syncs: add LockFunc, LockValue, LockValues, and Mutex #12802
Conversation
The first 3 functions are helpers for running functions under the protection of a lock. The Mutex type is a wrapper over sync.Mutex with a Do method that runs a function under the protection of a lock. Updates #11038 Updates #cleanup Signed-off-by: Joe Tsai <[email protected]>
| } | ||
|
|
||
| // LockValue runs f while holding the lock and returns the argument. | ||
| func LockValue[T any](lock sync.Locker, f func() T) T { |
There was a problem hiding this comment.
what about LockValue[L sync.Locker, T any](lock L, func() T) T?
There was a problem hiding this comment.
primarily to avoid the interface wrapper in hot code (not sure if that holds with generics)
| } | ||
|
|
||
| // LockValue runs f while holding the lock and returns the argument. | ||
| func LockValue[T any](lock sync.Locker, f func() T) T { |
There was a problem hiding this comment.
LockValue is kinda weird, maybe GetWithLock and DoWithLock or just Get and Do like the must package?
There was a problem hiding this comment.
or maybe a locks.Get/locks.Do?
nvm, syncs is fine
| // Mutex is identical to [sync.Mutex], but with additional methods. | ||
| type Mutex struct{ sync.Mutex } | ||
|
|
||
| // Do runs f while holding the lock. | ||
| func (m *Mutex) Do(f func()) { | ||
| m.Lock() | ||
| defer m.Unlock() | ||
| f() | ||
| } |
There was a problem hiding this comment.
@raggi has aspirations of getting static analysis doing lock checking in the tree. I wonder what this would do both to that and to the readability/consistency of mutex usage in the tree.
I don't want to end up in a place where we have a bunch of different locking styles.
There was a problem hiding this comment.
I'd started with gvisors static lock checks, sadly they don't yet support various patterns we use a lot. This pattern is helpful there as it disallows one of the harder cases.
There was a problem hiding this comment.
I'm not exactly sure what @raggi had in mind, but I would argue that this would assist future static analysis.
One challenge in static analysis is correlating the set of variables that are actually guarded by a lock to a particular lock. Today, the typical pattern is this:
mu.Lock()
defer mu.Unlock()
... // critical section
... // uncritical section accidentally covered by mu since defers execute lateHowever, this might cover more variables by a lock than is necessary.
The initial motivation of this was to make the critical sections more clear in code as now it would be:
syncs.LockFunc(&mu, func() {
... // critical section
})
... // uncritical sectionThere was a problem hiding this comment.
https://github.com/tailscale/tailscale/actions/workflows/checklocks.yml was running for a while in a non-blocking mode. Unfortunately it has problems with bounds as you describe, but most particularly with patterns like:
m.Lock()
defer m.Unlock()
go func() { m.Lock(); defer m.Unlock(); ... }
Which show up in a good number of places in our code, in either local or non-local form.
We could do with cleaning those cases up too, for other reasons, but as it stands this blocks using the tool.
| var nodesMu sync.Mutex | ||
| var nodes []string | ||
| n := syncs.LockValue(&nodesMu, func() int { return len(nodes) }) | ||
| log.Printf("there are %d nodes", n) |
There was a problem hiding this comment.
prefer fmt.Printf/printf, and then you can add // Output: lines which will be used to make assertions that the output is still stable - making these functional tests
|
Did you consider an actual locked value, for example a bunch of modern languages now have values behind mutex APIs, e.g. |
The first 3 functions are helpers for running functions under the protection of a lock.
The Mutex type is a wrapper over sync.Mutex with a Do method that runs a function under the protection of a lock.
Updates golang/go#63941
Updates tailscale/corp#11038
Updates #cleanup