diff options
| author | Florent Revest <revest@chromium.org> | 2026-01-12 16:32:04 +0100 |
|---|---|---|
| committer | Aleksandr Nogikh <nogikh@google.com> | 2026-01-13 09:31:39 +0000 |
| commit | cf0902221c8c510bcb0d6ca219ecca6766edf9a9 (patch) | |
| tree | 70cd4f1b3b95c1638a57f27633cfb6a5a556bd0a /tools/syz-aflow/aflow.go | |
| parent | d7bccd30b388650dc50996a1f81efb9698d0781b (diff) | |
tools/syz-aflow: support downloading bugs behind an AppEngine login
Some syzbot dashboard pages are guarded by an AppEngine login page. The
-download flag helps generate an input.json out of a bug report but it
currently uses simple HTTP GET commands without any authentication. When
called on a bug behind a login page, it received a login page HTML
instead of a json payload and fails in confusing ways.
The authentication page can be skipped using an authentication token.
It's easy to retrieve a token from the gcloud auth print-access-token
command.
Diffstat (limited to 'tools/syz-aflow/aflow.go')
| -rw-r--r-- | tools/syz-aflow/aflow.go | 53 |
1 files changed, 45 insertions, 8 deletions
diff --git a/tools/syz-aflow/aflow.go b/tools/syz-aflow/aflow.go index ee770e530..b9b59e90e 100644 --- a/tools/syz-aflow/aflow.go +++ b/tools/syz-aflow/aflow.go @@ -24,6 +24,8 @@ import ( "github.com/google/syzkaller/pkg/aflow/trajectory" "github.com/google/syzkaller/pkg/osutil" "github.com/google/syzkaller/pkg/tool" + + "golang.org/x/oauth2/google" ) func main() { @@ -35,10 +37,20 @@ func main() { flagCacheSize = flag.String("cache-size", "10GB", "max cache size (e.g. 100MB, 5GB, 1TB)") flagDownloadBug = flag.String("download-bug", "", "extid of a bug to download from the dashboard"+ " and save into -input file") + flagAuth = flag.Bool("auth", false, "use gcloud auth token for downloading bugs (set it up with"+ + " gcloud auth application-default login)") ) defer tool.Init()() if *flagDownloadBug != "" { - if err := downloadBug(*flagDownloadBug, *flagInput); err != nil { + token := "" + if *flagAuth { + var err error + token, err = getAccessToken() + if err != nil { + tool.Fail(err) + } + } + if err := downloadBug(*flagDownloadBug, *flagInput, token); err != nil { tool.Fail(err) } return @@ -109,11 +121,11 @@ func onEvent(span *trajectory.Span) error { return nil } -func downloadBug(extID, inputFile string) error { +func downloadBug(extID, inputFile, token string) error { if inputFile == "" { return fmt.Errorf("-download-bug requires -input flag") } - resp, err := get(fmt.Sprintf("/bug?extid=%v&json=1", extID)) + resp, err := get(fmt.Sprintf("/bug?extid=%v&json=1", extID), token) if err != nil { return err } @@ -125,15 +137,15 @@ func downloadBug(extID, inputFile string) error { inputs := map[string]any{ "SyzkallerCommit": crash["syzkaller-commit"], } - inputs["ReproSyz"], err = get(crash["syz-reproducer"].(string)) + inputs["ReproSyz"], err = get(crash["syz-reproducer"].(string), token) if err != nil { return err } - inputs["ReproC"], err = get(crash["c-reproducer"].(string)) + inputs["ReproC"], err = get(crash["c-reproducer"].(string), token) if err != nil { return err } - inputs["KernelConfig"], err = get(crash["kernel-config"].(string)) + inputs["KernelConfig"], err = get(crash["kernel-config"].(string), token) if err != nil { return err } @@ -144,16 +156,41 @@ func downloadBug(extID, inputFile string) error { return osutil.WriteFile(inputFile, data) } -func get(path string) (string, error) { +func get(path, token string) (string, error) { if path == "" { return "", nil } const host = "https://syzbot.org" - resp, err := http.Get(fmt.Sprintf("%v%v", host, path)) + req, err := http.NewRequest("GET", fmt.Sprintf("%v%v", host, path), nil) + if err != nil { + return "", err + } + if token != "" { + req.Header.Add("Authorization", "Bearer "+token) + } + resp, err := http.DefaultClient.Do(req) if err != nil { return "", err } defer resp.Body.Close() + if resp.StatusCode != http.StatusOK { + return "", fmt.Errorf("request failed: %v", resp.Status) + } body, err := io.ReadAll(resp.Body) return string(body), err } + +func getAccessToken() (string, error) { + ctx := context.Background() + scopes := []string{"https://www.googleapis.com/auth/cloud-platform"} + creds, err := google.FindDefaultCredentials(ctx, scopes...) + if err != nil { + return "", err + } + token, err := creds.TokenSource.Token() + if err != nil { + return "", fmt.Errorf("error retrieving token from source: %w", err) + } + + return token.AccessToken, nil +} |