test: Add a few more corner cases to the base58 test suite #30035
Conversation
|
The following sections might be updated with supplementary metadata relevant to reviewers and maintainers. Code CoverageFor detailed information about the code coverage, see the test coverage report. ReviewsSee the guideline for information on the review process.
If your review is incorrectly listed, please react with 👎 to this comment and the bot will ignore it on the next update. ConflictsReviewers, this pull request conflicts with the following ones:
If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first. |
| auto leadingSpaces = InsecureRandBool() ? std::string(InsecureRandRange(10), ' ') : ""; | ||
| auto trailingSpaces = InsecureRandBool() ? std::string(InsecureRandRange(10), ' ') : ""; |
There was a problem hiding this comment.
nit: Probably outside the scope of this PR (this PR is adding tests, so business logic changes are extraneous), but at first glance, seems like these statements could be simplified, since InsecureRandRange() can return 0, the std::string constructor can handle 0 count, and string operator+ can handle empty string addition. Maybe I'm missing something?
For example:
diff --git a/src/test/base58_tests.cpp b/src/test/base58_tests.cpp
index 49ef9ff5b5..beb5ef3335 100644
--- a/src/test/base58_tests.cpp
+++ b/src/test/base58_tests.cpp
@@ -92,8 +92,8 @@ BOOST_AUTO_TEST_CASE(base58_random_encode_decode_with_optional_spaces)
auto zeroes = InsecureRandBool() ? InsecureRandRange(len + 1) : 0;
auto data = Cat(std::vector<unsigned char>(zeroes, '\000'), g_insecure_rand_ctx.randbytes(len - zeroes));
- auto leadingSpaces = InsecureRandBool() ? std::string(InsecureRandRange(10), ' ') : "";
- auto trailingSpaces = InsecureRandBool() ? std::string(InsecureRandRange(10), ' ') : "";
+ auto leadingSpaces = std::string(InsecureRandRange(10), ' ');
+ auto trailingSpaces = std::string(InsecureRandRange(10), ' ');
auto encoded = leadingSpaces + EncodeBase58Check(data) + trailingSpaces;
std::vector<unsigned char> decoded;There was a problem hiding this comment.
Thanks for checking @tdb3, the results would be similar, but since I assumed the spaces are rare in reality, I gave it different odds.
In my impl the probability that we won't have any leading (or trailing) spaces was 50% + 50%*10%, in your impl it's 10%, so spaces would be in most samples.
I'm fine with both.
There was a problem hiding this comment.
Thanks, that's right (higher probability of no spaces over rand range alone). I don't have a preference, just an observation.
There was a problem hiding this comment.
I like all this, but it would be better to explain in the PR description why it is important/beneficial to include this change since this increases the test complexity.
Probably would be even better to have a separate test case to check for leading and trailing spaces. This test case is intended to check for leading zeros and now it checks for three concerns (leading zeros, leading spaces, and trailing spaces) instead of one.
There was a problem hiding this comment.
it checks for three concerns
That's a property based test, i.e. for random valid inputs it checks that certain conditions hold - in this case a roundtrip, that decoding an encoded results in the original trimmed value.
It's meant to find corner cases that we haven't though of, that's its single concern, we have separate tests for each corner case we know about.
There was a problem hiding this comment.
Added short explanations to the commit message
|
Thanks for the review @edilmedeiros, some of the existing BOOST_CHECK_MESSAGE messages are either in indicative or subjunctive grammatical moods (even in the same file, as you can see). |
I have no personal preference about it, but this is not my point. Take for instance How can (expected) |
9431bc9 to
fc0cc2d
Compare
There was a problem hiding this comment.
Gave another deep look at this, thanks again for submitting this PR.
