* Re: GNU Guile 2.9.5 Released [beta] [not found] <87lfs8kkao.fsf@pobox.com> @ 2019-12-01 20:59 ` Chris Vine [not found] ` <20191201204142.0388791e61fa443e615605da@gmail.com> 1 sibling, 0 replies; 4+ messages in thread From: Chris Vine @ 2019-12-01 20:59 UTC (permalink / raw) To: guile-user Sorry, a resend to guile-user - the copy to that mailing list was misaddressed. ------------------------------ On Fri, 22 Nov 2019 16:22:39 +0100 Andy Wingo <wingo@pobox.com> wrote: > We are pleased to announce GNU Guile release 2.9.5. This is the fifth > pre-release of what will eventually become the 3.0 release series. [snip] > ** Reimplementation of exceptions > > Since Guile's origins 25 years ago, `throw' and `catch' have been the > primary exception-handling primitives. However these primitives have > two problems. One is that it's hard to handle exceptions in a > structured way using `catch'. Few people remember what the > corresponding `key' and `args' are that an exception handler would see > in response to a call to `error', for example. In practice, this > results in more generic catch-all exception handling than one might > like. > > The other problem is that `throw', `catch', and especially > `with-throw-handler' are quite unlike what the rest of the Scheme world > uses. R6RS and R7RS, for example, have mostly converged on > SRFI-34-style `with-exception-handler' and `raise' primitives, and > encourage the use of SRFI-35-style structured exception objects to > describe the error. Guile's R6RS layer incorporates an adapter between > `throw'/`catch' and structured exception handling, but it didn't apply > to SRFI-34/SRFI-35, and we would have to duplicate it for R7RS. > > In light of these considerations, Guile has now changed to make > `with-exception-handler' and `raise-exception' its primitives for > exception handling and defined a hierarchy of R6RS-style exception types > in its core. SRFI-34/35, R6RS, and the exception-handling components of > SRFI-18 (threads) have been re-implemented in terms of this core > functionality. There is also a a compatibility layer that makes it so > that exceptions originating in `throw' can be handled by > `with-exception-hander', and vice-versa for `raise-exception' and > `catch'. > > Generally speaking, users will see no difference. The one significant > difference is that users of SRFI-34 will see more exceptions flowing > through their `with-exception-handler'/`guard' forms, because whereas > before they would only see exceptions thrown by SRFI-34, now they will > see exceptions thrown by R6RS, R7RS, or indeed `throw'. > > Guile's situation is transitional. Most exceptions are still signalled > via `throw'. These will probably migrate over time to > `raise-exception', while preserving compatibility of course. > > See "Exceptions" in the manual, for full details on the new API. Is this rewrite, and the new with-exception-handler procedure, an opportunity to think about standardization of guile's implementation of the R6RS/R7RS 'guard' form, or at least think about what is wanted for 'guard'? The formal semantics (including specimen implementation) of 'guard' for R6RS with the corrigendum to §7.1 of the standard library at http://www.r6rs.org/r6rs-errata.html, and for R7RS without corrigendum (at §4.2.7 and §7.3, page 72 of the standard), is: (i) to evaluate the guard body within a block with its own continuation (as constructed by call/cc); (ii) if an exception is thrown, evaluate the handler (and its cond clauses) in the dynamic context of the original caller of 'guard' via that continuation; (iii) if no matching cond clause and no else clause is found, return to the dynamic environment of the original 'raise' and re-raise the exception with 'raise-continuable', even for non-continuable exceptions. If a fully conforming R6RS/R7RS implementation runs this code: (guard (exn [(equal? exn 5) #f]) (guard (exn [(equal? exn 6) 'never-reached]) (dynamic-wind (lambda () (display "in") (newline)) (lambda () (raise 5)) (lambda () (display "out") (newline))))) the code evaluates to #f and should print this: in out in out In chez scheme it does so. In most other implementations (including guile and racket) it seems to print: in out Guile 2.9.5 appears to implement 'guard' this way: (i) to evaluate the guard body within a block with its own continuation (as constructed by call/ec); (ii) if an exception is thrown, evaluate the handler (and its cond clauses) in the dynamic environment of the guard body within which the raise occurred (apart from the current exception handler which is reset); (iii) if no matching cond clause and no else clause is found, re-raise the exception with 'raise' within the dynamic context of that guard body. I don't especially like the mandated behaviour of 'guard', which seems to be intended to allow the guard form to handle continuable exceptions as continuable elsewhere in the call stack, which seems fairly pointless to me. If this is to be departed from, then how about doing what most people expect of a high-level exception form, and to unwind the stack by executing the cond clauses within the dynamic context of the caller of 'guard' (as R6RS/R7RS do), not in that of the guard body, and then if a re-throw is necessary do it with 'raise' within that context instead of returning to the guard body to do so? I think this could be achieved simply by executing with-exception-handler in the guard0 syntactic form with #unwind set to true. Chris ^ permalink raw reply [flat|nested] 4+ messages in thread
[parent not found: <20191201204142.0388791e61fa443e615605da@gmail.com>]
[parent not found: <87eewdu0av.fsf@pobox.com>]
* Re: GNU Guile 2.9.5 Released [beta] [not found] ` <87eewdu0av.fsf@pobox.com> @ 2020-01-05 23:28 ` Chris Vine [not found] ` <20200105232640.8d389c139c7b4993e90938a1@gmail.com> 1 sibling, 0 replies; 4+ messages in thread From: Chris Vine @ 2020-01-05 23:28 UTC (permalink / raw) To: guile-user On Sun, 05 Jan 2020 21:15:52 +0100 Andy Wingo <wingo@pobox.com> wrote: > On Sun 01 Dec 2019 21:41, Chris Vine <vine35792468@gmail.com> writes: > > Is this rewrite, and the new with-exception-handler procedure, an > > opportunity to think about standardization of guile's implementation of > > the R6RS/R7RS 'guard' form, or at least think about what is wanted for > > 'guard'? > > > > The formal semantics (including specimen implementation) of 'guard' for > > R6RS with the corrigendum to §7.1 of the standard library at > > http://www.r6rs.org/r6rs-errata.html, and for R7RS without corrigendum > > (at §4.2.7 and §7.3, page 72 of the standard), is: > > > > (i) to evaluate the guard body within a block with its own continuation > > (as constructed by call/cc); > > > > (ii) if an exception is thrown, evaluate the handler (and its cond > > clauses) in the dynamic context of the original caller of 'guard' via > > that continuation; > > > > (iii) if no matching cond clause and no else clause is found, return to > > the dynamic environment of the original 'raise' and re-raise the > > exception with 'raise-continuable', even for non-continuable > > exceptions. > > > > If a fully conforming R6RS/R7RS implementation runs this code: > > > > (guard (exn [(equal? exn 5) #f]) > > (guard (exn [(equal? exn 6) 'never-reached]) > > (dynamic-wind > > (lambda () (display "in") (newline)) > > (lambda () (raise 5)) > > (lambda () (display "out") (newline))))) > > > > the code evaluates to #f and should print this: > > > > in > > out > > in > > out > > > > In chez scheme it does so. In most other implementations (including > > guile and racket) it seems to print: > > > > in > > out > > I really think the standards messed up regarding the specification of > "guard": > > http://scheme-reports.org/mail/scheme-reports/msg03247.html > > But those ships have sailed and are now lost at sea. Guile currently > has two separate implementations of "guard" for SRFI-34 (used by R7RS) > and R6RS. It would seem that besides not respecting the specification, > the R6RS one is broken, as it expects the "cond" clauses to evaluate to > a single value. > > For SRFI-34 (and R7RS), after the exception refactor, I did a re-write > to give a shot at implementing the specified behavior. It works with a > caveat: because it uses delimited continuations as the rewind > mechanism, and Guile has a limitation that some delimited continuations > can't be rewound (if the continuation bounces through C), then > re-raising the exception fails because the context can't be rewound. > This can cause previously working programs to break! > > Which makes me think, if call/cc (rather than call-with-prompt / > abort-to-prompt) is necessary to implement "guard", we are in a bad > place and we should specify something else. > > I have long thought that the right thing to do is this: we evaluate the > "cond" tests in the dynamic environment of the "raise". Then if a test > succeeds, we unwind and run the corresponding consequent. That way > there's no rewinding. Here's an implementation: > > (define-syntax guard > (syntax-rules (else) > ((guard (var (t e e* ...) ...) body body* ...) > (let ((tag (make-prompt-tag))) > (call-with-prompt > tag > (lambda () > (with-exception-handler > (lambda (var) > (cond > (t (abort-to-prompt tag (lambda () e e* ...))) > ...) > (raise var)) > (lambda () > body body* ...))) > (lambda (k thunk) > (thunk))))))) > > Though I think it might be reasonable to use "raise-continuable" instead > of "raise" if nothing matches. > > WDYT? I have a 'try' macro which adopts the approach that if an exception arises, the macro unwinds from the dynamic environment of the code where the exception arose to the dynamic environment of the call to 'try', evaluates the cond clauses in that environment, and then if no cond clause matches re-raises the exception in that environment with 'raise' (rather than 'raise-continuable'). In other words, it does stack unwinding in the same way as exception implementations in almost all other mainstream languages which use exceptions. It would be trivial to implement this with guile-3.0's with-exception-handler with its unwind? argument set to true. That is how I think it should be done, but it is inconsistent with the specification for R6RS/R7RS 'guard'. On the other hand, as you say it does not seem feasible to implement in guile the R6RS/R7RS requirement to unwind to the environment of the call to 'guard' when evaluating the cond clauses, and then return to the environment of the original exception in order to re-raise if no cond clause matches. Furthermore such a return is only relevant if the exception is to be re-raised with 'raise-continuable' instead of 'raise': it is pointless if the exception is re-raised with 'raise' because with 'raise' you can never get back there again. So it appears that the choice for 'guard' in guile is between adopting the approach of my 'try' macro (unwind and re-raise if necessary with 'raise'), or to do what you propose and not to unwind the stack when evaluating the cond clause conditionals, and if no cond conditional matches to re-raise with 'raise-continuable', or if one matches to unwind and evaluate the cond consequent in the dynamic environment of 'guard'. Or put another way, the choice is either to fail to comply with R6RS/R7RS by re-raising with 'raise' instead of 'raise-continuable' (my 'try' macro), or to fail to comply with the requirement to evaluate the cond clause conditionals in the dynamic environment of the call to 'guard' (your proposal). Naturally I prefer the first approach, but others may well disagree. I am somewhat influenced by my view of 'raise-continuable'. I don't like it - how often does anyone use continuable exceptions, which seem to be a reimplementation of common lisp restarts? The only place where I have seen restarts used is in building REPLs. First, most other experience leads me to believe that the place to decide whether recovery is possible (and how to do it) in the event of an exceptional situation arising is at the site of the exceptional situation, not somewhere up the stack which varies dynamically and could be anywhere. Secondly, continuable exceptions can break resource management using dynamic winds or re-throws - for example once you close a port on exit it is closed and cannot be re-opened on re-entry without loss of information, if it can be re-opened at all. I see little practical use for them. Chris ^ permalink raw reply [flat|nested] 4+ messages in thread
[parent not found: <20200105232640.8d389c139c7b4993e90938a1@gmail.com>]
[parent not found: <87eewcs4r0.fsf@pobox.com>]
