| blob | 1a8117248055988d996bd8110e9e18c3a66024db |
1 /* Copyright (c) 2006, Google Inc.
2 * All rights reserved.
3 *
4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions are
6 * met:
7 *
8 * * Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * * Redistributions in binary form must reproduce the above
11 * copyright notice, this list of conditions and the following disclaimer
12 * in the documentation and/or other materials provided with the
13 * distribution.
14 * * Neither the name of Google Inc. nor the names of its
15 * contributors may be used to endorse or promote products derived from
16 * this software without specific prior written permission.
17 *
18 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
19 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
20 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
21 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
22 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
23 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
24 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
25 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
26 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
28 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
29 *
30 * ---
31 * Author: Maxim Lifantsev
32 */
34 //
35 // Background and key design points of MemoryRegionMap.
36 //
37 // MemoryRegionMap is a low-level module with quite atypical requirements that
38 // result in some degree of non-triviality of the implementation and design.
39 //
40 // MemoryRegionMap collects info about *all* memory regions created with
41 // mmap, munmap, mremap, sbrk.
42 // They key word above is 'all': all that are happening in a process
43 // during its lifetime frequently starting even before global object
44 // constructor execution.
45 //
46 // This is needed by the primary client of MemoryRegionMap:
47 // HeapLeakChecker uses the regions and the associated stack traces
48 // to figure out what part of the memory is the heap:
49 // if MemoryRegionMap were to miss some (early) regions, leak checking would
50 // stop working correctly.
51 //
52 // To accomplish the goal of functioning before/during global object
53 // constructor execution MemoryRegionMap is done as a singleton service
54 // that relies on own on-demand initialized static constructor-less data,
55 // and only relies on other low-level modules that can also function properly
56 // even before global object constructors run.
57 //
58 // Accomplishing the goal of collecting data about all mmap, munmap, mremap,
59 // sbrk occurrences is a more involved: conceptually to do this one needs to
60 // record some bits of data in particular about any mmap or sbrk call,
61 // but to do that one needs to allocate memory for that data at some point,
62 // but all memory allocations in the end themselves come from an mmap
63 // or sbrk call (that's how the address space of the process grows).
64 //
65 // Also note that we need to do all the above recording from
66 // within an mmap/sbrk hook which is sometimes/frequently is made by a memory
67 // allocator, including the allocator MemoryRegionMap itself must rely on.
68 // In the case of heap-checker usage this includes even the very first
69 // mmap/sbrk call happening in the program: heap-checker gets activated due to
70 // a link-time installed mmap/sbrk hook and it initializes MemoryRegionMap
71 // and asks it to record info about this very first call right from that
72 // very first hook invocation.
73 //
74 // MemoryRegionMap is doing its memory allocations via LowLevelAlloc:
75 // unlike more complex standard memory allocator, LowLevelAlloc cooperates with
76 // MemoryRegionMap by not holding any of its own locks while it calls mmap
77 // to get memory, thus we are able to call LowLevelAlloc from
78 // our mmap/sbrk hooks without causing a deadlock in it.
79 // For the same reason of deadlock prevention the locking in MemoryRegionMap
80 // itself is write-recursive which is an exception to Google's mutex usage.
81 //
82 // We still need to break the infinite cycle of mmap calling our hook,
83 // which asks LowLevelAlloc for memory to record this mmap,
84 // which (sometimes) causes mmap, which calls our hook, and so on.
85 // We do this as follows: on a recursive call of MemoryRegionMap's
86 // mmap/sbrk/mremap hook we record the data about the allocation in a
87 // static fixed-sized stack (saved_regions), when the recursion unwinds
88 // but before returning from the outer hook call we unwind this stack and
89 // move the data from saved_regions to its permanent place in the RegionSet,
90 // which can cause more allocations and mmap-s and recursion and unwinding,
91 // but the whole process ends eventually due to the fact that for the small
92 // allocations we are doing LowLevelAlloc reuses one mmap call and parcels out
93 // the memory it created to satisfy several of our allocation requests.
94 //
96 // ========================================================================= //
98 #include <config.h>
100 #ifdef HAVE_UNISTD_H
101 #include <unistd.h>
102 #endif
103 #ifdef HAVE_INTTYPES_H
104 #include <inttypes.h>
105 #endif
106 #ifdef HAVE_MMAP
107 #include <sys/mman.h>
108 #elif !defined(MAP_FAILED)
110 #endif
111 #ifdef HAVE_PTHREAD
113 #endif
114 #include <stddef.h>
116 #include <algorithm>
117 #include <set>
125 #include <gperftools/stacktrace.h>
126 #include <gperftools/malloc_hook.h>
128 // MREMAP_FIXED is a linux extension. How it's used in this file,
129 // setting it to 0 is equivalent to saying, "This feature isn't
130 // supported", which is right.
131 #ifndef MREMAP_FIXED
132 # define MREMAP_FIXED 0
133 #endif
137 // ========================================================================= //
151 // ========================================================================= //
153 // Simple hook into execution of global object constructors,
154 // so that we do not call pthread_self() when it does not yet work.
159 // Before main() runs, there's only one thread, so we're always that thread
161 // this starts working only sometime well into global constructor execution:
163 }
165 // ========================================================================= //
167 // Constructor-less place-holder to store a RegionSet in.
172 };
174 // The bytes where MemoryRegionMap::regions_ will point to.
175 // We use RegionSetRep with noop c-tor so that global construction
176 // does not interfere.
179 // ========================================================================= //
181 // Has InsertRegionLocked been called recursively
182 // (or rather should we *not* use regions_ to record a hooked mmap).
188 // Make sure we don't overflow the memory in region stacks:
195 // not first client: already did initialization-proper
199 }
200 // Set our hooks and make sure they were installed:
205 // We need to set recursive_insert since the NewArena call itself
206 // will already do some allocations with mmap which our hooks will catch
207 // recursive_insert allows us to buffer info about these mmap calls.
208 // Note that Init() can be (and is) sometimes called
209 // already from within an mmap/sbrk hook.
214 // Can't instead use HandleSavedRegionsLocked(&DoInsertRegionLocked) before
215 // recursive_insert = false; as InsertRegionLocked will also construct
216 // regions_ on demand for us.
219 }
230 }
242 }
246 }
248 // Invariants (once libpthread_initialized is true):
249 // * While lock_ is not held, recursion_count_ is 0 (and
250 // lock_owner_tid_ is the previous owner, but we don't rely on
251 // that).
252 // * recursion_count_ and lock_owner_tid_ are only written while
253 // both lock_ and owner_lock_ are held. They may be read under
254 // just owner_lock_.
255 // * At entry and exit of Lock() and Unlock(), the current thread
256 // owns lock_ iff pthread_equal(lock_owner_tid_, pthread_self())
257 // && recursion_count_ > 0.
259 {
263 recursion_count_++;
267 }
268 }
270 {
277 }
278 }
286 recursion_count_--;
289 }
290 }
295 }
301 Region sample;
308 }
309 }
310 }
312 }
320 }
332 // cast is safe (set_is_stack does not change the set ordering key)
334 }
337 }
343 }
349 }
360 // We can be stricter and allow this only when *i has been created via
361 // an mmap with MAP_NORESERVE flag set.
362 }
366 Region sample;
371 }
373 // This inserts and allocates permanent storage for region
374 // and its call stack data: it's safe to do it now:
380 }
382 // These variables are local to MemoryRegionMap::InsertRegionLocked()
383 // and MemoryRegionMap::HandleSavedRegionsLocked()
384 // and are file-level to ensure that they are initialized at load time.
386 // Number of unprocessed region inserts.
389 // Unprocessed inserts (must be big enough to hold all allocations that can
390 // be caused by a InsertRegionLocked call).
391 // Region has no constructor, so that c-tor execution does not interfere
392 // with the any-time use of the static memory behind saved_regions.
398 // Making a local-var copy of the region argument to insert_func
399 // including its stack (w/o doing any memory allocations) is important:
400 // in many cases the memory in saved_regions
401 // will get written-to during the (*insert_func)(r) call below.
404 }
405 }
409 // We can be called recursively, because RegionSet constructor
410 // and DoInsertRegionLocked() (called below) can call the allocator.
411 // recursive_insert tells us if that's the case. When this happens,
412 // region insertion information is recorded in saved_regions[],
413 // and taken into account when the recursion unwinds.
414 // Do the insert:
421 // Copy 'region' to saved_regions[saved_regions_count]
422 // together with the contents of its call_stack,
423 // then increment saved_regions_count.
433 }
435 // Do the actual insertion work to put new regions into regions_:
439 }
440 }
442 // We strip out different number of stack frames in debug mode
443 // because less inlining happens in that case
444 #ifdef NDEBUG
446 #else
448 #endif
451 // Record start/end info about this memory acquisition call in a new region:
452 Region region;
454 // First get the call stack info into the local varible 'region':
465 // Note: none of the above allocates memory.
469 // This will (eventually) allocate storage for and copy over the stack data
470 // from region.call_stack_data_ that is pointed by region.call_stack().
472 }
477 // First remove the removed region from saved_regions, if it's
478 // there, to prevent overrunning saved_regions in recursive
479 // map/unmap call sequences, and also from later inserting regions
480 // which have already been unmapped.
488 // An exact match, so it's safe to remove.
495 saved_regions_count);
499 }
500 }
501 }
502 }
504 // but this thread was already inside the hook.
507 }
510 }
511 // first handle adding saved regions if any
514 // subtract start_addr, end_addr from all the regions
519 Region sample;
521 // Only iterate over the regions that might overlap start_addr..end_addr:
542 // Make another region for the start portion:
543 // The new region has to be the start portion because we can't
544 // just modify region->end_addr as it's the sorting key.
548 // cut *region from start:
561 // Can't just modify region->end_addr (it's the sorting key):
566 // It's safe to erase before inserting since r is independent of *d:
567 // r contains an own copy of the call stack:
571 }
573 }
581 }
587 // TODO(maxim): replace all 0x%"PRIxS" by %p when RAW_VLOG uses a safe
588 // snprintf reimplementation that does not malloc to pretty-print NULL
596 }
597 }
603 }
604 }
618 }
619 }
634 }
635 }
636 }
648 // this must be caused by uncontrolled recursive operations on regions_
650 }
652 }