Regression range should include OSS-Fuzz infrastructure changes #11881
Comments
|
Sorry for the false positives. |
|
Oh, don't worry about it! Stuff breaks and MSan is really, really finicky. Meh. 😄 This was just a thought to help pinpoint things, since I otherwise have no idea how to tell what infra stuff changed recently. |
Another idea I had was to reproduce msan crashes in valgrind. If valgrind can not reproduce the uninitialized read, it is more likely to be correct than not. See also #5836 |
|
That will end up suppressing true positives. valgrind works by instrumenting the compiled code and can't see uninitialized memory that happened to not survive through the compiler's optimization passes. It also needs to conservatively assume many things are fine, because it needs to accept code that compilers output. For example, valgrind allows you to compute over uninitialized memory, as long as you don't branch on it, but C/C++'s rules are actually much stricter. |
It's happened a few times now that OSS-Fuzz infrastructure changes have caused MSan false positives in the fuzzers. Most recently, #11880, but other times we've been hit by regressions in Clang, etc.
When this happens, it is difficult to diagnose on the projects' side, and we often end up spending a lot of time trying to reproduce the issue. (It takes me less time now, but only because I know to be suspicious of OSS-Fuzz MSan reports. That's not exactly a good outcome either! 😁 )
Could the regression range in OSS-Fuzz reports include changes to the compiler and other infrastructure? That way we could look at recent changes there if the regression range for the project itself doesn't check out.
The text was updated successfully, but these errors were encountered: