On 20/07/2025 12:43, Stefan Klinger wrote:

Tom Smeding (2025-Jul-13, excerpt):

...

It is implemented in terms of a ReadP parser. Tom, thanks for pointing me to [4]. Yes, that looks feasible. How would I go about modifying the `base` library? Sorry if that's a stupid question, but I don't know where to start, `base` just always happened to be there already. I.e., could someone please help me to get a simple setup (my usual modus operandi is the shell, cabal, and an editor) where the base library is accessible for modification and testing?

I have never done this and others likely have more specific advice here. Base lives inside the GHC repository here [1]; there are general GHC development instructions here [2]. For specific advice and to what extent you really need to rebuild GHC in order to test a modified 'base', I redirect you to the ghc-devs mailing list [3] and the GHC matrix room [4]. [1]: https://gitlab.haskell.org/ghc/ghc/-/tree/master/libraries/base [2]: https://ghc.dev/ [3]: https://mail.haskell.org/mailman/listinfo/ghc-devs [4]: https://matrix.to/#/#GHC:matrix.org - Tom

Hallo, and thanks for the discussion! TL;DR: Jeff, my apporach would not violate your expectations But many thanks for the consideration, it gave me new insight =) Jeff Clites via Haskell-Cafe (2025-Jul-20, excerpt):

GHC's treatment of integer-style numeric literals is part of the Haskell spec--it's not just a GHC implementation detail. Specifically, it treats them as unbounded precision Integer's, subsequently converted to other types via `fromInteger`.

ghci> x = 123456 ghci> x :: Int 123456 ghci> x :: Word8 64 ghci> :type x x :: Num a => a

Slowly I think I maybe get what you mean. You're entirely correct, the docs [1] say An integer literal represents the application of the function fromInteger to the appropriate value of type Integer, so such literals have type (Num a) => a. Hence, the GHC parser would have to use read :: String -> Integer to parse the literal, otherwise we would not be getting an `Integer` value. This is one particular `read` function. I imagine in your example x = 123456 is equivalent to x = fromInteger (read "123456" :: Integer) and the following `x :: Int` and `x :: Word8` choose the appropriate `fromInteger` function. They do *not* choose the `read` function. It is still the one that returns an unbounded `Integer`, and I do not want to get rid of, or even touch that unbounded `read` function. It is good. But there is a *different* read function read :: String -> Word8 which is not used in the scenario above, and this is the buggy one (and all its bounded cousins). I did not realise this before as explicitly as I do now, but the example > read "298" :: Word8 42 chooses a different `read` function than would be used by the GHC parser for > x = 298 > x :: Word8 42 which just happens to produce `42` as well, because `fromInteger` *also* wraps around: > fromInteger (toInteger 298) :: Word8 42 The `x` above is not of type `Word8`, it is a `Num a => a`, because one can still retieve the original value from it: > x :: Integer 298 To summarize: The GHC parser uses `read :: String -> Integer` to parse literals of type `Integer`. It would be completely unaffected by my suggested modification of the *other* `read` functions, which only concern the bounded integral types. Hmmmmm. Does this address your concerns? About the more general approach you requested Jeff Clites via Haskell-Cafe (2025-Jul-20, excerpt):

This was really just meant to show my thought process, which was to realize that parsing a number with a limit implied by a datatype was just a specific case of a more general operation, and once you have that more general operation you can implement number-limited-by-a-datatype in terms of that.

Yes, it is probably a worthwhile effort to factor out the common idea that I've implemented specifically for Parsec and Attoparsec, ideally it would be usable for most parser libraries. I'll reconsider the hints at `scan`, thanks for that. Actually, my own implementations were rather meant as proof of concepts, they do have their own, questionable, peculiarities like strictly forbidding leading `+`, etc. I'll try to open a ticket on GHC's tracker, hoping to consolidate discussion there. And I do expect a quite some work ahead of me… Cheers =) Stefan [1]: https://hackage.haskell.org/package/base-4.21.0.0/docs/Prelude.html#v:fromIn... -- Stefan Klinger, Ph.D. -- computer scientist o/X http://stefan-klinger.de /\/ https://github.com/s5k6 \ I prefer receiving plain text messages, not exceeding 32kB.

On Jul 21, 2025, at 8:43 AM, Stefan Klinger wrote:

Hallo, and thanks for the discussion!

You are welcome!

But there is a *different* read function

read :: String -> Word8

which is not used in the scenario above, and this is the buggy one (and all its bounded cousins).

