| blob | 658c16981ed60da015848df5b38497bc0143028d |
1 /* -*- Mode: C++; c-basic-offset: 4; indent-tabs-mode: nil; tab-width: 4 -*- */
2 /* vi: set ts=4 sw=4 expandtab: (add to ~/.vimrc: set modeline modelines=5) */
3 /* ***** BEGIN LICENSE BLOCK *****
4 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
5 *
6 * The contents of this file are subject to the Mozilla Public License Version
7 * 1.1 (the "License"); you may not use this file except in compliance with
8 * the License. You may obtain a copy of the License at
9 * http://www.mozilla.org/MPL/
10 *
11 * Software distributed under the License is distributed on an "AS IS" basis,
12 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
13 * for the specific language governing rights and limitations under the
14 * License.
15 *
16 * The Original Code is [Open Source Virtual Machine.].
17 *
18 * The Initial Developer of the Original Code is
19 * Adobe System Incorporated.
20 * Portions created by the Initial Developer are Copyright (C) 2004-2006
21 * the Initial Developer. All Rights Reserved.
22 *
23 * Contributor(s):
24 * Adobe AS3 Team
25 * leon.sha@sun.com
26 *
27 * Alternatively, the contents of this file may be used under the terms of
28 * either the GNU General Public License Version 2 or later (the "GPL"), or
29 * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
30 * in which case the provisions of the GPL or the LGPL are applicable instead
31 * of those above. If you wish to allow use of your version of this file only
32 * under the terms of either the GPL or the LGPL, and not to allow others to
33 * use your version of this file under the terms of the MPL, indicate your
34 * decision by deleting the provisions above and replace them with the notice
35 * and other provisions required by the GPL or the LGPL. If you do not delete
36 * the provisions above, a recipient may use your version of this file under
37 * the terms of any one of the MPL, the GPL or the LGPL.
38 *
39 * ***** END LICENSE BLOCK ***** */
44 #ifdef AVMPLUS_SAMPLER
45 //sampling support
47 #else
48 #define SAMPLE_FRAME(_x, _s)
49 #define SAMPLE_CHECK()
50 #endif
52 namespace MMgc
53 {
54 #ifdef MMGC_MEMORY_PROFILER
55 // get detailed info on each size class allocators
57 #endif
59 /*virtual*/
62 /*virtual*/
65 /*virtual*/
68 /*virtual*/
71 /*virtual*/
74 ////////////// GC //////////////////////////////////////////////////////////
76 // Size classes for our GC. From 8 to 128, size classes are spaced
77 // evenly 8 bytes apart. The finest granularity we can achieve is
78 // 8 bytes, as pointers must be 8-byte aligned thanks to our use
79 // of the bottom 3 bits of 32-bit atoms for Special Purposes.
80 // Above that, the size classes have been chosen to maximize the
81 // number of items that fit in a 4096-byte block, given our block
82 // header information.
88 };
90 /* kSizeClassIndex[] generated with this code:
91 kSizeClassIndex[0] = 0;
92 for (var i:int = 1; i < kNumSizeClasses; i++)
93 for (var j:int = (kSizeClasses[i-1]>>3), n=(kSizeClasses[i]>>3); j < n; j++)
94 kSizeClassIndex[j] = i;
95 */
97 // index'd by size>>3 - 1
124 };
126 #ifdef _MSC_VER
127 # pragma warning(push)
129 #endif
132 :
141 #ifdef _DEBUG
142 // check for missing write barriers at every Alloc
144 #endif
165 mark_item_recursion_control(20), // About 3KB as measured with GCC 4.1 on MacOS X (144 bytes / frame), May 2009
177 #ifdef DEBUGGER
179 #endif
180 {
181 // sanity check for all our types
192 #ifdef MMGC_64BIT
195 #else
198 #endif
202 // The size tables above are derived based on a block size of 4096; this
203 // assert keeps us honest. Talk to Lars if you get into trouble here.
204 //
205 // Also it appears that some DEBUG-mode guards in SetPageMapValue,
206 // GetPageMapValue, ClearPageMapValue know that the block size is 4096.
215 // Global budget for blocks on the quick lists of small-object allocators. This
216 // budget serves as a throttle on the free lists during times when the GC is not
217 // running; when the GC is running the periodic flushing of the quick lists
218 // makes the budget irrelevant. The budget is global so that very active allocators
219 // can have long free lists at the expense of inactive allocators, which must have
220 // short ones.
221 //
222 // This is somewhat arbitrary: 4 blocks per allocator. Must initialize this before we
223 // create allocators because they will request a budget when they're created. The
224 // total budget /must/ accomodate at least one block per alloc, and makes very little
225 // sense if it is not at least two blocks per alloc. (Note no memory is allocated, it's
226 // just a budget.)
227 //
228 // See comment in GCAlloc.cpp for more about the quick lists.
232 // Create all the allocators up front (not lazy)
233 // so that we don't have to check the pointers for
234 // NULL on every allocation.
239 }
243 // See comment in GC.h
252 // precondition for emptyPageList
257 {
259 }
272 }
274 #ifdef _MSC_VER
275 # pragma warning(pop)
276 #endif
279 {
283 // Do this before calling GCHeap::RemoveGC as GCAutoEnter::Destroy
284 // expect this GC to still be the active GC and GCHeap::RemoveGC clears
285 // the active GC.
288 }
293 // Force all objects to be destroyed
296 {
299 }
305 }
309 }
311 // Go through m_bitsFreelist and collect list of all pointers
312 // that are on page boundaries into new list, pageList
321 }
323 }
324 }
326 // Go through page list and free all pages on it
331 }
339 // apparently the player can't be made to clean up so keep it from crashing at least
342 }
346 }
356 }
359 {
360 GCAssertMsg(!scanStack || onThread(), "Full collection with stack scan requested however the GC isn't associated with a thread, missing MMGC_GCENTER macro.");
364 }
373 #ifdef _DEBUG
374 // Dumping the stack trace at GC time can be very helpful with stack walk bugs
375 // where something was created, stored away in untraced, unmanaged memory and not
376 // reachable by the conservative stack walk
377 //DumpStackTrace();
379 #endif
382 }
384 #ifdef RECURSIVE_MARK
386 {
388 markerActive++;
390 markerActive--;
391 }
392 #else
394 {
399 }
400 #endif
403 {
406 }
408 #ifdef _DEBUG
410 {
413 // Kill incremental mark since we're gonna wipe the marks.
418 // Clear all mark bits.
428 // grab the stack, push it, and
434 }
443 }
444 #endif
452 {}
455 {
463 };
470 }
473 {
478 };
484 }
487 {
492 // If we're reaping don't do any work, this simplifies policy event timing and improves
493 // incrementality.
497 }
500 }
503 }
504 }
505 }
507 // non-incremental collection
509 }
510 }
512 // Note, the interaction with the policy manager in Alloc() should
513 // be the same as in AllocDouble(), which is defined in GC.h.
515 // In Alloc we have separate cases for large and small objects. We want
516 // small-object allocation to be as fast as possible. Hence the relative
517 // mess of #ifdefs below, and the following explanation.
518 //
519 // Normally we round up size to 8 bytes and add DebugSize and that sum is
520 // the size that determines whether we use the small-object allocator or
521 // the large-object one:
522 //
523 // requestSize = ((size + 7) & ~7) + DebugSize()
524 //
525 // Then we shift that three places and subtract 1 to obtain the allocator
526 // index:
527 //
528 // index = (requestSize >> 3) - 1
529 // = ((((size + 7) & ~7) + DebugSize()) >> 3) - 1
530 //
531 // We want to optimize this. Consider the case of a Release build where
532 // DebugSize() == 0:
533 //
534 // = (((size + 7) & ~7) >> 3) - 1
535 //
536 // Observe that the & ~7 is redundant because those bits will be lost,
537 // and that 1 = (8 >> 3)
538 //
539 // = ((size + 7) >> 3) - (8 >> 3)
540 // = (size + 7 - 8) >> 3
541 // index = (size - 1) >> 3
542 //
543 // In Release builds, the guard for small object allocation is
544 //
545 // guard = requestSize <= kLargestAlloc
546 // = ((size + 7) & ~7) <= kLargestAlloc
547 //
548 // Yet the /effective/ guard, given that not all the bits of size are used
549 // subsequently, is simply
550 //
551 // guard = size <= kLargestAlloc
552 //
553 // To see this, consider that if size < kLargestAlloc then requestSize <= kLargestAlloc
554 // and if size > kLargestAlloc then requestSize > kLargestAlloc, because requestSize
555 // is rounded up to an 8-byte boundary and kLargestAlloc is already rounded to an 8-byte
556 // boundary.
557 //
558 // So in the small-object case in Release builds we use the simpler guard, and defer
559 // the rounding and allocation overflow checking to the large-object case.
561 #ifdef MMGC_MEMORY_INFO
562 #ifndef _DEBUG
564 #endif
565 #endif
566 #ifdef MMGC_MEMORY_PROFILER
567 #ifndef MMGC_HOOKS
569 #endif
570 #endif
573 {
574 #ifdef _DEBUG
581 /*NOTREACHED*/
583 }
585 // always be marking in pedantic mode
590 }
591 }
592 }
593 #endif
594 #ifdef AVMPLUS_SAMPLER
598 #endif
600 #if defined _DEBUG || defined MMGC_MEMORY_PROFILER
602 #endif
603 #if defined _DEBUG
607 #endif
611 // In Release builds the calls to the underlying Allocs should end up being compiled
612 // as tail calls with reasonable compilers. Try to keep it that way.
615 {
616 // This is the fast lookup table implementation to find the right allocator.
617 // The table has been lifted into an instance variable because the Player is
618 // compiled with PIC and GCC generates somewhat gnarly code for that.
619 #ifdef _DEBUG
621 #else
623 #endif
625 // The table avoids a thre-way decision tree.
628 // assert that I fit
631 // assert that I don't fit (makes sure we don't waste space)
634 #if defined _DEBUG || defined MMGC_MEMORY_PROFILER
636 #else
638 #endif
639 }
640 else
641 {
642 #ifndef _DEBUG
646 #endif
647 #if defined _DEBUG || defined MMGC_MEMORY_PROFILER
649 #else
651 #endif
652 }
654 // Hooks are run by the lower-level allocators, which also signal
655 // allocation work and trigger GC.
659 #ifdef _DEBUG
660 // Note GetUserPointer(item) only required for DEBUG builds and for non-NULL pointers.
666 // in debug mode memory is poisoned so we have to clear it here
667 // in release builds memory is zero'd to start and on free/sweep
668 // in pedantic mode uninitialized data can trip the write barrier
669 // detector, only do it for pedantic because otherwise we want the
670 // mutator to get the poisoned data so it crashes if it relies on
671 // uninitialized values
674 }
675 }
676 #endif
679 }
681 // Mmmm.... gcc -O3 inlines Alloc into this in Release builds :-)
684 {
686 }
689 {
690 // FIXME - https://bugzilla.mozilla.org/show_bug.cgi?id=589102.
691 // (a) This code presumes we got here via delete, but that may not always
692 // be true, and if we didn't then it isn't right to clear the finalized
693 // bit nor the weak ref bit.
694 // (b) If we can't free an object it may be that we should clear it, to
695 // avoid hanging onto pointers to other objects. AtomArray::checkCapacity
696 // clears an object explicitly before freeing it always but should not have
697 // to do that.
702 }
704 // Observe that nbytes is never more than kBlockSize, and the budget applies only to
705 // objects tied up in quick lists, not in on-block free lists. So given that the
706 // total budget for the GC is at least kBlockSize, the loop is guaranteed to terminate.
709 {
710 // Flush quick lists until we have enough for the requested budget. We
711 // pick victims in round-robin fashion: there's a major iterator that
712 // selects the allocator pool, and a minor iterator that selects an
713 // allocator in that pool.
721 }
724 }
727 }
730 {
732 }
734 // I can think of two alternative policies for handling dependent allocations.
735 //
736 // One is to treat all memory the same: external code calls SignalDependentAllocation
737 // and SignalDependentDeallocation to account for the volume of data that are
738 // dependent on but not allocated by the GC, and the GC incorporates these data
739 // into policy decisions, heap target computation, and so on.
740 //
741 // (Benefits: few surprises policy-wise.
742 //
743 // Problems: If the volume (in bytes) of dependent data swamps the normal data
744 // then the collection policy may not work all that well -- collection cost may be
745 // too high, and memory usage may also be too high because the budget is L times
746 // the live memory, which may include a lot of bitmap data.)
747 //
748 // The other is to treat dependent memory differently. SignalDependentAllocation
749 // and SignalDependentDeallocation will account for the external memory, and if
750 // the volume of dependent memory is high relative to the budget (which is
751 // computed without regard for the volume of dependent memory) then those two
752 // methods will drive the collector forward one step.
753 //
754 // (Benefits: not overly sensitive to the volume of bitmap data, especially in
755 // computing the budget, yet a sufficient number of allocations will force the gc
756 // cycle to complete.
757 //
758 // Problems: It is a bit ad-hoc and it may fail to reclaim a large volume of
759 // bitmap data quickly enough.)
760 //
761 // I'm guessing the former is better, for now.
764 {
767 }
770 {
773 }
776 {
777 // ClearMarks may sweep, although I'm far from sure that that's a good idea,
778 // as SignalImminentAbort calls ClearMarks.
786 }
789 }
792 {
799 }
808 }
809 }
812 {
815 // clean up any pages that need sweeping
820 }
821 }
824 {
829 }
830 }
833 {
834 // GCRoot have pointers into the mark stack, clear them.
835 {
841 }
842 }
844 }
846 /*static*/
848 {
853 // Small-object allocators maintain an extra flag
854 // about weak objects in a block, need to set that
855 // flag here.
858 }
859 else
861 }
864 {
872 }
874 }
877 {
878 // There are two preconditions for Sweep: the mark stacks must be empty, and
879 // the queued bits must all be clear (except as part of kFreelist).
880 //
881 // We are doing this at shutdown, so don't bother with pushing the marking through
882 // to the end; just clear the stacks, clear the mark bits, and sweep. The objects
883 // will be finalized and deallocated and the blocks will be returned to the block
884 // manager.
891 // System invariant: collecting == false || marking == true
895 }
898 {
899 // Applications using -memstats for peak heap measurements need info printed before the sweep
903 }
905 // 'collecting' must be true because it indicates allocations should
906 // start out marked and the write barrier should short-circuit (not
907 // record any hits). We can't rely on write barriers to mark objects
908 // during finalization below since presweep or finalization could write
909 // a new GC object to a root.
914 // This clears the quick lists in the small-block allocators. It's crucial
915 // that we do that before we set 'collecting' and call any callbacks, because
916 // the cleared quick lists make sure that the slow allocation path that
917 // checks m_gc->collecting is taken, and that is required in order to
918 // allocate objects as marked under some circumstances.
926 sweeps++;
930 #ifdef MMGC_MEMORY_PROFILER
934 }
935 #endif
941 // invoke presweep on all callbacks
948 // The presweep callbacks can't drive marking or trigger write barriers as the barrier is disabled,
949 // but they can cause elements to be pushed onto the mark stack explicitly and it's necessary to call mark.
950 // One example of callback that pushes work items is the Sampler::presweep(). Another is the read
951 // barrier in GCWeakRef::get() - see Bugzilla 572331.
956 }
965 #ifdef MMGC_HEAP_GRAPH
967 #endif
978 // ISSUE: this could be done lazily at the expense other GC's potentially expanding
979 // unnecessarily, not sure its worth it as this should be pretty fast
984 #ifdef _DEBUG
986 #endif
989 sweepResults++;
991 }
999 #ifdef MMGC_HOOKS
1002 #endif
1010 }
1016 // we potentially freed a lot of memory, tell heap to regulate
1021 #ifdef MMGC_MEMORY_PROFILER
1025 }
1026 #endif
1028 // don't want postsweep to fire WB's
1033 // invoke postsweep callback
1040 // include large pages given back
1046 }
1048 #ifdef MMGC_HEAP_GRAPH
1050 #endif
1052 }
1055 {
1058 void *item = heapAlloc(size, GCHeap::kExpand| (zero ? GCHeap::kZero : 0) | (canFail ? GCHeap::kCanFail : 0));
1060 // mark GC pages in page map, small pages get marked one,
1061 // the first page of large pages is 3 and the rest are 2
1066 }
1067 }
1070 }
1073 {
1074 // Bugzilla 551833: Unmark first so that any OOM or other action triggered
1075 // by heapFree does not examine bits representing pages that are gone.
1078 }
1081 {
1086 {
1095 {
1098 }
1103 // The NULL return is a documented effect of this function, and is desired, despite
1104 // the assert above.
1106 }
1108 }
1111 {
1112 markerActive++;
1116 }
1117 markerActive--;
1118 }
1120 // This must not trigger OOM handling. It is /possible/ to restructure the
1121 // function to allow the use of heapAlloc() and heapFree() but the contortions
1122 // and resulting fragility really do not seem worth it. (Consider that
1123 // heapAlloc can trigger OOM which can invoke GC which can run finalizers
1124 // which can perform allocation that can cause MarkGCPages to be reentered.)
1125 //
1126 // The use of non-OOM functions may of course lead to worse OOM behavior, but
1127 // if the allocation of large page maps cause OOM events as a result of
1128 // increased fragmentation then the proper fix would be to restructure the page
1129 // map to be less monolithic.
