| blob | 17ab44e3ab08cbe00ed98be2ae5f4032ddbb9468 |
2 /* copyright (c) 2013-2024, The Tor Project, Inc. */
3 /* See LICENSE for licensing information */
5 /**
6 * \file workqueue.c
7 *
8 * \brief Implements worker threads, queues of work for them, and mechanisms
9 * for them to send answers back to the main thread.
10 *
11 * The main structure here is a threadpool_t : it manages a set of worker
12 * threads, a queue of pending work, and a reply queue. Every piece of work
13 * is a workqueue_entry_t, containing data to process and a function to
14 * process it with.
15 *
16 * The main thread informs the worker threads of pending work by using a
17 * condition variable. The workers inform the main process of completed work
18 * by using an alert_sockets_t object, as implemented in net/alertsock.c.
19 *
20 * The main thread can also queue an "update" that will be handled by all the
21 * workers. This is useful for updating state that all the workers share.
22 *
23 * In Tor today, there is currently only one thread pool, managed
24 * in cpuworker.c and handling a variety of types of work, from the original
25 * "onion skin" circuit handshakes, to consensus diff computation, to
26 * client-side onion service PoW generation.
27 */
43 #include <event2/event.h>
44 #include <string.h>
46 #define WORKQUEUE_PRIORITY_FIRST WQ_PRI_HIGH
47 #define WORKQUEUE_PRIORITY_LAST WQ_PRI_LOW
48 #define WORKQUEUE_N_PRIORITIES (((int) WORKQUEUE_PRIORITY_LAST)+1)
54 /** An array of pointers to workerthread_t: one for each running worker
55 * thread. */
58 /** Condition variable that we wait on when we have no work, and which
59 * gets signaled when our queue becomes nonempty. */
60 tor_cond_t condition;
61 /** Queues of pending work that we have to do. The queue with priority
62 * <b>p</b> is work[p]. */
65 /** The current 'update generation' of the threadpool. Any thread that is
66 * at an earlier generation needs to run the update function. */
69 /** Function that should be run for updates on each thread. */
71 /** Function to free update arguments if they can't be run. */
73 /** Array of n_threads update arguments. */
75 /** Event to notice when another thread has sent a reply. */
79 /** Number of elements in threads. */
81 /** Mutex to protect all the above fields. */
82 tor_mutex_t lock;
84 /** A reply queue to use when constructing new threads. */
87 /** Functions used to allocate and free thread state. */
91 };
93 /** Used to put a workqueue_priority_t value into a bitfield. */
94 #define workqueue_priority_bitfield_t ENUM_BF(workqueue_priority_t)
95 /** Number of bits needed to hold all legal values of workqueue_priority_t */
96 #define WORKQUEUE_PRIORITY_BITS 2
99 /** The next workqueue_entry_t that's pending on the same thread or
100 * reply queue. */
102 /** The threadpool to which this workqueue_entry_t was assigned. This field
103 * is set when the workqueue_entry_t is created, and won't be cleared until
104 * after it's handled in the main thread. */
106 /** True iff this entry is waiting for a worker to start processing it. */
108 /** Priority of this entry. */
110 /** Function to run in the worker thread. */
112 /** Function to run while processing the reply queue. */
114 /** Argument for the above functions. */
116 };
119 /** Mutex to protect the answers field */
120 tor_mutex_t lock;
121 /** Doubly-linked list of answers that the reply queue needs to handle. */
124 /** Mechanism to wake up the main thread when it is receiving answers. */
125 alert_sockets_t alert;
126 };
128 /** A worker thread represents a single thread in a thread pool. */
130 /** Which thread it this? In range 0..in_pool->n_threads-1 */
132 /** The pool this thread is a part of. */
134 /** User-supplied state field that we pass to the worker functions of each
135 * work item. */
137 /** Reply queue to which we pass our results. */
139 /** The current update generation of this thread */
141 /** One over the probability of taking work from a lower-priority queue. */
147 #define workerthread_free(thread) \
148 FREE_AND_NULL(workerthread_t, workerthread_free_, (thread))
150 #define replyqueue_free(queue) \
151 FREE_AND_NULL(replyqueue_t, replyqueue_free_, (queue))
153 /** Allocate and return a new workqueue_entry_t, set up to run the function
154 * <b>fn</b> in the worker thread, and <b>reply_fn</b> in the main
155 * thread. See threadpool_queue_work() for full documentation. */
160 {
167 }
169 #define workqueue_entry_free(ent) \
170 FREE_AND_NULL(workqueue_entry_t, workqueue_entry_free_, (ent))
172 /**
173 * Release all storage held in <b>ent</b>. Call only when <b>ent</b> is not on
174 * any queue.
175 */
176 static void
178 {
183 }
185 /**
186 * Cancel a workqueue_entry_t that has been returned from
187 * threadpool_queue_work.
188 *
189 * You must not call this function on any work whose reply function has been
190 * executed in the main thread; that will cause undefined behavior (probably,
191 * a crash).
192 *
193 * If the work is cancelled, this function return the argument passed to the
194 * work function. It is the caller's responsibility to free this storage.
195 *
196 * This function will have no effect if the worker thread has already executed
197 * or begun to execute the work item. In that case, it will return NULL.
198 */
201 {
210 }
215 }
217 }
219 /**DOCDOC
221 must hold lock */
222 static int
224 {
229 }
231 }
233 /** Extract the next workqueue_entry_t from the the thread's pool, removing
234 * it from the relevant queues and marking it as non-pending.
235 *
236 * The caller must hold the lock. */
239 {
249 /* Usually we'll just break now, so that we can get out of the loop
250 * and use the queue where we found work. But with a small
251 * probability, we'll keep looking for lower priority work, so that
252 * we don't ignore our low-priority queues entirely. */
254 }
255 }
256 }
265 }
267 /**
268 * Main function for the worker thread.
269 */
270 static void
272 {
276 workqueue_reply_t result;
280 /* lock must be held at this point. */
282 /* lock must be held at this point. */
295 }
299 }
305 /* We run the work function without holding the thread lock. This
306 * is the main thread's first opportunity to give us more work. */
309 /* Queue the reply for the main thread. */
312 /* We may need to exit the thread. */
315 }
317 }
318 /* At this point the lock is held, and there is no work in this thread's
319 * queue. */
321 /* TODO: support an idle-function */
323 /* Okay. Now, wait till somebody has work for us. */
326 }
327 }
328 }
330 /** Put a reply on the reply queue. The reply must not currently be on
331 * any thread's work queue. */
332 static void
334 {
343 /* XXXX complain! */
344 }
345 }
346 }
348 /** Allocate and start a new worker thread to use state object <b>state</b>,
349 * and send responses to <b>replyqueue</b>. */
353 {
361 //LCOV_EXCL_START
366 //LCOV_EXCL_STOP
367 }
370 }
372 /**
373 * Free up the resources allocated by a worker thread.
374 */
375 static void
377 {
379 }
381 /**
382 * Queue an item of work for a thread in a thread pool. The function
383 * <b>fn</b> will be run in a worker thread, and will receive as arguments the
384 * thread's state object, and the provided object <b>arg</b>. It must return
385 * one of WQ_RPL_REPLY, WQ_RPL_ERROR, or WQ_RPL_SHUTDOWN.
386 *
387 * Regardless of its return value, the function <b>reply_fn</b> will later be
388 * run in the main thread when it invokes replyqueue_process(), and will
389 * receive as its argument the same <b>arg</b> object. It's the reply
390 * function's responsibility to free the work object.
391 *
392 * On success, return a workqueue_entry_t object that can be passed to
393 * workqueue_entry_cancel(). On failure, return NULL. (Failure is not
394 * currently possible, but callers should check anyway.)
395 *
396 * Items are executed in a loose priority order -- each thread will usually
397 * take from the queued work with the highest prioirity, but will occasionally
398 * visit lower-priority queues to keep them from starving completely.
399 *
400 * Note that because of priorities and thread behavior, work items may not
401 * be executed strictly in order.
