diff options
| author | Jason Merrill <jason@redhat.com> | 2014-09-18 08:34:43 -0400 |
|---|---|---|
| committer | Jason Merrill <jason@gcc.gnu.org> | 2014-09-18 08:34:43 -0400 |
| commit | 4666e1fb927e6b9ff9498a8023530182cba303f7 (patch) | |
| tree | fe6c5b9c31673294c79433d2e8dfa4e8007754b1 | |
| parent | e770bfd997bb5803b88ca4081bdbca3e250fc92e (diff) | |
| download | gcc-4666e1fb927e6b9ff9498a8023530182cba303f7.zip gcc-4666e1fb927e6b9ff9498a8023530182cba303f7.tar.gz gcc-4666e1fb927e6b9ff9498a8023530182cba303f7.tar.bz2 | |
dyncast.cc (__dynamic_cast): Handle mid-destruction dynamic_cast more gracefully.
* libsupc++/dyncast.cc (__dynamic_cast): Handle mid-destruction
dynamic_cast more gracefully.
From-SVN: r215350
| -rw-r--r-- | gcc/testsuite/g++.dg/rtti/dyncast7.C | 28 | ||||
| -rw-r--r-- | libstdc++-v3/ChangeLog | 5 | ||||
| -rw-r--r-- | libstdc++-v3/libsupc++/dyncast.cc | 12 |
3 files changed, 45 insertions, 0 deletions
diff --git a/gcc/testsuite/g++.dg/rtti/dyncast7.C b/gcc/testsuite/g++.dg/rtti/dyncast7.C new file mode 100644 index 0000000..deb4397 --- /dev/null +++ b/gcc/testsuite/g++.dg/rtti/dyncast7.C @@ -0,0 +1,28 @@ +// I think this dynamic_cast has undefined behavior when destroying E::o +// because we're the F period of destruction has started and ap doesn't +// point to the object currently being destroyed--but the reasonable +// options are success or failure, not SEGV. + +// { dg-do run } + +extern "C" void abort(); + +struct A { virtual ~A(); }; +struct B { virtual ~B() { } }; +struct C : B, A { }; +struct E : virtual B { A o; }; +struct F : virtual C, virtual E { }; + +A* ap; +C* cp; + +A::~A() { + C* cp2 = dynamic_cast<C*>(ap); + if (cp2 != cp && cp2 != 0) + abort(); +} + +int main() { + F f; + ap = cp = &f; +} diff --git a/libstdc++-v3/ChangeLog b/libstdc++-v3/ChangeLog index 2dc5a24..7682e27 100644 --- a/libstdc++-v3/ChangeLog +++ b/libstdc++-v3/ChangeLog @@ -1,3 +1,8 @@ +2014-09-17 Jason Merrill <jason@redhat.com> + + * libsupc++/dyncast.cc (__dynamic_cast): Handle mid-destruction + dynamic_cast more gracefully. + 2014-09-15 Jakub Jelinek <jakub@redhat.com> * testsuite/Makefile.am (check_p_numbers0, check_p_numbers1, diff --git a/libstdc++-v3/libsupc++/dyncast.cc b/libstdc++-v3/libsupc++/dyncast.cc index 2bcb7dd..9f6adef 100644 --- a/libstdc++-v3/libsupc++/dyncast.cc +++ b/libstdc++-v3/libsupc++/dyncast.cc @@ -55,6 +55,18 @@ __dynamic_cast (const void *src_ptr, // object started from adjust_pointer <void> (src_ptr, prefix->whole_object); const __class_type_info *whole_type = prefix->whole_type; __class_type_info::__dyncast_result result; + + // If the whole object vptr doesn't refer to the whole object type, we're + // in the middle of constructing a primary base, and src is a separate + // base. This has undefined behavior and we can't find anything outside + // of the base we're actually constructing, so fail now rather than + // segfault later trying to use a vbase offset that doesn't exist. + const void *whole_vtable = *static_cast <const void *const *> (whole_ptr); + const vtable_prefix *whole_prefix = + adjust_pointer <vtable_prefix> (whole_vtable, + -offsetof (vtable_prefix, origin)); + if (whole_prefix->whole_type != whole_type) + return NULL; whole_type->__do_dyncast (src2dst, __class_type_info::__contained_public, dst_type, whole_ptr, src_type, src_ptr, result); |