oss-fuzz/infra/libfuzzer-pipeline.groovy

127 lines
5.3 KiB
Groovy
Raw Normal View History

2016-07-21 18:38:38 +00:00
// Copyright 2016 Google Inc.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
////////////////////////////////////////////////////////////////////////////////
def call(body) {
// evaluate the body block, and collect configuration into the object
def config = [:]
body.resolveStrategy = Closure.DELEGATE_FIRST
body.delegate = config
body()
def project = new groovy.json.JsonSlurperClassic().parseText(config["project_json"])
// Project configuration.
def projectName = project["name"] ?: env.JOB_BASE_NAME
def sanitizers = project["sanitizers"] ?: ["address"]
def coverageFlags = project["coverage_flags"]
// Dockerfile config
def dockerfileConfig = project["dockerfile"] ?: [
"path": "projects/$projectName/Dockerfile",
"git" : "https://github.com/google/oss-fuzz.git",
"context" : "projects/$projectName/"
]
def dockerfile = dockerfileConfig["path"]
def dockerGit = dockerfileConfig["git"]
def dockerContextDir = dockerfileConfig["context"] ?: ""
def dockerTag = "ossfuzz/$projectName"
2016-12-13 21:09:31 +00:00
def dockerUid = 0 // TODO: try to make $USER to work
def dockerRunOptions = "--user $dockerUid --cap-add SYS_PTRACE"
2016-11-23 17:24:13 +00:00
def date = java.time.format.DateTimeFormatter.ofPattern("yyyyMMddHHmm")
2016-08-12 00:13:19 +00:00
.format(java.time.LocalDateTime.now())
2016-07-21 18:38:38 +00:00
node {
def workspace = pwd()
// def uid = sh(returnStdout: true, script: 'id -u $USER').trim()
2016-12-13 21:36:45 +00:00
echo "using uid $dockerUid"
2016-10-20 00:20:28 +00:00
def srcmapFile = "$workspace/srcmap.json"
echo "Building $dockerTag: $project"
2016-07-21 18:38:38 +00:00
sh "docker run --rm $dockerRunOptions -v $workspace:/workspace ubuntu bash -c \"rm -rf /workspace/out\""
sh "mkdir -p $workspace/out"
2016-10-12 23:36:38 +00:00
stage("docker image") {
def dockerfileRev
2016-10-12 23:57:11 +00:00
dir('checkout') {
git url: dockerGit
dockerfileRev = sh(returnStdout: true, script: 'git rev-parse HEAD').trim()
2016-10-19 20:59:47 +00:00
}
2016-07-21 18:38:38 +00:00
sh "docker build --no-cache -t $dockerTag -f checkout/$dockerfile checkout/$dockerContextDir"
2016-10-19 20:59:47 +00:00
// obtain srcmap
sh "docker run $dockerRunOptions --rm $dockerTag srcmap > $workspace/srcmap.json.tmp"
2016-11-03 23:20:04 +00:00
// use classic slurper: http://stackoverflow.com/questions/37864542/jenkins-pipeline-notserializableexception-groovy-json-internal-lazymap
2016-11-03 23:17:19 +00:00
def srcmap = new groovy.json.JsonSlurperClassic().parse(
2016-11-03 20:50:21 +00:00
new File("$workspace/srcmap.json.tmp"))
2016-11-03 21:40:29 +00:00
srcmap['/src'] = [ type: 'git',
rev: dockerfileRev,
url: dockerGit,
path: "/" + dockerContextDir ]
2016-11-03 20:31:45 +00:00
echo "srcmap: $srcmap"
2016-11-04 04:43:44 +00:00
writeFile file: srcmapFile, text: groovy.json.JsonOutput.toJson(srcmap)
} // stage("docker image")
2016-08-11 22:54:48 +00:00
for (int i = 0; i < sanitizers.size(); i++) {
2016-10-10 20:36:13 +00:00
def sanitizer = sanitizers[i]
dir(sanitizer) {
def out = "$workspace/out/$sanitizer"
2016-10-26 21:22:20 +00:00
def junit_reports = "$workspace/junit_reports/$sanitizer"
sh "mkdir -p $out"
sh "mkdir -p $junit_reports"
stage("$sanitizer sanitizer") {
// Run image to produce fuzzers
def env = "-e SANITIZER=\"${sanitizer}\" "
if (coverageFlags != null) {
env += "-e COVERAGE_FLAGS=\"${coverageFlags}\" "
}
sh "docker run --rm $dockerRunOptions -v $out:/out $env -t $dockerTag compile"
// Test all fuzzers
sh "docker run --rm $dockerRunOptions -v $out:/out -v $junit_reports:/junit_reports -e TEST_SUITE=\"${projectName}.${sanitizer}.\" -t ossfuzz/base-runner test_report"
2016-10-10 20:36:13 +00:00
}
2016-08-11 23:04:20 +00:00
}
2016-08-11 22:54:48 +00:00
}
2016-08-12 00:13:19 +00:00
2016-10-10 20:36:13 +00:00
stage("uploading") {
2016-10-27 17:03:49 +00:00
step([$class: 'JUnitResultArchiver', testResults: 'junit_reports/**/*.xml'])
2016-10-13 16:27:23 +00:00
dir('out') {
for (int i = 0; i < sanitizers.size(); i++) {
def sanitizer = sanitizers[i]
dir (sanitizer) {
def zipFile = "$projectName-$sanitizer-${date}.zip"
sh "zip -j $zipFile *"
sh "gsutil cp $zipFile gs://clusterfuzz-builds/$projectName/"
2016-10-20 21:39:55 +00:00
def stampedSrcmap = "$projectName-$sanitizer-${date}.srcmap.json"
sh "cp $srcmapFile $stampedSrcmap"
sh "gsutil cp $stampedSrcmap gs://clusterfuzz-builds/$projectName/"
}
2016-10-13 16:27:23 +00:00
}
}
} // stage("uploading")
2016-10-06 21:26:09 +00:00
2016-10-10 20:36:13 +00:00
stage("pushing image") {
docker.withRegistry('', 'docker-login') {
docker.image(dockerTag).push()
}
} // stage("pushing image")
} // node
} // call
2016-07-21 18:38:38 +00:00
return this;