Add userspace IPC support #556
Conversation
|
Just a heads up there is already a draft PR for this, you can see it here: #535 This approach might be better (I haven't looked yet), but just wanted to point it out |
|
Hi Alistair! Thank you so much, that was the one detail I was forgetting to mention last night! This PR was indeed based off the excellent work in #535, and uses the exact same approach illustrated there. I had a chat over the past couple weeks with Amit regarding design decisions for this PR, and we both agreed that the dedicated If it'd be useful, I'd be more than happy to rebase onto the development branch for #535--I initially pushed to a new branch because I was experimenting with various approaches, but think rebasing now could certainly make sense. My apologies for omitting this detail in the original PR! |
|
One additional detail regarding the static lifetime approach--while it dramatically simplifies the lifetime management involved, it does necessitate static mutable buffers for IPC shared buffers, which naively require using I experimented with the ergonomics of a few other approaches, but ultimately decided the simplest was a single Here are some approaches I tried for gating access to the underlying buffer shared between IPC processes:
Would love any suggestions/thoughts on this! I understand that it's not quite ergonomically perfect to necessitate |
| /// wraps should be an actual function instead of a short-lived closure. | ||
| pub struct IpcListener<F: Fn(IpcCallData)>(pub F); | ||
|
|
||
| impl<F: Fn(IpcCallData)> Upcall<subscribe::AnyId> for IpcListener<F> { |
There was a problem hiding this comment.
Any reason the callback Fn argument is a struct rather than two arguments? (e.g.: Fn(caller_id: u32, buffer: &Option<&mut [u8]>)
There was a problem hiding this comment.
I'd only put it in a struct to parallel the structure of some of the other drivers that register listeners, but in retrospect I agree having it just as Fn(caller_id: u32, buffer: &Option<&mut [u8]>) makes the most sense. Will add a commit to edit that :)
| #[derive(Debug, Eq, PartialEq)] | ||
| pub struct IpcCallData<'a> { | ||
| pub caller_id: u32, | ||
| pub buffer: Option<&'a mut [u8]>, |
There was a problem hiding this comment.
Should we consider the lifetime of this slice to be 'static?
My thoughts are that when one process shares a buffer with another via Ipc::share, it's effectively handing ownership over to the target processes. The sharing process needs some way of knowing when the target is done with the buffer and is handing it back.
Example:
A shares buf with B.
A notifies B.
B upcall is invoked with (A::id, buf). B now owns buf.
B performs some long running calculation on buf.
B notifies A.
A upcall is invoked with (B::id, None). A now owns buf again.
There was a problem hiding this comment.
Ooh, I think that's not a bad idea. I only instantiate it as IpcCallData<'static> in the userspace driver itself, but I think for extra clarity removing the generic lifetime and replacing it with 'static makes sense. Will also add this change with the previous one.
@lschuermann can we get @pqcfox access to (pre-alpha but probably functional enough) treadmill in the meantime? @pqcfox FYI the nrf52840 dongle is really cool, but not very fun for actually programming since it doesn't have an on-board swd debugger, so you'll need a separate JLink jtag device, plus adapters, plus a tag connect cable. The development kit is much much more friendly for development. |
Yes, I will reach out via Matrix in the coming days. |
|
Thank you so much @alevy and @lschuermann! I'll order the development board as well in that case, and excited to try out treadmill :) |
|
Happy to share that this PR works well as is on our x86 port of Tock and Libtock-rs. Thank you for putting this together. |
|
I'm so glad to hear! And of course--glad I can help out! I just received access to treadmill last week, so I'll find a window in the next week or two to knock out fixing the example and testing on an actual board, at which point I'll move this from a draft PR to an actual PR. In the meantime though, let me know about any thoughts you have on improving ergonomics--I've not had too much time to ponder it since, so I'd love any input. |
Pull Request Overview
This pull request adds the following:
libtock-cdoesSyscallDriverwhich allows mocking IPC API calls from different processesTesting Strategy
For the actual
SyscallDriverIPC mock, tests were added to ensure that the exists, discover, notify service, and notify client system calls were all functional, and returned errors when appropriate.For the userspace API, test cases were added for testing that the driver is present, that IPC services can be discovered, that both service and client callbacks can be both registered and notified, and that a R/W buffer can be shared between IPC services and clients.
Documentation Updated
Documentation was added to both the mock IPC
SyscallDriveras well as the userspace API in accordance with the existing mock drivers and userspace APIs respectively.TODO or Help Wanted
Preliminary reviews are welcome at this point. I'm currently waiting on a nRF52840 dongle to arrive via mail (due by next Monday, 2024-08-19) in order to properly test the provided example, but
make testcompletes successfully at the moment, and I'd love any feedback available on this PR as I wait for the dongle to arrive.(EDIT 2024-08-13: I've noticed that the examples do need a quick couple of fixes re: how the IPC shared buffers work--will push those tomorrow, it may be wise to delay reviewing the examples themselves until then.)