PipeWire: fix stopped stream ejection #115
Conversation
..instead of sending it through a command channel. I haven't found the reason to do this the more complicated way..?
strohel
changed the title
src/backends/pipewire/stream.rs
Outdated
|
|
||
| // If we cannot lock the stream inner data, it means that it is being ejected in | ||
| // the PipeWire main loop right now. Note that try_lock() never blocks. | ||
| let Ok(mut inner) = inner.try_lock() else { |
There was a problem hiding this comment.
try_block never blocks, but still issues a syscall that can end up with a thread context switch, which is still an unbounded wait that breaks realtime programming rules.
This is why I used the channel method to send the callback back from the audio thread, as that one does not use synchronization and is truly lock-free and wait-free.
I think you can keep the rest of the fix, but revert the Mutex change, that would solve the underlying issue but keep the realtime safety.
There was a problem hiding this comment.
Thanks for the review @SolarLiner, I understand that the Mutex is problematic.
I don't see an easy way to to remove it though, but please check my logic:
- The
Option<Callback>with user'scallbackneeds to be shared between 2 threads, the pipewire main loop (where we can receive events even while the stream is paused) and the pipewire rt thread (thereprocess()is called) - We thus need to put it under an
Arcto safely share it between the 2 threads Arc<T>rightfully requires itsTto beSend + Sync, and only provides&T(and not&mut T) when there are multiple references.- The user-supplied code expects
&mut callback, so we need a wrapper with interior mutability that is alsoSend + Synceven when the wrapped type isn't. HenceMutex.
However, this was just trying to stay within std and safe zone, we have more options if we wander to 3rd party crates or unsafe territory.
https://docs.rs/atomic-option/latest/atomic_option/struct.AtomicOption.html has the most suitable API, but the last release is 9 (!) years old, and it has soundness issues and even RUSTSEC advisory filed.
https://docs.rs/crossbeam/latest/crossbeam/atomic/struct.AtomicCell.html seems to be its maintained successor, but would require a bit more boiler plate around it.
We could also rely more on pipewire for thread safery/synchronization (and sprinkle unsafe to please Rust), but I'm wary of such path: as far as I've seen, pipewire thread safety documentation is scarce and pipewire-rs has unsound holes in its API (https://gitlab.freedesktop.org/pipewire/pipewire-rs/-/issues/103, missing Send (Sync) bounds in its API). This is not just theoretical: I got segmentation faults when I used Rc<RefCell<...>> instead of Arc<Mutex<...>>.
I'll give it more thought/experiment. What do you think?
There was a problem hiding this comment.
Fundamentally, there is no concurrent usage of the callback, from what I understand. Either the stream is running, and the audio thread uses the callback, or it's paused, and the PipeWire main thread uses the callback to continue event processing. If we can convince Rust of that fact, we can get away with a legal Send and !Sync solution.
I have used atomic_refcell in the past for solutions like this, this one is backed by a single atomic ref-count. Strictly speaking that is still overkill, we could make our own with a simple atomic boolean, but the AtomicRefCell solution would work.
There was a problem hiding this comment.
@SolarLiner I was able to come up with a way that avoids the Mutex using a trick based on Arc+Weak+Drop+channel and line or two of unsafe, please take a look. See the third commit, which is entirely replaced.
Fundamentally, there is no concurrent usage of the callback, from what I understand. Either the stream is running, and the audio thread uses the callback, or it's paused, and the PipeWire main thread uses the callback to continue event processing. If we can convince Rust of that fact, we can get away with a legal
Sendand!Syncsolution.
If we speak about user_data in https://pipewire.pages.freedesktop.org/pipewire-rs/pipewire/stream/struct.Stream.html#method.add_local_listener_with_user_data (that we use for StreamInner), then I think pipewire will happily call the various callbacks listed in https://pipewire.pages.freedesktop.org/pipewire-rs/pipewire/stream/struct.ListenerLocalBuilder.html concurrently with process() in the RT thread.
It would be most convenient if pipewire guaranteed that process() is only called after state_changed(Streaming) and before state_changed(Paused|Unconnected|..) and never concurrently with them. But I haven't seen such a guarantee documented (or implied) anywhere.
Attempt to fix SolarLiner#105 v2: don't use a `Mutex`, do some Arc/Weak/Drop/channel/unsave tricks instead.
strohel
force-pushed
the
pipewire-fix-stopped-stream-eject
branch
from
1bfd825 to
1359359
Compare
|
I just learned about this pipewire property:
So in theory setting this property could fix the issue without the complexity of this PR (but with some side-effects). I'll give it a try. |
|
@strohel Were you able to try |
I haven't tried yet, will do once I find time. I think it will also break our "callback not called" detection, but that's not something the upstream should be concerned about. |
3 participants
Description
Fixes #105, at least for me.
To be reviewed by commits:
eject_stream_pipewire.rs, which hangs at this pointpw-linkcommandStreamCommands in theprocess()callback (which runs in the RT thread), we now handle them in the PipeWire main loop. This also prompted a transition fromrtrbtopipewire::channel; this makes their handling independentMutexis introduced in the audio callback but we never wait on it in the audio process() callback. I tried hard to avoid it, but I believe it is necessary (short of unsafe code), as we need&mutaccess to theOption<Callback>in two separate threads.Type of Change
Please delete options that are not relevant.
How Has This Been Tested?
eject_stream_pipewire.rsexample.Checklist:
I have made corresponding changes to the documentationCC @mbernat. Supersedes tonarino#5.