doc/html/descriptor__parse_8cpp_source.html

// Copyright (c) 2009-2021 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#include <chainparams.h>

#include <key_io.h>

#include <pubkey.h>

#include <script/descriptor.h>

#include <test/fuzz/fuzz.h>

#include <test/fuzz/util/descriptor.h>

#include <util/chaintype.h>

#include <util/strencodings.h>


MockedDescriptorConverter MOCKED_DESC_CONVERTER;


static void TestDescriptor(const Descriptor& desc, FlatSigningProvider& sig_provider, std::string& dummy)

{

    // Trivial helpers.

    (void)desc.IsRange();

    const bool is_solvable{desc.IsSolvable()};

    (void)desc.IsSingleType();

    (void)desc.GetOutputType();


    // Serialization to string representation.

    (void)desc.ToString();

    (void)desc.ToPrivateString(sig_provider, dummy);

    (void)desc.ToNormalizedString(sig_provider, dummy);


    // Serialization to Script.

    DescriptorCache cache;

    std::vector<CScript> out_scripts;

    (void)desc.Expand(0, sig_provider, out_scripts, sig_provider, &cache);

    (void)desc.ExpandPrivate(0, sig_provider, sig_provider);

    (void)desc.ExpandFromCache(0, cache, out_scripts, sig_provider);


    // If we could serialize to script we must be able to infer using the same provider.

    if (!out_scripts.empty()) {

        assert(InferDescriptor(out_scripts.back(), sig_provider));


        // The ScriptSize() must match the size of the serialized Script. (ScriptSize() is set for all descs but 'combo()'.)

        const bool is_combo{!desc.IsSingleType()};

        assert(is_combo || desc.ScriptSize() == out_scripts.back().size());

    }


    const auto max_sat_maxsig{desc.MaxSatisfactionWeight(true)};

    const auto max_sat_nonmaxsig{desc.MaxSatisfactionWeight(true)};

    const auto max_elems{desc.MaxSatisfactionElems()};

    // We must be able to estimate the max satisfaction size for any solvable descriptor (but combo).

    const bool is_nontop_or_nonsolvable{!is_solvable || !desc.GetOutputType()};

    const bool is_input_size_info_set{max_sat_maxsig && max_sat_nonmaxsig && max_elems};

    assert(is_input_size_info_set || is_nontop_or_nonsolvable);

}


void initialize_descriptor_parse()

{

    static ECC_Context ecc_context{};

    SelectParams(ChainType::MAIN);

}


void initialize_mocked_descriptor_parse()

{

    initialize_descriptor_parse();

    MOCKED_DESC_CONVERTER.Init();

}


FUZZ_TARGET(mocked_descriptor_parse, .init = initialize_mocked_descriptor_parse)

{

    // Key derivation is expensive. Deriving deep derivation paths take a lot of compute and we'd

    // rather spend time elsewhere in this target, like on the actual descriptor syntax. So rule

    // out strings which could correspond to a descriptor containing a too large derivation path.

    if (HasDeepDerivPath(buffer)) return;


    // Some fragments can take a virtually unlimited number of sub-fragments (thresh, multi_a) but

    // may perform quadratic operations on them. Limit the number of sub-fragments per fragment.

    if (HasTooManySubFrag(buffer)) return;


    // The script building logic performs quadratic copies in the number of nested wrappers. Limit

    // the number of nested wrappers per fragment.

    if (HasTooManyWrappers(buffer)) return;


    const std::string mocked_descriptor{buffer.begin(), buffer.end()};

    if (const auto descriptor = MOCKED_DESC_CONVERTER.GetDescriptor(mocked_descriptor)) {

        FlatSigningProvider signing_provider;

        std::string error;

        const auto desc = Parse(*descriptor, signing_provider, error);

        if (desc) TestDescriptor(*desc, signing_provider, error);

    }

}


FUZZ_TARGET(descriptor_parse, .init = initialize_descriptor_parse)

{

    // See comments above for rationales.

    if (HasDeepDerivPath(buffer)) return;

    if (HasTooManySubFrag(buffer)) return;

    if (HasTooManyWrappers(buffer)) return;


    const std::string descriptor(buffer.begin(), buffer.end());

    FlatSigningProvider signing_provider;

    std::string error;

    for (const bool require_checksum : {true, false}) {

        const auto desc = Parse(descriptor, signing_provider, error, require_checksum);

        if (desc) TestDescriptor(*desc, signing_provider, error);

    }

}


ecc_context
ECC_Context ecc_context
Definition bitcoin-wallet.cpp:134

SelectParams
void SelectParams(const ChainType chain)
Sets the params returned by Params() to those for the given chain type.
Definition chainparams.cpp:134

chaintype.h

ChainType::MAIN
@ MAIN

DescriptorCache
Cache for single descriptor's derived extended pubkeys.
Definition descriptor.h:19

ECC_Context
RAII class initializing and deinitializing global state for elliptic curve support.
Definition key.h:322

