[DVT-812] Conformance Fuzzing Library

[IdrisHanafi]

Description

Fuzzing functionality integrated into the arguments of the JSON RPC calls, by running with the --fuzz flag. The fuzzer's effectiveness becomes evident through multiple iterations of running fuzzed tests (default to 100 times), with the expected outcome being an error returned by the RPC.

Jira / Linear Tickets

• DVT-812

Testing

Test run:

$ time go run main.go rpcfuzz http://localhost:8545 --fuzz --fuzzn 5
5:32PM INF Loaded private key ethAddress=0x85dA99c8a7C2C95964c8EfD687E95E632Fc533D6
5:32PM INF enabling namespaces namespaces=["eth_","web3_","net_"]
5:32PM TRC Doing test setup
5:32PM TRC current nonce value curNonce=1
5:32PM TRC fetch chainid chainId=1337
...
5:40PM INF 1/1 Test(s) Passed Method=net_version
5:40PM INF 1/1 Test(s) Passed Method=web3_clientVersion
5:40PM INF 1/1 Test(s) Passed Method=web3_sha3
5:40PM INF 1/1 Test(s) Passed Method=web3_sha3
5:40PM INF 1/1 Test(s) Passed Method=net_listening
5:40PM INF 1/1 Test(s) Passed Method=net_peerCount
5:40PM INF 1/1 Test(s) Passed Method=eth_protocolVersion
5:40PM INF 1/1 Test(s) Passed Method=eth_syncing
5:40PM INF 1/1 Test(s) Passed Method=eth_coinbase
5:40PM INF 1/1 Test(s) Passed Method=eth_chainId
5:40PM INF 1/1 Test(s) Passed Method=eth_mining
5:40PM INF 1/1 Test(s) Passed Method=eth_hashrate
5:40PM INF 1/1 Test(s) Passed Method=eth_hashrate
5:40PM INF 1/1 Test(s) Passed Method=eth_gasPrice
5:40PM INF 1/1 Test(s) Passed Method=eth_accounts
5:40PM INF 1/1 Test(s) Passed Method=eth_blockNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getBalance
5:40PM INF 1/1 Test(s) Passed Method=eth_getBalance
5:40PM INF 1/1 Test(s) Passed Method=eth_getBalance
5:40PM INF 1/1 Test(s) Passed Method=eth_getBalance
5:40PM INF 1/1 Test(s) Passed Method=eth_getStorageAt
5:40PM INF 1/1 Test(s) Passed Method=eth_getStorageAt
5:40PM INF 1/1 Test(s) Passed Method=eth_getStorageAt
5:40PM INF 1/1 Test(s) Passed Method=eth_getStorageAt
5:40PM INF 1/1 Test(s) Passed Method=eth_getTransactionCount
5:40PM INF 1/1 Test(s) Passed Method=eth_getTransactionCount
5:40PM INF 1/1 Test(s) Passed Method=eth_getTransactionCount
5:40PM INF 1/1 Test(s) Passed Method=eth_getTransactionCount
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockTransactionCountByHash
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockTransactionCountByHash
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockTransactionCountByNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockTransactionCountByNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockTransactionCountByNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockTransactionCountByNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getUncleCountByBlockHash
5:40PM INF 1/1 Test(s) Passed Method=eth_getUncleCountByBlockHash
5:40PM INF 1/1 Test(s) Passed Method=eth_getUncleCountByBlockNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getUncleCountByBlockNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getUncleCountByBlockNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getUncleCountByBlockNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getCode
5:40PM INF 1/1 Test(s) Passed Method=eth_getCode
5:40PM INF 1/1 Test(s) Passed Method=eth_getCode
5:40PM INF 1/1 Test(s) Passed Method=eth_sign
5:40PM INF 1/1 Test(s) Passed Method=eth_sign
5:40PM INF 1/1 Test(s) Passed Method=eth_signTransaction
5:40PM INF 1/1 Test(s) Passed Method=eth_sendTransaction
5:40PM INF 1/1 Test(s) Passed Method=eth_sendRawTransaction
5:40PM INF 1/1 Test(s) Passed Method=eth_call
5:40PM INF 1/1 Test(s) Passed Method=eth_call
5:40PM INF 1/1 Test(s) Passed Method=eth_call
5:40PM INF 1/1 Test(s) Passed Method=eth_call
5:40PM INF 1/1 Test(s) Passed Method=eth_estimateGas
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockByHash
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockByHash
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockByNumber
5:40PM INF 1/1 Test(s) Passed Method=eth_getBlockByNumber
5:40PM INF 0/1 Test(s) Passed Method=eth_getTransactionByHash
5:40PM INF 0/1 Test(s) Passed Method=eth_getTransactionByBlockHashAndIndex
5:40PM INF 0/1 Test(s) Passed Method=eth_getTransactionByBlockNumberAndIndex
5:40PM INF 0/1 Test(s) Passed Method=eth_getTransactionReceipt
5:40PM INF 1/1 Test(s) Passed Method=eth_getUncleByBlockHashAndIndex
5:40PM INF 1/1 Test(s) Passed Method=eth_getUncleByBlockNumberAndIndex
5:40PM INF 1/1 Test(s) Passed Method=eth_getCompilers
5:40PM INF 1/1 Test(s) Passed Method=eth_compileSolidity
5:40PM INF 1/1 Test(s) Passed Method=eth_compileLLL
5:40PM INF 1/1 Test(s) Passed Method=eth_compileSerpent
5:40PM INF 1/1 Test(s) Passed Method=eth_newFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_newFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_newFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_newFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_newFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_newFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_newBlockFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_newPendingTransactionFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_uninstallFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_uninstallFilter
5:40PM INF 1/1 Test(s) Passed Method=eth_getFilterChanges
5:40PM INF 0/1 Test(s) Passed Method=eth_getFilterLogs
5:40PM INF 0/1 Test(s) Passed Method=eth_getLogs
5:40PM INF 1/1 Test(s) Passed Method=eth_getWork
5:40PM INF 1/1 Test(s) Passed Method=eth_submitWork
5:40PM INF 1/1 Test(s) Passed Method=eth_submitHashrate
5:40PM INF 1/1 Test(s) Passed Method=eth_feeHistory
5:40PM INF 1/1 Test(s) Passed Method=eth_maxPriorityFeePerGas
5:40PM INF 1/1 Test(s) Passed Method=eth_createAccessList
5:40PM INF 1/1 Test(s) Passed Method=eth_getProof
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-net_version
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-web3_clientVersion
5:40PM INF 4/5 Test(s) Passed Method=fuzzed-web3_sha3
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-net_peerCount
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-net_listening
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-web3_sha3
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_syncing
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_protocolVersion
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_coinbase
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_mining
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_chainId
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_hashrate
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_hashrate
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_gasPrice
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_accounts
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_blockNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBalance
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBalance
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBalance
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBalance
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getStorageAt
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getStorageAt
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getStorageAt
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getTransactionCount
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getStorageAt
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getTransactionCount
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getTransactionCount
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getTransactionCount
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockTransactionCountByHash
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockTransactionCountByHash
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockTransactionCountByNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockTransactionCountByNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockTransactionCountByNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockTransactionCountByNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getUncleCountByBlockHash
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getUncleCountByBlockNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getUncleCountByBlockNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getUncleCountByBlockNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getUncleCountByBlockHash
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getUncleCountByBlockNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getCode
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getCode
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getCode
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_sign
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_sign
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_signTransaction
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_sendTransaction
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_sendRawTransaction
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_call
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_call
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_call
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_call
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_estimateGas
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockByHash
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockByHash
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockByNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getBlockByNumber
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getTransactionByHash
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getTransactionByBlockHashAndIndex
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getUncleByBlockHashAndIndex
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_compileSolidity
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getUncleByBlockNumberAndIndex
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getCompilers
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_compileSerpent
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_compileLLL
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_newFilter
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_newFilter
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_newFilter
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_newFilter
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_newFilter
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_newFilter
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_newBlockFilter
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_newPendingTransactionFilter
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_uninstallFilter
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_uninstallFilter
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getFilterChanges
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getFilterLogs
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getWork
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getLogs
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_submitWork
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_submitHashrate
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_feeHistory
5:40PM INF 5/5 Test(s) Passed Method=fuzzed-eth_maxPriorityFeePerGas
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_createAccessList
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getProof
5:40PM INF 0/5 Test(s) Passed Method=fuzzed-eth_getTransactionByBlockNumberAndIndex
go run main.go rpcfuzz http://localhost:8545 --fuzz --fuzzn 5  3.37s user 1.76s system 1% cpu 8:06.41 total

