| blob | d8845715a22490e936499570521a2a7ee87440a8 |
2 /*--------------------------------------------------------------------*/
3 /*--- Helgrind: a Valgrind tool for detecting errors ---*/
4 /*--- in threaded programs. hg_main.c ---*/
5 /*--------------------------------------------------------------------*/
7 /*
8 This file is part of Helgrind, a Valgrind tool for detecting errors
9 in threaded programs.
11 Copyright (C) 2007-2017 OpenWorks LLP
12 info@open-works.co.uk
14 Copyright (C) 2007-2017 Apple, Inc.
16 This program is free software; you can redistribute it and/or
17 modify it under the terms of the GNU General Public License as
18 published by the Free Software Foundation; either version 2 of the
19 License, or (at your option) any later version.
21 This program is distributed in the hope that it will be useful, but
22 WITHOUT ANY WARRANTY; without even the implied warranty of
23 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
24 General Public License for more details.
26 You should have received a copy of the GNU General Public License
27 along with this program; if not, see <http://www.gnu.org/licenses/>.
29 The GNU General Public License is contained in the file COPYING.
31 Neither the names of the U.S. Department of Energy nor the
32 University of California nor the names of its contributors may be
33 used to endorse or promote products derived from this software
34 without prior written permission.
35 */
72 // FIXME: new_mem_w_tid ignores the supplied tid. (wtf?!)
74 // FIXME: when client destroys a lock or a CV, remove these
75 // from our mappings, so that the associated SO can be freed up
77 /*----------------------------------------------------------------*/
78 /*--- ---*/
79 /*----------------------------------------------------------------*/
81 /* Note this needs to be compiled with -fno-strict-aliasing, since it
82 contains a whole bunch of calls to lookupFM etc which cast between
83 Word and pointer types. gcc rightly complains this breaks ANSI C
84 strict aliasing rules, at -O2. No complaints at -O, but -O2 gives
85 worthwhile performance benefits over -O.
86 */
88 // FIXME what is supposed to happen to locks in memory which
89 // is relocated as a result of client realloc?
91 // FIXME put referencing ThreadId into Thread and get
92 // rid of the slow reverse mapping function.
94 // FIXME accesses to NoAccess areas: change state to Excl?
96 // FIXME report errors for accesses of NoAccess memory?
98 // FIXME pth_cond_wait/timedwait wrappers. Even if these fail,
99 // the thread still holds the lock.
101 /* ------------ Debug/trace options ------------ */
103 // 0 for silent, 1 for some stuff, 2 for lots of stuff
104 #define SHOW_EVENTS 0
111 // 0 for none, 1 for dump at end of run
112 #define SHOW_DATA_STRUCTURES 0
115 /* ------------ Misc comments ------------ */
117 // FIXME: don't hardwire initial entries for root thread.
118 // Instead, let the pre_thread_ll_create handler do this.
121 /*----------------------------------------------------------------*/
122 /*--- Primary data structures ---*/
123 /*----------------------------------------------------------------*/
125 /* Admin linked list of Threads */
129 /* Admin double linked list of Locks */
130 /* We need a double linked list to properly and efficiently
131 handle del_LockN. */
134 /* Mapping table for core ThreadIds to Thread* */
137 /* Mapping table for lock guest addresses to Lock* */
140 /* The word-set universes for lock sets. */
144 /* univ_laog will be garbaged collected when the nr of element in univ_laog is
145 >= next_gc_univ_laog. */
147 /* Allow libhb to get at the universe of locksets stored
148 here. Sigh. */
151 /* Allow libhb to get at the list of locks stored here. Ditto
152 sigh. */
156 /*----------------------------------------------------------------*/
157 /*--- Simple helpers for the data structures ---*/
158 /*----------------------------------------------------------------*/
163 #if defined(VGO_solaris)
165 #else
169 static
172 /* --------- Constructors --------- */
189 #if defined(VGO_solaris)
195 }
197 // Make a new lock which is unlocked (hence ownerless)
198 // and insert the new lock in admin_locks double linked list.
202 /* begin: add to double linked list */
208 /* end: add */
220 }
222 /* Release storage for a Lock. Also release storage in .heldBy, if
223 any. Removes from admin_locks double linked list. */
225 {
231 /* begin: del lock from double linked list */
237 }
243 }
244 /* end: del */
247 }
249 /* Update 'lk' to reflect that 'thr' now has a write-acquisition of
250 it. This is done strictly: only combinations resulting from
251 correct program and libpthread behaviour are allowed. */
253 {
257 stats__lockN_acquires++;
259 /* EXPOSITION only */
260 /* We need to keep recording snapshots of where the lock was
261 acquired, so as to produce better lock-order error messages. */
263 ThreadId tid;
266 lk->acquired_at
270 }
271 /* end EXPOSITION only */
275 case_LK_nonRec:
285 /* 2nd and subsequent locking of a lock by its owner */
287 /* assert: lk is only held by one thread .. */
289 /* assert: .. and that thread is 'thr'. */
299 }
301 }
304 {
307 /* can only add reader to a reader-writer lock. */
309 /* lk must be free or already r-held. */
313 stats__lockN_acquires++;
315 /* EXPOSITION only */
316 /* We need to keep recording snapshots of where the lock was
317 acquired, so as to produce better lock-order error messages. */
319 ThreadId tid;
322 lk->acquired_at
326 }
327 /* end EXPOSITION only */
335 }
338 }
340 /* Update 'lk' to reflect a release of it by 'thr'. This is done
341 strictly: only combinations resulting from correct program and
342 libpthread behaviour are allowed. */
345 {
346 Bool b;
349 /* lock must be held by someone */
351 stats__lockN_releases++;
352 /* Remove it from the holder set */
354 /* thr must actually have been a holder of lk */
356 /* normalise */
363 }
365 }
368 {
373 }
374 /* for each thread that holds this lock do ... */
380 thr->locksetA
386 thr->locksetW
388 }
389 }
391 }
394 /*----------------------------------------------------------------*/
395 /*--- Print out the primary data structures ---*/
396 /*----------------------------------------------------------------*/
398 #define PP_THREADS (1<<1)
399 #define PP_LOCKS (1<<2)
400 #define PP_ALL (PP_THREADS | PP_LOCKS)
406 {
407 Int i;
417 }
420 {
425 }
429 }
432 {
436 /* nothing */
437 }
443 }
445 }
447 }
450 {
455 n++;
456 }
463 }
465 }
473 }
474 }
476 /* Pretty Print lock lk.
477 if show_lock_addrdescr, describes the (guest) lock address.
478 (this description will be more complete with --read-var-info=yes).
479 if show_internal_data, shows also helgrind internal information.
480 d is the level at which output is indented. */
482 Bool show_lock_addrdescr,
483 Bool show_internal_data)
484 {
485 // FIXME PW EPOCH should use the epoch of the allocated_at ec.
490 else
500 }
503 }
507 }
510 }
513 UWord count;
525 else
528 }
529 }
532 }
534 }
537 {
541 /* nothing */
542 }
548 }
552 }
554 }
557 {
567 }
570 }
573 {
582 }
588 }
593 }
595 #undef SHOW_ADMIN
598 /*----------------------------------------------------------------*/
599 /*--- Initialise the primary data structures ---*/
600 /*----------------------------------------------------------------*/
603 {
605 WordSetID wsid;
607 /* Get everything initialised and zeroed. */
623 /* Ensure that univ_lsets is non-empty, with lockset zero being the
624 empty lockset. hg_errors.c relies on the assumption that
625 lockset number zero in univ_lsets is always valid. */
634 }
636 /* Set up entries for the root thread */
637 // FIXME: this assumes that the first real ThreadId is 1
639 /* a Thread for the new thread ... */
642 identity of the root thread. */
646 /* and bind it in the thread-map table. */
655 }
658 /*----------------------------------------------------------------*/
659 /*--- map_threads :: array[core-ThreadId] of Thread* ---*/
660 /*----------------------------------------------------------------*/
662 /* Doesn't assert if the relevant map_threads entry is NULL. */
664 {
669 }
671 /* Asserts if the relevant map_threads entry is NULL. */
673 {
679 }
681 /* Do a reverse lookup. Does not assert if 'thr' is not found in
682 map_threads. */
684 {
685 ThreadId tid;
687 /* Check nobody used the invalid-threadid slot */
693 }
695 /* Do a reverse lookup. Warning: POTENTIALLY SLOW. Asserts if 'thr'
696 is not found in map_threads. */
698 {
704 }
707 {
714 }
718 #if defined(VGO_solaris)
721 }
724 #if defined(VGO_solaris)
728 }
733 }
738 }
743 }
745 /*----------------------------------------------------------------*/
746 /*--- map_locks :: WordFM guest-Addr-of-lock Lock* ---*/
747 /*----------------------------------------------------------------*/
749 /* Make sure there is a lock table entry for the given (lock) guest
750 address. If not, create one of the stated 'kind' in unheld state.
751 In any case, return the address of the existing or new Lock. */
752 static
754 {
755 Bool found;
772 }
773 }
776 {
777 Bool found;
782 }
785 {
790 /* delFromFM produces the val which is being deleted, if it is
791 found. So assert it is non-null; that in effect asserts that we
792 are deleting a (ga, Lock) pair which actually exists. */
795 }
799 /*----------------------------------------------------------------*/
800 /*--- Sanity checking the data structures ---*/
801 /*----------------------------------------------------------------*/
807 /* REQUIRED INVARIANTS:
809 Thread vs Segment/Lock/SecMaps
811 for each t in Threads {
813 // Thread.lockset: each element is really a valid Lock
815 // Thread.lockset: each Lock in set is actually held by that thread
816 for lk in Thread.lockset
817 lk == LockedBy(t)
819 // Thread.csegid is a valid SegmentID
820 // and the associated Segment has .thr == t
822 }
824 all thread Locksets are pairwise empty under intersection
825 (that is, no lock is claimed to be held by more than one thread)
826 -- this is guaranteed if all locks in locksets point back to their
827 owner threads
829 Lock vs Thread/Segment/SecMaps
831 for each entry (gla, la) in map_locks
832 gla == la->guest_addr
834 for each lk in Locks {
836 lk->tag is valid
837 lk->guest_addr does not have shadow state NoAccess
838 if lk == LockedBy(t), then t->lockset contains lk
839 if lk == UnlockedBy(segid) then segid is valid SegmentID
840 and can be mapped to a valid Segment(seg)
841 and seg->thr->lockset does not contain lk
842 if lk == UnlockedNew then (no lockset contains lk)
844 secmaps for lk has .mbHasLocks == True
846 }
848 Segment vs Thread/Lock/SecMaps
850 the Segment graph is a dag (no cycles)
851 all of the Segment graph must be reachable from the segids
852 mentioned in the Threads
854 for seg in Segments {
856 seg->thr is a sane Thread
858 }
860 SecMaps vs Segment/Thread/Lock
862 for sm in SecMaps {
864 sm properly aligned
865 if any shadow word is ShR or ShM then .mbHasShared == True
867 for each Excl(segid) state
868 map_segments_lookup maps to a sane Segment(seg)
869 for each ShM/ShR(tsetid,lsetid) state
870 each lk in lset is a valid Lock
871 each thr in tset is a valid thread, which is non-dead
873 }
874 */
877 /* Return True iff 'thr' holds 'lk' in some mode. */
879 {
882 else
884 }
886 /* Sanity check Threads, as far as possible */
889 {
890 #define BAD(_str) do { how = (_str); goto bad; } while (0)
901 // locks held in W mode are a subset of all locks held
906 // Thread.lockset: each element is really a valid Lock
908 // Thread.lockset: each Lock in set is actually held by that
909 // thread
911 }
912 }
914 bad:
917 #undef BAD
918 }
921 /* Sanity check Locks, as far as possible */
924 {
925 #define BAD(_str) do { how = (_str); goto bad; } while (0)
927 Addr gla;
929 Int i;
930 // # entries in admin_locks == # entries in map_locks
932 ;
934 // for each entry (gla, lk) in map_locks
935 // gla == lk->guest_addr
940 }
942 // scan through admin_locks ...
944 // lock is sane. Quite comprehensive, also checks that
945 // referenced (holder) threads are sane.
947 // map_locks binds guest address back to this lock
949 // look at all threads mentioned as holders of this lock. Ensure
950 // this lock is mentioned in their locksets.
953 UWord count;
957 // HG_(is_sane_LockN) above ensures these
962 // also check the w-only lockset
969 }
972 /* lock not held by anybody */
974 // since lk is unheld, then (no lockset contains lk)
975 // hmm, this is really too expensive to check. Hmm.
976 }
977 }
980 bad:
983 #undef BAD
984 }
988 stats__sanity_checks++;
993 }
997 }
1000 /*----------------------------------------------------------------*/
1001 /*--- Shadow value and address range handlers ---*/
1002 /*----------------------------------------------------------------*/
1005 //static void laog__handle_lock_deletions ( WordSetID ); /* fwds */
1011 /* Block-copy states (needed for implementing realloc()). */
1012 /* FIXME this copies shadow memory; it doesn't apply the MSM to it.
1013 Is that a problem? (hence 'scopy' rather than 'ccopy') */
1016 {
1020 }
1023 {
1027 }
1033 }
1036 {
1038 }
1041 SizeT len )
1042 {
1045 // has no effect (NoFX)
1047 }
1050 SizeT len)
1051 {
1054 // Actually Has An Effect (AHAE)
1056 }
1059 SizeT len )
1060 {
1064 }
1067 /*----------------------------------------------------------------*/
1068 /*--- Event handlers (evh__* functions) ---*/
1069 /*--- plus helpers (evhH__* functions) ---*/
1070 /*----------------------------------------------------------------*/
1072 /*--------- Event handler helpers (evhH__* functions) ---------*/
1074 /* Create a new segment for 'thr', making it depend (.prev) on its
1075 existing segment, bind together the SegmentID and Segment, and
1076 return both of them. Also update 'thr' so it references the new
1077 Segment. */
1078 //zz static
1079 //zz void evhH__start_new_segment_for_thread ( /*OUT*/SegmentID* new_segidP,
1080 //zz /*OUT*/Segment** new_segP,
1081 //zz Thread* thr )
1082 //zz {
1083 //zz Segment* cur_seg;
1084 //zz tl_assert(new_segP);
1085 //zz tl_assert(new_segidP);
1086 //zz tl_assert(HG_(is_sane_Thread)(thr));
1087 //zz cur_seg = map_segments_lookup( thr->csegid );
1088 //zz tl_assert(cur_seg);
1089 //zz tl_assert(cur_seg->thr == thr); /* all sane segs should point back
1090 //zz at their owner thread. */
1091 //zz *new_segP = mk_Segment( thr, cur_seg, NULL/*other*/ );
1092 //zz *new_segidP = alloc_SegmentID();
1093 //zz map_segments_add( *new_segidP, *new_segP );
1094 //zz thr->csegid = *new_segidP;
1095 //zz }
1098 /* The lock at 'lock_ga' has acquired a writer. Make all necessary
1099 updates, and also do all possible error checks. */
1100 static
1103 {
1106 /* Basically what we need to do is call lockN_acquire_writer.
1107 However, that will barf if any 'invalid' lock states would
1108 result. Therefore check before calling. Side effect is that
1109 'HG_(is_sane_LockN)(lk)' is both a pre- and post-condition of this
1110 routine.
1112 Because this routine is only called after successful lock
1113 acquisition, we should not be asked to move the lock into any
1114 invalid states. Requests to do so are bugs in libpthread, since
1115 that should have rejected any such requests. */
1118 /* Try to find the lock. If we can't, then create a new one with
1119 kind 'lkk'. */
1124 /* check libhb level entities exist */
1129 /* the lock isn't held. Simple. */
1132 /* acquire a dependency from the lock's VCs */
1135 }
1137 /* So the lock is already held. If held as a r-lock then
1138 libpthread must be buggy. */
1145 }
1147 /* So the lock is held in w-mode. If it's held by some other
1148 thread, then libpthread must be buggy. */
1154 "granted on mutex/rwlock which is currently "
1157 }
1159 /* So the lock is already held in w-mode by 'thr'. That means this
1160 is an attempt to lock it recursively, which is only allowable
1161 for LK_mbRec kinded locks. Since this routine is called only
1162 once the lock has been acquired, this must also be a libpthread
1163 bug. */
1167 "granted on mutex/wrlock which does not "
1170 }
1172 /* So we are recursively re-locking a lock we already w-hold. */
1174 /* acquire a dependency from the lock's VC. Probably pointless,
1175 but also harmless. */
1179 noerror:
1181 /* check lock order acquisition graph, and update. This has to
1182 happen before the lock is added to the thread's locksetA/W. */
1184 }
1185 /* update the thread's held-locks set */
1188 /* fall through */
1190 error:
1192 }
1195 /* The lock at 'lock_ga' has acquired a reader. Make all necessary
1196 updates, and also do all possible error checks. */
1197 static
1200 {
1203 /* Basically what we need to do is call lockN_acquire_reader.
1204 However, that will barf if any 'invalid' lock states would
1205 result. Therefore check before calling. Side effect is that
1206 'HG_(is_sane_LockN)(lk)' is both a pre- and post-condition of this
1207 routine.
1209 Because this routine is only called after successful lock
1210 acquisition, we should not be asked to move the lock into any
1211 invalid states. Requests to do so are bugs in libpthread, since
1212 that should have rejected any such requests. */
1215 /* Try to find the lock. If we can't, then create a new one with
1216 kind 'lkk'. Only a reader-writer lock can be read-locked,
1217 hence the first assertion. */
1223 /* check libhb level entities exist */
1228 /* the lock isn't held. Simple. */
1231 /* acquire a dependency from the lock's VC */
1234 }
1236 /* So the lock is already held. If held as a w-lock then
1237 libpthread must be buggy. */
1241 "granted on rwlock which is "
1244 }
1246 /* Easy enough. In short anybody can get a read-lock on a rwlock
1247 provided it is either unlocked or already in rd-held. */
1249 /* acquire a dependency from the lock's VC. Probably pointless,
1250 but also harmless. */
1254 noerror:
1256 /* check lock order acquisition graph, and update. This has to
1257 happen before the lock is added to the thread's locksetA/W. */
1259 }
1260 /* update the thread's held-locks set */
1262 /* but don't update thr->locksetW, since lk is only rd-held */
1263 /* fall through */
1265 error:
1267 }
1270 /* The lock at 'lock_ga' is just about to be unlocked. Make all
1271 necessary updates, and also do all possible error checks. */
1272 static
1275 {
1277 Word n;
1278 Bool was_heldW;
1280 /* This routine is called prior to a lock release, before
1281 libpthread has had a chance to validate the call. Hence we need
1282 to detect and reject any attempts to move the lock into an
1283 invalid state. Such attempts are bugs in the client.
1285 isRDWR is True if we know from the wrapper context that lock_ga
1286 should refer to a reader-writer lock, and is False if [ditto]
1287 lock_ga should refer to a standard mutex. */
1293 /* We know nothing about a lock at 'lock_ga'. Nevertheless
1294 the client is trying to unlock it. So complain, then ignore
1295 the attempt. */
1298 }
1306 }
1310 }
1313 /* The lock is not held. This indicates a serious bug in the
1314 client. */
1320 }
1322 /* test just above dominates */
1326 /* The lock is held. Is this thread one of the holders? If not,
1327 report a bug in the client. */
1331 /* We are not a current holder of the lock. This is a bug in
1332 the guest, and (per POSIX pthread rules) the unlock
1333 attempt will fail. So just complain and do nothing
1334 else. */
1342 }
1344 /* Ok, we hold the lock 'n' times. */
1349 n--;
1355 /* We still hold the lock. So either it's a recursive lock
1356 or a rwlock which is currently r-held. */
1362 else
1365 /* n is zero. This means we don't hold the lock any more. But
1366 if it's a rwlock held in r-mode, someone else could still
1367 hold it. Just do whatever sanity checks we can. */
1369 /* It's a rwlock. We no longer hold it but we used to;
1370 nevertheless it still appears to be held by someone else.
1371 The implication is that, prior to this release, it must
1372 have been shared by us and and whoever else is holding it;
1373 which in turn implies it must be r-held, since a lock
1374 can't be w-held by more than one thread. */
1375 /* The lock is now R-held by somebody else: */
1378 /* Normal case. It's either not a rwlock, or it's a rwlock
1379 that we used to hold in w-mode (which is pretty much the
1380 same thing as a non-rwlock.) Since this transaction is
1381 atomic (V does not allow multiple threads to run
1382 simultaneously), it must mean the lock is now not held by
1383 anybody. Hence assert for it. */
1384 /* The lock is now not held by anybody: */
1387 }
1388 //if (lock->heldBy) {
1389 // tl_assert(0 == VG_(elemBag)( lock->heldBy, (UWord)thr ));
1390 //}
1391 /* update this thread's lockset accordingly. */
1392 thr->locksetA
1394 thr->locksetW
1396 /* push our VC into the lock */
1399 /* If the lock was previously W-held, then we want to do a
1400 strong send, and if previously R-held, then a weak send. */
1402 }
1403 /* fall through */
1405 error:
1407 }
1410 /* ---------------------------------------------------------- */
1411 /* -------- Event handlers proper (evh__* functions) -------- */
1412 /* ---------------------------------------------------------- */
1414 /* What is the Thread* for the currently running thread? This is
1415 absolutely performance critical. We receive notifications from the
1416 core for client code starts/stops, and cache the looked-up result
1417 in 'current_Thread'. Hence, for the vast majority of requests,
1418 finding the current thread reduces to a read of a global variable,
1419 provided get_current_Thread_in_C_C is inlined.
1421 Outside of client code, current_Thread is NULL, and presumably
1422 any uses of it will cause a segfault. Hence:
1424 - for uses definitely within client code, use
1425 get_current_Thread_in_C_C.
1427 - for all other uses, use get_current_Thread.
1428 */
1441 }
1442 }
1448 }
1451 }
1453 ThreadId coretid;
1458 /* evidently not in client code. Do it the slow way. */
1460 /* FIXME: get rid of the following kludge. It exists because
1461 evh__new_mem is called during initialisation (as notification
1462 of initial memory layout) and VG_(get_running_tid)() returns
1463 VG_INVALID_THREADID at that point. */
1468 }
1470 static
1480 }
1482 static
1492 }
1494 #define DCL_evh__new_mem_stack(syze) \
1495 static void VG_REGPARM(1) evh__new_mem_stack_##syze(Addr new_SP) \
1496 { \
1497 Thread *thr = get_current_Thread(); \
1498 if (SHOW_EVENTS >= 2) \
1500 (void*)new_SP, (SizeT)syze ); \
1501 shadow_mem_make_New( thr, -VG_STACK_REDZONE_SZB + new_SP, syze ); \
1502 if (syze >= SCE_BIGRANGE_T && (HG_(clo_sanity_flags) & SCE_BIGRANGE)) \
1504 if (UNLIKELY(thr->pthread_create_nesting_level > 0)) \
1505 shadow_mem_make_Untracked( thr, new_SP, syze ); \
1506 }
1518 static
1528 }
1530 static
1541 }
1544 }
1546 static
1549 // This handles mprotect requests. If the memory is being put
1550 // into no-R no-W state, paint it as NoAccess, for the reasons
1551 // documented at evh__die_mem_munmap().
1555 /* Hmm. What should we do here, that actually makes any sense?
1556 Let's say: if neither readable nor writable, then declare it
1557 NoAccess, else leave it alone. */
1562 }
1564 static
1566 // Urr, libhb ignores this.
1572 }
1574 static
1576 // It's important that libhb doesn't ignore this. If, as is likely,
1577 // the client is subject to address space layout randomization,
1578 // then unmapped areas may never get remapped over, even in long
1579 // runs. If we just ignore them we wind up with large resource
1580 // (VTS) leaks in libhb. So force them to NoAccess, so that all
1581 // VTS references in the affected area are dropped. Marking memory
1582 // as NoAccess is expensive, but we assume that munmap is sufficiently
1583 // rare that the space gains of doing this are worth the costs.
1587 }
1589 static
1591 // Libhb doesn't ignore this.
1597 }
1599 static
1608 }
1610 static
1612 {
1639 /* Create a new thread record for the child. */
1640 /* a Thread for the new thread ... */
1645 /* and bind it in the thread-map table */
1650 /* Record where the parent is so we can later refer to this in
1651 error messages.
1653 On x86/amd64-linux, this entails a nasty glibc specific hack.
1654 The stack snapshot is taken immediately after the parent has
1655 returned from its sys_clone call. Unfortunately there is no
1656 unwind info for the insn following "syscall" - reading the
1657 glibc sources confirms this. So we ask for a snapshot to be
1658 taken as if RIP was 3 bytes earlier, in a place where there
1659 is unwind info. Sigh.
1660 */
1662 # if defined(VGP_amd64_linux) || defined(VGP_x86_linux)
1664 # elif defined(VGP_arm64_linux) || defined(VGP_arm_linux)
1666 # endif
1668 }
1674 /* Counterpart in _VG_USERREQ__HG_SET_MY_PTHREAD_T. */
1675 }
1676 }
1680 }
1682 static
1684 {
1685 Int nHeld;
1691 /* quit_tid has disappeared without joining to any other thread.
1692 Therefore there is no synchronisation event associated with its
1693 exit and so we have to pretty much treat it as if it was still
1694 alive but mysteriously making no progress. That is because, if
1695 we don't know when it really exited, then we can never say there
1696 is a point in time when we're sure the thread really has
1697 finished, and so we need to consider the possibility that it
1698 lingers indefinitely and continues to interact with other
1699 threads. */
1700 /* However, it might have rendezvous'd with a thread that called
1701 pthread_join with this one as arg, prior to this point (that's
1702 how NPTL works). In which case there has already been a prior
1703 sync event. So in any case, just let the thread exit. On NPTL,
1704 all thread exits go through here. */
1709 /* Complain if this thread holds any locks. */
1717 }
1719 /* Not much to do here:
1720 - tell libhb the thread is gone
1721 - clear the map_threads entry, in order that the Valgrind core
1722 can re-use it. */
1723 /* Cleanup actions (next 5 lines) copied in evh__atfork_child; keep
1724 in sync. */
1733 }
1735 /* This is called immediately after fork, for the child only. 'tid'
1736 is the only surviving thread (as per POSIX rules on fork() in
1737 threaded programs), so we have to clean up map_threads to remove
1738 entries for any other threads. */
1739 static
1741 {
1742 UInt i;
1744 /* Slot 0 should never be used. */
1747 /* Clean up all other slots except 'tid'. */
1754 /* Cleanup actions (next 5 lines) copied from end of
1755 evh__pre_thread_ll_exit; keep in sync. */
1761 }
1762 }
1764 /* generate a dependence from the hbthr_q quitter to the hbthr_s stayer. */
1765 static
1767 {
1769 /* Allocate a temporary synchronisation object and use it to send
1770 an imaginary message from the quitter to the stayer, the purpose
1771 being to generate a dependence from the quitter to the
1772 stayer. */
1775 /* Send last arg of _so_send as False, since the sending thread
1776 doesn't actually exist any more, so we don't want _so_send to
1777 try taking stack snapshots of it. */
1782 /* Tell libhb that the quitter has been reaped. Note that we might
1783 have to be cleverer about this, to exclude 2nd and subsequent
1784 notifications for the same hbthr_q, in the case where the app is
1785 buggy (calls pthread_join twice or more on the same thread) AND
1786 where libpthread is also buggy and doesn't return ESRCH on
1787 subsequent calls. (If libpthread isn't thusly buggy, then the
1788 wrapper for pthread_join in hg_intercepts.c will stop us getting
1789 notified here multiple times for the same joinee.) See also
1790 comments in helgrind/tests/jointwice.c. */
1792 }
1795 static
1797 {
1823 /* evh__pre_thread_ll_exit issues an error message if the exiting
1824 thread holds any locks. No need to check here. */
1826 /* This holds because, at least when using NPTL as the thread
1827 library, we should be notified the low level thread exit before
1828 we hear of any join event on it. The low level exit
1829 notification feeds through into evh__pre_thread_ll_exit,
1830 which should clear the map_threads entry for it. Hence we
1831 expect there to be no map_threads entry at this point. */
1837 }
1839 static
1851 }
1853 static
1856 Int len;
1860 // Don't segfault if the string starts in an obviously stupid
1861 // place. Actually we should check the whole string, not just
1862 // the start address, but that's too much trouble. At least
1863 // checking the first byte is better than nothing. See #255009.
1872 }
1874 static
1885 }
1887 static
1892 // We ignore the initialisation state (is_inited); that's ok.
1896 }
1898 static
1906 /* Treat frees as if the memory was written immediately prior to
1907 the free. This shakes out more races, specifically, cases
1908 where memory is referenced by one thread, and freed by
1909 another, and there's no observable synchronisation event to
1910 guarantee that the reference happens before the free. */
1913 }
1915 /* We used to call instead
1916 shadow_mem_make_NoAccess_NoFX( thr, a, len );
1917 A non-buggy application will not access anymore
1918 the freed memory, and so marking no access is in theory useless.
1919 Not marking freed memory would avoid the overhead for applications
1920 doing mostly malloc/free, as the freed memory should then be recycled
1921 very quickly after marking.
1922 We rather mark it noaccess for the following reasons:
1923 * accessibility bits then always correctly represents the memory
1924 status (e.g. for the client request VALGRIND_HG_GET_ABITS).
1925 * the overhead is reasonable (about 5 seconds per Gb in 1000 bytes
1926 blocks, on a ppc64le, for a unrealistic workload of an application
1927 doing only malloc/free).
