forked from tock/libtock-rs
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Add a Subscribe API to
libtock_platform
.
This API is based on the design at tock#341.
- Loading branch information
Showing
8 changed files
with
318 additions
and
6 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,27 @@ | ||
/// Calls the Exit system call when dropped. Used to catch panic unwinding from | ||
/// a `#![no_std]` context. The caller should `core::mem::forget` the | ||
/// `ExitOnDrop` when it no longer needs to catch unwinding. | ||
/// | ||
/// | ||
/// # Example | ||
/// ``` | ||
/// use libtock_platform::exit_on_drop::ExitOnDrop; | ||
/// fn function_that_must_not_unwind<S: libtock_platform::Syscalls>() { | ||
/// let exit_on_drop: ExitOnDrop::<S> = Default::default(); | ||
/// /* Do something that might unwind here. */ | ||
/// core::mem::forget(exit_on_drop); | ||
/// } | ||
/// ``` | ||
pub struct ExitOnDrop<S: crate::Syscalls>(core::marker::PhantomData<S>); | ||
|
||
impl<S: crate::Syscalls> Default for ExitOnDrop<S> { | ||
fn default() -> ExitOnDrop<S> { | ||
ExitOnDrop(core::marker::PhantomData) | ||
} | ||
} | ||
|
||
impl<S: crate::Syscalls> Drop for ExitOnDrop<S> { | ||
fn drop(&mut self) { | ||
S::exit_terminate(0); | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,130 @@ | ||
use crate::syscall_scope::ShareList; | ||
use crate::Syscalls; | ||
|
||
// ----------------------------------------------------------------------------- | ||
// `Subscribe` struct | ||
// ----------------------------------------------------------------------------- | ||
|
||
/// A `Subscribe` instance allows safe code to call Tock's Subscribe system | ||
/// call, by guaranteeing the upcall will be cleaned up before 'scope ends. It | ||
/// is generally used with the `syscall_scope` function, which offers a safe | ||
/// interface for constructing `Subscribe` instances. | ||
pub struct Subscribe<'scope, S: Syscalls, const DRIVER_NUM: u32, const SUBSCRIBE_NUM: u32> { | ||
_syscalls: core::marker::PhantomData<S>, | ||
|
||
// Make this struct invariant with respect to the 'scope lifetime. | ||
// | ||
// Covariance would be unsound, as that would allow code with a | ||
// `Subscribe<'static, ...>` to register an upcall that lasts for a shorter | ||
// lifetime, resulting in use-after-free if the upcall in invoked. | ||
// Contravariance would be sound, but is not necessary and may be confusing. | ||
// | ||
// Additionally, we want to have at least one private member of this struct | ||
// so that code outside this module cannot construct a `Subscribe` without | ||
// calling `ShareList::new`. | ||
_scope: core::marker::PhantomData<core::cell::Cell<&'scope ()>>, | ||
} | ||
|
||
impl<'scope, S: Syscalls, const DRIVER_NUM: u32, const SUBSCRIBE_NUM: u32> Drop | ||
for Subscribe<'scope, S, DRIVER_NUM, SUBSCRIBE_NUM> | ||
{ | ||
fn drop(&mut self) { | ||
S::unsubscribe(DRIVER_NUM, SUBSCRIBE_NUM); | ||
} | ||
} | ||
|
||
impl<'scope, S: Syscalls, const DRIVER_NUM: u32, const SUBSCRIBE_NUM: u32> ShareList<'scope> | ||
for Subscribe<'scope, S, DRIVER_NUM, SUBSCRIBE_NUM> | ||
{ | ||
unsafe fn new() -> Subscribe<'scope, S, DRIVER_NUM, SUBSCRIBE_NUM> { | ||
Subscribe { | ||
_syscalls: core::marker::PhantomData, | ||
_scope: core::marker::PhantomData, | ||
} | ||
} | ||
} | ||
|
||
// ----------------------------------------------------------------------------- | ||
// `Upcall` trait | ||
// ----------------------------------------------------------------------------- | ||
|
||
/// A Tock kernel upcall. Upcalls are registered using the Subscribe system | ||
