Skip to content

Fix problems with mrb_open() if occurs out of memory#4250

Closed
dearblue wants to merge 18 commits into
mruby:masterfrom
dearblue:fix-mrb_open-with-nomem
Closed

Fix problems with mrb_open() if occurs out of memory#4250
dearblue wants to merge 18 commits into
mruby:masterfrom
dearblue:fix-mrb_open-with-nomem

Conversation

@dearblue

@dearblue dearblue commented Jan 27, 2019

Copy link
Copy Markdown
Contributor

(This comment is a copied from #4239)

If out of memory occurs with mrb_open(), the process will be crashed by SIGABRT or SIGSEGV.

This behavior is undesirable for me as I try to generate multiple mrb_state.

This patch set corrects problems that occurred by simulating out of memory.

Thanks.

Potential issue

If mrb_XXX_gem_final() is called while initialization processing is not completed, problems may arise there.

dearblue added 18 commits January 27, 2019 09:47
@dearblue
Fix NULL pointer dereference mrb->nomem_err when not initialized
da7d7f8 
Add internal functions (not `static`):

  * `mrb_raise_nomemory()`
  * `mrb_core_init_abort()`
@dearblue
Fix stack overflow when out of memory
fef1c15 
As a result of this change, no backtrace information is set
for NoMemoryError (`mrb->nomem_err`).

Detailes:

When generating a backtrace, called `mrb_intern_lit()`,
`mrb_str_new_cstr()` and `mrb_obj_iv_set()` function with
`exc_debug_info()` function in `src/error.c`.

If a `NoMemoryError` exception occurs at this time,
the `exc_debug_info()` function will be called again,
and in the same way `NoMemoryError` exception raised will result
in an infinite loop to occurs stack overflow (and SIGSEGV).
@dearblue
Fix memory leak for string object when out of memory
7a04183 
The `mrb_str_pool()` function has a path to call `malloc()` twice.

If occurs `NoMemoryError` exception in second `malloc()`,
first `malloc()` pointer is not freed.
@dearblue
Protect exception for mruby core initialization
1006427
@dearblue
Fix protect exception for print error message
d9c7b6b
@dearblue
Fix NULL pointer dereference mrb->c by mark_context()
a3cfe75
@dearblue
Fix keep wrong symbol capacity when out of memory
3f8e2b3
@dearblue
Fix keep wrong symbol index when out of memory
15e6729
@dearblue
Fix memory leak for symbol string when out of memory in kh_put()
19162dd
@dearblue
Fix memory leak for khash_t in kh_init_size() when out of memory …
b6214ff 
…by `kh_alloc()`
@dearblue
Fix memory leak for irep when out of memory by mrb_proc_new()
e2d6896
@dearblue
Fix NULL pointer dereference when do not finished initializing irep
2531f26
@dearblue
Fix uninitialized pointer dereference when do not finished initializi…
6b35ebf 
…ng irep
@dearblue
Fix memory leak for irep when out of memory
8b42257
@dearblue
Fix memory leak for temporary filenames when out of memory
8e99316
@dearblue
Fix uninitialized pointer dereference for debug section
4c5499b
@dearblue
Fix memory leak for temporary symbols when out of memory
52e3d5d
@dearblue
Fix invalid pointer free inside other heap's block
b178914 
 1. `e = mrb_obj_alloc(...)`
 2. `e->stack = mrb->c->stack` (`mrb->c->stack` is anywhere in the range `stbase...stend`)
 3. And raised exception by `mrb_malloc()`!
 4. `mrb_free(e->stack)` by GC part (wrong free)
@matz

matz commented Jun 5, 2020

Copy link
Copy Markdown
Member

merged.

@matz matz closed this Jun 5, 2020
@dearblue dearblue deleted the fix-mrb_open-with-nomem branch June 5, 2020 14:55
dearblue added a commit to dearblue/mruby that referenced this pull request Nov 8, 2020
@dearblue
Suppress -Wunused-function
06d231d 
If no gem was specified, it was warning because `init_mrbgems()` was not used.

ref: mruby#4250
@dearblue dearblue mentioned this pull request Nov 8, 2020
Merged
dearblue added a commit to dearblue/mruby that referenced this pull request Jan 10, 2021
@dearblue
Replace tempirep with RProc
29a01c1 
Previously I used the `RData` object to avoid a memory leak in `mrb_irep` if `src/load.c` failed.
ref: mruby#4250
commit: f1523d2

Considering that the `RProc` object will be created in the subsequent process, it is preferable to create the `RProc` object from the beginning.
Along with this, the inside of `read_irep()` is replaced with the processing centered on the `RProc` object.

The global function that returns the `mrb_irep` pointer is still provided for compatibility.
dearblue added a commit to dearblue/mruby that referenced this pull request Jan 10, 2021
@dearblue
Replace tempirep with RProc
3fc848b 
Previously I used the `RData` object to avoid a memory leak in `mrb_irep` if `src/load.c` failed.
ref: mruby#4250
commit: f1523d2

Considering that the `RProc` object will be created in the subsequent process, it is preferable to create the `RProc` object from the beginning.
Along with this, the inside of `read_irep()` is replaced with the processing centered on the `RProc` object.

The global function that returns the `mrb_irep` pointer is still provided for compatibility.
@dearblue dearblue mentioned this pull request Jan 10, 2021
Merged
@matz matz mentioned this pull request Oct 27, 2021
Closed
dearblue added a commit to dearblue/mruby that referenced this pull request Nov 20, 2022
@dearblue
Print errors by calling mrb_print_backtrace() without backtrace
61b6027 
- In case of `NoMemoryError` exceptions, the error message is now printed directly.
- Replaced `mrb_p()` used by mruby#4250 with `mrb_print_error()`.

  ref. squashed commit f1523d2
  ref. subcommit da7d7f8
  ref. subcommit d9c7b6b
@dearblue dearblue mentioned this pull request Nov 20, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@dearblue @matz