8343460: ZGC: Crash in ZRemembered::scan_page_and_clear_remset

Reviewed-by: jsikstro, eosterlund, stefank
2024-11-14 06:13:19 +00:00 · 2024-11-14 06:13:19 +00:00 · e7d90b941f
commit e7d90b941f
parent 95a00f8a18
2 changed files with 9 additions and 20 deletions
--- a/src/hotspot/share/gc/z/zHeap.cpp
+++ b/src/hotspot/share/gc/z/zHeap.cpp
@ -248,10 +248,6 @@ void ZHeap::free_page(ZPage* page, bool allow_defragment) {
  // Remove page table entry
  _page_table.remove(page);

-  if (page->is_old()) {
-    page->remset_delete();
-  }
-
  // Free page
  _page_allocator.free_page(page, allow_defragment);
 }
@ -262,9 +258,6 @@ size_t ZHeap::free_empty_pages(const ZArray<ZPage*>* pages) {
  ZArrayIterator<ZPage*> iter(pages);
  for (ZPage* page; iter.next(&page);) {
    _page_table.remove(page);
-    if (page->is_old()) {
-      page->remset_delete();
-    }
    freed += page->size();
  }

--- a/src/hotspot/share/gc/z/zPageAllocator.cpp
+++ b/src/hotspot/share/gc/z/zPageAllocator.cpp
@ -809,6 +809,11 @@ ZPage* ZPageAllocator::prepare_to_recycle(ZPage* page, bool allow_defragment) {
    return defragment_page(to_recycle);
  }

+  // Remove the remset before recycling
+  if (to_recycle->is_old() && to_recycle == page) {
+    to_recycle->remset_delete();
+  }
+
  return to_recycle;
 }

@ -880,18 +885,9 @@ void ZPageAllocator::free_pages(const ZArray<ZPage*>* pages) {
 }

 void ZPageAllocator::free_pages_alloc_failed(ZPageAllocation* allocation) {
-  ZArray<ZPage*> to_recycle_pages;
-
-  // Prepare pages for recycling before taking the lock
-  ZListRemoveIterator<ZPage> allocation_pages_iter(allocation->pages());
-  for (ZPage* page; allocation_pages_iter.next(&page);) {
-    // Prepare to recycle
-    ZPage* const to_recycle = prepare_to_recycle(page, false /* allow_defragment */);
-
-    // Register for recycling
-    to_recycle_pages.push(to_recycle);
-  }
-
+  // The page(s) in the allocation are either taken from the cache or a newly
+  // created, mapped and commited ZPage. These page(s) have not been inserted in
+  // the page table, nor allocated a remset, so prepare_to_recycle is not required.
  ZLocker<ZLock> locker(&_lock);

  // Only decrease the overall used and not the generation used,
@ -901,7 +897,7 @@ void ZPageAllocator::free_pages_alloc_failed(ZPageAllocation* allocation) {
  size_t freed = 0;

  // Free any allocated/flushed pages
-  ZArrayIterator<ZPage*> iter(&to_recycle_pages);
+  ZListRemoveIterator<ZPage> iter(allocation->pages());
  for (ZPage* page; iter.next(&page);) {
    freed += page->size();
    recycle_page(page);