cpython/InternalDocs/frames.md

# Frames

Each call to a Python function has an activation record, commonly known as a
"frame". It contains information about the function being executed, consisting
of three conceptual sections:

* Local variables (including arguments, cells and free variables)
* Evaluation stack
* Specials: The per-frame object references needed by the VM, including
  globals dict, code object, instruction pointer, stack depth, the
  previous frame, etc.

The definition of the `_PyInterpreterFrame` struct is in
[Include/internal/pycore_interpframe_structs.h](../Include/internal/pycore_interpframe_structs.h).

# Allocation

Python semantics allows frames to outlive the activation, so they need to
be allocated outside the C call stack. To reduce overhead and improve locality
of reference, most frames are allocated contiguously in a per-thread stack
(see `_PyThreadState_PushFrame` in [Python/pystate.c](../Python/pystate.c)).

Frames of generators and coroutines are embedded in the generator and coroutine
objects, so are not allocated in the per-thread stack. See `_PyGenObject` in
[Include/internal/pycore_interpframe_structs.h](../Include/internal/pycore_interpframe_structs.h).

## Layout

Each activation record is laid out as:

* Specials
* Locals
* Stack

This seems to provide the best performance without excessive complexity.
The specials have a fixed size, so the offset of the locals is known. The
interpreter needs to hold two pointers, a frame pointer and a stack pointer.

#### Alternative layout

An alternative layout that was used for part of 3.11 alpha was:

* Locals
* Specials
* Stack

This has the advantage that no copying is required when making a call,
as the arguments on the stack are (usually) already in the correct
location for the parameters. However, it requires the VM to maintain
an extra pointer for the locals, which can hurt performance.

### Specials

The specials section contains the following pointers:

* Globals dict
* Builtins dict
* Locals dict (not the "fast" locals, but the locals for eval and class creation)
* Code object
* Heap allocated `PyFrameObject` for this activation record, if any.
* The function.

The pointer to the function is not strictly required, but it is cheaper to
store a strong reference to the function and borrowed references to the globals
and builtins, than strong references to both globals and builtins.

### Frame objects

When creating a backtrace or when calling `sys._getframe()` the frame becomes
visible to Python code. When this happens a new `PyFrameObject` is created
and a strong reference to it is placed in the `frame_obj` field of the specials
section. The `frame_obj` field is initially `NULL`.

The `PyFrameObject` may outlive a stack-allocated `_PyInterpreterFrame`.
If it does then `_PyInterpreterFrame` is copied into the `PyFrameObject`,
except the evaluation stack which must be empty at this point.
The previous frame link is updated to reflect the new location of the frame.

This mechanism provides the appearance of persistent, heap-allocated
frames for each activation, but with low runtime overhead.

### Generators and Coroutines

Generators (objects of type `PyGen_Type`, `PyCoro_Type` or
`PyAsyncGen_Type`) have a `_PyInterpreterFrame` embedded in them, so
that they can be created with a single memory allocation.
When such an embedded frame is iterated or awaited, it can be linked with
frames on the per-thread stack via the linkage fields.

If a frame object associated with a generator outlives the generator, then
the embedded `_PyInterpreterFrame` is copied into the frame object (see
`take_ownership()` in [Python/frame.c](../Python/frame.c)).

### Field names

Many of the fields in `_PyInterpreterFrame` were copied from the 3.10 `PyFrameObject`.
Thus, some of the field names may be a bit misleading.

For example the `f_globals` field has a `f_` prefix implying it belongs to the
`PyFrameObject` struct, although it belongs to the `_PyInterpreterFrame` struct.
We may rationalize this naming scheme for a later version.


### Shim frames

On entry to `_PyEval_EvalFrameDefault()` a shim `_PyInterpreterFrame` is pushed.
This frame is stored on the C stack, and popped when `_PyEval_EvalFrameDefault()`
returns. This extra frame is inserted so that `RETURN_VALUE`, `YIELD_VALUE`, and
`RETURN_GENERATOR` do not need to check whether the current frame is the entry frame.
The shim frame points to a special code object containing the `INTERPRETER_EXIT`
instruction which cleans up the shim frame and returns.


