[For merge][part 0] Support Gedit Evaulate

[SJTUyh]

Thanks for your contribution; we appreciate it a lot. The following instructions will make your pull request healthier and help you get feedback more easily. If you do not understand some items, don't worry, just make the pull request and seek help from maintainers.
感谢您的贡献，我们非常重视。以下说明将使您的拉取请求更健康，更易于获得反馈。如果您不理解某些项目，请不要担心，只需提交拉取请求并从维护人员那里寻求帮助即可。

PR Type / PR类型

• Feature（功能新增）
• Bugfix（Bug 修复）
• Docs（文档更新）
• CI/CD（持续集成/持续部署）
• Refactor（代码重构）
• Perf（性能优化）
• Dependency（依赖项更新）
• Test-Cases（测试用例更新）
• Other（其他）

Related Issue | 关联 Issue
Fixes #(issue ID / issue 编号) / Relates to #(issue ID / issue 编号)

🔍 Motivation / 变更动机

Please describe the motivation of this PR and the goal you want to achieve through this PR.
请描述您的拉取请求的动机和您希望通过此拉取请求实现的目标。

📝 Modification / 修改内容

Please briefly describe what modification is made in this PR.
请简要描述此拉取请求中进行的修改。

📐 Associated Test Results / 关联测试结果

Please provide links to the related test results, such as CI pipelines, test reports, etc.
请提供相关测试结果的链接，例如 CI 管道、测试报告等。

⚠️ BC-breaking (Optional) / 向后不兼容变更（可选）

Does the modification introduce changes that break the backward compatibility of the downstream repositories? If so, please describe how it breaks the compatibility and how the downstream projects should modify their code to keep compatibility with this PR.
是否引入了会破坏下游存储库向后兼容性的更改？如果是，请描述它如何破坏兼容性，以及下游项目应该如何修改其代码以保持与此 PR 的兼容性。

⚠️ Performance degradation (Optional) / 性能下降（可选）

If the modification introduces performance degradation, please describe the impact of the performance degradation and the expected performance improvement.
如果引入了性能下降，请描述性能下降的影响和预期的性能改进。

🌟 Use cases (Optional) / 使用案例（可选）

If this PR introduces a new feature, it is better to list some use cases here and update the documentation.
如果此拉取请求引入了新功能，最好在此处列出一些用例并更新文档。

✅ Checklist / 检查列表

Before PR:

• Pre-commit or other linting tools are used to fix the potential lint issues. / 使用预提交或其他 linting 工具来修复潜在的 lint 问题。
• Bug fixes are fully covered by unit tests, the case that causes the bug should be added in the unit tests. / 修复的 Bug 已完全由单元测试覆盖，导致 Bug 的情况应在单元测试中添加。
• The modification is covered by complete unit tests. If not, please add more unit tests to ensure the correctness. / 此拉取请求中的修改已完全由单元测试覆盖。如果不是，请添加更多单元测试以确保正确性。
• All relevant documentation (API docs, docstrings, example tutorials) has been updated to reflect these changes. / 所有相关文档（API 文档、文档字符串、示例教程）已更新以反映这些更改。

After PR:

• If the modification has potential influence on downstream or other related projects, this PR should be tested with those projects. / 如果此拉取请求对下游或其他相关项目有潜在影响，应在那些项目中测试此 PR。
• CLA has been signed and all committers have signed the CLA in this PR. / CLA 已签署，且本 PR 中的所有提交者均已签署 CLA。

👥 Collaboration Info / 协作信息

• Suggested Reviewers / 建议审核人: @xxx
• Relevant Module Owners / 相关模块负责人: @xxx
• Other Collaboration Notes / 其他协作说明：

🌟 Useful CI Command / 实用的CI命令

Command / 命令	Introduction / 介绍
/gemini review	Performs a code review for the current pull request in its current state by Gemini. / 对当前拉取请求在当前状态下由 Gemini 执行代码审核。
/gemini summary	Provides a summary of the current pull request in its current state by Gemini. / 对当前拉取请求在当前状态下由 Gemini 提供摘要。
/gemini help	Displays a list of available commands of Gemini. / 显示 Gemini 可用命令的列表。
/readthedocs build	Triggers a build of the documentation for the current pull request in its current state by Read the Docs. / 触发当前拉取请求在当前状态下由 Read the Docs 构建文档。

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request lays the groundwork for advanced distributed training and evaluation capabilities for the Qwen-Image model, with a strong emphasis on NPU compatibility. It refactors core components like attention and parallel group management to support efficient, scalable processing of multimodal data across multiple devices. The changes enable distributed classifier-free guidance and introduce performance optimizations specific to NPU hardware, ensuring the model can leverage specialized accelerators effectively.

