JNI memory allocation

Mojomonkey · October 30, 2003, 4:53pm

When you call native methods via JNI and those methods allocate memory (say loads a sound stream using OpenAL) do they expend the JVM’s memory heap, or the underlying OS memory heap?

swpalmer · October 30, 2003, 5:47pm

OS Heap. Only java objects (not even the memory blocks used by NativeByteBuffers) are on the Java heap as far as I know.

rreyelts · October 30, 2003, 5:54pm

[quote]OS Heap. Only java objects (not even the memory blocks used by NativeByteBuffers) are on the Java heap as far as I know.
[/quote]
That’s right. NativeByteBuffers are often used to allocate memory specifically because its outside of the JVMs own heap space.

God bless,
-Toby Reyelts

swpalmer · October 30, 2003, 10:08pm

Hmmm… this brings up an interesting security concern. Can an Applet allocate massive NativeByteBuffers and thus steal all the memory in a system - likely leading to a crash?
Things that make you go hmmmm…

rreyelts · October 30, 2003, 10:45pm

[quote]Hmmm… this brings up an interesting security concern. Can an Applet allocate massive NativeByteBuffers and thus steal all the memory in a system - likely leading to a crash?
Things that make you go hmmmm…
[/quote]
I’m not sure how that is any different than setting the max heap size parameter in your JNLP file to something huge and then eating up that memory.

God bless,
-Toby Reyelts

swpalmer · October 31, 2003, 2:41am

I suppose, but Web Start seems to be less restricted in general. The user is more aware that they are launching a program. Applets just happen. I guess ultimately it isn’t that much different.

Jeff · October 31, 2003, 4:31am

[quote]Hmmm… this brings up an interesting security concern. Can an Applet allocate massive NativeByteBuffers and thus steal all the memory in a system -.
[/quote]
Nope, because only native (called through JNI) code can create a Native Byte Buffer.

And native code may only be called by trusted Java code.

If you could create arbitrary native byte buffers from the java side that would constitute a COMPLETE break of security as you could touch any memory in the system you wanted to.

princec · October 31, 2003, 8:16am

I think he’s referring to a perfectly easy DOS attack:


ArrayList a = new ArrayList(100000);
for (;;) {
a.add(ByteBuffer.allocateDirect(1000000000));
}

That’ll just chew into swapspace into milliseconds and grind the system to a halt, before finally running out of memory. You could even catch the OutOfMemoryError and then sit in an infinite busy loop writing bytes into the memory as well just to make sure it kept swapping like crazy.

Of course that’s no more sophisticated than:


for (;;) {
new Thread() { public void run() { for (;;); } }.start();
}

which will rapidly consume all the available OS resources if it doesn’t run out of thread stack memory.

There is possibly a requirement highlighted here that the JVM has a security mechanism in place to prevent such DOS attacks by limiting the availability of some resources by default.

Cas

swpalmer · October 31, 2003, 7:24pm

[quote]Nope, because only native (called through JNI) code can create a Native Byte Buffer.
[/quote]
allocateDirect doesn’t work from an Applet?? Or does it just give you a non-direct buffer?

Jeff · October 31, 2003, 7:46pm

Sorry I was thinking of Native Direct Byte buffers, wher you control the memory mapping.

I dopn’t know if allocateDirect works from applets or not, actually. Its also unclear whether a DirectByte Buffer is native memory or not on any given platform. (See the “Direct v. Non-Direct” buffers part of the docs.)

In any event allocation is up to the VM. Its free to deny you the allocation if it thinks doing so will harm the system.

Jeff · October 31, 2003, 7:48pm