emmalloc: Fix allocations of high alignment

[kripken]

Take the alignment into account when requesting new memory from the OS. If the
alignment is high then we need to ask for enough to ensure we end up aligned, or
else we can end up allocating double the memory we need (see #20645).

This only changes the amount we allocate from the OS if the alignment is non-
standard, that is, this is NFC for normal calls to malloc.

Also remove an assertion that limited the maximum alignment. mimalloc wants
4 MB alignment.

Fixes #20654

[sbc100]

Perhaps replace 4 byte with MALLOC_ALIGNMENT here

[kripken]

I actually think this might be accurate, as in wasm32 those data structures contain 32-bit pointers, and so they need 4-byte alignment (to avoid being unaligned). At least that's how I interpret the comment?

[sbc100]

Somehow the code and comments have become out of sync then.

Why not just say "Also round up to minimum outputted alignment." since that is the only thing the code is doing. It is not specifically handling 4-byte alignment.

[sbc100]

Just return MAX(alignment, MALLOC_ALIGNMENT);?

[sbc100]

I'm not sure I understand the status quo.. does did this work at all without this change?

[kripken]

It worked, but it would do the recursion in the earlier code twice. So it allocated a lot more than it needed, until it finally found enough room for the right size with the right allocation.

[sbc100]

Wouldn't iteratively doing this actually use less memory in some cases? i.e. you could get lucky and get a good alignmenty without quite as much over allocation?

With this change are are guaranteed to waste alignment bytes on each allocation aren't we? In the mimalloc case that would be ~4Mb for each allocation. Or we we return the over-allocated chunk to the free list?

[kripken]

I believe we potentially reuse the extra space, Here is where the early unused space is added to the region before us:

emscripten/system/lib/emmalloc.c

Lines 604 to 617 in 87b24d7

	// Before we proceed further, fix up the boundary between this and the preceding region,
	// so that the boundary between the two regions happens at a right spot for the payload to be aligned.
	if (payloadStartPtr != payloadStartPtrAligned)
	{
	Region *prevRegion = prev_region((Region*)freeRegion);
	// We never have two free regions adjacent to each other, so the region before this free
	// region should be in use.
	assert(region_is_in_use(prevRegion));
	size_t regionBoundaryBumpAmount = payloadStartPtrAligned - payloadStartPtr;
	size_t newThisRegionSize = freeRegion->size - regionBoundaryBumpAmount;
	create_used_region(prevRegion, prevRegion->size + regionBoundaryBumpAmount);
	freeRegion = (Region *)((uint8_t*)freeRegion + regionBoundaryBumpAmount);
	freeRegion->size = newThisRegionSize;
	}

However, that previous region is in use, so this means that region uses more than it needs. It might end up using that if it reallocs, or it would be freed entirely if it is freed, but this could be better, that's true.

Overall emmalloc's goal is to be compact and not the most optimal allocator, so I think this is a reasonable compromise. It's true that we might get lucky without this, as you said, and just happen to be aligned, but in large alignments that is less and less likely, and it's better to do the more straightforward and less risky thing.

[sbc100]

I think this we should wait for @juj to weigh in there.

[kripken]

Talking offline, @juj might not be available to review this for a bit and suggested it land for now if it is urgent, and be reviewed later. I think that makes sense as I'd like to get this in to avoid mimalloc using 2x the memory it needs to, in the first release with mimalloc. @sbc100 does that sound ok?

[sbc100]

So alignment - MALLOC_ALIGNMENT is the most we would ever need to add to the resulting allocation to achieve and an alignment of alignment?

[kripken]

I think so, yes. What I am not certain of is whether the 3* figure a few lines above this include slack or if they are precise, which could matter here.

Another way to go could is if alignment > malloc alignment then add the alignment?

[sbc100]

I think doing it that way would make the code more straight forwardly correct to a reader.

[kripken]

Makes sense, done.

[kripken]

Code size changes here appear on main as well, so are unrelated.

[sbc100]

I'll do a separate codesize update on the main branch if thats ok with you?

I do these from time to time and push them directly to avoid mixing code size change with unrelated changes like this one.

[kripken]

Makes sense, sounds good to update those expectations separately. I see you've done that already.

[kripken]

Tests failed here in an interesting way temporarily:

• The old code (before this PR) worked, which does not allocate more free space based on alignment.
• The typo code failed. The typo was to add +8 for alignment rather than the asked alignment.
• The correct code worked. The correct code is to ask for +32 in the failing testcase, as that is what memalign is called with for alignment.

It seems odd that +0 worked while +8 failed and then +32 worked - the one in the middle is different from the sides. It turns out that:

• In the old code we indeed did not allocate enough the first time, so we allocated a second time. That second allocation is not on top of the previous one, it stands by itself. That is, we allocate again, of the same size, and try to find enough room in that region. That second one happens to end up aligned, so it worked! But in general it doesn't have to.
• In the typo code we hit an infinite loop: Adding +8 was just right to make the alignment stay the same all the time, that is, it never fell into the lucky spot the old code did. Eventually we'd OOM.
• The correct code asked for enough the first time and succeeded, as expected.

Based on that, I think this PR is actually a bugfix.

However, I am confused as to why we do not combine regions after a first failed allocation - that seems wrong, so it's either a bug or a misunderstanding of mine. Still looking into that.

[kripken]

#20759 fixes that issue: indeed an emmalloc bug caused us to fail to combined adjacent regions, due to an sbrk alignment issue. With that PR, the test passes in the middle case (+8 from the last comment) as well. That bug is independent of this, however, so neither blocks the other.