FFI: Fix dangling reference to CType. Improve checks.

Reported by elmknot.
author: Mike Pall <mike> 2022-12-07 17:19:29 +0100
committer: Mike Pall <mike> 2022-12-07 17:19:29 +0100
commit: cc96ab9d513582703f8663a8775a935b56db32b7 (patch)
tree: e30f386a3eb8365aff7a0a51a072f212326f1461 /src/lj_ctype.c
parent: 1c5113aea9b5b8c1477332b8b3aa3cf47372b596 (diff)
download: luajit2-cc96ab9d513582703f8663a8775a935b56db32b7.tar.gz
1 files changed, 12 insertions, 0 deletions
diff --git a/src/lj_ctype.c b/src/lj_ctype.c
index 7ef00521..adbacaec 100644
--- a/src/lj_ctype.c
+++ b/src/lj_ctype.c
@@ -187,8 +187,20 @@ CTypeID lj_ctype_intern(CTState *cts, CTInfo info, CTSize size)
   }
   id = cts->top;
   if (LJ_UNLIKELY(id >= cts->sizetab)) {
+#ifdef LUAJIT_CTYPE_CHECK_ANCHOR
+    CType *ct;
+#endif
     if (id >= CTID_MAX) lj_err_msg(cts->L, LJ_ERR_TABOV);
+#ifdef LUAJIT_CTYPE_CHECK_ANCHOR
+    ct = lj_mem_newvec(cts->L, id+1, CType);
+    memcpy(ct, cts->tab, id*sizeof(CType));
+    memset(cts->tab, 0, id*sizeof(CType));
+    lj_mem_freevec(cts->g, cts->tab, cts->sizetab, CType);
+    cts->tab = ct;
+    cts->sizetab = id+1;
+#else
     lj_mem_growvec(cts->L, cts->tab, cts->sizetab, CTID_MAX, CType);
+#endif
   }
   cts->top = id+1;
   cts->tab[id].info = info;
author	Mike Pall <mike>	2022-12-07 17:19:29 +0100
committer	Mike Pall <mike>	2022-12-07 17:19:29 +0100
commit	cc96ab9d513582703f8663a8775a935b56db32b7 (patch)
tree	e30f386a3eb8365aff7a0a51a072f212326f1461 /src/lj_ctype.c
parent	1c5113aea9b5b8c1477332b8b3aa3cf47372b596 (diff)
download	luajit2-cc96ab9d513582703f8663a8775a935b56db32b7.tar.gz