Changeset 286573 in webkit

Timestamp:

Dec 6, 2021, 2:53:46 PM (4 years ago)

Author:

ysuzuki@apple.com

Message:

[libpas] Set pthread_setspecific with marker in TLS destructor to detect TLS is destroyed
​https://bugs.webkit.org/show_bug.cgi?id=233851

Reviewed by Mark Lam.

TLS has lifetime problem that,

1. TLS is destroyed
2. The other TLS is destroyed, and the destructor is called
3. The destructor touches (1)'s TLS, then revive TLS of (1) (e.g. libpas's thread local cache).

To handle these cases, pthread library (libc) repeatedly calls destructor PAS_THREAD_LOCAL_CACHE_DESTROYED times
so that we clean up revived TLS again.

By using this mechanism, we can emulate pthread_self_is_exiting_np so that we can avoid reviving TLS.

1. When destroying TLS, we set a marker (PAS_THREAD_LOCAL_CACHE_DESTROYED in this case) in TLS.
2. During the other destructor calls, we can detect that TLS is destroyed by checking pthread_getspecific(...) == PAS_THREAD_LOCAL_CACHE_DESTROYED.
3. We repeatedly calls the destructor of TLS, but every time, we set PAS_THREAD_LOCAL_CACHE_DESTROYED. So after PAS_THREAD_LOCAL_CACHE_DESTROYED times, it is left, and we achieve the goal (1) offering the way to detect the destroyed TLS and (2) avoiding reviving of TLS.

This patch implements it when pthread_self_is_exiting_np does not exist.

• libpas/src/libpas/pas_segregated_page_inlines.h:

(pas_segregated_page_switch_lock_with_mode):

• libpas/src/libpas/pas_thread_local_cache.c:

(destructor):
(pas_thread_local_cache_create):
(pas_thread_local_cache_destroy):
(pas_thread_local_cache_get_local_allocator_slow):
(pas_thread_local_cache_for_all):

• libpas/src/libpas/pas_thread_local_cache.h:

(pas_thread_local_cache_try_get_impl):
(pas_thread_local_cache_try_get):
(pas_thread_local_cache_can_set):
(pas_thread_local_cache_set_impl):
(pas_thread_local_cache_set):
(pas_thread_local_cache_is_guaranteed_to_destruct): Deleted.

• libpas/src/libpas/pas_try_reallocate.h:

(pas_try_reallocate):

• libpas/src/libpas/pas_utils.h:
• libpas/src/test/IsoHeapPageSharingTests.cpp:

(std::addAllTests):

• libpas/src/test/IsoHeapPartialAndBaselineTests.cpp:

(addIsoHeapPartialAndBaselineTests):

Location:

trunk/Source/bmalloc

Files:

• ChangeLog (modified) (1 diff)
• libpas/src/libpas/pas_segregated_page_inlines.h (modified) (1 diff)
• libpas/src/libpas/pas_thread_local_cache.c (modified) (7 diffs)
• libpas/src/libpas/pas_thread_local_cache.h (modified) (3 diffs)
• libpas/src/libpas/pas_try_reallocate.h (modified) (1 diff)
• libpas/src/libpas/pas_utils.h (modified) (2 diffs)
• libpas/src/test/IsoHeapPageSharingTests.cpp (modified) (2 diffs)
• libpas/src/test/IsoHeapPartialAndBaselineTests.cpp (modified) (1 diff)

