Background & current state
Property-based testing is tracked (#362) and some tests exist (contracts/*/src/test.rs), but fuzzing coverage isn't comprehensive across all state-changing entrypoints (credit/claim/vesting/tiers/redeem/register/admin ops).
Goal
Expand contract fuzzing (proptest/arbitrary) to every state-changing entrypoint, asserting invariants hold under random sequences.
Technical design
- For each contract, generate random valid/invalid call sequences and assert invariants (no underflow/overflow, claimed ≤ credited, reserve solvency, participant-count consistency, nonce monotonicity). Reuse the invariants from the formal-verification issue (NEW-053) as oracles.
- Seed corpus + CI fuzz job.
Edge cases
- Adversarial sequences (claim before credit, double-claim, replayed admin nonce).
- Boundary amounts (0, u64::MAX).
- Interleaved campaign/rewards interactions (integration crate).
Task breakdown
Acceptance criteria
Testing & verification
- CI fuzz job; intentionally-broken invariant must fail.
Out of scope
- Backend API fuzzing (NEW-062).
Dependencies / related
Difficulty: medium · Effort: M
Background & current state
Property-based testing is tracked (#362) and some tests exist (
contracts/*/src/test.rs), but fuzzing coverage isn't comprehensive across all state-changing entrypoints (credit/claim/vesting/tiers/redeem/register/admin ops).Goal
Expand contract fuzzing (proptest/arbitrary) to every state-changing entrypoint, asserting invariants hold under random sequences.
Technical design
Edge cases
Task breakdown
Acceptance criteria
Testing & verification
Out of scope
Dependencies / related
Difficulty: medium · Effort: M