Fix for out-of-bound accessing last free block in EXTENSIVE defragmentation algorithm.

adam-sawicki-a · adam-sawicki-a · commit 35e15391613d · 2022-03-28T13:19:34.000+02:00
Code by @medranSolus See #232
diff --git a/include/vk_mem_alloc.h b/include/vk_mem_alloc.h
@@ -13289,7 +13289,7 @@ VkResult VmaDefragmentationContext_T::DefragmentPassEnd(VmaDefragmentationPassMo
                                 VMA_SWAP(vector->m_Blocks[i], vector->m_Blocks[vector->GetBlockCount() - ++m_ImmovableBlockCount]);
                                 if (state.firstFreeBlock != SIZE_MAX)
                                 {
-                                    if (i < state.firstFreeBlock - 1)
+                                    if (i + 1 < state.firstFreeBlock)
                                     {
                                         if (state.firstFreeBlock > 1)
                                             VMA_SWAP(vector->m_Blocks[i], vector->m_Blocks[--state.firstFreeBlock]);
@@ -13709,6 +13709,13 @@ bool VmaDefragmentationContext_T::ComputeDefragmentation_Extensive(VmaBlockVecto
     case StateExtensive::Operation::FindFreeBlockTexture:
     case StateExtensive::Operation::FindFreeBlockAll:
     {
+        // No more blocks to free, just perform fast realloc and move to cleanup
+        if (vectorState.firstFreeBlock == 0)
+        {
+            vectorState.operation = StateExtensive::Operation::Cleanup;
+            return ComputeDefragmentation_Fast(vector);
+        }
+
         // No free blocks, have to clear last one
         size_t last = (vectorState.firstFreeBlock == SIZE_MAX ? vector.GetBlockCount() : vectorState.firstFreeBlock) - 1;
         VmaBlockMetadata* freeMetadata = vector.GetBlock(last)->m_pMetadata;
@@ -13777,8 +13784,7 @@ bool VmaDefragmentationContext_T::ComputeDefragmentation_Extensive(VmaBlockVecto
             }
             vectorState.firstFreeBlock = last;
             // Nothing done, block found without reallocations, can perform another reallocs in same pass
-            if (prevMoveCount == m_Moves.size())
-                return ComputeDefragmentation_Extensive(vector, index);
+            return ComputeDefragmentation_Extensive(vector, index);
         }
         break;
     }

Original file line number	Diff line number	Diff line change
`@@ -13289,7 +13289,7 @@ VkResult VmaDefragmentationContext_T::DefragmentPassEnd(VmaDefragmentationPassMo`
`13289`	`13289`	`VMA_SWAP(vector->m_Blocks[i], vector->m_Blocks[vector->GetBlockCount() - ++m_ImmovableBlockCount]);`
`13290`	`13290`	`if (state.firstFreeBlock != SIZE_MAX)`
`13291`	`13291`	`{`
`13292`		`- if (i < state.firstFreeBlock - 1)`
	`13292`	`+ if (i + 1 < state.firstFreeBlock)`
`13293`	`13293`	`{`
`13294`	`13294`	`if (state.firstFreeBlock > 1)`
`13295`	`13295`	`VMA_SWAP(vector->m_Blocks[i], vector->m_Blocks[--state.firstFreeBlock]);`
`@@ -13709,6 +13709,13 @@ bool VmaDefragmentationContext_T::ComputeDefragmentation_Extensive(VmaBlockVecto`
`13709`	`13709`	`case StateExtensive::Operation::FindFreeBlockTexture:`
`13710`	`13710`	`case StateExtensive::Operation::FindFreeBlockAll:`
`13711`	`13711`	`{`
	`13712`	`+ // No more blocks to free, just perform fast realloc and move to cleanup`
	`13713`	`+ if (vectorState.firstFreeBlock == 0)`
	`13714`	`+ {`
	`13715`	`+ vectorState.operation = StateExtensive::Operation::Cleanup;`
	`13716`	`+ return ComputeDefragmentation_Fast(vector);`
	`13717`	`+ }`
	`13718`	`+`
`13712`	`13719`	`// No free blocks, have to clear last one`
`13713`	`13720`	`size_t last = (vectorState.firstFreeBlock == SIZE_MAX ? vector.GetBlockCount() : vectorState.firstFreeBlock) - 1;`
`13714`	`13721`	`VmaBlockMetadata* freeMetadata = vector.GetBlock(last)->m_pMetadata;`
`@@ -13777,8 +13784,7 @@ bool VmaDefragmentationContext_T::ComputeDefragmentation_Extensive(VmaBlockVecto`
`13777`	`13784`	`}`
`13778`	`13785`	`vectorState.firstFreeBlock = last;`
`13779`	`13786`	`// Nothing done, block found without reallocations, can perform another reallocs in same pass`
`13780`		`- if (prevMoveCount == m_Moves.size())`
`13781`		`- return ComputeDefragmentation_Extensive(vector, index);`
	`13787`	`+ return ComputeDefragmentation_Extensive(vector, index);`
`13782`	`13788`	`}`
`13783`	`13789`	`break;`
`13784`	`13790`	`}`