mirrors/cpython
1
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2025-09-26 18:29:57 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 10

GH-118095: Make invalidating and clearing executors memory safe (GH-118459)

Browse source
This commit is contained in:
Mark Shannon 2024-05-01 11:34:50 +01:00 committed by GitHub
parent 21c09d9f81
commit f6fab21721
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
5 changed files with 103 additions and 42 deletions
Download patch file Download diff file Expand all files Collapse all files

3
Include/cpython/optimizer.h
View file

@ -24,6 +24,7 @@ typedef struct {
uint8_t opcode; uint8_t opcode;
uint8_t oparg; uint8_t oparg;
uint8_t valid; uint8_t valid;
uint8_t linked;
int index; // Index of ENTER_EXECUTOR (if code isn't NULL, below). int index; // Index of ENTER_EXECUTOR (if code isn't NULL, below).
_PyBloomFilter bloom; _PyBloomFilter bloom;
_PyExecutorLinkListNode links; _PyExecutorLinkListNode links;
@ -135,7 +136,7 @@ PyAPI_FUNC(_PyOptimizerObject *) PyUnstable_GetOptimizer(void);
PyAPI_FUNC(_PyExecutorObject *) PyUnstable_GetExecutor(PyCodeObject *code, int offset); PyAPI_FUNC(_PyExecutorObject *) PyUnstable_GetExecutor(PyCodeObject *code, int offset);
void _Py_ExecutorInit(_PyExecutorObject *, const _PyBloomFilter *); void _Py_ExecutorInit(_PyExecutorObject *, const _PyBloomFilter *);
void _Py_ExecutorClear(_PyExecutorObject *); void _Py_ExecutorDetach(_PyExecutorObject *);
void _Py_BloomFilter_Init(_PyBloomFilter *); void _Py_BloomFilter_Init(_PyBloomFilter *);
void _Py_BloomFilter_Add(_PyBloomFilter *bloom, void *obj); void _Py_BloomFilter_Add(_PyBloomFilter *bloom, void *obj);
PyAPI_FUNC(void) _Py_Executor_DependsOn(_PyExecutorObject *executor, void *obj); PyAPI_FUNC(void) _Py_Executor_DependsOn(_PyExecutorObject *executor, void *obj);

3
Objects/codeobject.c
View file

@ -1504,7 +1504,8 @@ clear_executors(PyCodeObject *co)
assert(co->co_executors); assert(co->co_executors);
for (int i = 0; i < co->co_executors->size; i++) { for (int i = 0; i < co->co_executors->size; i++) {
if (co->co_executors->executors[i]) { if (co->co_executors->executors[i]) {
_Py_ExecutorClear(co->co_executors->executors[i]); _Py_ExecutorDetach(co->co_executors->executors[i]);
assert(co->co_executors->executors[i] == NULL);
} }
} }
PyMem_Free(co->co_executors); PyMem_Free(co->co_executors);

12
Python/bytecodes.c
View file

@ -163,9 +163,15 @@ dummy_func(
if ((oparg & RESUME_OPARG_LOCATION_MASK) < RESUME_AFTER_YIELD_FROM) { if ((oparg & RESUME_OPARG_LOCATION_MASK) < RESUME_AFTER_YIELD_FROM) {
CHECK_EVAL_BREAKER(); CHECK_EVAL_BREAKER();
} }
#if ENABLE_SPECIALIZATION assert(this_instr->op.code == RESUME ||
FT_ATOMIC_STORE_UINT8_RELAXED(this_instr->op.code, RESUME_CHECK); this_instr->op.code == RESUME_CHECK ||
#endif /* ENABLE_SPECIALIZATION */ this_instr->op.code == INSTRUMENTED_RESUME ||
this_instr->op.code == ENTER_EXECUTOR);
if (this_instr->op.code == RESUME) {
#if ENABLE_SPECIALIZATION
FT_ATOMIC_STORE_UINT8_RELAXED(this_instr->op.code, RESUME_CHECK);
#endif /* ENABLE_SPECIALIZATION */
}
} }
} }

