#!/bin/bash -eu # Copyright 2016 Google Inc. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # ################################################################################ FUZZER_FILES="\ test/core/json/fuzzer.c \ test/core/client_channel/uri_fuzzer_test.c \ test/core/http/request_fuzzer.c \ test/core/http/response_fuzzer.c \ test/core/nanopb/fuzzer_response.c \ test/core/nanopb/fuzzer_serverlist.c \ test/core/slice/percent_decode_fuzzer.c \ test/core/slice/percent_encode_fuzzer.c \ test/core/transport/chttp2/hpack_parser_fuzzer_test.c \ test/core/end2end/fuzzers/api_fuzzer.c \ test/core/end2end/fuzzers/client_fuzzer.c \ test/core/end2end/fuzzers/server_fuzzer.c \ test/core/security/ssl_server_fuzzer.c \ " FUZZER_DICTIONARIES="\ test/core/end2end/fuzzers/api_fuzzer.dictionary \ test/core/end2end/fuzzers/hpack.dictionary \ " FUZZER_LIBRARIES="\ bazel-bin/*.a \ bazel-bin/test/core/util/*.a \ bazel-bin/test/core/end2end/*.a \ bazel-bin/external/submodule_boringssl/libssl.a \ bazel-bin/external/submodule_boringssl/libcrypto.a \ bazel-bin/external/submodule_cares/*.a \ bazel-bin/external/submodule_zlib/*.a \ bazel-bin/third_party/nanopb/*.a \ bazel-bin/*.a \ " # build grpc # Temporary hack, see https://github.com/google/oss-fuzz/issues/383 NO_VPTR="--copt=-fno-sanitize=vptr --linkopt=-fno-sanitize=vptr" EXTERA_BAZEL_FLAGS="--strip=never $(for f in $CXXFLAGS; do if [ $f != "-stdlib=libc++" ] ; then echo --copt=$f --linkopt=$f; fi; done)" bazel build --dynamic_mode=off --spawn_strategy=standalone --genrule_strategy=standalone \ $EXTERA_BAZEL_FLAGS \ $NO_VPTR \ :all test/core/util/... test/core/end2end/... third_party/nanopb/... @submodule_boringssl//:all @submodule_zlib//:all @submodule_cares//:all CFLAGS="${CFLAGS} -Iinclude -I." CXXFLAGS="${CXXFLAGS} -Iinclude -I. -stdlib=libc++" for file in $FUZZER_FILES; do fuzzer_name=$(basename $file .c) fuzzer_object="${file::-1}o" echo "Building fuzzer $fuzzer_name" $CC $CFLAGS \ $file -c -o $fuzzer_object $CXX $CXXFLAGS \ $fuzzer_object -o $OUT/$fuzzer_name \ -lFuzzingEngine ${FUZZER_LIBRARIES} done # Copy dictionaries and options files to $OUT/ for dict in $FUZZER_DICTIONARIES; do cp $dict $OUT/ done cp $SRC/grpc/tools/fuzzer/options/*.options $OUT/ # We don't have a consistent naming convention between fuzzer files and corpus # directories so we resort to hard coding zipping corpuses zip $OUT/fuzzer_seed_corpus.zip test/core/json/corpus/* zip $OUT/uri_fuzzer_test_seed_corpus.zip test/core/client_channel/uri_corpus/* zip $OUT/request_fuzzer_seed_corpus.zip test/core/http/request_corpus/* zip $OUT/response_fuzzer_seed_corpus.zip test/core/http/response_corpus/* zip $OUT/fuzzer_response_seed_corpus.zip test/core/nanopb/corpus_response/* zip $OUT/fuzzer_serverlist_seed_corpus.zip test/core/nanopb/corpus_serverlist/* zip $OUT/percent_decode_fuzzer_seed_corpus.zip test/core/slice/percent_decode_corpus/* zip $OUT/percent_encode_fuzzer_seed_corpus.zip test/core/slice/percent_encode_corpus/* zip $OUT/hpack_parser_fuzzer_test_seed_corpus.zip test/core/transport/chttp2/hpack_parser_corpus/* zip $OUT/api_fuzzer_seed_corpus.zip test/core/end2end/fuzzers/api_fuzzer_corpus/* zip $OUT/client_fuzzer_seed_corpus.zip test/core/end2end/fuzzers/client_fuzzer_corpus/* zip $OUT/server_fuzzer_seed_corpus.zip test/core/end2end/fuzzers/server_fuzzer_corpus/* zip $OUT/ssl_server_fuzzer_seed_corpus.zip test/core/security/corpus/ssl_server_corpus/*