| blob | 6528a5763314e285e133545cc7b2b00b688010f4 |
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* vim: set ts=8 sts=2 et sw=2 tw=80: */
3 /* This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
7 /*
8 * Implements (almost always) lock-free atomic operations. The operations here
9 * are a subset of that which can be found in C++11's <atomic> header, with a
10 * different API to enforce consistent memory ordering constraints.
11 *
12 * Anyone caught using |volatile| for inter-thread memory safety needs to be
13 * sent a copy of this header and the C++11 standard.
14 */
16 #ifndef mozilla_Atomics_h
17 #define mozilla_Atomics_h
25 #include <atomic>
27 #include <stdint.h>
31 /**
32 * An enum of memory ordering possibilities for atomics.
33 *
34 * Memory ordering is the observable state of distinct values in memory.
35 * (It's a separate concept from atomicity, which concerns whether an
36 * operation can ever be observed in an intermediate state. Don't
37 * conflate the two!) Given a sequence of operations in source code on
38 * memory, it is *not* always the case that, at all times and on all
39 * cores, those operations will appear to have occurred in that exact
40 * sequence. First, the compiler might reorder that sequence, if it
41 * thinks another ordering will be more efficient. Second, the CPU may
42 * not expose so consistent a view of memory. CPUs will often perform
43 * their own instruction reordering, above and beyond that performed by
44 * the compiler. And each core has its own memory caches, and accesses
45 * (reads and writes both) to "memory" may only resolve to out-of-date
46 * cache entries -- not to the "most recently" performed operation in
47 * some global sense. Any access to a value that may be used by
48 * multiple threads, potentially across multiple cores, must therefore
49 * have a memory ordering imposed on it, for all code on all
50 * threads/cores to have a sufficiently coherent worldview.
51 *
52 * http://gcc.gnu.org/wiki/Atomic/GCCMM/AtomicSync and
53 * http://en.cppreference.com/w/cpp/atomic/memory_order go into more
54 * detail on all this, including examples of how each mode works.
55 *
56 * Note that for simplicity and practicality, not all of the modes in
57 * C++11 are supported. The missing C++11 modes are either subsumed by
58 * the modes we provide below, or not relevant for the CPUs we support
59 * in Gecko. These three modes are confusing enough as it is!
60 */
62 /*
63 * Relaxed ordering is the simplest memory ordering: none at all.
64 * When the result of a write is observed, nothing may be inferred
65 * about other memory. Writes ostensibly performed "before" on the
66 * writing thread may not yet be visible. Writes performed "after" on
67 * the writing thread may already be visible, if the compiler or CPU
68 * reordered them. (The latter can happen if reads and/or writes get
69 * held up in per-processor caches.) Relaxed ordering means
70 * operations can always use cached values (as long as the actual
71 * updates to atomic values actually occur, correctly, eventually), so
72 * it's usually the fastest sort of atomic access. For this reason,
73 * *it's also the most dangerous kind of access*.
74 *
75 * Relaxed ordering is good for things like process-wide statistics
76 * counters that don't need to be consistent with anything else, so
77 * long as updates themselves are atomic. (And so long as any
78 * observations of that value can tolerate being out-of-date -- if you
79 * need some sort of up-to-date value, you need some sort of other
80 * synchronizing operation.) It's *not* good for locks, mutexes,
81 * reference counts, etc. that mediate access to other memory, or must
82 * be observably consistent with other memory.
83 *
84 * x86 architectures don't take advantage of the optimization
85 * opportunities that relaxed ordering permits. Thus it's possible
86 * that using relaxed ordering will "work" on x86 but fail elsewhere
87 * (ARM, say, which *does* implement non-sequentially-consistent
88 * relaxed ordering semantics). Be extra-careful using relaxed
89 * ordering if you can't easily test non-x86 architectures!
90 */
91 Relaxed,
93 /*
94 * When an atomic value is updated with ReleaseAcquire ordering, and
95 * that new value is observed with ReleaseAcquire ordering, prior
96 * writes (atomic or not) are also observable. What ReleaseAcquire
97 * *doesn't* give you is any observable ordering guarantees for
98 * ReleaseAcquire-ordered operations on different objects. For
99 * example, if there are two cores that each perform ReleaseAcquire
100 * operations on separate objects, each core may or may not observe
101 * the operations made by the other core. The only way the cores can
102 * be synchronized with ReleaseAcquire is if they both
103 * ReleaseAcquire-access the same object. This implies that you can't
104 * necessarily describe some global total ordering of ReleaseAcquire
105 * operations.
106 *
107 * ReleaseAcquire ordering is good for (as the name implies) atomic
108 * operations on values controlling ownership of things: reference
109 * counts, mutexes, and the like. However, if you are thinking about
110 * using these to implement your own locks or mutexes, you should take
111 * a good, hard look at actual lock or mutex primitives first.
112 */
113 ReleaseAcquire,
115 /*
116 * When an atomic value is updated with SequentiallyConsistent
117 * ordering, all writes observable when the update is observed, just
118 * as with ReleaseAcquire ordering. But, furthermore, a global total
119 * ordering of SequentiallyConsistent operations *can* be described.
120 * For example, if two cores perform SequentiallyConsistent operations
121 * on separate objects, one core will observably perform its update
122 * (and all previous operations will have completed), then the other
123 * core will observably perform its update (and all previous
124 * operations will have completed). (Although those previous
125 * operations aren't themselves ordered -- they could be intermixed,
126 * or ordered if they occur on atomic values with ordering
127 * requirements.) SequentiallyConsistent is the *simplest and safest*
128 * ordering of atomic operations -- it's always as if one operation
129 * happens, then another, then another, in some order -- and every
130 * core observes updates to happen in that single order. Because it
131 * has the most synchronization requirements, operations ordered this
132 * way also tend to be slowest.
133 *
134 * SequentiallyConsistent ordering can be desirable when multiple
135 * threads observe objects, and they all have to agree on the
136 * observable order of changes to them. People expect
137 * SequentiallyConsistent ordering, even if they shouldn't, when
138 * writing code, atomic or otherwise. SequentiallyConsistent is also
139 * the ordering of choice when designing lockless data structures. If
140 * you don't know what order to use, use this one.
141 */
142 SequentiallyConsistent,
143 };
147 /*
148 * Structure which can be used to preserve the ordering of atomic accesses
149 * when recording or replaying an execution, depending on the Recording enum.
150 *
151 * Atomic access ordering is preserved by default when recording/replaying.
152 * This should be overridden for atomics that can be accessed in code that
153 * runs non-deterministically when recording/replaying, such as during GC, the
154 * JS interrupt callback, or code that is affected by JIT compilation or
155 * debugger activity.
156 */
163 };
167 explicit AutoRecordAtomicAccess(const void* aValue) { recordreplay::BeginOrderedAtomicAccess(aValue); }
169 };
171 /*
172 * We provide CompareExchangeFailureOrder to work around a bug in some
173 * versions of GCC's <atomic> header. See bug 898491.
174 */
179 {
185 };
189 {
195 };
199 {
205 };
208 struct IntrinsicBase
209 {
212 };
216 {
220 {
223 }
226 {
229 }
232 {
235 }
239 {
244 }
245 };
249 {
253 {
256 }
259 {
262 }
263 };
267 {
271 {
274 }
277 {
280 }
281 };
285 {
289 {
291 }
294 {
296 }
297 };
302 {
306 {
309 }
312 {
315 }
318 {
321 }
322 };
328 {
329 };
332 struct ToStorageTypeArgument
333 {
335 };
338 class AtomicBase
339 {
346 ValueType mValue;
352 {}
354 // Note: we can't provide operator T() here because Atomic<bool> inherits
355 // from AtomcBase with T=uint32_t and not T=bool. If we implemented
356 // operator T() here, it would cause errors when comparing Atomic<bool> with
357 // a regular bool.
360 {
363 }
365 /**
366 * Performs an atomic swap operation. aVal is stored and the previous
367 * value of this variable is returned.
368 */
370 {
372 }
374 /**
375 * Performs an atomic compare-and-swap operation and returns true if it
376 * succeeded. This is equivalent to atomically doing
377 *
378 * if (mValue == aOldValue) {
379 * mValue = aNewValue;
380 * return true;
381 * } else {
382 * return false;
383 * }
384 */
386 {
388 }
392 };
396 {
413 };
417 /**
418 * A wrapper for a type that enforces that all memory accesses are atomic.
419 *
420 * In general, where a variable |T foo| exists, |Atomic<T> foo| can be used in
421 * its place. Implementations for integral and pointer types are provided
422 * below.
423 *
424 * Atomic accesses are sequentially consistent by default. You should
425 * use the default unless you are tall enough to ride the
426 * memory-ordering roller coaster (if you're not sure, you aren't) and
427 * you have a compelling reason to do otherwise.
428 *
429 * There is one exception to the case of atomic memory accesses: providing an
430 * initial value of the atomic value is not guaranteed to be atomic. This is a
431 * deliberate design choice that enables static atomic variables to be declared
432 * without introducing extra static constructors.
433 */
440 /**
441 * Atomic<T> implementation for integral types.
442 *
443 * In addition to atomic store and load operations, compound assignment and
444 * increment/decrement operators are implemented which perform the
445 * corresponding read-modify-write operation atomically. Finally, an atomic
446 * swap method is provided.
447 */
453 {
463 {
465 }
468 {
470 }
473 {
475 }
478 {
480 }
483 {
485 }
489 };
491 /**
492 * Atomic<T> implementation for pointer types.
493 *
494 * An atomic compare-and-swap primitive for pointer variables is provided, as
495 * are atomic increment and decement operators. Also provided are the compound
496 * assignment operators for addition and subtraction. Atomic swap (via
497 * exchange()) is included as well.
498 */
501 {
511 {
513 }
516 {
518 }
522 };
524 /**
525 * Atomic<T> implementation for enum types.
526 *
527 * The atomic store and load operations and the atomic swap method is provided.
528 */
532 {
545 };
547 /**
548 * Atomic<T> implementation for boolean types.
549 *
550 * The atomic store and load operations and the atomic swap method is provided.
551 *
552 * Note:
553 *
554 * - sizeof(Atomic<bool>) != sizeof(bool) for some implementations of
555 * bool and/or some implementations of std::atomic. This is allowed in
556 * [atomic.types.generic]p9.
557 *
558 * - It's not obvious whether the 8-bit atomic functions on Windows are always
559 * inlined or not. If they are not inlined, the corresponding functions in the
560 * runtime library are not available on Windows XP. This is why we implement
561 * Atomic<bool> with an underlying type of uint32_t.
562 */
566 {
573 // We provide boolean wrappers for the underlying AtomicBase methods.
575 {
577 }
580 {
582 }
585 {
587 }
590 {
592 }
596 };
598 // If you want to atomically swap two atomic values, use exchange().
600 void