![\"\"](\"http:\/\/blog.mozilla.org\/nnethercote\/files\/2011\/08\/heap-unclassified.png\" "\\"heap-unclassified\\"")
<\/a><\/p>\nThis bucket typically accounts for 30–45% of about:memory’s “explicit” measurement.\u00a0 We’ve discussed this “dark matter” several times in MemShrink meetings.\u00a0 There’s lots of work underway to add new reporters to uninstrumented parts of Gecko<\/a>, but I’ve seen cases where it looks like a decent chunk of the missing memory is due to the JS engine, which is already seemingly thoroughly instrumented.<\/p>\n This week I realized that some of the dark matter could be due to “slop” from jemalloc, the browser’s heap allocator.\u00a0 What is slop?\u00a0 When you ask a heap allocator for a certain number of bytes, it’ll often give you back more than you asked for, rounding the size up.\u00a0 This wastes some memory, but there are good reasons for it — it makes the heap allocator much faster and simpler, and helps avoid fragmentation when the memory is freed.<\/p>\n The following comment from jemalloc.c shows jemalloc’s size classes.\u00a0 Any request that’s not for one of the listed sizes below is rounded up to the nearest size.<\/p>\n In extreme cases, jemalloc will return almost double what you asked for.\u00a0 For example, if you ask for 1,025 bytes, it’ll give you 2,048.\u00a0 A lot of the time you have to just live with slop;\u00a0 if you need to heap-allocate an object that’s 680 bytes, jemalloc will give you 1,024 bytes, and you just have to accept the 344 bytes of waste.\u00a0 But if you have some flexibility in your request size, it’s a good idea to pick a size that’s a power-of-two, because that always gives you zero slop.<\/em>\u00a0 (Remember this, it’s important later on.)<\/p>\n So I instrumented jemalloc to print out an entry for every heap allocation, showing the requested amount, the actual allocated amount, and the resulting slop.\u00a0 I then started up Firefox, opened Gmail, then shut down Firefox.\u00a0 Next, I ran the resulting log through a wonderful little concordance<\/a>-like script I have called “counts” which analyzes a file and tells you how many times each distinct line occurs.\u00a0 Here’s the top ten lines of the output:<\/p>\n There were 909,062 lines, which means there were 909,062 allocations.\u00a0 (I didn’t print information about frees.)\u00a0 The most common line was “ Looking through the list, I saw a case where 1,048,578 (2^20+2) bytes had been requested, and jemalloc had returned\u00a02,097,152 (2^21) bytes.\u00a0 That’s a huge (1MB) waste, and also smelled very fishy.\u00a0 And on further inspection there were a lot of smaller but still suspicious cases where a number slightly larger than a power-of-two was being rounded up to the next power-of-two:\u00a0 1,032 to 2048;\u00a0 1,056 to 2,048;\u00a0 2,087 to 4,096;\u00a0 4,135 to 8,192, etc.<\/p>\n I investigated a number of these by adding some code to jemalloc to detect these suspicious request sizes, and then using Valgrind to print out a stack trace<\/a> every time one occurred.\u00a0 What I found was four<\/em> distinct places in the codebase where the code in question had flexibility in the amount of memory it allocated, and so had tried to ask for a power-of-two, but had botched the request and thus ended up asking for slightly more than a power-of-two!<\/em><\/p>\n Once all these fixes have landed, there will be two benefits.\u00a0 First, Firefox’s memory usage will go down, which is good for everyone.\u00a0 Second, the proportion of dark matter in about:memory will also drop, which makes our memory profiling more accurate and useful.<\/p>\n After that, converting existing reporters to use malloc_usable_size<\/a> will account for much of the legitimate slop, further reducing the amount of dark matter. And then I have a master plan<\/a> for identifying whatever’s left.<\/p>\n*\u00a0\u00a0 |=====================================|\r\n*\u00a0\u00a0 | Category | Subcategory\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0 Size |\r\n*\u00a0\u00a0 |=====================================|\r\n*\u00a0\u00a0 | Small\u00a0\u00a0\u00a0 | Tiny\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 2 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 4 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 8 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |----------------+---------|\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | Quantum-spaced |\u00a0\u00a0\u00a0\u00a0\u00a0 16 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0 32 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0 48 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0 ... |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0 480 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0 496 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0 512 |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |----------------+---------|\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | Sub-page\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0 1 kB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0 2 kB |\r\n*\u00a0\u00a0 |=====================================|\r\n*\u00a0\u00a0 | Large\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0 4 kB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0 8 kB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0 12 kB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0 ... |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | 1012 kB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | 1016 kB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | 1020 kB |\r\n*\u00a0\u00a0 |=====================================|\r\n*\u00a0\u00a0 | Huge\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0 1 MB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0 2 MB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0 3 MB |\r\n*\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0 ... |\r\n*\u00a0\u00a0 |=====================================|<\/pre>\n
909062 numbers:\r\n( 1 ) 205920 (22.7%, 22.7%): small: 24 -> 32 ( 8 )\r\n( 2 ) 66162 ( 7.3%, 29.9%): small: 72 -> 80 ( 8 )\r\n( 3 ) 61772 ( 6.8%, 36.7%): small: 40 -> 48 ( 8 )\r\n( 4 ) 54386 ( 6.0%, 42.7%): small: 1056 -> 2048 ( 992 )\r\n( 5 ) 48501 ( 5.3%, 48.0%): small: 18 -> 32 ( 14 )\r\n( 6 ) 47668 ( 5.2%, 53.3%): small: 15 -> 16 ( 1 )\r\n( 7 ) 24938 ( 2.7%, 56.0%): large: 4095 -> 4096 ( 1 )\r\n( 8 ) 24278 ( 2.7%, 58.7%): small: 56 -> 64 ( 8 )\r\n( 9 ) 13064 ( 1.4%, 60.1%): small: 104 -> 112 ( 8 )\r\n(10 ) 12852 ( 1.4%, 61.6%): small: 136 -> 144 ( 8 )<\/pre>\n
small: 24 -> 32 ( 8 )<\/code>” which occurred 205,920 times, accounting for 22.7% of all the lines in the file.\u00a0 The “small” refers to jemalloc’s class size categories (see above), and every allocation request of 24 bytes was rounded up to 32 bytes, resulting in 8 bytes of slop.<\/p>\n\n
sizeof(jschar)<\/code> (which is two bytes) to the size, to allow space for the terminating NULL char<\/em>.\u00a0 This code was responsible for the 1,048,578 byte request I mentioned earlier.\u00a0 Luke Wagner fixed this bug<\/a> with a minimal change earlier this week.\u00a0 I was unable to easily measure the overall cost of this, but avoiding 1MB of slop with some frequency can only be a good thing.<\/li>\n