Prevent deadlock if sender/receiver is forgotten #49
Conversation
|
Here are the results of the only benchmark that showed significant enough differences. This benchmark is a beast so I can't really share it easily (I made it for my own purposes), but in a nutshell this is a "funnel" benchmark where each receiver is connected to 13 senders which each send a very small payload (a Number of messages per microsecond as a function of channel capacity before the commit (higher is better): The same after the commit: So it's a mixed bag really, and overall one could even claim that the performance is better after, but in my opinion "funnel-type" benchmarks are a bit artificial anyway (it's unusual to have both a very fast receiver and very fast senders) so I would not put too much weight on these results. |
|
I hit the bug that this fixes. It drove me nuts for days and was tough to find. Please merge this! |
tests/bounded.rs
Outdated
|
|
||
| fn ms(ms: u64) -> Duration { | ||
| Duration::from_millis(ms) | ||
| } | ||
|
|
||
| fn poll_now<F: Future + Unpin>(f: &mut F) -> Poll<F::Output> { |
There was a problem hiding this comment.
You could probably just use poll_once from futures_lite here.
There was a problem hiding this comment.
You are right, I discarded this solution because the future must be kept alive so can't be consumed, it didn't come to my mind that passing a mutable ref would work just as well since it implement Future too...
| @@ -966,14 +965,7 @@ impl<'a, T> Send<'a, T> { | |||
| let msg = self.msg.take().unwrap(); | |||
| // Attempt to send a message. | |||
| match self.sender.try_send(msg) { | |||
| Ok(()) => { | |||
There was a problem hiding this comment.
Why did you get rid of this one?
There was a problem hiding this comment.
Hmm, not totally sure what your question is about.
The same thing is done for the Recv future, and this is because the original mechanism was meant to implement a "slow" notification chain to limit the number of simultaneous in-flight notifications. So only one notification was sent at a time, but this made it necessary to unconditionally send another notification, whether this notification was needed or not.
This is no longer necessary since now all notifications are sent, whether or not one is already in-flight.
Note that PR #16 did the exact same thing and the original author seemed to agree it was correct. And all tests pass, which is another indicator that it should be OK :-)
I was getting burned by this issue, hanging the scraper: smol-rs/async-channel#49
|
@sbarral Do you have any other benchmarks, e.g. basic SPSC or MPSC? I'd like to make sure this PR doesn't regress the common case before I merge it. |
The "funnel" benchmark mentioned above is what I would think of as the archetypical MPSC benchmark, and is indeed the one that shows that there is some trade-off. Truth be told, I didn't really expect any difference in the SPSC case since in that case there can be only one registered listener on either side (1 sender/1 receiver). But just to be sure, I changed the parameters of the "funnel" benchmark to have just one sender, making it effectively an SPSC. So this tests spawns 61 sender/receiver pairs on tokio and measures the throughput. Number of messages per microsecond as a function of channel capacity on v1.7.1, before the commit (higher is better): The same after the commit: So that's a nice surprise... My best guess is that this comes from the deletion of the additional notification which you inquired about. In the SPSC case this extra notification is never needed, but even when there is no interested listener it introduces a full fence (see here). This would explain why there is no difference for |
|
I don't see any reason not to merge this, thanks! |
|
While there is still time to revert this commit, I wanted to highlight a caveat which I initially missed so that the decision to proceed with this PR (or not) is fully informed. While I continue to believe that this PR fixes a real flaw, I realize now that the current behaviour was superior in one aspect: it warranted strict fairness (edit: not totally true, see below) by making sure that senders and receivers were unblocked in the same order they were blocked. After this PR, they are still notified in fair order, but nothing guarantees that they will get scheduled fairly. Unfortunately this strict fairness was also the direct cause of issue #45. A nice idea is tokio's MPSC strategy, which I only became aware of recently. It sends all notifications right away like in this PR and does not strictly ensure fairness, but it will only let a sender push a value if this leaves enough free slots for senders that were notified earlier but not yet scheduled. This prevents deadlocks like in issue #45 and still provides fairness for all practical purposes. Now I don't really see a way to implement tokio's strategy with the current architecture, so in practice we will probably have to choose between accepting easy deadlocks or resigning from strict fairness. Edit: worth noting, however, that the behaviour before this PR was not actually strictly fair either: it would still let a non-notified sender/receiver steal a slot from a notified sender/receiver. |
Fixes #45.
This is mostly similar to PR #16 by another author, but its motivation is correctness rather than the purported performance advantage. Differences with PR #16:
I have made some benchmarking in various scenarios and did not observe a meaningful difference in terms of performance.
That being said, we can't exclude that performance could be degraded in extreme cases. In theory degraded performance could happen with a very large number of fast senders combined with a fast receiver loop: a receiver which rapidly empties the channel would generate many notifications but if the first sender consume all the capacity before the remaining senders are polled, most notifications would be wasted. A symmetric situation could occur with many receivers and a fast sender loop.