Stream: wg-secure-code

Topic: Dynamic analysis tooling


Shnatsel (Jan 14 2019 at 01:58, on Zulip):

I've just filed some bugs on the WG repo about improving dynamic analysis tooling.
@RalfJ could you clarify what kind of bugs MIRI detects that Address Sanitizer doesn't?
Also, in your blog post you've mentioned running the test suite with it. Does it detect bugs that happen more or less regardless of inputs like misaligned pointers or is there value in hooking it up to a fuzzer so it could automatically find interesting conditions triggered by malformed inputs such as reads from uninitialized memory?

Last update: Nov 11 2019 at 22:00UTC