]> git.proxmox.com Git - rustc.git/blob - vendor/tokio/src/time/driver/mod.rs
projects / rustc.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
New upstream version 1.71.1+dfsg1
[rustc.git] / vendor / tokio / src / time / driver / mod.rs
1 // Currently, rust warns when an unsafe fn contains an unsafe {} block. However,
2 // in the future, this will change to the reverse. For now, suppress this
3 // warning and generally stick with being explicit about unsafety.
4 #![allow(unused_unsafe)]
5 #![cfg_attr(not(feature = "rt"), allow(dead_code))]
6
7 //! Time driver
8
9 mod entry;
10 pub(self) use self::entry::{EntryList, TimerEntry, TimerHandle, TimerShared};
11
12 mod handle;
13 pub(crate) use self::handle::Handle;
14
15 mod wheel;
16
17 pub(super) mod sleep;
18
19 use crate::loom::sync::atomic::{AtomicBool, Ordering};
20 use crate::loom::sync::{Arc, Mutex};
21 use crate::park::{Park, Unpark};
22 use crate::time::error::Error;
23 use crate::time::{Clock, Duration, Instant};
24
25 use std::convert::TryInto;
26 use std::fmt;
27 use std::{num::NonZeroU64, ptr::NonNull, task::Waker};
28
29 /// Time implementation that drives [`Sleep`][sleep], [`Interval`][interval], and [`Timeout`][timeout].
30 ///
31 /// A `Driver` instance tracks the state necessary for managing time and
32 /// notifying the [`Sleep`][sleep] instances once their deadlines are reached.
33 ///
34 /// It is expected that a single instance manages many individual [`Sleep`][sleep]
35 /// instances. The `Driver` implementation is thread-safe and, as such, is able
36 /// to handle callers from across threads.
37 ///
38 /// After creating the `Driver` instance, the caller must repeatedly call `park`
39 /// or `park_timeout`. The time driver will perform no work unless `park` or
40 /// `park_timeout` is called repeatedly.
41 ///
42 /// The driver has a resolution of one millisecond. Any unit of time that falls
43 /// between milliseconds are rounded up to the next millisecond.
44 ///
45 /// When an instance is dropped, any outstanding [`Sleep`][sleep] instance that has not
46 /// elapsed will be notified with an error. At this point, calling `poll` on the
47 /// [`Sleep`][sleep] instance will result in panic.
48 ///
49 /// # Implementation
50 ///
51 /// The time driver is based on the [paper by Varghese and Lauck][paper].
52 ///
53 /// A hashed timing wheel is a vector of slots, where each slot handles a time
54 /// slice. As time progresses, the timer walks over the slot for the current
55 /// instant, and processes each entry for that slot. When the timer reaches the
56 /// end of the wheel, it starts again at the beginning.
57 ///
58 /// The implementation maintains six wheels arranged in a set of levels. As the
59 /// levels go up, the slots of the associated wheel represent larger intervals
60 /// of time. At each level, the wheel has 64 slots. Each slot covers a range of
61 /// time equal to the wheel at the lower level. At level zero, each slot
62 /// represents one millisecond of time.
63 ///
64 /// The wheels are:
65 ///
66 /// * Level 0: 64 x 1 millisecond slots.
67 /// * Level 1: 64 x 64 millisecond slots.
68 /// * Level 2: 64 x ~4 second slots.
69 /// * Level 3: 64 x ~4 minute slots.
70 /// * Level 4: 64 x ~4 hour slots.
71 /// * Level 5: 64 x ~12 day slots.
72 ///
73 /// When the timer processes entries at level zero, it will notify all the
74 /// `Sleep` instances as their deadlines have been reached. For all higher
75 /// levels, all entries will be redistributed across the wheel at the next level
76 /// down. Eventually, as time progresses, entries with [`Sleep`][sleep] instances will
77 /// either be canceled (dropped) or their associated entries will reach level
78 /// zero and be notified.
79 ///
80 /// [paper]: http://www.cs.columbia.edu/~nahum/w6998/papers/ton97-timing-wheels.pdf
81 /// [sleep]: crate::time::Sleep
82 /// [timeout]: crate::time::Timeout
83 /// [interval]: crate::time::Interval
84 #[derive(Debug)]
85 pub(crate) struct Driver<P: Park + 'static> {
86 /// Timing backend in use
87 time_source: ClockTime,
88
89 /// Shared state
90 handle: Handle,
91
92 /// Parker to delegate to
93 park: P,
94
95 // When `true`, a call to `park_timeout` should immediately return and time
96 // should not advance. One reason for this to be `true` is if the task
97 // passed to `Runtime::block_on` called `task::yield_now()`.