Highlights

• Distributed Training Infrastructure: Introduced new modules for managing distributed process groups and parallel strategies, including GroupCoordinator and SequenceParallelGroupCoordinator, enabling robust distributed training setups.
• NPU Compatibility and Optimization: Integrated specific optimizations and backend changes for NPU (Neural Processing Unit) environments, such as switching the CPU communication backend to HCCL and adding fused operations for Rotary Positional Embeddings (RoPE) and AdaLayerNorm.
• Joint Attention Mechanism for Text and Image: Enhanced the attention mechanism within the QwenImageTransformer2DModel to support joint processing of text and image streams in a distributed fashion, utilizing custom all-to-all communication for QKV tensors.
• Pipeline Integration of Distributed CFG: Modified the QwenImageEditPlusPipeline to incorporate distributed Classifier-Free Guidance (CFG) and caching mechanisms for conditional and unconditional paths, improving efficiency in parallel inference.
• New Flow-Matching Scheduler: Added a FlowMatchEulerDiscreteScheduler with dynamic timestep shifting, various sigma schedules (Karras, exponential, beta), and stochastic sampling options.

🧠 New Feature in Public Preview: You can now enable Memory to help Gemini Code Assist learn from your team's feedback. This makes future code reviews more consistent and personalized to your project's style. Click here to enable Memory in your admin console.

Changelog

• ais_bench/third_party/mindie_sd/qwenimage_edit/attn_layer.py
  • Added xFuserLongContextAttention_new4 class to handle distributed joint attention for text and image streams, incorporating torch.chunk and SeqAllToAll4D for QKV processing.
• ais_bench/third_party/mindie_sd/qwenimage_edit/distributed/all_to_all.py
  • Added all_to_all_4D function and SeqAllToAll4D autograd function for efficient 4D tensor communication in distributed settings.
• ais_bench/third_party/mindie_sd/qwenimage_edit/distributed/group_coordinator.py
  • Added GroupCoordinator and SequenceParallelGroupCoordinator classes for managing distributed process groups.
  • Updated the CPU group backend from gloo to hccl to ensure compatibility with NPU environments.
• ais_bench/third_party/mindie_sd/qwenimage_edit/distributed/parallel_mgr.py
  • Added ParallelConfig dataclass for configuring parallel strategies.
  • Implemented functions to initialize and manage distributed environments and model parallel groups (tensor, sequence, classifier-free guidance parallelism), including NPU device setup.
• ais_bench/third_party/mindie_sd/qwenimage_edit/pipeline_qwenimage_edit_plus.py
  • Added QwenImageEditPlusPipeline class, integrating distributed classifier-free guidance logic.
  • Introduced USE_NPU flag and caching mechanisms (COND_CACHE, UNCOND_CACHE) for conditional/unconditional paths to optimize NPU performance.
• ais_bench/third_party/mindie_sd/qwenimage_edit/scheduling_flow_match_euler_discrete.py
  • Added FlowMatchEulerDiscreteScheduler class, providing a new scheduler with dynamic timestep shifting, Karras/exponential/beta sigma schedules, and stochastic sampling options.
• ais_bench/third_party/mindie_sd/qwenimage_edit/transformer_qwenimage.py
  • Added AdaLayerNorm class for NPU-optimized layer normalization.
  • Modified apply_rotary_emb_qwen to include ROPE_FUSE flag and utilize torch_npu.npu_rotary_mul for fused RoPE operations.
  • Updated QwenImageTransformerBlock to use AdaLayerNorm with ADALN_FUSE flag for fused AdaLayerNorm operations.
  • Integrated caching (cache_cond, cache_uncond) into the forward pass of the transformer blocks for improved performance.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces support for Gedit Evaluate, adding new Python files for distributed training and model components tailored for Ascend NPUs, including custom attention layers, distributed communication utilities, process group management, a new pipeline, and a custom transformer model. However, a security audit identified two significant vulnerabilities: an insecure deserialization flaw using the pickle module in the distributed communication logic, which could lead to remote code execution, and a prompt injection vulnerability in the image editing pipeline, allowing manipulation of the LLM's internal state. Furthermore, the code contains critical issues such as uninitialized attributes that will cause runtime errors, and requires improvements in cleanliness and maintainability, including removing debug prints, personal notes, and translating Chinese comments to English.

