John Stiles

The docs do say "Variables declared in init-expression or condition-expression are only in scope until the end of the sub-statement of the for loop." but don't indicate that the for-statement...

I also discovered Section 4.2 states: "If (a variable) is declared in a while test or a for statement, then it is scoped to the end of the following sub-statement."...

This is causing issues while fuzzing libjpeg-turbo. See https://github.com/libjpeg-turbo/libjpeg-turbo/pull/761

This might be driven by a new flag: https://reviews.llvm.org/D134669 `-fsanitize-memory-param-retval`

> I haven't looked into this too closely but I think John is saying it is a false positive. It wasn't entirely a "false positive", but it was confusing because...

Filed https://github.com/google/sanitizers/issues/1755. If you are OK with the amended phrasing that I made up in the bug,I can send a PR.

The first crawl is invalid—it looks like two unrelated crawls mashed together. ``` libGLES_meow.so GrGLMakeAssembledGLESInterface apply_kernel_in_y(float*, int, float, float, int, float const*) create_circle_profile(unsigned char*, float, float, int) create_profile_effect(GrRecordingContext*, SkRect const&,...

Thanks. In this case I remembered seeing a Timeout issue which hadn't yet been converted to a bug, and was trying to find it again. I was unable to actually...

Yes, since this is safecat, the only real danger is truncation; there shouldn't be any security/UB risk.

> Maybe we can modify this statement > > ```ts > p.xz = f(w); > ``` > > into this > > ```ts > let temp = f(w); p.x =...