mirror of https://github.com/bitcoin/bitcoin.git synced 2025-07-31 20:25:28 +02:00

Files

MarcoFalke 7fcaa8291c Merge #18009 : tests: Add fuzzing harness for strprintf(…)

cc668d06fb tests: Add fuzzing harness for strprintf(...) (practicalswift)
ccc3c76e2b tests: Add fuzzer strprintf to FUZZERS_MISSING_CORPORA (temporarily) (practicalswift)
6ef04912af tests: Update FuzzedDataProvider.h from upstream (LLVM) (practicalswift)

Pull request description:

  Add fuzzing harness for `strprintf(…)`.

  Update `FuzzedDataProvider.h`.

  Avoid hitting some issues in tinyformat (reported upstreams in https://github.com/c42f/tinyformat/issues/70).

  ---

  Found issues in tinyformat:

  **Issue 1.** The following causes a signed integer overflow followed by an allocation of 9 GB of RAM (or an OOM in memory constrained environments):

  ```
  strprintf("%.777777700000000$", 1.0);
  ```

  **Issue 2.** The following causes a stack overflow:

  ```
  strprintf("%987654321000000:", 1);
  ```

  **Issue 3.** The following causes a stack overflow:

  ```
  strprintf("%1$*1$*", -11111111);
  ```

  **Issue 4.** The following causes a `NULL` pointer dereference:

  ```
  strprintf("%.1s", (char *)nullptr);
  ```

  **Issue 5.** The following causes a float cast overflow:

  ```
  strprintf("%c", -1000.0);
  ```

  **Issue 6.** The following causes a float cast overflow followed by an invalid integer negation:

  ```
  strprintf("%*", std::numeric_limits<double>::lowest());
  ```

Top commit has no ACKs.

Tree-SHA512: 9b765559281470f4983eb5aeca94bab1b15ec9837c0ee01a20f4348e9335e4ee4e4fecbd7a1a5a8ac96aabe0f9eeb597b8fc9a2c8faf1bab386e8225d5cdbc18

2020-01-31 02:56:49 +13:00

check-doc.py

…

check-rpc-mappings.py

…

commit-script-check.sh

…

extended-lint-all.sh

…

extended-lint-cppcheck.sh

…

git-subtree-check.sh

…

lint-all.sh

…

lint-assertions.sh

…

lint-circular-dependencies.sh

…

lint-filenames.sh

…

lint-format-strings.py

…

lint-format-strings.sh

…

lint-include-guards.sh

…

lint-includes.sh

…

lint-locale-dependence.sh

…

lint-logs.sh

…

lint-python-mutable-default-parameters.sh

…

lint-python-utf8-encoding.sh

…

lint-python.sh

…

lint-qt.sh

…

lint-rpc-help.sh

…

lint-shebang.sh

…

lint-shell-locale.sh

…

lint-shell.sh

script: Enable SC2001 rule for Gitian scripts

2019-11-27 19:27:56 +02:00

lint-spelling.ignore-words.txt

…

lint-spelling.sh

…

lint-tests.sh

…

lint-whitespace.sh

…

README.md

…

README.md

This folder contains lint scripts.

check-doc.py

Check for missing documentation of command line options.

commit-script-check.sh

Verification of scripted diffs. Scripted diffs are only assumed to run on the latest LTS release of Ubuntu. Running them on other operating systems might require installing GNU tools, such as GNU sed.

git-subtree-check.sh

Run this script from the root of the repository to verify that a subtree matches the contents of the commit it claims to have been updated to.

To use, make sure that you have fetched the upstream repository branch in which the subtree is maintained:

for src/secp256k1: https://github.com/bitcoin-core/secp256k1.git (branch master)
for src/leveldb: https://github.com/bitcoin-core/leveldb.git (branch bitcoin-fork)
for src/univalue: https://github.com/bitcoin-core/univalue.git (branch master)
for src/crypto/ctaes: https://github.com/bitcoin-core/ctaes.git (branch master)

Usage: git-subtree-check.sh DIR (COMMIT)

COMMIT may be omitted, in which case HEAD is used.

lint-all.sh

Calls other scripts with the lint- prefix.