### Base frame

Each thread state contains an embedded `_PyInterpreterFrame` called the "base frame"
that serves as a sentinel at the bottom of the frame stack. This frame is allocated
in `_PyThreadStateImpl` (the internal extension of `PyThreadState`) and initialized
when the thread state is created. The `owner` field is set to `FRAME_OWNED_BY_INTERPRETER`.

External profilers and sampling tools can validate that they have successfully unwound
the complete call stack by checking that the frame chain terminates at the base frame.
The `PyThreadState.base_frame` pointer provides the expected address to compare against.
If a stack walk doesn't reach this frame, the sample is incomplete (possibly due to a
race condition) and should be discarded.

The base frame is embedded in `_PyThreadStateImpl` rather than `PyThreadState` because
`_PyInterpreterFrame` is defined in internal headers that cannot be exposed in the
public API. A pointer (`PyThreadState.base_frame`) is provided for profilers to access
the address without needing internal headers.

See the initialization in `new_threadstate()` in [Python/pystate.c](../Python/pystate.c).

#### How profilers should use the base frame

External profilers should read `tstate->base_frame` before walking the stack, then
walk from `tstate->current_frame` following `frame->previous` pointers until reaching
a frame with `owner == FRAME_OWNED_BY_INTERPRETER`. After the walk, verify that the
last frame address matches `base_frame`. If not, discard the sample as incomplete
since the frame chain may have been in an inconsistent state due to concurrent updates.


### Remote Profiling Frame Cache

The `last_profiled_frame` field in `PyThreadState` supports an optimization for
remote profilers that sample call stacks from external processes. When a remote
profiler reads the call stack, it writes the current frame address to this field.
The eval loop then keeps this pointer valid by updating it to the parent frame
whenever a frame returns (in `_PyEval_FrameClearAndPop`).

This creates a "high-water mark" that always points to a frame still on the stack.
On subsequent samples, the profiler can walk from `current_frame` until it reaches
`last_profiled_frame`, knowing that frames from that point downward are unchanged
and can be retrieved from a cache. This significantly reduces the amount of remote
memory reads needed when call stacks are deep and stable at their base.

The update in `_PyEval_FrameClearAndPop` is guarded: it only writes when
`last_profiled_frame` is non-NULL AND matches the frame being popped. This
prevents transient frames (called and returned between profiler samples) from
corrupting the cache pointer, while avoiding any overhead when profiling is inactive.


### The Instruction Pointer

`_PyInterpreterFrame` has two fields which are used to maintain the instruction
pointer: `instr_ptr` and `return_offset`.

When a frame is executing, `instr_ptr` points to the instruction currently being
executed. In a suspended frame, it points to the instruction that would execute
if the frame were to resume. After `frame.f_lineno` is set, `instr_ptr` points to
the next instruction to be executed. During a call to a python function,
`instr_ptr` points to the call instruction, because this is what we would expect
to see in an exception traceback.

The `return_offset` field determines where a `RETURN` should go in the caller,
relative to `instr_ptr`.  It is only meaningful to the callee, so it needs to
be set in any instruction that implements a call (to a Python function),
including CALL, SEND and BINARY_OP_SUBSCR_GETITEM, among others. If there is no
callee, then return_offset is meaningless. It is necessary to have a separate
field for the return offset because (1) if we apply this offset to `instr_ptr`
while executing the `RETURN`, this is too early and would lose us information
about the previous instruction which we could need for introspecting and
debugging. (2) `SEND` needs to pass two offsets to the generator: one for
`RETURN` and one for `YIELD`. It uses the `oparg` for one, and the
`return_offset` for the other.
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`# Frames`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`Each call to a Python function has an activation record, commonly known as a`
			`"frame". It contains information about the function being executed, consisting`
			`of three conceptual sections:`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
			`* Local variables (including arguments, cells and free variables)`
			`* Evaluation stack`
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`* Specials: The per-frame object references needed by the VM, including`
			`globals dict, code object, instruction pointer, stack depth, the`
			`previous frame, etc.`

gh-119786: [doc] more consistent syntax in InternalDocs (#125815) 2024-10-21 23:37:31 +01:00			The definition of the `_PyInterpreterFrame` struct is in
InternalDocs: Fix outdated struct references in frames.md (#132613) Docs: Fix outdated struct references in frames.md Co-authored-by: alperyoney <alperyoney@fb.com> 2025-04-20 15:24:21 -07:00			`[Include/internal/pycore_interpframe_structs.h](../Include/internal/pycore_interpframe_structs.h).`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`# Allocation`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`Python semantics allows frames to outlive the activation, so they need to`
			`be allocated outside the C call stack. To reduce overhead and improve locality`
			`of reference, most frames are allocated contiguously in a per-thread stack`
gh-119786: [doc] more consistent syntax in InternalDocs (#125815) 2024-10-21 23:37:31 +01:00			(see `_PyThreadState_PushFrame` in [Python/pystate.c](../Python/pystate.c)).
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00
			`Frames of generators and coroutines are embedded in the generator and coroutine`
InternalDocs: Fix outdated struct references in frames.md (#132613) Docs: Fix outdated struct references in frames.md Co-authored-by: alperyoney <alperyoney@fb.com> 2025-04-20 15:24:21 -07:00			objects, so are not allocated in the per-thread stack. See `_PyGenObject` in
			`[Include/internal/pycore_interpframe_structs.h](../Include/internal/pycore_interpframe_structs.h).`
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00
			`## Layout`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
			`Each activation record is laid out as:`
gh-119786: cleanup internal docs and fix internal links (#127485) 2024-12-01 18:12:22 +01:00
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`* Specials`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00			`* Locals`
			`* Stack`

			`This seems to provide the best performance without excessive complexity.`
gh-119786: Fix typos in `InternalDocs/frames.md` (#128275) Fix typos in `InternalDocs/frames.md` 2024-12-26 15:39:15 +01:00			`The specials have a fixed size, so the offset of the locals is known. The`
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`interpreter needs to hold two pointers, a frame pointer and a stack pointer.`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
			`#### Alternative layout`

			`An alternative layout that was used for part of 3.11 alpha was:`

			`* Locals`
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`* Specials`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00			`* Stack`

			`This has the advantage that no copying is required when making a call,`
			`as the arguments on the stack are (usually) already in the correct`
			`location for the parameters. However, it requires the VM to maintain`
			`an extra pointer for the locals, which can hurt performance.`

gh-131170: fix duplicated sections in frames.md file (#131177) fix duplicated sections in frames.md file In the frames.md file at InternalDocs, change the first duplicated title to Specials, and remove unnecessary content under the Specials section. 2025-03-13 16:59:19 +03:00			`### Specials`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
gh-119786: Fix typos in `InternalDocs/frames.md` (#128275) Fix typos in `InternalDocs/frames.md` 2024-12-26 15:39:15 +01:00			`The specials section contains the following pointers:`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
			`* Globals dict`
			`* Builtins dict`
			`* Locals dict (not the "fast" locals, but the locals for eval and class creation)`
			`* Code object`
			* Heap allocated `PyFrameObject` for this activation record, if any.
			`* The function.`

			`The pointer to the function is not strictly required, but it is cheaper to`
			`store a strong reference to the function and borrowed references to the globals`
			`and builtins, than strong references to both globals and builtins.`

			`### Frame objects`

			When creating a backtrace or when calling `sys._getframe()` the frame becomes
GH-96421: Insert shim frame on entry to interpreter (GH-96319) * Adds EXIT_INTERPRETER instruction to exit PyEval_EvalDefault() * Simplifies RETURN_VALUE, YIELD_VALUE and RETURN_GENERATOR instructions as they no longer need to check for entry frames. 2022-11-10 04:34:57 -08:00			visible to Python code. When this happens a new `PyFrameObject` is created
gh-119786: Fix typos in `InternalDocs/frames.md` (#128275) Fix typos in `InternalDocs/frames.md` 2024-12-26 15:39:15 +01:00			and a strong reference to it is placed in the `frame_obj` field of the specials
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00			section. The `frame_obj` field is initially `NULL`.

			The `PyFrameObject` may outlive a stack-allocated `_PyInterpreterFrame`.
			If it does then `_PyInterpreterFrame` is copied into the `PyFrameObject`,
			`except the evaluation stack which must be empty at this point.`
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`The previous frame link is updated to reflect the new location of the frame.`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
			`This mechanism provides the appearance of persistent, heap-allocated`
			`frames for each activation, but with low runtime overhead.`

			`### Generators and Coroutines`

gh-119786: [doc] more consistent syntax in InternalDocs (#125815) 2024-10-21 23:37:31 +01:00			Generators (objects of type `PyGen_Type`, `PyCoro_Type` or
			`PyAsyncGen_Type`) have a `_PyInterpreterFrame` embedded in them, so
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`that they can be created with a single memory allocation.`
			`When such an embedded frame is iterated or awaited, it can be linked with`
			`frames on the per-thread stack via the linkage fields.`
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
			`If a frame object associated with a generator outlives the generator, then`
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			the embedded `_PyInterpreterFrame` is copied into the frame object (see
gh-119786: [doc] more consistent syntax in InternalDocs (#125815) 2024-10-21 23:37:31 +01:00			`take_ownership()` in [Python/frame.c](../Python/frame.c)).
GH-89480: Document motivation, design and implementation of 3.11 frame stack. (GH-32304) 2022-04-11 16:05:20 +01:00
			`### Field names`

			Many of the fields in `_PyInterpreterFrame` were copied from the 3.10 `PyFrameObject`.
			`Thus, some of the field names may be a bit misleading.`

			For example the `f_globals` field has a `f_` prefix implying it belongs to the
			`PyFrameObject` struct, although it belongs to the `_PyInterpreterFrame` struct.
gh-119786: move frames documentation to InternalDocs and add details (#121009) 2024-06-26 13:18:20 +01:00			`We may rationalize this naming scheme for a later version.`
GH-96421: Insert shim frame on entry to interpreter (GH-96319) * Adds EXIT_INTERPRETER instruction to exit PyEval_EvalDefault() * Simplifies RETURN_VALUE, YIELD_VALUE and RETURN_GENERATOR instructions as they no longer need to check for entry frames. 2022-11-10 04:34:57 -08:00

			`### Shim frames`

			On entry to `_PyEval_EvalFrameDefault()` a shim `_PyInterpreterFrame` is pushed.
			This frame is stored on the C stack, and popped when `_PyEval_EvalFrameDefault()`
			returns. This extra frame is inserted so that `RETURN_VALUE`, `YIELD_VALUE`, and
			`RETURN_GENERATOR` do not need to check whether the current frame is the entry frame.
			The shim frame points to a special code object containing the `INTERPRETER_EXIT`
			`instruction which cleans up the shim frame and returns.`
gh-109094: replace frame->prev_instr by frame->instr_ptr (#109095) 2023-10-26 14:43:10 +01:00

gh-138122: Don't sample partial frame chains (#141912) 2025-12-07 15:53:48 +00:00			`### Base frame`

			Each thread state contains an embedded `_PyInterpreterFrame` called the "base frame"
			`that serves as a sentinel at the bottom of the frame stack. This frame is allocated`
			in `_PyThreadStateImpl` (the internal extension of `PyThreadState`) and initialized
			when the thread state is created. The `owner` field is set to `FRAME_OWNED_BY_INTERPRETER`.

			`External profilers and sampling tools can validate that they have successfully unwound`
			`the complete call stack by checking that the frame chain terminates at the base frame.`
			The `PyThreadState.base_frame` pointer provides the expected address to compare against.
			`If a stack walk doesn't reach this frame, the sample is incomplete (possibly due to a`
			`race condition) and should be discarded.`

			The base frame is embedded in `_PyThreadStateImpl` rather than `PyThreadState` because
			`_PyInterpreterFrame` is defined in internal headers that cannot be exposed in the
			public API. A pointer (`PyThreadState.base_frame`) is provided for profilers to access
			`the address without needing internal headers.`

			See the initialization in `new_threadstate()` in [Python/pystate.c](../Python/pystate.c).

