From f9424933375b198c286f7acd0f3376a335c98a96 Mon Sep 17 00:00:00 2001 From: Andrew Tridgell Date: Fri, 15 Mar 2024 13:49:58 +1100 Subject: [PATCH] AP_Common: allow expansion of heaps in MultiHeap this allows for new heaps to be added at runtime for lua scripting if you run out of memory while armed --- libraries/AP_Common/MultiHeap.cpp | 103 +++++++++++++++++++++++------- libraries/AP_Common/MultiHeap.h | 14 +++- 2 files changed, 93 insertions(+), 24 deletions(-) diff --git a/libraries/AP_Common/MultiHeap.cpp b/libraries/AP_Common/MultiHeap.cpp index 75033db1a156c6..3990c16a55721e 100644 --- a/libraries/AP_Common/MultiHeap.cpp +++ b/libraries/AP_Common/MultiHeap.cpp @@ -7,22 +7,15 @@ #include #include #include +#include #include "MultiHeap.h" /* - on ChibiOS allow up to 4 heaps. On other HALs only allow a single - heap. This is needed as hal.util->heap_realloc() needs to have the - property that heap_realloc(heap, ptr, 0) must not care if ptr comes - from the given heap. This is true on ChibiOS, but is not true on - other HALs + allow up to 10 heaps */ #ifndef MAX_HEAPS -#if CONFIG_HAL_BOARD == HAL_BOARD_CHIBIOS -#define MAX_HEAPS 4 -#else -#define MAX_HEAPS 1 -#endif +#define MAX_HEAPS 10 #endif extern const AP_HAL::HAL &hal; @@ -31,7 +24,7 @@ extern const AP_HAL::HAL &hal; create heaps with a total memory size, splitting over at most max_heaps */ -bool MultiHeap::create(uint32_t total_size, uint8_t max_heaps) +bool MultiHeap::create(uint32_t total_size, uint8_t max_heaps, bool _allow_expansion, uint32_t _reserve_size) { max_heaps = MIN(MAX_HEAPS, max_heaps); if (heaps != nullptr) { @@ -61,6 +54,10 @@ bool MultiHeap::create(uint32_t total_size, uint8_t max_heaps) destroy(); return false; } + + allow_expansion = _allow_expansion; + reserve_size = _reserve_size; + return true; } @@ -87,6 +84,22 @@ bool MultiHeap::available(void) const return heaps != nullptr && heaps[0] != nullptr; } +/* + allocate memory from a specific heap + */ +void *MultiHeap::allocate_from_heap(void *heap, uint32_t size) +{ + struct alloc_header *ptr = (struct alloc_header *)hal.util->heap_realloc(heap, nullptr, 0, size+sizeof(alloc_header)); + if (ptr == nullptr) { + return nullptr; + } + ptr->heap = heap; +#ifdef HAL_DEBUG_BUILD + ptr->size = size; +#endif + return (void*)(ptr+1); +} + /* allocate memory from a heap */ @@ -99,11 +112,43 @@ void *MultiHeap::allocate(uint32_t size) if (heaps[i] == nullptr) { break; } - void *newptr = hal.util->heap_realloc(heaps[i], nullptr, 0, size); + void *newptr = allocate_from_heap(heaps[i], size); if (newptr != nullptr) { return newptr; } } + if (!allow_expansion) { + return nullptr; + } + + if (!hal.util->get_soft_armed()) { + // only expand the available heaps when armed. When disarmed + // user should fix their SCR_HEAP_SIZE parameter + return nullptr; + } + + /* + vehicle is armed and MultiHeap (for scripting) is out of + memory. We will see if we can add a new heap from available + memory if we have at least reserve_size bytes free + */ + if (hal.util->available_memory() < reserve_size) { + return nullptr; + } + const uint32_t heap_overhead = 128; // conservative value, varies with HAL + + // round up to multiple of 30k to allocate, and allow for heap overhead + const uint32_t alloc_size = MAX(size+heap_overhead, 30*1024U); + for (uint8_t i=0; iallocate_heap_memory(alloc_size); + if (heaps[i] == nullptr) { + return nullptr; + } + GCS_SEND_TEXT(MAV_SEVERITY_WARNING, "Expanded scripting heap by %u bytes", unsigned(alloc_size)); + return allocate_from_heap(heaps[i], size); + } + } return nullptr; } @@ -112,12 +157,11 @@ void *MultiHeap::allocate(uint32_t size) */ void MultiHeap::deallocate(void *ptr) { - if (!available()) { + if (!available() || ptr == nullptr) { return; } - // NOTE! this relies on either there being a single heap or heap_realloc() - // not using the first argument when size is zero. - hal.util->heap_realloc(heaps[0], ptr, 0, 0); + struct alloc_header *h = ((struct alloc_header *)ptr)-1U; + hal.util->heap_realloc(h->heap, h, 0, 0); } /* @@ -132,12 +176,25 @@ void *MultiHeap::change_size(void *ptr, uint32_t old_size, uint32_t new_size) if (old_size == 0 || ptr == nullptr) { return allocate(new_size); } +#ifdef HAL_DEBUG_BUILD + if (ptr != nullptr) { + struct alloc_header *h = ((struct alloc_header *)ptr)-1U; + if (h->size != old_size) { + INTERNAL_ERROR(AP_InternalError::error_t::invalid_arg_or_result); + } + } +#endif /* - we cannot know which heap this came from, so we rely on the fact - that on ChibiOS the underlying call doesn't use the heap - argument and on other HALs we only have one heap. We pass - through old_size and new_size so that we can validate the lua - old_size value - */ - return hal.util->heap_realloc(heaps[0], ptr, old_size, new_size); + always allocate again and copy. This allows memory to move + between heaps + */ + void *newptr = allocate(new_size); + if (newptr == nullptr) { + return nullptr; + } + if (ptr != nullptr) { + memcpy(newptr, ptr, MIN(old_size, new_size)); + } + deallocate(ptr); + return newptr; } diff --git a/libraries/AP_Common/MultiHeap.h b/libraries/AP_Common/MultiHeap.h index e7aaff15b65394..a79147918113c2 100644 --- a/libraries/AP_Common/MultiHeap.h +++ b/libraries/AP_Common/MultiHeap.h @@ -9,7 +9,7 @@ class MultiHeap { /* allocate/deallocate heaps */ - bool create(uint32_t total_size, uint8_t max_heaps); + bool create(uint32_t total_size, uint8_t max_heaps, bool allow_expansion, uint32_t reserve_size); void destroy(void); // return true if the heap is available for operations @@ -23,7 +23,19 @@ class MultiHeap { // size, unlike realloc() void *change_size(void *ptr, uint32_t old_size, uint32_t new_size); + struct alloc_header { + void *heap; +#ifdef HAL_DEBUG_BUILD + uint32_t size; +#endif + }; + private: + + void *allocate_from_heap(void *heap, uint32_t size); + uint8_t num_heaps; void **heaps; + bool allow_expansion; + uint32_t reserve_size; };