projects / platform / upstream / dotnet / runtime.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 3c48c12)
[interp] Fix incorrect propagation of indirect local (#32511)
authormonojenkins <jo.shields+jenkins@xamarin.com>
Wed, 19 Feb 2020 22:09:32 +0000 (17:09 -0500)
committerGitHub <noreply@github.com>
Wed, 19 Feb 2020 22:09:32 +0000 (00:09 +0200)
We never track the value of locals who have their address taken in a method, since their value can change without the pass detecting it, leading to propagation of incorrect values. We failed to check for this when doing a stloc.np optimization.

Fixes System.Reflection.Metadata.Tests.ImmutableByteArrayInteropTest.DangerousCreateFromUnderlyingArray

Enable more interp tests, which don't seem to fail on my machine.

Co-authored-by: Vlad Brezae <brezaevlad@gmail.com>
src/mono/mono/mini/interp/transform.c patch | blob | history

diff --git a/src/mono/mono/mini/interp/transform.c b/src/mono/mono/mini/interp/transform.c
index 75fd22f..ae59aeb 100644 (file)
--- a/src/mono/mono/mini/interp/transform.c
+++ b/src/mono/mono/mini/interp/transform.c
@@ -6956,7 +6956,7 @@ retry:
                                        if (replace_op) {
                                                int stored_local = prev_ins->data [0];
                                                sp->ins = NULL;
-                                               if (sp->val.type == STACK_VALUE_NONE) {
+                                               if (sp->val.type == STACK_VALUE_NONE && !(td->locals [stored_local].flags & INTERP_LOCAL_FLAG_INDIRECT)) {
                                                        // We know what local is on the stack now. Track it
                                                        sp->val.type = STACK_VALUE_LOCAL;
                                                        sp->val.local = stored_local;
@@ -6976,11 +6976,12 @@ retry:
                                        }
                                }
                        } else if (locals [loaded_local].type == STACK_VALUE_LOCAL) {
-                               g_assert (locals [loaded_local].type == STACK_VALUE_LOCAL);
                                g_assert (!(td->locals [loaded_local].flags & INTERP_LOCAL_FLAG_INDIRECT));
                                // do copy propagation of the original source
                                mono_interp_stats.copy_propagations++;
                                local_ref_count [loaded_local]--;
+                               // We can't propagate a local that has its address taken
+                               g_assert (!(td->locals [locals [loaded_local].local].flags & INTERP_LOCAL_FLAG_INDIRECT));
                                ins->data [0] = locals [loaded_local].local;
                                local_ref_count [ins->data [0]]++;
                                if (td->verbose_level) {
Domain: Dotnet / Core;