tarantool
/
tarantool
/
5888324645
85%
master: 88%
master: 88%
|
Ran
|
Jobs
1
|
Files
459
|
Run time
13s
|
Badge
Embed ▾
README BADGES
|
coverage: 85.228% (+0.008%) from 85.22%
push
github
lockerlua: fix heap-use-after-free bug in tuple format constructor Runtime tuple formats are reusable, which means that a tuple format returned by runtime_tuple_format_new may not be brand new, but actually be used by a Lua object. As a result, if we call any function that may trigger Lua GC between runtime_tuple_format_new and tuple_format_ref, the tuple format may be deleted, leading to a use-after-free bug. This is what happens in lbox_tuple_format_new. Fix this issue by taking a reference to the format before pushing a cdata object to the Lua stack in lbox_push_tuple_format. The issue was fixed in the master branch by commit 28ec245d0a7e ("lua: fix heap-use-after-free bug in tuple format constructor"). This isn't a clean cherry-pick because the code changed quite a bit. Closes #8889 NO_DOC=bug fix NO_TEST=difficult to reproduce, found by ASAN (cherry picked from commit 4123061bc)
59315 of 108174 branches covered (54.83%)
1 of 1 new or added line in 1 file covered. (100.0%)
90475 of 106157 relevant lines covered (85.23%)
2493953.75 hits per line
Jobs
| ID | Job ID | Ran | Files | Coverage | |
|---|---|---|---|---|---|
| 1 | 5888324645.1 | 0 |
85.23 |
GitHub Action Run |
Source Files on build 5888324645
Detailed source file information is not available for this build.