| blob | 3d642f47cdde6f153e14485ae8abff5fbe6cbd96 |
1 ------------------------------------------------------------------------------
2 -- --
3 -- GNAT RUN-TIME LIBRARY (GNARL) COMPONENTS --
4 -- --
5 -- S Y S T E M . T A S K I N G . I N I T I A L I Z A T I O N --
6 -- --
7 -- B o d y --
8 -- --
9 -- Copyright (C) 1992-2018, Free Software Foundation, Inc. --
10 -- --
11 -- GNARL is free software; you can redistribute it and/or modify it under --
12 -- terms of the GNU General Public License as published by the Free Soft- --
13 -- ware Foundation; either version 3, or (at your option) any later ver- --
14 -- sion. GNAT is distributed in the hope that it will be useful, but WITH- --
15 -- OUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY --
16 -- or FITNESS FOR A PARTICULAR PURPOSE. --
17 -- --
18 -- As a special exception under Section 7 of GPL version 3, you are granted --
19 -- additional permissions described in the GCC Runtime Library Exception, --
20 -- version 3.1, as published by the Free Software Foundation. --
21 -- --
22 -- You should have received a copy of the GNU General Public License and --
23 -- a copy of the GCC Runtime Library Exception along with this program; --
24 -- see the files COPYING3 and COPYING.RUNTIME respectively. If not, see --
25 -- <http://www.gnu.org/licenses/>. --
26 -- --
27 -- GNARL was developed by the GNARL team at Florida State University. --
28 -- Extensive contributions were provided by Ada Core Technologies, Inc. --
29 -- --
30 ------------------------------------------------------------------------------
33 -- Turn off subprogram alpha ordering check, since we group soft link bodies
34 -- and dummy soft link bodies together separately in this unit.
37 -- Turn polling off for this package. We don't need polling during any of the
38 -- routines in this package, and more to the point, if we try to poll it can
39 -- cause infinite loops.
52 -- Make sure the body of Secondary_Stack is elaborated before calling
53 -- Init_Tasking_Soft_Links. See comments for this routine for explanation.
64 -- This is a global lock; it is used to execute in mutual exclusion from
65 -- all other tasks. It is only used by Task_Lock, Task_Unlock, and
66 -- Final_Task_Unlock.
68 ----------------------------------------------------------------------
69 -- Tasking versions of some services needed by non-tasking programs --
70 ----------------------------------------------------------------------
73 -- NON-INLINE versions without Self_ID for soft links
76 -- NON-INLINE versions without Self_ID for soft links
79 -- Locks out other tasks. Preceding a section of code by Task_Lock and
80 -- following it by Task_Unlock creates a critical region. This is used
81 -- for ensuring that a region of non-tasking code (such as code used to
82 -- allocate memory) is tasking safe. Note that it is valid for calls to
83 -- Task_Lock/Task_Unlock to be nested, and this must work properly, i.e.
84 -- only the corresponding outer level Task_Unlock will actually unlock.
87 -- Releases lock previously set by call to Task_Lock. In the nested case,
88 -- all nested locks must be released before other tasks competing for the
89 -- tasking lock are released.
92 -- Task-safe version of SSL.Get_Current_Excep
95 -- Returns current task's name
97 ------------------------
98 -- Local Subprograms --
99 ------------------------
101 ----------------------------
102 -- Tasking Initialization --
103 ----------------------------
106 -- This procedure completes the initialization of the GNARL. The first part
107 -- of the initialization is done in the body of System.Tasking. It consists
108 -- of initializing global locks, and installing tasking versions of certain
109 -- operations used by the compiler. Init_RTS is called during elaboration.
111 --------------------------
112 -- Change_Base_Priority --
113 --------------------------
115 -- Call only with abort deferred and holding Self_ID locked
118 begin
125 ------------------------
126 -- Check_Abort_Status --
127 ------------------------
131 begin
135 then
137 else
142 -----------------
143 -- Defer_Abort --
144 -----------------
147 begin
154 -- pragma Assert
155 -- (Self_ID.Pending_ATC_Level >= Self_ID.ATC_Nesting_Level);
157 -- The above check has been useful in detecting mismatched defer/undefer
158 -- pairs. You may uncomment it when testing on systems that support
159 -- preemptive abort.
161 -- If the OS supports preemptive abort (e.g. pthread_kill), it should
162 -- have happened already. A problem is with systems that do not support
163 -- preemptive abort, and so rely on polling. On such systems we may get
164 -- false failures of the assertion, since polling for pending abort does
165 -- no occur until the abort undefer operation.
167 -- Even on systems that only poll for abort, the assertion may be useful
168 -- for catching missed abort completion polling points. The operations
169 -- that undefer abort poll for pending aborts. This covers most of the
170 -- places where the core Ada semantics require abort to be caught,
171 -- without any special attention. However, this generally happens on
172 -- exit from runtime system call, which means a pending abort will not
173 -- be noticed on the way into the runtime system. We considered adding a
174 -- check for pending aborts at this point, but chose not to, because of
175 -- the overhead. Instead, we searched for RTS calls where abort
176 -- completion is required and a task could go farther than Ada allows
177 -- before undeferring abort; we then modified the code to ensure the
178 -- abort would be detected.
