arno/trezor-firmware
1
0
Fork 0
mirror of https://github.com/trezor/trezor-firmware.git synced 2025-05-06 08:59:15 +00:00
Code Issues Releases Wiki Activity

fix(vendor): don't access GitHub artifacts from cflite.yml job

Browse Source 
[no changelog]
This commit is contained in:
Roman Zeyde 2025-05-04 09:34:27 +03:00
parent c13b194daa
commit a366143fb7
2 changed files with 9 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
.github/actions/run-fuzzers/action.yml vendored
View File

@ -53,11 +53,11 @@ inputs:
report-unreproducible-crashes:
description: 'If True, then unreproducible crashes will be reported.'
required: false
default: False
default: false
minimize-crashes:
description: 'If True, reportable crashes will be minimized.'
required: false
default: False
default: false
parallel-fuzzing:
description: "Whether to use all available cores for fuzzing."
required: false
@ -91,7 +91,11 @@ runs:
REPORT_UNREPRODUCIBLE_CRASHES: ${{ inputs.report-unreproducible-crashes }}
OUTPUT_SARIF: ${{ inputs.output-sarif }}
MINIMIZE_CRASHES: ${{ inputs.minimize-crashes }}
CFL_PLATFORM: 'github'
CFL_PLATFORM: 'standalone' # don't access GitHub artifacts
FILESTORE_ROOT_DIR: '/no/such/dir' # no corpus is available
WORKSPACE: '/github/workspace'
REPOSITORY: 'trezor-firmware'
CIFUZZ_DEBUG: 'True'
PARALLEL_FUZZING: ${{ inputs.parallel-fuzzing }}
REPORT_TIMEOUTS: ${{ inputs.report-timeouts }}
REPORT_OOMS: ${{ inputs.report-ooms}}

3
.github/workflows/cflite.yml vendored
View File

@ -21,6 +21,7 @@ jobs:
matrix:
sanitizer: [address]
steps:
- uses: actions/checkout@v4 # needed to use the modified `run-fuzzers` action
- name: Build Fuzzers (${{ matrix.sanitizer }})
id: build
uses: google/clusterfuzzlite/actions/build_fuzzers@v1
@ -29,7 +30,7 @@ jobs:
language: c
- name: Run Fuzzers (${{ matrix.sanitizer }})
id: run
uses: google/clusterfuzzlite/actions/run_fuzzers@v1
uses: ./.github/actions/run-fuzzers
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
fuzz-seconds: 400