doc/html/script__interpreter_8cpp_source.html

 // Copyright (c) 2020-present The Bitcoin Core developers
 // Distributed under the MIT software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.

 #include <primitives/transaction.h>
 #include <script/interpreter.h>
 #include <test/fuzz/FuzzedDataProvider.h>
 #include <test/fuzz/fuzz.h>
 #include <test/fuzz/util.h>
 #include <util/check.h>

 #include <cstdint>
 #include <optional>
 #include <string>
 #include <vector>

 bool CastToBool(const std::vector<unsigned char>& vch);

 FUZZ_TARGET(script_interpreter)
 {
     FuzzedDataProvider fuzzed_data_provider(buffer.data(), buffer.size());
     {
         const CScript script_code = ConsumeScript(fuzzed_data_provider);
         const std::optional<CMutableTransaction> mtx = ConsumeDeserializable<CMutableTransaction>(fuzzed_data_provider, TX_WITH_WITNESS);
         if (mtx) {
             const CTransaction tx_to{*mtx};
             const unsigned int in = fuzzed_data_provider.ConsumeIntegral<unsigned int>();
             if (in < tx_to.vin.size()) {
                 auto n_hash_type = fuzzed_data_provider.ConsumeIntegral<int>();
                 auto amount = ConsumeMoney(fuzzed_data_provider);
                 auto sigversion = fuzzed_data_provider.PickValueInArray({SigVersion::BASE, SigVersion::WITNESS_V0});
                 (void)SignatureHash(script_code, tx_to, in, n_hash_type, amount, sigversion, nullptr);
                 const std::optional<CMutableTransaction> mtx_precomputed = ConsumeDeserializable<CMutableTransaction>(fuzzed_data_provider, TX_WITH_WITNESS);
                 if (mtx_precomputed) {
                     const CTransaction tx_precomputed{*mtx_precomputed};
                     const PrecomputedTransactionData precomputed_transaction_data{tx_precomputed};
                     n_hash_type = fuzzed_data_provider.ConsumeIntegral<int>();
                     amount = ConsumeMoney(fuzzed_data_provider);
                     sigversion = fuzzed_data_provider.PickValueInArray({SigVersion::BASE, SigVersion::WITNESS_V0});
                     (void)SignatureHash(script_code, tx_to, in, n_hash_type, amount, sigversion, &precomputed_transaction_data);
                 }
             }
         }
     }
     {
         (void)CastToBool(ConsumeRandomLengthByteVector(fuzzed_data_provider));
     }
 }

 FUZZ_TARGET(sighash_cache)
 {
     FuzzedDataProvider provider(buffer.data(), buffer.size());

     // Get inputs to the sighash function that won't change across types.
     const auto scriptcode{ConsumeScript(provider)};
     const auto tx{ConsumeTransaction(provider, std::nullopt)};
     if (tx.vin.empty()) return;
     const auto in_index{provider.ConsumeIntegralInRange<uint32_t>(0, tx.vin.size() - 1)};
     const auto amount{ConsumeMoney(provider)};
     const auto sigversion{(SigVersion)provider.ConsumeIntegralInRange(0, 1)};

     // Check the sighash function will give the same result for 100 fuzzer-generated hash types whether or not a cache is
     // provided. The cache is conserved across types to exercise cache hits.
     SigHashCache sighash_cache{};
     for (int i{0}; i < 100; ++i) {
         const auto hash_type{((i & 2) == 0) ? provider.ConsumeIntegral<int8_t>() : provider.ConsumeIntegral<int32_t>()};
         const auto nocache_res{SignatureHash(scriptcode, tx, in_index, hash_type, amount, sigversion)};
         const auto cache_res{SignatureHash(scriptcode, tx, in_index, hash_type, amount, sigversion, nullptr, &sighash_cache)};
         Assert(nocache_res == cache_res);
     }
 }
SigVersion::WITNESS_V0
Witness v0 (P2WPKH and P2WSH); see BIP 141.

CastToBool
bool CastToBool(const std::vector< unsigned char > &vch)
Definition: interpreter.cpp:36

check.h

SignatureHash
uint256 SignatureHash(const CScript &scriptCode, const T &txTo, unsigned int nIn, int32_t nHashType, const CAmount &amount, SigVersion sigversion, const PrecomputedTransactionData *cache, SigHashCache *sighash_cache)
Definition: interpreter.cpp:1600

transaction.h

FuzzedDataProvider.h

fuzz.h

PrecomputedTransactionData
Definition: interpreter.h:163

ConsumeScript
CScript ConsumeScript(FuzzedDataProvider &fuzzed_data_provider, const bool maybe_p2wsh) noexcept
Definition: util.cpp:98

SigVersion::BASE
Bare scripts and BIP16 P2SH-wrapped redeemscripts.

interpreter.h

SigHashCache
Data structure to cache SHA256 midstates for the ECDSA sighash calculations (bare, P2SH, P2WPKH, P2WSH).
Definition: interpreter.h:254

ConsumeRandomLengthByteVector
std::vector< B > ConsumeRandomLengthByteVector(FuzzedDataProvider &fuzzed_data_provider, const std::optional< size_t > &max_length=std::nullopt) noexcept
Definition: util.h:57

FUZZ_TARGET
FUZZ_TARGET(script_interpreter)
Definition: script_interpreter.cpp:19

FuzzedDataProvider
Definition: FuzzedDataProvider.h:32

FuzzedDataProvider::ConsumeIntegral
T ConsumeIntegral()
Definition: FuzzedDataProvider.h:195

ConsumeTransaction
CMutableTransaction ConsumeTransaction(FuzzedDataProvider &fuzzed_data_provider, const std::optional< std::vector< Txid >> &prevout_txids, const int max_num_in, const int max_num_out) noexcept
Definition: util.cpp:47

util.h

CScript
Serialized script, used inside transaction inputs and outputs.
Definition: script.h:404

fuzzed_data_provider
FuzzedDataProvider & fuzzed_data_provider
Definition: fees.cpp:38

ConsumeMoney
CAmount ConsumeMoney(FuzzedDataProvider &fuzzed_data_provider, const std::optional< CAmount > &max) noexcept
Definition: util.cpp:29

CTransaction
The basic transaction that is broadcasted on the network and contained in blocks. ...
Definition: transaction.h:280

FuzzedDataProvider::PickValueInArray
T PickValueInArray(const T(&array)[size])
Definition: FuzzedDataProvider.h:304

Assert
#define Assert(val)
Identity function.
Definition: check.h:113

TX_WITH_WITNESS
static constexpr TransactionSerParams TX_WITH_WITNESS
Definition: transaction.h:180

SigVersion
SigVersion
Definition: interpreter.h:200