98 //
99 // While it may look racy, it only has any effect when the clock is paused
100 // and pausing the clock is restricted to a single-threaded runtime.
101 #[cfg(feature = "test-util")]
102 did_wake: Arc<AtomicBool>,
103 }
104
105 /// A structure which handles conversion from Instants to u64 timestamps.
106 #[derive(Debug, Clone)]
107 pub(self) struct ClockTime {
108 clock: super::clock::Clock,
109 start_time: Instant,
110 }
111
112 impl ClockTime {
113 pub(self) fn new(clock: Clock) -> Self {
114 Self {
115 start_time: clock.now(),
116 clock,
117 }
118 }
119
120 pub(self) fn deadline_to_tick(&self, t: Instant) -> u64 {
121 // Round up to the end of a ms
122 self.instant_to_tick(t + Duration::from_nanos(999_999))
123 }
124
125 pub(self) fn instant_to_tick(&self, t: Instant) -> u64 {
126 // round up
127 let dur: Duration = t
128 .checked_duration_since(self.start_time)
129 .unwrap_or_else(|| Duration::from_secs(0));
130 let ms = dur.as_millis();
131
132 ms.try_into().expect("Duration too far into the future")
133 }
134
135 pub(self) fn tick_to_duration(&self, t: u64) -> Duration {
136 Duration::from_millis(t)
137 }
138
139 pub(self) fn now(&self) -> u64 {
140 self.instant_to_tick(self.clock.now())
141 }
142 }
143
144 /// Timer state shared between `Driver`, `Handle`, and `Registration`.
145 struct Inner {
146 // The state is split like this so `Handle` can access `is_shutdown` without locking the mutex
147 pub(super) state: Mutex<InnerState>,
148
149 /// True if the driver is being shutdown
150 pub(super) is_shutdown: AtomicBool,
151 }
152
153 /// Time state shared which must be protected by a `Mutex`
154 struct InnerState {
155 /// Timing backend in use
156 time_source: ClockTime,
157
158 /// The last published timer `elapsed` value.
159 elapsed: u64,
160
161 /// The earliest time at which we promise to wake up without unparking
162 next_wake: Option<NonZeroU64>,
163
164 /// Timer wheel
165 wheel: wheel::Wheel,
166
167 /// Unparker that can be used to wake the time driver
168 unpark: Box<dyn Unpark>,
169 }
170
171 // ===== impl Driver =====
172
173 impl<P> Driver<P>
174 where
175 P: Park + 'static,
176 {
177 /// Creates a new `Driver` instance that uses `park` to block the current
178 /// thread and `time_source` to get the current time and convert to ticks.
179 ///
180 /// Specifying the source of time is useful when testing.
181 pub(crate) fn new(park: P, clock: Clock) -> Driver<P> {
182 let time_source = ClockTime::new(clock);
183
184 let inner = Inner::new(time_source.clone(), Box::new(park.unpark()));
185
186 Driver {
187 time_source,
188 handle: Handle::new(Arc::new(inner)),
189 park,
190 #[cfg(feature = "test-util")]
191 did_wake: Arc::new(AtomicBool::new(false)),
192 }
193 }
194
195 /// Returns a handle to the timer.
196 ///
197 /// The `Handle` is how `Sleep` instances are created. The `Sleep` instances
198 /// can either be created directly or the `Handle` instance can be passed to
199 /// `with_default`, setting the timer as the default timer for the execution
200 /// context.
201 pub(crate) fn handle(&self) -> Handle {
202 self.handle.clone()
203 }
204
205 fn park_internal(&mut self, limit: Option<Duration>) -> Result<(), P::Error> {
206 let mut lock = self.handle.get().state.lock();
207
208 assert!(!self.handle.is_shutdown());
209
210 let next_wake = lock.wheel.next_expiration_time();
211 lock.next_wake =
212 next_wake.map(|t| NonZeroU64::new(t).unwrap_or_else(|| NonZeroU64::new(1).unwrap()));
213
214 drop(lock);
215
216 match next_wake {
217 Some(when) => {
218 let now = self.time_source.now();
219 // Note that we effectively round up to 1ms here - this avoids
220 // very short-duration microsecond-resolution sleeps that the OS
221 // might treat as zero-length.
222 let mut duration = self.time_source.tick_to_duration(when.saturating_sub(now));
223
224 if duration > Duration::from_millis(0) {
225 if let Some(limit) = limit {
226 duration = std::cmp::min(limit, duration);
227 }
228
229 self.park_timeout(duration)?;
230 } else {
231 self.park.park_timeout(Duration::from_secs(0))?;
232 }
233 }
234 None => {
235 if let Some(duration) = limit {
236 self.park_timeout(duration)?;
237 } else {
238 self.park.park()?;
239 }
240 }
241 }
242
243 // Process pending timers after waking up
244 self.handle.process();
245
246 Ok(())
247 }
248
249 cfg_test_util! {
250 fn park_timeout(&mut self, duration: Duration) -> Result<(), P::Error> {
251 let clock = &self.time_source.clock;
252
253 if clock.is_paused() {
254 self.park.park_timeout(Duration::from_secs(0))?;
255
256 // If the time driver was woken, then the park completed
257 // before the "duration" elapsed (usually caused by a
258 // yield in `Runtime::block_on`). In this case, we don't
259 // advance the clock.
260 if !self.did_wake() {
261 // Simulate advancing time
262 clock.advance(duration);
263 }
264 } else {
265 self.park.park_timeout(duration)?;
266 }
267
268 Ok(())
269 }
270
271 fn did_wake(&self) -> bool {
272 self.did_wake.swap(false, Ordering::SeqCst)
273 }
274 }
275
276 cfg_not_test_util! {
277 fn park_timeout(&mut self, duration: Duration) -> Result<(), P::Error> {
278 self.park.park_timeout(duration)
279 }
280 }
281 }
282
283 impl Handle {
284 /// Runs timer related logic, and returns the next wakeup time
285 pub(self) fn process(&self) {
286 let now = self.time_source().now();
287
288 self.process_at_time(now)
289 }
290
291 pub(self) fn process_at_time(&self, now: u64) {
292 let mut waker_list: [Option<Waker>; 32] = Default::default();
293 let mut waker_idx = 0;
294
295 let mut lock = self.get().lock();
296
297 assert!(now >= lock.elapsed);
298
299 while let Some(entry) = lock.wheel.poll(now) {
300 debug_assert!(unsafe { entry.is_pending() });
301
302 // SAFETY: We hold the driver lock, and just removed the entry from any linked lists.
303 if let Some(waker) = unsafe { entry.fire(Ok(())) } {
304 waker_list[waker_idx] = Some(waker);
305
306 waker_idx += 1;
307
308 if waker_idx == waker_list.len() {
309 // Wake a batch of wakers. To avoid deadlock, we must do this with the lock temporarily dropped.
310 drop(lock);
311
312 for waker in waker_list.iter_mut() {
313 waker.take().unwrap().wake();
314 }
315
316 waker_idx = 0;
317
318 lock = self.get().lock();
319 }
320 }
321 }
322
323 // Update the elapsed cache
324 lock.elapsed = lock.wheel.elapsed();
325 lock.next_wake = lock
326 .wheel
327 .poll_at()
328 .map(|t| NonZeroU64::new(t).unwrap_or_else(|| NonZeroU64::new(1).unwrap()));
329
330 drop(lock);
331
332 for waker in waker_list[0..waker_idx].iter_mut() {
333 waker.take().unwrap().wake();
334 }
335 }
336
337 /// Removes a registered timer from the driver.
338 ///
339 /// The timer will be moved to the cancelled state. Wakers will _not_ be
340 /// invoked. If the timer is already completed, this function is a no-op.
341 ///
342 /// This function always acquires the driver lock, even if the entry does
343 /// not appear to be registered.
344 ///
345 /// SAFETY: The timer must not be registered with some other driver, and
346 /// `add_entry` must not be called concurrently.
347 pub(self) unsafe fn clear_entry(&self, entry: NonNull<TimerShared>) {
348 unsafe {
349 let mut lock = self.get().lock();
350
351 if entry.as_ref().might_be_registered() {
352 lock.wheel.remove(entry);
353 }
354
355 entry.as_ref().handle().fire(Ok(()));
356 }
357 }
358
359 /// Removes and re-adds an entry to the driver.
360 ///
361 /// SAFETY: The timer must be either unregistered, or registered with this
362 /// driver. No other threads are allowed to concurrently manipulate the
363 /// timer at all (the current thread should hold an exclusive reference to
364 /// the `TimerEntry`)
365 pub(self) unsafe fn reregister(&self, new_tick: u64, entry: NonNull<TimerShared>) {
366 let waker = unsafe {
367 let mut lock = self.get().lock();
368
369 // We may have raced with a firing/deregistration, so check before
370 // deregistering.
371 if unsafe { entry.as_ref().might_be_registered() } {
372 lock.wheel.remove(entry);
373 }
374
375 // Now that we have exclusive control of this entry, mint a handle to reinsert it.
376 let entry = entry.as_ref().handle();
377
378 if self.is_shutdown() {
379 unsafe { entry.fire(Err(crate::time::error::Error::shutdown())) }
380 } else {
381 entry.set_expiration(new_tick);
382
383 // Note: We don't have to worry about racing with some other resetting
384 // thread, because add_entry and reregister require exclusive control of
385 // the timer entry.
386 match unsafe { lock.wheel.insert(entry) } {
387 Ok(when) => {
388 if lock
389 .next_wake
390 .map(|next_wake| when < next_wake.get())
391 .unwrap_or(true)
392 {
393 lock.unpark.unpark();
394 }
395
396 None
397 }
398 Err((entry, super::error::InsertError::Elapsed)) => unsafe {
399 entry.fire(Ok(()))
400 },
401 }
402 }
403
404 // Must release lock before invoking waker to avoid the risk of deadlock.
405 };
406
407 // The timer was fired synchronously as a result of the reregistration.
408 // Wake the waker; this is needed because we might reset _after_ a poll,
409 // and otherwise the task won't be awoken to poll again.
410 if let Some(waker) = waker {
411 waker.wake();
412 }
413 }
414 }
415
416 impl<P> Park for Driver<P>
417 where
418 P: Park + 'static,
419 {
420 type Unpark = TimerUnpark<P>;
421 type Error = P::Error;
422
423 fn unpark(&self) -> Self::Unpark {
424 TimerUnpark::new(self)
425 }
426
427 fn park(&mut self) -> Result<(), Self::Error> {
428 self.park_internal(None)
429 }
430
431 fn park_timeout(&mut self, duration: Duration) -> Result<(), Self::Error> {
432 self.park_internal(Some(duration))
433 }
434
435 fn shutdown(&mut self) {
436 if self.handle.is_shutdown() {
437 return;
438 }
439
440 self.handle.get().is_shutdown.store(true, Ordering::SeqCst);
441
442 // Advance time forward to the end of time.
443
444 self.handle.process_at_time(u64::MAX);
445
446 self.park.shutdown();
447 }
448 }
449
450 impl<P> Drop for Driver<P>
451 where
452 P: Park + 'static,
453 {
454 fn drop(&mut self) {
455 self.shutdown();
456 }
457 }
458
459 pub(crate) struct TimerUnpark<P: Park + 'static> {
460 inner: P::Unpark,
461
462 #[cfg(feature = "test-util")]
463 did_wake: Arc<AtomicBool>,
464 }
465
466 impl<P: Park + 'static> TimerUnpark<P> {
467 fn new(driver: &Driver<P>) -> TimerUnpark<P> {
468 TimerUnpark {
469 inner: driver.park.unpark(),
470
471 #[cfg(feature = "test-util")]
472 did_wake: driver.did_wake.clone(),
473 }
474 }
475 }
476
477 impl<P: Park + 'static> Unpark for TimerUnpark<P> {
478 fn unpark(&self) {
479 #[cfg(feature = "test-util")]
480 self.did_wake.store(true, Ordering::SeqCst);
481
482 self.inner.unpark();
483 }
484 }
485
486 // ===== impl Inner =====
487
488 impl Inner {
489 pub(self) fn new(time_source: ClockTime, unpark: Box<dyn Unpark>) -> Self {
490 Inner {
491 state: Mutex::new(InnerState {
492 time_source,
493 elapsed: 0,
494 next_wake: None,
495 unpark,
496 wheel: wheel::Wheel::new(),
497 }),
498 is_shutdown: AtomicBool::new(false),
499 }
500 }
501
502 /// Locks the driver's inner structure
503 pub(super) fn lock(&self) -> crate::loom::sync::MutexGuard<'_, InnerState> {
504 self.state.lock()
505 }
506
507 // Check whether the driver has been shutdown
508 pub(super) fn is_shutdown(&self) -> bool {
509 self.is_shutdown.load(Ordering::SeqCst)
510 }
511 }
512
513 impl fmt::Debug for Inner {
514 fn fmt(&self, fmt: &mut fmt::Formatter<'_>) -> fmt::Result {
515 fmt.debug_struct("Inner").finish()
516 }
517 }
518
519 #[cfg(test)]
520 mod tests;
backport for Debian buster