| blob | dc22dca1765aab46acc74dee08c68c56834a9f3e |
2 /*--------------------------------------------------------------------*/
3 /*--- Thread scheduling. scheduler.c ---*/
4 /*--------------------------------------------------------------------*/
6 /*
7 This file is part of Valgrind, a dynamic binary instrumentation
8 framework.
10 Copyright (C) 2000-2017 Julian Seward
11 jseward@acm.org
13 This program is free software; you can redistribute it and/or
14 modify it under the terms of the GNU General Public License as
15 published by the Free Software Foundation; either version 2 of the
16 License, or (at your option) any later version.
18 This program is distributed in the hope that it will be useful, but
19 WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
21 General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program; if not, see <http://www.gnu.org/licenses/>.
26 The GNU General Public License is contained in the file COPYING.
27 */
29 /*
30 Overview
32 Valgrind tries to emulate the kernel's threading as closely as
33 possible. The client does all threading via the normal syscalls
34 (on Linux: clone, etc). Valgrind emulates this by creating exactly
35 the same process structure as would be created without Valgrind.
36 There are no extra threads.
38 The main difference is that Valgrind only allows one client thread
39 to run at once. This is controlled with the CPU Big Lock,
40 "the_BigLock". Any time a thread wants to run client code or
41 manipulate any shared state (which is anything other than its own
42 ThreadState entry), it must hold the_BigLock.
44 When a thread is about to block in a blocking syscall, it releases
45 the_BigLock, and re-takes it when it becomes runnable again (either
46 because the syscall finished, or we took a signal).
48 VG_(scheduler) therefore runs in each thread. It returns only when
49 the thread is exiting, either because it exited itself, or it was
50 told to exit by another thread.
52 This file is almost entirely OS-independent. The details of how
53 the OS handles threading and signalling are abstracted away and
54 implemented elsewhere. [Some of the functions have worked their
55 way back for the moment, until we do an OS port in earnest...]
56 */
75 #if defined(VGO_darwin)
77 #endif
98 /* ---------------------------------------------------------------------
99 Types and globals for the scheduler.
100 ------------------------------------------------------------------ */
102 /* ThreadId and ThreadState are defined elsewhere*/
104 /* Defines the thread-scheduling timeslice, in terms of the number of
105 basic blocks we attempt to run each thread for. Smaller values
106 give finer interleaving but much increased scheduling overheads. */
107 #define SCHEDULING_QUANTUM 100000
109 /* If False, a fault is Valgrind-internal (ie, a bug) */
112 /* 64-bit counter for the number of basic blocks done. */
115 /* Counter to see if vgdb activity is to be verified.
116 When nr of bbs done reaches vgdb_next_poll, scheduler will
117 poll for gdbserver activity. VG_(force_vgdb_poll) and
118 VG_(disable_vgdb_poll) allows the valgrind core (e.g. m_gdbserver)
119 to control when the next poll will be done. */
122 /* Forwards */
127 /* Stats. */
131 /* Stats: number of XIndirs looked up in the fast cache, the number of hits in
132 ways 1, 2 and 3, and the number of misses. The number of hits in way 0 isn't
133 recorded because it can be computed from these five numbers. */
140 /* And 32-bit temp bins for the above, so that 32-bit platforms don't
141 have to do 64 bit incs on the hot path through
142 VG_(disp_cp_xindir). */
149 /* Sanity checking counts. */
154 {
158 const ULong hits0
162 "scheduler: %'llu indir transfers, "
165 stats__n_xIndirs / (stats__n_xIndir_misses
168 "scheduler: .. of which: %'llu hit0, %'llu hit1, "
170 hits0,
171 stats__n_xIndir_hits1,
172 stats__n_xIndir_hits2,
173 stats__n_xIndir_hits3,
174 stats__n_xIndir_misses);
182 }
184 /*
185 * Mutual exclusion object used to serialize threads.
186 */
190 /* ---------------------------------------------------------------------
191 Helper functions for the scheduler.
192 ------------------------------------------------------------------ */
195 {
196 /* This is when the next report is due, in user cpu milliseconds since
197 process start. This is a global variable so this won't be thread-safe
198 if Valgrind is ever made multithreaded. For now it's fine. */
201 /* First of all, figure out whether another report is due. It
202 probably isn't. */
209 /* A report is due. First, though, set the time for the next report. */
212 /* If it's been an excessively long time since the last check, we
213 might have gone more than one reporting interval forward. Guard
214 against that. */
218 /* Also we don't want to report anything on the first call, but we
219 have to wait till this point to leave, so that we set up the
220 next-call time correctly. */
224 /* Print the report. */
236 100.0
239 millionEvCs,
241 }
242 }
244 static
246 {
248 }
250 /* For showing SB profiles, if the user asks to see them. */
251 static
253 {
254 /* DO NOT MAKE NON-STATIC */
256 /* */
263 }
264 }
266 static
268 {
303 }
304 }
306 /* Allocate a completely empty ThreadState record. */
308 {
309 Int i;
318 }
319 }
323 /*NOTREACHED*/
324 }
326 /*
327 Mark a thread as Runnable. This will block until the_BigLock is
328 available, so that we get exclusive access to all the shared
329 structures and the CPU. Up until we get the_BigLock, we must not
330 touch any shared state.
332 When this returns, we'll actually be running.
333 */
335 {
338 #if 0
343 }
344 #endif
346 /* First, acquire the_BigLock. We can't do anything else safely
347 prior to this point. Even doing debug printing prior to this
348 point is, technically, wrong. */
365 else
367 }
373 }
374 }
376 /*
377 Set a thread into a sleeping state, and give up exclusive access to
378 the CPU. On return, the thread must be prepared to block until it
379 is ready to run again (generally this means blocking in a syscall,
380 but it may mean that we remain in a Runnable state and we're just
381 yielding the CPU to another thread).
382 */
385 {
403 }
405 /* Release the_BigLock; this will reschedule any runnable
406 thread. */
408 }
411 {
414 }
417 {
420 }
422 /* See pub_core_scheduler.h for description */
424 {
426 }
428 /* See pub_core_scheduler.h for description */
430 {
432 }
435 {
438 }
441 /* Clear out the ThreadState and release the semaphore. Leaves the
442 ThreadState in VgTs_Zombie state, so that it doesn't get
443 reallocated until the caller is really ready. */
445 {
453 /* There should still be a valid exitreason for this thread */
460 }
462 /* If 'tid' is blocked in a syscall, send it SIGVGKILL so as to get it
463 out of the syscall and onto doing the next thing, whatever that is.
464 If it isn't blocked in a syscall, has no effect on the thread. */
466 {
475 }
476 # if defined(VGO_darwin)
477 {
478 // GrP fixme use mach primitives on darwin?
479 // GrP fixme thread_abort_safely?
480 // GrP fixme race for thread with WaitSys set but not in syscall yet?
483 }
484 # else
485 {
488 /* JRS 2009-Mar-20: should we assert for r==0 (tkill succeeded)?
489 I'm really not sure. Here's a race scenario which argues
490 that we shoudn't; but equally I'm not sure the scenario is
491 even possible, because of constraints caused by the question
492 of who holds the BigLock when.
494 Target thread tid does sys_read on a socket and blocks. This
495 function gets called, and we observe correctly that tid's
496 status is WaitSys but then for whatever reason this function
497 goes very slowly for a while. Then data arrives from
498 wherever, tid's sys_read returns, tid exits. Then we do
499 tkill on tid, but tid no longer exists; tkill returns an
500 error code and the assert fails. */
501 /* vg_assert(r == 0); */
502 }
503 # endif
504 }
505 }
507 /*
508 Yield the CPU for a short time to let some other thread run.
509 */
511 {
519 /*
520 Tell the kernel we're yielding.
521 */
522 # if defined(VGO_linux) || defined(VGO_darwin)
524 # elif defined(VGO_solaris)
526 # else
527 # error Unknown OS
528 # endif
531 }
534 /* Set the standard set of blocked signals, used whenever we're not
535 running a client syscall. */
537 {
538 vki_sigset_t mask;
542 /* Don't block these because they're synchronous */
549 /* Can't block these anyway */
554 }
557 {
561 # if defined(VGO_linux)
562 /* no other fields to clear */
563 # elif defined(VGO_darwin)
573 # elif defined(VGO_solaris)
574 # if defined(VGP_x86_solaris)
576 # endif
583 # else
585 # endif
586 }
589 {
593 }
595 static
597 {
598 vki_sigset_t savedmask;
604 /* Leave the thread in Zombie, so that it doesn't get reallocated
605 until the caller is finally done with the thread stack. */
613 /* start with no altstack */
621 }
623 /*
624 Called in the child after fork. If the parent has multiple
625 threads, then we've inherited a VG_(threads) array describing them,
626 but only the thread which called fork() is actually alive in the
627 child. This functions needs to clean up all those other thread
628 structures.
