{{ message }}
instruction CACHE#7251
Merged
youknowone merged 4 commits intoMar 1, 2026
Merged
Conversation
Member
Sorry, something went wrong.
Contributor
|
Note Reviews pausedIt looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the Use the following commands to manage reviews:
Use the checkboxes below for quick actions:
📝 WalkthroughWalkthroughThread async/yield end-targets through codegen paths and return send-targets from yield-from; add per-instruction CACHE accounting to IR/bytecode; and make JIT, VM, frame, and monitoring cache-aware so jumps/targets skip CACHE units. Changes
Sequence Diagram(s)mermaid Estimated code review effort🎯 4 (Complex) | ⏱️ ~50 minutes Possibly related PRs
Suggested reviewers
Poem
🚥 Pre-merge checks | ✅ 3✅ Passed checks (3 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
Sorry, something went wrong.
Contributor
📦 Library DependenciesThe following Lib/ modules were modified. Here are their dependencies: [x] lib: cpython/Lib/opcode.py dependencies:
dependent tests: (42 tests)
[x] lib: cpython/Lib/dis.py dependencies:
dependent tests: (68 tests)
[x] lib: cpython/Lib/inspect.py dependencies:
dependent tests: (86 tests)
[ ] test: cpython/Lib/test/test_monitoring.py (TODO: 9) dependencies: dependent tests: (no tests depend on monitoring) [x] test: cpython/Lib/test/test_compile.py (TODO: 31) dependencies: dependent tests: (no tests depend on compile) Legend:
|
Sorry, something went wrong.
Contributor
|
Code has been automatically formatted The code in this PR has been formatted using:
git pull origin cache-inst |
Sorry, something went wrong.
youknowone
force-pushed
the
cache-inst
branch
3 times, most recently
from
c05e83f to
49ec351
Compare
February 28, 2026 01:42
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
Contributor
There was a problem hiding this comment.
Actionable comments posted: 2
🧹 Nitpick comments (1)
crates/codegen/src/compile.rs (1)
6796-6853: Run the required clean build for these bytecode-instruction changes.Given instruction emission/targets changed here, please run the repository’s clean-build step before final validation to avoid stale artifacts masking issues.
rm -r target/debug/build/rustpython-* && find . | grep -E "\.pyc$" | xargs rm -rAs per coding guidelines "When modifying bytecode instructions, perform a clean build by running:
rm -r target/debug/build/rustpython-* && find . | grep -E "\.pyc$" | xargs rm -r".🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/codegen/src/compile.rs` around lines 6796 - 6853, After changing bytecode emission/targets in compile_yield_from_sequence (and related Instruction/PseudoInstruction usage like Send, SetupFinally, YieldValue, Resume, CleanupThrow, EndSend), perform a clean build to avoid stale artifacts: remove target/debug build caches and .pyc files then rebuild by running: rm -r target/debug/build/rustpython-* && find . | grep -E "\.pyc$" | xargs rm -r; then run the repository build/test commands to validate the changes.
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Inline comments:
In `@crates/codegen/src/ir.rs`:
- Around line 325-377: The code rewrites `op` then sets `info.instr = op.into()`
but leaves `info.cache_entries` as the old value, which can desynchronize
`offset_after` and jump encoding; after `info.instr = op.into()`
recompute/update `info.cache_entries` (e.g. call the existing helper that
computes cache entries or recalc it from the new `info.instr`/`info.arg`), then
use that updated `info.cache_entries` when computing `offset_after`, `new_arg`,
and the `recompile` size check so the jump encoding and emitted CACHE units stay
consistent.
In `@crates/vm/src/frame.rs`:
- Around line 1360-1361: Multiple instruction handlers (e.g., ForIter, Send,
InstrumentedJumpForward, InstrumentedJumpBackward,
InstrumentedPopJumpIfTrue/False/None/NotNone) and the helpers
jump_relative_forward/jump_relative_backward compute relative targets using
unchecked u32 arithmetic, which can wrap; update each target computation (where
you currently call bytecode::Label(self.lasti() + 1 + u32::from(arg)) or
similar) to use checked_add/checked_sub on self.lasti() (and on added/subtracted
offsets), handle None by returning a system error (propagate the error type your
frame code uses), and then call execute_for_iter or the existing branch logic
with the validated Label; apply the same pattern in
jump_relative_forward/jump_relative_backward to consistently detect
overflow/underflow and return an appropriate system error instead of allowing a
panic during fetch.
---
Nitpick comments:
In `@crates/codegen/src/compile.rs`:
- Around line 6796-6853: After changing bytecode emission/targets in
compile_yield_from_sequence (and related Instruction/PseudoInstruction usage
like Send, SetupFinally, YieldValue, Resume, CleanupThrow, EndSend), perform a
clean build to avoid stale artifacts: remove target/debug build caches and .pyc
files then rebuild by running: rm -r target/debug/build/rustpython-* && find . |
grep -E "\.pyc$" | xargs rm -r; then run the repository build/test commands to
validate the changes.
ℹ️ Review info
Configuration used: Path: .coderabbit.yml
Review profile: CHILL
Plan: Pro
⛔ Files ignored due to path filters (9)
Lib/opcode.pyis excluded by!Lib/**Lib/test/test_dis.pyis excluded by!Lib/**Lib/test/test_monitoring.pyis excluded by!Lib/**Lib/test/test_peepholer.pyis excluded by!Lib/**crates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_ands.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_mixed.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_ors.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__nested_bool_op.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__nested_double_async_with.snapis excluded by!**/*.snap
📒 Files selected for processing (9)
crates/codegen/src/compile.rscrates/codegen/src/ir.rscrates/compiler-core/src/bytecode/instruction.rscrates/jit/src/instructions.rscrates/jit/tests/common.rscrates/vm/src/builtins/code.rscrates/vm/src/builtins/frame.rscrates/vm/src/frame.rscrates/vm/src/stdlib/sys/monitoring.rs
Sorry, something went wrong.
youknowone
force-pushed
the
cache-inst
branch
from
49ec351 to
67de59a
Compare
February 28, 2026 13:45
Contributor
There was a problem hiding this comment.
Actionable comments posted: 1
♻️ Duplicate comments (1)
crates/vm/src/frame.rs (1)
3557-3575: ⚠️ Potential issue | 🟠 MajorGuard relative jump arithmetic against
u32wrap-around.Line 3564 and Line 3574 use unchecked arithmetic, and the same pattern is still present at Line 1360, Line 2434, Line 2660, Line 2671, and Line 2729+ sites. With malformed bytecode, this can wrap/underflow
lastiand redirect execution to invalid instruction indices.🐛 Suggested direction
- fn jump_relative_forward(&mut self, delta: u32, caches: u32) { - let target = self.lasti() + caches + delta; - self.update_lasti(|i| *i = target); - } + fn jump_relative_forward( + &mut self, + delta: u32, + caches: u32, + vm: &VirtualMachine, + ) -> PyResult<()> { + let target = self + .lasti() + .checked_add(caches) + .and_then(|v| v.checked_add(delta)) + .ok_or_else(|| vm.new_system_error("relative forward jump overflow".to_owned()))?; + self.update_lasti(|i| *i = target); + Ok(()) + } - fn jump_relative_backward(&mut self, delta: u32, caches: u32) { - let target = self.lasti() + caches - delta; - self.update_lasti(|i| *i = target); - } + fn jump_relative_backward( + &mut self, + delta: u32, + caches: u32, + vm: &VirtualMachine, + ) -> PyResult<()> { + let target = self + .lasti() + .checked_add(caches) + .and_then(|v| v.checked_sub(delta)) + .ok_or_else(|| vm.new_system_error("relative backward jump underflow".to_owned()))?; + self.update_lasti(|i| *i = target); + Ok(()) + }#!/bin/bash # Read-only verification: list unchecked relative jump math sites and checked arithmetic usage. rg -n 'lasti\(\)\s*\+\s*1\s*\+\s*u32::from\(arg\)|lasti\(\)\s*\+\s*u32::from\(arg\)|lasti\(\)\s*\+\s*1\s*-\s*u32::from\(arg\)|\+\s*caches\s*\+\s*delta|\+\s*caches\s*-\s*delta' crates/vm/src/frame.rs rg -n 'checked_add|checked_sub' crates/vm/src/frame.rsAlso applies to: 1358-1361, 2433-2434, 2660-2672, 2728-2773
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/vm/src/frame.rs` around lines 3557 - 3575, Guard all relative-jump arithmetic against u32 wrap/underflow by replacing unchecked addition/subtraction in jump_relative_forward and jump_relative_backward (and the other sites with the same pattern) with checked arithmetic (e.g., u32::checked_add / u32::checked_sub); compute target via checked ops, and if they return None, stop and handle the invalid target (propagate an Err/trap/panic consistent with the frame's error model) instead of calling update_lasti with a wrapped value; ensure the same pattern is applied to the other occurrences (the similar add/sub uses that set lasti via update_lasti) so all malformed bytecode cannot produce wrapped/invalid instruction indices.
🧹 Nitpick comments (4)
crates/jit/src/instructions.rs (1)
184-204: Prefer deriving cache widths fromInstruction::cache_entries()to prevent drift.While the current hard-coded cache widths (0 and 1) are correct, duplicating this metadata creates maintenance risk. If
cache_entries()is updated, the JIT's target calculation could silently diverge. Consider refactoringinstruction_targetto query the opcode metadata directly, ensuring JIT labels remain synchronized with compiler-core.🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/jit/src/instructions.rs` around lines 184 - 204, The match in instruction_target currently uses hard-coded cache widths (0 and 1) when calling Self::jump_target_forward/backward; replace those magic numbers by querying the opcode's cache width from the instruction metadata (use Instruction::cache_entries() or the equivalent method on the matched variant) and pass that value into jump_target_forward/jump_target_backward so the JIT follows the canonical cache entry count; update all arms that currently pass 0 or 1 (e.g., Instruction::JumpForward, JumpBackward, JumpBackwardNoInterrupt, PopJumpIfFalse/True/IfNone/IfNotNone, ForIter, Send) to compute width = instruction.cache_entries() (or the per-variant entry count) and use width or width - 1 where semantics require, preserving the existing offset adjustments.crates/vm/src/builtins/frame.rs (1)
201-233: Consider making unchecked jump arithmetic explicit with checked operations or comments.Lines 202, 214, 224, 232, and 253 use unchecked addition and subtraction to compute jump targets. While subsequent bounds checks (
j < stacks.len()) prevent out-of-bounds access, the pattern silently skips processing jump targets that wrap (e.g., when oparg exceeds next_i on backward jumps). This defensive behavior is safe but implicit. Either usechecked_add/checked_subto be explicit about handling invalid jumps, or add a comment clarifying that out-of-bounds targets are intentionally skipped during stack analysis.🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/vm/src/builtins/frame.rs` around lines 201 - 233, The jump target arithmetic currently uses plain add/sub (e.g., computing j = next_i + oparg as usize and j = next_i - oparg as usize inside the match arms for Instruction::Send, Instruction::JumpForward, Instruction::JumpBackward / JumpBackwardNoInterrupt and the earlier case that pops a value) which can silently wrap and be implicitly ignored by the subsequent j < stacks.len() checks; update these sites to use explicit checked arithmetic (checked_add/checked_sub on usize or convert oparg safely) and handle the None case by skipping the target, or add a short clarifying comment at each calculation (mentioning j, next_i, oparg, and stacks.len()) that wrapping is intentionally treated as an invalid/ignored target—pick one approach and apply it consistently to all occurrences in the file.crates/codegen/src/compile.rs (1)
7918-7922: Async inlined-comprehension loop cleanup currently diverges from the async-for protocol.This branch emits
GetANext + yield_fromwithoutSetupFinally/PopBlock, then emitsEndAsyncForplus an extraPopTop. That differs from the non-inlined async path and can mis-handle stack/exception cleanup if PEP 709 inlining is enabled later.♻️ Suggested alignment with the non-inlined async pattern
if generator.is_async { + emit!( + self, + PseudoInstruction::SetupFinally { + target: after_block + } + ); emit!(self, Instruction::GetANext); self.emit_load_const(ConstantData::None); end_async_for_target = self.compile_yield_from_sequence(true)?; + emit!(self, PseudoInstruction::PopBlock); self.compile_store(&generator.target)?; } else { emit!( self, Instruction::ForIter { @@ self.switch_to_block(after_block); if is_async { self.emit_end_async_for(end_async_for_target); - // Pop the iterator - emit!(self, Instruction::PopTop); } else { // END_FOR + POP_ITER pattern (CPython 3.14) emit!(self, Instruction::EndFor); emit!(self, Instruction::PopIter); }Also applies to: 7958-7963
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/codegen/src/compile.rs` around lines 7918 - 7922, The async inlined-comprehension branch (where generator.is_async is checked and the code emits Instruction::GetANext, self.compile_yield_from_sequence(true), and self.compile_store(&generator.target)) is missing the SetupFinally/PopBlock pairing before yielding and leaves an extra PopTop/EndAsyncFor sequence that diverges from the non-inlined async-for protocol; update this branch (and the analogous block around the other compile_yield_from_sequence call) to mirror the non-inlined pattern by emitting a SetupFinally before GetANext/yield_from, ensuring PopBlock is emitted after the yield sequence, and then using EndAsyncFor without leaving the stray PopTop — i.e., wrap the GetANext + compile_yield_from_sequence(true) call with the same SetupFinally/PopBlock/EndAsyncFor pairing used by the non-inlined async-for path so stack/exception cleanup matches.crates/vm/src/frame.rs (1)
581-592: Extract duplicated “fallthrough cache-skip” logic into one helper.The same post-dispatch cache-skip block is repeated three times. Centralizing it reduces drift risk when cache semantics evolve.
♻️ Refactor sketch
+ #[inline] + fn skip_caches_if_fallthrough(&mut self, op: Instruction, lasti_before: u32) { + if self.lasti() == lasti_before { + let base = op.to_base().unwrap_or(op); + let caches = base.cache_entries(); + if caches > 0 { + self.update_lasti(|i| *i += caches as u32); + } + } + }Then call this helper in the three current call sites.
As per coding guidelines: “When branches differ only in a value but share common logic, extract the differing value first, then call the common logic once to avoid duplicate code.”
Also applies to: 2868-2876, 2907-2916
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/vm/src/frame.rs` around lines 581 - 592, The post-dispatch "fallthrough cache-skip" block duplicated around calls to self.execute_instruction should be extracted into a single helper (e.g., a private method on Frame like skip_fallthrough_caches(&mut self, op: Instruction) or skip_fallthrough_caches(&mut self, base_op: Instruction)) that captures the logic: record lasti_before = self.lasti(), check self.lasti() == lasti_before, derive base_op = op.to_base().unwrap_or(op), get caches = base_op.cache_entries(), and if caches > 0 call self.update_lasti(|i| *i += caches as u32); replace the three duplicated blocks with calls to this helper immediately after the corresponding execute_instruction(op, arg, &mut do_extend_arg, vm) invocations so behavior is identical.
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Inline comments:
In `@crates/vm/src/stdlib/sys/monitoring.rs`:
- Around line 408-411: The current branch for Instruction::ForIter and
Instruction::Send always returns Some(after_caches + delta + 1) which can
overshoot when the END_FOR/END_SEND marker isn't at that slot; update the logic
in the Instruction::ForIter / Instruction::Send match arm to mirror the
conditional adjustment used elsewhere: compute candidate = after_caches + delta
+ 1, check whether the instruction at candidate is the corresponding END_FOR or
END_SEND token, and only return candidate if it matches, otherwise return
Some(after_caches + delta); reference Instruction::ForIter, Instruction::Send,
END_FOR, END_SEND, after_caches and delta to locate and apply this conditional
check.
---
Duplicate comments:
In `@crates/vm/src/frame.rs`:
- Around line 3557-3575: Guard all relative-jump arithmetic against u32
wrap/underflow by replacing unchecked addition/subtraction in
jump_relative_forward and jump_relative_backward (and the other sites with the
same pattern) with checked arithmetic (e.g., u32::checked_add /
u32::checked_sub); compute target via checked ops, and if they return None, stop
and handle the invalid target (propagate an Err/trap/panic consistent with the
frame's error model) instead of calling update_lasti with a wrapped value;
ensure the same pattern is applied to the other occurrences (the similar add/sub
uses that set lasti via update_lasti) so all malformed bytecode cannot produce
wrapped/invalid instruction indices.
