Re: Possible bug in Lua's Garbage Collector

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Possible bug in Lua's Garbage Collector
From: Edgar Toernig <froese@...>
Date: Thu, 29 May 2008 19:47:35 +0200

Patrick Donnelly wrote:
>
> I had a userdata that I pushed
> onto the stack, and later (while it was still on the stack), it was
> finalized unexpectedly.

> static int preparethreads (lua_State *L)
> {
>   Target *target = (Target *) lua_touserdata(L, 1);
>   Target **utarget;
> 
>   lua_settop(L, 0); // clear stack
> 
>   utarget = (Target **) lua_newuserdata(L, sizeof(Target *)); // index 1

I haven't read further as here's already a bug.

The settop(0) removes the reference to the passed userdata.
If that was the only reference to it, 'target' is now no
longer valid.  The following lua calls (like lua_newuserdata)
may invoke the GC, free the userdata, reuse the memory for
something else and 'target' points to garbage.

Ciao, ET.

References:
- Possible bug in Lua's Garbage Collector, Patrick Donnelly

Prev by Date: Re: Question about running luaxmlrpc
Next by Date: Re: Question about running luaxmlrpc
Previous by thread: Re: Possible bug in Lua's Garbage Collector
Next by thread: Lua RPC XML
Index(es):
- Date
- Thread