jasder
/
simdjson
1
0
Fork 0
Code Issues Pull Requests Releases 2 Wiki Activity
simdjson/.github/workflows/fuzzers.yml

165 lines
6.5 KiB
YAML
Raw Normal View History

fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
name: Fuzz and run valgrind
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
on:
push:
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
branches:
- master
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
pull_request:
Disable Github CI in feature branches (#1298) Forks that would like to contribute via PRs from feature branches needlessly run CI on those branches on top of the PRs. This is a waste of resources. Co-authored-by: friendlyanon <friendlyanon@users.noreply.github.com>
2020-11-11 02:52:58 +08:00
branches:
- master
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
schedule:
- cron: 23 */8 * * *
jobs:
[skip ci] Skip CI for Github (#1336) * Add conditional to github workflows * [skip ci] Document and encourage skipping CI Co-authored-by: friendlyanon <friendlyanon@users.noreply.github.com>
2021-01-12 08:08:01 +08:00
build:
if: >-
! contains(toJSON(github.event.commits.*.message), '[skip ci]') &&
! contains(toJSON(github.event.commits.*.message), '[skip github]')
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
runs-on: ubuntu-latest
env:
fuzz the on demand api (#1220)
2020-10-30 02:14:44 +08:00
# fuzzers that change behaviour with SIMDJSON_FORCE_IMPLEMENTATION
add fuzzer for padded_string (#1312) This also fixes an overflow problem.
2020-11-19 23:51:56 +08:00
defaultimplfuzzers: atpointer dump dump_raw_tape element minify parser print_json
fuzz the on demand api (#1220)
2020-10-30 02:14:44 +08:00
# fuzzers that loop over the implementations themselves, or don't need to switch.
add ndjson fuzzer (#1304) * add ndjson fuzzer * reproduce #1310 in the newly added unit test Had to replace the input, because: 1) the fuzzer uses the first part of the input to determine the batch_size to use, so that has to be cut off 2) the master now protects against low values of batch_size I also made the test not return early, so the error is triggered.
2020-12-02 04:58:41 +08:00
implfuzzers: implementations minifyimpl ndjson ondemand padded utf8
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
implementations: haswell westmere fallback
UBSAN_OPTIONS: halt_on_error=1
MAXLEN: -max_len=4000
fuzz with the intended clang version (#1267) This builds the CI fuzzers with the intended clang version. It also allows users to set the clang version locally, in case they need to. It also switches the CI fuzzers to use an optimized sanitizer build, to do something oss-fuzz doesn't and get more done in the short time the CI fuzzer runs.
2020-10-31 15:22:49 +08:00
CLANGVERSION: 11
# which optimization level to use for the sanitizer build (see build_fuzzer.variants.sh)
OPTLEVEL: -O3
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
steps:
- name: Install packages necessary for building
run: |
update apt repos before installing (#408) This should hopefully resolve the recent errors in the github action for running the fuzzers.
2019-12-22 02:23:51 +08:00
sudo apt update
run the oss fuzz initial seed corpus in CI (#378) This makes sure the seed corpus keeps being healthy.
2019-11-24 05:49:41 +08:00
sudo apt-get install --quiet ninja-build valgrind zip unzip
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
wget https://apt.llvm.org/llvm.sh
chmod +x llvm.sh
fuzz with the intended clang version (#1267) This builds the CI fuzzers with the intended clang version. It also allows users to set the clang version locally, in case they need to. It also switches the CI fuzzers to use an optimized sanitizer build, to do something oss-fuzz doesn't and get more done in the short time the CI fuzzer runs.
2020-10-31 15:22:49 +08:00
sudo ./llvm.sh $CLANGVERSION
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- uses: actions/checkout@v1
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
Cache CMake dependencies in CI (#1282) Co-authored-by: friendlyanon <friendlyanon@users.noreply.github.com>
2020-11-05 02:35:33 +08:00
- uses: actions/cache@v2
with:
path: dependencies/.cache
key: ${{ hashFiles('dependencies/CMakeLists.txt') }}
run the oss fuzz initial seed corpus in CI (#378) This makes sure the seed corpus keeps being healthy.
2019-11-24 05:49:41 +08:00
- name: Create and prepare the initial seed corpus
run: |
fuzz/build_corpus.sh
mv corpus.zip seed_corpus.zip
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
mkdir seedcorpus
unzip -q -d seedcorpus seed_corpus.zip
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- name: Download the corpus from the last run
run: |
wget --quiet https://dl.bintray.com/pauldreik/simdjson-fuzz-corpus/corpus/corpus.tar
tar xf corpus.tar
rm corpus.tar
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- name: List clang versions
run: |
ls /usr/bin/clang*
which clang++
clang++ --version
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- name: Build all the variants
fuzz with the intended clang version (#1267) This builds the CI fuzzers with the intended clang version. It also allows users to set the clang version locally, in case they need to. It also switches the CI fuzzers to use an optimized sanitizer build, to do something oss-fuzz doesn't and get more done in the short time the CI fuzzer runs.
2020-10-31 15:22:49 +08:00
run: CLANGSUFFIX=-$CLANGVERSION fuzz/build_fuzzer_variants.sh
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
simplify fuzzing only dynamically supported implementations (#1201) This refactors the dynamic check of which implementations are supported at runtime. It also reduces duplicated effort in the CI fuzzing job, the differential fuzzers don't need to run with different values of SIMDJSON_FORCE_IMPLEMENTATION. There is also a convenience script to run the fuzzers locally, to quickly check that the fuzzers still build, run and no easy to find bugs are there. It should be handy not only when developing the fuzzers, but also when modifying simdjson.
2020-10-09 11:29:54 +08:00
- name: Explore fast (release build, default implementation)
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
run: |
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
set -eux
simplify fuzzing only dynamically supported implementations (#1201) This refactors the dynamic check of which implementations are supported at runtime. It also reduces duplicated effort in the CI fuzzing job, the differential fuzzers don't need to run with different values of SIMDJSON_FORCE_IMPLEMENTATION. There is also a convenience script to run the fuzzers locally, to quickly check that the fuzzers still build, run and no easy to find bugs are there. It should be handy not only when developing the fuzzers, but also when modifying simdjson.
2020-10-09 11:29:54 +08:00
for fuzzer in $defaultimplfuzzers $implfuzzers; do
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
mkdir -p out/$fuzzer # in case this is a new fuzzer, or corpus.tar is broken
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
# get input from everyone else (corpus cross pollination)
others=$(find out -type d -not -name $fuzzer -not -name out -not -name cmin)
build-fast/fuzz/fuzz_$fuzzer out/$fuzzer $others seedcorpus -max_total_time=30 $MAXLEN
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
done
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
simplify fuzzing only dynamically supported implementations (#1201) This refactors the dynamic check of which implementations are supported at runtime. It also reduces duplicated effort in the CI fuzzing job, the differential fuzzers don't need to run with different values of SIMDJSON_FORCE_IMPLEMENTATION. There is also a convenience script to run the fuzzers locally, to quickly check that the fuzzers still build, run and no easy to find bugs are there. It should be handy not only when developing the fuzzers, but also when modifying simdjson.
2020-10-09 11:29:54 +08:00
- name: Fuzz default impl. fuzzers with sanitizer+asserts (good at detecting errors)
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
run: |
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
set -eux
simplify fuzzing only dynamically supported implementations (#1201) This refactors the dynamic check of which implementations are supported at runtime. It also reduces duplicated effort in the CI fuzzing job, the differential fuzzers don't need to run with different values of SIMDJSON_FORCE_IMPLEMENTATION. There is also a convenience script to run the fuzzers locally, to quickly check that the fuzzers still build, run and no easy to find bugs are there. It should be handy not only when developing the fuzzers, but also when modifying simdjson.
2020-10-09 11:29:54 +08:00
for fuzzer in $defaultimplfuzzers; do
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
# get input from everyone else (corpus cross pollination)
others=$(find out -type d -not -name $fuzzer -not -name out -not -name cmin)
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
for implementation in $implementations; do
export SIMDJSON_FORCE_IMPLEMENTATION=$implementation
fuzz with the intended clang version (#1267) This builds the CI fuzzers with the intended clang version. It also allows users to set the clang version locally, in case they need to. It also switches the CI fuzzers to use an optimized sanitizer build, to do something oss-fuzz doesn't and get more done in the short time the CI fuzzer runs.
2020-10-31 15:22:49 +08:00
build-sanitizers$OPTLEVEL/fuzz/fuzz_$fuzzer out/$fuzzer $others seedcorpus -max_total_time=20 $MAXLEN
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
done
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
echo now have $(ls out/$fuzzer |wc -l) files in corpus
done
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
simplify fuzzing only dynamically supported implementations (#1201) This refactors the dynamic check of which implementations are supported at runtime. It also reduces duplicated effort in the CI fuzzing job, the differential fuzzers don't need to run with different values of SIMDJSON_FORCE_IMPLEMENTATION. There is also a convenience script to run the fuzzers locally, to quickly check that the fuzzers still build, run and no easy to find bugs are there. It should be handy not only when developing the fuzzers, but also when modifying simdjson.
2020-10-09 11:29:54 +08:00
- name: Fuzz differential impl. fuzzers with sanitizer+asserts (good at detecting errors)
run: |
set -eux
for fuzzer in $implfuzzers; do
# get input from everyone else (corpus cross pollination)
others=$(find out -type d -not -name $fuzzer -not -name out -not -name cmin)
fuzz with the intended clang version (#1267) This builds the CI fuzzers with the intended clang version. It also allows users to set the clang version locally, in case they need to. It also switches the CI fuzzers to use an optimized sanitizer build, to do something oss-fuzz doesn't and get more done in the short time the CI fuzzer runs.
2020-10-31 15:22:49 +08:00
build-sanitizers$OPTLEVEL/fuzz/fuzz_$fuzzer out/$fuzzer $others seedcorpus -max_total_time=20 $MAXLEN
simplify fuzzing only dynamically supported implementations (#1201) This refactors the dynamic check of which implementations are supported at runtime. It also reduces duplicated effort in the CI fuzzing job, the differential fuzzers don't need to run with different values of SIMDJSON_FORCE_IMPLEMENTATION. There is also a convenience script to run the fuzzers locally, to quickly check that the fuzzers still build, run and no easy to find bugs are there. It should be handy not only when developing the fuzzers, but also when modifying simdjson.
