Conversation
|
Still open:
And
Hmm, I don't understand makefiles in depth. I just copied what was already there a few lines below and edited it to match my lib. As much as I understand this, it just adds this flags to the global EXTRAFLAGS in Makefile for one compile command only. I did not see any duplicated flags. |
|
Works here on Gentoo, rip, system install, clang and gcc builds, whole shebang! edit: Have not yet tested with RTAI. |
|
Thanks for testing! I renamed the library's to: A bit long names, but I think it is fine. But i'm open for other suggestions. Additionally, I reduced the globals. I tested all 5 configurations in a VM and they all work. There are two issues but I don't think they are due to this PR:
|
|
@NTULINUX: Do you have a test setup you can share or is it all just manually setup? A series of docker files would be nice, so different OS can be tested if something starts. I messed my VM up slightly by using |
|
I have VM images up right now but they're in flux. I'm going to post new VMs with all the right fixes in a bit. Currently tracking this PR here: My ebuilds at the moment are broken but we're in the middle of sorting it all out for good. Will share link to new VM soon with everything tied together, cleanly. |
src/rtapi/uspace_rtapi_main.cc
Outdated
| case SIGXCPU: | ||
| // should not happen - must be handled in RTAPI if enabled | ||
| rtapi_print_msg(RTAPI_MSG_ERR, "rtapi_app: BUG: SIGXCPU received - exiting\n"); | ||
| exit(0); |
There was a problem hiding this comment.
You cannot call exit() in a signal handler. You must call _exit()
There was a problem hiding this comment.
Also,using printf or puts in signal handlers is not allowed.
There was a problem hiding this comment.
Do you have a reference why? I now understand the difference between the two but I did not find anything why _exit() is needed in signal handlers.
There was a problem hiding this comment.
Thanks for the reference. Corrected.
src/rtapi/uspace_rtapi_main.cc
Outdated
|
|
||
| case SIGTERM: | ||
| rtapi_print_msg(RTAPI_MSG_ERR, "rtapi_app: SIGTERM - shutting down\n"); | ||
| exit(0); |
src/rtapi/uspace_rtapi_main.cc
Outdated
| kill(getpid(), sig); | ||
| break; | ||
| } | ||
| exit(1); |
|
|
||
| default: // pretty bad | ||
| rtapi_print_msg(RTAPI_MSG_ERR, "rtapi_app: caught signal %d - dumping core\n", sig); | ||
| sleep(1); // let syslog drain |
There was a problem hiding this comment.
calling sleep() in a signal handler may be problematic because it can be implemented using SIGALRM. Signals in signal is a very bad concept.
There was a problem hiding this comment.
Do you have a good solution for this? I don't really understand what the idea behind this code is.
There was a problem hiding this comment.
The whole "exit" procedure done in a signal handler is faulty and wrong. You normally run your main handler in a select/poll loop where one of the input descriptors is the read-end of a pipe. You write (one byte) into this pipe from the signal handler and you know what to do outside the signal handler in the main handler loop. Then you can use a simple switch outside the signal handler to determine what to do.
The code "tries" to do a flush, but does it in the wrong place. Anything called in there is bound to be wrong or not guaranteed to work as you need it to. BTW, dumping core should not be preceded by printing a message because all you know is that the printing of a message cause the signal (SEGV for example) and everything is corrupt. Dumping code needs to be just that, dump core.
| //If called in master mode with exit command, no need to start master | ||
| //and exit again | ||
| if (args.size() == 1 && args[0] == "exit") { | ||
| return 0; | ||
| } |
There was a problem hiding this comment.
If you exit here, then why perform the socket() and bind() calls?
There was a problem hiding this comment.
This code is a bit funny: Bind is used to detect if a master is running. It returns 0 if no master is already running, so a new one is started.
Now I had the case when exiting, everything was initialized again due to master exits automatically as soon as there is no instance any more: Line 417.
Due to that, master was started again just to call exit and "Note: Using POSIX realtime" was shown a second time before exiting when I closed latency test.
There was a problem hiding this comment.
But isn't that is just as race prone as any other method?
The concept "the first becomes master" is flawed when you try to exit.
There was a problem hiding this comment.
Which kind or race do you have in mind? I think bind is probably atomic, I would have to research it.
The issue I fixed is just: "Don't start a master if none is running just to immediately close it due to the command was exit"
The only that came to my mind is if the there are multiple clients at the same time, one sends exit while the other sends a loadrt for example. In that case, it is random if the master exits and then starts again to execute loadrt or the other way around, loadrt and then exit.
But this "If there is no master, I will become master" feels a bit wrong in general. Better would be: "A master is started at start of linuxcnc and closed at the end" but this is to much for this PR i think and needs probably changes in other places to.
There was a problem hiding this comment.
By the time you determine that there is no master, someone else can have become master. By the time you determine that there is a master, it may have exited before sending your command.
But you are right, this needs to be rethought and redone from the ground up. Lets leave it for now.
There was a problem hiding this comment.
By the time you determine that there is no master, someone else can have become master.
As long as bind is atomic, this can not happen. If bind is not atomic, two applications could be server on the same socket which would be a linux bug.
By the time you determine that there is a master, it may have exited before sending your command.
That can happen only if the application removes everything and then starts to add new things due to the master exits on exit or if there are no instances any more. Probably no linuxcnc app should do that but you can do that manually in halcmd. I have to test this.
But you are right, this needs to be rethought and redone from the ground up. Lets leave it for now.
Ok, we do that later. I think it's not a bad issue, just hard to read code with possible issues.
src/rtapi/uspace_rtapi_main.cc
Outdated
| break; | ||
| if (i == 0) | ||
| srand48(t0.tv_sec ^ t0.tv_usec); | ||
| usleep(lrand48() % 100000); |
There was a problem hiding this comment.
Can there be unforeseen interaction with SIGALRM here? I don't think you want to involve signals. Also, wouldn't there be a minimum wait wanted here? A random wait can return close to zero all the time and you only loop three times.
There was a problem hiding this comment.
That one looks funny. Signal will break it, the for loop is only 0.3s (100000 != 1000000) and gettimeofday can fail if you change the system time. Improved.
I did not find a function for diff of timespec, so I added one above main.
There was a problem hiding this comment.
BTW: That one could also be simplified by just using (now->tv_sec - start->tv_sec) < 3 but this would be something between 2 and 4s.
src/rtapi/uspace_rtapi_main.cc
Outdated
| return s; | ||
| } | ||
|
|
||
| static int get_fifo_path(char *buf, size_t bufsize) { |
There was a problem hiding this comment.
Why use char* and size_t? Why not have a std::string& as argument?
And why are there two get_fifo_path() functions with different arguments? Can't they be replaced by one?
There was a problem hiding this comment.
The first function gets the path as std::string. The second copies it to a char pointer and checks the size.
That was the original implementation, I found that somewhat convoluted and the return NULL was also not good to read, so I reordered it a bit without changing to much:
https://github.com/LinuxCNC/linuxcnc/blob/master/src/rtapi/uspace_rtapi_app.cc#L503
There was a problem hiding this comment.
But the whole cascade of get_fifo_path feels wrong IMO. We should get rid of char buffers as much as we can (everywhere in the code).
There was a problem hiding this comment.
You are right, it feels wrong. I tried to improve it by renaming the second to get_fifo_path_to_addr() and do what it says.
| pthread_cancel(queue_thread); | ||
| pthread_join(queue_thread, nullptr); | ||
| rtapi_msg_queue.consume_all([](const message_t &m) { | ||
| fputs(m.msg, m.level == RTAPI_MSG_ALL ? stdout : stderr); |
There was a problem hiding this comment.
It writes out all pending messages before exiting.
Same on line 81 where the normal message writer task function is. It's a bit risky when the 0 termination is missing but otherwise fine. Any sugestions?
m.level == RTAPI_MSG_ALL ? stdout : stderr sends to stdout if the message is from rtapi_print() -> RTAPI_MSG_ALL, otherwise stderr. Looks also fine.
There was a problem hiding this comment.
As long as it isn't in a signal handler it should be fine. Just wondering.
However, now you mention rtapi_print (and friends), there are rtapi_print_msg in the signal handler. That may pose a real problem. The default handler prints using stdio and that is a nono in a signal handler.
There was a problem hiding this comment.
This one is not in a signal and the standard handler for uspace_rtapi writes to a fifo. Only uspace_ulapi prints directly which is fine due to this has no signal handler.
This "just link a different function with the same name" is hard to track.
But motion.c uses rtapi_set_msg_handler() to change it. I have to track this. I think this is a real time thread.
There was a problem hiding this comment.
Yes, motion.c is part of motmod and is part of the interface layer in realtime from commands from non-realtime.
| static int read_number(int fd) { | ||
| int r = 0, neg = 1; | ||
| char ch; | ||
|
|
||
| while (1) { | ||
| int res = read(fd, &ch, 1); | ||
| if (res != 1) | ||
| return -1; | ||
| if (ch == '-') | ||
| neg = -1; | ||
| else if (ch == ' ') | ||
| return r * neg; | ||
| else | ||
| r = 10 * r + ch - '0'; | ||
| } | ||
| } | ||
|
|
||
| static std::string read_string(int fd) { | ||
| int len = read_number(fd); | ||
| if (len < 0) | ||
| throw ReadError(); | ||
| if (!len) | ||
| return std::string(); | ||
| std::string str(len, 0); | ||
| if (read(fd, str.data(), len) != len) | ||
| throw ReadError(); | ||
| return str; | ||
| } | ||
|
|
||
| static std::vector<std::string> read_strings(int fd) { | ||
| std::vector<std::string> result; | ||
| int count = read_number(fd); | ||
| if (count < 0) | ||
| return result; | ||
| for (int i = 0; i < count; i++) { | ||
| result.push_back(read_string(fd)); | ||
| } | ||
| return result; | ||
| } | ||
|
|
||
| static void write_number(std::string &buf, int num) { | ||
| buf = buf + fmt::format("{} ", num); | ||
| } | ||
|
|
||
| static void write_string(std::string &buf, const std::string &s) { | ||
| write_number(buf, s.size()); | ||
| buf += s; | ||
| } | ||
|
|
||
| static void write_strings(int fd, const std::vector<std::string> &strings) { | ||
| std::string buf; | ||
| write_number(buf, strings.size()); | ||
| for (unsigned int i = 0; i < strings.size(); i++) { | ||
| write_string(buf, strings[i]); | ||
| } | ||
| if (write(fd, buf.data(), buf.size()) != (ssize_t)buf.size()) | ||
| throw WriteError(); | ||
| } |
There was a problem hiding this comment.
This is a socket communication we work with. Why isn't this passed through and handled by the standard sendmsg() and recvmsg() system calls? Wouldn't they be much better at handling this? Or is there and advantage to all this code?
There was a problem hiding this comment.
I think it doesn't make a difference. send() / recv() could improve the readability. sendmsg() / recvmsg() is a bit annoying to use for this application due to you have first to fill the struct. What I found so far:
https://www.man7.org/linux/man-pages/man2/send.2.html
https://www.man7.org/linux/man-pages/man2/recv.2.html
The only difference between send() and [write(2)](https://www.man7.org/linux/man-pages/man2/write.2.html) is the presence of flags. With a zero flags argument, send() is equivalent to [write(2)](https://www.man7.org/linux/man-pages/man2/write.2.html).
There was a problem hiding this comment.
Just thought that you could use scatter/gather I/O on that you were writing instead of manual serializing.
There was a problem hiding this comment.
It would be even nicer to use a real protocol instead of numbers/strings but not for now I think.
There was a problem hiding this comment.
Proper serialization, now that's a thought ;-)
Agreed, next future round of fixes can address that.
|
Some discussion in the Sunday video meet-up has suggested that we should look at incorporating this into the rtapi cleanup: |
src/rtapi/uspace_rtapi_main.cc
Outdated
| len = snprintf(buf + 1, bufsize - 1, "%s", s.c_str()); | ||
| return len; |
There was a problem hiding this comment.
And then we're back to snprintf(). fmt::format would fit better. Length check can be done where it is relevant.
|
I commented and corrected the things I have changed. I always prefer to have refactoring (moving code around) and bug fixing/functional changes as separated as possible. That makes review and testing easier, you just check that the moved code arrived as it was and so avoids having merge conflicts due to the branch staying open for to long. But I have to admit, I also did some changes that I just was not able to leave it as it was and which simplified moving code due to removed dependency's and of course created a bug doing so. |
|
See: https://www.man7.org/linux/man-pages/man7/signal-safety.7.html for the callyou are allowed to make in signal handlers. |
Well, that is a good question. You are doing "cleanup" and that would imply refactor and fixes, IMO.
That is a possibility too, but there are soooo (key got stuck) many problems with this code that it is a good question why not hit those
And I appreciate the changes! They are very necessary. Before we're done it needs to be tested,of course. But when the code gets better structured, then that should also become easier, I hope. But, if you want to split it, then I think we need to have a very clear split where you move without actual changes and then refactor. My opinion is that moving code also classifies as refactoring and therefore it would be a missed opportunity if not fixed in one go. |
|
BTW, I've been wanting to vacuum this code for a long time but have not gotten arround to that point yet. You know, INI-file reader just done, HAL types/access revamp in the pipeline, tcl9 stuff that still needs fixing, build system cleanup, and so on. (and also got CI's -Werror merged) |
Might be I did not specify my (initial) intentions well enough. I just found the rtapi_uspace hard to manage while implementing xenomai and wanted to split it up without changing the existing code if not needed. But that diverged anyway already a bit. With the new structure, it should also be easier to implement rtapi_udp_sendto() or something similar needed for RTNet.
I have to look into it a bit more next week if I find time. But from my point of view it would make sense to split the more involved changes in a new PR or also two. But there is also always some testing effort behind which I don't know how much you have to do from your side. Also there is: #3925 I was now wondering if there is not a better solution for this. Often I use the following pattern to define the function and the matching type in the same header and then from then on only FUN_T* for function pointers. So you naturally change both. By some define magic, it should be possible do do both in one, but then it gets hard to read. You know of a good way to test if both definitions match? It would also be nicer to check at compile time if a .so has the needed main/exit functions. |
This reverts commit a24f173.
From libuspace-* to liblinuxcnc-uspace-*
hdiethelm
force-pushed
the
rtapi_cleanup_v2
branch
from
44ab357 to
f165b58
Compare
4 participants
Continuation of #3908 reverted in #3918
Target: Move some classes out of the huge uspace_rtapi_app.cc
uspace_rtapi_main: Contains the main function and helpers
uspace_rtapi_app: Contains the RtapiApp class
uspace_posix: Contains the PosixApp class
Other fixes: