[31322] in CVS-changelog-for-Kerberos-V5

home help back first fref pref prev next nref lref last post

krb5 commit: Add cifuzz workflow for PR fuzzing

daemon@ATHENA.MIT.EDU (ghudson@mit.edu)
Fri Jun 7 16:48:08 2024

From: ghudson@mit.edu
To: cvs-krb5@mit.edu
Message-Id: <20240607204801.EB4F3101990@krbdev.mit.edu>
Date: Fri,  7 Jun 2024 16:48:01 -0400 (EDT)
MIME-Version: 1.0
Reply-To: krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: cvs-krb5-bounces@mit.edu

https://github.com/krb5/krb5/commit/13e97260e012c34b454fba66a8525b32fe21e438
commit 13e97260e012c34b454fba66a8525b32fe21e438
Author: Arjun <pkillarjun@protonmail.com>
Date:   Tue Jun 4 11:35:14 2024 +0530

    Add cifuzz workflow for PR fuzzing

 .github/workflows/cifuzz.yml | 38 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)

diff --git a/.github/workflows/cifuzz.yml b/.github/workflows/cifuzz.yml
new file mode 100644
index 000000000..9d29aad0c
--- /dev/null
+++ b/.github/workflows/cifuzz.yml
@@ -0,0 +1,38 @@
+name: CIFuzz
+
+on:
+    pull_request: {paths: [src/**, .github/workflows/build.yml]}
+
+permissions: {}
+jobs:
+    Fuzzing:
+        runs-on: ubuntu-latest
+        permissions:
+            security-events: write
+        steps:
+        - name: Build Fuzzers
+          id: build
+          uses: google/oss-fuzz/infra/cifuzz/actions/build_fuzzers@master
+          with:
+            oss-fuzz-project-name: 'krb5'
+            language: c
+        - name: Run Fuzzers
+          uses: google/oss-fuzz/infra/cifuzz/actions/run_fuzzers@master
+          with:
+            oss-fuzz-project-name: 'krb5'
+            language: c
+            fuzz-seconds: 300
+            output-sarif: true
+        - name: Upload Crash
+          uses: actions/upload-artifact@v3
+          if: failure() && steps.build.outcome == 'success'
+          with:
+            name: artifacts
+            path: ./out/artifacts
+        - name: Upload Sarif
+          if: always() && steps.build.outcome == 'success'
+          uses: github/codeql-action/upload-sarif@v2
+          with:
+            # Path to SARIF file relative to the root of the repository
+            sarif_file: cifuzz-sarif/results.sarif
+            checkout_path: cifuzz-sarif
_______________________________________________
cvs-krb5 mailing list
cvs-krb5@mit.edu
https://mailman.mit.edu/mailman/listinfo/cvs-krb5
home help back first fref pref prev next nref lref last post