1 #include <aio.h>
2 #include <pthread.h>
3 #include <semaphore.h>
4 #include <limits.h>
5 #include <errno.h>
6 #include <unistd.h>
7 #include <stdlib.h>
8 #include <sys/auxv.h>
9 #include <unsupported_api.h>
10 #include "syscall.h"
11 #include "atomic.h"
12 #include "pthread_impl.h"
13 #include "aio_impl.h"
14
15 #define malloc __libc_malloc
16 #define calloc __libc_calloc
17 #define realloc __libc_realloc
18 #define free __libc_free
19
20 /* The following is a threads-based implementation of AIO with minimal
21 * dependence on implementation details. Most synchronization is
22 * performed with pthread primitives, but atomics and futex operations
23 * are used for notification in a couple places where the pthread
24 * primitives would be inefficient or impractical.
25 *
26 * For each fd with outstanding aio operations, an aio_queue structure
27 * is maintained. These are reference-counted and destroyed by the last
28 * aio worker thread to exit. Accessing any member of the aio_queue
29 * structure requires a lock on the aio_queue. Adding and removing aio
30 * queues themselves requires a write lock on the global map object,
31 * a 4-level table mapping file descriptor numbers to aio queues. A
32 * read lock on the map is used to obtain locks on existing queues by
33 * excluding destruction of the queue by a different thread while it is
34 * being locked.
35 *
36 * Each aio queue has a list of active threads/operations. Presently there
37 * is a one to one relationship between threads and operations. The only
38 * members of the aio_thread structure which are accessed by other threads
39 * are the linked list pointers, op (which is immutable), running (which
40 * is updated atomically), and err (which is synchronized via running),
41 * so no locking is necessary. Most of the other other members are used
42 * for sharing data between the main flow of execution and cancellation
43 * cleanup handler.
44 *
45 * Taking any aio locks requires having all signals blocked. This is
46 * necessary because aio_cancel is needed by close, and close is required
47 * to be async-signal safe. All aio worker threads run with all signals
48 * blocked permanently.
49 */
50
51 struct aio_thread {
52 pthread_t td;
53 struct aiocb *cb;
54 struct aio_thread *next, *prev;
55 struct aio_queue *q;
56 volatile int running;
57 int err, op;
58 ssize_t ret;
59 };
60
61 struct aio_queue {
62 int fd, seekable, append, ref, init;
63 pthread_mutex_t lock;
64 pthread_cond_t cond;
65 struct aio_thread *head;
66 };
67
68 struct aio_args {
69 struct aiocb *cb;
70 struct aio_queue *q;
71 int op;
72 sem_t sem;
73 };
74
75 static pthread_rwlock_t maplock = PTHREAD_RWLOCK_INITIALIZER;
76 static struct aio_queue *****map;
77 static volatile int aio_fd_cnt;
78 volatile int __aio_fut;
79
80 static size_t io_thread_stack_size;
81
82 #define MAX(a,b) ((a)>(b) ? (a) : (b))
__aio_get_queue(int fd,int need)83 static struct aio_queue *__aio_get_queue(int fd, int need)
84 {
85 if (fd < 0) {
86 errno = EBADF;
87 return 0;
88 }
89 int a=fd>>24;
