[gnutls-devel] GnuTLS | New CI runner with clang combined ubsan+asan (!1151)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Thu Jan 23 18:45:05 CET 2020




Tim Rühsen commented on a discussion on .gitlab-ci.yml: https://gitlab.com/gnutls/gnutls/merge_requests/1151#note_276108885

>        - tests/suite/*/*.log
>    retry: 1
>  
> +# Two runs, one with normal backend and another with pkcs11 trust store
> +UB+ASAN-Werror.Fedora.x86_64.clang:
> +  stage: stage1-testing
> +  image: $CI_REGISTRY/$BUILD_IMAGES_PROJECT:$FEDORA_BUILD
> +  script:
> +  - ./bootstrap
> +  - export UBSAN_OPTIONS=print_stacktrace=1:report_error_type=1:suppressions=$(pwd)/devel/ubsan.supp
> +  - export LSAN_OPTIONS=suppressions=$(pwd)/devel/lsan.supp
> +  - export ASAN_SYMBOLIZER_PATH=/usr/bin/llvm-symbolizer
> +  - export CC=clang
> +  - export CXX=clang++
> +
> +# This makes several tests fail, needs discussion if helpful

Some tests fail, likely due to 'nullability' and 'nonnull-attribute'. I couldn't find a good solution for these and then saw that OSS-Fuzz avoids these two sanitizer settings. If you don't want to investigate into these (I don't have the time to), then let's remove or amend the comment. I like to keep these comments for someone else to investigate later - but that is a matter of favor.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/1151#note_276108885
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200123/b491f919/attachment-0001.html>


More information about the Gnutls-devel mailing list