gh-112075: Use relaxed stores for places where we may race with when reading lock-free #115786
Conversation
DinoV
force-pushed
the
nogil_dict_atomicassign
branch
from
0d9fef7
to
7b365a2
Compare
Objects/dictobject.c
Outdated
| #define STORE_KEY(ep, key) FT_ATOMIC_STORE_PTR_RELAXED(ep->me_key, key) | ||
| #define STORE_VALUE(ep, value) FT_ATOMIC_STORE_PTR_RELAXED(ep->me_value, value) | ||
| #define STORE_SPLIT_VALUE(mp, idx, value) FT_ATOMIC_STORE_PTR_RELAXED(mp->ma_values->values[idx], value) |
There was a problem hiding this comment.
I think we want "release", although I'm not 100% sure. It's possible that the synchronization from the incref is sufficient even with relaxes stores
There was a problem hiding this comment.
Maybe I've failed to capture exactly what you're concerned about, but I think the synchronization around keys and values provides what we need: https://gist.github.com/DinoV/fd83e80e5eb37ffa197dadd9791cca6e because reads to ma_keys and ma_values are fully sequential, and writes to them are done with release stores.
There was a problem hiding this comment.
My concern is that the initialization of the fields within key or value may not be fully visible. I think it's probably okay, but only because our mutex implementation uses stronger orderings than conventional locks.
For example, let's say value is a PyLongObject:
In pseudo-code:
PyLongObject *value = ...;
value->ob_digit = 123456; // (1) non-atomic store that I'm concerned about
...
Py_BEGIN_CRITICAL_SECTION(dict); // (2) lock dict
PyDictKeyEntry *entries = DK_ENTRIES(dict->ma_keys);
entries[...]->me_value = value; // (3) relaxed store
Py_END_CRITICAL_SECTION();
My concern was that (1) would be reordered past (3). I think it's okay because the mutexes used by critical sections use sequential consistency for both locking and unlocking, so (1) can't be reordered past (2). The "conventional" ordering is "acquire" for lock and "release" for unlock, which would not be sufficient.
There was a problem hiding this comment.
And I think we'll be forced to lock on both threads because _Py_TryXGetRef is going to fail on the value that's not yet shared across threads and we'll be forced into the locking code path.
There was a problem hiding this comment.
After thinking about this a bit more, I think (3) really needs to be at least "release".
First, contrary to what I wrote above, the mutex locking isn't sufficient because a seq-cst operation on a variable is weaker than a seq-cst fence -- it doesn't ensure that the write in (1) is visible in this case.
I don't think we can rely on the _Py_TryXGetRef failing either. The object might have a non-zero shared refcount for a number of reasons.
Here's a simplified model. If you change the relevant "memory_order_release" to "memory_order_relaxed" it will fail:
https://github.com/colesbury/c11-model-checker/blob/cpython-models/test/dict_value.c
DinoV
force-pushed
the
nogil_dict_atomicassign
branch
from
7b365a2
to
596ceb4
Compare
DinoV
force-pushed
the
nogil_dict_atomicassign
branch
from
8b4659f
to
7c8cd5a
Compare
… when reading lock-free (python#115786)
… when reading lock-free (python#115786)
… when reading lock-free (python#115786)
With lock-free reads and iterations we can read from some places w/o locks. This adds relaxed atomic stores to those places.
dictobjects thread-safe in--disable-gilbuilds #112075