| blob | 027560c2ad324ca6c5f3032b8f84521da476f5b2 |
2 /*--------------------------------------------------------------------*/
3 /*--- Thread scheduling. scheduler.c ---*/
4 /*--------------------------------------------------------------------*/
6 /*
7 This file is part of Valgrind, a dynamic binary instrumentation
8 framework.
10 Copyright (C) 2000-2017 Julian Seward
11 jseward@acm.org
13 This program is free software; you can redistribute it and/or
14 modify it under the terms of the GNU General Public License as
15 published by the Free Software Foundation; either version 2 of the
16 License, or (at your option) any later version.
18 This program is distributed in the hope that it will be useful, but
19 WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
21 General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program; if not, see <http://www.gnu.org/licenses/>.
26 The GNU General Public License is contained in the file COPYING.
27 */
29 /*
30 Overview
32 Valgrind tries to emulate the kernel's threading as closely as
33 possible. The client does all threading via the normal syscalls
34 (on Linux: clone, etc). Valgrind emulates this by creating exactly
35 the same process structure as would be created without Valgrind.
36 There are no extra threads.
38 The main difference is that Valgrind only allows one client thread
39 to run at once. This is controlled with the CPU Big Lock,
40 "the_BigLock". Any time a thread wants to run client code or
41 manipulate any shared state (which is anything other than its own
42 ThreadState entry), it must hold the_BigLock.
44 When a thread is about to block in a blocking syscall, it releases
45 the_BigLock, and re-takes it when it becomes runnable again (either
46 because the syscall finished, or we took a signal).
48 VG_(scheduler) therefore runs in each thread. It returns only when
49 the thread is exiting, either because it exited itself, or it was
50 told to exit by another thread.
52 This file is almost entirely OS-independent. The details of how
53 the OS handles threading and signalling are abstracted away and
54 implemented elsewhere. [Some of the functions have worked their
55 way back for the moment, until we do an OS port in earnest...]
56 */
75 #if defined(VGO_darwin)
77 #endif
98 /* ---------------------------------------------------------------------
99 Types and globals for the scheduler.
100 ------------------------------------------------------------------ */
102 /* ThreadId and ThreadState are defined elsewhere*/
104 /* Defines the thread-scheduling timeslice, in terms of the number of
105 basic blocks we attempt to run each thread for. Smaller values
106 give finer interleaving but much increased scheduling overheads. */
107 #define SCHEDULING_QUANTUM 100000
109 /* If False, a fault is Valgrind-internal (ie, a bug) */
112 /* 64-bit counter for the number of basic blocks done. */
115 /* Counter to see if vgdb activity is to be verified.
116 When nr of bbs done reaches vgdb_next_poll, scheduler will
117 poll for gdbserver activity. VG_(force_vgdb_poll) and
118 VG_(disable_vgdb_poll) allows the valgrind core (e.g. m_gdbserver)
119 to control when the next poll will be done. */
122 /* Forwards */
127 /* Stats. */
131 /* Stats: number of XIndirs looked up in the fast cache, the number of hits in
132 ways 1, 2 and 3, and the number of misses. The number of hits in way 0 isn't
133 recorded because it can be computed from these five numbers. */
140 /* And 32-bit temp bins for the above, so that 32-bit platforms don't
141 have to do 64 bit incs on the hot path through
142 VG_(disp_cp_xindir). */
149 /* Sanity checking counts. */
154 {
158 const ULong hits0
162 "scheduler: %'llu indir transfers, "
165 stats__n_xIndirs / (stats__n_xIndir_misses
168 "scheduler: .. of which: %'llu hit0, %'llu hit1, "
170 hits0,
171 stats__n_xIndir_hits1,
172 stats__n_xIndir_hits2,
173 stats__n_xIndir_hits3,
174 stats__n_xIndir_misses);
182 }
184 /*
185 * Mutual exclusion object used to serialize threads.
186 */
190 /* ---------------------------------------------------------------------
191 Helper functions for the scheduler.
192 ------------------------------------------------------------------ */
195 {
196 /* This is when the next report is due, in user cpu milliseconds since
197 process start. This is a global variable so this won't be thread-safe
198 if Valgrind is ever made multithreaded. For now it's fine. */
201 /* First of all, figure out whether another report is due. It
202 probably isn't. */
209 /* A report is due. First, though, set the time for the next report. */
212 /* If it's been an excessively long time since the last check, we
213 might have gone more than one reporting interval forward. Guard
214 against that. */
218 /* Also we don't want to report anything on the first call, but we
219 have to wait till this point to leave, so that we set up the
220 next-call time correctly. */
224 /* Print the report. */
236 100.0
239 millionEvCs,
241 }
242 }
244 static
246 {
248 }
250 /* For showing SB profiles, if the user asks to see them. */
251 static
253 {
254 /* DO NOT MAKE NON-STATIC */
256 /* */
263 }
264 }
266 static
268 {
303 }
304 }
306 /* Allocate a completely empty ThreadState record. */
308 {
309 Int i;
318 }
319 }
323 /*NOTREACHED*/
324 }
326 /*
327 Mark a thread as Runnable. This will block until the_BigLock is
328 available, so that we get exclusive access to all the shared
329 structures and the CPU. Up until we get the_BigLock, we must not
330 touch any shared state.
332 When this returns, we'll actually be running.
333 */
335 {
338 #if 0
343 }
344 #endif
346 /* First, acquire the_BigLock. We can't do anything else safely
347 prior to this point. Even doing debug printing prior to this
348 point is, technically, wrong. */
365 else
367 }
373 }
374 }
376 /*
377 Set a thread into a sleeping state, and give up exclusive access to
378 the CPU. On return, the thread must be prepared to block until it
379 is ready to run again (generally this means blocking in a syscall,
380 but it may mean that we remain in a Runnable state and we're just
381 yielding the CPU to another thread).
382 */
385 {
403 }
405 /* Release the_BigLock; this will reschedule any runnable
406 thread. */
408 }
411 {
414 }
417 {
420 }
422 /* See pub_core_scheduler.h for description */
424 {
426 }
428 /* See pub_core_scheduler.h for description */
430 {
432 }
435 {
438 }
441 /* Clear out the ThreadState and release the semaphore. Leaves the
442 ThreadState in VgTs_Zombie state, so that it doesn't get
443 reallocated until the caller is really ready. */
445 {
453 /* There should still be a valid exitreason for this thread */
460 }
462 /* If 'tid' is blocked in a syscall, send it SIGVGKILL so as to get it
463 out of the syscall and onto doing the next thing, whatever that is.
464 If it isn't blocked in a syscall, has no effect on the thread. */
466 {
475 }
476 # if defined(VGO_darwin)
477 {
478 // GrP fixme use mach primitives on darwin?
479 // GrP fixme thread_abort_safely?
480 // GrP fixme race for thread with WaitSys set but not in syscall yet?
483 }
484 # else
485 {
488 /* JRS 2009-Mar-20: should we assert for r==0 (tkill succeeded)?
489 I'm really not sure. Here's a race scenario which argues
490 that we shoudn't; but equally I'm not sure the scenario is
491 even possible, because of constraints caused by the question
492 of who holds the BigLock when.
494 Target thread tid does sys_read on a socket and blocks. This
495 function gets called, and we observe correctly that tid's
496 status is WaitSys but then for whatever reason this function
497 goes very slowly for a while. Then data arrives from
498 wherever, tid's sys_read returns, tid exits. Then we do
499 tkill on tid, but tid no longer exists; tkill returns an
500 error code and the assert fails. */
501 /* vg_assert(r == 0); */
502 }
503 # endif
504 }
505 }
507 /*
508 Yield the CPU for a short time to let some other thread run.
509 */
511 {
519 /*
520 Tell the kernel we're yielding.
521 */
522 # if defined(VGO_linux) || defined(VGO_darwin) || defined(VGO_freebsd)
524 # elif defined(VGO_solaris)
526 # else
527 # error Unknown OS
528 # endif
531 }
534 /* Set the standard set of blocked signals, used whenever we're not
535 running a client syscall. */
537 {
538 vki_sigset_t mask;
542 /* Don't block these because they're synchronous */
550 /* Can't block these anyway */
555 }
558 {
562 # if defined(VGO_linux)
563 /* no other fields to clear */
564 # elif defined(VGO_freebsd)
565 /* no other fields to clear */
566 # elif defined(VGO_darwin)
576 # elif defined(VGO_solaris)
577 # if defined(VGP_x86_solaris)
579 # endif
586 # else
588 # endif
589 }
592 {
596 }
598 static
600 {
601 vki_sigset_t savedmask;
607 /* Leave the thread in Zombie, so that it doesn't get reallocated
608 until the caller is finally done with the thread stack. */
616 /* start with no altstack */
624 }
626 /*
627 Called in the child after fork. If the parent has multiple
628 threads, then we've inherited a VG_(threads) array describing them,
629 but only the thread which called fork() is actually alive in the
630 child. This functions needs to clean up all those other thread
631 structures.
