Moves AlignedMemory from solana_rbpf into a new crate: memory-managment. (#28079)

* Moves AlignedMemory from solana_rbpf into a new crate: memory-managment.

* Makes cargo clippy happy.

* deny clippy::integer_arithmetic

* Makes write_unchecked() take a generic parameter.

* Restricts AlignedMemory::write_unchecked() to Pod types.

* Adds DynamicLayoutArray.

* Moves is_memory_aligned() into crate root.
This commit is contained in:
Alexander Meißner 2022-10-05 08:39:55 +02:00 committed by GitHub
parent e3e888c0e0
commit 58a9bf74e1
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
6 changed files with 505 additions and 0 deletions

4
Cargo.lock generated
View File

@ -5587,6 +5587,10 @@ dependencies = [
"solana-sdk 1.15.0", "solana-sdk 1.15.0",
] ]
[[package]]
name = "solana-memory-management"
version = "1.15.0"
[[package]] [[package]]
name = "solana-merkle-root-bench" name = "solana-merkle-root-bench"
version = "1.15.0" version = "1.15.0"

View File

@ -37,6 +37,7 @@ members = [
"log-analyzer", "log-analyzer",
"logger", "logger",
"measure", "measure",
"memory-management",
"merkle-root-bench", "merkle-root-bench",
"merkle-tree", "merkle-tree",
"metrics", "metrics",

View File

@ -0,0 +1,9 @@
[package]
name = "solana-memory-management"
version = "1.15.0"
description = "Solana memory management"
authors = ["Solana Maintainers <maintainers@solana.foundation>"]
repository = "https://github.com/solana-labs/solana"
homepage = "https://solana.com/"
license = "Apache-2.0"
edition = "2021"

View File

@ -0,0 +1,289 @@
//! Aligned memory
use std::{mem, ptr};
/// Scalar types, aka "plain old data"
pub trait Pod {}
impl Pod for bool {}
impl Pod for u8 {}
impl Pod for u16 {}
impl Pod for u32 {}
impl Pod for u64 {}
impl Pod for i8 {}
impl Pod for i16 {}
impl Pod for i32 {}
impl Pod for i64 {}
/// Provides u8 slices at a specified alignment
#[derive(Debug, PartialEq, Eq)]
pub struct AlignedMemory<const ALIGN: usize> {
max_len: usize,
align_offset: usize,
mem: Vec<u8>,
zero_up_to_max_len: bool,
}
impl<const ALIGN: usize> AlignedMemory<ALIGN> {
fn get_mem(max_len: usize) -> (Vec<u8>, usize) {
let mut mem: Vec<u8> = Vec::with_capacity(max_len.saturating_add(ALIGN));
mem.push(0);
let align_offset = mem.as_ptr().align_offset(ALIGN);
mem.resize(align_offset, 0);
(mem, align_offset)
}
fn get_mem_zeroed(max_len: usize) -> (Vec<u8>, usize) {
// use calloc() to get zeroed memory from the OS instead of using
// malloc() + memset(), see
// https://github.com/rust-lang/rust/issues/54628
let mut mem = vec![0; max_len];
let align_offset = mem.as_ptr().align_offset(ALIGN);
mem.resize(max_len.saturating_add(align_offset), 0);
(mem, align_offset)
}
/// Returns a filled AlignedMemory by copying the given slice
pub fn from_slice(data: &[u8]) -> Self {
let max_len = data.len();
let (mut mem, align_offset) = Self::get_mem(max_len);
mem.extend_from_slice(data);
Self {
max_len,
align_offset,
mem,
zero_up_to_max_len: false,
}
}
/// Returns a new empty AlignedMemory with uninitialized preallocated memory
pub fn with_capacity(max_len: usize) -> Self {
let (mem, align_offset) = Self::get_mem(max_len);
Self {
max_len,
align_offset,
mem,
zero_up_to_max_len: false,
}
}
/// Returns a new empty AlignedMemory with zero initialized preallocated memory
pub fn with_capacity_zeroed(max_len: usize) -> Self {
let (mut mem, align_offset) = Self::get_mem_zeroed(max_len);
mem.truncate(align_offset);
Self {
max_len,
align_offset,
mem,
zero_up_to_max_len: true,
}
}
/// Returns a new filled AlignedMemory with zero initialized preallocated memory
pub fn zero_filled(max_len: usize) -> Self {
let (mem, align_offset) = Self::get_mem_zeroed(max_len);
Self {
max_len,
align_offset,
mem,
zero_up_to_max_len: true,
}
}
/// Calculate memory size
pub fn mem_size(&self) -> usize {
self.mem.capacity().saturating_add(mem::size_of::<Self>())
}
/// Get the length of the data
pub fn len(&self) -> usize {
self.mem.len().saturating_sub(self.align_offset)
}
/// Is the memory empty
pub fn is_empty(&self) -> bool {
self.mem.len() == self.align_offset
}
/// Get the current write index
pub fn write_index(&self) -> usize {
self.mem.len()
}
/// Get an aligned slice
pub fn as_slice(&self) -> &[u8] {
let start = self.align_offset;
let end = self.mem.len();
&self.mem[start..end]
}
/// Get an aligned mutable slice
pub fn as_slice_mut(&mut self) -> &mut [u8] {
let start = self.align_offset;
let end = self.mem.len();
&mut self.mem[start..end]
}
/// Grows memory with `value` repeated `num` times starting at the `write_index`
pub fn fill_write(&mut self, num: usize, value: u8) -> std::io::Result<()> {
let new_len = match (
self.mem.len().checked_add(num),
self.align_offset.checked_add(self.max_len),
) {
(Some(new_len), Some(allocation_end)) if new_len <= allocation_end => new_len,
_ => {
return Err(std::io::Error::new(
std::io::ErrorKind::InvalidInput,
"aligned memory resize failed",
))
}
};
if self.zero_up_to_max_len && value == 0 {
// Safe because everything up to `max_len` is zeroed and no shrinking is allowed
unsafe {
self.mem.set_len(new_len);
}
} else {
self.mem.resize(new_len, value);
}
Ok(())
}
/// Write a generic type T into the memory.
///
/// # Safety
///
/// Unsafe since it assumes that there is enough capacity.
pub unsafe fn write_unchecked<T: Pod>(&mut self, value: T) {
let pos = self.mem.len();
let new_len = pos.saturating_add(mem::size_of::<T>());
debug_assert!(new_len <= self.align_offset.saturating_add(self.max_len));
self.mem.set_len(new_len);
ptr::write_unaligned(
self.mem.get_unchecked_mut(pos..new_len).as_mut_ptr().cast(),
value,
);
}
/// Write a slice of bytes into the memory.
///
/// # Safety
///
/// Unsafe since it assumes that there is enough capacity.
pub unsafe fn write_all_unchecked(&mut self, value: &[u8]) {
let pos = self.mem.len();
let new_len = pos.saturating_add(value.len());
debug_assert!(new_len <= self.align_offset.saturating_add(self.max_len));
self.mem.set_len(new_len);
self.mem
.get_unchecked_mut(pos..new_len)
.copy_from_slice(value);
}
}
// Custom Clone impl is needed to ensure alignment. Derived clone would just
// clone self.mem and there would be no guarantee that the clone allocation is
// aligned.
impl<const ALIGN: usize> Clone for AlignedMemory<ALIGN> {
fn clone(&self) -> Self {
AlignedMemory::from_slice(self.as_slice())
}
}
impl<const ALIGN: usize> std::io::Write for AlignedMemory<ALIGN> {
fn write(&mut self, buf: &[u8]) -> std::io::Result<usize> {
match (
self.mem.len().checked_add(buf.len()),
self.align_offset.checked_add(self.max_len),
) {
(Some(new_len), Some(allocation_end)) if new_len <= allocation_end => {}
_ => {
return Err(std::io::Error::new(
std::io::ErrorKind::InvalidInput,
"aligned memory write failed",
))
}
}
self.mem.extend_from_slice(buf);
Ok(buf.len())
}
fn flush(&mut self) -> std::io::Result<()> {
Ok(())
}
}
impl<const ALIGN: usize, T: AsRef<[u8]>> From<T> for AlignedMemory<ALIGN> {
fn from(bytes: T) -> Self {
AlignedMemory::from_slice(bytes.as_ref())
}
}
#[cfg(test)]
mod tests {
#![allow(clippy::integer_arithmetic)]
use {super::*, std::io::Write};
fn do_test<const ALIGN: usize>() {
let mut aligned_memory = AlignedMemory::<ALIGN>::with_capacity(10);
assert_eq!(aligned_memory.write(&[42u8; 1]).unwrap(), 1);
assert_eq!(aligned_memory.write(&[42u8; 9]).unwrap(), 9);
assert_eq!(aligned_memory.as_slice(), &[42u8; 10]);
assert_eq!(aligned_memory.write(&[42u8; 0]).unwrap(), 0);
assert_eq!(aligned_memory.as_slice(), &[42u8; 10]);
aligned_memory.write(&[42u8; 1]).unwrap_err();
assert_eq!(aligned_memory.as_slice(), &[42u8; 10]);
aligned_memory.as_slice_mut().copy_from_slice(&[84u8; 10]);
assert_eq!(aligned_memory.as_slice(), &[84u8; 10]);
let mut aligned_memory = AlignedMemory::<ALIGN>::with_capacity_zeroed(10);
aligned_memory.fill_write(5, 0).unwrap();
aligned_memory.fill_write(2, 1).unwrap();
assert_eq!(aligned_memory.write(&[2u8; 3]).unwrap(), 3);
assert_eq!(aligned_memory.as_slice(), &[0, 0, 0, 0, 0, 1, 1, 2, 2, 2]);
aligned_memory.fill_write(1, 3).unwrap_err();
aligned_memory.write(&[4u8; 1]).unwrap_err();
assert_eq!(aligned_memory.as_slice(), &[0, 0, 0, 0, 0, 1, 1, 2, 2, 2]);
let aligned_memory = AlignedMemory::<ALIGN>::zero_filled(10);
assert_eq!(aligned_memory.len(), 10);
assert_eq!(aligned_memory.as_slice(), &[0u8; 10]);
let mut aligned_memory = AlignedMemory::<ALIGN>::with_capacity_zeroed(15);
unsafe {
aligned_memory.write_unchecked::<u8>(42);
assert_eq!(aligned_memory.len(), 1);
aligned_memory.write_unchecked::<u64>(0xCAFEBADDDEADCAFE);
assert_eq!(aligned_memory.len(), 9);
aligned_memory.fill_write(3, 0).unwrap();
aligned_memory.write_all_unchecked(b"foo");
assert_eq!(aligned_memory.len(), 15);
}
let mem = aligned_memory.as_slice();
assert_eq!(mem[0], 42);
assert_eq!(
unsafe {
ptr::read_unaligned::<u64>(mem[1..1 + mem::size_of::<u64>()].as_ptr().cast())
},
0xCAFEBADDDEADCAFE
);
assert_eq!(&mem[1 + mem::size_of::<u64>()..][..3], &[0, 0, 0]);
assert_eq!(&mem[1 + mem::size_of::<u64>() + 3..], b"foo");
}
#[test]
fn test_aligned_memory() {
do_test::<1>();
do_test::<32768>();
}
#[cfg(debug_assertions)]
#[test]
#[should_panic(expected = "<= self.align_offset.saturating_add(self.max_len)")]
fn test_write_unchecked_debug_assert() {
let mut aligned_memory = AlignedMemory::<8>::with_capacity(15);
unsafe {
aligned_memory.write_unchecked::<u64>(42);
aligned_memory.write_unchecked::<u64>(24);
}
}
#[cfg(debug_assertions)]
#[test]
#[should_panic(expected = "<= self.align_offset.saturating_add(self.max_len)")]
fn test_write_all_unchecked_debug_assert() {
let mut aligned_memory = AlignedMemory::<8>::with_capacity(5);
unsafe {
aligned_memory.write_all_unchecked(b"foo");
aligned_memory.write_all_unchecked(b"bar");
}
}
}

View File

@ -0,0 +1,192 @@
//! Dynamic memory layout containers
use crate::is_memory_aligned;
/// An array of equally spaced values
#[derive(Clone)]
#[repr(C)]
pub struct DynamicLayoutArray<'a, T> {
_element_type: std::marker::PhantomData<&'a T>,
element_count: u32,
values_stride: u32,
values_offset: u32,
}
impl<'a, T> DynamicLayoutArray<'a, T> {
pub fn initialize_as_strided(
&mut self,
start_offset: usize,
element_count: usize,
values_stride: usize,
) {
self.element_count = element_count as u32;
self.values_stride = values_stride as u32;
self.values_offset = start_offset as u32;
debug_assert!(element_count < std::u32::MAX as usize);
debug_assert!(values_stride <= std::u32::MAX as usize);
debug_assert!(start_offset <= std::u32::MAX as usize);
debug_assert!(is_memory_aligned(
self.as_ptr() as usize,
std::mem::align_of::<T>(),
));
debug_assert!(is_memory_aligned(values_stride, std::mem::align_of::<T>()));
}
pub fn initialize_as_consecutive(&mut self, start_offset: usize, element_count: usize) {
self.initialize_as_strided(start_offset, element_count, std::mem::size_of::<T>());
}
pub fn offset_at_index(&self, element_index: usize) -> usize {
(self.values_offset as usize)
.saturating_add((self.values_stride as usize).saturating_mul(element_index))
}
pub fn start_offset(&self) -> usize {
self.values_offset as usize
}
pub fn end_offset(&self) -> usize {
self.offset_at_index(self.element_count as usize)
}
pub fn is_empty(&self) -> bool {
self.element_count == 0
}
pub fn len(&self) -> usize {
self.element_count as usize
}
pub fn as_ptr(&self) -> *const T {
unsafe { (self as *const _ as *const u8).add(self.values_offset as usize) as *const T }
}
pub fn as_mut_ptr(&mut self) -> *mut T {
unsafe { (self as *mut _ as *mut u8).add(self.values_offset as usize) as *mut T }
}
pub fn get(&self, element_index: usize) -> Option<&T> {
if element_index >= self.element_count as usize {
return None;
}
Some(unsafe { &*self.as_ptr().add(element_index) })
}
pub fn get_mut(&mut self, element_index: usize) -> Option<&mut T> {
if element_index >= self.element_count as usize {
return None;
}
Some(unsafe { &mut *self.as_mut_ptr().add(element_index) })
}
pub fn as_slice(&self) -> &[T] {
assert_eq!(self.values_stride as usize, std::mem::size_of::<T>());
unsafe { std::slice::from_raw_parts(self.as_ptr(), self.element_count as usize) }
}
pub fn as_mut_slice(&mut self) -> &mut [T] {
assert_eq!(self.values_stride as usize, std::mem::size_of::<T>());
unsafe { std::slice::from_raw_parts_mut(self.as_mut_ptr(), self.element_count as usize) }
}
pub fn iter<'b>(&'b self) -> DynamicLayoutArrayIterator<'a, 'b, T> {
DynamicLayoutArrayIterator {
_element_type: std::marker::PhantomData::default(),
array: self,
element_index: 0,
}
}
pub fn iter_mut<'b>(&'b mut self) -> DynamicLayoutArrayIteratorMut<'a, 'b, T> {
DynamicLayoutArrayIteratorMut {
_element_type: std::marker::PhantomData::default(),
array: self,
element_index: 0,
}
}
}
impl<'a, T: std::fmt::Debug> std::fmt::Debug for DynamicLayoutArray<'a, T> {
fn fmt(&self, f: &mut std::fmt::Formatter) -> std::fmt::Result {
f.debug_list().entries(self.iter()).finish()
}
}
#[derive(Clone)]
pub struct DynamicLayoutArrayIterator<'a, 'b, T> {
_element_type: std::marker::PhantomData<T>,
array: &'b DynamicLayoutArray<'a, T>,
element_index: usize,
}
impl<'a, 'b, T> Iterator for DynamicLayoutArrayIterator<'a, 'b, T> {
type Item = &'b T;
fn next(&mut self) -> Option<Self::Item> {
let result = self.array.get(self.element_index);
self.element_index = self.element_index.saturating_add(1);
result
}
}
pub struct DynamicLayoutArrayIteratorMut<'a, 'b, T> {
_element_type: std::marker::PhantomData<T>,
array: &'b mut DynamicLayoutArray<'a, T>,
element_index: usize,
}
impl<'a, 'b, T> Iterator for DynamicLayoutArrayIteratorMut<'a, 'b, T> {
type Item = &'b mut T;
fn next(&mut self) -> Option<Self::Item> {
let result = self.array.get_mut(self.element_index);
self.element_index = self.element_index.saturating_add(1);
unsafe { std::mem::transmute(result) }
}
}
/* Do not implement these as they can panic.
impl<T> std::ops::Index<usize> for DynamicLayoutArray<T> {
type Output = T;
fn index<'a>(&'a self, element_index: usize) -> &'a T {
self.get(element_index).unwrap()
}
}
impl<T> std::ops::IndexMut<usize> for DynamicLayoutArray<T> {
fn index_mut<'a>(&'a mut self, element_index: usize) -> &'a mut T {
self.get_mut(element_index).unwrap()
}
}
*/
#[cfg(test)]
mod tests {
use {super::*, crate::aligned_memory::AlignedMemory};
#[test]
fn test_dynamic_layout_array() {
type ArrayType<'a> = DynamicLayoutArray<'a, u16>;
const COUNT: usize = 64;
let mut buffer = AlignedMemory::<{ std::mem::align_of::<ArrayType>() }>::zero_filled(256);
let array_header = unsafe { &mut *(buffer.as_slice_mut().as_mut_ptr() as *mut ArrayType) };
array_header.initialize_as_consecutive(std::mem::size_of::<ArrayType>(), COUNT);
assert_eq!(
array_header.start_offset(),
std::mem::size_of::<ArrayType>()
);
assert_eq!(
array_header.end_offset(),
std::mem::size_of::<ArrayType>() + std::mem::size_of::<u16>() * COUNT
);
assert!(!array_header.is_empty());
assert_eq!(array_header.len(), COUNT);
*array_header.get_mut(21).unwrap() = 42;
assert_eq!(*array_header.get(21).unwrap(), 42);
array_header.as_mut_slice()[12] = 24;
assert_eq!(array_header.as_slice()[12], 24);
*array_header.iter_mut().next().unwrap() = 8;
assert_eq!(*array_header.iter().next().unwrap(), 8);
}
}

View File

@ -0,0 +1,10 @@
#![deny(clippy::integer_arithmetic)]
pub mod aligned_memory;
pub mod dynamic_layout;
/// Returns true if `ptr` is aligned to `align`.
pub fn is_memory_aligned(ptr: usize, align: usize) -> bool {
ptr.checked_rem(align)
.map(|remainder| remainder == 0)
.unwrap_or(false)
}