Skip to content

Commit

Permalink
WIP: Experimental conversion to use variant types
Browse files Browse the repository at this point in the history
  • Loading branch information
talex5 committed Jul 21, 2023
1 parent e5a0e54 commit 8c929e1
Show file tree
Hide file tree
Showing 46 changed files with 1,337 additions and 808 deletions.
49 changes: 14 additions & 35 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -1524,19 +1524,26 @@ See Eio's own tests for examples, e.g., [tests/switch.md](tests/switch.md).
## Provider Interfaces

Eio applications use resources by calling functions (such as `Eio.Flow.write`).
These functions are actually wrappers that call methods on the resources.
These functions are actually wrappers that look up the implementing module and call
the appropriate function on that.
This allows you to define your own resources.

Here's a flow that produces an endless stream of zeros (like "/dev/zero"):

```ocaml
let zero = object
inherit Eio.Flow.source
module Zero = struct
type t = unit
method read_into buf =
let single_read () buf =
Cstruct.memset buf 0;
Cstruct.length buf
let read_methods = [] (* Optional optimisations *)
end
let ops = Eio.Flow.Pi.source (module Zero)
let zero = Eio.Resource.T ((), ops)
```

It can then be used like any other Eio flow:
Expand All @@ -1549,34 +1556,6 @@ It can then be used like any other Eio flow:
- : unit = ()
```

The `Flow.source` interface has some extra methods that can be used for optimisations
(for example, instead of filling a buffer with zeros it could be more efficient to share
a pre-allocated block of zeros).
Using `inherit` provides default implementations of these methods that say no optimisations are available.
It also protects you somewhat from API changes in future, as defaults can be provided for any new methods that get added.

Although it is possible to *use* an object by calling its methods directly,
it is recommended that you use the functions instead.
The functions provide type information to the compiler, leading to clearer error messages,
and may provide extra features or sanity checks.

For example `Eio.Flow.single_read` is defined as:

```ocaml
let single_read (t : #Eio.Flow.source) buf =
let got = t#read_into buf in
assert (got > 0 && got <= Cstruct.length buf);
got
```

As an exception to this rule, it is fine to use the methods of `env` directly
(e.g. using `main env#stdin` instead of `main (Eio.Stdenv.stdin env)`.
Here, the compiler already has the type from the `Eio_main.run` call immediately above it,
and `env` is acting as a simple record.
We avoid doing that in this guide only to avoid alarming OCaml users unfamiliar with object syntax.

See [Dynamic Dispatch](doc/rationale.md#dynamic-dispatch) for more discussion about the use of objects here.

## Example Applications

- [gemini-eio][] is a simple Gemini browser. It shows how to integrate Eio with `ocaml-tls` and `notty`.
Expand Down Expand Up @@ -1756,14 +1735,14 @@ If you want to store the argument, this may require you to cast internally:
```ocaml
module Foo : sig
type t
val of_source : #Eio.Flow.source -> t
val of_source : _ Eio.Flow.source -> t
end = struct
type t = {
src : Eio.Flow.source;
src : Eio.Flow.source_ty r;
}
let of_source x = {
src = (x :> Eio.Flow.source);
src = (x :> Eio.Flow.source_ty r);
}
end
```
Expand Down
2 changes: 1 addition & 1 deletion doc/prelude.ml
Original file line number Diff line number Diff line change
Expand Up @@ -43,4 +43,4 @@ module Eio_main = struct
end
end

let parse_config (flow : #Eio.Flow.source) = ignore
let parse_config (flow : _ Eio.Flow.source) = ignore
33 changes: 14 additions & 19 deletions doc/rationale.md
Original file line number Diff line number Diff line change
Expand Up @@ -125,32 +125,27 @@ For dynamic dispatch with subtyping, objects seem to be the best choice:
An object uses a single block to store the object's fields and a pointer to the shared method table.

- First-class modules and GADTs are an advanced feature of the language.
The new users we hope to attract to OCaml 5.00 are likely to be familiar with objects already.
The new users we hope to attract to OCaml 5.0 are likely to be familiar with objects already.

- It is possible to provide base classes with default implementations of some methods.
This can allow adding new operations to the API in future without breaking existing providers.

In general, simulating objects using other features of the language leads to worse performance
and worse ergonomics than using the language's built-in support.

In Eio, we split the provider and consumer APIs:

- To *provide* a flow, you implement an object type.
- To *use* a flow, you call a function (e.g. `Flow.close`).

The functions mostly just call the corresponding method on the object.
If you call object methods directly in OCaml then you tend to get poor compiler error messages.
This is because OCaml can only refer to the object types by listing the methods you seem to want to use.
Using functions avoids this, because the function signature specifies the type of its argument,
allowing type inference to work as for non-object code.
In this way, users of Eio can be largely unaware that objects are being used at all.

The function wrappers can also provide extra checks that the API is being followed correctly,
such as asserting that a read does not return 0 bytes,
or add extra convenience functions without forcing every implementor to add them too.

Note that the use of objects in Eio is not motivated by the use of the "Object Capabilities" security model.
Despite the name, that is not specific to objects at all.
However, in order for Eio to be widely accepted in the OCaml community,
we no longer use of objects and instead use a pair of a value and a function for looking up interfaces.
There is a problem here, because each interface has a different type,
so the function's return type depends on its input (the interface ID).
This requires using a GADT. However, GADT's don't support sub-typing.
To get around this, we use an extensible GADT to get the correct typing
(but which will raise an exception if the interface isn't supported),
and then wrap this with a polymorphic variant phantom type to help ensure
it is used correctly.

This system gives the same performance as using objects and without requiring allocation.
However, care is needed when defining new interfaces,
since the compiler can't check that the resource really implements all the interfaces its phantom type suggests.

## Results vs Exceptions

Expand Down
2 changes: 1 addition & 1 deletion eio_windows.opam
Original file line number Diff line number Diff line change
Expand Up @@ -30,4 +30,4 @@ build: [
]
]
dev-repo: "git+https://github.com/ocaml-multicore/eio.git"
#available: [os-family = "windows"]
#available: [os = "win32"]
22 changes: 13 additions & 9 deletions fuzz/fuzz_buf_read.ml
Original file line number Diff line number Diff line change
Expand Up @@ -26,26 +26,30 @@ exception Buffer_limit_exceeded = Buf_read.Buffer_limit_exceeded
let initial_size = 10
let max_size = 100

let mock_flow next = object (self)
inherit Eio.Flow.source
module Mock_flow = struct
type t = string list ref

val mutable next = next

method read_into buf =
match next with
let rec single_read t buf =
match !t with
| [] ->
raise End_of_file
| "" :: xs ->
next <- xs;
self#read_into buf
t := xs;
single_read t buf
| x :: xs ->
let len = min (Cstruct.length buf) (String.length x) in
Cstruct.blit_from_string x 0 buf 0 len;
let x' = String.drop x len in
next <- (if x' = "" then xs else x' :: xs);
t := (if x' = "" then xs else x' :: xs);
len

let read_methods = []
end

let mock_flow =
let ops = Eio.Flow.Pi.source (module Mock_flow) in
fun chunks -> Eio.Resource.T (ref chunks, ops)

module Model = struct
type t = string ref

Expand Down
33 changes: 20 additions & 13 deletions lib_eio/buf_read.ml
Original file line number Diff line number Diff line change
@@ -1,11 +1,13 @@
exception Buffer_limit_exceeded

type 'a r = 'a Resource.t

type t = {
mutable buf : Cstruct.buffer;
mutable pos : int;
mutable len : int;
mutable flow : Flow.source option; (* None if we've seen eof *)
mutable consumed : int; (* Total bytes consumed so far *)
mutable flow : Flow.source_ty r option; (* None if we've seen eof *)
mutable consumed : int; (* Total bytes consumed so far *)
max_size : int;
}

Expand Down Expand Up @@ -45,7 +47,7 @@ open Syntax
let capacity t = Bigarray.Array1.dim t.buf

let of_flow ?initial_size ~max_size flow =
let flow = (flow :> Flow.source) in
let flow = (flow :> Flow.source_ty r) in
if max_size <= 0 then Fmt.invalid_arg "Max size %d should be positive!" max_size;
let initial_size = Option.value initial_size ~default:(min 4096 max_size) in
let buf = Bigarray.(Array1.create char c_layout initial_size) in
Expand Down Expand Up @@ -128,17 +130,22 @@ let ensure_slow_path t n =
let ensure t n =
if t.len < n then ensure_slow_path t n

let as_flow t =
object
inherit Flow.source
module F = struct
type nonrec t = t

method read_into dst =
ensure t 1;
let len = min (buffered_bytes t) (Cstruct.length dst) in
Cstruct.blit (peek t) 0 dst 0 len;
consume t len;
len
end
let single_read t dst =
ensure t 1;
let len = min (buffered_bytes t) (Cstruct.length dst) in
Cstruct.blit (peek t) 0 dst 0 len;
consume t len;
len

let read_methods = []
end

let as_flow =
let ops = Flow.Pi.source (module F) in
fun t -> Resource.T (t, ops)

let get t i =
Bigarray.Array1.get t.buf (t.pos + i)
Expand Down
8 changes: 4 additions & 4 deletions lib_eio/buf_read.mli
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ type 'a parser = t -> 'a
@raise End_of_file The flow ended without enough data to parse an ['a].
@raise Buffer_limit_exceeded Parsing the value would exceed the configured size limit. *)

val parse : ?initial_size:int -> max_size:int -> 'a parser -> #Flow.source -> ('a, [> `Msg of string]) result
val parse : ?initial_size:int -> max_size:int -> 'a parser -> _ Flow.source -> ('a, [> `Msg of string]) result
(** [parse p flow ~max_size] uses [p] to parse everything in [flow].
It is a convenience function that does
Expand All @@ -32,7 +32,7 @@ val parse : ?initial_size:int -> max_size:int -> 'a parser -> #Flow.source -> ('
@param initial_size see {!of_flow}. *)

val parse_exn : ?initial_size:int -> max_size:int -> 'a parser -> #Flow.source -> 'a
val parse_exn : ?initial_size:int -> max_size:int -> 'a parser -> _ Flow.source -> 'a
(** [parse_exn] wraps {!parse}, but raises [Failure msg] if that returns [Error (`Msg msg)].
Catching exceptions with [parse] and then raising them might seem pointless,
Expand All @@ -46,7 +46,7 @@ val parse_string : 'a parser -> string -> ('a, [> `Msg of string]) result
val parse_string_exn : 'a parser -> string -> 'a
(** [parse_string_exn] is like {!parse_string}, but handles errors like {!parse_exn}. *)

val of_flow : ?initial_size:int -> max_size:int -> #Flow.source -> t
val of_flow : ?initial_size:int -> max_size:int -> _ Flow.source -> t
(** [of_flow ~max_size flow] is a buffered reader backed by [flow].
@param initial_size The initial amount of memory to allocate for the buffer.
Expand All @@ -68,7 +68,7 @@ val of_buffer : Cstruct.buffer -> t
val of_string : string -> t
(** [of_string s] is a reader that reads from [s]. *)

val as_flow : t -> Flow.source
val as_flow : t -> Flow.source_ty Resource.t
(** [as_flow t] is a buffered flow.
Reading from it will return data from the buffer,
Expand Down
2 changes: 1 addition & 1 deletion lib_eio/buf_write.mli
Original file line number Diff line number Diff line change
Expand Up @@ -85,7 +85,7 @@ exception Flush_aborted

(** {2 Running} *)

val with_flow : ?initial_size:int -> #Flow.sink -> (t -> 'a) -> 'a
val with_flow : ?initial_size:int -> _ Flow.sink -> (t -> 'a) -> 'a
(** [with_flow flow fn] runs [fn writer], where [writer] is a buffer that flushes to [flow].
Concurrently with [fn], it also runs a fiber that copies from [writer] to [flow].
Expand Down
12 changes: 7 additions & 5 deletions lib_eio/eio.ml
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,7 @@ module Std = struct
module Promise = Promise
module Fiber = Fiber
module Switch = Switch
type 'a r = 'a Resource.t
let traceln = Debug.traceln
end

Expand All @@ -15,6 +16,7 @@ module Mutex = Eio_mutex
module Condition = Condition
module Stream = Stream
module Exn = Exn
module Resource = Resource
module Generic = Generic
module Flow = Flow
module Buf_read = Buf_read
Expand All @@ -28,15 +30,15 @@ module Fs = Fs
module Path = Path

module Stdenv = struct
let stdin (t : <stdin : #Flow.source; ..>) = t#stdin
let stdout (t : <stdout : #Flow.sink; ..>) = t#stdout
let stderr (t : <stderr : #Flow.sink; ..>) = t#stderr
let net (t : <net : #Net.t; ..>) = t#net
let stdin (t : <stdin : _ Flow.source; ..>) = t#stdin
let stdout (t : <stdout : _ Flow.sink; ..>) = t#stdout
let stderr (t : <stderr : _ Flow.sink; ..>) = t#stderr
let net (t : <net : _ #Net.t; ..>) = t#net
let process_mgr (t : <process_mgr : #Process.mgr; ..>) = t#process_mgr
let domain_mgr (t : <domain_mgr : #Domain_manager.t; ..>) = t#domain_mgr
let clock (t : <clock : #Time.clock; ..>) = t#clock
let mono_clock (t : <mono_clock : #Time.Mono.t; ..>) = t#mono_clock
let secure_random (t: <secure_random : #Flow.source; ..>) = t#secure_random
let secure_random (t: <secure_random : _ Flow.source; ..>) = t#secure_random
let fs (t : <fs : #Fs.dir Path.t; ..>) = t#fs
let cwd (t : <cwd : #Fs.dir Path.t; ..>) = t#cwd
let debug (t : <debug : 'a; ..>) = t#debug
Expand Down
14 changes: 9 additions & 5 deletions lib_eio/eio.mli
Original file line number Diff line number Diff line change
Expand Up @@ -45,6 +45,8 @@ module Std : sig
module Fiber = Fiber
module Switch = Switch

type 'a r = 'a Resource.t

val traceln :
?__POS__:string * int * int * int ->
('a, Format.formatter, unit, unit) format4 -> 'a
Expand All @@ -62,6 +64,8 @@ end
The system resources are available from the environment argument provided by your event loop
(e.g. {!Eio_main.run}). *)

module Resource = Resource

(** A base class for objects that can be queried at runtime for extra features. *)
module Generic = Generic

Expand Down Expand Up @@ -175,9 +179,9 @@ module Stdenv : sig
To use these, see {!Flow}. *)

val stdin : <stdin : #Flow.source as 'a; ..> -> 'a
val stdout : <stdout : #Flow.sink as 'a; ..> -> 'a
val stderr : <stderr : #Flow.sink as 'a; ..> -> 'a
val stdin : <stdin : _ Flow.source as 'a; ..> -> 'a
val stdout : <stdout : _ Flow.sink as 'a; ..> -> 'a
val stderr : <stderr : _ Flow.sink as 'a; ..> -> 'a

(** {1 File-system access}
Expand All @@ -201,7 +205,7 @@ module Stdenv : sig
To use this, see {!Net}.
*)

val net : <net : #Net.t as 'a; ..> -> 'a
val net : <net : _ #Net.t as 'a; ..> -> 'a
(** [net t] gives access to the process's network namespace. *)

(** {1 Processes }
Expand Down Expand Up @@ -233,7 +237,7 @@ module Stdenv : sig

(** {1 Randomness} *)

val secure_random : <secure_random : #Flow.source as 'a; ..> -> 'a
val secure_random : <secure_random : _ Flow.source as 'a; ..> -> 'a
(** [secure_random t] is an infinite source of random bytes suitable for cryptographic purposes. *)

(** {1 Debugging} *)
Expand Down
Loading

0 comments on commit 8c929e1

Please sign in to comment.