trunk/Source/bmalloc/ChangeLog

@@ +1 @@
+2021-12-06  Yusuke Suzuki  <ysuzuki@apple.com>
+
+        [libpas] Set pthread_setspecific with marker in TLS destructor to detect TLS is destroyed
+        https://bugs.webkit.org/show_bug.cgi?id=233851
+
+        Reviewed by Mark Lam.
+
+        TLS has lifetime problem that,
+
+        1. TLS is destroyed
+        2. The other TLS is destroyed, and the destructor is called
+        3. The destructor touches (1)'s TLS, then revive TLS of (1) (e.g. libpas's thread local cache).
+
+        To handle these cases, pthread library (libc) repeatedly calls destructor PAS_THREAD_LOCAL_CACHE_DESTROYED times
+        so that we clean up revived TLS again.
+
+        By using this mechanism, we can emulate pthread_self_is_exiting_np so that we can avoid reviving TLS.
+
+        1. When destroying TLS, we set a marker (PAS_THREAD_LOCAL_CACHE_DESTROYED in this case) in TLS.
+        2. During the other destructor calls, we can detect that TLS is destroyed by checking pthread_getspecific(...) == PAS_THREAD_LOCAL_CACHE_DESTROYED.
+        3. We repeatedly calls the destructor of TLS, but every time, we set PAS_THREAD_LOCAL_CACHE_DESTROYED.
+           So after PAS_THREAD_LOCAL_CACHE_DESTROYED times, it is left, and we achieve the goal (1) offering the way to
+           detect the destroyed TLS and (2) avoiding reviving of TLS.
+
+        This patch implements it when pthread_self_is_exiting_np does not exist.
+
+        * libpas/src/libpas/pas_segregated_page_inlines.h:
+        (pas_segregated_page_switch_lock_with_mode):
+        * libpas/src/libpas/pas_thread_local_cache.c:
+        (destructor):
+        (pas_thread_local_cache_create):
+        (pas_thread_local_cache_destroy):
+        (pas_thread_local_cache_get_local_allocator_slow):
+        (pas_thread_local_cache_for_all):
+        * libpas/src/libpas/pas_thread_local_cache.h:
+        (pas_thread_local_cache_try_get_impl):
+        (pas_thread_local_cache_try_get):
+        (pas_thread_local_cache_can_set):
+        (pas_thread_local_cache_set_impl):
+        (pas_thread_local_cache_set):
+        (pas_thread_local_cache_is_guaranteed_to_destruct): Deleted.
+        * libpas/src/libpas/pas_try_reallocate.h:
+        (pas_try_reallocate):
+        * libpas/src/libpas/pas_utils.h:
+        * libpas/src/test/IsoHeapPageSharingTests.cpp:
+        (std::addAllTests):
+        * libpas/src/test/IsoHeapPartialAndBaselineTests.cpp:
+        (addIsoHeapPartialAndBaselineTests):
+
 2021-12-03  Filip Pizlo  <fpizlo@apple.com>
 

trunk/Source/bmalloc/libpas/src/libpas/pas_segregated_page_inlines.h

@@ -279 +279 @@
     } }
     PAS_ASSERT(!"Should not be reached");
+    return true;
 }
 

trunk/Source/bmalloc/libpas/src/libpas/pas_thread_local_cache.c

@@ -92 +92 @@
 static void destructor(void* arg)
 {
+    static const bool verbose = false;
+
     pas_thread_local_cache* thread_local_cache;
     
     thread_local_cache = (pas_thread_local_cache*)arg;
 
-    destroy(thread_local_cache, pas_lock_is_not_held);
+#ifndef PAS_THREAD_LOCAL_CACHE_CAN_DETECT_THREAD_EXIT
+    /* If pthread_self_is_exiting_np does not exist, we set PAS_THREAD_LOCAL_CACHE_DESTROYED in the TLS so that
+       subsequent calls of pas_thread_local_cache_try_get() can detect whether TLS is destroyed. Since
+       PAS_THREAD_LOCAL_CACHE_DESTROYED is a non-null value, pthread will call this destructor again (up to
+       PTHREAD_DESTRUCTOR_ITERATIONS times). Each time it does, it will clear the TLS entry. Hence, we need to re-set
+       PAS_THREAD_LOCAL_CACHE_DESTROYED in the TLS each time to continue to indicate that destroy() has already been called once. */
+    pas_thread_local_cache_set_impl((pas_thread_local_cache*)PAS_THREAD_LOCAL_CACHE_DESTROYED);
+    PAS_ASSERT(!pas_thread_local_cache_can_set());
+#endif
+
+    if (((uintptr_t)thread_local_cache) != PAS_THREAD_LOCAL_CACHE_DESTROYED)
+        destroy(thread_local_cache, pas_lock_is_not_held);
+    else {
+        if (verbose)
+            pas_log("[%d] Repeated destructor call for TLS %p\n", getpid(), thread_local_cache);
+    }
 }
 
@@ -175 +192 @@
         pas_thread_local_cache_layout_node_construct(layout_node, thread_local_cache);
 
-    pas_thread_local_cache_set_impl(thread_local_cache);
+    pas_thread_local_cache_set(thread_local_cache);
     
     return thread_local_cache;
@@ -195 +212 @@
     destroy(thread_local_cache, heap_lock_hold_mode);
 
-    pas_thread_local_cache_set_impl(NULL);
+    pas_thread_local_cache_set(NULL);
 }
 
@@ -313 +330 @@
 
     if (thread_local_cache != new_thread_local_cache)
-        pas_thread_local_cache_set_impl(new_thread_local_cache);
+        pas_thread_local_cache_set(new_thread_local_cache);
     
     PAS_ASSERT(desired_allocator_index < new_thread_local_cache->allocator_index_upper_bound);
@@ -567 +584 @@
 }
 
-#ifdef PAS_THREAD_LOCAL_CACHE_CAN_DETECT_THREAD_EXIT
+#if PAS_OS(DARWIN)
 
 static void suspend(pas_thread_local_cache* cache)
@@ -741 +758 @@
                 }
 
-#ifdef PAS_THREAD_LOCAL_CACHE_CAN_DETECT_THREAD_EXIT
-                if (!pas_thread_local_cache_is_guaranteed_to_destruct()) {
-                    /* We're on a platform that can't guarantee that thread local caches are destructed.
-                       Therefore, we might have a TLC that has a dangling thread pointer. So, we don't
-                       attempt to do the suspend thing. */
-                    continue;
-                }
-
+#if PAS_OS(DARWIN)
                 if (verbose)
                     pas_log("Need to suspend for allocator %p\n", scavenger_data);
@@ -770 +780 @@
             }
             
-#ifdef PAS_THREAD_LOCAL_CACHE_CAN_DETECT_THREAD_EXIT
+#if PAS_OS(DARWIN)
             if (did_suspend)
                 resume(cache);

trunk/Source/bmalloc/libpas/src/libpas/pas_thread_local_cache.h

@@ -45 +45 @@
 #endif
 
-PAS_BEGIN_EXTERN_C;
-
-struct pas_magazine;
-struct pas_thread_local_cache;
-struct pas_thread_local_cache_node;
-typedef struct pas_magazine pas_magazine;
-typedef struct pas_thread_local_cache pas_thread_local_cache;
-typedef struct pas_thread_local_cache_node pas_thread_local_cache_node;
-
-struct pas_thread_local_cache {
-    uintptr_t deallocation_log[PAS_DEALLOCATION_LOG_SIZE];
-
-    unsigned deallocation_log_index;
-
-    /* A dirty allocation log is one that has been flushed by the thread recently. A clean one is
-       one that hasn't been touched by the thread (except maybe by appending more things to it). */
-    bool deallocation_log_dirty;
-
-    size_t num_logged_bytes; /* This undercounts since when we append small objects we don't
-                                touch this. */
-
-    /* This part of the TLC is allocated separately so that it does not move. */
-    pas_thread_local_cache_node* node;
-
-    unsigned* should_stop_bitvector;
-    
-    pthread_t thread;
-    
-    bool should_stop_some;
-    
-    unsigned allocator_index_upper_bound;
-    unsigned allocator_index_capacity;
-    uint64_t local_allocators[1]; /* This is variable-length. */
-};
-
-PAS_API extern pas_fast_tls pas_thread_local_cache_fast_tls;
-
-#define PAS_THREAD_LOCAL_KEY __PTK_FRAMEWORK_JAVASCRIPTCORE_KEY4
-
-static inline pas_thread_local_cache* pas_thread_local_cache_try_get(void)
-{
-    return (pas_thread_local_cache*)PAS_FAST_TLS_GET(
-        PAS_THREAD_LOCAL_KEY, &pas_thread_local_cache_fast_tls);
-}
+#define PAS_THREAD_LOCAL_CACHE_DESTROYED 1
 
 #if PAS_HAVE_PTHREAD_PRIVATE
@@ -98 +55 @@
 #define PAS_THREAD_LOCAL_CACHE_CAN_DETECT_THREAD_EXIT 1
 #endif
-
-static inline bool pas_thread_local_cache_is_guaranteed_to_destruct(void)
-{
-#ifdef PAS_THREAD_LOCAL_CACHE_CAN_DETECT_THREAD_EXIT
-    return true;
-#else
-    return false;
-#endif
+#endif
+
+PAS_BEGIN_EXTERN_C;
+
+struct pas_magazine;
+struct pas_thread_local_cache;
+struct pas_thread_local_cache_node;
+typedef struct pas_magazine pas_magazine;
+typedef struct pas_thread_local_cache pas_thread_local_cache;
+typedef struct pas_thread_local_cache_node pas_thread_local_cache_node;
+
+struct pas_thread_local_cache {
+    uintptr_t deallocation_log[PAS_DEALLOCATION_LOG_SIZE];
+
+    unsigned deallocation_log_index;
+
+    /* A dirty allocation log is one that has been flushed by the thread recently. A clean one is
+       one that hasn't been touched by the thread (except maybe by appending more things to it). */
+    bool deallocation_log_dirty;
+
+    size_t num_logged_bytes; /* This undercounts since when we append small objects we don't
+                                touch this. */
+
+    /* This part of the TLC is allocated separately so that it does not move. */
+    pas_thread_local_cache_node* node;
+
+    unsigned* should_stop_bitvector;
+    
+    pthread_t thread;
+    
+    bool should_stop_some;
+    
+    unsigned allocator_index_upper_bound;
+    unsigned allocator_index_capacity;
+    uint64_t local_allocators[1]; /* This is variable-length. */
+};
+
+PAS_API extern pas_fast_tls pas_thread_local_cache_fast_tls;
+
+#define PAS_THREAD_LOCAL_KEY __PTK_FRAMEWORK_JAVASCRIPTCORE_KEY4
+
+static PAS_ALWAYS_INLINE pas_thread_local_cache* pas_thread_local_cache_try_get_impl(void)
+{
+    return (pas_thread_local_cache*)PAS_FAST_TLS_GET(PAS_THREAD_LOCAL_KEY, &pas_thread_local_cache_fast_tls);
+}
+
+static inline pas_thread_local_cache* pas_thread_local_cache_try_get(void)
+{
+    pas_thread_local_cache* cache = pas_thread_local_cache_try_get_impl();
+#ifndef PAS_THREAD_LOCAL_CACHE_CAN_DETECT_THREAD_EXIT
+    if (((uintptr_t)cache) == PAS_THREAD_LOCAL_CACHE_DESTROYED)
+        return NULL;
+#endif
+    return cache;
 }
 
@@ -113 +116 @@
     return !pthread_self_is_exiting_np();
 #else
-    return true;
-#endif
-}
-#else /* PAS_HAVE_PTHREAD_PRIVATE -> so !PAS_HAVE_PTHREAD_PRIVATE */
-static inline bool pas_thread_local_cache_is_guaranteed_to_destruct(void)
-{
-    return false;
-}
-
-static inline bool pas_thread_local_cache_can_set(void)
-{
-    return true;
-}
-#endif /* PAS_HAVE_PTHREAD_PRIVATE -> so end of !PAS_HAVE_PTHREAD_PRIVATE */
+    return ((uintptr_t)pas_thread_local_cache_try_get_impl()) != PAS_THREAD_LOCAL_CACHE_DESTROYED;
+#endif
+}
 
 static inline void pas_thread_local_cache_set_impl(pas_thread_local_cache* thread_local_cache)
 {
+    PAS_FAST_TLS_SET(PAS_THREAD_LOCAL_KEY, &pas_thread_local_cache_fast_tls, thread_local_cache);
+}
+
+static inline void pas_thread_local_cache_set(pas_thread_local_cache* thread_local_cache)
+{
     PAS_ASSERT(pas_thread_local_cache_can_set() || pas_thread_local_cache_try_get());
-    PAS_FAST_TLS_SET(PAS_THREAD_LOCAL_KEY, &pas_thread_local_cache_fast_tls, thread_local_cache);
+    pas_thread_local_cache_set_impl(thread_local_cache);
 }
 

trunk/Source/bmalloc/libpas/src/libpas/pas_try_reallocate.h

@@ -355 +355 @@
     
     PAS_ASSERT(!"Should never be reached");
+    return pas_allocation_result_create_failure();
 }
 

trunk/Source/bmalloc/libpas/src/libpas/pas_utils.h

@@ -109 +109 @@
 PAS_API PAS_NO_RETURN void pas_assertion_failed(const char* filename, int line, const char* function, const char* expression);
 
-#pragma clang diagnostic push
-#pragma clang diagnostic ignored "-Wmissing-noreturn"
+PAS_IGNORE_WARNINGS_BEGIN("missing-noreturn")
 static inline void pas_assertion_failed_noreturn_silencer(
     const char* filename, int line, const char* function, const char* expression)
@@ -116 +115 @@
     pas_assertion_failed(filename, line, function, expression);
 }
-#pragma clang diagnostic pop
+PAS_IGNORE_WARNINGS_END
 
 #define PAS_LIKELY(x) __PAS_LIKELY(x)

trunk/Source/bmalloc/libpas/src/test/IsoHeapPageSharingTests.cpp

@@ -4520 +4520 @@
         ADD_TEST(testScavengerEventuallyReturnsMemory(128, 10000));
         ADD_TEST(testScavengerEventuallyReturnsMemory(8, 10000));
-        if (pas_thread_local_cache_is_guaranteed_to_destruct()) {
-            ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(128, 1));
-            ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(128, 10000));
-            ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(8, 10000));
-        }
+        ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(128, 1));
+        ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(128, 10000));
+        ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(8, 10000));
         ADD_TEST(testScavengerShutsDownEventually(64, 10000, 1, 1));
     }
@@ -4531 +4529 @@
     ADD_TEST(testScavengerEventuallyReturnsMemory(128, 10000));
     ADD_TEST(testScavengerEventuallyReturnsMemory(8, 10000));
-    if (pas_thread_local_cache_is_guaranteed_to_destruct()) {
-        ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(128, 1));
-        ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(128, 10000));
-        ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(8, 10000));
-    }
+    ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(128, 1));
+    ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(128, 10000));
+    ADD_TEST(testScavengerEventuallyReturnsMemoryEvenWithoutManualShrink(8, 10000));
     ADD_TEST(testScavengerShutsDownEventually(64, 10000, 1, 1));
 }

trunk/Source/bmalloc/libpas/src/test/IsoHeapPartialAndBaselineTests.cpp

@@ -1083 +1083 @@
     
 #if PAS_ENABLE_ISO && PAS_ENABLE_ISO_TEST
-    if (pas_thread_local_cache_is_guaranteed_to_destruct()) {
+    {
         RunScavengerFully runScavengerFully;
         addScavengerDependentTests();