You know, double-free/invalid-free bugs could be trivially eliminated with an ABI having fat pointers.
-
-
Replying to @RichFelker
Also solves ABA problems, but you need wider atomic ops. We just end up doing it in-app :weep:
1 reply 0 retweets 0 likes -
Replying to @pkhuong @RichFelker
Solaris does something with the header to detect invalid frees at least.
1 reply 0 retweets 0 likes -
Replying to @pkhuong @RichFelker
Can reliably detect all invalid frees without probabilistic mitigations (i.e. leakable) by having out-of-line metadata.
2 replies 0 retweets 0 likes -
Replying to @CopperheadOS @pkhuong
No you can't without never reusing a virtual address once it's freed.
1 reply 0 retweets 0 likes -
Replying to @RichFelker @pkhuong
It's valid to convert pointer -> integer -> pointer and then free that though, with extra steps in between.
2 replies 0 retweets 0 likes
Replying to @CopperheadOS @pkhuong
Only if [u]intptr_t exists. On such an implementation, it doesn't.
8:59 PM - 28 Sep 2016
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.