Skip to content

gh-123321: Fix Parser/myreadline.c to prevent a segfault during a multi-threaded race #123323

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 19 commits into from
Sep 4, 2024
Merged

gh-123321: Fix Parser/myreadline.c to prevent a segfault during a multi-threaded race #123323

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
360637f
patch
bharel Aug 25, 2024
8f16d5a
whitespace
bharel Aug 25, 2024
1f5c558
hmmm pdb doctests don't run
bharel Aug 25, 2024
8a8c355
for some reason the doctests don't run locally
bharel Aug 25, 2024
ed58ecb
doctest fix
bharel Aug 25, 2024
db92111
mmm
bharel Aug 25, 2024
b991cd6
this will probably work.
bharel Aug 25, 2024
26ad6bc
typo
bharel Aug 25, 2024
03243d0
ugh
bharel Aug 25, 2024
6b0b820
small check for free-threaded build
bharel Aug 28, 2024
40efaac
Reverting to previous solution as the free-threaded build fix deadloc…
bharel Aug 30, 2024
fc40da3
lint
bharel Aug 30, 2024
bebc580
remove pdb tests
bharel Aug 30, 2024
934e21f
Merge branch 'main' into gh-123321
bharel Aug 30, 2024
0379488
Add requires gil enabled tag
bharel Aug 30, 2024
fd2929c
CR fixes.
bharel Aug 30, 2024
93dd023
.
bharel Aug 30, 2024
c083eba
Merge branch 'main' into gh-123321
bharel Sep 1, 2024
cf1b274
Merge branch 'main' into gh-123321
bharel Sep 3, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
28 changes: 27 additions & 1 deletion Lib/test/test_readline.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,11 +7,12 @@
import tempfile
import textwrap
import unittest
from test.support import verbose
from test.support import requires_gil_enabled, verbose
from test.support.import_helper import import_module
from test.support.os_helper import unlink, temp_dir, TESTFN
from test.support.pty_helper import run_pty
from test.support.script_helper import assert_python_ok
from test.support.threading_helper import requires_working_threading

# Skip tests if there is no readline module
readline = import_module('readline')
Expand Down Expand Up @@ -349,6 +350,31 @@ def test_history_size(self):
self.assertEqual(len(lines), history_size)
self.assertEqual(lines[-1].strip(), b"last input")

@requires_working_threading()
@requires_gil_enabled()
def test_gh123321_threadsafe(self):
"""gh-123321: readline should be thread-safe and not crash"""
script = textwrap.dedent(r"""
import threading
from test.support.threading_helper import join_thread

def func():
input()

thread1 = threading.Thread(target=func)
thread2 = threading.Thread(target=func)
thread1.start()
thread2.start()
join_thread(thread1)
join_thread(thread2)
print("done")
""")

output = run_pty(script, input=b"input1\rinput2\r")

self.assertIn(b"done", output)


def test_write_read_limited_history(self):
previous_length = readline.get_history_length()
self.addCleanup(readline.set_history_length, previous_length)
Expand Down
2 changes: 2 additions & 0 deletions Misc/NEWS.d/next/Core and Builtins/2024-08-26-00-58-26.gh-issue-123321.ApxcnE.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
Prevent Parser/myreadline race condition from segfaulting on multi-threaded
use. Patch by Bar Harel and Amit Wienner.
13 changes: 10 additions & 3 deletions Parser/myreadline.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -392,9 +392,14 @@ PyOS_Readline(FILE *sys_stdin, FILE *sys_stdout, const char *prompt)
}
}

_PyOS_ReadlineTState = tstate;
Py_BEGIN_ALLOW_THREADS

// GH-123321: We need to acquire the lock before setting
// _PyOS_ReadlineTState and after the release of the GIL, otherwise
// the variable may be nullified by a different thread or a deadlock
// may occur if the GIL is taken in any sub-function.
PyThread_acquire_lock(_PyOS_ReadlineLock, 1);
_PyOS_ReadlineTState = tstate;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe set _PyOS_ReadlineTState while you are still holding the GIL, before Py_BEGIN_ALLOW_THREADS. It should not make a big difference, since other threads should be blocked at PyThread_acquire_lock(_PyOS_ReadlineLock, 1) :-)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Alrighty :-)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So we have to release the lock outside the GIL and preferably take the lock too, otherwise it deadlocks.

It fails on the free-threaded as according to @colesbury the taking of the lock isn't safe outside the GIL.

I'm a little confused as theoretically if it isn't safe it should fail on the normal build too but I'm not entirely sure how that works.


/* This is needed to handle the unlikely case that the
* interpreter is in interactive mode *and* stdin/out are not
Expand All @@ -418,11 +423,13 @@ PyOS_Readline(FILE *sys_stdin, FILE *sys_stdout, const char *prompt)
else {
rv = (*PyOS_ReadlineFunctionPointer)(sys_stdin, sys_stdout, prompt);
}
Py_END_ALLOW_THREADS

// gh-123321: Must set the variable and then release the lock before
// taking the GIL. Otherwise a deadlock or segfault may occur.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How can a deadlock occur due to this variable not being NULL?

Copy link
Contributor Author

@bharel bharel Sep 3, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Release lock then take GIL.
If you take GIL and then release lock there's a deadlock.

If you set the variable before releasing the lock you segfault.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah the link you posted is exactly what I wanted to know. Thanks!

_PyOS_ReadlineTState = NULL;
PyThread_release_lock(_PyOS_ReadlineLock);

_PyOS_ReadlineTState = NULL;
Py_END_ALLOW_THREADS

if (rv == NULL)
return NULL;
Expand Down
Loading