try separate trhread

Author: evertlammerts

src/duckdb_py/duckdb_python.cpp

@@ -5,6 +5,7 @@
 #include "duckdb/parser/parser.hpp"
 
 #include "duckdb_python/python_objects.hpp"
+#include "duckdb_python/python_log_storage.hpp"
 #include "duckdb_python/pyconnection/pyconnection.hpp"
 #include "duckdb_python/pystatement.hpp"
 #include "duckdb_python/pyrelation.hpp"
@@ -1135,6 +1136,9 @@ PYBIND11_MODULE(DUCKDB_PYTHON_LIB_NAME, m) { // NOLINT
 	      "Tokenizes a SQL string, returning a list of (position, type) tuples that can be "
 	      "used for e.g., syntax highlighting",
 	      py::arg("query"));
+	m.def("_drain_log_forwarding", &PythonLogStorage::DrainForwarder,
+	      "Block until all engine log entries queued for Python's logging module have been "
+	      "forwarded. Forwarding is asynchronous; this is a test/synchronization aid.");
 	py::enum_<PySQLTokenType>(m, "token_type", py::module_local())
 	    .value("identifier", PySQLTokenType::PY_SQL_TOKEN_IDENTIFIER)
 	    .value("numeric_const", PySQLTokenType::PY_SQL_TOKEN_NUMERIC_CONSTANT)

src/duckdb_py/include/duckdb_python/python_log_storage.hpp

@@ -33,9 +33,16 @@ class PythonLogStorageScanState : public LogStorageScanState {
 //!   1. forwards it to Python's standard `logging` module (logging.getLogger("duckdb")), and
 //!   2. retains it in-memory so `SELECT * FROM duckdb_logs` keeps working.
 //!
-//! It subclasses BufferingLogStorage with a buffer size of 1 so each entry is flushed (and
-//! therefore forwarded to Python) immediately, rather than batched until a 2048-entry buffer
-//! fills — engine WARNINGs are sparse and must surface inline to be useful.
+//! It subclasses BufferingLogStorage with a buffer size of 1 so each entry is flushed
+//! immediately, rather than batched until a 2048-entry buffer fills — engine WARNINGs are
+//! sparse and must surface promptly to be useful.
+//!
+//! Forwarding to Python is ASYNCHRONOUS. The engine calls FlushChunk while holding
+//! LogManager::lock (a non-recursive mutex also taken by CreateLogger/WriteLogEntry). Acquiring
+//! the GIL there would deadlock against any other thread that holds the GIL and then enters one
+//! of those LogManager methods (i.e. ordinary concurrent queries). So FlushChunk only copies
+//! (level, message) into a process-global queue, and a single background thread — which holds
+//! no engine lock — drains it and forwards to `logging`. See python_log_storage.cpp.
 class PythonLogStorage : public BufferingLogStorage {
 public:
 	explicit PythonLogStorage(DatabaseInstance &db);
@@ -45,22 +52,33 @@ class PythonLogStorage : public BufferingLogStorage {
 		return "python_log_storage";
 	}
 
+	//! Starts the process-global forwarder thread (idempotent). MUST be called with the GIL held
+	//! and no engine lock held — i.e. from Connect(), never from the engine log-write path.
+	static void EnsureForwarderStarted();
+
+	//! Blocks (releasing the GIL) until every queued entry has been forwarded to `logging`.
+	//! Forwarding is asynchronous, so callers that need to observe a just-emitted warning on the
+	//! Python side must drain first. Exposed to Python as `_duckdb._drain_log_forwarding`
+	//! for deterministic tests; harmless if the forwarder was never started.
+	static void DrainForwarder();
+
 	//! Single-threaded scan interface — mirrors InMemoryLogStorage so duckdb_logs can read us.
 	bool CanScan(LoggingTargetTable table) override;
 	unique_ptr<LogStorageScanState> CreateScanState(LoggingTargetTable table) const override;
 	bool Scan(LogStorageScanState &state, DataChunk &result) const override;
 	void InitializeScan(LogStorageScanState &state) const override;
 
 protected:
-	//! Stores the chunk for duckdb_logs and (for LOG_ENTRIES) forwards it to Python.
+	//! Stores the chunk for duckdb_logs and (for LOG_ENTRIES) queues it for async forwarding.
 	void FlushChunk(LoggingTargetTable table, DataChunk &chunk) override;
 	//! Clears the in-memory buffers.
 	void ResetAllBuffers() override;
 
 private:
 	ColumnDataCollection &GetBuffer(LoggingTargetTable table) const;
-	//! Forwards each row of a LOG_ENTRIES chunk to logging.getLogger("duckdb"). Never throws.
-	void ForwardEntriesToPython(DataChunk &chunk);
+	//! Copies each row of a LOG_ENTRIES chunk into the global forward queue. Never touches the
+	//! GIL or calls Python (it runs under LogManager::lock). Never throws.
+	void EnqueueEntriesForPython(DataChunk &chunk);
 
 	map<LoggingTargetTable, unique_ptr<ColumnDataCollection>> log_storage_buffers;
 };

src/duckdb_py/pyconnection.cpp

@@ -2299,6 +2299,10 @@ shared_ptr<DuckDBPyConnection> DuckDBPyConnection::Connect(const py::object &dat
 			log_manager.SetLogStorage(db_instance, "python_log_storage");
 			log_manager.SetEnableLogging(true);
 			log_manager.SetLogLevel(LogLevel::LOG_WARNING);
+			// Start the background thread that forwards queued entries to Python's logging
+			// module. We're here with the GIL held and no engine lock taken — the only safe
+			// place to do it (the engine log-write path holds LogManager::lock).
+			PythonLogStorage::EnsureForwarderStarted();
 		}
 	}
 	return res;

src/duckdb_py/python_log_storage.cpp

@@ -7,6 +7,10 @@
 #include "duckdb/common/types/data_chunk.hpp"
 #include "duckdb/common/types/vector.hpp"
 
+#include <condition_variable>
+#include <mutex>
+#include <thread>
+
 namespace duckdb {
 
 // Maps the engine's textual log level (stored as VARCHAR in the LOG_ENTRIES chunk) to the
@@ -30,6 +34,129 @@ static int LevelStringToPython(const string &level_str) {
 	return 30;
 }
 
+//===--------------------------------------------------------------------===//
+// Asynchronous forwarder
+//
+// The engine invokes FlushChunk while holding LogManager::lock — a non-recursive mutex that is
+// also taken by LogManager::CreateLogger / WriteLogEntry / Flush. Acquiring the GIL from inside
+// that lock deadlocks: a worker thread holding the lock blocks on the GIL, while another thread
+// holding the GIL blocks on the lock (e.g. via CreateLogger at the start of a concurrent query).
+// We observed exactly this with two threads each running execute() on one database.
+//
+// So forwarding is decoupled. FlushChunk only copies plain (level, message) data into this
+// process-global queue (no GIL, no Python). A single background thread drains the queue and
+// forwards to logging.getLogger("duckdb") with the GIL held but NO engine lock held — breaking
+// the lock-ordering cycle. One global thread (not one per DatabaseInstance) avoids spawning a
+// thread per connection. The queue holds owned copies, so it is independent of any storage's
+// lifetime.
+//===--------------------------------------------------------------------===//
+namespace {
+
+struct PendingLogEntry {
+	int level;
+	string message;
+};
+
+struct LogForwarder {
+	std::mutex mutex;                // guards the fields below; NEVER held while acquiring the GIL
+	std::condition_variable cv;      // forwarder waits here for work
+	std::condition_variable idle_cv; // drainers wait here for the queue to empty
+	vector<PendingLogEntry> queue;
+	bool stop = false;
+	bool started = false;
+	bool busy = false; // a batch has been dequeued but not yet forwarded
+	std::thread thread;
+};
+
+LogForwarder &GetForwarder() {
+	static LogForwarder forwarder;
+	return forwarder;
+}
+
+void ForwarderLoop() {
+	auto &fwd = GetForwarder();
+	while (true) {
+		vector<PendingLogEntry> batch;
+		{
+			std::unique_lock<std::mutex> lck(fwd.mutex);
+			fwd.cv.wait(lck, [&fwd] { return fwd.stop || !fwd.queue.empty(); });
+			if (fwd.stop && fwd.queue.empty()) {
+				return;
+			}
+			batch.swap(fwd.queue);
+			fwd.busy = true; // queue is empty again, but this batch isn't delivered yet
+		}
+		// No engine lock and no forwarder lock held here, so acquiring the GIL cannot deadlock.
+		if (Py_IsInitialized()) { // else interpreter is finalizing — acquiring the GIL would crash
+			try {
+				py::gil_scoped_acquire gil;
+				auto logging = py::module::import("logging");
+				auto logger = logging.attr("getLogger")("duckdb");
+				for (auto &entry : batch) {
+					logger.attr("log")(entry.level, entry.message);
+				}
+			} catch (...) {
+				// Logging must never disrupt anything.
+			}
+		}
+		{
+			std::unique_lock<std::mutex> lck(fwd.mutex);
+			fwd.busy = false;
+			fwd.idle_cv.notify_all(); // wake any DrainForwarder() waiters
+		}
+	}
+}
+
+// atexit callback: stop and join the forwarder while the interpreter is still alive. Runs on the
+// main thread with the GIL held; the GIL is released around join() because the forwarder may be
+// parked in take_gil and could not otherwise wake to observe `stop`.
+void StopForwarder() {
+	auto &fwd = GetForwarder();
+	{
+		std::unique_lock<std::mutex> lck(fwd.mutex);
+		if (!fwd.started) {
+			return;
+		}
+		fwd.stop = true;
+	}
+	fwd.cv.notify_all();
+	if (fwd.thread.joinable()) {
+		py::gil_scoped_release release;
+		fwd.thread.join();
+	}
+}
+
+} // namespace
+
+void PythonLogStorage::EnsureForwarderStarted() {
+	// Called from Connect() with the GIL held and no engine lock held.
+	auto &fwd = GetForwarder();
+	{
+		std::unique_lock<std::mutex> lck(fwd.mutex);
+		if (fwd.started) {
+			return;
+		}
+		fwd.started = true;
+		fwd.thread = std::thread(ForwarderLoop);
+	}
+	// Stop+join before interpreter finalization. Joining a GIL-blocked thread after Py_Finalize
+	// would crash, so we hook atexit (which runs while the interpreter is still valid).
+	try {
+		auto atexit = py::module::import("atexit");
+		atexit.attr("register")(py::cpp_function([]() { StopForwarder(); }));
+	} catch (...) {
+	}
+}
+
+void PythonLogStorage::DrainForwarder() {
+	auto &fwd = GetForwarder();
+	// Release the GIL while waiting: the forwarder thread needs it to finish its in-flight batch
+	// and signal idle. Holding it here would deadlock the very thread we're waiting on.
+	py::gil_scoped_release release;
+	std::unique_lock<std::mutex> lck(fwd.mutex);
+	fwd.idle_cv.wait(lck, [&fwd] { return fwd.queue.empty() && !fwd.busy; });
+}
+
 PythonLogStorage::PythonLogStorage(DatabaseInstance &db) : BufferingLogStorage(db, 1, true) {
 	log_storage_buffers[LoggingTargetTable::LOG_ENTRIES] =
 	    make_uniq<ColumnDataCollection>(Allocator::DefaultAllocator(), GetSchema(LoggingTargetTable::LOG_ENTRIES));
@@ -48,43 +175,38 @@ ColumnDataCollection &PythonLogStorage::GetBuffer(LoggingTargetTable table) cons
 	return *res->second;
 }
 
-void PythonLogStorage::ForwardEntriesToPython(DataChunk &chunk) {
-	// This fires from engine worker threads with the GIL released, and from within both the
-	// LogManager lock and this storage's lock. It runs arbitrary user Python (logging
-	// handlers) and MUST NOT let an exception escape: the engine calls the write path with no
-	// try/catch, directly from query binding/execution, so a raising handler would otherwise
-	// fail the user's query. Hence we swallow everything here.
+void PythonLogStorage::EnqueueEntriesForPython(DataChunk &chunk) {
+	// Runs under LogManager::lock (and our scan lock). It MUST NOT touch the GIL or call Python:
+	// doing so here would deadlock against any thread that holds the GIL and then enters a
+	// LogManager method that needs the same lock (CreateLogger / WriteLogEntry / Flush). So we
+	// only copy plain data into the global queue; the forwarder thread does the Python work
+	// lock-free. The strings are deep-copied (GetString), so they outlive this chunk.
 	//
-	// Caveat: because a lock is held across this call, a handler that re-enters DuckDB on the
-	// same thread and emits another log entry can self-deadlock on the non-recursive lock.
-	// That is outside our control (and matches the engine's own contract for log storages).
-	if (!Py_IsInitialized()) {
-		return; // interpreter is finalizing — acquiring the GIL would crash
-	}
-	try {
-		py::gil_scoped_acquire gil;
-		auto logging = py::module::import("logging");
-		auto logger = logging.attr("getLogger")("duckdb");
-		// LOG_ENTRIES schema: context_id, timestamp, type, log_level (idx 3), message (idx 4).
-		// log_level and message are both VARCHAR; the buffer chunk is flat.
-		auto level_data = FlatVector::GetData<string_t>(chunk.data[3]);
-		auto message_data = FlatVector::GetData<string_t>(chunk.data[4]);
+	// A side benefit of decoupling: a user logging handler that raises now runs on the forwarder
+	// thread, where the exception is swallowed — it can never reach the engine's query path.
+	//
+	// LOG_ENTRIES schema: context_id, timestamp, type, log_level (idx 3), message (idx 4).
+	// log_level and message are both VARCHAR; the buffer chunk is flat.
+	auto level_data = FlatVector::GetData<string_t>(chunk.data[3]);
+	auto message_data = FlatVector::GetData<string_t>(chunk.data[4]);
+	auto &fwd = GetForwarder();
+	{
+		std::unique_lock<std::mutex> lck(fwd.mutex);
 		for (idx_t i = 0; i < chunk.size(); i++) {
-			logger.attr("log")(LevelStringToPython(level_data[i].GetString()), message_data[i].GetString());
+			fwd.queue.push_back({LevelStringToPython(level_data[i].GetString()), message_data[i].GetString()});
 		}
-	} catch (...) {
-		// Logging must never disrupt query execution.
 	}
+	fwd.cv.notify_one();
 }
 
 void PythonLogStorage::FlushChunk(LoggingTargetTable table, DataChunk &chunk) {
 	D_ASSERT(table == LoggingTargetTable::LOG_ENTRIES || table == LoggingTargetTable::LOG_CONTEXTS);
 	// Retain the entry for duckdb_logs FIRST, so a misbehaving Python handler can never cost
 	// us a stored row.
 	log_storage_buffers[table]->Append(chunk);
-	// Forward only real log entries (not context metadata) to Python's logging module.
+	// Queue only real log entries (not context metadata) for async forwarding to logging.
 	if (table == LoggingTargetTable::LOG_ENTRIES) {
-		ForwardEntriesToPython(chunk);
+		EnqueueEntriesForPython(chunk);
 	}
 }