Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Correct buffer size to fix memory corruption #80

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Correct buffer size to fix memory corruption #80

wants to merge 3 commits into from

Conversation

DanHeidinga
Copy link

The analysis in eclipse-openj9/openj9#5696 shows that there
is a out of bounds access that is fixed by increasing
the buffer size by 8. Validated by having the VM
increase all unsafe allocates by 8 and the problem
no longer occurs.

fixes: #79

Signed-off-by: Dan Heidinga daniel_heidinga@ca.ibm.com

@DanHeidinga
Correct buffer size to fix memory corruption
000a42a 
The analysis in eclipse-openj9/openj9#5696 shows that there
is a out of bounds access that is fixed by increasing
the buffer size by 8.  Validated by having the VM
increase all unsafe allocates by 8 and the problem
no longer occurs.

fixes: kohsuke#79

Signed-off-by: Dan Heidinga <daniel_heidinga@ca.ibm.com>
@DanHeidinga DanHeidinga mentioned this pull request May 14, 2019
Closed
@tonyroberts
Copy link

Great catch! The VARIANT struct is different sizes for 32 bit and 64 bit builds though, so I think the buffer sized used should be dependent on whether the process is 32 or 64 bits.

@DanHeidinga
Copy link
Author

I can update the PR but am having some trouble finding the definition of VARIANT to double check the size on 32 vs 64. Any pointers would be appreciated

@tonyroberts
Copy link

Here you go:
https://docs.microsoft.com/en-gb/windows/desktop/api/oaidl/ns-oaidl-tagvariant

There are two pointers in the inner struct in the union (pvRecord and pRecInfo) which I think account for the 8 bytes difference (4 bytes per pointer difference).

thanks!
Tony

@DanHeidinga
Determine Variant structure size correctly on 32 vs 64bit
f7344f4 
Structure contains pointers so its size depends on whether
the system is 32 or 64 bit

Signed-off-by: Dan Heidinga <daniel_heidinga@ca.ibm.com>
@DanHeidinga
Copy link
Author

Thanks @tonyroberts. I've updated the PR to check whether the system is 32 or 64 bit.

@tonyroberts
Copy link

"os.arch" is probably more portable to other JVMs than sun.arch.data.model (see https://docs.oracle.com/javase/6/docs/api/java/lang/System.html#getProperties()), but other than that looks good to me.

@mpoindexter
Copy link
Collaborator

Would it make sense to move the variantSize call out of the constructor and into a static? In some workloads variants get created a lot, so makes sense to do as little as possible per instance, and I don't think the arch will change mid execution.

@DanHeidinga
Use os.arch and move variantSize check into static final variable
bf099f2 
Signed-off-by: Dan Heidinga <daniel_heidinga@ca.ibm.com>
@DanHeidinga
Copy link
Author

I've switched to os.arch and moved the variantSize check into a static final variable.

@tonyroberts tonyroberts mentioned this pull request May 15, 2019
Merged
@DanHeidinga
Copy link
Author

Is there anything I need to do to help get this merged?

@tonyroberts
Copy link

@DanHeidinga I'm not sure what the current state of this repo is to be honest. It doesn't seem to have much activity, and my PRs have not been merged or commented on.

I'm maintaining another fork here https://github.com/exceljava/com4j with bug fixes that haven't yet been merged into this repo (including yours).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Crash with openj9
3 participants
@DanHeidinga @tonyroberts @mpoindexter