Closed Bug 877473 Opened 8 years ago Closed 8 years ago

Expose generational GC knobs to the shell for fuzzing

Categories

(Core :: JavaScript Engine, defect)

defect
Not set
normal

Tracking

()

RESOLVED FIXED
mozilla24

People

(Reporter: terrence, Assigned: terrence)

References

Details

(Keywords: sec-want)

Attachments

(1 file, 1 obsolete file)

Right now there isn't any way to interact directly with the GGC from the shell or to put it into edge states quickly.
Assignee: general → terrence
Attached patch v0 (obsolete) — Splinter Review
This exposes |minorgc([overflow])| to the shell. It calls MinorGC and optionally calls setOverflowed on cx->runtime->gcStoreBuffer if [overflow] is set to true.
Attachment #756067 - Flags: review?(wmccloskey)
Attached patch v1Splinter Review
CallArgs::get returns UndefinedValue if the arg is not set, so there is no need to test before getting the arg.
Attachment #756067 - Attachment is obsolete: true
Attachment #756067 - Flags: review?(wmccloskey)
Attachment #756071 - Flags: review?(wmccloskey)
Keywords: sec-want
Attachment #756071 - Flags: review?(wmccloskey) → review+
https://hg.mozilla.org/mozilla-central/rev/8f8192a417b5
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla24
jsfunfuzz now calls minorgc occasionally. (fuzzing rev a32442460b40)
\o/
You need to log in before you can comment on or make changes to this bug.