lo/libsoliton
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

initial commit
Some checks failed
CI / lint (push) Successful in 1m37s
Details
CI / test-python (push) Successful in 1m49s
Details
CI / test-zig (push) Successful in 1m39s
Details
CI / test-wasm (push) Successful in 1m54s
Details
CI / test (push) Successful in 14m44s
Details
CI / miri (push) Successful in 14m18s
Details
CI / build (push) Successful in 1m9s
Details
CI / fuzz-regression (push) Successful in 9m9s
Details
CI / publish (push) Failing after 1m10s
Details
CI / publish-python (push) Failing after 1m46s
Details
CI / publish-wasm (push) Has been cancelled
Details

Browse source 
Signed-off-by: Kamal Tufekcic <kamal@lo.sh>
This commit is contained in:
Kamal Tufekcic 2026-04-02 23:48:10 +03:00
commit 1d99048c95
No known key found for this signature in database
165830 changed files with 79062 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

59
soliton/fuzz/fuzz_targets/fuzz_dm_queue_roundtrip.rs Normal file
View file

@ -0,0 +1,59 @@
#![no_main]
use libfuzzer_sys::fuzz_target;
use soliton::storage::{encrypt_dm_queue_blob, decrypt_dm_queue_blob, StorageKey, StorageKeyRing};
const FUZZ_KEY: [u8; 32] = [0x42; 32];
fuzz_target!(|data: &[u8]| {
// Wire layout: [compress_flag (1)] [batch_id_len (1)] [batch_id (..)] [plaintext (..)]
// Minimum: 2 bytes (compress flag + batch_id_len).
if data.len() < 2 {
return;
}
// Cap input size to prevent OOM — compress_to_vec allocates working
// buffers proportional to input size.
if data.len() > 1_048_576 {
return;
}
let compress = data[0] & 0x01 != 0;
let batch_len = data[1] as usize;
// batch_id must be valid UTF-8 — use a fixed string to avoid
// rejecting most fuzz inputs on UTF-8 validation.
let batch_id = if batch_len == 0 { "fuzz-batch" } else { "fuzz-batch-alt" };
let plaintext = if data.len() > 2 { &data[2..] } else { &[] };
let recipient_fp: [u8; 32] = [0xAA; 32];
let key = StorageKey::new(1, FUZZ_KEY).unwrap();
// encrypt_dm_queue_blob must never panic. Exercises: DM queue AAD
// construction (build_dm_queue_aad binds recipient_fp + batch_id),
// compression, nonce generation, XChaCha20-Poly1305 encryption.
let blob = match encrypt_dm_queue_blob(&key, plaintext, &recipient_fp, batch_id, compress) {
Ok(b) => b,
Err(_) => return,
};
// Roundtrip: decrypt must recover the original plaintext.
// Catches AAD mismatch, length-prefix errors, compression flag bugs.
let keyring = StorageKeyRing::new(StorageKey::new(1, FUZZ_KEY).unwrap()).unwrap();
let recovered = decrypt_dm_queue_blob(&keyring, &blob, &recipient_fp, batch_id)
.expect("decrypt_dm_queue_blob failed on freshly encrypted blob");
assert_eq!(&*recovered, plaintext, "DM queue roundtrip mismatch");
// Wrong recipient fingerprint must fail — verifies AAD binding.
let wrong_fp: [u8; 32] = [0xBB; 32];
assert!(
decrypt_dm_queue_blob(&keyring, &blob, &wrong_fp, batch_id).is_err(),
"decrypt must fail with wrong recipient_fp"
);
// Wrong batch_id must fail — verifies AAD binding.
assert!(
decrypt_dm_queue_blob(&keyring, &blob, &recipient_fp, "wrong-batch").is_err(),
"decrypt must fail with wrong batch_id"
);
});