Alexey-T
commented
1 year ago good finding. thanks. please proved the fix after I apply the biggest PR.
Closed User4martin closed 1 year ago
Alexey-T
commented
1 year ago good finding. thanks. please proved the fix after I apply the biggest PR.
User4martin
commented
1 year ago Ok, I indent to go with
regDummy: array [0..8 div SizeOf(REChar)] of REChar; Because that covers all other cases that write to the dummy-pointer (if there are/will be any).
Alexey-T
commented
1 year ago that is good.
Regex writes to incorrect memory (independent of optimization settings).
But O4 means class field re-ordering. And that means an important field moves into the incorrect target pos....
In the first pass
regCode := @regDummy;andregDummy: REChar;which is 2 bytes (or 1)For
[abcd]in the first passEmitRangeCharis called.AddrOfLen: PLongInt;means that theIncaccesses 4 bytes from the address ofregCode' which is '@regDummy;. There are only 2 (or 1) bytes in regDummy. The remainder is the next field in the class.Normally the next field is
programm: PRegExprChar;which isn't used in the first pass.But when O4 reorders class fields, this can be any field. In my case it is
fSecondPass, which gets changed to true, but nothing is initialized yet.... So as soon as something depends on this => boom.Easiest fix
regDummy: array [0..8] of ' That way it will cover for all up to^QWORDaccess toregDummy`. (Even if 'sizeOf(char) = 1')More advanced, guard the code with
if not fSecondPassor similar.I haven't reproduced in a small example, but I can in the debugger confirm that fSecondPass is right after RegDummy, and that the indicated
incstatement changes fSecondPass.