MockedDescriptorConverter
Converts a mocked descriptor string to a valid one.
Definition descriptor.h:21

MockedDescriptorConverter::Init
void Init()
When initializing the target, populate the list of keys.
Definition descriptor.cpp:10

MockedDescriptorConverter::GetDescriptor
std::optional< std::string > GetDescriptor(std::string_view mocked_desc) const
Get an actual descriptor string from a descriptor string whose keys were mocked.
Definition descriptor.cpp:51

Parse
static UniValue Parse(std::string_view raw)
Parse string to UniValue or throw runtime_error if string contains invalid JSON.
Definition client.cpp:321

initialize_mocked_descriptor_parse
void initialize_mocked_descriptor_parse()
Definition descriptor_parse.cpp:62

TestDescriptor
static void TestDescriptor(const Descriptor &desc, FlatSigningProvider &sig_provider, std::string &dummy)
Test a successfully parsed descriptor.
Definition descriptor_parse.cpp:18

initialize_descriptor_parse
void initialize_descriptor_parse()
Definition descriptor_parse.cpp:56

MOCKED_DESC_CONVERTER
MockedDescriptorConverter MOCKED_DESC_CONVERTER
The converter of mocked descriptors, needs to be initialized when the target is.
Definition descriptor_parse.cpp:15

fuzz.h

FUZZ_TARGET
#define FUZZ_TARGET(...)
Definition fuzz.h:35

key_io.h

init
Definition bitcoin-gui.cpp:17

pubkey.h

InferDescriptor
std::unique_ptr< Descriptor > InferDescriptor(const CScript &script, const SigningProvider &provider)
Find a descriptor for the specified script, using information from provider where possible.
Definition descriptor.cpp:2089

descriptor.h

strencodings.h

Descriptor
Interface for parsed descriptor objects.
Definition descriptor.h:98

Descriptor::IsSingleType
virtual bool IsSingleType() const =0
Whether this descriptor will return one scriptPubKey or multiple (aka is or is not combo)

Descriptor::MaxSatisfactionElems
virtual std::optional< int64_t > MaxSatisfactionElems() const =0
Get the maximum size number of stack elements for satisfying this descriptor.

Descriptor::ToNormalizedString
virtual bool ToNormalizedString(const SigningProvider &provider, std::string &out, const DescriptorCache *cache=nullptr) const =0
Convert the descriptor to a normalized string.

Descriptor::MaxSatisfactionWeight
virtual std::optional< int64_t > MaxSatisfactionWeight(bool use_max_sig) const =0
Get the maximum size of a satisfaction for this descriptor, in weight units.

Descriptor::ToString
virtual std::string ToString(bool compat_format=false) const =0
Convert the descriptor back to a string, undoing parsing.

Descriptor::GetOutputType
virtual std::optional< OutputType > GetOutputType() const =0

Descriptor::Expand
virtual bool Expand(int pos, const SigningProvider &provider, std::vector< CScript > &output_scripts, FlatSigningProvider &out, DescriptorCache *write_cache=nullptr) const =0
Expand a descriptor at a specified position.

Descriptor::IsRange
virtual bool IsRange() const =0
Whether the expansion of this descriptor depends on the position.

Descriptor::ScriptSize
virtual std::optional< int64_t > ScriptSize() const =0
Get the size of the scriptPubKey for this descriptor.

Descriptor::IsSolvable
virtual bool IsSolvable() const =0
Whether this descriptor has all information about signing ignoring lack of private keys.

Descriptor::ExpandPrivate
virtual void ExpandPrivate(int pos, const SigningProvider &provider, FlatSigningProvider &out) const =0
Expand the private key for a descriptor at a specified position, if possible.

Descriptor::ToPrivateString
virtual bool ToPrivateString(const SigningProvider &provider, std::string &out) const =0
Convert the descriptor to a private string.

Descriptor::ExpandFromCache
virtual bool ExpandFromCache(int pos, const DescriptorCache &read_cache, std::vector< CScript > &output_scripts, FlatSigningProvider &out) const =0
Expand a descriptor at a specified position using cached expansion data.

FlatSigningProvider
Definition signingprovider.h:208

HasTooManySubFrag
bool HasTooManySubFrag(const FuzzBufferType &buff, const int max_subs, const size_t max_nested_subs)
Whether the buffer, if it represents a valid descriptor, contains a fragment with more sub-fragments ...
Definition descriptor.cpp:91

HasTooManyWrappers
bool HasTooManyWrappers(const FuzzBufferType &buff, const int max_wrappers)
Whether the buffer, if it represents a valid descriptor, contains a fragment with more wrappers than ...
Definition descriptor.cpp:115

HasDeepDerivPath
bool HasDeepDerivPath(const FuzzBufferType &buff, const int max_depth)
Whether the buffer, if it represents a valid descriptor, contains a derivation path deeper than a giv...
Definition descriptor.cpp:77

descriptor.h

assert
assert(!tx.IsCoinBase())