1130 //
1131 // (See Bugzilla 551833.)
1134 {
1136 }
1139 {
1141 }
1144 {
1149 }
1151 /*static*/
1153 {
1155 if( ((char*) stackPointer > (char*)gc->rememberedStackTop) && ((char *)gc->stackEnter > (char*)stackPointer)) {
1158 }
1159 }
1162 {
1165 else
1167 }
1169 /*static*/
1171 {
1175 // this is where we will clear to when CleanStack is called
1179 // Push the stack onto the mark stack and then mark synchronously until
1180 // everything reachable from the stack has been marked.
1182 GCWorkItem item(stackPointer, uint32_t(stackBase - (char*)stackPointer), GCWorkItem::kStackMemory);
1185 }
1187 struct CreateRootFromCurrentStackArgs
1188 {
1192 };
1195 {
1197 MMgc::GC::AutoRCRootSegment root(context->gc, stackPointer, uint32_t((char*)context->gc->GetStackTop() - (char*)stackPointer));
1199 context->fn(context->arg); // Should not be a tail call as those stack variables have destructors
1200 }
1203 {
1204 CreateRootFromCurrentStackArgs arg2;
1209 }
1212 {
1219 }
1222 {
1224 }
1227 {
1229 }
1232 {
1234 }
1237 {
1241 }
1244 {
1246 // There is already a sentinel for this item and above
1247 // will be a fragment of the root, clear them both since
1248 // we need to rescan the whole thing.
1252 // markStackItem can be NULL if the sentinel was on the top of the stack.
1253 // Its also possible we popped the last fragment and haven't popped the sentinel yet,
1254 // check that the markStackItem is for this root before clearing.
1257 }
1259 }
1261 }
1264 {
1268 }
1270 }
1273 {
1275 }
1278 {
1281 }
1282 }
1285 {
1288 }
1290 }
1292 #ifdef _DEBUG
1294 {
1305 }
1306 }
1307 #endif
1309 #if 0
1310 // this is a release ready tool for hunting down freelist corruption
1312 {
1324 }
1329 }
1331 }
1332 }
1333 }
1334 #endif
1336 #ifdef _DEBUG
1339 {
1343 // skip vtable, first 4 bytes are cleared in Alloc
1344 p++;
1345 #ifdef MMGC_64BIT
1347 size--;
1348 #endif
1349 // in incrementalValidation mode manually deleted items
1350 // aren't put on the freelist so skip them
1354 }
1356 {
1358 {
1361 // If you hit this assert, use the debugger to cast 'item' to the type indicated by the call stack
1362 // in the output (you'll have to qualify the scope - (coreplayer::View*) rather than (View*)
1363 // and check to see that all fields are 0 (even boolean members). This Is a
1364 // performance optimization that lets the GC avoid zero'ing the whole thing itself.
1365 }
1366 }
1367 }
1369 #endif
1372 {
1382 // log gross stats any time anything interesting happens
1386 {
1390 }
1395 {
1398 }
1399 }
1402 {
1410 {
1417 }
1418 }
1421 {
1432 GCLog("[mem] gc[%d] %s allocator: %d%% efficiency %d bytes (%d kb) in use out of %d bytes (%d kb)\n", a->GetItemSize(), name, efficiency, inUse, inUse>>10, maxAlloc, maxAlloc>>10);
1433 #ifdef MMGC_MEMORY_PROFILER
1435 {
1440 GCLog("\t\t\t\t %u%% internal efficiency %u bytes (%u kb) actually requested out of %d bytes(%d kb)\n", internal_efficiency, (uint32_t) askSize, (uint32_t)(askSize>>10), inUse, inUse>>10);
1441 }
1442 #endif
1443 }
1444 }
1447 {
1455 #ifdef MMGC_MEMORY_PROFILER
1458 #endif
1461 uint32_t markRate = (uint32_t) (bytesMarked() / (1024 * ticksToMillis(markTicks()))); // kb/ms == mb/s
1463 }
1471 {
1475 {
1481 }
1482 }
1483 GCLog("Overhead %u bytes (%u kb)\n", (uint32_t)total_overhead, (uint32_t)(total_overhead>>10));
1484 #ifdef MMGC_MEMORY_PROFILER
1486 GCLog("Internal Wastage %u bytes (%u kb)\n", (uint32_t)total_internal_waste, (uint32_t)(total_internal_waste>>10));
1487 #endif
1488 }
1490 #ifdef MMGC_MEMORY_PROFILER
1491 // It only makes sense to call this after a END_FinalizeAndSweep event and
1492 // before the next START_StartIncrementalMark event.
1494 {
1496 GCLog("[mem] \tpauses in GC, most recent (ms): startmark=%.2f incrementalmark=%.2f finalscan=%.2f finishmark=%.2f reap=%.2f\n",
1502 GCLog("[mem] \tpauses in GC, entire run (ms): startmark=%.2f incrementalmark=%.2f finalscan=%.2f finishmark=%.2f reap=%.2f\n",
1508 GCLog("[mem] \tpause clustering in GC, most recent: gctime=%.2fms end-to-end=%.2fms; mutator efficacy: %.2f%%\n",
1513 double(policy.timeEndToEndLastCollection - policy.timeInLastCollection) * 100.0 / double(policy.timeEndToEndLastCollection));
1514 }
1515 }
1518 #ifdef _DEBUG
1521 {
1523 {
1527 }
1528 }
1531 {
1539 {
1545 // normalize and divide by 4K to get index
1548 {
1560 }
1561 }
1562 }
1564 // For every page in the address range known to this GC, scan the page conservatively
1565 // for pointers and assert that anything that looks like a pointer to an object
1566 // points to an object that's marked.
1567 //
1568 // FIXME: This looks like it could be prone to signaling false positives and crashes:
1569 // it scans memory that's marked kNonGC, and some of that memory could even be
1570 // unmapped at the VM level?
