Skip to content

Fuzz tests improvements #10

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
Ruteri merged 1 commit into from
Jan 16, 2026
Merged

Fuzz tests improvements #10

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@ test:
test-race:
go test -race ./...

FUZZTIME ?= 10s
FUZZTIME ?= 2s

.PHONY: test-fuzz
test-fuzz:
Expand Down
2 changes: 1 addition & 1 deletion crypto/blinding.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ func DeriveBlindingVector(sharedSecrets []SharedKey, round uint32, nEls int32, f
}

roundKeyBuf := make([]byte, 4+len(sharedSecrets[0]))
binary.BigEndian.PutUint32(roundKeyBuf[:4], round)
binary.BigEndian.PutUint32(roundKeyBuf, round)

workingEl := big.NewInt(0)
words := make([]big.Word, bytesPerElement*8/bits.UintSize)
Expand Down
6 changes: 4 additions & 2 deletions crypto/blinding_fuzz_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -93,8 +93,10 @@ func FuzzDeriveXorBlindingVector(f *testing.F) {
t.Errorf("non-deterministic output")
}

// Invariant 3: Different round produces different output
if nBytes > 0 && round < ^uint32(0) {
// Invariant 3: Different round produces different output (with high probability)
// Skip this check for small nBytes since collisions are statistically expected
// (e.g., 1/256 chance for nBytes=1)
if nBytes >= 16 && round < ^uint32(0) {
result3 := DeriveXorBlindingVector(sharedSecrets, round+1, nBytes)
if bytes.Equal(result, result3) {
t.Errorf("different rounds produced identical output")
Expand Down
4 changes: 2 additions & 2 deletions crypto/fields.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ func init() {
// The result is stored in l and also returned.
func FieldAddInplace(l *big.Int, r *big.Int, fieldOrder *big.Int) *big.Int {
l.Add(l, r)
if l.Cmp(fieldOrder) > 0 {
if l.Cmp(fieldOrder) >= 0 {
l.Sub(l, fieldOrder)
}

Expand All @@ -39,7 +39,7 @@ func FieldAddInplace(l *big.Int, r *big.Int, fieldOrder *big.Int) *big.Int {
// The result is stored in l and also returned.
func FieldSubInplace(l *big.Int, r *big.Int, fieldOrder *big.Int) *big.Int {
l.Sub(l, r)
if l.Cmp(fieldOrder) > 0 {
if l.Cmp(fieldOrder) >= 0 {
l.Sub(l, fieldOrder)
}
if l.Sign() < 0 {
Expand Down
8 changes: 5 additions & 3 deletions crypto/types_fuzz_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@ package crypto

import (
"bytes"
"strings"
"testing"
)

Expand Down Expand Up @@ -103,7 +104,8 @@ func FuzzXorInplace(f *testing.F) {
}

// Invariant 3: Self-inverse property: XOR(XOR(a, b), b) = a
XorInplace(a, b)
// Use bCopy since a and b might share backing array (fuzzer can alias them)
XorInplace(a, bCopy)
if !bytes.Equal(a, aCopy) {
t.Error("XOR is not self-inverse")
}
Expand Down Expand Up @@ -197,8 +199,8 @@ func FuzzNewPublicKeyFromString(f *testing.F) {
return
}

// Invariant: String representation round-trips
if pubKey.String() != input {
// Invariant: String representation round-trips (case-insensitive, since hex is case-insensitive)
if !strings.EqualFold(pubKey.String(), input) {
t.Errorf("string round trip failed: got %s, want %s", pubKey.String(), input)
}

Expand Down
Loading