mirror/ruby
1
0
Fork 0
mirror of https://github.com/ruby/ruby.git synced 2026-01-27 12:34:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
ruby/internal
History
Peter Zhu 62c2082f1f [Bug #19469] Fix crash when resizing generic iv list 
The following script can sometimes trigger a crash:

```ruby
GC.stress = true

class Array
  def foo(bool)
    if bool
      @a = 1
      @b = 2
      @c = 1
    else
      @c = 1
    end
  end
end

obj = []
obj.foo(true)

obj2 = []
obj2.foo(false)

obj3 = []
obj3.foo(true)
```

This is because vm_setivar_default calls rb_ensure_generic_iv_list_size
to resize the iv list. However, the call to gen_ivtbl_resize reallocs
the iv list, and then inserts into the generic iv table. If the
st_insert triggers a GC then the old iv list will be read during
marking, causing a use-after-free bug.

Co-Authored-By: Jemma Issroff <jemmaissroff@gmail.com>
2023-03-03 16:12:03 -05:00
..
array.h
Add Data class implementation: Simple immutable value object
2022-09-30 18:23:19 +09:00
basic_operators.h
Use a BOP for Hash#default
2022-12-17 14:51:49 -08:00
bignum.h
bits.h
class.h
Move attached_object into rb_classext_struct
2023-02-16 08:14:44 +01:00
cmdlineopt.h
YJIT: Lazily enable YJIT after prelude (#6597)
2022-10-24 12:20:44 -04:00
compar.h
Introduce BOP_CMP for optimized comparison
2022-12-06 12:37:23 -08:00
compile.h
Fix incorrect line numbers in GC hook
2023-02-24 14:10:09 -05:00
compilers.h
complex.h
cont.h
Introduce Fiber#storage for inheritable fiber-scoped variables. (#6612)
2022-12-01 23:00:33 +13:00
dir.h
enc.h
encoding.h
parenthesize to macro
2022-12-02 01:31:27 +09:00
enum.h
enumerator.h
error.h
eval.h
file.h
Revert "reuse open(2) from rb_file_load_ok on POSIX-like system"
2023-02-27 09:24:45 -08:00
fixnum.h
Fix rb_fix_mul_fix on OpenBSD/mips64
2022-07-03 09:42:44 -07:00
gc.h
Merge gc.h and internal/gc.h
2023-02-09 10:32:29 -05:00
hash.h
Implement ObjectSpace::WeakKeyMap basic allocator
2023-02-23 16:01:57 +01:00
imemo.h
use correct svar even if env is escaped
2023-02-10 17:55:25 +09:00
inits.h
io.h
load.h
loadpath.h
math.h
missing.h
numeric.h
Use roomof macro for rounding up divisions
2022-10-14 19:23:25 +09:00
object.h
Revert "Revert "This commit implements the Object Shapes technique in CRuby.""
2022-10-11 08:40:56 -07:00
parse.h
Revert "reuse open(2) from rb_file_load_ok on POSIX-like system"
2023-02-27 09:24:45 -08:00
proc.h
process.h
Don't redefine RB_OBJ_WRITE
2023-01-18 08:49:32 -05:00
ractor.h
random.h
range.h
rational.h
Don't redefine RB_OBJ_WRITE
2023-01-18 08:49:32 -05:00
re.h
sanitizers.h
serial.h
signal.h
static_assert.h
string.h
Use shared flags of the type
2022-11-02 11:03:21 -04:00
struct.h
Don't redefine RB_OBJ_WRITE
2023-01-18 08:49:32 -05:00
symbol.h
Ensure _id2ref finds symbols with the correct type
2022-07-20 10:38:44 -07:00
thread.h
Only emit circular dependency warning for owned thread shields
2023-02-08 09:50:00 +01:00
time.h
transcode.h
util.h
variable.h
[Bug #19469] Fix crash when resizing generic iv list
2023-03-03 16:12:03 -05:00
vm.h
Remove unused class serial
2022-10-21 14:56:48 -07:00
warnings.h