| blob | 5de7b460b72e384eedb8c26371585b4b28384399 |
1 /*
2 * Garbage Collection common functions for scavenging, moving and sizing
3 * objects. These are for use with both GC (stop & copy GC) and GENCGC
4 */
6 /*
7 * This software is part of the SBCL system. See the README file for
8 * more information.
9 *
10 * This software is derived from the CMU CL system, which was
11 * written at Carnegie Mellon University and released into the
12 * public domain. The software is in the public domain and is
13 * provided with absolutely no warranty. See the COPYING and CREDITS
14 * files for more information.
15 */
17 /*
18 * For a review of garbage collection techniques (e.g. generational
19 * GC) and terminology (e.g. "scavenging") see Paul R. Wilson,
20 * "Uniprocessor Garbage Collection Techniques". As of 20000618, this
21 * had been accepted for _ACM Computing Surveys_ and was available
22 * as a PostScript preprint through
23 * <http://www.cs.utexas.edu/users/oops/papers.html>
24 * as
25 * <ftp://ftp.cs.utexas.edu/pub/garbage/bigsurv.ps>.
26 */
28 #include <stdio.h>
29 #include <signal.h>
30 #include <string.h>
46 #define WANT_SCAV_TRANS_SIZE_TABLES
52 #ifdef LISP_FEATURE_SPARC
53 #define LONG_FLOAT_SIZE 4
54 #elif defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64)
55 #define LONG_FLOAT_SIZE 3
56 #endif
68 /// These sizing macros return the number of *payload* words,
69 /// exclusive of the object header word. Payload length is always
70 /// an odd number so that total word count is an even number.
72 /* Each size category is designed to allow 1 bit for a GC mark bit,
73 * possibly some flag bits, and the payload length in words.
74 * There are three size categories for most non-vector objects,
75 * differing in how many flag bits versus size bits there are.
76 * The GC mark bit is always in bit index 31 of the header regardless of
77 * machine word size. Bit index 31 is chosen for consistency between 32-bit
78 * and 64-bit machines. It is a natural choice for 32-bit headers by avoiding
79 * intererence with other header fields. It is also chosen for 64-bit headers
80 * because the upper 32 bits of headers for some objects are already occupied
81 * by other data: symbol TLS index, instance layout, etc.
82 */
84 /* The largest payload count is expressed in 23 bits. These objects
85 * can't reside in immobile space as there is no room for generation bits.
86 * All sorts of objects fall into this category, but mostly due to inertia.
87 * There are no non-vector boxed objects whose size should be so large.
88 * Header: size | tag
89 * ----- ------
90 * 23 bits | 8 bits
91 */
92 #define BOXED_NWORDS(obj) ((HeaderValue(obj) & 0x7FFFFF) | 1)
94 /* Medium-sized payload count is expressed in 15 bits. Objects in this category
95 * may reside in immobile space: CODE, CLOSURE, INSTANCE, FUNCALLABLE-INSTANCE.
96 * The single data bit is used as a closure's NAMED flag.
97 *
98 * Header: gen# | data | size | tag
99 * ----- ----- ------- ------
100 * 8 bits | 1 bit | 15 bits | 8 bits
101 */
102 #define SHORT_BOXED_NWORDS(obj) ((HeaderValue(obj) & SHORT_HEADER_MAX_WORDS) | 1)
104 /* Tiny payload count is expressed in 8 bits. Objects in this size category
105 * can reside in immobile space: SYMBOL, FDEFN.
106 * Header: gen# | flags | size | tag
107 * ----- ------ ------ ------
108 * 8 bits 8 bits 8 bits | 8 bits
109 * FDEFN flag bits: 1 bit for statically-linked
110 * SYMBOL flag bits: 1 bit for present in initial core image
111 */
112 #define TINY_BOXED_NWORDS(obj) ((HeaderValue(obj) & 0xFF) | 1)
114 /*
115 * copying objects
116 */
118 /* gc_general_copy_object is inline from gc-internal.h */
120 /* to copy a boxed object */
121 lispobj
123 {
125 }
130 {
131 // GENCGC only:
132 // * With 32-bit words, is_lisp_pointer(object) returns true if object_ptr
133 // points to a forwarding pointer, so we need a sanity check inside the
134 // branch for is_lisp_pointer(). For maximum efficiency, check that only
135 // after from_space_p() returns false, so that valid pointers into
136 // from_space incur no extra test. This could be improved further by
137 // skipping the FP check if 'object' points within dynamic space, i.e.,
138 // when find_page_index() returns >= 0. That would entail injecting
139 // from_space_p() explicitly into the loop, so as to separate the
140 // "was a page found at all" condition from the page generation test.
142 // * With 64-bit words, is_lisp_pointer(object) is false when object_ptr
143 // points to a forwarding pointer, and the fixnump() test also returns
144 // false, so we'll indirect through scavtab[]. This will safely invoke
145 // scav_lose(), detecting corruption without any extra cost.
146 // The major difference between that and the explicit test is that you
147 // won't see 'start' and 'n_words', but if you need those, chances are
148 // you'll want to run under an external debugger in the first place.
149 // [And btw it sure would be nice to assert statically
150 // that is_lisp_pointer(0x01) is indeed false]
152 #define FIX_POINTER() { \
153 lispobj *ptr = native_pointer(object); \
154 if (forwarding_pointer_p(ptr)) \
155 *object_ptr = LOW_WORD(forwarding_pointer_value(ptr)); \
157 scav_ptr[(object>>(N_LOWTAG_BITS-2))&3](object_ptr, object); \
158 }
159 #ifdef LISP_FEATURE_IMMOBILE_SPACE
160 page_index_t page;
161 // It would be fine, though suboptimal, to use from_space_p() here.
162 // If it returns false, we don't want to call immobile_space_p()
163 // unless the pointer is *not* into dynamic space.
171 }
172 #else
176 #if (N_WORD_BITS == 32) && defined(LISP_FEATURE_GENCGC)
179 object_ptr);
180 #endif
181 /* It points somewhere other than oldspace. Leave it
182 * alone. */
183 }
184 #endif
185 }
188 {
195 }
197 // Scavenge a block of memory from 'start' to 'end'
198 // that may contain object headers.
200 {
206 /* It's some sort of header object or another. */
211 }
212 }
213 // This assertion is usually the one that fails when something
214 // is subtly wrong with the heap, so definitely always do it.
217 }
219 // Scavenge a block of memory from 'start' extending for 'n_words'
220 // that must not contain any object headers.
222 {
229 }
231 }
233 /* If 'fun' is provided, then call it on each livened object,
234 * otherwise use scav1() */
236 {
237 /* The binding stack consists of pairs of words, each holding a value and
238 * either a TLS index (if threads), or symbol (if no threads).
239 * Here we scavenge only the entries' values.
240 *
241 * Were the TLS index scavenged, it can never cause a symbol to move,
242 * let alone be considered live. So we are bug-for-bug compatible regardless
243 * of +/- sb-thread if a symbol would otherwise be garbage at this point.
244 * As a practical matter, it is technically impossible for a symbol's only
245 * reason for livenesss to be the binding stack. Nonetheless it is best to
246 * enforce behavioral consistency whether or not the platform has threads.
247 *
248 * Bindings of compile-time known symbols is fairly easy to reason about.
249 * Code headers point to symbols, therefore code objects retains symbols.
250 * The edge case of a PROGV binding of a freshly made symbol (via MAKE-SYMBOL)
251 * is interesting. Indeed we preserve the symbol because PROGV places a reference
252 * on the control stack, thereby either pinning or scavenging as the case may be.
253 * If it did not, we would need a map from TLS index to symbol, updated if
254 * a symbol moves, allowing death of a symbol only when no binding entry
255 * mentions that index. Such complication is unnecessary at present.
256 */
267 }
268 }
270 {
271 #ifndef LISP_FEATURE_SB_THREAD
281 }
282 }
283 #endif
284 }
289 static sword_t
291 {
294 /* Object is a pointer into from_space - not a FP. */
297 /* must transport object -- object may point to either a function
298 * header, a funcallable instance header, or a closure header. */
303 /* Set forwarding pointer */
305 }
312 }
317 {
318 /* if object has already been transported, just return pointer */
321 }
325 /* prepare to transport the code vector */
330 CODE_PAGE_FLAG);
332 #ifdef LISP_FEATURE_GENCGC
335 #endif
339 /* set forwarding pointers for all the function headers in the */
340 /* code object. also fix all self pointers */
341 /* Do this by scanning the new code, since the old header is unusable */
347 /* Calculate the old raw function pointer */
350 /* Calculate the new lispobj */
355 /* fix self pointer. */
357 #if defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64)
358 FUN_RAW_ADDR_OFFSET +
359 #endif
360 nfheaderl;
361 })
362 #ifdef LISP_FEATURE_GENCGC
363 /* Cheneygc doesn't need this os_flush_icache, it flushes the whole
364 spaces once when all copying is done. */
368 #endif
373 }
375 static sword_t
377 {
381 /* Scavenge the boxed section of the code data block. */
384 /* Scavenge the boxed section of each function object in the
385 * code data block. */
389 })
392 }
394 static lispobj
396 {
399 }
401 static sword_t
403 {
406 }
408 #ifdef RETURN_PC_WIDETAG
409 static sword_t
411 {
415 }
417 static lispobj
419 {
423 /* Transport the whole code object */
428 }
431 /* On the 386, closures hold a pointer to the raw address instead of the
432 * function object, so we can use CALL [$FDEFN+const] to invoke
433 * the function without loading it into a register. Given that code
434 * objects don't move, we don't need to update anything, but we do
435 * have to figure out that the function is still live. */
437 #if defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64)
438 static sword_t
440 {
445 #ifdef LISP_FEATURE_GENCGC
446 /* The function may have moved so update the raw address. But
447 * don't write unnecessarily. */
450 #endif
451 // Payload includes 'fun' which was just looked at, so subtract it.
454 }
455 #endif
457 #if !(defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64))
458 static sword_t
460 {
464 }
467 static lispobj
469 {
471 uword_t offset =
474 /* Transport the whole code object */
479 }
481 \f
482 /*
483 * instances
484 */
486 static lispobj
488 {
492 }
494 static sword_t
496 {
497 /* Object is a pointer into from space - not a FP. */
506 }
508 \f
509 /*
510 * lists and conses
511 */
515 static sword_t
517 {
527 }
530 static lispobj
532 {
533 /* Copy 'object'. */
538 /* Grab the cdr: set_forwarding_pointer will clobber it in GENCGC */
542 /* Try to linearize the list in the cdr direction to help reduce
543 * paging. */
549 }
550 /* Copy 'cdr'. */
554 /* Grab the cdr before it is clobbered. */
556 /* Set cdr of the predecessor, and store an FP. */
559 LIST_POINTER_LOWTAG));
562 }
565 }
567 \f
568 /*
569 * scavenging and transporting other pointers
570 */
572 static sword_t
574 {
577 /* Object is a pointer into from space - not FP. */
582 // If the object was large, then instead of transporting it,
583 // gencgc might simply promote the pages and return the same pointer.
584 // That decision is made in general_copy_large_object().
587 #ifdef LISP_FEATURE_GENCGC
589 #endif
590 }
591 #ifndef LISP_FEATURE_GENCGC
593 #endif
596 }
597 \f
598 /*
599 * immediate, boxed, and unboxed objects
600 */
602 /* The immediate object scavenger basically wants to be "scav_cons",
603 * and so returns 2. To see why it's right, observe that scavenge() will
604 * not invoke a scavtab entry on any object except for one satisfying
605 * is_lisp_pointer(). So if a scavtab[] function got here,
606 * then it must be via heap_scavenge(). But heap_scavenge() should only
607 * dispatch via scavtab[] if it thought it saw an object header.
608 * So why do we act like it saw a cons? Because conses can contain an
609 * immediate object that satisfies both other_immediate_lowtag_p()
610 * and is_lisp_immediate(), namely, the objects specifically mentioned at
611 * is_cons_half(). So heap_scavenge() is nearly testing is_cons_half()
612 * but even more efficiently, by ignoring the unusual immediate widetags
613 * until we get to scav_immediate.
614 *
615 * And just to hammer the point home: we won't blow past the end of a specific
616 * range of words when scavenging a binding or control stack or anything else,
617 * because scavenge() skips immediate objects all by itself,
618 * or rather it skips anything not satisfying is_lisp_pointer().
619 *
620 * As to the unbound marker, see rev. 09c78105eabc6bf2b339f421d4ed1df4678003db
621 * which says that we might see it in conses for reasons somewhat unknown.
622 */
623 static sword_t
625 {
629 }
631 static lispobj
633 {
636 }
638 static sword_t
640 {
642 }
645 {
650 }
652 {
653 /* If the bignum in the layout has another pointer to it (besides the layout)
654 acting as a root, and which is scavenged first, then transporting the
655 bignum causes the layout to see a FP, as would copying an instance whose
656 layout that is. This is a nearly impossible scenario to create organically
657 in Lisp, because mostly nothing ever looks again at that exact (EQ) bignum
658 except for a few things that would cause it to be pinned anyway,
659 such as it being kept in a local variable during structure manipulation.
660 See 'interleaved-raw.impure.lisp' for a way to trigger this */
663 #if 0
666 #endif
668 }
670 }
672 // Helper function for stepping through the tagged slots of an instance in
673 // scav_instance and verify_space.
674 void
678 lispobj layout_bitmap,
679 uword_t arg)
680 {
681 sword_t index;
691 }
698 }
699 }
701 static sword_t
703 {
708 #ifdef LISP_FEATURE_COMPACT_INSTANCE_HEADER
711 #else
714 #endif
716 }
721 /* It is conceivable that 'lbitmap' points to from_space, AND that it
722 * is stored in one of the slots of the instance about to be scanned.
723 * If so, then forwarding it will deposit new bits into its first
724 * one or two words, rendering it bogus for use as the instance's bitmap.
725 * So scavenge it up front to fix its address */
732 lispobj obj;
737 }
738 }
740 }
742 #ifdef LISP_FEATURE_COMPACT_INSTANCE_HEADER
743 static sword_t
745 {
746 // This works because the layout is in the header word of all instances,
747 // ordinary and funcallable, when compact headers are enabled.
748 // The trampoline slot in the funcallable-instance is raw, but can be
749 // scavenged, because it points to readonly space, never oldspace.
750 // (And for certain backends it looks like a fixnum, not a pointer)
752 }
753 #endif
755 //// Boxed object scav/trans/size functions
757 #define DEF_SCAV_BOXED(suffix, sizer) \
758 static sword_t __attribute__((unused)) \
759 scav_##suffix(lispobj *where, lispobj header) { \
760 return 1 + scavenge(where+1, sizer(header)); \
761 } \
762 static lispobj trans_##suffix(lispobj object) { \
763 return copy_object(object, 1 + sizer(*native_pointer(object))); \
764 } \
765 static sword_t size_##suffix(lispobj *where) { return 1 + sizer(*where); }
771 /* Bignums use the high bit as the mark, and all remaining bits
772 * excluding the 8 widetag bits to convey the size.
773 * To size it, shift out the high bit, the shift right by an extra bit,
774 * round to odd, and add 1 for the header. */
777 }
780 {
783 UNBOXED_PAGE_FLAG);
784 }
786 /* Note: on the sparc we don't have to do anything special for fdefns, */
787 /* 'cause the raw-addr has a function lowtag. */
788 #if !defined(LISP_FEATURE_SPARC) && !defined(LISP_FEATURE_ARM)
789 static sword_t
791 {
794 /* FSHOW((stderr, "scav_fdefn, function = %p, raw_addr = %p\n",
795 fdefn->fun, fdefn->raw_addr)); */
798 #ifndef LISP_FEATURE_IMMOBILE_CODE
803 /* Don't write unnecessarily. */
806 }
807 #elif defined(LISP_FEATURE_X86_64)
813 }
814 #else
816 #endif
818 }
819 #endif
821 static sword_t
823 {
826 }
828 static lispobj
830 {
834 }
836 static lispobj
838 {
844 /* A zero ratio or complex means it was just allocated by fixed-alloc and
845 a bignum can still be written there. Not a problem with a conservative GC
846 since it will be pinned down. */
848 #ifndef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
850 #endif
851 )
852 {
854 }
856 }
857 \f
858 /* vector-like objects */
859 static lispobj
861 {
866 }
868 static sword_t
870 {
873 }
877 {
878 /* A good compiler should be able to constant-fold this whole thing,
879 even with the conditional. */
884 }
886 /* FIXME: should have some sort of assertion that N_WORD_BITS
887 evenly divides n_bits */
889 }
890 }
892 #define DEF_SCAV_TRANS_SIZE_UB(nbits) \
893 DEF_SPECIALIZED_VECTOR(vector_unsigned_byte_##nbits, NWORDS(length, nbits))
894 #define DEF_SPECIALIZED_VECTOR(name, nwords) \
895 static sword_t __attribute__((unused)) scav_##name(lispobj *where, lispobj header) { \
896 sword_t length = fixnum_value(((struct vector*)where)->length); \
897 return ALIGN_UP(nwords + 2, 2); \
898 } \
899 static lispobj __attribute__((unused)) trans_##name(lispobj object) { \
900 gc_dcheck(lowtag_of(object) == OTHER_POINTER_LOWTAG); \
901 sword_t length = fixnum_value(VECTOR(object)->length); \
902 return copy_large_object(object, ALIGN_UP(nwords + 2, 2), UNBOXED_PAGE_FLAG); \
903 } \
904 static sword_t __attribute__((unused)) size_##name(lispobj *where) { \
905 sword_t length = fixnum_value(((struct vector*)where)->length); \
906 return ALIGN_UP(nwords + 2, 2); \
907 }
911 /* NOTE: strings contain one more element of data (a terminating '\0'
912 * to help interface with C functions) than indicated by the length slot.
913 * This is true even for UCS4 strings, despite that C APIs are unlikely
914 * to have a convention that expects 4 zero bytes. */
924 #ifdef LONG_FLOAT_SIZE
927 #endif
929 static lispobj
931 {
932 lispobj copy;
935 #if defined(DEBUG_WEAK)
937 #endif
939 /* Need to remember where all the weak pointers are that have */
940 /* been transported so they can be fixed up in a post-GC pass. */
943 #ifndef LISP_FEATURE_GENCGC
947 /* Push the weak pointer onto the list of weak pointers. */
951 }
952 #endif
954 }
957 {
971 /* Now, we need to check whether the object has been forwarded. If
972 * it has been, the weak pointer is still good and needs to be
973 * updated. Otherwise, the weak pointer needs to be broken. */
978 }
979 #ifdef LISP_FEATURE_IMMOBILE_SPACE
983 }
984 #endif
985 #ifdef LISP_FEATURE_GENCGC
986 // Large objects are "moved" by touching the page table gen field.
987 // Do nothing if the target of this weak pointer had that happen.
989 #endif
990 else
992 }
993 }
995 \f
996 /* Hash tables */
998 #if N_WORD_BITS == 32
999 #define EQ_HASH_MASK 0x1fffffff
1000 #elif N_WORD_BITS == 64
1001 #define EQ_HASH_MASK 0x1fffffffffffffff
1002 #endif
1004 /* Compute the EQ-hash of KEY. This must match POINTER-HASH in
1005 * target-hash-table.lisp. */
1006 #define EQ_HASH(key) ((key) & EQ_HASH_MASK)
1008 /* List of weak hash tables chained through their NEXT-WEAK-HASH-TABLE
1009 * slot. Set to NULL at the end of a collection.
1010 *
1011 * This is not optimal because, when a table is tenured, it won't be
1012 * processed automatically; only the yougest generation is GC'd by
1013 * default. On the other hand, all applications will need an
1014 * occasional full GC anyway, so it's not that bad either. */
1018 /* Return true if OBJ has already survived the current GC. */
1020 {
1021 #ifdef LISP_FEATURE_CHENEYGC
1022 // This is the most straightforward definition.
1024 #else
1025 /* Check for a pointer to dynamic space before considering immobile space.
1026 Based on the relative size of the spaces, this should be a win because
1027 if the object is in the dynamic space and not the 'from' generation
1028 we don't want to test immobile_space_p() at all.
1029 Additionally, pinned_p() is both more expensive and less likely than
1030 forwarding_pointer_p(), so we want to reverse those conditions, which
1031 would not be possible with pinned_p() buried inside from_space_p(). */
1037 #ifdef LISP_FEATURE_IMMOBILE_SPACE
1040 #endif
1042 #endif
1043 }
1045 #define HT_ENTRY_LIVENESS_FUN_ARRAY_NAME weak_ht_alivep_funs
1048 /* Return the beginning of data in ARRAY (skipping the header and the
1049 * length) or NULL if it isn't an array of the specified widetag after
1050 * all. */
1053 {
1060 }
1061 }
1064 {
1071 }
1075 {
1080 }
1083 }
1085 /* This is essentially a set join operation over the set of all live objects
1086 * against the set of watched objects.
1087 * The question is which way to perform the join for maximum efficiency:
1088 *
1089 * 1. as each object is transported, test if it's in the trigger table
1090 * or
1091 * 2. scan the trigger table periodically checking whether each object is live.
1092 *
1093 * (1) performs a constant amount more work (a hashtable lookup) per forwarding
1094 * and also has to maintain some kind of queue of the objects whose trigger
1095 * condition was met
1096 * (2) has no hashtable lookup entailed by transporting, but performs a number
1097 * of extra survived_gc_yet() calls periodically corresponding to triggering
1098 * objects that and are not known to be live.
1099 *
1100 * There are far more transported objects than key objects in the weak object
1101 * table, so despite that (1) has lower computational complexity,
1102 * it seems like (2) works well in practice due to the cheaper implementation.
1103 * Obviously we could benchmark and compare, but seeing as how this already
1104 * fixes the scaling problem in a huge way, it's not an important question.
1105 */
1107 /* Call 'predicate' on each triggering object, and if it returns 1, then call
1108 * 'mark' on each livened object, or use scav1() if 'mark' is null */
1110 {
1114 lispobj trigger_obj;
1134 }
1139 // Don't scavenge the cell in place! We lack the information
1140 // required to set the rehash flag on address-sensitive keys.
1144 else
1146 }
1154 }
1159 }
1160 }
1164 }
1167 {
1171 }
1173 /* Only need to worry about scavenging the _real_ entries in the
1174 * table. The vector element at index 0 (the hash table itself)
1175 * was scavenged already. */
1179 {
1180 uword_t kv_length;
1181 uword_t length;
1182 uword_t next_vector_length;
1183 uword_t hash_vector_length;
1184 uword_t i;
1198 SIMPLE_ARRAY_WORD_WIDETAG,
1204 SIMPLE_ARRAY_WORD_WIDETAG,
1209 /* These lengths could be different as the index_vector can be a
1210 * different length from the others, a larger index_vector could
1211 * help reduce collisions. */
1217 /* Work through the KV vector. */
1219 // We can disregard any entry in which both key and value are immediates.
1220 // This effectively ignores empty pairs, as well as makes fixnum -> fixnum
1221 // mappings more efficient.
1222 // If the bitwise OR of two lispobjs satisfies is_lisp_pointer(),
1223 // then at least one is a pointer.
1224 #define SCAV_ENTRIES(entry_alivep, defer) \
1225 for (i = 1; i < next_vector_length; i++) { \
1226 lispobj key = kv_vector[2*i], value = kv_vector[2*i+1]; \
1227 if (is_lisp_pointer(key|value)) { \
1228 if (!entry_alivep) { defer; any_deferred = 1; } else { \
1230 scav_entry(&kv_vector[2*i]); \
1232 if (kv_vector[2*i] != key && \
1233 (!hash_vector || hash_vector[i] == MAGIC_HASH_VECTOR_VALUE)) \
1234 rehash = 1; \
1235 }}}
1247 }
1249 // Though at least partly writable, the vector might have
1250 // element 1 on a write-protected page.
1254 }
1256 sword_t
1258 {
1262 /* SB-VM:VECTOR-VALID-HASHING-SUBTYPE is set for EQ-based and weak
1263 * hash tables in the Lisp HASH-TABLE code to indicate need for
1264 * special GC support. */
1266 normal:
1269 }
1271 /* Scavenge element 0, which may be a hash-table structure. */
1274 /* This'll happen when REHASH clears the header of old-kv-vector
1275 * and fills it with zero, but some other thread simulatenously
1276 * sets the header in %%PUTHASH.
1277 */
1279 "Warning: no pointer at %p in hash table: this indicates "
1280 "non-fatal corruption caused by concurrent access to a "
1281 "hash-table from multiple threads. Any accesses to "
1282 "hash-tables shared between threads should be protected "
1285 }
1290 hash_table);
1291 }
1293 /* Verify that vector element 1 is as expected.
1294 Don't bother scavenging it, since we lose() if it's not an immediate. */
1298 /* Scavenge hash table, which will fix the positions of the other
1299 * needed objects. */
1302 /* Cross-check the kv_vector. */
1305 }
1312 /* Key-AND-Value means that no scavenging can/will be performed as
1313 * a consequence of visiting the table. Each entry is looked at once
1314 * only, after _all_ other work is done, and then it's either live
1315 * or it isn't based on whether both halves are live. So the initial
1316 * value of 'defer = 1' is correct. For all other weakness kinds,
1317 * we might be able to skip rescan depending on whether all entries
1318 * are actually live right now, as opposed to provisionally live */
1322 gc_scav_pair);
1323 /* There is a down-side to *not* pushing the table into the list,
1324 * but it should not matter too much: if we attempt to scavenge more
1325 * than once (when and only when the newspace areas overflow),
1326 * then we don't know that we already did it, and we'll do it again.
1327 * This is the same as occurs on all other objects */
1333 }
1334 }
1337 }
1339 /* Walk through the chain whose first element is *FIRST and remove
1340 * dead weak entries. */
1347 boolean save_culled_values,
1349 {
1370 // Lisp code which manipulates the culled_values slot must use
1371 // compare-and-swap, but C code need not, because GC runs in one
1372 // thread and has stopped the Lisp world.
1376 }
1387 }
1389 }
1391 }
1392 }
1394 static void
1398 {
1401 uword_t i;
1408 SIMPLE_ARRAY_WORD_WIDETAG,
1420 }
1421 /* If an EQ-based key has moved, mark the hash-table for rehash */
1424 }
1426 /* Fix one <k,v> pair in a weak hashtable.
1427 * Do not call scavenge(), just follow forwarding pointers */
1429 {
1438 }
1440 /* Remove dead entries from weak hash tables. */
1442 {
1450 pair_follow_fps);
1451 }
1453 /* Reset weak_objects only if the count is nonzero.
1454 * If test_weak_triggers() caused the count to hit zero, then it already
1455 * performed a reset. Consecutive resets with no intervening insert are
1456 * technically ok, but it's best to avoid halving the size twice,
1457 * which is what an extra reset would do if it saw no inserts. */
1460 }
1462 \f
1463 /*
1464 * initialization
1465 */
1467 static sword_t
1469 {
1475 }
1477 static lispobj
1479 {
1484 }
1486 static sword_t
1488 {
1493 }
1495 \f
1496 /*
1497 * initialization
1498 */
1502 \f
1504 {
1507 #ifdef LISP_FEATURE_IMMOBILE_SPACE
1509 #endif
1514 }
1516 /* Find the code object for the given pc, or return NULL on
1517 failure. */
1518 lispobj *
1520 {
1527 }
1529 /* Scan an area looking for an object which encloses the given pointer.
1530 * Return the object start on success, or NULL on failure. */
1531 lispobj *
1533 {
1537 #if 0
1538 /* CAUTION: this code is _significantly_ slower than the production version
1539 due to the extra checks for forwarding. Only use it if debugging */
1544 else
1548 /* Check whether the pointer is within this object. */
1550 }
1551 #else
1555 /* Check whether the pointer is within this object. */
1557 }
1558 #endif
1560 }
1562 /* Helper for valid_lisp_pointer_p (below) and
1563 * conservative_root_p (gencgc).
1564 *
1565 * pointer is the pointer to check validity of,
1566 * and start_addr is the address of the enclosing object.
1567 *
1568 * This is actually quite simple to check: because the heap state is assumed
1569 * consistent, and 'start_addr' is known good, having come from
1570 * gc_search_space(), only the 'pointer' argument is dubious.
1571 * So make 'start_addr' into a tagged pointer and see if that matches 'pointer'.
1572 * If it does, then 'pointer' is valid.
1573 */
1574 int
1576 {
1577 // If a headerless object, confirm that 'pointer' is a list pointer.
1578 // Given the precondition that the heap is in a valid state,
1579 // it may be assumed that one check of is_cons_half() suffices;
1580 // we don't need to check the other half.
1585 // Because this heap object was not deemed to be a cons,
1586 // it must be an object header. Don't need a check except when paranoid.
1589 // The space of potential widetags has 64 elements, not 256,
1590 // because of the constant low 2 bits.
1597 // Check for RETURN_PC_HEADER first since it's quicker.
1598 // Then consider the embedded simple-funs.
1599 #if !defined(LISP_FEATURE_X86) && !defined(LISP_FEATURE_X86_64)
1600 /* The all-architecture test below is good as far as it goes,
1601 * but an LRA object is similar to a FUN-POINTER: It is
1602 * embedded within a CODE-OBJECT pointed to by start_addr, and
1603 * cannot be found by simply walking the heap, therefore we
1604 * need to check for it. -- AB, 2010-Jun-04 */
1610 }
1611 }
1612 #endif
1618 })
1619 }
1620 }
1622 }
1624 /* META: Note the ambiguous word "validate" in the comment below.
1625 * This means "Decide whether <x> is valid".
1626 * But when you see os_validate() elsewhere, that doesn't mean to ask
1627 * whether something is valid, it says to *make* it valid.
1628 * I think it would be nice if we could avoid using the word in the
1629 * sense in which os_validate() uses it, which would entail renaming
1630 * a bunch of stuff, which is harder than just explaining why
1631 * the comments can be deceptive */
1633 /* Used by the debugger to validate possibly bogus pointers before
1634 * calling MAKE-LISP-OBJ on them.
1635 *
1636 * FIXME: We would like to make this perfect, because if the debugger
1637 * constructs a reference to a bugs lisp object, and it ends up in a
1638 * location scavenged by the GC all hell breaks loose.
1639 *
1640 * Whereas conservative_root_p has to be conservative
1641 * and return true for all valid pointers, this could actually be eager
1642 * and lie about a few pointers without bad results... but that should
1643 * be reflected in the name.
1644 */
1645 int
1647 {
1652 }
1654 boolean
1656 {
1657 lispobj gc_happened;
1663 }
1665 /* SUB-GC may return without GCing if *GC-INHIBIT* is set, in
1666 * which case we will be running with no gc trigger barrier
1667 * thing for a while. But it shouldn't be long until the end
1668 * of WITHOUT-GCING.
1669 *
1670 * FIXME: It would be good to protect the end of dynamic space for
1671 * CheneyGC and signal a storage condition from there.
1672 */
1674 /* Restore the signal mask from the interrupted context before
1675 * calling into Lisp if interrupts are enabled. Why not always?
1676 *
1677 * Suppose there is a WITHOUT-INTERRUPTS block far, far out. If an
1678 * interrupt hits while in SUB-GC, it is deferred and the
1679 * os_context_sigmask of that interrupt is set to block further
1680 * deferrable interrupts (until the first one is
1681 * handled). Unfortunately, that context refers to this place and
1682 * when we return from here the signals will not be blocked.
1683 *
1684 * A kludgy alternative is to propagate the sigmask change to the
1685 * outer context.
1686 */
1687 #if !(defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_SAFEPOINT))
1690 #endif
1692 /* FIXME: Nothing must go wrong during GC else we end up running
1693 * the debugger, error handlers, and user code in general in a
1694 * potentially unsafe place. Running out of the control stack or
1695 * the heap in SUB-GC are ways to lose. Of course, deferrables
1696 * cannot be unblocked because there may be a pending handler, or
1697 * we may even be in a WITHOUT-INTERRUPTS. */
1705 /* gc_happened can take three values: T, NIL, 0.
1706 *
1707 * T means that the thread managed to trigger a GC, and post-gc
1708 * must be called.
1709 *
1710 * NIL means that the thread is within without-gcing, and no GC
1711 * has occurred.
1712 *
1713 * Finally, 0 means that *a* GC has occurred, but it wasn't
1714 * triggered by this thread; success, but post-gc doesn't have
1715 * to be called.
1716 */
1718 /* See if interrupts are enabled or it's possible to enable
1719 * them. POST-GC has a similar check, but we don't want to
1720 * unlock deferrables in that case and get a pending interrupt
1721 * here. */
1724 #ifndef LISP_FEATURE_WIN32
1728 #ifndef LISP_FEATURE_SB_SAFEPOINT
1730 #endif
1731 #endif
1734 #ifndef LISP_FEATURE_WIN32
1737 }
1738 #endif
1739 }
1744 /* Otherwise done by undo_fake_foreign_function_call. And
1745 something later wants them to be blocked. What a nice
1746 interface.*/
1748 }
1752 }
1754 #define BYTES_ZERO_BEFORE_END (1<<12)
1756 /* There used to be a similar function called SCRUB-CONTROL-STACK in
1757 * Lisp and another called zero_stack() in cheneygc.c, but since it's
1758 * shorter to express in, and more often called from C, I keep only
1759 * the C one after fixing it. -- MG 2009-03-25 */
1761 /* Zero the unused portion of the control stack so that old objects
1762 * are not kept alive because of uninitialized stack variables.
1763 *
1764 * "To summarize the problem, since not all allocated stack frame
1765 * slots are guaranteed to be written by the time you call an another
1766 * function or GC, there may be garbage pointers retained in your dead
1767 * stack locations. The stack scrubbing only affects the part of the
1768 * stack from the SP to the end of the allocated stack." - ram, on
1769 * cmucl-imp, Tue, 25 Sep 2001
1770 *
1771 * So, as an (admittedly lame) workaround, from time to time we call
1772 * scrub-control-stack to zero out all the unused portion. This is
1773 * supposed to happen when the stack is mostly empty, so that we have
1774 * a chance of clearing more of it: callers are currently (2002.07.18)
1775 * REPL, SUB-GC and sig_stop_for_gc_handler. */
1777 /* Take care not to tread on the guard page and the hard guard page as
1778 * it would be unkind to sig_stop_for_gc_handler. Touching the return
1779 * guard page is not dangerous. For this to work the guard page must
1780 * be zeroed when protected. */
1782 /* FIXME: I think there is no guarantee that once
1783 * BYTES_ZERO_BEFORE_END bytes are zero the rest are also zero. This
1784 * may be what the "lame" adjective in the above comment is for. In
1785 * this case, exact gc may lose badly. */
1786 void
1788 {
1790 }
1792 void
1794 {
1797 #ifdef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
1798 /* On these targets scrubbing from C is a bad idea, so we punt to
1799 * a routine in $ARCH-assem.S. */
1802 #else
1804 scrub:
1811 #ifdef LISP_FEATURE_STACK_GROWS_DOWNWARD_NOT_UPWARD
1821 #else
1831 #endif
1833 }
1834 \f
1835 #if !defined(LISP_FEATURE_X86) && !defined(LISP_FEATURE_X86_64)
1837 void
1839 {
1844 }
1847 /* In order to properly support dynamic-extent allocation of
1848 * non-CONS objects, the control stack requires special handling.
1849 * Rather than calling scavenge() directly, grovel over it fixing
1850 * broken hearts, scavenging pointers to oldspace, and pitching a
1851 * fit when encountering unboxed data. This prevents stray object
1852 * headers from causing the scavenger to blow past the end of the
1853 * stack (an error case checked in scavenge()). We don't worry
1854 * about treating unboxed words as boxed or vice versa, because
1855 * the compiler isn't allowed to store unboxed objects on the
1856 * control stack. -- AB, 2011-Dec-02 */
1858 /* FIXME: I believe that this loop could be replaced by scavenge(),
1859 * as it can not "... blow past the end" on header words,
1860 * the way that heap_scavenge() might */
1863 object_ptr++) {
1866 #ifdef LISP_FEATURE_GENCGC
1870 #endif
1872 /* It currently points to old space. Check for a
1873 * forwarding pointer. */
1876 /* Yes, there's a forwarding pointer. */
1879 /* Scavenge that pointer. */
1883 }
1887 }
1888 }
1889 }
1891 /* Scavenging Interrupt Contexts */
1895 /* The GC has a notion of an "interior pointer" register, an unboxed
1896 * register that typically contains a pointer to inside an object
1897 * referenced by another pointer. The most obvious of these is the
1898 * program counter, although many compiler backends define a "Lisp
1899 * Interior Pointer" register known to the runtime as reg_LIP, and
1900 * various CPU architectures have other registers that also partake of
1901 * the interior-pointer nature. As the code for pairing an interior
1902 * pointer value up with its "base" register, and fixing it up after
1903 * scavenging is complete is horribly repetitive, a few macros paper
1904 * over the monotony. --AB, 2010-Jul-14 */
1906 /* These macros are only ever used over a lexical environment which
1907 * defines a pointer to an os_context_t called context, thus we don't
1908 * bother to pass that context in as a parameter. */
1910 /* Define how to access a given interior pointer. */
1911 #define ACCESS_INTERIOR_POINTER_pc \
1912 *os_context_pc_addr(context)
1913 #define ACCESS_INTERIOR_POINTER_lip \
1914 *os_context_register_addr(context, reg_LIP)
1915 #define ACCESS_INTERIOR_POINTER_lr \
1916 *os_context_lr_addr(context)
1917 #define ACCESS_INTERIOR_POINTER_npc \
1918 *os_context_npc_addr(context)
1919 #define ACCESS_INTERIOR_POINTER_ctr \
1920 *os_context_ctr_addr(context)
1922 #define INTERIOR_POINTER_VARS(name) \
1923 uword_t name##_offset; \
1924 int name##_register_pair
1926 #define PAIR_INTERIOR_POINTER(name) \
1927 pair_interior_pointer(context, \
1928 ACCESS_INTERIOR_POINTER_##name, \
1929 &name##_offset, \
1930 &name##_register_pair)
1932 /* One complexity here is that if a paired register is not found for
1933 * an interior pointer, then that pointer does not get updated.
1934 * Originally, there was some commentary about using an index of -1
1935 * when calling os_context_register_addr() on SPARC referring to the
1936 * program counter, but the real reason is to allow an interior
1937 * pointer register to point to the runtime, read-only space, or
1938 * static space without problems. */
1939 #define FIXUP_INTERIOR_POINTER(name) \
1940 do { \
1941 if (name##_register_pair >= 0) { \
1942 ACCESS_INTERIOR_POINTER_##name = \
1943 (*os_context_register_addr(context, \
1944 name##_register_pair) \
1945 & ~LOWTAG_MASK) \
1946 + name##_offset; \
1947 } \
1948 } while (0)
1951 static void
1954 {
1957 /*
1958 * I (RLT) think this is trying to find the boxed register that is
1959 * closest to the LIP address, without going past it. Usually, it's
1960 * reg_CODE or reg_LRA. But sometimes, nothing can be found.
1961 */
1962 /* 0x7FFFFFFF on 32-bit platforms;
1963 0x7FFFFFFFFFFFFFFF on 64-bit platforms */
1967 uword_t reg;
1968 uword_t offset;
1974 /* An interior pointer is never relative to a non-pointer
1975 * register (an oversight in the original implementation).
1976 * The simplest argument for why this is true is to consider
1977 * the fixnum that happens by coincide to be the word-index in
1978 * memory of the header for some object plus two. This is
1979 * happenstance would cause the register containing the fixnum
1980 * to be selected as the register_pair if the interior pointer
1981 * is to anywhere after the first two words of the object.
1982 * The fixnum won't be changed during GC, but the object might
1983 * move, thus destroying the interior pointer. --AB,
1984 * 2010-Jul-14 */
1992 }
1993 }
1994 }
1995 }
1997 static void
1999 {
2002 /* FIXME: The various #ifdef noise here is precisely that: noise.
2003 * Is it possible to fold it into the macrology so that we have
2004 * one set of #ifdefs and then INTERIOR_POINTER_VARS /et alia/
2005 * compile out for the registers that don't exist on a given
2006 * platform? */
2009 #ifdef reg_LIP
2011 #endif
2012 #ifdef ARCH_HAS_LINK_REGISTER
2014 #endif
2015 #ifdef ARCH_HAS_NPC_REGISTER
2017 #endif
2018 #ifdef LISP_FEATURE_PPC
2020 #endif
2023 #ifdef reg_LIP
2025 #endif
2026 #ifdef ARCH_HAS_LINK_REGISTER
2028 #endif
2029 #ifdef ARCH_HAS_NPC_REGISTER
2031 #endif
2032 #ifdef LISP_FEATURE_PPC
2034 #endif
2036 /* Scavenge all boxed registers in the context. */
2039 lispobj datum;
2041 /* We can't "just" cast os_context_register_addr() to a
2042 * pointer to lispobj and pass it to scavenge, because some
2043 * systems can have a wider register width than we use for
2044 * lisp objects, and on big-endian systems casting a pointer
2045 * to a narrower target type doesn't work properly.
2046 * Therefore, we copy the value out to a temporary lispobj
2047 * variable, scavenge there, and copy the value back in.
2048 *
2049 * FIXME: lispobj is unsigned, os_context_register_t may be
2050 * signed or unsigned, are we truncating or sign-extending
2051 * values here that shouldn't be modified? Possibly affects
2052 * any architecture that has 32-bit and 64-bit variants where
2053 * we run in 32-bit mode on 64-bit hardware when the OS is set
2054 * up for 64-bit from the start. Or an environment with
2055 * 32-bit addresses and 64-bit registers. */
2061 }
2063 /* Now that the scavenging is done, repair the various interior
2064 * pointers. */
2066 #ifdef reg_LIP
2068 #endif
2069 #ifdef ARCH_HAS_LINK_REGISTER
2071 #endif
2072 #ifdef ARCH_HAS_NPC_REGISTER
2074 #endif
2075 #ifdef LISP_FEATURE_PPC
2077 #endif
2078 }
2080 void
2082 {
2088 #if defined(DEBUG_PRINT_CONTEXT_INDEX)
2090 #endif
2095 }
2096 }
2100 {
2110 }
2112 }
2114 // Fetch the next varint from 'unpacker' into 'result'.
2115 // Because there is no length prefix on the number of varints encoded,
2116 // spurious trailing zeros might be observed. The data consumer can
2117 // circumvent that by storing a count as the first value in the series.
2118 // Return 1 for success, 0 for EOF.
2120 {
2125 #ifdef LISP_FEATURE_LITTLE_ENDIAN
2127 #else
2128 // bignums are little-endian in word order,
2129 // but machine-native within each word.
2130 // We could pack bytes MSB-to-LSB in the bigdigits,
2131 // but that seems less intuitive on the Lisp side.
2136 #endif
2142 }
2145 }
2147 /* Our own implementation of heapsort, because some C libraries have a qsort()
2148 * that calls malloc() apparently, which we MUST NOT do. */
2152 #define swap(a,i,j) { uword_t temp=a[i];a[i]=a[j];a[j]=temp; }
2154 {
2165 }
2166 }
2167 }
2170 {
2175 }
2176 }
2179 {
2186 }
2187 }
2189 //// Coalescing of constant vectors for SAVE-LISP-AND-DIE
2192 {
2195 // Ratios and complex integers containing pointers to bignums don't work.
2198 #ifndef LISP_FEATURE_64_BIT
2200 #endif
2204 }
2206 /// Return true of fixnums, bignums, strings, symbols.
2207 /// Strings are considered eql-comparable,
2208 /// because they're coalesced before comparing.
2210 {
2216 #ifdef SIMPLE_CHARACTER_STRING_WIDETAG
2218 #endif
2220 }
2223 {
2228 }
2231 {
2237 // gc_coalesce_string_literals represents the "aggressiveness" level.
2238 // If 1, then we share vectors tagged as +VECTOR-SHAREABLE+,
2239 // but if >1, those and also +VECTOR-SHAREABLE-NONSTD+.
2257 }
2261 else
2263 }
2264 }
2267 {
2284 #ifdef LISP_FEATURE_COMPACT_INSTANCE_HEADER
2286 #endif
2298 })
2304 }
2307 }
2308 }
2310 }
2313 {
2316 #ifndef LISP_FEATURE_WIN32
2317 // Apparently this triggers the "Unable to recommit" lossage message
2318 // in handle_access_violation() in src/runtime/win32-os.c
2322 #endif
2323 #ifdef LISP_FEATURE_IMMOBILE_SPACE
2326 #endif
2327 #ifdef LISP_FEATURE_GENCGC
2329 #else
2330 // FIXME: implement
2331 #endif
2333 }