oss-fuzz/docs/further-reading/fuzzer_environment.md

---
layout: default
title: Fuzzer environment
parent: Further reading
nav_order: 2
permalink: /further-reading/fuzzer-environment/
---

# Fuzzer environment on ClusterFuzz

Your fuzz targets will be run on a
[Google Compute Engine](https://cloud.google.com/compute/) VM (Linux) with some
[security restrictions](https://github.com/google/oss-fuzz/blob/master/infra/base-images/base-runner/run_minijail).

- TOC
{:toc}
---

## Runtime Dependencies

You should not make any assumptions on the availability of dependent packages 
in the execution environment. Packages that are installed via
[Dockerfile]({{ site.baseurl }}/getting-started/new-project-guide/#dockerfile)
or built as part of 
[build.sh]({{ site.baseurl }}/getting-started/new-project-guide/#buildsh)
are not available on the bot runtime environment (where the fuzz targets run).

If you need these dependencies in the runtime environment, you can either
- Install the packages via Dockerfile
([example](https://github.com/google/oss-fuzz/blob/2d5e2ef84f281e6ab789055aa735606d3122fda9/projects/tor/Dockerfile#L19))
and then link statically against them
([example](https://github.com/google/oss-fuzz/blob/2d5e2ef84f281e6ab789055aa735606d3122fda9/projects/tor/build.sh#L40))
- Or build the dependencies statically in
[build.sh]({{ site.baseurl }}/getting-started/new-project-guide/#buildsh)
([example](https://github.com/google/oss-fuzz/blob/64f8b6593da141b97c98c7bc6f07df92c42ee010/projects/ffmpeg/build.sh#L26)).

All build artifacts needed during fuzz target execution should be inside the
`$OUT` directory. Only those artifacts are archived and used on the bots.
Everything else is ignored (e.g. artifacts in `$WORK`, `$SRC`, etc) and hence
is not available in the execution environment.

You should ensure that the fuzz target works correctly by using `run_fuzzer`
command (see instructions
[here]({{ site.baseurl }}/getting-started/new-project-guide/#testing-locally)).
This command uses a clean base-runner docker container and not the base-builder
docker container created during build-time.

## argv[0]

You must not modify `argv[0]`. It is required for certain things to work
correctly.

## Current working directory

You should not make any assumptions about the current working directory of your
fuzz target. If you need to load data files, please use `argv[0]` to get the
directory where your fuzz target executable is located.

## File system

Everything except `/tmp` is read-only, including the directory that your fuzz
target executable lives in.

`/dev` is also unavailable.

## Hardware

Your project should not be compiled with `-march=native` or `-mtune=native`
flags, as the build infrastructure and fuzzing machines may have different CPUs
as well as other hardware differences. You may however use `-mtune=generic`.
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			`---`
			`layout: default`
			`title: Fuzzer environment`
[docs] Replace "furthur" with "further" throughout the documentation. (#2737) 2019-08-21 22:10:15 +00:00			`parent: Further reading`
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			`nav_order: 2`
[docs] Replace "furthur" with "further" throughout the documentation. (#2737) 2019-08-21 22:10:15 +00:00			`permalink: /further-reading/fuzzer-environment/`
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			`---`

Add documentation about fuzzer execution environment. 2016-11-07 21:08:44 +00:00			`# Fuzzer environment on ClusterFuzz`

Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			`Your fuzz targets will be run on a`
			`[Google Compute Engine](https://cloud.google.com/compute/) VM (Linux) with some`
			`[security restrictions](https://github.com/google/oss-fuzz/blob/master/infra/base-images/base-runner/run_minijail).`

			`- TOC`
			`{:toc}`
			`---`
Add documentation about fuzzer execution environment. 2016-11-07 21:08:44 +00:00
Update fuzzer_environment.md 2017-02-07 16:39:14 +00:00			`## Runtime Dependencies`
Update fuzzer_environment.md 2017-01-10 20:44:14 +00:00
			`You should not make any assumptions on the availability of dependent packages`
Fix typos and clarify grammar and word choice throughout the OSS-Fuzz docs. (#363) 2017-02-08 03:15:53 +00:00			`in the execution environment. Packages that are installed via`
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			`[Dockerfile]({{ site.baseurl }}/getting-started/new-project-guide/#dockerfile)`
Tidy up #360 even more 2017-02-07 17:14:23 +00:00			`or built as part of`
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			`[build.sh]({{ site.baseurl }}/getting-started/new-project-guide/#buildsh)`
Fix typos and clarify grammar and word choice throughout the OSS-Fuzz docs. (#363) 2017-02-08 03:15:53 +00:00			`are not available on the bot runtime environment (where the fuzz targets run).`
Tidy up #360 even more 2017-02-07 17:14:23 +00:00
			`If you need these dependencies in the runtime environment, you can either`
Fix typos and clarify grammar and word choice throughout the OSS-Fuzz docs. (#363) 2017-02-08 03:15:53 +00:00			`- Install the packages via Dockerfile`
Documentation fixes. (#2705) 2019-08-15 22:07:23 +00:00			`([example](https://github.com/google/oss-fuzz/blob/2d5e2ef84f281e6ab789055aa735606d3122fda9/projects/tor/Dockerfile#L19))`
Tidy up #360 even more 2017-02-07 17:14:23 +00:00			`and then link statically against them`
Documentation fixes. (#2705) 2019-08-15 22:07:23 +00:00			`([example](https://github.com/google/oss-fuzz/blob/2d5e2ef84f281e6ab789055aa735606d3122fda9/projects/tor/build.sh#L40))`
Tidy up #360 even more 2017-02-07 17:14:23 +00:00			`- Or build the dependencies statically in`
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			`[build.sh]({{ site.baseurl }}/getting-started/new-project-guide/#buildsh)`
Documentation fixes. (#2705) 2019-08-15 22:07:23 +00:00			`([example](https://github.com/google/oss-fuzz/blob/64f8b6593da141b97c98c7bc6f07df92c42ee010/projects/ffmpeg/build.sh#L26)).`
[docs] Add more explicit documentation regarding build dependencies. (#360) 2017-02-07 16:43:34 +00:00
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			`All build artifacts needed during fuzz target execution should be inside the`
			`$OUT` directory. Only those artifacts are archived and used on the bots.
			Everything else is ignored (e.g. artifacts in `$WORK`, `$SRC`, etc) and hence
			`is not available in the execution environment.`
Update fuzzer_environment.md 2017-01-14 20:20:48 +00:00
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			You should ensure that the fuzz target works correctly by using `run_fuzzer`
			`command (see instructions`
			`[here]({{ site.baseurl }}/getting-started/new-project-guide/#testing-locally)).`
			`This command uses a clean base-runner docker container and not the base-builder`
			`docker container created during build-time.`
Update fuzzer_environment.md 2017-01-10 20:44:14 +00:00
Update fuzzer_environment.md 2017-01-20 19:55:22 +00:00			`## argv[0]`

Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			You must not modify `argv[0]`. It is required for certain things to work
			`correctly.`
Update fuzzer_environment.md 2017-01-20 19:55:22 +00:00
Add documentation about fuzzer execution environment. 2016-11-07 21:08:44 +00:00			`## Current working directory`

Update fuzzer_environment.md 2016-11-26 23:59:29 +00:00			`You should not make any assumptions about the current working directory of your`
Update fuzzer_environment.md 2017-01-06 07:41:38 +00:00			fuzz target. If you need to load data files, please use `argv[0]` to get the
			`directory where your fuzz target executable is located.`
Add documentation about fuzzer execution environment. 2016-11-07 21:08:44 +00:00
Update fuzzer_environment.md 2016-11-29 19:47:37 +00:00			`## File system`
Add documentation about fuzzer execution environment. 2016-11-07 21:08:44 +00:00
Switch docs to new structure (#2663) 2019-08-07 14:37:16 +00:00			Everything except `/tmp` is read-only, including the directory that your fuzz
			`target executable lives in.`
Add documentation about fuzzer execution environment. 2016-11-07 21:08:44 +00:00
Update fuzzer_environment.md 2016-12-09 16:49:42 +00:00			`/dev` is also unavailable.

[docs] Add note regarding -march/-mtune flags as suggested in #752. (#753) 2017-08-01 16:31:29 +00:00			`## Hardware`

			Your project should not be compiled with `-march=native` or `-mtune=native`
			`flags, as the build infrastructure and fuzzing machines may have different CPUs`
			as well as other hardware differences. You may however use `-mtune=generic`.