What's next?

• Summarizing test results

[praetoriansentry]

Headed in the right direction but i had a few questions.

[praetoriansentry]

This seems a little brittle. I.e. you need to keep this hard coded number and the number of cases in this switch statement in sync. It might be worth making an interface of the various mutators and putting them into a list at somepoint.

[IdrisHanafi]

updated

[praetoriansentry]

This is interesting. Does this mean you can't mutate nil input? It seems like you'd still want that the be mutable.

[IdrisHanafi]

updated it so that it can take nil's now. see below comment!

[praetoriansentry]

Same comment as above. Given that we're fuzzing, it seems like you would fuzz a nil the same way that you would fuzz anything else especially since the fuzzer can produce nil outputs.

[IdrisHanafi]

true...i just updated it so that if it's nil, it will be set to a random string then go through the regular mutator. I wonder what would be a better approach here, i.e. set it to a random value (int, string, etc.) then run it through the mutators?

[praetoriansentry]

This base case seems a little odd. Same potential consider as the other nil checks. If the input is empty you're not doing any mutation?

[IdrisHanafi]

good point! updated, this base case should only happen on delete mutators as there wouldn't be anything to delete in an empty byte slice

[praetoriansentry]

I would say, if you're going to go through the trouble of creating a type of test results, you might want to have an actual constructor to avoid this constructions.

[IdrisHanafi]

added! 🧠 💡

[praetoriansentry]

Same thought with all this ++. YOu might want something like

r := testreporter.New(curTest) // it should be able to get all of the information that it needs from the test interface
r.Passed()

[IdrisHanafi]

thanks for the suggestion, i updated it to incorporate that.

[praetoriansentry]

These aren't helpful names.

[IdrisHanafi]

updated