From: Markus Mottl <markus.mottl@gmail.com>
To: OCaml List <caml-list@yquem.inria.fr>
Subject: Custom blocks and finalization
Date: Thu, 30 Apr 2009 11:46:39 -0400 [thread overview]
Message-ID: <f8560b80904300846v734fdd58lb6040e7b1b456a1@mail.gmail.com> (raw)
Hi,
we've recently run into a class of bugs concerning finalization
functions with custom blocks that is probably not uncommon in OCaml
bindings (e.g. Postgresql-bindings, SSL-bindings, likely others). It
seems somewhat unintuitive, but finalizers registered from within C do
_not_ behave the same as ones registered from OCaml-code with the
Gc-module.
The OCaml manual explicitly states that custom functions registered
from within C are not allowed to allocate values, perform callbacks,
(de)register roots (I guess global roots, too?), or (as is obviously
also true) release/acquire the OCaml-runtime lock. Developers
probably often miss this information. The consequences of bugs
violating any of these constraints are usually rare and hard to
understand segfaults.
This means that people will have to register finalizers from within
OCaml for such values, which is certainly rather inconvenient. As a
general rule, it seems advisable to never use finalizers that need to
release the runtime lock, e.g. if finalization code can block. The
reason is that finalizers can be run from any thread, including ones
that should not block for an indefinite amount of time. This implies
that people who have designed APIs using finalization that way should
consider redesigning it such that users have to "clean up" manually,
thus forcing them to think about when and in which thread this
happens.
Otherwise, it might be helpful if the OCaml-team could consider
whether this situation can be improved. For example not being allowed
to register/unregister roots to values seems overly restrictive, since
global roots (e.g. for protecting OCaml-callback closures) sometimes
need to be associated with C-values (e.g. for allowing some external
C-library to efficiently perform callbacks into OCaml). Registering
the finalizer from within C during allocation rather than having to
wrap up the value a second time with an OCaml-finalizer would seem
much simpler.
Regards,
Markus
--
Markus Mottl http://www.ocaml.info markus.mottl@gmail.com
next reply other threads:[~2009-04-30 15:46 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-04-30 15:46 Markus Mottl [this message]
2009-04-30 18:17 ` [Caml-list] " Dr. Thomas Fischbacher
[not found] ` <49FB04A9.3090008@soton.ac.uk>
2009-05-01 16:00 ` Markus Mottl
2009-05-06 16:30 ` Dr. Thomas Fischbacher
2009-05-06 16:54 ` Markus Mottl
2009-05-06 17:53 ` Dr. Thomas Fischbacher
2009-05-08 9:36 ` Xavier Leroy
2009-05-08 13:48 ` Markus Mottl
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=f8560b80904300846v734fdd58lb6040e7b1b456a1@mail.gmail.com \
--to=markus.mottl@gmail.com \
--cc=caml-list@yquem.inria.fr \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox