mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

Switch to MonadCatchIO-transformers for better handling of state while catching exceptions.

Browse source 
As seen in this bug report, the lifted exception handling using the StateT
monad throws away state changes when an action throws an exception.
http://git-annex.branchable.com/bugs/git_annex_fork_bombs_on_gpg_file/
  .. Which can result in cached values being redundantly calculated, or other
     possibly worse bugs when the annex state gets out of sync with reality.

This switches from a StateT AnnexState to a ReaderT (MVar AnnexState).
All changes to the state go via the MVar. So when an Annex action is
running inside an exception handler, and it makes some changes, they
immediately go into affect in the MVar. If it then throws an exception
(or even crashes its thread!), the state changes are still in effect.

The MonadCatchIO-transformers change is actually only incidental.
I could have kept on using lifted-base for the exception handling.
However, I'd have needed to write a new instance of MonadBaseControl
for the new monad.. and I didn't write the old instance.. I begged Bas
and he kindly sent it to me. Happily, MonadCatchIO-transformers is
able to derive a MonadCatchIO instance for my monad.

This is a deep level change. It passes the test suite! What could it break?

Well.. The most likely breakage would be to code that runs an Annex action
in an exception handler, and *wants* state changes to be thrown away.
Perhaps the state changes leaves the state inconsistent, or wrong. Since
there are relatively few places in git-annex that catch exceptions in the
Annex monad, and the AnnexState is generally just used to cache calculated
data, this is unlikely to be a problem.

Oh yeah, this change also makes Assistant.Types.ThreadedMonad a bit
redundant. It's now entirely possible to run concurrent Annex actions in
different threads, all sharing access to the same state! The ThreadedMonad
just adds some extra work on top of that, with its own MVar, and avoids
such actions possibly stepping on one-another's toes. I have not gotten
rid of it, but might try that later. Being able to run concurrent Annex
actions would simplify parts of the Assistant code.
This commit is contained in:
Joey Hess 2013-05-19 14:16:36 -04:00
parent 630a8b9ad2
commit 345ee4f37c
9 changed files with 60 additions and 78 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