[gemini-code-assist]

The attribute self.shm_broadcaster is used here but it's not initialized in the __init__ method. This will lead to an AttributeError at runtime. Please initialize it in the constructor, for example: self.shm_broadcaster = None.

[gemini-code-assist]

The attributes self.cache_cond and self.cache_uncond are used here when use_cache=True, but they are initialized to None on lines 655-656. This will raise an AttributeError at runtime if caching is enabled. These attributes should be initialized with proper cache objects, or a check should be added to ensure they are not None before being used.

[gemini-code-assist]

The attribute self.device_groups is used here but it's not initialized in the __init__ method. This will cause an AttributeError at runtime when self.world_size == 2. Please ensure it is properly initialized in the constructor.

[gemini-code-assist]

The recv_object method uses pickle.loads() to deserialize data received from other ranks in a distributed environment via torch.distributed.recv(). The pickle module is inherently insecure as it can execute arbitrary code during deserialization. An attacker who can control the data sent between nodes in the distributed cluster (e.g., via a compromised node or an insecure network) could achieve arbitrary code execution (RCE) on the receiving node.

Remediation: Avoid using pickle for deserializing data from the network. Use safer alternatives like json for metadata or safetensors for tensor data. If pickle must be used, ensure the network environment is strictly isolated and consider using a cryptographic signature to verify the integrity and authenticity of the serialized data before processing it.

[gemini-code-assist]

The txt_pad_len argument is defined in the forward method signature but is not used within the method's body. This unused argument should be removed.

[gemini-code-assist]

These instance variables (q_descale, k_descale, v_descale) are initialized in the constructor but are not used anywhere in the class. This constitutes dead code and should be removed to improve clarity and maintainability.

[gemini-code-assist]

This file contains a large block of commented-out code and several debug print statements. This should be removed to improve code cleanliness and avoid confusion for future developers.

[gemini-code-assist]

The logic for applying classifier-free guidance is duplicated for the distributed (get_classifier_free_guidance_world_size() == 2) and non-distributed cases. The core logic for combining conditional and unconditional predictions is identical. To improve readability and maintainability, consider refactoring this shared logic into a helper method.

[gemini-code-assist]

This block contains debug print statements with personal notes. These should be removed from production code to keep the output clean and the code professional.

Suggested change

	print("ljf 进入采样器，涉及随机")
	x0 = sample - current_sigma * model_output
	noise = torch.randn_like(sample)
	prev_sample = (1.0 - next_sigma) * x0 + next_sigma * noise
	else:
	print("ljf 进入采样器，无随机")
	if self.config.stochastic_sampling:
	x0 = sample - current_sigma * model_output
	noise = torch.randn_like(sample)
	prev_sample = (1.0 - next_sigma) * x0 + next_sigma * noise
	else:
	prev_sample = sample + dt * model_output

[gemini-code-assist]

The pipeline constructs the final LLM prompt by directly inserting user-provided text into a template using Python's .format() method. The template uses special control tokens (e.g., <|im_start|>, <|im_end|>) to delineate system and user roles. Because the user input is not sanitized, an attacker can include these control tokens in their prompt to terminate the user block and inject new system-level instructions, potentially bypassing safety filters or manipulating the model's behavior (Prompt Injection).

Remediation: Sanitize user input by stripping or escaping the model's special control tokens (e.g., <|im_start|>, <|im_end|>, <|image_pad|>) before inserting it into the prompt template.