Skip to content

Support fuzz_targets property in clusterfuzz_manifest.json#5305

Merged
notvictorl merged 5 commits into
google:masterfrom
notvictorl:liuvic/fuzz_targets
Jun 10, 2026
Merged

Support fuzz_targets property in clusterfuzz_manifest.json#5305
notvictorl merged 5 commits into
google:masterfrom
notvictorl:liuvic/fuzz_targets

Conversation

@notvictorl

@notvictorl notvictorl commented Jun 1, 2026
edited
Loading

Copy link
Copy Markdown
Collaborator

Adds support for fuzz_targets property in clusterfuzz_manifest.json. This allows coverage-guided fuzzing jobs with ChromeBuildArchives to skip the unpacking and fuzz target discovery phases.

Problem:
Currently, ClusterFuzz wastes time unpacking complete archives to then traverse the directory to discover fuzz targets. Furthermore, on certain large build types, this unpacking process frequently triggers out-of-disk-space errors due to the massive size of the zip files.

Solution:
By introducing fuzz_targets — a list of fuzz target paths relative to clusterfuzz_manifest.json — we can bypass the discovery step entirely. ClusterFuzz will now map this list so that each fuzz target has a normalized name (key) and its corresponding path (value).

More Info: crbug.com/508214240

@notvictorl notvictorl requested a review from a team as a code owner June 1, 2026 17:19
@notvictorl notvictorl force-pushed the liuvic/fuzz_targets branch 4 times, most recently from 828343c to a4fc5d3 Compare June 1, 2026 18:47
@notvictorl notvictorl force-pushed the liuvic/fuzz_targets branch from a4fc5d3 to 2647ce6 Compare June 1, 2026 19:39
@notvictorl notvictorl requested a review from letitz June 1, 2026 20:14
letitz
letitz reviewed Jun 2, 2026
View reviewed changes
Comment thread src/clusterfuzz/_internal/build_management/build_archive.py Outdated
Comment thread src/clusterfuzz/_internal/build_management/build_archive.py Outdated
Comment thread src/clusterfuzz/_internal/build_management/build_archive.py Outdated
Comment thread src/clusterfuzz/_internal/build_management/build_archive.py
Comment thread src/clusterfuzz/_internal/build_management/build_archive.py Outdated
Comment thread src/clusterfuzz/_internal/tests/core/build_management/build_archive_test.py Outdated
Comment thread src/clusterfuzz/_internal/tests/core/build_management/build_archive_test.py
Comment thread src/clusterfuzz/_internal/tests/core/build_management/build_archive_test.py Outdated
Comment thread src/clusterfuzz/_internal/tests/core/build_management/build_manager_test.py
Comment thread src/clusterfuzz/_internal/tests/core/build_management/build_manager_test.py
@notvictorl notvictorl requested a review from letitz June 4, 2026 21:04
letitz
letitz reviewed Jun 5, 2026
View reviewed changes

@letitz letitz left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM % understanding build_prefix.

Comment thread src/clusterfuzz/_internal/build_management/build_archive.py
Comment thread src/clusterfuzz/_internal/build_management/build_archive.py Outdated
Comment thread src/clusterfuzz/_internal/build_management/build_manager.py
# selected fuzz targets.
list_fuzz_target_start_time = time.time()
self._fuzz_targets = list(build.list_fuzz_targets())
_emit_job_build_retrieval_metric(list_fuzz_target_start_time,

@letitz letitz Jun 5, 2026

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is convenient, we'll have a metric to look at when this rolls out that should show us this step taking a lot less time.

Comment thread src/clusterfuzz/_internal/build_management/build_manager.py
@notvictorl notvictorl requested a review from letitz June 5, 2026 15:11
letitz
letitz approved these changes Jun 5, 2026
View reviewed changes

@letitz letitz left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I expect clusterfuzz maintainers will want to see evidence of this working in dev before they land this. Can you try to test it in dev?

Comment thread src/clusterfuzz/_internal/build_management/build_manager.py
@notvictorl

notvictorl commented Jun 5, 2026

Copy link
Copy Markdown
Collaborator Author

Have it running on dev and it seems to be working fine on variant tasks (uploaded testcases) and libfuzzer_chrome_asan_schemav1. libfuzzer_chrome_msan_schemav1 doesn't seem to be scheduled but asan and msan should interact similarly for this change.

@notvictorl notvictorl requested a review from vitaliset June 5, 2026 23:15
@notvictorl

notvictorl commented Jun 10, 2026

Copy link
Copy Markdown
Collaborator Author

@vitaliset friendly nudge to review. thanks!

PauloVLB
PauloVLB approved these changes Jun 10, 2026
View reviewed changes

@PauloVLB PauloVLB left a comment
edited
Loading

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

Thank you for working on this improvement!

For the record, this also directly affects (and fixes) b/509600495, as the issue stems from those huge builds causing Windows jobs to terminate prematurely due to lack of space.

@notvictorl notvictorl merged commit fbfb401 into google:master Jun 10, 2026
14 checks passed
@notvictorl notvictorl deleted the liuvic/fuzz_targets branch June 10, 2026 16:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@letitz letitz letitz approved these changes

@PauloVLB PauloVLB PauloVLB approved these changes

@vitaliset vitaliset Awaiting requested review from vitaliset

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@notvictorl @letitz @PauloVLB