oss-fuzz/infra/libfuzzer-pipeline.groovy

// Copyright 2016 Google Inc.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//      http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
////////////////////////////////////////////////////////////////////////////////

def call(body) {
    // evaluate the body block, and collect configuration into the object
    def config = [:]
    body.resolveStrategy = Closure.DELEGATE_FIRST
    body.delegate = config
    body()

    // Mandatory configuration
    def gitUrl = config["git"]
    assert gitUrl : "git should be specified"

    // Optional configuration
    def projectName = config["name"] ?: env.JOB_BASE_NAME
    def dockerfile = config["dockerfile"] ?: "oss-fuzz/$projectName/Dockerfile"
    def sanitizers = config["sanitizers"] ?: ["address"]
    def checkoutDir = config["checkoutDir"] ?: projectName
    def dockerContextDir = config["dockerContextDir"]

    def date = java.time.format.DateTimeFormatter.ofPattern("yyyyMMddHHmm")
        .format(java.time.LocalDateTime.now())
    def ossFuzzUrl = 'https://github.com/google/oss-fuzz.git'

    node {
      def workspace = pwd()
      def revisionsFile = "$workspace/$projectName.rev"
      def dockerTag = "ossfuzz/$projectName"
      echo "Building $dockerTag"

      stage name: "docker image"
      I:{ // groovy needs label for code block :)
          def revisions = [:]
          dir('oss-fuzz') {
              git url: ossFuzzUrl
          }

          dir(checkoutDir) {
              git url: gitUrl
              revisions[gitUrl] = sh(returnStdout: true, script: 'git rev-parse HEAD').trim()
          }

          if (dockerContextDir == null) {
            dockerContextDir = new File(dockerfile)
                .getParentFile()
                .getPath();
          }

          sh "docker build -t $dockerTag -f $dockerfile $dockerContextDir"

          def revText = groovy.json.JsonOutput.toJson(revisions)
          writeFile file: revisionsFile, text: revText
          echo "revisions: $revText"
      }

      for (int i = 0; i < sanitizers.size(); i++) {
        def sanitizer = sanitizers[i]
        dir(sanitizer) {
          stage name: "$sanitizer sanitizer"
          def out = "$workspace/out/$sanitizer"

          // Run image to produce fuzzers
          sh "rm -rf $out"
          sh "mkdir -p $out"
          sh "docker run -v $workspace/$checkoutDir:/src/$checkoutDir -v $workspace/oss-fuzz:/src/oss-fuzz -v $out:/out -e SANITIZER_FLAGS=\"-fsanitize=$sanitizer\" -t $dockerTag"

          // Copy dict and options files
          sh "cp $workspace/oss-fuzz/$projectName/*.dict $out/ || true"
          sh "cp $workspace/oss-fuzz/$projectName/*.options $out/ || true"
        }
      }

      // Run each of resulting fuzzers.
      dir ('out') {
        stage name: "running fuzzers"
        sh "ls -alR"
        for (int i = 0; i < sanitizers.size(); i++) {
          def sanitizer = sanitizers[i]
          dir (sanitizer) {
            def d = pwd()
            def files = findFiles()
            for (int j = 0; j < files.size(); j++) {
              def file = files[j]
              if (file.directory) { continue }
              if (!new File(d, file.name).canExecute()) {
                  echo "skipping: $file"
                  continue
              }
              sh "docker run -v $d:/out -t ossfuzz/libfuzzer-runner /out/$file -runs=1"
            }
          }
        }

        stage name: "uploading"
        for (int i = 0; i < sanitizers.size(); i++) {
          def sanitizer = sanitizers[i]
          dir (sanitizer) {
            def zipFile = "$projectName-$sanitizer-${date}.zip"
            def revFile = "$projectName-$sanitizer-${date}.rev"
            sh "cp $revisionsFile $revFile"
            sh "zip -j $zipFile *"
            sh "gsutil cp $zipFile gs://clusterfuzz-builds/$projectName/"
            sh "gsutil cp $revFile gs://clusterfuzz-builds/$projectName/"
          }
        }

        stage name: "pushing image"
        docker.withRegistry('', 'docker-login') {
          docker.image(dockerTag).push()
        }
      }
    }

  echo 'Done'
}

return this;
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00			`// Copyright 2016 Google Inc.`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`
			`//`
			`////////////////////////////////////////////////////////////////////////////////`

			`def call(body) {`
			`// evaluate the body block, and collect configuration into the object`
			`def config = [:]`
			`body.resolveStrategy = Closure.DELEGATE_FIRST`
			`body.delegate = config`
			`body()`

			`// Mandatory configuration`
			`def gitUrl = config["git"]`
			`assert gitUrl : "git should be specified"`

