|  | // Copyright 2016 The Chromium Authors | 
|  | // Use of this source code is governed by a BSD-style license that can be | 
|  | // found in the LICENSE file. | 
|  |  | 
|  | #include "base/task/common/checked_lock_impl.h" | 
|  |  | 
|  | #include <algorithm> | 
|  | #include <optional> | 
|  | #include <ostream> | 
|  | #include <unordered_map> | 
|  | #include <vector> | 
|  |  | 
|  | #include "base/check_op.h" | 
|  | #include "base/memory/raw_ptr.h" | 
|  | #include "base/memory/raw_ptr_exclusion.h" | 
|  | #include "base/no_destructor.h" | 
|  | #include "base/synchronization/condition_variable.h" | 
|  | #include "base/task/common/checked_lock.h" | 
|  | #include "base/threading/platform_thread.h" | 
|  | #include "base/threading/thread_local.h" | 
|  |  | 
|  | namespace base::internal { | 
|  |  | 
|  | namespace { | 
|  |  | 
|  | class SafeAcquisitionTracker { | 
|  | public: | 
|  | SafeAcquisitionTracker() = default; | 
|  |  | 
|  | SafeAcquisitionTracker(const SafeAcquisitionTracker&) = delete; | 
|  | SafeAcquisitionTracker& operator=(const SafeAcquisitionTracker&) = delete; | 
|  |  | 
|  | void RegisterLock(const CheckedLockImpl* const lock, | 
|  | const CheckedLockImpl* const predecessor) { | 
|  | DCHECK_NE(lock, predecessor) << "Reentrant locks are unsupported."; | 
|  | AutoLock auto_lock(allowed_predecessor_map_lock_); | 
|  | allowed_predecessor_map_[lock] = predecessor; | 
|  | AssertSafePredecessor(lock); | 
|  | } | 
|  |  | 
|  | void UnregisterLock(const CheckedLockImpl* const lock) { | 
|  | AutoLock auto_lock(allowed_predecessor_map_lock_); | 
|  | allowed_predecessor_map_.erase(lock); | 
|  | } | 
|  |  | 
|  | void RecordAcquisition(const CheckedLockImpl* const lock) { | 
|  | AssertSafeAcquire(lock); | 
|  | GetAcquiredLocksOnCurrentThread()->push_back(lock); | 
|  | } | 
|  |  | 
|  | void RecordRelease(const CheckedLockImpl* const lock) { | 
|  | LockVector* acquired_locks = GetAcquiredLocksOnCurrentThread(); | 
|  | const auto iter_at_lock = std::ranges::find(*acquired_locks, lock); | 
|  | CHECK(iter_at_lock != acquired_locks->end()); | 
|  | acquired_locks->erase(iter_at_lock); | 
|  | } | 
|  |  | 
|  | void AssertNoLockHeldOnCurrentThread() { | 
|  | DCHECK(GetAcquiredLocksOnCurrentThread()->empty()); | 
|  | } | 
|  |  | 
|  | private: | 
|  | using LockVector = std::vector<const CheckedLockImpl*>; | 
|  | using PredecessorMap = | 
|  | std::unordered_map<const CheckedLockImpl*, const CheckedLockImpl*>; | 
|  |  | 
|  | // This asserts that the lock is safe to acquire. This means that this should | 
|  | // be run before actually recording the acquisition. | 
|  | void AssertSafeAcquire(const CheckedLockImpl* const lock) { | 
|  | const LockVector* acquired_locks = GetAcquiredLocksOnCurrentThread(); | 
|  |  | 
|  | // If the thread currently holds no locks, this is inherently safe. | 
|  | if (acquired_locks->empty()) { | 
|  | return; | 
|  | } | 
|  |  | 
|  | // A universal predecessor may not be acquired after any other lock. | 
|  | DCHECK(!lock->is_universal_predecessor()); | 
|  |  | 
|  | // Otherwise, make sure that the previous lock acquired is either an | 
|  | // allowed predecessor for this lock or a universal predecessor. | 
|  | const CheckedLockImpl* previous_lock = acquired_locks->back(); | 
|  | if (previous_lock->is_universal_predecessor()) { | 
|  | return; | 
|  | } | 
|  |  | 
|  | AutoLock auto_lock(allowed_predecessor_map_lock_); | 
|  | // Using at() is exception-safe here as |lock| was registered already. | 
|  | const CheckedLockImpl* allowed_predecessor = | 
|  | allowed_predecessor_map_.at(lock); | 
|  | if (lock->is_universal_successor()) { | 
|  | DCHECK(!previous_lock->is_universal_successor()); | 
|  | return; | 
|  | } else { | 
|  | DCHECK_EQ(previous_lock, allowed_predecessor); | 
|  | } | 
|  | } | 
|  |  | 
|  | // Asserts that |lock|'s registered predecessor is safe. Because | 
|  | // CheckedLocks are registered at construction time and any predecessor | 
|  | // specified on a CheckedLock must already exist, the first registered | 
|  | // CheckedLock in a potential chain must have a null predecessor and is thus | 
|  | // cycle-free. Any subsequent CheckedLock with a predecessor must come from | 
|  | // the set of registered CheckedLocks. Since the registered CheckedLocks | 
|  | // only contain cycle-free CheckedLocks, this subsequent CheckedLock is | 
|  | // itself cycle-free and may be safely added to the registered CheckedLock | 
|  | // set. | 
|  | void AssertSafePredecessor(const CheckedLockImpl* lock) const { | 
|  | allowed_predecessor_map_lock_.AssertAcquired(); | 
|  | // Using at() is exception-safe here as |lock| was registered already. | 
|  | const CheckedLockImpl* predecessor = allowed_predecessor_map_.at(lock); | 
|  | if (predecessor) { | 
|  | DCHECK(allowed_predecessor_map_.find(predecessor) != | 
|  | allowed_predecessor_map_.end()) | 
|  | << "CheckedLock was registered before its predecessor. " | 
|  | << "Potential cycle detected"; | 
|  | } | 
|  | } | 
|  |  | 
|  | LockVector* GetAcquiredLocksOnCurrentThread() { | 
|  | if (!tls_acquired_locks_.Get()) { | 
|  | tls_acquired_locks_.Set(std::make_unique<LockVector>()); | 
|  | } | 
|  |  | 
|  | return tls_acquired_locks_.Get(); | 
|  | } | 
|  |  | 
|  | // Synchronizes access to |allowed_predecessor_map_|. | 
|  | Lock allowed_predecessor_map_lock_; | 
|  |  | 
|  | // A map of allowed predecessors. | 
|  | PredecessorMap allowed_predecessor_map_; | 
|  |  | 
|  | // A thread-local slot holding a vector of locks currently acquired on the | 
|  | // current thread. | 
|  | // LockVector is not a vector<raw_ptr> due to performance regressions detected | 
|  | // in blink_perf.accessibility tests. | 
|  | RAW_PTR_EXCLUSION ThreadLocalOwnedPointer<LockVector> tls_acquired_locks_; | 
|  | }; | 
|  |  | 
|  | SafeAcquisitionTracker& GetSafeAcquisitionTracker() { | 
|  | static base::NoDestructor<SafeAcquisitionTracker> tracker; | 
|  | return *tracker; | 
|  | } | 
|  |  | 
|  | }  // namespace | 
|  |  | 
|  | CheckedLockImpl::CheckedLockImpl() : CheckedLockImpl(nullptr) {} | 
|  |  | 
|  | CheckedLockImpl::CheckedLockImpl(const CheckedLockImpl* predecessor) { | 
|  | DCHECK(predecessor == nullptr || !predecessor->is_universal_successor_); | 
|  | GetSafeAcquisitionTracker().RegisterLock(this, predecessor); | 
|  | } | 
|  |  | 
|  | CheckedLockImpl::CheckedLockImpl(UniversalPredecessor) | 
|  | : is_universal_predecessor_(true) {} | 
|  |  | 
|  | CheckedLockImpl::CheckedLockImpl(UniversalSuccessor) | 
|  | : is_universal_successor_(true) { | 
|  | GetSafeAcquisitionTracker().RegisterLock(this, nullptr); | 
|  | } | 
|  |  | 
|  | CheckedLockImpl::~CheckedLockImpl() { | 
|  | GetSafeAcquisitionTracker().UnregisterLock(this); | 
|  | } | 
|  |  | 
|  | void CheckedLockImpl::AssertNoLockHeldOnCurrentThread() { | 
|  | GetSafeAcquisitionTracker().AssertNoLockHeldOnCurrentThread(); | 
|  | } | 
|  |  | 
|  | void CheckedLockImpl::Acquire(subtle::LockTracking tracking) { | 
|  | lock_.Acquire(tracking); | 
|  | GetSafeAcquisitionTracker().RecordAcquisition(this); | 
|  | } | 
|  |  | 
|  | void CheckedLockImpl::Release() { | 
|  | lock_.Release(); | 
|  | GetSafeAcquisitionTracker().RecordRelease(this); | 
|  | } | 
|  |  | 
|  | void CheckedLockImpl::AssertAcquired() const { | 
|  | lock_.AssertAcquired(); | 
|  | } | 
|  |  | 
|  | void CheckedLockImpl::AssertNotHeld() const { | 
|  | lock_.AssertNotHeld(); | 
|  | } | 
|  |  | 
|  | ConditionVariable CheckedLockImpl::CreateConditionVariable() { | 
|  | return ConditionVariable(&lock_); | 
|  | } | 
|  |  | 
|  | void CheckedLockImpl::CreateConditionVariableAndEmplace( | 
|  | std::optional<ConditionVariable>& opt) { | 
|  | opt.emplace(&lock_); | 
|  | } | 
|  |  | 
|  | }  // namespace base::internal |