Closed
Bug 967320
Opened 11 years ago
Closed 6 years ago
Faulty IPC fuzzer should be able to fuzz only select protocols
Categories
(Core :: IPC, defect, P3)
Core
IPC
Tracking
()
RESOLVED
FIXED
People
(Reporter: bjacob, Unassigned)
References
(Blocks 2 open bugs)
Details
Attachments
(1 file)
|
5.83 KB,
patch
|
Details | Diff | Splinter Review |
Because otherwise, especially in a debug build, I keep asserting all over the place before I get to hit the gfx bugs that are of interest to me.
The attached patch implements that in a hacky way to fuzz only gfx/layers actors, which are identified by "mozilla::layers::" being a substring of the actor type. It might be a starting point for doing this the right way, or it might be just a toy --- you decide. Meanwhile, it allows me to proceed with fuzzing gfx/layers protocols.
|
||
Comment 1•11 years ago
|
||
Thanks Benoit!
We should probably read those white-list identifiers from a file. Though, I am not exactly sure where the best place for that would be - in the Faulty() constructor may be? Perhaps we can then provide the white-list from the outside with an additional environment variable.
Eg: export FAULTY_WHITELIST=mywhitelist.txt
I am a bit confused though. Should we not add the message names to a white-list or black-list?
Like:
PLayerTransaction::Msg_PLayerConstructor
PLayerTransaction::Msg_PCompositableConstructor
|
Reporter | |
Comment 2•11 years ago
|
||
(In reply to Christoph Diehl [:cdiehl] from comment #1)
> Thanks Benoit!
> We should probably read those white-list identifiers from a file. Though, I
> am not exactly sure where the best place for that would be - in the Faulty()
> constructor may be? Perhaps we can then provide the white-list from the
> outside with an additional environment variable.
>
> Eg: export FAULTY_WHITELIST=mywhitelist.txt
Sure, that seems like a good idea.
>
> I am a bit confused though. Should we not add the message names to a
> white-list or black-list?
>
> Like:
>
> PLayerTransaction::Msg_PLayerConstructor
> PLayerTransaction::Msg_PCompositableConstructor
If someone has a need for per-message filtering, then sure you could do that. In my case though, per-protocol filtering was fine enough granularity.
|
|
Reporter | |
Updated•11 years ago
|
No longer blocks: fuzzing-layers-linux
|
||
Updated•8 years ago
|
Blocks: sandbox-fuzzing
|
||
Updated•7 years ago
|
Priority: -- → P3
|
|
||
Comment 3•6 years ago
|
||
Closing because a whitelist/blacklist has been added since.
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•