ContT, withLifted and resetContIO (II)
Introduction
This is the second article in a series about continuations, forking, and monad transformers. Previous article. Today we will solve the “withLifted” riddle we posed at the very end of the last article.
Motivation
Recapitulating the conclusion from the last article. Given:
-- capture any monad stacks with a base of `ContT () IO`. class MonadIO m => MonadContIO m where liftContIO :: ContT () IO a -> m a -- insert the trivial instances forkCont2With :: MonadContIO m => (IO () -> IO ()) -> m Bool forkCont2With forker = liftContIO $ ContT $ \c -> forker (c False) >> c True moveContWith :: MonadContIO m => (IO () -> IO ()) -> m () moveContWith forker = liftContIO $ ContT $ \c -> forker (c ()) moveToNewThread :: MonadContIO m => m () moveToNewThread = moveContWith (void . forkIO)we can fork and “move”/“fork” any monadic operations who have a base of
ContT () IO, allowing us for example to write this:main = do evalContT $ flip (evalStateT (0 :: Int)) $ do modify (+1) moveToNewThread s <- get -- this and below happens in non-main thread liftIO $ print s ..And we noted that in general, the “host” that runs the remaining effectful/stateful computation (in the above example
forkIO) requires no knowledge of the specific monad at work - the interface of the host is a plainIO ().With this somewhat surprising result, we started to wonder: How powerful exactly is
ContT () IO, and can it solve other similar problems in the area of “lifting and unlifting” of transformer-stacks? The first thing we will consider in this area are “with” functions. Let us phrase the problem in haskell:-- mock-version of a resource acquire/release computation with a -- continuation-based interface. Consider this rather similar real-world -- function straight from the `base` library: -- Foreign.Marshal.Utils.with :: Storable a => a -> (Ptr a -> IO b) -> IO b mockWith :: String -> (() -> IO a) -> IO a mockWith s c = do putStrLn $ "acquire " ++ s x <- c () putStrLn $ "release " ++ s pure x main :: IO () main = flip evalStateT (0 :: Int) $ do liftIO $ mockWith "myResource" $ \() -> do x <- get -- again: d'oh! .. ..
withLifted
Desired Semantics
Sometimes the type signature already is half of the solution, but in this case I will go ahead and directly propose:
withLifted
:: MonadContIO m => (forall r . (a -> IO r) -> IO r) -> (a -> m b) -> m bIf this has an implementation, then our motivating example could be written as:
main :: IO ()
main = evalContT $ flip evalStateT (0 :: Int) $ do
withLifted (mockWith "myResource") $ \() -> do
x <- get -- works, at least by types
..
..Testcases:
Proper ordering of acquire/release/what comes after:
test1 = evalContT $ do withLifted (mockWith "myResource") $ \() -> liftIO $ print "inside" liftIO $ print "outside"should print “acquire myResource, inside, release myResource, outside”
Effects to pass through properly:
test2 = evalContT $ flip evalStateT (0 :: Int) $ do withLifted (mockWith "myResource") $ \() -> modify (+1) get >>= liftIO . printshould print “acquire myResource; release myResource; 1”
Nesting poses no problem:
test3 = evalContT $ flip evalStateT (0 :: Int) $ do withLifted (mockWith "a") $ \() -> withLifted (mockWith "b") $ \() -> modify (+1) get >>= liftIO . printshould print “acquire a; acquire b; release b; release a; 1”
Towards a Solution
We will approach this in a few steps, because these steps help building intuition regarding expressiveness of ContT () IO in general. But feel free to step to the next section for the completed solution.
We will start with the blank template:
withLifted with c = do -- m
-- with :: forall r . (a -> IO r) -> IO r
-- c :: a -> m b
_ -- :: m bThe first thing to note about this is that c is in m-monadic context, so any approaches where we have dropped down to IO will not work. For example, we will not be able to use c a in the right part of ContT $ \k ->. This directly mandates that our solution looks like this:
withLifted with c = do -- m
a <- _ -- :: m a (yay for hole-driven development)
b <- c a
_ -- :: m ()
pure bFocus on the first hole. We must get an a out, but our only “a-provider” is with :: forall r . (a -> IO r) -> IO r. So we need to drop to IO somehow anyway. So we are probably fine doing just that:
withLifted with c = do -- m
a <- liftContIO $ ContT $ \k ->
_ with k
-- ^ :: (forall r . (a -> IO r) -> IO r) -> (a -> IO ()) -> IO ()
b <- c a
_
pure bThis directly leads to
attempt number 1
withLifted with c = do -- m a <- ContT $ \k -> with k b <- c a pure bwhich type-checks. But does not work. Consider that
kcaptures the entire remaining computation, including anything “below”. Meaning thattest1 = evalContT $ do withLifted (mockWith "myResource") $ \() -> liftIO $ print "inside" liftIO $ print "outside"would print “acquire myResource; inside; outside; release myResource”.
Back to the drawing-board!
There is one escape-hatch we have not considered so far: The “second application” from the last article - we can “move” to a different thread. And we can move back. And nothing stops us from forking the “host” in beforehand as a first step. And from aligning things so that lifetime of this host thread aligns with that of resource allocated via with. Start with slightly modifying the relevant bits from the previous article:
contSingleProcessor :: MVar (a -> IO ()) -> a -> IO ()
contSingleProcessor mvar a = takeMVar mvar >>= \c -> c a
moveToSingleProcessor :: MVar (a -> IO ()) -> ContT () IO a
moveToSingleProcessor mvar = ContT $ \c -> putMVar mvar cWe use MVars because only a single continuation will need to be processed.
withLifted with c = do -- m
mvar <- liftIO $ newEmptyMVar
liftIO $ void $ forkIO $ with $ \a -> contSingleProcessor mvar a
a <- moveToSingleProcessor mvar
b <- c a
_somehowReturnFromChannel -- remaining piece of this puzzle
pure bTaking into account that the with currently (again) captures all that comes “below”, but the remaining hole should escape that, it is clear that we need some sort of interaction with code from above the forkIO. We can just write this:
withLifted with c = do -- m
escape <- liftContIO $ ContT $ _ -- (m () -> IO ()) -> IO ()
mvar <- liftIO $ newEmptyMVar
liftIO $ void $ forkIO $ with $ \a -> contSingleProcessor mvar a
a <- moveToSingleProcessor mvar
b <- c a
escape
pure bSo we pass something down, but we need to pass something up (the continuation at the point of invoking escape). So, another MVar. We will focus on the operation that produces escape and define it separately:
createReturnPoint0 :: m (m ())
createReturnPoint0 = liftContIO $ ContT $ \k -> do
mvar <- newEmptyMVar
k $ liftContIO $ ContT $ putMVar mvar
-- ^ pass down an "escape" `m ()` that places the
-- continuation into an MVar without executing it.
k2 <- takeMVar mvar
k2 () -- run that MVar, but only after `k` has completed
-- (by reaching "escape")We will make one minor adjustment that makes both implementation and usage a bit shorter:
createReturnPoint :: m (a -> m a)
createReturnPoint = ContT $ \k -> do
mvar <- newEmptyMVar
k $ \a -> liftContIO $ ContT $ \k2 -> putMVar mvar (k2 a)
join $ takeMVar mvarWhich gives us:
attempt number 2 (almost!)
withLifted with c = do moveToOriginalContext <- createReturnPoint mvar <- liftIO $ newEmptyMVar liftIO $ void $ forkIO $ with $ contSingleProcessor mvar a <- moveToSingleProcessor b <- c a moveToOriginalContext b
This comes close, but suffers from race-conditions. To explain, we visualize the nested resource acquisition example:
main thread
║ resource "a" thread
║ evalContT resource "b" thread
║ │ created
║ │ ║ acquire a
║ └───── move via MVar ────┐ ║ takeMVar
┊ │ ║ start running continuation
(blocked on takeMVar) │ ║ created
┊ │ ║ ║ acquire b
┊ └───── move via MVar ──────────┐ ║ takeMVar
┊ ┊ │ ║
┊ (blocked on takeMVar) │ ║ inner part
┊ ┊ │ ║
┊ ┌──────────────────────────────┘ ║ move back
┊ ┌────────────────────────┘ ║ directly move back ║ release b
┊ │ ║ release a x
║ │ any "outside" stuff x
║ │Note that the ordering of release a and release b is not in any way guaranteed. (Nor that of “outside stuff” versus the releases.) We could start throwing some more MVars at this - but we can also notice that we do not actually want any concurrency: The important stuff happens in createReturnPoint, while forkIO is superfluous:
Solution to the Riddle
createReturnPoint :: MonadContIO m => m (a -> m a)
createReturnPoint = ContT $ \k -> do
mvar <- newEmptyMVar
k $ \a -> liftContIO $ ContT $ \k2 -> putMVar mvar (k2 a)
join $ takeMVar mvar
withLifted
:: MonadContIO m => (forall r . (a -> IO r) -> IO r) -> (a -> m b) -> m b
withLifted withC f = do
escape <- createReturnPoint
a <- liftContIO $ ContT withC
b <- f a
escape bThe magic really lies within createReturnPoint: It runs the continuation, but passes it a “continuation-continuation” (consider the type a -> m a, where m is has a base that is ContT () IO). And afterwards, it grabs the continuation that the continuation-continuation has passed back upwards via MVar, and executes that. Crucially, this passing of the continuation back upwards escapes the scope of the with that we invoke in withLifted, resulting in exactly the desired ordering of IO (and non-IO) effects.
Properties and Interactions
Our implementation passes the three tests we wrote above. That gives us three properties already:
withLiftedretains the intended ordering of acquire/inner/release/outer effects.“inner” effects carry to the “outside”.
nesting works -
withLiftedinteracts well withwithLifted.
and we may mention thatwithLifteddoes notforkitself in any fashion (no uses offorkIO)
Further, not too surprisingly:withLifteddoes not interact nicely withforkCont2or plainmoveTo-type functions. ConsiderevalContT $ flip evalStateT (0 :: Int) $ do withLifted (mockWith "myResource") $ \() -> forkCont2 ..or
evalContT $ flip evalStateT (0 :: Int) $ do withLifted (mockWith "myResource") $ \() -> moveToNewThread >> k ..In the first case, there will be two threads writing to an
MVar, but we only take (and continue) once. In the second case, “release” will fire as soon asmoveToNewThreadis reached, meaning thatkhappens concurrently/after the “release” part of thewith. However this is not new - usingforkIOin plainIO“with”-functions has the same behaviour, and invites use-after-free problems or similar. This really is not a downside of our implementation, but inherent property of “with” functions.In the same vein we have to assume that the user does only use actions that call the continuation exactly once - there is high risk for deadlocks and race-conditions otherwise.
createReturnPoint and resetContIO
Our usage of createReturnPoint suggest that there is one more notion in this area, because we can write:
resetContIO :: MonadContIO m => m a -> m a
resetContIO m = do
escape <- createFinalPoint
r <- m
escape r
-- or the unreadable one-liner:
-- resetContIO = (createFinalPoint >>=) . (>>=)
-- (also this permits a one-liner for `withLifted`:)
-- withLifted withC f = resetContIO $ liftContIO (ContT withC) >>= fCompare that to the resetT as defined in the transformers package:
resetT :: Monad m => ContT r m r -> ContT r' m r
resetT = lift . evalContTSo while they behave similar, there are two central differences:
resetTis polymorphic over the monad “below” in the monad stack but assumes thatContTis on top, whileresetContIOis polymorphic over the “above” transformers but assumes thatContT () IOis at the bottom.They behave the same in that they “return to the original host” which means that “host-final” operations are run (the “release” in
withLifted). They behave different in thatresetContIOblocks the original host, whileresetTdoes not (see example below):
Interactions
withLifted interacts well with resetContIO, which is not surprising given that we implement the former using the latter and nesting already works.
In the interaction with moveTo type functions, resetT and resetContIO differ:
test1 = evalContT $ do ~ test1 = do
resetT $ do void $ forkIO $ evalContT k
moveToNewThread evalContT o
k -- must be `m ()` due to types
o -- of resetT and moveToNewThread
test2 = evalContT $ do ~ test2 = do
x <- resetContIO $ do mvar <- newEmptyMVar
moveToNewThread void $ forkIO $
k evalContT k >>= putMVar mvar
o x takeMVar mvar >>= evalContT . ocreateReturnPoint on its own however can easily create deadlocks, for example the following code deadlocks:
do
escape1 <- createReturnPoint
escape2 <- createReturnPoint
escape1
escape2On the other hand, creating a deadlock is not possible with resetContIO.
A Short Look at shiftT and callCC
Given the resetT/resetContIO pair, and the fact that MVars require the call-continuation-exactly-once constraint, we will now consider interactions of shiftT and callCC with the new constructs. For reference:
callCC :: ((a -> ContT r m b) -> ContT r m a) -> ContT r m a
callCC f = ContT $ \ c -> runContT (f (\ x -> ContT $ \ _ -> c x)) c
shiftT :: (Monad m) => ((a -> m r) -> ContT r m r) -> ContT r m a
shiftT f = ContT (evalContT . f)Bad news - deadlocks:
dead1 = evalContT $ resetContIO $ shiftT $ \_ -> pure ()
dead2 = evalContT $ callCC $ \c -> resetContIO $ c ()shiftTgives the user full control over what to do with the continuation, and of course this can breaks things forresetContIO(user ignores continuation - nobody fillsMVar- deadlock)callCCprovide an “escape” type mechanism that also allows the user to effectively drop some continuation, which clashes withresetContIO(abort before reaching theputMVarstep - deadlock)
While the interaction with forkCont2 or moveToNewThread appears to be relatively harmless (no deadlocks, both remain in the same “host”), they do not bring much to the table either. Neither shiftT nor callCC can easily be lifted to our MonadContIO m => m level. Together with the potential for deadlocks this seems to be enough reason to stay away from these two functions in the context of ContT () IO.
Outlook
In the next article we will approach throw and try for ContT () IO. This time however I cannot pose a concise riddle, because the solution will be a good bit more complex - we will even have to switch to a somewhat more powerful base monad because ContT () IO is not good enough.
If you would like some exercise before continuing to the next article, I may suggest the following: Consider the types of try, throw, catch, finally, and bracket and how they change when being lifted. The easiest example is throw which would have a type like MonadContIO m => e -> m () (Clearly e would need to become an argument of MonadContIO somehow, otherwise this could not work, but we can ignore that for the moment). Next, think about which effects should propagate in what manner - for example we used modify (+ 1) above to highlight effect propagation. Now compare this intuition to how state propagates for existing “escape” type stacks, for example EitherT e (State s) or StateT s (Either e).