RFR: JDK-8302594: use-after-free in Node::destruct [v2]
Tobias Hartmann
thartmann at openjdk.org
Thu Feb 16 07:38:29 UTC 2023
On Wed, 15 Feb 2023 20:30:17 GMT, Justin King <jcking at openjdk.org> wrote:
>> Instrumenting Arena for ASan revealed some `use-after-free` behavior in C2. One of them is in `Node::destruct`, where the storage for `Node` is free'd and then fields are accessed. Thankfully none of the methods called allocate, but they could in the future. To resolve this, we move the calls to `Afree` to the end of `Node::destruct`.
>
> Justin King has updated the pull request incrementally with one additional commit since the last revision:
>
> Update based on review
>
> Signed-off-by: Justin King <jcking at google.com>
Looks good to me.
-------------
Marked as reviewed by thartmann (Reviewer).
PR: https://git.openjdk.org/jdk/pull/12577
More information about the hotspot-compiler-dev
mailing list