It's baaaaaaaaaaaaaack! Yes, I replied to the previous PR with “Next time, submit the data that will cause the memory overright. Until then, this PR is closed.” It replied with the usual obsequious apology and said that it overstated the severity (“CRITICAL” in all caps) of the bug. And I thought that would be the end of that, that it would go off and spend tons of tokens trying generate input that would attempt to prove the bug and not be able to do it. But no, it found a novel approach. At first, I was furious, wanting to nuke the LLM from orbit (that's the only way to make sure), but the pure silliness of what it did is just proved too amusing to me. This time, it managed to “patch” all four calls to memcpy(). Basically, it changed the code from: opd->sz = min( ... , sizeof(opd->bytes)); to opd->sz = (uint16_t)min( ... , sizeof(opd->bytes)); assert(opd->sz < sizeof(opd->bytes)); Okay, fair enough. opd->sz is of type uint16_t and min() returns a size_t, so the cast is being explicit…
No comments yet. Log in to reply on the Fediverse. Comments will appear here.