This is an archive of the discontinued LLVM Phabricator instance.

Differential D17815

[libc++abi] Use fallback_malloc to allocate __cxa_eh_globals in case of dynamic memory exhaustion.
ClosedPublic

Authored by ikudrin on Mar 2 2016, 9:07 AM.

Details

Reviewers
mclow.lists
EricWF
howard.hinnant
Commits
rGd9edde4ae2cd: Recommit r282692: [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals…
rG962750b511e8: [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals in case of dynamic…
rCXXA283531: Recommit r282692: [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals…
rCXXA282692: [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals in case of dynamic…
rL283531: Recommit r282692: [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals…
rL282692: [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals in case of…
Summary

Throwing an exception for the first time may lead to calling calloc to allocate memory for __cxa_eh_globals. If the memory pool is exhausted at that moment, it results in abnormal termination of the program.

This patch addresses the issue by using fallback_malloc in that case.

Diff Detail

Repository
rL LLVM

Event Timeline

ikudrin updated this revision to Diff 49628.Mar 2 2016, 9:07 AM
ikudrin retitled this revision from to [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals in case of dynamic memory exhaustion..
ikudrin updated this object.
ikudrin added reviewers: mclow.lists, howard.hinnant, EricWF.
ikudrin added a subscriber: cfe-commits.
ikudrin added a comment.Mar 8 2016, 7:56 PM

Ping.

asl added a subscriber: asl.Mar 9 2016, 10:17 AM
ikudrin added a comment.Mar 14 2016, 8:40 AM

Ping?..

bcraig added a subscriber: bcraig.Mar 14 2016, 8:52 AM

LGTM. I don't know if that's good enough for a submit though :)

In my opinion, requiring heap allocation during an exception is one of the worst parts of the Itanium ABI. At least this particular path isn't triggered for platforms with true thread_local support.

EricWF edited edge metadata.Mar 15 2016, 3:49 PM

By including fallback_malloc.ipp in a new C++ file we now have 2 different OOM emergancy buffers. I think it would be preferable to use only one. This would require a fairly large restructuring of fallback_malloc.ipp though.

ikudrin added a comment.Mar 15 2016, 7:44 PM

Thanks! I'll see what I can do about it.

ikudrin updated this revision to Diff 51782.Mar 28 2016, 6:09 AM
ikudrin updated this object.
ikudrin edited edge metadata.

Make cxa_exception.cpp and cxa_exception_storage.cpp to use the same emergency memory pool.

ikudrin added a comment.Apr 4 2016, 8:03 AM

Ping...

ikudrin added a comment.Apr 13 2016, 4:25 AM

Ping...

ikudrin added a comment.Apr 18 2016, 8:55 AM

Ping! Could anyone check this patch, please?

EricWF added a comment.Apr 18 2016, 12:35 PM

Could you generate a diff against the normal directory layout? Your's is against "libcxxabi/trunk/" where 'trunk' is the actual libcxxabi directory.

ikudrin updated this revision to Diff 54151.Apr 18 2016, 7:15 PM

Regenerated the patch against project's root.

EricWF added a comment.Apr 18 2016, 10:06 PM

It's almost there.

Please move "fallback_malloc.ipp" into "fallback_malloc.cpp" and then delete it all together. We can't have other files trying to include it.

src/fallback_malloc.cpp
23 ↗(On Diff #54151)

I think we should have the pragma GCC visibility push(hidden) in this file as well, but I'm not 100% sure.

test/test_exception_storage_nodynmem.pass.cpp
13 ↗(On Diff #54151)

Let's check that we actually replace calloc here and assert that our replacement has been called at the end of main.

16 ↗(On Diff #54151)

Let's perform this test a couple of times so we're testing

  • The memory get's returned properly
  • The returned memory can be reused.
ikudrin updated this revision to Diff 54189.Apr 19 2016, 8:10 AM
  • Moved the content of fallback_malloc.ipp into falback_malloc.cpp.
  • Removed fallback_malloc.ipp.
  • Added pragma GCC visibility push(hidden) for the function's definitions.
  • Added a check that the overwritten calloc is called to the test.
  • Added a loop to run the test several times.

Please note that test_fallback_malloc.pass.cpp now has to #include fallback_malloc.cpp, because fallback_malloc.ipp was removed. I'd considered some other options, including declaring additional functions especially for testing purpose and even moving all fallback_malloc functionality into a separate class which could be tested independently. However, eventually, I found them more difficult and even much worse than the presented approach.

ikudrin added a comment.May 10 2016, 3:25 AM

Ping...

ikudrin added a comment.May 16 2016, 5:31 AM

Ping?..

ikudrin added a comment.Jun 13 2016, 2:10 AM

Ping.

ikudrin added a comment.Jun 23 2016, 9:38 AM

Ping...

This patch is under review for more than two months, and I believe I've addressed all the comments. Could someone take a look at it, please?

ikudrin added a comment.Aug 10 2016, 3:07 AM

Hi,

Ping.

The issue in the current implementation of the libc++abi library looks like a time bomb. Even though its probability could be considered as very low, in fact, it depends on the type of an application. At least, we ran into it in our environment.

I'd guess that no one would expect their program to terminate when a legal exception is thrown, or when memory is allocated. I'd like this issue to be fixed in one or another way.

@EricWF, can you look at the patch again, please?

ikudrin added a comment.Sep 1 2016, 4:30 AM

Ping...

ikudrin added a comment.Sep 18 2016, 11:55 PM

Hi,

Ping.

The patch is under review for a long time and the described problem is still here. As we've seen the issue in practice, I'm sure that others may also run into it, and I do believe it should be fixed, one way or another.

@EricWF, can I improve the patch somehow to pass the review? Or maybe you prefer it to be fixed in some other way?

EricWF accepted this revision.Sep 26 2016, 2:01 PM
EricWF edited edge metadata.

LGTM after addressing the inline comments.

src/fallback_malloc.cpp
58 ↗(On Diff #54189)

A static const variable would be better here.

59 ↗(On Diff #54189)

This should have __attribute__((aligned)) on it.

src/fallback_malloc.h
20 ↗(On Diff #54189)

Please don't use the __cxa prefix on these functions. It makes it seem like they are part of the Itanium spec but they're really internal details.

This revision is now accepted and ready to land.Sep 26 2016, 2:01 PM
Closed by commit rL282692: [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals in case of… (authored by ikudrin). · Explain WhySep 28 2016, 11:46 PM
This revision was automatically updated to reflect the committed changes.
rmaprath mentioned this in D24864: [libcxxabi] Refactor pthread usage into a separate API.Sep 30 2016, 1:59 AM
rmaprath added a subscriber: rmaprath.Sep 30 2016, 2:07 AM

@ikudrin: Looks like you've reverted this soon after. I'm just about to commit D24864, which will affect this slightly. D24864 basically refactors all pthread dependencies behind a separate API. It would be pretty straightforward for you to update this patch though, just replacing pthread calls with ones in thread_support.h (perhaps adding anything missing).

Hope you don't mind me going first? If you are going to commit this soon, I can hold off D24864. Let me know.

Cheers,

/ Asiri

ikudrin reopened this revision.Sep 30 2016, 4:54 AM

@rmaprath: There are some issues in the test which upset build bots and I need some time to fix them. You don't need to wait for me, I'll put my patch on the top of yours when my fix is ready.

This revision is now accepted and ready to land.Sep 30 2016, 4:54 AM
Closed by commit rL283531: Recommit r282692: [libc++abi] Use fallback_malloc to allocate __cxa_eh_globals… (authored by ikudrin). · Explain WhyOct 7 2016, 2:01 AM
This revision was automatically updated to reflect the committed changes.
DanielMcIntosh-IBM mentioned this in D113048: [libcxxabi] Fix NO_THREADS version of test_exception_storage.pass.cpp.Nov 3 2021, 8:00 AM

Revision Contents

Diff 73893

libcxxabi/trunk/src/CMakeLists.txt

# Get sources # Get sources
set(LIBCXXABI_SOURCES set(LIBCXXABI_SOURCES
abort_message.cpp abort_message.cpp
cxa_aux_runtime.cpp cxa_aux_runtime.cpp
cxa_default_handlers.cpp cxa_default_handlers.cpp
cxa_demangle.cpp cxa_demangle.cpp
cxa_exception_storage.cpp cxa_exception_storage.cpp
cxa_guard.cpp cxa_guard.cpp
cxa_handlers.cpp cxa_handlers.cpp
cxa_new_delete.cpp cxa_new_delete.cpp
cxa_unexpected.cpp cxa_unexpected.cpp
cxa_vector.cpp cxa_vector.cpp
cxa_virtual.cpp cxa_virtual.cpp
exception.cpp exception.cpp
fallback_malloc.cpp
private_typeinfo.cpp private_typeinfo.cpp
stdexcept.cpp stdexcept.cpp
typeinfo.cpp typeinfo.cpp
) )
if (LIBCXXABI_ENABLE_EXCEPTIONS) if (LIBCXXABI_ENABLE_EXCEPTIONS)
list(APPEND LIBCXXABI_SOURCES cxa_exception.cpp) list(APPEND LIBCXXABI_SOURCES cxa_exception.cpp)
list(APPEND LIBCXXABI_SOURCES cxa_personality.cpp) list(APPEND LIBCXXABI_SOURCES cxa_personality.cpp)
▲ Show 20 LinesShow All 128 LinesShow Last 20 Lines

