2019-06-11 08:25:45 +02:00
|
|
|
#!/bin/bash
|
|
|
|
|
|
|
|
set -e
|
|
|
|
set -x
|
|
|
|
set -u
|
|
|
|
|
2019-09-06 03:44:52 +02:00
|
|
|
# This should help to protect the systemd organization on Fuzzit from forks
|
|
|
|
# that are activated on Travis CI.
|
|
|
|
[[ "$TRAVIS_REPO_SLUG" = "systemd/systemd" ]] || exit 0
|
|
|
|
|
2019-06-11 08:25:45 +02:00
|
|
|
REPO_ROOT=${REPO_ROOT:-$(pwd)}
|
|
|
|
|
|
|
|
sudo bash -c "echo 'deb-src http://archive.ubuntu.com/ubuntu/ xenial main restricted universe multiverse' >>/etc/apt/sources.list"
|
|
|
|
sudo apt-get update -y
|
|
|
|
sudo apt-get build-dep systemd -y
|
2020-03-30 01:32:00 +02:00
|
|
|
sudo apt-get install -y python3-pip python3-setuptools
|
2019-12-17 19:19:02 +01:00
|
|
|
# The following should be dropped when debian packaging has been updated to include them
|
2019-11-20 23:34:21 +01:00
|
|
|
sudo apt-get install -y libfdisk-dev libp11-kit-dev libssl-dev libpwquality-dev
|
2020-03-30 01:32:00 +02:00
|
|
|
pip3 install ninja meson
|
2019-06-11 08:25:45 +02:00
|
|
|
|
|
|
|
cd $REPO_ROOT
|
|
|
|
export PATH="$HOME/.local/bin/:$PATH"
|
2019-06-15 00:44:27 +02:00
|
|
|
|
|
|
|
# We use a subset of https://clang.llvm.org/docs/UndefinedBehaviorSanitizer.html#available-checks instead of "undefined"
|
2020-05-20 16:05:32 +02:00
|
|
|
# because our fuzzers crash with "float-cast-overflow":
|
2019-06-17 19:08:48 +02:00
|
|
|
# https://github.com/systemd/systemd/pull/12812#issuecomment-502780455
|
2019-06-15 00:44:27 +02:00
|
|
|
# TODO: figure out what to do about unsigned-integer-overflow: https://github.com/google/oss-fuzz/issues/910
|
2020-05-20 16:05:32 +02:00
|
|
|
export SANITIZER="address -fsanitize=alignment,array-bounds,bool,bounds,builtin,enum,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,null,object-size,pointer-overflow,return,returns-nonnull-attribute,shift,signed-integer-overflow,unreachable,unsigned-integer-overflow,vla-bound,vptr -fno-sanitize-recover=alignment,array-bounds,bool,bounds,builtin,enum,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,null,object-size,pointer-overflow,return,returns-nonnull-attribute,shift,signed-integer-overflow,unreachable,vla-bound,vptr"
|
2019-06-11 08:25:45 +02:00
|
|
|
tools/oss-fuzz.sh
|
|
|
|
|
2019-09-06 19:29:10 +02:00
|
|
|
FUZZING_TYPE=${1:-regression}
|
2019-06-11 08:25:45 +02:00
|
|
|
if [ "$TRAVIS_PULL_REQUEST" = "false" ]; then
|
2019-06-15 01:16:07 +02:00
|
|
|
FUZZIT_BRANCH="${TRAVIS_BRANCH}"
|
2019-06-11 08:25:45 +02:00
|
|
|
else
|
2019-06-15 01:16:07 +02:00
|
|
|
FUZZIT_BRANCH="PR-${TRAVIS_PULL_REQUEST}"
|
2019-06-11 08:25:45 +02:00
|
|
|
fi
|
|
|
|
|
2020-04-21 20:46:53 +02:00
|
|
|
# Because we want Fuzzit to run on every pull-request and Travis/Azure doesn't support encrypted keys
|
2019-06-11 08:25:45 +02:00
|
|
|
# on pull-request we use a write-only key which is ok for now. maybe there will be a better solution in the future
|
2019-09-12 12:34:26 +02:00
|
|
|
export FUZZIT_API_KEY=af6992074353998676713818cc6435ef4a750439932dab58b51e9354d6742c54d740a3cd9fc1fc001db82f51734a24bc
|
2019-07-23 21:50:52 +02:00
|
|
|
FUZZIT_ADDITIONAL_FILES="./out/src/shared/libsystemd-shared-*.so"
|
2019-06-15 02:07:17 +02:00
|
|
|
|
|
|
|
# ASan options are borrowed almost verbatim from OSS-Fuzz
|
|
|
|
ASAN_OPTIONS=redzone=32:print_summary=1:handle_sigill=1:allocator_release_to_os_interval_ms=500:print_suppressions=0:strict_memcmp=1:allow_user_segv_handler=0:allocator_may_return_null=1:use_sigaltstack=1:handle_sigfpe=1:handle_sigbus=1:detect_stack_use_after_return=1:alloc_dealloc_mismatch=0:detect_leaks=1:print_scariness=1:max_uar_stack_size_log=16:handle_abort=1:check_malloc_usable_size=0:quarantine_size_mb=64:detect_odr_violation=0:handle_segv=1:fast_unwind_on_fatal=0
|
2019-06-15 01:16:07 +02:00
|
|
|
UBSAN_OPTIONS=print_stacktrace=1:print_summary=1:halt_on_error=1:silence_unsigned_overflow=1
|
2019-09-06 19:29:10 +02:00
|
|
|
FUZZIT_ARGS="--type ${FUZZING_TYPE} --branch ${FUZZIT_BRANCH} --revision ${TRAVIS_COMMIT} -e ASAN_OPTIONS=${ASAN_OPTIONS} -e UBSAN_OPTIONS=${UBSAN_OPTIONS}"
|
|
|
|
wget -O fuzzit https://github.com/fuzzitdev/fuzzit/releases/latest/download/fuzzit_Linux_x86_64
|
2019-06-11 08:25:45 +02:00
|
|
|
chmod +x fuzzit
|
|
|
|
|
2020-04-23 21:24:22 +02:00
|
|
|
# Simple wrapper which retries given command up to three times if it fails
|
|
|
|
_retry() {
|
|
|
|
local EC=1
|
|
|
|
|
|
|
|
for _ in {0..2}; do
|
|
|
|
if "$@"; then
|
|
|
|
EC=0
|
|
|
|
break
|
|
|
|
fi
|
|
|
|
|
|
|
|
sleep 1
|
|
|
|
done
|
|
|
|
|
|
|
|
return $EC
|
|
|
|
}
|
|
|
|
|
|
|
|
find out/ -maxdepth 1 -name 'fuzz-*' -executable -type f -exec basename '{}' \; | while read -r fuzzer; do
|
|
|
|
_retry ./fuzzit create job ${FUZZIT_ARGS} ${fuzzer}-asan-ubsan out/${fuzzer} ${FUZZIT_ADDITIONAL_FILES}
|
|
|
|
done
|
2019-08-07 23:45:19 +02:00
|
|
|
|
2019-08-08 20:30:44 +02:00
|
|
|
export SANITIZER="memory -fsanitize-memory-track-origins"
|
2019-08-07 23:45:19 +02:00
|
|
|
FUZZIT_ARGS="--type ${FUZZING_TYPE} --branch ${FUZZIT_BRANCH} --revision ${TRAVIS_COMMIT}"
|
|
|
|
tools/oss-fuzz.sh
|
|
|
|
|
2020-04-23 21:24:22 +02:00
|
|
|
find out/ -maxdepth 1 -name 'fuzz-*' -executable -type f -exec basename '{}' \; | while read -r fuzzer; do
|
|
|
|
_retry ./fuzzit create job ${FUZZIT_ARGS} ${fuzzer}-msan out/${fuzzer} ${FUZZIT_ADDITIONAL_FILES}
|
|
|
|
done
|