			`// Optional configuration`
			`def projectName = config["name"] ?: env.JOB_BASE_NAME`
[infra] optional dockerfile; copy .dict and .options - Remove requirement of specifying dockerfile in Jenkinsfile. Assume it is in the library directory by deefault. - Try to copy any .dict or .options files to output directory. 2016-08-30 20:08:26 +00:00			`def dockerfile = config["dockerfile"] ?: "oss-fuzz/$projectName/Dockerfile"`
[infra] disabling msan build for a while. 2016-08-12 00:02:20 +00:00			`def sanitizers = config["sanitizers"] ?: ["address"]`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00			`def checkoutDir = config["checkoutDir"] ?: projectName`
[infra] changing docker context dir 2016-08-01 21:21:46 +00:00			`def dockerContextDir = config["dockerContextDir"]`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00
[infra] run fuzzers before uploading. 2016-08-12 00:13:19 +00:00			`def date = java.time.format.DateTimeFormatter.ofPattern("yyyyMMddHHmm")`
			`.format(java.time.LocalDateTime.now())`
[infra] writing vcs info into .rev file 2016-08-16 20:15:14 +00:00			`def ossFuzzUrl = 'https://github.com/google/oss-fuzz.git'`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00
			`node {`
[infra] building docker image only once 2016-10-10 20:20:59 +00:00			`def workspace = pwd()`
Update libfuzzer-pipeline.groovy 2016-10-10 20:28:03 +00:00			`def revisionsFile = "$workspace/$projectName.rev"`
[infra] building docker image only once 2016-10-10 20:20:59 +00:00			`def dockerTag = "ossfuzz/$projectName"`
			`echo "Building $dockerTag"`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00
[infra] building docker image only once 2016-10-10 20:20:59 +00:00			`stage name: "docker image"`
Update libfuzzer-pipeline.groovy 2016-10-10 20:23:35 +00:00			`I:{ // groovy needs label for code block :)`
Update libfuzzer-pipeline.groovy 2016-10-10 20:28:03 +00:00			`def revisions = [:]`
[boringssl] initial checkin 2016-08-01 21:14:13 +00:00			`dir('oss-fuzz') {`
[infra] writing vcs info into .rev file 2016-08-16 20:15:14 +00:00			`git url: ossFuzzUrl`
[boringssl] initial checkin 2016-08-01 21:14:13 +00:00			`}`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00
[boringssl] initial checkin 2016-08-01 21:14:13 +00:00			`dir(checkoutDir) {`
			`git url: gitUrl`
[infra] writing vcs info into .rev file 2016-08-16 20:15:14 +00:00			`revisions[gitUrl] = sh(returnStdout: true, script: 'git rev-parse HEAD').trim()`
[boringssl] initial checkin 2016-08-01 21:14:13 +00:00			`}`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00
[infra] changing docker context dir 2016-08-01 21:21:46 +00:00			`if (dockerContextDir == null) {`
[infra] parent dir tweaks 2016-08-01 21:46:50 +00:00			`dockerContextDir = new File(dockerfile)`
[infra] tweaks 2016-08-01 21:44:02 +00:00			`.getParentFile()`
[infra] parent dir tweaks 2016-08-01 21:46:50 +00:00			`.getPath();`
[infra] changing docker context dir 2016-08-01 21:21:46 +00:00			`}`

			`sh "docker build -t $dockerTag -f $dockerfile $dockerContextDir"`
Update libfuzzer-pipeline.groovy 2016-10-10 20:28:03 +00:00
			`def revText = groovy.json.JsonOutput.toJson(revisions)`
			`writeFile file: revisionsFile, text: revText`
			`echo "revisions: $revText"`
[infra] building docker image only once 2016-10-10 20:20:59 +00:00			`}`

			`for (int i = 0; i < sanitizers.size(); i++) {`
			`def sanitizer = sanitizers[i]`
			`dir(sanitizer) {`
			`stage name: "$sanitizer sanitizer"`
			`def out = "$workspace/out/$sanitizer"`

