Further tweaks to the CI runs for fuzzing

author Matt Caswell <matt@openssl.org>

Mon, 16 Oct 2023 16:24:56 +0000 (17:24 +0100)

committer Matt Caswell <matt@openssl.org>

Mon, 23 Oct 2023 09:08:22 +0000 (10:08 +0100)
author Matt Caswell <matt@openssl.org>
Mon, 16 Oct 2023 16:24:56 +0000 (17:24 +0100)
committer Matt Caswell <matt@openssl.org>
Mon, 23 Oct 2023 09:08:22 +0000 (10:08 +0100)
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml

index eb9765f542b400a32f58b0551a0c4e637c729d68..815f7c61b5a657604eac69705bb5d1b84b1aa0db 100644 (file)
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -193,6 +193,23 @@ jobs:
      - name: make test
        run: make test HARNESS_JOBS=${HARNESS_JOBS:-4} OPENSSL_TEST_RAND_ORDER=0
  
+  fuzz_tests:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v4
+    - name: checkout fuzz/corpora submodule
+      run: git submodule update --init --depth 1 fuzz/corpora
+    - name: config
+      run: ./config --banner=Configured --debug -DPEDANTIC -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION enable-asan enable-ubsan enable-rc5 enable-md2 enable-ec_nistp_64_gcc_128 enable-weak-ssl-ciphers enable-ssl3 enable-ssl3-method enable-nextprotoneg && perl configdata.pm --dump
+    - name: make
+      run: make -s -j4
+    - name: get cpu info
+      run: |
+        cat /proc/cpuinfo
+        ./util/opensslwrap.sh version -c
+    - name: make test
+      run: make test HARNESS_JOBS=${HARNESS_JOBS:-4} OPENSSL_TEST_RAND_ORDER=0 TESTS="test_fuzz*"
+
    memory_sanitizer:
      runs-on: ubuntu-latest
      steps:
diff --git a/.github/workflows/static-analysis.yml b/.github/workflows/static-analysis.yml

index 11d1b03abda52299fc8125b086a692b94726531d..05330f02d831340d7f1e6c517f816d7fe3d8c26a 100644 (file)
--- a/.github/workflows/static-analysis.yml
+++ b/.github/workflows/static-analysis.yml
@@ -26,7 +26,7 @@ jobs:
               --post-data "token=${{ secrets.COVERITY_TOKEN }}&project=openssl%2Fopenssl" \
               --progress=dot:giga -O coverity_tool.tgz
      - name: config
-      run: CC=gcc ./config --banner=Configured --debug enable-fips enable-rc5 enable-md2 enable-ssl3 enable-nextprotoneg enable-ssl3-method enable-weak-ssl-ciphers enable-zlib enable-ec_nistp_64_gcc_128 no-shared enable-buildtest-c++ enable-external-tests -DPEDANTIC -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION
+      run: CC=gcc ./config --banner=Configured --debug enable-fips enable-rc5 enable-md2 enable-ssl3 enable-nextprotoneg enable-ssl3-method enable-weak-ssl-ciphers enable-zlib enable-ec_nistp_64_gcc_128 no-shared enable-buildtest-c++ enable-external-tests -DPEDANTIC
      - name: config dump
        run: ./configdata.pm --dump
      - name: tool install
author	Matt Caswell <matt@openssl.org>
	Mon, 16 Oct 2023 16:24:56 +0000 (17:24 +0100)
committer	Matt Caswell <matt@openssl.org>
	Mon, 23 Oct 2023 09:08:22 +0000 (10:08 +0100)
.github/workflows/ci.yml		patch \| blob \| history
.github/workflows/static-analysis.yml		patch \| blob \| history