1573 {
1575 {
1579 {
1580 // divide by 4K to get index
1590 }
1593 // go through all marked objects
1597 // If the mark is 0, delete it.
1601 }
1602 }
1605 }
1606 }
1607 }
1608 }
1610 void GC::ProbeForMatch(const void *mem, size_t size, uintptr_t value, int recurseDepth, int currentDepth)
1611 {
1621 {
1627 // did we hit ?
1629 {
1630 // ok so let's see where we are
1633 //GCAssertMsg(block->inUse(), "Not sure how we got here if the block is not in use?");
1638 {
1640 {
1642 {
1643 // fixed sized entries find out the size of the block
1647 };
1651 // now compute which element we are
1656 }
1657 else
1658 {
1659 // fixed large allocs ; start is after the block
1663 };
1666 }
1667 }
1673 }
1685 }
1686 }
1687 }
1689 /**
1690 * This routine searches through all of GC memory looking for references to 'me'
1691 * It ignores already claimed memory thus locating active references only.
1692 * recurseDepth can be set to a +ve value in order to follow the chain of
1693 * pointers arbitrarily deep. Watch out when setting it since you may see
1694 * an exponential blow-up (usu. 1 or 2 is enough). 'currentDepth' is for
1695 * indenting purposes and should be left alone.
1696 */
1698 {
1705 {
1708 {
1711 }
1713 {
1717 {
1719 }
1721 }
1723 {
1724 // go through all marked objects
1728 {
1731 {
1732 ProbeForMatch(GetUserPointer(item), alloc->m_itemSize - DebugSize(), val, recurseDepth, currentDepth);
1733 }
1734 }
1736 }
1737 else
1738 {
1741 }
1742 }
1743 }
1744 #undef ALLOCA_AND_FILL_WITH_SPACES
1745 #endif
1749 {
1758 // set the stack cleaning trigger
1768 // at this point every object should have no marks or be marked kFreelist
1769 #ifdef _DEBUG
1774 }
1775 #endif
1777 #ifdef MMGC_HEAP_GRAPH
1779 #endif
1786 // FIXME (policy): arguably a bug to do this here if StartIncrementalMark has exhausted its quantum
1787 // doing eager sweeping.
1791 }
1793 // The mark stack overflow logic depends on this calling MarkItem directly
1794 // for each of the roots.
1797 {
1798 // Need to do this while holding the root lock so we don't end
1799 // up trying to scan a deleted item later, another reason to keep
1800 // the root set small.
1803 markerActive++;
1808 // If this root will be split push a sentinel item and store
1809 // a pointer to it in the root. This will allow us to clean
1810 // the stack if the root is deleted. See GCRoot::Destroy and
1811 // GC::HandleLargeMarkItem
1815 // test for mark stack overflow
1818 }
1822 }
1824 }
1825 markerActive--;
1826 }
1828 // Recover from a mark stack overflow.
1829 //
1830 // Mark stack overflow occurs when an item cannot be pushed onto the mark stack because
1831 // the top mark stack segment is full and a new segment can't be allocated. In
1832 // practice, any call to GC::PushWorkItem (or its callers, such as GC::Mark, GC::MarkItem,
1833 // GC::MarkAllRoots, GC::MarkQueueAndStack, and not least the write barrier GC::TrapWrite)
1834 // can cause a mark stack overflow.
1835 //
1836 // Since garbage collection cannot be allowed to abort the program as a result of
1837 // the allocation failure, but must run to completion, overflow is handled specially.
1838 // The mark stack Push method returns an error code, which is detected in GC::PushWorkItem,
1839 // which in turn calls GC::SignalMarkStackOverflow to handle the overflow. Overflow
1840 // is handled by discarding some elements and setting the global m_markStackOverflow flag.
1841 //
1842 // Any code that needs to drive marking to completion - FinishIncrementalMark and Sweep
1843 // do, as they depend on the heap having been marked before running finalizers and
1844 // clearing out empty blocks - must test m_markStackOverflow: if it is set then it must
1845 // be cleared and the present method, GC::HandleMarkStackOverflow, is called to mop up.
1846 // The caller must perform this test repeatedly until the flag is no longer set.
1847 //
1848 // The job of HandleMarkStackOverflow is to find marked heap objects that point to
1849 // unmarked objects, and to mark those objects. Effectively it uses the heap as a
1850 // queue of candidate objects, thus minimizing the use of the mark stack. Since marking
1851 // uses the mark stack the marking performed by HandleMarkStackOverflow may also
1852 // overflow the mark stack, but once a marked object has been visited by
1853 // HandleMarkStackOverflow it will not point to any unmarked objects. There are object
1854 // graphs containing pointers from objects visited later to objects skipped earlier
1855 // that may require recovery to be run multiple times, if marking overflows the mark
1856 // stack, but each recovery pass will mark all objects where the reference is from
1857 // an earlier object to a later object, and all non-overflowing subgraphs of those
1858 // objects in either direction.
1859 //
1860 // Performance might be an issue as the restart may happen several times and the
1861 // scanning performed by HandleMarkStackOverflow covers the entire heap every time. It could
1862 // be more efficient to interleave restarting and marking (eg, never fill the mark stack
1863 // during restarting, but mark after filling it partly, and remember the place in the heap
1864 // where scanning left off, and then iterate), but we should cross that bridge if and when
1865 // restarting turns out to be a problem in practice. (If it does, caching more mark stack
1866 // segments may be a better first fix, too.)
1869 {
1870 // Crucial for completion that we do not push marked items. MarkItem handles this
1871 // for us: it pushes referenced objects that are not marked. (MarkAllRoots calls
1872 // MarkItem on each root.)
1876 // For all iterator types, GetNextMarkedObject returns true if 'item' has been
1877 // updated to reference a marked, non-free object to mark, false if the allocator
1878 // instance has been exhausted.
