Simplifying the crash cases by opportunistically setting bits in operands of
out/write to zero may help to debug, since usually bit one means turn on or
trigger a function while zero is the default turn-off setting.
Tested Bug 1908062.
Signed-off-by: Qiuhao Li <qiuhao...@outlook.com>
---
scripts/oss-fuzz/minimize_qtest_trace.py | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/scripts/oss-fuzz/minimize_qtest_trace.py
b/scripts/oss-fuzz/minimize_qtest_trace.py
index 4273ee7505..050b9f2195 100755
--- a/scripts/oss-fuzz/minimize_qtest_trace.py
+++ b/scripts/oss-fuzz/minimize_qtest_trace.py
@@ -243,6 +243,10 @@ def minimize_trace(inpath, outpath):
set_zero_minimizer(newtrace, outpath)
assert(check_if_trace_crashes(newtrace, outpath))
+ # set zero minimizer
+ set_zero_minimizer(newtrace, outpath)
+ assert(check_if_trace_crashes(newtrace, outpath))
+
if __name__ == '__main__':
if len(sys.argv) < 3:
--
2.25.1