I think you will find, though, that `read @Word8` is intended to match the behavior of `(fromInteger @Word8) . (read @Integer)`. At least, the `Int` case is specified in the Haskell Report (in the Prelude implementation). But I could be wrong about the intention in the other cases, you can always ask the relevant committee. (BTW the `read` functions have other quirks, like allowing leading whitespace.) Jeff Clites

I would like to point out that if you want correctness, you should use `Integer`. If you are using a bounded `Integral` it is expected that you are doing so because you value speed over correctness. They are _not_ `Z/n`, they are hardware values that have little to do with formal mathematics. On Sun, Jul 20, 2025 at 12:23 PM Viktor Dukhovni wrote:

On Sun, Jul 20, 2025 at 07:08:54AM -0800, Daniil Iaitskov wrote:

...

one divMod and double cmp per digit can be replaced with left shift and single cmp per digit which is faster

But, sadly, at first blush not correct as written. And the multiply is not needed, instead, as in the ByteString code, one can take the fast path when the old value is at most than 1/10th of the upper bound, fail when strictly larger, and take a bit more care when exactly equal.

...

CPU is optimized to work with word size values. Assuming word size is 64bit then majority of fixed types (Word8 - Word64) fits a register.

{-# SPECIALIZE parse @Int #-}

parse :: forall a. Num a => Parsec Word64 -> Word64 -> a

parse nextDigit s old = nextDigit >>= \case Nothing -> pure $ fromIntegral s Just d -> do let s' = 10 * s + d new = s' `shiftL` (finiteBitSize s' - finiteBitSize (undefined @a)) if old > new then fail "overflow" else parse nextDigit s' new

It looks like it might not always detect overflow. Counter-example:

30 * 10 + 1 = 301

which is 45 mod 256, which happens be larger than 30. So the above would presumably accept "301" returning 45 as a Word8. Overflow in addition of two positive numbers will produce an answer smaller than either, but this is not the case with multiplication by 10.

See:

https://hackage-content.haskell.org/package/bytestring-0.12.2.0/docs/src/Dat...

https://hackage-content.haskell.org/package/bytestring-0.12.2.0/docs/src/Dat...

-- Viktor. 🇺🇦 Слава Україні! _______________________________________________ Haskell-Cafe mailing list To (un)subscribe, modify options or view archives go to: http://mail.haskell.org/cgi-bin/mailman/listinfo/haskell-cafe Only members subscribed via the mailman list are allowed to post.

-- brandon s allbery kf8nh allbery.b@gmail.com

Mostly. One difference is that over/underflow is signaled in `CF` (carry bit), and that's used to extend arithmetic: to add a pair of 128-bit numbers you `ADD` the lower 64 bits, advance to the higher 64 bits, and `ADC` those (the "C" means it uses the carry bit). And `CF` might again be set afterward indicating that it overflowed 128 bits. (This is also why Intel architecture orders bytes/words the way it does.) That it otherwise behaves as modular is in support of this, not in support of a mathematical law, and the behavior might differ on other architectures (e.g. PPC, or if someone somewhere still has a processor using 1s- complement). Which is the most important point: the Report specifies `Integral` types other than `Integer` to behave like the machine type, and you're basically assuming x86-64 (_probably_ also AArch64 but i haven't studied that one, just assuming it's 2s-complement) if you assume either modular arithmetic or any other behavior. The only promise you get is "matches the underlying hardware". On Sun, Jul 20, 2025 at 8:25 PM Jeff Clites via Haskell-Cafe < haskell-cafe@haskell.org> wrote:

...

On Jul 20, 2025, at 9:43 AM, Brandon Allbery wrote:

I would like to point out that if you want correctness, you should use `Integer`. If you are using a bounded `Integral` it is expected that you are doing so because you value speed over correctness. They are _not_ `Z/n`, they are hardware values that have little to do with formal mathematics.

But aren't they de-facto modular integers?

Jeff _______________________________________________ Haskell-Cafe mailing list To (un)subscribe, modify options or view archives go to: http://mail.haskell.org/cgi-bin/mailman/listinfo/haskell-cafe Only members subscribed via the mailman list are allowed to post.

-- brandon s allbery kf8nh allbery.b@gmail.com

More feedback! Thanks =) Brandon Allbery (2025-Jul-20, excerpt):

If you are using a bounded `Integral` it is expected that you are doing so because you value speed over correctness.

