Changeset 166678 in webkit

Timestamp:

Apr 2, 2014 4:50:25 PM (10 years ago)

Author:

mhahnenberg@apple.com

Message:

CodeBlockSet should be generational
​https://bugs.webkit.org/show_bug.cgi?id=127152

Reviewed by Geoffrey Garen.

During EdenCollections we now only visit those CodeBlocks that:
a) Are new since the last collection if they were somehow otherwise reachable.
b) Are reachable from an Executable that is part of the remembered set.

• bytecode/CodeBlock.cpp:

(JSC::CodeBlock::CodeBlock): Initialize uninitialized variables.
(JSC::CodeBlock::visitAggregate): Move the addition of the weak reference harvester after the
shouldImmediatelyAssumeLivenessDuringScan check since it's redundant if we assume liveness.

• bytecode/CodeBlock.h:

(JSC::CodeBlock::forEachRelatedCodeBlock): Executes a functor for each CodeBlock reachable from the current CodeBlock (including this).
We use this to clear marks for the CodeBlocks of remembered Executables (see: CodeBlockSet::clearMarksForEdenCollection).
(JSC::CodeBlockSet::mark): Also check the set of new CodeBlocks for memebership when doing conservative scanning.
(JSC::ScriptExecutable::forEachCodeBlock): Executes a functor for each of this Executable's CodeBlocks.

• heap/CodeBlockSet.cpp:

(JSC::CodeBlockSet::~CodeBlockSet):
(JSC::CodeBlockSet::add):
(JSC::CodeBlockSet::promoteYoungCodeBlocks): Moves all CodeBlocks currently in the set of new CodeBlocks into
the set of old CodeBlocks.
(JSC::CodeBlockSet::clearMarksForFullCollection): Clears the marks for all CodeBlocks.
(JSC::CodeBlockSet::clearMarksForEdenCollection): Clears the marks for CodeBlocks owned by Executables in the
remembered set. When an Executable is added to the remembered set it's typically because we need to do something
with its CodeBlock.
(JSC::CodeBlockSet::clearMarks):
(JSC::CodeBlockSet::deleteUnmarkedAndUnreferenced): Fixpoints over either just the new CodeBlocks or all CodeBlocks
to determine which CodeBlocks are dead and eagerly finalizes/deletes them.
(JSC::CodeBlockSet::remove):
(JSC::CodeBlockSet::traceMarked): Iterate only the currently executing CodeBlocks instead of all CodeBlocks.
(JSC::CodeBlockSet::rememberCurrentlyExecutingCodeBlocks): Clear m_mayBeExecuting for all currently executing
CodeBlocks because we no longer always do this at the beginning of EdenCollections.

• heap/CodeBlockSet.h:

(JSC::CodeBlockSet::iterate):

• heap/Heap.cpp:

(JSC::Heap::markRoots):
(JSC::Heap::deleteAllCompiledCode):
(JSC::Heap::deleteUnmarkedCompiledCode):

• runtime/Executable.cpp:

(JSC::ScriptExecutable::installCode): Write barrier code on installation. We do this due to the following situation:
a) A CodeBlock is created and is compiled on a DFG worker thread.
b) No GC happens.
c) The CodeBlock has finished being compiled and is installed in the Executable.
d) The function never executes before the next GC.
e) The next GC needs needs to visit the new CodeBlock but the Executable won't be revisited unless

it's added to the remembered set.

Location:

trunk/Source/JavaScriptCore

Files:

• ChangeLog (modified) (1 diff)
• bytecode/CodeBlock.cpp (modified) (4 diffs)
• bytecode/CodeBlock.h (modified) (4 diffs)
• heap/CodeBlockSet.cpp (modified) (7 diffs)
• heap/CodeBlockSet.h (modified) (5 diffs)
• heap/Heap.cpp (modified) (6 diffs)
• heap/Heap.h (modified) (1 diff)
• runtime/Executable.cpp (modified) (1 diff)
• runtime/Executable.h (modified) (1 diff)

trunk/Source/JavaScriptCore/ChangeLog

@@ +1 @@
+2014-04-02  Mark Hahnenberg  <mhahnenberg@apple.com>
+
+        CodeBlockSet should be generational
+        https://bugs.webkit.org/show_bug.cgi?id=127152
+
+        Reviewed by Geoffrey Garen.
+
+        During EdenCollections we now only visit those CodeBlocks that:
+        a) Are new since the last collection if they were somehow otherwise reachable.
+        b) Are reachable from an Executable that is part of the remembered set.
+
+        * bytecode/CodeBlock.cpp:
+        (JSC::CodeBlock::CodeBlock): Initialize uninitialized variables.
+        (JSC::CodeBlock::visitAggregate): Move the addition of the weak reference harvester after the
+        shouldImmediatelyAssumeLivenessDuringScan check since it's redundant if we assume liveness.
+        * bytecode/CodeBlock.h:
+        (JSC::CodeBlock::forEachRelatedCodeBlock): Executes a functor for each CodeBlock reachable from the current CodeBlock (including this).
+        We use this to clear marks for the CodeBlocks of remembered Executables (see: CodeBlockSet::clearMarksForEdenCollection).
+        (JSC::CodeBlockSet::mark): Also check the set of new CodeBlocks for memebership when doing conservative scanning.
+        (JSC::ScriptExecutable::forEachCodeBlock): Executes a functor for each of this Executable's CodeBlocks.
+        * heap/CodeBlockSet.cpp:
+        (JSC::CodeBlockSet::~CodeBlockSet):
+        (JSC::CodeBlockSet::add):
+        (JSC::CodeBlockSet::promoteYoungCodeBlocks): Moves all CodeBlocks currently in the set of new CodeBlocks into 
+        the set of old CodeBlocks.
+        (JSC::CodeBlockSet::clearMarksForFullCollection): Clears the marks for all CodeBlocks.
+        (JSC::CodeBlockSet::clearMarksForEdenCollection): Clears the marks for CodeBlocks owned by Executables in the 
+        remembered set. When an Executable is added to the remembered set it's typically because we need to do something 
+        with its CodeBlock.
+        (JSC::CodeBlockSet::clearMarks):
+        (JSC::CodeBlockSet::deleteUnmarkedAndUnreferenced): Fixpoints over either just the new CodeBlocks or all CodeBlocks
+        to determine which CodeBlocks are dead and eagerly finalizes/deletes them.
+        (JSC::CodeBlockSet::remove):
+        (JSC::CodeBlockSet::traceMarked): Iterate only the currently executing CodeBlocks instead of all CodeBlocks.
+        (JSC::CodeBlockSet::rememberCurrentlyExecutingCodeBlocks): Clear m_mayBeExecuting for all currently executing 
+        CodeBlocks because we no longer always do this at the beginning of EdenCollections.
+        * heap/CodeBlockSet.h:
+        (JSC::CodeBlockSet::iterate):
+        * heap/Heap.cpp:
+        (JSC::Heap::markRoots):
+        (JSC::Heap::deleteAllCompiledCode):
+        (JSC::Heap::deleteUnmarkedCompiledCode):
+        * runtime/Executable.cpp:
+        (JSC::ScriptExecutable::installCode): Write barrier code on installation. We do this due to the following situation:
+        a) A CodeBlock is created and is compiled on a DFG worker thread.
+        b) No GC happens.
+        c) The CodeBlock has finished being compiled and is installed in the Executable.
+        d) The function never executes before the next GC.
+        e) The next GC needs needs to visit the new CodeBlock but the Executable won't be revisited unless 
+            it's added to the remembered set.
+
 2014-04-02  Mark Lam  <mark.lam@apple.com>
 

trunk/Source/JavaScriptCore/bytecode/CodeBlock.cpp

@@ -1447 +1447 @@
     , m_isStrictMode(other.m_isStrictMode)
     , m_needsActivation(other.m_needsActivation)
+    , m_mayBeExecuting(false)
+    , m_visitAggregateHasBeenCalled(false)
     , m_source(other.m_source)
     , m_sourceOffset(other.m_sourceOffset)
@@ -1504 +1506 @@
     , m_isStrictMode(unlinkedCodeBlock->isStrictMode())
     , m_needsActivation(unlinkedCodeBlock->hasActivationRegister() && unlinkedCodeBlock->codeType() == FunctionCode)
+    , m_mayBeExecuting(false)
+    , m_visitAggregateHasBeenCalled(false)
     , m_source(sourceProvider)
     , m_sourceOffset(sourceOffset)
@@ -1938 +1942 @@
     visitor.addUnconditionalFinalizer(this);
     
-    // There are two things that we use weak reference harvesters for: DFG fixpoint for
-    // jettisoning, and trying to find structures that would be live based on some
-    // inline cache. So it makes sense to register them regardless.
-    visitor.addWeakReferenceHarvester(this);
     m_allTransitionsHaveBeenMarked = false;
     
@@ -1952 +1952 @@
     }
     
+    // There are two things that we use weak reference harvesters for: DFG fixpoint for
+    // jettisoning, and trying to find structures that would be live based on some
+    // inline cache. So it makes sense to register them regardless.
+    visitor.addWeakReferenceHarvester(this);
+
 #if ENABLE(DFG_JIT)
     // We get here if we're live in the sense that our owner executable is live,

trunk/Source/JavaScriptCore/bytecode/CodeBlock.h

@@ -133 +133 @@
     PassRefPtr<CodeBlock> releaseAlternative() { return m_alternative.release(); }
     void setAlternative(PassRefPtr<CodeBlock> alternative) { m_alternative = alternative; }
+
+    template <typename Functor> void forEachRelatedCodeBlock(Functor&& functor)
+    {
+        Functor f(std::forward<Functor>(functor));
+        Vector<CodeBlock*, 4> codeBlocks;
+        codeBlocks.append(this);
+
+        while (!codeBlocks.isEmpty()) {
+            CodeBlock* currentCodeBlock = codeBlocks.takeLast();
+            f(currentCodeBlock);
+
+            if (CodeBlock* alternative = currentCodeBlock->alternative())
+                codeBlocks.append(alternative);
+            if (CodeBlock* osrEntryBlock = currentCodeBlock->specialOSREntryBlockOrNull())
+                codeBlocks.append(osrEntryBlock);
+        }
+    }
     
     CodeSpecializationKind specializationKind() const
@@ -1276 +1293 @@
     if (value + 1 <= 1)
         return;
-    
-    HashSet<CodeBlock*>::iterator iter = m_set.find(static_cast<CodeBlock*>(candidateCodeBlock));
-    if (iter == m_set.end())
+
+    CodeBlock* codeBlock = static_cast<CodeBlock*>(candidateCodeBlock); 
+    if (!m_oldCodeBlocks.contains(codeBlock) && !m_newCodeBlocks.contains(codeBlock))
         return;
-    
-    mark(*iter);
+
+    mark(codeBlock);
 }
 
@@ -1293 +1310 @@
     
     codeBlock->m_mayBeExecuting = true;
+    // We might not have cleared the marks for this CodeBlock, but we need to visit it.
+    codeBlock->m_visitAggregateHasBeenCalled = false;
 #if ENABLE(GGC)
     m_currentlyExecuting.append(codeBlock);
@@ -1298 +1317 @@
 }
 
+template <typename Functor> inline void ScriptExecutable::forEachCodeBlock(Functor&& functor)
+{
+    switch (type()) {
+    case ProgramExecutableType: {
+        jsCast<ProgramExecutable*>(this)->m_programCodeBlock->forEachRelatedCodeBlock(std::forward<Functor>(functor));
+        break;
+    }
+        
+    case EvalExecutableType: {
+        jsCast<EvalExecutable*>(this)->m_evalCodeBlock->forEachRelatedCodeBlock(std::forward<Functor>(functor));
+        break;
+    }
+        
+    case FunctionExecutableType: {
+        Functor f(std::forward<Functor>(functor));
+        FunctionExecutable* executable = jsCast<FunctionExecutable*>(this);
+        if (CodeBlock* codeBlock = executable->m_codeBlockForCall.get())
+            codeBlock->forEachRelatedCodeBlock(f);
+        if (CodeBlock* codeBlock = executable->m_codeBlockForConstruct.get())
+            codeBlock->forEachRelatedCodeBlock(f);
+        break;
+    }
+    default:
+        RELEASE_ASSERT_NOT_REACHED();
+    }
+}
+
 } // namespace JSC
 

trunk/Source/JavaScriptCore/heap/CodeBlockSet.cpp

@@ -42 +42 @@
 CodeBlockSet::~CodeBlockSet()
 {
-    for (CodeBlock* codeBlock : m_set)
+    for (CodeBlock* codeBlock : m_oldCodeBlocks)
+        codeBlock->deref();
+
+    for (CodeBlock* codeBlock : m_newCodeBlocks)
         codeBlock->deref();
 }
@@ -49 +52 @@
 {
     CodeBlock* block = codeBlock.leakRef();
-    bool isNewEntry = m_set.add(block).isNewEntry;
+    bool isNewEntry = m_newCodeBlocks.add(block).isNewEntry;
     ASSERT_UNUSED(isNewEntry, isNewEntry);
 }
 
-void CodeBlockSet::clearMarks()
+void CodeBlockSet::promoteYoungCodeBlocks()
 {
-    for (CodeBlock* codeBlock : m_set) {
+    m_oldCodeBlocks.add(m_newCodeBlocks.begin(), m_newCodeBlocks.end());
+    m_newCodeBlocks.clear();
+}
+
+void CodeBlockSet::clearMarksForFullCollection()
+{
+    for (CodeBlock* codeBlock : m_oldCodeBlocks) {
         codeBlock->m_mayBeExecuting = false;
         codeBlock->m_visitAggregateHasBeenCalled = false;
     }
+
+    // We promote after we clear marks on the old generation CodeBlocks because
+    // none of the young generations CodeBlocks need to be cleared.
+    promoteYoungCodeBlocks();
 }
 
-void CodeBlockSet::deleteUnmarkedAndUnreferenced()
+void CodeBlockSet::clearMarksForEdenCollection(const Vector<const JSCell*>& rememberedSet)
 {
+    // This ensures that we will revisit CodeBlocks in remembered Executables even if they were previously marked.
+    for (const JSCell* cell : rememberedSet) {
+        ScriptExecutable* executable = const_cast<ScriptExecutable*>(jsDynamicCast<const ScriptExecutable*>(cell));
+        if (!executable)
+            continue;
+        executable->forEachCodeBlock([](CodeBlock* codeBlock) {
+            codeBlock->m_mayBeExecuting = false;
+            codeBlock->m_visitAggregateHasBeenCalled = false;
+        });
+    }
+}
+
+void CodeBlockSet::deleteUnmarkedAndUnreferenced(HeapOperation collectionType)
+{
+    HashSet<CodeBlock*>& set = collectionType == EdenCollection ? m_newCodeBlocks : m_oldCodeBlocks;
+
     // This needs to be a fixpoint because code blocks that are unmarked may
     // refer to each other. For example, a DFG code block that is owned by
@@ -69 +98 @@
     Vector<CodeBlock*, 16> toRemove;
     if (verbose)
-        dataLog("Fixpointing over unmarked, set size = ", m_set.size(), "...\n");
+        dataLog("Fixpointing over unmarked, set size = ", set.size(), "...\n");
     for (;;) {
-        for (CodeBlock* codeBlock : m_set) {
+        for (CodeBlock* codeBlock : set) {
             if (!codeBlock->hasOneRef())
                 continue;
@@ -84 +113 @@
             break;
         for (CodeBlock* codeBlock : toRemove)
-            m_set.remove(codeBlock);
+            set.remove(codeBlock);
         toRemove.resize(0);
     }
+
+    // Any remaining young CodeBlocks are live and need to be promoted to the set of old CodeBlocks.
+    if (collectionType == EdenCollection)
+        promoteYoungCodeBlocks();
 }
 
@@ -92 +125 @@
 {
     codeBlock->deref();
-    m_set.remove(codeBlock);
+    if (m_oldCodeBlocks.contains(codeBlock)) {
+        m_oldCodeBlocks.remove(codeBlock);
+        return;
+    }
+    ASSERT(m_newCodeBlocks.contains(codeBlock));
+    m_newCodeBlocks.remove(codeBlock);
 }
 
@@ -98 +136 @@
 {
     if (verbose)
-        dataLog("Tracing ", m_set.size(), " code blocks.\n");
-    for (CodeBlock* codeBlock : m_set) {
-        if (!codeBlock->m_mayBeExecuting)
-            continue;
+        dataLog("Tracing ", m_currentlyExecuting.size(), " code blocks.\n");
+    for (CodeBlock* codeBlock : m_currentlyExecuting) {
+        ASSERT(codeBlock->m_mayBeExecuting);
         codeBlock->visitAggregate(visitor);
     }
@@ -109 +146 @@
 {
 #if ENABLE(GGC)
-    for (CodeBlock* codeBlock : m_currentlyExecuting)
+    for (CodeBlock* codeBlock : m_currentlyExecuting) {
         heap->addToRememberedSet(codeBlock->ownerExecutable());
+        ASSERT(codeBlock->m_mayBeExecuting);
+    }
     m_currentlyExecuting.clear();
 #else

trunk/Source/JavaScriptCore/heap/CodeBlockSet.h

@@ -28 +28 @@
 
 #include "GCSegmentedArray.h"
+#include "HeapOperation.h"
 #include <wtf/HashSet.h>
 #include <wtf/Noncopyable.h>
@@ -38 +39 @@
 class CodeBlock;
 class Heap;
+class JSCell;
 class SlotVisitor;
 
@@ -54 +56 @@
     void add(PassRefPtr<CodeBlock>);
     
-    // Clear all mark bits associated with DFG code blocks.
-    void clearMarks();
-    
+    // Clear mark bits for certain CodeBlocks depending on the type of collection.
+    void clearMarksForEdenCollection(const Vector<const JSCell*>&);
+
+    // Clear all mark bits for all CodeBlocks.
+    void clearMarksForFullCollection();
+
     // Mark a pointer that may be a CodeBlock that belongs to the set of DFG
     // blocks. This is defined in CodeBlock.h.
@@ -64 +69 @@
     // Delete all code blocks that are only referenced by this set (i.e. owned
     // by this set), and that have not been marked.
-    void deleteUnmarkedAndUnreferenced();
+    void deleteUnmarkedAndUnreferenced(HeapOperation);
     
     void remove(CodeBlock*);
@@ -81 +86 @@
     template<typename Functor> void iterate(Functor& functor)
     {
-        for (auto& codeBlock : m_set) {
+        for (auto& codeBlock : m_oldCodeBlocks) {
             bool done = functor(codeBlock);
             if (done)
-                break;
+                return;
+        }
+
+        for (auto& codeBlock : m_newCodeBlocks) {
+            bool done = functor(codeBlock);
+            if (done)
+                return;
         }
     }
 
 private:
+    void clearMarksForCodeBlocksInRememberedExecutables(const Vector<const JSCell*>&);
+    void promoteYoungCodeBlocks();
+
     // This is not a set of RefPtr<CodeBlock> because we need to be able to find
     // arbitrary bogus pointers. I could have written a thingy that had peek types
     // and all, but that seemed like overkill.
-    HashSet<CodeBlock* > m_set;
+    HashSet<CodeBlock*> m_oldCodeBlocks;
+    HashSet<CodeBlock*> m_newCodeBlocks;
     GCSegmentedArray<CodeBlock*> m_currentlyExecuting;
 };

trunk/Source/JavaScriptCore/heap/Heap.cpp

@@ -486 +486 @@
 #endif
 
-    m_codeBlocks.clearMarks();
+#if ENABLE(GGC)
+    Vector<const JSCell*> rememberedSet(m_slotVisitor.markStack().size());
+    m_slotVisitor.markStack().fillVector(rememberedSet);
+#else
+    Vector<const JSCell*> rememberedSet;
+#endif
+
+    if (m_operationInProgress == EdenCollection)
+        m_codeBlocks.clearMarksForEdenCollection(rememberedSet);
+    else
+        m_codeBlocks.clearMarksForFullCollection();
 
     // We gather conservative roots before clearing mark bits because conservative
@@ -503 +513 @@
     m_slotVisitor.didStartMarking();
     HeapRootVisitor heapRootVisitor(m_slotVisitor);
-
-#if ENABLE(GGC)
-    Vector<const JSCell*> rememberedSet(m_slotVisitor.markStack().size());
-    m_slotVisitor.markStack().fillVector(rememberedSet);
-#else
-    Vector<const JSCell*> rememberedSet;
-#endif
 
     {
@@ -853 +856 @@
     }
 
-    m_codeBlocks.clearMarks();
-    m_codeBlocks.deleteUnmarkedAndUnreferenced();
+    ASSERT(m_operationInProgress == FullCollection);
+    m_codeBlocks.clearMarksForFullCollection();
+    m_codeBlocks.deleteUnmarkedAndUnreferenced(FullCollection);
 }
 
@@ -866 +870 @@
 }
 
-void Heap::deleteUnmarkedCompiledCode()
-{
-    GCPHASE(DeleteCodeBlocks);
+void Heap::clearUnmarkedExecutables()
+{
+    GCPHASE(ClearUnmarkedExecutables);
     ExecutableBase* next;
     for (ExecutableBase* current = m_compiledCode.head(); current; current = next) {
@@ -880 +884 @@
         m_compiledCode.remove(current);
     }
-
-    m_codeBlocks.deleteUnmarkedAndUnreferenced();
+}
+
+void Heap::deleteUnmarkedCompiledCode()
+{
+    GCPHASE(DeleteCodeBlocks);
+    clearUnmarkedExecutables();
+    m_codeBlocks.deleteUnmarkedAndUnreferenced(m_operationInProgress);
     m_jitStubRoutines.deleteUnmarkedJettisonedStubRoutines();
 }
@@ -1012 +1021 @@
 void Heap::deleteOldCode(double gcStartTime)
 {
+    if (m_operationInProgress == EdenCollection)
+        return;
+
     GCPHASE(DeleteOldCode);
     if (gcStartTime - m_lastCodeDiscardTime > minute) {

trunk/Source/JavaScriptCore/heap/Heap.h

@@ -293 +293 @@
     void harvestWeakReferences();
     void finalizeUnconditionalFinalizers();
+    void clearUnmarkedExecutables();
     void deleteUnmarkedCompiledCode();
     void updateAllocationLimits();

trunk/Source/JavaScriptCore/runtime/Executable.cpp

@@ -179 +179 @@
     if (debugger)
         debugger->registerCodeBlock(genericCodeBlock);
+
+    Heap::heap(this)->writeBarrier(this);
 }
 

trunk/Source/JavaScriptCore/runtime/Executable.h

@@ -430 +430 @@
     }
 
+    template <typename Functor> void forEachCodeBlock(Functor&&);
+
 private:
     JSObject* prepareForExecutionImpl(ExecState*, JSFunction*, JSScope**, CodeSpecializationKind);