer.size());
|
|
CallOneOf(
|
|
provider,
|
|
[&] { PoolResourceFuzzer<128, 1>{provider}.Fuzz(); },
|
|
[&] { PoolResourceFuzzer<128, 2>{provider}.Fuzz(); },
|
|
[&] { PoolResourceFuzzer<128, 4>{provider}.Fuzz(); },
|
|
[&] { PoolResourceFuzzer<128, 8>{provider}.Fuzz(); },
|
|
|
|
[&] { PoolResourceFuzzer<8, 8>{provider}.Fuzz(); },
|
|
[&] { PoolResourceFuzzer<16, 16>{provider}.Fuzz(); },
|
|
|
|
[&] { PoolResourceFuzzer<256, alignof(max_align_t)>{provider}.Fuzz(); },
|
|
[&] { PoolResourceFuzzer<256, 64>{provider}.Fuzz(); });
|
|
}
|