* Re: GNU Guile 2.9.5 Released [beta] [not found] ` <87eewcs4r0.fsf@pobox.com> @ 2020-01-06 23:14 ` Chris Vine 2020-01-07 21:53 ` Andy Wingo 0 siblings, 1 reply; 4+ messages in thread From: Chris Vine @ 2020-01-06 23:14 UTC (permalink / raw) To: Andy Wingo; +Cc: guile-user, guile-devel On Mon, 06 Jan 2020 21:34:59 +0100 Andy Wingo <wingo@pobox.com> wrote: > On Mon 06 Jan 2020 00:26, Chris Vine <vine35792468@gmail.com> writes: > > I have a 'try' macro which adopts the approach that if an exception > > arises, the macro unwinds from the dynamic environment of the code > > where the exception arose to the dynamic environment of the call to > > 'try', evaluates the cond clauses in that environment, and then if no > > cond clause matches re-raises the exception in that environment with > > 'raise' (rather than 'raise-continuable'). In other words, it does > > stack unwinding in the same way as exception implementations in almost > > all other mainstream languages which use exceptions. It would be > > trivial to implement this with guile-3.0's with-exception-handler with > > its unwind? argument set to true. > > I am not sure this really matches with this use case: > > (define (call-with-backtrace thunk) > (call/ec > (lambda (ret) > (with-exception-handler > (lambda (exn) > (show-backtrace exn) ;; placeholder > (ret)) > thunk)))) > > (define (false-on-file-errors thunk) > (call/ec > (lambda (ret) > (with-exception-handler > (lambda (exn) > (if (file-error? exn) > (ret #f) > (raise-continuable exn))) > thunk)))) > > (define (foo f) > (call-with-backtrace > (lambda () > (false-on-file-errors f)))) > > > If there's an error while invoking `f' that's not a file error, you want > to have remained in the context of the error so you can show a full > backtrace. To my mind this is central to the exception handler design. > So far so good I think. > > If I change the implementation of `false-on-file-errors' to be: > > (define (false-on-file-errors thunk) > (guard (exn ((file-error? exn) #f)) > (thunk))) > > I think this change should preserve the not-unwinding environment that > `call-with-backtrace' expects. Good point. My approach does provide the programmer with less conveyed stack information after the re-raise of an unhandled exception, requiring more manual intervention to recover the information when debugging the exception. Before you suggested it I had not previously considered your proposal. It may turn out to be the optimum solution, but I wonder if it would surprise the programmer to have the cond conditionals evaluated in a different dynamic environment from the one in which the cond consequential is evaluated where there is a conditional which is true. But I am not sure if that is of any importance. Chris ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: GNU Guile 2.9.5 Released [beta] 2020-01-06 23:14 ` Chris Vine @ 2020-01-07 21:53 ` Andy Wingo 0 siblings, 0 replies; 4+ messages in thread From: Andy Wingo @ 2020-01-07 21:53 UTC (permalink / raw) To: Chris Vine; +Cc: guile-user, guile-devel On Tue 07 Jan 2020 00:14, Chris Vine <vine35792468@gmail.com> writes: > I wonder if it would surprise the programmer to have the cond > conditionals evaluated in a different dynamic environment from the one > in which the cond consequential is evaluated where there is a > conditional which is true. I entirely agree it's not ideal and can be surprising! I am not sure that there is an "ideal" here though; with-exception-handler is wonderfully expressive but can be verbose, guard is a pleasant abbreviation but how to deal with re-raising from the original context? In the end, "guard" is just a macro over a more general facility. But it's a macro that we expect people to use, and to cover the common case. To that end I think we should make it cheap and avoid rewinding while also preserving the nice characteristic of evaluating cond consequents in the continuation of the "guard" itself. Andy ^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2020-01-07 21:53 UTC | newest] Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed) -- links below jump to the message on this page -- [not found] <87lfs8kkao.fsf@pobox.com> 2019-12-01 20:59 ` GNU Guile 2.9.5 Released [beta] Chris Vine [not found] ` <20191201204142.0388791e61fa443e615605da@gmail.com> [not found] ` <87eewdu0av.fsf@pobox.com> 2020-01-05 23:28 ` Chris Vine [not found] ` <20200105232640.8d389c139c7b4993e90938a1@gmail.com> [not found] ` <87eewcs4r0.fsf@pobox.com> 2020-01-06 23:14 ` Chris Vine 2020-01-07 21:53 ` Andy Wingo
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox; as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).