java-gi/java-gi
1
7
Fork 1
Code Issues 1 Pull requests 1 Releases 32 Activity Actions

Memory corruption after calling methods that return SList with transfer-ownership="none" #183

New issue
Closed
opened 2025-01-09 21:25:03 +01:00 by BwackNinja · 5 comments
BwackNinja commented 2025-01-09 21:25:03 +01:00 (Migrated from github.com)
Copy link

I've been trying to figure out what's causing memory corruption when I'm rendering text, and I think I've found it.

The finalizer registered to the Cleaner in the SList constructor universally calls SListNode.free(new SListNode(address)); even when java-gi doesn't own the memory and shouldn't be freeing it. Examples include Layout.getLinesReadonly() in Pango.

Retaining a reference to the SList to prevent the finalizer from running does prevent the memory corruption.

I've been trying to figure out what's causing memory corruption when I'm rendering text, and I think I've found it. The finalizer registered to the `Cleaner` in the `SList` constructor universally calls `SListNode.free(new SListNode(address));` even when java-gi doesn't own the memory and shouldn't be freeing it. Examples include `Layout.getLinesReadonly()` in `Pango`. Retaining a reference to the `SList` to prevent the finalizer from running does prevent the memory corruption.
jwharm commented 2025-01-09 21:56:46 +01:00 (Migrated from github.com)
Copy link

Thanks for the bug report. These issues a really annoying to debug. This helps a lot.

Thanks for the bug report. These issues a really annoying to debug. This helps a lot.
BwackNinja commented 2025-01-09 22:09:20 +01:00 (Migrated from github.com)
Copy link

Jemalloc is really nice for finding memory leaks, but finding when and what has been preemptively been free'd is tough.

This is related, so I'm not sure if this needs to be a separate report, but there are other issues also involving returns with transfer-ownership="none". Buffer.peekMemory() and Buffer.getMeta() in GStreamer run MemoryCleaner.takeOwnership(_instance); despite also being marked transfer-ownership="none".

Jemalloc is really nice for finding memory leaks, but finding when and what has been preemptively been free'd is tough. This is related, so I'm not sure if this needs to be a separate report, but there are other issues also involving returns with transfer-ownership="none". `Buffer.peekMemory()` and `Buffer.getMeta()` in GStreamer run `MemoryCleaner.takeOwnership(_instance);` despite also being marked transfer-ownership="none".
jwharm commented 2025-01-11 11:55:51 +01:00 (Migrated from github.com)
Copy link

Buffer.peekMemory() calls g_boxed_copy to create its own copy or add a reference, and then takes ownership of the copy. The MemoryCleaner will call g_boxed_free to free the copy (or decrease the reference). This ensures your Java variable will not be freed suddenly, while you were still using it.

Similarly, Buffer.getMeta() creates a copy of the memory of the returned Meta struct. That memory is freed by the MemoryCleaner afterwards. (This needs more work, because the copy is "shallow": Meta contains a MetaInfo child that isn't copied.)

`Buffer.peekMemory()` calls `g_boxed_copy` to create its own copy or add a reference, and then takes ownership of the copy. The MemoryCleaner will call `g_boxed_free` to free the copy (or decrease the reference). This ensures your Java variable will not be freed suddenly, while you were still using it. Similarly, `Buffer.getMeta()` creates a copy of the memory of the returned `Meta` struct. That memory is freed by the MemoryCleaner afterwards. (This needs more work, because the copy is "shallow": `Meta` contains a `MetaInfo` child that isn't copied.)
BwackNinja commented 2025-01-11 16:30:05 +01:00 (Migrated from github.com)
Copy link

Ah. Thanks for explaining that.

I'm still seeing some other memory issues, at least a failure to free GdkTextures, but I'm trying to isolate that before I can confidently make a bug report. Thanks for the improvements! I'm almost back where I was with version 0.9.x without needing the explicit unref() calls.

Ah. Thanks for explaining that. I'm still seeing some other memory issues, at least a failure to free `GdkTexture`s, but I'm trying to isolate that before I can confidently make a bug report. Thanks for the improvements! I'm almost back where I was with version 0.9.x without needing the explicit `unref()` calls.
jwharm commented 2025-01-11 21:19:49 +01:00 (Migrated from github.com)
Copy link

Awesome! May I ask what you are developing?

Awesome! May I ask what you are developing?
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
Labels
Clear labels   
bug

Something isn't working

  
dependencies

Pull requests that update a dependency file

  
documentation

Improvements or additions to documentation

  
duplicate

This issue or pull request already exists

  
enhancement

New feature or request

  
github_actions

Pull requests that update GitHub Actions code

  
good first issue

Good for newcomers

  
help wanted

Extra attention is needed

  
invalid

This doesn't seem right

  
java

Pull requests that update Java code

  
question

Further information is requested

  
wontfix

This will not be worked on

No labels
bug
dependencies
documentation
duplicate
enhancement
github_actions
good first issue
help wanted
invalid
java
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
java-gi/java-gi#183
No description provided.