Closed Bug 1896954 Opened 1 year ago Closed 10 months ago

Fuzzing for Wasm JS Promise Integration.

Tracking

()

Status:

RESOLVED FIXED

Milestone:

139 Branch

Tracking Flags:

Tracking

Status

firefox-esr115

---

unaffected

firefox-esr128

---

unaffected

firefox137

---

unaffected

firefox138

---

unaffected

firefox139

---

fixed

People

(Reporter: yury, Assigned: yury, NeedInfo)

References

(Blocks 1 open bug)

Details

(Keywords: sec-other)

Attachments

(1 file)

Bug 1896954 - Enable fuzzing for JSPI. r?rhunt 10 months ago Yury Delendik (:yury) 48 bytes, text/x-phabricator-request		Details \| Review

Yury Delendik (:yury)

Assignee

Description

•

1 year ago

•

Edited

Hi,

I would like to request fuzzing for Wasm JS Promise Integration.

Meta bug: Bug 1850627
Preferences: javascript.options.wasm_js_promise_integration / --setpref=wasm_js_promise_integration
Platforms: x64/aarch64 (x86 after bug 1896218)
Existing tests: js/src/jit-test/tests/wasm/js-promise-integration/
Testing may start as of:
Targeted Release Version: n/a

Yury Delendik (:yury)

Assignee

Updated

•

1 year ago

Blocks: wasm-jspi-proto

Andrew McCreight [:mccr8]

Updated

•

1 year ago

Group: core-security → javascript-core-security

Keywords: sec-other

Yury Delendik (:yury)

Assignee

Updated

•

1 year ago

Blocks: wasm-jspi
No longer blocks: wasm-jspi-proto

Yury Delendik (:yury)

Assignee

Comment 1

•

1 year ago

Updated https://github.com/MozillaSecurity/fuzzing-shells-private/ to update wasm-call.js fuzzing of valid calls between JS/Wasm with JSPI API. See https://github.com/MozillaSecurity/fuzzing-shells-private/pull/11

Yury Delendik (:yury)

Assignee

Comment 2

•

10 months ago

Attached file Bug 1896954 - Enable fuzzing for JSPI. r?rhunt — Details

Phabricator Automation

Updated

•

10 months ago

Assignee: nobody → ydelendik

Status: NEW → ASSIGNED

Yury Delendik (:yury)

Assignee

Comment 3

•

10 months ago

The wasm fuzzing flag was changed to true

Flags: needinfo?(choller)

Pulsebot

Comment 4

•

10 months ago

Pushed by ydelendik@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/8d12a5db9858 Enable fuzzing for JSPI. r=rhunt

Sebastian Hengst [:aryx] (needinfo me if it's about an intermittent or backout)

Comment 5

•

10 months ago

https://hg.mozilla.org/mozilla-central/rev/8d12a5db9858

Group: javascript-core-security → core-security-release

Status: ASSIGNED → RESOLVED

Closed: 10 months ago

status-firefox139: --- → fixed

Resolution: --- → FIXED

Target Milestone: --- → 139 Branch

Ryan VanderMeulen [:RyanVM]

Updated

•

10 months ago

status-firefox137: --- → unaffected

status-firefox138: --- → unaffected

status-firefox-esr115: --- → unaffected

status-firefox-esr128: --- → unaffected

Andrei Vaida [:avaida]

Updated

•

9 months ago

QA Whiteboard: [sec] [qa-triage-done-c140/b139]

Flags: qe-verify-

Daniel Veditz [:dveditz]

Updated

•

1 month ago

Group: core-security-release

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Fuzzing for Wasm JS Promise Integration.

Categories

(Core :: Fuzzing, task)

Tracking

()

People

(Reporter: yury, Assigned: yury, NeedInfo)

References

(Blocks 1 open bug)

Details

(Keywords: sec-other)

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Updated

Updated

Updated

Comment 1

Comment 2

Updated

Comment 3

Comment 4

Comment 5

Updated

Updated

Updated

Attachment

General

Description

File Name

Content Type