Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fuzzing: run latest fuzzers in OSS-Fuzz #22580

Merged
merged 1 commit into from Mar 6, 2023
Merged

fuzzing: run latest fuzzers in OSS-Fuzz #22580

merged 1 commit into from Mar 6, 2023

Conversation

AdamKorcz
Copy link
Contributor

Signed-off-by: AdamKorcz adam@adalogics.com

Builds the recently added fuzzers in OSS-Fuzz.

Run latest fuzzers in OSS-Fuzz

@AdamKorcz AdamKorcz requested a review from a team as a code owner December 6, 2022 16:04
@AdamKorcz AdamKorcz requested a review from nebril December 6, 2022 16:04
@maintainer-s-little-helper maintainer-s-little-helper bot added the dont-merge/needs-release-note-label The author needs to describe the release impact of these changes. label Dec 6, 2022
@github-actions github-actions bot added the kind/community-contribution This was a contribution made by a community member. label Dec 6, 2022
nebril
nebril reviewed Dec 7, 2022
View reviewed changes
Copy link
Member

@nebril nebril left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the PR! I have some questions, I think I don't fully understand how are we running the fuzzers.

test/fuzzing/oss-fuzz-build.sh
@@ -1,3 +1,13 @@
#/bin/bash -eu
printf "package policy\nimport _ \"github.com/AdamKorcz/go-118-fuzz-build/testing\"\n" > $SRC/cilium/pkg/policy/registerfuzzdep.go
go mod tidy && go mod vendor
mv $SRC/cilium/pkg/policy/l4_filter_test.go $SRC/cilium/pkg/policy/l4_filter_test_fuzz.go
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you explain why we need to move these files around and where is this file being run? Can it be run locally by developers?

Maybe we should just move all fuzzing tests from l4_filter_test.go to l4_filter_test_fuzz.go and not bother with moving the files around?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the oss-fuzz-build.sh is meant to only be run inside the OSS-Fuzz build environment. In that environment, the fuzzers are built with go build which doesn't include _test.go files in its scope and they are therefore renamed. When run locally by developers with go test -fuzz then the renaming is not necessary.

test/fuzzing/oss-fuzz-build.sh
@@ -1,3 +1,13 @@
#/bin/bash -eu
printf "package policy\nimport _ \"github.com/AdamKorcz/go-118-fuzz-build/testing\"\n" > $SRC/cilium/pkg/policy/registerfuzzdep.go
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I assume that this is done to not import fuzzing libs in policy package for building agent/whatever else might use policy package?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is done because OSS-Fuzz rewrites the testing types to ones compatible with libFuzzer which is the fuzzing engine used by OSS-Fuzz.

@aanm aanm added the release-note/ci This PR makes changes to the CI. label Jan 27, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot removed the dont-merge/needs-release-note-label The author needs to describe the release impact of these changes. label Jan 27, 2023
@aanm aanm requested a review from nebril January 29, 2023 21:34
aanm
aanm requested changes Jan 30, 2023
View reviewed changes
Copy link
Member

@aanm aanm left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you for the changes, can you provide an explanation on why we need this change in the commit message as well as provide some comments in the script file?

@sayboras
Copy link
Member

Friendly ping 👋

@AdamKorcz
fuzzing: run latest fuzzers in OSS-Fuzz
34a252a 
This PR adds multiple fuzzers to Ciliums OSS-Fuzz build script.
OSS-Fuzz will build the fuzzers and run them continuously.

Ciliums OSS-Fuzz integration can be found here: https://github.com/google/oss-fuzz/tree/master/projects/cilium - the build script will invoke Ciliums upstream OSS-Fuzz build script

Signed-off-by: AdamKorcz <adam@adalogics.com>
@AdamKorcz
Copy link
Contributor Author

Thank you for the changes, can you provide an explanation on why we need this change in the commit message as well as provide some comments in the script file?

Done!

@aanm aanm merged commit 78b2e6d into cilium:master Mar 6, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nebril nebril nebril approved these changes

@aanm aanm aanm approved these changes

Assignees
No one assigned
Labels
kind/community-contribution This was a contribution made by a community member. release-note/ci This PR makes changes to the CI.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@AdamKorcz @sayboras @nebril @aanm