			`#### How profilers should use the base frame`

			External profilers should read `tstate->base_frame` before walking the stack, then
			walk from `tstate->current_frame` following `frame->previous` pointers until reaching
			a frame with `owner == FRAME_OWNED_BY_INTERPRETER`. After the walk, verify that the
			last frame address matches `base_frame`. If not, discard the sample as incomplete
			`since the frame chain may have been in an inconsistent state due to concurrent updates.`


gh-138122: Implement frame caching in RemoteUnwinder to reduce memory reads (#142137) This PR implements frame caching in the RemoteUnwinder class to significantly reduce memory reads when profiling remote processes with deep call stacks. When cache_frames=True, the unwinder stores the frame chain from each sample and reuses unchanged portions in subsequent samples. Since most profiling samples capture similar call stacks (especially the parent frames), this optimization avoids repeatedly reading the same frame data from the target process. The implementation adds a last_profiled_frame field to the thread state that tracks where the previous sample stopped. On the next sample, if the current frame chain reaches this marker, the cached frames from that point onward are reused instead of being re-read from remote memory. The sampling profiler now enables frame caching by default. 2025-12-06 22:37:34 +00:00			`### Remote Profiling Frame Cache`

			The `last_profiled_frame` field in `PyThreadState` supports an optimization for
			`remote profilers that sample call stacks from external processes. When a remote`
			`profiler reads the call stack, it writes the current frame address to this field.`
			`The eval loop then keeps this pointer valid by updating it to the parent frame`
			whenever a frame returns (in `_PyEval_FrameClearAndPop`).

			`This creates a "high-water mark" that always points to a frame still on the stack.`
			On subsequent samples, the profiler can walk from `current_frame` until it reaches
			`last_profiled_frame`, knowing that frames from that point downward are unchanged
			`and can be retrieved from a cache. This significantly reduces the amount of remote`
			`memory reads needed when call stacks are deep and stable at their base.`

			The update in `_PyEval_FrameClearAndPop` is guarded: it only writes when
			`last_profiled_frame` is non-NULL AND matches the frame being popped. This
			`prevents transient frames (called and returned between profiler samples) from`
			`corrupting the cache pointer, while avoiding any overhead when profiling is inactive.`


gh-109094: replace frame->prev_instr by frame->instr_ptr (#109095) 2023-10-26 14:43:10 +01:00			`### The Instruction Pointer`

			`_PyInterpreterFrame` has two fields which are used to maintain the instruction
			pointer: `instr_ptr` and `return_offset`.

			When a frame is executing, `instr_ptr` points to the instruction currently being
			`executed. In a suspended frame, it points to the instruction that would execute`
			if the frame were to resume. After `frame.f_lineno` is set, `instr_ptr` points to
			`the next instruction to be executed. During a call to a python function,`
			`instr_ptr` points to the call instruction, because this is what we would expect
			`to see in an exception traceback.`

			The `return_offset` field determines where a `RETURN` should go in the caller,
			relative to `instr_ptr`. It is only meaningful to the callee, so it needs to
			`be set in any instruction that implements a call (to a Python function),`
gh-131306: Remove unused code related to `BINARY_SUBSCR` (#131307) 2025-03-16 17:37:29 +01:00			`including CALL, SEND and BINARY_OP_SUBSCR_GETITEM, among others. If there is no`
gh-119786: Fix typos in `InternalDocs/frames.md` (#128275) Fix typos in `InternalDocs/frames.md` 2024-12-26 15:39:15 +01:00			`callee, then return_offset is meaningless. It is necessary to have a separate`
gh-109094: replace frame->prev_instr by frame->instr_ptr (#109095) 2023-10-26 14:43:10 +01:00			field for the return offset because (1) if we apply this offset to `instr_ptr`
			while executing the `RETURN`, this is too early and would lose us information
			`about the previous instruction which we could need for introspecting and`
			debugging. (2) `SEND` needs to pass two offsets to the generator: one for
			`RETURN` and one for `YIELD`. It uses the `oparg` for one, and the
			`return_offset` for the other.