|Exact rooting is now enabled on desktop||Terrence Cole||1/17/14 1:24 PM|
Exact stack rooting is now enabled by default on desktop builds of firefox.
What this Means
SpiderMonkey will no longer scan the stack for live roots; you must now
wrap all GC thing pointers that live on the stack across a GC in the
JS::Rooted template for SpiderMonkey to see them. See the comments in
js/public/RootingAPI.h and the guide on the developer wiki for
further details. All currently existing instances in the browser build
have been updated; the hazard analysis build on TBPL, SM(Hf), will catch
any future pushes that break this invariant.
Why Do We Need This
Exact rooting is required for us to use GC algorithms that relocate
objects in memory. It will allow us to implement compacting GC to save
memory and generational GC to push our performance to the next level.
Fixing SM(Hf) Failures
If you do happen to introduce a rooting issue, the SM(Hf) build will
help you track it down and fix it. SM(Hf) runs on all pushes that feed
into m-c and is available in the default set that is run on try. It is
also available individually through the Try Chooser as "browser rooting
analysis" (-p linux64-br-haz).
Once the build is complete and has reported a failure, click on the
|results| link in the lower right pane of tbpl, then click on
hazards.txt.gz to get the list. Each hazard report includes the name of
the problematic variable, the call that might GC, including the file and
line number, and the live range of the unrooted variable in question.
Please read the wiki guide or ask in #jsapi if you have any questions.
Thanks to everyone who helped the project get to this point! In the next
few weeks we'll be getting the hazard analysis running on mobile and b2g
and deploying exact rooting on our remaining platforms.
|Re: Exact rooting is now enabled on desktop||Robert O'Callahan||1/17/14 1:57 PM|
Congratulations! This has been an epic journey :-).
Jtehsauts tshaei dS,o n" Wohfy Mdaon yhoaus eanuttehrotraiitny eovni
le atrhtohu gthot sf oirng iyvoeu rs ihnesa.r"t sS?o Whhei csha iids teoa
stiheer :p atroa lsyazye,d 'mYaonu,r "sGients uapr,e tfaokreg iyvoeunr,
'm aotr atnod sgaoy ,h o'mGee.t" uTph eann dt hwea lmka'n? gBoutt uIp
waanndt wyeonut thoo mken.o w
|Re: Exact rooting is now enabled on desktop||Jason Orendorff||1/17/14 2:00 PM|
On 1/17/14 3:24 PM, Terrence Cole wrote:*standing ovation forever*
|Re: Exact rooting is now enabled on desktop||Jim Blandy||1/17/14 3:22 PM|
On 01/17/2014 01:24 PM, Terrence Cole wrote:I've never heard of a major project escaping from conservative GC once
it had entered that state of sin; nor have I heard of anyone
implementing a moving collector after starting with a non-moving collector.
So, doing *both* is impressive. I hope it pays off big!
|Re: Exact rooting is now enabled on desktop||Benjamin Smedberg||1/18/14 7:08 AM|
On 1/17/2014 4:24 PM, Terrence Cole wrote:Does this mean that the moving GC is also enabled, or is that a later step?
If we see an increase in the crash rate for nightly builds, is it likely
that they will share a signature, or will this mainly expose itself as
memory corruption, which typically don't have useful crash
stacks/signatures? Are there ways for users who are seeing crashes to
turn on extra debugging (memory poisoning in the GC, for example) in
order to make crashes more reliable?
The stability team will be watching crash-stats closely over the next week.
|Re: Exact rooting is now enabled on desktop||Terrence Cole||1/18/14 9:04 AM|
On 01/18/2014 07:08 AM, Benjamin Smedberg wrote:No, moving GC is a later step. We are targeting moving GC to land in the
next cycle so that we can more easily separate the problems.
The second, although stacks will probably have a relatively tight
cluster too. Specifically, a crash here will manifest as use-after-free,
generally through some specific, local GC pointer variable.
Great question! We have a tool called "GC zeal" in builds with
--enable-gc-zeal and in all debug builds unconditionally. It adds a
small runtime overhead, but gives us fine-grained control over when GC's
happen and adds several verification modes for debugging specific
problems. I was under the impression that nightlys had this enabled, but
I am not seeing it there now.
Thanks for keeping an eye out!
|Re: Exact rooting is now enabled on desktop||Andrew McCreight||1/18/14 11:50 AM|
Nightly has compartment checking enabled, which may be what you are thinking of.
|Re: Exact rooting is now enabled on desktop||Chris Peterson||1/19/14 12:49 PM|
On 1/18/14, 9:04 AM, Terrence Cole wrote:Are there (inexpensive) runtime sanity checks that could be enabled in
all Nightly release builds? The Nightly channel already has extra checks
enabled that make it inappropriate for benchmarking, like
--enable-profiling and some ref counting checks that will MOZ_CRASH.
|Re: Exact rooting is now enabled on desktop||Cameron Kaiser||1/20/14 12:53 PM|
On 1/17/14 1:24 PM, Terrence Cole wrote:Great work! My only question: do JIT backends need to be adjusted for
this? I assume not, but I want to make sure.
|Re: Exact rooting is now enabled on desktop||Nicholas Nethercote||1/20/14 1:57 PM|
On Fri, Jan 17, 2014 at 3:22 PM, Jim Blandy <ji...@mozilla.com> wrote:There's no better way to answer the question "has X been done?" than
proclaiming loudly on the internet that "X has never been done!"
I did this by quoting Jim in a blog post  and was promptly informed
that both Racket and Mono have done this.
But who cares? This is a fantastic achievement, and I eagerly
anticipate the changes it will enable.
|Re: Exact rooting is now enabled on desktop||Terrence Cole||1/22/14 3:59 PM|