Skip to content

Rewrite sync::one::Once.doit #13351

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 2 commits into from
Closed

Rewrite sync::one::Once.doit #13351

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
859ed18
Rewrite sync::one::Once.doit
lilyball Apr 6, 2014
1176d9d
Update the doc comments for sync::one
lilyball Apr 6, 2014
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
89 changes: 41 additions & 48 deletions src/libsync/one.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,40 +16,32 @@
use std::int;
use std::sync::atomics;

use mutex::{StaticMutex, MUTEX_INIT};
use sync::mutex::{StaticMutex, MUTEX_INIT};

/// A type which can be used to run a one-time global initialization. This type
/// is *unsafe* to use because it is built on top of the `Mutex` in this module.
/// It does not know whether the currently running task is in a green or native
/// context, and a blocking mutex should *not* be used under normal
/// circumstances on a green task.
/// A type which can be used to run a one-time global initialization.
///
/// Despite its unsafety, it is often useful to have a one-time initialization
/// routine run for FFI bindings or related external functionality. This type
/// can only be statically constructed with the `ONCE_INIT` value.
/// This type can only be statically constructed with the `ONCE_INIT` value.
///
/// # Example
///
/// ```rust
/// use sync::one::{Once, ONCE_INIT};
///
/// static mut START: Once = ONCE_INIT;
/// unsafe {
/// START.doit(|| {
/// // run initialization here
/// });
/// }
/// START.doit(|| {
/// // run initialization here
/// });
/// ```
pub struct Once {
mutex: StaticMutex,
cnt: atomics::AtomicInt,
state: atomics::AtomicInt,
lock_cnt: atomics::AtomicInt,
}

/// Initialization value for static `Once` values.
pub static ONCE_INIT: Once = Once {
mutex: MUTEX_INIT,
cnt: atomics::INIT_ATOMIC_INT,
state: atomics::INIT_ATOMIC_INT,
lock_cnt: atomics::INIT_ATOMIC_INT,
};

Expand All @@ -58,61 +50,62 @@ impl Once {
/// will be executed if this is the first time `doit` has been called, and
/// otherwise the routine will *not* be invoked.
///
/// This method will block the calling *os thread* if another initialization
/// This method will block the calling task if another initialization
/// routine is currently running.
///
/// When this function returns, it is guaranteed that some initialization
/// has run and completed (it may not be the closure specified).
#[inline]
pub fn doit(&self, f: ||) {
// Implementation-wise, this would seem like a fairly trivial primitive.
// The stickler part is where our mutexes currently require an
// allocation, and usage of a `Once` should't leak this allocation.
// allocation, and usage of a `Once` shouldn't leak this allocation.
//
// This means that there must be a deterministic destroyer of the mutex
// contained within (because it's not needed after the initialization
// has run).
//
// The general scheme here is to gate all future threads once
// initialization has completed with a "very negative" count, and to
// allow through threads to lock the mutex if they see a non negative
// count. For all threads grabbing the mutex, exactly one of them should
// be responsible for unlocking the mutex, and this should only be done
// once everyone else is done with the mutex.
//
// This atomicity is achieved by swapping a very negative value into the
// shared count when the initialization routine has completed. This will
// read the number of threads which will at some point attempt to
// acquire the mutex. This count is then squirreled away in a separate
// variable, and the last person on the way out of the mutex is then
// responsible for destroying the mutex.
//
// It is crucial that the negative value is swapped in *after* the
// initialization routine has completed because otherwise new threads
// calling `doit` will return immediately before the initialization has
// completed.

let prev = self.cnt.fetch_add(1, atomics::SeqCst);
if prev < 0 {
// Make sure we never overflow, we'll never have int::MIN
// simultaneous calls to `doit` to make this value go back to 0
self.cnt.store(int::MIN, atomics::SeqCst);
return
// The general algorithm here is we keep a state value that indicates whether
// we've finished the work. This lets us avoid the expensive atomic
// read-modify-writes and mutex if there's no need. If we haven't finished
// the work, then we use a second value to keep track of how many outstanding
// threads are trying to use the mutex. When the last thread releases the
// mutex it drops the lock count to a "very negative" value to indicate to
// other threads that the mutex is gone.

let state = self.state.load(atomics::Acquire);
if state != 2 {
self.doit_slow(f)
}
}

#[inline(never)]
fn doit_slow(&self, f: ||) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This sort of optimization is possible in many other places throughout the rest of the codebase, and it generally seems like a bit of a premature optimization currently. I don't disagree that in theory this allows for more inlining and fewer calls, but I'd like to avoid this semi-obscure pattern throughout the codebase for now (until we see that it is indeed truly necessary).

Some other places where this pattern would be nice:

  • mutex lock
  • make_unique on arcs
  • sending a message
  • receiving a message

and many more I presume. For now, are you ok with just making this one method that's not marked #[inline]? I would imagine that super perf-sensitive contexts are using LTO anyway, but that may be wrong.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm willing to change this back to one function, but I'd like to know if there's a better reason for doing so other than "this isn't a pattern we're using elsewhere at the moment". I don't think using this pattern here hurts comprehension for the reader.

The main reason I went ahead and did this is because I was trying to optimize for the already-finished case, as it can reasonably be expected that the vast majority of calls to doit() will be doing nothing.

// If the count is negative, then someone else finished the job,
// otherwise we run the job and record how many people will try to grab
// this lock
if self.lock_cnt.fetch_add(1, atomics::Acquire) < 0 {
// Make sure we never overflow.
self.lock_cnt.store(int::MIN, atomics::Relaxed);
return
}

let guard = self.mutex.lock();
if self.cnt.load(atomics::SeqCst) > 0 {
if self.state.compare_and_swap(0, 1, atomics::Relaxed) == 0 {
// we're the first one here
f();
let prev = self.cnt.swap(int::MIN, atomics::SeqCst);
self.lock_cnt.store(prev, atomics::SeqCst);
self.state.store(2, atomics::Release);
}
drop(guard);

// Last one out cleans up after everyone else, no leaks!
if self.lock_cnt.fetch_add(-1, atomics::SeqCst) == 1 {
unsafe { self.mutex.destroy() }
if self.lock_cnt.fetch_add(-1, atomics::Release) == 1 {
// we just decremented it to 0, now make sure we can drop it to int::MIN.
// If this fails, someone else just waltzed in and took the mutex
if self.lock_cnt.compare_and_swap(0, int::MIN, atomics::AcqRel) == 0 {
// good, we really were the last ones out
unsafe { self.mutex.destroy() }
}
}
}
}
Expand Down