1928 * marking no access allows to GC the SecMap, which might improve
1929 performance and/or memory usage.
1930 * we might detect more applications bugs when memory is marked
1931 noaccess.
1932 If needed, we could support here an option --free-is-noaccess=yes|no
1933 to avoid marking freed memory as no access if some applications
1934 would need to avoid the marking noaccess overhead. */
1938 }
1940 /* --- Event handlers called from generated code --- */
1948 }
1956 }
1964 }
1972 }
1980 }
1988 }
1996 }
2004 }
2006 /* Same as evh__mem_help_cwrite_4 but unwind will use a first_sp_delta of
2007 one word. */
2017 }
2025 }
2027 /* Same as evh__mem_help_cwrite_8 but unwind will use a first_sp_delta of
2028 one word. */
2038 }
2046 }
2049 /* ------------------------------------------------------- */
2050 /* -------------- events to do with mutexes -------------- */
2051 /* ------------------------------------------------------- */
2053 /* EXPOSITION only: by intercepting lock init events we can show the
2054 user where the lock was initialised, rather than only being able to
2055 show where it was first locked. Intercepting lock initialisations
2056 is not necessary for the basic operation of the race checker. */
2057 static
2060 {
2069 }
2071 static
2073 Bool mutex_is_init )
2074 {
2083 /* cannot fail - Thread* must already exist */
2089 /* We're destroying a mutex which we don't have any record of,
2090 and which appears to have the value PTHREAD_MUTEX_INITIALIZER.
2091 Assume it never got used, and so we don't need to do anything
2092 more. */
2094 }
2099 }
2105 /* Basically act like we unlocked the lock */
2108 /* remove lock from locksets of all owning threads */
2114 }
2122 }
2124 out:
2127 }
2131 {
2132 /* Just check the mutex is sane; nothing else to do. */
2133 // 'mutex' may be invalid - not checked by wrapper
2149 }
2157 /* uh, it's a non-recursive lock and we already w-hold it, and
2158 this is a real lock operation (not a speculative "tryLock"
2159 kind of thing). Duh. Deadlock coming up; but at least
2160 produce an error message. */
2168 }
2169 }
2170 }
2173 {
2174 // only called if the real library call succeeded - so mutex is sane
2184 thr,
2187 );
2188 }
2191 {
2192 // 'mutex' may be invalid - not checked by wrapper
2202 }
2205 {
2206 // only called if the real library call succeeded - so mutex is sane
2214 // anything we should do here?
2215 }
2218 /* ------------------------------------------------------- */
2219 /* -------------- events to do with spinlocks ------------ */
2220 /* ------------------------------------------------------- */
2222 /* All a bit of a kludge. Pretend we're really dealing with ordinary
2223 pthread_mutex_t's instead, for the most part. */
2227 {
2230 /* In glibc's kludgey world, we're either initialising or unlocking
2231 it. Since this is the pre-routine, if it is locked, unlock it
2232 and take a dependence edge. Otherwise, do nothing. */
2245 /* it's held. So do the normal pre-unlock actions, as copied
2246 from evh__HG_PTHREAD_MUTEX_UNLOCK_PRE. This stupidly
2247 duplicates the map_locks_maybe_lookup. */
2250 }
2251 }
2255 {
2257 /* More kludgery. If the lock has never been seen before, do
2258 actions as per evh__HG_PTHREAD_MUTEX_INIT_POST. Else do
2259 nothing. */
2269 }
2270 }
2274 {
2276 }
2280 {
2282 }
2286 {
2288 }
2291 /* ----------------------------------------------------- */
2292 /* --------------- events to do with CVs --------------- */
2293 /* ----------------------------------------------------- */
2295 /* A mapping from CV to (the SO associated with it, plus some
2296 auxiliary data for error checking). When the CV is
2297 signalled/broadcasted upon, we do a 'send' into the SO, and when a
2298 wait on it completes, we do a 'recv' from the SO. This is believed
2299 to give the correct happens-before events arising from CV
2300 signallings/broadcasts.
2301 */
2303 /* .so is the SO for this CV.
2304 .mx_ga is the associated mutex, when .nWaiters > 0
2306 POSIX says effectively that the first pthread_cond_{timed}wait call
2307 causes a dynamic binding between the CV and the mutex, and that
2308 lasts until such time as the waiter count falls to zero. Hence
2309 need to keep track of the number of waiters in order to do
2310 consistency tracking. */
2311 typedef
2316 }
2317 CVInfo;
2320 /* pthread_cond_t* -> CVInfo* */
2327 }
2328 }
2343 }
2344 }
2354 }
2355 }
2375 /* Destroying a cond var being waited upon outcome is EBUSY and
2376 variable is not destroyed. */
2378 }
2385 /* We have no record of this CV. So complain about it
2386 .. except, don't bother to complain if it has exactly the
2387 value PTHREAD_COND_INITIALIZER, since it might be that the CV
2388 was initialised like that but never used. */
2392 }
2393 }
2394 }
2397 {
2398 /* 'tid' has signalled on 'cond'. As per the comment above, bind
2399 cond to a SO if it is not already so bound, and 'send' on the
2400 SO. This is later used by other thread(s) which successfully
2401 exit from a pthread_cond_wait on the same cv; then they 'recv'
2402 from the SO, thereby acquiring a dependency on this signalling
2403 event. */
2406 //Lock* lk;
2419 // error-if: mutex is bogus
2420 // error-if: mutex is not locked
2421 // Hmm. POSIX doesn't actually say that it's an error to call
2422 // pthread_cond_signal with the associated mutex being unlocked.
2423 // Although it does say that it should be "if consistent scheduling
2424 // is desired." For that reason, print "dubious" if the lock isn't
2425 // held by any thread. Skip the "dubious" if it is held by some
2426 // other thread; that sounds straight-out wrong.
2427 //
2428 // Anybody who writes code that signals on a CV without holding
2429 // the associated MX needs to be shipped off to a lunatic asylum
2430 // ASAP, even though POSIX doesn't actually declare such behaviour
2431 // illegal -- it makes code extremely difficult to understand/
2432 // reason about. In particular it puts the signalling thread in
2433 // a situation where it is racing against the released waiter
2434 // as soon as the signalling is done, and so there needs to be
2435 // some auxiliary synchronisation mechanism in the program that
2436 // makes this safe -- or the race(s) need to be harmless, or
2437 // probably nonexistent.
2438 //
2443 }
2444 /* note: lk could be NULL. Be careful. */
2449 }
2452 "pthread_cond_{signal,broadcast}: dubious: "
2454 }
2457 "pthread_cond_{signal,broadcast}: "
2459 }
2461 /* Couldn't even find the damn thing. */
2462 // But actually .. that's not necessarily an error. We don't
2463 // know the (CV,MX) binding until a pthread_cond_wait or bcast
2464 // shows us what it is, and if that may not have happened yet.
2465 // So just keep quiet in this circumstance.
2466 //HG_(record_error_Misc)( thr,
2467 // "pthread_cond_{signal,broadcast}: "
2468 // "no or invalid mutex associated with cond");
2469 }
2470 }
2473 }
2475 /* returns True if it reckons 'mutex' is valid and held by this
2476 thread, else False */
2479 {
2495 /* Check for stupid mutex arguments. There are various ways to be
2496 a bozo. Only complain once, though, even if more than one thing
2497 is wrong. */
2501 thr,
2522 }
2523 }
2525 // error-if: cond is also associated with a different mutex
2530 /* form initial (CV,MX) binding */
2532 }
2538 }
2542 }
2546 Bool timeout)
2547 {
2548 /* A pthread_cond_wait(cond, mutex) completed successfully. Find
2549 the SO for this cond, and 'recv' from it so as to acquire a
2550 dependency edge back to the signaller/broadcaster. */
2562 // error-if: cond is also associated with a different mutex
2566 /* This could be either a bug in helgrind or the guest application
2567 that did an error (e.g. cond var was destroyed by another thread.
2568 Let's assume helgrind is perfect ...
2569 Note that this is similar to drd behaviour. */
2573 }
2580 /* Hmm. How can a wait on 'cond' succeed if nobody signalled
2581 it? If this happened it would surely be a bug in the threads
2582 library. Or one of those fabled "spurious wakeups". */
2584 "succeeded"
2586 }
2588 /* anyway, acquire a dependency on it. */
2592 }
2596 {
2607 }
2612 {
2613 /* Deal with destroy events. The only purpose is to free storage
2614 associated with the CV, so as to avoid any possible resource
2615 leaks. */
2622 }
2625 /* ------------------------------------------------------- */
2626 /* -------------- events to do with rwlocks -------------- */
2627 /* ------------------------------------------------------- */
2629 /* EXPOSITION only */
2630 static
2632 {
2639 }
2641 static
2643 {
2651 /* cannot fail - Thread* must already exist */
2659 }
2665 /* Basically act like we unlocked the lock */
2668 /* remove lock from locksets of all owning threads */
2674 }
2682 }
2686 }
2688 static
2692 {
2693 /* Just check the rwl is sane; nothing else to do. */
2694 // 'rwl' may be invalid - not checked by wrapper
2709 /* Wrong kind of lock. Duh. */
2713 }
2714 }
2716 static
2718 {
2719 // only called if the real library call succeeded - so mutex is sane
2731 thr,
2734 );
2735 }
2738 {
2739 // 'rwl' may be invalid - not checked by wrapper
2749 }
2752 {
2753 // only called if the real library call succeeded - so mutex is sane
2761 // anything we should do here?
2762 }
2765 /* ---------------------------------------------------------- */
2766 /* -------------- events to do with semaphores -------------- */
2767 /* ---------------------------------------------------------- */
2769 /* This is similar to but not identical to the handling for condition
2770 variables. */
2772 /* For each semaphore, we maintain a stack of SOs. When a 'post'
2773 operation is done on a semaphore (unlocking, essentially), a new SO
2774 is created for the posting thread, the posting thread does a strong
2775 send to it (which merely installs the posting thread's VC in the
2776 SO), and the SO is pushed on the semaphore's stack.
2778 Later, when a (probably different) thread completes 'wait' on the
2779 semaphore, we pop a SO off the semaphore's stack (which should be
2780 nonempty), and do a strong recv from it. This mechanism creates
2781 dependencies between posters and waiters of the semaphore.
