SurfaceFlinger: add more thread-safety annotations. As part of debugging a crash in SurfaceFlinger, we became suspicious of markLayerPendingRemovalLocked because it wasn't annotated with thread safety annotations. This ended up being a red herring, because mStateLock is held on all paths into that function. Add some helpers to MutexUtils.h to require/assert mutexes, and use them to sprinkle some thread safety annotations to make things more clear. Cherry-picked from aosp/2212955 Bug: 271644537 Test: m surfaceflinger Change-Id: Ib48433765bb6ffcb351ec10cd5bc89e254b48545

commit: 194ff39de17ef4596b2b6ce1520516d7cc10fde6 [log] [tgz]
author: Josh Gao <jmgao@fb.com> Thu Sep 08 16:19:29 2022 -0700
committer: Ying Wei <whisperwing@google.com> Thu Mar 30 18:01:58 2023 +0000
tree: c4b412302c8bb831c1d13b95b1a4fa03e72667cb
parent: a6e9dd2cb4da7f91f2379b44d3320cdb0f472f7c [diff] [blame]
diff --git a/services/surfaceflinger/MutexUtils.h b/services/surfaceflinger/MutexUtils.h
index f8be6f3..58f7cb4 100644
--- a/services/surfaceflinger/MutexUtils.h
+++ b/services/surfaceflinger/MutexUtils.h

@@ -50,4 +50,14 @@
     const status_t status;
 };
 
+// Require, under penalty of compilation failure, that the compiler thinks that a mutex is held.
+#define REQUIRE_MUTEX(expr) ([]() REQUIRES(expr) {})()
+
+// Tell the compiler that we know that a mutex is held.
+#define ASSERT_MUTEX(expr) ([]() ASSERT_CAPABILITY(expr) {})()
+
+// Specify that one mutex is an alias for another.
+// (e.g. SurfaceFlinger::mStateLock and Layer::mFlinger->mStateLock)
+#define MUTEX_ALIAS(held, alias) (REQUIRE_MUTEX(held), ASSERT_MUTEX(alias))
+
 } // namespace android
commit	194ff39de17ef4596b2b6ce1520516d7cc10fde6	[log] [tgz]
author	Josh Gao <jmgao@fb.com>	Thu Sep 08 16:19:29 2022 -0700
committer	Ying Wei <whisperwing@google.com>	Thu Mar 30 18:01:58 2023 +0000
tree	c4b412302c8bb831c1d13b95b1a4fa03e72667cb
parent	a6e9dd2cb4da7f91f2379b44d3320cdb0f472f7c [diff] [blame]