| blob | 21a6855b8740de9a531f8fca726494d6ccbc6ee1 |
1 /*
2 * GENerational Conservative Garbage Collector for SBCL
3 */
5 /*
6 * This software is part of the SBCL system. See the README file for
7 * more information.
8 *
9 * This software is derived from the CMU CL system, which was
10 * written at Carnegie Mellon University and released into the
11 * public domain. The software is in the public domain and is
12 * provided with absolutely no warranty. See the COPYING and CREDITS
13 * files for more information.
14 */
16 /*
17 * For a review of garbage collection techniques (e.g. generational
18 * GC) and terminology (e.g. "scavenging") see Paul R. Wilson,
19 * "Uniprocessor Garbage Collection Techniques". As of 20000618, this
20 * had been accepted for _ACM Computing Surveys_ and was available
21 * as a PostScript preprint through
22 * <http://www.cs.utexas.edu/users/oops/papers.html>
23 * as
24 * <ftp://ftp.cs.utexas.edu/pub/garbage/bigsurv.ps>.
25 */
27 #include <stdlib.h>
28 #include <stdio.h>
29 #include <errno.h>
30 #include <string.h>
32 #if defined(LISP_FEATURE_WIN32) && defined(LISP_FEATURE_SB_THREAD)
34 #else
35 #include <signal.h>
36 #endif
60 #if !defined(LISP_FEATURE_X86) && !defined(LISP_FEATURE_X86_64)
62 #endif
63 #ifdef LISP_FEATURE_X86
65 #endif
67 /* forward declarations */
71 \f
72 /*
73 * GC parameters
74 */
76 /* As usually configured, generations 0-5 are normal collected generations,
77 6 is pseudo-static (the objects in which are never moved nor reclaimed),
78 and 7 is scratch space used when collecting a generation without promotion,
79 wherein it is moved to generation 7 and back again.
80 */
83 NUM_GENERATIONS
84 };
86 /* Should we use page protection to help avoid the scavenging of pages
87 * that don't have pointers to younger generations? */
90 /* Largest allocation seen since last GC. */
93 \f
94 /*
95 * debugging
96 */
98 /* the verbosity level. All non-error messages are disabled at level 0;
99 * and only a few rare messages are printed at level 1. */
100 #if QSHOW == 2
102 #else
104 #endif
106 /* FIXME: At some point enable the various error-checking things below
107 * and see what they say. */
109 /* We hunt for pointers to old-space, when GCing generations >= verify_gen.
110 * Set verify_gens to HIGHEST_NORMAL_GENERATION + 1 to disable this kind of
111 * check. */
114 /* Should we do a pre-scan verify of generation 0 before it's GCed? */
117 /* Should we print a note when code objects are found in the dynamic space
118 * during a heap verify? */
121 #ifdef LISP_FEATURE_X86
122 /* Should we check code objects for fixup errors after they are transported? */
124 #endif
126 /* Should we check that newly allocated regions are zero filled? */
129 /* Should we check that the free space is zero filled? */
132 /* When loading a core, don't do a full scan of the memory for the
133 * memory region boundaries. (Set to true by coreparse.c if the core
134 * contained a pagetable entry).
135 */
138 /* If defined, free pages are read-protected to ensure that nothing
139 * accesses them.
140 */
142 /* #define READ_PROTECT_FREE_PAGES */
144 \f
145 /*
146 * GC structures and variables
147 */
149 /* the total bytes allocated. These are seen by Lisp DYNAMIC-USAGE. */
153 /* the source and destination generations. These are set before a GC starts
154 * scavenging. */
155 generation_index_t from_space;
156 generation_index_t new_space;
158 /* Set to 1 when in GC */
161 /* should the GC be conservative on stack. If false (only right before
162 * saving a core), don't scan the stack / mark pages dont_move. */
165 /* An array of page structures is allocated on gc initialization.
166 * This helps to quickly map between an address and its page structure.
167 * page_table_pages is set from the size of the dynamic space. */
168 page_index_t page_table_pages;
174 /* In GC cards that have conservative pointers to them, should we wipe out
175 * dwords in there that are not used, so that they do not act as false
176 * root to other things in the heap from then on? This is a new feature
177 * but in testing it is both reliable and no noticeable slowdown. */
182 }
186 }
191 }
195 }
199 }
203 }
206 /* Both flags set == boxed code page */
209 }
216 }
218 /* Calculate the start address for the given page number. */
221 {
223 }
225 /* Calculate the address where the allocation region associated with
226 * the page starts. */
229 {
231 }
233 /* True if the page starts a contiguous block. */
236 {
238 }
240 /* True if the page is the last page in a contiguous block. */
243 {
246 /* page is last allocated page */
248 /* next page free */
250 /* next page contains no data */
252 /* next page is in different generation */
254 /* next page starts its own contiguous block */
256 }
258 /// External function for calling from Lisp.
261 static os_vm_size_t
263 {
266 }
268 /* Check that X is a higher address than Y and return offset from Y to
269 * X in bytes. */
272 {
275 }
277 /* a structure to hold the state of a generation
278 *
279 * CAUTION: If you modify this, make sure to touch up the alien
280 * definition in src/code/gc.lisp accordingly. ...or better yes,
281 * deal with the FIXME there...
282 */
285 /* the first page that gc_alloc() checks on its next call */
286 page_index_t alloc_start_page;
288 /* the first page that gc_alloc_unboxed() checks on its next call */
289 page_index_t alloc_unboxed_start_page;
291 /* the first page that gc_alloc_large (boxed) considers on its next
292 * call. (Although it always allocates after the boxed_region.) */
293 page_index_t alloc_large_start_page;
295 /* the first page that gc_alloc_large (unboxed) considers on its
296 * next call. (Although it always allocates after the
297 * current_unboxed_region.) */
298 page_index_t alloc_large_unboxed_start_page;
300 /* the bytes allocated to this generation */
301 os_vm_size_t bytes_allocated;
303 /* the number of bytes at which to trigger a GC */
304 os_vm_size_t gc_trigger;
306 /* to calculate a new level for gc_trigger */
307 os_vm_size_t bytes_consed_between_gc;
309 /* the number of GCs since the last raise */
312 /* the number of GCs to run on the generations before raising objects to the
313 * next generation */
316 /* the cumulative sum of the bytes allocated to this generation. It is
317 * cleared after a GC on this generations, and update before new
318 * objects are added from a GC of a younger generation. Dividing by
319 * the bytes_allocated will give the average age of the memory in
320 * this generation since its last GC. */
321 os_vm_size_t cum_sum_bytes_allocated;
323 /* a minimum average memory age before a GC will occur helps
324 * prevent a GC when a large number of new live objects have been
325 * added, in which case a GC could be a waste of time */
327 };
329 /* an array of generation structures. There needs to be one more
330 * generation structure than actual generations as the oldest
331 * generation is temporarily raised then lowered. */
334 /* the oldest generation that is will currently be GCed by default.
335 * Valid values are: 0, 1, ... HIGHEST_NORMAL_GENERATION
336 *
337 * The default of HIGHEST_NORMAL_GENERATION enables GC on all generations.
338 *
339 * Setting this to 0 effectively disables the generational nature of
340 * the GC. In some applications generational GC may not be useful
341 * because there are no long-lived objects.
342 *
343 * An intermediate value could be handy after moving long-lived data
344 * into an older generation so an unnecessary GC of this long-lived
345 * data can be avoided. */
348 /* META: Is nobody aside from me bothered by this especially misleading
349 * use of the word "last"? It could mean either "ultimate" or "prior",
350 * but in fact means neither. It is the *FIRST* page that should be grabbed
351 * for more space, so it is min free page, or 1+ the max used page. */
352 /* The maximum free page in the heap is maintained and used to update
353 * ALLOCATION_POINTER which is used by the room function to limit its
354 * search of the heap. XX Gencgc obviously needs to be better
355 * integrated with the Lisp code. */
357 page_index_t last_free_page;
358 \f
359 #ifdef LISP_FEATURE_SB_THREAD
360 /* This lock is to prevent multiple threads from simultaneously
361 * allocating new regions which overlap each other. Note that the
362 * majority of GC is single-threaded, but alloc() may be called from
363 * >1 thread at a time and must be thread-safe. This lock must be
364 * seized before all accesses to generations[] or to parts of
365 * page_table[] that other threads may want to see */
367 /* This lock is used to protect non-thread-local allocation. */
369 #endif
377 \f
378 /*
379 * miscellaneous heap functions
380 */
382 /* Count the number of pages which are write-protected within the
383 * given generation. */
384 static page_index_t
386 {
393 count++;
395 }
397 /* Count the number of pages within the given generation. */
398 static page_index_t
400 {
401 page_index_t i;
407 count++;
409 }
411 #if QSHOW
412 static page_index_t
414 {
415 page_index_t i;
421 }
422 }
424 }
427 /* Work through the pages and add up the number of bytes used for the
428 * given generation. */
431 {
432 page_index_t i;
438 }
440 }
442 /* Return the average age of the memory in a generation. */
445 {
449 return
452 }
454 #ifdef LISP_FEATURE_X86
457 #endif
461 {
462 generation_index_t i;
464 #ifdef LISP_FEATURE_X86
467 /* Can end up here after calling alloc_tramp which doesn't prepare
468 * the x87 state, and the C ABI uses a different mode */
470 #endif
472 /* Print the heap stats. */
477 page_index_t j;
487 /* Count the number of boxed pages within the given
488 * generation. */
491 large_boxed_cnt++;
492 else
493 boxed_cnt++;
494 }
496 /* Count the number of unboxed pages within the given
497 * generation. */
500 large_unboxed_cnt++;
501 else
502 unboxed_cnt++;
503 }
504 }
510 i,
521 " %8"OS_VM_SIZE_FMT
522 " %5"OS_VM_SIZE_FMT
523 " %8"OS_VM_SIZE_FMT
531 }
535 #ifdef LISP_FEATURE_X86
537 #endif
538 }
543 {
547 available,
548 requested);
556 #ifdef LISP_FEATURE_SB_THREAD
559 #endif
560 }
564 {
566 }
573 {
583 }
584 }
585 }
589 {
598 }
599 }
600 /* Always to stderr as well. */
602 }
603 \f
605 #if defined(LISP_FEATURE_X86)
607 #endif
609 /* Zero the pages from START to END (inclusive), but use mmap/munmap instead
610 * if zeroing it ourselves, i.e. in practice give the memory back to the
611 * OS. Generally done after a large GC.
612 */
614 page_index_t i;
624 #ifdef LISP_FEATURE_LINUX
626 // We use MADV_DONTNEED only on Linux due to differing semantics from BSD.
627 // Linux treats it as a demand that the memory be 0-filled, or refreshed
628 // from a file that backs the range. BSD takes it as a hint that you don't
629 // care if the memory has to brought in from swap when next accessed,
630 // i.e. it's not a request to make a user-visible alteration to memory.
631 // So in theory this can bring a page in from the core file, if we happen
632 // to hit a page that resides in the portion of memory mapped by coreparse.
633 // In practice this should not happen because objects from a core file can't
634 // become garbage. Except in save-lisp-and-die they can, and we must be
635 // cautious not to resurrect bytes that originally came from the file.
640 #endif
641 {
647 }
648 }
652 }
654 /* Zero the pages from START to END (inclusive). Generally done just after
655 * a new region has been allocated.
656 */
657 static void
662 #if defined(LISP_FEATURE_X86)
664 #else
666 #endif
668 }
670 static void
672 page_index_t i;
677 }
679 /* Zero the pages from START to END (inclusive), except for those
680 * pages that are known to already zeroed. Mark all pages in the
681 * ranges as non-zeroed.
682 */
683 static void
693 }
697 }
698 }
701 /*
702 * To support quick and inline allocation, regions of memory can be
703 * allocated and then allocated from with just a free pointer and a
704 * check against an end address.
705 *
706 * Since objects can be allocated to spaces with different properties
707 * e.g. boxed/unboxed, generation, ages; there may need to be many
708 * allocation regions.
709 *
710 * Each allocation region may start within a partly used page. Many
711 * features of memory use are noted on a page wise basis, e.g. the
712 * generation; so if a region starts within an existing allocated page
713 * it must be consistent with this page.
714 *
715 * During the scavenging of the newspace, objects will be transported
716 * into an allocation region, and pointers updated to point to this
717 * allocation region. It is possible that these pointers will be
718 * scavenged again before the allocation region is closed, e.g. due to
719 * trans_list which jumps all over the place to cleanup the list. It
720 * is important to be able to determine properties of all objects
721 * pointed to when scavenging, e.g to detect pointers to the oldspace.
722 * Thus it's important that the allocation regions have the correct
723 * properties set when allocated, and not just set when closed. The
724 * region allocation routines return regions with the specified
725 * properties, and grab all the pages, setting their properties
726 * appropriately, except that the amount used is not known.
727 *
728 * These regions are used to support quicker allocation using just a
729 * free pointer. The actual space used by the region is not reflected
730 * in the pages tables until it is closed. It can't be scavenged until
731 * closed.
732 *
733 * When finished with the region it should be closed, which will
734 * update the page tables for the actual space used returning unused
735 * space. Further it may be noted in the new regions which is
736 * necessary when scavenging the newspace.
737 *
738 * Large objects may be allocated directly without an allocation
739 * region, the page tables are updated immediately.
740 *
741 * Unboxed objects don't contain pointers to other objects and so
742 * don't need scavenging. Further they can't contain pointers to
743 * younger generations so WP is not needed. By allocating pages to
744 * unboxed objects the whole page never needs scavenging or
745 * write-protecting. */
747 /* We are only using two regions at present. Both are for the current
748 * newspace generation. */
752 /* The generation currently being allocated to. */
757 {
762 /* Both code and data. */
766 }
771 /* Both code and data. */
775 }
776 }
777 }
781 page_index_t page)
782 {
787 /* Both code and data. */
791 }
796 /* Both code and data. */
800 }
801 }
802 }
805 in_use_marker_t *
807 {
811 }
813 /* Find a new region with room for at least the given number of bytes.
814 *
815 * It starts looking at the current generation's alloc_start_page. So
816 * may pick up from the previous region if there is enough space. This
817 * keeps the allocation contiguous when scavenging the newspace.
818 *
819 * The alloc_region should have been closed by a call to
820 * gc_alloc_update_page_tables(), and will thus be in an empty state.
821 *
822 * To assist the scavenging functions write-protected pages are not
823 * used. Free pages should not be write-protected.
824 *
825 * It is critical to the conservative GC that the start of regions be
826 * known. To help achieve this only small regions are allocated at a
827 * time.
828 *
829 * During scavenging, pointers may be found to within the current
830 * region and the page generation must be set so that pointers to the
831 * from space can be recognized. Therefore the generation of pages in
832 * the region are set to gc_alloc_generation. To prevent another
833 * allocation call using the same pages, all the pages in the region
834 * are allocated, although they will initially be empty.
835 */
836 static void
838 {
839 page_index_t first_page;
840 page_index_t last_page;
841 os_vm_size_t bytes_found;
842 page_index_t i;
845 /*
846 FSHOW((stderr,
847 "/alloc_new_region for %d bytes from gen %d\n",
848 nbytes, gc_alloc_generation));
849 */
851 /* Check that the region is in a reset state. */
862 /* Set up the alloc_region. */
870 /* Set up the pages. */
872 /* The first page may have already been in use. */
878 // wiping should have free()ed and :=NULL
880 }
892 /* This may not be necessary for unboxed regions (think it was
893 * broken before!) */
897 }
898 /* Bump up last_free_page. */
901 /* do we only want to call this on special occasions? like for
902 * boxed_region? */
904 }
908 #ifdef READ_PROTECT_FREE_PAGES
911 OS_VM_PROT_ALL);
912 #endif
914 /* If the first page was only partial, don't check whether it's
915 * zeroed (it won't be) and don't zero it (since the parts that
916 * we're interested in are guaranteed to be zeroed).
917 */
919 first_page++;
920 }
924 /* we can do this after releasing free_pages_lock */
932 }
933 }
934 }
935 }
937 /* If the record_new_objects flag is 2 then all new regions created
938 * are recorded.
939 *
940 * If it's 1 then then it is only recorded if the first page of the
941 * current region is <= new_areas_ignore_page. This helps avoid
942 * unnecessary recording when doing full scavenge pass.
943 *
944 * The new_object structure holds the page, byte offset, and size of
945 * new regions of objects. Each new area is placed in the array of
946 * these structures pointer to by new_areas. new_areas_index holds the
947 * offset into new_areas.
948 *
949 * If new_area overflows NUM_NEW_AREAS then it stops adding them. The
950 * later code must detect this and handle it, probably by doing a full
951 * scavenge of a generation. */
952 #define NUM_NEW_AREAS 512
956 page_index_t page;
959 };
964 /* Add a new area to new_areas. */
965 static void
967 {
969 ssize_t i;
971 /* Ignore if full. */
986 }
990 /* Search backwards for a prior area that this follows from. If
991 found this will save adding a new area. */
997 /*FSHOW((stderr,
998 "/add_new_area S1 %d %d %d %d\n",
999 i, c, new_area_start, area_end));*/
1001 /*FSHOW((stderr,
1002 "/adding to [%d] %d %d %d with %d %d %d:\n",
1003 i,
1004 (*new_areas)[i].page,
1005 (*new_areas)[i].offset,
1006 (*new_areas)[i].size,
1007 first_page,
1008 offset,
1009 size);*/
1012 }
1013 }
1018 /*FSHOW((stderr,
1019 "/new_area %d page %d offset %d size %d\n",
1020 new_areas_index, first_page, offset, size));*/
1021 new_areas_index++;
1023 /* Note the max new_areas used. */
1026 }
1028 /* Update the tables for the alloc_region. The region may be added to
1029 * the new_areas.
1030 *
1031 * When done the alloc_region is set up so that the next quick alloc
1032 * will fail safely and thus a new region will be allocated. Further
1033 * it is safe to try to re-update the page table of this reset
1034 * alloc_region. */
1035 void
1037 {
1038 boolean more;
1039 page_index_t first_page;
1040 page_index_t next_page;
1041 os_vm_size_t bytes_used;
1042 os_vm_size_t region_size;
1043 os_vm_size_t byte_cnt;
1044 page_bytes_t orig_first_page_bytes_used;
1050 /* Catch an unused alloc_region. */
1059 /* some bytes were allocated in the region */
1065 /* All the pages used need to be updated */
1067 /* Update the first page. */
1069 /* If the page was free then set up the gen, and
1070 * scan_start_offset. */
1081 /* Calculate the number of bytes used in this page. This is not
1082 * always the number of new bytes, unless it was free. */
1089 }
1094 /* All the rest of the pages should be free. We need to set
1095 * their scan_start_offset pointer to the start of the
1096 * region, and set the bytes_used. */
1107 /* Calculate the number of bytes used in this page. */
1113 }
1117 next_page++;
1118 }
1127 /* Set the generations alloc restart page to the last page of
1128 * the region. */
1131 /* Add the region to the new_areas if requested. */
1135 /*
1136 FSHOW((stderr,
1137 "/gc_alloc_update_page_tables update %d bytes to gen %d\n",
1138 region_size,
1139 gc_alloc_generation));
1140 */
1142 /* There are no bytes allocated. Unallocate the first_page if
1143 * there are 0 bytes_used. */
1147 }
1149 /* Unallocate any unused pages. */
1153 next_page++;
1154 }
1158 /* alloc_region is per-thread, we're ok to do this unlocked */
1160 }
1162 /* Allocate a possibly large object. */
1165 {
1166 boolean more;
1168 page_bytes_t orig_first_page_bytes_used;
1169 os_vm_size_t byte_cnt;
1170 os_vm_size_t bytes_used;
1179 }
1187 /* Set up the pages. */
1190 /* If the first page was free then set up the gen, and
1191 * scan_start_offset. */
1197 }
1205 /* Calc. the number of bytes used in this page. This is not
1206 * always the number of new bytes, unless it was free. */
1211 }
1217 /* All the rest of the pages should be free. We need to set their
1218 * scan_start_offset pointer to the start of the region, and set
1219 * the bytes_used. */
1230 /* Calculate the number of bytes used in this page. */
1236 }
1241 next_page++;
1242 }
1249 /* Add the region to the new_areas if requested. */
1253 /* Bump up last_free_page */
1257 }
1261 #ifdef READ_PROTECT_FREE_PAGES
1264 OS_VM_PROT_ALL);
1265 #endif
1270 }
1274 void
1276 {
1278 /* Write basic information before doing anything else: if we don't
1279 * call to lisp this is a must, and even if we do there is always
1280 * the danger that we bounce back here before the error has been
1281 * handled, or indeed even printed.
1282 */
1285 /* If we are in GC, or totally out of memory there is no way
1286 * to sanely transfer control to the lisp-side of things.
1287 */
1289 }
1291 /* FIXME: assert free_pages_lock held */
1293 #if !(defined(LISP_FEATURE_WIN32) && defined(LISP_FEATURE_SB_THREAD))
1298 #endif
1299 /* Another issue is that signalling HEAP-EXHAUSTED error leads
1300 * to running user code at arbitrary places, even in a
1301 * WITHOUT-INTERRUPTS which may lead to a deadlock without
1302 * running out of the heap. So at this point all bets are
1303 * off. */
1305 corruption_warning_and_maybe_lose
1307 /* available and requested should be double word aligned, thus
1308 they can passed as fixnums and shifted later. */
1311 }
1312 }
1314 page_index_t
1317 {
1325 /* FIXME: assert(free_pages_lock is held); */
1330 /* Toggled by gc_and_save for heap compaction, normally -1. */
1333 }
1335 /* FIXME: This is on bytes instead of nbytes pending cleanup of
1336 * long from the interface. */
1338 /* Search for a page with at least nbytes of space. We prefer
1339 * not to split small objects on multiple pages, to reduce the
1340 * number of contiguous allocation regions spaning multiple
1341 * pages: this helps avoid excessive conservativism.
1342 *
1343 * For other objects, we guarantee that they start on their own
1344 * page boundary.
1345 */
1362 first_page++;
1364 }
1366 first_page++;
1368 }
1375 last_page++) {
1379 }
1385 }
1390 }
1395 /* Check for a failure */
1399 }
1404 }
1406 /* Allocate bytes. All the rest of the special-purpose allocation
1407 * functions will eventually call this */
1412 {
1418 /* Check whether there is room in the current alloc region. */
1421 /* fprintf(stderr, "alloc %d bytes from %p to %p\n", nbytes,
1422 my_region->free_pointer, new_free_pointer); */
1425 /* If so then allocate from the current alloc region. */
1429 /* Unless a `quick' alloc was requested, check whether the
1430 alloc region is almost empty. */
1433 /* If so, finished with the current region. */
1435 /* Set up a new region. */
1437 }
1440 }
1442 /* Else not enough free space in the current region: retry with a
1443 * new region. */
1448 }
1449 \f
1450 /* Copy a large object. If the object is in a large object region then
1451 * it is simply promoted, else it is copied. If it's large enough then
1452 * it's copied to a large object region.
1453 *
1454 * Bignums and vectors may have shrunk. If the object is not copied
1455 * the space needs to be reclaimed, and the page_tables corrected. */
1456 static lispobj
1458 {
1460 page_index_t first_page;
1467 }
1469 /* Check whether it's a large object. */
1474 /* Promote the object. Note: Unboxed objects may have been
1475 * allocated to a BOXED region so it may be necessary to
1476 * change the region to UNBOXED. */
1477 os_vm_size_t remaining_bytes;
1478 os_vm_size_t bytes_freed;
1479 page_index_t next_page;
1480 page_bytes_t old_bytes_used;
1482 /* FIXME: This comment is somewhat stale.
1483 *
1484 * Note: Any page write-protection must be removed, else a
1485 * later scavenge_newspace may incorrectly not scavenge these
1486 * pages. This would not be necessary if they are added to the
1487 * new areas, but let's do it for them all (they'll probably
1488 * be written anyway?). */
1500 /* Should have been unprotected by unprotect_oldspace()
1501 * for boxed objects, and after promotion unboxed ones
1502 * should not be on protected pages at all. */
1510 }
1514 next_page++;
1515 }
1517 /* Now only one page remains, but the object may have shrunk so
1518 * there may be more unused pages which will be freed. */
1520 /* Object may have shrunk but shouldn't have grown - check. */
1527 else
1530 /* Adjust the bytes_used. */
1536 /* Free any remaining pages; needs care. */
1537 next_page++;
1540 /* FIXME: It is not obvious to me why this is necessary
1541 * as a loop condition: it seems to me that the
1542 * scan_start_offset test should be sufficient, but
1543 * experimentally that is not the case. --NS
1544 * 2011-11-28 */
1551 /* Checks out OK, free the page. Don't need to both zeroing
1552 * pages as this should have been done before shrinking the
1553 * object. These pages shouldn't be write-protected, even if
1554 * boxed they should be zero filled. */
1561 next_page++;
1562 }
1567 bytes_freed));
1568 }
1575 /* Add the region to the new_areas if requested. */
1582 /* Allocate space. */
1585 ALLOC_QUICK);
1587 /* Copy the object. */
1590 /* Return Lisp pointer of new object. */
1592 }
1593 }
1595 lispobj
1597 {
1599 }
1601 lispobj
1603 {
1605 }
1607 /* to copy unboxed objects */
1608 lispobj
1610 {
1612 }
1613 \f
1615 /*
1616 * code and code-related objects
1617 */
1618 /*
1619 static lispobj trans_fun_header(lispobj object);
1620 static lispobj trans_boxed(lispobj object);
1621 */
1623 /* Scan a x86 compiled code object, looking for possible fixups that
1624 * have been missed after a move.
1625 *
1626 * Two types of fixups are needed:
1627 * 1. Absolute fixups to within the code object.
1628 * 2. Relative fixups to outside the code object.
1629 *
1630 * Currently only absolute fixups to the constant vector, or to the
1631 * code area are checked. */
1632 #ifdef LISP_FEATURE_X86
1633 void
1635 {
1656 /* Work through the unboxed code. */
1663 #if QSHOW
1666 #endif
1668 /* Check for code references. */
1669 /* Check for a 32 bit word that looks like an absolute
1670 reference to within the code adea of the code object. */
1673 /* function header */
1677 /* Skip the function header */
1680 }
1681 /* the case of PUSH imm32 */
1688 }
1689 /* the case of MOV [reg-8],imm32 */
1699 }
1700 /* the case of LEA reg,[disp32] */
1707 }
1708 }
1710 /* Check for constant references. */
1711 /* Check for a 32 bit word that looks like an absolute
1712 reference to within the constant vector. Constant references
1713 will be aligned. */
1717 /* Mov eax,m32 */
1724 }
1726 /* the case of MOV m32,EAX */
1733 }
1735 /* the case of CMP m32,imm32 */
1741 /* XX Check this */
1743 }
1745 /* Check for a mod=00, r/m=101 byte. */
1747 /* Cmp m32,reg */
1754 }
1755 /* the case of CMP reg32,m32 */
1762 }
1763 /* the case of MOV m32,reg32 */
1770 }
1771 /* the case of MOV reg32,m32 */
1778 }
1779 /* the case of LEA reg32,m32 */
1786 }
1787 }
1788 }
1789 }
1791 /* If anything was found, print some information on the code
1792 * object. */
1803 }
1804 }
1805 #endif
1807 #ifdef LISP_FEATURE_X86
1808 void
1810 {
1823 /* FSHOW((stderr,
1824 "/compiled code object at %x: header words = %d, code words = %d\n",
1825 new_code, nheader_words, ncode_words)); */
1830 /*
1831 FSHOW((stderr,
1832 "/const start = %x, end = %x\n",
1833 constants_start_addr,constants_end_addr));
1834 FSHOW((stderr,
1835 "/code start = %x; end = %x\n",
1836 code_start_addr,code_end_addr));
1837 */
1840 /* It will be a Lisp vector if valid, or 0 if there are no fixups */
1842 /* Check for possible errors. */
1847 }
1851 /* Could be pointing to a forwarding pointer. */
1852 /* This is extremely unlikely, because the only referent of the fixups
1853 is usually the code itself; so scavenging the vector won't occur
1854 until after the code object is known to be live. As we're just now
1855 enlivening the code, the fixups shouldn't have been forwarded.
