Chromium Code Reviews Chromium Code Reviews
Issue 371623002:
[oilpan]: Make thread shutdown more robust. (Closed)
Base URL: svn://svn.chromium.org/blink/trunk| Index: Source/platform/heap/ThreadState.cpp |
| diff --git a/Source/platform/heap/ThreadState.cpp b/Source/platform/heap/ThreadState.cpp |
| index d01bf7f952045abb82e6c7b8c5d1f00bac77e1d9..149e604687c6761306cdff5acfedb2ee237e3424 100644 |
| --- a/Source/platform/heap/ThreadState.cpp |
| +++ b/Source/platform/heap/ThreadState.cpp |
| @@ -103,6 +103,19 @@ static Mutex& threadAttachMutex() |
| return mutex; |
| } |
| +// The threadShutdownMutex is used to synchronize thread shutdown |
| +// since the thread local GC, as of now, cannot run in parallel |
| +// with other thread local GCs since it is using the global marking |
| +// stack. It can also not run in parallel with a global GC, but |
| +// that is honored by not entering a safepoint while doing the |
| +// thread local GC, meaning a request for a global GC would time |
| +// out. |
| +static Mutex& threadShutdownMutex() |
| +{ |
| + AtomicallyInitializedStatic(Mutex&, mutex = *new Mutex); |
| + return mutex; |
| +} |
| + |
| static double lockingTimeout() |
| { |
| // Wait time for parking all threads is at most 100 MS. |
| @@ -261,6 +274,17 @@ private: |
| ThreadCondition m_resume; |
| }; |
| + |
| +BaseHeapPage::BaseHeapPage(PageMemory* storage, const GCInfo* gcInfo, ThreadState* state) |
| + : m_storage(storage) |
| + , m_gcInfo(gcInfo) |
| + , m_threadState(state) |
| + , m_terminating(false) |
| + , m_tracedAfterOrphaned(false) |
| +{ |
| + ASSERT(isPageHeaderAddress(reinterpret_cast<Address>(this))); |
| +} |
| + |
| ThreadState::ThreadState() |
| : m_thread(currentThread()) |
| , m_persistents(adoptPtr(new PersistentAnchor())) |
| @@ -276,7 +300,7 @@ ThreadState::ThreadState() |
| , m_noAllocationCount(0) |
| , m_inGC(false) |
| , m_heapContainsCache(adoptPtr(new HeapContainsCache())) |
| - , m_isCleaningUp(false) |
| + , m_isTerminating(false) |
| #if defined(ADDRESS_SANITIZER) |
| , m_asanFakeStack(__asan_get_current_fake_stack()) |
| #endif |
| @@ -288,9 +312,9 @@ ThreadState::ThreadState() |
| m_statsAfterLastGC.clear(); |
| // First allocate the general heap, second iterate through to |
| // allocate the type specific heaps |
| - m_heaps[GeneralHeap] = new ThreadHeap<FinalizedHeapObjectHeader>(this); |
| + m_heaps[GeneralHeap] = new ThreadHeap<FinalizedHeapObjectHeader>(this, GeneralHeap); |
| for (int i = GeneralHeap + 1; i < NumberOfHeaps; i++) |
| - m_heaps[i] = new ThreadHeap<HeapObjectHeader>(this); |
| + m_heaps[i] = new ThreadHeap<HeapObjectHeader>(this, i); |
| CallbackStack::init(&m_weakCallbackStack); |
| } |
| @@ -334,12 +358,16 @@ void ThreadState::detachMainThread() |
| // threadAttachMutex and waiting for other threads to pause or reach a |
| // safepoint. |
| ThreadState* state = mainThreadState(); |
| - if (!state->isAtSafePoint()) |
| - state->enterSafePointWithoutPointers(); |
| { |
| - MutexLocker locker(threadAttachMutex()); |
| - state->leaveSafePoint(); |
| + // We enter a safepoint while waiting for the thread shutdown mutex. |
| + SafePointAwareMutexLocker locker(threadShutdownMutex(), NoHeapPointersOnStack); |
| + |
| + // First add the main thread's heap pages to the orphaned pool. |
| + state->cleanupPages(); |
| + } |
| + { |
| + SafePointAwareMutexLocker locker(threadAttachMutex(), NoHeapPointersOnStack); |
| ASSERT(attachedThreads().contains(state)); |
| attachedThreads().remove(state); |
| state->~ThreadState(); |
| @@ -367,56 +395,71 @@ void ThreadState::attach() |
| attachedThreads().add(state); |
| } |
| +void ThreadState::cleanupPages() |
| +{ |
| + for (int i = GeneralHeap; i < NumberOfHeaps; ++i) |
| + m_heaps[i]->cleanupPages(); |
| +} |
| + |
| void ThreadState::cleanup() |
| { |
| // From here on ignore all conservatively discovered |
| // pointers into the heap owned by this thread. |
| - m_isCleaningUp = true; |
| + m_isTerminating = true; |
| - // After this GC we expect heap to be empty because |
| - // preCleanup tasks should have cleared all persistent |
| - // handles that were externally owned. |
| - Heap::collectAllGarbage(); |
| - |
| - // Verify that all heaps are empty now. |
| - for (int i = 0; i < NumberOfHeaps; i++) |
| - m_heaps[i]->assertEmpty(); |
| -} |
| - |
| -void ThreadState::preCleanup() |
| -{ |
| for (size_t i = 0; i < m_cleanupTasks.size(); i++) |
| m_cleanupTasks[i]->preCleanup(); |
| -} |
| -void ThreadState::postCleanup() |
| -{ |
| + { |
| + // We enter a safepoint while waiting for the thread shutdown mutex. |
| + SafePointAwareMutexLocker locker(threadShutdownMutex(), NoHeapPointersOnStack); |
| + |
| + // Set the terminate flag on all heap pages of this thread. This is used to |
| + // ensure we don't trace pages on other threads that are not part of the |
| + // thread local GC. |
| + setupHeapsForTermination(); |
| + |
| + // Do thread local GC's as long as the count of thread local Persistents |
| + // changes and is above zero. |
| + PersistentAnchor* anchor = static_cast<PersistentAnchor*>(m_persistents.get()); |
| + int oldCount = -1; |
| + int currentCount = anchor->numberOfPersistents(); |
| + ASSERT(currentCount >= 0); |
| + while (currentCount != oldCount) { |
| + Heap::collectGarbageForTerminatingThread(this); |
| + oldCount = currentCount; |
| + currentCount = anchor->numberOfPersistents(); |
| + } |
| + // We should not have any persistents left when getting to this point, |
| + // if we have it is probably a bug so adding a debug ASSERT to catch this. |
| + ASSERT(!currentCount); |
| + |
| + // Add pages to the orphaned page pool to ensure any global GCs from this point |
| + // on will not trace objects on this thread's heaps. |
| + cleanupPages(); |
| + } |
| + |
| + { |
| + // Enter a safe point while trying to acquire threadAttachMutex |
| + // to avoid dead lock if another thread is preparing for GC, has acquired |
| + // threadAttachMutex and waiting for other threads to pause or reach a |
| + // safepoint. |
| + SafePointAwareMutexLocker locker(threadAttachMutex(), NoHeapPointersOnStack); |
| + ASSERT(attachedThreads().contains(this)); |
| + attachedThreads().remove(this); |
| + } |
| + |
| for (size_t i = 0; i < m_cleanupTasks.size(); i++) |
| m_cleanupTasks[i]->postCleanup(); |
| m_cleanupTasks.clear(); |
| } |
| + |
| void ThreadState::detach() |
| { |
| ThreadState* state = current(); |
| - state->preCleanup(); |
| state->cleanup(); |
| - |
| - // Enter a safe point before trying to acquire threadAttachMutex |
| - // to avoid dead lock if another thread is preparing for GC, has acquired |
| - // threadAttachMutex and waiting for other threads to pause or reach a |
| - // safepoint. |
| - if (!state->isAtSafePoint()) |
| - state->enterSafePointWithoutPointers(); |
| - |
| - { |
| - MutexLocker locker(threadAttachMutex()); |
| - state->leaveSafePoint(); |
| - state->postCleanup(); |
| - ASSERT(attachedThreads().contains(state)); |
| - attachedThreads().remove(state); |
| - delete state; |
| - } |
| + delete state; |
| shutdownHeapIfNecessary(); |
| } |
| @@ -435,6 +478,16 @@ void ThreadState::visitRoots(Visitor* visitor) |
| (*it)->trace(visitor); |
| } |
| +void ThreadState::visitLocalRoots(Visitor* visitor) |
| +{ |
| + // We assume that orphaned pages have no objects reachable from persistent |
| + // handles on other threads or CrossThreadPersistents. The only cases where |
| + // this could happen is if a global conservative GC finds a "pointer" on |
| + // the stack or due to a programming error where an object has a dangling |
| + // cross-thread pointer to an object on this heap. |
| + m_persistents->trace(visitor); |
| +} |
| + |
| NO_SANITIZE_ADDRESS |
| void ThreadState::visitAsanFakeStackForPointer(Visitor* visitor, Address ptr) |
| { |
| @@ -519,8 +572,8 @@ void ThreadState::trace(Visitor* visitor) |
| bool ThreadState::checkAndMarkPointer(Visitor* visitor, Address address) |
| { |
| - // If thread is cleaning up ignore conservative pointers. |
| - if (m_isCleaningUp) |
| + // If thread is terminating ignore conservative pointers. |
| + if (m_isTerminating) |
|
haraken
2014/07/13 17:30:39
Is this possible that we hit this branch? When a t
wibling-chromium
2014/07/14 08:06:11
This can happen in the case where we are waiting f
|
| return false; |
| // This checks for normal pages and for large objects which span the extent |
| @@ -557,7 +610,7 @@ void ThreadState::pushWeakObjectPointerCallback(void* object, WeakPointerCallbac |
| bool ThreadState::popAndInvokeWeakPointerCallback(Visitor* visitor) |
| { |
| - return m_weakCallbackStack->popAndInvokeCallback(&m_weakCallbackStack, visitor); |
| + return m_weakCallbackStack->popAndInvokeCallback<WeaknessProcessing>(&m_weakCallbackStack, visitor); |
| } |
| PersistentNode* ThreadState::globalRoots() |
| @@ -695,15 +748,26 @@ void ThreadState::prepareForGC() |
| for (int i = 0; i < NumberOfHeaps; i++) { |
| BaseHeap* heap = m_heaps[i]; |
| heap->makeConsistentForGC(); |
| - // If there are parked threads with outstanding sweep requests, clear their mark bits. |
| - // This happens if a thread did not have time to wake up and sweep, |
| - // before the next GC arrived. |
| + // If a new GC is requested before this thread got around to sweep, ie. due to the |
| + // thread doing a long running operation, we clear the mark bits and mark any of |
| + // the dead objects as dead. The latter is used to ensure the next GC marking does |
| + // not trace already dead objects. If we trace a dead object we could end up tracing |
| + // into garbage or the middle of another object via the newly conservatively found |
| + // object. |
| if (sweepRequested()) |
| - heap->clearMarks(); |
| + heap->clearLiveAndMarkDead(); |
| } |
| setSweepRequested(); |
| } |
| +void ThreadState::setupHeapsForTermination() |
| +{ |
| + for (int i = 0; i < NumberOfHeaps; i++) { |
| + BaseHeap* heap = m_heaps[i]; |
| + heap->prepareHeapForTermination(); |
|
haraken
2014/07/13 17:30:39
Nit: m_heaps[i]->prepareHeapForTermination();
wibling-chromium
2014/07/14 08:06:11
Done.
|
| + } |
| +} |
| + |
| BaseHeapPage* ThreadState::heapPageFromAddress(Address address) |
| { |
| BaseHeapPage* cachedPage = heapContainsCache()->lookup(address); |
