ci: fix error failing atheris-libprotobuf-mutator build (#4818)

its403 · web-flow · commit 45b9ec339ad7 · 2025-02-26T10:18:49.000-08:00
* ci: fix error failing atheris-libprotobuf-mutator build

* ci: update python version to 3.10
diff --git a/.github/workflows/fuzzing.yml b/.github/workflows/fuzzing.yml
@@ -4,7 +4,7 @@ on:
   schedule:
     - cron: '0 7 * * 1'  # Runs at 07:00 on monday every week
 
-  workflow_dispatch: 
+  workflow_dispatch:
 
 permissions:
   contents: read
@@ -13,17 +13,34 @@ jobs:
   fuzzing:
     name: Fuzzing
     runs-on: ${{ github.repository_owner == 'intel' && 'intel-ubuntu-latest' || 'ubuntu-latest' }}
-    if: github.event.repository.fork == false   
+    if: github.event.repository.fork == false
     steps:
-      - name: Check out code  
+      - name: Check out code
         uses: actions/checkout@v4
 
-      - name: Set up Python 
+      - name: Set up Python
         uses: actions/setup-python@v5.4.0
         with:
-          python-version: 3.9  
+          python-version: 3.10.16
 
-      - name: Install Bazel  
+      - name: Install Build Dependencies
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y build-essential gcc g++ cmake
+          
+      - name: Install newer GCC
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y gcc-10 g++-10
+          sudo update-alternatives --install /usr/bin/gcc gcc /usr/bin/gcc-10 100
+          sudo update-alternatives --install /usr/bin/g++ g++ /usr/bin/g++-10 100
+          
+      - name: Set up compiler environment
+        run: |
+          export CC=gcc
+          export CXX=g++
+
+      - name: Install Bazel
         run: |
           sudo apt-get update
           sudo apt-get install -y wget
@@ -32,11 +49,12 @@ jobs:
           sudo mv bazel-7.4.1-linux-x86_64 /usr/local/bin/bazel
           bazel --version
 
-      - name: Install Fuzzing Dependencies  
+      - name: Install Fuzzing Dependencies
         run: |
           pip install --upgrade atheris
-          pip install --upgrade atheris-libprotobuf-mutator
+          pip install --upgrade atheris-libprotobuf-mutator -v
           pip install --upgrade protobuf
+      
       - name: Install Cve-bin-tool
         run: |
           python -m pip install --upgrade pip
@@ -56,21 +74,22 @@ jobs:
         with:
           path: fuzz-cache
           key: Linux-cve-bin-tool-${{ steps.get-date.outputs.date }}
+
       - name: Get yesterday's cached database if today's is not available
         uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         if: steps.todays-cache.outputs.cache-hit != 'true'
         with:
           path: fuzz-cache
           key: Linux-cve-bin-tool-${{ steps.get-date.outputs.yesterday }}
-        
+
       - name: Try single CLI run of tool
         if: env.sbom != 'true'
         run: |
           [[ -e fuzz-cache ]] && mkdir -p .cache && mv fuzz-cache ~/.cache/cve-bin-tool
           NO_EXIT_CVE_NUM=1 python -m cve_bin_tool.cli test/assets/test-kerberos-5-1.15.1.out --disable-data-source CURL,EPSS,GAD,NVD,OSV,PURL2CPE,RSD
           cp -r ~/.cache/cve-bin-tool fuzz-cache
           
-      - name: Run Fuzzing 
+      - name: Run Fuzzing
         id: fuzzing
         env:
           PYTHONPATH: ${{ github.workspace }}