[infra] optional dockerfile; copy .dict and .options - Remove requirement of specifying dockerfile in Jenkinsfile. Assume it is in the library directory by deefault. - Try to copy any .dict or .options files to output directory. 2016-08-30 20:08:26 +00:00			`// Run image to produce fuzzers`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00			`sh "rm -rf $out"`
			`sh "mkdir -p $out"`
[infra] no need to call /env 2016-08-08 02:53:25 +00:00			`sh "docker run -v $workspace/$checkoutDir:/src/$checkoutDir -v $workspace/oss-fuzz:/src/oss-fuzz -v $out:/out -e SANITIZER_FLAGS=\"-fsanitize=$sanitizer\" -t $dockerTag"`
[infra] typo fix 2016-08-30 20:22:34 +00:00
[infra] optional dockerfile; copy .dict and .options - Remove requirement of specifying dockerfile in Jenkinsfile. Assume it is in the library directory by deefault. - Try to copy any .dict or .options files to output directory. 2016-08-30 20:08:26 +00:00			`// Copy dict and options files`
			`sh "cp $workspace/oss-fuzz/$projectName/*.dict $out/ \|\| true"`
			`sh "cp $workspace/oss-fuzz/$projectName/*.options $out/ \|\| true"`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00			`}`
			`}`
[infra] listing fuzzers 2016-08-11 22:54:48 +00:00
skipping non-executable files 2016-10-10 16:23:21 +00:00			`// Run each of resulting fuzzers.`
[infra] listing fuzzers 2016-08-11 22:54:48 +00:00			`dir ('out') {`
[infra] building docker image only once 2016-10-10 20:20:59 +00:00			`stage name: "running fuzzers"`
Update libfuzzer-pipeline.groovy 2016-10-06 21:04:44 +00:00			`sh "ls -alR"`
[infra] listing fuzzers 2016-08-11 23:04:20 +00:00			`for (int i = 0; i < sanitizers.size(); i++) {`
			`def sanitizer = sanitizers[i]`
			`dir (sanitizer) {`
[infra] running fuzzers 2016-08-11 23:22:10 +00:00			`def d = pwd()`
[infra] listing fuzzers 2016-08-11 23:04:20 +00:00			`def files = findFiles()`
			`for (int j = 0; j < files.size(); j++) {`
			`def file = files[j]`
skipping non-executable files 2016-10-10 16:23:21 +00:00			`if (file.directory) { continue }`
Update libfuzzer-pipeline.groovy 2016-10-10 16:30:16 +00:00			`if (!new File(d, file.name).canExecute()) {`
skipping non-executable files 2016-10-10 16:23:21 +00:00			`echo "skipping: $file"`
			`continue`
[infra] don't try to run .dict or .options files. 2016-08-30 23:56:25 +00:00			`}`
[infra] running fuzzers 2016-08-11 23:37:01 +00:00			`sh "docker run -v $d:/out -t ossfuzz/libfuzzer-runner /out/$file -runs=1"`
[infra] listing fuzzers 2016-08-11 23:04:20 +00:00			`}`
			`}`
[infra] listing fuzzers 2016-08-11 22:54:48 +00:00			`}`
[infra] run fuzzers before uploading. 2016-08-12 00:13:19 +00:00
[infra] building docker image only once 2016-10-10 20:20:59 +00:00			`stage name: "uploading"`
[infra] run fuzzers before uploading. 2016-08-12 00:13:19 +00:00			`for (int i = 0; i < sanitizers.size(); i++) {`
			`def sanitizer = sanitizers[i]`
			`dir (sanitizer) {`
[infra] tweaking pipeline 2016-08-12 00:24:19 +00:00			`def zipFile = "$projectName-$sanitizer-${date}.zip"`
[infra] writing vcs info into .rev file 2016-08-16 20:15:14 +00:00			`def revFile = "$projectName-$sanitizer-${date}.rev"`
Update libfuzzer-pipeline.groovy 2016-10-10 20:28:03 +00:00			`sh "cp $revisionsFile $revFile"`
[infra] tweaking pipeline 2016-08-12 00:22:14 +00:00			`sh "zip -j $zipFile *"`
[infra] run fuzzers before uploading. 2016-08-12 00:13:19 +00:00			`sh "gsutil cp $zipFile gs://clusterfuzz-builds/$projectName/"`
[infra] writing vcs info into .rev file 2016-08-16 20:15:14 +00:00			`sh "gsutil cp $revFile gs://clusterfuzz-builds/$projectName/"`
[infra] run fuzzers before uploading. 2016-08-12 00:13:19 +00:00			`}`
			`}`
Update libfuzzer-pipeline.groovy 2016-10-06 21:26:09 +00:00
[infra] building docker image only once 2016-10-10 20:20:59 +00:00			`stage name: "pushing image"`
Update libfuzzer-pipeline.groovy 2016-10-06 21:26:09 +00:00			`docker.withRegistry('', 'docker-login') {`
[infra] building docker image only once 2016-10-10 20:20:59 +00:00			`docker.image(dockerTag).push()`
Update libfuzzer-pipeline.groovy 2016-10-06 21:26:09 +00:00			`}`
[infra] listing fuzzers 2016-08-11 22:54:48 +00:00			`}`
[infra] libfuzzer pipeline definition 2016-07-21 18:38:38 +00:00			`}`

			`echo 'Done'`
			`}`

			`return this;`