Fix array and string trim_in_place allocation bounds check #2840
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
|
mfelsche
approved these changes
Jul 26, 2018
|
Thanks for this one. The ci failure on aarch64 seems to not give any output for 10 minutes. Most likely a runtime shutdown error, but unrelated. |
SeanTAllen
added
triggers release
|
I would restart the failed job but I don't have permissions to do that. |
Prior to this commit, if `Array.trim_in_place` and `String.trim_in place` trimmed all of the memory allocated for the array or string (i.e. `trim_point == space()`) then trim_in_place would still use _ptr._offset to set the pointer to be the byte after the last byte allocated by the array or string. This was bad for many reasons but sometimes especially bad if that next byte happened to be in a different pagemap that had not yet been allocated. This would result in a segfault the next time `reserve` was called because the runtime would think this pointer was not allocated by pony and complain that it cannot realloc memory not allocated by pony. This commit fixes the logic in trim_in_place to allocate a new Pointer if _alloc == 0 (i.e. all of the memory allocated for the array or string has been trimmed away). This ensures that the `_ptr` will never point to memory not owned/allocated by the array also guaranteeing no segfaults will occur due to unallocated pagemap references. This commit also modifies the `Array.trim_in_place` and `String.trim_in_place` tests to prevent a regression.
|
Grrrrr... Circle CI is very funny when you have your own fork set up to run tests and also open a PR for the same. I'm almost done with the |
dipinhora
changed the title
|
The |
SeanTAllen
approved these changes
Jul 26, 2018
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Prior to this commit, if
Array.trim_in_placeandString.trim_in placetrimmed all of the memory allocated for the array or string (i.e.
trim_point == space()) then trim_in_place would still use _ptr._offsetto set the pointer to be the byte after the last byte allocated by the
array or string. This was bad for many reasons but sometimes especially
bad if that next byte happened to be in a different pagemap that had not
yet been allocated. This would result in a segfault the next time
reservewas called because the runtime would think this pointer was not allocated
by pony and complain that it cannot realloc memory not allocated by pony.
This commit fixes the logic in trim_in_place to allocate a new Pointer
if _alloc == 0 (i.e. all of the memory allocated for the array or string
has been trimmed away). This ensures that the
_ptrwill never point tomemory not owned/allocated by the array also guaranteeing no segfaults
will occur due to unallocated pagemap references.
This commit also modifies the
Array.trim_in_placeandString.trim_in_placetests to prevent a regression.