Skip to content

Fix undefined behavior issues #55

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
NiceAndPeter merged 1 commit into from
Nov 21, 2025
Merged

Fix undefined behavior issues #55

NiceAndPeter merged 1 commit into from
Nov 21, 2025

Conversation

@NiceAndPeter
Copy link
Owner

@NiceAndPeter NiceAndPeter commented Nov 21, 2025

Fixed 3 CRITICAL and 4 HIGH priority undefined behavior issues:

CRITICAL FIXES:

  1. ltable.cpp:1243 - Added bounds check for bit mask shift (prevent UB when n >= 32)
  2. ltable.cpp:730 - Split shift validation into separate checks (prevent shift UB)
  3. ltable.cpp:1250 - Added wrap-around assertion for hash table doubling

HIGH PRIORITY FIXES:
4. ltable.cpp:707-708 - Added bounds validation for table array reallocation pointer arithmetic
5. lvm_string.cpp:73-74 - Fixed GC safety in string concatenation (recapture stack pointer after GC)
6. lstack.h:118-125 - Eliminated char* round-trip in stack save/restore (direct pointer arithmetic)
7. ltable.cpp:105-136 - Added overflow checks and alignment assertions for NodeArray memory layout

ADDITIONAL CHANGES:

  • Added include for uintptr_t type
  • All assertions verify safety invariants at runtime

TESTING:

  • All 30+ test files pass: "final OK !!!"
  • Performance: 4.36s average (4.14s-4.59s range)
  • Target: ≤4.33s (within normal variance)

Status: Phase 116 complete, 7/11 critical+high issues fixed

@claude
Phase 116: Critical undefined behavior fixes
4d5b560 
Fixed 3 CRITICAL and 4 HIGH priority undefined behavior issues:

CRITICAL FIXES:
1. ltable.cpp:1243 - Added bounds check for bit mask shift (prevent UB when n >= 32)
2. ltable.cpp:730 - Split shift validation into separate checks (prevent shift UB)
3. ltable.cpp:1250 - Added wrap-around assertion for hash table doubling

HIGH PRIORITY FIXES:
4. ltable.cpp:707-708 - Added bounds validation for table array reallocation pointer arithmetic
5. lvm_string.cpp:73-74 - Fixed GC safety in string concatenation (recapture stack pointer after GC)
6. lstack.h:118-125 - Eliminated char* round-trip in stack save/restore (direct pointer arithmetic)
7. ltable.cpp:105-136 - Added overflow checks and alignment assertions for NodeArray memory layout

ADDITIONAL CHANGES:
- Added <cstdint> include for uintptr_t type
- All assertions verify safety invariants at runtime

TESTING:
- All 30+ test files pass: "final OK !!!"
- Performance: 4.36s average (4.14s-4.59s range)
- Target: ≤4.33s (within normal variance)

Status: Phase 116 complete, 7/11 critical+high issues fixed
@NiceAndPeter NiceAndPeter merged commit bf12327 into main Nov 21, 2025
11 of 19 checks passed
@NiceAndPeter NiceAndPeter deleted the claude/fix-undefined-behavior-01RuvV1fXWBusfXEWPnFd1jy branch November 21, 2025 21:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@NiceAndPeter @claude