test_2fuzz_2torcontrol_8cpp_source.html

// Copyright (c) 2020-present The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#include <test/fuzz/FuzzedDataProvider.h>

#include <test/fuzz/fuzz.h>

#include <test/fuzz/util.h>

#include <test/util/setup_common.h>

#include <torcontrol.h>


#include <cstdint>

#include <string>

#include <vector>


void initialize_torcontrol()

{

    static const auto testing_setup = MakeNoLogFileContext<>();

}


FUZZ_TARGET(torcontrol, .init = initialize_torcontrol)

{

    FuzzedDataProvider fuzzed_data_provider{buffer.data(), buffer.size()};


    TorController tor_controller;

    CThreadInterrupt interrupt;

    TorControlConnection conn{interrupt};


    LIMITED_WHILE(fuzzed_data_provider.ConsumeBool(), 10000) {

        TorControlReply tor_control_reply;

        CallOneOf(

            fuzzed_data_provider,

            [&] {

                tor_control_reply.code = TOR_REPLY_OK;

            },

            [&] {

                tor_control_reply.code = TOR_REPLY_UNRECOGNIZED;

            },

            [&] {

                tor_control_reply.code = TOR_REPLY_SYNTAX_ERROR;

            },

            [&] {

                tor_control_reply.code = fuzzed_data_provider.ConsumeIntegral<int>();

            });

        tor_control_reply.lines = ConsumeRandomLengthStringVector(fuzzed_data_provider);


        CallOneOf(

            fuzzed_data_provider,

            [&] {

                tor_controller.add_onion_cb(conn, tor_control_reply, /*pow_was_enabled=*/true);

            },

            [&] {

                tor_controller.add_onion_cb(conn, tor_control_reply, /*pow_was_enabled=*/false);

            },

            [&] {

                tor_controller.auth_cb(conn, tor_control_reply);

            },

            [&] {

                tor_controller.authchallenge_cb(conn, tor_control_reply);

            },

            [&] {

                tor_controller.protocolinfo_cb(conn, tor_control_reply);

            },

            [&] {

                tor_controller.get_socks_cb(conn, tor_control_reply);

            });

    }

}

FuzzedDataProvider.h

CThreadInterrupt
A helper class for interruptible sleeps.
Definition: threadinterrupt.h:26

FuzzedDataProvider
Definition: FuzzedDataProvider.h:32

FuzzedDataProvider::ConsumeBool
bool ConsumeBool()
Definition: FuzzedDataProvider.h:289

FuzzedDataProvider::ConsumeIntegral
T ConsumeIntegral()
Definition: FuzzedDataProvider.h:195

TorControlConnection
Low-level handling for Tor control connection.
Definition: torcontrol.h:56

TorControlReply
Reply from Tor, can be single or multi-line.
Definition: torcontrol.h:38

TorControlReply::code
int code
Definition: torcontrol.h:42

TorControlReply::lines
std::vector< std::string > lines
Definition: torcontrol.h:43

TorController
Controller that connects to Tor control socket, authenticate, then create and maintain an ephemeral o...
Definition: torcontrol.h:123

TorController::get_socks_cb
void get_socks_cb(TorControlConnection &conn, const TorControlReply &reply)
Callback for GETINFO net/listeners/socks result.
Definition: torcontrol.cpp:427

TorController::add_onion_cb
void add_onion_cb(TorControlConnection &conn, const TorControlReply &reply, bool pow_was_enabled)
Callback for ADD_ONION result.
Definition: torcontrol.cpp:508

TorController::authchallenge_cb
void authchallenge_cb(TorControlConnection &conn, const TorControlReply &reply)
Callback for AUTHCHALLENGE result.
Definition: torcontrol.cpp:601

TorController::auth_cb
void auth_cb(TorControlConnection &conn, const TorControlReply &reply)
Callback for AUTHENTICATE result.
Definition: torcontrol.cpp:549

TorController::protocolinfo_cb
void protocolinfo_cb(TorControlConnection &conn, const TorControlReply &reply)
Callback for PROTOCOLINFO result.
Definition: torcontrol.cpp:640

fuzz.h

LIMITED_WHILE
#define LIMITED_WHILE(condition, limit)
Can be used to limit a theoretically unbounded loop.
Definition: fuzz.h:22

init
Definition: basic.cpp:8

setup_common.h

initialize_torcontrol
void initialize_torcontrol()
Definition: torcontrol.cpp:15

FUZZ_TARGET
FUZZ_TARGET(torcontrol,.init=initialize_torcontrol)
Definition: torcontrol.cpp:20

util.h

CallOneOf
size_t CallOneOf(FuzzedDataProvider &fuzzed_data_provider, Callables... callables)
Definition: util.h:35

ConsumeRandomLengthStringVector
std::vector< std::string > ConsumeRandomLengthStringVector(FuzzedDataProvider &fuzzed_data_provider, const size_t max_vector_size=16, const size_t max_string_length=16) noexcept
Definition: util.h:73

torcontrol.h

TOR_REPLY_SYNTAX_ERROR
constexpr int TOR_REPLY_SYNTAX_ERROR
Syntax error in command argument.
Definition: torcontrol.h:32

TOR_REPLY_OK
constexpr int TOR_REPLY_OK
Tor control reply code.
Definition: torcontrol.h:30

TOR_REPLY_UNRECOGNIZED
constexpr int TOR_REPLY_UNRECOGNIZED
Definition: torcontrol.h:31

fuzzed_data_provider
FuzzedDataProvider & fuzzed_data_provider
Definition: fees.cpp:39