90 unsigned char b=fd>>16, c=fd>>8, d=fd;
91 struct aio_queue *q = 0;
92 pthread_rwlock_rdlock(&maplock);
93 if ((!map || !map[a] || !map[a][b] || !map[a][b][c] || !(q=map[a][b][c][d])) && need) {
94 pthread_rwlock_unlock(&maplock);
95 if (fcntl(fd, F_GETFD) < 0) return 0;
96 pthread_rwlock_wrlock(&maplock);
97 if (!io_thread_stack_size) {
98 unsigned long val = __getauxval(AT_MINSIGSTKSZ);
99 io_thread_stack_size = MAX(MINSIGSTKSZ+2048, val+512);
100 }
101 if (!map) map = calloc(sizeof *map, (-1U/2+1)>>24);
102 if (!map) goto out;
103 if (!map[a]) map[a] = calloc(sizeof **map, 256);
104 if (!map[a]) goto out;
105 if (!map[a][b]) map[a][b] = calloc(sizeof ***map, 256);
106 if (!map[a][b]) goto out;
107 if (!map[a][b][c]) map[a][b][c] = calloc(sizeof ****map, 256);
108 if (!map[a][b][c]) goto out;
109 if (!(q = map[a][b][c][d])) {
110 map[a][b][c][d] = q = calloc(sizeof *****map, 1);
111 if (q) {
112 q->fd = fd;
113 pthread_mutex_init(&q->lock, 0);
114 pthread_cond_init(&q->cond, 0);
115 a_inc(&aio_fd_cnt);
116 }
117 }
118 }
119 if (q) pthread_mutex_lock(&q->lock);
120 out:
121 pthread_rwlock_unlock(&maplock);
122 return q;
123 }
124
__aio_unref_queue(struct aio_queue * q)125 static void __aio_unref_queue(struct aio_queue *q)
126 {
127 if (q->ref > 1) {
128 q->ref--;
129 pthread_mutex_unlock(&q->lock);
130 return;
131 }
132
133 /* This is potentially the last reference, but a new reference
134 * may arrive since we cannot free the queue object without first
135 * taking the maplock, which requires releasing the queue lock. */
136 pthread_mutex_unlock(&q->lock);
137 pthread_rwlock_wrlock(&maplock);
138 pthread_mutex_lock(&q->lock);
139 if (q->ref == 1) {
140 int fd=q->fd;
141 int a=fd>>24;
142 unsigned char b=fd>>16, c=fd>>8, d=fd;
143 map[a][b][c][d] = 0;
144 a_dec(&aio_fd_cnt);
145 pthread_rwlock_unlock(&maplock);
146 pthread_mutex_unlock(&q->lock);
147 free(q);
148 } else {
149 q->ref--;
150 pthread_rwlock_unlock(&maplock);
151 pthread_mutex_unlock(&q->lock);
152 }
153 }
154
cleanup(void * ctx)155 static void cleanup(void *ctx)
156 {
157 struct aio_thread *at = ctx;
158 struct aio_queue *q = at->q;
159 struct aiocb *cb = at->cb;
160 struct sigevent sev = cb->aio_sigevent;
161
162 /* There are four potential types of waiters we could need to wake:
163 * 1. Callers of aio_cancel/close.
164 * 2. Callers of aio_suspend with a single aiocb.
165 * 3. Callers of aio_suspend with a list.
166 * 4. AIO worker threads waiting for sequenced operations.
167 * Types 1-3 are notified via atomics/futexes, mainly for AS-safety
168 * considerations. Type 4 is notified later via a cond var. */
169
170 cb->__ret = at->ret;
171 if (a_swap(&at->running, 0) < 0)
172 __wake(&at->running, -1, 1);
173 if (a_swap(&cb->__err, at->err) != EINPROGRESS)
174 __wake(&cb->__err, -1, 1);
175 if (a_swap(&__aio_fut, 0))
176 __wake(&__aio_fut, -1, 1);
177
178 pthread_mutex_lock(&q->lock);
179
180 if (at->next) at->next->prev = at->prev;
181 if (at->prev) at->prev->next = at->next;
182 else q->head = at->next;
183
184 /* Signal aio worker threads waiting for sequenced operations. */
185 pthread_cond_broadcast(&q->cond);
186
187 __aio_unref_queue(q);
188
189 if (sev.sigev_notify == SIGEV_SIGNAL) {
190 siginfo_t si = {
191 .si_signo = sev.sigev_signo,
192 .si_value = sev.sigev_value,
193 .si_code = SI_ASYNCIO,
194 .si_pid = getpid(),
195 .si_uid = getuid()
196 };
197 __syscall(SYS_rt_sigqueueinfo, si.si_pid, si.si_signo, &si);
198 }
199 if (sev.sigev_notify == SIGEV_THREAD) {
200 a_store(&__pthread_self()->cancel, 0);
201 sev.sigev_notify_function(sev.sigev_value);
202 }
203 }
204
io_thread_func(void * ctx)205 static void *io_thread_func(void *ctx)
206 {
207 struct aio_thread at, *p;
208
209 struct aio_args *args = ctx;
210 struct aiocb *cb = args->cb;
211 int fd = cb->aio_fildes;
212 int op = args->op;
213 void *buf = (void *)cb->aio_buf;
214 size_t len = cb->aio_nbytes;
215 off_t off = cb->aio_offset;
216
217 struct aio_queue *q = args->q;
218 ssize_t ret;
219
220 pthread_mutex_lock(&q->lock);
221 sem_post(&args->sem);
222
223 at.op = op;
224 at.running = 1;
225 at.ret = -1;
226 at.err = ECANCELED;
227 at.q = q;
228 at.td = __pthread_self();
229 at.cb = cb;
230 at.prev = 0;
231 if ((at.next = q->head)) at.next->prev = &at;
232 q->head = &at;
233
234 if (!q->init) {
235 int seekable = lseek(fd, 0, SEEK_CUR) >= 0;
236 q->seekable = seekable;
237 q->append = !seekable || (fcntl(fd, F_GETFL) & O_APPEND);
238 q->init = 1;
239 }
240
241 pthread_cleanup_push(cleanup, &at);
242
243 /* Wait for sequenced operations. */
244 if (op!=LIO_READ && (op!=LIO_WRITE || q->append)) {
245 for (;;) {
246 for (p=at.next; p && p->op!=LIO_WRITE; p=p->next);
247 if (!p) break;
248 pthread_cond_wait(&q->cond, &q->lock);
249 }
250 }
251
252 pthread_mutex_unlock(&q->lock);
253
254 switch (op) {
255 case LIO_WRITE:
256 ret = q->append ? write(fd, buf, len) : pwrite(fd, buf, len, off);
257 break;
258 case LIO_READ:
259 ret = !q->seekable ? read(fd, buf, len) : pread(fd, buf, len, off);
260 break;
261 case O_SYNC:
262 ret = fsync(fd);
263 break;
264 case O_DSYNC:
265 ret = fdatasync(fd);
266 break;
267 }
268 at.ret = ret;
269 at.err = ret<0 ? errno : 0;
270
271 pthread_cleanup_pop(1);
272
273 return 0;
274 }
275
submit(struct aiocb * cb,int op)276 static int submit(struct aiocb *cb, int op)
277 {
278 int ret = 0;
279 pthread_attr_t a;
280 sigset_t allmask, origmask;
281 pthread_t td;
282 struct aio_queue *q = __aio_get_queue(cb->aio_fildes, 1);
283 struct aio_args args = { .cb = cb, .op = op, .q = q };
284 sem_init(&args.sem, 0, 0);
285
286 if (!q) {
287 if (errno != EBADF) errno = EAGAIN;
288 cb->__ret = -1;
289 cb->__err = errno;
290 return -1;
291 }
292 q->ref++;
293 pthread_mutex_unlock(&q->lock);
294
295 if (cb->aio_sigevent.sigev_notify == SIGEV_THREAD) {
296 if (cb->aio_sigevent.sigev_notify_attributes)
297 a = *cb->aio_sigevent.sigev_notify_attributes;
298 else
299 pthread_attr_init(&a);
300 } else {
301 pthread_attr_init(&a);
302 pthread_attr_setstacksize(&a, io_thread_stack_size);
303 pthread_attr_setguardsize(&a, 0);
304 }
305 pthread_attr_setdetachstate(&a, PTHREAD_CREATE_DETACHED);
306 sigfillset(&allmask);
307 pthread_sigmask(SIG_BLOCK, &allmask, &origmask);
308 cb->__err = EINPROGRESS;
309 if (pthread_create(&td, &a, io_thread_func, &args)) {
310 pthread_mutex_lock(&q->lock);
311 __aio_unref_queue(q);
312 cb->__err = errno = EAGAIN;
313 cb->__ret = ret = -1;
314 }
315 pthread_sigmask(SIG_SETMASK, &origmask, 0);
316
317 if (!ret) {
318 while (sem_wait(&args.sem));
319 }
320
321 return ret;
322 }
323
aio_read(struct aiocb * cb)324 int aio_read(struct aiocb *cb)
325 {
326 unsupported_api(__FUNCTION__);
327 return submit(cb, LIO_READ);
328 }
329
aio_write(struct aiocb * cb)330 int aio_write(struct aiocb *cb)
331 {
332 unsupported_api(__FUNCTION__);
333 return submit(cb, LIO_WRITE);
334 }
335
aio_fsync(int op,struct aiocb * cb)336 int aio_fsync(int op, struct aiocb *cb)
337 {
338 unsupported_api(__FUNCTION__);
339 if (op != O_SYNC && op != O_DSYNC) {
340 errno = EINVAL;
341 return -1;
342 }
343 return submit(cb, op);
344 }
345
aio_return(struct aiocb * cb)346 ssize_t aio_return(struct aiocb *cb)
347 {
348 unsupported_api(__FUNCTION__);
349 return cb->__ret;
350 }
351
aio_error(const struct aiocb * cb)352 int aio_error(const struct aiocb *cb)
353 {
354 unsupported_api(__FUNCTION__);
355 a_barrier();
356 return cb->__err & 0x7fffffff;
357 }
358
aio_cancel(int fd,struct aiocb * cb)359 int aio_cancel(int fd, struct aiocb *cb)
360 {
361 sigset_t allmask, origmask;
362 int ret = AIO_ALLDONE;
363 struct aio_thread *p;
364 struct aio_queue *q;
365
366 unsupported_api(__FUNCTION__);
367 /* Unspecified behavior case. Report an error. */
368 if (cb && fd != cb->aio_fildes) {
369 errno = EINVAL;
370 return -1;
371 }
372
373 sigfillset(&allmask);
374 pthread_sigmask(SIG_BLOCK, &allmask, &origmask);
375
376 errno = ENOENT;
377 if (!(q = __aio_get_queue(fd, 0))) {
378 if (errno == EBADF) ret = -1;
379 goto done;
380 }
381
382 for (p = q->head; p; p = p->next) {
383 if (cb && cb != p->cb) continue;
384 /* Transition target from running to running-with-waiters */
385 if (a_cas(&p->running, 1, -1)) {
386 pthread_cancel(p->td);
387 __wait(&p->running, 0, -1, 1);
388 if (p->err == ECANCELED) ret = AIO_CANCELED;
389 }
390 }
391
392 pthread_mutex_unlock(&q->lock);
393 done:
394 pthread_sigmask(SIG_SETMASK, &origmask, 0);
395 return ret;
396 }
397
__aio_close(int fd)398 int __aio_close(int fd)
399 {
400 a_barrier();
401 if (aio_fd_cnt) aio_cancel(fd, 0);
402 return fd;
403 }
404
__aio_atfork(int who)405 void __aio_atfork(int who)
406 {
407 if (who<0) {
408 pthread_rwlock_rdlock(&maplock);
409 return;
410 }
411 if (who>0 && map) for (int a=0; a<(-1U/2+1)>>24; a++)
412 if (map[a]) for (int b=0; b<256; b++)
413 if (map[a][b]) for (int c=0; c<256; c++)
414 if (map[a][b][c]) for (int d=0; d<256; d++)
415 map[a][b][c][d] = 0;
416 pthread_rwlock_unlock(&maplock);
417 }
418
419 weak_alias(aio_cancel, aio_cancel64);
420 weak_alias(aio_error, aio_error64);
421 weak_alias(aio_fsync, aio_fsync64);
422 weak_alias(aio_read, aio_read64);
423 weak_alias(aio_write, aio_write64);
424 weak_alias(aio_return, aio_return64);
425