Beside the specific code comments, please add to the commit message why are you adding new test cases, what they improve in the test logic (and how they help the work on #29473).
src/test/base58_tests.cpp
Outdated
| } | ||
|
|
||
| BOOST_CHECK(!DecodeBase58("invalid"s, result, 100)); | ||
| BOOST_CHECK(!DecodeBase58("invalid\0"s, result, 100)); | ||
| BOOST_CHECK(!DecodeBase58("\0invalid"s, result, 100)); | ||
|
|
||
| BOOST_CHECK(DecodeBase58("good"s, result, 100)); | ||
| BOOST_CHECK( DecodeBase58("good"s, result, 100)); |
There was a problem hiding this comment.
| BOOST_CHECK( DecodeBase58("good"s, result, 100)); | |
| BOOST_CHECK(DecodeBase58("good"s, result, 100)); |
I understand the rational of aligning this with surrounding context, but does seem against guidelines and will look like a typo for others.
There was a problem hiding this comment.
The file was already using this format: https://github.com/bitcoin/bitcoin/blob/master/src/test/base58_tests.cpp#L74
There was a problem hiding this comment.
Looks more like a typo, see lines 67 and 78.
There was a problem hiding this comment.
I don't feel strongly about either, removed the space
src/test/base58_tests.cpp
Outdated
| EncodeBase58(sourcedata) == base58string, | ||
| strTest); | ||
| EncodeBase58(sourcedata) == base58string, | ||
| strTest << "\nEncoding `" << HexStr(Span(sourcedata)) << "` as `" << EncodeBase58(sourcedata) << "` should match `" << base58string << "`" |
There was a problem hiding this comment.
| strTest << "\nEncoding `" << HexStr(Span(sourcedata)) << "` as `" << EncodeBase58(sourcedata) << "` should match `" << base58string << "`" | |
| strTest << ": got \"" << EncodeBase58(sourcedata) << "\"" |
What about a little less verbose and taking advantage of the strTest string that has both input and expected outcome?
There was a problem hiding this comment.
Didn't realize this, thanks!
test/base58_tests.cpp:40: info: check '["271F359E","zzzzy"]: got "zzzzy"' has passed
src/test/base58_tests.cpp
Outdated
| BOOST_CHECK(DecodeBase58(base58string, result, 256)); | ||
| BOOST_CHECK_MESSAGE( | ||
| result == expected, | ||
| strTest << "\nDecoding `" << base58string << "` as `" << HexStr(result) << "` should match `" << HexStr(expected) << "`" |
There was a problem hiding this comment.
| strTest << "\nDecoding `" << base58string << "` as `" << HexStr(result) << "` should match `" << HexStr(expected) << "`" | |
| strTest << ": got \"" << EncodeBase58(sourcedata) << "\"" |
Same suggestion as above.
There was a problem hiding this comment.
test/base58_tests.cpp:65: info: check '["271F35A1","211112"]: got XXX "271f35a1"' has passed
| auto leadingSpaces = InsecureRandBool() ? std::string(InsecureRandRange(10), ' ') : ""; | ||
| auto trailingSpaces = InsecureRandBool() ? std::string(InsecureRandRange(10), ' ') : ""; |
There was a problem hiding this comment.
I like all this, but it would be better to explain in the PR description why it is important/beneficial to include this change since this increases the test complexity.
Probably would be even better to have a separate test case to check for leading and trailing spaces. This test case is intended to check for leading zeros and now it checks for three concerns (leading zeros, leading spaces, and trailing spaces) instead of one.
src/test/base58_tests.cpp
Outdated
| auto ok = DecodeBase58Check(encoded, decoded, len + InsecureRandRange(257 - len)); | ||
| BOOST_CHECK(ok); | ||
| BOOST_CHECK(data == decoded); | ||
| BOOST_CHECK_MESSAGE(!DecodeBase58Check(encoded, decoded, InsecureRandRange(len)), "Decoding should fail for smaller max_ret_len"); |
There was a problem hiding this comment.
Another place where there's a random parameter that's not reported making potential debugging impossible.
Also, the text is no good since max_ret_len is the maximum return size. Better something like Decoding exceeds xxx length. where xxx prints the random parameter.
There was a problem hiding this comment.
Indeed, added the values to the error message:
test/base58_tests.cpp:102: error: in "base58_tests/base58_random_encode_decode_with_optional_spaces": Decoding should fail for `invalidSmallResultLength` (61)
test/base58_tests.cpp:104: error: in "base58_tests/base58_random_encode_decode_with_optional_spaces": Decoding should succeed within sufficiently large result length (134)
src/test/base58_tests.cpp
Outdated
| BOOST_CHECK(ok); | ||
| BOOST_CHECK(data == decoded); | ||
| BOOST_CHECK_MESSAGE(!DecodeBase58Check(encoded, decoded, InsecureRandRange(len)), "Decoding should fail for smaller max_ret_len"); | ||
| BOOST_CHECK_MESSAGE( DecodeBase58Check(encoded, decoded, len + InsecureRandRange(257 - len)), "Decoding should succeed within valid length range"); |
There was a problem hiding this comment.
Same thing about unreported random parameter in the test. This is worse yet since there's a weird logic to get the param. It's good that you submitted this PR, the original test deserved a better look already.
There was a problem hiding this comment.
Please explain in the PR first comment and in the commit message why are you adding these specific test cases, what do they improve in the existing test logic.
There was a problem hiding this comment.
Thanks for your detailed review, will do that this week
b1142e3 to
861ab92
Compare
Add better errors for base58_EncodeBase58 and base58_DecodeBase58 to see the differing value in case of failure. Extended the base58_random_encode_decode_with_optional_spaces property based test - containing a simple roundtrip with decoding validation - to stress the leading and trailing space parsing as well. Also extended the base58_encode_decode.json file with a few corner cases - e.g. on a transition of power of 58 to check the boundaries. Co-authored-by: Edil Medeiros <jose.edil@gmail.com>
861ab92 to
9a540a7
Compare
| @@ -26,17 +26,18 @@ BOOST_AUTO_TEST_CASE(base58_EncodeBase58) | |||
| UniValue tests = read_json(json_tests::base58_encode_decode); | |||
| for (unsigned int idx = 0; idx < tests.size(); idx++) { | |||
| const UniValue& test = tests[idx]; | |||
| std::string strTest = test.write(); | |||
| auto strTest = test.write(); | |||
There was a problem hiding this comment.
Changes like adding auto instead of the actual type are mostly noise. I don't think there is precedence for merging these. Can you drop them again (here and in other places where it is the sole change on that line)?
There was a problem hiding this comment.
I considered the actual type to be just noise in these cases, but you seem to have a stronger preference for minimal diff, reverted.
| std::vector<unsigned char> sourcedata = ParseHex(test[0].get_str()); | ||
| std::string base58string = test[1].get_str(); | ||
| auto encodedSource = EncodeBase58(ParseHex(test[0].get_str())); | ||
| auto base58string = test[1].get_str(); | ||
| BOOST_CHECK_MESSAGE( |
There was a problem hiding this comment.
If you are touching this, why not just make this BOOST_CHECK_EQUAL(EncodeBase58(sourcedata), base58string); and drop all the other noisy changes here?
| @@ -56,8 +57,12 @@ BOOST_AUTO_TEST_CASE(base58_DecodeBase58) | |||
| } | |||
| std::vector<unsigned char> expected = ParseHex(test[0].get_str()); | |||
| std::string base58string = test[1].get_str(); | |||
|
|
|||
There was a problem hiding this comment.
Unneeded whitespace change.
| @@ -71,7 +76,7 @@ BOOST_AUTO_TEST_CASE(base58_DecodeBase58) | |||
|
|
|||
| // check that DecodeBase58 skips whitespace, but still fails with unexpected non-whitespace at the end. | |||
| BOOST_CHECK(!DecodeBase58(" \t\n\v\f\r skip \r\f\v\n\t a", result, 3)); | |||
| BOOST_CHECK( DecodeBase58(" \t\n\v\f\r skip \r\f\v\n\t ", result, 3)); | |||
| BOOST_CHECK(DecodeBase58(" \t\n\v\f\r skip \r\f\v\n\t ", result, 3)); | |||
There was a problem hiding this comment.
