Changeset 241789 in webkit

Timestamp:

Feb 19, 2019 5:51:50 PM (5 years ago)

Author:

ysuzuki@apple.com

Message:

[bmalloc] bmalloc::Cache should not be instantiated if we are using system malloc
​https://bugs.webkit.org/show_bug.cgi?id=194811

Reviewed by Mark Lam.

bmalloc::Cache is very large. It is 13KB. Since it exists per HeapKind, it takes 40KB.
But this is meaningless if we are under the system malloc mode by using "Malloc=1". We
found that it continues using so much dirty memory region even under the system malloc mode.
This patch avoids instantiation of bmalloc::Cache under the system malloc mode.

• bmalloc/Allocator.cpp:

(bmalloc::Allocator::Allocator):
(bmalloc::Allocator::tryAllocate):
(bmalloc::Allocator::allocateImpl):
(bmalloc::Allocator::reallocateImpl):
(bmalloc::Allocator::allocateSlowCase):
Allocator is a per Cache object. So we no longer need to keep m_debugHeap. If debug heap is enabled,
Allocator is never created.

• bmalloc/Allocator.h:
• bmalloc/Cache.cpp:

(bmalloc::debugHeap):
(bmalloc::Cache::Cache):
(bmalloc::Cache::tryAllocateSlowCaseNullCache):
(bmalloc::Cache::allocateSlowCaseNullCache):
(bmalloc::Cache::deallocateSlowCaseNullCache):
(bmalloc::Cache::tryReallocateSlowCaseNullCache):
(bmalloc::Cache::reallocateSlowCaseNullCache):

• bmalloc/Cache.h:

(bmalloc::Cache::tryAllocate):
(bmalloc::Cache::tryReallocate):
If the debug heap mode is enabled, we keep Cache::getFast() returning nullptr. And in the slow path case, we use debugHeap.
This makes bmalloc fast path fast, while we avoid Cache instantiation.

• bmalloc/Deallocator.cpp:

(bmalloc::Deallocator::Deallocator):
(bmalloc::Deallocator::scavenge):
(bmalloc::Deallocator::deallocateSlowCase):

• bmalloc/Deallocator.h:

Ditto for Deallocator.

Location:

trunk/Source/bmalloc

Files:

• ChangeLog (modified) (1 diff)
• bmalloc/Allocator.cpp (modified) (6 diffs)
• bmalloc/Allocator.h (modified) (2 diffs)
• bmalloc/Cache.cpp (modified) (4 diffs)
• bmalloc/Cache.h (modified) (3 diffs)
• bmalloc/Deallocator.cpp (modified) (4 diffs)
• bmalloc/Deallocator.h (modified) (2 diffs)

trunk/Source/bmalloc/ChangeLog

@@ +1 @@
+2019-02-19  Yusuke Suzuki  <ysuzuki@apple.com>
+
+        [bmalloc] bmalloc::Cache should not be instantiated if we are using system malloc
+        https://bugs.webkit.org/show_bug.cgi?id=194811
+
+        Reviewed by Mark Lam.
+
+        bmalloc::Cache is very large. It is 13KB. Since it exists per HeapKind, it takes 40KB.
+        But this is meaningless if we are under the system malloc mode by using "Malloc=1". We
+        found that it continues using so much dirty memory region even under the system malloc mode.
+        This patch avoids instantiation of bmalloc::Cache under the system malloc mode.
+
+        * bmalloc/Allocator.cpp:
+        (bmalloc::Allocator::Allocator):
+        (bmalloc::Allocator::tryAllocate):
+        (bmalloc::Allocator::allocateImpl):
+        (bmalloc::Allocator::reallocateImpl):
+        (bmalloc::Allocator::allocateSlowCase):
+        Allocator is a per Cache object. So we no longer need to keep m_debugHeap. If debug heap is enabled,
+        Allocator is never created.
+
+        * bmalloc/Allocator.h:
+        * bmalloc/Cache.cpp:
+        (bmalloc::debugHeap):
+        (bmalloc::Cache::Cache):
+        (bmalloc::Cache::tryAllocateSlowCaseNullCache):
+        (bmalloc::Cache::allocateSlowCaseNullCache):
+        (bmalloc::Cache::deallocateSlowCaseNullCache):
+        (bmalloc::Cache::tryReallocateSlowCaseNullCache):
+        (bmalloc::Cache::reallocateSlowCaseNullCache):
+        * bmalloc/Cache.h:
+        (bmalloc::Cache::tryAllocate):
+        (bmalloc::Cache::tryReallocate):
+        If the debug heap mode is enabled, we keep Cache::getFast() returning nullptr. And in the slow path case, we use debugHeap.
+        This makes bmalloc fast path fast, while we avoid Cache instantiation.
+
+        * bmalloc/Deallocator.cpp:
+        (bmalloc::Deallocator::Deallocator):
+        (bmalloc::Deallocator::scavenge):
+        (bmalloc::Deallocator::deallocateSlowCase):
+        * bmalloc/Deallocator.h:
+        Ditto for Deallocator.
+
 2019-02-15  Yusuke Suzuki  <ysuzuki@apple.com>
 

trunk/Source/bmalloc/bmalloc/Allocator.cpp

@@ -28 +28 @@
 #include "Chunk.h"
 #include "Deallocator.h"
-#include "DebugHeap.h"
+#include "Environment.h"
 #include "Heap.h"
 #include "PerProcess.h"
@@ -39 +39 @@
 Allocator::Allocator(Heap& heap, Deallocator& deallocator)
     : m_heap(heap)
-    , m_debugHeap(heap.debugHeap())
     , m_deallocator(deallocator)
 {
+    BASSERT(!PerProcess<Environment>::get()->isDebugHeapEnabled());
     for (size_t sizeClass = 0; sizeClass < sizeClassCount; ++sizeClass)
         m_bumpAllocators[sizeClass].init(objectSize(sizeClass));
@@ -53 +53 @@
 void* Allocator::tryAllocate(size_t size)
 {
-    if (m_debugHeap)
-        return m_debugHeap->malloc(size);
-
     if (size <= smallMax)
         return allocate(size);
@@ -78 +75 @@
 {
     BASSERT(isPowerOfTwo(alignment));
-
-    if (m_debugHeap)
-        return m_debugHeap->memalign(alignment, size, crashOnFailure);
 
     if (!size)
@@ -108 +102 @@
 void* Allocator::reallocateImpl(void* object, size_t newSize, bool crashOnFailure)
 {
-    if (m_debugHeap)
-        return m_debugHeap->realloc(object, newSize, crashOnFailure);
-
     size_t oldSize = 0;
     switch (objectType(m_heap.kind(), object)) {
@@ -201 +192 @@
 void* Allocator::allocateSlowCase(size_t size)
 {
-    if (m_debugHeap)
-        return m_debugHeap->malloc(size);
-
     if (size <= maskSizeClassMax) {
         size_t sizeClass = bmalloc::maskSizeClass(size);

trunk/Source/bmalloc/bmalloc/Allocator.h

@@ -34 +34 @@
 
 class Deallocator;
-class DebugHeap;
 class Heap;
 
@@ -70 +69 @@
 
     Heap& m_heap;
-    DebugHeap* m_debugHeap;
     Deallocator& m_deallocator;
 };

trunk/Source/bmalloc/bmalloc/Cache.cpp

@@ -26 +26 @@
 #include "BInline.h"
 #include "Cache.h"
+#include "DebugHeap.h"
+#include "Environment.h"
 #include "Heap.h"
 #include "PerProcess.h"
 
 namespace bmalloc {
+
+static DebugHeap* debugHeapCache { nullptr };
 
 void Cache::scavenge(HeapKind heapKind)
@@ -43 +47 @@
 }
 
+static BINLINE DebugHeap* debugHeap()
+{
+    if (debugHeapCache)
+        return debugHeapCache;
+    if (PerProcess<Environment>::get()->isDebugHeapEnabled()) {
+        debugHeapCache = PerProcess<DebugHeap>::get();
+        return debugHeapCache;
+    }
+    return nullptr;
+}
+
 Cache::Cache(HeapKind heapKind)
     : m_deallocator(PerProcess<PerHeapKind<Heap>>::get()->at(heapKind))
     , m_allocator(PerProcess<PerHeapKind<Heap>>::get()->at(heapKind), m_deallocator)
 {
+    BASSERT(!PerProcess<Environment>::get()->isDebugHeapEnabled());
 }
 
 BNO_INLINE void* Cache::tryAllocateSlowCaseNullCache(HeapKind heapKind, size_t size)
 {
+    // FIXME: DebugHeap does not have tryAllocate feature.
+    // https://bugs.webkit.org/show_bug.cgi?id=194837
+    if (auto* heap = debugHeap())
+        return heap->malloc(size);
     return PerThread<PerHeapKind<Cache>>::getSlowCase()->at(mapToActiveHeapKind(heapKind)).allocator().tryAllocate(size);
 }
@@ -56 +76 @@
 BNO_INLINE void* Cache::allocateSlowCaseNullCache(HeapKind heapKind, size_t size)
 {
+    if (auto* heap = debugHeap())
+        return heap->malloc(size);
     return PerThread<PerHeapKind<Cache>>::getSlowCase()->at(mapToActiveHeapKind(heapKind)).allocator().allocate(size);
+}
+
+BNO_INLINE void* Cache::tryAllocateSlowCaseNullCache(HeapKind heapKind, size_t alignment, size_t size)
+{
+    if (auto* heap = debugHeap()) {
+        constexpr bool crashOnFailure = false;
+        return heap->memalign(alignment, size, crashOnFailure);
+    }
+    return PerThread<PerHeapKind<Cache>>::getSlowCase()->at(mapToActiveHeapKind(heapKind)).allocator().tryAllocate(alignment, size);
 }
 
 BNO_INLINE void* Cache::allocateSlowCaseNullCache(HeapKind heapKind, size_t alignment, size_t size)
 {
+    if (auto* heap = debugHeap()) {
+        constexpr bool crashOnFailure = true;
+        return heap->memalign(alignment, size, crashOnFailure);
+    }
     return PerThread<PerHeapKind<Cache>>::getSlowCase()->at(mapToActiveHeapKind(heapKind)).allocator().allocate(alignment, size);
 }
@@ -66 +101 @@
 BNO_INLINE void Cache::deallocateSlowCaseNullCache(HeapKind heapKind, void* object)
 {
+    if (auto* heap = debugHeap()) {
+        heap->free(object);
+        return;
+    }
     PerThread<PerHeapKind<Cache>>::getSlowCase()->at(mapToActiveHeapKind(heapKind)).deallocator().deallocate(object);
+}
+
+BNO_INLINE void* Cache::tryReallocateSlowCaseNullCache(HeapKind heapKind, void* object, size_t newSize)
+{
+    if (auto* heap = debugHeap()) {
+        constexpr bool crashOnFailure = false;
+        return heap->realloc(object, newSize, crashOnFailure);
+    }
+    return PerThread<PerHeapKind<Cache>>::getSlowCase()->at(mapToActiveHeapKind(heapKind)).allocator().tryReallocate(object, newSize);
 }
 
 BNO_INLINE void* Cache::reallocateSlowCaseNullCache(HeapKind heapKind, void* object, size_t newSize)
 {
+    if (auto* heap = debugHeap()) {
+        constexpr bool crashOnFailure = true;
+        return heap->realloc(object, newSize, crashOnFailure);
+    }
     return PerThread<PerHeapKind<Cache>>::getSlowCase()->at(mapToActiveHeapKind(heapKind)).allocator().reallocate(object, newSize);
 }

trunk/Source/bmalloc/bmalloc/Cache.h

@@ -57 +57 @@
     BEXPORT static void* tryAllocateSlowCaseNullCache(HeapKind, size_t);
     BEXPORT static void* allocateSlowCaseNullCache(HeapKind, size_t);
+    BEXPORT static void* tryAllocateSlowCaseNullCache(HeapKind, size_t alignment, size_t);
     BEXPORT static void* allocateSlowCaseNullCache(HeapKind, size_t alignment, size_t);
     BEXPORT static void deallocateSlowCaseNullCache(HeapKind, void*);
+    BEXPORT static void* tryReallocateSlowCaseNullCache(HeapKind, void*, size_t);
     BEXPORT static void* reallocateSlowCaseNullCache(HeapKind, void*, size_t);
 
@@ -85 +87 @@
     PerHeapKind<Cache>* caches = PerThread<PerHeapKind<Cache>>::getFastCase();
     if (!caches)
-        return allocateSlowCaseNullCache(heapKind, alignment, size);
+        return tryAllocateSlowCaseNullCache(heapKind, alignment, size);
     return caches->at(mapToActiveHeapKindAfterEnsuringGigacage(heapKind)).allocator().tryAllocate(alignment, size);
 }
@@ -109 +111 @@
     PerHeapKind<Cache>* caches = PerThread<PerHeapKind<Cache>>::getFastCase();
     if (!caches)
-        return reallocateSlowCaseNullCache(heapKind, object, newSize);
+        return tryReallocateSlowCaseNullCache(heapKind, object, newSize);
     return caches->at(mapToActiveHeapKindAfterEnsuringGigacage(heapKind)).allocator().tryReallocate(object, newSize);
 }

trunk/Source/bmalloc/bmalloc/Deallocator.cpp

@@ -28 +28 @@
 #include "Chunk.h"
 #include "Deallocator.h"
-#include "DebugHeap.h"
+#include "Environment.h"
 #include "Heap.h"
 #include "Object.h"
@@ -40 +40 @@
 Deallocator::Deallocator(Heap& heap)
     : m_heap(heap)
-    , m_debugHeap(heap.debugHeap())
 {
-    if (m_debugHeap) {
-        // Fill the object log in order to disable the fast path.
-        while (m_objectLog.size() != m_objectLog.capacity())
-            m_objectLog.push(nullptr);
-    }
+    BASSERT(!PerProcess<Environment>::get()->isDebugHeapEnabled());
 }
 
@@ -56 +51 @@
 void Deallocator::scavenge()
 {
-    if (m_debugHeap)
-        return;
-
     std::unique_lock<Mutex> lock(Heap::mutex());
 
@@ -74 +66 @@
 void Deallocator::deallocateSlowCase(void* object)
 {
-    if (m_debugHeap)
-        return m_debugHeap->free(object);
-
     if (!object)
         return;

trunk/Source/bmalloc/bmalloc/Deallocator.h

@@ -34 +34 @@
 namespace bmalloc {
 
-class DebugHeap;
 class Heap;
 class Mutex;
@@ -59 +58 @@
     FixedVector<void*, deallocatorLogCapacity> m_objectLog;
     LineCache m_lineCache; // The Heap removes items from this cache.
-    DebugHeap* m_debugHeap;
 };