Skip to content

feat(avm): fuzzer treats enqueued call size as coverage#19615

Merged
IlyasRidhuan merged 3 commits into
merge-train/avmfrom
ir/01-14-feat_avm_fuzzer_treats_enqueued_call_size_as_coverage
Jan 16, 2026
Merged

feat(avm): fuzzer treats enqueued call size as coverage#19615
IlyasRidhuan merged 3 commits into
merge-train/avmfrom
ir/01-14-feat_avm_fuzzer_treats_enqueued_call_size_as_coverage

Conversation

@IlyasRidhuan

@IlyasRidhuan IlyasRidhuan commented Jan 15, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Incentivise the fuzzer to make more enqueued calls during each run by rewarding it with coverage progress

This was referenced Jan 15, 2026
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
@IlyasRidhuan Graphite App

IlyasRidhuan commented Jan 15, 2026
edited
Loading

Copy link
Copy Markdown
Contributor Author

This stack of pull requests is managed by Graphite. Learn more about stacking.

@IlyasRidhuan IlyasRidhuan mentioned this pull request Jan 15, 2026
Merged
@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-feat_avm_fuzzer_treats_enqueued_call_size_as_coverage branch from 4b2c8b8 to c45dfe8 Compare January 15, 2026 13:02
@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-perf_avm_analyze_fuzzer_corpus_distribution branch from cadc848 to 8ccc25c Compare January 15, 2026 13:02
@IlyasRidhuan IlyasRidhuan marked this pull request as ready for review January 15, 2026 13:48
@IlyasRidhuan IlyasRidhuan changed the base branch from ir/01-14-perf_avm_analyze_fuzzer_corpus_distribution to graphite-base/19615 January 15, 2026 14:56
@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-feat_avm_fuzzer_treats_enqueued_call_size_as_coverage branch from c45dfe8 to 6b219ff Compare January 15, 2026 14:56
@IlyasRidhuan IlyasRidhuan changed the base branch from graphite-base/19615 to ir/01-14-perf_avm_analyze_fuzzer_corpus_distribution January 15, 2026 14:56
@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-perf_avm_analyze_fuzzer_corpus_distribution branch from b237e04 to d294944 Compare January 15, 2026 16:33
@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-feat_avm_fuzzer_treats_enqueued_call_size_as_coverage branch from 6b219ff to bf4de51 Compare January 15, 2026 16:33
@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-perf_avm_analyze_fuzzer_corpus_distribution branch from d294944 to 789758e Compare January 15, 2026 18:33
@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-feat_avm_fuzzer_treats_enqueued_call_size_as_coverage branch from bf4de51 to 58ba4bc Compare January 15, 2026 18:33
@AztecBot

AztecBot commented Jan 15, 2026
edited
Loading

Copy link
Copy Markdown
Collaborator

Flakey Tests

🤖 says: This CI run detected 2 tests that failed, but were tolerated due to a .test_patterns.yml entry.

\033FLAKED\033 (8;;http://ci.aztec-labs.com/ce840aa4deaf67b5�ce840aa4deaf67b58;;�):  yarn-project/end-to-end/scripts/run_test.sh simple src/e2e_epochs/epochs_invalidate_block.parallel.test.ts "committee member invalidates a block if proposer does not come through" (94s) (code: 1) group:e2e-p2p-epoch-flakes (\033IlyasRidhuan\033: feat(avm): fuzzer treats enqueued call size as coverage)
\033FLAKED\033 (8;;http://ci.aztec-labs.com/abef4abcf55ac737�abef4abcf55ac7378;;�):  yarn-project/end-to-end/scripts/run_test.sh simple src/e2e_epochs/epochs_invalidate_block.parallel.test.ts "proposer invalidates multiple blocks" (125s) (code: 1) group:e2e-p2p-epoch-flakes (\033IlyasRidhuan\033: feat(avm): fuzzer treats enqueued call size as coverage)

@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-feat_avm_fuzzer_treats_enqueued_call_size_as_coverage branch from 58ba4bc to 9e428cd Compare January 16, 2026 14:33
@IlyasRidhuan IlyasRidhuan force-pushed the ir/01-14-perf_avm_analyze_fuzzer_corpus_distribution branch from 789758e to e3ea0bd Compare January 16, 2026 14:33
Base automatically changed from ir/01-14-perf_avm_analyze_fuzzer_corpus_distribution to merge-train/avm January 16, 2026 15:09
@IlyasRidhuan IlyasRidhuan merged commit a811a3c into merge-train/avm Jan 16, 2026
16 of 17 checks passed
@IlyasRidhuan IlyasRidhuan deleted the ir/01-14-feat_avm_fuzzer_treats_enqueued_call_size_as_coverage branch January 16, 2026 15:13
@AztecBot AztecBot mentioned this pull request Jan 16, 2026
Merged
github-merge-queue Bot pushed a commit that referenced this pull request Jan 17, 2026
@fcarreiro
feat: merge-train/avm (#19622)
5a7a453 
BEGIN_COMMIT_OVERRIDE
feat(avm): contract instance mutation (#19499)
fix(avm): Fix note hash exists fuzzing (#19616)
fix(avm): Build trace on coverage prover runs (#19627)
chore(avm): Use PC alias type consistently (#19625)
feat(avm): mutate global gas fees and timestamp (#19500)
docs: avm docs (#19603)
fix(avm): Increase chances of fuzzer finding limits (#19656)
fix(avm)!: de-risk memory injection attacks (#19620)
fix(avm): Fix TS ECC add infinity handling (#19657)
fix(avm): Fix jumpif in fuzzer (#19655)
feat(avm): protocol contractg mutations (#19586)
chore(avm): analyze fuzzer corpus distribution (#19614)
feat(avm): fuzzer treats enqueued call size as coverage (#19615)
refactor(avm): Refactor calldata copy and return data copy fuzzing
(#19666)
feat(avm): boundary values for mutations (#19617)
END_COMMIT_OVERRIDE
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sirasistant sirasistant sirasistant approved these changes

@fcarreiro fcarreiro Awaiting requested review from fcarreiro

@dbanks12 dbanks12 Awaiting requested review from dbanks12

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@IlyasRidhuan @AztecBot @sirasistant