This is an archive of the discontinued LLVM Phabricator instance.

Differential D97329

[OpenMP] Fixed a crash when offloading to x86_64 with target nowait
ClosedPublic

Authored by tianshilei1992 on Feb 23 2021, 12:45 PM.

Details

Reviewers
jdoerfert
Commits
rGe5da63d5a9ed: [OpenMP] Fixed a crash when offloading to x86_64 with target nowait
Summary

PR#49334 reports a crash when offloading to x86_64 with target nowait,
which is caused by referencing a nullptr. The root cause of the issue is, when
pushing a hidden helper task in __kmp_push_task, it also maps the gtid to its
shadow gtid, which is wrong.

Diff Detail

Event Timeline

tianshilei1992 created this revision.Feb 23 2021, 12:45 PM
Herald added subscribers: pengfei, guansong, yaxunl. · View Herald TranscriptFeb 23 2021, 12:45 PM
tianshilei1992 requested review of this revision.Feb 23 2021, 12:45 PM
Herald added a reviewer: jdoerfert. · View Herald TranscriptFeb 23 2021, 12:45 PM
Herald added a project: Restricted Project. · View Herald Transcript
Herald added subscribers: openmp-commits, sstefan1. · View Herald Transcript
tianshilei1992 added a comment.Feb 23 2021, 12:46 PM

I didn't include the reproducer because it cannot pass because of computation error. The same code can pass on NVPTX target.

tianshilei1992 mentioned this in D77609: [OpenMP] Added the support for hidden helper task in RTL.Feb 23 2021, 12:48 PM
jdoerfert accepted this revision.Feb 23 2021, 1:00 PM

LG. backport if possible and add the test (if we don't have one)

This revision is now accepted and ready to land.Feb 23 2021, 1:00 PM
Harbormaster completed remote builds in B90471: Diff 325880.Feb 23 2021, 3:42 PM
tianshilei1992 updated this revision to Diff 325949.Feb 23 2021, 6:13 PM

Added the test although it is expected to fail on x86_64

tianshilei1992 updated this revision to Diff 325950.Feb 23 2021, 6:15 PM

update test case

Harbormaster completed remote builds in B90514: Diff 325949.Feb 23 2021, 8:51 PM
Harbormaster completed remote builds in B90515: Diff 325950.Feb 23 2021, 8:55 PM
protze.joachim added a subscriber: protze.joachim.Feb 24 2021, 6:59 AM

This patch fixes the segfault in __kmp_push_task, when executing the code with OMP_NUM_THREADS>1.
I accidentally ran the test case in this patch with OMP_NUM_THREADS=1 (which happens to be the default on our cluster) and could not even get a stacktrace after the crash.

This is another regression from the 11 release.

protze.joachim added a comment.Feb 24 2021, 9:09 AM

Including openmp/runtime/test/ompt/callback.h, I could identify that the segfault seems to occur inside of the OpenMP for loop. The last printed OMPT event on the crashing thread prints ompt_event_loop_begin.

If you build the OpenMP runtime with debugging symbols and include callback.h to dump the OMPT events (I just add -include .../llvm-project/openmp/runtime/test/ompt/callback.h to the compile line), you can get the OMPT thread-id with:

(gdb) print __kmp_threads[__kmp_gtid].th.ompt_thread_info.thread_data.value

This is the same ID as at the beginning of all callback.h output by that thread.

Another observation:
clang/11 would execute all code in the test on the initial thread, avoiding overloading the system. The current implementation will execute an instance of the target region on each of the hidden threads, effectively oversubscribing the system when running on a dual-core desktop. Is this the intended behavior?

Closed by commit rGe5da63d5a9ed: [OpenMP] Fixed a crash when offloading to x86_64 with target nowait (authored by tianshilei1992). · Explain WhyFeb 24 2021, 9:37 AM
This revision was automatically updated to reflect the committed changes.
tianshilei1992 added a commit: rGe5da63d5a9ed: [OpenMP] Fixed a crash when offloading to x86_64 with target nowait.
tianshilei1992 added a comment.Feb 24 2021, 9:42 AM
In D97329#2584863, @protze.joachim wrote:

This patch fixes the segfault in __kmp_push_task, when executing the code with OMP_NUM_THREADS>1.
I accidentally ran the test case in this patch with OMP_NUM_THREADS=1 (which happens to be the default on our cluster) and could not even get a stacktrace after the crash.

I'll take a look and fix it in another patch.

In D97329#2585197, @protze.joachim wrote:

Including openmp/runtime/test/ompt/callback.h, I could identify that the segfault seems to occur inside of the OpenMP for loop. The last printed OMPT event on the crashing thread prints ompt_event_loop_begin.

If you build the OpenMP runtime with debugging symbols and include callback.h to dump the OMPT events (I just add -include .../llvm-project/openmp/runtime/test/ompt/callback.h to the compile line), you can get the OMPT thread-id with:

(gdb) print __kmp_threads[__kmp_gtid].th.ompt_thread_info.thread_data.value

This is the same ID as at the beginning of all callback.h output by that thread.

Gotcha. Will take a look. Thanks!

Another observation:
clang/11 would execute all code in the test on the initial thread, avoiding overloading the system. The current implementation will execute an instance of the target region on each of the hidden threads, effectively oversubscribing the system when running on a dual-core desktop. Is this the intended behavior?

Yes. Actually most of the time those hidden helper threads are sleeping (waiting for the job finish or waiting for a job), it should be fine. After all, there are so many threads in the system already. :-) However, I have to admit that it is probably not the case for x86_64 target offloading. Then I suppose reducing the number of hidden helper thread to just one can help. (There is currently a bug when setting the number to 1 but I'll fix it accordingly)

protze.joachim added a comment.Apr 29 2021, 2:18 AM

The test tends to fail for x86_64 offloading. When I reduce the BS to 64, the test also fails for nvptx offloading.

JonChesterfield added a subscriber: JonChesterfield.EditedMay 6 2021, 4:06 PM

Hangs on amdgpu offloading with these parameters, suggestion in D102017 to use BS = 16; / N = 256; seems to replace that with segv. Valgrind says:

==392314== Conditional jump or move depends on uninitialised value(s)
==392314==    at 0x4BCE15E: __kmp_push_task(int, kmp_task*) (in /home/amd/llvm-build/llvm/runtimes/runtimes-bins/openmp/runtime/src/libomp.so)

a little while afterwards it dereferences 0x50 and faults. Not sure I have the time to set up a debug build and go race chasing right now.

Revision Contents

PathSize
openmp/
runtime/
src/
3 lines

Diff 325880

openmp/runtime/src/kmp_tasking.cpp

Show First 20 LinesShow All 320 Lines▼ Show 20 Linesstatic void __kmp_realloc_task_deque(kmp_info_t *thread,
thread_data->td.td_deque_size = new_size; thread_data->td.td_deque_size = new_size;
} }
// __kmp_push_task: Add a task to the thread's deque // __kmp_push_task: Add a task to the thread's deque
static kmp_int32 __kmp_push_task(kmp_int32 gtid, kmp_task_t *task) { static kmp_int32 __kmp_push_task(kmp_int32 gtid, kmp_task_t *task) {
kmp_info_t *thread = __kmp_threads[gtid]; kmp_info_t *thread = __kmp_threads[gtid];
kmp_taskdata_t *taskdata = KMP_TASK_TO_TASKDATA(task); kmp_taskdata_t *taskdata = KMP_TASK_TO_TASKDATA(task);
if (taskdata->td_flags.hidden_helper) { // We don't need to map to shadow gtid if it is already hidden helper thread
if (taskdata->td_flags.hidden_helper && !KMP_HIDDEN_HELPER_THREAD(gtid)) {
gtid = KMP_GTID_TO_SHADOW_GTID(gtid); gtid = KMP_GTID_TO_SHADOW_GTID(gtid);
thread = __kmp_threads[gtid]; thread = __kmp_threads[gtid];
} }
kmp_task_team_t *task_team = thread->th.th_task_team; kmp_task_team_t *task_team = thread->th.th_task_team;
kmp_int32 tid = __kmp_tid_from_gtid(gtid); kmp_int32 tid = __kmp_tid_from_gtid(gtid);
kmp_thread_data_t *thread_data; kmp_thread_data_t *thread_data;
▲ Show 20 LinesShow All 4,435 LinesShow Last 20 Lines