[Webkit-unassigned] [Bug 13638] New: (meta) Bugs found by jsfunfuzz
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed May 9 02:34:53 PDT 2007
http://bugs.webkit.org/show_bug.cgi?id=13638
Summary: (meta) Bugs found by jsfunfuzz
Product: WebKit
Version: 522+ (nightly)
Platform: Macintosh
URL: https://bugzilla.mozilla.org/show_bug.cgi?id=349611
OS/Version: Mac OS X 10.4
Status: NEW
Severity: Normal
Priority: P2
Component: JavaScriptCore
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: jruderman at gmail.com
BugsThisDependsOn: 10878,10880,13620,13621,13622,13623
https://bugzilla.mozilla.org/show_bug.cgi?id=349611 contains a fuzz-testing
script that generates random JavaScript functions (some with syntax errors).
It tests compilation, decompilation, interpretation, and lots more :)
It's sorta designed for testing Spidermonkey (Mozilla's JavaScript engine), but
it seems to work against WebKit with a few small tweaks. So far, it has found
six decompilation bugs in JavaScriptCore (see dependencies).
It hangs fairly often due to bug 6985 (cyclic __proto__). I haven't run it
long enough to be confident that it doesn't find crashes.
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list