Closed Bug 1465407 Opened 3 years ago Closed 2 years ago

Land media layer fuzzing code

Categories

(Core :: Audio/Video: Playback, enhancement, P3)

Unspecified
Linux
enhancement

Tracking

()

RESOLVED FIXED
mozilla70
Tracking Status
firefox-esr60 --- wontfix
firefox-esr68 --- wontfix
firefox62 --- wontfix
firefox68 --- wontfix
firefox69 --- wontfix
firefox70 --- fixed

People

(Reporter: decoder, Assigned: decoder)

References

Details

(Keywords: sec-other, sec-want, Whiteboard: [post-critsmash-triage][adv-main70-])

Attachments

(1 file)

I've fuzzed our demuxers (and the codecs behind them) locally for a while and they didn't blow up so I think it is time to land the necessary code so it can be scaled appropriately where necessary.

I'm preparing a rollup of my local patch rebased on top of bug 1464202 because that bug makes the flag management a lot easier.


Keeping this bug s-s until it has actually landed in case anyone has objections.
Depends on: 1465440
Priority: -- → P3
Component: Audio/Video → Audio/Video: Playback
Depends on: 1561256

Depends on D35776

Depends on: 1561484
Depends on: 1561486
Depends on: 1561492
Depends on: 1563322

We hit the thread limit after a few days of running. I'm not sure if there is anything that can be done or if it really matters.

==39319==AddressSanitizer: Thread limit (4194304 threads) exceeded. Dying.
Depends on: 1545970
Depends on: 1567170
Depends on: 1567325
No longer depends on: 1561492
Flags: qe-verify-
Whiteboard: [post-critsmash-triage]
No longer depends on: 1567325
Whiteboard: [post-critsmash-triage] → [post-critsmash-triage][adv-main70-]
Group: core-security-release
You need to log in before you can comment on or make changes to this bug.