mirror of
https://github.com/systemd/systemd.git
synced 2024-12-23 21:35:11 +03:00
514793658c
Latest meson doesn't work with older python 3.5, which is present on Ubuntu 16.04. Let's pin in to the latest working version (0.52.1) until we properly bump all necessary Ubuntu images to 18.04. See: https://github.com/mesonbuild/meson/issues/6427
58 lines
3.7 KiB
Bash
Executable File
58 lines
3.7 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
set -e
|
|
set -x
|
|
set -u
|
|
|
|
# This should help to protect the systemd organization on Fuzzit from forks
|
|
# that are activated on Travis CI.
|
|
[[ "$TRAVIS_REPO_SLUG" = "systemd/systemd" ]] || exit 0
|
|
|
|
REPO_ROOT=${REPO_ROOT:-$(pwd)}
|
|
|
|
sudo bash -c "echo 'deb-src http://archive.ubuntu.com/ubuntu/ xenial main restricted universe multiverse' >>/etc/apt/sources.list"
|
|
sudo apt-get update -y
|
|
sudo apt-get build-dep systemd -y
|
|
sudo apt-get install -y ninja-build python3-pip python3-setuptools
|
|
# FIXME: temporarily pin the meson version as 0.53 doesn't work with older python 3.5
|
|
# See: https://github.com/mesonbuild/meson/issues/6427
|
|
pip3 install meson==0.52.1
|
|
|
|
cd $REPO_ROOT
|
|
export PATH="$HOME/.local/bin/:$PATH"
|
|
|
|
# We use a subset of https://clang.llvm.org/docs/UndefinedBehaviorSanitizer.html#available-checks instead of "undefined"
|
|
# because our fuzzers crash with "pointer-overflow" and "float-cast-overflow":
|
|
# https://github.com/systemd/systemd/pull/12771#issuecomment-502139157
|
|
# https://github.com/systemd/systemd/pull/12812#issuecomment-502780455
|
|
# TODO: figure out what to do about unsigned-integer-overflow: https://github.com/google/oss-fuzz/issues/910
|
|
export SANITIZER="address -fsanitize=alignment,array-bounds,bool,bounds,builtin,enum,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,null,object-size,return,returns-nonnull-attribute,shift,signed-integer-overflow,unreachable,unsigned-integer-overflow,vla-bound,vptr -fno-sanitize-recover=alignment,array-bounds,bool,bounds,builtin,enum,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,null,object-size,return,returns-nonnull-attribute,shift,signed-integer-overflow,unreachable,vla-bound,vptr"
|
|
tools/oss-fuzz.sh
|
|
|
|
FUZZING_TYPE=${1:-regression}
|
|
if [ "$TRAVIS_PULL_REQUEST" = "false" ]; then
|
|
FUZZIT_BRANCH="${TRAVIS_BRANCH}"
|
|
else
|
|
FUZZIT_BRANCH="PR-${TRAVIS_PULL_REQUEST}"
|
|
fi
|
|
|
|
# Because we want Fuzzit to run on every pull-request and Travis/Azure doesnt support encrypted keys
|
|
# on pull-request we use a write-only key which is ok for now. maybe there will be a better solution in the future
|
|
export FUZZIT_API_KEY=af6992074353998676713818cc6435ef4a750439932dab58b51e9354d6742c54d740a3cd9fc1fc001db82f51734a24bc
|
|
FUZZIT_ADDITIONAL_FILES="./out/src/shared/libsystemd-shared-*.so"
|
|
|
|
# ASan options are borrowed almost verbatim from OSS-Fuzz
|
|
ASAN_OPTIONS=redzone=32:print_summary=1:handle_sigill=1:allocator_release_to_os_interval_ms=500:print_suppressions=0:strict_memcmp=1:allow_user_segv_handler=0:allocator_may_return_null=1:use_sigaltstack=1:handle_sigfpe=1:handle_sigbus=1:detect_stack_use_after_return=1:alloc_dealloc_mismatch=0:detect_leaks=1:print_scariness=1:max_uar_stack_size_log=16:handle_abort=1:check_malloc_usable_size=0:quarantine_size_mb=64:detect_odr_violation=0:handle_segv=1:fast_unwind_on_fatal=0
|
|
UBSAN_OPTIONS=print_stacktrace=1:print_summary=1:halt_on_error=1:silence_unsigned_overflow=1
|
|
FUZZIT_ARGS="--type ${FUZZING_TYPE} --branch ${FUZZIT_BRANCH} --revision ${TRAVIS_COMMIT} -e ASAN_OPTIONS=${ASAN_OPTIONS} -e UBSAN_OPTIONS=${UBSAN_OPTIONS}"
|
|
wget -O fuzzit https://github.com/fuzzitdev/fuzzit/releases/latest/download/fuzzit_Linux_x86_64
|
|
chmod +x fuzzit
|
|
|
|
find out/ -maxdepth 1 -name 'fuzz-*' -executable -type f -exec basename '{}' \; | xargs --verbose -n1 -I%FUZZER% ./fuzzit create job ${FUZZIT_ARGS} %FUZZER%-asan-ubsan out/%FUZZER% ${FUZZIT_ADDITIONAL_FILES}
|
|
|
|
export SANITIZER="memory -fsanitize-memory-track-origins"
|
|
FUZZIT_ARGS="--type ${FUZZING_TYPE} --branch ${FUZZIT_BRANCH} --revision ${TRAVIS_COMMIT}"
|
|
tools/oss-fuzz.sh
|
|
|
|
find out/ -maxdepth 1 -name 'fuzz-*' -executable -type f -exec basename '{}' \; | xargs --verbose -n1 -I%FUZZER% ./fuzzit create job ${FUZZIT_ARGS} %FUZZER%-msan out/%FUZZER% ${FUZZIT_ADDITIONAL_FILES}
|