Skip to content

Add dev guide for crt-swift #341

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Add dev guide for crt-swift #341

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
1ed3ef5
Add dev guide
waahm7 May 20, 2025
e9b56b7
lint
waahm7 May 20, 2025
327cc71
re-order
waahm7 May 20, 2025
7c3d4cd
blank lines
waahm7 May 20, 2025
82f006b
fix nit
waahm7 May 22, 2025
70e5ef9
Merge branch 'main' into dev-guide
waahm7 May 28, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,6 +27,7 @@ swift format --in-place --recursive .

### Contributor's Guide
**Required Reading:**
- [Development Guide](docs/dev_guide.md)
- [Peril of the Ampersand](https://developer.apple.com/forums/thread/674633)
- [Unmanaged](https://www.mikeash.com/pyblog/friday-qa-2017-08-11-swiftunmanaged.html)
- [Automatic Reference Counting](https://docs.swift.org/swift-book/LanguageGuide/AutomaticReferenceCounting.html)
Expand Down
108 changes: 108 additions & 0 deletions docs/dev_guide.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,108 @@
# Memory Management / Pointers
For inter-op with C, there are three memory management techniques. These are described below in order of preference.

### 1. Ampersand
Read the [Peril Of the Ampersand](https://developer.apple.com/forums/thread/674633) guide for this technique. The sharp edge of this technique is that the pointer is only valid for one function call only.
```Swift
/* YOU CAN DO THIS */
var options = aws_credentials_options()
...
/* C function mustn't keep a copy of the pointer to use later */
let creds = aws_credentials_new_with_options(allocator.rawValue, &options)

/* DO NOT DO THIS */
var options = aws_credentials_options()
var optionPointer = &options;
/* option pointer is invalid from here onwards */
...
let creds = aws_credentials_new_with_options(allocator.rawValue, optionPointer)
```

### 2. Closures
If you need pointers that last more than a single line, you can use closure functions like [withUnsafePointer](https://developer.apple.com/documentation/swift/withunsafepointer(to:_:)-35wrn) which will give you a pointer valid inside the closure. The native Swift functions will give you a pointer for one variable at a time and if you have N variables, you will end up with N nested closures. To solve this, we have helper functions in [Utilities.swift](https://github.com/awslabs/aws-crt-swift/blob/main/Source/AwsCommonRuntimeKit/crt/Utilities.swift) with the naming scheme `with*` to have different util functions for different use-cases. The idea was to contain the boiler-plate complexity to a single class so that we can have nicer code in the rest of the places.

```Swift
/* DO THIS */
guard let provider: UnsafeMutablePointer<aws_credentials_provider> =
withByteCursorFromStrings(
thingName,
roleAlias,
endpoint,
/* These cursors will be only valid inside the closure */
{ thingNameCursor, roleAliasCursor, endPointCursor in
x509Options.thing_name = thingNameCursor
x509Options.role_alias = roleAliasCursor
x509Options.endpoint = endPointCursor
return withOptionalCStructPointer(
proxyOptions,
tlsConnectionOptions
) { proxyOptionsPointer, tlsConnectionOptionsPointer in

x509Options.proxy_options = proxyOptionsPointer
x509Options.tls_connection_options = tlsConnectionOptionsPointer
/* C Function mustn't use pointer outside of this closure */
return aws_credentials_provider_new_x509(allocator.rawValue, &x509Options)
}
})
else {
shutdownCallbackCore.release()
throw CommonRunTimeError.crtError(CRTError.makeFromLastError())
}

/* DO NOT DO THIS */
let test = Value()
let storedPointer: UnsafePointer<Value>? = nil
withUnsafePointer(to: test) { pointer in
storedPointer = pointer
}
/* storedPointer is invalid here */
```
### 3. Manual Memory Management
For the complete control of allocation/deallocation, you can manage the memory yourself. However, prefer automatic management whenever possible.
```Swift
/* DO THIS */
var rawValue: UnsafeMutablePointer<aws_secitem_options> = allocator.allocate(capacity: 1);
/* rawValue is valid until release is called */
allocator.release(rawValue)
```

# Manual Reference Count Management
Swift automatically manages ref-count of all objects and deallocates them when they go out of scope. Normally, you don't need to do anything fancy or think about memory management apart from resource cycles which can lead to deadlocks and objects never getting cleaned up. However, sometimes you need to acquire a reference to a Swift object so that Swift keeps it alive until C is done using it. You can checkout [ShutdownCallback](https://github.com/awslabs/aws-crt-swift/blob/main/Source/AwsCommonRuntimeKit/crt/ShutdownCallbackCore.swift) class to see an example of this pattern.
```swift

/* DO THIS */
func callCFunctionWithCallback() {
/* Retain will increment the ref count */
let userData = Unmanaged.passRetained(SwiftObjectCore()).toOpaque()
let options = COptionsStruct(callback: callbackFromC, userData: userData);

c_function_with_callback(options);
/* swift will now keep the userData alive until it is released in the callback */
}

private func callbackFromC(userData: UnsafeMutableRawPointer!) {
...
/* release will decrement the ref count and allow the user_data to be destroyed */
Unmanaged<SwiftObjectCore>.fromOpaque(userData).release()
}

/* DO NOT DO THIS */
func callCFunctionWithCallback() {
let userData = SwiftObjectCore()
c_function_with_callback(COptionsStruct(callback: callbackFromC, userData: &userData));
/* user_data will be destroyed here and C will have a dangling pointer to it */
}

```

# Utility functions
Take a look at the [Utilities.swift](https://github.com/awslabs/aws-crt-swift/blob/main/Source/AwsCommonRuntimeKit/crt/Utilities.swift) and [CStruct.swift](https://github.com/awslabs/aws-crt-swift/blob/main/Source/AwsCommonRuntimeKit/crt/CStruct.swift) for the available utility functions. In general, prefer defining utility functions like these to avoid boiler-plate code everywhere in the code. In these files, you will find a lot of utility functions to convert between Swift<->C objects which are needed at many places.

# Error handling
Unfortunately, Swift's error handling is not great. Swift's error handling design is an enum and adding new cases to enums is a breaking change. We don't want people to have giant switch blocks where they have to handle each error independently or break people when new errors are added. For this reason, the design pattern is to just always throw a [CRTError](https://github.com/awslabs/aws-crt-swift/blob/main/Source/AwsCommonRuntimeKit/crt/CommonRuntimeError.swift) struct as the error. You should not add any new cases to CommonRuntimeError enum unless really necessary.
```swift
/* DO THIS */
/* Example 1: */
throw CommonRunTimeError.crtError(CRTError.makeFromLastError())
/* Example 2: */
throw CommonRunTimeError.crtError(CRTError(code: AWS_ERROR_CBOR_UNEXPECTED_TYPE.rawValue))