Changeset 64849 in webkit

Timestamp:

Aug 6, 2010, 7:55:54 AM (15 years ago)

Author:

[email protected]

Message:

2010-08-06 Nathan Lawrence <​[email protected]>

Reviewed by Geoffrey Garen.

​https://bugs.webkit.org/show_bug.cgi?id=43207

WeakGCPtr's should instead of directly pointing to the GC'd object
should be directed to an array of pointers that can be updated for
movable objects.

• Android.mk:
• GNUmakefile.am:
• JavaScriptCore.exp:
• JavaScriptCore.gypi:
• JavaScriptCore.pro:
• JavaScriptCore.xcodeproj/project.pbxproj:
• runtime/Collector.cpp: (JSC::Heap::destroy): (JSC::Heap::allocateBlock): (JSC::Heap::freeBlock): (JSC::Heap::updateWeakGCHandles): (JSC::WeakGCHandlePool::update): (JSC::Heap::addWeakGCHandle): (JSC::Heap::markRoots):
• runtime/Collector.h: (JSC::Heap::weakGCHandlePool):
• runtime/GCHandle.cpp: Added. (JSC::WeakGCHandle::pool): (JSC::WeakGCHandlePool::WeakGCHandlePool): (JSC::WeakGCHandlePool::allocate): (JSC::WeakGCHandlePool::free): (JSC::WeakGCHandlePool::operator new):
• runtime/GCHandle.h: Added. (JSC::WeakGCHandle::isValidPtr): (JSC::WeakGCHandle::isPtr): (JSC::WeakGCHandle::isNext): (JSC::WeakGCHandle::invalidate): (JSC::WeakGCHandle::get): (JSC::WeakGCHandle::set): (JSC::WeakGCHandle::getNextInFreeList): (JSC::WeakGCHandle::setNextInFreeList): (JSC::WeakGCHandlePool::isFull):
• runtime/WeakGCPtr.h: (JSC::WeakGCPtr::WeakGCPtr): (JSC::WeakGCPtr::~WeakGCPtr): (JSC::WeakGCPtr::get): (JSC::WeakGCPtr::clear): (JSC::WeakGCPtr::assign): (JSC::get):

Location:

trunk/JavaScriptCore

Files:

• Android.mk (modified) (1 diff)
• ChangeLog (modified) (1 diff)
• GNUmakefile.am (modified) (1 diff)
• JavaScriptCore.exp (modified) (3 diffs)
• JavaScriptCore.gypi (modified) (1 diff)
• JavaScriptCore.pro (modified) (1 diff)
• JavaScriptCore.xcodeproj/project.pbxproj (modified) (9 diffs)
• runtime/Collector.cpp (modified) (6 diffs)
• runtime/Collector.h (modified) (7 diffs)
• runtime/GCHandle.cpp (added)
• runtime/GCHandle.h (added)
• runtime/WeakGCPtr.h (modified) (5 diffs)

trunk/JavaScriptCore/Android.mk

@@ -97 +97 @@
         runtime/FunctionConstructor.cpp \
         runtime/FunctionPrototype.cpp \
+        runtime/GCHandle.cpp \
         runtime/GetterSetter.cpp \
         runtime/GlobalEvalFunction.cpp \

trunk/JavaScriptCore/ChangeLog

@@ +1 @@
+2010-08-06  Nathan Lawrence  <[email protected]>
+
+        Reviewed by Geoffrey Garen.
+
+        https://bugs.webkit.org/show_bug.cgi?id=43207
+
+        WeakGCPtr's should instead of directly pointing to the GC'd object
+        should be directed to an array of pointers that can be updated for
+        movable objects.
+
+        * Android.mk:
+        * GNUmakefile.am:
+        * JavaScriptCore.exp:
+        * JavaScriptCore.gypi:
+        * JavaScriptCore.pro:
+        * JavaScriptCore.xcodeproj/project.pbxproj:
+        * runtime/Collector.cpp:
+        (JSC::Heap::destroy):
+        (JSC::Heap::allocateBlock):
+        (JSC::Heap::freeBlock):
+        (JSC::Heap::updateWeakGCHandles):
+        (JSC::WeakGCHandlePool::update):
+        (JSC::Heap::addWeakGCHandle):
+        (JSC::Heap::markRoots):
+        * runtime/Collector.h:
+        (JSC::Heap::weakGCHandlePool):
+        * runtime/GCHandle.cpp: Added.
+        (JSC::WeakGCHandle::pool):
+        (JSC::WeakGCHandlePool::WeakGCHandlePool):
+        (JSC::WeakGCHandlePool::allocate):
+        (JSC::WeakGCHandlePool::free):
+        (JSC::WeakGCHandlePool::operator new):
+        * runtime/GCHandle.h: Added.
+        (JSC::WeakGCHandle::isValidPtr):
+        (JSC::WeakGCHandle::isPtr):
+        (JSC::WeakGCHandle::isNext):
+        (JSC::WeakGCHandle::invalidate):
+        (JSC::WeakGCHandle::get):
+        (JSC::WeakGCHandle::set):
+        (JSC::WeakGCHandle::getNextInFreeList):
+        (JSC::WeakGCHandle::setNextInFreeList):
+        (JSC::WeakGCHandlePool::isFull):
+        * runtime/WeakGCPtr.h:
+        (JSC::WeakGCPtr::WeakGCPtr):
+        (JSC::WeakGCPtr::~WeakGCPtr):
+        (JSC::WeakGCPtr::get):
+        (JSC::WeakGCPtr::clear):
+        (JSC::WeakGCPtr::assign):
+        (JSC::get):
+
 2010-08-06  Tor Arne Vestbø  <[email protected]>
 

trunk/JavaScriptCore/GNUmakefile.am

@@ -269 +269 @@
         JavaScriptCore/runtime/GCActivityCallback.cpp \
         JavaScriptCore/runtime/GCActivityCallback.h \
+        JavaScriptCore/runtime/GCHandle.cpp \
+        JavaScriptCore/runtime/GCHandle.h \
         JavaScriptCore/runtime/GetterSetter.cpp \
         JavaScriptCore/runtime/GetterSetter.h \

trunk/JavaScriptCore/JavaScriptCore.exp

@@ -142 +142 @@
 __ZN3JSC12StringObject4infoE
 __ZN3JSC12StringObjectC2EPNS_9ExecStateEN3WTF17NonNullPassRefPtrINS_9StructureEEERKNS_7UStringE
+__ZN3JSC12WeakGCHandle4poolEv
 __ZN3JSC12jsNumberCellEPNS_9ExecStateEd
 __ZN3JSC12nonInlineNaNEv
@@ -172 +173 @@
 __ZN3JSC16JSVariableObject14symbolTableGetERKNS_10IdentifierERNS_18PropertyDescriptorE
 __ZN3JSC16JSVariableObject19getOwnPropertyNamesEPNS_9ExecStateERNS_17PropertyNameArrayENS_15EnumerationModeE
+__ZN3JSC16WeakGCHandlePool4freeEPNS_12WeakGCHandleE
 __ZN3JSC16createRangeErrorEPNS_9ExecStateERKNS_7UStringE
 __ZN3JSC16throwSyntaxErrorEPNS_9ExecStateE
@@ -202 +204 @@
 __ZN3JSC3NaNE
 __ZN3JSC4Heap14primaryHeapEndEv
+__ZN3JSC4Heap15addWeakGCHandleEPNS_6JSCellE
 __ZN3JSC4Heap15recordExtraCostEm
 __ZN3JSC4Heap16objectTypeCountsEv

trunk/JavaScriptCore/JavaScriptCore.gypi

@@ -218 +218 @@
             'runtime/GCActivityCallback.cpp',
             'runtime/GCActivityCallback.h',
+            'runtime/GCHandle.cpp',
+            'runtime/GCHandle.h',
             'runtime/GetterSetter.cpp',
             'runtime/GetterSetter.h',

trunk/JavaScriptCore/JavaScriptCore.pro

@@ -141 +141 @@
     runtime/FunctionPrototype.cpp \
     runtime/GCActivityCallback.cpp \
+    runtime/GCHandle.cpp \
     runtime/GetterSetter.cpp \
     runtime/GlobalEvalFunction.cpp \

trunk/JavaScriptCore/JavaScriptCore.xcodeproj/project.pbxproj

@@ -513 +513 @@
                 DD2724691208D1FF00F9ABE7 /* AlignedMemoryAllocator.h in Headers */ = {isa = PBXBuildFile; fileRef = DD2724671208D1FF00F9ABE7 /* AlignedMemoryAllocator.h */; settings = {ATTRIBUTES = (Private, ); }; };
                 DD377CBC12072C18006A2517 /* Bitmap.h in Headers */ = {isa = PBXBuildFile; fileRef = DD377CBB12072C18006A2517 /* Bitmap.h */; settings = {ATTRIBUTES = (Private, ); }; };
+                DDE82AD31209D955005C1756 /* GCHandle.cpp in Sources */ = {isa = PBXBuildFile; fileRef = DDE82AD11209D955005C1756 /* GCHandle.cpp */; };
+                DDE82AD41209D955005C1756 /* GCHandle.cpp in Sources */ = {isa = PBXBuildFile; fileRef = DDE82AD11209D955005C1756 /* GCHandle.cpp */; };
+                DDE82AD51209D955005C1756 /* GCHandle.cpp in Sources */ = {isa = PBXBuildFile; fileRef = DDE82AD11209D955005C1756 /* GCHandle.cpp */; };
+                DDE82AD61209D955005C1756 /* GCHandle.h in Headers */ = {isa = PBXBuildFile; fileRef = DDE82AD21209D955005C1756 /* GCHandle.h */; };
+                DDE82AD71209D955005C1756 /* GCHandle.cpp in Sources */ = {isa = PBXBuildFile; fileRef = DDE82AD11209D955005C1756 /* GCHandle.cpp */; };
+                DDE82AD81209D955005C1756 /* GCHandle.h in Headers */ = {isa = PBXBuildFile; fileRef = DDE82AD21209D955005C1756 /* GCHandle.h */; settings = {ATTRIBUTES = (Private, ); }; };
                 DDF7ABD411F60ED200108E36 /* GCActivityCallback.h in Headers */ = {isa = PBXBuildFile; fileRef = DDF7ABD211F60ED200108E36 /* GCActivityCallback.h */; };
                 DDF7ABD511F60ED200108E36 /* GCActivityCallbackCF.cpp in Sources */ = {isa = PBXBuildFile; fileRef = DDF7ABD311F60ED200108E36 /* GCActivityCallbackCF.cpp */; };
@@ -1059 +1065 @@
                 DD2724671208D1FF00F9ABE7 /* AlignedMemoryAllocator.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = AlignedMemoryAllocator.h; sourceTree = "<group>"; };
                 DD377CBB12072C18006A2517 /* Bitmap.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = Bitmap.h; sourceTree = "<group>"; };
+                DDE82AD11209D955005C1756 /* GCHandle.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = GCHandle.cpp; sourceTree = "<group>"; };
+                DDE82AD21209D955005C1756 /* GCHandle.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = GCHandle.h; sourceTree = "<group>"; };
                 DDF7ABD211F60ED200108E36 /* GCActivityCallback.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = GCActivityCallback.h; sourceTree = "<group>"; };
                 DDF7ABD311F60ED200108E36 /* GCActivityCallbackCF.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = GCActivityCallbackCF.cpp; sourceTree = "<group>"; };
@@ -1625 +1633 @@
                                 F692A85C0255597D01FF60F7 /* FunctionPrototype.cpp */,
                                 F692A85D0255597D01FF60F7 /* FunctionPrototype.h */,
+                                DDE82AD11209D955005C1756 /* GCHandle.cpp */,
+                                DDE82AD21209D955005C1756 /* GCHandle.h */,
                                 BC02E9B80E184545000F9297 /* GetterSetter.cpp */,
                                 BC337BDE0E1AF0B80076918A /* GetterSetter.h */,
@@ -1913 +1923 @@
                                 1440074A0A536CC20005F061 /* NodeList.h in Headers */,
                                 DD2724681208D1FF00F9ABE7 /* AlignedMemoryAllocator.h in Headers */,
+                                DDE82AD61209D955005C1756 /* GCHandle.h in Headers */,
                         );
                         runOnlyForDeploymentPostprocessing = 0;
@@ -2215 +2226 @@
                                 DDF7ABD411F60ED200108E36 /* GCActivityCallback.h in Headers */,
                                 DD2724691208D1FF00F9ABE7 /* AlignedMemoryAllocator.h in Headers */,
+                                DDE82AD81209D955005C1756 /* GCHandle.h in Headers */,
                         );
                         runOnlyForDeploymentPostprocessing = 0;
@@ -2476 +2488 @@
                                 1440063F0A53598A0005F061 /* Node.c in Sources */,
                                 1440074B0A536CC20005F061 /* NodeList.c in Sources */,
+                                DDE82AD51209D955005C1756 /* GCHandle.cpp in Sources */,
                         );
                         runOnlyForDeploymentPostprocessing = 0;
@@ -2484 +2497 @@
                         files = (
                                 1440F6100A4F85670005F061 /* testapi.c in Sources */,
+                                DDE82AD41209D955005C1756 /* GCHandle.cpp in Sources */,
                         );
                         runOnlyForDeploymentPostprocessing = 0;
@@ -2663 +2677 @@
                                 DDF7ABD511F60ED200108E36 /* GCActivityCallbackCF.cpp in Sources */,
                                 8627E5EB11F1281900A313B5 /* PageAllocation.cpp in Sources */,
+                                DDE82AD71209D955005C1756 /* GCHandle.cpp in Sources */,
                         );
                         runOnlyForDeploymentPostprocessing = 0;
@@ -2671 +2686 @@
                         files = (
                                 932F5BDD0822A1C700736975 /* jsc.cpp in Sources */,
+                                DDE82AD31209D955005C1756 /* GCHandle.cpp in Sources */,
                         );
                         runOnlyForDeploymentPostprocessing = 0;

trunk/JavaScriptCore/runtime/Collector.cpp

@@ -171 +171 @@
     freeBlocks();
 
+    for (unsigned i = 0; i < m_weakGCHandlePools.size(); ++i)
+        m_weakGCHandlePools[i].deallocate();
+
 #if ENABLE(JSC_MULTIPLE_THREADS)
     if (m_currentThreadRegistrar) {
@@ -190 +193 @@
 NEVER_INLINE CollectorBlock* Heap::allocateBlock()
 {
-    AlignedBlock allocation = m_blockallocator.allocate();
+    AlignedCollectorBlock allocation = m_blockallocator.allocate();
     CollectorBlock* block = static_cast<CollectorBlock*>(allocation.base());
     if (!block)
@@ -208 +211 @@
     size_t numBlocks = m_heap.numBlocks;
     if (m_heap.usedBlocks == numBlocks) {
-        static const size_t maxNumBlocks = ULONG_MAX / sizeof(AlignedBlock) / GROWTH_FACTOR;
+        static const size_t maxNumBlocks = ULONG_MAX / sizeof(AlignedCollectorBlock) / GROWTH_FACTOR;
         if (numBlocks > maxNumBlocks)
             CRASH();
         numBlocks = max(MIN_ARRAY_SIZE, numBlocks * GROWTH_FACTOR);
         m_heap.numBlocks = numBlocks;
-        m_heap.blocks = static_cast<AlignedBlock*>(fastRealloc(m_heap.blocks, numBlocks * sizeof(AlignedBlock)));
+        m_heap.blocks = static_cast<AlignedCollectorBlock*>(fastRealloc(m_heap.blocks, numBlocks * sizeof(AlignedCollectorBlock)));
     }
     m_heap.blocks[m_heap.usedBlocks++] = allocation;
@@ -236 +239 @@
     if (m_heap.numBlocks > MIN_ARRAY_SIZE && m_heap.usedBlocks < m_heap.numBlocks / LOW_WATER_FACTOR) {
         m_heap.numBlocks = m_heap.numBlocks / GROWTH_FACTOR; 
-        m_heap.blocks = static_cast<AlignedBlock*>(fastRealloc(m_heap.blocks, m_heap.numBlocks * sizeof(AlignedBlock)));
+        m_heap.blocks = static_cast<AlignedCollectorBlock*>(fastRealloc(m_heap.blocks, m_heap.numBlocks * sizeof(AlignedCollectorBlock)));
     }
 }
@@ -907 +910 @@
 }
 
+void Heap::updateWeakGCHandles()
+{
+    for (unsigned i = 0; i < m_weakGCHandlePools.size(); ++i)
+        weakGCHandlePool(i)->update();
+}
+
+void WeakGCHandlePool::update()
+{
+    for (unsigned i = 1; i < WeakGCHandlePool::numPoolEntries; ++i) {
+        if (m_entries[i].isValidPtr()) {
+            JSCell* cell = m_entries[i].get();
+            if (!cell || !Heap::isCellMarked(cell))
+                m_entries[i].invalidate();
+        }
+    }
+}
+
+WeakGCHandle* Heap::addWeakGCHandle(JSCell* ptr)
+{
+    for (unsigned i = 0; i < m_weakGCHandlePools.size(); ++i)
+        if (!weakGCHandlePool(i)->isFull())
+            return weakGCHandlePool(i)->allocate(ptr);
+
+    AlignedMemory<WeakGCHandlePool::poolSize> allocation = m_weakGCHandlePoolAllocator.allocate();
+    m_weakGCHandlePools.append(allocation);
+
+    WeakGCHandlePool* pool = new (allocation) WeakGCHandlePool();
+    return pool->allocate(ptr);
+}
+
 void Heap::protect(JSValue k)
 {
@@ -1043 +1076 @@
     markStack.compact();
 
+    updateWeakGCHandles();
+
     m_heap.operationInProgress = NoOperation;
 }

trunk/JavaScriptCore/runtime/Collector.h

@@ -24 +24 @@
 
 #include "AlignedMemoryAllocator.h"
+#include "GCHandle.h"
 #include <stddef.h>
 #include <string.h>
@@ -63 +64 @@
 #endif
 
-    typedef AlignedMemoryAllocator<BLOCK_SIZE> AlignedAllocator;
-    typedef AlignedMemory<BLOCK_SIZE> AlignedBlock;
+    typedef AlignedMemoryAllocator<BLOCK_SIZE> CollectorBlockAllocator;
+    typedef AlignedMemory<BLOCK_SIZE> AlignedCollectorBlock;
 
     struct CollectorHeap {
         size_t nextBlock;
         size_t nextCell;
-        AlignedBlock* blocks;
+        AlignedCollectorBlock* blocks;
         
         void* nextNumber;
@@ -131 +132 @@
         static bool isCellMarked(const JSCell*);
         static void markCell(JSCell*);
+
+        WeakGCHandle* addWeakGCHandle(JSCell*);
 
         void markConservatively(MarkStack&, void* start, void* end);
@@ -173 +176 @@
         void markStackObjectsConservatively(MarkStack&);
 
+        void updateWeakGCHandles();
+        WeakGCHandlePool* weakGCHandlePool(size_t index);
+
         typedef HashCountedSet<JSCell*> ProtectCountSet;
 
@@ -178 +184 @@
 
         ProtectCountSet m_protectedValues;
+        WTF::Vector<AlignedMemory<WeakGCHandlePool::poolSize> > m_weakGCHandlePools;
 
         HashSet<MarkedArgumentBuffer*>* m_markListSet;
@@ -195 +202 @@
 
         // Allocates collector blocks with correct alignment
-        AlignedAllocator m_blockallocator; 
+        CollectorBlockAllocator m_blockallocator; 
+        WeakGCHandlePool::Allocator m_weakGCHandlePoolAllocator; 
         
         JSGlobalData* m_globalData;
@@ -303 +311 @@
         return result;
     }
+
+
+    inline WeakGCHandlePool* Heap::weakGCHandlePool(size_t index)
+    {
+        return static_cast<WeakGCHandlePool*>(m_weakGCHandlePools[index].base());
+    }
 } // namespace JSC
 

trunk/JavaScriptCore/runtime/WeakGCPtr.h

@@ -28 +28 @@
 
 #include "Collector.h"
+#include "GCHandle.h"
 #include <wtf/Noncopyable.h>
 
@@ -35 +36 @@
 template <typename T> class WeakGCPtr : Noncopyable {
 public:
-    WeakGCPtr() : m_ptr(0) { }
+    WeakGCPtr()
+        : m_ptr(0)
+    {
+    }
+
     WeakGCPtr(T* ptr) { assign(ptr); }
+
+    ~WeakGCPtr()
+    {
+        if (m_ptr)
+            m_ptr->pool()->free(m_ptr);
+    }
 
     T* get() const
     {
-        if (!m_ptr || !Heap::isCellMarked(m_ptr))
-            return 0;
-        return m_ptr;
+        if (m_ptr && m_ptr->isValidPtr())
+            return static_cast<T*>(m_ptr->get());
+        return 0;
     }
     
-    bool clear(JSCell* ptr)
+    bool clear(JSCell* p)
     {
-        if (ptr == m_ptr) {
-            m_ptr = 0;
-            return true;
-        }
-        return false;
+        if (!m_ptr || m_ptr->get() != p)
+            return false;
+
+        m_ptr->pool()->free(m_ptr);
+        m_ptr = 0;
+        return true;
     }
 
@@ -63 +75 @@
     operator bool() const { return m_ptr; }
 #else
-    typedef T* WeakGCPtr::*UnspecifiedBoolType;
+    typedef WeakGCHandle* WeakGCPtr::*UnspecifiedBoolType;
     operator UnspecifiedBoolType() const { return get() ? &WeakGCPtr::m_ptr : 0; }
 #endif
@@ -74 +86 @@
 
 private:
-    void assign(T* ptr)
+    void assign(JSCell* ptr)
     {
         ASSERT(ptr);
-        Heap::markCell(ptr);
-        m_ptr = ptr;
+        if (m_ptr)
+            m_ptr->set(ptr);
+        else
+            m_ptr = Heap::heap(ptr)->addWeakGCHandle(ptr);
     }
 
-    T* m_ptr;
+    WeakGCHandle* m_ptr;
 };
 
@@ -130 +144 @@
 }
 
-template <typename T> inline T* getPtr(const WeakGCPtr<T>& p)
+template <typename T> inline T* get(const WeakGCPtr<T>& p)
 {
     return p.get();