| blob | 7405f036e4a6c0aabdb0c696e1b51f9bbba467ee |
1 /*
2 * Extension to GENCGC which provides for pages of objects
3 * that are static in placement but subject to reclamation.
4 */
6 /*
7 * This software is part of the SBCL system. See the README file for
8 * more information.
9 *
10 * This software is derived from the CMU CL system, which was
11 * written at Carnegie Mellon University and released into the
12 * public domain. The software is in the public domain and is
13 * provided with absolutely no warranty. See the COPYING and CREDITS
14 * files for more information.
15 */
17 /*
18 * TODO:
19 * 1. Space accounting (GET-BYTES-CONSED etc)
20 * 2. Heuristic for auto-trigger. (Can't yet because no space accounting)
21 * Currently happens with regular GC trigger mechanism.
22 * 3. Specify space size on startup
23 */
25 // Work around a bug in some llvm/clang versions affecting the memcpy
26 // call in defrag_immobile_space:
27 //
28 // When compiled with _FORTIFY_SOURCE nonzero, as seems to be the
29 // default, memcpy is a macro that expands to
30 // __builtin_memcpy_chk(dst, source, size, __builtin_object_size(...)).
31 //
32 // Now usually if the compiler knows that it does not know
33 // __builtin_object_size for the source of the copy, the
34 // __builtin_memcpy_chk call becomes plain old memcpy. But in the
35 // buggy case, the compiler is convinced that it does know the
36 // size. This shows up clearly in the disassembly, where the library
37 // routine receives a source size that was erroneously determined to
38 // be a compile-time constant 0. Thus the assertion failure is that
39 // you are reading from a range with 0 bytes in it.
40 //
41 // Defining _FORTIFY_LEVEL 0 disables the above macro and thus works
42 // around the problem. Since it is unclear which clang versions are
43 // affected, only apply the workaround for the known-bad version.
44 #if (defined(__clang__) && (__clang_major__ == 6) && (__clang_minor__ == 0))
45 #define _FORTIFY_SOURCE 0
46 #endif
58 #include <stdlib.h>
59 #include <stdio.h>
61 #define WORDS_PER_PAGE ((int)IMMOBILE_CARD_BYTES/N_WORD_BYTES)
62 #define DOUBLEWORDS_PER_PAGE (WORDS_PER_PAGE/2)
64 // In case of problems while debugging, this is selectable.
65 #define DEFRAGMENT_FIXEDOBJ_SUBSPACE 1
67 #undef DEBUG
68 #undef VERIFY_PAGE_GENS
70 #ifdef DEBUG
71 # define dprintf(arg) fprintf arg
73 #else
74 # define dprintf(arg)
75 #endif
81 // Inclusive bounds on highest in-use pages per subspace.
84 // This table is for objects fixed in size, as opposed to variable-sized.
85 // (Immobile objects are naturally fixed in placement)
89 // Number of items enqueued; can exceed QCAPACITY on overflow.
90 // If overflowed, the queue is unusable until reset.
92 #define QCAPACITY (IMMOBILE_CARD_BYTES/sizeof(int))
94 #define gens attr.parts.gens_
96 // These are the high 2 bits of 'flags'
97 #define WRITE_PROTECT 0x80
98 #define WRITE_PROTECT_CLEARED 0x40
100 // Packing and unpacking attributes
101 // the low two flag bits are for write-protect status
102 #define MAKE_ATTR(spacing,size,flags) (((spacing)<<8)|((size)<<16)|flags)
103 #define OBJ_SPACING(attr) ((attr>>8) & 0xFF)
105 // Ignore the write-protect bits and the generations when comparing attributes
106 #define ATTRIBUTES_MATCH_P(page_attr,specified_attr) \
107 ((page_attr & 0xFFFF3F) == specified_attr)
108 #define SET_WP_FLAG(index,flag) \
109 fixedobj_pages[index].attr.parts.flags = (fixedobj_pages[index].attr.parts.flags & 0x3F) | flag
111 #define set_page_full(i) fixedobj_pages[i].free_index = IMMOBILE_CARD_BYTES
112 #define page_full_p(i) (fixedobj_pages[i].free_index >= (int)IMMOBILE_CARD_BYTES)
113 #define fixedobj_page_wp(i) (fixedobj_pages[i].attr.parts.flags & WRITE_PROTECT)
115 /// Variable-length pages:
117 // Array of inverted write-protect flags, 1 bit per page.
121 // Array of offsets backwards in double-lispwords from the page end
122 // to the lowest-addressed object touching the page. This offset can
123 // point to a hole, but we prefer that it not. If the offset is zero,
124 // the page has no object other than possibly a hole resulting
125 // from a freed object.
128 // Array of page generation masks
130 // Holes to be stuffed back into the managed free list.
131 lispobj varyobj_holes;
133 #define VARYOBJ_PAGE_GENS(x) varyobj_page_header_gens[x-FIRST_VARYOBJ_PAGE]
134 #define varyobj_page_touched(x) \
135 ((varyobj_page_touched_bits[(x-FIRST_VARYOBJ_PAGE)/32] >> (x&31)) & 1)
137 #ifdef VERIFY_PAGE_GENS
140 #endif
142 // Object header: generation byte --| |-- widetag
143 // v v
144 // 0xzzzzzzzz GGzzzzww
145 // arbitrary data -------- ---- length in words
146 //
147 // There is a hard constraint on NUM_GENERATIONS, which is currently 8.
148 // (0..5=normal, 6=pseudostatic, 7=scratch)
149 // It could be as high as 16 for 32-bit words (wherein scratch=gen15)
150 // or 32 for 64-bits words (wherein scratch=gen31).
151 // In each case, the VISITED flag bit weight would need to be modified.
152 // Shifting a 1 bit left by the contents of the generation byte
153 // must not overflow a register.
155 #ifdef LISP_FEATURE_LITTLE_ENDIAN
157 {
159 }
160 // Turn a grey node black.
162 {
165 }
166 #else
168 #endif
172 {
174 }
176 //// Variable-length utilities
178 /* Calculate the address where the first object touching this page starts. */
181 {
185 }
187 /* Return the generation mask for objects headers on 'page_index'
188 including at most one object that starts before the page but ends on
189 or after it.
190 If the scan start is within the page, i.e. less than DOUBLEWORDS_PER_PAGE
191 (note that the scan start is measured relative to the page end) then
192 we don't need to OR in the generation byte from an extra object,
193 as all headers on the page are accounted for in the page generation mask.
194 Also an empty page (where scan start is zero) avoids looking
195 at the next page's first object by accident via the same test. */
197 {
201 }
203 //// Fixed-length object allocator
205 /* Return the index of an immobile page that is probably not totally full,
206 starting with 'hint_page' and wrapping around.
207 'attributes' determine an eligible page.
208 *IMMOBILE-SPACE-FREE-POINTER* is updated to point beyond the found page
209 if it previously did not. */
212 {
219 // Speed of this could be improved by keeping a linked list of pages
220 // with any space available, headed by a field in the page struct.
221 // This is totally lock-free / wait-free though, so it's really not
222 // too shabby, because it never has to deal with a page-table mutex.
229 // Atomically assign MAX(old_free_pointer, new_free_pointer)
230 // into the free pointer.
234 actual_old =
236 old_free_pointer,
237 new_free_pointer);
241 }
243 }
246 // Try to avoid new objects on pages with any pseudo-static objects,
247 // because then touching the young object forces scanning the page,
248 // which is unfortunate if most things on it were untouched.
250 // instant win
255 }
256 }
262 }
264 // Unused, but possibly will be for some kind of collision-avoidance scheme
265 // on claiming of new free pages.
268 /* Beginning at page index *hint, attempt to find space
269 for an object on a page with page_attributes. Write its header word
270 and return a C (native) pointer. The start page MUST have the proper
271 characteristisc, but might be totally full.
273 Precondition: Lisp has established a pseudo-atomic section. */
275 /* There is a slightly different algorithm that would probably be faster
276 than what is currently implemented:
277 - hint should be the address of a word that you try to claim
278 as an object header; it moves from high-to-low instead of low-to-high.
279 It's easier to compute the page base than the last valid object start
280 if there are some wasted words at the end due to page size not being
281 a perfect multiple of object size.
282 - you do a CAS into that word, and either suceed or fail
283 - if you succeed, subtract the object spacing and compare
284 to the page's base address, which can be computed by
285 masking. if the next address is above or equal to the page start,
286 store it in the hint, otherwise mark the page full */
289 {
291 lispobj word;
307 // The value formerly in the header word was the offset to
308 // the next hole. Use it to update the freelist pointer.
309 // Just slam it in.
312 }
313 // If some other thread updated the free_index
314 // to a larger value, use that. (See example below)
317 }
320 page_attributes);
323 }
325 /*
326 Example: Conside the freelist initially pointing to word index 6
327 Threads A, and B, and C each want to claim index 6.
328 - Thread A wins and then is switched out immediately after the CAS.
329 - Thread B fails to claim cell 6, claims cell 12 instead.
330 - Thread C fails to claim a cell and is switched out immediately
331 after the CAS.
332 - Thread B writes the index of the next hole, cell 18 into the
333 page's freelist cell.
334 - Thread A wakes up and writes 12 into the freelist cell.
335 - Thread C wakes up sees 12 for next_offset. 12 is greater than 6,
336 so it sets its next probe location to 12.
337 It fails the fixnump(header) test.
338 - Thread C sees that next_offset is still 12,
339 so it skips by the page's object spacing instead, and will continue
340 to do so until hitting the end of the page.
341 */
343 //// The collector
346 {
347 low_page_index_t page;
351 // Find the high water marks for this GC scavenge phase
352 // [avoid passing exactly IMMOBILE_SPACE_END, which has no page index]
361 // Unprotect the in-use ranges. Any page could be written during scavenge
364 OS_VM_PROT_ALL);
366 // varyobj_free_ptr is typically not page-aligned - only by random chance
367 // might it be. Additionally we need a page beyond that for the re-scan queue.
371 OS_VM_PROT_ALL);
372 }
375 // any page whose free index changed contains nursery objects
379 #ifdef VERIFY_PAGE_GENS
381 #endif
382 }
383 #ifdef VERIFY_PAGE_GENS
385 #endif
386 }
388 /* Turn a white object grey. Also enqueue the object for re-scan if required */
389 void
391 {
403 }
404 // If called from preserve_pointer(), then we haven't scanned immobile
405 // roots yet, so we only need ensure that this object's page's WP bit
406 // is cleared so that the page is not skipped during root scan.
412 else
414 }
416 }
418 // Do nothing if either we don't need to look for pointers in this object,
419 // or the work queue has already overflowed, causing a full scan.
422 // count is either less than or equal to QCAPACITY.
423 // If equal, just bump the count to signify overflow.
428 }
430 }
432 /* If 'addr' points to an immobile object, then make the object
433 live by promotion. But if the object is not in the generation
434 being collected, do nothing */
436 {
446 // Restrict addr to lie below IMMOBILE_SPACE_FREE_POINTER.
447 // This way, if the gens byte is nonzero but there is
448 // a final array acting as filler on the remainder of the
449 // final page, we won't accidentally find that.
455 /* gc_search_space can return filler objects, unlike
456 * search_immobile_space which can not */
471 }
478 else
480 }
481 #undef GEN_MATCH
482 }
484 // Loop over the newly-live objects, scavenging them for pointers.
485 // As with the ordinary gencgc algorithm, this uses almost no stack.
487 {
488 page_index_t page;
491 // Fixed-size object pages.
495 // Skip amount within the loop is in bytes.
498 // Use an inclusive, not exclusive, limit. On pages with dense packing
499 // (i.e. non-LAYOUT), if the object size does not evenly divide the page
500 // size, it is wrong to examine memory at an address which could be
501 // an object start, but for the fact that it runs off the page boundary.
502 // On the other hand, unused words hold 0, so it's kind of ok to read them.
510 }
511 }
512 }
514 // Variable-size object pages
518 // Find the next page with anything in newspace.
533 }
534 }
536 // Bail out if exact absolute end of immobile space was reached.
538 // If 'page' should be scanned, then pick up where we left off,
539 // without recomputing 'obj' but setting a higher 'limit'.
541 }
542 }
544 /// Repeatedly scavenge immobile newspace work queue until we find no more
545 /// reachable objects within. (They might be in dynamic space though).
546 /// If queue overflow already happened, then a worst-case full scan is needed.
547 /// If it didn't, we try to drain the queue, hoping that overflow does
548 /// not happen while doing so.
549 /// The approach taken is more subtle than just dequeuing each item,
550 /// scavenging, and letting the outer 'while' loop take over.
551 /// That would be ok, but could cause more full scans than necessary.
552 /// Instead, since each entry in the queue is useful information
553 /// in the non-overflow condition, perform all the work indicated thereby,
554 /// rather than considering the queue discardable as soon as overflow happens.
555 /// Essentially we just have to capture the valid span of enqueued items,
556 /// because the queue state is inconsistent when 'count' exceeds 'capacity'.
558 {
568 // The termination condition can't be expressed as an inequality,
569 // since the indices might be reversed due to wraparound.
570 // To express as equality entails forcing at least one iteration
571 // since the ending index might be the starting index.
575 // Only decrement the count if overflow did not happen.
576 // The first iteration of this loop will decrement for sure,
577 // but subsequent iterations might not.
584 }
586 }
587 }
588 }
590 // Return a page >= page_index having potential old->young pointers,
591 // or -1 if there isn't one.
595 {
599 // Look only at bits of equal or greater weight than bit_index.
610 }
611 }
614 }
615 }
617 void
619 {
620 // example: scavenging gens 2..6, the mask of root gens is #b1111100
623 low_page_index_t page;
632 // Immobile space can only contain objects with a header word,
633 // no conses, so any fixnum where a header could be is not a live
634 // object.
640 }
642 }
644 // Variable-length object pages
660 }
661 }
667 }
669 }
672 #define LAYOUT_SIZE (sizeof (struct layout)/N_WORD_BYTES)
673 /// First 5 layouts: T, FUNCTION, STRUCTURE-OBJECT, LAYOUT, PACKAGE
674 /// (These #defines ought to be emitted by genesis)
675 #define LAYOUT_OF_LAYOUT ((IMMOBILE_SPACE_START+3*LAYOUT_ALIGN)|INSTANCE_POINTER_LOWTAG)
676 #define LAYOUT_OF_PACKAGE ((IMMOBILE_SPACE_START+4*LAYOUT_ALIGN)|INSTANCE_POINTER_LOWTAG)
678 // As long as Lisp doesn't have any native allocators (vops and whatnot)
679 // it doesn't need to access these values.
682 // For the three different page characteristics that we need,
683 // claim a page that works for those characteristics.
685 {
686 // The allocator doesn't check whether each 'hint' points to an
687 // expected kind of page, so we have to ensure up front that
688 // allocations start on different pages. i.e. You can point to
689 // a totally full page, but you can't point to a wrong page.
690 // It doesn't work to just assign these to consecutive integers
691 // without also updating the page attributes.
693 // Object sizes must be multiples of 2 because the n_words value we pass
694 // to scavenge() is gotten from the page attributes, and scavenge asserts
695 // that the ending address is aligned to a doubleword boundary as expected.
697 // For 32-bit immobile space, LAYOUTs must be 256-byte-aligned so that the
698 // low byte of a pointer contains no information, and a layout pointer can
699 // be stored in the high 3 bytes point of an instance header.
700 // instance-length can be recovered from the layout, and need not be stored
701 // in each instance. Representation change in rev 092af9c078c made
702 // things more difficult, but not impossible.
712 }
715 {
724 // Now find contiguous ranges of pages that are protectable,
725 // minimizing the number of system calls as much as possible.
731 }
737 }
738 }
739 #define varyobj_page_wp(x) !varyobj_page_touched(x)
744 }
750 }
751 }
752 #undef varyobj_page_wp
753 }
755 // Scan range between start and end (exclusive) for old-to-young pointers.
756 // 'keep_gen' is the value of the generation byte of objects that were
757 // candidates to become garbage, but remain live after this gc.
758 // It will necessarily have the VISITED flag on.
759 // 'new_gen' is the generation number that those objects will have
760 // after collection, which is either the same generation or one higher,
761 // depending on the 'raise' flag for this GC cycle.
762 static int
765 {
766 #ifdef DEBUG
768 #endif
779 // Processing the code-entry-points slot of a code component
780 // requires the general variant of immobile_obj_gen_bits
781 // because the pointed-to object is a simple-fun.
785 }
788 }
789 }
792 }
794 // Scan a fixed-size object for old-to-young pointers.
795 // Since fixed-size objects are boxed and on known boundaries,
796 // we never start in the middle of random bytes, so the answer is exact.
800 {
803 lispobj lbitmap;
807 // the seemingly silly use of an array is because points_to_younger_p()
808 // expects to get address ranges, not individual objects
827 }
828 // FALLTHROUGH_INTENDED
829 }
831 }
833 static boolean
835 os_vm_address_t page_begin,
837 {
849 })
860 }
861 // Fallthrough: scan words from begin to end
867 }
869 /// The next two functions are analogous to 'update_page_write_prot()'
870 /// but they differ in that they are "precise" - random code bytes that look
871 /// like pointers are not accidentally treated as pointers.
873 // If 'page' does not contain any objects that points to an object
874 // younger than themselves, then return true.
875 // This is called on pages that do not themselves contain objects of
876 // the generation being collected, but might contain pointers
877 // to younger generations, which we detect by a cleared WP status bit.
878 // The bit is cleared on any write, though, even of a non-pointer,
879 // so this unfortunately has to be tested much more often than we'd like.
881 {
893 }
895 // To scan _only_ 'page' is impossible in general, but we can act like only
896 // one page was scanned by backing up to the first object whose end is on
897 // or after it, and then restricting points_to_younger within the boundaries.
898 // Doing it this way is probably much better than conservatively assuming
899 // that any word satisfying is_lisp_pointer() is a pointer.
901 {
914 }
916 }
918 /*
919 Sweep immobile space by zeroing the memory of trashed objects
920 and linking them into the freelist.
922 Possible improvements:
923 - If an entire page becomes nothing but holes, we could bzero it
924 instead of object-at-a-time clearing. But it's not known to be
925 so until after the sweep, so it would entail two passes per page,
926 one to mark holes and one to zero them.
927 - And perhaps bzero could be used on ranges of holes, because
928 in that case each hole's pointer to the next hole is zero as well.
929 */
931 #define SETUP_GENS() \
933 int relevant_genmask = (1 << from_space) | (1 << new_space); \
935 int keep_gen = IMMOBILE_OBJ_VISITED_FLAG | new_space; \
937 int discard_gen = from_space; \
939 generation_index_t new_gen = from_space + (raise!=0)
941 // The new value of the page generation mask is computed as follows:
942 // If 'raise' = 1 then:
943 // Nothing resides in 'from_space', and 'from_space+1' gains new objects
944 // if and only if any objects on the page were retained.
945 // If 'raise' = 0 then:
946 // Nothing resides in the scratch generation, and 'from_space'
947 // has objects if and only if any objects were retained.
948 #define COMPUTE_NEW_MASK(var, old) \
949 int var = old & ~(1<<from_space); \
950 if ( raise ) \
951 var |= 1<<(from_space+1) & any_kept; \
952 else \
953 var = (var & ~(1<<new_space)) | (1<<from_space & any_kept)
955 static void
957 {
960 // This will be needed for space accounting.
961 // threads might fail to consume all the space on a page.
962 // By storing in the page table the count of holes that really existed
963 // at the start of the prior GC, and subtracting from that the number
964 // that exist now, we know how much usable space was obtained (per page).
970 low_page_index_t page;
972 // On pages that won't need manipulation of the freelist,
973 // we try to do less work than for pages that need it.
975 // Scan for old->young pointers, and WP if there are none.
981 }
991 // wp_it is 1 if we should try to write-protect it now.
992 // If already write-protected, skip the tests.
997 trash_it:
998 // re-link it into the new freelist
1000 // store the displacement from the end of the object
1001 // at prev_hole to the start of this object.
1004 // record the byte offset to that hole
1007 n_holes ++;
1014 #ifdef DEBUG
1017 #endif
1022 }
1034 }
1038 }
1039 #ifdef DEBUG
1041 #endif
1043 }
1044 }
1048 // Scan for freshly trashed objects and turn them into filler.
1049 // Lisp is responsible for consuming the free space
1050 // when it next allocates a variable-size object.
1051 static void
1053 {
1057 low_page_index_t page;
1061 // Scan for old->young pointers, and WP if there are none.
1067 }
1072 // wp_it is 1 if we should try to write-protect it now.
1073 // If already write-protected, skip the tests.
1079 // An object whose tail is on this page, or which spans this page,
1080 // would have been promoted/kept while dealing with the page with
1081 // the object header. Therefore we don't need to consider that object,
1082 // * except * that we do need to consider whether it is an old object
1083 // pointing to a young object.
1085 // and the object starting before this page is strictly older
1086 // than the generation that we're moving retained objects into
1088 // and it contains an old->young pointer
1093 }
1094 // We MUST skip this object in the sweep, because in the case of
1095 // non-promotion (raise=0), we could see an object in from_space
1096 // and believe it to be dead.
1098 // obj can't hop over this page. If it did, there would be no
1099 // headers on the page, and genmask would have been zero.
1101 }
1115 }
1118 #ifdef DEBUG
1122 #endif
1129 }
1134 }
1135 #ifdef DEBUG
1137 #endif
1138 }
1141 {
1143 // find the highest page in use
1148 immobile_fixedobj_free_pointer =
1156 }
1158 // TODO: (Maybe this won't work. Not sure yet.) rather than use the
1159 // same 'raise' concept as in gencgc, each immobile object can store bits
1160 // indicating whether it has survived any GC at its current generation.
1161 // If it has, then it gets promoted next time, rather than all or nothing
1162 // being promoted from the generation getting collected.
1163 void
1165 {
1170 }
1173 {
1174 #ifdef DEBUG
1176 #endif
1189 // The conservative value for 'touched' is 1.
1193 }
1195 /* Because the immobile page table is not dumped into a core image,
1196 we have to reverse-engineer the characteristics of each page,
1197 which means figuring out what the object spacing should be.
1198 This is not difficult, but is a bit of a kludge */
1202 {
1206 else
1208 }
1210 // Signify that scan_start is initially not reliable
1213 // Set the characteristics of each used page at image startup time.
1215 {
1217 uword_t address;
1238 }
1239 }
1240 }
1246 // coreparse() already set immobile_space_free_pointer
1254 // Holes were chained through the debug_info slot at save.
1255 // Just update the head of the chain.
1258 }
1261 // Only the page with this object header gets a bit in its gen mask.
1263 // For each page touched by this object, set the page's
1264 // scan_start_offset, unless it was already set.
1271 }
1272 }
1273 }
1274 // Write a padding object if necessary
1283 }
1284 // Write-protect the pages occupied by the core file.
1285 // (There can be no inter-generation pointers.)
1290 }
1297 }
1300 }
1302 // Demote pseudo-static to highest normal generation
1303 // so that all objects become eligible for collection.
1305 {
1310 // The list of holes need not be saved.
1325 }
1328 }
1329 }
1336 }
1343 }
1344 }
1345 }
1349 // Now once again promote all objects to pseudo-static just prior to save.
1350 // 'coreparse' makes all pages in regular dynamic space pseudo-static.
1351 // But since immobile objects store their generation, it must be done at save,
1352 // or else it would have to be done on image restart
1353 // which would require writing to a lot of pages for no reason.
1355 {
1356 // Don't use the page attributes now - defrag doesn't update them.
1363 }
1372 // 0-fill the unused space.
1378 }
1380 // It's better to wait to defrag until after the binding stack is undone,
1381 // because we explicitly don't fixup code refs from stacks.
1382 // i.e. if there *were* something on the binding stack that cared that code
1383 // moved, it would be wrong. This way we can be sure we don't care.
1385 // Assert that defrag will not move the init_function
1390 }
1393 }
1394 }
1396 //// Interface
1399 {
1406 // The free pointer can move up or down. Attempting to insist that a WP
1407 // fault not occur above the free pointer (plus some slack) is not
1408 // threadsafe, so allow it anywhere. More strictness could be imparted
1409 // by tracking the max value attained by the free pointer.
1413 // FIXME: a single bitmap of touched bits would make more sense,
1414 // and the _CLEARED flag doesn't achieve much if anything.
1419 }
1421 }
1423 // Find the object that encloses pointer.
1424 lispobj *
1426 {
1438 }
1451 }
1452 }
1453 }
1455 }
1457 // For coalescing holes, we need to scan backwards, which is done by
1458 // looking backwards for a page that contains the start of a
1459 // block of objects one of which must abut 'obj'.
1461 {
1473 }
1474 }
1475 }
1479 }
1481 }
1482 }
1487 {
1489 // If INSTANCE_DATA_START is 0, subtract 1 word for the header.
1490 // If 1, subtract 2 words: 1 for the header and 1 for the layout.
1497 #ifdef LISP_FEATURE_COMPACT_INSTANCE_HEADER
1499 #endif
1502 #ifndef LISP_FEATURE_COMPACT_INSTANCE_HEADER
1504 #endif
1508 // Possible efficiency win: make the "wasted" bytes after the layout into a
1509 // simple unboxed array so that heap-walking can skip in one step.
1510 // Probably only a performance issue for MAP-ALLOCATED-OBJECTS,
1511 // since scavenging know to skip by the object alignment anyway.
1513 }
1517 {
1518 // While there are different "kinds" of symbols in the defragmentation
1519 // logic, we don't distinguish them when allocating,
1520 // on the theory that contiguous allocations are preferable anyway.
1533 }
1537 {
1548 }
1550 #if defined(LISP_FEATURE_IMMOBILE_CODE) && defined(LISP_FEATURE_COMPACT_INSTANCE_HEADER)
1554 {
1555 // GFs have no C header file to represent the layout, which is 6 words:
1556 // header, entry-point, fin-function, slots, raw data (x2)
1561 // 5 payload words following the header
1563 // KLUDGE: same page attributes as symbols,
1564 // so use the same hint.
1569 }
1570 #endif
1572 #ifdef LISP_FEATURE_IMMOBILE_CODE
1573 //// Defragmentation
1580 // Given an adddress in the target core, return the equivalent
1581 // physical address to read or write during defragmentation
1583 {
1594 }
1595 }
1597 /* Search for an object during defragmentation */
1599 {
1617 }
1618 }
1621 }
1624 {
1630 }
1631 }
1634 {
1635 // closure tramp and fin tramp don't have a simple-fun header.
1636 // Do not examine the word where the header would be,
1637 // since it could confuse adjust_words() by having a bit pattern
1638 // resembling a FP. (It doesn't, but better safe than sorry)
1643 }
1645 /// Fixup the fdefn at 'where' based on it moving by 'displacement'.
1646 /// 'fdefn_old' is needed for computing the pre-fixup callee if the
1647 /// architecture uses a call-relative instruction.
1650 {
1653 // Get the tagged object referred to by the fdefn_raw_addr.
1655 // If it's the undefined function trampoline, or the referent
1656 // did not move, then the callee_adjust stays 0.
1657 // Otherwise we adjust the rel32 field by the change in callee address.
1661 }
1662 #ifdef LISP_FEATURE_X86_64
1664 #else
1666 #endif
1667 }
1669 /* Fix the layout of OBJ, and return the layout's address in tempspace.
1670 * If compact headers, store the layout back into the object.
1671 * If non-compact headers, DO NOT store the layout back into the object,
1672 * because that will be done when instance_scan() touches all slots.
1673 * If it were wrongly done now, then the following (real example) happens:
1674 * instance @ 0x1000000000 has layout pointer 0x203cb483.
1675 * layout @ 0x203cb483 forwards to 0x2030c483.
1676 * object _currently_ at 0x2030c480 (NOT a layout) forwards to 0x203c39cf.
1677 * so the instance winds up with a non-layout in its layout after
1678 * instance_scan() forwards that slot "again". */
1680 {
1681 // This works on instances, funcallable instances (and/or closures)
1682 // but the latter only if the layout is in the header word.
1683 #ifdef LISP_FEATURE_COMPACT_INSTANCE_HEADER
1687 #else
1689 #endif
1694 #ifdef LISP_FEATURE_COMPACT_INSTANCE_HEADER
1696 #endif
1697 }
1702 }
1705 {
1708 else
1710 }
1712 /// It's tricky to try to use the scavtab[] functions for fixing up moved
1713 /// objects, because scavenger functions might invoke transport functions.
1714 /// The best approach is to do an explicit switch over all object types.
1717 {
1719 lispobj header_word;
1732 }
1740 #ifdef LISP_FEATURE_COMPACT_INSTANCE_HEADER
1742 #endif
1750 // Fixup the constant pool.
1752 // Fixup all embedded simple-funs
1757 });
1763 // FALLTHROUGH_INTENDED
1764 #ifndef LISP_FEATURE_COMPACT_INSTANCE_HEADER
1766 #endif
1767 // skip the trampoline word at where[1]
1772 // If fixed-size objects (hence FDEFNs) are movable, then fixing the
1773 // raw address can not be done here, because it is impossible to compute
1774 // the absolute jump target - we don't know what the fdefn's original
1775 // address was to compute a pc-relative address. So we do those while
1776 // permuting the FDEFNs. But because static fdefns do not move,
1777 // we do process their raw address slot here.
1778 #if DEFRAGMENT_FIXEDOBJ_SUBSPACE
1780 #endif
1784 // Special case because we might need to mark hashtables
1785 // as needing rehash.
1800 }
1801 }
1805 }
1808 // FALLTHROUGH_INTENDED
1809 }
1810 // All the other array header widetags.
1812 #ifdef COMPLEX_CHARACTER_STRING_WIDETAG
1814 #endif
1820 // And the other entirely boxed objects.
1826 // Use the sizing functions for generality.
1827 // Symbols can contain strange header bytes,
1828 // and vectors might have a padding word, etc.
1831 }
1833 }
1834 }
1840 {
1844 }
1846 // Take and return an untagged pointer, or 0 if the object did not survive GC.
1848 {
1853 }
1855 // This does not accept (SIMPLE-ARRAY NIL (*))
1856 // (You'd have a pretty bad time trying making a symbol like that)
1858 {
1859 #ifdef LISP_FEATURE_SB_UNICODE
1862 #endif
1864 }
1867 #define N_SYMBOL_KINDS 4
1869 // Return an integer 0..3 telling which block of symbols to relocate 'sym' into.
1870 // This is the same as the "symbol kind" in the allocator.
1871 // 0 = uninterned, 1 = keyword, 2 = other interned, 3 = special var
1873 {
1887 }
1890 {
1891 // For technical reasons, objects on the first few pages created by genesis
1892 // must never move at all. So figure out where the end of that subspace is.
1898 }
1899 // Now find a page that does NOT have a package.
1905 }
1908 {
1909 // Find the starting address of fixed-size objects that will undergo defrag.
1910 // Never move the first few pages of LAYOUTs or PACKAGEs created by genesis.
1911 // If codegen becomes smarter, things like layout of FUNCTION and some
1912 // some others can be used as immediate constants in compiled code.
1913 // With initial packages, it's mainly a debugging convenience that they not move.
1919 // Count the number of symbols, fdefns, and layouts that will be relocated
1924 #if DEFRAGMENT_FIXEDOBJ_SUBSPACE
1935 else
1937 }
1938 }
1939 }
1940 }
1943 // Calculate space needed for fixedobj pages after defrag.
1944 // page order is: layouts, fdefns, GFs, symbols
1950 #if !(defined(LISP_FEATURE_IMMOBILE_CODE) && defined(LISP_FEATURE_COMPACT_INSTANCE_HEADER))
1952 #endif
1965 // Copy the first few pages (the permanent pages) from immobile space
1966 // into the temporary copy, so that tempspace_addr()
1967 // does not have to return the unadjusted addr if below defrag_base.
1970 #endif
1972 // Compute where each code component will be moved to.
1980 // FIXME: generalize
1986 }
1988 }
1997 n_code_components);
1999 // Permute varyobj space into tempspace and deposit forwarding pointers.
2000 lispobj new_vaddr;
2012 FUN_POINTER_LOWTAG));
2013 });
2015 }
2018 OTHER_POINTER_LOWTAG));
2019 }
2020 }
2022 #if DEFRAGMENT_FIXEDOBJ_SUBSPACE
2023 // Permute fixed-sized object pages and deposit forwarding pointers.
2054 }
2057 #define ALIGN_MASK (IMMOBILE_CARD_BYTES - 1)
2061 #undef ALIGN_MASK
2065 }
2066 }
2067 #ifdef LISP_FEATURE_X86_64
2068 // Fixup JMP offset in fdefns, and self pointers in funcallable instances.
2069 // The former can not be done in the same pass as space permutation,
2070 // because we don't know the order in which a generic function and its
2071 // related fdefn will be reached. Were this attempted in a single pass,
2072 // it could miss a GF that will be moved after the fdefn is moved.
2073 // And it can't be done in fixup_space() because that does not know the
2074 // original address of each fdefn, so can't compute the absolute callee.
2088 // Fix displacement in JMP or CALL instruction.
2096 }
2097 }
2098 }
2102 #ifdef LISP_FEATURE_X86_64
2103 // Fix displacements in JMP and CALL instructions in code objects.
2104 // There are 2 arrays in use:
2105 // - the relocs[] array contains the address of any machine instruction
2106 // that needs to be altered on account of space relocation.
2107 // - the reloc_index[] array identifes the code component each reloc belongs to.
2108 // It is an array of pairs:
2109 // comp_ptr1, index1, comp_ptr2, index2 ... comp_ptrN, indexN, 0, index_max
2110 // The index following a component specifies the starting index within the
2111 // relocs[] array of the first reloc belonging to the respective component.
2112 // The ending reloc can be deduced from the next component's first reloc.
2115 lispobj load_addr;
2118 else
2128 // Both this code and the jumped-to code can move.
2129 // For this component, adjust by the displacement by (old - new).
2130 // If the jump target moved, also adjust by its (new - old).
2131 // The target address can point to one of:
2132 // - an FDEFN raw addr slot (fixedobj subspace)
2133 // - funcallable-instance with self-contained trampoline (ditto)
2134 // - a simple-fun that was statically linked (varyobj subspace)
2142 }
2143 // If the instruction to fix has moved, then adjust for
2144 // its new address, and perform the fixup in tempspace.
2145 // Otherwise perform the fixup where the instruction is now.
2150 }
2151 }
2152 #endif
2156 // Fix Lisp pointers in static, immobile, and dynamic spaces
2160 // Objects in immobile space are physically at 'tempspace',
2161 // but logically at their natural address. Perform fixups
2162 // at their current physical address.
2163 #if DEFRAGMENT_FIXEDOBJ_SUBSPACE
2166 #else
2169 #endif
2173 // Dynamic space
2174 // We can safely ignore allocation region boundaries.
2178 // Copy the spaces back where they belong.
2180 // Fixed-size objects: don't copy below the defrag_base - the first few
2181 // pages are totally static in regard to both lifetime and placement.
2182 // (It would "work" to copy them back - since they were copied into
2183 // the temp space, but it's just wasting time to do so)
2184 lispobj old_free_ptr;
2185 lispobj free_ptr;
2186 #if DEFRAGMENT_FIXEDOBJ_SUBSPACE
2191 // Zero-fill the unused remainder
2196 #endif
2198 // Variable-size object pages.
2201 // Zero-fill the unused remainder
2208 #if 0
2209 // It's easy to mess things up, so assert correctness before saving a core.
2213 #endif
2216 }
2217 #endif
2220 {
2221 low_page_index_t page;
2230 // Assert that there are no old->young pointers.
2232 // Never scan past the free pointer.
2233 // FIXME: It is is supposed to work to scan past the free pointer
2234 // on the last page, but the allocator needs to plop an array header there,
2235 // and sometimes it doesn't.
2244 }
2245 }
2246 }
2247 }
2249 // Fixup immediate values that encode Lisp object addresses
2250 // in immobile space.
2251 // TODO: remove the fixup_lispobj function; this doesn't generalize
2252 // as originally thought. coreparse has its own way of doing things.
2254 #ifdef LISP_FEATURE_X86_64
2257 {
2263 // For extra compactness, each loc is relative to the prior,
2264 // so that the magnitudes are smaller.
2276 // It's an absolute interior pointer to a symbol value slot
2277 // or an fdefn raw address slot.
2284 }
2286 /* Carefully avoid looking at assembler routines, which precede
2287 * all other code in immobile code space. As currently implemented,
2288 * defragmentation deposits a FP into the code header for those
2289 * routines, each "forwarding" to itself, since it won't move.
2290 * A dynamic space call is emitted as "MOV Rnn, {addr} ; CALL Rnn"
2291 * where #x{addr} is exactly 6 words beyond the header word
2292 * for the first routine, which happens to be ALLOC-TO-R11.
2293 * Dereferencing (ptr-offsetof(struct simple_fun, code)) for that
2294 * would see a forwarding pointer and try to assert that the called
2295 * object is a simple-fun. Don't do it!
2296 * If calling a second or later routine within an assembler component,
2297 * it doesn't even make sense to read the word at ptr-N because
2298 * the bits are random-ish. So even more emphatically don't do that. */
2302 // It must be the entrypoint to a static [sic] function.
2306 }
2307 }
2308 }
2309 }
2310 }
2311 #endif
2313 #ifdef VERIFY_PAGE_GENS
2315 {
2316 // Every page should have a 'gens' mask which exactly reflects
2317 // the aggregate over all objects on that page. Verify that invariant,
2318 // checking all pages, not just the ones below the free pointer.
2333 }
2342 }
2343 }
2344 // It's not wrong if the gen0 bit is set spuriously, but it should only
2345 // happen at most once, on the first GC after image startup.
2346 // At all other times, the invariant should hold that if the freelist
2347 // indicated that space was available, and the new pointer differs,
2348 // then some gen0 object exists on the page.
2349 // The converse is true because of pseudo-atomicity of the allocator:
2350 // if some thread claimed a hole, then it also updated the freelist.
2351 // If it died before doing the latter, then the object allegedly created
2352 // was never really live, so won't contain any pointers.
2359 }
2364 }
2366 }
2373 }
2375 // Find the largest item less than or equal.
2376 // (useful for finding the object that contains a given pointer)
2380 // If looking to the right would see an item strictly greater
2381 // than the sought key, or there is nothing to the right,
2382 // then deem this an exact match.
2385 }
2387 // Find the smallest item greater than or equal.
2388 // useful for finding the lowest item at or after a page base address.
2392 // If looking to the left would see an item strictly less
2393 // than the sought key, or there is nothing to the left
2394 // then deem this an exact match.
2397 }
2400 {
2401 // 1. Check that a linear scan sees only valid object headers,
2402 // and that it terminates exactly at IMMOBILE_CODE_FREE_POINTER.
2414 }
2417 // 2. Check that all scan_start_offsets are plausible.
2418 // Begin by collecting all object header locations into an array;
2428 }
2429 // Check that each page's scan start is a known immobile object
2430 // and that it is the right object.
2431 low_page_index_t page;
2441 //printf("page %d: found-below=%p stored=%p\n", page, scan_start_obj, stored_scan_start);
2444 // printf("skipping %d words to %p\n", nwords, scan_start_obj + nwords);
2446 // the stored scan start does not guarantee that it points
2447 // to a non-hole; we only assert that it *probably* does not.
2448 // As such, when computing the "correct" value, we allow
2449 // any value in between the legal bounding values for it.
2452 // If you hit the free pointer, or run off the page,
2453 // then the page is completely empty.
2458 }
2459 }
2460 }
2465 // the object below must touch this page.
2466 // if it didn't, there should be a higher object below.
2471 }
2472 }
2475 // 3. The generation mask for each page is exactly the union
2476 // of generation numbers of object headers on the page.
2483 // Skip the first object if it doesn't start on this page.
2496 }
2497 }
2499 }
2500 }
2501 #endif