LibJS: Disable ASAN during the conservative GC stack scan

This allows the JS fuzzer to survive garbage collection (so we can find more interesting bugs!) Found by oss-fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29266
Author: https://github.com/awesomekling Commit: https://github.com/SerenityOS/serenity/commit/51b880b0383
2024-11-10 13:00:29 +03:00 · 2021-01-05 12:26:23 +01:00 · 2021-01-05 12:26:23 +01:00 · 51b880b038 · 2024-07-19 00:05:58 +09:00
commit 51b880b038
parent fdd974b7ef
1 changed files with 1 additions and 1 deletions
--- a/Libraries/LibJS/Heap/Heap.cpp
+++ b/Libraries/LibJS/Heap/Heap.cpp
@ -124,7 +124,7 @@ void Heap::gather_roots(HashTable<Cell*>& roots)
 #endif
 }

-void Heap::gather_conservative_roots(HashTable<Cell*>& roots)
+__attribute__((no_sanitize("address"))) void Heap::gather_conservative_roots(HashTable<Cell*>& roots)
 {
    FlatPtr dummy;