Make it possible to enable only global handle zapping.

Erik Corry · V8 LUCI CQ · commit d62905147cf6 · 2025-01-09T03:10:31.000-08:00
Local handle zapping is too expensive to use in production. With this change you can define v8_enable_handle_zapping = true v8_enable_local_handle_zapping = false which gets some checking without as big a performance hit. Change-Id: I13fb5ef9eb5a69f56f85e21e5f11c68d34a9e311 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/6109037 Commit-Queue: Erik Corry <erikcorry@chromium.org> Reviewed-by: Michael Lippautz <mlippautz@chromium.org> Cr-Commit-Position: refs/heads/main@{#98018}
diff --git a/.bazelrc b/.bazelrc
@@ -17,7 +17,8 @@ build:debug --compilation_mode=dbg
 build:debug --config=v8_enable_debugging_features
 build:debug --//:v8_enable_fast_mksnapshot
 build:debug --//:v8_enable_backtrace
-build:debug --//:v8_enable_handle_zapping
+build:debug --//:v8_enable_local_handle_zapping
+build:debug --//:v8_enable_global_handle_zapping
 
 # v8_enable_debugging_features flags
 build:v8_enable_debugging_features --//:v8_enable_verify_heap
diff --git a/BUILD.bazel b/BUILD.bazel
@@ -108,7 +108,9 @@ v8_flag(name = "v8_enable_debug_code")
 
 v8_flag(name = "v8_enable_disassembler")
 
-v8_flag(name = "v8_enable_handle_zapping")
+v8_flag(name = "v8_enable_local_handle_zapping")
+
+v8_flag(name = "v8_enable_global_handle_zapping")
 
 v8_flag(name = "v8_enable_runtime_call_stats")
 
@@ -447,7 +449,8 @@ v8_config(
         "v8_imminent_deprecation_warnings": "V8_IMMINENT_DEPRECATION_WARNINGS",
         "v8_enable_debug_code": "V8_ENABLE_DEBUG_CODE",
         "v8_enable_disassembler": "ENABLE_DISASSEMBLER",
-        "v8_enable_handle_zapping": "ENABLE_HANDLE_ZAPPING",
+        "v8_enable_global_handle_zapping": "ENABLE_GLOBAL_HANDLE_ZAPPING",
+        "v8_enable_local_handle_zapping": "ENABLE_LOCAL_HANDLE_ZAPPING",
         "v8_enable_hugepage": "ENABLE_HUGEPAGE",
         "v8_enable_future": "V8_ENABLE_FUTURE",
         "v8_enable_lazy_source_positions": "V8_ENABLE_LAZY_SOURCE_POSITIONS",
diff --git a/BUILD.gn b/BUILD.gn
@@ -94,9 +94,19 @@ declare_args() {
   # See v8:7381 for more details.
   v8_enable_private_mapping_fork_optimization = false
 
-  # Sets -DENABLE_HANDLE_ZAPPING.
+  # Sets the default for v8_enable_local_handle_zapping and
+  # v8_enable_global_handle_zapping.
   v8_enable_handle_zapping = is_asan || is_debug
 
+  # Sets -DENABLE_LOCAL_HANDLE_ZAPPING, which is more expensive than just
+  # the global handles.  By default it is enabled if v8_enable_handle_zapping
+  # is enabled.
+  v8_enable_local_handle_zapping = ""
+
+  # Sets -DENABLE_GLOBAL_HANDLE_ZAPPING.  By default it is enabled if
+  # v8_enable_handle_zapping is enabled.
+  v8_enable_global_handle_zapping = ""
+
   # Enable slow dchecks.
   v8_enable_slow_dchecks = false
 
@@ -542,6 +552,12 @@ if (v8_enable_pointer_compression_shared_cage == "") {
 if (v8_enable_pointer_compression_8gb == "") {
   v8_enable_pointer_compression_8gb = false
 }
+if (v8_enable_local_handle_zapping == "") {
+  v8_enable_local_handle_zapping = v8_enable_handle_zapping
+}
+if (v8_enable_global_handle_zapping == "") {
+  v8_enable_global_handle_zapping = v8_enable_handle_zapping
+}
 if (v8_enable_fast_torque == "") {
   v8_enable_fast_torque = v8_enable_fast_mksnapshot
 }
@@ -1187,8 +1203,11 @@ config("features") {
   if (v8_enable_i18n_support) {
     defines += [ "V8_INTL_SUPPORT" ]
   }
-  if (v8_enable_handle_zapping) {
-    defines += [ "ENABLE_HANDLE_ZAPPING" ]
+  if (v8_enable_local_handle_zapping) {
+    defines += [ "ENABLE_LOCAL_HANDLE_ZAPPING" ]
+  }
+  if (v8_enable_global_handle_zapping) {
+    defines += [ "ENABLE_GLOBAL_HANDLE_ZAPPING" ]
   }
   if (v8_code_comments == true) {
     defines += [ "V8_CODE_COMMENTS" ]
diff --git a/src/api/api.h b/src/api/api.h
@@ -488,14 +488,14 @@ void HandleScopeImplementer::DeleteExtensions(internal::Address* prev_limit) {
             reinterpret_cast<Address>(prev_limit) &&
         reinterpret_cast<Address>(prev_limit) <=
             reinterpret_cast<Address>(block_limit)) {
-#ifdef ENABLE_HANDLE_ZAPPING
+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING
       internal::HandleScope::ZapRange(prev_limit, block_limit);
 #endif
       break;
     }
 