---
Nitpick comments:
In `@crates/codegen/src/compile.rs`:
- Around line 7918-7922: The async inlined-comprehension branch (where
generator.is_async is checked and the code emits Instruction::GetANext,
self.compile_yield_from_sequence(true), and
self.compile_store(&generator.target)) is missing the SetupFinally/PopBlock
pairing before yielding and leaves an extra PopTop/EndAsyncFor sequence that
diverges from the non-inlined async-for protocol; update this branch (and the
analogous block around the other compile_yield_from_sequence call) to mirror the
non-inlined pattern by emitting a SetupFinally before GetANext/yield_from,
ensuring PopBlock is emitted after the yield sequence, and then using
EndAsyncFor without leaving the stray PopTop — i.e., wrap the GetANext +
compile_yield_from_sequence(true) call with the same
SetupFinally/PopBlock/EndAsyncFor pairing used by the non-inlined async-for path
so stack/exception cleanup matches.
In `@crates/jit/src/instructions.rs`:
- Around line 184-204: The match in instruction_target currently uses hard-coded
cache widths (0 and 1) when calling Self::jump_target_forward/backward; replace
those magic numbers by querying the opcode's cache width from the instruction
metadata (use Instruction::cache_entries() or the equivalent method on the
matched variant) and pass that value into
jump_target_forward/jump_target_backward so the JIT follows the canonical cache
entry count; update all arms that currently pass 0 or 1 (e.g.,
Instruction::JumpForward, JumpBackward, JumpBackwardNoInterrupt,
PopJumpIfFalse/True/IfNone/IfNotNone, ForIter, Send) to compute width =
instruction.cache_entries() (or the per-variant entry count) and use width or
width - 1 where semantics require, preserving the existing offset adjustments.
In `@crates/vm/src/builtins/frame.rs`:
- Around line 201-233: The jump target arithmetic currently uses plain add/sub
(e.g., computing j = next_i + oparg as usize and j = next_i - oparg as usize
inside the match arms for Instruction::Send, Instruction::JumpForward,
Instruction::JumpBackward / JumpBackwardNoInterrupt and the earlier case that
pops a value) which can silently wrap and be implicitly ignored by the
subsequent j < stacks.len() checks; update these sites to use explicit checked
arithmetic (checked_add/checked_sub on usize or convert oparg safely) and handle
the None case by skipping the target, or add a short clarifying comment at each
calculation (mentioning j, next_i, oparg, and stacks.len()) that wrapping is
intentionally treated as an invalid/ignored target—pick one approach and apply
it consistently to all occurrences in the file.
In `@crates/vm/src/frame.rs`:
- Around line 581-592: The post-dispatch "fallthrough cache-skip" block
duplicated around calls to self.execute_instruction should be extracted into a
single helper (e.g., a private method on Frame like skip_fallthrough_caches(&mut
self, op: Instruction) or skip_fallthrough_caches(&mut self, base_op:
Instruction)) that captures the logic: record lasti_before = self.lasti(), check
self.lasti() == lasti_before, derive base_op = op.to_base().unwrap_or(op), get
caches = base_op.cache_entries(), and if caches > 0 call self.update_lasti(|i|
*i += caches as u32); replace the three duplicated blocks with calls to this
helper immediately after the corresponding execute_instruction(op, arg, &mut
do_extend_arg, vm) invocations so behavior is identical.
ℹ️ Review info
Configuration used: Path: .coderabbit.yml
Review profile: CHILL
Plan: Pro
⛔ Files ignored due to path filters (9)
Lib/opcode.pyis excluded by!Lib/**Lib/test/test_dis.pyis excluded by!Lib/**Lib/test/test_monitoring.pyis excluded by!Lib/**Lib/test/test_peepholer.pyis excluded by!Lib/**crates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_ands.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_mixed.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_ors.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__nested_bool_op.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__nested_double_async_with.snapis excluded by!**/*.snap
📒 Files selected for processing (9)
crates/codegen/src/compile.rscrates/codegen/src/ir.rscrates/compiler-core/src/bytecode/instruction.rscrates/jit/src/instructions.rscrates/jit/tests/common.rscrates/vm/src/builtins/code.rscrates/vm/src/builtins/frame.rscrates/vm/src/frame.rscrates/vm/src/stdlib/sys/monitoring.rs
🚧 Files skipped from review as they are similar to previous changes (2)
- crates/jit/tests/common.rs
- crates/compiler-core/src/bytecode/instruction.rs
Sorry, something went wrong.
youknowone
force-pushed
the
cache-inst
branch
from
67de59a to
0be59d5
Compare
February 28, 2026 14:13
Contributor
There was a problem hiding this comment.
Actionable comments posted: 2
♻️ Duplicate comments (1)
crates/vm/src/stdlib/sys/monitoring.rs (1)
408-411: ⚠️ Potential issue | 🟡 MinorMake END_ skipping conditional for
ForIter/Send.*Line 410 always adds
+ 1, which can skip past the real target whenEND_FOR/END_SENDis not actually at that slot.Suggested fix
- Instruction::ForIter { .. } | Instruction::Send { .. } => { - // Skip over END_FOR/END_SEND - Some(after_caches + delta + 1) - } + Instruction::ForIter { .. } => { + let t = after_caches + delta; + let is_end_for = matches!( + code.code.instructions.get(t).map(|u| u.op.to_base().unwrap_or(u.op)), + Some(Instruction::EndFor) + ); + Some(if is_end_for { t + 1 } else { t }) + } + Instruction::Send { .. } => { + let t = after_caches + delta; + let is_end_send = matches!( + code.code.instructions.get(t).map(|u| u.op.to_base().unwrap_or(u.op)), + Some(Instruction::EndSend) + ); + Some(if is_end_send { t + 1 } else { t }) + }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/vm/src/stdlib/sys/monitoring.rs` around lines 408 - 411, The branch handling Instruction::ForIter and Instruction::Send always returns Some(after_caches + delta + 1), which incorrectly skips one slot even when the following opcode isn't END_FOR/END_SEND; change this to conditionally add +1 by looking up the instruction at index after_caches + delta (using the same bytecode/instruction buffer visible in the surrounding function) and: if that instruction is Instruction::EndFor (for ForIter) or Instruction::EndSend (for Send) return Some(after_caches + delta + 1), otherwise return Some(after_caches + delta); keep referencing the Instruction enum and the local variables after_caches and delta to locate and implement this conditional logic.
🧹 Nitpick comments (1)
crates/vm/src/frame.rs (1)
2534-2566: Document unchecked arithmetic assumption in helper functions.The
jump_relative_forwardandjump_relative_backwardhelpers use unchecked arithmetic, which the doc comments justify as "compiler guarantees valid targets." While this is reasonable for well-formed bytecode, consider adding a debug assertion to catch malformed bytecode during development.♻️ Optional: Add debug assertions for safety
#[inline] fn jump_relative_forward(&mut self, delta: u32, caches: u32) { + debug_assert!( + self.lasti().checked_add(caches).and_then(|v| v.checked_add(delta)).is_some(), + "jump_relative_forward overflow" + ); let target = self.lasti() + caches + delta; self.update_lasti(|i| *i = target); } #[inline] fn jump_relative_backward(&mut self, delta: u32, caches: u32) { + debug_assert!( + self.lasti().checked_add(caches).and_then(|v| v.checked_sub(delta)).is_some(), + "jump_relative_backward underflow" + ); let target = self.lasti() + caches - delta; self.update_lasti(|i| *i = target); }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/vm/src/frame.rs` around lines 2534 - 2566, The helpers jump_relative_forward and jump_relative_backward use unchecked arithmetic based on the assumption that the compiler or caller ensures valid targets; add debug assertions in each helper (e.g., debug_assert! or debug_assert_eq!) that validate the computed target is within the code bounds and that the resulting lasti/offset is non-negative and aligns with instruction-width expectations before performing the unchecked arithmetic, and add a short comment documenting the invariant being checked so malformed bytecode is caught in debug builds while release keeps the unchecked ops.
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Inline comments:
In `@crates/codegen/src/compile.rs`:
- Line 5168: The emit!(self, Instruction::NotTaken) call is incorrectly added on
the async-iteration/SEND path; remove that emission so async-iteration (e.g.,
Send/ForIter handling in compile.rs) does not produce NOT_TAKEN. Update the
related logic so only boolean conditional jumps emit NOT_TAKEN—ensure
is_conditional_jump in ir.rs matches only POP_JUMP_IF_* (and does not include
ForIter or Send), and delete the emit!(..., Instruction::NotTaken) from the
async-iteration branch (the code that handles Send/ForIter) so branch-monitoring
semantics remain correct.
In `@crates/vm/src/builtins/code.rs`:
- Around line 972-975: The comment for the END_ASYNC_FOR handling is incorrect:
it says "src = END_SEND position (i - oparg)" but the code computes src using
next_i.checked_sub(oparg as usize) where next_i = i + 1 (i.e. i + 1 - oparg).
Update the comment to match the code's formula (e.g., "src = END_SEND position
(i + 1 - oparg)") or change the calculation to match the original comment;
adjust the comment near the code that defines next_i, oparg, and src_i in the
END_ASYNC_FOR block so the math and wording are consistent.
---
Duplicate comments:
In `@crates/vm/src/stdlib/sys/monitoring.rs`:
- Around line 408-411: The branch handling Instruction::ForIter and
Instruction::Send always returns Some(after_caches + delta + 1), which
incorrectly skips one slot even when the following opcode isn't
END_FOR/END_SEND; change this to conditionally add +1 by looking up the
instruction at index after_caches + delta (using the same bytecode/instruction
buffer visible in the surrounding function) and: if that instruction is
Instruction::EndFor (for ForIter) or Instruction::EndSend (for Send) return
Some(after_caches + delta + 1), otherwise return Some(after_caches + delta);
keep referencing the Instruction enum and the local variables after_caches and
delta to locate and implement this conditional logic.
---
Nitpick comments:
In `@crates/vm/src/frame.rs`:
- Around line 2534-2566: The helpers jump_relative_forward and
jump_relative_backward use unchecked arithmetic based on the assumption that the
compiler or caller ensures valid targets; add debug assertions in each helper
(e.g., debug_assert! or debug_assert_eq!) that validate the computed target is
within the code bounds and that the resulting lasti/offset is non-negative and
aligns with instruction-width expectations before performing the unchecked
arithmetic, and add a short comment documenting the invariant being checked so
malformed bytecode is caught in debug builds while release keeps the unchecked
ops.
ℹ️ Review info
Configuration used: Path: .coderabbit.yml
Review profile: CHILL
Plan: Pro
⛔ Files ignored due to path filters (9)
Lib/opcode.pyis excluded by!Lib/**Lib/test/test_dis.pyis excluded by!Lib/**Lib/test/test_monitoring.pyis excluded by!Lib/**Lib/test/test_peepholer.pyis excluded by!Lib/**crates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_ands.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_mixed.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_ors.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__nested_bool_op.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__nested_double_async_with.snapis excluded by!**/*.snap
📒 Files selected for processing (9)
crates/codegen/src/compile.rscrates/codegen/src/ir.rscrates/compiler-core/src/bytecode/instruction.rscrates/jit/src/instructions.rscrates/jit/tests/common.rscrates/vm/src/builtins/code.rscrates/vm/src/builtins/frame.rscrates/vm/src/frame.rscrates/vm/src/stdlib/sys/monitoring.rs
🚧 Files skipped from review as they are similar to previous changes (1)
- crates/jit/tests/common.rs
Sorry, something went wrong.
Contributor
There was a problem hiding this comment.
Actionable comments posted: 2
♻️ Duplicate comments (2)
crates/vm/src/frame.rs (1)
1349-1352: ⚠️ Potential issue | 🟠 MajorGuard relative jump arithmetic with checked operations (still unresolved).
This repeats a previously reported issue: relative target math is still unchecked in helper and direct paths. Malformed bytecode can wrap/underflow
lastiand corrupt control-flow before a later panic.#!/bin/bash # Verify unresolved unchecked relative target arithmetic in frame execution. # Expected after fix: no matches. rg -n 'self\.lasti\(\)\s*\+\s*1\s*\+\s*u32::from\(arg\)|self\.lasti\(\)\s*\+\s*1\s*-\s*u32::from\(arg\)|self\.lasti\(\)\s*\+\s*caches\s*[+-]\s*delta' crates/vm/src/frame.rsSuggested fix direction
- fn jump_relative_forward(&mut self, delta: u32, caches: u32) { - let target = self.lasti() + caches + delta; - self.update_lasti(|i| *i = target); - } + fn jump_relative_forward( + &mut self, + delta: u32, + caches: u32, + vm: &VirtualMachine, + ) -> FrameResult { + let target = self + .lasti() + .checked_add(caches) + .and_then(|v| v.checked_add(delta)) + .ok_or_else(|| vm.new_system_error("relative jump overflow".to_owned()))?; + self.update_lasti(|i| *i = target); + Ok(None) + }Apply the same checked pattern to backward targets and direct relative computations.
Also applies to: 2428-2429, 2655-2667, 2724-2763, 3538-3557
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/vm/src/frame.rs` around lines 1349 - 1352, The relative jump computation in Instruction::ForIter (and similar sites) performs unchecked arithmetic like bytecode::Label(self.lasti() + 1 + u32::from(arg)), allowing wrap/underflow; update these sites (e.g., inside the match arm that calls self.execute_for_iter(vm, target) and other locations noted) to use checked arithmetic (checked_add/checked_sub or checked_{add,sub}_then_convert) and return an Err/raise a VM error if the computed target overflows or is out of range before constructing bytecode::Label; ensure the same checked pattern is applied to backward targets and direct relative computations referenced in execute_for_iter and other helper paths so all relative jumps validate bounds before use.crates/codegen/src/compile.rs (1)
5126-5126: ⚠️ Potential issue | 🟠 MajorRemove
Instruction::NotTakenfrom async-iteration SEND flow.
NOT_TAKENhere is attached to async iteration control flow (SENDpath), not a booleanPOP_JUMP_IF_*branch, so monitoring semantics become incorrect.Suggested fix
- emit!(self, Instruction::NotTaken);Based on learnings: In RustPython's codegen ir.rs, the
is_conditional_jumpfunction should only matchPOP_JUMP_IF_*instruction variants;ForIterandSendshould not be included becauseNOT_TAKENis for boolean-test conditional jumps only.🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/codegen/src/compile.rs` at line 5126, The emitted Instruction::NotTaken is wrongly applied to the async-iteration SEND path; remove the emit!(self, Instruction::NotTaken) call from the SEND/SEND-related async-iteration flow so that NOT_TAKEN is only used for boolean POP_JUMP_IF_* branches. Locate the SEND/Send handling in compile.rs (the emit!(..., Instruction::NotTaken) call) and delete that emission, and also ensure the is_conditional_jump matcher (or equivalent logic) only considers POP_JUMP_IF_* variants (not ForIter or Send) so NOT_TAKEN stays exclusive to boolean-test conditional jumps.
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Inline comments:
In `@crates/codegen/src/ir.rs`:
- Around line 346-348: Clarify the comment explaining END_SEND_OFFSET (const
END_SEND_OFFSET: u32 = 5) by explicitly breaking down the 5 code units: SEND
instruction (1), its cache entry (1), the three intermediate code units between
the SEND/CACHE pair and END_SEND (3), summing to 5; update the comment near
END_SEND_OFFSET to list these components and their counts and reference SEND and
END_SEND so readers can verify the correspondence with CPython's
END_SEND_OFFSET.
In `@crates/vm/src/builtins/frame.rs`:
- Around line 201-203: In mark_stacks in crates/vm/src/builtins/frame.rs,
replace all unchecked arithmetic that computes jump targets (e.g., `let j =
next_i + oparg as usize` and `let j = next_i - oparg as usize`) with checked
operations: use next_i.checked_add(oparg as usize) for forward targets and
next_i.checked_sub(oparg as usize) for backward targets, and if the checked
operation returns None simply continue/skip that instruction (gracefully skip
stack analysis for that target) so underflow/overflow cannot produce an
out-of-bounds j; update every occurrence mentioned (the forward cases at the
three `next_i + oparg as usize` sites, the backward `next_i - oparg as usize`
site, and the `let mut j = next_i + oparg as usize` site) to follow this
pattern.
