illegal luaL_buffer usage in loadlib.c

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: illegal luaL_buffer usage in loadlib.c
From: Daurnimator <quae@...>
Date: Tue, 12 Dec 2017 00:09:01 +1100

In findloader (https://www.lua.org/source/5.3/loadlib.c.html#findloader)
luaL_buffinit is called before pushing the searchers table onto the
stack.
This breaks the "balanced stack" that luaL_buffinit is documented to expect.
Also, later code then assumes that the searchers table is at index 3.

Now, this doesn't actually manifest in a bug in PUC Rio lua 5.3, as
the implementation of luaL_buffinit doesn't touch the stack.
However if someone were to extract parts of loadlib.c to use with a
different auxlib implementation then there might be issues.

The fix is to simply move the luaL_buffinit call below the lua_getfield call.

Follow-Ups:
- Re: illegal luaL_buffer usage in loadlib.c, Roberto Ierusalimschy

Prev by Date: Re: seeding may not be an effective defense against hash flooding
Next by Date: lua_next() crashing on former LUA_TNONE arguments
Previous by thread: Re: New Interpreter VM using dynasm Was: Starting a JIT backend for Ravi yet again
Next by thread: Re: illegal luaL_buffer usage in loadlib.c
Index(es):
- Date
- Thread