-
Notifications
You must be signed in to change notification settings - Fork 7.9k
Make FFI callbacks thread safe #12823
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Conversation
... one add zend_ffi_wait_request_barrier helper function add callback_in_progress flag
I'd like to see a simple test for this, passing the callback to pthread_create() (called via FFI) and having code executed on that other thread, possibly with a small sleep in the callback, showing that it's indeed blocking the main thread.
Hmm an issue i just noticed is that, if i want to use platform-independent mutexes, i cannot use tsrm_mutex_lock (because it's available only #if ZTS).
Is there an alternative?
Few existing FFI tests are failed.
I'd like to see a simple test for this, passing the callback to pthread_create() (called via FFI) and having code executed on that other thread, possibly with a small sleep in the callback, showing that it's indeed blocking the main thread.
The way I implemented this, it's the other way around.
The callback thread posts an interrupt request to the main thread and then goes to sleep, waiting for the callback to be serviced within the interrupt handler (within the main thread).
This means that putting a long sleep after the threads creation, such as sleep(1), will delay the execution of the callback (until the sleep ends).
Is it preferrable to have the callback serviced by the requesting thread? I guess we could do it by having the interrupt handler stall, signal the FFI thread, and wait until it finishes... but is there an advantage in doing this?
add sync barrier on gshutdown too
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I don't think this should be merged.
Transferring execution of all callbacks to main thread can't be safe and will definitely lead to more problems, deadlocks, Thread Local Storage mess, global context pollution, etc...
Often this just doesn't make any sense by design. E.g. callback_threads.phpt starts threads, but executes their code in context of main thread.
It's better to just disable calls to FFI callbacks in context of non-main threads.
The callback_threads.phpt test case is a non typical example, just to simulate the scenario.
In real world cases, you might have a callback that is triggered by numerous (native) worker threads.
This is comparable to a Windows Forms application, where a thread wants to interact with the GUI and needs to do so from the UI Thread.
Here, instead of having a UI thread, we have the PHP interpreter thread and other threads that trigger the callback.
Sometimes you just cannot avoid this due to the design of the system where PHP is used. You might get concurrent events, triggering the issue.
The idea is that, instead of crashing, we can just queue the invocation events and execute them one at a time.
This PR doesn't implement such FIFO scheduling yet. It manages concurrent invocations by stalling the other worker threads until the current callback has been executed.
The alternative would be to manage this in the native code, but it would require wrapping all PHP callbacks in a native trampoline to manage the mutex locking/unlocking. This requires an extra (native) layers for the PHP code that wants to declare a callback and would make the callers more complicated.
In essence, I am not aiming to enable multiple PHP threads.
The goal is to acquire the existing PHP thread/context from other threads and synchronize concurrent accesses.
What I could do is reverse the flow, to have the callback thread run the callback instead.
I modified the logic so that the interrupt handler now notifies the thread that invoked the callback, and goes to sleep.
the thread executes the callback and then unlocks the interrupt handler
(削除) EDIT: i forgot to mention that i had to disable ZEND_CHECK_STACK_LIMIT, due to the stack tracking code assuming it's always within the same thread. I'll look into fixing this too (削除ここまで)
It's now fixed
this was caused by the use of 2 separate mutexes
ext/ffi/php_ffi.h
Outdated
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Windows build is broken. There are no <pthread.h> there.
ext/ffi/ffi.c
Outdated
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You should check if this is FFI related interrupt. This may be a POSIX signal or something else...
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This may a regular in-main-thread callback, that doesn't require any locks.
You should check FFI_G(callback_tid) == FFI_G(main_tid) first.
Ideally, we should make distinct between regular and "thread" callback
$libc->pthread_create( FFI::addr($tid), NULL, FFI::thread_callback($thread_func), FFI::addr($arg) );
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This looks like a cooperative scheduler implemented on top of VM interrupts + pthread synchronisation for serialization of execution of callbacks in a single thread.
Is it possible to implement these ideas separately from FFI, provide some API, and extend FFI with new functionality using that API? This way we should achieve a better designed solution. I the current state, this looks like a hack that misses many things (e.g. exceptions and errors).
May be you should wrap "serialized" callbacks with fibers and then schedule fibers?
This looks like a cooperative scheduler implemented on top of VM interrupts + pthread synchronisation for serialization of execution of callbacks in a single thread.
Is it possible to implement these ideas separately from FFI, provide some API, and extend FFI with new functionality using that API? This way we should achieve a better designed solution. I the current state, this looks like a hack that misses many things (e.g. exceptions and errors).
May be you should wrap "serialized" callbacks with fibers and then schedule fibers?
I made some changes to start using fibers, and some generalization to move to TSRM APIs (which would fix Windows compatibility, but it hasn't been tested yet).
I also rebased it to master.
But before moving on, do you think the current approach is sound, or could it be done in a better way?
I'm not too familiar with the fiber APIs in PHP, so I'm not sure if this is the best way.
Thanks
EDIT: this actually won't work with nested callbacks.
The following will cause a deadlock:
<?php $lib = FFI::cdef(' typedef void (*cb_t)(void); void set_callback1(cb_t cb); void set_callback2(cb_t cb); void run_callback1(); void run_callback2(); ', './lib.so'); $lib->set_callback1(function(){ print("cb1\n"); }); $lib->set_callback2(function() use($lib){ $lib->run_callback1(); print("cb2\n"); }); $lib->run_callback2();
...ad of zend_fiber_resume) remove redundant if check in callback check the result of zend_fiber_init_context
bug79177 no longer applies
Uh oh!
There was an error while loading. Please reload this page.
Makes FFI callbacks work, regardless of the thread they are invoked from
Fixes #9214
$REVIEW, before merging: is there any additional handling that needs to be done for ZTS?