| blob | d1e214ac2ec2a3144f6400b5557a9fbecf278a73 |
1 /* Malloc implementation for multiple threads without lock contention.
2 Copyright (C) 2001-2023 Free Software Foundation, Inc.
3 This file is part of the GNU C Library.
5 The GNU C Library is free software; you can redistribute it and/or
6 modify it under the terms of the GNU Lesser General Public License as
7 published by the Free Software Foundation; either version 2.1 of the
8 License, or (at your option) any later version.
10 The GNU C Library is distributed in the hope that it will be useful,
11 but WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 Lesser General Public License for more details.
15 You should have received a copy of the GNU Lesser General Public
16 License along with the GNU C Library; see the file COPYING.LIB. If
17 not, see <https://www.gnu.org/licenses/>. */
19 #include <stdbool.h>
20 #include <setvmaname.h>
22 #define TUNABLE_NAMESPACE malloc
23 #include <elf/dl-tunables.h>
25 /* Compile-time constants. */
27 #define HEAP_MIN_SIZE (32 * 1024)
28 #ifndef HEAP_MAX_SIZE
29 # ifdef DEFAULT_MMAP_THRESHOLD_MAX
30 # define HEAP_MAX_SIZE (2 * DEFAULT_MMAP_THRESHOLD_MAX)
31 # else
33 # endif
34 #endif
36 /* HEAP_MIN_SIZE and HEAP_MAX_SIZE limit the size of mmap()ed heaps
37 that are dynamically created for multi-threaded programs. The
38 maximum size must be a power of two, for fast determination of
39 which heap belongs to a chunk. It should be much larger than the
40 mmap threshold, so that requests with a size just below that
41 threshold can be fulfilled without creating too many heaps. */
43 /* When huge pages are used to create new arenas, the maximum and minimum
44 size are based on the runtime defined huge page size. */
48 {
50 }
54 {
56 }
58 /***************************************************************************/
60 #define top(ar_ptr) ((ar_ptr)->top)
62 /* A heap is a single contiguous memory region holding (coalesceable)
63 malloc_chunks. It is allocated with mmap() and always starts at an
64 address aligned to HEAP_MAX_SIZE. */
67 {
72 PROT_READ|PROT_WRITE. */
74 /* Make sure the following data is properly aligned, particularly
75 that sizeof (heap_info) + 2 * SIZE_SZ is a multiple of
76 MALLOC_ALIGNMENT. */
80 /* Get a compile-time error if the heap_info padding is not correct
81 to make alignment work as expected in sYSMALLOc. */
86 /* Thread specific data. */
90 /* Arena free list. free_list_lock synchronizes access to the
91 free_list variable below, and the next_free and attached_threads
92 members of struct malloc_state objects. No other locks must be
93 acquired after free_list_lock has been acquired. */
96 #if IS_IN (libc)
98 #endif
101 /* list_lock prevents concurrent writes to the next member of struct
102 malloc_state objects.
104 Read access to the next member is supposed to synchronize with the
105 atomic_write_barrier and the write to the next member in
106 _int_new_arena. This suffers from data races; see the FIXME
107 comments in _int_new_arena and reused_arena.
109 list_lock also prevents concurrent forks. At the time list_lock is
110 acquired, no arena lock must have been acquired, but it is
111 permitted to acquire arena locks subsequently, while list_lock is
112 acquired. */
115 /* Already initialized? */
118 /**************************************************************************/
121 /* arena_get() acquires an arena and locks the corresponding mutex.
122 First, try the one last locked successfully by this thread. (This
123 is the common case and handled with a macro for speed.) Then, loop
124 once over the circularly linked list of arenas. If no arena is
125 readily available, create a new one. In this latter case, `size'
126 is just a hint as to how much memory will be required immediately
127 in the new arena. */
129 #define arena_get(ptr, size) do { \
130 ptr = thread_arena; \
131 arena_lock (ptr, size); \
132 } while (0)
134 #define arena_lock(ptr, size) do { \
135 if (ptr) \
136 __libc_lock_lock (ptr->mutex); \
137 else \
138 ptr = arena_get2 ((size), NULL); \
139 } while (0)
141 /* find the heap and corresponding arena for a given ptr */
145 {
148 }
152 {
154 }
157 /**************************************************************************/
159 /* atfork support. */
161 /* The following three functions are called around fork from a
162 multi-threaded process. We do not use the general fork handler
163 mechanism to make sure that our handlers are the last ones being
164 called, so that other fork handlers can use the malloc
165 subsystem. */
167 void
169 {
173 /* We do not acquire free_list_lock here because we completely
174 reconstruct free_list in __malloc_fork_unlock_child. */
179 {
184 }
185 }
187 void
189 {
194 {
199 }
201 }
203 void
205 {
209 /* Push all arenas to the free list, except thread_arena, which is
210 attached to the current thread. */
216 {
219 {
220 /* This arena is no longer attached to any thread. */
224 }
228 }
231 }
233 #define TUNABLE_CALLBACK_FNDECL(__name, __type) \
234 static inline int do_ ## __name (__type value); \
235 static void \
236 TUNABLE_CALLBACK (__name) (tunable_val_t *valp) \
237 { \
238 __type value = (__type) (valp)->numval; \
239 do_ ## __name (value); \
240 }
249 #if USE_TCACHE
253 #endif
257 #if USE_TCACHE
259 #endif
261 static void
263 {
269 #if USE_TCACHE
271 #endif
273 #ifdef USE_MTAG
275 {
276 /* If the tunable says that we should be using tagged memory
277 and that morecore does not support tagged regions, then
278 disable it. */
284 }
285 #endif
287 #if defined SHARED && IS_IN (libc)
288 /* In case this libc copy is in a non-default namespace, never use
289 brk. Likewise if dlopened from statically linked program. The
290 generic sbrk implementation also enforces this, but it is not
291 used on Hurd. */
294 #endif
307 # if USE_TCACHE
312 # endif
316 /* Force mmap for main arena instead of sbrk, so hugepages are explicitly
317 used. */
319 }
321 /* Managing heaps and arenas (for concurrent threads) */
323 #if MALLOC_DEBUG > 1
325 /* Print the complete contents of a single heap to stderr. */
327 static void
329 {
331 mchunkptr p;
339 {
342 {
345 }
347 {
350 }
353 }
354 }
357 /* If consecutive mmap (0, HEAP_MAX_SIZE << 1, ...) calls return decreasing
358 addresses as opposed to increasing, new_heap would badly fragment the
359 address space. In that case remember the second HEAP_MAX_SIZE part
360 aligned to HEAP_MAX_SIZE from last mmap (0, HEAP_MAX_SIZE << 1, ...)
361 call (if it is already aligned) and try to reuse it next time. We need
362 no locking for it, as kernel ensures the atomicity for us - worst case
363 we'll call mmap (addr, HEAP_MAX_SIZE, ...) for some value of addr in
364 multiple threads, but only one will succeed. */
367 /* Create a new heap. size is automatically rounded up to a multiple
368 of the page size. */
373 {
386 else
390 /* A memory region aligned to a multiple of max_size is needed.
391 No swap space needs to be reserved for the following large
392 mapping (on Linux, this is the case for all non-writable mappings
393 anyway). */
396 {
400 {
403 }
404 }
406 {
409 {
415 else
418 }
419 else
420 {
421 /* Try to take the chance that an allocation of only max_size
422 is already aligned. */
428 {
431 }
432 }
433 }
435 {
438 }
440 /* Only considere the actual usable range. */
451 }
455 {
457 {
462 }
464 }
466 /* Grow a heap. size is automatically rounded up to a
467 multiple of the page size. */
469 static int
471 {
482 {
489 }
494 }
496 /* Shrink a heap. */
498 static int
500 {
507 /* Try to re-map the extra heap space freshly to save memory, and make it
508 inaccessible. See malloc-sysdep.h to know when this is true. */
510 {
516 }
517 else
519 /*fprintf(stderr, "shrink %p %08lx\n", h, new_size);*/
524 }
526 /* Delete a heap. */
528 static int
530 {
537 /* Can this heap go away completely? */
539 {
543 /* fencepost must be properly aligned. */
563 {
566 }
572 /*check_chunk(ar_ptr, top_chunk);*/
573 }
575 /* Uses similar logic for per-thread arenas as the main arena with systrim
576 and _int_free by preserving the top pad and rounding down to the nearest
577 page. */
587 /* Release in pagesize units and round down to the nearest page. */
592 /* Try to shrink. */
598 /* Success. Adjust top accordingly. */
600 /*check_chunk(ar_ptr, top_chunk);*/
602 }
604 /* Create a new arena with initial size "size". */
606 #if IS_IN (libc)
607 /* If REPLACED_ARENA is not NULL, detach it from this thread. Must be
608 called while free_list_lock is held. */
609 static void
611 {
613 {
615 /* The current implementation only detaches from main_arena in
616 case of allocation failure. This means that it is likely not
617 beneficial to put the arena on free_list even if the
618 reference count reaches zero. */
620 }
621 }
623 static mstate
625 {
626 mstate a;
634 {
635 /* Maybe size is too large to fit in a single heap. So, just try
636 to create a minimally-sized arena and let _int_malloc() attempt
637 to deal with the large request via mmap_chunk(). */
641 }
645 /*a->next = NULL;*/
648 /* Set up the top chunk, with proper alignment. */
663 /* Add the new arena to the global list. */
665 /* FIXME: The barrier is an attempt to synchronize with read access
666 in reused_arena, which does not acquire list_lock while
667 traversing the list. */
677 /* Lock this arena. NB: Another thread may have been attached to
678 this arena because the arena is now accessible from the
679 main_arena.next list and could have been picked by reused_arena.
680 This can only happen for the last arena created (before the arena
681 limit is reached). At this point, some arena has to be attached
682 to two threads. We could acquire the arena lock before list_lock
683 to make it less likely that reused_arena picks this new arena,
684 but this could result in a deadlock with
685 __malloc_fork_lock_parent. */
690 }
693 /* Remove an arena from free_list. */
694 static mstate
696 {
700 {
704 {
707 /* The arena will be attached to this thread. */
712 }
716 {
720 }
721 }
724 }
726 /* Remove the arena from the free list (if it is present).
727 free_list_lock must have been acquired by the caller. */
728 static void
730 {
733 {
736 {
737 /* Remove the requested arena from the list. */
740 }
741 else
743 }
744 }
746 /* Lock and return an arena that can be reused for memory allocation.
747 Avoid AVOID_ARENA as we have already failed to allocate memory in
748 it and it is currently locked. */
749 static mstate
751 {
752 mstate result;
753 /* FIXME: Access to next_to_use suffers from data races. */
758 /* Iterate over all arenas (including those linked from
759 free_list). */
761 do
762 {
766 /* FIXME: This is a data race, see _int_new_arena. */
768 }
771 /* Avoid AVOID_ARENA as we have already failed to allocate memory
772 in that arena and it is currently locked. */
776 /* No arena available without contention. Wait for the next in line. */
780 out:
781 /* Attach the arena to the current thread. */
782 {
783 /* Update the arena thread attachment counters. */
788 /* We may have picked up an arena on the free list. We need to
789 preserve the invariant that no arena on the free list has a
790 positive attached_threads counter (otherwise,
791 arena_thread_freeres cannot use the counter to determine if the
792 arena needs to be put on the free list). We unconditionally
793 remove the selected arena from the free list. The caller of
794 reused_arena checked the free list and observed it to be empty,
795 so the list is very short. */
801 }
808 }
810 static mstate
812 {
813 mstate a;
819 {
820 /* Nothing immediately available, so generate a new arena. */
822 {
826 {
831 else
832 /* We have no information about the system. Assume two
833 cores. */
835 }
836 }
837 repeat:;
839 /* NB: the following depends on the fact that (size_t)0 - 1 is a
840 very large number and that the underflow is OK. If arena_max
841 is set the value of arena_test is irrelevant. If arena_test
842 is set but narenas is not yet larger or equal to arena_test
843 narenas_limit is 0. There is no possibility for narenas to
844 be too big for the test to always fail since there is not
845 enough address space to create that many arenas. */
847 {
853 }
854 else
856 }
858 }
860 /* If we don't have the main arena, then maybe the failure is due to running
861 out of mmapped areas, so we can try allocating on the main arena.
862 Otherwise, it is likely that sbrk() has failed and there is still a chance
863 to mmap(), so try one of the other arenas. */
864 static mstate
866 {
869 {
873 }
874 else
875 {
878 }
881 }
882 #endif
884 void
886 {
887 /* Shut down the thread cache first. This could deallocate data for
888 the thread arena, so do this before we put the arena on the free
889 list. */
896 {
898 /* If this was the last attached thread for this arena, put the
899 arena on the free list. */
902 {
905 }
907 }
908 }
910 /*
911 * Local variables:
912 * c-basic-offset: 2
913 * End:
914 */