2783 It may not be necessary to use a stack - perhaps a bag of SOs would
2784 do. But we do need to keep track of how many unused-up posts have
2785 happened for the semaphore.
2787 Imagine T1 and T2 both post once on a semaphore S, and T3 waits
2788 twice on S. T3 cannot complete its waits without both T1 and T2
2789 posting. The above mechanism will ensure that T3 acquires
2790 dependencies on both T1 and T2.
2792 When a semaphore is initialised with value N, we do as if we'd
2793 posted N times on the semaphore: basically create N SOs and do a
2794 strong send to all of then. This allows up to N waits on the
2795 semaphore to acquire a dependency on the initialisation point,
2796 which AFAICS is the correct behaviour.
2798 We don't emit an error for DESTROY_PRE on a semaphore we don't know
2799 about. We should.
2800 */
2802 /* sem_t* -> XArray* SO* */
2809 }
2810 }
2813 UWord keyW;
2826 }
2827 }
2830 UWord keyW;
2836 /* xa is the stack for this semaphore. */
2837 Word sz;
2848 /* hmm, that's odd. No stack for this semaphore. */
2850 }
2851 }
2854 {
2864 /* Empty out the semaphore's SO stack. This way of doing it is
2865 stupid, but at least it's easy. */
2870 }
2878 }
2879 }
2881 static
2883 {
2894 /* Empty out the semaphore's SO stack. This way of doing it is
2895 stupid, but at least it's easy. */
2900 }
2902 /* If we don't do this check, the following while loop runs us out
2903 of memory for stupid initial values of 'value'. */
2908 }
2910 /* Now create 'valid' new SOs for the thread, do a strong send to
2911 each of them, and push them all on the stack. */
2919 }
2920 }
2923 {
2924 /* 'tid' has posted on 'sem'. Create a new SO, do a strong send to
2925 it (iow, write our VC into it, then tick ours), and push the SO
2926 on on a stack of SOs associated with 'sem'. This is later used
2927 by other thread(s) which successfully exit from a sem_wait on
2928 the same sem; by doing a strong recv from SOs popped of the
2929 stack, they acquire dependencies on the posting thread
2930 segment(s). */
2943 // error-if: sem is bogus
2951 }
2954 {
2955 /* A sem_wait(sem) completed successfully. Pop the posting-SO for
2956 the 'sem' from this semaphore's SO-stack, and do a strong recv
2957 from it. This creates a dependency back to one of the post-ers
2958 for the semaphore. */
2971 // error-if: sem is bogus
2982 /* Hmm. How can a wait on 'sem' succeed if nobody posted to it?
2983 If this happened it would surely be a bug in the threads
2984 library. */
2988 }
2989 }
2992 /* -------------------------------------------------------- */
2993 /* -------------- events to do with barriers -------------- */
2994 /* -------------------------------------------------------- */
2996 typedef
3002 }
3003 Bar;
3007 /* all fields are zero */
3010 }
3017 }
3019 /* A mapping which stores auxiliary data for barriers. */
3021 /* pthread_barrier_t* -> Bar* */
3028 }
3029 }
3041 }
3042 }
3051 }
3052 }
3057 UWord count,
3058 UWord resizable )
3059 {
3074 );
3075 }
3080 );
3081 }
3089 );
3090 }
3096 );
3098 }
3102 }
3108 }
3113 {
3117 /* Deal with destroy events. The only purpose is to free storage
3118 associated with the barrier, so as to avoid any possible
3119 resource leaks. */
3134 );
3135 }
3140 );
3141 }
3143 /* Maybe we shouldn't do this; just let it persist, so that when it
3144 is reinitialised we don't need to do any dynamic memory
3145 allocation? The downside is a potentially unlimited space leak,
3146 if the client creates (in turn) a large number of barriers all
3147 at different locations. Note that if we do later move to the
3148 don't-delete-it scheme, we need to mark the barrier as
3149 uninitialised again since otherwise a later _init call will
3150 elicit a duplicate-init error. */
3152 }
3155 /* All the threads have arrived. Now do the Interesting Bit. Get a
3156 new synchronisation object and do a weak send to it from all the
3157 participating threads. This makes its vector clocks be the join of
3158 all the individual threads' vector clocks. Then do a strong
3159 receive from it back to all threads, so that their VCs are a copy
3160 of it (hence are all equal to the join of their original VCs.) */
3162 {
3163 /* XXX check bar->waiting has no duplicates */
3164 UWord i;
3170 /* compute the join ... */
3175 }
3176 /* ... and distribute to all threads */
3181 }
3183 /* finally, we must empty out the waiting vector */
3186 /* and we don't need this any more. Perhaps a stack-allocated
3187 SO would be better? */
3189 }
3194 {
3195 /* This function gets called after a client thread calls
3196 pthread_barrier_wait but before it arrives at the real
3197 pthread_barrier_wait.
3199 Why is the following correct? It's a bit subtle.
3201 If this is not the last thread arriving at the barrier, we simply
3202 note its presence and return. Because valgrind (at least as of
3203 Nov 08) is single threaded, we are guaranteed safe from any race
3204 conditions when in this function -- no other client threads are
3205 running.
3207 If this is the last thread, then we are again the only running
3208 thread. All the other threads will have either arrived at the
3209 real pthread_barrier_wait or are on their way to it, but in any
3210 case are guaranteed not to be able to move past it, because this
3211 thread is currently in this function and so has not yet arrived
3212 at the real pthread_barrier_wait. That means that:
3214 1. While we are in this function, none of the other threads
3215 waiting at the barrier can move past it.
3217 2. When this function returns (and simulated execution resumes),
3218 this thread and all other waiting threads will be able to move
3219 past the real barrier.
3221 Because of this, it is now safe to update the vector clocks of
3222 all threads, to represent the fact that they all arrived at the
3223 barrier and have all moved on. There is no danger of any
3224 complications to do with some threads leaving the barrier and
3225 racing back round to the front, whilst others are still leaving
3226 (which is the primary source of complication in correct handling/
3227 implementation of barriers). That can't happen because we update
3228 here our data structures so as to indicate that the threads have
3229 passed the barrier, even though, as per (2) above, they are
3230 guaranteed not to pass the barrier until we return.
3232 This relies crucially on Valgrind being single threaded. If that
3233 changes, this will need to be reconsidered.
3234 */
3237 UWord present;
3253 );
3255 }
3257 /* guaranteed by _INIT_PRE above */
3263 /* guaranteed by this function */
3271 }
3276 UWord newcount )
3277 {
3280 UWord present;
3296 );
3298 }
3303 );
3305 }
3310 );
3312 }
3314 /* guaranteed by _INIT_PRE above */
3317 /* Guaranteed by this fn */
3321 /* Increasing the capacity. There's no possibility of threads
3322 moving on from the barrier in this situation, so just note
3323 the fact and do nothing more. */
3326 /* Decreasing the capacity. If we decrease it to be equal or
3327 below the number of waiting threads, they will now move past
3328 the barrier, so need to mess with dep edges in the same way
3329 as if the barrier had filled up normally. */
3335 }
3337 }
3338 }
3341 /* ----------------------------------------------------- */
3342 /* ----- events to do with user-specified HB edges ----- */
3343 /* ----------------------------------------------------- */
3345 /* A mapping from arbitrary UWord tag to the SO associated with it.
3346 The UWord tags are meaningless to us, interpreted only by the
3347 user. */
3351 /* UWord -> SO* */
3358 }
3359 }
3371 }
3372 }
3382 }
3383 }
3386 static
3388 {
3389 /* TID is just about to notionally sent a message on a notional
3390 abstract synchronisation object whose identity is given by
3391 USERTAG. Bind USERTAG to a real SO if it is not already so
3392 bound, and do a 'weak send' on the SO. This joins the vector
3393 clocks from this thread into any vector clocks already present
3394 in the SO. The resulting SO vector clocks are later used by
3395 other thread(s) which successfully 'receive' from the SO,
3396 thereby acquiring a dependency on all the events that have
3397 previously signalled on this SO. */
3412 }
3414 static
3416 {
3417 /* TID has just notionally received a message from a notional
3418 abstract synchronisation object whose identity is given by
3419 USERTAG. Bind USERTAG to a real SO if it is not already so
3420 bound. If the SO has at some point in the past been 'sent' on,
3421 to a 'strong receive' on it, thereby acquiring a dependency on
3422 the sender. */
3436 /* Acquire a dependency on it. If the SO has never so far been
3437 sent on, then libhb_so_recv will do nothing. So we're safe
3438 regardless of SO's history. */
3440 }
3442 static
3444 {
3445 /* TID declares that any happens-before edges notionally stored in
3446 USERTAG can be deleted. If (as would normally be the case) a
3447 SO is associated with USERTAG, then the association is removed
3448 and all resources associated with SO are freed. Importantly,
3449 that frees up any VTSs stored in SO. */
3455 }
3458 #if defined(VGO_solaris)
3459 /* ----------------------------------------------------- */
3460 /* --- events to do with bind guard/clear intercepts --- */
3461 /* ----------------------------------------------------- */
3463 static
3465 {
3478 /* Misuse pthread_create_nesting_level for ignoring mutex activity. */
3480 }
3481 }
3483 static
3485 {
3499 }
3500 }
3504 /*--------------------------------------------------------------*/
3505 /*--- Lock acquisition order monitoring ---*/
3506 /*--------------------------------------------------------------*/
3508 /* FIXME: here are some optimisations still to do in
3509 laog__pre_thread_acquires_lock.
3511 The graph is structured so that if L1 --*--> L2 then L1 must be
3512 acquired before L2.
3514 The common case is that some thread T holds (eg) L1 L2 and L3 and
3515 is repeatedly acquiring and releasing Ln, and there is no ordering
3516 error in what it is doing. Hence it repeatedly:
3518 (1) searches laog to see if Ln --*--> {L1,L2,L3}, which always
3519 produces the answer No (because there is no error).
3521 (2) adds edges {L1,L2,L3} --> Ln to laog, which are already present
3522 (because they already got added the first time T acquired Ln).
3524 Hence cache these two events:
3526 (1) Cache result of the query from last time. Invalidate the cache
3527 any time any edges are added to or deleted from laog.
3529 (2) Cache these add-edge requests and ignore them if said edges
3530 have already been added to laog. Invalidate the cache any time
3531 any edges are deleted from laog.
3532 */
3534 typedef
3538 }
3539 LAOGLinks;
3541 /* lock order acquisition graph */
3544 /* EXPOSITION ONLY: for each edge in 'laog', record the two places
3545 where that edge was created, so that we can show the user later if
3546 we need to. */
3547 typedef
3553 }
3554 LAOGLinkExposition;
3557 /* Compare LAOGLinkExposition*s by (src_ga,dst_ga) field pair. */
3565 }
3568 /* end EXPOSITION ONLY */
3573 {
3582 cmp_LAOGLinkExposition );
3583 }
3607 }
3610 }
3613 Word i;
3622 // univ_laog_seen[*] set to 0 (False) by zalloc.
3633 }
3638 seen++;
3639 else
3641 }
3645 // We need to decide the value of the next_gc.
3646 // 3 solutions were looked at:
3647 // Sol 1: garbage collect at seen * 2
3648 // This solution was a lot slower, probably because we both do a lot of
3649 // garbage collection and do not keep long enough laog WV that will become
3650 // useful again very soon.
3651 // Sol 2: garbage collect at a percentage increase of the current cardinality
3652 // (with a min increase of 1)
3653 // Trials on a small test program with 1%, 5% and 10% increase was done.
3654 // 1% is slightly faster than 5%, which is slightly slower than 10%.
3655 // However, on a big application, this caused the memory to be exhausted,
3656 // as even a 1% increase of size at each gc becomes a lot, when many gc
3657 // are done.
3658 // Sol 3: always garbage collect at current cardinality + 1.
3659 // This solution was the fastest of the 3 solutions, and caused no memory
3660 // exhaustion in the big application.
3661 //
3662 // With regards to cost introduced by gc: on the t2t perf test (doing only
3663 // lock/unlock operations), t2t 50 10 2 was about 25% faster than the
3664 // version with garbage collection. With t2t 50 20 2, my machine started
3665 // to page out, and so the garbage collected version was much faster.
3666 // On smaller lock sets (e.g. t2t 20 5 2, giving about 100 locks), the
3667 // difference performance is insignificant (~ 0.1 s).
3668 // Of course, it might be that real life programs are not well represented
3669 // by t2t.
3671 // If ever we want to have a more sophisticated control
3672 // (e.g. clo options to control the percentage increase or fixed increased),
3673 // we should do it here, eg.
3674 // next_gc_univ_laog = prev_next_gc_univ_laog + VG_(clo_laog_gc_fixed);
3675 // Currently, we just hard-code the solution 3 above.
3683 }
3688 UWord keyW;
3693 /* Take the opportunity to sanity check the graph. Record in
3694 presentF if there is already a src->dst mapping in this node's
3695 forwards links, and presentR if there is already a src->dst
3696 mapping in this node's backwards links. They should agree!
3697 Also, we need to know whether the edge was already present so as
3698 to decide whether or not to update the link details mapping. We
3699 can compute presentF and presentR essentially for free, so may
3700 as well do this always. */
3703 /* Update the out edges for src */
3707 WordSetID outs_new;
3718 }
3719 /* Update the in edges for dst */
3723 WordSetID inns_new;
3734 }
3739 LAOGLinkExposition expo;
3740 /* If this edge is entering the graph, and we have acquired_at
3741 information for both src and dst, record those acquisition
3742 points. Hence, if there is later a violation of this
3743 ordering, we can show the user the two places in which the
3744 required src-dst ordering was previously established. */
3753 /* we already have it; do nothing */
3762 }
3763 }
3767 }
3771 UWord keyW;
3774 /* Update the out edges for src */
3781 }
3782 /* Update the in edges for dst */
3789 }
3791 /* Remove the exposition of src,dst (if present) */
3792 {
3795 LAOGLinkExposition expo;
3804 }
3805 }
3807 /* deleting edges can increase nr of of WS so check for gc. */
3811 }
3815 UWord keyW;
3825 }
3826 }
3830 UWord keyW;
3840 }
3841 }
3863 }
3870 }
3873 }
3877 bad:
3881 }
3883 /* If there is a path in laog from 'src' to any of the elements in
3884 'dst', return an arbitrarily chosen element of 'dst' reachable from
3885 'src'. If no path exist from 'src' to any element in 'dst', return
3886 NULL. */
3888 static
3890 {
3892 Word ssz;
3896 WordSetID succs;
3899 //laog__sanity_check();
3901 /* If the destination set is empty, we can never get there from
3902 'src' :-), so don't bother to try */
3932 }
3937 }
3940 /* Thread 'thr' is acquiring 'lk'. Check for inconsistent ordering
3941 between 'lk' and the locks already held by 'thr' and issue a
3942 complaint if so. Also, update the ordering graph appropriately.
3943 */
3947 Lock* lk
3948 )
3949 {
3954 /* It may be that 'thr' already holds 'lk' and is recursively
3955 relocking in. In this case we just ignore the call. */
3956 /* NB: univ_lsets really is correct here */
3960 /* First, the check. Complain if there is any path in laog from lk
3961 to any of the locks already held by thr, since if any such path
3962 existed, it would mean that previously lk was acquired before
3963 (rather than after, as we are doing here) at least one of those
3964 locks.
3965 */
3969 /* So we managed to find a path lk --*--> other in the graph,
3970 which implies that 'lk' should have been acquired before
3971 'other' but is in fact being acquired afterwards. We present
3972 the lk/other arguments to record_error_LockOrder in the order
3973 in which they should have been acquired. */
3974 /* Go look in the laog_exposition mapping, to find the allocation
3975 points for this edge, so we can show the user. */
3992 /* Hmm. This can't happen (can it?) */
3993 /* Yes, it can happen: see tests/tc14_laog_dinphils.
3994 Imagine we have 3 philosophers A B C, and the forks
3995 between them:
3997 C
3999 fCA fBC
4001 A fAB B
4003 Let's have the following actions:
4004 A takes fCA,fAB
4005 A releases fCA,fAB
4006 B takes fAB,fBC
4007 B releases fAB,fBC
4008 C takes fBC,fCA
4009 C releases fBC,fCA
4011 Helgrind will report a lock order error when C takes fCA.
4012 Effectively, we have a deadlock if the following
4013 sequence is done:
4014 A takes fCA
4015 B takes fAB
4016 C takes fBC
4018 The error reported is:
4019 Observed (incorrect) order fBC followed by fCA
4020 but the stack traces that have established the required order
4021 are not given.
4023 This is because there is no pair (fCA, fBC) in laog exposition :
4024 the laog_exposition records all pairs of locks between a new lock
4025 taken by a thread and all the already taken locks.
4026 So, there is no laog_exposition (fCA, fBC) as no thread ever
4027 first locked fCA followed by fBC.
4029 In other words, when the deadlock cycle involves more than
4030 two locks, then helgrind does not report the sequence of
4031 operations that created the cycle.
4033 However, we can report the current stack trace (where
4034 lk is being taken), and the stack trace where other was acquired:
4035 Effectively, the variable 'other' contains a lock currently
4036 held by this thread, with its 'acquired_at'. */
4041 }
4042 }
4044 /* Second, add to laog the pairs
4045 (old, lk) | old <- locks already held by thr
4046 Since both old and lk are currently held by thr, their acquired_at
4047 fields must be non-NULL.
4048 */
4055 }
4057 /* Why "except_Locks" ? We're here because a lock is being
4058 acquired by a thread, and we're in an inconsistent state here.
4059 See the call points in evhH__post_thread_{r,w}_acquires_lock.
4060 When called in this inconsistent state, locks__sanity_check duly
4061 barfs. */
4064 }
4066 /* Allocates a duplicate of words. Caller must HG_(free) the result. */
4068 {
4069 UInt i;
4080 }
4082 /* Delete from 'laog' any pair mentioning a lock in locksToDelete */
4086 {
4094 // We need to duplicate the payload, as these can be garbage collected
4095 // during the del/add operations below.
4111 /* This can pass unlocked locks to laog__add_edge, since
4112 we're deleting stuff. So their acquired_at fields may
4113 be NULL. */
4115 }
4116 }
4117 }
4124 // Remove lk information from laog links FM
4125 {
4133 }
4134 }
4135 /* FIXME ??? What about removing lock lk data from EXPOSITION ??? */
4136 }
4138 //__attribute__((noinline))
4139 //static void laog__handle_lock_deletions (
4140 // WordSetID /* in univ_laog */ locksToDelete
4141 // )
4142 //{
4143 // Word i, ws_size;
4144 // UWord* ws_words;
4145 //
4146 //
4147 // HG_(getPayloadWS)( &ws_words, &ws_size, univ_lsets, locksToDelete );
4148 // UWordV_dup call needed here ...
4149 // for (i = 0; i < ws_size; i++)
4150 // laog__handle_one_lock_deletion( (Lock*)ws_words[i] );
4151 //
4152 // if (HG_(clo_sanity_flags) & SCE_LAOG)
4153 // all__sanity_check("laog__handle_lock_deletions-post");
4154 //}
4157 /*--------------------------------------------------------------*/
4158 /*--- Malloc/free replacements ---*/
4159 /*--------------------------------------------------------------*/
4161 typedef
4168 }
4169 MallocMeta;
4171 /* A hash table of MallocMetas, used to track malloc'd blocks
4172 (obviously). */
4175 /* MallocMeta are small elements. We use a pool to avoid
4176 the overhead of malloc for each MallocMeta. */
4183 }
4186 }
4189 /* Allocate a client block and set up the metadata for it. */
4191 static
4194 {
4195 Addr p;
4202 }
4206 /* Note that map_threads_lookup must succeed (cannot assert), since
4207 memory can only be allocated by currently alive threads, hence
4208 they must have an entry in map_threads. */
4219 /* Tell the lower level memory wranglers. */
4223 }
4225 /* Re the checks for less-than-zero (also in hg_cli__realloc below):
4226 Cast to a signed type to catch any unexpectedly negative args.
4227 We're assuming here that the size asked for is not greater than
4228 2^31 bytes (for 32-bit platforms) or 2^63 bytes (for 64-bit
4229 platforms). */
4234 }
4239 }
4244 }
4249 }
4254 }
4257 /* Free a client block, including getting rid of the relevant
4258 metadata. */
4261 {
4263 SizeT szB;
4265 /* First see if we can find the metadata for 'p'. */
4275 }
4277 /* Nuke the metadata block */
4287 /* Tell the lower level memory wranglers. */
4289 }
4293 }
4296 }
4299 }
4303 {
4305 SizeT i;
4318 /* size unchanged */
4321 }
4324 /* new size is smaller */
4329 }
4332 /* new size is bigger */
4335 /* First half kept and copied, second half new */
4336 // FIXME: shouldn't we use a copier which implements the
4337 // memory state machine?
4341 /* FIXME: can anything funny happen here? specifically, if the
4342 old range contained a lock, then die_mem_heap will complain.
4343 Is that the correct behaviour? Not sure. */
4346 /* Copy from old to new */
4350 /* Because the metadata hash table is index by payload address,
4351 we have to get rid of the old hash table entry and make a new
4352 one. We can't just modify the existing metadata in place,
4353 because then it would (almost certainly) be in the wrong hash
4354 chain. */
4365 /* Update fields */
4371 /* and add */
4375 }
4376 }
4379 {
4382 // There may be slop, but pretend there isn't because only the asked-for
4383 // area will have been shadowed properly.
4385 }
4388 /* For error creation: map 'data_addr' to a malloc'd chunk, if any.
4389 Slow linear search. With a bit of hash table help if 'data_addr'
4390 is either the start of a block or up to 15 word-sized steps along
4391 from the start of a block. */
4394 {
4395 /* Accept 'a' as within 'mm' if 'mm's size is zero and 'a' points
4396 right at it. */
4399 /* else normal interval rules apply */
4403 }
4409 Addr data_addr )
4410 {
4412 Int i;
4415 /* Before searching the list of allocated blocks in hg_mallocmeta_table,
4416 first verify that data_addr is in a heap client segment. */
4421 /* First, do a few fast searches on the basis that data_addr might
4422 be exactly the start of a block or up to 15 words inside. This
4423 can happen commonly via the creq
4424 _VG_USERREQ__HG_CLEAN_MEMORY_HEAPBLOCK. */
4430 }
4432 /* Well, this totally sucks. But without using an interval tree or
4433 some such, it's hard to see how to do better. We have to check
4434 every block in the entire table. */
4439 }
4441 /* Not found. Bah. */
4443 /*NOTREACHED*/
4445 found:
4453 }
4456 /*--------------------------------------------------------------*/
4457 /*--- Instrumentation ---*/
4458 /*--------------------------------------------------------------*/
4460 #define unop(_op, _arg1) IRExpr_Unop((_op),(_arg1))
4461 #define binop(_op, _arg1, _arg2) IRExpr_Binop((_op),(_arg1),(_arg2))
4462 #define mkexpr(_tmp) IRExpr_RdTmp((_tmp))
4463 #define mkU32(_n) IRExpr_Const(IRConst_U32(_n))
4464 #define mkU64(_n) IRExpr_Const(IRConst_U64(_n))
4465 #define assign(_t, _e) IRStmt_WrTmp((_t), (_e))
4467 /* This takes and returns atoms, of course. Not full IRExprs. */
4469 {
4473 /* Generate 32to1(And32(1Uto32(arg1), 1Uto32(arg2))). Appalling
4474 code, I know. */
4485 }
4489 Int szB,
4490 Bool isStore,
4491 Bool fixupSP_needed,
4492 Int hWordTy_szB,
4493 Int goff_sp,
4494 Int goff_sp_s1,
4495 /* goff_sp_s1 is the offset in guest
4496 state where the cachedstack validity
4497 is stored. */
4499 {
4507 // THRESH is the size of the window above SP (well,
4508 // mostly above) that we assume implies a stack reference.
4518 /* So the effective address is in 'addr' now. */
4534 /* Unwind has to be done with a SP fixed up with one word.
4535 See Ist_Put heuristic in hg_instrument. */
4541 }
4546 /* Unwind has to be done with a SP fixed up with one word.
4547 See Ist_Put heuristic in hg_instrument. */
4553 }
4563 }
4593 }
4594 }
4596 /* Create the helper. */
4602 argv );
4605 /* memory access helper might read the shadow1 SP offset, that
4606 indicates if the cached stacktrace is valid. */
4613 }
4616 /* We're ignoring memory references which are (obviously) to the
4617 stack. In fact just skip stack refs that are within 4 pages
4618 of SP (SP - the redzone, really), as that's simple, easy, and
4619 filters out most stack references. */
4620 /* Generate the guard condition: "(addr - (SP - RZ)) >u N", for
4621 some arbitrary N. If that is true then addr is outside the
4622 range (SP - RZ .. SP + N - RZ). If N is smallish (a few
4623 pages) then we can say addr is within a few pages of SP and
4624 so can't possibly be a heap access, and so can be skipped.
4626 Note that the condition simplifies to
4627 (addr - SP + RZ) >u N
4628 which generates better code in x86/amd64 backends, but it does
4629 not unfortunately simplify to
4630 (addr - SP) >u (N - RZ)
4631 (would be beneficial because N - RZ is a constant) because
4632 wraparound arithmetic messes up the comparison. eg.
4633 20 >u 10 == True,
4634 but (20 - 15) >u (10 - 15) == 5 >u (MAXINT-5) == False.
4635 */
4639 /* "addr - SP" */
4642 sbOut,
4644 tyAddr == Ity_I32
4647 );
4649 /* "addr - SP + RZ" */
4652 sbOut,
4654 tyAddr == Ity_I32
4657 );
4659 /* guardA == "guard on the address" */
4662 sbOut,
4664 tyAddr == Ity_I32
4667 );
4669 }
4671 /* If there's a guard on the access itself (as supplied by the
4672 caller of this routine), we need to AND that in to any guard we
4673 might already have. */
4676 }
4678 /* Add the helper. */
4680 }
4683 /* Figure out if GA is a guest code address in the dynamic linker, and
4684 if so return True. Otherwise (and in case of any doubt) return
4685 False. (sidedly safe w/ False as the safe value) */
4687 {
4699 }
4701 static
4703 Int goff_sp_s1,
4704 Int hWordTy_szB)
4705 {
4706 /* Invalidate cached stack: Write 0 in the shadow1 offset 0 */
4711 /// ???? anything more efficient than assign a Word???
4712 }
4714 static
4721 {
4722 Int i;
4729 // Set to True when SP must be fixed up when taking a stack trace for the
4730 // mem accesses in the rest of the instruction
4734 /* SP in shadow1 indicates if cached stack is valid.
4735 We have to invalidate the cached stack e.g. when seeing call or ret. */
4740 /* We don't currently support this case. */
4742 }
4746 }
4748 /* Set up BB */
4755 // Copy verbatim any IR preamble preceding the first IMark
4759 i++;
4760 }
4762 // Get the first statement, and initial cia from it
4776 /* No memory reference, but if we do anything else than
4777 Ijk_Boring, indicate to helgrind that the previously
4778 recorded stack is invalid.
4779 For Ijk_Boring, also invalidate the stack if the exit
4780 instruction has no CF info. This heuristic avoids cached
4781 stack trace mismatch in some cases such as longjmp
4782 implementation. Similar logic below for the bb exit. */
4789 /* None of these can contain any memory references. */
4792 /* This cannot contain any memory references. */
4793 /* If we see a put to SP, from now on in this instruction,
4794 the SP needed to unwind has to be fixed up by one word.
4795 This very simple heuristic ensures correct unwinding in the
4796 typical case of a push instruction. If we need to cover more
4797 cases, then we need to better track how the SP is modified by
4798 the instruction (and calculate a precise sp delta), rather than
4799 assuming that the SP is decremented by a Word size. */
4802 }
4805 /* This cannot contain any memory references. */
4811 /* no mem refs, but note the insn address. */
4814 /* Don't instrument the dynamic linker. It generates a
4815 lot of races which we just expensively suppress, so
4816 it's pointless.
4818 Avoid flooding is_in_dynamic_linker_shared_object with
4819 requests by only checking at transitions between 4K
4820 pages. */
4827 }
4837 }
4841 /* Atomic read-modify-write cycle. Just pretend it's a
4842 read. */
4851 }
4852 /* Just be boring about it. */
4855 bbOut,
4861 NULL/*no-guard*/
4862 );
4863 }
4865 }
4868 /* We pretend store-conditionals don't exist, viz, ignore
4869 them. Whereas load-linked's are treated the same as
4870 normal loads. */
4871 IRType dataTy;
4873 /* LL */
4877 bbOut,
4882 NULL/*no-guard*/
4883 );
4884 }
4886 /* SC */
4887 /*ignore */
4888 }
4890 }
4895 bbOut,
4900 NULL/*no-guard*/
4901 );
4902 }
4913 hWordTy_szB,
4916 }
4927 hWordTy_szB,
4930 }
4937 bbOut,
4942 NULL/*no-guard*/
4943 );
4944 }
4945 }
4947 }
4950 Int dataSize;
4953 /* This dirty helper accesses memory. Collect the
4954 details. */
4964 NULL/*no-guard*/
4965 );
4966 }
4967 }
4974 NULL/*no-guard*/
4975 );
4976 }
4977 }
4981 }
4983 }
4986 unhandled:
4995 // See above the case Ist_Exit:
5001 }
5003 #undef binop
5004 #undef mkexpr
5005 #undef mkU32
5006 #undef mkU64
5007 #undef assign
5010 /*----------------------------------------------------------------*/
5011 /*--- Client requests ---*/
5012 /*----------------------------------------------------------------*/
5014 /* Sheesh. Yet another goddam finite map. */
5021 }
5022 }
5024 /* A list of Ada dependent tasks and their masters. Used for implementing
5025 the Ada task termination semantic as implemented by the
5026 gcc gnat Ada runtime. */
5027 typedef
5033 }
5037 {
5042 }
5043 }
5046 {
5054 }
5056 {
5057 // Make xtmemory_report_next_block ready to be called.
5061 }
5064 {
5066 (
5076 }
5078 /* return True if request recognised, False otherwise */
5080 {
5084 Int kwdid;
5089 /* NB: if possible, avoid introducing a new command below which
5090 starts with the same first letter(s) as an already existing
5091 command. This ensures a shorter abbreviation for the user. */
5111 {
5116 Int i;
5125 }
5126 }
5133 }
5134 }
5140 }
5144 }
5148 {
5149 Addr address;
5156 }
5160 else
5162 }
5164 }
5171 }
5176 }
5177 }
5179 static
5181 {
5186 /* Anything that gets past the above check is one of ours, so we
5187 should be able to handle it. */
5189 /* default, meaningless return value, unless otherwise set */
5194 /* --- --- User-visible client requests --- --- */
5199 /* Call die_mem to (expensively) tidy up properly, if there
5200 are any held locks etc in the area. Calling evh__die_mem
5201 and then evh__new_mem is a bit inefficient; probably just
5202 the latter would do. */
5205 /* and then set it to New */
5207 }
5220 }
5224 }
5226 }
5233 }
5241 }
5254 else
5258 /* This thread (tid) (a master) is informing us that it has
5259 seen the termination of a dependent task, and that this should
5260 be considered as a join between master and dependent. */
5262 Word n;
5273 /* Similar loop as for master completed hook below, but stops at
5274 the first matching occurence, only comparing master and
5275 dependent. */
5288 }
5289 }
5291 }
5293 /* --- --- Client requests for Helgrind's use only --- --- */
5295 /* Some thread is telling us its pthread_t value. Record the
5296 binding between that and the associated Thread*, so we can
5297 later find the Thread* again when notified of a join by the
5298 thread. */
5306 /* This assertion should hold because the map_threads (tid to
5307 Thread*) binding should have been made at the point of
5308 low-level creation of this thread, which should have
5309 happened prior to us getting this client request for it.
5310 That's because this client request is sent from
5311 client-world from the 'thread_wrapper' function, which
5312 only runs once the thread has been low-level created. */
5314 /* So now we know that (pthread_t)args[1] is associated with
5315 (Thread*)my_thr. Note that down. */
5322 /* FIXME: hardwires assumption about identity of the root thread. */
5327 }
5328 }
5330 }
5340 }
5342 /* This thread (tid) has completed a join with the quitting
5343 thread whose pthread_t is in args[1]. */
5353 /* Can this fail? It would mean that our pthread_join
5354 wrapper observed a successful join on args[1] yet that
5355 thread never existed (or at least, it never lodged an
5356 entry in the mapping (via SET_MY_PTHREAD_T)). Which
5357 sounds like a bug in the threads library. */
5358 // FIXME: get rid of this assertion; handle properly
5363 thr_q);
5365 }
5367 }
5369 /* This thread (tid) is informing us of its master. */
5371 GNAT_dmml dmml;
5380 "dependent = %p master = %p master_level = %ld"
5387 }
5389 /* This thread (tid) is informing us that it has completed a
5390 master. */
5392 Word n;
5404 /* Reverse loop on the array, simulating a pthread_join for
5405 the Dependent tasks of the completed master, and removing
5406 them from the array. */
5418 }
5419 }
5421 }
5423 /* EXPOSITION only: by intercepting lock init events we can show
5424 the user where the lock was initialised, rather than only
5425 being able to show where it was first locked. Intercepting
5426 lock initialisations is not necessary for the basic operation
5427 of the race checker. */
5432 /* mutex=arg[1], mutex_is_init=arg[2] */
5462 /* This thread is about to do pthread_cond_signal on the
5463 pthread_cond_t* in arg[1]. Ditto pthread_cond_broadcast. */
5475 /* Entry into pthread_cond_wait, cond=arg[1], mutex=arg[2].
5476 Returns a flag indicating whether or not the mutex is believed to be
5477 valid for this operation. */
5480 Bool mutex_is_valid
5485 }
5487 /* Thread successfully completed pthread_cond_init:
5488 cond=arg[1], cond_attr=arg[2] */
5494 /* cond=arg[1], cond_is_init=arg[2] */
5499 /* Thread completed pthread_cond_wait, cond=arg[1],
5500 mutex=arg[2], timeout=arg[3], successful=arg[4] */
5517 /* rwlock=arg[1], isW=arg[2], isTryLock=arg[3] */
5525 /* rwlock=arg[1], isW=arg[2], tookLock=arg[3] */
5573 /* pth_bar_t*, ulong count, ulong resizable */
5579 /* pth_bar_t*, ulong newcount */
5585 /* pth_bar_t* */
5590 /* pth_bar_t* */
5595 /* pth_spinlock_t* */
5600 /* pth_spinlock_t* */
5605 /* pth_spinlock_t*, Word */
5610 /* pth_spinlock_t* */
5615 /* pth_spinlock_t* */
5620 /* HChar* who */
5628 /* record_error_Misc strdup's buf, so this is safe: */
5631 }
5634 /* UWord arbitrary-SO-tag */
5639 /* UWord arbitrary-SO-tag */
5644 /* UWord arbitrary-SO-tag */
5652 else
5655 }
5662 }
5664 }
5671 }
5673 }
5699 #if defined(VGO_solaris)
5710 /* Unhandled Helgrind client request! */
5713 }
5716 }
5719 /*----------------------------------------------------------------*/
5720 /*--- Setup ---*/
5721 /*----------------------------------------------------------------*/
5724 {
5745 /* "stuvwx" --> stuvwx (binary) */
5747 Int j;
5753 }
5761 }
5762 }
5764 }
5781 else
5785 }
5788 {
5806 );
5807 }
5810 {
5828 );
5829 }
5832 {
5840 }
5841 }
5843 //zz VG_(printf)("\n");
5844 //zz VG_(printf)(" hbefore: %'10lu queries\n", stats__hbefore_queries);
5845 //zz VG_(printf)(" hbefore: %'10lu cache 0 hits\n", stats__hbefore_cache0s);
5846 //zz VG_(printf)(" hbefore: %'10lu cache > 0 hits\n", stats__hbefore_cacheNs);
5847 //zz VG_(printf)(" hbefore: %'10lu graph searches\n", stats__hbefore_gsearches);
5848 //zz VG_(printf)(" hbefore: %'10lu of which slow\n",
5849 //zz stats__hbefore_gsearches - stats__hbefore_gsearchFs);
5850 //zz VG_(printf)(" hbefore: %'10lu stack high water mark\n",
5851 //zz stats__hbefore_stk_hwm);
5852 //zz VG_(printf)(" hbefore: %'10lu cache invals\n", stats__hbefore_invals);
5853 //zz VG_(printf)(" hbefore: %'10lu probes\n", stats__hbefore_probes);
5861 }
5863 //VG_(printf)("L(ast)L(ock) map: %'8lu inserts (%d map size)\n",
5864 // stats__ga_LL_adds,
5865 // (Int)(ga_to_lastlock ? VG_(sizeFM)( ga_to_lastlock ) : 0) );
5882 }
5886 stats__lockN_acquires,
5887 stats__lockN_releases
5888 );
5893 }
5896 {
5905 }
5914 }
5916 /* FIXME: move these somewhere sane */
5918 static
5920 {
5922 ThreadId tid;
5923 UWord nActual;
5935 }
5937 static
5939 {
5941 ThreadId tid;
5947 /* this will assert if tid is invalid */
5950 }
5954 {
5961 "helgrind --delta-stacktrace=yes only works with "
5965 }
5968 /////////////////////////////////////////////
5970 for_libhb__get_EC );
5971 /////////////////////////////////////////////
5979 // Activate full xtree memory profiling.
5981 }
5984 {
5986 }
5989 {
5999 hg_instrument,
6000 hg_fini);
6019 hg_print_usage,
6020 hg_print_debug_usage);
6023 // FIXME?
6024 //VG_(needs_sanity_checks) (hg_cheap_sanity_check,
6025 // hg_expensive_sanity_check);
6031 hg_cli____builtin_new,
6032 hg_cli____builtin_vec_new,
6033 hg_cli__memalign,
6034 hg_cli__calloc,
6035 hg_cli__free,
6036 hg_cli____builtin_delete,
6037 hg_cli____builtin_vec_delete,
6038 hg_cli__realloc,
6039 hg_cli_malloc_usable_size,
6040 HG_CLI__DEFAULT_MALLOC_REDZONE_SZB );
6042 /* 21 Dec 08: disabled this; it mostly causes H to start more
6043 slowly and use significantly more memory, without very often
6044 providing useful results. The user can request to load this
6045 information manually with --read-var-info=yes. */
6063 // FIXME: surely this isn't thread-aware
6072 /* evh__die_mem calls at the end libhb_srange_noaccess_NoFX
6073 which has no effect. We do not use VG_(track_die_mem_stack),
6074 as this would be an expensive way to do nothing. */
6075 // VG_(track_die_mem_stack) ( evh__die_mem );
6077 // FIXME: what is this for?
6085 /////////////////
6093 /* Ensure that requirements for "dodgy C-as-C++ style inheritance"
6094 as described in comments at the top of pub_tool_hashtable.h, are
6095 met. Blargh. */
6098 hg_mallocmeta_table
6107 // add a callback to clean up on (threaded) fork.
6109 }
6113 /*--------------------------------------------------------------------*/
6114 /*--- end hg_main.c ---*/
6115 /*--------------------------------------------------------------------*/