633 Whichever tid in the parent which called fork() becomes the
634 master_tid in the child. That's because the only living slot in
635 VG_(threads) in the child after fork is VG_(threads)[tid], and it
636 would be too hard to try to re-number the thread and relocate the
637 thread state down to VG_(threads)[1].
639 This function also needs to reinitialize the_BigLock, since
640 otherwise we may end up sharing its state with the parent, which
641 would be deeply confusing.
642 */
644 {
645 ThreadId tid;
648 # if defined(VGO_darwin)
649 // GrP fixme hack reset Mach ports
651 # endif
656 /* clear out all the unused thread slots */
662 }
663 }
665 /* re-init and take the sema */
669 }
672 /* First phase of initialisation of the scheduler. Initialise the
673 bigLock, zeroise the VG_(threads) structure and decide on the
674 ThreadId of the root thread.
675 */
677 {
678 Int i;
679 ThreadId tid_main;
686 {
689 }
695 }
700 /* Paranoia .. completely zero it out. */
713 }
717 /* Bleh. Unfortunately there are various places in the system that
718 assume that the main thread has a ThreadId of 1.
719 - Helgrind (possibly)
720 - stack overflow message in default_action() in m_signals.c
721 - definitely a lot more places
722 */
726 }
729 /* Second phase of initialisation of the scheduler. Given the root
730 ThreadId computed by first phase of initialisation, fill in stack
731 details and acquire bigLock. Initialise the scheduler. This is
732 called at startup. The caller subsequently initialises the guest
733 state components of this main thread.
734 */
736 Addr clstack_end,
737 SizeT clstack_size )
738 {
752 }
755 /* ---------------------------------------------------------------------
756 Helpers for running translations.
757 ------------------------------------------------------------------ */
759 /* Use gcc's built-in setjmp/longjmp. longjmp must not restore signal
760 mask state, but does need to pass "val" through. jumped must be a
761 volatile UWord. */
762 #define SCHEDSETJMP(tid, jumped, stmt) \
763 do { \
764 ThreadState * volatile _qq_tst = VG_(get_ThreadState)(tid); \
765 \
766 (jumped) = VG_MINIMAL_SETJMP(_qq_tst->sched_jmpbuf); \
767 if ((jumped) == ((UWord)0)) { \
768 vg_assert(!_qq_tst->sched_jmpbuf_valid); \
769 _qq_tst->sched_jmpbuf_valid = True; \
770 stmt; \
771 } else if (VG_(clo_trace_sched)) \
773 __LINE__, tid, jumped); \
774 vg_assert(_qq_tst->sched_jmpbuf_valid); \
775 _qq_tst->sched_jmpbuf_valid = False; \
776 } while(0)
779 /* Do various guest state alignment checks prior to running a thread.
780 Specifically, check that what we have matches Vex's guest state
781 layout requirements. See libvex.h for details, but in short the
782 requirements are: There must be no holes in between the primary
783 guest state, its two copies, and the spill area. In short, all 4
784 areas must be aligned on the LibVEX_GUEST_STATE_ALIGN boundary and
785 be placed back-to-back without holes in between. */
787 {
815 /* Check that the guest state and its two shadows have the same
816 size, and that there are no holes in between. The latter is
817 important because Memcheck assumes that it can reliably access
818 the shadows by indexing off a pointer to the start of the
819 primary guest state area. */
824 /* Also check there's no hole between the second shadow area and
825 the spill area. */
829 # if defined(VGA_x86)
830 /* x86 XMM regs must form an array, ie, have no holes in
831 between. */
836 );
842 # endif
844 # if defined(VGA_amd64)
845 /* amd64 YMM regs must form an array, ie, have no holes in
846 between. */
851 );
857 # endif
859 # if defined(VGA_ppc32) || defined(VGA_ppc64be) || defined(VGA_ppc64le)
860 /* ppc guest_state vector regs must be 16 byte aligned for
861 loads/stores. This is important! */
865 /* be extra paranoid .. */
869 # endif
871 # if defined(VGA_arm)
872 /* arm guest_state VFP regs must be 8 byte aligned for
873 loads/stores. Let's use 16 just to be on the safe side. */
877 /* be extra paranoid .. */
881 # endif
883 # if defined(VGA_arm64)
890 # endif
892 # if defined(VGA_s390x)
893 /* no special requirements */
894 # endif
896 # if defined(VGA_mips32) || defined(VGA_mips64)
897 /* no special requirements */
898 # endif
899 }
901 // NO_VGDB_POLL value ensures vgdb is not polled, while
902 // VGDB_POLL_ASAP ensures that the next scheduler call
903 // will cause a poll.
904 #define NO_VGDB_POLL 0xffffffffffffffffULL
905 #define VGDB_POLL_ASAP 0x0ULL
908 {
910 }
912 {
914 }
916 /* Run the thread tid for a while, and return a VG_TRC_* value
917 indicating why VG_(disp_run_translations) stopped, and possibly an
918 auxiliary word. Also, only allow the thread to run for at most
919 *dispatchCtrP events. If (as is the normal case) use_alt_host_addr
920 is False, we are running ordinary redir'd translations, and we
921 should therefore start by looking up the guest next IP in TT. If
922 it is True then we ignore the guest next IP and just run from
923 alt_host_addr, which presumably points at host code for a no-redir
924 translation.
926 Return results are placed in two_words. two_words[0] is set to the
927 TRC. In the case where that is VG_TRC_CHAIN_ME_TO_{SLOW,FAST}_EP,
928 the address to patch is placed in two_words[1].
929 */
930 static
933 ThreadId tid,
934 HWord alt_host_addr,
935 Bool use_alt_host_addr )
936 {
942 /* Paranoia */
950 /* end Paranoia */
952 /* Futz with the XIndir stats counters. */
959 /* Clear return area. */
962 /* Figure out where we're starting from. */
964 /* unusual case -- no-redir translation */
967 /* normal case -- redir translation */
969 Bool found_in_fast_cache
976 /* not found in VG_(tt_fast). Searching here the transtab
977 improves the performance compared to returning directly
978 to the scheduler. */
981 True/*upd cache*/
982 );
986 /* At this point, we know that we intended to start at a
987 normal redir translation, but it was not found. In
988 which case we can return now claiming it's not
989 findable. */
992 }
993 }
994 }
995 /* We have either a no-redir or a redir translation. */
998 /* there should be no undealt-with signals */
999 //vg_assert(VG_(threads)[tid].siginfo.si_signo == 0);
1001 /* Set up event counter stuff for the run. */
1006 /* Invalidate any in-flight LL/SC transactions, in the case that we're
1007 using the fallback LL/SC implementation. See bugs 344524 and 369459. */
1008 # if defined(VGP_mips32_linux) || defined(VGP_mips64_linux) \
1009 || defined(VGP_nanomips_linux)
1011 # elif defined(VGP_arm64_linux)
1013 # endif
1016 vki_sigset_t m;
1024 }
1026 /* Set up return-value area. */
1028 // Tell the tool this thread is about to run client code
1035 tid,
1036 jumped,
1038 two_words,
1040 host_code_addr
1041 )
1042 );
1048 /* We get here if the client took a fault that caused our signal
1049 handler to longjmp. */
1054 }
1056 /* Merge the 32-bit XIndir/miss counters into the 64 bit versions,
1057 and zero out the 32-bit ones in preparation for the next run of
1058 generated code. */
1070 /* Inspect the event counter. */
1075 /* The number of events done this time is the difference between
1076 the event counter originally and what it is now. Except -- if
1077 it has gone negative (to -1) then the transition 0 to -1 doesn't
1078 correspond to a real executed block, so back it out. It's like
1079 this because the event checks decrement the counter first and
1080 check it for negativeness second, hence the 0 to -1 transition
1081 causes a bailout and the block it happens in isn't executed. */
1082 {
1086 done_this_time--;
1088 /* If the generated code drives the counter below -1, something
1089 is seriously wrong. */
1091 }
1092 }
1100 // Tell the tool this thread has stopped running client code
1106 else
1107 /* value was changed due to gdbserver invocation via ptrace */
1111 }
1113 /* TRC value and possible auxiliary patch-address word are already
1114 in two_words[0] and [1] respectively, as a result of the call to
1115 VG_(run_innerloop). */
1116 /* Stay sane .. */
1122 }
1123 }
1126 /* ---------------------------------------------------------------------
1127 The scheduler proper.
1128 ------------------------------------------------------------------ */
1131 {
1132 Bool found;
1135 /* Trivial event. Miss in the fast-cache. Do a full
1136 lookup for it. */
1140 /* Not found; we need to request a translation. */
1148 // If VG_(translate)() fails, it's because it had to throw a
1149 // signal because the client jumped to a bad address. That
1150 // means that either a signal has been set up for delivery,
1151 // or the thread has been marked for termination. Either
1152 // way, we just need to go back into the scheduler loop.
1153 }
1154 }
1155 }
1157 static
1159 {
1168 /* Not found; we need to request a translation. */
1175 // If VG_(translate)() fails, it's because it had to throw a
1176 // signal because the client jumped to a bad address. That
1177 // means that either a signal has been set up for delivery,
1178 // or the thread has been marked for termination. Either
1179 // way, we just need to go back into the scheduler loop.
1181 }
1182 }
1187 /* So, finally we know where to patch through to. Do the patching
1188 and update the various admin tables that allow it to be undone
1189 in the case that the destination block gets deleted. */
1192 }
1195 {
1199 /* Syscall may or may not block; either way, it will be
1200 complete by the time this call returns, and we'll be
1201 runnable again. We could take a signal while the
1202 syscall runs. */
1209 }
1218 }
1228 }
1229 }
1231 /* tid just requested a jump to the noredir version of its current
1232 program counter. So make up that translation if needed, run it,
1233 and return the resulting thread return code in two_words[]. */
1234 static
1237 ThreadId tid )
1238 {
1239 /* Clear return area. */
1247 /* Not found; we need to request a translation. */
1254 // If VG_(translate)() fails, it's because it had to throw a
1255 // signal because the client jumped to a bad address. That
1256 // means that either a signal has been set up for delivery,
1257 // or the thread has been marked for termination. Either
1258 // way, we just need to go back into the scheduler loop.
1261 }
1263 }
1268 /* Otherwise run it and return the resulting VG_TRC_* value. */
1272 }
1275 /*
1276 Run a thread until it wants to exit.
1278 We assume that the caller has already called VG_(acquire_BigLock) for
1279 us, so we own the VCPU. Also, all signals are blocked.
1280 */
1282 {
1283 /* Holds the remaining size of this thread's "timeslice". */
1292 /* Do vgdb initialization (but once). Only the first (main) task
1293 starting up will do the below.
1294 Initialize gdbserver earlier than at the first
1295 thread VG_(scheduler) is causing problems:
1296 * at the end of VG_(scheduler_init_phase2) :
1297 The main thread is in VgTs_Init state, but in a not yet
1298 consistent state => the thread cannot be reported to gdb
1299 (e.g. causes an assert in LibVEX_GuestX86_get_eflags when giving
1300 back the guest registers to gdb).
1301 * at end of valgrind_main, just
1302 before VG_(main_thread_wrapper_NORETURN)(1) :
1303 The main thread is still in VgTs_Init state but in a
1304 more advanced state. However, the thread state is not yet
1305 completely initialized : a.o., the os_state is not yet fully
1306 set => the thread is then not properly reported to gdb,
1307 which is then confused (causing e.g. a duplicate thread be
1308 shown, without thread id).
1309 * it would be possible to initialize gdbserver "lower" in the
1310 call stack (e.g. in VG_(main_thread_wrapper_NORETURN)) but
1311 these are platform dependent and the place at which
1312 the thread state is completely initialized is not
1313 specific anymore to the main thread (so a similar "do it only
1314 once" would be needed).
1316 => a "once only" initialization here is the best compromise. */
1321 /* If we have to poll, ensures we do an initial poll at first
1322 scheduler call. Otherwise, ensure no poll (unless interrupted
1323 by ptrace). */
1326 else
1332 }
1333 }
1337 /* We disable the stack cache the first time we see a thread other
1338 than the main thread appearing. At this moment, we are sure the pthread
1339 lib loading is done/variable was initialised by pthread lib/... */
1343 "pthread stack cache size disable done"
1346 /* Set a value big enough to be above the hardcoded maximum stack
1347 cache size in glibc, small enough to allow a pthread stack size
1348 to be added without risk of overflow. */
1349 }
1351 /*
1352 * glibc 2.34 no longer has stack_cache_actsize as a visible variable
1353 * so we switch to using the GLIBC_TUNABLES env var. Processing for that
1354 * is done in initimg-linux.c / setup_client_env for all glibc
1355 *
1356 * If we don't detect stack_cache_actsize we want to be able to tell
1357 * whether it is an unexpected error or if it is no longer there.
1358 * In the latter case we don't print a warning.
1359 */
1371 }
1373 }
1376 }
1380 }
1382 /* Remove SimHint_no_nptl_pthread_stackcache from VG_(clo_sim_hints)
1383 to avoid having a msg for all following threads. */
1384 }
1385 }
1387 /* set the proper running signal mask */
1399 /* Our slice is done, so yield the CPU to another thread. On
1400 Linux, this doesn't sleep between sleeping and running,
1401 since that would take too much time. */
1403 /* 4 July 06: it seems that a zero-length nsleep is needed to
1404 cause async thread cancellation (canceller.c) to terminate
1405 in finite time; else it is in some kind of race/starvation
1406 situation and completion is arbitrarily delayed (although
1407 this is not a deadlock).
1409 Unfortunately these sleeps cause MPI jobs not to terminate
1410 sometimes (some kind of livelock). So sleeping once
1411 every N opportunities appears to work. */
1413 /* 3 Aug 06: doing sys__nsleep works but crashes some apps.
1414 sys_yield also helps the problem, whilst not crashing apps. */
1418 /* ------------ now we don't have The Lock ------------ */
1421 /* ------------ now we do have The Lock ------------ */
1423 /* OK, do some relatively expensive housekeeping stuff */
1427 /* Possibly make a progress report */
1430 }
1432 /* Look for any pending signals for this thread, and set them up
1433 for delivery */
1439 /* For stats purposes only. */
1440 n_scheduling_events_MAJOR++;
1442 /* Figure out how many bbs to ask vg_run_innerloop to do. */
1445 /* paranoia ... */
1448 }
1450 /* For stats purposes only. */
1451 n_scheduling_events_MINOR++;
1467 }
1470 /* If we got a request to run a no-redir version of
1471 something, do so now -- handle_noredir_jump just (creates
1472 and) runs that one translation. The flip side is that the
1473 noredir translation can't itself return another noredir
1474 request -- that would be nonsensical. It can, however,
1475 return VG_TRC_BORING, which just means keep going as
1476 normal. */
1477 /* Note that the fact that we need to continue with a
1478 no-redir jump is not recorded anywhere else in this
1479 thread's state. So we *must* execute the block right now
1480 -- we can't fail to execute it and later resume with it,
1481 because by then we'll have forgotten the fact that it
1482 should be run as no-redir, but will get run as a normal
1483 potentially-redir'd, hence screwing up. This really ought
1484 to be cleaned up, by noting in the guest state that the
1485 next block to be executed should be no-redir. Then we can
1486 suspend and resume at any point, which isn't the case at
1487 the moment. */
1488 /* We can't enter a no-redir translation with the dispatch
1489 ctr set to zero, for the reasons commented just above --
1490 we need to force it to execute right now. So, if the
1491 dispatch ctr is zero, set it to one. Note that this would
1492 have the bad side effect of holding the Big Lock arbitrary
1493 long should there be an arbitrarily long sequence of
1494 back-to-back no-redir translations to run. But we assert
1495 just below that this translation cannot request another
1496 no-redir jump, so we should be safe against that. */
1499 }
1502 tid );
1505 /* This can't be allowed to happen, since it means the block
1506 didn't execute, and we have no way to resume-as-noredir
1507 after we get more timeslice. But I don't think it ever
1508 can, since handle_noredir_jump will assert if the counter
1509 is zero on entry. */
1511 /* This asserts the same thing. */
1514 /* A no-redir translation can't return with a chain-me
1515 request, since chaining in the no-redir cache is too
1516 complex. */
1519 }
1523 /* assisted dispatch, no event. Used by no-redir
1524 translations to force return to the scheduler. */
1526 /* no special event, just keep going. */
1538 }
1544 }
1555 /* amd64-linux, ppc32-linux, amd64-darwin, amd64-solaris */
1563 /* Explicit yield, because this thread is in a spin-lock
1564 or something. Only let the thread run for a short while
1565 longer. Because swapping to another thread is expensive,
1566 we're prepared to let this thread eat a little more CPU
1567 before swapping to another. That means that short term
1568 spins waiting for hardware to poke memory won't cause a
1569 thread swap. */
1575 /* Timeslice is out. Let a new thread be scheduled. */
1580 /* Everything should be set up (either we're exiting, or
1581 about to start in a signal handler). */
1585 /* Failure of arch-specific address translation (x86/amd64
1586 segment override use) */
1587 /* jrs 2005 03 11: is this correct? */
1594 VexEmNote ew;
1596 Bool show;
1597 Int q;
1602 }
1608 ? True
1615 }
1617 }
1620 VexEmNote ew;
1635 }
1683 # undef M
1684 }
1685 # if defined(VGA_s390x)
1686 /* Now that the complaint is out we need to adjust the guest_IA. The
1687 reason is that -- after raising the exception -- execution will
1688 continue with the insn that follows the invalid insn. As the first
1689 2 bits of the invalid insn determine its length in the usual way,
1690 we can compute the address of the next insn here and adjust the
1691 guest_IA accordingly. This adjustment is essential and tested by
1692 none/tests/s390x/op_exception.c (which would loop forever
1693 otherwise) */
1698 # endif
1701 }
1707 "scheduler(VEX_TRC_JMP_INVALICACHE)"
1708 );
1719 }
1722 /* This typically happens if, after running generated code,
1723 it is detected that host CPU settings (eg, FPU/Vector
1724 control words) are not as they should be. Vex's code
1725 generation specifies the state such control words should
1726 be in on entry to Vex-generated code, and they should be
1727 unchanged on exit from it. Failure of this assertion
1728 usually means a bug in Vex's code generation. */
1729 //{ UInt xx;
1730 // __asm__ __volatile__ (
1731 // "\t.word 0xEEF12A10\n" // fmrx r2,fpscr
1732 // "\tmov %0, r2" : "=r"(xx) : : "r2" );
1733 // VG_(printf)("QQQQ new fpscr = %08x\n", xx);
1734 //}
1736 "run_innerloop detected host "
1740 /* Do whatever simulation is appropriate for an x86 sysenter
1741 instruction. Note that it is critical to set this thread's
1742 guest_EIP to point at the code to execute after the
1743 sysenter, since Vex-generated code will not have set it --
1744 vex does not know what it should be. Vex sets the next
1745 address to zero, so if you don't set guest_EIP, the thread
1746 will jump to zero afterwards and probably die as a result. */
1747 # if defined(VGP_x86_linux)
1750 # elif defined(VGP_x86_darwin) || defined(VGP_x86_solaris)
1751 /* return address in client edx */
1755 # else
1758 # endif
1764 /* NOTREACHED */
1771 }
1779 }
1783 {
1784 ThreadId tid;
1800 }
1801 }
1804 /* ---------------------------------------------------------------------
1805 Specifying shadow register values
1806 ------------------------------------------------------------------ */
1808 #if defined(VGA_x86)
1809 # define VG_CLREQ_ARGS guest_EAX
1810 # define VG_CLREQ_RET guest_EDX
1811 #elif defined(VGA_amd64)
1812 # define VG_CLREQ_ARGS guest_RAX
1813 # define VG_CLREQ_RET guest_RDX
1814 #elif defined(VGA_ppc32) || defined(VGA_ppc64be) || defined(VGA_ppc64le)
1815 # define VG_CLREQ_ARGS guest_GPR4
1816 # define VG_CLREQ_RET guest_GPR3
1817 #elif defined(VGA_arm)
1818 # define VG_CLREQ_ARGS guest_R4
1819 # define VG_CLREQ_RET guest_R3
1820 #elif defined(VGA_arm64)
1821 # define VG_CLREQ_ARGS guest_X4
1822 # define VG_CLREQ_RET guest_X3
1823 #elif defined (VGA_s390x)
1824 # define VG_CLREQ_ARGS guest_r2
1825 # define VG_CLREQ_RET guest_r3
1826 #elif defined(VGA_mips32) || defined(VGA_mips64) || defined(VGA_nanomips)
1827 # define VG_CLREQ_ARGS guest_r12
1828 # define VG_CLREQ_RET guest_r11
1829 #else
1830 # error Unknown arch
1831 #endif
1833 #define CLREQ_ARGS(regs) ((regs).vex.VG_CLREQ_ARGS)
1834 #define CLREQ_RET(regs) ((regs).vex.VG_CLREQ_RET)
1835 #define O_CLREQ_RET (offsetof(VexGuestArchState, VG_CLREQ_RET))
1837 // These macros write a value to a client's thread register, and tell the
1838 // tool that it's happened (if necessary).
1840 #define SET_CLREQ_RETVAL(zztid, zzval) \
1841 do { CLREQ_RET(VG_(threads)[zztid].arch) = (zzval); \
1842 VG_TRACK( post_reg_write, \
1843 Vg_CoreClientReq, zztid, O_CLREQ_RET, sizeof(UWord)); \
1844 } while (0)
1846 #define SET_CLCALL_RETVAL(zztid, zzval, f) \
1847 do { CLREQ_RET(VG_(threads)[zztid].arch) = (zzval); \
1848 VG_TRACK( post_reg_write_clientcall_return, \
1849 zztid, O_CLREQ_RET, sizeof(UWord), f); \
1850 } while (0)
1853 /* ---------------------------------------------------------------------
1854 Handle client requests.
1855 ------------------------------------------------------------------ */
1857 // OS-specific(?) client requests
1859 {
1866 /* This is equivalent to an exit() syscall, but we don't set the
1867 exitcode (since it might already be set) */
1870 "__gnu_cxx::__freeres() and __libc_freeres() wrapper "
1878 }
1881 }
1884 /* Write out a client message, possibly including a back trace. Return
1885 the number of characters written. In case of XML output, the format
1886 string as well as any arguments it requires will be XML'ified.
1887 I.e. special characters such as the angle brackets will be translated
1888 into proper escape sequences. */
1889 static
1892 {
1893 Int count;
1896 /* Translate the format string as follows:
1897 < --> <
1898 > --> >
1899 & --> &
1900 %s --> %pS
1901 Yes, yes, it's simplified but in synch with
1902 myvprintf_str_XML_simplistic and VG_(debugLog_vprintf).
1903 */
1905 /* Allocate a buffer that is for sure large enough. */
1917 /* Careful: make sure %%s stays %%s */
1924 }
1930 }
1931 }
1945 }
1954 }
1957 /* Do a client request for the thread tid. After the request, tid may
1958 or may not still be runnable; if not, the scheduler will have to
1959 choose a new thread to run.
1960 */
1961 static
1963 {
1975 else
1978 }
1983 else
1986 }
1991 else
1994 }
1999 else
2002 }
2004 // Nb: this looks like a circular definition, because it kind of is.
2005 // See comment in valgrind.h to understand what's going on.
2012 /* JRS 2010-Jan-28: this is DEPRECATED; use the
2013 _VALIST_BY_REF version instead */
2021 Int count =
2026 }
2030 /* JRS 2010-Jan-28: this is DEPRECATED; use the
2031 _VALIST_BY_REF version instead */
2039 Int count =
2044 }
2049 Int count =
2055 }
2060 Int count =
2065 }
2069 Int count =
2074 }
2121 }
2123 /* Requests from the client program */
2133 );
2169 // Unless the guest would become epoch aware (and would need to
2170 // describe IP addresses of dlclosed libs), using cur_ep is a
2171 // reasonable choice.
2176 );
2178 /* For backward compatibility truncate the filename to
2179 49 characters. */
2182 UInt i;
2186 }
2190 }
2194 }
2203 }
2204 else
2207 }
2210 }
2213 UWord ret;
2217 }
2222 // Ignore them if the addr is NULL; otherwise pass onto the tool.
2228 }
2235 my_default:
2237 // do nothing, os_client_request() handled it
2239 UWord ret;
2251 // Allow for requests in core, but defined by tools, which
2252 // have 0 and 0 in their two high bytes.
2262 }
2263 }
2265 }
2268 /*NOTREACHED*/
2269 va_list_casting_error_NORETURN:
2290 );
2292 }
2295 /* ---------------------------------------------------------------------
2296 Sanity checking (permanently engaged)
2297 ------------------------------------------------------------------ */
2299 /* Internal consistency checks on the sched structures. */
2300 static
2302 {
2308 "Thread %u is supposed to be running, "
2312 }
2319 }
2324 tid);
2326 }
2329 /* Periodically show the state of all threads, for debugging
2330 purposes. */
2332 UInt now;
2341 }
2342 }
2344 /* core_panic also shows the sched status, which is why we don't
2345 show it above if bad==True. */
2348 }
2351 {
2352 ThreadId tid;
2359 /* --- First do all the tests that we can do quickly. ---*/
2361 sanity_fast_count++;
2363 /* Check stuff pertaining to the memory check system. */
2365 /* Check that nobody has spuriously claimed that the first or
2366 last 16 pages of memory have become accessible [...] */
2369 }
2371 /* --- Now some more expensive checks. ---*/
2373 /* Once every now and again, check some more expensive stuff.
2374 Gradually increase the interval between such checks so as not to
2375 burden long-running programs too much. */
2384 slow_check_interval++;
2385 sanity_slow_count++;
2389 }
2391 /* Look for stack overruns. Visit all threads. */
2393 SizeT remains;
2400 stack
2403 SizeT limit
2405 remains
2409 "WARNING: Thread %u is within %lu bytes "
2411 "Valgrind stack size can be increased "
2414 }
2415 }
2418 /* Check sanity of the low-level memory manager. Note that bugs
2419 in the client's code can cause this to fail, so we don't do
2420 this check unless specially asked for. And because it's
2421 potentially very expensive. */
2423 }
2424 }
2426 /*--------------------------------------------------------------------*/
2427 /*--- end ---*/
2428 /*--------------------------------------------------------------------*/