Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Encapsulate interpreter stack(s) a bit better #104073

Closed
wants to merge 1 commit into from
Closed

Encapsulate interpreter stack(s) a bit better #104073

wants to merge 1 commit into from

Conversation

saethlin
Copy link
Member

@saethlin saethlin commented Nov 6, 2022

This is what I was referring to in rust-lang/miri#2647 (comment). We no longer hand out a &mut Vec<Frame> anywhere, so we get control over exactly how and where frames are added to or removed from the stack. All the better-not-be-inconsistent state can be put in a small module that is easy to reason about.

r? @RalfJung

@rustbot rustbot added S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. T-compiler Relevant to the compiler team, which will review and decide on the PR/issue. labels Nov 6, 2022
@rustbot
Copy link
Collaborator

rustbot commented Nov 6, 2022

Some changes occurred to MIR optimizations

cc @rust-lang/wg-mir-opt

The Miri subtree was changed

cc @rust-lang/miri

Some changes occurred to the CTFE / Miri engine

cc @rust-lang/miri

@saethlin saethlin force-pushed the encapsulate-interpreter-stack branch from efba19c to 22fe237 Compare November 6, 2022 22:01
@oli-obk
Copy link
Contributor

oli-obk commented Nov 7, 2022

Instead of adding the additional API to the machine, we could also create a Stack trait and assoc type and return it via stack and stack_mut. Not sure if the complexity is worth it, but the API complexity of Machine containing 5 stack_xxx functions is also not great.

RalfJung
RalfJung reviewed Nov 13, 2022
View reviewed changes
Copy link
Member

@RalfJung RalfJung left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah the machine trait is growing quite big. Having a Stack trait could help share code between the const_eval and const_prop instances. Not sure if that's worth it though, I am fine either way.

compiler/rustc_const_eval/src/interpret/machine.rs
ecx: &'a mut InterpCx<'mir, 'tcx, Self>,
) -> &'a mut Vec<Frame<'mir, 'tcx, Self::Provenance, Self::FrameExtra>>;
) -> &'a mut Frame<'mir, 'tcx, Self::Provenance, Self::FrameExtra>;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These should all have doc comments. (In particular the last two need to explain which frame they return.)

src/tools/miri/src/concurrency/stack.rs
use crate::*;

/// An encapsulated call stack, so encapsulated to enable efficient caching of metadata about the
/// contained `Frame`.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This seems to give out mutable access to basically the entire thing; in which sense is this 'encapsulated'?

@saethlin
Copy link
Member Author

This seems to give out mutable access to basically the entire thing; in which sense is this 'encapsulated'?

Yeah, I wasn't thinking about this thoroughly enough until this comment. After poking around for a few days I'm abandoning encapsulation as an approach here.

Originally what stuck out at me was that this interface hands out a &mut Vec<Frame> which would permit all sorts of inserts and removals. That API is probably excessively powerful anyway, but what I was focusing on is that the stack could be arbitrarily resized. Restricting all resizing to a push and pop permits us to insert logic after actually adding the frame to the Vec, fixing up some caching logic for what frames are local.

But IMO what kills this idea is the way the interpreter uses frame_mut() to access a number of fields of the topmost frame. So long as that function exists and can return a &mut Frame, external code can just replace the whole Frame and so we can't know if after any call the topmost Frame's Instance has changed.

I can imagine a few solutions to this:

  • Replace all of the code that calls frame_mut() with a specific API that just modifies the one field of interest
  • Return a proxy object from frame_mut() instead which wraps references to only the fields from Frame that we want to permit modification of (i.e. not the Instance)
  • Replace frame_mut() with a closure-based API, and add logic to repair our caching after the closure

IMO all of these exceed the amount of complexity I'm willing to add in order to avoid the duplicate state consistency issue pointed out in rust-lang/miri#2647 (comment).

@saethlin saethlin closed this Nov 15, 2022
@RalfJung
Copy link
Member

RalfJung commented Nov 15, 2022 via email

@saethlin
Copy link
Member Author

I don't think so, because frame_mut() permits replacing the whole Frame.

@saethlin saethlin deleted the encapsulate-interpreter-stack branch March 15, 2023 00:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@RalfJung RalfJung RalfJung left review comments

Assignees

@RalfJung RalfJung

Labels
S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. T-compiler Relevant to the compiler team, which will review and decide on the PR/issue.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@saethlin @rustbot @oli-obk @RalfJung