feat(D1): DMAC Driver 2: Electric Boogaloo #281
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This introduces an atomic allocator for up to 16 unique indices. I need this for the DMAC allocator, which has 16 channels. But, we can also add bigger bitfields later for use in pools of up to 64 (or 128) objects. Probably these could be macro-generated later. Whatever.
This branch kinda rewrites a bunch of the DMAC code. Now, DMA channels are capable of being dynamically allocated on demand using a cool atomic bitset thingy, and released back to the DMAC pool when they're no longer in use. This will allow us to have multiple drivers that consume basically as many DMA channels as they want to, rather than having a fixed assignment of DMA channels to drivers which has to be maintained by manually updating the DMAC IRQ handler every time we add a new driver that wants to do a DMA. A channel can be allocated from the pool once and used for multiple transfers, if a driver needs to make a bunch of transfers in sequence and doesn't want to have to round trip through the channel pool, but they can also be grabbed for oneshot transfers and immediately released. I also fixed the cancel safety of the async `Channel::transfer` (formerly `Channel::run_descriptor`) method, which would previously leave the transfer running if the future is dropped. This means that if a caller assumed dropping the transfer future meant that the transfer descriptor's buffer could be freed, the transfer might complete later and trample memory that has been reallocated. THAT SEEMS KINDA BAD LOL. So, now, dropping a `Channel::transfer` future will cancel the transfer if it hasn't finished yet, allowing fun stuff like attaching a timeout to a transfer if you really want to. Of course, the transfer may still have completed partially, and if we were writing to a device, the device may be unhappy to have only gotten some of the data it wanted. But, at least we don't have abandoned DMA transfers running around in random parts of the heap you probably wanted to use for normal stuff like having strings, or whatever it is that people do on the computer. So that's better. Unfortunately, while we can easily make the DMA transfers `Drop`-safe, we can't really make them `mem::forget`-safe without passing the DMA buffer into the future and leaking it if it gets forgetted. This is probably a good idea but would require a nice higher-level interface around constructing DMA descriptors from buffer-shaped memory regions, which I didn't want to do tonight. So, the DMA transfer APIs are still `unsafe` and maybe we can add a nicer thing on top later. In the meantime, probably don't `mem::forget` DMA transfers. Honestly there is no reason for normal people to do that so I don't feel super bad about it.
hawkw
added
kind: enhancement
hawkw
force-pushed
the
eliza/dmac-allocator-2
branch
from
3818b7f to
66c4f64
Compare
hawkw
commented
Sep 17, 2023
|
|
||
| ccu.enable_module(&mut dmac); | ||
|
|
||
| // enable the queue IRQ for all the channels, because use the other |
There was a problem hiding this comment.
Suggested change
| // enable the queue IRQ for all the channels, because use the other | |
| // enable the queue IRQ for all the channels, because we don't use the other |
now it's much harder to violate the invariants around "don't start an xfer while one is already running" and register block access. if we need these to be public later, we can always make them public again...
because why not!
jamesmunns
approved these changes
Sep 17, 2023
There was a problem hiding this comment.
This is hella hella cool.
I also really like that you can still reserve and take a DMA channel and re-use it, which addressed my one potential concern of "how do we handle 'high prio' dma cases"?
Looks like we're all the way ready for async fn copy(src: &[u8], dst: &mut [u8]) now :)
| /// probably wanted to use for normal stuff like having strings, or whatever | ||
| /// it is that people do on the computer. | ||
| /// | ||
| /// If the DMA transfer was a read rather than a write, cancelling a partial |
There was a problem hiding this comment.
I'd say this isn't TOTALLY true, depending on how broad you are talking about, reads can still have side effects in external hardware.
Co-authored-by: James Munns <james@onevariable.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This branch kinda rewrites a bunch of the DMAC code. Now, DMA channels
are capable of being dynamically allocated on demand using a cool atomic
bitset thingy, and released back to the DMAC pool when they're no longer
in use. This will allow us to have multiple drivers that consume
basically as many DMA channels as they want to, rather than having a
fixed assignment of DMA channels to drivers which has to be maintained
by manually updating the DMAC IRQ handler every time we add a new driver
that wants to do a DMA. A channel can be allocated from the pool once
and used for multiple transfers, if a driver needs to make a bunch of
transfers in sequence and doesn't want to have to round trip through the
channel pool, but they can also be grabbed for oneshot transfers and
immediately released.
I also fixed the cancel safety of the async
Channel::transfer(formerly
Channel::run_descriptor) method, which would previouslyleave the transfer running if the future is dropped. This means that if
a caller assumed dropping the transfer future meant that the transfer
descriptor's buffer could be freed, the transfer might complete later
and trample memory that has been reallocated. THAT SEEMS KINDA BAD LOL.
So, now, dropping a
Channel::transferfuture will cancel the transferif it hasn't finished yet, allowing fun stuff like attaching a timeout
to a transfer if you really want to. Of course, the transfer may still
have completed partially, and if we were writing to a device, the device
may be unhappy to have only gotten some of the data it wanted. But, at
least we don't have abandoned DMA transfers running around in random
parts of the heap you probably wanted to use for normal stuff like
having strings, or whatever it is that people do on the computer. So
that's better.
Unfortunately, while we can easily make the DMA transfers
Drop-safe,we can't really make them
mem::forget-safe without passing the DMAbuffer into the future and leaking it if it gets forgetted. This is
probably a good idea but would require a nice higher-level interface
around constructing DMA descriptors from buffer-shaped memory regions,
which I didn't want to do tonight. So, the DMA transfer APIs are still
unsafeand maybe we can add a nicer thing on top later. In themeantime, probably don't
mem::forgetDMA transfers. Honestly there isno reason for normal people to do that so I don't feel super bad about
it.