| blob | 9a642d23620e1eae7f84ac23d49fe14cf535c1a9 |
1 //===-- primary64.h ---------------------------------------------*- C++ -*-===//
2 //
3 // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
4 // See https://llvm.org/LICENSE.txt for license information.
5 // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
6 //
7 //===----------------------------------------------------------------------===//
9 #ifndef SCUDO_PRIMARY64_H_
10 #define SCUDO_PRIMARY64_H_
29 // SizeClassAllocator64 is an allocator tuned for 64-bit address space.
30 //
31 // It starts by reserving NumClasses * 2^RegionSizeLog bytes, equally divided in
32 // Regions, specific to each size class. Note that the base of that mapping is
33 // random (based to the platform specific map() capabilities). If
34 // PrimaryEnableRandomOffset is set, each Region actually starts at a random
35 // offset from its base.
36 //
37 // Regions are mapped incrementally on demand to fulfill allocation requests,
38 // those mappings being split into equally sized Blocks based on the size class
39 // they belong to. The Blocks created are shuffled to prevent predictable
40 // address patterns (the predictability increases with the size of the Blocks).
41 //
42 // The 1st Region (for size class 0) holds the TransferBatches. This is a
43 // structure used to transfer arrays of available pointers from the class size
44 // freelist to the thread specific freelist, and back.
45 //
46 // The memory used by this allocator is never unmapped, but can be partially
47 // released if the platform allows for it.
73 }
79 }
88 // When trying to release pages back to memory, visiting smaller size
89 // classes is expensive. Therefore, we only try to release smaller size
90 // classes when the amount of free blocks goes over a certain threshold (See
91 // the comment in releaseToOSMaybe() for more details). For example, for
92 // size class 32, we only do the release when the size of free blocks is
93 // greater than 97% of pages in a group. However, this may introduce another
94 // issue that if the number of free blocks is bouncing between 97% ~ 100%.
95 // Which means we may try many page releases but only release very few of
96 // them (less than 3% in a group). Even though we have
97 // `&ReleaseToOsIntervalMs` which slightly reduce the frequency of these
98 // calls but it will be better to have another guard to mitigate this issue.
99 //
100 // Here we add another constraint on the minimum size requirement. The
101 // constraint is determined by the size of in-use blocks in the minimal size
102 // class. Take size class 32 as an example,
103 //
104 // +- one memory group -+
105 // +----------------------+------+
106 // | 97% of free blocks | |
107 // +----------------------+------+
108 // \ /
109 // 3% in-use blocks
110 //
111 // * The release size threshold is 97%.
112 //
113 // The 3% size in a group is about 7 pages. For two consecutive
114 // releaseToOSMaybe(), we require the difference between `PushedBlocks`
115 // should be greater than 7 pages. This mitigates the page releasing
116 // thrashing which is caused by memory usage bouncing around the threshold.
117 // The smallest size class takes longest time to do the page release so we
118 // use its size of in-use blocks as a heuristic.
119 SmallerBlockReleasePageDelta =
122 // Reserve the space required for the Primary.
128 u32 Seed;
136 // The actual start of a region is offset by a random number of pages
137 // when PrimaryEnableRandomOffset is set.
143 // Releasing small blocks is expensive, set a higher threshold to avoid
144 // frequent page releases.
147 else
154 }
157 // The binding should be done after region shuffling so that it won't bind
158 // the FLLock from the wrong region.
163 }
169 }
173 }
175 // When all blocks are freed, it has to be the same size as `AllocatedUser`.
177 // `BatchGroup` and `TransferBatch` also use the blocks from BatchClass.
180 // We have to count BatchClassUsedInFreeLists in other regions first.
189 // `BG::Batches` are `TransferBatches`. +1 for `BatchGroup`.
193 }
198 }
210 // `BatchGroup` with empty freelist doesn't have `TransferBatch` record
211 // itself.
213 }
214 }
222 }
224 // Note that the `MaxBlockCount` will be used when we support arbitrary blocks
225 // count. Now it's the same as the number of blocks stored in the
226 // `TransferBatch`.
241 }
247 {
252 }
261 // When two threads compete for `Region->MMLock`, we only want one of
262 // them to call populateFreeListAndPopBatch(). To avoid both of them
263 // doing that, always check the freelist before mapping new pages.
265 {
269 }
276 }
277 }
283 // Theoretically, BatchClass shouldn't be used up. Abort immediately when
284 // it happens.
287 }
290 }
292 // Push the array of free blocks to the designated batch group.
304 }
306 // TODO(chiahungduan): Consider not doing grouping if the group size is not
307 // greater than the block size with a certain scale.
311 // Sort the blocks so that blocks belonging to the same group can be
312 // pushed together.
321 }
323 }
324 }
326 {
331 }
332 }
335 // The BatchClassId must be locked last since other classes can use it.
341 }
344 }
354 }
355 }
362 // TODO: The call of `iterateOverBlocks` requires disabling
363 // SizeClassAllocator64. We may consider locking each region on demand
364 // only.
372 }
373 }
376 // TODO(kostyak): get the RSS per region.
382 {
385 }
386 {
390 }
391 }
402 }
403 }
414 }
415 }
424 }
425 // Not supported by the Primary, but not an error either.
427 }
431 // Note that the tryLock() may fail spuriously, given that it should rarely
432 // happen and page releasing is fine to skip, we don't take certain
433 // approaches to ensure one page release is done.
438 }
440 }
450 }
452 }
456 }
462 }
467 }
473 }
480 uptr ClassId;
486 // TODO(chiahungduan): In fact, We need to lock the RegionInfo::MMLock.
487 // However, the RegionInfoData is passed with const qualifier and lock the
488 // mutex requires modifying RegionInfoData, which means we need to remove
489 // the const qualifier. This may lead to another undefined behavior (The
490 // first one is accessing `AllocatedUser` without locking. It's better to
491 // pass `RegionInfoData` as `void *` then we can lock the mutex properly.
495 uptr RegionDistance;
499 else
503 }
508 }
509 }
511 BlockInfo B = {};
524 }
526 }
528 AtomicOptions Options;
536 // Fill at most this number of batches from the newly map'd memory.
540 uptr BytesInFreeListAtLastCheckpoint;
541 uptr RangesReleased;
542 uptr LastReleasedBytes;
543 u64 LastReleaseAtNs;
544 };
550 };
553 MemMapT MemMap = {};
554 // Bytes mapped for user memory.
556 // Bytes allocated for user memory.
558 };
561 // Mutex for operations on freelist
562 HybridMutex FLLock;
564 // Mutex for memmap operations
566 // `RegionBeg` is initialized before thread creation and won't be changed.
571 // The minimum size of pushed blocks to trigger page release.
576 };
580 };
586 }
590 RegionSize) +
591 PrimaryBase;
592 }
596 }
600 }
605 }
609 }
614 }
619 }
625 // Free blocks are recorded by TransferBatch in freelist for all
626 // size-classes. In addition, TransferBatch is allocated from BatchClassId.
627 // In order not to use additional block to record the free blocks in
628 // BatchClassId, they are self-contained. I.e., A TransferBatch records the
629 // block address of itself. See the figure below:
630 //
631 // TransferBatch at 0xABCD
632 // +----------------------------+
633 // | Free blocks' addr |
634 // | +------+------+------+ |
635 // | |0xABCD|... |... | |
636 // | +------+------+------+ |
637 // +----------------------------+
638 //
639 // When we allocate all the free blocks in the TransferBatch, the block used
640 // by TransferBatch is also free for use. We don't need to recycle the
641 // TransferBatch. Note that the correctness is maintained by the invariant,
642 //
643 // The unit of each popBatch() request is entire TransferBatch. Return
644 // part of the blocks in a TransferBatch is invalid.
645 //
646 // This ensures that TransferBatch won't leak the address itself while it's
647 // still holding other valid data.
648 //
649 // Besides, BatchGroup is also allocated from BatchClassId and has its
650 // address recorded in the TransferBatch too. To maintain the correctness,
651 //
652 // The address of BatchGroup is always recorded in the last TransferBatch
653 // in the freelist (also imply that the freelist should only be
654 // updated with push_front). Once the last TransferBatch is popped,
655 // the block used by BatchGroup is also free for use.
656 //
657 // With this approach, the blocks used by BatchGroup and TransferBatch are
658 // reusable and don't need additional space for them.
664 // Construct `BatchGroup` on the last element.
669 // BatchClass hasn't enabled memory group. Use `0` to indicate there's no
670 // memory group here.
672 // `BG` is also the block of BatchClassId. Note that this is different
673 // from `CreateGroup` in `pushBlocksImpl`
680 }
685 // This happens under 2 cases.
686 // 1. just allocated a new `BatchGroup`.
687 // 2. Only 1 block is pushed when the freelist is empty.
689 // Construct the `TransferBatch` on the last element.
693 // As mentioned above, addresses of `TransferBatch` and `BatchGroup` are
694 // recorded in the TransferBatch.
700 // `TB` is also the block of BatchClassId.
703 }
709 u16 UnusedSlots =
715 // Self-contained
718 // TODO(chiahungduan): Avoid the use of push_back() in `Batches` of
719 // BatchClassId.
722 }
723 // `UnusedSlots` is u16 so the result will be also fit in u16.
727 }
730 }
732 // Push the blocks to their batch group. The layout will be like,
733 //
734 // FreeListInfo.BlockList - > BG -> BG -> BG
735 // | | |
736 // v v v
737 // TB TB TB
738 // |
739 // v
740 // TB
741 //
742 // Each BlockGroup(BG) will associate with unique group id and the free blocks
743 // are managed by a list of TransferBatch(TB). To reduce the time of inserting
744 // blocks, BGs are sorted and the input `Array` are supposed to be sorted so
745 // that we can get better performance of maintaining sorted property.
746 // Use `SameGroup=true` to indicate that all blocks in the array are from the
747 // same group then we will skip checking the group id of each block.
769 };
778 u16 UnusedSlots =
781 CurBatch =
786 }
787 // `UnusedSlots` is u16 so the result will be also fit in u16.
791 }
794 };
799 // In the following, `Cur` always points to the BatchGroup for blocks that
800 // will be pushed next. `Prev` is the element right before `Cur`.
807 }
814 else
816 }
818 // All the blocks are from the same group, just push without checking group
819 // id.
826 }
828 // The blocks are sorted by group id. Determine the segment of group and
829 // push them to their group together.
840 }
847 }
852 }
853 }
856 }
863 // We only expect one thread doing the freelist refillment and other
864 // threads will be waiting for either the completion of the
865 // `populateFreeListAndPopBatch()` or `pushBlocks()` called by other
866 // threads.
868 {
873 }
874 }
884 {
885 // Before reacquiring the `FLLock`, the freelist may be used up again
886 // and some threads are waiting for the freelist refillment by the
887 // current thread. It's important to set
888 // `Region->isPopulatingFreeList` to false so the threads about to
889 // sleep will notice the status change.
893 }
896 }
898 // At here, there are two preconditions to be met before waiting,
899 // 1. The freelist is empty.
900 // 2. Region->isPopulatingFreeList == true, i.e, someone is still doing
901 // `populateFreeListAndPopBatch()`.
902 //
903 // Note that it has the chance that freelist is empty but
904 // Region->isPopulatingFreeList == false because all the new populated
905 // blocks were used up right after the refillment. Therefore, we have to
906 // check if someone is still populating the freelist.
914 // Now the freelist is empty and someone's doing the refillment. We will
915 // wait until anyone refills the freelist or someone finishes doing
916 // `populateFreeListAndPopBatch()`. The refillment can be done by
917 // `populateFreeListAndPopBatch()`, `pushBlocks()`,
918 // `pushBatchClassBlocks()` and `mergeGroupsToReleaseBack()`.
923 }
926 }
928 // Pop one TransferBatch from a BatchGroup. The BatchGroup with the smallest
929 // group id will be considered first.
930 //
931 // The region mutex needs to be held while calling this method.
945 // Block used by `BatchGroup` is from BatchClassId. Turn the block into
946 // `TransferBatch` with single block.
953 }
964 // We don't keep BatchGroup with zero blocks to avoid empty-checking while
965 // allocating. Note that block used by constructing BatchGroup is recorded
966 // as free blocks in the last element of BatchGroup::Batches. Which means,
967 // once we pop the last TransferBatch, the block is implicitly
968 // deallocated.
971 }
976 }
978 // Refill the freelist and return one batch.
989 // Map more space for blocks, if necessary.
991 // Do the mmap for the user memory.
998 }
1006 }
1009 }
1015 Size));
1042 }
1043 }
1050 }
1055 // Note that `PushedBlocks` and `PoppedBlocks` are supposed to only record
1056 // the requests from `PushBlocks` and `PopBatch` which are external
1057 // interfaces. `populateFreeListAndPopBatch` is the internal interface so we
1058 // should set the values back to avoid incorrectly setting the stats.
1066 }
1080 RegionPushedBytesDelta =
1082 }
1085 "%s %02zu (%6zu): mapped: %6zuK popped: %7zu pushed: %7zu "
1086 "inuse: %6zu total: %6zu releases: %6zu last "
1095 }
1104 {
1108 }
1110 FragmentationRecorder Recorder;
1112 PageReleaseContext Context =
1119 }
1133 uptr Integral;
1134 uptr Fractional;
1141 }
1147 uptr BytesInFreeList;
1152 {
1158 BlockSize;
1162 // ==================================================================== //
1163 // 1. Check if we have enough free blocks and if it's worth doing a page
1164 // release.
1165 // ==================================================================== //
1168 ReleaseType)) {
1170 }
1172 // ==================================================================== //
1173 // 2. Determine which groups can release the pages. Use a heuristic to
1174 // gather groups that are candidates for doing a release.
1175 // ==================================================================== //
1180 GroupsToRelease =
1183 }
1186 }
1188 // Note that we have extracted the `GroupsToRelease` from region freelist.
1189 // It's safe to let pushBlocks()/popBatches() access the remaining region
1190 // freelist. In the steps 3 and 4, we will temporarily release the FLLock
1191 // and lock it again before step 5.
1193 // ==================================================================== //
1194 // 3. Mark the free blocks in `GroupsToRelease` in the `PageReleaseContext`.
1195 // Then we can tell which pages are in-use by querying
1196 // `PageReleaseContext`.
1197 // ==================================================================== //
1198 PageReleaseContext Context =
1204 }
1206 // ==================================================================== //
1207 // 4. Release the unused physical pages back to the OS.
1208 // ==================================================================== //
1218 }
1221 // ====================================================================== //
1222 // 5. Merge the `GroupsToRelease` back to the freelist.
1223 // ====================================================================== //
1227 }
1236 // Always update `BytesInFreeListAtLastCheckpoint` with the smallest value
1237 // so that we won't underestimate the releasable pages. For example, the
1238 // following is the region usage,
1239 //
1240 // BytesInFreeListAtLastCheckpoint AllocatedUser
1241 // v v
1242 // |--------------------------------------->
1243 // ^ ^
1244 // BytesInFreeList ReleaseThreshold
1245 //
1246 // In general, if we have collected enough bytes and the amount of free
1247 // bytes meets the ReleaseThreshold, we will try to do page release. If we
1248 // don't update `BytesInFreeListAtLastCheckpoint` when the current
1249 // `BytesInFreeList` is smaller, we may take longer time to wait for enough
1250 // freed blocks because we miss the bytes between
1251 // (BytesInFreeListAtLastCheckpoint - BytesInFreeList).
1255 }
1262 // Releasing smaller blocks is expensive, so we want to make sure that a
1263 // significant amount of bytes are free, and that there has been a good
1264 // amount of batches pushed to the freelist before attempting to release.
1274 // The constant 8 here is selected from profiling some apps and the number
1275 // of unreleased pages in the large size classes is around 16 pages or
1276 // more. Choose half of it as a heuristic and which also avoids page
1277 // release every time for every pushBlocks() attempt by large blocks.
1284 // Memory was returned recently.
1286 }
1287 }
1291 }
1301 // We are examining each group and will take the minimum distance to the
1302 // release threshold as the next Region::TryReleaseThreshold(). Note that if
1303 // the size of free blocks has reached the release threshold, the distance
1304 // to the next release will be PageSize * SmallerBlockReleasePageDelta. See
1305 // the comment on `SmallerBlockReleasePageDelta` for more details.
1311 // Group boundary is always GroupSize-aligned from CompactPtr base. The
1312 // layout of memory groups is like,
1313 //
1314 // (CompactPtrBase)
1315 // #1 CompactPtrGroupBase #2 CompactPtrGroupBase ...
1316 // | | |
1317 // v v v
1318 // +-----------------------+-----------------------+
1319 // \ / \ /
1320 // --- GroupSize --- --- GroupSize ---
1321 //
1322 // After decompacting the CompactPtrGroupBase, we expect the alignment
1323 // property is held as well.
1329 // TransferBatches are pushed in front of BG.Batches. The first one may
1330 // not have all caches used.
1340 }
1344 // Given the randomness property, we try to release the pages only if the
1345 // bytes used by free blocks exceed certain proportion of group size. Note
1346 // that this heuristic only applies when all the spaces in a BatchGroup
1347 // are allocated.
1351 ? GroupSize
1357 // If all blocks in the group are released, we will do range marking
1358 // which is fast. Otherwise, we will wait until we have accumulated
1359 // a certain amount of free memory.
1361 MayHaveReleasedAll
1367 // The following is the usage of a memroy group,
1368 //
1369 // BytesInBG ReleaseThreshold
1370 // / \ v
1371 // +---+---------------------------+-----+
1372 // | | | | |
1373 // +---+---------------------------+-----+
1374 // \ / ^
1375 // PushedBytesDelta GroupEnd
1376 MinDistToThreshold =
1380 // If it reaches high density at this round, the next time we will try
1381 // to release is based on SmallerBlockReleasePageDelta
1382 MinDistToThreshold =
1384 }
1390 }
1391 }
1393 // If `BG` is the first BatchGroupT in the list, we only need to advance
1394 // `BG` and call FreeListInfo.BlockList::pop_front(). No update is needed
1395 // for `Prev`.
1396 //
1397 // (BG) (BG->Next)
1398 // Prev Cur BG
1399 // | | |
1400 // v v v
1401 // nil +--+ +--+
1402 // |X | -> | | -> ...
1403 // +--+ +--+
1404 //
1405 // Otherwise, `Prev` will be used to extract the `Cur` from the
1406 // `FreeListInfo.BlockList`.
1407 //
1408 // (BG) (BG->Next)
1409 // Prev Cur BG
1410 // | | |
1411 // v v v
1412 // +--+ +--+ +--+
1413 // | | -> |X | -> | | -> ...
1414 // +--+ +--+ +--+
1415 //
1416 // After FreeListInfo.BlockList::extract(),
1417 //
1418 // Prev Cur BG
1419 // | | |
1420 // v v v
1421 // +--+ +--+ +--+
1422 // | |-+ |X | +->| | -> ...
