[SKIP SOF-TEST] Remove old fuzzer #7675
Conversation
andyross
requested review from
dbaluta,
cujomalainey,
lgirdwood,
marc-hb,
aborisovich,
a team,
plbossart,
mmaka1 and
lbetlej
as code owners
| # also see | ||
| # https://google.github.io/oss-fuzz/getting-started/continuous-integration/ | ||
| # | ||
| # Build and run fuzzer for 5s just to check that it runs properly. If it |
There was a problem hiding this comment.
is this line still not true?
There was a problem hiding this comment.
It is, but it's "3m" now and done with the newer rig
There was a problem hiding this comment.
Why 3m? We just want to smoke test in this CI and let OSS-fuzz handle the longer runs
|
Possibly naive question: I understand that the IPCn code is OS-independent for the most part but is it 100% independent? Someone could want to fuzz non-Zephyr on the main branch? To allow more time for any non-Zephyr discussion yet fix CI immediately we could fast track the first commit in a separate PR? |
|
What is prompting this removal: the old non-zephyr based IPC fuzzer started failing as shown below. Probably since google/oss-fuzz#10342 was merged? https://github.com/thesofproject/sof/actions/runs/5053499443/jobs/9067397260?pr=7670 |
Actually, the old fuzzer was just broken on stable-v2.2 exactly the same: I guess because google/oss-fuzz#10342 does not care - as expected - about SOF branches? I see two options to fix stable-v2.2:
Here's a recent, stable-v2.2 example of NOT diverging unnecessarily: #7551 |
I mean, not really given the spec like DAI is definitely tied to a HW backend, but there are no fuzzing rigs for Xtensa (heck there are only portion on arm compared to x86) so I would not be as concerned here.
Yes I think that is a fair request.
That is correct, it grabs the latest and greatest and just hits it with a hammer
I think we can just delete it. There is no benefit to fuzzing stable-v2.2 without porting the new rig down as it has already been fuzzed to high heaven with the old rig and it hasn't found a bug in months. The branch should have basically nothing changing W.R.T IPC so i am not as concerned as it should be slow fixes going forward. That being said I would be open to at least a estimate of the lift effort to get the new fuzzer going. |
This comment was marked as duplicate.
This comment was marked as duplicate.
|
Just noticed by chance that we still have this: https://thesofproject.github.io/latest/developer_guides/fuzzing/fuzzing_in_docker.html |
This has bitrotten vs. the newer code upstream at oss-fuzz, involves an expensive docker container build, and provides little value vs. the newer fuzz.sh script that runs in the regular CI containers. Let oss-fuzz handle the deep validation. We should be using fuzzing as a smoke test via the existing scripts. Signed-off-by: Andy Ross <[email protected]>
|
I've removed the big removal patch for now pending more discussion. This is just the workflow change that unbreaks CI. FWIW: I'm not sure I'm following the discussion on the 2.2 branch issue. As I understand it the way the older scheme worked, and has always worked, is to pull current oss-fuzz images/code and build the current oss-fuzz integration (to be clear: I don't really understand why it's failing, those github actions are greek to me). It doesn't build against the checked-out SOF code nor try to match versions to whatever we're using. oss-fuzz is a separate project and it doesn't branch according to SOF rules. This was never going to work the way it was set up. So, the way to fix that it to make the fuzzer build locally in our CI images. Which is exactly what's been merged. Can't we just use that and call it a fix? |
That's not going to work out of the box for stable-v2.2 which is quite far away with barely any Zephyr support.
@andyross any idea?