12
Python/generated_cases.c.h generated
View file

@ -4961,9 +4961,15 @@
if ((oparg & RESUME_OPARG_LOCATION_MASK) < RESUME_AFTER_YIELD_FROM) { if ((oparg & RESUME_OPARG_LOCATION_MASK) < RESUME_AFTER_YIELD_FROM) {
CHECK_EVAL_BREAKER(); CHECK_EVAL_BREAKER();
} }
#if ENABLE_SPECIALIZATION assert(this_instr->op.code == RESUME ||
FT_ATOMIC_STORE_UINT8_RELAXED(this_instr->op.code, RESUME_CHECK); this_instr->op.code == RESUME_CHECK ||
#endif /* ENABLE_SPECIALIZATION */ this_instr->op.code == INSTRUMENTED_RESUME ||
this_instr->op.code == ENTER_EXECUTOR);
if (this_instr->op.code == RESUME) {
#if ENABLE_SPECIALIZATION
FT_ATOMIC_STORE_UINT8_RELAXED(this_instr->op.code, RESUME_CHECK);
#endif /* ENABLE_SPECIALIZATION */
}
} }
DISPATCH(); DISPATCH();
} }

115
Python/optimizer.c
View file

@ -75,7 +75,7 @@ insert_executor(PyCodeObject *code, _Py_CODEUNIT *instr, int index, _PyExecutorO
Py_INCREF(executor); Py_INCREF(executor);
if (instr->op.code == ENTER_EXECUTOR) { if (instr->op.code == ENTER_EXECUTOR) {
assert(index == instr->op.arg); assert(index == instr->op.arg);
_Py_ExecutorClear(code->co_executors->executors[index]); _Py_ExecutorDetach(code->co_executors->executors[index]);
} }
else { else {
assert(code->co_executors->size == index); assert(code->co_executors->size == index);
@ -270,10 +270,14 @@ static PyMethodDef executor_methods[] = {
///////////////////// Experimental UOp Optimizer ///////////////////// ///////////////////// Experimental UOp Optimizer /////////////////////
static int executor_clear(_PyExecutorObject *executor);
static void unlink_executor(_PyExecutorObject *executor);
static void static void
uop_dealloc(_PyExecutorObject *self) { uop_dealloc(_PyExecutorObject *self) {
_PyObject_GC_UNTRACK(self); _PyObject_GC_UNTRACK(self);
_Py_ExecutorClear(self); assert(self->vm_data.code == NULL);
unlink_executor(self);
#ifdef _Py_JIT #ifdef _Py_JIT
_PyJIT_Free(self); _PyJIT_Free(self);
#endif #endif
@ -379,13 +383,6 @@ PySequenceMethods uop_as_sequence = {
.sq_item = (ssizeargfunc)uop_item, .sq_item = (ssizeargfunc)uop_item,
}; };
static int
executor_clear(PyObject *o)
{
_Py_ExecutorClear((_PyExecutorObject *)o);
return 0;
}
static int static int
executor_traverse(PyObject *o, visitproc visit, void *arg) executor_traverse(PyObject *o, visitproc visit, void *arg)
{ {
@ -412,7 +409,7 @@ PyTypeObject _PyUOpExecutor_Type = {
.tp_as_sequence = &uop_as_sequence, .tp_as_sequence = &uop_as_sequence,
.tp_methods = executor_methods, .tp_methods = executor_methods,
.tp_traverse = executor_traverse, .tp_traverse = executor_traverse,
.tp_clear = executor_clear, .tp_clear = (inquiry)executor_clear,
.tp_is_gc = executor_is_gc, .tp_is_gc = executor_is_gc,
}; };
@ -1190,6 +1187,7 @@ init_cold_exit_executor(_PyExecutorObject *executor, int oparg)
inst->opcode = _COLD_EXIT; inst->opcode = _COLD_EXIT;
inst->oparg = oparg; inst->oparg = oparg;
executor->vm_data.valid = true; executor->vm_data.valid = true;
executor->vm_data.linked = false;
for (int i = 0; i < BLOOM_FILTER_WORDS; i++) { for (int i = 0; i < BLOOM_FILTER_WORDS; i++) {
assert(executor->vm_data.bloom.bits[i] == 0); assert(executor->vm_data.bloom.bits[i] == 0);
} }
@ -1328,7 +1326,7 @@ PyTypeObject _PyCounterExecutor_Type = {
.tp_dealloc = (destructor)counter_dealloc, .tp_dealloc = (destructor)counter_dealloc,
.tp_methods = executor_methods, .tp_methods = executor_methods,
.tp_traverse = executor_traverse, .tp_traverse = executor_traverse,
.tp_clear = executor_clear, .tp_clear = (inquiry)executor_clear,
}; };
static int static int
@ -1503,15 +1501,13 @@ link_executor(_PyExecutorObject *executor)
links->next = NULL; links->next = NULL;
} }
else { else {
_PyExecutorObject *next = head->vm_data.links.next; assert(head->vm_data.links.previous == NULL);
links->previous = head; links->previous = NULL;
links->next = next; links->next = head;
if (next != NULL) { head->vm_data.links.previous = executor;
next->vm_data.links.previous = executor; interp->executor_list_head = executor;
}
head->vm_data.links.next = executor;
} }
executor->vm_data.valid = true; executor->vm_data.linked = true;
/* executor_list_head must be first in list */ /* executor_list_head must be first in list */
assert(interp->executor_list_head->vm_data.links.previous == NULL); assert(interp->executor_list_head->vm_data.links.previous == NULL);
} }
@ -1519,7 +1515,11 @@ link_executor(_PyExecutorObject *executor)
static void static void
unlink_executor(_PyExecutorObject *executor) unlink_executor(_PyExecutorObject *executor)
{ {
if (!executor->vm_data.linked) {
return;
}
_PyExecutorLinkListNode *links = &executor->vm_data.links; _PyExecutorLinkListNode *links = &executor->vm_data.links;
assert(executor->vm_data.valid);
_PyExecutorObject *next = links->next; _PyExecutorObject *next = links->next;
_PyExecutorObject *prev = links->previous; _PyExecutorObject *prev = links->previous;
if (next != NULL) { if (next != NULL) {
@ -1534,7 +1534,7 @@ unlink_executor(_PyExecutorObject *executor)
assert(interp->executor_list_head == executor); assert(interp->executor_list_head == executor);
interp->executor_list_head = next; interp->executor_list_head = next;
} }
executor->vm_data.valid = false; executor->vm_data.linked = false;
} }
/* This must be called by optimizers before using the executor */ /* This must be called by optimizers before using the executor */
@ -1548,23 +1548,15 @@ _Py_ExecutorInit(_PyExecutorObject *executor, const _PyBloomFilter *dependency_s
link_executor(executor); link_executor(executor);
} }
/* This must be called by executors during dealloc */ /* Detaches the executor from the code object (if any) that
* holds a reference to it */
void void
_Py_ExecutorClear(_PyExecutorObject *executor) _Py_ExecutorDetach(_PyExecutorObject *executor)
{ {
if (!executor->vm_data.valid) {
return;
}
unlink_executor(executor);
PyCodeObject *code = executor->vm_data.code; PyCodeObject *code = executor->vm_data.code;
if (code == NULL) { if (code == NULL) {
return; return;
} }
for (uint32_t i = 0; i < executor->exit_count; i++) {
Py_DECREF(executor->exits[i].executor);
executor->exits[i].executor = &COLD_EXITS[i];
executor->exits[i].temperature = initial_unreachable_backoff_counter();
}
_Py_CODEUNIT *instruction = &_PyCode_CODE(code)[executor->vm_data.index]; _Py_CODEUNIT *instruction = &_PyCode_CODE(code)[executor->vm_data.index];
assert(instruction->op.code == ENTER_EXECUTOR); assert(instruction->op.code == ENTER_EXECUTOR);
int index = instruction->op.arg; int index = instruction->op.arg;
@ -1572,7 +1564,36 @@ _Py_ExecutorClear(_PyExecutorObject *executor)
instruction->op.code = executor->vm_data.opcode; instruction->op.code = executor->vm_data.opcode;
instruction->op.arg = executor->vm_data.oparg; instruction->op.arg = executor->vm_data.oparg;
executor->vm_data.code = NULL; executor->vm_data.code = NULL;
Py_CLEAR(code->co_executors->executors[index]); code->co_executors->executors[index] = NULL;
Py_DECREF(executor);
}
static int
executor_clear(_PyExecutorObject *executor)
{
if (!executor->vm_data.valid) {
return 0;
}
assert(executor->vm_data.valid == 1);
unlink_executor(executor);
executor->vm_data.valid = 0;
/* It is possible for an executor to form a reference
* cycle with itself, so decref'ing a side exit could
* free the executor unless we hold a strong reference to it
*/
Py_INCREF(executor);
for (uint32_t i = 0; i < executor->exit_count; i++) {
const _PyExecutorObject *cold = &COLD_EXITS[i];
const _PyExecutorObject *side = executor->exits[i].executor;
executor->exits[i].temperature = initial_unreachable_backoff_counter();
if (side != cold) {
executor->exits[i].executor = cold;
Py_DECREF(side);
}
}
_Py_ExecutorDetach(executor);
Py_DECREF(executor);
return 0;
} }
void void
@ -1593,17 +1614,42 @@ _Py_Executors_InvalidateDependency(PyInterpreterState *interp, void *obj, int is
_Py_BloomFilter_Add(&obj_filter, obj); _Py_BloomFilter_Add(&obj_filter, obj);
/* Walk the list of executors */ /* Walk the list of executors */
/* TO DO -- Use a tree to avoid traversing as many objects */ /* TO DO -- Use a tree to avoid traversing as many objects */
bool no_memory = false;
PyObject *invalidate = PyList_New(0);
if (invalidate == NULL) {
PyErr_Clear();
no_memory = true;
}
/* Clearing an executor can deallocate others, so we need to make a list of
* executors to invalidate first */
for (_PyExecutorObject *exec = interp->executor_list_head; exec != NULL;) { for (_PyExecutorObject *exec = interp->executor_list_head; exec != NULL;) {
assert(exec->vm_data.valid); assert(exec->vm_data.valid);
_PyExecutorObject *next = exec->vm_data.links.next; _PyExecutorObject *next = exec->vm_data.links.next;
if (bloom_filter_may_contain(&exec->vm_data.bloom, &obj_filter)) { if (bloom_filter_may_contain(&exec->vm_data.bloom, &obj_filter)) {
_Py_ExecutorClear(exec); unlink_executor(exec);
if (no_memory) {
exec->vm_data.valid = 0;
} else {
if (PyList_Append(invalidate, (PyObject *)exec) < 0) {
PyErr_Clear();
no_memory = true;
exec->vm_data.valid = 0;
}
}
if (is_invalidation) { if (is_invalidation) {
OPT_STAT_INC(executors_invalidated); OPT_STAT_INC(executors_invalidated);
} }
} }
exec = next; exec = next;
} }
if (invalidate != NULL) {
for (Py_ssize_t i = 0; i < PyList_GET_SIZE(invalidate); i++) {
_PyExecutorObject *exec = (_PyExecutorObject *)PyList_GET_ITEM(invalidate, i);
executor_clear(exec);
}
Py_DECREF(invalidate);
}
return;
} }
/* Invalidate all executors */ /* Invalidate all executors */
@ -1612,12 +1658,13 @@ _Py_Executors_InvalidateAll(PyInterpreterState *interp, int is_invalidation)
{ {
while (interp->executor_list_head) { while (interp->executor_list_head) {
_PyExecutorObject *executor = interp->executor_list_head; _PyExecutorObject *executor = interp->executor_list_head;
assert(executor->vm_data.valid == 1 && executor->vm_data.linked == 1);
if (executor->vm_data.code) { if (executor->vm_data.code) {
// Clear the entire code object so its co_executors array be freed: // Clear the entire code object so its co_executors array be freed:
_PyCode_Clear_Executors(executor->vm_data.code); _PyCode_Clear_Executors(executor->vm_data.code);
} }
else { else {
_Py_ExecutorClear(executor); executor_clear(executor);
} }
if (is_invalidation) { if (is_invalidation) {
OPT_STAT_INC(executors_invalidated); OPT_STAT_INC(executors_invalidated);