61
Annex.hs
View file

@ -1,6 +1,6 @@
{- git-annex monad {- git-annex monad
- -
- Copyright 2010-2012 Joey Hess <joey@kitenet.net> - Copyright 2010-2013 Joey Hess <joey@kitenet.net>
- -
- Licensed under the GNU GPL version 3 or higher. - Licensed under the GNU GPL version 3 or higher.
-} -}
@ -16,7 +16,6 @@ module Annex (
newState, newState,
run, run,
eval, eval,
exec,
getState, getState,
changeState, changeState,
setFlag, setFlag,
@ -35,10 +34,10 @@ module Annex (
withCurrentState, withCurrentState,
) where ) where
import "mtl" Control.Monad.State.Strict import "mtl" Control.Monad.Reader
import Control.Monad.Trans.Control (StM, MonadBaseControl, liftBaseWith, restoreM) import "MonadCatchIO-transformers" Control.Monad.CatchIO
import Control.Monad.Base (liftBase, MonadBase)
import System.Posix.Types (Fd) import System.Posix.Types (Fd)
import Control.Concurrent
import Common import Common
import qualified Git import qualified Git
@ -56,32 +55,24 @@ import Types.TrustLevel
import Types.Group import Types.Group
import Types.Messages import Types.Messages
import Types.UUID import Types.UUID
import Utility.State
import qualified Utility.Matcher import qualified Utility.Matcher
import qualified Data.Map as M import qualified Data.Map as M
import qualified Data.Set as S import qualified Data.Set as S
-- git-annex's monad {- git-annex's monad is a ReaderT around an AnnexState stored in a MVar.
newtype Annex a = Annex { runAnnex :: StateT AnnexState IO a } - This allows modifying the state in an exception-safe fashion.
- The MVar is not exposed outside this module.
-}
newtype Annex a = Annex { runAnnex :: ReaderT (MVar AnnexState) IO a }
deriving ( deriving (
Monad, Monad,
MonadIO, MonadIO,
MonadState AnnexState, MonadReader (MVar AnnexState),
MonadCatchIO,
Functor, Functor,
Applicative Applicative
) )
instance MonadBase IO Annex where
liftBase = Annex . liftBase
instance MonadBaseControl IO Annex where
newtype StM Annex a = StAnnex (StM (StateT AnnexState IO) a)
liftBaseWith f = Annex $ liftBaseWith $ \runInIO ->
f $ liftM StAnnex . runInIO . runAnnex
restoreM = Annex . restoreM . unStAnnex
where
unStAnnex (StAnnex st) = st
type Matcher a = Either [Utility.Matcher.Token a] (Utility.Matcher.Matcher a) type Matcher a = Either [Utility.Matcher.Token a] (Utility.Matcher.Matcher a)
data FileInfo = FileInfo data FileInfo = FileInfo
@ -156,13 +147,32 @@ newState gitrepo = AnnexState
new :: Git.Repo -> IO AnnexState new :: Git.Repo -> IO AnnexState
new = newState <$$> Git.Config.read new = newState <$$> Git.Config.read
{- performs an action in the Annex monad -} {- Performs an action in the Annex monad from a starting state,
- returning a new state. -}
run :: AnnexState -> Annex a -> IO (a, AnnexState) run :: AnnexState -> Annex a -> IO (a, AnnexState)
run s a = runStateT (runAnnex a) s run s a = do
mvar <- newMVar s
r <- runReaderT (runAnnex a) mvar
s' <- takeMVar mvar
return (r, s')
{- Performs an action in the Annex monad from a starting state,
- and throws away the new state. -}
eval :: AnnexState -> Annex a -> IO a eval :: AnnexState -> Annex a -> IO a
eval s a = evalStateT (runAnnex a) s eval s a = do
exec :: AnnexState -> Annex a -> IO AnnexState mvar <- newMVar s
exec s a = execStateT (runAnnex a) s runReaderT (runAnnex a) mvar
getState :: (AnnexState -> v) -> Annex v
getState selector = do
mvar <- ask
s <- liftIO $ readMVar mvar
return $ selector s
changeState :: (AnnexState -> AnnexState) -> Annex ()
changeState modifier = do
mvar <- ask
liftIO $ modifyMVar_ mvar $ return . modifier
{- Sets a flag to True -} {- Sets a flag to True -}
setFlag :: String -> Annex () setFlag :: String -> Annex ()
@ -204,6 +214,7 @@ inRepo a = liftIO . a =<< gitRepo
fromRepo :: (Git.Repo -> a) -> Annex a fromRepo :: (Git.Repo -> a) -> Annex a
fromRepo a = a <$> gitRepo fromRepo a = a <$> gitRepo
{- Calculates a value from an annex's git repository and its GitConfig. -}
calcRepo :: (Git.Repo -> GitConfig -> IO a) -> Annex a calcRepo :: (Git.Repo -> GitConfig -> IO a) -> Annex a
calcRepo a = do calcRepo a = do
s <- getState id s <- getState id

29
Annex/Exception.hs
View file

@ -1,36 +1,37 @@
{- exception handling in the git-annex monad {- exception handling in the git-annex monad
- -
- Copyright 2011 Joey Hess <joey@kitenet.net> - Note that when an Annex action fails and the exception is handled
- by these functions, any changes the action has made to the
- AnnexState are retained. This works because the Annex monad
- internally stores the AnnexState in a MVar.
-
- Copyright 2011-2013 Joey Hess <joey@kitenet.net>
- -
- Licensed under the GNU GPL version 3 or higher. - Licensed under the GNU GPL version 3 or higher.
-} -}
module Annex.Exception ( module Annex.Exception (
bracketIO, bracketIO,
handle,
tryAnnex, tryAnnex,
throw, throw,
catchAnnex,
) where ) where
import Control.Exception.Lifted (handle, try) import Prelude hiding (catch)
import Control.Monad.Trans.Control (liftBaseOp) import "MonadCatchIO-transformers" Control.Monad.CatchIO (bracket, try, throw, catch)
import Control.Exception hiding (handle, try, throw) import Control.Exception hiding (handle, try, throw, bracket, catch)
import Common.Annex import Common.Annex
{- Runs an Annex action, with setup and cleanup both in the IO monad. {- Runs an Annex action, with setup and cleanup both in the IO monad. -}
-
- Warning: Currently if the Annex action fails, any changes it has made
- to Annex state are discarded.
-}
bracketIO :: IO c -> (c -> IO b) -> Annex a -> Annex a bracketIO :: IO c -> (c -> IO b) -> Annex a -> Annex a
bracketIO setup cleanup go = bracketIO setup cleanup go =
liftBaseOp (Control.Exception.bracket setup cleanup) (const go) bracket (liftIO setup) (liftIO . cleanup) (const go)
{- try in the Annex monad -} {- try in the Annex monad -}
tryAnnex :: Annex a -> Annex (Either SomeException a) tryAnnex :: Annex a -> Annex (Either SomeException a)
tryAnnex = try tryAnnex = try
{- Throws an exception in the Annex monad. -} {- catch in the Annex monad -}
throw :: Control.Exception.Exception e => e -> Annex a catchAnnex :: Exception e => Annex a -> (e -> Annex a) -> Annex a
throw = liftIO . throwIO catchAnnex = catch

4
Assistant/Monad.hs
View file

@ -26,7 +26,6 @@ module Assistant.Monad (
) where ) where
import "mtl" Control.Monad.Reader import "mtl" Control.Monad.Reader
import Control.Monad.Base (liftBase, MonadBase)
import System.Log.Logger import System.Log.Logger
import Common.Annex import Common.Annex
@ -53,9 +52,6 @@ newtype Assistant a = Assistant { mkAssistant :: ReaderT AssistantData IO a }
Applicative Applicative
) )
instance MonadBase IO Assistant where
liftBase = Assistant . liftBase
data AssistantData = AssistantData data AssistantData = AssistantData
{ threadName :: ThreadName { threadName :: ThreadName
, threadState :: ThreadState , threadState :: ThreadState

8
Command/Add.hs
View file

@ -130,8 +130,8 @@ ingest (Just source) = do
go k cache = ifM isDirect ( godirect k cache , goindirect k cache ) go k cache = ifM isDirect ( godirect k cache , goindirect k cache )
goindirect (Just (key, _)) _ = do goindirect (Just (key, _)) _ = do
handle (undo (keyFilename source) key) $ catchAnnex (moveAnnex key $ contentLocation source)
moveAnnex key $ contentLocation source (undo (keyFilename source) key)
liftIO $ nukeFile $ keyFilename source liftIO $ nukeFile $ keyFilename source
return $ Just key return $ Just key
goindirect Nothing _ = failure "failed to generate a key" goindirect Nothing _ = failure "failed to generate a key"
@ -172,7 +172,7 @@ undo :: FilePath -> Key -> IOException -> Annex a
undo file key e = do undo file key e = do
whenM (inAnnex key) $ do whenM (inAnnex key) $ do
liftIO $ nukeFile file liftIO $ nukeFile file
handle tryharder $ fromAnnex key file catchAnnex (fromAnnex key file) tryharder
logStatus key InfoMissing logStatus key InfoMissing
throw e throw e
where where
@ -184,7 +184,7 @@ undo file key e = do
{- Creates the symlink to the annexed content, returns the link target. -} {- Creates the symlink to the annexed content, returns the link target. -}
link :: FilePath -> Key -> Bool -> Annex String link :: FilePath -> Key -> Bool -> Annex String
link file key hascontent = handle (undo file key) $ do link file key hascontent = flip catchAnnex (undo file key) $ do
l <- inRepo $ gitAnnexLink file key l <- inRepo $ gitAnnexLink file key
replaceFile file $ makeAnnexLink l replaceFile file $ makeAnnexLink l

26
Utility/State.hs
View file

@ -1,26 +0,0 @@
{- state monad support
-
- Copyright 2012 Joey Hess <joey@kitenet.net>
-
- Licensed under the GNU GPL version 3 or higher.
-}
module Utility.State where
import "mtl" Control.Monad.State.Strict
{- Modifies Control.Monad.State's state, forcing a strict update.
- This avoids building thunks in the state and leaking.
- Why it's not the default, I don't know.
-
- Example: changeState $ \s -> s { foo = bar }
-}
changeState :: MonadState s m => (s -> s) -> m ()
changeState f = do
x <- get
put $! f x
{- Gets a value from the internal state, selected by the passed value
- constructor. -}
getState :: MonadState s m => (s -> a) -> m a
getState = gets

2
debian/changelog vendored
View file

@ -2,6 +2,8 @@ git-annex (4.20130517) UNRELEASED; urgency=low
* Sanitize debian changelog version before putting it into cabal file. * Sanitize debian changelog version before putting it into cabal file.
Closes: #708619 Closes: #708619
* Switch to MonadCatchIO-transformers for better handling of state while
catching exceptions.
-- Joey Hess <joeyh@debian.org> Fri, 17 May 2013 11:17:03 -0400 -- Joey Hess <joeyh@debian.org> Fri, 17 May 2013 11:17:03 -0400

3
debian/control vendored
View file

@ -16,7 +16,7 @@ Build-Depends:
libghc-dav-dev (>= 0.3) [amd64 i386 kfreebsd-amd64 kfreebsd-i386 sparc], libghc-dav-dev (>= 0.3) [amd64 i386 kfreebsd-amd64 kfreebsd-i386 sparc],
libghc-quickcheck2-dev, libghc-quickcheck2-dev,
libghc-monad-control-dev (>= 0.3), libghc-monad-control-dev (>= 0.3),
libghc-lifted-base-dev, libghc-monadcatchio-transformers-dev,
libghc-unix-compat-dev, libghc-unix-compat-dev,
libghc-dlist-dev, libghc-dlist-dev,
libghc-uuid-dev, libghc-uuid-dev,
@ -38,7 +38,6 @@ Build-Depends:
libghc-wai-logger-dev [i386 amd64 kfreebsd-i386 kfreebsd-amd64], libghc-wai-logger-dev [i386 amd64 kfreebsd-i386 kfreebsd-amd64],
libghc-case-insensitive-dev, libghc-case-insensitive-dev,
libghc-http-types-dev, libghc-http-types-dev,
libghc-transformers-dev,
libghc-blaze-builder-dev, libghc-blaze-builder-dev,
libghc-crypto-api-dev, libghc-crypto-api-dev,
libghc-network-multicast-dev, libghc-network-multicast-dev,

3
doc/install/fromscratch.mdwn
View file

@ -9,7 +9,6 @@ quite a lot.
* [SHA](http://hackage.haskell.org/package/SHA) * [SHA](http://hackage.haskell.org/package/SHA)
* [dataenc](http://hackage.haskell.org/package/dataenc) * [dataenc](http://hackage.haskell.org/package/dataenc)
* [monad-control](http://hackage.haskell.org/package/monad-control) * [monad-control](http://hackage.haskell.org/package/monad-control)
* [lifted-base](http://hackage.haskell.org/package/lifted-base)
* [QuickCheck 2](http://hackage.haskell.org/package/QuickCheck) * [QuickCheck 2](http://hackage.haskell.org/package/QuickCheck)
* [json](http://hackage.haskell.org/package/json) * [json](http://hackage.haskell.org/package/json)
* [IfElse](http://hackage.haskell.org/package/IfElse) * [IfElse](http://hackage.haskell.org/package/IfElse)
@ -34,7 +33,6 @@ quite a lot.
* [data-default](http://hackage.haskell.org/package/data-default) * [data-default](http://hackage.haskell.org/package/data-default)
* [case-insensitive](http://hackage.haskell.org/package/case-insensitive) * [case-insensitive](http://hackage.haskell.org/package/case-insensitive)
* [http-types](http://hackage.haskell.org/package/http-types) * [http-types](http://hackage.haskell.org/package/http-types)
* [transformers](http://hackage.haskell.org/package/transformers)
* [wai](http://hackage.haskell.org/package/wai) * [wai](http://hackage.haskell.org/package/wai)
* [wai-logger](http://hackage.haskell.org/package/wai-logger) * [wai-logger](http://hackage.haskell.org/package/wai-logger)
* [warp](http://hackage.haskell.org/package/warp) * [warp](http://hackage.haskell.org/package/warp)
@ -50,6 +48,7 @@ quite a lot.
* [async](http://hackage.haskell.org/package/async) * [async](http://hackage.haskell.org/package/async)
* [HTTP](http://hackage.haskell.org/package/HTTP) * [HTTP](http://hackage.haskell.org/package/HTTP)
* [unix-compat](http://hackage.haskell.org/package/unix-compat) * [unix-compat](http://hackage.haskell.org/package/unix-compat)
* [MonadCatchIO-transformers](http://hackage.haskell.org/package/MonadCatchIO-transformers)
* Shell commands * Shell commands
* [git](http://git-scm.com/) * [git](http://git-scm.com/)
* [xargs](http://savannah.gnu.org/projects/findutils/) * [xargs](http://savannah.gnu.org/projects/findutils/)

2
git-annex.cabal
View file

@ -71,7 +71,7 @@ Executable git-annex
containers, utf8-string, network (>= 2.0), mtl (>= 2), containers, utf8-string, network (>= 2.0), mtl (>= 2),
bytestring, old-locale, time, HTTP, bytestring, old-locale, time, HTTP,
extensible-exceptions, dataenc, SHA, process, json, extensible-exceptions, dataenc, SHA, process, json,
base (>= 4.5 && < 4.8), monad-control, transformers-base, lifted-base, base (>= 4.5 && < 4.8), monad-control, MonadCatchIO-transformers,
IfElse, text, QuickCheck >= 2.1, bloomfilter, edit-distance, process, IfElse, text, QuickCheck >= 2.1, bloomfilter, edit-distance, process,
SafeSemaphore, uuid, random, dlist, unix-compat SafeSemaphore, uuid, random, dlist, unix-compat
-- Need to list these because they're generated from .hsc files. -- Need to list these because they're generated from .hsc files.