Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add a simple unicode fuzz test as a standalone example. #23

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Add a simple unicode fuzz test as a standalone example. #23

wants to merge 2 commits into from

Conversation

calmofthestorm
Copy link
Contributor

This adds a multithreaded fuzz test that will include all Unicode scalar values, along with some basic structural formatting like headlines.

I ran it for an hour or so on 0.8.4 and found no problems.

The generative model could be improved a great deal to generate more bits and pieces of valid Org structure (another approach would be to take valid org files as input and introduce mutations), but this gives me more confidence.

@PoiScript
Copy link
Owner

To be honest, I'm still wondering if it's really necessary....

Could you please describe what's difference between cargo fuzz and your own implementation?

@calmofthestorm
Copy link
Contributor Author

We can close this if you like. Running it has given me more confidence, so it has served its purpose to an extent.

I've been having issues with the fuzzer immediately dying with a bug in jetscii every time. I tried to troubleshoot this, and was able to reproduce it in a simple example not involving orgize, but only when I specify a version in Cargo.toml. When I tried to build instead from git, I was unable to reproduce the ASAN violation, despite removing Cargo.lock and target/. I assume there's something going on I don't understand involving rust toolchain or something. Here's the example, if you are interested:

use jetscii::{bytes, BytesConst};

fn main() {
    lazy_static::lazy_static! {
        static ref PRE_BYTES: BytesConst =
            bytes!(b'@');
    }

    PRE_BYTES.find(b" ");
}

Run with RUSTFLAGS="-Z sanitizer=address" cargo +nightly run --target x86_64-unknown-linux-gnu of course.

I'm also not sure how much time cargo fuzz will spend generating invalid unicode in order to generate larger length strings. I know it tries to explore branching, but that seems likely to bias toward short strings and/or generate a lot of invalid inputs which are quickly skipped.

I was working on adding an ability to take as input personal org files and break them up into fragments. I have it in a different fuzz test but need to port it over, which may or may not happen though.

I like mine checks writing org and html as well, but I could easily add a cargo fuzz target for that.

Overall it's not clear to me what concretely this adds over cargo fuzz. I have found it valuable to have written, but it's hard to make a case that it should be committed.

@PoiScript PoiScript mentioned this pull request Nov 17, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@calmofthestorm @PoiScript