BrowserProcessSubThread

最新推荐文章于 2020-11-12 18:57:35 发布
最新推荐文章于 2020-11-12 18:57:35 发布
阅读量1.9k 收藏 1
点赞数
分类专栏: chromium chromium源代码情景分析 文章标签: chromium
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/feiniao251314/article/details/51509886
版权

BrowserProcessSubThread

chromium WinMain中说到,浏览器主进程Browser的工作线程一部分,其类是BrowserProcessSubThread数据结构,那么我们来分析一下这个类。这个类继承自BrowserThreadImpl,而后者继承BrowserThread和base::Thread。base::Thread继承PlatformThread::Delegate,我们慢慢来研究线程的管理过程。

对于BrowserProcessSubThread类,没有什么可以值得分析的,主要是分装了一下BrowserThreadImpl接口,主要的都在后者内部中。

windbg中chromium工作线程的观察

我们观察DB线程的执行堆栈,这个是创建后的线程执行过程,详细的说是某一时刻的运行过程。

0:020> kL
 # Child-SP          RetAddr           Call Site
00 00000000`0684f648 000007fe`fdb910dc ntdll!NtWaitForSingleObject+0xa
01 00000000`0684f650 000007fe`ef200e54 KERNELBASE!WaitForSingleObjectEx+0x79
02 (Inline Function) --------`-------- chrome_7feef160000!base::WaitableEvent::TimedWait+0x95
03 00000000`0684f6f0 000007fe`ef1edd83 chrome_7feef160000!base::MessagePumpDefault::Run+0x1c4
04 (Inline Function) --------`-------- chrome_7feef160000!base::MessageLoop::RunHandler+0x15
05 00000000`0684f950 000007fe`ef1c4381 chrome_7feef160000!base::RunLoop::Run+0x83
06 (Inline Function) --------`-------- chrome_7feef160000!base::MessageLoop::Run+0x35
07 00000000`0684f9a0 000007fe`f01d8076 chrome_7feef160000!base::Thread::Run+0x41
08 00000000`0684fa00 000007fe`f01d8d3e chrome_7feef160000!content::BrowserThreadImpl::DBThreadRun+0x36
09 00000000`0684fb50 000007fe`ef1c46d8 chrome_7feef160000!content::BrowserThreadImpl::Run+0xca
0a 00000000`0684fb80 000007fe`ef1d7e9d chrome_7feef160000!base::Thread::ThreadMain+0x338
0b 00000000`0684fbf0 00000000`7714652d chrome_7feef160000!base::`anonymous namespace'::ThreadFunc+0x15d
0c 00000000`0684fc60 00000000`7762c521 kernel32!BaseThreadInitThunk+0xd
0d 00000000`0684fc90 00000000`00000000 ntdll!RtlUserThreadStart+0x1d

这里面,DB线程处于等待工作中,下面我们从线程的初始化,启动,运行详细的讲解线程的生命周期。

BrowserThreadImpl

CrBrowserMain,即主进程主线程名,其如下初始化自己的主线程的:

  main_thread_.reset(
      new BrowserThreadImpl(BrowserThread::UI, base::MessageLoop::current()));

我们知道,这是个UI线程,线程消息循环即为当前的消息循环。

线程的初始化

BrowserThreadImpl::BrowserThreadImpl(ID identifier,
                                     base::MessageLoop* message_loop)
    : Thread(message_loop->thread_name()), identifier_(identifier) {
  set_message_loop(message_loop);
  Initialize();
}

void BrowserThreadImpl::Initialize() {
  BrowserThreadGlobals& globals = g_globals.Get();

  base::AutoLock lock(globals.lock);
  DCHECK(identifier_ >= 0 && identifier_ < ID_COUNT);
  DCHECK(globals.threads[identifier_] == NULL);
  globals.threads[identifier_] = this;
}

BrowserThreadImpl中globals管理着一批线程,至少我们知道的,Browser进程中IO,UI,DB线程都是由其管理的,so,这里就是按号入座喽。

线程的启动

bool BrowserThreadImpl::StartWithOptions(const Options& options) {
  // The global thread table needs to be locked while a new thread is
  // starting, as the new thread can asynchronously start touching the
  // table (and other thread's message_loop).
  BrowserThreadGlobals& globals = g_globals.Get();
  base::AutoLock lock(globals.lock);
  return Thread::StartWithOptions(options);
}

果然是一个包装,这里直接使用的是base库中的Thread启动函数。启动前加锁。

base::Thread::StartWithOptions
bool Thread::StartWithOptions(const Options& options) {
  DCHECK(!message_loop_);
#if defined(OS_WIN)
  DCHECK((com_status_ != STA) ||
      (options.message_loop_type == MessageLoop::TYPE_UI));
#endif

  // Reset |id_| here to support restarting the thread.
  id_event_.Reset();
  id_ = kInvalidThreadId;

  SetThreadWasQuitProperly(false);

  MessageLoop::Type type = options.message_loop_type;
  if (!options.message_pump_factory.is_null())
    type = MessageLoop::TYPE_CUSTOM;

  message_loop_timer_slack_ = options.timer_slack;
  scoped_ptr<MessageLoop> message_loop = MessageLoop::CreateUnbound(
      type, options.message_pump_factory);
  message_loop_ = message_loop.get();
  start_event_.Reset();

  // Hold the thread_lock_ while starting a new thread, so that we can make sure
  // that thread_ is populated before the newly created thread accesses it.
  {
    AutoLock lock(thread_lock_);
    if (!PlatformThread::CreateWithPriority(options.stack_size, this, &thread_,
                                            options.priority)) {
      DLOG(ERROR) << "failed to create thread";
      message_loop_ = nullptr;
      return false;
    }
  }

  // The ownership of message_loop is managemed by the newly created thread
  // within the ThreadMain.
  ignore_result(message_loop.release());

  DCHECK(message_loop_);
  return true;
}

这个函数式base thread 参数启动函数,启动前创建消息循环,使用平台类型的接口创建对应平台的线程,PlatformThread::CreateWithPriority。

base::CreateThreadInternal
// CreateThreadInternal() matches PlatformThread::CreateWithPriority(), except
// that |out_thread_handle| may be nullptr, in which case a non-joinable thread
// is created.
bool CreateThreadInternal(size_t stack_size,
                          PlatformThread::Delegate* delegate,
                          PlatformThreadHandle* out_thread_handle,
                          ThreadPriority priority) {
  unsigned int flags = 0;
  if (stack_size > 0 && base::win::GetVersion() >= base::win::VERSION_XP) {
    flags = STACK_SIZE_PARAM_IS_A_RESERVATION;
  } else {
    stack_size = 0;
  }

  ThreadParams* params = new ThreadParams;
  params->delegate = delegate;
  params->joinable = out_thread_handle != nullptr;
  params->priority = priority;

  // Using CreateThread here vs _beginthreadex makes thread creation a bit
  // faster and doesn't require the loader lock to be available.  Our code will
  // have to work running on CreateThread() threads anyway, since we run code
  // on the Windows thread pool, etc.  For some background on the difference:
  //   http://www.microsoft.com/msj/1099/win32/win321099.aspx
  void* thread_handle =
      ::CreateThread(nullptr, stack_size, ThreadFunc, params, flags, nullptr);
  if (!thread_handle) {
    delete params;
    return false;
  }

  if (out_thread_handle)
    *out_thread_handle = PlatformThreadHandle(thread_handle);
  else
    CloseHandle(thread_handle);
  return true;
}

CreateThread,我们好熟悉吧,这是windows平台的线程创建接口,我们可以看到这里面传递了参数,其中一个很重要的delegate就是创建线程Thread的this指针。

base::`anonymous namespace’::ThreadFunc
DWORD __stdcall ThreadFunc(void* params) {
  ThreadParams* thread_params = static_cast<ThreadParams*>(params);
  PlatformThread::Delegate* delegate = thread_params->delegate;
  if (!thread_params->joinable)
    base::ThreadRestrictions::SetSingletonAllowed(false);

  if (thread_params->priority != ThreadPriority::NORMAL)
    PlatformThread::SetCurrentThreadPriority(thread_params->priority);

  // Retrieve a copy of the thread handle to use as the key in the
  // thread name mapping.
  PlatformThreadHandle::Handle platform_handle;
  BOOL did_dup = DuplicateHandle(GetCurrentProcess(),
                                GetCurrentThread(),
                                GetCurrentProcess(),
                                &platform_handle,
                                0,
                                FALSE,
                                DUPLICATE_SAME_ACCESS);

  win::ScopedHandle scoped_platform_handle;

  if (did_dup) {
    scoped_platform_handle.Set(platform_handle);
    ThreadIdNameManager::GetInstance()->RegisterThread(
        scoped_platform_handle.Get(),
        PlatformThread::CurrentId());
  }

  delete thread_params;
  delegate->ThreadMain();

  if (did_dup) {
    ThreadIdNameManager::GetInstance()->RemoveName(
        scoped_platform_handle.Get(),
        PlatformThread::CurrentId());
  }

  return 0;
}

这是一个线程的入口函数,windows最先执行的就是这个函数,函数设置了线程优先级,然后执行我们的线程主函数ThreadMain,而这个函数由继承Delegate类的线程具体的实现,而我们的BrowserProcessSubThread继承自Thread,其主要来实现这个ThreadMain接口,所以线程的执行权交由Thread::ThreadMain具体来执行。

Thread::ThreadMain
void Thread::ThreadMain() {
  // First, make GetThreadId() available to avoid deadlocks. It could be called
  // any place in the following thread initialization code.
  id_ = PlatformThread::CurrentId();
  DCHECK_NE(kInvalidThreadId, id_);
  id_event_.Signal();

  // Complete the initialization of our Thread object.
  PlatformThread::SetName(name_.c_str());
  ANNOTATE_THREAD_NAME(name_.c_str());  // Tell the name to race detector.

  // Lazily initialize the message_loop so that it can run on this thread.
  DCHECK(message_loop_);
  scoped_ptr<MessageLoop> message_loop(message_loop_);
  message_loop_->BindToCurrentThread();
  message_loop_->set_thread_name(name_);
  message_loop_->SetTimerSlack(message_loop_timer_slack_);

#if defined(OS_WIN)
  scoped_ptr<win::ScopedCOMInitializer> com_initializer;
  if (com_status_ != NONE) {
    com_initializer.reset((com_status_ == STA) ?
        new win::ScopedCOMInitializer() :
        new win::ScopedCOMInitializer(win::ScopedCOMInitializer::kMTA));
  }
#endif

  // Let the thread do extra initialization.
  Init();

  {
    AutoLock lock(running_lock_);
    running_ = true;
  }

  start_event_.Signal();

  Run(message_loop_);

  {
    AutoLock lock(running_lock_);
    running_ = false;
  }

  // Let the thread do extra cleanup.
  CleanUp();

#if defined(OS_WIN)
  com_initializer.reset();
#endif

  if (message_loop->type() != MessageLoop::TYPE_CUSTOM) {
    // Assert that MessageLoop::QuitWhenIdle was called by ThreadQuitHelper.
    // Don't check for custom message pumps, because their shutdown might not
    // allow this.
    DCHECK(GetThreadWasQuitProperly());
  }

  // We can't receive messages anymore.
  // (The message loop is destructed at the end of this block)
  message_loop_ = nullptr;
}

函数开始处,设置平台线程名,然后设置message_loop的相关信息。然后初始化COM,之后做额外的底层子类初始化,接着调用子类的Run函数,当Run函数执行完成后,清理数据。

线程的运行

我们看开始的堆栈就明白了,这时候Browser进程的工作线程已经启动起来,该工作线程执行权已经落到了BrowserThreadImpl,一个线程已经启动成功。

因为BrowserThreadImpl管理多个工作线程,不同的线程给与不同的运行入口

void BrowserThreadImpl::Run(base::MessageLoop* message_loop) {
#if defined(OS_ANDROID)
  // Not to reset thread name to "Thread-???" by VM, attach VM with thread name.
  // Though it may create unnecessary VM thread objects, keeping thread name
  // gives more benefit in debugging in the platform.
  if (!thread_name().empty()) {
    base::android::AttachCurrentThreadWithName(thread_name());
  }
#endif

  BrowserThread::ID thread_id = ID_COUNT;
  CHECK(GetCurrentThreadIdentifier(&thread_id));
  CHECK_EQ(identifier_, thread_id);
  CHECK_EQ(Thread::message_loop(), message_loop);

  switch (identifier_) {
    case BrowserThread::UI:
      return UIThreadRun(message_loop);
    case BrowserThread::DB:
      return DBThreadRun(message_loop);
    case BrowserThread::FILE:
      return FileThreadRun(message_loop);
    case BrowserThread::FILE_USER_BLOCKING:
      return FileUserBlockingThreadRun(message_loop);
    case BrowserThread::PROCESS_LAUNCHER:
      return ProcessLauncherThreadRun(message_loop);
    case BrowserThread::CACHE:
      return CacheThreadRun(message_loop);
    case BrowserThread::IO:
      return IOThreadRun(message_loop);
    case BrowserThread::ID_COUNT:
      CHECK(false);  // This shouldn't actually be reached!
      break;
  }

  // |identifier_| must be set to a valid enum value in the constructor, so it
  // should be impossible to reach here.
  CHECK(false);
}

这里作为一个分发函数,对于不同的线程执行不同的入口,我们研究的是DB线程,走的是DB线程入口。

NOINLINE void BrowserThreadImpl::DBThreadRun(base::MessageLoop* message_loop) {
  volatile int line_number = __LINE__;
  Thread::Run(message_loop);
  CHECK_GT(line_number, 0);
}

对于DB线程来说,直接调用父类的Run函数来执行工作。

向线程投递任务

PaskTask

我们的工作线程已经初始化并且创建并且运行起来了,那么怎么向这几个Browser工作线程投递任务呢。任务的投递提供了很多的接口,用于投递不同类型的任务。

  static bool PostTask(ID identifier,
                       const tracked_objects::Location& from_here,
                       const base::Closure& task);
  static bool PostDelayedTask(ID identifier,
                              const tracked_objects::Location& from_here,
                              const base::Closure& task,
                              base::TimeDelta delay);
  static bool PostNonNestableTask(ID identifier,
                                  const tracked_objects::Location& from_here,
                                  const base::Closure& task);
                                    static bool PostNonNestableDelayedTask(
    .......

    // static
bool BrowserThread::PostTask(ID identifier,
                             const tracked_objects::Location& from_here,
                             const base::Closure& task) {
  return BrowserThreadImpl::PostTaskHelper(
      identifier, from_here, task, base::TimeDelta(), true);
}

对于Browser进程的工作线程来说,任务的投递有个帮助入口,这个入口主要是区分具体的投递对象,还是那句话,因为BrowserThreadImpl管理着好几个工作线程。

PostTaskHelper
// static
bool BrowserThreadImpl::PostTaskHelper(
    BrowserThread::ID identifier,
    const tracked_objects::Location& from_here,
    const base::Closure& task,
    base::TimeDelta delay,
    bool nestable) {
  DCHECK(identifier >= 0 && identifier < ID_COUNT);
  // Optimization: to avoid unnecessary locks, we listed the ID enumeration in
  // order of lifetime.  So no need to lock if we know that the target thread
  // outlives current thread.
  // Note: since the array is so small, ok to loop instead of creating a map,
  // which would require a lock because std::map isn't thread safe, defeating
  // the whole purpose of this optimization.
  BrowserThread::ID current_thread = ID_COUNT;
  bool target_thread_outlives_current =
      GetCurrentThreadIdentifier(&current_thread) &&
      current_thread >= identifier;

  BrowserThreadGlobals& globals = g_globals.Get();
  if (!target_thread_outlives_current)
    globals.lock.Acquire();

  base::MessageLoop* message_loop =
      globals.threads[identifier] ? globals.threads[identifier]->message_loop()
                                  : NULL;
  if (message_loop) {
    if (nestable) {
      message_loop->task_runner()->PostDelayedTask(from_here, task, delay);
    } else {
      message_loop->task_runner()->PostNonNestableDelayedTask(from_here, task,
                                                              delay);
    }
  }

  if (!target_thread_outlives_current)
    globals.lock.Release();

  return !!message_loop;
}

该函数通过ID标示获取获取线程的消息循环,然后通过线程的消息循环投递给具体的线程具体的消息循环任务。

青城梦远
关注
专栏目录
chromium WinMain
飞鸟的专栏
05-26 2239
这里研究和分析一下chromium启动的初步,浅析一下
webview创建过程分析(五)
andyhxc的博客
04-24 2021
今天我们来看下WebView的Browser端的启动过程,在前面webview创建过程分析(二)的分析中,我们知道WebViewChromium在init过程中会涉及到Browser端的启动,具体代码为 public void init(final Map<String, Object> javaScriptInterfaces, final boolean...
SubThread.java
09-11
SubThread.java
subthread(handling busy operation) notify mainthread to update UI
Trending Up...
05-24 983
Call PostMessage inside TMyThread.Execute to tell Main Form to update UIunit MyConsts;interfaceuses Messages;const WM_UPDATE_STATUS = WM_USER + 1;implementationend.//////////////////////
Python调用浏览器运行报错
cc273578的博客
03-11 981
安装pycharm后运行第一个小例子,打开Chrome,输入www.baidu.com,输入搜索内容,点击搜索,运行 运行报错,缺少浏览器驱动,在http://chromedriver.storage.googleapis.com/index.html找到对应浏览器的驱动,下载好了放入将chromedriver.exe放置到python的Scripts目录下即可 ...
Fatal signal 11 (SIGSEGV) at 0x00000000 (code=1), thread 1755 (CrBrowserMain)问题
weixin_30462049的博客
03-28 398
转载于:https://www.cnblogs.com/raomengyang/p/4373510.html
gecko 相关process分析 大纲,代码总结性结论
hunter
09-26 830
1分别分析b2g process 2和nuwa process, 3 分析b2g 与nuwa的通信交互 4分析messageloop,ipdl 5分析APP如何启动     结构:                     |-XRE_main                                |                        ...
Chromium Content模块初始化
woweiwokuang0000的专栏
03-21 2220
简单的说,Chromium Content模块就是Chromium内核核心功能实现,基于这些实现有提供了公开和稳定的接口,即ContentAPI;其他浏览器或类似功能开发者可以基于这些API进行二次开发,而不需要关心这个内核的底层实现细节,并且同时可以在其产品中展现Chromium内核的很多特性,如多进程架构、HTML5支持、硬件加速渲染甚至是沙盒机制等: 这里以content模块的初始
Firefox OS启动过程分析-b2g进程启动
zembers的专栏
09-16 1925
b2g启动时,运行”/system/b2g/b2g”,入口在”gecko/b2g/app/B2GLoader.cpp”中,如下:int main(int argc, const char* argv[]) { /** * Reserve file descriptors before loading static data. */ FdArray reservedFds; R
Chromium线程模型、消息循环
03-06 3529
多线程的麻烦 多线程编程是一件麻烦的事,相信很多人深有体会。执行顺序的不确定性,资源的并发访问一直困扰着众多程序员。解决多线程编程问题的方法分为两类:一是对并发访问的资源直接加锁;二是避免并发访问资源;Chromium采用第二种思想来设计多线程模型,通过在线程之间传递消息来实现跨进程通讯。 设计原则 Chromium希望尽量保持UI处于响应状态。为此遵循如下设计原则: 1
Chromium多线程模型设计和实现分析
weixin_33721427的博客
07-01 529
       Chromium除了远近闻名的多进程架构之外,它的多线程模型也相当引人注目的。Chromium的多进程架构是为了解决网页的稳定性问题,而多线程模型则是为了解决网页的卡顿问题。为了达到这个目的,Chromium的多线程模型是基于异步通信的。也就是说,一个线程请求另外一个线程运行一个任务的时候,不须要等待该任务完毕就能够去做其他事情。从而避免了卡顿。本文就分析Chromium的多线程...
wpf .netcore 打开文件选择对话框_Electron打开文件对话框卡死问题分析
weixin_39891158的博客
11-12 567
摘要分析卡死问题时,可结合WPT和Windbg一起分析。Electron弹出的打开文件对话框存在必现的卡死场景,原因是弹窗线程COM反初始化卡死,而主线程在同步等待弹窗线程销毁。Electron的部分代码还没及时跟上Chromium的改动,分析Electron的问题时,可多跟最新版Chrome进行对比。问题现象测试同学在基于Electron Windows的App上测试发送图片时,出现了整个界面卡...
网易 nbase库线程操作
清流弯弯
02-14 3148
1 项目使用了网易半开源的工程,涉及到的线程相关定义如下: class ThreadMap { public: SINGLETON_DEFINE(ThreadMap); static bool AquireAccess(); bool RegisterThread(int self_identifier); bool UnregisterThread(); int Que...
Layer Tree 绘制
tornmy的博客
08-21 1685
站在老罗的肩膀上:https://blog.csdn.net/luoshengyang/article/details/51148299 网页绘图表面创建完成之后,调度器就会请求绘制CC Layer Tree,这样网页在加载完成之后就能快速显示出来。通过CC Layer Tree可以依次找到Graphics Layer Tree、Paint Layer Tree和Layout Object Tr...
chromium消息机制
愤怒的菜鸟
09-28 416
Chromium的线程模型和消息循环机制一直是其很有亮点也非常值得学习的一部分,关于这部分的工作原理网上有很多好文章,比如这篇、这篇还有这篇。但是这几篇文章基本是站在一定的高度上来概括其思想,而深入到代码里还有一些流程及细节问题,在此略做总结。 首先,在线程启动时基本会按以下流程来启动消息循环: #1base::MessagePumpLibevent::Run base/message_pum
多线程设计和实现
tornmy的博客
08-31 2692
站在老罗的肩膀上:https://blog.csdn.net/Luoshengyang/article/details/46855395 多线程模型则是为了解决网页的卡顿问题。为了达到这个目的,Chromium的多线程模型是基于异步通信的。 一个典型的异步通信过程如图1所示: 图1  线程异步通信过程        Task-1被分解成三个子任务Task-1(1)、Task-1(2)和...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值