Fix Appender extend #2076
Fix Appender extend #2076
Conversation
| @@ -2271,6 +2271,7 @@ struct Appender(A : T[], T) | |||
| { | |||
| size_t capacity; | |||
| Unqual!T[] arr; | |||
| bool ownsAllocation = false; //AKA "canExtend" | |||
There was a problem hiding this comment.
I think the issue is more that you cannot assume the original block starts at the given pointer. I would actually rename the flag "canExtend", because block ownership is not necessarily the condition we care about. Some future version may be able to figure out how to extend properly with a passed-in block.
There was a problem hiding this comment.
True. I'll switch it.
|
Other than the inline comments, the code looks good. |
Issues mostly addressed? Covering the bug is kind of difficult, while still keeping the test relevant. |
Yes, looks much better.
I would like to see a unit test that reliably fails on all platforms when the fix is not in place, and passes when it is not. I noticed you removed the very large memory test, which I agree should have been removed, but what about a more specific test like this:
This does not rely on seg fault, yet proves it is doing something incorrect. One possible dilemma with such a test is that you cannot be sure the original block would have been extended. You could do some GC work to make it so, basically allocate 2 pages, then release the upper page back to the GC. You may want to mark something like that as being very GC specific, but this bug is very GC specific anyway. Anyway, without this kind of test, I think the change is still good to go. But if you feel like adding it, that would be great. |
Even without segfaults, it is possible to observe certain issues, such as clobbering, and I covered that: The second unittest is a "barebone" version of what happened in 12428.
Another issue, is that Appender could (if it tracked that information), make an attempt to call At this point, the unittest wouldn't be checking the behavior of Appender anymore, but rather, covering implementation specific details. Furthermore, making assumptions on the GC will behave is very dangerous. For example, in my FYI: "I noticed you removed the very large memory test". Honestly, I had to go that high to reproduce a segfault, when initialy (in the original bug report), 61_000 + 5000 was enough. These things just aren't stable enough to be reliable. Example of bitrot I guess. So it's not that I don't feel like adding a new test, it's just that I feel all the relevant are already there, and anything more would not be correct/relevant. |
OK, fair enough. |
|
So, good to go? |
|
Good by me, anyone else? Again, I'm not sure if it's good procedure to simply merge something that only I have looked at. |
|
Looks good to me. |
|
Auto-merge toggled on |
|
Thanks for the review! |
Fixes the usage of "GC.extend" in Appender.
Long story short: Don't extend allocations you don't own: Even if it succeeds:
BlkAttr.APPENDABLE).Fixes 12428, as well as the snippet submitted in 9092.
This edit changes the indentation, so I suggest viewing the diff without whites:
https://github.com/D-Programming-Language/phobos/pull/2076/files?w=1