libcxxabi/trunk/src/cxa_exception.cpp

Show All 9 Lines
// http://mentorembedded.github.io/cxx-abi/abi-eh.html // http://mentorembedded.github.io/cxx-abi/abi-eh.html
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "config.h" #include "config.h"
#include "cxxabi.h" #include "cxxabi.h"
#include <exception> // for std::terminate #include <exception> // for std::terminate
#include <cstdlib> // for malloc, free
#include <cstring> // for memset #include <cstring> // for memset
#ifndef _LIBCXXABI_HAS_NO_THREADS
# include <pthread.h> // for fallback_malloc.ipp's mutexes
#endif
#include "cxa_exception.hpp" #include "cxa_exception.hpp"
#include "cxa_handlers.hpp" #include "cxa_handlers.hpp"
#include "fallback_malloc.h"
// +---------------------------+-----------------------------+---------------+ // +---------------------------+-----------------------------+---------------+
// | __cxa_exception | _Unwind_Exception CLNGC++\0 | thrown object | // | __cxa_exception | _Unwind_Exception CLNGC++\0 | thrown object |
// +---------------------------+-----------------------------+---------------+ // +---------------------------+-----------------------------+---------------+
// ^ // ^
// | // |
// +-------------------------------------------------------+ // +-------------------------------------------------------+
// | // |
▲ Show 20 LinesShow All 66 Lines▼ Show 20 Linesstatic inline int incrementHandlerCount(__cxa_exception *exception) {
return ++exception->handlerCount; return ++exception->handlerCount;
} }
// This does not need to be atomic // This does not need to be atomic
static inline int decrementHandlerCount(__cxa_exception *exception) { static inline int decrementHandlerCount(__cxa_exception *exception) {
return --exception->handlerCount; return --exception->handlerCount;
} }
#include "fallback_malloc.ipp"
// Allocate some memory from _somewhere_
static void *do_malloc(size_t size) {
void *ptr = std::malloc(size);
if (NULL == ptr) // if malloc fails, fall back to emergency stash
ptr = fallback_malloc(size);
return ptr;
}
static void do_free(void *ptr) {
is_fallback_ptr(ptr) ? fallback_free(ptr) : std::free(ptr);
}
/* /*
If reason isn't _URC_FOREIGN_EXCEPTION_CAUGHT, then the terminateHandler If reason isn't _URC_FOREIGN_EXCEPTION_CAUGHT, then the terminateHandler
stored in exc is called. Otherwise the exceptionDestructor stored in stored in exc is called. Otherwise the exceptionDestructor stored in
exc is called, and then the memory for the exception is deallocated. exc is called, and then the memory for the exception is deallocated.
This is never called for a __cxa_dependent_exception. This is never called for a __cxa_dependent_exception.
*/ */
static static
Show All 24 Lines
// Allocate a __cxa_exception object, and zero-fill it. // Allocate a __cxa_exception object, and zero-fill it.
// Reserve "thrown_size" bytes on the end for the user's exception // Reserve "thrown_size" bytes on the end for the user's exception
// object. Zero-fill the object. If memory can't be allocated, call // object. Zero-fill the object. If memory can't be allocated, call
// std::terminate. Return a pointer to the memory to be used for the // std::terminate. Return a pointer to the memory to be used for the
// user's exception object. // user's exception object.
_LIBCXXABI_FUNC_VIS void *__cxa_allocate_exception(size_t thrown_size) throw() { _LIBCXXABI_FUNC_VIS void *__cxa_allocate_exception(size_t thrown_size) throw() {
size_t actual_size = cxa_exception_size_from_exception_thrown_size(thrown_size); size_t actual_size = cxa_exception_size_from_exception_thrown_size(thrown_size);
__cxa_exception* exception_header = static_cast<__cxa_exception*>(do_malloc(actual_size)); __cxa_exception *exception_header =
static_cast<__cxa_exception *>(__malloc_with_fallback(actual_size));
if (NULL == exception_header) if (NULL == exception_header)
std::terminate(); std::terminate();
std::memset(exception_header, 0, actual_size); std::memset(exception_header, 0, actual_size);
return thrown_object_from_cxa_exception(exception_header); return thrown_object_from_cxa_exception(exception_header);
} }
// Free a __cxa_exception object allocated with __cxa_allocate_exception. // Free a __cxa_exception object allocated with __cxa_allocate_exception.
_LIBCXXABI_FUNC_VIS void __cxa_free_exception(void *thrown_object) throw() { _LIBCXXABI_FUNC_VIS void __cxa_free_exception(void *thrown_object) throw() {
do_free(cxa_exception_from_thrown_object(thrown_object)); __free_with_fallback(cxa_exception_from_thrown_object(thrown_object));
} }
// This function shall allocate a __cxa_dependent_exception and // This function shall allocate a __cxa_dependent_exception and
// return a pointer to it. (Really to the object, not past its' end). // return a pointer to it. (Really to the object, not past its' end).
// Otherwise, it will work like __cxa_allocate_exception. // Otherwise, it will work like __cxa_allocate_exception.
void * __cxa_allocate_dependent_exception () { void * __cxa_allocate_dependent_exception () {
size_t actual_size = sizeof(__cxa_dependent_exception); size_t actual_size = sizeof(__cxa_dependent_exception);
void *ptr = do_malloc(actual_size); void *ptr = __malloc_with_fallback(actual_size);
if (NULL == ptr) if (NULL == ptr)
std::terminate(); std::terminate();
std::memset(ptr, 0, actual_size); std::memset(ptr, 0, actual_size);
return ptr; return ptr;
} }
// This function shall free a dependent_exception. // This function shall free a dependent_exception.
// It does not affect the reference count of the primary exception. // It does not affect the reference count of the primary exception.
void __cxa_free_dependent_exception (void * dependent_exception) { void __cxa_free_dependent_exception (void * dependent_exception) {
do_free(dependent_exception); __free_with_fallback(dependent_exception);
} }
// 2.4.3 Throwing the Exception Object // 2.4.3 Throwing the Exception Object
/* /*
After constructing the exception object with the throw argument value, After constructing the exception object with the throw argument value,
the generated code calls the __cxa_throw runtime library routine. This the generated code calls the __cxa_throw runtime library routine. This
routine never returns. routine never returns.
▲ Show 20 LinesShow All 519 LinesShow Last 20 Lines

libcxxabi/trunk/src/cxa_exception_storage.cpp

Show All 39 Linesextern "C" {
__cxa_eh_globals * __cxa_get_globals () { return __globals (); } __cxa_eh_globals * __cxa_get_globals () { return __globals (); }
__cxa_eh_globals * __cxa_get_globals_fast () { return __globals (); } __cxa_eh_globals * __cxa_get_globals_fast () { return __globals (); }
} }
} }
#else #else
#include <pthread.h> #include <pthread.h>
#include <cstdlib> // for calloc, free
#include "abort_message.h" #include "abort_message.h"
#include "fallback_malloc.h"
// In general, we treat all pthread errors as fatal. // In general, we treat all pthread errors as fatal.
// We cannot call std::terminate() because that will in turn // We cannot call std::terminate() because that will in turn
// call __cxa_get_globals() and cause infinite recursion. // call __cxa_get_globals() and cause infinite recursion.
namespace __cxxabiv1 { namespace __cxxabiv1 {
namespace { namespace {
pthread_key_t key_; pthread_key_t key_;
pthread_once_t flag_ = PTHREAD_ONCE_INIT; pthread_once_t flag_ = PTHREAD_ONCE_INIT;
void destruct_ (void *p) { void destruct_ (void *p) {
std::free ( p ); __free_with_fallback ( p );
if ( 0 != ::pthread_setspecific ( key_, NULL ) ) if ( 0 != ::pthread_setspecific ( key_, NULL ) )
abort_message("cannot zero out thread value for __cxa_get_globals()"); abort_message("cannot zero out thread value for __cxa_get_globals()");
} }
void construct_ () { void construct_ () {
if ( 0 != pthread_key_create ( &key_, destruct_ ) ) if ( 0 != pthread_key_create ( &key_, destruct_ ) )
abort_message("cannot create pthread key for __cxa_get_globals()"); abort_message("cannot create pthread key for __cxa_get_globals()");
} }
} }
extern "C" { extern "C" {
__cxa_eh_globals * __cxa_get_globals () { __cxa_eh_globals * __cxa_get_globals () {
// Try to get the globals for this thread // Try to get the globals for this thread
__cxa_eh_globals* retVal = __cxa_get_globals_fast (); __cxa_eh_globals* retVal = __cxa_get_globals_fast ();
// If this is the first time we've been asked for these globals, create them // If this is the first time we've been asked for these globals, create them
if ( NULL == retVal ) { if ( NULL == retVal ) {
retVal = static_cast<__cxa_eh_globals*> retVal = static_cast<__cxa_eh_globals*>
(std::calloc (1, sizeof (__cxa_eh_globals))); (__calloc_with_fallback (1, sizeof (__cxa_eh_globals)));
if ( NULL == retVal ) if ( NULL == retVal )
abort_message("cannot allocate __cxa_eh_globals"); abort_message("cannot allocate __cxa_eh_globals");
if ( 0 != pthread_setspecific ( key_, retVal ) ) if ( 0 != pthread_setspecific ( key_, retVal ) )
abort_message("pthread_setspecific failure in __cxa_get_globals()"); abort_message("pthread_setspecific failure in __cxa_get_globals()");
} }
return retVal; return retVal;
} }
Show All 15 Lines

libcxxabi/trunk/src/fallback_malloc.h

//===------------------------- fallback_malloc.h --------------------------===//
//
// The LLVM Compiler Infrastructure
//
// This file is dual licensed under the MIT and the University of Illinois Open
// Source Licenses. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
#ifndef _FALLBACK_MALLOC_H
#define _FALLBACK_MALLOC_H
#include <cstddef> // for size_t
namespace __cxxabiv1 {
#pragma GCC visibility push(hidden)
// Allocate some memory from _somewhere_
void * __malloc_with_fallback(size_t size);
// Allocate and zero-initialize memory from _somewhere_
void * __calloc_with_fallback(size_t count, size_t size);
void __free_with_fallback(void *ptr);
#pragma GCC visibility pop
} // namespace __cxxabiv1
#endif

libcxxabi/trunk/src/fallback_malloc.cpp

//===------------------------ fallback_malloc.cpp -------------------------===//
//
// The LLVM Compiler Infrastructure
//
// This file is dual licensed under the MIT and the University of Illinois Open
// Source Licenses. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
#include "fallback_malloc.h"
#include "config.h"
#include <cstdlib> // for malloc, calloc, free
#include <cstring> // for memset
#ifndef _LIBCXXABI_HAS_NO_THREADS
#include <pthread.h> // for mutexes
#endif
// A small, simple heap manager based (loosely) on
// the startup heap manager from FreeBSD, optimized for space.
//
// Manages a fixed-size memory pool, supports malloc and free only.
// No support for realloc.
//
// Allocates chunks in multiples of four bytes, with a four byte header
// for each chunk. The overhead of each chunk is kept low by keeping pointers
// as two byte offsets within the heap, rather than (4 or 8 byte) pointers.
namespace {
// When POSIX threads are not available, make the mutex operations a nop
#ifndef _LIBCXXABI_HAS_NO_THREADS
static pthread_mutex_t heap_mutex = PTHREAD_MUTEX_INITIALIZER;
#else
static void * heap_mutex = 0;
#endif
class mutexor {
public:
#ifndef _LIBCXXABI_HAS_NO_THREADS
mutexor ( pthread_mutex_t *m ) : mtx_(m) { pthread_mutex_lock ( mtx_ ); }
~mutexor () { pthread_mutex_unlock ( mtx_ ); }
#else
mutexor ( void * ) {}
~mutexor () {}
#endif
private:
mutexor ( const mutexor &rhs );
mutexor & operator = ( const mutexor &rhs );
#ifndef _LIBCXXABI_HAS_NO_THREADS
pthread_mutex_t *mtx_;
#endif
};
static const size_t HEAP_SIZE = 512;
char heap [ HEAP_SIZE ] __attribute__((aligned));
typedef unsigned short heap_offset;
typedef unsigned short heap_size;
struct heap_node {
heap_offset next_node; // offset into heap
heap_size len; // size in units of "sizeof(heap_node)"
};
static const heap_node *list_end = (heap_node *) ( &heap [ HEAP_SIZE ] ); // one past the end of the heap
static heap_node *freelist = NULL;
heap_node *node_from_offset ( const heap_offset offset )
{ return (heap_node *) ( heap + ( offset * sizeof (heap_node))); }
heap_offset offset_from_node ( const heap_node *ptr )
{ return static_cast<heap_offset>(static_cast<size_t>(reinterpret_cast<const char *>(ptr) - heap) / sizeof (heap_node)); }
void init_heap () {
freelist = (heap_node *) heap;
freelist->next_node = offset_from_node ( list_end );
freelist->len = HEAP_SIZE / sizeof (heap_node);
}
// How big a chunk we allocate
size_t alloc_size (size_t len)
{ return (len + sizeof(heap_node) - 1) / sizeof(heap_node) + 1; }
bool is_fallback_ptr ( void *ptr )
{ return ptr >= heap && ptr < ( heap + HEAP_SIZE ); }
void *fallback_malloc(size_t len) {
heap_node *p, *prev;
const size_t nelems = alloc_size ( len );
mutexor mtx ( &heap_mutex );
if ( NULL == freelist )
init_heap ();
// Walk the free list, looking for a "big enough" chunk
for (p = freelist, prev = 0;
p && p != list_end; prev = p, p = node_from_offset ( p->next_node)) {
if (p->len > nelems) { // chunk is larger, shorten, and return the tail
heap_node *q;
p->len = static_cast<heap_size>(p->len - nelems);
q = p + p->len;
q->next_node = 0;
q->len = static_cast<heap_size>(nelems);
return (void *) (q + 1);
}
if (p->len == nelems) { // exact size match
if (prev == 0)
freelist = node_from_offset(p->next_node);
else
prev->next_node = p->next_node;
p->next_node = 0;
return (void *) (p + 1);
}
}
return NULL; // couldn't find a spot big enough
}
// Return the start of the next block
heap_node *after ( struct heap_node *p ) { return p + p->len; }
void fallback_free (void *ptr) {
struct heap_node *cp = ((struct heap_node *) ptr) - 1; // retrieve the chunk
struct heap_node *p, *prev;
mutexor mtx ( &heap_mutex );
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << "Freeing item at " << offset_from_node ( cp ) << " of size " << cp->len << std::endl;
#endif
for (p = freelist, prev = 0;
p && p != list_end; prev = p, p = node_from_offset (p->next_node)) {
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << " p, cp, after (p), after(cp) "
<< offset_from_node ( p ) << ' '
<< offset_from_node ( cp ) << ' '
<< offset_from_node ( after ( p )) << ' '
<< offset_from_node ( after ( cp )) << std::endl;
#endif
if ( after ( p ) == cp ) {
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << " Appending onto chunk at " << offset_from_node ( p ) << std::endl;
#endif
p->len = static_cast<heap_size>(p->len + cp->len); // make the free heap_node larger
return;
}
else if ( after ( cp ) == p ) { // there's a free heap_node right after
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << " Appending free chunk at " << offset_from_node ( p ) << std::endl;
#endif
cp->len = static_cast<heap_size>(cp->len + p->len);
if ( prev == 0 ) {
freelist = cp;
cp->next_node = p->next_node;
}
else
prev->next_node = offset_from_node(cp);
return;
}
}
// Nothing to merge with, add it to the start of the free list
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << " Making new free list entry " << offset_from_node ( cp ) << std::endl;
#endif
cp->next_node = offset_from_node ( freelist );
freelist = cp;
}
#ifdef INSTRUMENT_FALLBACK_MALLOC
size_t print_free_list () {
struct heap_node *p, *prev;
heap_size total_free = 0;
if ( NULL == freelist )
init_heap ();
for (p = freelist, prev = 0;
p && p != list_end; prev = p, p = node_from_offset (p->next_node)) {
std::cout << ( prev == 0 ? "" : " ") << "Offset: " << offset_from_node ( p )
<< "\tsize: " << p->len << " Next: " << p->next_node << std::endl;
total_free += p->len;
}
std::cout << "Total Free space: " << total_free << std::endl;
return total_free;
}
#endif
} // end unnamed namespace
namespace __cxxabiv1 {
#pragma GCC visibility push(hidden)
void * __malloc_with_fallback(size_t size) {
void *ptr = std::malloc(size);
if (NULL == ptr) // if malloc fails, fall back to emergency stash
ptr = fallback_malloc(size);
return ptr;
}
void * __calloc_with_fallback(size_t count, size_t size) {
void *ptr = std::calloc(count, size);
if (NULL != ptr)
return ptr;
// if calloc fails, fall back to emergency stash
ptr = fallback_malloc(size * count);
if (NULL != ptr)
std::memset(ptr, 0, size * count);
return ptr;
}
void __free_with_fallback(void *ptr) {
if (is_fallback_ptr(ptr))
fallback_free(ptr);
else
std::free(ptr);
}
#pragma GCC visibility pop
} // namespace __cxxabiv1

libcxxabi/trunk/src/fallback_malloc.ipp

//===------------------------ fallback_malloc.ipp -------------------------===//
//
// The LLVM Compiler Infrastructure
//
// This file is dual licensed under the MIT and the University of Illinois Open
// Source Licenses. See LICENSE.TXT for details.
//
//
// This file implements the "Exception Handling APIs"
// http://mentorembedded.github.io/cxx-abi/abi-eh.html
//
//===----------------------------------------------------------------------===//
#include "config.h"
// A small, simple heap manager based (loosely) on
// the startup heap manager from FreeBSD, optimized for space.
//
// Manages a fixed-size memory pool, supports malloc and free only.
// No support for realloc.
//
// Allocates chunks in multiples of four bytes, with a four byte header
// for each chunk. The overhead of each chunk is kept low by keeping pointers
// as two byte offsets within the heap, rather than (4 or 8 byte) pointers.
namespace {
// When POSIX threads are not available, make the mutex operations a nop
#ifndef _LIBCXXABI_HAS_NO_THREADS
static pthread_mutex_t heap_mutex = PTHREAD_MUTEX_INITIALIZER;
#else
static void * heap_mutex = 0;
#endif
class mutexor {
public:
#ifndef _LIBCXXABI_HAS_NO_THREADS
mutexor ( pthread_mutex_t *m ) : mtx_(m) { pthread_mutex_lock ( mtx_ ); }
~mutexor () { pthread_mutex_unlock ( mtx_ ); }
#else
mutexor ( void * ) {}
~mutexor () {}
#endif
private:
mutexor ( const mutexor &rhs );
mutexor & operator = ( const mutexor &rhs );
#ifndef _LIBCXXABI_HAS_NO_THREADS
pthread_mutex_t *mtx_;
#endif
};
#define HEAP_SIZE 512
char heap [ HEAP_SIZE ];
typedef unsigned short heap_offset;
typedef unsigned short heap_size;
struct heap_node {
heap_offset next_node; // offset into heap
heap_size len; // size in units of "sizeof(heap_node)"
};
static const heap_node *list_end = (heap_node *) ( &heap [ HEAP_SIZE ] ); // one past the end of the heap
static heap_node *freelist = NULL;
heap_node *node_from_offset ( const heap_offset offset )
{ return (heap_node *) ( heap + ( offset * sizeof (heap_node))); }
heap_offset offset_from_node ( const heap_node *ptr )
{ return static_cast<heap_offset>(static_cast<size_t>(reinterpret_cast<const char *>(ptr) - heap) / sizeof (heap_node)); }
void init_heap () {
freelist = (heap_node *) heap;
freelist->next_node = offset_from_node ( list_end );
freelist->len = HEAP_SIZE / sizeof (heap_node);
}
// How big a chunk we allocate
size_t alloc_size (size_t len)
{ return (len + sizeof(heap_node) - 1) / sizeof(heap_node) + 1; }
bool is_fallback_ptr ( void *ptr )
{ return ptr >= heap && ptr < ( heap + HEAP_SIZE ); }
void *fallback_malloc(size_t len) {
heap_node *p, *prev;
const size_t nelems = alloc_size ( len );
mutexor mtx ( &heap_mutex );
if ( NULL == freelist )
init_heap ();
// Walk the free list, looking for a "big enough" chunk
for (p = freelist, prev = 0;
p && p != list_end; prev = p, p = node_from_offset ( p->next_node)) {
if (p->len > nelems) { // chunk is larger, shorten, and return the tail
heap_node *q;
p->len = static_cast<heap_size>(p->len - nelems);
q = p + p->len;
q->next_node = 0;
q->len = static_cast<heap_size>(nelems);
return (void *) (q + 1);
}
if (p->len == nelems) { // exact size match
if (prev == 0)
freelist = node_from_offset(p->next_node);
else
prev->next_node = p->next_node;
p->next_node = 0;
return (void *) (p + 1);
}
}
return NULL; // couldn't find a spot big enough
}
// Return the start of the next block
heap_node *after ( struct heap_node *p ) { return p + p->len; }
void fallback_free (void *ptr) {
struct heap_node *cp = ((struct heap_node *) ptr) - 1; // retrieve the chunk
struct heap_node *p, *prev;
mutexor mtx ( &heap_mutex );
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << "Freeing item at " << offset_from_node ( cp ) << " of size " << cp->len << std::endl;
#endif
for (p = freelist, prev = 0;
p && p != list_end; prev = p, p = node_from_offset (p->next_node)) {
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << " p, cp, after (p), after(cp) "
<< offset_from_node ( p ) << ' '
<< offset_from_node ( cp ) << ' '
<< offset_from_node ( after ( p )) << ' '
<< offset_from_node ( after ( cp )) << std::endl;
#endif
if ( after ( p ) == cp ) {
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << " Appending onto chunk at " << offset_from_node ( p ) << std::endl;
#endif
p->len = static_cast<heap_size>(p->len + cp->len); // make the free heap_node larger
return;
}
else if ( after ( cp ) == p ) { // there's a free heap_node right after
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << " Appending free chunk at " << offset_from_node ( p ) << std::endl;
#endif
cp->len = static_cast<heap_size>(cp->len + p->len);
if ( prev == 0 ) {
freelist = cp;
cp->next_node = p->next_node;
}
else
prev->next_node = offset_from_node(cp);
return;
}
}
// Nothing to merge with, add it to the start of the free list
#ifdef DEBUG_FALLBACK_MALLOC
std::cout << " Making new free list entry " << offset_from_node ( cp ) << std::endl;
#endif
cp->next_node = offset_from_node ( freelist );
freelist = cp;
}
#ifdef INSTRUMENT_FALLBACK_MALLOC
size_t print_free_list () {
struct heap_node *p, *prev;
heap_size total_free = 0;
if ( NULL == freelist )
init_heap ();
for (p = freelist, prev = 0;
p && p != list_end; prev = p, p = node_from_offset (p->next_node)) {
std::cout << ( prev == 0 ? "" : " ") << "Offset: " << offset_from_node ( p )
<< "\tsize: " << p->len << " Next: " << p->next_node << std::endl;
total_free += p->len;
}
std::cout << "Total Free space: " << total_free << std::endl;
return total_free;
}
#endif
} // end unnamed namespace

libcxxabi/trunk/test/test_exception_storage_nodynmem.pass.cpp

//===--------------- test_exception_storage_nodynmem.cpp ------------------===//
//
// The LLVM Compiler Infrastructure
//
// This file is dual licensed under the MIT and the University of Illinois Open
// Source Licenses. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
// UNSUPPORTED: libcxxabi-no-exceptions
// cxa_exception_storage does not use dynamic memory in the single thread mode.
// UNSUPPORTED: libcpp-has-no-threads
// Our overwritten calloc() is not compatible with these sanitizers.
// UNSUPPORTED: msan, tsan
#include <assert.h>
#include <cstdlib>
static bool OverwrittenCallocCalled = false;
// Override calloc to simulate exhaustion of dynamic memory
void *calloc(size_t, size_t) {
OverwrittenCallocCalled = true;
return 0;
}
int main(int argc, char *argv[]) {
// Run the test a couple of times
// to ensure that fallback memory doesn't leak.
for (int I = 0; I < 1000; ++I)
try {
throw 42;
} catch (...) {
}
assert(OverwrittenCallocCalled);
return 0;
}

libcxxabi/trunk/test/test_fallback_malloc.pass.cpp

Show All 10 Lines
#include <deque> #include <deque>
#include <pthread.h> #include <pthread.h>
typedef std::deque<void *> container; typedef std::deque<void *> container;
// #define DEBUG_FALLBACK_MALLOC // #define DEBUG_FALLBACK_MALLOC
#define INSTRUMENT_FALLBACK_MALLOC #define INSTRUMENT_FALLBACK_MALLOC
#include "../src/fallback_malloc.ipp" #include "../src/fallback_malloc.cpp"
container alloc_series ( size_t sz ) { container alloc_series ( size_t sz ) {
container ptrs; container ptrs;
void *p; void *p;
while ( NULL != ( p = fallback_malloc ( sz ))) while ( NULL != ( p = fallback_malloc ( sz )))
ptrs.push_back ( p ); ptrs.push_back ( p );
return ptrs; return ptrs;
▲ Show 20 LinesShow All 162 LinesShow Last 20 Lines
libcxxabi/trunk/src/fallback_malloc.cpp