---
Duplicate comments:
In `@crates/codegen/src/compile.rs`:
- Line 5126: The emitted Instruction::NotTaken is wrongly applied to the
async-iteration SEND path; remove the emit!(self, Instruction::NotTaken) call
from the SEND/SEND-related async-iteration flow so that NOT_TAKEN is only used
for boolean POP_JUMP_IF_* branches. Locate the SEND/Send handling in compile.rs
(the emit!(..., Instruction::NotTaken) call) and delete that emission, and also
ensure the is_conditional_jump matcher (or equivalent logic) only considers
POP_JUMP_IF_* variants (not ForIter or Send) so NOT_TAKEN stays exclusive to
boolean-test conditional jumps.
In `@crates/vm/src/frame.rs`:
- Around line 1349-1352: The relative jump computation in Instruction::ForIter
(and similar sites) performs unchecked arithmetic like
bytecode::Label(self.lasti() + 1 + u32::from(arg)), allowing wrap/underflow;
update these sites (e.g., inside the match arm that calls
self.execute_for_iter(vm, target) and other locations noted) to use checked
arithmetic (checked_add/checked_sub or checked_{add,sub}_then_convert) and
return an Err/raise a VM error if the computed target overflows or is out of
range before constructing bytecode::Label; ensure the same checked pattern is
applied to backward targets and direct relative computations referenced in
execute_for_iter and other helper paths so all relative jumps validate bounds
before use.
ℹ️ Review info
Configuration used: Path: .coderabbit.yml
Review profile: CHILL
Plan: Pro
⛔ Files ignored due to path filters (9)
Lib/opcode.pyis excluded by!Lib/**Lib/test/test_dis.pyis excluded by!Lib/**Lib/test/test_monitoring.pyis excluded by!Lib/**Lib/test/test_peepholer.pyis excluded by!Lib/**crates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_ands.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_mixed.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__if_ors.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__nested_bool_op.snapis excluded by!**/*.snapcrates/codegen/src/snapshots/rustpython_codegen__compile__tests__nested_double_async_with.snapis excluded by!**/*.snap
📒 Files selected for processing (9)
crates/codegen/src/compile.rscrates/codegen/src/ir.rscrates/compiler-core/src/bytecode/instruction.rscrates/jit/src/instructions.rscrates/jit/tests/common.rscrates/vm/src/builtins/code.rscrates/vm/src/builtins/frame.rscrates/vm/src/frame.rscrates/vm/src/stdlib/sys/monitoring.rs
Sorry, something went wrong.
Contributor
There was a problem hiding this comment.
Caution
Some comments are outside the diff and can’t be posted inline due to platform limitations.
⚠️ Outside diff range comments (1)
crates/codegen/src/ir.rs (1)
1519-1522: ⚠️ Potential issue | 🟡 MinorClear stale operand/cache metadata when rewriting a jump to
Nop.When a redundant jump is converted to
Nop, the old jump arg is retained. If that NOP is preserved as a line marker, it can still emit unnecessaryEXTENDED_ARGcode units and skew code size.💡 Proposed fix
if is_jump_to_next && let Some(last_instr) = blocks[idx].instructions.last_mut() { last_instr.instr = Instruction::Nop.into(); + last_instr.arg = OpArg::new(0); last_instr.target = BlockIdx::NULL; + last_instr.cache_entries = 0; }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/codegen/src/ir.rs` around lines 1519 - 1522, When replacing a redundant jump with a Nop in the is_jump_to_next branch, also clear any leftover operand/cache metadata so the old jump argument doesn't persist; in the same block where you set last_instr.instr = Instruction::Nop.into() and last_instr.target = BlockIdx::NULL, additionally reset the jump operand fields (e.g. last_instr.arg or last_instr.operand) and any cache/metadata fields (e.g. last_instr.cache or similar) to their neutral/default values so the NOP cannot emit EXTENDED_ARGs or skew code size.
🧹 Nitpick comments (1)
crates/codegen/src/ir.rs (1)
1568-1596: Refactor duplicated jump-direction logic in pseudo jump resolution.Both pseudo-jump arms perform the same forward/backward check. Extract the direction once and reuse it to reduce duplication.
♻️ Proposed refactor
let target_pos = block_order[target.idx()]; + let is_forward = target_pos > source_pos; info.instr = match info.instr { AnyInstruction::Pseudo(PseudoInstruction::Jump { .. }) => { - if target_pos > source_pos { + if is_forward { Instruction::JumpForward { target: Arg::marker(), } .into() } else { Instruction::JumpBackward { target: Arg::marker(), } .into() } } AnyInstruction::Pseudo(PseudoInstruction::JumpNoInterrupt { .. }) => { - if target_pos > source_pos { + if is_forward { Instruction::JumpForward { target: Arg::marker(), } .into() } else { Instruction::JumpBackwardNoInterrupt { target: Arg::marker(), } .into() } } other => other, };As per coding guidelines: "When branches differ only in a value but share common logic, extract the differing value first, then call the common logic once to avoid duplicate code."
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@crates/codegen/src/ir.rs` around lines 1568 - 1596, The match on info.instr duplicates the target_pos > source_pos check for both PseudoInstruction::Jump and PseudoInstruction::JumpNoInterrupt; instead compute a boolean (e.g. is_forward = target_pos > source_pos) before or at the top of the match and then use that to select the appropriate Instruction variant. Update the arms for AnyInstruction::Pseudo(PseudoInstruction::Jump { .. }) and AnyInstruction::Pseudo(PseudoInstruction::JumpNoInterrupt { .. }) to use the computed is_forward and construct either Instruction::JumpForward { target: Arg::marker() }.into() or the corresponding backward variant (Instruction::JumpBackward{...} or Instruction::JumpBackwardNoInterrupt{...}) without repeating the comparison, and assign the result back to info.instr.
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Outside diff comments:
In `@crates/codegen/src/ir.rs`:
- Around line 1519-1522: When replacing a redundant jump with a Nop in the
is_jump_to_next branch, also clear any leftover operand/cache metadata so the
old jump argument doesn't persist; in the same block where you set
last_instr.instr = Instruction::Nop.into() and last_instr.target =
BlockIdx::NULL, additionally reset the jump operand fields (e.g. last_instr.arg
or last_instr.operand) and any cache/metadata fields (e.g. last_instr.cache or
similar) to their neutral/default values so the NOP cannot emit EXTENDED_ARGs or
skew code size.
---
Nitpick comments:
In `@crates/codegen/src/ir.rs`:
- Around line 1568-1596: The match on info.instr duplicates the target_pos >
source_pos check for both PseudoInstruction::Jump and
PseudoInstruction::JumpNoInterrupt; instead compute a boolean (e.g. is_forward =
target_pos > source_pos) before or at the top of the match and then use that to
select the appropriate Instruction variant. Update the arms for
AnyInstruction::Pseudo(PseudoInstruction::Jump { .. }) and
AnyInstruction::Pseudo(PseudoInstruction::JumpNoInterrupt { .. }) to use the
computed is_forward and construct either Instruction::JumpForward { target:
Arg::marker() }.into() or the corresponding backward variant
(Instruction::JumpBackward{...} or Instruction::JumpBackwardNoInterrupt{...})
without repeating the comparison, and assign the result back to info.instr.
Sorry, something went wrong.
- Add cache_entries() method to Instruction enum - Emit CACHE code units after opcodes in finalize_code - Handle NO_LOCATION (line=-1) in linetable for CACHE entries - Account for CACHE entries in exception table generation - Skip CACHE entries in VM execution loop (with jump detection) - Handle CACHE in InstrumentedLine/InstrumentedInstruction/InstrumentedForIter/InstrumentedNotTaken - Skip CACHE in monitoring instrumentation phases - Update co_branches() for cache-adjusted offsets - Restore _cache_format in Lib/opcode.py - Remove expectedFailure from test_c_call, test_start_offset
- Convert jump arguments from absolute to relative offsets in frame.rs, monitoring.rs, and stack_analysis - Add jump_relative_forward/backward helpers to ExecutingFrame - Resolve pseudo jump instructions before offset fixpoint loop - Emit NOP for break, continue, pass to match line-tracing - Fix async for: emit EndAsyncFor with correct target, add NotTaken - Fix comprehension if-cleanup to use separate block - Fix super() source range for multi-line calls - Fix NOP removal to preserve line-marker NOPs - Fix InstrumentedLine cache skipping after re-dispatch - Match InstrumentedResume/YieldValue in yield_from_target - Remove CALL_FUNCTION_EX cache entry from opcode.py - Remove resolved expectedFailure markers
Clean up comments that unnecessarily mention CPython per project convention. Replace with concise descriptions of the behavior itself.
Hide details
View details
youknowone
merged commit
youknowone
merged commit ccd377c
into
RustPython:main
Mar 1, 2026
14 checks passed
This was referenced Mar 2, 2026
youknowone
added a commit
to youknowone/RustPython
that referenced
this pull request
Mar 22, 2026
* Emit CACHE code units in bytecode to match CPython 3.14 - Add cache_entries() method to Instruction enum - Emit CACHE code units after opcodes in finalize_code - Handle NO_LOCATION (line=-1) in linetable for CACHE entries - Account for CACHE entries in exception table generation - Skip CACHE entries in VM execution loop (with jump detection) - Handle CACHE in InstrumentedLine/InstrumentedInstruction/InstrumentedForIter/InstrumentedNotTaken - Skip CACHE in monitoring instrumentation phases - Update co_branches() for cache-adjusted offsets - Restore _cache_format in Lib/opcode.py - Remove expectedFailure from test_c_call, test_start_offset * Use relative jump offsets and fix bytecode layout - Convert jump arguments from absolute to relative offsets in frame.rs, monitoring.rs, and stack_analysis - Add jump_relative_forward/backward helpers to ExecutingFrame - Resolve pseudo jump instructions before offset fixpoint loop - Emit NOP for break, continue, pass to match line-tracing - Fix async for: emit EndAsyncFor with correct target, add NotTaken - Fix comprehension if-cleanup to use separate block - Fix super() source range for multi-line calls - Fix NOP removal to preserve line-marker NOPs - Fix InstrumentedLine cache skipping after re-dispatch - Match InstrumentedResume/YieldValue in yield_from_target - Remove CALL_FUNCTION_EX cache entry from opcode.py - Remove resolved expectedFailure markers * Align CPython 3.14 LOAD_GLOBAL null-bit and RERAISE semantics * Remove redundant CPython-referencing comments Clean up comments that unnecessarily mention CPython per project convention. Replace with concise descriptions of the behavior itself.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.
Summary by CodeRabbit
Bug Fixes
Behavior
Performance