a10 0.4.1

This library is meant as a low-level library safely exposing different OS's abilities to perform non-blocking I/O.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144

use std::sync::atomic::{AtomicPtr, Ordering};
use std::sync::{Mutex, MutexGuard};
use std::{ptr, task};

use crate::fd::{self, AsyncFd};
use crate::{kqueue, lock, syscall};

/// State of a file descriptor.
#[derive(Debug)]
pub(crate) struct State {
    /// # SAFETY
    ///
    /// This pointer maybe be null at the start and then initialised once and
    /// not be changed until it's dropped.
    shared: AtomicPtr<SharedState>,
}

/// State shared between all operations of a single file descriptor.
pub(super) type SharedState = Mutex<OpState>;

impl State {
    pub(crate) const fn new() -> State {
        State {
            shared: AtomicPtr::new(ptr::null_mut()),
        }
    }

    pub(super) fn lock<'a>(&'a self) -> MutexGuard<'a, OpState> {
        let mut ptr = self.shared.load(Ordering::Acquire);
        if ptr.is_null() {
            let op_state = Box::new(Mutex::new(OpState {
                ops: Vec::with_capacity(1),
            }));
            let state_ptr = Box::into_raw(op_state);
            let res = self.shared.compare_exchange(
                ptr::null_mut(),
                state_ptr,
                Ordering::AcqRel,
                Ordering::Acquire,
            );
            match res {
                Ok(old_ptr) => {
                    debug_assert!(old_ptr.is_null());
                    ptr = state_ptr;
                }
                Err(old_ptr) => {
                    debug_assert!(!old_ptr.is_null());
                    debug_assert!(old_ptr != state_ptr);
                    ptr = old_ptr;
                    // SAFETY: created the box above, but we're not using it.
                    drop(unsafe { Box::from_raw(state_ptr) });
                }
            }
        }

        // SAFETY: ensured the pointer is valid above.
        lock(unsafe { &*ptr })
    }

    /// Returns the `kevent::udata` to register events for this fd (state).
    pub(super) fn as_udata(&self) -> *mut libc::c_void {
        // SAFETY: this is only called *after* we called lock, which ensures
        // that the pointer is written. And since the pointer may only be
        // written to once it can't change, making Relaxed ordering ok.
        self.shared.load(Ordering::Relaxed).cast()
    }
}

/// For kqueue the pair `ident` and `filter` is unique. For our use case here
/// that means the file descriptor and operation kind (e.g. `EVFILT_READ`) is
/// unique. This means that multiple (e.g.) read operations will need to share a
/// single event register.
///
/// To do this we use this type to share a single completion event with multiple
/// Futures waiting on the same filters.
#[derive(Debug)]
pub(super) struct OpState {
    ops: Vec<(OpKind, task::Waker)>,
}

/// Kind of operation (or filter in kqueue terminology).
#[derive(Copy, Clone, PartialEq, Eq, Debug)]
pub(crate) enum OpKind {
    /// EVFILT_READ
    Read,
    /// EVFILT_WRITE
    Write,
}

impl OpState {
    /// Returns true if we already have an event for the given operation kind.
    pub(crate) fn has_waiting_op(&self, op: OpKind) -> bool {
        self.ops.iter().any(|(kind, _)| op == *kind)
    }

    pub(crate) fn add(&mut self, op: OpKind, waker: task::Waker) {
        self.ops.push((op, waker));
    }

    /// Wake the relevant future based on `event`.
    pub(crate) fn wake(&mut self, event: &kqueue::Event) {
        self.ops
            .extract_if(.., |(filter, _)| match filter {
                OpKind::Read => event.0.filter == libc::EVFILT_READ,
                OpKind::Write => event.0.filter == libc::EVFILT_WRITE,
            })
            .for_each(|(_, waker)| waker.wake());
    }
}

impl Drop for AsyncFd {
    fn drop(&mut self) {
        let result = match self.kind() {
            fd::Kind::File => syscall!(close(self.fd())).map(|_| ()),
        };
        if let Err(err) = result {
            log::warn!("error closing a10::AsyncFd: {err}");
        }

        let ptr = *self.state.shared.get_mut();
        if ptr.is_null() {
            // Never started any operations, so we don't have to clean anything up.
            //
            // NOTE: we can not apply this optimisation when the fd state is
            // initialised as we can still get a readiness event even if the
            // waker list is empty.
            return;
        }

        // Because polling for events is done via a different type (not
        // `AsyncFd`, but `Ring`), it can happen on another thread. Which means
        // we don't know if another thread is currently accessing the operations
        // state (via `Ring::poll`). So, we have to delay its deallocation until
        // we know for sure that no other thread is accessing the state to
        // prevent use-after-free.
        //
        // We do this by sending an event to the polling thread to deallocate
        // the operation state for us.
        self.sq.submissions().add(|event| {
            event.0.ident = ptr as _;
            event.0.filter = libc::EVFILT_USER;
        });
    }
}