fuzz: split `coinselection` harness #31870

pull brunoerg wants to merge 1 commits into bitcoin:master from brunoerg:2025-02-fuzz-split-coinselection changing 1 files +71 −47
  1. brunoerg commented at 6:09 PM on February 14, 2025: contributor

    This PR splits the coinselection fuzz harness into 3 targets (coinselection_bnb, coinselection_knapsack, coinselection_srd). The goal is to be able to fuzz each algorithm separately (to avoid performance issues) and also all of them together.

  2. DrahtBot commented at 6:09 PM on February 14, 2025: contributor

    <!--e57a25ab6845829454e8d69fc972939a-->

    The following sections might be updated with supplementary metadata relevant to reviewers and maintainers.

    <!--006a51241073e994b41acfe9ec718e94-->

    Code Coverage & Benchmarks

    For details see: https://corecheck.dev/bitcoin/bitcoin/pulls/31870.

    <!--021abf342d371248e50ceaed478a90ca-->

    Reviews

    See the guideline for information on the review process.

    Type Reviewers
    ACK janb84, marcofleon, zaidmstrr, maflcko
    Concept ACK yancyribbens

    If your review is incorrectly listed, please react with 👎 to this comment and the bot will ignore it on the next update.

    <!--174a7506f384e20aa4161008e828411d-->

    Conflicts

    Reviewers, this pull request conflicts with the following ones:

    • #31806 (fuzz: coinselection: cover SetBumpFeeDiscount by brunoerg)

    If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first.

  3. DrahtBot added the label Tests on Feb 14, 2025
  4. brunoerg marked this as ready for review on Feb 14, 2025
  5. in src/wallet/test/fuzz/coinselection.cpp:223 in c6ab148559 outdated 
     220 | -{
 221 | +enum class CoinSelectionAlgorithm {
 222 | +    BNB,
 223 | +    SRD,
 224 | +    KNAPSACK,
 225 | +    ALL
    maflcko commented at 9:22 AM on February 17, 2025:

    nit: missing trailing comma.

    Also, what is the point of combining them, when they are handled completely separate anyway?

    brunoerg commented at 1:22 PM on February 17, 2025:

    I just removed the ALL option. I don't see anything that needs all of them combined.

  6. in src/wallet/test/fuzz/coinselection.cpp:227 in c6ab148559 outdated 
     224 | +    KNAPSACK,
 225 | +    ALL
 226 | +};
 227 | +
 228 | +template<CoinSelectionAlgorithm Algorithm>
 229 | +void FuzzCoinSelectionAlgorithm(const uint8_t* buffer, size_t size) {
    maflcko commented at 9:22 AM on February 17, 2025:

    nit: please use std::span for new code

    brunoerg commented at 1:20 PM on February 17, 2025:

    Done

  7. in src/wallet/test/fuzz/coinselection.cpp:289 in c6ab148559 outdated 
     302 | -    auto result_knapsack = KnapsackSolver(group_all, target, change_target, fast_random_context, max_selection_weight);
 303 | -    if (result_knapsack) {
 304 | -        assert(result_knapsack->GetSelectedValue() >= target);
 305 | -        assert(result_knapsack->GetWeight() <= max_selection_weight);
 306 | -        result_knapsack->RecalculateWaste(coin_params.min_viable_change, coin_params.m_cost_of_change, coin_params.m_change_fee);
 307 | -        (void)result_knapsack->GetShuffledInputVector();
    maflcko commented at 9:28 AM on February 17, 2025:

    why remove this call?

    brunoerg commented at 11:32 AM on February 17, 2025:

    There is no need to remove it, will put back. Probably missed it during the rework. Thanks.

    brunoerg commented at 1:20 PM on February 17, 2025:

    Done

  8. brunoerg force-pushed on Feb 17, 2025
  9. brunoerg commented at 1:23 PM on February 17, 2025: contributor

    Force-pushed addressing #31870 (review), #31870 (review) and #31870 (review). Thanks, @maflcko.

  10. in src/wallet/test/fuzz/coinselection.cpp:355 in aa27eeaaf3 outdated 
     350 | +FUZZ_TARGET(coinselection_srd) {
 351 | +    FuzzCoinSelectionAlgorithm<CoinSelectionAlgorithm::SRD>(std::span<const uint8_t>(buffer.data(), buffer.size()));
 352 | +}
 353 | +
 354 | +FUZZ_TARGET(coinselection_knapsack) {
 355 | +    FuzzCoinSelectionAlgorithm<CoinSelectionAlgorithm::KNAPSACK>(std::span<const uint8_t>(buffer.data(), buffer.size()));
    maflcko commented at 1:27 PM on February 17, 2025: 
        FuzzCoinSelectionAlgorithm<CoinSelectionAlgorithm::KNAPSACK>(buffer);

    nit: it is already a span,no?

    brunoerg commented at 1:31 PM on February 17, 2025:

    yes, done.

  11. brunoerg force-pushed on Feb 17, 2025
  12. brunoerg force-pushed on Feb 17, 2025
  13. DrahtBot added the label CI failed on Feb 17, 2025
  14. DrahtBot removed the label CI failed on Feb 17, 2025
  15. zaidmstrr commented at 8:32 PM on February 17, 2025: none

    Hey, I'm reviewing this PR, as the description says that we can test each target separately, (coinselection_bnb, coinselection_knapsack, coinselection_srd) which is fine, but for the combined test I can't find any fuzz target there like coinselection.

  16. brunoerg commented at 8:37 PM on February 17, 2025: contributor

    Hey, I'm reviewing this PR, as the description says that we can test each target separately, (coinselection_bnb, coinselection_knapsack, coinselection_srd) which is fine, but for the combined test I can't find any fuzz target there like coinselection.