/// call, and are invoked during Yield calls. | ||
/// | ||
/// Each `Upcall` supports one or more subscribe IDs, which are indicated by the | ||
/// `SupportedIds` parameter. The types `AnySubscribeId` and `OneSubscribeId` | ||
/// are provided to use as `SupportedIds` parameters in `Upcall` | ||
/// implementations. | ||
pub trait Upcall<SupportedIds> { | ||
fn upcall(&self, arg0: u32, arg1: u32, arg2: u32); | ||
} | ||
|
||
pub trait SupportsId<const DRIVER_NUM: u32, const SUBSCRIBE_NUM: u32> {} | ||
|
||
pub struct AnyId; | ||
impl<const DRIVER_NUM: u32, const SUBSCRIBE_NUM: u32> SupportsId<DRIVER_NUM, SUBSCRIBE_NUM> | ||
for AnyId | ||
{ | ||
} | ||
|
||
pub struct OneId<const DRIVER_NUM: u32, const SUBSCRIBE_NUM: u32>; | ||
impl<const DRIVER_NUM: u32, const SUBSCRIBE_NUM: u32> SupportsId<DRIVER_NUM, SUBSCRIBE_NUM> | ||
for OneId<DRIVER_NUM, SUBSCRIBE_NUM> | ||
{ | ||
} | ||
|
||
// ----------------------------------------------------------------------------- | ||
// Upcall implementations that simply store their arguments | ||
// ----------------------------------------------------------------------------- | ||
|
||
/// An implementation of `Upcall` that sets the contained boolean value to | ||
/// `true` when the upcall is invoked. | ||
impl Upcall<AnyId> for core::cell::Cell<bool> { | ||
fn upcall(&self, _: u32, _: u32, _: u32) { | ||
self.set(true); | ||
} | ||
} | ||
|
||
/// Implemented for consistency with the other `Cell<Option<...>>` `Upcall` | ||
/// impls. Most users would prefer the `Cell<bool>` implementation over this | ||
/// impl, but this may be useful in a generic or macro context. | ||
impl Upcall<AnyId> for core::cell::Cell<Option<()>> { | ||
fn upcall(&self, _: u32, _: u32, _: u32) { | ||
self.set(Some(())); | ||
} | ||
} | ||
|
||
/// An `Upcall` implementation that stores its first argument when called. | ||
impl Upcall<AnyId> for core::cell::Cell<Option<(u32,)>> { | ||
fn upcall(&self, arg0: u32, _: u32, _: u32) { | ||
self.set(Some((arg0,))); | ||
} | ||
} | ||
|
||
/// An `Upcall` implementation that stores its first two arguments when called. | ||
impl Upcall<AnyId> for core::cell::Cell<Option<(u32, u32)>> { | ||
fn upcall(&self, arg0: u32, arg1: u32, _: u32) { | ||
self.set(Some((arg0, arg1))); | ||
} | ||
} | ||
|
||
/// An `Upcall` implementation that stores its arguments when called. | ||
impl Upcall<AnyId> for core::cell::Cell<Option<(u32, u32, u32)>> { | ||
fn upcall(&self, arg0: u32, arg1: u32, arg2: u32) { | ||
self.set(Some((arg0, arg1, arg2))); | ||
} | ||
} | ||
|
||
// ----------------------------------------------------------------------------- | ||
// `Config` trait | ||
// ----------------------------------------------------------------------------- | ||
|
||
/// `Config` configures the behavior of the Subscribe system call. It should | ||
/// generally be passed through by drivers, to allow application code to | ||
/// configure error handling. | ||
pub trait Config { | ||
/// Called if a Subscribe call succeeds and returns a non-null upcall. In | ||
/// some applications, this may indicate unexpected reentrance. By default, | ||
/// the non-null upcall is ignored. | ||
fn returned_nonnull_upcall(_driver_num: u32, _subscribe_num: u32) {} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,8 @@ | ||
use libtock_platform::exit_on_drop::ExitOnDrop; | ||
use libtock_unittest::fake; | ||
|
||
#[test] | ||
fn no_exit() { | ||
let exit_on_drop: ExitOnDrop<fake::Syscalls> = Default::default(); | ||
core::mem::forget(exit_on_drop); | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters