Expose generational GC knobs to the shell for fuzzing

RESOLVED FIXED in mozilla24

Status

()

defect
RESOLVED FIXED
6 years ago
6 years ago

People

(Reporter: terrence, Assigned: terrence)

Tracking

({sec-want})

Trunk
mozilla24
Points:
---
Dependency tree / graph

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment, 1 obsolete attachment)

Right now there isn't any way to interact directly with the GGC from the shell or to put it into edge states quickly.
Assignee: general → terrence
Posted patch v0 (obsolete) — Splinter Review
This exposes |minorgc([overflow])| to the shell. It calls MinorGC and optionally calls setOverflowed on cx->runtime->gcStoreBuffer if [overflow] is set to true.
Attachment #756067 - Flags: review?(wmccloskey)
Posted patch v1Splinter Review
CallArgs::get returns UndefinedValue if the arg is not set, so there is no need to test before getting the arg.
Attachment #756067 - Attachment is obsolete: true
Attachment #756067 - Flags: review?(wmccloskey)
Attachment #756071 - Flags: review?(wmccloskey)
Keywords: sec-want
Attachment #756071 - Flags: review?(wmccloskey) → review+
https://hg.mozilla.org/mozilla-central/rev/8f8192a417b5
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla24
jsfunfuzz now calls minorgc occasionally. (fuzzing rev a32442460b40)
\o/
You need to log in before you can comment on or make changes to this bug.