    I just updated the description. I removed the coinselection target, so there are 3 ones.

  17. zaidmstrr commented at 8:33 AM on February 18, 2025: none

    Tested ACK 9b293d0 The idea of fuzzing each algorithm independently seems good. I manually reviewed the new code changes with the previous ones to check for any missing statements. I also tested the code by manually inserting assert statements in between to check whether the desired behaviour was occurring or not.

  18. marcofleon commented at 1:27 PM on February 21, 2025: contributor

    Code review ACK 9b293d031c941dc6af0c4274e43388c57c702047

    Knapsack is quite a bit slower than the other two, so separating them out is probably a good idea.

    Coverage for the three targets: coinselection_bnb coinselection_srd coinselection_knapsack

  19. in src/wallet/test/fuzz/coinselection.cpp:312 in 9b293d031c outdated 
     344 | +            (void)result_knapsack->GetShuffledInputVector();
 345 | +            (void)result_knapsack->GetInputSet();
 346 | +            // If the total balance is sufficient for the target and we are not using
 347 | +            // effective values, Knapsack should always find a solution (unless the selection exceeded the max tx weight).
 348 | +            if (total_balance >= target && subtract_fee_outputs && !HasErrorMsg(result_knapsack)) {
 349 | +                assert(result_knapsack);
    maflcko commented at 2:05 PM on February 21, 2025:

    why are you removing this check?

    brunoerg commented at 2:54 PM on February 21, 2025:

    Removing?

    marcofleon commented at 2:59 PM on February 21, 2025:

    Good catch. Took me a bit to see, but yeah this check should be outside of the inner if statement.

    maflcko commented at 2:59 PM on February 21, 2025:

    Previously the assert was exposed, now it is guarded by the same condition, making it dead code that the compiler will remove.

    In other words: { if (a) assert(a); } is equivalent to { }.

    brunoerg commented at 3:22 PM on February 21, 2025:

    Ah, good catch! Gonna fix it, thanks.

    brunoerg commented at 4:27 PM on February 21, 2025:

    Done.

  20. fuzz: split `coinselection` harness ba82240553
  21. brunoerg force-pushed on Feb 21, 2025
  22. brunoerg commented at 4:27 PM on February 21, 2025: contributor

    Force-pushed addressing #31870 (review)

  23. janb84 commented at 7:47 PM on February 25, 2025: contributor

    Tested ACK ba82240

    The change to fuzz each algorithm independently seems an okay idea. The implementation/separation in the code also makes it easier to read, review, and reason about.

    • Built and ran fuzzers, minimum of 15 minutes each.
    • Reviewed code changes line-by-line
    • Tried to compile CodeCoverage of new Fuzz targets but I failed at that (not a code issue)

    I also wrote a review note on the PR to document my learning journey

  24. DrahtBot requested review from marcofleon on Feb 25, 2025
  25. DrahtBot requested review from zaidmstrr on Feb 25, 2025
  26. marcofleon commented at 6:27 PM on March 13, 2025: contributor

    reACK ba82240553ddd534287845e10bc76b46b45329fe

    Only thing that changed since last review is the fix to #31870 (review). The order of the two checks has been switched but afaict it shouldn't matter.

  27. yancyribbens commented at 5:05 PM on March 14, 2025: contributor

    Concept ACK. I'm curious if there should be any doc updates accompanying this change.

  28. zaidmstrr commented at 6:39 PM on March 14, 2025: none

    reACK ba82240 As the previous issue raised by maflcko is resolved.

  29. brunoerg commented at 6:44 PM on March 14, 2025: contributor

    I'm curious if there should be any doc updates accompanying this change.

    No, it's a test-only change.

  30. brunoerg requested review from maflcko on Mar 18, 2025
  31. fanquake commented at 8:54 AM on March 21, 2025: member

    cc @dergoegge

  32. maflcko commented at 9:05 AM on March 21, 2025: member

    review ACK ba82240553ddd534287845e10bc76b46b45329fe 👐

    <details><summary>Show signature</summary>

    Signature:

    untrusted comment: signature from minisign secret key on empty file; verify via: minisign -Vm "${path_to_any_empty_file}" -P RWTRmVTMeKV5noAMqVlsMugDDCyyTSbA3Re5AkUrhvLVln0tSaFWglOw -x "${path_to_this_whole_four_line_signature_blob}"
RUTRmVTMeKV5npGrKx1nqXCw5zeVHdtdYURB/KlyA/LMFgpNCs+SkW9a8N95d+U4AP1RJMi+krxU1A3Yux4bpwZNLvVBKy0wLgM=
trusted comment: review ACK ba82240553ddd534287845e10bc76b46b45329fe 👐
AaLQ7VClMZd8vRGNIiLsK54KJFAUcqCKCnsGUSXGGyDuhdZGVtjAVzTOih3F0roC5Z2Bh/o/YP/kBeS9oRttCQ==

    </details>

  33. fanquake merged this on Mar 21, 2025
  34. fanquake closed this on Mar 21, 2025
  35. murchandamus commented at 6:58 PM on March 21, 2025: contributor

    Oh I had missed this, and noticed it via the new fuzz target corpora. Great idea!

  36. brunoerg deleted the branch on Mar 21, 2025
Contributors
brunoergDrahtBotmaflckozaidmstrrmarcofleonjanb84yancyribbensfanquakemurchandamus


maflcko

Labels
Tests
Linked (view graph)
#29901 Wallet fuzzing tracking issue
github-metadata-mirror

This is a metadata mirror of the GitHub repository bitcoin/bitcoin. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2026-04-21 18:12 UTC
This site is hosted by @0xB10C
More mirrored repositories can be found on mirror.b10c.me