     blocks_.pop_back();
-#ifdef ENABLE_HANDLE_ZAPPING
+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING
     internal::HandleScope::ZapRange(block_start, block_limit);
 #endif
     if (spare_ != nullptr) {
diff --git a/src/common/globals.h b/src/common/globals.h
@@ -978,6 +978,7 @@ constexpr uint64_t kClearedFreeMemoryValue = 0;
 constexpr uint64_t kZapValue = uint64_t{0xdeadbeedbeadbeef};
 constexpr uint64_t kHandleZapValue = uint64_t{0x1baddead0baddeaf};
 constexpr uint64_t kGlobalHandleZapValue = uint64_t{0x1baffed00baffedf};
+constexpr uint64_t kPersistentHandleZapValue = uint64_t{0x1baffed66baffedf};
 constexpr uint64_t kTracedHandleEagerResetZapValue =
     uint64_t{0x1beffedaabaffedf};
 constexpr uint64_t kTracedHandleMinorGCResetZapValue =
@@ -995,6 +996,7 @@ constexpr uint32_t kClearedFreeMemoryValue = 0;
 constexpr uint32_t kZapValue = 0xdeadbeef;
 constexpr uint32_t kHandleZapValue = 0xbaddeaf;
 constexpr uint32_t kGlobalHandleZapValue = 0xbaffedf;
+constexpr uint32_t kPersistentHandleZapValue = 0xbaff6df;
 constexpr uint32_t kTracedHandleEagerResetZapValue = 0xbeffedf;
 constexpr uint32_t kTracedHandleMinorGCResetZapValue = 0xbeffadf;
 constexpr uint32_t kTracedHandleMinorGCWeakResetZapValue = 0xbe11adf;
diff --git a/src/handles/global-handles.cc b/src/handles/global-handles.cc
@@ -304,7 +304,7 @@ class NodeBase {
     DCHECK_EQ(offsetof(NodeBase, flags_), Internals::kNodeFlagsOffset);
   }
 
-#ifdef ENABLE_HANDLE_ZAPPING
+#ifdef ENABLE_GLOBAL_HANDLE_ZAPPING
   ~NodeBase() {
     ClearFields();
     data_.next_free = nullptr;
diff --git a/src/handles/handles-inl.h b/src/handles/handles-inl.h
@@ -236,7 +236,7 @@ void HandleScope::CloseScope(Isolate* isolate, Address* prev_next,
     limit = prev_limit;
     DeleteExtensions(isolate);
   }
-#ifdef ENABLE_HANDLE_ZAPPING
+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING
   ZapRange(current->next, limit);
 #endif
   MSAN_ALLOCATED_UNINITIALIZED_MEMORY(
diff --git a/src/handles/handles.cc b/src/handles/handles.cc
@@ -222,11 +222,12 @@ void HandleScope::DeleteExtensions(Isolate* isolate) {
   isolate->handle_scope_implementer()->DeleteExtensions(current->limit);
 }
 
-#ifdef ENABLE_HANDLE_ZAPPING
-void HandleScope::ZapRange(Address* start, Address* end) {
+#if defined(ENABLE_GLOBAL_HANDLE_ZAPPING) || \
+    defined(ENABLE_LOCAL_HANDLE_ZAPPING)
+void HandleScope::ZapRange(Address* start, Address* end, uintptr_t zap_value) {
   DCHECK_LE(end - start, kHandleBlockSize);
   for (Address* p = start; p != end; p++) {
-    *p = static_cast<Address>(kHandleZapValue);
+    *p = static_cast<Address>(zap_value);
   }
 }
 #endif
diff --git a/src/handles/handles.h b/src/handles/handles.h
@@ -325,9 +325,11 @@ class V8_NODISCARD HandleScope {
   // Extend the handle scope making room for more handles.
   V8_EXPORT_PRIVATE V8_NOINLINE static Address* Extend(Isolate* isolate);
 
-#ifdef ENABLE_HANDLE_ZAPPING
+#if defined(ENABLE_GLOBAL_HANDLE_ZAPPING) || \
+    defined(ENABLE_LOCAL_HANDLE_ZAPPING)
   // Zaps the handles in the half-open interval [start, end).
-  V8_EXPORT_PRIVATE static void ZapRange(Address* start, Address* end);
+  V8_EXPORT_PRIVATE static void ZapRange(Address* start, Address* end,
+                                         uintptr_t value = kHandleZapValue);
 #endif
 
   friend class v8::HandleScope;
diff --git a/src/handles/local-handles-inl.h b/src/handles/local-handles-inl.h
@@ -100,7 +100,7 @@ void LocalHandleScope::CloseScope(LocalHeap* local_heap, Address* prev_next,
     old_limit = handles->scope_.limit;
   }
 
-#ifdef ENABLE_HANDLE_ZAPPING
+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING
   LocalHandles::ZapRange(handles->scope_.next, old_limit);
 #endif
 
diff --git a/src/handles/local-handles.cc b/src/handles/local-handles.cc
@@ -106,15 +106,15 @@ void LocalHandles::RemoveUnusedBlocks() {
 
     blocks_.pop_back();
 
-#ifdef ENABLE_HANDLE_ZAPPING
+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING
     ZapRange(block_start, block_limit);
 #endif
 
     DeleteArray(block_start);
   }
 }
 
-#ifdef ENABLE_HANDLE_ZAPPING
+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING
 void LocalHandles::ZapRange(Address* start, Address* end) {
   HandleScope::ZapRange(start, end);
 }
diff --git a/src/handles/local-handles.h b/src/handles/local-handles.h
@@ -34,7 +34,7 @@ class LocalHandles {
   V8_EXPORT_PRIVATE Address* AddBlock();
   V8_EXPORT_PRIVATE void RemoveUnusedBlocks();
 
-#ifdef ENABLE_HANDLE_ZAPPING
+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING
   V8_EXPORT_PRIVATE static void ZapRange(Address* start, Address* end);
 #endif
 
diff --git a/src/handles/persistent-handles.cc b/src/handles/persistent-handles.cc
@@ -25,8 +25,9 @@ PersistentHandles::~PersistentHandles() {
   isolate_->persistent_handles_list()->Remove(this);
 
   for (Address* block_start : blocks_) {
-#if ENABLE_HANDLE_ZAPPING
-    HandleScope::ZapRange(block_start, block_start + kHandleBlockSize);
+#if ENABLE_GLOBAL_HANDLE_ZAPPING
+    HandleScope::ZapRange(block_start, block_start + kHandleBlockSize,
+                          kPersistentHandleZapValue);
 #endif
     DeleteArray(block_start);
   }

Original file line number	Diff line number	Diff line change
`@@ -304,7 +304,7 @@ class NodeBase {`
`304`	`304`	`DCHECK_EQ(offsetof(NodeBase, flags_), Internals::kNodeFlagsOffset);`
`305`	`305`	`}`
`306`	`306`
`307`		`-#ifdef ENABLE_HANDLE_ZAPPING`
	`307`	`+#ifdef ENABLE_GLOBAL_HANDLE_ZAPPING`
`308`	`308`	`~NodeBase() {`
`309`	`309`	`ClearFields();`
`310`	`310`	`data_.next_free = nullptr;`
Original file line number	Diff line number	Diff line change
`@@ -236,7 +236,7 @@ void HandleScope::CloseScope(Isolate* isolate, Address* prev_next,`
`236`	`236`	`limit = prev_limit;`
`237`	`237`	`DeleteExtensions(isolate);`
`238`	`238`	`}`
`239`		`-#ifdef ENABLE_HANDLE_ZAPPING`
	`239`	`+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING`
`240`	`240`	`ZapRange(current->next, limit);`
`241`	`241`	`#endif`
`242`	`242`	`MSAN_ALLOCATED_UNINITIALIZED_MEMORY(`
Original file line number	Diff line number	Diff line change
`@@ -222,11 +222,12 @@ void HandleScope::DeleteExtensions(Isolate* isolate) {`
`222`	`222`	`isolate->handle_scope_implementer()->DeleteExtensions(current->limit);`
`223`	`223`	`}`
`224`	`224`
`225`		`-#ifdef ENABLE_HANDLE_ZAPPING`
`226`		`-void HandleScope::ZapRange(Address* start, Address* end) {`
	`225`	`+#if defined(ENABLE_GLOBAL_HANDLE_ZAPPING) \|\| \`
	`226`	`+ defined(ENABLE_LOCAL_HANDLE_ZAPPING)`
	`227`	`+void HandleScope::ZapRange(Address* start, Address* end, uintptr_t zap_value) {`
`227`	`228`	`DCHECK_LE(end - start, kHandleBlockSize);`
`228`	`229`	`for (Address* p = start; p != end; p++) {`
`229`		`- *p = static_cast<Address>(kHandleZapValue);`
	`230`	`+ *p = static_cast<Address>(zap_value);`
`230`	`231`	`}`
`231`	`232`	`}`
`232`	`233`	`#endif`
Original file line number	Diff line number	Diff line change
`@@ -100,7 +100,7 @@ void LocalHandleScope::CloseScope(LocalHeap* local_heap, Address* prev_next,`
`100`	`100`	`old_limit = handles->scope_.limit;`
`101`	`101`	`}`
`102`	`102`
`103`		`-#ifdef ENABLE_HANDLE_ZAPPING`
	`103`	`+#ifdef ENABLE_LOCAL_HANDLE_ZAPPING`
`104`	`104`	`LocalHandles::ZapRange(handles->scope_.next, old_limit);`
`105`	`105`	`#endif`
`106`	`106`