Skip to content

chore(fuzz): Fuzz the SSA parser#8647

Merged
aakoshh merged 6 commits intomasterfrom
af/ast-fuzz-ssa-parser
May 28, 2025
Merged

chore(fuzz): Fuzz the SSA parser#8647
aakoshh merged 6 commits intomasterfrom
af/ast-fuzz-ssa-parser

Conversation

@aakoshh
Copy link
Contributor

@aakoshh aakoshh commented May 22, 2025
edited
Loading

Description

Problem*

Related to #8620

Some parts of the SSA Instruction may not be displayed by the printer, which means the information would not survive an SSA print+parse roundtrip.

Summary*

Adds a new test under the ast_fuzzer which generates an arbitrary Program, chooses an arbitrary SSA pass, compiles the program up to that point, prints the SSA into a string, parses the SSA, then compares that all values in the DFG are the same.

Run it like so:

cargo test -p noir_ast_fuzzer --test parser

or to replicate a failure:

NOIR_ARBTEST_SEED=0x9ecc135e00100000 cargo test -p noir_ast_fuzzer --test parser

Additional Context

It fails currently with various seeds. One problem based on the 3rd example seems to be that the parser must be going in the order of appearance of blocks, which has been changed to alphabetical order, rather than following the CFG topological ordering, so it looks for IDs before they are defined.

0x9ecc135e00100000
v36 = make_array b"\u{c}"
                     ^^^^
                     '\u' is not a valid escape sequence. Use '\' for a literal backslash character.
0xa683a43200100000
    v1842, v1843, v1844 = call f1(v1838, v1827, v1840, v1841) -> (u1, u1, u128)
                                         ^^^^^
                                         Unknown variable 'v1827'
0x8e62ca0c00100000
    v370 = make_array [v367, v262, v369] : [[Field; 4]; 3]
                             ^^^^
                             Unknown variable 'v262'

Documentation*

Check one:

  • No documentation needed.
  • Documentation included in this PR.
  • [For Experimental Features] Documentation to be submitted in a separate PR.

PR Checklist*

  • I have tested the changes locally.
  • I have formatted the changes with Prettier and/or cargo fmt on default settings.

@aakoshh aakoshh requested a review from asterite May 22, 2025 20:35
github-actions[bot]
github-actions bot reviewed May 22, 2025
View reviewed changes
Copy link
Contributor

@github-actions github-actions bot left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Performance Alert ⚠️

Possible performance regression was detected for benchmark 'Test Suite Duration'.
Benchmark result of this commit is worse than the previous benchmark result exceeding threshold 1.20.

Benchmark suite Current: b1a5e4e Previous: 3da5288 Ratio
test_report_noir-lang_noir_bigcurve_ 304 s 231 s 1.32

This comment was automatically generated by workflow using github-action-benchmark.

CC: @TomAFrench

@aakoshh aakoshh requested a review from michaeljklein May 22, 2025 20:53
This was referenced May 22, 2025
Closed
Closed
Closed
@aakoshh aakoshh marked this pull request as ready for review May 23, 2025 15:00
@aakoshh aakoshh mentioned this pull request May 28, 2025
Merged
5 tasks
@aakoshh aakoshh requested a review from a team May 28, 2025 15:55
@aakoshh aakoshh enabled auto-merge May 28, 2025 15:56
asterite
asterite reviewed May 28, 2025
View reviewed changes
asterite
asterite approved these changes May 28, 2025
View reviewed changes
Copy link
Collaborator

@asterite asterite left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great!

@aakoshh aakoshh added this pull request to the merge queue May 28, 2025
Merged via the queue into master with commit f8f230d May 28, 2025
118 of 119 checks passed
@aakoshh aakoshh deleted the af/ast-fuzz-ssa-parser branch May 28, 2025 16:40
@AztecBot AztecBot mentioned this pull request May 29, 2025
Merged
github-merge-queue bot pushed a commit to AztecProtocol/aztec-packages that referenced this pull request Jun 1, 2025
@AztecBot @TomAFrench @asterite
chore: Bump Noir reference (#14492)
6131311 
Automated pull of nightly from the
[noir](https://github.com/noir-lang/noir) programming language, a
dependency of Aztec.
BEGIN_COMMIT_OVERRIDE
fix(fmt): correctly format mixed secondary attributes and doc comments
(noir-lang/noir#8735)
fix!: require types for trait impl associated constants
(noir-lang/noir#8734)
fix!: Prevent returning references from if expressions
(noir-lang/noir#8731)
fix: cast signed to u1 follow-up
(noir-lang/noir#8730)
fix: cast signed to u1 (noir-lang/noir#8720)
fix: do not mutate arrays later copied inside other arrays
(noir-lang/noir#8701)
chore: box `AsTraitPath` and `TypePath` in `ExpressionKind`
(noir-lang/noir#8716)
fix: general solution for accessing associated constants
(noir-lang/noir#8417)
fix(ssa): Validate checked signed add/sub is followed by a truncate
(noir-lang/noir#8706)
chore: add pre- and post-check on `array_set` optimization pass
(noir-lang/noir#8714)
fix: merge expr bindings with instantiations bindings during
monomorphization (noir-lang/noir#8713)
fix: better way to do LSP file overrides
(noir-lang/noir#8702)
fix(fmt): correct indentation when formatting long struct patterns
(noir-lang/noir#8711)
fix(fuzz): Prevent breaking/continuing out from let blocks in the AST
fuzzer (noir-lang/noir#8708)
chore: remove override for zero length inputs
(noir-lang/noir#8709)
feat: Replace converging jmpif with empty block destinations with a
single jmp (noir-lang/noir#8613)
feat(cli): Add `nargo interpret` command
(noir-lang/noir#8700)
chore: more 1-tuple printing fixes
(noir-lang/noir#8699)
chore(fuzz): Fuzz the SSA parser
(noir-lang/noir#8647)
fix: (SSA parser) translate blocks in logical order rather than syntax
order (noir-lang/noir#8668)
fix(SSA): show and parse range_check's assert_message
(noir-lang/noir#8652)
chore: Show the step number in the SSA message
(noir-lang/noir#8698)
chore(docs): Add pointers to tests
(noir-lang/noir#8695)
chore(fuzz): Capture comptime print output
(noir-lang/noir#8635)
fix: nargo expand reexports correctly implemented
(noir-lang/noir#8693)
feat(cli): Show multiple SSA passes
(noir-lang/noir#8692)
chore(test): Add regression test for defunctionalize
(noir-lang/noir#8691)
chore: add an assertion when parsing SSA that all functions are
well-formed (noir-lang/noir#8671)
feat!: prevent compiling blake3 hashes which barretenberg cannot prove
(noir-lang/noir#8690)
fix(ssa): Remove the array cache from the function inserter
(noir-lang/noir#8607)
chore: bump external pinned commits
(noir-lang/noir#8684)
chore: reenable fuzzing tests in CI
(noir-lang/noir#8688)
fix: Handle `&mut function` in defunctionalize
(noir-lang/noir#8665)
fix(defunctionalize): Higher order functions (HOF) dynamic dispatch and
HOFs in arrays (noir-lang/noir#8672)
chore(ci): avoid running fuzzer tests in the merge queue
(noir-lang/noir#8664)
fix: Make casts in `comptime` consistent with runtime casts
(noir-lang/noir#8669)
fix: relax connectedness requirement on purity analysis pass
(noir-lang/noir#8667)
fix: always use `u32` for indexing arrays in SSA
(noir-lang/noir#8633)
chore: explicitly pull from `next` branch in aztec-packages
(noir-lang/noir#8660)
chore(fuzz): Build the dictionary from the SSA
(noir-lang/noir#8591)
chore(docs): Remove old versioned docs
(noir-lang/noir#8061)
chore: bump external pinned commits
(noir-lang/noir#8634)
fix(SSA): don't use string literal if byte is "form feed" ('\f')
(noir-lang/noir#8653)
chore(defunctionalize): Add regression test for missing lambda variants
panic (noir-lang/noir#8642)
chore(ci): Do not run ast_fuzzer orig vs. morph in ci
(noir-lang/noir#8646)
fix: disable underflow fix for fields
(noir-lang/noir#8631)
fix: revert "fix: error on unused generic in trait impl
(noir-lang/noir#8395)"
(noir-lang/noir#8636)
fix(ssa interpreter): Default to zero when we have an overflowing shl
(noir-lang/noir#8638)
fix: ensure that purity analysis pass explores all functions
(noir-lang/noir#8452)
feat: acir_formal_proofs (noir-lang/noir#8140)
fix: error on unused generic in trait impl
(noir-lang/noir#8395)
fix(expand): use re-exports for non-visibile items
(noir-lang/noir#8374)
END_COMMIT_OVERRIDE

---------

Co-authored-by: AztecBot <tech@aztecprotocol.com>
Co-authored-by: Tom French <15848336+TomAFrench@users.noreply.github.com>
Co-authored-by: Ary Borenszweig <asterite@gmail.com>
@AztecBot AztecBot mentioned this pull request Jun 1, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] left review comments

@asterite asterite asterite approved these changes

@michaeljklein michaeljklein Awaiting requested review from michaeljklein

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aakoshh @asterite