8339687: Rearrange reachabilityFence()s in jdk.test.lib.util.ForceGC #20898
Conversation
|
👋 Welcome back bchristi! A progress list of the required criteria for merging this PR into |
|
@bchristi-git This change now passes all automated pre-integration checks. ℹ️ This project also has non-automated pre-integration requirements. Please see the file CONTRIBUTING.md for details. After integration, the commit message for the final commit will be: You can use pull request commands such as /summary, /contributor and /issue to adjust it as needed. At the time when this comment was updated there had been 39 new commits pushed to the
As there are no conflicts, your changes will automatically be rebased on top of these commits when integrating. If you prefer to avoid this automatic rebasing, please check the documentation for the /integrate command for further details. ➡️ To integrate this PR with the above commit message to the |
|
@bchristi-git The following label will be automatically applied to this pull request:
When this pull request is ready to be reviewed, an "RFR" email will be sent to the corresponding mailing list. If you would like to change these labels, use the /label pull request command. |
Webrevs
|
| obj = null; | ||
| Reference.reachabilityFence(obj); | ||
| Reference.reachabilityFence(ref); | ||
| obj = null; |
There was a problem hiding this comment.
You're right to question the utility of calling reachabilityFence(obj) after obj has been nulled out. But I'm still questioning the utility of calling RF(obj) at all. We don't care when obj is determined to be unreachable; what we care about is that the GC has done some reference processing. Seems to me we can simplify the above lines to
PhantomReference<Object> ref = new PhantomReference<>(new Object(), queue);
and get rid of the local variable obj entirely.
There was a problem hiding this comment.
The reason for the explicit reference and RF, as I recall, is to guard against the allocation of the new object being elided entirely, with the PhantomReference constructor being passed null (or itself being elided) and no reference processing ever actually happening.
There was a problem hiding this comment.
@dholmes-ora Is this really possible? The obj ref is passed to the PhantomReference constructor, which stores it in a field, the constructed PhantomReference is returned, and it's then used in a reachabilityFence call below. So obj should remain reachable the entire time, right?
There was a problem hiding this comment.
(As an aside, I wasn't able to determine what any of the Reference classes do if they're created with a null reference. Possibly a spec bug?)
There was a problem hiding this comment.
@stuart-marks My recollection, which I can't confirm is that this pattern was discussed internally and there was a lot of uncertainty about what was actually needed. Interestingly there was zero discussion of this in the actual PR that added it - #8979
Thinking it through now, I tend to agree with you that the RF for ref suffices to prevent obj from being elided
There was a problem hiding this comment.
I also agree with @stuart-marks that the moved to near the ned RF for ref is sufficient.
| // ignore, the loop will try again | ||
| } | ||
| } | ||
| Reference.reachabilityFence(ref); |
There was a problem hiding this comment.
I think everything from the creation of ref to the line above needs to enclosed in a try-statement, with the finally-clause including RF(ref).
There was a problem hiding this comment.
Arguably the same might also apply to the other call to reachability fence: that is - we might need two try-finally to keep things by-the-book?
There was a problem hiding this comment.
I don't see a requirement for any try-finally's here, since I don't care about the queue/ref/referent/enqueuing
for any exits other than running to the end of the function. Adding some might make the code less fragile
against future changes, but adds clutter that might never provide any benefit.
|
I added a couple specific comments on the code that I thought ought to be addressed in this PR. There is a broader issue with the timeout logic that we should be aware of, however, we might or might not choose to address it in this PR. The main issue is that the caller has requested a particular amount of time as the timeout, and the timeout loop divides by 200ms to determine the maximum number of retries. This assumes that each loop will take 200ms. However, this might not be true, because we don't know how long the booleanSupplier takes, we don't know how long System.gc() takes, and we don't know how long queue.remove() takes. This isn't an idle concern. Somebody might pass in a booleanSupplier that itself has a timeout (say of 1 second) which will cause this method to take about six times longer than expected to time out. The usual approach for timeout logic is to take the initial System.nanoTime() value and compare subsequent return values of nanoTime() to the timeout duration, and exit the loop if the timeout duration has been exceeded. See the nanoTime() javadoc for an example. |
kimbarrett
left a comment
kimbarrett
left a comment
There was a problem hiding this comment.
The reachability changes look good to me.
The sketchy timeout handling mentioned by @stuart-marks seems to me to be out
of scope for this issue.
| // ignore, the loop will try again | ||
| } | ||
| } | ||
| Reference.reachabilityFence(ref); |
There was a problem hiding this comment.
I don't see a requirement for any try-finally's here, since I don't care about the queue/ref/referent/enqueuing
for any exits other than running to the end of the function. Adding some might make the code less fragile
against future changes, but adds clutter that might never provide any benefit.
| obj = null; | ||
| Reference.reachabilityFence(obj); | ||
| Reference.reachabilityFence(ref); | ||
| obj = null; |
There was a problem hiding this comment.
I also agree with @stuart-marks that the moved to near the ned RF for ref is sufficient.
|
My understanding is that try/finally is needed to ensure the RF is guaranteed to be seen to be executed at the expected location. Otherwise the RF can in theory be moved around. |
|
I've added a try/finally block for This test library is used in many places, to confirm behavior reliant on GC action. IMO it's best to code it in a way that's sure to behave as expected, and to keep it clear what it's meant to do. |
I also would prefer that updates to timeout handling be done as a separate issue. |
dholmes-ora
left a comment
dholmes-ora
left a comment
There was a problem hiding this comment.
If you hide whitespace this change becomes trivial to review :)
LGTM.
stuart-marks
left a comment
stuart-marks
left a comment
There was a problem hiding this comment.
Yeah, timeout stuff can be handled separately.
|
/integrate |
|
Going to push as commit 51b85a1.
Your commit was automatically rebased without conflicts. |
openjdk
bot
removed
ready
|
@bchristi-git Pushed as commit 51b85a1. 💡 You may see a message that your pull request was closed with unmerged commits. This can be safely ignored. |
5 participants
From the bug description:
ForceGC would be improved by moving the Reference.reachabilityFence() calls for 'obj' and 'ref'.
Reference.reachabilityFence(obj) is currently placed after 'obj' has been set to null, so effectively does nothing. It should occur before obj = null;
For Reference.reachabilityFence(ref): 'ref' is a PhantomReference to 'obj', and is registered with 'queue'. ForceGC.waitFor() later remove()s the reference from the queue, as an indication that some GC and reference processing has taken place (hopefully causing the BooleanSupplier to return true).
The code expects the PhantomReference to be cleared and be put on the queue. But recall that a Reference refers to its queue, and not the other way around. If a Reference becomes unreachable and is garbage collected, it will never be enqueued.
I argue that the VM/GC could determine that 'ref' is not used by waitFor() and collect it before the call to queue.remove(). Moving Reference.reachabilityFence(ref) after the for() loop would prevent this scenario.
While this is only a very minor deficiency in ForceGC, I believe it would be good to ensure that the code behaves as expected.
Progress
Issue
Reviewers
Reviewing
Using
gitCheckout this PR locally:
$ git fetch https://git.openjdk.org/jdk.git pull/20898/head:pull/20898$ git checkout pull/20898Update a local copy of the PR:
$ git checkout pull/20898$ git pull https://git.openjdk.org/jdk.git pull/20898/headUsing Skara CLI tools
Checkout this PR locally:
$ git pr checkout 20898View PR using the GUI difftool:
$ git pr show -t 20898Using diff file
Download this PR as a diff file:
https://git.openjdk.org/jdk/pull/20898.diff
Webrev
Link to Webrev Comment