1883 markerActive++;
1891 }
1897 }
1898 }
1905 }
1907 markerActive--;
1908 }
1910 // Signal that attempting to push 'item' onto 'stack' overflowed 'stack'.
1911 //
1912 // Either 'item' must be pushed onto the stack, replacing some other item there,
1913 // or any state information in the item that indicates that it is stacked must
1914 // be cleared, since it will not be pushed onto the stack. What to do?
1915 //
1916 // The literature (Jones & Lins) does not provide a lot of guidance. Intuitively it
1917 // seems that we want to maximize the number of items that remain on the stack so
1918 // that the marker will finish processing the maximal number of objects before we
1919 // enter the stack overflow recovery code (in HandleMarkStackOverflow, above). Ergo
1920 // we drop 'item' on the floor.
1923 {
1928 }
1930 // HandleLargeMarkItem handles work items that are too big to
1931 // marked atomically. We split the work item into two chunks: a
1932 // small head (which we mark now) and a large tail (which we push
1933 // onto the stack). The tail is a non-gcobject regardless of
1934 // whether the head is a gcobject. THE HEAD MUST BE MARKED FIRST
1935 // because this ensures that the mark on the object is set
1936 // immediately; that is necessary for write barrier correctness.
1937 //
1938 // Why use kLargestAlloc as the split value?
1939 //
1940 // Unfortunately for correctness THE HEAD MUST ALSO BE MARKED LAST,
1941 // because the queued bit is traditionally used to prevent the object
1942 // from being deleted explicitly by GC::Free while the object is
1943 // on the mark stack. We can't have it both ways, so split objects
1944 // are protected against being freed by carrying another bit that
1945 // prevents deletion when it is set. Because we do not want to expand
1946 // the number of header bits per object from 4 to 8, we only have
1947 // this extra bit on large objects (where there's plenty of space).
1948 // Thus the cutoff for splitting is exactly kLargestObject: only
1949 // large objects that can carry this bit are split.
1950 //
1951 // In addition, the queued flag still prevents the object from
1952 // being deleted.
1953 //
1954 // The free-protection flags are reset by a special GCWorkItem
1955 // that is pushed on the stack below the two parts of the object that
1956 // is being split; when that is later popped, it resets the flag
1957 // and returns.
1958 //
1959 // The complexity with the free-protection flags may go away if we
1960 // move to a write barrier that does not depend on the queued bit,
1961 // for example, a card-marking barrier.
1962 //
1963 // If a mark stack overflow occurs the large tail may be popped
1964 // and discarded. This is not a problem: the object as a whole
1965 // is marked, but points to unmarked storage, and the latter
1966 // objects will be picked up as per normal. Discarding the
1967 // tail is entirely equivalent to discarding the work items that
1968 // would result from scanning the tail.
1969 //
1970 // Large GCRoot's are also split here. MarkAllRoots pushes a
1971 // sentinel item on the stack that will be right below the GCRoot.
1972 // If the GCRoot is deleted it uses the sentinel pointer to clear
1973 // the tail work item from GCRoot::Destroy along with the sentinel
1974 // itself.
1977 {
1980 // Unprotect an item that was protected earlier, see comment block above.
1982 }
1985 // The GCRoot is no longer on the stack, clear the pointers into the stack.
1988 }
1990 }
1993 // Need to protect it against 'Free': push a magic item representing this object
1994 // that will prevent this split item from being freed, see comment block above.
1997 }
2005 }
2008 // This will mark the item whether the item was previously marked or not.
2009 // The mark stack overflow logic depends on that.
2012 {
2018 // Control mark stack growth and ensure incrementality:
2019 //
2020 // Here we consider whether to split the object into multiple pieces.
2021 // A cutoff of kLargestAlloc is imposed on us by external factors, see
2022 // discussion below. Ideally we'd choose a limit that isn't "too small"
2023 // because then we'll split too many objects, and isn't "too large"
2024 // because then the mark stack growth won't be throttled properly.
2025 //
2026 // See bugzilla #495049 for a discussion of this problem.
2027 //
2028 // See comments above HandleLargeMarkItem for the mechanics of how this
2029 // is done and why kMarkItemSplitThreshold == kLargestAlloc
2031 {
2034 }
2040 #ifdef MMGC_POINTINESS_PROFILING
2043 #endif
2045 // set the mark bits on this guy
2047 {
2050 #ifdef _DEBUG
2051 // def ref validation does a Trace which can
2052 // cause things on the work queue to be already marked
2053 // in incremental GC
2055 //GCAssert(!b);
2056 }
2057 #endif
2058 }
2064 {
2066 #ifdef MMGC_VALGRIND
2069 }
2075 #ifdef MMGC_POINTINESS_PROFILING
2076 could_be_pointer++;
2077 #endif
2079 // normalize and divide by 4K to get index
2083 {
2089 {
2092 // guard against bogus pointers to the block header
2098 // adjust |item| to the beginning of the allocation
2100 }
2101 else
2102 {
2103 // back up to real beginning
2106 // guard against bogus pointers to the block header
2112 // if |item| doesn't point to the beginning of an allocation,
2113 // it's not considered a pointer.
2115 {
2116 #ifdef MMGC_64BIT
2117 // Doubly-inherited classes have two vtables so are offset 8 more bytes than normal.
2118 // Handle that here (shows up with PlayerScriptBufferImpl object in the Flash player)
2121 else
2124 }
2125 }
2127 #ifdef MMGC_POINTINESS_PROFILING
2128 actually_is_pointer++;
2129 #endif
2132 {
2135 {
2139 {
2142 }
2143 else
2144 {
2145 mark_item_recursion_control--;
2147 mark_item_recursion_control++;
2148 }
2149 }
2150 else
2151 {
2154 }
2155 #ifdef MMGC_HEAP_GRAPH
2157 #endif
2158 }
2159 }
2160 else if (bits == PageMap::kGCLargeAllocPageFirst || (wi.HasInteriorPtrs() && bits == PageMap::kGCLargeAllocPageRest))
2161 {
2165 {
2167 {
2168 // guard against bogus pointers to the block header
2173 }
2174 else
2175 {
2177 }
2178 }
2179 else
2180 {
2181 // back up to real beginning
2184 // If |item| doesn't point to the start of the page, it's not
2185 // really a pointer.
