/*
* CDDL HEADER START
*
* The contents of this file are subject to the terms of the
* Common Development and Distribution License (the "License").
* You may not use this file except in compliance with the License.
*
* You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
* See the License for the specific language governing permissions
* and limitations under the License.
*
* When distributing Covered Code, include this CDDL HEADER in each
* file and include the License file at usr/src/OPENSOLARIS.LICENSE.
* If applicable, add the following below this CDDL HEADER, with the
* fields enclosed by brackets "[]" replaced with your own identifying
* information: Portions Copyright [yyyy] [name of copyright owner]
*
* CDDL HEADER END
*/
/*
*/
/* LINTLIBRARY */
#include <mtmalloc.h>
#include "mtmalloc_impl.h"
#include <unistd.h>
#include <synch.h>
#include <thread.h>
#include <pthread.h>
#include <stdio.h>
#include <limits.h>
#include <errno.h>
#include <string.h>
#include <strings.h>
#include <sys/sysmacros.h>
#include <atomic.h>
#include <stdlib.h>
/*
* To turn on the asserts just compile -DDEBUG
*/
#ifndef DEBUG
#define NDEBUG
#endif
#include <assert.h>
/*
* The MT hot malloc implementation contained herein is designed to be
* plug-compatible with the libc version of malloc. It is not intended
* to replace that implementation until we decide that it is ok to break
* customer apps (Solaris 3.0).
*
* For requests up to 2^^16, the allocator initializes itself into 4*NCPUS
* worth of chains of caches. When a memory request is made, and
* MTEXCLUSIVE is not enabled the calling thread is vectored into one
* of 2*NCPUS worth of caches. The LWP id gives us a cheap,
* contention-reducing index to use. If MTEXCLUSIVE has been enabled,
* and the thread id is less than or equal to 2*NCPUS, then the request
* is routed to an exclusive bucket based on thread id. If the thread id is
* > 2*NCPUS, then it is routed as if MTEXCLUSIVE is not enabled.
*
* Once the thread is vectored into one of the list of caches the real
* allocation of the memory begins. The size is determined to figure out which
* bucket the allocation should be satisfied from. The management of free
* buckets is done via a bitmask. A free bucket is represented by a 1. The
* first free bit represents the first free bucket. The position of the bit,
* represents the position of the bucket in the arena.
*
* When the memory from the arena is handed out, the address of the cache
* control structure is written in the word preceding the returned memory.
* This cache control address is used during free() to mark the buffer free
* in the cache control structure.
*
* When all available memory in a cache has been depleted, a new chunk of memory
* is allocated via sbrk(). The new cache is allocated from this chunk of memory
* and initialized in the function create_cache(). New caches are installed at
* into the last array, and when that array is filled a new cachespaceblock
* is created and the cache installed at the beginning of the new array.
* The new cachespaceblock is installed at the front of the singly
* linked list of cachespaceblocks for the same size memory pools.
* This helps to ensure that there will tend to be available memory
* in the beginning of the list.
*
* Long linked lists hurt performance. To decrease this effect, there is a
* tunable, requestsize, that bumps up the sbrk allocation size and thus
* increases the number of available blocks within an arena. We also keep
* a "hint" for each cachespaceblock , which is the last cachespaceblock
* in the list allocated from. This lowers the cost of searching if there
* are a lot of fully allocated cachespaceblock at the front of the list.
*
* For requests greater than 2^^16 (oversize allocations), there are two pieces
* of overhead. There is the OVERHEAD used to hold the cache addr
* (&oversize_list), plus an oversize_t structure to further describe the block.
* This Oversize Allocation trigger is tunable. MTMAXCACHE can be set
* in the environment variable MTMALLOC_OPTIONS to 16,17,18,19,20,or 21.
* This results in using the buckets for all allocations less than
* 2^^MTMAXCACHE.
*
* The oversize list is kept as defragmented as possible by coalescing
* freed oversized allocations with adjacent neighbors.
*
* Addresses handed out are stored in a hash table, and are aligned on
* MTMALLOC_MIN_ALIGN-byte boundaries at both ends. Request sizes are rounded-up
* where necessary in order to achieve this. This eases the implementation of
* MTDEBUGPATTERN and MTINITPATTERN, particularly where coalescing occurs.
*
* A memalign allocation takes memalign header overhead. There's two
* types of memalign headers distinguished by MTMALLOC_MEMALIGN_MAGIC
* and MTMALLOC_MEMALIGN_MIN_MAGIC. When the size of memory taken to
* get to the aligned address from malloc'ed address is the minimum size
* OVERHEAD, we create a header taking only one OVERHEAD space with magic
* number MTMALLOC_MEMALIGN_MIN_MAGIC, and we know by subtracting OVERHEAD
* from memaligned address, we can get to the malloc'ed address. Otherwise,
* we create a memalign header taking two OVERHEAD space, one stores
* MTMALLOC_MEMALIGN_MAGIC magic number, the other one points back to the
* malloc'ed address.
*/
static int setup_caches(void);
/*
* The additional parameter for malloc_internal
* is for a flag controlling the use of the parent lock.
*/
static void add_oversize(oversize_t *);
static void reinit_cpu_list(void);
static void reinit_cache(cache_t *);
static void free_oversize(oversize_t *, int);
/*
* oversize hash table stuff
*/
& ~((uintptr_t)(a) - 1)))
/*
* Gets a decent "current cpu identifier", to be used to reduce contention.
* Eventually, this should be replaced by an interface to get the actual
*/
#define INSERT_ONLY 0
#define FALSE 0
/* maximum size before overflow */
static int CACHELIST_SIZE;
/*
* ALIGN(NUM_CACHES *
* sizeof (cache_head_t),CACHE_COHERENCY_UNIT)
*/
#ifdef _LP64
#else
#endif
NULL,
0 /* sentinal */
};
static int ncpus = 0;
/*
* lockfree_buckets buckets are created in the top half of the cpu_list
* and do not use the parent lock. By default lockfree_threshold is 0
* and no lwps get an exclusive bucket. When MTEXCLSIVE is set via
* mallocctl or the environment variable option, then lockfree_threshold
* is set to lockfree_buckets and lwps with threadid <=lockfree_threshold
* get an exclusive bucket.
*/
static int lockfree_buckets = 0;
/*
* if do_realfree != 0 call madvise for all allocations >
* do_realfree*pagesize
* do_realfree must be > 1
*/
/*
* We require allocations handed out to be aligned on MTMALLOC_MIN_ALIGN-byte
* boundaries. We round up sizeof (oversize_t) (when necessary) to ensure that
* this is achieved.
*/
/*
* memalign header takes 2 OVERHEAD space. One for memalign magic, and the
* other one points back to the start address of originally allocated space.
*/
else {\
(uintptr_t)malloc_addr; \
}
/*
* Add big to the oversize hash table at the head of the relevant bucket.
*/
static void
{
}
static int
{
break;
}
return (-1);
return (0);
}
void *
{
if (bytes > MAX_CACHED) {
/*
* the following change was made to improve DTrace
* tracability, without it tail call elimination
* makes it impossible to trace on the return from
* oversize
*/
return (ret_ptr);
}
/*
* If setup_caches fails, we set ENOMEM and return NULL
*/
if (setup_caches() == 0) {
return (NULL);
}
}
if (this_lwp <= lockfree_threshold) {
return (malloc_internal(bytes,
}
TRUE));
}
void *
{
if (bytes == 0) {
return ((void *)0x00000001);
}
if (ptr <= (void *)0x00000001)
/*
* Optimization possibility :
* p = malloc(64);
* q = realloc(p, 64);
* q can be same as p.
* Apply this optimization for the normal
* sized caches for now.
*/
return (ptr);
}
return (NULL);
/*
* If new == ptr, ptr has previously been freed. Passing a freed pointer
* to realloc() is not allowed - unless the caller specifically states
* otherwise, in which case we must avoid freeing ptr (ie new) before we
* return new. There is (obviously) no requirement to memcpy() ptr to
* new before we return.
*/
if (!(debugopt & MTDOUBLEFREE))
abort();
return (new);
}
}
return (new);
}
return (new);
}
void *
{
void * ptr;
return (NULL);
}
return (NULL);
return (ptr);
}
void
{
int32_t i;
if (ptr <= (void *)0x00000001)
return;
}
(void) mutex_lock(&oversize_lock);
if (!(debugopt & MTDOUBLEFREE))
abort();
(void) mutex_unlock(&oversize_lock);
return;
}
/*
* big is the oversize_t
* big->addr is what was returned from malloc
* big->size is length
* so if addr is page aligned
* madvise(big->addr, big->size, MADV_FREE)
* even if addr is not page aligned, then we can still madvise
* a subset of the range
* recall that a oversize allocation is always > a page
* page_offset=addr%pagesize
* if (page_offset != 0 ) page_offset=pagesize-page_offset
* madvise(addr+offset, big->size - offset, MADV_FREE);
*/
if (page_offset != 0)
}
if (debugopt & MTDEBUGPATTERN)
(void) mutex_unlock(&oversize_lock);
return;
}
/*
* This is the distance measured in bits into the arena.
* The value of offset is in bytes but there is a 1-1 correlation
* between distance into the arena and distance into the
* freelist bitmask.
*/
/*
* i is total number of bits to offset into freelist bitmask.
*/
/*
* which_bit is the bit offset into the byte in the freelist.
* if our freelist bitmask looks like 0xf3 and we are freeing
* block 5 (ie: the 6th block) our mask will be 0xf7 after
* the free. Things go left to right that's why the mask is 0x80
* and not 0x01.
*/
which_bit = i % FREEMASK_BITS;
/* we copy the pattern before we set the bit to free */
if (debugopt & MTDEBUGPATTERN)
/* madvise if requested */
if (page_offset != 0)
}
if (!(debugopt & MTDOUBLEFREE))
abort();
} else {
}
}
void *
{
void *alloc_buf;
void *ret_buf;
misaligned(alignment) ||
return (NULL);
}
/* <= MTMALLOC_MIN_ALIGN, malloc can provide directly */
if (alignment <= MTMALLOC_MIN_ALIGN)
return (NULL);
}
/* malloc sets errno */
return (NULL);
/*
* If alloc_size > MAX_CACHED, malloc() will have returned a multiple of
* MTMALLOC_MIN_ALIGN, having rounded-up alloc_size if necessary. Since
* we will use alloc_size to return the excess fragments to the free
* list, we also round-up alloc_size if necessary.
*/
if ((alloc_size > MAX_CACHED) &&
/* aligned correctly */
/*
* If the leftover piece of the memory > MAX_CACHED,
* split off the piece and return it back to the freelist.
*/
free_oversize(tail, 0);
}
} else {
/* needs to be aligned */
if (alloc_size <= MAX_CACHED) {
return (ret_buf);
}
/*
* Only check for the fragments when the memory is allocted
* from oversize_list. Split off a fragment and return it
* to the oversize freelist when it's > MAX_CACHED.
*/
tail_sz = alloc_size -
switch (oversize_bits) {
case NONE_OVERSIZE:
case DATA_OVERSIZE:
break;
case HEAD_OVERSIZE:
/*
* If we can extend data > MAX_CACHED and have
* head still > MAX_CACHED, we split head-end
* as the case of head-end and data oversized,
* otherwise just create memalign header.
*/
break;
} else {
taddr);
}
/* FALLTHROUGH */
case HEAD_AND_DATA_OVERSIZE:
/*
* Split off the head fragment and
* return it back to oversize freelist.
* Create oversize header for the piece
* of (data + tail fragment).
*/
(void) mutex_lock(&oversize_lock);
(void) mutex_unlock(&oversize_lock);
/* free up the head fragment */
break;
case TAIL_OVERSIZE:
/*
* If we can extend data > MAX_CACHED and have
* tail-end still > MAX_CACHED, we split tail
* end, otherwise just create memalign header.
*/
break;
} else {
}
/* FALLTHROUGH */
case DATA_AND_TAIL_OVERSIZE:
/*
* Split off the tail fragment and
* return it back to oversize freelist.
* Create memalign header and adjust
* the size for the piece of
* (head fragment + data).
*/
free_oversize(tail, 0);
break;
case HEAD_AND_TAIL_OVERSIZE:
/*
* Split off the head fragment.
* We try to free up tail-end when we can
* extend data size to (MAX_CACHED + 8)
* and remain tail-end oversized.
* The bottom line is all split pieces
* should be oversize in size.
*/
/*
* If the chunk is not big enough
* to make both data and tail oversize
* we just keep them as one piece.
*/
(void) mutex_lock(&oversize_lock);
(void) mutex_unlock(&oversize_lock);
break;
} else {
/*
* extend data size > MAX_CACHED
* and handle it as head, data, tail
* are all oversized.
*/
}
/* FALLTHROUGH */
case ALL_OVERSIZE:
/*
* split off the head and tail fragments,
* return them back to the oversize freelist.
* Alloc oversize header for data seg.
*/
/* create oversize header for data seg */
(void) mutex_lock(&oversize_lock);
(void) mutex_unlock(&oversize_lock);
/* create oversize header for tail fragment */
free_oversize(tail, 0);
break;
default:
/* should not reach here */
assert(0);
}
}
return (ret_buf);
}
void *
{
static unsigned pagesize;
if (size == 0)
return (NULL);
if (!pagesize)
}
void
{
(void) mutex_lock(&mallocctl_lock);
switch (cmd) {
case MTDEBUGPATTERN:
/*
* Reinitialize free blocks in case malloc() is called prior
* to mallocctl().
*/
/* reinit is now an atomic counter */
(void) atomic_inc_uint(&reinit);
(void) atomic_inc_uint(&reinit);
}
/*FALLTHRU*/
case MTDOUBLEFREE:
case MTINITBUFFER:
if (value)
else
break;
case MTEXCLUSIVE:
(void) atomic_swap_uint(&lockfree_threshold,
break;
case MTCHUNKSIZE:
requestsize = value;
break;
case MTREALFREE:
do_realfree = value;
do_realfree = 2;
break;
default:
break;
}
(void) mutex_unlock(&mallocctl_lock);
}
/*
* Initialization function, called from the init section of the library.
* No locking is required here because we are single-threaded during
* library initialization.
*/
static uint_t
fallback_curcpu(void)
{
return (0);
}
/*
* Returns non-zero on success, zero on failure.
*
* This carefully doesn't set cpu_list until initialization is finished.
*/
static int
setup_caches(void)
{
uint_t i, j;
int do_MTEXCLUSIVE = 0;
int change_MTCHUNKSIZE = 0;
int change_MTDEBUGPATTERN = 0;
int new_chunk;
(void) mutex_lock(&init_lock);
(void) mutex_unlock(&init_lock);
return (1); /* success -- already initialized */
}
/* access MTMALLOC_OPTIONS from the environment */
if (mtmalloc_options != NULL) {
/*
* we have options, but we have to apply them in order
* MTMAXCACHE goes first so we can setup the caches
* after that we can accept MTEXCLUSIVE or MTCHUNKSIZE
*/
/* environment variable length OK */
break;
if (val[0] == 'Y' ||
val[0] == 'y') {
do_MTEXCLUSIVE = 1;
}
change_MTCHUNKSIZE = 1;
do_realfree = 2;
}
debugopt |= MTDOUBLEFREE;
}
debugopt |= MTINITBUFFER;
}
}
}
}
} /* end of decode MTMALLOC_OPTIONS */
if (MAX_CACHED_SHIFT < 16)
MAX_CACHED_SHIFT = 16;
if (MAX_CACHED_SHIFT > 21)
MAX_CACHED_SHIFT = 21;
switch (MAX_CACHED_SHIFT) {
case 16:
MINSIZE = 9;
break;
case 17:
MINSIZE = 17;
break;
case 18:
MINSIZE = 41;
break;
case 19:
MINSIZE = 81;
break;
case 20:
MINSIZE = 137;
break;
case 21:
MINSIZE = 265;
break;
default:
MINSIZE = 9;
}
#ifdef _LP64
if (MINSIZE < 64)
MINSIZE = 64;
#endif
/* end of MTMALLOC_OPTIONS section */
/*
* Get a decent "current cpu identifier", to be used to reduce
* contention. Eventually, this should be replaced by an interface
*/
if (new_curcpu == NULL) {
ncpus = 1;
} else {
}
/* round ncpus up to a power of 2 */
ncpus++;
/* allocate additional percpu structures for nocache locks */
/*
* We now do some magic with the brk. What we want to get in the
* end is a bunch of well-aligned stuff in a big initial allocation.
* Along the way, we do sanity checks to make sure no one else has
* touched the brk (which shouldn't happen, but it's always good to
* check)
*
* First, make sure sbrk is sane, and store the current brk in oldbrk.
*/
if ((void *)oldbrk == (void *)-1) {
(void) mutex_unlock(&init_lock);
return (0); /* sbrk is broken -- we're doomed. */
}
/*
* Now, align the brk to a multiple of CACHE_COHERENCY_UNIT, so that
* the percpu structures and cache lists will be properly aligned.
*
* 2. All hunks will be page-aligned, assuming HUNKSIZE >= PAGESIZE,
* so they can be paged out individually.
*/
(void) mutex_unlock(&init_lock);
return (0); /* someone else sbrked */
}
/*
* For each cpu, there is one percpu_t and a list of caches
*/
(void) mutex_unlock(&init_lock);
return (0); /* someone else sbrked */
}
/*
* Finally, align the brk to HUNKSIZE so that all hunks are
* page-aligned, to avoid edge-effects.
*/
(void) mutex_unlock(&init_lock);
return (0); /* someone else sbrked */
}
/* initialize the percpu list */
for (i = 0; i < ncpus; i++) {
for (j = 0; j < NUM_CACHES; j++) {
}
USYNC_THREAD, NULL);
/* get the correct cache list alignment */
}
/*
* now install the global variables, leaving cpu_list for last, so that
* there aren't any race conditions.
*/
curcpu = new_curcpu;
/* the following code support the use ot MTMALLOC_OPTIONS */
if (do_MTEXCLUSIVE) {
}
if (change_MTCHUNKSIZE) {
}
if (change_MTDEBUGPATTERN) {
/* reinit is now an atomic counter */
(void) atomic_inc_uint(&reinit);
(void) atomic_inc_uint(&reinit);
}
/* end of MTMALLOC_OPTIONS section */
(void) mutex_unlock(&init_lock);
return (1);
}
static void
{
/*
* We've got span bytes starting at cp. The order is:
* cache_t
* ulong_t freemask[nmasks];
* caddr_t arena; the remaining storage
*/
cp->mt_lastoffset = 0;
/* Now that that's all set up, set up the freemask */
while (nfree >= FREEMASK_BITS) {
nfree -= FREEMASK_BITS;
}
if (nfree > 0) {
}
if (debugopt & MTDEBUGPATTERN) {
}
}
static void
reinit_cpu_list(void)
{
int i;
reinit = 0;
return;
}
/* Reinitialize free oversize blocks. */
(void) mutex_lock(&oversize_lock);
if (debugopt & MTDEBUGPATTERN)
(void) mutex_unlock(&oversize_lock);
/* Reinitialize free blocks. */
/* for each cpuptr */
/* for each of the NUM_CACHES power of two based caches */
/* while we have arrays of caches */
for (i = 0; i < CACHESPACES; i++) {
}
}
}
}
}
}
static void
{
if (mask & 0x1) {
}
}
}
}
/* locks_used tells us whether to use per bucket locks */
static void *
{
int dbg_pattern = 0;
long thisrequest;
logsz++;
if (locks_used) {
}
/*
* Find a cache of the appropriate size with free buffers.
*
* We don't need to lock each cache as we check their mt_nfree
* count,
* since:
* 1. We are only looking for caches with mt_nfree > 0. If a
* free happens during our search, it will increment mt_nfree,
* which will not effect the test.
* 2. Allocations can decrement mt_nfree, but they can't happen
* as long as we hold mt_parent_lock.
*/
/*
* Search through the list, starting at the mt_hint
* We have a linked list of blocks, each block with
* a default 512 caches
*/
/* First time this has been used */
/* allocating space for 512(default) caches */
if (locks_used)
return (NULL);
}
sizeof (cachespaceblock_t));
/* Set up hint, the address of the first mt_cachespaceblock */
}
/*
* at this point we always have a hint
* Find a cache with free space
*/
/*
* No space in most recently used cache,
* need to locate a new cache
*/
cacheindex = 0xffffffff;
/* starting at the beginning */
for (i = 0; i < CACHESPACES; i++) {
if (hintcspaceblock->mt_nfree[i] != 0) {
/* Found cache */
cacheindex = i;
/* Record hint for next time */
break;
}
}
if (cacheindex == 0xffffffff) {
/*
* Still unable to locate a cache with space
* so need to scan
* cache space blocks
*
* Start searching from the block after the
* hint block
*/
while ((curcspaceblk != NULL) &&
(cacheindex == 0xffffffff)) {
/*
* The following code assumes that
* curcspaceblk->mt_nfree[0]
* is eight byte aligned
*/
&curcspaceblk->mt_nfree[0];
for (i = 0; i < CACHESPACES; i += 2) {
if (*llnfree != 0) {
/*
* if (curcspaceblk->
* mt_nfree[i] != 0)
* Check whether it is the
* first in the pair
*/
if (curcspaceblk->
mt_nfree[i] == 0) {
i++;
}
/* Found cache */
cacheindex = i;
/* Record hint for next time */
->mt_cache[i];
break;
}
llnfree++; /* Next pair of elements */
}
/* Scan next block */
}
}
if (cacheindex == 0xffffffff) {
/*
* Still unable to locate a cache with space so need to
* scan all cache space blocks
* Start scanning from top
*/
/* Scan until we reach the last hint block */
while ((curcspaceblk !=
/*
* The following code assumes that
* curcspaceblk->mt_nfree[0]
* is eight byte aligned
*/
&curcspaceblk->mt_nfree[0];
for (i = 0; i < CACHESPACES; i += 2) {
if (*llnfree != 0) {
/*
* if (curcspaceblk->
* mt_nfree[i] != 0)
* Check whether it is the
* first in the pair
*/
if (curcspaceblk->
mt_nfree[i] == 0) {
i++;
}
/* Found cache */
cacheindex = i;
/* Record hint for next time */
= curcspaceblk;
mt_cache[i];
break;
}
llnfree++; /* Next pair of elements */
}
/* Scan next block */
}
}
if (cacheindex == 0xffffffff) {
/*
* Unable to locate any free space need to
* add a new cache
*/
for (i = 0; i < CACHESPACES; i++) {
== 0) {
/* Found location to make cache */
cacheindex = i;
/* Set up hints */
break;
}
}
if (cacheindex == 0xffffffff) {
/* Entire cache space block has been used up */
/* Allocate new one */
morecore(sizeof (cachespaceblock_t));
if (curcspaceblk ==
(cachespaceblock_t *)-1) {
if (locks_used)
(void) mutex_unlock(
&cpuptr->mt_parent_lock);
return (NULL);
}
/* zero it out */
(void) memset(curcspaceblk, 0,
sizeof (cachespaceblock_t));
/* Insert at top of list */
/* Set up hints */
cacheindex = 0; /* Start from the beginning */
}
/* Now make the new cache */
if (locks_used)
(void) mutex_unlock(
&cpuptr->mt_parent_lock);
return (NULL);
}
} /* New cache created */
}
/* thiscache now points to a cache with available space */
if (*freemask == 0) {
int looped = 0;
/*
* We allocate freemasks in multiples of four, so we can
* unroll the search safely. There should be at least
* one set bit, so we should never abort(). We start
* at a multiple of four near the last offset.
*/
for (;;) {
/* make sure we only loop around once */
if (looped) {
/* no free bit found */
abort();
}
looped = 1;
}
break; /* found free bit */
}
}
freemask--; /* undo the post-increment */
}
/* find the lowest set bit by binary search */
i = 0;
#ifdef _LP64
#endif
/* load the value of reinit() before changing the free mask */
old_reinit = reinit;
/* and clear the bit, marking the buffer allocated */
if (atomic_clear_long_excl(freemask, i) != 0) {
/* someone already allocated buffer */
abort(); /* someone already allocated it! */
}
if (locks_used) {
if (dbg_pattern) {
dbg_pattern = 0;
}
}
} else {
/*
* This comparison will fail if REINIT() could have been
* true before we cleared the bit in freeblocks. If it
* could have been, the reinit thread may be in the middle
* of processing our cache, and could have seen our block
* as free.
* If reinit is odd then we are in reinit_cpu_list
* If reinit is even then we are NOT in reinit_cpu_list
* If reinit is zero then we were never in reinit_cpu_list
* REINIT() is true if odd, in reinit_cpu_list
*
* We must not return the buffer to our caller until the
* reinit thread is guaranteed to not be touching it. The
* easiest way to do so is to grab and drop our percpu's
* mt_parent lock. Since the re-init thread holds the
* percpu lock while it processes the cache, this guarantees
* that either:
*
* 1. The reinit thread has not yet processed our percpu, or
* 2. the reinit thread has already processed our percpu.
*
* In either case, he will not be overwriting our buffer,
* so it is safe to return it to our caller. Regardless,
* since the initialization state of the buffer is not known,
* we skip debug pattern checking.
*/
dbg_pattern = 0;
}
}
/*
* Now you have the offset in n, you've changed the free mask
* in the freelist. Nothing left to do but find the block
* in the arena and put the value of thiscache in the word
* ahead of the handed out address and return the memory
* back to the user.
*/
/* make sure we don't hand out memory not from this cache */
/*
* the dbg_pattern is zero if we never called
* mallocctl(MTDEBUGPATTERN
* or if reinit was odd and we were not using locks
* dbg_pattern is set if we were using locks and
* mallocctl(MTDEBUGPATTERN)
* has been called and mallocctl is not currently executing
*/
if (dbg_pattern)
/* reference after free */
abort();
}
if (debugopt & MTINITBUFFER)
return ((void *)ret);
}
static void *
{
void * ret;
/*
* The request size is too big. We need to do this in
* chunks. Sbrk only takes an int for an arg.
*/
return ((void *)-1);
while (wad > 0) {
return ((void *)-1);
}
}
} else
return (ret);
}
static void *
{
/* make sure we will not overflow */
if (size > MAX_MTMALLOC) {
return (NULL);
}
/*
* Since we ensure every address we hand back is
* MTMALLOC_MIN_ALIGN-byte aligned, ALIGNing size ensures that the
* memory handed out is MTMALLOC_MIN_ALIGN-byte aligned at both ends.
* This eases the implementation of MTDEBUGPATTERN and MTINITPATTERN,
* particularly where coalescing occurs.
*/
/*
* The idea with the global lock is that we are sure to
* block in the kernel anyway since given an oversize alloc
* we are sure to have to call morecore();
*/
(void) mutex_lock(&oversize_lock);
abort(); /* reference after free */
} else {
/* Get more 8-byte aligned memory from heap */
(void) mutex_unlock(&oversize_lock);
return (NULL);
}
}
/* Add big to the hash table at the head of the relevant bucket. */
if (debugopt & MTINITBUFFER)
(void) mutex_unlock(&oversize_lock);
return ((void *)ret);
}
static void
{
/* locate correct insertion point in size-ordered list */
;
/* link into size-ordered list */
/*
* link item into address-ordered list
* (caller provides insertion point as an optimization)
*/
}
static void
{
/* unlink from address list */
/* unlink from size list */
}
static void
{
/* unlink from size list */
/* locate correct insertion point in size-ordered list */
;
/* link into size-ordered list */
}
}
static void
{
/*
* Locate insertion point in address-ordered list
*/
;
/*
* Determine how to add chunk to oversize freelist
*/
/* Check for adjacency with left chunk */
}
/* Check for adjacency with right chunk */
}
}
/*
* If MTDEBUGPATTERN==1, lp->addr will have been overwritten with
* FREEPATTERN for lp->size bytes. If we can merge, the oversize
* header(s) that will also become part of the memory available for
* FREEPATTERN or we will SIGABRT when this memory is next reallocated.
*/
switch (merge_flags) {
case INSERT_ONLY: /* Coalescing not possible */
break;
case COALESCE_LEFT:
if (debugopt & MTDEBUGPATTERN)
break;
case COALESCE_RIGHT:
if (debugopt & MTDEBUGPATTERN)
break;
case COALESCE_WITH_BOTH_SIDES: /* Merge (with right) to the left */
if (debugopt & MTDEBUGPATTERN) {
}
break;
}
}
/*
* Find memory on our list that is at least size big. If we find a block that is
* big enough, we break it up and return the associated oversize_t struct back
* to the calling client. Any leftover piece of that block is returned to the
* freelist.
*/
static oversize_t *
{
return (NULL);
/* breaking up a chunk of memory */
> MAX_CACHED) {
abort();
} else {
}
return (wp);
}
static void
{
buf += 4;
}
}
static void *
{
return (buf);
return (NULL);
}
static void
{
(void) mutex_lock(&oversize_lock);
if (alloced)
(void) remove_hash(ovp);
(void) mutex_unlock(&oversize_lock);
}
static oversize_t *
{
return (ovsz_hdr);
}
static void
{
(void) mutex_lock(&oversize_lock);
}
}
static void
{
}
(void) mutex_unlock(&oversize_lock);
}
#pragma init(malloc_init)
static void
malloc_init(void)
{
/*
* This works in the init section for this library
* because setup_caches() doesn't call anything in libc
* that calls malloc(). If it did, disaster would ensue.
*
* For this to work properly, this library must be the first
* one to have its init section called (after libc) by the
* dynamic linker. If some other library's init section
* ran first and called malloc(), disaster would ensue.
* Because this is an interposer library for malloc(), the
* dynamic linker arranges for its init section to run first.
*/
int i;
i = setup_caches();
if (i == 0)
abort();
}