1423 // +--+ | +--+ | +--+
1424 // +--------+
1425 //
1426 // Note that we need to advance before pushing this BatchGroup to
1427 // GroupsToRelease because it's a destructive operation.
1432 // Ideally, we may want to update this only after successful release.
1433 // However, for smaller blocks, each block marking is a costly operation.
1434 // Therefore, we update it earlier.
1435 // TODO: Consider updating this after releasing pages if `ReleaseRecorder`
1436 // can tell the released bytes in each group.
1441 else
1444 }
1446 // Only small blocks have the adaptive `TryReleaseThreshold`.
1448 // If the MinDistToThreshold is not updated, that means each memory group
1449 // may have only pushed less than a page size. In that case, just set it
1450 // back to normal.
1454 }
1457 }
1459 PageReleaseContext
1467 };
1474 GroupSize,
1475 AllocatedUserEnd);
1476 // The last block may straddle the group boundary. Rounding up to BlockSize
1477 // to get the exact range.
1486 // We may not be able to do the page release in a rare case that we may
1487 // fail on PageMap allocation.
1496 ? GroupSize
1517 }
1524 // Note that we don't always visit blocks in each BatchGroup so that we
1525 // may miss the chance of releasing certain pages that cross
1526 // BatchGroups.
1530 }
1531 }
1536 }
1543 // After merging two freelists, we may have redundant `BatchGroup`s that
1544 // need to be recycled. The number of unused `BatchGroup`s is expected to be
1545 // small. Pick a constant which is inferred from real programs.
1550 // We can't call pushBatchClassBlocks() to recycle the unused `BatchGroup`s
1551 // when we are manipulating the freelist of `BatchClassRegion`. Instead, we
1552 // should just push it back to the freelist when we merge two `BatchGroup`s.
1553 // This logic hasn't been implemented because we haven't supported releasing
1554 // pages in `BatchClassRegion`.
1557 // Merge GroupsToRelease back to the Region::FreeListInfo.BlockList. Note
1558 // that both `Region->FreeListInfo.BlockList` and `GroupsToRelease` are
1559 // sorted.
1562 ;) {
1567 }
1576 }
1584 // We have updated `BatchGroup::BytesInBGAtLastCheckpoint` while
1585 // collecting the `GroupsToRelease`.
1589 // Note that the first TransferBatches in both `Batches` may not be
1590 // full and only the first TransferBatch can have non-full blocks. Thus
1591 // we have to merge them before appending one to another.
1598 // The remaining Batches in `Cur` are full.
1602 // Only 1 non-full TransferBatch, push it to the front.
1608 NonFullBatchCount));
1610 NumBlocksToMove);
1613 else
1615 }
1616 }
1625 }
1632 }
1636 }
1638 // At here, the `BG` is the first BatchGroup with CompactPtrGroupBase
1639 // larger than the first element in `GroupsToRelease`. We need to insert
1640 // `GroupsToRelease::front()` (which is `Cur` below) before `BG`.
1641 //
1642 // 1. If `Prev` is nullptr, we simply push `Cur` to the front of
1643 // FreeListInfo.BlockList.
1644 // 2. Otherwise, use `insert()` which inserts an element next to `Prev`.
1645 //
1646 // Afterwards, we don't need to advance `BG` because the order between
1647 // `BG` and the new `GroupsToRelease::front()` hasn't been checked.
1650 else
1654 }
1661 }
1668 }
1669 }
1673 }
1675 // TODO: `PrimaryBase` can be obtained from ReservedMemory. This needs to be
1676 // deprecated.
1678 ReservedMemoryT ReservedMemory = {};
1679 // The minimum size of pushed blocks that we will try to release the pages in
1680 // that size class.
1682 atomic_s32 ReleaseToOsIntervalMs = {};
1684 };