cmd/compile: nil dereference when storing field of non-nil struct value [1.24 backport] #71904

gopherbot · 2025-02-22T22:39:57Z

@randall77 requested issue #71857 to be considered for backport to the next 1.24 minor release.

Ok, thanks for the reproducer.

This looks like a bug in the register allocator when compiling (*rw).closerecvsend, where it uses the same register for two different things simultaneously. Those two things being the value being compare-and-swapped (0b1100), and the this argument. That's where the 0xc pointer comes from.

I think I have a 1-line fix.
diff --git a/src/cmd/compile/internal/ssa/regalloc.go b/src/cmd/compile/internal/ssa/regalloc.go
index 1b7bcb2b1d..d794098b9d 100644
--- a/src/cmd/compile/internal/ssa/regalloc.go
+++ b/src/cmd/compile/internal/ssa/regalloc.go
@@ -1677,6 +1677,7 @@ func (s *regAllocState) regalloc(f *Func) {
                                }
                                tmpReg = s.allocReg(m, &tmpVal)
                                s.nospill |= regMask(1) << tmpReg
+                               s.tmpused |= regMask(1) << tmpReg
                        }
 
                        // Now that all args are in regs, we're ready to issue the value itself.
I still need to figure out a reasonable test for it.

@gopherbot please open a backport issue for 1.24.

The text was updated successfully, but these errors were encountered:

gopherbot · 2025-02-25T18:22:26Z

Change https://go.dev/cl/652178 mentions this issue: [release-branch.go1.24] cmd/compile: ensure we don't reuse temporary register

dmitshur · 2025-02-26T17:10:15Z

Removed Critical label here since it only applies to upstream issues, and #71857 already has it.

…register Before this CL, we could use the same register for both a temporary register and for moving a value in the output register out of the way. Fixes #71904 Change-Id: Iefbfd9d4139136174570d8aadf8a0fb391791ea9 Reviewed-on: https://go-review.googlesource.com/c/go/+/651221 Reviewed-by: David Chase <drchase@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Keith Randall <khr@google.com> (cherry picked from commit cc16fb5) Reviewed-on: https://go-review.googlesource.com/c/go/+/652178

gopherbot · 2025-02-26T17:45:43Z

Closed by merging CL 652178 (commit 4e6d346) to release-branch.go1.24.

gopherbot added the CherryPickCandidate label Feb 22, 2025

gopherbot mentioned this issue Feb 22, 2025

cmd/compile: nil dereference when storing field of non-nil struct value #71857

Closed

gopherbot added the compiler/runtime label Feb 22, 2025

gopherbot added this to the Go1.24.1 milestone Feb 22, 2025

randall77 added the Critical label Feb 25, 2025

prattmic added the CherryPickApproved label Feb 26, 2025

gopherbot removed the CherryPickCandidate label Feb 26, 2025

dmitshur added CherryPickCandidate and removed CherryPickApproved Critical labels Feb 26, 2025

dmitshur added CherryPickApproved and removed CherryPickCandidate labels Feb 26, 2025

gopherbot closed this as completed Feb 26, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

cmd/compile: nil dereference when storing field of non-nil struct value [1.24 backport] #71904

cmd/compile: nil dereference when storing field of non-nil struct value [1.24 backport] #71904

gopherbot commented Feb 22, 2025

gopherbot commented Feb 25, 2025

dmitshur commented Feb 26, 2025 •

edited

Loading

gopherbot commented Feb 26, 2025

cmd/compile: nil dereference when storing field of non-nil struct value [1.24 backport] #71904

cmd/compile: nil dereference when storing field of non-nil struct value [1.24 backport] #71904

Comments

gopherbot commented Feb 22, 2025

gopherbot commented Feb 25, 2025

dmitshur commented Feb 26, 2025 • edited Loading

gopherbot commented Feb 26, 2025

dmitshur commented Feb 26, 2025 •

edited

Loading