mirror of
https://github.com/python/cpython.git
synced 2026-04-15 08:11:10 +00:00
46 lines
1.5 KiB
YAML
46 lines
1.5 KiB
YAML
# CIFuzz job based on https://google.github.io/oss-fuzz/getting-started/continuous-integration/
|
|
name: Reusable CIFuzz
|
|
|
|
on:
|
|
workflow_call:
|
|
inputs:
|
|
oss-fuzz-project-name:
|
|
description: OSS-Fuzz project name
|
|
required: true
|
|
type: string
|
|
sanitizer:
|
|
description: OSS-Fuzz sanitizer
|
|
required: true
|
|
type: string
|
|
|
|
jobs:
|
|
cifuzz:
|
|
name: ${{ inputs.oss-fuzz-project-name }} (${{ inputs.sanitizer }})
|
|
runs-on: ubuntu-latest
|
|
timeout-minutes: 60
|
|
steps:
|
|
- name: Build fuzzers (${{ inputs.sanitizer }})
|
|
id: build
|
|
uses: google/oss-fuzz/infra/cifuzz/actions/build_fuzzers@master
|
|
with:
|
|
oss-fuzz-project-name: ${{ inputs.oss-fuzz-project-name }}
|
|
sanitizer: ${{ inputs.sanitizer }}
|
|
- name: Run fuzzers (${{ inputs.sanitizer }})
|
|
uses: google/oss-fuzz/infra/cifuzz/actions/run_fuzzers@master
|
|
with:
|
|
fuzz-seconds: 600
|
|
oss-fuzz-project-name: ${{ inputs.oss-fuzz-project-name }}
|
|
output-sarif: true
|
|
sanitizer: ${{ inputs.sanitizer }}
|
|
- name: Upload crash
|
|
if: failure() && steps.build.outcome == 'success'
|
|
uses: actions/upload-artifact@v7
|
|
with:
|
|
name: ${{ inputs.sanitizer }}-artifacts
|
|
path: ./out/artifacts
|
|
- name: Upload SARIF
|
|
if: always() && steps.build.outcome == 'success'
|
|
uses: github/codeql-action/upload-sarif@v4
|
|
with:
|
|
sarif_file: cifuzz-sarif/results.sarif
|
|
checkout_path: cifuzz-sarif
|