arno/trezor-firmware
1
0
Fork 0
mirror of https://github.com/trezor/trezor-firmware.git synced 2025-05-06 17:09:11 +00:00
Code Issues Releases Wiki Activity

fix(vendor): don't access GitHub artifacts from cflite.yml job

Browse Source 
[no changelog]
This commit is contained in:
Roman Zeyde 2025-05-04 09:34:27 +03:00
parent c13b194daa
commit a366143fb7
2 changed files with 9 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
.github/actions/run-fuzzers/action.yml vendored
View File

@ -53,11 +53,11 @@ inputs:
report-unreproducible-crashes: report-unreproducible-crashes:
description: 'If True, then unreproducible crashes will be reported.' description: 'If True, then unreproducible crashes will be reported.'
required: false required: false
default: False default: false
minimize-crashes: minimize-crashes:
description: 'If True, reportable crashes will be minimized.' description: 'If True, reportable crashes will be minimized.'
required: false required: false
default: False default: false
parallel-fuzzing: parallel-fuzzing:
description: "Whether to use all available cores for fuzzing." description: "Whether to use all available cores for fuzzing."
required: false required: false
@ -91,7 +91,11 @@ runs:
REPORT_UNREPRODUCIBLE_CRASHES: ${{ inputs.report-unreproducible-crashes }} REPORT_UNREPRODUCIBLE_CRASHES: ${{ inputs.report-unreproducible-crashes }}
OUTPUT_SARIF: ${{ inputs.output-sarif }} OUTPUT_SARIF: ${{ inputs.output-sarif }}
MINIMIZE_CRASHES: ${{ inputs.minimize-crashes }} MINIMIZE_CRASHES: ${{ inputs.minimize-crashes }}
CFL_PLATFORM: 'github' CFL_PLATFORM: 'standalone' # don't access GitHub artifacts
FILESTORE_ROOT_DIR: '/no/such/dir' # no corpus is available
WORKSPACE: '/github/workspace'
REPOSITORY: 'trezor-firmware'
CIFUZZ_DEBUG: 'True'
PARALLEL_FUZZING: ${{ inputs.parallel-fuzzing }} PARALLEL_FUZZING: ${{ inputs.parallel-fuzzing }}
REPORT_TIMEOUTS: ${{ inputs.report-timeouts }} REPORT_TIMEOUTS: ${{ inputs.report-timeouts }}
REPORT_OOMS: ${{ inputs.report-ooms}} REPORT_OOMS: ${{ inputs.report-ooms}}

3
.github/workflows/cflite.yml vendored
View File

@ -21,6 +21,7 @@ jobs:
matrix: matrix:
sanitizer: [address] sanitizer: [address]
steps: steps:
- uses: actions/checkout@v4 # needed to use the modified `run-fuzzers` action
- name: Build Fuzzers (${{ matrix.sanitizer }}) - name: Build Fuzzers (${{ matrix.sanitizer }})
id: build id: build
uses: google/clusterfuzzlite/actions/build_fuzzers@v1 uses: google/clusterfuzzlite/actions/build_fuzzers@v1
@ -29,7 +30,7 @@ jobs:
language: c language: c
- name: Run Fuzzers (${{ matrix.sanitizer }}) - name: Run Fuzzers (${{ matrix.sanitizer }})
id: run id: run
uses: google/clusterfuzzlite/actions/run_fuzzers@v1 uses: ./.github/actions/run-fuzzers
with: with:
github-token: ${{ secrets.GITHUB_TOKEN }} github-token: ${{ secrets.GITHUB_TOKEN }}
fuzz-seconds: 400 fuzz-seconds: 400