Add ASAN#2274
Open
Kaushik Raina (k-raina) wants to merge 5 commits into
Open
Conversation
Kaushik Raina (k-raina)
requested review from
a team and
Matthew Seal (MSeal)
as code owners
|
🎉 All Contributor License Agreements have been signed. Ready to merge. |
…-party leaks The integration ASAN job installed requirements-tests.txt (pytest only), so pytest collection died importing the SR client that cluster_fixture loads at module level: ModuleNotFoundError: authlib. Switch to requirements-tests-install.txt, which -r's in requirements-schemaregistry.txt (authlib + cryptography) and the vendored trivup 0.14.0. Also suppress the one-time cryptography/cffi module-init allocations LSAN flags from those transitively-pulled extensions, so they don't gate the job (exitcode=1) once the tests actually run. Scoped to those .so's; the broker-free job never imports them. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Scratch validation for the share-consumer sanitizer job. Adds two deliberate leaks (raw libc malloc; a lost GC dict) to the broker-free ASAN job and turns on print_suppressions, to prove the detector + exitcode=1 gate actually fire and to check whether the broad _PyObject_GC_* suppressions mask our own objects. Revert after reading the run (delete the canary file, restore print_suppressions=0 and the pytest arg). Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
The canary run proved exitcode=1 does not propagate when libasan is LD_PRELOADed into a non-instrumented CPython: LSAN detected the planted leaks (raw malloc + a lost dict) and printed the report, but the process still exited 0 and the job passed. So neither ASAN job was actually gating on leaks. Add a post-pytest grep on the tee'd log for the LeakSanitizer/AddressSanitizer signatures and fail the job when present (also catches ASAN memory errors). Canary + print_suppressions=1 kept for one confirming run (expect the binding-layer job to go RED now); revert both after. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What
Checklist
References
JIRA:
Test & Review
Open questions / Follow-ups