@tjw shades of an issue in Rogue Wave (as shipped with Borland C++) where they’d use placement new/delete in some operations, but neglected to mark the memory pool free after placement delete. Our video server was using an effected function hundreds of time per second, spiraling usage.

We had to patch every new BC++ library for like a year before they shipped the fix (which we repro’ed, reported with suggested fix, etc)

@tjw I was on one of the product development teams there, and I don't think I ever knew this!

But we still had gcc issues. Binaries were 32-bit and the set of libraries was so big that we bumped up against 4GB binary sizes and the linker crashed. So you could only get away with one or two libraries with debugging symbols at any one time. Try to track down a bug and guess wrong about where it was, and you'd get to choose a different library with symbols, rebuild for an hour, and try again.

@tjw On the day Opteron was supposed to tape out, a colleague discovered a logic bug. After some analysis, we figured out we could fix it by disconnecting a wire from one gate and attaching it to another. But running through or design flow would take days, and the ripple effect of changing connectivity could cause more problems. So I loaded the chip mask into VIM and modified the polygons directly, then we taped it out.

Don’t remember for sure, but I don’t think we told management 🙂

@tjw

Sweet Jesus.

@tjw

What a twist ending!

I was sure it would end like most campfire horror stories "and that perls script is still running production code to this day!" Bwahahaha!

@tjw

I might've worked for the same outfit in 1997. I was hired from a job at Goddard Spaceflight Center to help form a new unit doing system security consulting (I wasn't particularly well versed in the subject, but was keen).

By the time my partner and I had driven across the country, the company had been sold, and the security gig was dropped. So, I got farmed out to AT&T wireless to do odd coding tasks.

The outfit was called Platinum Tech, and was a NextStep shop.

@tjw iPhone almost performed a similar hack workaround for some bad compiler code generation. iPhone OS 2.0 introduced the App Store and the new ObjC ABI. An important new feature was non-fragile ivars: you could add instance variables to a class without needing to recompile all of its subclasses. But there was a bug in the compiler's codegen in one kind of generated accessor method, making the ivar access fragile again.

Of course buggy non-fragile ivars work fine until they break later. We didn't discover the problem until after iPhone OS 2.0 shipped. To fix the problem we almost shipped iPhone OS 2.x with an exciting runtime introspection that could identify the broken accessor methods and dynamically replace them. Sadly this heroic engineering solution was dropped in favor of teamwork: we instead scanned all App Store binaries for the bad codegen and simply asked the affected developers to recompile with an updated compiler.

@tjw "Given enough hours, you'd eventually have `delete[]` looking off into a previous unallocated page get a stern talking to from the MMU."

Even worse, the memory allocator itself likely used the word before the allocation for its own metadata, so it would have been readable in even more cases. From what I know of early Mac OS X malloc, I bet the only way that word could possibly be unreadable on NeXT would be if the allocation were also very large, at which point malloc switched to allocating pages directly from the kernel and storing its own metadata out of line.