[wasm] Fix sharing of wbarrier card between los object and wbarrier roots (#118271)

BrzVlad · web-flow · commit 2cc52c2d2a0c · 2025-08-01T11:18:09.000-05:00
In the change disabling los section allocator on wasm (via sgen_los_enable_sections_allocator), we aligned these los objects to 512 bytes, which is the memory range mapped by a card byte. This alignment prevented two los objects having memory mapped to the same card. Sharing with other objects is impossible since they are allocated in separate spaces with high alignment (the nursery and major blocks). There was however an oversight, which is the possibility of having wbarrier roots allocated in this space (These roots are just variable sized memory ranges containing refs, that are scanned only if the corresponding card is marked). In this situation, scanning the cards for the los object could end up clearing cards for these roots that will no longer be scanned
diff --git a/src/mono/mono/sgen/sgen-los.c b/src/mono/mono/sgen/sgen-los.c
@@ -477,14 +477,20 @@ sgen_los_alloc_large_inner (GCVTable vtable, size_t size)
 		}
 	} else if (!sgen_los_enable_sections_allocator) {
 		size_t alloc_size = size + sizeof (LOSObject);
+#ifndef SGEN_HAVE_OVERLAPPING_CARDS
+		// While other objects can't be allocated after the los object (in a memory sharing a card with the los object),
+		// we could still have wbarrier roots allocated there, since they don't have alignment requirement. This means that
+		// clearing a card from this object would prevent scanning of refs in the wbarrier roots.
+		alloc_size = SGEN_ALIGN_UP_TO (alloc_size, CARD_SIZE_IN_BYTES);
+#endif
 		if (sgen_memgov_try_alloc_space (alloc_size, SPACE_LOS)) {
-#ifdef SGEN_HAVE_OVERLAPPING_CARDS
-			int alignment = SGEN_ALLOC_ALIGN;
-#else
+#ifndef SGEN_HAVE_OVERLAPPING_CARDS
 			// If we don't use the shadow card table, having a card map to 2 different los objects is invalid
 			// because once we scan the first object we could clear the card, leading to failure to detect refs
 			// in the second object. We prevent this by aligning the los object to the card size.
 			int alignment = CARD_SIZE_IN_BYTES;
+#else
+			int alignment = SGEN_ALLOC_ALIGN;
 #endif
 			obj = (LOSObject *)sgen_alloc_os_memory_aligned (alloc_size, alignment, (SgenAllocFlags)(SGEN_ALLOC_HEAP | SGEN_ALLOC_ACTIVATE), NULL, MONO_MEM_ACCOUNT_SGEN_LOS);
 			if (obj)
