diff mbox series

[Concept,35/35] doc: malloc: Document debugging features

Message ID	20251210000737.180797-36-sjg@u-boot.org
State	New
Headers	From: Simon Glass <sjg@u-boot.org> To: U-Boot Concept <concept@u-boot.org> Date: Tue, 9 Dec 2025 17:07:26 -0700 Message-ID: <20251210000737.180797-36-sjg@u-boot.org> In-Reply-To: <20251210000737.180797-1-sjg@u-boot.org> References: <20251210000737.180797-1-sjg@u-boot.org> MIME-Version: 1.0 Message-ID-Hash: AAF6P2NUOGZLLACV52Q4HKPLBQN7DXB7 CC: Heinrich Schuchardt <xypron.glpk@gmx.de>, Simon Glass <simon.glass@canonical.com>, Claude <noreply@anthropic.com> Precedence: list Subject: [Concept] [PATCH 35/35] doc: malloc: Document debugging features Archived-At: <https://lists.u-boot.org/archives/list/concept@u-boot.org/message/AAF6P2NUOGZLLACV52Q4HKPLBQN7DXB7/> Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit
Series	malloc: Add heap debugging commands and mcheck caller tracking \| [Concept,00/35] malloc: Add heap debugging commands and mcheck caller tracking [Concept,01/35] watchdog: Unregister cyclic on device removal [Concept,03/35] test: dm: Fix memory leaks in test drivers [Concept,04/35] test: dm: Fix delta usage in dm_test_devres_free() [Concept,05/35] mmc: sandbox: Fix memory leak on probe failure [Concept,06/35] video: truetype: Use pre-allocated buffer for glyph rendering [Concept,07/35] lib: Add format_size() to format sizes as strings [Concept,08/35] test: Add ut_asserteq_regex() for regex pattern matching [Concept,09/35] test: Show the required size when console-record overflows [Concept,10/35] malloc: Use mcheck.h header instead of local declaration [Concept,11/35] malloc: Make mcheck respect REALLOC_ZERO_BYTES_FREES [Concept,12/35] backtrace: Use a static buffer in backtrace_ctx for symbols [Concept,13/35] backtrace: Add backtrace_str() for condensed backtrace output [Concept,14/35] malloc: Fix unused internal_memalign warning with mcheck [Concept,15/35] malloc: Add malloc_get_info() to retrieve memory statistics [Concept,16/35] malloc: Add a Kconfig option for debugging malloc() [Concept,17/35] malloc: Enable stats if UNIT_TEST or MALLOC_DEBUG [Concept,18/35] malloc: Add 'malloc' command with 'info' subcommand [Concept,19/35] malloc: Add call counters for malloc, free, realloc [Concept,20/35] malloc: Add a Kconfig option for heap protection [Concept,21/35] malloc: Move mcheck block after includes [Concept,22/35] malloc: Fix internal calls and memalign for mcheck [Concept,23/35] malloc: Update the valloc functions to use mcheck wrappers [Concept,24/35] malloc: Increase the mcheck registry size [Concept,25/35] sandbox: Enable mcheck heap protection [Concept,26/35] malloc: Remove warning messages during relocation [Concept,27/35] malloc: Support storing caller information [Concept,28/35] malloc: Add a caller-info parameter to dlmalloc_impl() [Concept,29/35] malloc: Add malloc dump command to walk the heap [Concept,30/35] malloc: Fix malloc_dump to find mcheck headers in memalign chunks [Concept,31/35] malloc: Record caller backtrace for each allocation [Concept,32/35] malloc: Skip backtrace when stack is corrupted [Concept,33/35] malloc: Show caller info for freed chunks in malloc_dump [Concept,34/35] malloc: Print mcheck registry-overflow message only once [Concept,35/35] doc: malloc: Document debugging features

Commit Message

Simon Glass Dec. 10, 2025, 12:07 a.m. UTC

  From: Simon Glass <simon.glass@canonical.com>

Update the malloc() with more info about the debugging features:

- CONFIG_MALLOC_DEBUG and CONFIG_MCHECK_HEAP_PROTECTION Kconfig options
- The malloc command with info and dump subcommands
- Caller backtrace display when mcheck is enabled

Co-developed-by: Claude <noreply@anthropic.com>
Signed-off-by: Simon Glass <simon.glass@canonical.com>
---

 doc/develop/malloc.rst | 103 +++++++++++++++++++++++++++++++++++++----
 1 file changed, 95 insertions(+), 8 deletions(-)

diff mbox series

Patch

diff --git a/doc/develop/malloc.rst b/doc/develop/malloc.rst
index 3c6b6ea65a4..8dba2d98afe 100644
--- a/doc/develop/malloc.rst
+++ b/doc/develop/malloc.rst
@@ -117,6 +117,19 @@  Main U-Boot (post-relocation)
     compatibility and testing. New boards should use the modern allocator.
     Default: n
 
+``CONFIG_MALLOC_DEBUG``
+    Bool to enable malloc debugging features. This enables the
+    ``malloc_get_info()`` function to retrieve memory statistics and supports
+    the ``malloc`` command. Default: y if UNIT_TEST is enabled.
+
+``CONFIG_MCHECK_HEAP_PROTECTION``
+    Bool to enable heap protection using the mcheck library. This adds canary
+    values before and after each allocation to detect buffer overflows,
+    underflows, double-frees, and memory corruption. When enabled, caller
+    backtraces are recorded for each allocation and displayed by
+    ``malloc dump``. This significantly increases memory overhead and should
+    only be used for debugging. Default: n
+
 xPL Boot Phases
 ~~~~~~~~~~~~~~~
 
@@ -298,17 +311,90 @@  for memory-leak detection.
 Debugging
 ---------
 
-For debugging heap issues, consider:
+U-Boot provides several features to help debug memory-allocation issues:
+
+CONFIG_MALLOC_DEBUG
+~~~~~~~~~~~~~~~~~~~
+
+Enable ``CONFIG_MALLOC_DEBUG`` to activate malloc debugging features. This is
+enabled by default when ``CONFIG_UNIT_TEST`` is set. It provides:
+
+- The ``malloc_get_info()`` function to retrieve memory statistics
+- Allocation call counters (malloc, free, realloc counts)
+- Support for the ``malloc`` command (see :doc:`/usage/cmd/malloc`)
+
+The :doc:`/usage/cmd/malloc` command provides two subcommands:
+
+``malloc info``
+    Shows memory-allocation statistics including total heap size, memory in use,
+    and call counts::
+
+        => malloc info
+        total bytes   = 96 MiB
+        in use bytes  = 700.9 KiB
+        malloc count  = 1234
+        free count    = 567
+        realloc count = 89
+
+``malloc dump``
+    Walks the entire heap and prints each chunk's address, size, and status
+    (used, free, or top). This is useful for understanding heap layout and
+    finding memory leaks::
+
+        => malloc dump
+        Heap dump: 19a0e000 - 1fa10000
+             Address        Size  Status
+        ----------------------------------
+            19a0e000          10  (chunk header)
+            19a0e010          a0
+            19a0e0b0        6070
+            19adfc30          60  <free>
+            19adff90     5f3f030  top
+            1fa10000              end
+        ----------------------------------
+        Used: c2ef0 bytes in 931 chunks
+        Free: 5f3f0c0 bytes in 2 chunks + top
+
+CONFIG_MCHECK_HEAP_PROTECTION
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+Enable ``CONFIG_MCHECK_HEAP_PROTECTION`` for heap protection using the mcheck
+library. This adds canary values before and after each allocation to detect:
+
+- Buffer overflows and underflows
+- Double-frees
+- Memory corruption
+
+This significantly increases memory overhead and should only be used for
+debugging. U-Boot includes mcheck support via mcheck(), mcheck_pedantic(), and
+mcheck_check_all().
+
+When mcheck is enabled, the ``malloc dump`` command also shows caller
+information for each allocation, including a backtrace showing where the
+allocation was made::
+
+    => malloc dump
+    Heap dump: 18a1d000 - 1ea1f000
+         Address        Size  Status
+    ----------------------------------
+        18a1d000          10  (chunk header)
+        18a1d010          90  used  log_init:453 <-board_init_r:774
+        18a1d0a0        6060  used  membuf_new:420 <-console_record
+        18a3b840          90  used  of_alias_scan:911 <-board_init_
+
+This caller information makes it easy to track down memory leaks by showing
+exactly where each allocation originated.
+
+Valgrind
+~~~~~~~~
 
-1. **mcheck**: U-Boot includes mcheck support for detecting buffer overruns.
-   Enable CONFIG_MCHECK to use mcheck(), mcheck_pedantic(), and
-   mcheck_check_all().
+When running sandbox with Valgrind, the allocator includes annotations to help
+detect memory errors. See :ref:`sandbox_valgrind`.
 
-2. **Valgrind**: When running sandbox with Valgrind, the allocator includes
-   annotations to help detect memory errors. See :ref:`sandbox_valgrind`.
+malloc testing
+~~~~~~~~~~~~~~
 
-3. **malloc testing**: Unit tests can use malloc_enable_testing() to simulate
-   allocation failures.
+Unit tests can use malloc_enable_testing() to simulate allocation failures.
 
 API Reference
 -------------
@@ -331,3 +417,4 @@  See Also
 
 - :doc:`memory` - Memory management overview
 - :doc:`global_data` - Global data and the GD_FLG_FULL_MALLOC_INIT flag
+- :doc:`/usage/cmd/malloc` - malloc command reference