This looks like a very good stable-v2.2 commit message :-)
Instead of stopping to fuzz stable-v2.2 alltogether, another, very cheap stable-v2.2 option could be: --- a/.github/workflows/ipc_fuzzer.yml
+++ b/.github/workflows/ipc_fuzzer.yml
@@ -31,12 +31,12 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Build Fuzzers
- uses: google/oss-fuzz/infra/cifuzz/actions/build_fuzzers@master
+ uses: google/oss-fuzz/infra/cifuzz/actions/build_fuzzers@version_just_before_andys_10342
with:
oss-fuzz-project-name: 'sound-open-firmware'
- name: Run Fuzzers
- uses: google/oss-fuzz/infra/cifuzz/actions/run_fuzzers@master
+ uses: google/oss-fuzz/infra/cifuzz/actions/run_fuzzers@same
with:
oss-fuzz-project-name: 'sound-open-firmware'
language: c
While not always necessary, it's pretty common to branch test code (oss-fuzz) with production code (sof stable-v2.2) |
|
The new fuzzing code is obligate zephyr and relies on a fairly recent version. We'd need to update that, and then build SOF in a configuration that doesn't match the shipping firmware on that branch. Honestly if we want to preserve the older fuzzing code I think a better tactic would be to update it to run in the SOF CI container, just like the new stuff. That would lose the smoke test facility for making sure oss-fuzz works, but then none of that code is changing anymore. I doubt that would be difficult, honestly. Mostly just a "fuzz-old.sh" script. I guess my gut says that fuzzing is a technique for validation of new code. It has minimal (but sure, not zero) value on maintenance branches that are expected to be protocol-compatible in perpetuity. |
|
@kv2019i when this lands we should start watching the CI again |
Exactly my thoughts, and its isolated to finding holes in communication paths. I think a better option would be to mandate fixes for IPC3 go back to that branch if they apply rather than trying to fuzz it directly. |
|
There may be a point in the future where IPC3 is gone from the main branch though. |
|
Yes which means it really shouldn't be being modified on the branch |
See thesofproject#7675 why. Signed-off-by: Marc Herbert <[email protected]>
|
stable-v2.2 discussion moved to new |
This is a partial fix for thesofproject#7709; doc updates still to be done. Quoting @cujomalainey in - thesofproject#7699 > I still don't see the benefit here. This branch and IPC3 are mostly > stable/archived. Hence anything we fuzz on main we should be able to > cherry-pick down. Nothing new should be landing on this branch so I > don't see the benefit of continued fuzzing past support on main. Quoting @andyross in - thesofproject#7675 > I guess my gut says that fuzzing is a technique for validation of > new code. It has minimal (but sure, not zero) value on maintenance > branches that are expected to be protocol-compatible in perpetuity. Signed-off-by: Marc Herbert <[email protected]>
This is a partial fix for #7709; doc updates still to be done. Quoting @cujomalainey in - #7699 > I still don't see the benefit here. This branch and IPC3 are mostly > stable/archived. Hence anything we fuzz on main we should be able to > cherry-pick down. Nothing new should be landing on this branch so I > don't see the benefit of continued fuzzing past support on main. Quoting @andyross in - #7675 > I guess my gut says that fuzzing is a technique for validation of > new code. It has minimal (but sure, not zero) value on maintenance > branches that are expected to be protocol-compatible in perpetuity. Signed-off-by: Marc Herbert <[email protected]>
This is a partial fix for thesofproject#7709; doc updates still to be done. Quoting @cujomalainey in - thesofproject#7699 > I still don't see the benefit here. This branch and IPC3 are mostly > stable/archived. Hence anything we fuzz on main we should be able to > cherry-pick down. Nothing new should be landing on this branch so I > don't see the benefit of continued fuzzing past support on main. Quoting @andyross in - thesofproject#7675 > I guess my gut says that fuzzing is a technique for validation of > new code. It has minimal (but sure, not zero) value on maintenance > branches that are expected to be protocol-compatible in perpetuity. Signed-off-by: Marc Herbert <[email protected]> (cherry picked from commit 3ddd15c)
This is a partial fix for #7709; doc updates still to be done. Quoting @cujomalainey in - #7699 > I still don't see the benefit here. This branch and IPC3 are mostly > stable/archived. Hence anything we fuzz on main we should be able to > cherry-pick down. Nothing new should be landing on this branch so I > don't see the benefit of continued fuzzing past support on main. Quoting @andyross in - #7675 > I guess my gut says that fuzzing is a technique for validation of > new code. It has minimal (but sure, not zero) value on maintenance > branches that are expected to be protocol-compatible in perpetuity. Signed-off-by: Marc Herbert <[email protected]> (cherry picked from commit 3ddd15c)
Re-submission for review of the fuzzer removal PR.
Note that this won't apply to main until the first version is reverted.done