[cfe-dev] non-determinism of sanitizer coverage
Kihong Heo via cfe-dev
cfe-dev at lists.llvm.org
Tue Apr 23 19:55:40 PDT 2019
Does sanitizer-coverage behave non-deterministically?
I have an executable file compiled with LibFuzzer + sanitizer-coverage and implemented “__sanitizer_cov_trace_pc_guard” to print out source code location with
__sanitizer_symbolize_pc(PC, \"%p %F %L\", PcDescr, sizeof(PcDescr));
fprintf(stderr, “%s\n”, PcDescr);
When this program is executed with an input (either crashing input or normal input), the number of printed lines is different for each run.
More information about the cfe-dev