630 Whichever tid in the parent which called fork() becomes the
631 master_tid in the child. That's because the only living slot in
632 VG_(threads) in the child after fork is VG_(threads)[tid], and it
633 would be too hard to try to re-number the thread and relocate the
634 thread state down to VG_(threads)[1].
636 This function also needs to reinitialize the_BigLock, since
637 otherwise we may end up sharing its state with the parent, which
638 would be deeply confusing.
639 */
641 {
642 ThreadId tid;
645 # if defined(VGO_darwin)
646 // GrP fixme hack reset Mach ports
648 # endif
653 /* clear out all the unused thread slots */
659 }
660 }
662 /* re-init and take the sema */
666 }
669 /* First phase of initialisation of the scheduler. Initialise the
670 bigLock, zeroise the VG_(threads) structure and decide on the
671 ThreadId of the root thread.
672 */
674 {
675 Int i;
676 ThreadId tid_main;
683 {
686 }
692 }
697 /* Paranoia .. completely zero it out. */
710 }
714 /* Bleh. Unfortunately there are various places in the system that
715 assume that the main thread has a ThreadId of 1.
716 - Helgrind (possibly)
717 - stack overflow message in default_action() in m_signals.c
718 - definitely a lot more places
719 */
723 }
726 /* Second phase of initialisation of the scheduler. Given the root
727 ThreadId computed by first phase of initialisation, fill in stack
728 details and acquire bigLock. Initialise the scheduler. This is
729 called at startup. The caller subsequently initialises the guest
730 state components of this main thread.
731 */
733 Addr clstack_end,
734 SizeT clstack_size )
735 {
749 }
752 /* ---------------------------------------------------------------------
753 Helpers for running translations.
754 ------------------------------------------------------------------ */
756 /* Use gcc's built-in setjmp/longjmp. longjmp must not restore signal
757 mask state, but does need to pass "val" through. jumped must be a
758 volatile UWord. */
759 #define SCHEDSETJMP(tid, jumped, stmt) \
760 do { \
761 ThreadState * volatile _qq_tst = VG_(get_ThreadState)(tid); \
762 \
763 (jumped) = VG_MINIMAL_SETJMP(_qq_tst->sched_jmpbuf); \
764 if ((jumped) == ((UWord)0)) { \
765 vg_assert(!_qq_tst->sched_jmpbuf_valid); \
766 _qq_tst->sched_jmpbuf_valid = True; \
767 stmt; \
768 } else if (VG_(clo_trace_sched)) \
770 __LINE__, tid, jumped); \
771 vg_assert(_qq_tst->sched_jmpbuf_valid); \
772 _qq_tst->sched_jmpbuf_valid = False; \
773 } while(0)
776 /* Do various guest state alignment checks prior to running a thread.
777 Specifically, check that what we have matches Vex's guest state
778 layout requirements. See libvex.h for details, but in short the
779 requirements are: There must be no holes in between the primary
780 guest state, its two copies, and the spill area. In short, all 4
781 areas must be aligned on the LibVEX_GUEST_STATE_ALIGN boundary and
782 be placed back-to-back without holes in between. */
784 {
812 /* Check that the guest state and its two shadows have the same
813 size, and that there are no holes in between. The latter is
814 important because Memcheck assumes that it can reliably access
815 the shadows by indexing off a pointer to the start of the
816 primary guest state area. */
821 /* Also check there's no hole between the second shadow area and
822 the spill area. */
826 # if defined(VGA_x86)
827 /* x86 XMM regs must form an array, ie, have no holes in
828 between. */
833 );
839 # endif
841 # if defined(VGA_amd64)
842 /* amd64 YMM regs must form an array, ie, have no holes in
843 between. */
848 );
854 # endif
856 # if defined(VGA_ppc32) || defined(VGA_ppc64be) || defined(VGA_ppc64le)
857 /* ppc guest_state vector regs must be 16 byte aligned for
858 loads/stores. This is important! */
862 /* be extra paranoid .. */
866 # endif
868 # if defined(VGA_arm)
869 /* arm guest_state VFP regs must be 8 byte aligned for
870 loads/stores. Let's use 16 just to be on the safe side. */
874 /* be extra paranoid .. */
878 # endif
880 # if defined(VGA_arm64)
887 # endif
889 # if defined(VGA_s390x)
890 /* no special requirements */
891 # endif
893 # if defined(VGA_mips32) || defined(VGA_mips64)
894 /* no special requirements */
895 # endif
896 }
898 // NO_VGDB_POLL value ensures vgdb is not polled, while
899 // VGDB_POLL_ASAP ensures that the next scheduler call
900 // will cause a poll.
901 #define NO_VGDB_POLL 0xffffffffffffffffULL
902 #define VGDB_POLL_ASAP 0x0ULL
905 {
907 }
909 {
911 }
913 /* Run the thread tid for a while, and return a VG_TRC_* value
914 indicating why VG_(disp_run_translations) stopped, and possibly an
915 auxiliary word. Also, only allow the thread to run for at most
916 *dispatchCtrP events. If (as is the normal case) use_alt_host_addr
917 is False, we are running ordinary redir'd translations, and we
918 should therefore start by looking up the guest next IP in TT. If
919 it is True then we ignore the guest next IP and just run from
920 alt_host_addr, which presumably points at host code for a no-redir
921 translation.
923 Return results are placed in two_words. two_words[0] is set to the
924 TRC. In the case where that is VG_TRC_CHAIN_ME_TO_{SLOW,FAST}_EP,
925 the address to patch is placed in two_words[1].
926 */
927 static
930 ThreadId tid,
931 HWord alt_host_addr,
932 Bool use_alt_host_addr )
933 {
939 /* Paranoia */
947 /* end Paranoia */
949 /* Futz with the XIndir stats counters. */
956 /* Clear return area. */
959 /* Figure out where we're starting from. */
961 /* unusual case -- no-redir translation */
964 /* normal case -- redir translation */
966 Bool found_in_fast_cache
973 /* not found in VG_(tt_fast). Searching here the transtab
974 improves the performance compared to returning directly
975 to the scheduler. */
978 True/*upd cache*/
979 );
983 /* At this point, we know that we intended to start at a
984 normal redir translation, but it was not found. In
985 which case we can return now claiming it's not
986 findable. */
989 }
990 }
991 }
992 /* We have either a no-redir or a redir translation. */
995 /* there should be no undealt-with signals */
996 //vg_assert(VG_(threads)[tid].siginfo.si_signo == 0);
998 /* Set up event counter stuff for the run. */
1003 /* Invalidate any in-flight LL/SC transactions, in the case that we're
1004 using the fallback LL/SC implementation. See bugs 344524 and 369459. */
1005 # if defined(VGP_mips32_linux) || defined(VGP_mips64_linux) \
1006 || defined(VGP_nanomips_linux)
1008 # elif defined(VGP_arm64_linux)
1010 # endif
1013 vki_sigset_t m;
1021 }
1023 /* Set up return-value area. */
1025 // Tell the tool this thread is about to run client code
1032 tid,
1033 jumped,
1035 two_words,
1037 host_code_addr
1038 )
1039 );
1045 /* We get here if the client took a fault that caused our signal
1046 handler to longjmp. */
1051 }
1053 /* Merge the 32-bit XIndir/miss counters into the 64 bit versions,
1054 and zero out the 32-bit ones in preparation for the next run of
1055 generated code. */
1067 /* Inspect the event counter. */
1072 /* The number of events done this time is the difference between
1073 the event counter originally and what it is now. Except -- if
1074 it has gone negative (to -1) then the transition 0 to -1 doesn't
1075 correspond to a real executed block, so back it out. It's like
1076 this because the event checks decrement the counter first and
1077 check it for negativeness second, hence the 0 to -1 transition
1078 causes a bailout and the block it happens in isn't executed. */
1079 {
1083 done_this_time--;
1085 /* If the generated code drives the counter below -1, something
1086 is seriously wrong. */
1088 }
1089 }
1097 // Tell the tool this thread has stopped running client code
1103 else
1104 /* value was changed due to gdbserver invocation via ptrace */
1108 }
1110 /* TRC value and possible auxiliary patch-address word are already
1111 in two_words[0] and [1] respectively, as a result of the call to
1112 VG_(run_innerloop). */
1113 /* Stay sane .. */
1119 }
1120 }
1123 /* ---------------------------------------------------------------------
1124 The scheduler proper.
1125 ------------------------------------------------------------------ */
1128 {
1129 Bool found;
1132 /* Trivial event. Miss in the fast-cache. Do a full
1133 lookup for it. */
1137 /* Not found; we need to request a translation. */
1145 // If VG_(translate)() fails, it's because it had to throw a
1146 // signal because the client jumped to a bad address. That
1147 // means that either a signal has been set up for delivery,
1148 // or the thread has been marked for termination. Either
1149 // way, we just need to go back into the scheduler loop.
1150 }
1151 }
1152 }
1154 static
1156 {
1165 /* Not found; we need to request a translation. */
1172 // If VG_(translate)() fails, it's because it had to throw a
1173 // signal because the client jumped to a bad address. That
1174 // means that either a signal has been set up for delivery,
1175 // or the thread has been marked for termination. Either
1176 // way, we just need to go back into the scheduler loop.
1178 }
1179 }
1184 /* So, finally we know where to patch through to. Do the patching
1185 and update the various admin tables that allow it to be undone
1186 in the case that the destination block gets deleted. */
1189 }
1192 {
1196 /* Syscall may or may not block; either way, it will be
1197 complete by the time this call returns, and we'll be
1198 runnable again. We could take a signal while the
1199 syscall runs. */
1206 }
1215 }
1225 }
1226 }
1228 /* tid just requested a jump to the noredir version of its current
1229 program counter. So make up that translation if needed, run it,
1230 and return the resulting thread return code in two_words[]. */
1231 static
1234 ThreadId tid )
1235 {
1236 /* Clear return area. */
1244 /* Not found; we need to request a translation. */
1251 // If VG_(translate)() fails, it's because it had to throw a
1252 // signal because the client jumped to a bad address. That
1253 // means that either a signal has been set up for delivery,
1254 // or the thread has been marked for termination. Either
1255 // way, we just need to go back into the scheduler loop.
1258 }
1260 }
1265 /* Otherwise run it and return the resulting VG_TRC_* value. */
1269 }
1272 /*
1273 Run a thread until it wants to exit.
1275 We assume that the caller has already called VG_(acquire_BigLock) for
1276 us, so we own the VCPU. Also, all signals are blocked.
1277 */
1279 {
1280 /* Holds the remaining size of this thread's "timeslice". */
1289 /* Do vgdb initialization (but once). Only the first (main) task
1290 starting up will do the below.
1291 Initialize gdbserver earlier than at the first
1292 thread VG_(scheduler) is causing problems:
1293 * at the end of VG_(scheduler_init_phase2) :
1294 The main thread is in VgTs_Init state, but in a not yet
1295 consistent state => the thread cannot be reported to gdb
1296 (e.g. causes an assert in LibVEX_GuestX86_get_eflags when giving
1297 back the guest registers to gdb).
1298 * at end of valgrind_main, just
1299 before VG_(main_thread_wrapper_NORETURN)(1) :
1300 The main thread is still in VgTs_Init state but in a
1301 more advanced state. However, the thread state is not yet
1302 completely initialized : a.o., the os_state is not yet fully
1303 set => the thread is then not properly reported to gdb,
1304 which is then confused (causing e.g. a duplicate thread be
1305 shown, without thread id).
1306 * it would be possible to initialize gdbserver "lower" in the
1307 call stack (e.g. in VG_(main_thread_wrapper_NORETURN)) but
1308 these are platform dependent and the place at which
1309 the thread state is completely initialized is not
1310 specific anymore to the main thread (so a similar "do it only
1311 once" would be needed).
1313 => a "once only" initialization here is the best compromise. */
1318 /* If we have to poll, ensures we do an initial poll at first
1319 scheduler call. Otherwise, ensure no poll (unless interrupted
1320 by ptrace). */
1323 else
1329 }
1330 }
1334 /* We disable the stack cache the first time we see a thread other
1335 than the main thread appearing. At this moment, we are sure the pthread
1336 lib loading is done/variable was initialised by pthread lib/... */
1340 "pthread stack cache size disable done"
1343 /* Set a value big enough to be above the hardcoded maximum stack
1344 cache size in glibc, small enough to allow a pthread stack size
1345 to be added without risk of overflow. */
1346 }
1351 /* Remove SimHint_no_nptl_pthread_stackcache from VG_(clo_sim_hints)
1352 to avoid having a msg for all following threads. */
1353 }
1354 }
1356 /* set the proper running signal mask */
1368 /* Our slice is done, so yield the CPU to another thread. On
1369 Linux, this doesn't sleep between sleeping and running,
1370 since that would take too much time. */
1372 /* 4 July 06: it seems that a zero-length nsleep is needed to
1373 cause async thread cancellation (canceller.c) to terminate
1374 in finite time; else it is in some kind of race/starvation
1375 situation and completion is arbitrarily delayed (although
1376 this is not a deadlock).
