DSE handleEndBlock uses freed memory

|  |  |
| --- | --- |
| Bugzilla Link | [1980](https://llvm.org/bz1980) |
| Resolution | FIXED |
| Resolved on | Feb 04, 2008 22:34 |
| Version | unspecified |
| OS | Linux |
| Attachments | [unreduced testcase bitcode](https://user-images.githubusercontent.com/60944935/143737621-7f12314f-c2e7-425b-8fb7-cc0e1f1072d2.gz), [reduced testcase .ll](https://user-images.githubusercontent.com/60944935/143737622-55f1afa2-137e-4b2d-b814-e6e788fdc595.gz) |
| Reporter | LLVM Bugzilla Contributor |

## Extended Description 
Here's what valgrind says:

Invalid read of size 4
   at 0x85D2CAB: llvm::ilist_iterator<llvm::Instruction>::operator++() (Instruction.h:223)
   by 0x87ECBDB: llvm::ilist_iterator<llvm::Instruction>::operator++(int) (ilist:152)
   by 0x8BAE2CA: llvm::MemoryDependenceAnalysis::removeInstruction(llvm::Instruction*) (MemoryDependenceAnalysis.cpp:469)
   by 0x8ABD37A: (anonymous namespace)::DSE::handleEndBlock(llvm::BasicBlock&, llvm::SetVector<llvm::Instruction*, std::vector<llvm::Instruction*, std::allocator<llvm::Instruction*> >, llvm::SmallSet<llvm::Instruction*, 16> >&) (DeadStoreElimination.cpp:280)
   by 0x8ABE293: (anonymous namespace)::DSE::runOnBasicBlock(llvm::BasicBlock&) (DeadStoreElimination.cpp:182)
   by 0x8ABE36E: (anonymous namespace)::DSE::runOnFunction(llvm::Function&) (DeadStoreElimination.cpp:46)
   by 0x8C434A7: llvm::FPPassManager::runOnFunction(llvm::Function&) (PassManager.cpp:1184)
   by 0x8C43649: llvm::FPPassManager::runOnModule(llvm::Module&) (PassManager.cpp:1204)
   by 0x8C4317D: llvm::MPPassManager::runOnModule(llvm::Module&) (PassManager.cpp:1254)
   by 0x8C43335: llvm::PassManagerImpl::run(llvm::Module&) (PassManager.cpp:1328)
   by 0x8C43387: llvm::PassManager::run(llvm::Module&) (PassManager.cpp:1360)
   by 0x8597C5F: llvm_asm_file_end (llvm-backend.cpp:561)
 Address 0x7483194 is 36 bytes inside a block of size 72 free'd
   at 0x402231C: operator delete(void*) (vg_replace_malloc.c:342)
   by 0x8C2EAD8: llvm::StoreInst::~StoreInst() (Instructions.h:293)
   by 0x87CF1EC: llvm::iplist<llvm::Instruction, llvm::ilist_traits<llvm::Instruction> >::erase(llvm::ilist_iterator<llvm::Instruction>) (ilist:368)
   by 0x8C1E7A8: llvm::Instruction::eraseFromParent() (Instruction.cpp:68)
   by 0x8ABE13A: (anonymous namespace)::DSE::runOnBasicBlock(llvm::BasicBlock&) (DeadStoreElimination.cpp:156)
   by 0x8ABE36E: (anonymous namespace)::DSE::runOnFunction(llvm::Function&) (DeadStoreElimination.cpp:46)
   by 0x8C434A7: llvm::FPPassManager::runOnFunction(llvm::Function&) (PassManager.cpp:1184)
   by 0x8C43649: llvm::FPPassManager::runOnModule(llvm::Module&) (PassManager.cpp:1204)
   by 0x8C4317D: llvm::MPPassManager::runOnModule(llvm::Module&) (PassManager.cpp:1254)
   by 0x8C43335: llvm::PassManagerImpl::run(llvm::Module&) (PassManager.cpp:1328)
   by 0x8C43387: llvm::PassManager::run(llvm::Module&) (PassManager.cpp:1360)
   by 0x8597C5F: llvm_asm_file_end (llvm-backend.cpp:561)

I hope this is enough: it is not easy to reproduce using opt.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

DSE handleEndBlock uses freed memory #2352

Extended Description

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development


Bugzilla Link	1980
Resolution	FIXED
Resolved on	Feb 04, 2008 22:34
Version	unspecified
OS	Linux
Attachments	unreduced testcase bitcode, reduced testcase .ll
Reporter	LLVM Bugzilla Contributor

DSE handleEndBlock uses freed memory #2352

Description

Extended Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions