Reduce amount of deprecation warnings when compiling xapi #3570
Conversation
|
Very nice to see much fewer warnings when compiling 👍 |
| String.iteri (fun i _ -> | ||
| if str.[i]=c1 then Bytes.set buf i c2 else () | ||
| ) str; | ||
| Bytes.unsafe_to_string buf |
There was a problem hiding this comment.
I think we could replace this with Astring.String.map or something similar - performance probably doesn't matter in the autogenerator:
http://erratique.ch/software/astring/doc/Astring.String.html
|
|
||
| let write_string (fd: Unix.file_descr) buf = | ||
| Unixext.really_write fd buf 0 (String.length buf) | ||
| Unix.write fd buf 0 (String.length buf) |> ignore |
There was a problem hiding this comment.
Return the number of bytes actually written. write repeats the writing operation until all bytes have been written or an error occurs.
There was a problem hiding this comment.
I suspect that the really_write function comes from https://ocaml.github.io/ocamlunix/ocamlunix.html (Section 5.7). Has anything changed in Unix.write such that really_write isn't useful anymore?
There was a problem hiding this comment.
Not sure, we discussed with @mseri a while ago that Unix.write already does what we need, it writes everything according to the docs, unlike the write Linux command. So the it was assumed that Unix.write behaves like write(2), and maybe that's why really_write was created?
There was a problem hiding this comment.
See that link I posted. Unix.write does repeated write() system calls, but pipes and sockets are a bit special:
The function write of the Unix module iterates the system call write until all the requested bytes are effectively written.
val write : file_descr -> string -> int -> int -> int
However, when the descriptor is a pipe (or a socket, see chapter 6), writes may block and the system call write may be interrupted by a signal. In this case the OCaml call to Unix.write is interrupted and the error EINTR is raised. The problem is that some of the data may already have been written by a previous system call to write but the actual size that was transferred is unknown and lost. This renders the function write of the Unix module useless in the presence of signals.
There was a problem hiding this comment.
I am not convinced, however, that Unixext.really_write does this the right way... 😕
There was a problem hiding this comment.
Yeah. I think it's fine to replace really_write with Unix.write though, because their behaviour is the same IMO :) - they both behave incorrectly in case of EINTR
There was a problem hiding this comment.
As on that website:
let rec restart_on_EINTR f x =
try f x with Unix_error (EINTR, _, _) -> restart_on_EINTR f x
let rec really_write fd buffer offset len =
let n = restart_on_EINTR (single_write fd buffer offset) len in
if n < len then really_write fd buffer (offset + n) (len - n)
There was a problem hiding this comment.
Well, if our Unixext.really_write was incorrect, than why don't we just fix it rather than replacing all its users with Unix.write?
There was a problem hiding this comment.
I think we've done a really_write -> Unix.write replacement in a past PR already, so we should undo that too, not sure which one, maybe @mseri remembers
There was a problem hiding this comment.
@robhoes thanks for the rationale behind really_write! When I did deprecate it in stdext nobody could tell me why we had that broken implementation, I'm happy to fix it as you suggest and revert the deprecation and changes.
I think we can figure out where we did the change and revert it once we fix the really_write, it's likely one of the handful PR on moving to safe-strings, and in any case it was equivalent to what it had done for the last 10 years so it should not be a problem if we miss one.
Let's not merge this yet, I'll revert the Unixext changes and then send a PR to fix Stdext
|
Is this good to merge? |
|
Yes, IMO. But the more reviews, the better. |
| and b = (x >>> 8) &&& 0xffl | ||
| and c = (x >>> 16) &&& 0xffl | ||
| and d = (x >>> 24) &&& 0xffl in | ||
| let result = String.make 4 '\000' in |
There was a problem hiding this comment.
Since you're ANDing them all with the same value, why not include that in the definition of >>>?
There was a problem hiding this comment.
I would find that confusing, because >> is usually the right-shift operator.
There was a problem hiding this comment.
With a different operator of course
There was a problem hiding this comment.
In this case I think it's better to keep the old code and stick to operators that look like the usual ones
|
Yes, I agree. Thanks for digging out the rationale behind the old function |
|
Unix.really_write changes reverted. I can squash the reverts once this PR is approved |
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
Signed-off-by: Marcello Seri <marcello.seri@citrix.com>
6 participants
This will not solve all the warnings, but it moves slowly in the direction that we need to make xapi safe-string compliant and warning free