1856 Maybe the vector is on the special binding stack though ... */
1860 /* If so, then follow it. */
1861 /*SHOW("following pointer to a forwarding pointer");*/
1864 }
1866 /*SHOW("got fixups");*/
1869 /* Got the fixups for the code block. Now work through the vector,
1870 and apply a fixup at each address. */
1872 sword_t i;
1875 /* Now check the current value of offset. */
1878 /* If it's within the old_code object then it must be an
1879 * absolute fixup (relative ones are not saved) */
1882 /* So add the dispacement. */
1885 else
1886 /* It is outside the old code object so it must be a
1887 * relative fixup (absolute fixups are not saved). So
1888 * subtract the displacement. */
1891 }
1893 /* This used to just print a note to stderr, but a bogus fixup seems to
1894 * indicate real heap corruption, so a hard hailure is in order. */
1897 }
1899 /* Check for possible errors. */
1902 }
1903 }
1904 #endif
1906 static lispobj
1908 {
1912 }
1913 \f
1914 /*
1915 * weak pointers
1916 */
1918 /* XX This is a hack adapted from cgc.c. These don't work too
1919 * efficiently with the gencgc as a list of the weak pointers is
1920 * maintained within the objects which causes writes to the pages. A
1921 * limited attempt is made to avoid unnecessary writes, but this needs
1922 * a re-think. */
1923 static sword_t
1925 {
1926 /* Since we overwrite the 'next' field, we have to make
1927 * sure not to do so for pointers already in the list.
1928 * Instead of searching the list of weak_pointers each
1929 * time, we ensure that next is always NULL when the weak
1930 * pointer isn't in the list, and not NULL otherwise.
1931 * Since we can't use NULL to denote end of list, we
1932 * use a pointer back to the same weak_pointer.
1933 */
1941 }
1943 /* Do not let GC scavenge the value slot of the weak pointer.
1944 * (That is why it is a weak pointer.) */
1947 }
1949 \f
1950 lispobj *
1952 {
1958 }
1960 lispobj *
1962 {
1968 }
1970 /* a faster version for searching the dynamic space. This will work even
1971 * if the object is in a current allocation region. */
1972 lispobj *
1974 {
1978 /* The address may be invalid, so do some checks. */
1983 }
1985 // Return the starting address of the object containing 'addr'
1986 // if and only if the object is one which would be evacuated from 'from_space'
1987 // were it allowed to be either discarded as garbage or moved.
1988 // 'addr_page_index' is the page containing 'addr' and must not be -1.
1989 // Return 0 if there is no such object - that is, if addr is past the
1990 // end of the used bytes, or its pages are not in 'from_space' etc.
1993 {
1994 #ifdef GENCGC_IS_PRECISE
1995 /* If we're in precise gencgc (non-x86oid as of this writing) then
1996 * we are only called on valid object pointers in the first place,
1997 * so we just have to do a bounds-check against the heap, a
1998 * generation check, and the already-pinned check. */
2003 #else
2004 /* quick check 1: Address is quite likely to have been invalid. */
2011 /* quick check 2: Check the offset within the page.
2012 *
2013 */
2017 /* Filter out anything which can't be a pointer to a Lisp object
2018 * (or, as a special case which also requires dont_move, a return
2019 * address referring to something in a CodeObject). This is
2020 * expensive but important, since it vastly reduces the
2021 * probability that random garbage will be bogusly interpreted as
2022 * a pointer which prevents a page from moving. */
2026 /* If the containing object is a code object and 'addr' points
2027 * anywhere beyond the boxed words,
2028 * presume it to be a valid unboxed return address. */
2032 /* Large object pages only contain ONE object, and it will never
2033 * be a CONS. However, arrays and bignums can be allocated larger
2034 * than necessary and then shrunk to fit, leaving what look like
2035 * (0 . 0) CONSes at the end. These appear valid to
2036 * properly_tagged_descriptor_p(), so pick them off here. */
2043 #endif
2044 }
2046 /* Adjust large bignum and vector objects. This will adjust the
2047 * allocated region if the size has shrunk, and move unboxed objects
2048 * into unboxed pages. The pages are not promoted here, and the
2049 * promoted region is not added to the new_regions; this is really
2050 * only designed to be called from preserve_pointer(). Shouldn't fail
2051 * if this is missed, just may delay the moving of objects to unboxed
2052 * pages, and the freeing of pages. */
2053 static void
2055 {
2056 page_index_t first_page;
2057 page_index_t next_page;
2058 sword_t nwords;
2060 uword_t remaining_bytes;
2061 uword_t bytes_freed;
2062 uword_t old_bytes_used;
2066 /* Check whether it's a vector or bignum object. */
2072 else
2075 /* Find its current size. */
2081 /* Note: Any page write-protection must be removed, else a later
2082 * scavenge_newspace may incorrectly not scavenge these pages.
2083 * This would not be necessary if they are added to the new areas,
2084 * but lets do it for them all (they'll probably be written
2085 * anyway?). */
2101 /* Shouldn't be write-protected at this stage. Essential that the
2102 * pages aren't. */
2105 next_page++;
2106 }
2108 /* Now only one page remains, but the object may have shrunk so
2109 * there may be more unused pages which will be freed. */
2111 /* Object may have shrunk but shouldn't have grown - check. */
2118 /* Adjust the bytes_used. */
2124 /* Free any remaining pages; needs care. */
2125 next_page++;
2132 /* It checks out OK, free the page. We don't need to both zeroing
2133 * pages as this should have been done before shrinking the
2134 * object. These pages shouldn't be write protected as they
2135 * should be zero filled. */
2142 next_page++;
2143 }
2148 bytes_freed));
2149 }
2155 }
2157 /*
2158 * Why is this restricted to protected objects only?
2159 * Because the rest of the page has been scavenged already,
2160 * and since that leaves forwarding pointers in the unprotected
2161 * areas you cannot scavenge it again until those are gone.
2162 */
2163 static void
2165 {
2166 // 'start' and 'count' are expressed in units of dwords
2169 }
2171 static void
2173 {
2174 page_index_t page;
2181 }
2182 }
2185 {
2187 }
2189 static void
2191 {
2192 page_index_t i;
2202 // move the page to newspace
2207 }
2208 }
2209 #ifndef LISP_FEATURE_WIN32
2211 #endif
2212 }
2216 {
2220 #ifdef DEBUG
2221 {
2226 }
2227 #endif
2228 }
2238 // Don't bother calling a sizing function for cons cells.
2246 }
2248 /* Take a possible pointer to a Lisp object and mark its page in the
2249 * page_table so that it will not be relocated during a GC.
2250 *
2251 * This involves locating the page it points to, then backing up to
2252 * the start of its region, then marking all pages dont_move from there
2253 * up to the first page that's not full or has a different generation
2254 *
2255 * It is assumed that all the page static flags have been cleared at
2256 * the start of a GC.
2257 *
2258 * It is also assumed that the current gc_alloc() region has been
2259 * flushed and the tables updated. */
2261 // TODO: there's probably a way to be a little more efficient here.
2262 // As things are, we start by finding the object that encloses 'addr',
2263 // then we see if 'addr' was a "valid" Lisp pointer to that object
2264 // - meaning we expect the correct lowtag on the pointer - except
2265 // that for code objects we don't require a correct lowtag
2266 // and we allow a pointer to anywhere in the object.
2267 //
2268 // It should be possible to avoid calling search_dynamic_space
2269 // more of the time. First, check if the page pointed to might hold code.
2270 // If it does, then we continue regardless of the pointer's lowtag
2271 // (because of the special allowance). If the page definitely does *not*
2272 // hold code, then we require up front that the lowtake make sense,
2273 // by doing the same checks that are in properly_tagged_descriptor_p.
2274 //
2275 // Problem: when code is allocated from a per-thread region,
2276 // does it ensure that the occupied pages are flagged as having code?
2278 static void
2280 {
2281 #ifdef LISP_FEATURE_IMMOBILE_SPACE
2282 /* Immobile space MUST be lower than dynamic space,
2283 or else this test needs to be revised */
2288 }
2289 #endif
2297 /* (Now that we know that addr_page_index is in range, it's
2298 * safe to index into page_table[] with it.) */
2301 /* Find the beginning of the region. Note that there may be
2302 * objects in the region preceding the one that we were passed a
2303 * pointer to: if this is the case, we will write-protect all the
2304 * previous objects' pages too. */
2306 #if 0
2307 /* I think this'd work just as well, but without the assertions.
2308 * -dan 2004.01.01 */
2310 #else
2314 /* Do some checks. */
2318 }
2319 #endif
2321 /* Adjust any large objects before promotion as they won't be
2322 * copied after promotion. */
2325 /* It may have moved to unboxed pages. */
2327 }
2329 /* Now work forward until the end of this contiguous area is found,
2330 * marking all pages as dont_move. */
2331 page_index_t i;
2335 /* Mark the page static. */
2338 /* It is essential that the pages are not write protected as
2339 * they may have pointers into the old-space which need
2340 * scavenging. They shouldn't be write protected at this
2341 * stage. */
2344 /* Check whether this is the last page in this contiguous block.. */
2347 }
2349 #if defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64)
2350 /* Do not do this for multi-page objects. Those pages do not need
2351 * object wipeout anyway.
2352 */
2355 #endif
2357 /* Check that the page is now static. */
2359 }
2360 \f
2361 /* If the given page is not write-protected, then scan it for pointers
2362 * to younger generations or the top temp. generation, if no
2363 * suspicious pointers are found then the page is write-protected.
2364 *
2365 * Care is taken to check for pointers to the current gc_alloc()
2366 * region if it is a younger generation or the temp. generation. This
2367 * frees the caller from doing a gc_alloc_update_page_tables(). Actually
2368 * the gc_alloc_generation does not need to be checked as this is only
2369 * called from scavenge_generation() when the gc_alloc generation is
2370 * younger, so it just checks if there is a pointer to the current
2371 * region.
2372 *
2373 * We return 1 if the page was write-protected, else 0. */
2374 static int
2376 {
2378 sword_t j;
2383 /* Shouldn't be a free page. */
2387 /* Skip if it's already write-protected, pinned, or unboxed */
2389 /* FIXME: What's the reason for not write-protecting pinned pages? */
2394 /* Scan the page for pointers to younger generations or the
2395 * top temp. generation. */
2397 /* This is conservative: any word satisfying is_lisp_pointer() is
2398 * assumed to be a pointer. To do otherwise would require a family
2399 * of scavenge-like functions. */
2402 page_index_t index;
2407 /* Check that it's in the dynamic space */
2415 /* Or does it point within a current gc_alloc() region? */
2422 }
2423 }
2424 #ifdef LISP_FEATURE_IMMOBILE_SPACE
2427 // This is *possibly* a pointer to an object in immobile space,
2428 // given that above two conditions were satisfied.
2429 // But unlike in the dynamic space case, we need to read a byte
2430 // from the object to determine its generation, which requires care.
2431 // Consider an unboxed word that looks like a pointer to a word that
2432 // looks like fun-header-widetag. We can't naively back up to the
2433 // underlying code object since the alleged header might not be one.
2441 // This is a heuristic, since we're not actually looking for
2442 // an object boundary. Precise scanning of 'page' would obviate
2443 // the guard conditions here.
2447 }
2448 // A bogus generation number implies a not-really-pointer,
2449 // but it won't cause misbehavior.
2453 }
2454 }
2455 #endif
2456 }
2459 /* Write-protect the page. */
2460 /*FSHOW((stderr, "/write-protecting page %d gen %d\n", page, gen));*/
2463 GENCGC_CARD_BYTES,
2466 /* Note the page as protected in the page tables. */
2468 }
2471 }
2473 /* Scavenge all generations from FROM to TO, inclusive, except for
2474 * new_space which needs special handling, as new objects may be
2475 * added which are not checked here - use scavenge_newspace generation.
2476 *
2477 * Write-protected pages should not have any pointers to the
2478 * from_space so do need scavenging; thus write-protected pages are
2479 * not always scavenged. There is some code to check that these pages
2480 * are not written; but to check fully the write-protected pages need
2481 * to be scavenged by disabling the code to skip them.
2482 *
2483 * Under the current scheme when a generation is GCed the younger
2484 * generations will be empty. So, when a generation is being GCed it
2485 * is only necessary to scavenge the older generations for pointers
2486 * not the younger. So a page that does not have pointers to younger
2487 * generations does not need to be scavenged.
2488 *
2489 * The write-protection can be used to note pages that don't have
2490 * pointers to younger pages. But pages can be written without having
2491 * pointers to younger generations. After the pages are scavenged here
2492 * they can be scanned for pointers to younger generations and if
2493 * there are none the page can be write-protected.
2494 *
2495 * One complication is when the newspace is the top temp. generation.
2496 *
2497 * Enabling SC_GEN_CK scavenges the write-protected pages and checks
2498 * that none were written, which they shouldn't be as they should have
2499 * no pointers to younger generations. This breaks down for weak
2500 * pointers as the objects contain a link to the next and are written
2501 * if a weak pointer is scavenged. Still it's a useful check. */
2502 static void
2504 {
2505 page_index_t i;
2508 #define SC_GEN_CK 0
2509 #if SC_GEN_CK
2510 /* Clear the write_protected_cleared flags on all pages. */
2513 #endif
2525 /* This should be the start of a region */
2528 /* Now work forward until the end of the region */
2530 write_protected =
2534 }
2540 /* Now scan the pages and write protect those that
2541 * don't have pointers to younger generations. */
2545 }
2546 }
2551 }
2552 }
2554 }
2555 }
2557 #if SC_GEN_CK
2558 /* Check that none of the write_protected pages in this generation
2559 * have been written to. */
2572 }
2573 }
2574 #endif
2575 }
2577 \f
2578 /* Scavenge a newspace generation. As it is scavenged new objects may
2579 * be allocated to it; these will also need to be scavenged. This
2580 * repeats until there are no more objects unscavenged in the
2581 * newspace generation.
2582 *
2583 * To help improve the efficiency, areas written are recorded by
2584 * gc_alloc() and only these scavenged. Sometimes a little more will be
2585 * scavenged, but this causes no harm. An easy check is done that the
2586 * scavenged bytes equals the number allocated in the previous
2587 * scavenge.
2588 *
2589 * Write-protected pages are not scanned except if they are marked
2590 * dont_move in which case they may have been promoted and still have
2591 * pointers to the from space.
2592 *
2593 * Write-protected pages could potentially be written by alloc however
2594 * to avoid having to handle re-scavenging of write-protected pages
2595 * gc_alloc() does not write to write-protected pages.
2596 *
2597 * New areas of objects allocated are recorded alternatively in the two
2598 * new_areas arrays below. */
2602 #ifdef LISP_FEATURE_IMMOBILE_SPACE
2611 #else
2612 #define immobile_scav_queue_count 0
2613 #endif
2615 /* Do one full scan of the new space generation. This is not enough to
2616 * complete the job as new objects may be added to the generation in
2617 * the process which are not scavenged. */
2618 static void
2620 {
2621 page_index_t i;
2625 generation));
2627 /* Note that this skips over open regions when it encounters them. */
2632 /* (This may be redundant as write_protected is now
2633 * cleared before promotion.) */
2635 page_index_t last_page;
2638 /* The scavenge will start at the scan_start_offset of
2639 * page i.
2640 *
2641 * We need to find the full extent of this contiguous
2642 * block in case objects span pages.
2643 *
2644 * Now work forward until the end of this contiguous area
2645 * is found. A small area is preferred as there is a
2646 * better chance of its pages being write-protected. */
2648 /* If all pages are write-protected and movable,
2649 * then no need to scavenge */
2653 /* Check whether this is the last page in this
2654 * contiguous block */
2657 }
2659 /* Do a limited check for write-protected pages. */
2665 }
2667 }
2668 }
2671 generation));
2672 }
2674 /* Do a complete scavenge of the newspace generation. */
2675 static void
2677 {
2680 /* the new_areas array currently being written to by gc_alloc() */
2684 /* the new_areas created by the previous scavenge cycle */
2688 /* Flush the current regions updating the tables. */
2691 /* Turn on the recording of new areas by gc_alloc(). */
2695 /* Don't need to record new areas that get scavenged anyway during
2696 * scavenge_newspace_generation_one_scan. */
2699 /* Start with a full scavenge. */
2702 /* Record all new areas now. */
2705 /* Give a chance to weak hash tables to make other objects live.
