RESOLVED DUPLICATE of bug 23089 13638
(meta) Bugs found by jsfunfuzz 
https://bugs.webkit.org/show_bug.cgi?id=13638
Summary (meta) Bugs found by jsfunfuzz
Jesse Ruderman
Reported 2007-05-09 02:34:52 PDT
https://bugzilla.mozilla.org/show_bug.cgi?id=349611 contains a fuzz-testing script that generates random JavaScript functions (some with syntax errors). It tests compilation, decompilation, interpretation, and lots more :) It's sorta designed for testing Spidermonkey (Mozilla's JavaScript engine), but it seems to work against WebKit with a few small tweaks. So far, it has found six decompilation bugs in JavaScriptCore (see dependencies). It hangs fairly often due to bug 6985 (cyclic __proto__). I haven't run it long enough to be confident that it doesn't find crashes.
Attachments
Add attachment proposed patch, testcase, etc.
Eric Seidel (no email)
Comment 1 2007-05-09 03:58:32 PDT
adding bug 6985 since it blocks using jsfunfuzz.
Cameron Zwarich (cpst)
Comment 2 2008-09-02 19:48:18 PDT
I will happily close this bug now, but if new issues come up from jsfunfuzz it should be reopened.
Oliver Hunt
Comment 3 2011-01-14 17:35:32 PST
Lets keep this live for tracking purposes
Gavin Barraclough
Comment 4 2012-09-06 16:49:38 PDT
Only one tracked bug left, so this isn't particularly useful for tracking porpoises any more. *** This bug has been marked as a duplicate of bug 23089 ***
Note You need to log in before you can comment on or make changes to this bug.