Learnability, reasoning, debuggability and no_std-compatibility improvements achieved by
making task wakeup handles into explicit arguments.
The futures task wakeup mechanism is a regular source of confusion for new
users. Looking at the signature of Future::poll, it's
hard to tell how Futures work:
fn poll(&mut self) -> Poll<Self::Item, Self::Error>;poll takes no arguments, and returns either Ready, NotReady, or an error.
From the signature, it looks as though the only way to complete a Future is
to continually call poll in a loop until it returns Ready. This is
incorrect.
Furthermore, when implementing Future, it's necessary to schedule a wakeup
when you return NotReady, or else you might never be polled again. The
trick to the API is that there is an implicit Task argument to Future::poll
which is passed using thread-local storage. This Task argument must be
notifyd by the Future in order for the task to awaken and poll again.
It's essential to remember to do this, and to ensure that the right schedulings
occur on every code path.
The implicit Task argument makes it difficult to tell which functions
aside from poll will use the Task handle to schedule a wakeup. That has a
few implications.
First, it's easy to accidentally call a function that will attempt to access the task outside of a task context. Doing so will result in a panic, but it would be better to detect this mistake statically.
Second, and relatedly, it is hard to audit a piece of code for which calls might involve scheduling a wakeup--something that is critical to get right in order to avoid "lost wakeups", which are far harder to debug than an explicit panic.
Today's implicit TLS task system provides us with fewer "hooks" for adding debugging tools to the task system. Deadlocks and lost wakeups are some of the trickiest things to track down with futures code today, and it's possible that by using a "two stage" system like the one proposed in this RFC, we will have more room for adding debugging hooks to track the precise points at which queing for wakeup occurred, and so on.
More generally, the explicit Context argument and distinct Waker type provide greater
scope for extensibility of the task system.
While it's possible to use futures in no_std environments today, the approach
is somewhat of a hack. Threading an explicit &mut Context argument makes no_std
support entirely straightforward, which may also have implications for the futures
library ultimately landing in libcore.
The Future, Stream, AsyncRead, and AsyncWrite traits have been modified
to take explicit task::Context arguments. task::Context is a type which
provides access to
task-locals and a Waker.
In terms of the old futures task model, the Waker is analogous to the Task
returned by [task::current][current], and the wake method is analogous to
the old [Task::notify][notify].
The task::Context interface looks like this:
mod task {
/// The context for the currently running task.
pub struct Context {
/// Returns a `Waker` which can be used to wake up the current task.
pub fn waker(&self) -> Waker { ... }
/// Runs the provided closure with the task-local pointed to by the
/// provided `key`.
///
/// `LocalKey`s are acquired using the `task_local` macro.
pub fn with_local<T, R, F>(&mut self, key: LocalKey<T>, f: F) -> R
where F: FnOnce(&mut T) -> R
{
...
}
}
/// A handle used to awaken a task.
pub struct Waker {
/// Wakes up the associated task.
///
/// This signals that the futures associated with the task are ready to
/// be `poll`ed again.
pub fn wake(&self) { ... }
}
...
}The modified traits will look as follows:
pub trait Future {
type Item;
type Error;
fn poll(&mut self, ctx: &mut Context) -> Poll<Self::Item, Self::Error>;
}
pub trait Stream {
type Item;
type Error;
fn poll_next(&mut self, ctx: &mut Context) -> Poll<Option<Self::Item>, Self::Error>;
}
pub trait AsyncRead {
unsafe fn initializer(&self) -> Initializer { ... }
fn poll_read(&mut self, buf: &mut [u8], ctx: &mut Context)
-> Poll<usize, io::Error>;
fn poll_vectored_read(&mut self, vec: &mut [&mut IoVec], ctx: &mut Context)
-> Poll<usize, io::Error> { ... }
}
pub trait AsyncWrite {
fn poll_write(&mut self, buf: &[u8], ctx: &mut Context)
-> Poll<usize, io::Error>;
fn poll_vectored_write(&mut self, vec: &[&IoVec], ctx: &mut Context)
-> Poll<usize, io::Error> { ... }
fn poll_close(&mut self, ctx: &mut Context) -> Poll<(), io::Error>;
}The primary drawback here is an ergonomic hit, due to the need to explicitly thread through
a Context argument.
For combinator implementations, this hit is quite minor.
For larger custom future implementations, it remains possible to use TLS internally to recover the existing ergonomics, if desired.
Finally, and perhaps most importantly, the explicit argument is never seen by users who only use futures via combinators or async-await syntax, so the ergonomic impact to such users in minimal.
The two-stage design (splitting Context and Waker) is useful both for efficial task-local storage, and to provide space for debugging "hooks" in later iterations of the library.
-
Can we come up with a better name than
task::Context?Taskis confusing because it suggests that we're being passed the task, when really we're in the task.TaskContextis roughly equivalent totask::Contextbut doesn't allow users touse futures::task::Context; -
What is the best way to integrate the explicit
task::Contextwith async/await generators? If generators are changed to accept arguments toresume, a pointer could be passed through that interface. Otherwise, it would be necessary to pass the pointer through TLS when calling into generators. -
The
task::Context::with_localfunction can now likely be replaced byHashMap-like entry and accessor APIs. What should the precise API surface for accessing task-locals look like?