Closed Bug 1412234 Opened 8 years ago Closed 8 years ago

Make all allocator API entry points handle initialization properly

Categories

(Core :: Memory Allocator, enhancement)

Product:
Core
Component:
Memory Allocator
Type:
enhancement
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla58
Tracking Flags:
Tracking Status
firefox58 --- fixed

People

(Reporter: glandium, Assigned: glandium)

Details

Attachments

(2 files)

Bug 1412234 - Make malloc_init return whether the allocator was successfully initialized.
59 bytes, text/x-review-board-request
n.nethercote
: review+
Details
Bug 1412234 - Make all allocator API entry points handle initialization properly.
59 bytes, text/x-review-board-request
n.nethercote
: review+
Details
No description provided.
Comment on attachment 8922701 [details] Bug 1412234 - Make malloc_init return whether the allocator was successfully initialized. https://reviewboard.mozilla.org/r/193854/#review199304 ::: memory/build/mozjemalloc.cpp:4106 (Diff revision 1) > #if defined(XP_WIN) > -#define malloc_init() false > +#define malloc_init() true > #else > +// Returns whether the allocator was successfully initialized. > static inline bool > malloc_init(void) The "void" could be removed. ::: memory/build/mozjemalloc.cpp:4139 (Diff revision 1) > +// Returns whether the allocator was successfully initialized. > #if !defined(XP_WIN) > static > #endif > bool > malloc_init_hard(void) ditto
Attachment #8922701 - Flags: review?(n.nethercote) → review+
Comment on attachment 8922702 [details] Bug 1412234 - Make all allocator API entry points handle initialization properly. https://reviewboard.mozilla.org/r/193856/#review199306 This all seems reasonable. I'm wondering what prompted you to write the patch, and how you found all the places to change. Via some testing, or just code inspection? ::: memory/build/mozjemalloc.cpp:3378 (Diff revision 2) > arena_chunk_t* chunk = GetChunkForPtr(aPtr); > > // Is the pointer null, or within one chunk's size of null? > - if (!chunk) { > + // Alternatively, if the allocator is not initialized yet, the pointer > + // can't be known. > + if (!chunk || !malloc_initialized) { This is pre-existing but: what is the synchronization story for `malloc_initialized`? It looks like it's totally racy, being accessed on arbitrary threads without any protection... ::: memory/build/mozjemalloc.cpp:4482 (Diff revision 2) > offset = GetChunkOffsetForPtr(aPtr); > if (offset != 0) { > + MOZ_RELEASE_ASSERT(malloc_initialized); > arena_dalloc(aPtr, offset); > } else if (aPtr) { > + MOZ_RELEASE_ASSERT(malloc_initialized); Move the duplicated assertions before the `if`.
Attachment #8922702 - Flags: review?(n.nethercote) → review+
(In reply to Nicholas Nethercote [:njn] from comment #5) > Comment on attachment 8922702 [details] > Bug 1412234 - Make all allocator API entry points handle initialization > properly. > > https://reviewboard.mozilla.org/r/193856/#review199306 > > This all seems reasonable. I'm wondering what prompted you to write the > patch, Julian reporting to me that calling moz_alloc_* functions directly from a test case caused crashes. > and how you found all the places to change. Via some testing, or just > code inspection? I just went through the public API. > ::: memory/build/mozjemalloc.cpp:3378 > (Diff revision 2) > > arena_chunk_t* chunk = GetChunkForPtr(aPtr); > > > > // Is the pointer null, or within one chunk's size of null? > > - if (!chunk) { > > + // Alternatively, if the allocator is not initialized yet, the pointer > > + // can't be known. > > + if (!chunk || !malloc_initialized) { > > This is pre-existing but: what is the synchronization story for > `malloc_initialized`? It looks like it's totally racy, being accessed on > arbitrary threads without any protection... There is a race but in practice, we're always being initialized when there's only one thread, and the value only transitions once from false to true. Anyways, I'll file a bug to turn it into an Atomic<>. > ::: memory/build/mozjemalloc.cpp:4482 > (Diff revision 2) > > offset = GetChunkOffsetForPtr(aPtr); > > if (offset != 0) { > > + MOZ_RELEASE_ASSERT(malloc_initialized); > > arena_dalloc(aPtr, offset); > > } else if (aPtr) { > > + MOZ_RELEASE_ASSERT(malloc_initialized); > > Move the duplicated assertions before the `if`. It's duplicated because the implicit else case that does nothing (free(nullptr)) doesn't need the check.
Pushed by mh@glandium.org: https://hg.mozilla.org/integration/autoland/rev/5ac86eb005d4 Make malloc_init return whether the allocator was successfully initialized. r=njn https://hg.mozilla.org/integration/autoland/rev/3d655d6abecf Make all allocator API entry points handle initialization properly. r=njn
> There is a race but in practice, we're always being initialized when there's > only one thread, and the value only transitions once from false to true. Fair enough. > Anyways, I'll file a bug to turn it into an Atomic<>. I'm not fussed by this. We have other code that does much the same thing without using Atomic<>.
https://hg.mozilla.org/mozilla-central/rev/5ac86eb005d4 https://hg.mozilla.org/mozilla-central/rev/3d655d6abecf
Status: NEW → RESOLVED
Closed: 8 years ago
status-firefox58: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla58
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: