Fix GC safety and write barriers in worker_pool.c

samuel-williams-shopify · cursoragent · samuel-williams-shopify · commit 2e301ec4ce97 · 2026-05-10T13:27:42.000+09:00
1. RB_GC_GUARD(_blocking_operation) in worker_pool_call
   The _blocking_operation VALUE argument is on the calling fiber's C stack.
   The GC finds it via conservative scan, marks the underlying TypedData
   object, and prevents collection — keeping the raw C pointer extracted
   before the fiber switch valid throughout the worker's execution.
   RB_GC_GUARD ensures the compiler doesn't treat the VALUE as dead before
   the end of the function.

2. RUBY_TYPED_WB_PROTECTED + compact function
   Without WB_PROTECTED, RB_OBJ_WRITE (used at worker creation) installed
   no write barrier. A new compact function updates worker-&gt;thread via
   rb_gc_location for proper compacting GC support.

3. rb_gc_mark_movable for thread objects
   Changed from rb_gc_mark (which pins) to rb_gc_mark_movable so threads
   can be relocated by the compacting GC.

Co-authored-by: Cursor &lt;cursoragent@cursor.com&gt;
diff --git a/ext/io/event/worker_pool.c b/ext/io/event/worker_pool.c
@@ -91,11 +91,20 @@ static void worker_pool_mark(void *ptr)
 	struct IO_Event_WorkerPool *pool = (struct IO_Event_WorkerPool *)ptr;
 	struct IO_Event_WorkerPool_Worker *worker = pool->workers;
 	while (worker) {
-		struct IO_Event_WorkerPool_Worker *next = worker->next;
 		// We need to mark the thread even though its marked through the VM's ractors because we call `join`
 		// on them after their completion. They could be freed by then.
-		rb_gc_mark(worker->thread);  // thread objects are currently pinned anyway
-		worker = next;
+		rb_gc_mark_movable(worker->thread);
+		worker = worker->next;
+	}
+}
+
+static void worker_pool_compact(void *ptr)
+{
+	struct IO_Event_WorkerPool *pool = (struct IO_Event_WorkerPool *)ptr;
+	struct IO_Event_WorkerPool_Worker *worker = pool->workers;
+	while (worker) {
+		worker->thread = rb_gc_location(worker->thread);
+		worker = worker->next;
 	}
 }
 
@@ -107,8 +116,8 @@ static size_t worker_pool_size(const void *ptr) {
 // Ruby TypedData structures
 static const rb_data_type_t IO_Event_WorkerPool_type = {
 	"IO::Event::WorkerPool",
-	{worker_pool_mark, worker_pool_free, worker_pool_size,},
-	0, 0, RUBY_TYPED_FREE_IMMEDIATELY
+	{worker_pool_mark, worker_pool_free, worker_pool_size, worker_pool_compact},
+	0, 0, RUBY_TYPED_FREE_IMMEDIATELY | RUBY_TYPED_WB_PROTECTED
 };
 
 // Helper function to enqueue work (must be called with mutex held)
@@ -375,6 +384,8 @@ static VALUE worker_pool_call(VALUE self, VALUE _blocking_operation) {
 	
 	if (DEBUG) fprintf(stderr, "<- worker_pool_call:work completed=%d, state=%d\n", work.completed, state);
 	
+	RB_GC_GUARD(_blocking_operation);
+	
 	if (state) {
 		rb_jump_tag(state);
 	} else {
