syzbot does not recognize/detect fixing commits. It has been told that
that commit fixes the bug. So the questions regarding the fixing
commit should go to the human who said that that commit fixes the bug.
> Then I found
https://syzkaller.appspot.com/bug?id=9c65accb85b71ee72e58b2874fc7608a28e4d641 said the log of the cause commit is general protection fault in locks_remove_flock, not the same bug as this bug. So only there is a crash in the process of finding cause commit, syzbot thought it's the cause commit and did not check if the crash is the same. If so, this quesion is voled. By the way, as you showed in another thread of my question, unrelated crashes is one reason why the success rate of cause bisection is low.
It is not possible to understand if the crash is the same or not. And
if we could, it's not something we could rely on. If you see a
different crash, you don't know if the original crash is also present
or not. The fact that there is another bug, does not give any
information about the presence of the original bug. So any unrelated
bugs with inherently diverge and break bisection.
syzkaller uses a simple binary predicate: crashed/not crashed.
Yes. I said it _may_ be marked with a wrong commit.
Not. Not possible as well.
> Only the kernel crashes at every time, syzbot thinks it as a bug and reports it.
No.
> So syzbot will give wrong report?
I don't understand what you mean by "wrong". It merely communicates
what happened in reality. It does not invent anything or hypothesise.
In this sense all reports are true.
> Besides, for such bug, which the crash commit is wrong, how should I reproduce it?
The crash commit is always correct. That crash happened on that
commit, there is no doubt here.
> To unsubscribe from this group and stop receiving emails from it, send an email to
syzkaller+...@googlegroups.com.
> To view this discussion on the web visit
https://groups.google.com/d/msgid/syzkaller/0a60451a-411c-44a3-b935-6c4d24a05be1%40googlegroups.com.