402 */
403 workqueue_entry_t *
405 workqueue_priority_t prio,
409 {
427 }
429 /** As threadpool_queue_work_priority(), but assumes WQ_PRI_HIGH */
430 workqueue_entry_t *
435 {
437 }
439 /**
440 * Queue a copy of a work item for every thread in a pool. This can be used,
441 * for example, to tell the threads to update some parameter in their states.
442 *
443 * Arguments are as for <b>threadpool_queue_work</b>, except that the
444 * <b>arg</b> value is passed to <b>dup_fn</b> once per each thread to
445 * make a copy of it.
446 *
447 * UPDATE FUNCTIONS MUST BE IDEMPOTENT. We do not guarantee that every update
448 * will be run. If a new update is scheduled before the old update finishes
449 * running, then the new will replace the old in any threads that haven't run
450 * it yet.
451 *
452 * Return 0 on success, -1 on failure.
453 */
454 int
460 {
475 else
477 }
492 }
494 }
497 }
499 /** Don't have more than this many threads per pool. */
500 #define MAX_THREADS 1024
502 /** For half of our threads, choose lower priority queues with probability
503 * 1/N for each of these values. Both are chosen somewhat arbitrarily. If
504 * CHANCE_PERMISSIVE is too low, then we have a risk of low-priority tasks
505 * stalling forever. If it's too high, we have a risk of low-priority tasks
506 * grabbing half of the threads. */
507 #define CHANCE_PERMISSIVE 37
508 #define CHANCE_STRICT INT32_MAX
510 /** Launch threads until we have <b>n</b>. */
511 static int
513 {
526 /* For half of our threads, we'll choose lower priorities permissively;
527 * for the other half, we'll stick more strictly to higher priorities.
528 * This keeps slow low-priority tasks from taking over completely. */
536 //LCOV_EXCL_START
541 //LCOV_EXCL_STOP
542 }
545 }
549 }
551 /**
552 * Construct a new thread pool with <b>n</b> worker threads, configured to
553 * send their output to <b>replyqueue</b>. The threads' states will be
554 * constructed with the <b>new_thread_state_fn</b> call, receiving <b>arg</b>
555 * as its argument. When the threads close, they will call
556 * <b>free_thread_state_fn</b> on their states.
557 */
558 threadpool_t *
564 {
572 }
580 //LCOV_EXCL_START
586 //LCOV_EXCL_STOP
587 }
590 }
592 /**
593 * Free up the resources allocated by worker threads, worker thread pool, ...
594 */
595 void
597 {
606 }
614 }
623 }
625 /** Return the reply queue associated with a given thread pool. */
626 replyqueue_t *
628 {
630 }
632 /** Allocate a new reply queue. Reply queues are used to pass results from
633 * worker threads to the main thread. Since the main thread is running an
634 * IO-centric event loop, it needs to get woken up with means other than a
635 * condition variable. */
636 replyqueue_t *
638 {
643 //LCOV_EXCL_START
646 //LCOV_EXCL_STOP
647 }
653 }
655 /**
656 * Free up the resources allocated by a reply queue.
657 */
658 static void
660 {
670 }
673 }
675 /** Internal: Run from the libevent mainloop when there is work to handle in
676 * the reply queue handler. */
677 static void
679 {
686 }
688 /** Register the threadpool <b>tp</b>'s reply queue with Tor's global
689 * libevent mainloop. If <b>cb</b> is provided, it is run after
690 * each time there is work to process from the reply queue. Return 0 on
691 * success, -1 on failure.
692 */
693 int
696 {
701 }
705 reply_event_cb,
706 tp);
710 }
712 /**
713 * Process all pending replies on a reply queue. The main thread should call
714 * this function every time the socket returned by replyqueue_get_socket() is
715 * readable.
716 */
717 void
719 {
722 //LCOV_EXCL_START
727 //LCOV_EXCL_STOP
728 }
732 /* lock must be held at this point.*/
742 }
745 }
747 /** Return the number of threads configured for the given pool. */
748 unsigned int
750 {
753 }