From: Akihiko Odaki <akihiko.odaki@gmail.com>
Cc: "Gerd Hoffmann" <kraxel@redhat.com>,
qemu-devel@nongnu.org, "Akihiko Odaki" <akihiko.odaki@gmail.com>,
"Philippe Mathieu-Daudé" <f4bug@amsat.org>
Subject: [PATCH v2] coreaudio: Lock only the buffer
Date: Wed, 23 Jun 2021 05:17:40 +0900 [thread overview]
Message-ID: <20210622201740.38005-1-akihiko.odaki@gmail.com> (raw)
On macOS 11.3.1, Core Audio calls AudioDeviceIOProc after calling an
internal function named HALB_Mutex::Lock(), which locks a mutex in
HALB_IOThread::Entry(void*). HALB_Mutex::Lock() is also called in
AudioObjectGetPropertyData, which is called by coreaudio driver.
Therefore, a deadlock will occur if coreaudio driver calls
AudioObjectGetPropertyData while holding a lock for a mutex and tries
to lock the same mutex in AudioDeviceIOProc.
audioDeviceIOProc, which implements AudioDeviceIOProc in coreaudio
driver, requires an exclusive access for the device configuration and
the buffer. Fortunately, a mutex is necessary only for the buffer in
audioDeviceIOProc because a change for the device configuration occurs
only before setting up AudioDeviceIOProc or after stopping the playback
with AudioDeviceStop.
With this change, the mutex owned by the driver will only be used for
the buffer, and the device configuration change will be protected with
the implicit iothread mutex.
Signed-off-by: Akihiko Odaki <akihiko.odaki@gmail.com>
---
audio/coreaudio.c | 102 +++++++++++++++++++---------------------------
1 file changed, 41 insertions(+), 61 deletions(-)
diff --git a/audio/coreaudio.c b/audio/coreaudio.c
index 578ec9b8b2e..c239f756337 100644
--- a/audio/coreaudio.c
+++ b/audio/coreaudio.c
@@ -26,6 +26,7 @@
#include <CoreAudio/CoreAudio.h>
#include <pthread.h> /* pthread_X */
+#include "qemu/main-loop.h"
#include "qemu/module.h"
#include "audio.h"
@@ -34,7 +35,7 @@
typedef struct coreaudioVoiceOut {
HWVoiceOut hw;
- pthread_mutex_t mutex;
+ pthread_mutex_t buf_mutex;
AudioDeviceID outputDeviceID;
int frameSizeSetting;
uint32_t bufferCount;
@@ -260,11 +261,11 @@ static void GCC_FMT_ATTR (3, 4) coreaudio_logerr2 (
#define coreaudio_playback_logerr(status, ...) \
coreaudio_logerr2(status, "playback", __VA_ARGS__)
-static int coreaudio_lock (coreaudioVoiceOut *core, const char *fn_name)
+static int coreaudio_buf_lock (coreaudioVoiceOut *core, const char *fn_name)
{
int err;
- err = pthread_mutex_lock (&core->mutex);
+ err = pthread_mutex_lock (&core->buf_mutex);
if (err) {
dolog ("Could not lock voice for %s\nReason: %s\n",
fn_name, strerror (err));
@@ -273,11 +274,11 @@ static int coreaudio_lock (coreaudioVoiceOut *core, const char *fn_name)
return 0;
}
-static int coreaudio_unlock (coreaudioVoiceOut *core, const char *fn_name)
+static int coreaudio_buf_unlock (coreaudioVoiceOut *core, const char *fn_name)
{
int err;
- err = pthread_mutex_unlock (&core->mutex);
+ err = pthread_mutex_unlock (&core->buf_mutex);
if (err) {
dolog ("Could not unlock voice for %s\nReason: %s\n",
fn_name, strerror (err));
@@ -292,13 +293,13 @@ static int coreaudio_unlock (coreaudioVoiceOut *core, const char *fn_name)
coreaudioVoiceOut *core = (coreaudioVoiceOut *) hw; \
ret_type ret; \
\
- if (coreaudio_lock(core, "coreaudio_" #name)) { \
+ if (coreaudio_buf_lock(core, "coreaudio_" #name)) { \
return 0; \
} \
\
ret = glue(audio_generic_, name)args; \
\
- coreaudio_unlock(core, "coreaudio_" #name); \
+ coreaudio_buf_unlock(core, "coreaudio_" #name); \
return ret; \
}
COREAUDIO_WRAPPER_FUNC(get_buffer_out, void *, (HWVoiceOut *hw, size_t *size),
@@ -310,7 +311,10 @@ COREAUDIO_WRAPPER_FUNC(write, size_t, (HWVoiceOut *hw, void *buf, size_t size),
(hw, buf, size))
#undef COREAUDIO_WRAPPER_FUNC
-/* callback to feed audiooutput buffer */
+/*
+ * callback to feed audiooutput buffer. called without iothread lock.
+ * allowed to lock "buf_mutex", but disallowed to have any other locks.
+ */
static OSStatus audioDeviceIOProc(
AudioDeviceID inDevice,
const AudioTimeStamp *inNow,
@@ -326,13 +330,13 @@ static OSStatus audioDeviceIOProc(
coreaudioVoiceOut *core = (coreaudioVoiceOut *) hwptr;
size_t len;
- if (coreaudio_lock (core, "audioDeviceIOProc")) {
+ if (coreaudio_buf_lock (core, "audioDeviceIOProc")) {
inInputTime = 0;
return 0;
}
if (inDevice != core->outputDeviceID) {
- coreaudio_unlock (core, "audioDeviceIOProc(old device)");
+ coreaudio_buf_unlock (core, "audioDeviceIOProc(old device)");
return 0;
}
@@ -342,7 +346,7 @@ static OSStatus audioDeviceIOProc(
/* if there are not enough samples, set signal and return */
if (pending_frames < frameCount) {
inInputTime = 0;
- coreaudio_unlock (core, "audioDeviceIOProc(empty)");
+ coreaudio_buf_unlock (core, "audioDeviceIOProc(empty)");
return 0;
}
@@ -364,7 +368,7 @@ static OSStatus audioDeviceIOProc(
out += write_len;
}
- coreaudio_unlock (core, "audioDeviceIOProc");
+ coreaudio_buf_unlock (core, "audioDeviceIOProc");
return 0;
}
@@ -459,7 +463,16 @@ static OSStatus init_out_device(coreaudioVoiceOut *core)
return status;
}
- /* set Callback */
+ /*
+ * set Callback.
+ *
+ * On macOS 11.3.1, Core Audio calls AudioDeviceIOProc after calling an
+ * internal function named HALB_Mutex::Lock(), which locks a mutex in
+ * HALB_IOThread::Entry(void*). HALB_Mutex::Lock() is also called in
+ * AudioObjectGetPropertyData, which is called by coreaudio driver.
+ * Therefore, the specified callback must be designed to avoid a deadlock
+ * with the callers of AudioObjectGetPropertyData.
+ */
core->ioprocid = NULL;
status = AudioDeviceCreateIOProcID(core->outputDeviceID,
audioDeviceIOProc,
@@ -542,6 +555,7 @@ static void update_device_playback_state(coreaudioVoiceOut *core)
}
}
+/* called without iothread lock. */
static OSStatus handle_voice_change(
AudioObjectID in_object_id,
UInt32 in_number_addresses,
@@ -551,9 +565,7 @@ static OSStatus handle_voice_change(
OSStatus status;
coreaudioVoiceOut *core = in_client_data;
- if (coreaudio_lock(core, __func__)) {
- abort();
- }
+ qemu_mutex_lock_iothread();
if (core->outputDeviceID) {
fini_out_device(core);
@@ -564,7 +576,7 @@ static OSStatus handle_voice_change(
update_device_playback_state(core);
}
- coreaudio_unlock (core, __func__);
+ qemu_mutex_unlock_iothread();
return status;
}
@@ -579,14 +591,10 @@ static int coreaudio_init_out(HWVoiceOut *hw, struct audsettings *as,
struct audsettings obt_as;
/* create mutex */
- err = pthread_mutex_init(&core->mutex, NULL);
+ err = pthread_mutex_init(&core->buf_mutex, NULL);
if (err) {
dolog("Could not create mutex\nReason: %s\n", strerror (err));
- goto mutex_error;
- }
-
- if (coreaudio_lock(core, __func__)) {
- goto lock_error;
+ return -1;
}
obt_as = *as;
@@ -606,37 +614,21 @@ static int coreaudio_init_out(HWVoiceOut *hw, struct audsettings *as,
if (status != kAudioHardwareNoError) {
coreaudio_playback_logerr (status,
"Could not listen to voice property change\n");
- goto listener_error;
+ return -1;
}
if (init_out_device(core)) {
- goto device_error;
+ status = AudioObjectRemovePropertyListener(kAudioObjectSystemObject,
+ &voice_addr,
+ handle_voice_change,
+ core);
+ if (status != kAudioHardwareNoError) {
+ coreaudio_playback_logerr(status,
+ "Could not remove voice property change listener\n");
+ }
}
- coreaudio_unlock(core, __func__);
return 0;
-
-device_error:
- status = AudioObjectRemovePropertyListener(kAudioObjectSystemObject,
- &voice_addr,
- handle_voice_change,
- core);
- if (status != kAudioHardwareNoError) {
- coreaudio_playback_logerr(status,
- "Could not remove voice property change listener\n");
- }
-
-listener_error:
- coreaudio_unlock(core, __func__);
-
-lock_error:
- err = pthread_mutex_destroy(&core->mutex);
- if (err) {
- dolog("Could not destroy mutex\nReason: %s\n", strerror (err));
- }
-
-mutex_error:
- return -1;
}
static void coreaudio_fini_out (HWVoiceOut *hw)
@@ -645,10 +637,6 @@ static void coreaudio_fini_out (HWVoiceOut *hw)
int err;
coreaudioVoiceOut *core = (coreaudioVoiceOut *) hw;
- if (coreaudio_lock(core, __func__)) {
- abort();
- }
-
status = AudioObjectRemovePropertyListener(kAudioObjectSystemObject,
&voice_addr,
handle_voice_change,
@@ -659,10 +647,8 @@ static void coreaudio_fini_out (HWVoiceOut *hw)
fini_out_device(core);
- coreaudio_unlock(core, __func__);
-
/* destroy mutex */
- err = pthread_mutex_destroy(&core->mutex);
+ err = pthread_mutex_destroy(&core->buf_mutex);
if (err) {
dolog("Could not destroy mutex\nReason: %s\n", strerror (err));
}
@@ -672,14 +658,8 @@ static void coreaudio_enable_out(HWVoiceOut *hw, bool enable)
{
coreaudioVoiceOut *core = (coreaudioVoiceOut *) hw;
- if (coreaudio_lock(core, __func__)) {
- abort();
- }
-
core->enabled = enable;
update_device_playback_state(core);
-
- coreaudio_unlock(core, __func__);
}
static void *coreaudio_audio_init(Audiodev *dev)
--
2.30.1 (Apple Git-130)
next reply other threads:[~2021-06-22 20:18 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-06-22 20:17 Akihiko Odaki [this message]
2021-06-22 20:27 ` [PATCH v2] coreaudio: Lock only the buffer no-reply
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20210622201740.38005-1-akihiko.odaki@gmail.com \
--to=akihiko.odaki@gmail.com \
--cc=f4bug@amsat.org \
--cc=kraxel@redhat.com \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.