1378 Unfortunately these sleeps cause MPI jobs not to terminate
1379 sometimes (some kind of livelock). So sleeping once
1380 every N opportunities appears to work. */
1382 /* 3 Aug 06: doing sys__nsleep works but crashes some apps.
1383 sys_yield also helps the problem, whilst not crashing apps. */
1387 /* ------------ now we don't have The Lock ------------ */
1390 /* ------------ now we do have The Lock ------------ */
1392 /* OK, do some relatively expensive housekeeping stuff */
1396 /* Possibly make a progress report */
1399 }
1401 /* Look for any pending signals for this thread, and set them up
1402 for delivery */
1408 /* For stats purposes only. */
1409 n_scheduling_events_MAJOR++;
1411 /* Figure out how many bbs to ask vg_run_innerloop to do. */
1414 /* paranoia ... */
1417 }
1419 /* For stats purposes only. */
1420 n_scheduling_events_MINOR++;
1436 }
1439 /* If we got a request to run a no-redir version of
1440 something, do so now -- handle_noredir_jump just (creates
1441 and) runs that one translation. The flip side is that the
1442 noredir translation can't itself return another noredir
1443 request -- that would be nonsensical. It can, however,
1444 return VG_TRC_BORING, which just means keep going as
1445 normal. */
1446 /* Note that the fact that we need to continue with a
1447 no-redir jump is not recorded anywhere else in this
1448 thread's state. So we *must* execute the block right now
1449 -- we can't fail to execute it and later resume with it,
1450 because by then we'll have forgotten the fact that it
1451 should be run as no-redir, but will get run as a normal
1452 potentially-redir'd, hence screwing up. This really ought
1453 to be cleaned up, by noting in the guest state that the
1454 next block to be executed should be no-redir. Then we can
1455 suspend and resume at any point, which isn't the case at
1456 the moment. */
1457 /* We can't enter a no-redir translation with the dispatch
1458 ctr set to zero, for the reasons commented just above --
1459 we need to force it to execute right now. So, if the
1460 dispatch ctr is zero, set it to one. Note that this would
1461 have the bad side effect of holding the Big Lock arbitrary
1462 long should there be an arbitrarily long sequence of
1463 back-to-back no-redir translations to run. But we assert
1464 just below that this translation cannot request another
1465 no-redir jump, so we should be safe against that. */
1468 }
1471 tid );
1474 /* This can't be allowed to happen, since it means the block
1475 didn't execute, and we have no way to resume-as-noredir
1476 after we get more timeslice. But I don't think it ever
1477 can, since handle_noredir_jump will assert if the counter
1478 is zero on entry. */
1480 /* This asserts the same thing. */
1483 /* A no-redir translation can't return with a chain-me
1484 request, since chaining in the no-redir cache is too
1485 complex. */
1488 }
1492 /* assisted dispatch, no event. Used by no-redir
1493 translations to force return to the scheduler. */
1495 /* no special event, just keep going. */
1507 }
1513 }
1524 /* amd64-linux, ppc32-linux, amd64-darwin, amd64-solaris */
1532 /* Explicit yield, because this thread is in a spin-lock
1533 or something. Only let the thread run for a short while
1534 longer. Because swapping to another thread is expensive,
1535 we're prepared to let this thread eat a little more CPU
1536 before swapping to another. That means that short term
1537 spins waiting for hardware to poke memory won't cause a
1538 thread swap. */
1544 /* Timeslice is out. Let a new thread be scheduled. */
1549 /* Everything should be set up (either we're exiting, or
1550 about to start in a signal handler). */
1554 /* Failure of arch-specific address translation (x86/amd64
1555 segment override use) */
1556 /* jrs 2005 03 11: is this correct? */
1563 VexEmNote ew;
1565 Bool show;
1566 Int q;
1571 }
1577 ? True
1584 }
1586 }
1589 VexEmNote ew;
1604 }
1652 # undef M
1653 }
1654 # if defined(VGA_s390x)
1655 /* Now that the complaint is out we need to adjust the guest_IA. The
1656 reason is that -- after raising the exception -- execution will
1657 continue with the insn that follows the invalid insn. As the first
1658 2 bits of the invalid insn determine its length in the usual way,
1659 we can compute the address of the next insn here and adjust the
1660 guest_IA accordingly. This adjustment is essential and tested by
1661 none/tests/s390x/op_exception.c (which would loop forever
1662 otherwise) */
1667 # endif
1670 }
1676 "scheduler(VEX_TRC_JMP_INVALICACHE)"
1677 );
1688 }
1691 /* This typically happens if, after running generated code,
1692 it is detected that host CPU settings (eg, FPU/Vector
1693 control words) are not as they should be. Vex's code
1694 generation specifies the state such control words should
1695 be in on entry to Vex-generated code, and they should be
1696 unchanged on exit from it. Failure of this assertion
1697 usually means a bug in Vex's code generation. */
1698 //{ UInt xx;
1699 // __asm__ __volatile__ (
1700 // "\t.word 0xEEF12A10\n" // fmrx r2,fpscr
1701 // "\tmov %0, r2" : "=r"(xx) : : "r2" );
1702 // VG_(printf)("QQQQ new fpscr = %08x\n", xx);
1703 //}
1705 "run_innerloop detected host "
1709 /* Do whatever simulation is appropriate for an x86 sysenter
1710 instruction. Note that it is critical to set this thread's
1711 guest_EIP to point at the code to execute after the
1712 sysenter, since Vex-generated code will not have set it --
1713 vex does not know what it should be. Vex sets the next
1714 address to zero, so if you don't set guest_EIP, the thread
1715 will jump to zero afterwards and probably die as a result. */
1716 # if defined(VGP_x86_linux)
1719 # elif defined(VGP_x86_darwin) || defined(VGP_x86_solaris)
1720 /* return address in client edx */
1724 # else
1727 # endif
1733 /* NOTREACHED */
1740 }
1748 }
1752 {
1753 ThreadId tid;
1769 }
1770 }
1773 /* ---------------------------------------------------------------------
1774 Specifying shadow register values
1775 ------------------------------------------------------------------ */
1777 #if defined(VGA_x86)
1778 # define VG_CLREQ_ARGS guest_EAX
1779 # define VG_CLREQ_RET guest_EDX
1780 #elif defined(VGA_amd64)
1781 # define VG_CLREQ_ARGS guest_RAX
1782 # define VG_CLREQ_RET guest_RDX
1783 #elif defined(VGA_ppc32) || defined(VGA_ppc64be) || defined(VGA_ppc64le)
1784 # define VG_CLREQ_ARGS guest_GPR4
1785 # define VG_CLREQ_RET guest_GPR3
1786 #elif defined(VGA_arm)
1787 # define VG_CLREQ_ARGS guest_R4
1788 # define VG_CLREQ_RET guest_R3
1789 #elif defined(VGA_arm64)
1790 # define VG_CLREQ_ARGS guest_X4
1791 # define VG_CLREQ_RET guest_X3
1792 #elif defined (VGA_s390x)
1793 # define VG_CLREQ_ARGS guest_r2
1794 # define VG_CLREQ_RET guest_r3
1795 #elif defined(VGA_mips32) || defined(VGA_mips64) || defined(VGA_nanomips)
1796 # define VG_CLREQ_ARGS guest_r12
1797 # define VG_CLREQ_RET guest_r11
1798 #else
1799 # error Unknown arch
1800 #endif
1802 #define CLREQ_ARGS(regs) ((regs).vex.VG_CLREQ_ARGS)
1803 #define CLREQ_RET(regs) ((regs).vex.VG_CLREQ_RET)
1804 #define O_CLREQ_RET (offsetof(VexGuestArchState, VG_CLREQ_RET))
1806 // These macros write a value to a client's thread register, and tell the
1807 // tool that it's happened (if necessary).
1809 #define SET_CLREQ_RETVAL(zztid, zzval) \
1810 do { CLREQ_RET(VG_(threads)[zztid].arch) = (zzval); \
1811 VG_TRACK( post_reg_write, \
1812 Vg_CoreClientReq, zztid, O_CLREQ_RET, sizeof(UWord)); \
1813 } while (0)
1815 #define SET_CLCALL_RETVAL(zztid, zzval, f) \
1816 do { CLREQ_RET(VG_(threads)[zztid].arch) = (zzval); \
1817 VG_TRACK( post_reg_write_clientcall_return, \
1818 zztid, O_CLREQ_RET, sizeof(UWord), f); \
1819 } while (0)
1822 /* ---------------------------------------------------------------------
1823 Handle client requests.
1824 ------------------------------------------------------------------ */
1826 // OS-specific(?) client requests
1828 {
1835 /* This is equivalent to an exit() syscall, but we don't set the
1836 exitcode (since it might already be set) */
1839 "__gnu_cxx::__freeres() and __libc_freeres() wrapper "
1847 }
1850 }
1853 /* Write out a client message, possibly including a back trace. Return
1854 the number of characters written. In case of XML output, the format
1855 string as well as any arguments it requires will be XML'ified.
1856 I.e. special characters such as the angle brackets will be translated
1857 into proper escape sequences. */
1858 static
1861 {
1862 Int count;
1865 /* Translate the format string as follows:
1866 < --> <
1867 > --> >
1868 & --> &
1869 %s --> %pS
1870 Yes, yes, it's simplified but in synch with
1871 myvprintf_str_XML_simplistic and VG_(debugLog_vprintf).
1872 */
1874 /* Allocate a buffer that is for sure large enough. */
1886 /* Careful: make sure %%s stays %%s */
1893 }
1899 }
1900 }
1914 }
1923 }
1926 /* Do a client request for the thread tid. After the request, tid may
1927 or may not still be runnable; if not, the scheduler will have to
1928 choose a new thread to run.
1929 */
1930 static
1932 {
1944 else
1947 }
1952 else
1955 }
1960 else
1963 }
1968 else
1971 }
1973 // Nb: this looks like a circular definition, because it kind of is.
1974 // See comment in valgrind.h to understand what's going on.
1981 /* JRS 2010-Jan-28: this is DEPRECATED; use the
1982 _VALIST_BY_REF version instead */
1990 Int count =
1995 }
1999 /* JRS 2010-Jan-28: this is DEPRECATED; use the
2000 _VALIST_BY_REF version instead */
2008 Int count =
2013 }
2018 Int count =
2024 }
2029 Int count =
2034 }
2038 Int count =
2043 }
2086 }
2088 /* Requests from the client program */
2098 );
2134 // Unless the guest would become epoch aware (and would need to
2135 // describe IP addresses of dlclosed libs), using cur_ep is a
2136 // reasonable choice.
2141 );
2143 /* For backward compatibility truncate the filename to
2144 49 characters. */
2147 UInt i;
2151 }
2155 }
2159 }
2168 }
2169 else
2172 }
2175 }
2178 UWord ret;
2182 }
2187 // Ignore them if the addr is NULL; otherwise pass onto the tool.
2193 }
2200 my_default:
2202 // do nothing, os_client_request() handled it
2204 UWord ret;
2216 // Allow for requests in core, but defined by tools, which
2217 // have 0 and 0 in their two high bytes.
2227 }
2228 }
2230 }
2233 /*NOTREACHED*/
2234 va_list_casting_error_NORETURN:
2255 );
2257 }
2260 /* ---------------------------------------------------------------------
2261 Sanity checking (permanently engaged)
2262 ------------------------------------------------------------------ */
2264 /* Internal consistency checks on the sched structures. */
2265 static
2267 {
2273 "Thread %u is supposed to be running, "
2277 }
2284 }
2289 tid);
2291 }
2294 /* Periodically show the state of all threads, for debugging
2295 purposes. */
2297 UInt now;
2306 }
2307 }
2309 /* core_panic also shows the sched status, which is why we don't
2310 show it above if bad==True. */
2313 }
2316 {
2317 ThreadId tid;
2324 /* --- First do all the tests that we can do quickly. ---*/
2326 sanity_fast_count++;
2328 /* Check stuff pertaining to the memory check system. */
2330 /* Check that nobody has spuriously claimed that the first or
2331 last 16 pages of memory have become accessible [...] */
2334 }
2336 /* --- Now some more expensive checks. ---*/
2338 /* Once every now and again, check some more expensive stuff.
2339 Gradually increase the interval between such checks so as not to
2340 burden long-running programs too much. */
2349 slow_check_interval++;
2350 sanity_slow_count++;
2354 }
2356 /* Look for stack overruns. Visit all threads. */
2358 SizeT remains;
2365 stack
2368 SizeT limit
2370 remains
2374 "WARNING: Thread %u is within %lu bytes "
2376 "Valgrind stack size can be increased "
2379 }
2380 }
2383 /* Check sanity of the low-level memory manager. Note that bugs
2384 in the client's code can cause this to fail, so we don't do
2385 this check unless specially asked for. And because it's
2386 potentially very expensive. */
2388 }
2389 }
2391 /*--------------------------------------------------------------------*/
2392 /*--- end ---*/
2393 /*--------------------------------------------------------------------*/