2706 * FIXME: The algorithm implemented here for weak hash table gcing
2707 * is O(W^2+N) as Bruno Haible warns in
2708 * http://www.haible.de/bruno/papers/cs/weak/WeakDatastructures-writeup.html
2709 * see "Implementation 2". */
2712 /* Flush the current regions updating the tables. */
2715 /* Grab new_areas_index. */
2718 /*FSHOW((stderr,
2719 "The first scan is finished; current_new_areas_index=%d.\n",
2720 current_new_areas_index));*/
2723 /* Move the current to the previous new areas */
2727 /* Scavenge all the areas in previous new areas. Any new areas
2728 * allocated are saved in current_new_areas. */
2730 /* Allocate an array for current_new_areas; alternating between
2731 * new_areas_1 and 2 */
2734 else
2737 /* Set up for gc_alloc(). */
2741 #ifdef LISP_FEATURE_IMMOBILE_SPACE
2743 #endif
2744 /* Check whether previous_new_areas had overflowed. */
2747 /* New areas of objects allocated have been lost so need to do a
2748 * full scan to be sure! If this becomes a problem try
2749 * increasing NUM_NEW_AREAS. */
2752 }
2754 /* Don't need to record new areas that get scavenged
2755 * anyway during scavenge_newspace_generation_one_scan. */
2760 /* Record all new areas now. */
2765 /* Flush the current regions updating the tables. */
2770 /* Work through previous_new_areas. */
2778 }
2782 /* Flush the current regions updating the tables. */
2784 }
2788 /*FSHOW((stderr,
2789 "The re-scan has finished; current_new_areas_index=%d.\n",
2790 current_new_areas_index));*/
2791 }
2793 /* Turn off recording of areas allocated by gc_alloc(). */
2796 #if SC_NS_GEN_CK
2797 {
2798 page_index_t i;
2799 /* Check that none of the write_protected pages in this generation
2800 * have been written to. */
2807 lose("write protected page %d written to in scavenge_newspace_generation\ngeneration=%d dont_move=%d\n",
2809 }
2810 }
2811 }
2812 #endif
2813 }
2814 \f
2815 /* Un-write-protect all the pages in from_space. This is done at the
2816 * start of a GC else there may be many page faults while scavenging
2817 * the newspace (I've seen drive the system time to 99%). These pages
2818 * would need to be unprotected anyway before unmapping in
2819 * free_oldspace; not sure what effect this has on paging.. */
2820 static void
2822 {
2823 page_index_t i;
2833 /* Remove any write-protection. We should be able to rely
2834 * on the write-protect flag to avoid redundant calls. */
2839 /* First region. */
2843 /* Region continue. */
2846 /* Unprotect previous region. */
2848 /* First page in new region. */
2851 }
2852 }
2853 }
2854 }
2856 /* Unprotect last region. */
2858 }
2859 }
2861 /* Work through all the pages and free any in from_space. This
2862 * assumes that all objects have been copied or promoted to an older
2863 * generation. Bytes_allocated and the generation bytes_allocated
2864 * counter are updated. The number of bytes freed is returned. */
2865 static uword_t
2867 {
2874 /* Find a first page for the next region of pages. */
2879 first_page++;
2884 /* Find the last page of this region. */
2888 /* Free the page. */
2894 /* Should already be unprotected by unprotect_oldspace(). */
2896 last_page++;
2897 }
2903 #ifdef READ_PROTECT_FREE_PAGES
2906 OS_VM_PROT_NONE);
2907 #endif
2913 }
2914 \f
2915 #if 0
2916 /* Print some information about a pointer at the given address. */
2917 static void
2919 {
2920 /* If addr is in the dynamic space then out the page information. */
2925 addr,
2926 pi1,
2942 }
2943 #endif
2945 static int
2947 {
2948 /* For space verification: Pointers can be valid if they point
2949 * to a thread stack space. This would be faster if the thread
2950 * structures had page-table entries as if they were part of
2951 * the heap space. */
2957 }
2958 }
2960 }
2962 // NOTE: This function can produces false failure indications,
2963 // usually related to dynamic space pointing to the stack of a
2964 // dead thread, but there may be other reasons as well.
2965 static void
2967 {
2973 #ifdef LISP_FEATURE_IMMOBILE_SPACE
2977 #endif
2986 sword_t to_readonly_space =
2989 sword_t to_static_space =
2992 #ifdef LISP_FEATURE_IMMOBILE_SPACE
2993 sword_t to_immobile_space =
2998 #endif
3000 /* Does it point to the dynamic space? */
3002 /* If it's within the dynamic space it should point to a used page. */
3007 /* Check that it doesn't point to a forwarding pointer! */
3010 }
3011 /* Check that its not in the RO space as it would then be a
3012 * pointer from the RO to the dynamic space. */
3016 }
3017 #ifdef LISP_FEATURE_IMMOBILE_SPACE
3018 // verify all immobile space -> dynamic space pointers
3021 }
3022 #endif
3023 /* Does it point to a plausible object? This check slows
3024 * it down a lot (so it's commented out).
3025 *
3026 * "a lot" is serious: it ate 50 minutes cpu time on
3027 * my duron 950 before I came back from lunch and
3028 * killed it.
3029 *
3030 * FIXME: Add a variable to enable this
3031 * dynamically. */
3032 /*
3033 if (!valid_lisp_pointer_p((lispobj *)thing) {
3034 lose("ptr %p to invalid object %p\n", thing, start);
3035 }
3036 */
3037 #ifdef LISP_FEATURE_IMMOBILE_SPACE
3039 // the object pointed to must not have been discarded as garbage
3043 // verify all pointers to immobile space
3046 #endif
3049 /* Verify that it points to another valid space. */
3053 }
3054 }
3057 /* skip fixnums */
3060 /* boxed objects */
3066 #ifdef COMPLEX_CHARACTER_STRING_WIDETAG
3068 #endif
3078 #if N_WORD_BITS == 64
3080 #endif
3084 #ifdef LISP_FEATURE_IMMOBILE_CODE
3089 #endif
3094 lispobj bitmap =
3100 }
3103 {
3104 /* Check that it's not in the dynamic space.
3105 * FIXME: Isn't is supposed to be OK for code
3106 * objects to be in the dynamic space these days? */
3107 /* It is for byte compiled code, but there's
3108 * no byte compilation in SBCL anymore. */
3110 /* Only when enabled */
3114 start));
3115 }
3119 /* Scavenge the boxed section of the code data block */
3122 /* Scavenge the boxed section of each function
3123 * object in the code data block. */
3129 }
3131 /* unboxed objects */
3133 #if N_WORD_BITS != 64
3135 #endif
3137 #ifdef COMPLEX_LONG_FLOAT_WIDETAG
3139 #endif
3140 #ifdef COMPLEX_SINGLE_FLOAT_WIDETAG
3142 #endif
3143 #ifdef COMPLEX_DOUBLE_FLOAT_WIDETAG
3145 #endif
3146 #ifdef COMPLEX_LONG_FLOAT_WIDETAG
3148 #endif
3149 #ifdef SIMD_PACK_WIDETAG
3151 #endif
3155 #ifdef NO_TLS_VALUE_MARKER_WIDETAG
3157 #endif
3164 }
3165 }
3166 }
3169 }
3170 }
3174 static void
3176 {
3177 /* FIXME: It would be nice to make names consistent so that
3178 * foo_size meant size *in* *bytes* instead of size in some
3179 * arbitrary units. (Yes, this caused a bug, how did you guess?:-)
3180 * Some counts of lispobjs are called foo_count; it might be good
3181 * to grep for all foo_size and rename the appropriate ones to
3182 * foo_count. */
3183 #ifdef LISP_FEATURE_IMMOBILE_SPACE
3184 # ifdef __linux__
3185 // Try this verification if marknsweep was compiled with extra debugging.
3186 // But weak symbols don't work on macOS.
3189 # endif
3196 #endif
3197 sword_t read_only_space_size =
3200 sword_t static_space_size =
3205 sword_t binding_stack_size =
3209 }
3213 }
3215 void
3217 generation_index_t generation)
3218 {
3219 page_index_t i;
3226 page_index_t last_page;
3228 /* This should be the start of a contiguous block */
3231 /* Need to find the full extent of this contiguous block in case
3232 objects span pages. */
3234 /* Now work forward until the end of this contiguous area is
3235 found. */
3237 /* Check whether this is the last page in this contiguous
3238 * block. */
3246 }
3247 }
3248 }
3250 {
3252 }
3254 /* Check that all the free space is zero filled. */
3255 static void
3257 {
3258 page_index_t page;
3262 /* The whole page should be zero filled. */
3264 sword_t i;
3268 }
3269 }
3276 sword_t i;
3280 }
3281 }
3282 }
3283 }
3284 }
3285 }
3287 /* External entry point for verify_zero_fill */
3288 void
3290 {
3291 /* Flush the alloc regions updating the tables. */
3295 }
3297 static void
3299 {
3303 }
3304 \f
3305 /* Write-protect all the dynamic boxed pages in the given generation. */
3306 static void
3308 {
3309 page_index_t start;
3316 page_index_t last;
3318 /* Note the page as protected in the page tables. */
3325 }
3334 }
3335 }
3342 generation));
3343 }
3344 }
3346 #if defined(LISP_FEATURE_SB_THREAD) && (defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64))
3347 static void
3349 {
3351 /* On Darwin the signal context isn't a contiguous block of memory,
3352 * so just preserve_pointering its contents won't be sufficient.
3353 */
3354 #if defined(LISP_FEATURE_DARWIN)||defined(LISP_FEATURE_WIN32)
3355 #if defined LISP_FEATURE_X86
3363 #elif defined LISP_FEATURE_X86_64
3379 #else
3381 #endif
3382 #endif
3383 #if !defined(LISP_FEATURE_WIN32)
3386 }
3387 #endif
3388 }
3389 #endif
3391 static void
3393 {
3394 page_index_t i;
3396 /* scavenge() will evacuate all oldspace pages, but no newspace
3397 * pages. Pinned pages are precisely those pages which must not
3398 * be evacuated, so move them to newspace directly. */
3402 /* dont_move is cleared lazily, so validate the space as well. */
3405 // do not move to newspace after all, this will be word-wiped
3407 }
3409 /* And since we're moving the pages wholesale, also adjust
3410 * the generation allocation counters. */
3414 }
3415 }
3416 }
3418 /* Garbage collect a generation. If raise is 0 then the remains of the
3419 * generation are not raised to the next generation. */
3420 static void
3422 {
3423 page_index_t i;
3428 /* The oldest generation can't be raised. */
3431 /* Check if weak hash tables were processed in the previous GC. */
3434 /* Initialize the weak pointer list. */
3437 /* When a generation is not being raised it is transported to a
3438 * temporary generation (NUM_GENERATIONS), and lowered when
3439 * done. Set up this new generation. There should be no pages
3440 * allocated to it yet. */
3443 }
3445 /* Set the global src and dest. generations */
3449 else
3452 /* Change to a new space for allocation, resetting the alloc_start_page */
3459 /* Before any pointers are preserved, the dont_move flags on the
3460 * pages need to be cleared. */
3465 }
3467 /* Un-write-protect the old-space pages. This is essential for the
3468 * promoted pages as they may contain pointers into the old-space
3469 * which need to be scavenged. It also helps avoid unnecessary page
3470 * faults as forwarding pointers are written into them. They need to
3471 * be un-protected anyway before unmapping later. */
3474 /* Scavenge the stacks' conservative roots. */
3476 /* there are potentially two stacks for each thread: the main
3477 * stack, which may contain Lisp pointers, and the alternate stack.
3478 * We don't ever run Lisp code on the altstack, but it may
3479 * host a sigcontext with lisp objects in it */
3481 /* what we need to do: (1) find the stack pointer for the main
3482 * stack; scavenge it (2) find the interrupt context on the
3483 * alternate stack that might contain lisp values, and scavenge
3484 * that */
3486 /* we assume that none of the preceding applies to the thread that
3487 * initiates GC. If you ever call GC from inside an altstack
3488 * handler, you will lose. */
3490 #if defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64)
3491 /* And if we're saving a core, there's no point in being conservative. */
3498 # if defined(LISP_FEATURE_SB_SAFEPOINT)
3499 /* Conservative collect_garbage is always invoked with a
3500 * foreign C call or an interrupt handler on top of every
3501 * existing thread, so the stored SP in each thread
3502 * structure is valid, no matter which thread we are looking
3503 * at. For threads that were running Lisp code, the pitstop
3504 * and edge functions maintain this value within the
3505 * interrupt or exception handler. */
3509 /* In addition to pointers on the stack, also preserve the
3510 * return PC, the only value from the context that we need
3511 * in addition to the SP. The return PC gets saved by the
3512 * foreign call wrapper, and removed from the control stack
3513 * into a register. */
3516 /* And on platforms with interrupts: scavenge ctx registers. */
3518 /* Disabled on Windows, because it does not have an explicit
3519 * stack of `interrupt_contexts'. The reported CSP has been
3520 * chosen so that the current context on the stack is
3521 * covered by the stack scan. See also set_csp_from_context(). */
3522 # ifndef LISP_FEATURE_WIN32
3528 }
3529 # endif
3530 # elif defined(LISP_FEATURE_SB_THREAD)
3533 /* Somebody is going to burn in hell for this, but casting
3534 * it in two steps shuts gcc up about strict aliasing. */
3546 }
3547 }
3548 }
3549 # else
3551 # endif
3557 }
3558 }
3559 }
3560 #else
3561 /* Non-x86oid systems don't have "conservative roots" as such, but
3562 * the same mechanism is used for objects pinned for use by alien
3563 * code. */
3571 }
3572 }
3573 #endif
3575 #if QSHOW
3580 num_dont_move_pages,
3582 }
3583 #endif
3585 /* Now that all of the pinned (dont_move) pages are known, and
3586 * before we start to scavenge (and thus relocate) objects,
3587 * relocate the pinned pages to newspace, so that the scavenger
3588 * will not attempt to relocate their contents. */
3591 /* Scavenge all the rest of the roots. */
3593 #if !defined(LISP_FEATURE_X86) && !defined(LISP_FEATURE_X86_64)
3594 /*
3595 * If not x86, we need to scavenge the interrupt context(s) and the
3596 * control stack.
3597 */
3598 {
3603 }
3605 # ifdef LISP_FEATURE_SB_SAFEPOINT
3606 /* In this case, scrub all stacks right here from the GCing thread
3607 * instead of doing what the comment below says. Suboptimal, but
3608 * easier. */
3611 # else
3612 /* Scrub the unscavenged control stack space, so that we can't run
3613 * into any stale pointers in a later GC (this is done by the
3614 * stop-for-gc handler in the other threads). */
3616 # endif
3617 }
3618 #endif
3620 /* Scavenge the Lisp functions of the interrupt handlers, taking
3621 * care to avoid SIG_DFL and SIG_IGN. */
3627 }
3628 }
3629 /* Scavenge the binding stacks. */
3630 {
3636 #ifdef LISP_FEATURE_SB_THREAD
3637 /* do the tls as well */
3641 #endif
3642 }
3643 }
3645 /* Scavenge static space. */
3650 }
3654 /* All generations but the generation being GCed need to be
3655 * scavenged. The new_space generation needs special handling as
3656 * objects may be moved in - it is handled separately below. */
3657 #ifdef LISP_FEATURE_IMMOBILE_SPACE
3659 #endif
3664 /* Finally scavenge the new_space generation. Keep going until no
3665 * more objects are moved into the new generation */
3668 /* FIXME: I tried reenabling this check when debugging unrelated
3669 * GC weirdness ca. sbcl-0.6.12.45, and it failed immediately.
3670 * Since the current GC code seems to work well, I'm guessing that
3671 * this debugging code is just stale, but I haven't tried to
3672 * figure it out. It should be figured out and then either made to
3673 * work or just deleted. */
3675 #define RESCAN_CHECK 0
3676 #if RESCAN_CHECK
3677 /* As a check re-scavenge the newspace once; no new objects should
3678 * be found. */
3679 {
3681 os_vm_size_t bytes_allocated;
3683 /* Start with a full scavenge. */
3686 /* Flush the current regions, updating the tables. */
3693 bytes_allocated);
3694 }
3695 }
3696 #endif
3701 #ifdef LISP_FEATURE_IMMOBILE_SPACE
3702 // Do this last, because until wipe_nonpinned_words() happens,
3703 // not all page table entries have the 'gen' value updated,
3704 // which we need to correctly find all old->young pointers.
3706 #endif
3708 /* Flush the current regions, updating the tables. */
3711 /* Free the pages in oldspace, but not those marked dont_move. */
3714 /* If the GC is not raising the age then lower the generation back
3715 * to its normal generation number */
3725 }
3727 /* Reset the alloc_start_page for generation. */
3736 }
3738 }
3740 /* Set the new gc trigger for the GCed generation. */
3747 else
3750 }
3752 /* Update last_free_page, then SymbolValue(ALLOCATION_POINTER). */
3753 sword_t
3755 {
3766 }
3768 static void
3770 {
3771 /* There's a mysterious Solaris/x86 problem with using mmap
3772 * tricks for memory zeroing. See sbcl-devel thread
3773 * "Re: patch: standalone executable redux".
3774 */
3775 #if defined(LISP_FEATURE_SUNOS)
3777 #else
3778 const page_index_t
3793 }
3794 #endif
3795 }
3797 static void
3799 {
3813 last_page++;
3818 }
3819 }
3823 /* GC all generations newer than last_gen, raising the objects in each
3824 * to the next older generation - we finish when all generations below
3825 * last_gen are empty. Then if last_gen is due for a GC, or if
3826 * last_gen==NUM_GENERATIONS (the scratch generation? eh?) we GC that
3827 * too. The valid range for last_gen is: 0,1,...,NUM_GENERATIONS.
3828 *
3829 * We stop collecting at gencgc_oldest_gen_to_gc, even if this is less than
3830 * last_gen (oh, and note that by default it is NUM_GENERATIONS-1) */
3831 void
3833 {
3837 /* The largest value of last_free_page seen since the time
3838 * remap_free_pages was called. */
3849 last_gen));
3851 }
3853 /* Flush the alloc regions updating the tables. */
3856 /* Verify the new objects created by Lisp code. */
3860 }
3865 #ifdef LISP_FEATURE_IMMOBILE_SPACE
3866 /* Immobile space generation bits are lazily updated for gen0
3867 (not touched on every object allocation) so do it now */
3869 #endif
3872 /* Collect the generation. */
3875 /* Never raise the oldest generation. Never raise the extra generation
3876 * collected due to more-flag. */
3880 raise =
3883 /* If we would not normally raise this one, but we're
3884 * running low on space in comparison to the object-sizes
3885 * we've been seeing, raise it and collect the next one
3886 * too. */
3890 }
3891 }
3896 gen,
3897 raise,
3901 }
3903 /* If an older generation is being filled, then update its
3904 * memory age. */
3908 }
3912 /* Reset the memory age cum_sum. */
3918 }
3920 gen++;
3923 || more
3924 || (raise
3930 /* Now if gen-1 was raised all generations before gen are empty.
3931 * If it wasn't raised then all generations before gen-1 are empty.
3932 *
3933 * Now objects within this gen's pages cannot point to younger
3934 * generations unless they are written to. This can be exploited
3935 * by write-protecting the pages of gen; then when younger
3936 * generations are GCed only the pages which have been written
3937 * need scanning. */
3940 else
3943 /* There's not much point in WPing pages in generation 0 as it is
3944 * never scavenged (except promoted pages). */
3946 /* Check that they are all empty. */
3951 }
3953 }
3954 #ifdef LISP_FEATURE_IMMOBILE_SPACE
3956 #endif
3958 /* Set gc_alloc() back to generation 0. The current regions should
3959 * be flushed after the above GCs. */
3963 /* Save the high-water mark before updating last_free_page */
3969 /* Update auto_gc_trigger. Make sure we trigger the next GC before
3970 * running out of heap! */
3973 else
3978 auto_gc_trigger);
3980 /* If we did a big GC (arbitrarily defined as gen > 1), release memory
3981 * back to the OS.
3982 */
3988 }
3995 }
3996 \f
3997 void
3999 {
4000 page_index_t i;
4002 #if defined(LISP_FEATURE_SB_SAFEPOINT)
4004 #endif
4006 /* Compute the number of pages needed for the dynamic space.
4007 * Dynamic space size should be aligned on page size. */
4011 /* Default nursery size to 5% of the total dynamic space size,
4012 * min 1Mb. */
4017 /* The page_table must be allocated using "calloc" to initialize
4018 * the page structures correctly. There used to be a separate
4019 * initialization loop (now commented out; see below) but that was
4020 * unnecessary and did hurt startup time. */
4023 #ifdef LISP_FEATURE_IMMOBILE_SPACE
4025 #endif
4029 /* We use mmap directly here so that we can use a minimum of
4030 system calls per page during GC.
4031 All we need here now is a madvise(DONTNEED) at the end of GC. */
4032 page_table_pinned_dwords
4034 /* We do not need to zero */
4040 /* The page structures are initialized implicitly when page_table
4041 * is allocated with "calloc" above. Formerly we had the following
4042 * explicit initialization here (comments converted to C99 style
4043 * for readability as C's block comments don't nest):
4044 *
4045 * // Initialize each page structure.
4046 * for (i = 0; i < page_table_pages; i++) {
4047 * // Initialize all pages as free.
4048 * page_table[i].allocated = FREE_PAGE_FLAG;
4049 * page_table[i].bytes_used = 0;
4050 *
4051 * // Pages are not write-protected at startup.
4052 * page_table[i].write_protected = 0;
4053 * }
4054 *
4055 * Without this loop the image starts up much faster when dynamic
4056 * space is large -- which it is on 64-bit platforms already by
4057 * default -- and when "calloc" for large arrays is implemented
4058 * using copy-on-write of a page of zeroes -- which it is at least
4059 * on Linux. In this case the pages that page_table_pages is stored
4060 * in are mapped and cleared not before the corresponding part of
4061 * dynamic space is used. For example, this saves clearing 16 MB of
4062 * memory at startup if the page size is 4 KB and the size of
4063 * dynamic space is 4 GB.
4064 * FREE_PAGE_FLAG must be 0 for this to work correctly which is
4065 * asserted below: */
4066 {
4067 /* Compile time assertion: If triggered, declares an array
4068 * of dimension -1 forcing a syntax error. The intent of the
4069 * assignment is to avoid an "unused variable" warning. */
4072 }
4076 /* Initialize the generations. */
4086 /* the tune-able parameters */
4091 }
4093 /* Initialize gc_alloc. */
4099 }
4101 /* Pick up the dynamic space from after a core load.
4102 *
4103 * The ALLOCATION_POINTER points to the end of the dynamic space.
4104 */
4106 static void
4108 {
4120 /* It is possible, though rare, for the saved page table
4121 * to contain free pages below alloc_ptr. */
4131 }
4140 }
4141 page++;
4150 }
4152 void
4154 {
4156 }
4157 \f
4159 /* alloc(..) is the external interface for memory allocation. It
4160 * allocates to generation 0. It is not called from within the garbage
4161 * collector as it is only external uses that need the check for heap
4162 * size (GC trigger) and to disable the interrupts (interrupts are
4163 * always disabled during a GC).
4164 *
4165 * The vops that call alloc(..) assume that the returned space is zero-filled.
4166 * (E.g. the most significant word of a 2-word bignum in MOVE-FROM-UNSIGNED.)
4167 *
4168 * The check for a GC trigger is only performed when the current
4169 * region is full, so in most cases it's not needed. */
4174 {
4175 #ifndef LISP_FEATURE_WIN32
4176 lispobj alloc_signal;
4177 #endif
4184 /* Check for alignment allocation problems. */
4188 #if !(defined(LISP_FEATURE_WIN32) && defined(LISP_FEATURE_SB_THREAD))
4189 /* Must be inside a PA section. */
4191 #endif
4196 /* maybe we can do this quickly ... */
4202 }
4204 /* We don't want to count nbytes against auto_gc_trigger unless we
4205 * have to: it speeds up the tenuring of objects and slows down
4206 * allocation. However, unless we do so when allocating _very_
4207 * large objects we are in danger of exhausting the heap without
4208 * running sufficient GCs.
4209 */
4213 /* we have to go the long way around, it seems. Check whether we
4214 * should GC in the near future
4215 */
4217 /* Don't flood the system with interrupts if the need to gc is
4218 * already noted. This can happen for example when SUB-GC
4219 * allocates or after a gc triggered in a WITHOUT-GCING. */
4221 /* set things up so that GC happens when we finish the PA
4222 * section */
4225 #ifdef LISP_FEATURE_SB_SAFEPOINT
4227 #else
4229 #ifdef GENCGC_IS_PRECISE
4230 /* PPC calls alloc() from a trap
4231 * look up the most context if it's from a trap. */
4232 {
4235 maybe_save_gc_mask_and_block_deferrables
4237 }
4238 #else
4240 #endif
4241 #endif
4242 }
4243 }
4244 }
4247 #ifndef LISP_FEATURE_WIN32
4248 /* for sb-prof, and not supported on Windows yet */
4257 thread);
4258 }
4259 }
4260 #endif
4263 }
4265 lispobj *
4267 {
4269 /* Select correct region, and call general_alloc_internal with it.
4270 * For other then boxed allocation we must lock first, since the
4271 * region is shared. */
4273 #ifdef LISP_FEATURE_SB_THREAD
4275 #else
4277 #endif
4290 }
4291 }
4293 lispobj AMD64_SYSV_ABI *
4295 {
4296 #ifdef LISP_FEATURE_SB_SAFEPOINT_STRICTLY
4301 #else
4303 #endif
4307 #ifdef LISP_FEATURE_SB_SAFEPOINT_STRICTLY
4310 #endif
4313 }
4314 \f
4315 /*
4316 * shared support for the OS-dependent signal handlers which
4317 * catch GENCGC-related write-protect violations
4318 */
4321 /* Depending on which OS we're running under, different signals might
4322 * be raised for a violation of write protection in the heap. This
4323 * function factors out the common generational GC magic which needs
4324 * to invoked in this case, and should be called from whatever signal
4325 * handler is appropriate for the OS we're running under.
4326 *
4327 * Return true if this signal is a normal generational GC thing that
4328 * we were able to handle, or false if it was abnormal and control
4329 * should fall through to the general SIGSEGV/SIGBUS/whatever logic.
4330 *
4331 * We have two control flags for this: one causes us to ignore faults
4332 * on unprotected pages completely, and the second complains to stderr
4333 * but allows us to continue without losing.
4334 */
4341 int
4343 {
4346 #if QSHOW_SIGNALS
4350 #endif
4352 /* Check whether the fault is within the dynamic space. */
4354 #ifdef LISP_FEATURE_IMMOBILE_SPACE
4358 #endif
4360 /* It can be helpful to be able to put a breakpoint on this
4361 * case to help diagnose low-level problems. */
4364 /* not within the dynamic space -- not our responsibility */
4372 /* Unprotect the page. */
4377 /* The only acceptable reason for this signal on a heap
4378 * access is that GENCGC write-protected the page.
4379 * However, if two CPUs hit a wp page near-simultaneously,
4380 * we had better not have the second one lose here if it
4381 * does this test after the first one has already set wp=0
4382 */
4396 fault_addr,
4397 page_index,
4408 }
4409 }
4412 /* Don't worry, we can handle it. */
4414 }
4415 }
4416 /* This is to be called when we catch a SIGSEGV/SIGBUS, determine that
4417 * it's not just a case of the program hitting the write barrier, and
4418 * are about to let Lisp deal with it. It's basically just a
4419 * convenient place to set a gdb breakpoint. */
4420 void
4422 {}
4424 static void
4426 {
4428 #if defined(LISP_FEATURE_SB_SAFEPOINT_STRICTLY) && !defined(LISP_FEATURE_WIN32)
4430 #endif
4431 }
4433 /* GC is single-threaded and all memory allocations during a
4434 collection happen in the GC thread, so it is sufficient to update
4435 all the the page tables once at the beginning of a collection and
4436 update only page tables of the GC thread during the collection. */
4438 {
4439 /* Flush the alloc regions updating the tables. */
4444 }
4445 }
4450 }
4451 }
4454 }
4456 void
4458 {
4464 }
4466 static void
4468 {
4469 page_index_t i;
4473 #ifdef READ_PROTECT_FREE_PAGES
4475 GENCGC_CARD_BYTES,
4476 OS_VM_PROT_ALL);
4477 #endif
4479 }
4480 }
4481 }
4483 /* Things to do before doing a final GC before saving a core (without
4484 * purify).
4485 *
4486 * + Pages in large_object pages aren't moved by the GC, so we need to
4487 * unset that flag from all pages.
4488 * + The pseudo-static generation isn't normally collected, but it seems
4489 * reasonable to collect it at least when saving a core. So move the
4490 * pages to a normal generation.
4491 */
4492 static void
4494 {
4495 page_index_t i;
4497 #ifdef LISP_FEATURE_IMMOBILE_SPACE
4500 #endif
4509 }
4510 }
4511 }
4514 /* Do a non-conservative GC, and then save a core with the initial
4515 * function being set to the value of the static symbol
4516 * SB!VM:RESTART-LISP-FUNCTION */
4517 void
4521 {
4533 /* The filename might come from Lisp, and be moved by the now
4534 * non-conservative GC. */
4537 /* Collect twice: once into relatively high memory, and then back
4538 * into low memory. This compacts the retained data into the lower
4539 * pages, minimizing the size of the core file.
4540 */
4551 application_type);
4553 /* The dumper doesn't know that pages need to be zeroed before use. */
4558 /* Oops. Save still managed to fail. Since we've mangled the stack
4559 * beyond hope, there's not much we can do.
4560 * (beyond FUNCALLing RESTART_LISP_FUNCTION, but I suspect that's
4561 * going to be rather unsatisfactory too... */
4563 }