Merge pull request #1004 from kngwyu/tls-destructed
Ensure GILPool don't panic even after thread_locals are destructed
This commit is contained in:
Yuji Kanagawa
GitHub
commit
bb782d7f83
107
src/gil.rs
107
src/gil.rs
|
|
@ -9,6 +9,26 @@ use std::{any, mem::ManuallyDrop, ptr::NonNull, sync};
|
||||||
|
|
||||||
static START: sync::Once = sync::Once::new();
|
static START: sync::Once = sync::Once::new();
|
||||||
|
|
||||||
|
/// Holds temporally owned objects.
|
||||||
|
struct ObjectHolder {
|
||||||
|
/// Objects owned by the current thread
|
||||||
|
obj: Vec<NonNull<ffi::PyObject>>,
|
||||||
|
/// Non-python objects(e.g., String) owned by the current thread
|
||||||
|
any: Vec<Box<dyn any::Any>>,
|
||||||
|
}
|
||||||
|
|
||||||
|
impl ObjectHolder {
|
||||||
|
fn new() -> Self {
|
||||||
|
Self {
|
||||||
|
obj: Vec::with_capacity(256),
|
||||||
|
any: Vec::with_capacity(4),
|
||||||
|
}
|
||||||
|
}
|
||||||
|
fn len(&self) -> (usize, usize) {
|
||||||
|
(self.obj.len(), self.any.len())
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
thread_local! {
|
thread_local! {
|
||||||
/// This is a internal counter in pyo3 monitoring whether this thread has the GIL.
|
/// This is a internal counter in pyo3 monitoring whether this thread has the GIL.
|
||||||
///
|
///
|
||||||
|
|
@ -20,12 +40,8 @@ thread_local! {
|
||||||
/// pub(crate) because it is manipulated temporarily by Python::allow_threads
|
/// pub(crate) because it is manipulated temporarily by Python::allow_threads
|
||||||
pub(crate) static GIL_COUNT: Cell<u32> = Cell::new(0);
|
pub(crate) static GIL_COUNT: Cell<u32> = Cell::new(0);
|
||||||
|
|
||||||
/// These are objects owned by the current thread, to be released when the GILPool drops.
|
/// Temporally hold objects that will be released when the GILPool drops.
|
||||||
static OWNED_OBJECTS: RefCell<Vec<NonNull<ffi::PyObject>>> = RefCell::new(Vec::with_capacity(256));
|
static OWNED_OBJECTS: RefCell<ObjectHolder> = RefCell::new(ObjectHolder::new());
|
||||||
|
|
||||||
/// These are non-python objects such as (String) owned by the current thread, to be released
|
|
||||||
/// when the GILPool drops.
|
|
||||||
static OWNED_ANYS: RefCell<Vec<Box<dyn any::Any>>> = RefCell::new(Vec::with_capacity(256));
|
|
||||||
}
|
}
|
||||||
|
|
||||||
/// Check whether the GIL is acquired.
|
/// Check whether the GIL is acquired.
|
||||||
|
|
@ -87,6 +103,14 @@ pub fn prepare_freethreaded_python() {
|
||||||
ffi::Py_InitializeEx(0);
|
ffi::Py_InitializeEx(0);
|
||||||
|
|
||||||
// Make sure Py_Finalize will be called before exiting.
|
// Make sure Py_Finalize will be called before exiting.
|
||||||
|
extern "C" fn finalize() {
|
||||||
|
unsafe {
|
||||||
|
if ffi::Py_IsInitialized() != 0 {
|
||||||
|
ffi::PyGILState_Ensure();
|
||||||
|
ffi::Py_Finalize();
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
libc::atexit(finalize);
|
libc::atexit(finalize);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -226,9 +250,9 @@ static POOL: ReferencePool = ReferencePool::new();
|
||||||
|
|
||||||
/// A RAII pool which PyO3 uses to store owned Python references.
|
/// A RAII pool which PyO3 uses to store owned Python references.
|
||||||
pub struct GILPool {
|
pub struct GILPool {
|
||||||
owned_objects_start: usize,
|
/// Initial length of owned objects and anys.
|
||||||
owned_anys_start: usize,
|
/// `Option` is used since TSL can be broken when `new` is called from `atexit`.
|
||||||
// Stable solution for impl !Send
|
start: Option<(usize, usize)>,
|
||||||
no_send: Unsendable,
|
no_send: Unsendable,
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -246,8 +270,7 @@ impl GILPool {
|
||||||
// Update counts of PyObjects / Py that have been cloned or dropped since last acquisition
|
// Update counts of PyObjects / Py that have been cloned or dropped since last acquisition
|
||||||
POOL.update_counts(Python::assume_gil_acquired());
|
POOL.update_counts(Python::assume_gil_acquired());
|
||||||
GILPool {
|
GILPool {
|
||||||
owned_objects_start: OWNED_OBJECTS.with(|o| o.borrow().len()),
|
start: OWNED_OBJECTS.try_with(|o| o.borrow().len()).ok(),
|
||||||
owned_anys_start: OWNED_ANYS.with(|o| o.borrow().len()),
|
|
||||||
no_send: Unsendable::default(),
|
no_send: Unsendable::default(),
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
@ -261,22 +284,22 @@ impl GILPool {
|
||||||
impl Drop for GILPool {
|
impl Drop for GILPool {
|
||||||
fn drop(&mut self) {
|
fn drop(&mut self) {
|
||||||
unsafe {
|
unsafe {
|
||||||
OWNED_OBJECTS.with(|owned_objects| {
|
if let Some((obj_len_start, any_len_start)) = self.start {
|
||||||
// Note: inside this closure we must be careful to not hold a borrow too long, because
|
let dropping_obj = OWNED_OBJECTS.with(|holder| {
|
||||||
// while calling Py_DECREF we may cause other callbacks to run which will need to
|
// `holder` must be dropped before calling Py_DECREF, or Py_DECREF may call
|
||||||
// register objects into the GILPool.
|
// `GILPool::drop` recursively, resulting in invalid borrowing.
|
||||||
let len = owned_objects.borrow().len();
|
let mut holder = holder.borrow_mut();
|
||||||
if self.owned_objects_start < len {
|
holder.any.truncate(any_len_start);
|
||||||
let rest = owned_objects
|
if obj_len_start < holder.obj.len() {
|
||||||
.borrow_mut()
|
holder.obj.split_off(obj_len_start)
|
||||||
.split_off(self.owned_objects_start);
|
} else {
|
||||||
for obj in rest {
|
Vec::new()
|
||||||
ffi::Py_DECREF(obj.as_ptr());
|
|
||||||
}
|
}
|
||||||
|
});
|
||||||
|
for obj in dropping_obj {
|
||||||
|
ffi::Py_DECREF(obj.as_ptr());
|
||||||
}
|
}
|
||||||
});
|
}
|
||||||
|
|
||||||
OWNED_ANYS.with(|owned_anys| owned_anys.borrow_mut().truncate(self.owned_anys_start));
|
|
||||||
}
|
}
|
||||||
decrement_gil_count();
|
decrement_gil_count();
|
||||||
}
|
}
|
||||||
|
|
@ -320,7 +343,8 @@ pub unsafe fn register_decref(obj: NonNull<ffi::PyObject>) {
|
||||||
/// The object must be an owned Python reference.
|
/// The object must be an owned Python reference.
|
||||||
pub unsafe fn register_owned(_py: Python, obj: NonNull<ffi::PyObject>) {
|
pub unsafe fn register_owned(_py: Python, obj: NonNull<ffi::PyObject>) {
|
||||||
debug_assert!(gil_is_acquired());
|
debug_assert!(gil_is_acquired());
|
||||||
OWNED_OBJECTS.with(|objs| objs.borrow_mut().push(obj));
|
// Ignoring the error means we do nothing if the TLS is broken.
|
||||||
|
let _ = OWNED_OBJECTS.try_with(|holder| holder.borrow_mut().obj.push(obj));
|
||||||
}
|
}
|
||||||
|
|
||||||
/// Register any value inside the GILPool.
|
/// Register any value inside the GILPool.
|
||||||
|
|
@ -330,44 +354,33 @@ pub unsafe fn register_owned(_py: Python, obj: NonNull<ffi::PyObject>) {
|
||||||
/// the Rust compiler to outlast the current GILPool.
|
/// the Rust compiler to outlast the current GILPool.
|
||||||
pub unsafe fn register_any<'p, T: 'static>(obj: T) -> &'p T {
|
pub unsafe fn register_any<'p, T: 'static>(obj: T) -> &'p T {
|
||||||
debug_assert!(gil_is_acquired());
|
debug_assert!(gil_is_acquired());
|
||||||
OWNED_ANYS.with(|owned_anys| {
|
OWNED_OBJECTS.with(|holder| {
|
||||||
let boxed = Box::new(obj);
|
let boxed = Box::new(obj);
|
||||||
let value_ref: &T = &*boxed;
|
let value_ref: *const T = &*boxed;
|
||||||
|
holder.borrow_mut().any.push(boxed);
|
||||||
// Sneaky - extend the lifetime of the reference so that the box can be moved
|
&*value_ref
|
||||||
let value_ref_extended_lifetime = std::mem::transmute(value_ref);
|
|
||||||
|
|
||||||
owned_anys.borrow_mut().push(boxed);
|
|
||||||
value_ref_extended_lifetime
|
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
/// Increment pyo3's internal GIL count - to be called whenever GILPool or GILGuard is created.
|
/// Increment pyo3's internal GIL count - to be called whenever GILPool or GILGuard is created.
|
||||||
|
// Ignores the error in case this function called from `atexit`.
|
||||||
#[inline(always)]
|
#[inline(always)]
|
||||||
fn increment_gil_count() {
|
fn increment_gil_count() {
|
||||||
GIL_COUNT.with(|c| c.set(c.get() + 1))
|
let _ = GIL_COUNT.with(|c| c.set(c.get() + 1));
|
||||||
}
|
}
|
||||||
|
|
||||||
/// Decrement pyo3's internal GIL count - to be called whenever GILPool or GILGuard is dropped.
|
/// Decrement pyo3's internal GIL count - to be called whenever GILPool or GILGuard is dropped.
|
||||||
|
// Ignores the error in case this function called from `atexit`.
|
||||||
#[inline(always)]
|
#[inline(always)]
|
||||||
fn decrement_gil_count() {
|
fn decrement_gil_count() {
|
||||||
GIL_COUNT.with(|c| {
|
let _ = GIL_COUNT.try_with(|c| {
|
||||||
let current = c.get();
|
let current = c.get();
|
||||||
debug_assert!(
|
debug_assert!(
|
||||||
current > 0,
|
current > 0,
|
||||||
"Negative GIL count detected. Please report this error to the PyO3 repo as a bug."
|
"Negative GIL count detected. Please report this error to the PyO3 repo as a bug."
|
||||||
);
|
);
|
||||||
c.set(current - 1);
|
c.set(current - 1);
|
||||||
})
|
});
|
||||||
}
|
|
||||||
|
|
||||||
extern "C" fn finalize() {
|
|
||||||
unsafe {
|
|
||||||
if ffi::Py_IsInitialized() != 0 {
|
|
||||||
ffi::PyGILState_Ensure();
|
|
||||||
ffi::Py_Finalize();
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
|
|
||||||
/// Ensure the GIL is held, useful in implementation of APIs like PyErr::new where it's
|
/// Ensure the GIL is held, useful in implementation of APIs like PyErr::new where it's
|
||||||
|
|
@ -418,7 +431,7 @@ mod test {
|
||||||
}
|
}
|
||||||
|
|
||||||
fn owned_object_count() -> usize {
|
fn owned_object_count() -> usize {
|
||||||
OWNED_OBJECTS.with(|objs| objs.borrow().len())
|
OWNED_OBJECTS.with(|holder| holder.borrow().obj.len())
|
||||||
}
|
}
|
||||||
|
|
||||||
#[test]
|
#[test]
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue