Initial sanitizer configurations

[RSingh1511]

Summary

Adds centralized sanitizer configurations (ASan, TSan, UBSan, LSan) for S-CORE C++ projects as a reusable Bazel module.

What's Included

• Sanitizer configs with CI-optimized runtime options
• Test workspace with positive and negative tests
• CI workflow with GitHub Actions
• PR/issue templates

Usage

bazel_dep(name = "score_cpp_policies", version = "0.0.0")

[stmuench]

why using latest? this can easily break our workflows in case it gets upgraded

[RSingh1511]

Fixed to ubuntu-24.04 for stability

[stmuench]

this comment is highly misleading. the below test does not contain any UB hence, how shall it help for verifying UB detection? better adjust the comment

[RSingh1511]

Done

[stmuench]

how about

Suggested change

	// Test that allocates memory (for ASan/LSan validation)
	// Memory allocation test that should pass with all sanitizers

?

[RSingh1511]

Done

[stmuench]

Why are these two required here? Where are they used actually?

[RSingh1511]

Removed.

[nradakovic]

I have a follow-up question: why aren’t we using these platforms & toolchains here?

The reference integration relies on these toolchains configurations for release verification. If we intend for others to adopt these workflows, we should validate them against the same toolchains used in reference integration. Otherwise, we introduce an additional risk of failure due to configuration mismatches or incompatibilities.

Of course, the choice of what to test is ultimately yours. However, if the goal is for this to serve as the primary workflow for sanitizer testing across the project, then it should also pass reference integration—i.e., it must be validated with our default toolchain setups.

[RSingh1511]

Done.

[stmuench]

prefer alphabetical sorting instead?

Suggested change

	- `--config=asan` - AddressSanitizer (memory errors, buffer overflows)
	- `--config=tsan` - ThreadSanitizer (data races, deadlocks)
	- `--config=ubsan` - UndefinedBehaviorSanitizer (undefined behavior)
	- `--config=lsan` - LeakSanitizer (memory leaks)
	- `--config=asan` - AddressSanitizer (memory errors, buffer overflows)
	- `--config=lsan` - LeakSanitizer (memory leaks)
	- `--config=tsan` - ThreadSanitizer (data races, deadlocks)
	- `--config=ubsan` - UndefinedBehaviorSanitizer (undefined behavior)

[RSingh1511]

Done

[stmuench]

how about preferring plural here? would be more appropriate in my eyes since it makes clear that it will contain multiple sanitizer configs

i.e. sanitizers/sanitizers.bazelrc

[RSingh1511]

Done.

[stmuench]

please do not use dbg compliation mode. this would potentially enable code which is not part of the actual production code and hence you would potentially run into different code paths. just omit that everywhere since such compilation flags must come from the toolchain which defines the respective sanitizer features.
also see https://github.com/eclipse-score/communication/blob/main/quality/sanitizer/sanitizer.bazelrc#L20-L30 for further reference which flags we require for sanitizer configs

[RSingh1511]

Removed compilation_mode=dbg and Done as suggested.

[stmuench]

here and also for all the other configs:

Suggested change

	test:tsan --compilation_mode=dbg
	test:tsan --features=tsan
	test:tsan --platform_suffix=tsan
	build:tsan --features=tsan
	build:tsan --platform_suffix=tsan

only the runtime options should get added as test config, the others are build configs!

[RSingh1511]

Done

[stmuench]

such runtime options should get extracted into a single place and then reused here instead

Suggested change

	test:asan_ubsan_lsan --test_env=ASAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:detect_leaks=1:halt_on_error=1:allocator_may_return_null=1
	test:asan_ubsan_lsan --test_env=UBSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:print_stacktrace=1:halt_on_error=1
	test:asan_ubsan_lsan --test_env=LSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:halt_on_error=1
	test:_asan_runtime_options --test_env=ASAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:detect_leaks=1:halt_on_error=1:allocator_may_return_null=1
	test:_asan_runtime_options --test_env=LSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:halt_on_error=1
	test:_ubsan_runtime_options --test_env=UBSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:print_stacktrace=1:halt_on_error=1
	<...>
	test:asan_ubsan_lsan --config=_asan_runtime_options
	test:asan_ubsan_lsan --config=_lsan_runtime_options
	test:asan_ubsan_lsan --config=_ubsan_runtime_options
	<...>
	test:asan --config=_asan_runtime_options

[stmuench]

and please use the following runtime options instead:

test:_asan_runtime_options --test_env=ASAN_OPTIONS="exitcode=55 allow_addr2line=1 halt_on_error=1 print_stats=1 verbosity=1 allocator_may_return_null=1 check_initialization_order=1 detect_leaks=1 detect_stack_use_after_return=1 strict_string_checks=1"

test:_lsan_runtime_options --test_env=LSAN_OPTIONS="exitcode=55 allow_addr2line=1 halt_on_error=1 print_stats=1 verbosity=1"

test:_ubsan_runtime_options --test_env=UBSAN_OPTIONS="exitcode=55 allow_addr2line=1 halt_on_error=1 print_stacktrace=1 verbosity=1"

test:_tsan_runtime_options --test_env=TSAN_OPTIONS="exitcode=55 allow_addr2line=1 halt_on_error=1 print_stats=1 verbosity=1 detect_deadlocks=1 second_deadlock_stack=1"

[RSingh1511]

Done as suggested.

