Skip to content

Allocator fixes #872

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Grazfather wants to merge 5 commits into
base: main
Choose a base branch
from
Open

Allocator fixes #872

Grazfather wants to merge 5 commits into from
+1,067 −65

Conversation

@Grazfather
Copy link
Collaborator

@Grazfather Grazfather commented Jan 19, 2026
edited
Loading

While testing out @tact1m4n3 's wifi work in #861, I got suspicious that we were relying on an allocator that hadn't actually been properly vetted. I used Claude to write a bunch of tests.

These test cases passed!

I then noticed that we could initialize the heap with a size too small for the metadata. I changed init to return an error (API change).

Finally, with Claude I looked at how dbg_integrity_check works, and noticed some issues. Fixing that pointed to extra bugs which we fixed:

  • Chunk constants calculation
    • header_size now uses @offsetOf(Chunk, "prior_free") to account for padding and to not hardcode types.
    • min_size now uses @sizeOf(Chunk) so also account for potential padding, plus to not hardcode e.g. how many pointers a chunk contains.
    • alignment now uses @alignOf(Chunk) instead of @alignOf(Alloc), this was just straight up incorrect, but the alignment was probably the same.
  • do_alloc and do_resize:
    • Both functions had a bug where trailing trim could create a chunk smaller than min_size
    • Added check: our_new_size >= Chunk.min_size before trimming
    • Also changed < to <= in the trim chunk size check for correctness

@Grazfather
Allocator: Add unit tests
eb235c8
@Grazfather
Make init potentially return an error
f176714
@Grazfather
Allocator: Fix bugs
7543628 
1. Improve `dbg_integrity_check`:
- Add mutex protection
- Fix boundary check: != instead of >
- Add zero-size chunk check (prevents infinite loop)
- Add minimum chunk size check
- Add alignment checks for addresses and sizes
- Add free list doubly-linked list integrity check
- Add free list correct binning check
- Fix misleading error message

2. Cleanup `Chunk` constants calculation
- header_size now uses `@offsetOf(Chunk, "prior_free")`
- min_size now uses `@sizeOf(Chunk)`
- alignment now uses `@alignOf(Chunk)` instead of `@alignOf(Alloc)`

3. Fix bug fixes in `do_alloc` and `do_resize`:
- Both functions had a bug where trailing trim could create a chunk smaller than min_size
- Added check: our_new_size >= Chunk.min_size before trimming
- Also changed < to <= in the trim chunk size check for correctness
@Grazfather
cleanup (mostly long lines)
ff67fab
@Grazfather
Update rpi example for new allocator api
d2f3be2
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Grazfather