Fuzzing enhancements: clean up README and add CI job (#1322)

benalleng · web-flow · commit 00e7e0d27c1d · 2026-02-10T08:42:06.000-05:00
diff --git a/.github/workflows/rust.yml b/.github/workflows/rust.yml
@@ -144,3 +144,16 @@ jobs:
         with:
           name: mutants-incremental-cargo.out
           path: mutants.out
+
+  Fuzz:
+    name: Fuzz build
+    runs-on: ubuntu-latest
+    steps:
+      - name: "Checkout repo"
+        uses: actions/checkout@v4
+      - name: "Install nightly toolchain"
+        uses: dtolnay/rust-toolchain@nightly
+      - name: "Use cache"
+        uses: Swatinem/rust-cache@v2
+      - name: "Build fuzz targets"
+        run: cd fuzz && cargo build
diff --git a/fuzz/README.md b/fuzz/README.md
@@ -4,13 +4,11 @@
   Payjoin-fuzz
 </h1>
 
-Fuzz tests work by generating a ton of random noise that is morhped into parameter arguments for tests to run and validate that none of it causes it to have unhandled crashes.
+Fuzz tests work by generating a ton of random noise that is morphed into parameter arguments for tests to run and validate that none of it causes unhandled crashes.
 
 ### Bootstrapping
 
-#### cargo-fuzz / libFuzzer
-
-To use simply start a nix dev shell
+This fuzzer uses [cargo-fuzz](https://github.com/rust-fuzz/cargo-fuzz) (libFuzzer). To get started, enter the nix dev shell and run the fuzzer:
 
 ```shell
 nix develop
@@ -20,21 +18,19 @@ cd fuzz/
 
 ### Running fuzzers
 
-Note for some users the fuzz engine optionality is limited as there may not be any active maintenance for a fuzzer on that system. Namely MacOS and NixOS users should prefer `libfuzzer` as `honggfuzz` is not actively maintained for those systems.
-
-The `fuzz.sh` and `cycle.sh` shell scripts allow for single pass fuzzing and continuous long term fuzzing resepctively.
+The `fuzz.sh` and `cycle.sh` shell scripts allow for single pass fuzzing and continuous long term fuzzing respectively.
 
 #### Using `fuzz.sh`
 
-This scripts accepts an optional fuzz target. It run all available targets when this option is omitted.
+This script accepts an optional fuzz target. It runs all available targets when this option is omitted.
 
-`./fuzz.sh <fuzz-target>`
+`./fuzz.sh [fuzz-target]`
 
-for example the command `.fuzz.sh afl uri_deserialize_pjuri` selects the afl engine and runs only the `uri_deserialize_pjuri` for 30 seconds.
+For example, `./fuzz.sh uri_deserialize_pjuri` runs only the `uri_deserialize_pjuri` target for 30 seconds.
 
 #### Using `cycle.sh`
 
-This command will run over all targets continuously changing targets every hour.
+This command will run over all targets continuously, changing targets every hour.
 
 `./cycle.sh`
 