This whitespace was intentional such that the escape patterns can easily be compared with one another. Please leave it like it is.
There was a problem hiding this comment.
This was specifically requested, but I'll revert, since I liked the spaces: #30035 (comment)
| BOOST_CHECK_MESSAGE(result.size() == expected.size() && std::equal(result.begin(), result.end(), expected.begin()), strTest); | ||
| BOOST_CHECK_MESSAGE( | ||
| result == expected, | ||
| strTest << ": got \"" << HexStr(result) << "\"" |
There was a problem hiding this comment.
Not sure if this change is really worth it (and the one adding more context to the case above). There is no randomness involved here and the programmer will have to debug anyway if there is a failure. The other changes for printing some context do make sense, since there is randomness involved and the failure case may not be reproduced immediately.
| auto ok = DecodeBase58Check(encoded, decoded, len + InsecureRandRange(257 - len)); | ||
| BOOST_CHECK(ok); | ||
| BOOST_CHECK(data == decoded); | ||
| auto invalidSmallResultLength = InsecureRandRange(len); |
There was a problem hiding this comment.
Please stick to the symbol naming conventions in https://github.com/bitcoin/bitcoin/blob/master/doc/developer-notes.md#coding-style-c - specifically use snake_case everywhere.
There was a problem hiding this comment.
The rest of the code was using this style.
| @@ -81,19 +86,26 @@ BOOST_AUTO_TEST_CASE(base58_DecodeBase58) | |||
| BOOST_CHECK(!DecodeBase58Check("3vQB7B6MrGQZaxCuFg4oh\0" "0IOl"s, result, 100)); | |||
| } | |||
|
|
|||
| BOOST_AUTO_TEST_CASE(base58_random_encode_decode) | |||
| BOOST_AUTO_TEST_CASE(base58_random_encode_decode_with_optional_spaces) | |||
There was a problem hiding this comment.
I don't think this change makes sense, since there is already other stuff added to the test data. I would just leave it as is.
k, closing. |
| @@ -11,6 +11,13 @@ | |||
| ["ecac89cad93923c02321", "EJDM8drfXA6uyA"], | |||
| ["10c8511e", "Rt5zm"], | |||
| ["00000000000000000000", "1111111111"], | |||
| ["00000000000000000000000000000000000000000000000000000000000000000000000000000000", "1111111111111111111111111111111111111111"], | |||
There was a problem hiding this comment.
Seems fine to just add the new data, no?
There was a problem hiding this comment.
Skipped the rest of the changes, moved these over to #30746
|
I would have ACKed this if it were cleaned up a bit. The new test data and better error messages in the randomized tests are good changes. |
…z (and padding) tests f919d91 fuzz: Add fuzzing for max_ret_len in DecodeBase58/DecodeBase58Check (Lőrinc) 635bc58 test: Fuzz Base32/Base58/Base64 roundtrip conversions (Lőrinc) 5dd3a0d test: Extend base58_encode_decode.json with edge cases (Lőrinc) ae40cf1 test: Add padding tests for Base32/Base64 (Lőrinc) Pull request description: Added fuzzed roundtrips for `base[32|58|64]` encoding to make sure encoding/decoding are symmetric. Note that if we omit the padding in `EncodeBase32` we won't be able to decode it with `DecodeBase32`. Added dedicated padding tests to cover failure behavior Also moved over the Base58 json test edge cases from #30035 ACKs for top commit: hodlinator: re-ACK f919d91 achow101: ACK f919d91 Tree-SHA512: 6a6c63d0a659b70d42aad7a8f37ce6e372756e2c88c84e7be5c1ff1f2a7c58860ed7113acbe1a9658a7d19deb91f0abe2ec527ed660335845cd1e0a9380b4295
Split out the additional tests from the base58 optimization PR as suggested #29473 (comment)