| Thread overview | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
September 29, 2013 [Issue 11139] New: malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
 | http://d.puremagic.com/issues/show_bug.cgi?id=11139 Summary: malloc/emplace resulting in memory corruption Product: D Version: D2 Platform: All OS/Version: Linux Status: NEW Severity: blocker Priority: P2 Component: DMD AssignedTo: nobody@puremagic.com ReportedBy: puneet@coverify.org --- Comment #0 from Puneet Goel <puneet@coverify.org> 2013-09-29 06:42:22 PDT --- On my linux box I get: $ rdmd test.d 4000 $ rdmd -version=EMPLACE test.d 4000 Segmentation fault (core dumped) The code runs fine if I comment out line 19 or line 23 -- both of which are producing only a side effect. class Frop { // 01 int[] _var; // 02 int[] var() { // 03 return _var; // 04 } // 05 this() { // 06 this._var.length = 1; // 07 } // 08 } // 09 class Foo { // 10 long[] nodes; // 11 Frop[] frops; // 12 long[] table; // 13 this() { // 14 nodes.length = 120000; // 15 frops.length = 1; // 16 frops[0] = new Frop(); // 17 initTable(); // 18 zoo(frops[0].var); // 19 } // 20 void initTable() { // 21 import std.stdio; // 22 writeln(4000); // 23 table.length = 40000; // 24 } // 25 void zoo(int[] varset) {} // 26 } // 27 class Bar { // 28 Foo _foo; // 29 this() { // 30 version(EMPLACE) { // 31 import std.conv, core.stdc.stdlib; // 32 enum size_t size = __traits(classInstanceSize, Foo); // 33 // static assert(size is 32); // 64 on x64 // 34 void* tmp = core.stdc.stdlib.malloc(size); // 35 if (!tmp) // 36 throw new Exception("Memory allocation failed"); // 37 void[] mem = tmp[0..size]; // 38 _foo = emplace!(Foo)(mem); // 39 } // 40 else { // 41 _foo = new Foo(); // 42 } // 43 } // 44 } // 45 void main() { // 46 auto bar = new Bar; // 47 } // 48 -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
Permalink
ReplySeptember 30, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 --- Comment #1 from Puneet Goel <puneet@coverify.org> 2013-09-29 19:33:05 PDT --- Another reduced testcase. This one does not have dependency on writeln. class Frop { // 01 void zoo(int ) { } // 02 } // 03 class Foo { // 04 int[] table; // 05 int[] table2; // 06 Frop frop; // 07 this() { // 08 frop = new Frop(); // 09 table2.length = 1; // 10 table.length = 320000; // 11 frop.zoo(0); // 12 } // 13 } // 14 class Bar { // 15 Foo foo; // 16 this() { // 17 version(EMPLACE) { // 18 import std.conv, core.stdc.stdlib; // 19 enum size_t size = __traits(classInstanceSize, Foo); // 20 static assert (size % size_t.sizeof is 0); // 21 void* tmp = core.stdc.stdlib.malloc(size); // 22 if (!tmp) // 23 throw new Exception("Memory allocation failed"); // 24 void[] mem = tmp[0..size]; // 25 foo = emplace!(Foo)(mem); // 26 } // 27 else { // 28 foo = new Foo(); // 29 } // 30 } // 31 } // 32 void main() { // 33 auto bar = new Bar; // 34 } // 35 -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
October 13, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
 Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 Iain Buclaw <ibuclaw@ubuntu.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |ibuclaw@ubuntu.com --- Comment #2 from Iain Buclaw <ibuclaw@ubuntu.com> 2013-10-13 06:51:53 PDT --- This is what happens when you have GC'd memory only being referenced by non-GC'd memory. -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
October 13, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
 Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 --- Comment #3 from monarchdodra@gmail.com 2013-10-13 07:48:43 PDT --- (In reply to comment #2) > This is what happens when you have GC'd memory only being referenced by non-GC'd memory. According to the original thread, this would be solved by GC.addRange. Apparently, Andrei tried it, but it didn't solve the problem. I haven't tried to double check. http://forum.dlang.org/thread/mailman.1805.1380438203.1719.digitalmars-d@puremagic.com#post-bpcfwijqpmlxozplsalx:40forum.dlang.org -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
October 13, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 --- Comment #4 from Iain Buclaw <ibuclaw@ubuntu.com> 2013-10-13 07:52:28 PDT --- (In reply to comment #3) > (In reply to comment #2) > > This is what happens when you have GC'd memory only being referenced by non-GC'd memory. > > According to the original thread, this would be solved by GC.addRange. Apparently, Andrei tried it, but it didn't solve the problem. I haven't tried to double check. > > http://forum.dlang.org/thread/mailman.1805.1380438203.1719.digitalmars-d@puremagic.com#post-bpcfwijqpmlxozplsalx:40forum.dlang.org Don't you mean GC.addRoot ? -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
October 13, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 --- Comment #5 from monarchdodra@gmail.com 2013-10-13 08:01:09 PDT --- (In reply to comment #4) > (In reply to comment #3) > > (In reply to comment #2) > > > This is what happens when you have GC'd memory only being referenced by non-GC'd memory. > > > > According to the original thread, this would be solved by GC.addRange. Apparently, Andrei tried it, but it didn't solve the problem. I haven't tried to double check. > > > > http://forum.dlang.org/thread/mailman.1805.1380438203.1719.digitalmars-d@puremagic.com#post-bpcfwijqpmlxozplsalx:40forum.dlang.org > > Don't you mean GC.addRoot ? The thread made mention of addRange. AFAIK: addRoot is a way to say "this pointer exists even if you don't see it". addRange is "this memory location which isn't yours, scan it anyways". So I think in this context, addRange is correct. But I'll try some with both. -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
October 13, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 --- Comment #6 from Iain Buclaw <ibuclaw@ubuntu.com> 2013-10-13 08:15:32 PDT --- (In reply to comment #5) > (In reply to comment #4) > > (In reply to comment #3) > > > (In reply to comment #2) > > > > This is what happens when you have GC'd memory only being referenced by non-GC'd memory. > > > > > > According to the original thread, this would be solved by GC.addRange. Apparently, Andrei tried it, but it didn't solve the problem. I haven't tried to double check. > > > > > > http://forum.dlang.org/thread/mailman.1805.1380438203.1719.digitalmars-d@puremagic.com#post-bpcfwijqpmlxozplsalx:40forum.dlang.org > > > > Don't you mean GC.addRoot ? > > The thread made mention of addRange. AFAIK: > > addRoot is a way to say "this pointer exists even if you don't see it". > > addRange is "this memory location which isn't yours, scan it anyways". > > So I think in this context, addRange is correct. But I'll try some with both. Both are correct. Having a look, GC.addRange seems more correct for struct/classes. And I can't re-produce the SEGV if I add in GC.addRange(tmp, size) - unlike what Andrei claims... -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
October 13, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 --- Comment #7 from Iain Buclaw <ibuclaw@ubuntu.com> 2013-10-13 08:17:06 PDT --- (In reply to comment #6) > > Both are correct. Having a look, GC.addRange seems more correct for struct/classes. > See collection routine in the GC. --- // Scan roots[] mark(roots, roots + nroots); // Scan ranges[] for (n = 0; n < nranges; n++) mark(ranges[n].pbot, ranges[n].ptop); --- -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
October 26, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
 Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 safety0ff.bugz <safety0ff.bugz@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |safety0ff.bugz@gmail.com --- Comment #8 from safety0ff.bugz <safety0ff.bugz@gmail.com> 2013-10-25 17:26:47 PDT --- Debugging this it looks like it is calling/jumping into a heap location ([rcx+40] instead of static call,) instead of calling Frop.zoo. -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
November 03, 2013 [Issue 11139] malloc/emplace resulting in memory corruption | ||||
|---|---|---|---|---|
| ||||
Posted in reply to Puneet Goel | http://d.puremagic.com/issues/show_bug.cgi?id=11139 --- Comment #9 from safety0ff.bugz <safety0ff.bugz@gmail.com> 2013-11-03 11:36:08 PST --- Ignore the above comment, if I add GC.addRange(tmp, size) after line 24 it stops segfaulting. -- Configure issuemail: http://d.puremagic.com/issues/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- | |||
Copyright © 1999-2021 by the D Language Foundation