2188 }
2190 #ifdef MMGC_POINTINESS_PROFILING
2191 actually_is_pointer++;
2192 #endif
2196 {
2199 {
2202 }
2203 else
2204 {
2205 // doesn't need marking go right to black
2208 }
2209 #ifdef MMGC_HEAP_GRAPH
2211 #endif
2212 }
2213 }
2214 }
2215 #ifdef MMGC_POINTINESS_PROFILING
2217 #endif
2218 }
2221 {
2225 #ifdef _DEBUG
2227 #endif
2231 // Don't force collections to finish if the mark stack is empty;
2232 // let the allocation budget be used up.
2237 // Policy triggers off these signals, so we still need to send them.
2241 }
2242 }
2244 markerActive++;
2248 // FIXME: tune this so that getPerformanceCounter() overhead is noise
2249 //
2250 // *** NOTE ON THREAD SAFETY ***
2251 //
2252 // If anyone feels like writing code that updates checkTimeIncrements (it
2253 // used to be 'static' instead of 'const'), beware that using a static var
2254 // here requires a lock. It may also be wrong to have one shared global for
2255 // the value, and in any case it may belong in the policy manager.
2270 }
2273 }
2275 {
2278 }
2284 markerActive--;
2294 }
2295 }
2298 {
2299 // Don't finish an incremental mark (i.e., sweep) if we
2300 // are in the midst of a ZCT reap.
2302 {
2304 }
2306 // Force repeated restarts and marking until we're done. For discussion
2307 // of completion, see the comments above HandleMarkStackOverflow.
2314 }
2316 // finished in Sweep
2319 // mark roots again, could have changed (alternative is to put WB's on the roots
2320 // which we may need to do if we find FinishIncrementalMark taking too long)
2330 // Force repeated restarts and marking until we're done. For discussion
2331 // of completion, see the comments above HandleMarkStackOverflow. Note
2332 // that we must use MarkQueueAndStack rather than plain Mark because there
2333 // is no guarantee that the stack was actually pushed onto the mark stack.
2334 // If we iterate several times there may be a performance penalty as a
2335 // consequence of that, but it's not likely that that will in fact happen,
2336 // and it's not obvious how to fix it.
2343 }
2350 #ifdef _DEBUG
2351 // need to traverse all marked objects and make sure they don't contain
2352 // pointers to unmarked objects
2354 #endif
2359 // Sweep is responsible for setting and clearing GC::collecting.
2360 // It also clears GC::marking.
2369 #ifdef MMGC_MEMORY_PROFILER
2372 #endif
2373 }
2375 #ifdef _DEBUG
2377 {
2378 // back up to real beginning
2387 }
2389 }
2392 // Here the purpose is to shift some work from the barrier mark stack to the regular
2393 // mark stack /provided/ the barrier mark stack seems very full. The regular mark stack
2394 // is normally empty.
2395 //
2396 // To avoid copying data, we will only move entire (full) segments, because they can
2397 // be moved by changing some pointers and counters. We will never move a non-full
2398 // segment.
2401 {
2405 }
2407 // Here the purpose is to shift all the work from the barrier mark stack to the regular
2408 // mark stack, unconditionally. This may mean copying mark work from one stack to
2409 // the other (for work that's in a non-full segment), but full segments can just be
2410 // moved by changing some pointers and counters.
2411 //
2412 // Note it's possible for this to cause a mark stack overflow, and the caller must
2413 // deal with that.
2416 {
2423 }
2424 }
2427 {
2430 }
2433 {
2435 }
2438 {
2440 }
2443 {
2446 }
2449 {
2454 }
2457 {
2460 }
2463 {
2466 }
2468 // It might appear that this can be optimized easily, but not so - there's a
2469 // lot of logic hiding here, and little to gain from hand-inlining.
2472 {
2476 }
2479 {
2487 }
2489 // Add 'container' to the remembered set.
2490 //
2491 // IncrementalMark may move a segment off the remembered set;
2492 // FinishIncrementalMark will take care of what remains.
2493 //
2494 // Observe that if adding the item to the remembered set (a secondary mark stack)
2495 // fails, then the item is just pushed onto the regular mark stack; if that too
2496 // fails then normal stack overflow handling takes over. That is what we want,
2497 // as it guarantees that the item will be traced again.
2500 {
2503 {
2504 // It's the job of the allocators to make sure the rhs is marked if
2505 // it is allocated on a page that's not yet swept. In particular,
2506 // the barrier is not needed to make sure that that object is kept
2507 // alive.
2508 //
2509 // Ergo all we need to do here is revert the lhs to marked and return.
2512 }
2514 // Note, pushing directly here works right now because PushWorkItem never
2515 // performs any processing (breaking up a large object into shorter
2516 // segments, for example). If that changes, we must probably introduce
2517 // PushBarrierItem to do the same thing for m_barrierWork.
2520 }
2522 void GC::movePointers(void **dstArray, uint32_t dstOffset, const void **srcArray, uint32_t srcOffset, size_t numPointers)
2523 {
2525 // don't push small items that are moving pointers inside the same array
2527 // this could be optimized to just re-scan the dirty region
2529 }
2531 }
2533 void GC::movePointersWithinBlock(void** array, uint32_t dstOffsetInBytes, uint32_t srcOffsetInBytes, size_t numPointers, bool zeroEmptied)
2534 {
2541 // don't push small items that are moving pointers inside the same array
2543 {
2544 // this could be optimized to just re-scan the dirty region
2546 }
2552 {
2555 {
2556 // moving down, zero the end
2559 }
2560 else
2561 {
2562 // moving up, zero the start
2565 }
2567 }
2568 }
2571 {
2577 }
2578 }
2581 {
2589 #endif
2591 // hit freelists first
2597 }
2600 // Bugzilla 551833: It's OK to use heapAlloc here (as opposed to
2601 // heap->AllocNoOOM, say) because the caller knows AllocBits()
2602 // can trigger OOM.
2604 }
2611 else
2615 // put waste in freelist
2621 }
2622 }
2623 }
2625 // recurse rather than duplicating code
2627 }
2629 }
2632 {
2639 }
2642 {
2646 else
2651 }
2654 {
2660 }
2663 {
2666 else
2671 }
2674 {
2675 // Bugzilla 572331.
2676 // It is possible for presweep handlers to extract pointers to unmarked objects
2677 // from weakrefs and store them into marked objects. Since the write barrier is
2678 // disabled during collecting we must ensure that the unmarked object becomes
2679 // marked by some other means in that situation, and we do that here by introducing
2680 // a local read barrier that resurrects those objects.
2681 //
2682 // The read barrier just pushes the to-be-resurrected object onto the mark
2683 // stack; the marker will be run in Sweep() after the presweep calls are done.
2688 // If this assertion fails then we have a finalizer (C++ destructor on a
2689 // GCFinalizableObject) resurrecting an object. That should not happen,
2690 // because we clear all GCWeakRefs pointing to unmarked objects before
2691 // running finalizers.
2693 // Bugzilla 575631 (explanation below)
2694 // GCAssert(gc->Presweeping());
2696 // Bugzilla 575631: GCAlloc::Finalize's interleaving
2697 // of mark-bit resets and finalizer invocations means
2698 // that the conditions above don't imply we're in
2699 // Presweep. Nonetheless, marking an object with
2700 // cleared mark bits isn't legal in GCAlloc::Finalize,
2701 // so instead of asserting that we are presweeping, we
2702 // use that condition as a guard.
2705 }
2706 }
2709 }
2711 /*static*/
2713 {
2727 }
2729 }
2732 {
2740 }
2741 }
2743 #ifdef _DEBUG
2745 {
2747 // the minus 8 skips the GCEndOfObjectPoison and back pointer
2751 {
2758 {
2764 }
2765 p++;
2766 }
2767 }
2770 {
2776 {
2777 // divide by 4K to get index
2780 {
2785 {
2790 }
2792 }
2795 {
2796 // go through all marked objects in this page
2802 // find all marked (but not kFreelist) objects and search them
2808 }
2809 }
2811 }
2816 }
2817 }
2818 }
2822 {
2827 }
2830 {
2835 }
2838 {
2844 }
2847 {
2856 {
2860 {
2864 }
2865 }
2870 }
2873 {
2876 #ifdef _DEBUG
2878 #endif
2880 }
2883 {
2888 }
2891 {
2894 }
2897 {
2905 }
2907 }
2910 {
2916 }
2919 {
2927 }
2930 {
2932 #ifdef _DEBUG
2934 #endif
2945 }
2948 {
2949 #ifdef _DEBUG
2951 #endif
2958 }
2961 {
2965 // must enter first as it acquires the gc lock
2969 }
2970 }
2971 }
2972 }
2975 {
2977 }
2979 /*virtual*/
2981 {
2985 }
2986 }
2989 {
2993 }
2994 }
2997 {
2998 GCAssertMsg(gc->GetStackEnter() != 0, "Invalid MMGC_GC_ROOT_THREAD usage, GC not already entered, random crashes will ensue");
3000 }
3003 {
3004 GCAssertMsg(gc->GetStackEnter() == 0, "Invalid MMGC_GC_ROOT_THREAD usage, GC not exitted properly, random crashes will ensue");
3006 }
3009 {
3015 }
3025 }
3026 }
3028 }
3031 {
3036 }
3038 }
3040 // We always pop the active GC but have to do so before releasing the lock
3041 #ifdef DEBUG
3043 #endif
3049 // cleared so we remain thread ambivalent
3053 }
3054 }
3057 {
3063 else
3068 }
3071 {
3072 // ZCT blockage: what if we get here from zct growth?
3074 // Mark/sweep blockage: what about mark stack,
3075 // presweep,post-sweep,finalize allocations?
3077 // if ZCT or GC can't complete we can't free memory! currently
3078 // we do nothing, which means we rely on reserve or other
3079 // listeners to free memory or head straight to abort
3085 // If we're not already in the middle of collecting from another thread's GC, then try to...
3089 }
3090 // else nothing can be done
3091 }
3092 }
3093 }
3095 #ifdef DEBUG
3097 {
3102 }
3103 #endif
3106 {
3111 {
3119 }
3123 }
3124 }
3128 {
3130 }
3133 {
3135 }
3137 #ifdef MMGC_HEAP_GRAPH
3140 {
3142 }
3145 {
3147 }
3150 {
3151 /* These are all the possibilities
3152 1) GC small object
3153 2) GC large object
3154 3) GCRoot
3155 4) OS stack
3156 */
3163 }
3165 // could be a deleted GCRoot
3173 }
3174 }
3175 }
3177 }
3180 {
3185 }
3188 {
3198 const char *containerDescription = IsPointerToGCPage(container) ? "gc" : (container ? "gcroot" : "stack");
3205 }
3206 }
3207 }
3208 }
3211 {
3219 }
3220 }
3226 }
3228 }
3229 }
3232 {
3238 }
3240 }
3243 {
3245 }
3248 {
3255 }
3256 }
3257 }
3258 }
3261 {
3266 GCLog("Blacklist item 0x%p %s found in marker graph\n", p, markerGraph.getPointers(p) ? "was" : "wasn't");
3267 GCLog("Blacklist item 0x%p %s found in mutator graph\n", p, mutatorGraph.getPointers(p) ? "was" : "wasn't");
3269 }
3270 }
3271 }
3272 #endif
3273 }