Skip to content

refactor: use Future.cancel, remove 500ms chunking workaround#2

Open
GrapeBaBa wants to merge 3 commits intomainfrom
future-cancel-linux
Open

refactor: use Future.cancel, remove 500ms chunking workaround#2
GrapeBaBa wants to merge 3 commits intomainfrom
future-cancel-linux

Conversation

@GrapeBaBa
Copy link
Collaborator

@GrapeBaBa GrapeBaBa commented Mar 3, 2026
edited
Loading

Summary

  • Replace future.await() with future.cancel() in join()
  • Remove 500ms sleep chunking in runAutoLoop, sleep full slot duration
  • Remove #31307 workaround comments

Motivation

The 500ms chunking was a workaround for Zig bug #31307 where Future.cancel segfaults on macOS GCD. This PR tests whether Future.cancel works correctly on Linux io_uring.

@GrapeBaBa
refactor: use Future.cancel in join(), remove 500ms chunking workaround
a70d123 
Replace the 500ms sleep-chunking workaround (for Zig bug #31307) with
direct Future.cancel in join(). This allows runAutoLoop to sleep the
full duration until the next slot boundary.

Future.cancel segfaults on macOS GCD but may work on Linux io_uring.
CI temporarily set to Linux-only to validate.
Copilot AI review requested due to automatic review settings March 3, 2026 08:25
Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR refactors EventClock shutdown behavior by switching the loop fiber termination in join() from await() to Future.cancel(), and removes the 500ms sleep-chunk workaround that existed due to Zig bug #31307. It also narrows CI to Linux to validate behavior specifically on the io_uring backend.

Changes:

  • Update EventClock.join() to use Future.cancel() instead of await().
  • Simplify runAutoLoop sleep behavior to sleep the full slot duration (no 500ms chunking).
  • Update/rename the real-time shutdown test and restrict CI workflow to ubuntu-latest.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.

File Description
src/EventClock.zig Switches loop shutdown strategy to Future.cancel, removes chunked sleeping, updates related test naming/comments.
.github/workflows/ci.yml Runs CI only on Linux to isolate io_uring behavior while validating Future.cancel.
Comments suppressed due to low confidence (1)

src/EventClock.zig:449

  • The debug log in the sleep error path always says "retrying", but when the error is from join() cancellation the loop will typically exit on the next condition check rather than retrying the sleep. Consider adjusting the message (or branching on self.stopped) so logs remain accurate during normal shutdown/cancel behavior.
            std.Io.Duration.fromMilliseconds(sleep_ms),
            .awake,
        ) catch |err| {
            std.log.debug("EventClock: sleep failed ({s}), retrying", .{@errorName(err)});
            continue;

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

src/EventClock.zig
Comment on lines +109 to 116
/// Cancel the loop fiber and wait for it to finish.
pub fn join(self: *EventClock) void {
var maybe_future = self.loop_future;
self.loop_future = null;
if (maybe_future) |*future| {
future.await(self.io);
future.cancel(self.io);
}
}
Copy link

Copilot AI Mar 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

join()’s docstring says it “cancel[s] the loop fiber and wait[s] for it to finish”, but the implementation only calls future.cancel(self.io) and never awaits/completes the future explicitly. If Future.cancel is not guaranteed to block until the fiber terminates, deinit() can free self’s resources while runAutoLoop is still running (use-after-free). Please either (a) ensure join() truly waits for completion (e.g., cancel then await / otherwise drain the future), or (b) adjust the doc + deinit contract to match cancel’s actual semantics.

Copilot uses AI. Check for mistakes.
.github/workflows/ci.yml
matrix:
os: [ubuntu-latest, macos-latest]
runs-on: ${{ matrix.os }}
runs-on: ubuntu-latest
Copy link

Copilot AI Mar 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

CI is now Linux-only (runs-on: ubuntu-latest) which removes macOS coverage for this repo. If this is intended to be temporary for validating Future.cancel on io_uring, consider keeping macOS in the workflow but marking it continue-on-error or gating it behind a workflow input so platform regressions aren’t silently missed.

Suggested change
runs-on: ubuntu-latest
strategy:
matrix:
os: [ubuntu-latest, macos-latest]
runs-on: ${{ matrix.os }}
continue-on-error: ${{ matrix.os == 'macos-latest' }}

Copilot uses AI. Check for mistakes.
GrapeBaBa added 2 commits March 3, 2026 19:14
@GrapeBaBa
refactor: move cancelWait to WaitForSlotResult.cancel()
b4e3283 
Make WaitForSlotResult self-contained like Java's Future by adding a
back-pointer to EventClock. Callers can now use idiomatic Zig
`errdefer fut.cancel()` instead of `ec.cancelWait(&fut)`.

All waitForSlot call sites (tests + example) updated to use the
errdefer pattern.
@GrapeBaBa
fix: null out clock back-pointer after await/cancel
9476de2 
Defensive cleanup per TigerStyle — don't hold a pointer to memory
you no longer own. Prevents latent dangling pointer if
WaitForSlotResult outlives its EventClock.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@GrapeBaBa