2020-10-09 11:29:54 +08:00
echo now have $(ls out/$fuzzer |wc -l) files in corpus
done
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
- name: Minimize the corpus with the fast fuzzer on the default implementation
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
run: |
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
set -eux
simplify fuzzing only dynamically supported implementations (#1201) This refactors the dynamic check of which implementations are supported at runtime. It also reduces duplicated effort in the CI fuzzing job, the differential fuzzers don't need to run with different values of SIMDJSON_FORCE_IMPLEMENTATION. There is also a convenience script to run the fuzzers locally, to quickly check that the fuzzers still build, run and no easy to find bugs are there. It should be handy not only when developing the fuzzers, but also when modifying simdjson.
2020-10-09 11:29:54 +08:00
for fuzzer in $defaultimplfuzzers $implfuzzers; do
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
mkdir -p out/cmin/$fuzzer
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
# get input from everyone else (corpus cross pollination)
others=$(find out -type d -not -name $fuzzer -not -name out -not -name cmin)
build-fast/fuzz/fuzz_$fuzzer -merge=1 $MAXLEN out/cmin/$fuzzer out/$fuzzer $others seedcorpus
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
rm -rf out/$fuzzer
mv out/cmin/$fuzzer out/$fuzzer
done
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- name: Package the corpus into an artifact
run: |
fix broken fuzzing github action job (#1221)
2020-10-09 18:44:17 +08:00
for fuzzer in $defaultimplfuzzers $implfuzzers; do
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
tar rf corpus.tar out/$fuzzer
done
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- name: Save the corpus as a github artifact
add minifier fuzzers (#1172) This adds a minifier fuzzer. There is also an utf-8 fuzzer, but it is disabled until #1187 is fixed. Run all fuzzers bug the utf-8 one in the github CI fuzz.
2020-09-26 20:25:00 +08:00
uses: actions/upload-artifact@v2
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
with:
name: corpus
path: corpus.tar
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
# This takes a subset of the minimized corpus and run it through valgrind. It is slow,
# therefore take a "random" subset. The random selection is accomplished by sorting on filenames,
# which are hashes of the content.
- name: Run some of the minimized corpus through valgrind (replay build, default implementation)
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
run: |
simplify fuzzing only dynamically supported implementations (#1201) This refactors the dynamic check of which implementations are supported at runtime. It also reduces duplicated effort in the CI fuzzing job, the differential fuzzers don't need to run with different values of SIMDJSON_FORCE_IMPLEMENTATION. There is also a convenience script to run the fuzzers locally, to quickly check that the fuzzers still build, run and no easy to find bugs are there. It should be handy not only when developing the fuzzers, but also when modifying simdjson.
2020-10-09 11:29:54 +08:00
for fuzzer in $defaultimplfuzzers $implfuzzers; do
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
find out/$fuzzer -type f |sort|head -n200|xargs -n40 valgrind build-replay/fuzz/fuzz_$fuzzer 2>&1|tee valgrind-$fuzzer.txt
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
done
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- name: Compress the valgrind output
run: tar cf valgrind.tar valgrind-*.txt
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- name: Save valgrind output as a github artifact
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
uses: actions/upload-artifact@v2
if: always()
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
with:
name: valgrindresults
path: valgrind.tar
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
if-no-files-found: ignore
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
- name: Upload the corpus and results to bintray if we are on master
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
if: ${{ github.event_name == 'schedule' }}
run short fuzzing and valgrind in github action
2019-11-12 05:17:32 +08:00
run: |
fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master
2020-09-17 03:17:43 +08:00
echo uploading each artifact twice, otherwise it will not be published
curl -T corpus.tar -upauldreik:${{ secrets.bintrayApiKey }} https://api.bintray.com/content/pauldreik/simdjson-fuzz-corpus/corpus/0/corpus/corpus.tar";publish=1;override=1"
curl -T corpus.tar -upauldreik:${{ secrets.bintrayApiKey }} https://api.bintray.com/content/pauldreik/simdjson-fuzz-corpus/corpus/0/corpus/corpus.tar";publish=1;override=1"
curl -T valgrind.tar -upauldreik:${{ secrets.bintrayApiKey }} https://api.bintray.com/content/pauldreik/simdjson-fuzz-corpus/corpus/0/corpus/valgrind.tar";publish=1;override=1"
curl -T valgrind.tar -upauldreik:${{ secrets.bintrayApiKey }} https://api.bintray.com/content/pauldreik/simdjson-fuzz-corpus/corpus/0/corpus/valgrind.tar";publish=1;override=1"
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer
2020-09-12 05:46:22 +08:00
- name: Archive any crashes as an artifact
uses: actions/upload-artifact@v2
if: always()
with:
name: crashes
path: |
crash-*
leak-*
timeout-*
if-no-files-found: ignore