[stmuench]

why not

Suggested change

	bazel test --config=${{ matrix.config }} //:sample_test --verbose_failures
	bazel test --config=${{ matrix.config }} //... --verbose_failures

?
since there will be further unit tests in this repo soon

[RSingh1511]

Done as suggested.

[4og]

Can you please set the version to 0.0.0 here? The workflow in the S-CORE bazel registry is taking care of generating a patch when a release is picked.

[RSingh1511]

Done as suggested.

[4og]

Please put the entire license text here and remove .md extension. You can copy it,for example for here: https://github.com/eclipse-score/module_template/blob/main/LICENSE

General guideline: https://www.eclipse.org/projects/handbook/#legaldoc-license

[RSingh1511]

Done

[4og]

Where is the statement coming from? S-CORE is not using Eclipse matrix chat for communication, but Slack instead.

[RSingh1511]

Removed Matrix chat reference, S-CORE uses Slack

[FScholPer]

Add the template please

[RSingh1511]

Add the template please

Done>

[4og]

Please limit permissions for security

Suggested change

	permissions:
	contents: read

[RSingh1511]

done

[4og]

Should we also have a second test that fails in sanitizers? Otherwise, how can we know that they work?

[RSingh1511]

Done

[4og]

For this kind of small implementation, caching in github is superfluous IMHO. It will make the build just longer. I wouldn't introduce it yet.
But how about adding bazelisk? This one can actually help (you'll also need to add .bazelversion file(s).

Suggested change

	disk-cache: ${{ github.workflow }}-${{ matrix.config }}
	cache-save: ${{ github.event_name == 'push' }}
	bazelisk-cache: true
	cache-save: ${{ github.event_name == 'push' }}

[RSingh1511]

done

[4og]

Suggested change

	uses: actions/checkout@v4
	uses: actions/checkout@v6

[RSingh1511]

done

[4og]

Suggested change

	uses: actions/upload-artifact@v4
	uses: actions/upload-artifact@v7

[RSingh1511]

done

[stmuench]

let's omit the term Google here, what do you think?

[RSingh1511]

Done.

[stmuench]

~ in between directory names intended here?

[RSingh1511]

Changed to copy pattern instead of import.

[stmuench]

### Expected behavior:

[RSingh1511]

Done

[stmuench]

could we link such guidelines here as a direct reference for people?

[RSingh1511]

Done.

[stmuench]

you should wrap an sh script around the invocation of each test instead and then add them as sh_test here. Within the sh script, you would have to verify that the test executable fails with exitcode 55.
Do you get my my idea?
Since then, you can remove the manual tags and have these tests running in CI as well ;)

[RSingh1511]

Thanks for your suggestion. Done.

[stmuench]

Suggested change

	["sanitizer.bazelrc"],
	["sanitizers.bazelrc"],

[stmuench]

why is this required here?

[stmuench]

do we really want to have the tests as separate module?

[RSingh1511]

why is this required here?

Added per @4og 's feedback to enable bazelisk caching

[RSingh1511]

do we really want to have the tests as separate module?

Yes, this follows the standard SCORE pattern used in score_rust_policies and other policy repos.

[stmuench]

why is this license statement different from others?

[RSingh1511]

Done.

[stmuench]

why not

Suggested change

	name = "asan_fail_bin",
	name = "asan_fail_test",

since _bin might be misleading

[RSingh1511]

Done

[stmuench]

NO, I have to object here. we need to find a mechsnism to make this work centrally, e.g. via run_under and using a centralized script then. otherwise the settings we define here will simply get duplicated everywhere and these will deviate over time then which is not maintainable at all!

[4og]

Agree. The whole point of this repository is to avoid duplication of sanitizer config, and now the README is just asking to duplicate 🤦‍♂️

[RSingh1511]

Added --run_under as suggested.

[LittleHuba]

fsanitize options must be provided to the compile and link step! Compiler instruments code, linker adds runtime dependencies of sanitizer. One without the other does not work.

[RSingh1511]

Done.

[stmuench]

how about adding strict_string_checks=1 to ASAN_OPTIONS here?

[stmuench]

and maybe sort all options alphabetical to better find a certain setting?

[RSingh1511]

Done.

[stmuench]

0.0.0 really intended?

[4og]

Now the registry allows empty versions.
This can be reduced to module(name = "score_cpp_policies")

[RSingh1511]

Done. simplified to module(name = "score_cpp_policies")

[4og]

There are now org-wide templates for issues: https://github.com/eclipse-score/.github/tree/main/.github/ISSUE_TEMPLATE
I suggest removing custom templates for issues from this PR.

[RSingh1511]

Done.

[stmuench]

empty version intended?

[stmuench]

value 0.0.0 intended?

[stmuench]

should get removed again here since you added it in the build action features above already