183 --------------------------
184 -- Defer_Abort_Nestable --
185 --------------------------
188 begin
193 -- The following assertion is by default disabled. See the comment in
194 -- Defer_Abort on the situations in which it may be useful to uncomment
195 -- this assertion and enable the test.
197 -- pragma Assert
198 -- (Self_ID.Pending_ATC_Level >= Self_ID.ATC_Nesting_Level or else
199 -- Self_ID.Deferral_Level > 0);
204 -----------------
205 -- Abort_Defer --
206 -----------------
210 begin
219 -----------------------
220 -- Get_Current_Excep --
221 -----------------------
224 begin
228 -----------------------
229 -- Do_Pending_Action --
230 -----------------------
232 -- Call only when holding no locks
236 begin
239 -- Needs loop to recheck for pending action in case a new one occurred
240 -- while we had abort deferred below.
242 loop
243 -- Temporarily defer abort so that we can lock Self_ID
248 Lock_RTS;
256 Unlock_RTS;
259 -- Restore the original Deferral value
267 pragma Debug
275 -- The solution really belongs in the Abort_Signal handler
276 -- for async. entry calls. The present hack is very
277 -- fragile. It relies that the very next point after
278 -- Exit_One_ATC_Level at which the task becomes abortable
279 -- will be the call to Undefer_Abort in the
280 -- Abort_Signal handler.
284 pragma Debug
296 -----------------------
297 -- Final_Task_Unlock --
298 -----------------------
300 -- This version is only for use in Terminate_Task, when the task is
301 -- relinquishing further rights to its own ATCB.
303 -- There is a very interesting potential race condition there, where the
304 -- old task may run concurrently with a new task that is allocated the old
305 -- tasks (now reused) ATCB. The critical thing here is to not make any
306 -- reference to the ATCB after the lock is released. See also comments on
307 -- Terminate_Task and Unlock.
310 begin
315 --------------
316 -- Init_RTS --
317 --------------
321 begin
324 -- Terminate run time (regular vs restricted) specific initialization
325 -- of the environment task.
339 -- Normally, a task starts out with internal master nesting level one
340 -- larger than external master nesting level. It is incremented to one
341 -- by Enter_Master, which is called in the task body only if the
342 -- compiler thinks the task may have dependent tasks. There is no
343 -- corresponding call to Enter_Master for the environment task, so we
344 -- would need to increment it to 2 here. Instead, we set it to 3. By
345 -- doing this we reserve the level 2 for server tasks of the runtime
346 -- system. The environment task does not need to wait for these server
350 -- Initialize lock used to implement mutual exclusion between all tasks
354 -- Notify that the tasking run time has been elaborated so that
355 -- the tasking version of the soft links can be used.
368 -- Initialize the tasking soft links (if not done yet) that are common
369 -- to the full and the restricted run times.
373 -- Abort is deferred in a new ATCB, so we need to undefer abort at this
374 -- stage to make the environment task abortable.
379 ---------------------------
380 -- Locked_Abort_To_Level--
381 ---------------------------
383 -- Abort a task to the specified ATC nesting level.
384 -- Call this only with T locked.
386 -- An earlier version of this code contained a call to Wakeup. That should
387 -- not be necessary here, if Abort_Task is implemented correctly, since
388 -- Abort_Task should include the effect of Wakeup. However, the above call
389 -- was in earlier versions of this file, and at least for some targets
390 -- Abort_Task has not been doing Wakeup. It should not hurt to uncomment
391 -- the above call, until the error is corrected for all targets.
393 -- See extended comments in package body System.Tasking.Abort for the
394 -- overall design of the implementation of task abort.
395 -- ??? there is no such package ???
397 -- If the task is sleeping it will be in an abort-deferred region, and will
398 -- not have Abort_Signal raised by Abort_Task. Such an "abort deferral" is
399 -- just to protect the RTS internals, and not necessarily required to
400 -- enforce Ada semantics. Abort_Task should wake the task up and let it
401 -- decide if it wants to complete the aborted construct immediately.
403 -- Note that the effect of the low-level Abort_Task is not persistent.
404 -- If the target task is not blocked, this wakeup will be missed.
406 -- We don't bother calling Abort_Task if this task is aborting itself,
407 -- since we are inside the RTS and have abort deferred. Similarly, We don't
408 -- bother to call Abort_Task if T is terminated, since there is no need to
409 -- abort a terminated task, and it could be dangerous to try if the task
410 -- has stopped executing.
412 -- Note that an earlier version of this code had some false reasoning about
413 -- being able to reliably wake up a task that had suspended on a blocking
414 -- system call that does not atomically release the task's lock (e.g., UNIX
415 -- nanosleep, which we once thought could be used to implement delays).
416 -- That still left the possibility of missed wakeups.
418 -- We cannot safely call Vulnerable_Complete_Activation here, since that
419 -- requires locking Self_ID.Parent. The anti-deadlock lock ordering rules
420 -- would then require us to release the lock on Self_ID first, which would
421 -- create a timing window for other tasks to lock Self_ID. This is
422 -- significant for tasks that may be aborted before their execution can
423 -- enter the task body, and so they do not get a chance to call
424 -- Complete_Task. The actual work for this case is done in Terminate_Task.
426 procedure Locked_Abort_To_Level
430 is
431 begin
434 when Terminated
435 | Unactivated
436 =>
440 when Activating
441 | Runnable
442 =>
443 -- This is needed to cancel an asynchronous protected entry
444 -- call during a requeue with abort.
446 T.Entry_Calls
452 when AST_Server_Sleep
453 | Async_Select_Sleep
454 | Delay_Sleep
455 | Interrupt_Server_Blocked_Interrupt_Sleep
456 | Interrupt_Server_Idle_Sleep
457 | Timer_Server_Sleep
458 =>
461 when Acceptor_Delay_Sleep
462 | Acceptor_Sleep
463 =>
468 T.Entry_Calls
472 when Activator_Sleep
473 | Asynchronous_Hold
474 | Master_Completion_Sleep
475 | Master_Phase_2_Sleep
476 =>
489 -- This prevents aborted task from accepting calls
493 -- The test above is just a heuristic, to reduce wasteful
494 -- calls to Abort_Task. We are holding T locked, and this
495 -- value will not be set to False except with T also locked,
496 -- inside Exit_One_ATC_Level, so we should not miss wakeups.
499 or else
501 then
509 -- The task is blocked on a system call waiting for the
510 -- completion event. In this case Abort_Task may need to take
511 -- special action in order to succeed.
513 then
519 --------------------------------
520 -- Remove_From_All_Tasks_List --
521 --------------------------------
527 begin
528 pragma Debug
537 else
551 ---------------
552 -- Task_Lock --
553 ---------------
556 begin
567 begin
571 ---------------
572 -- Task_Name --
573 ---------------
577 begin
581 -----------------
582 -- Task_Unlock --
583 -----------------
586 begin
598 begin
602 -------------------
603 -- Undefer_Abort --
604 -------------------
606 -- Precondition : Self does not hold any locks
608 -- Undefer_Abort is called on any abort completion point (aka.
609 -- synchronization point). It performs the following actions if they
610 -- are pending: (1) change the base priority, (2) abort the task.
612 -- The priority change has to occur before abort. Otherwise, it would
613 -- take effect no earlier than the next abort completion point.
616 begin
634 ----------------------------
635 -- Undefer_Abort_Nestable --
636 ----------------------------
638 -- An earlier version would re-defer abort if an abort is in progress.
639 -- Then, we modified the effect of the raise statement so that it defers
640 -- abort until control reaches a handler. That was done to prevent
641 -- "skipping over" a handler if another asynchronous abort occurs during
642 -- the propagation of the abort to the handler.
644 -- There has been talk of reversing that decision, based on a newer
645 -- implementation of exception propagation. Care must be taken to evaluate
646 -- how such a change would interact with the above code and all the places
647 -- where abort-deferral is used to bridge over critical transitions, such
648 -- as entry to the scope of a region with a finalizer and entry into the
649 -- body of an accept-procedure.
652 begin
671 -------------------
672 -- Abort_Undefer --
673 -------------------
677 begin
686 -- In case there are different views on whether Abort is supported
687 -- between the expander and the run time, we may end up with
688 -- Self_ID.Deferral_Level being equal to zero, when called from
689 -- the procedure created by the expander that corresponds to a
690 -- task body. In this case, there's nothing to be done.
692 -- See related code in System.Tasking.Stages.Create_Task resetting
693 -- Deferral_Level when System.Restrictions.Abort_Allowed is False.
710 --------------------------
711 -- Wakeup_Entry_Caller --
712 --------------------------
714 -- This is called at the end of service of an entry call, to abort the
715 -- caller if he is in an abortable part, and to wake up the caller if it
716 -- is on Entry_Caller_Sleep. It assumes that the call is already off-queue.
718 -- (This enforces the rule that a task must be off-queue if its state is
719 -- Done or Cancelled.) Call it holding the lock of Entry_Call.Self.
721 -- Timed_Call or Simple_Call:
722 -- The caller is waiting on Entry_Caller_Sleep, in
723 -- Wait_For_Completion, or Wait_For_Completion_With_Timeout.
725 -- Conditional_Call:
726 -- The caller might be in Wait_For_Completion,
727 -- waiting for a rendezvous (possibly requeued without abort)
728 -- to complete.
730 -- Asynchronous_Call:
731 -- The caller may be executing in the abortable part o
732 -- an async. select, or on a time delay,
733 -- if Entry_Call.State >= Was_Abortable.
735 procedure Wakeup_Entry_Caller
739 is
742 begin
753 -- Abort the caller in his abortable part, but do so only if call has
754 -- been queued abortably.
765 -------------------------
766 -- Finalize_Attributes --
767 -------------------------
772 begin
783 begin
784 Init_RTS;