test: Add missing suppression for signed-integer-overflow:txmempool.cpp #21586

pull MarcoFalke wants to merge 1 commits into bitcoin:master from MarcoFalke:2104-testSupp changing 1 files +1 −0

MarcoFalke commented at 3:40 PM on April 3, 2021: member

Otherwise the fuzzer will crash:

txmempool.cpp:847:15: runtime error: signed integer overflow: 8138645194045128704 + 4611686018427387904 cannot be represented in type 'long'
    [#0](/bitcoin-bitcoin/0/) 0x558ff1838d4c in CTxMemPool::PrioritiseTransaction(uint256 const&, long const&) /root/fuzz_dir/scratch/fuzz_gen/code/src/txmempool.cpp:847:15
    [#1](/bitcoin-bitcoin/1/) 0x558ff196e723 in LoadMempool(CTxMemPool&, CChainState&, std::function<_IO_FILE* (boost::filesystem::path const&, char const*)>) /root/fuzz_dir/scratch/fuzz_gen/code/src/validation.cpp:5053:22
    [#2](/bitcoin-bitcoin/2/) 0x558ff13f37ab in validation_load_mempool_fuzz_target(Span<unsigned char const>) /root/fuzz_dir/scratch/fuzz_gen/code/src/test/fuzz/validation_load_mempool.cpp:32:11
    [#3](/bitcoin-bitcoin/3/) 0x558ff1083378 in std::_Function_handler<void (Span<unsigned char const>), void (*)(Span<unsigned char const>)>::_M_invoke(std::_Any_data const&, Span<unsigned char const>&&) /usr/bin/../lib/gcc/x86_64-linux-gnu/9/../../../../include/c++/9/bits/std_function.h:300:2
    [#4](/bitcoin-bitcoin/4/) 0x558ff22a749d in std::function<void (Span<unsigned char const>)>::operator()(Span<unsigned char const>) const /usr/bin/../lib/gcc/x86_64-linux-gnu/9/../../../../include/c++/9/bits/std_function.h:688:14
    [#5](/bitcoin-bitcoin/5/) 0x558ff22a70e8 in LLVMFuzzerTestOneInput /root/fuzz_dir/scratch/fuzz_gen/code/src/test/fuzz/fuzz.cpp:63:5
    [#6](/bitcoin-bitcoin/6/) 0x558ff0f83543 in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) fuzzer.o
    [#7](/bitcoin-bitcoin/7/) 0x558ff0f6d442 in fuzzer::RunOneTest(fuzzer::Fuzzer*, char const*, unsigned long) fuzzer.o
    [#8](/bitcoin-bitcoin/8/) 0x558ff0f7323a in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) fuzzer.o
    [#9](/bitcoin-bitcoin/9/) 0x558ff0f9ef82 in main (/root/fuzz_dir/scratch/fuzz_gen/code/src/test/fuzz/fuzz+0x196df82)
    [#10](/bitcoin-bitcoin/10/) 0x7f1237f310b2 in __libc_start_main /build/glibc-eX1tMB/glibc-2.31/csu/../csu/libc-start.c:308:16
    [#11](/bitcoin-bitcoin/11/) 0x558ff0f4816d in _start (/root/fuzz_dir/scratch/fuzz_gen/code/src/test/fuzz/fuzz+0x191716d)

test: Add missing suppression for signed-integer-overflow:txmempool.cpp fad8a97b21
fanquake added the label Tests on Apr 3, 2021
fanquake requested review from practicalswift on Apr 4, 2021
MarcoFalke commented at 5:43 AM on April 4, 2021: member

Going to merge this to unbreak the fuzzers. The only alternative I see to this is removing the fuzz test or marking it hidden.
MarcoFalke merged this on Apr 4, 2021
MarcoFalke closed this on Apr 4, 2021
MarcoFalke deleted the branch on Apr 4, 2021
MarcoFalke referenced this in commit 824eea5643 on Apr 5, 2021
sidhujag referenced this in commit 8b34b63f04 on Apr 5, 2021
DrahtBot locked this on Aug 18, 2022

Contributors

MarcoFalke

Review Requested
practicalswift

Labels

Tests

Linked (view graph)

#1 JSON-RPC support for mobile devices ("ultra-lightweight" clients)#2 Long-term, safe, store-of-value #3 Encrypt wallet #4 Export/Import wallet in a human readable, future-proof format #5 Make the version number the protocol version and not the client version #6 Treat wallet as a generic keystore #7 Block-header-only, faster startup client #8 RPC command to sign text with wallet private key #9 Fix for GUI on Macs and latest wxWidgets #10 Add address to listtransactions output #11 Nolisten patch #21599 test: Replace file level integer overflow suppression with function level suppression