mirror of
https://github.com/systemd/systemd.git
synced 2024-10-30 14:55:37 +03:00
c84fc00b37
The idea was to catch CFLite regressions but since the action itself pulls the latest docker images it can't be pinned properly and issues like https://github.com/google/clusterfuzzlite/issues/91 are going to pop up anyway. Let's unpin it by analogy with CIFuzz and hope it doesn't break very often.
40 lines
1.1 KiB
YAML
40 lines
1.1 KiB
YAML
---
|
|
# vi: ts=2 sw=2 et:
|
|
# SPDX-License-Identifier: LGPL-2.1-or-later
|
|
#
|
|
name: ClusterFuzzLite PR fuzzing
|
|
on:
|
|
pull_request:
|
|
branches:
|
|
- main
|
|
- v[0-9]+-stable
|
|
|
|
permissions: read-all
|
|
|
|
jobs:
|
|
PR:
|
|
runs-on: ubuntu-latest
|
|
if: github.repository != 'systemd/systemd' || github.event.pull_request.user.login == 'dependabot[bot]'
|
|
concurrency:
|
|
group: ${{ github.workflow }}-${{ matrix.sanitizer }}-${{ github.ref }}
|
|
cancel-in-progress: true
|
|
strategy:
|
|
fail-fast: false
|
|
matrix:
|
|
sanitizer: [address, undefined, memory]
|
|
steps:
|
|
- name: Build Fuzzers (${{ matrix.sanitizer }})
|
|
id: build
|
|
uses: google/clusterfuzzlite/actions/build_fuzzers@v1
|
|
with:
|
|
sanitizer: ${{ matrix.sanitizer }}
|
|
github-token: ${{ secrets.GITHUB_TOKEN }}
|
|
- name: Run Fuzzers (${{ matrix.sanitizer }})
|
|
id: run
|
|
uses: google/clusterfuzzlite/actions/run_fuzzers@v1
|
|
with:
|
|
github-token: ${{ secrets.GITHUB_TOKEN }}
|
|
fuzz-seconds: 1200
|
|
mode: 'code-change'
|
|
sanitizer: ${{ matrix.sanitizer }}
|