Some bugs with stack reallocation by 'luaF_close'

(Long time without testing with '-DHARDSTACKTESTS'...) With the introduction of to-be-closed variables, calls to 'luaF_close' can move the stack, but some call sites where keeping pointers to the stack without correcting them.
author: Roberto Ierusalimschy <roberto@inf.puc-rio.br> 2018-11-24 11:59:15 -0200
committer: Roberto Ierusalimschy <roberto@inf.puc-rio.br> 2018-11-24 11:59:15 -0200
commit: 7e63d3da0240325db4011f5d2f2e8abfb5d60288 (patch)
tree: f6f486aaa9c1279ccdc26a1cc8bc814e005a277b /lvm.c
parent: 84e32ad2ebd6bd160c1320456743a5b1d8f233e9 (diff)
download: lua-7e63d3da0240325db4011f5d2f2e8abfb5d60288.tar.gz
lua-7e63d3da0240325db4011f5d2f2e8abfb5d60288.tar.bz2
lua-7e63d3da0240325db4011f5d2f2e8abfb5d60288.zip
1 files changed, 9 insertions, 12 deletions
diff --git a/lvm.c b/lvm.c
index 27ef68cf..a6dcc9ff 100644
--- a/lvm.c
+++ b/lvm.c
@@ -946,6 +946,9 @@ void luaV_finishOp (lua_State *L) {
 #define updatebase(ci)  (base = ci->func + 1)
+#define updatestack(ci) { if (trap) { updatebase(ci); ra = RA(i); } }
 /*
 ** Execute a jump instruction. The 'updatetrap' allows signals to stop
 ** tight loops. (Without it, the local copy of 'trap' could never change.)
@@ -1557,24 +1560,21 @@ void luaV_execute (lua_State *L, CallInfo *ci) {
          L->top = ra + b;
        else  /* previous instruction set top */
          b = cast_int(L->top - ra);
-        savepc(ci);
        if (TESTARG_k(i)) {
          int nparams1 = GETARG_C(i);
          if (nparams1)  /* vararg function? */
            delta = ci->u.l.nextraargs + nparams1;
-          luaF_close(L, base, LUA_OK);  /* close upvalues from current call */
+          /* close upvalues from current call */
+          ProtectNT(luaF_close(L, base, LUA_OK));
+          updatestack(ci);
        }
        if (!ttisfunction(s2v(ra))) {  /* not a function? */
          luaD_tryfuncTM(L, ra);  /* try '__call' metamethod */
          b++;  /* there is now one extra argument */
        }
        if (!ttisLclosure(s2v(ra))) {  /* C function? */
-          luaD_call(L, ra, LUA_MULTRET);  /* call it */
+          ProtectNT(luaD_call(L, ra, LUA_MULTRET));  /* call it */
-          updatetrap(ci);
+          updatestack(ci);  /* stack may have been relocated */
-          if (trap) {  /* stack may have been relocated */
-            updatebase(ci);
-            ra = RA(i);
-          }
          ci->func -= delta;
          luaD_poscall(L, ci, cast_int(L->top - ra));
          return;
@@ -1739,10 +1739,7 @@ void luaV_execute (lua_State *L, CallInfo *ci) {
        memcpy(ra + 4, ra, 3 * sizeof(*ra));
        L->top = ra + 4 + 3;
        Protect(luaD_call(L, ra + 4, GETARG_C(i)));  /* do the call */
-        if (trap) {  /* stack may have changed? */
+        updatestack(ci);  /* stack may have changed */
-          updatebase(ci);  /* keep 'base' correct */
-          ra = RA(i);  /* keep 'ra' correct for next instruction */
-        }
        i = *(pc++);  /* go to next instruction */
        ra += 2;  /* adjust for next instruction */
        lua_assert(GET_OPCODE(i) == OP_TFORLOOP && ra == RA(i));
author	Roberto Ierusalimschy <roberto@inf.puc-rio.br>	2018-11-24 11:59:15 -0200
committer	Roberto Ierusalimschy <roberto@inf.puc-rio.br>	2018-11-24 11:59:15 -0200
commit	7e63d3da0240325db4011f5d2f2e8abfb5d60288 (patch)
tree	f6f486aaa9c1279ccdc26a1cc8bc814e005a277b /lvm.c
parent	84e32ad2ebd6bd160c1320456743a5b1d8f233e9 (diff)
download	lua-7e63d3da0240325db4011f5d2f2e8abfb5d60288.tar.gz lua-7e63d3da0240325db4011f5d2f2e8abfb5d60288.tar.bz2 lua-7e63d3da0240325db4011f5d2f2e8abfb5d60288.zip