No? It is expected that I'm sure all my calculations fit within that type. Doing things wrong quickly is pointless. Anyways, I'd like to address the repeated concerns about performance! I've just added performance testing [1] with criterion to the proposed implementation. If I have done this correctly, then (with a lot of `SPECIALIZE` pragmas), my code seems actually faster than the builtin read — if only a wee bit. Without specialisation, it depends on the size (bits) of the type. Note that I had no intention to be particularly fast, I would have been satisfied with not-too-slow-but-detecting-overvlows. Turns out, that my implementation seems not that slow at all. I was getting the impression that I have failed to explain the proposed implementation [2] sufficiently. There is one modulo operation *per literal*, i.e., “per number that one wants to parse”, this is *not* per digit of that number. And there is one comparison per digit — but if one counts the digits instead, then this counting also implies one comparison per digit. Hence, as described before, I was not expecting my code to be particularly slow either. Tom, thanks again for the pointers, especially `https://ghc.dev/` and the separate mailing list. I'll try to follow these instructions in the upcoming week. Following George's advice, I'll try to contact GHC devs there, or try to file a bug. Actually, I was expecting GHC folks to hang about on this mailing list… George Colpitts (2025-Jul-20, excerpt):

Isn't Victor's suggestion of using Data.ByteString.Char8.readWord8 a workaround for the issue with read?

Well, I was not looking for a workaround (I have one), but rather asking for advice on how to improve the implementations that I find unsatisfying. Cheers Stefan [1]: https://github.com/s5k6/robust-int/blob/master/specialized.html [2]: https://github.com/s5k6/robust-int/blob/master/src/Data/RobustInt/Parsec.hs#... -- Stefan Klinger, Ph.D. -- computer scientist o/X http://stefan-klinger.de /\/ https://github.com/s5k6 \ I prefer receiving plain text messages, not exceeding 32kB. -- Stefan Klinger, Ph.D. -- computer scientist o/X http://stefan-klinger.de /\/ https://github.com/s5k6 \ I prefer receiving plain text messages, not exceeding 32kB.

what Jeff Clites said earlier bears repeating: Read is specified to match the behavior of source code. thus, its overflow behavior is strictly correct; if you disagree that numeric literals should be treated that way in Haskell, your gripe is with core language behavior, not with Read. it's absolutely a reasonable argument you're making! just, I think you'll get farther appealing for changes in any other parser. On Sun, Jul 20, 2025, 11:45 AM Stefan Klinger wrote:

More feedback! Thanks =)

Brandon Allbery (2025-Jul-20, excerpt):

...

If you are using a bounded `Integral` it is expected that you are doing so because you value speed over correctness.

No? It is expected that I'm sure all my calculations fit within that type. Doing things wrong quickly is pointless.

Anyways, I'd like to address the repeated concerns about performance!

I've just added performance testing [1] with criterion to the proposed implementation. If I have done this correctly, then (with a lot of `SPECIALIZE` pragmas), my code seems actually faster than the builtin read — if only a wee bit. Without specialisation, it depends on the size (bits) of the type.

Note that I had no intention to be particularly fast, I would have been satisfied with not-too-slow-but-detecting-overvlows. Turns out, that my implementation seems not that slow at all.

I was getting the impression that I have failed to explain the proposed implementation [2] sufficiently. There is one modulo operation *per literal*, i.e., “per number that one wants to parse”, this is *not* per digit of that number. And there is one comparison per digit — but if one counts the digits instead, then this counting also implies one comparison per digit. Hence, as described before, I was not expecting my code to be particularly slow either.

Tom, thanks again for the pointers, especially `https://ghc.dev/` https://ghc.dev/ and the separate mailing list. I'll try to follow these instructions in the upcoming week.

Following George's advice, I'll try to contact GHC devs there, or try to file a bug. Actually, I was expecting GHC folks to hang about on this mailing list…

George Colpitts (2025-Jul-20, excerpt):

...

Isn't Victor's suggestion of using Data.ByteString.Char8.readWord8 a workaround for the issue with read?

Well, I was not looking for a workaround (I have one), but rather asking for advice on how to improve the implementations that I find unsatisfying.

Cheers Stefan

[1]: https://github.com/s5k6/robust-int/blob/master/specialized.html [2]: https://github.com/s5k6/robust-int/blob/master/src/Data/RobustInt/Parsec.hs#...

-- Stefan Klinger, Ph.D. -- computer scientist o/X http://stefan-klinger.de /\/ https://github.com/s5k6 \ I prefer receiving plain text messages, not exceeding 32kB.

-- Stefan Klinger, Ph.D. -- computer scientist o/X http://stefan-klinger.de /\/ https://github.com/s5k6 \ I prefer receiving plain text messages, not exceeding 32kB. _______________________________________________ Haskell-Cafe mailing list To (un)subscribe, modify options or view archives go to: http://mail.haskell.org/cgi-bin/mailman/listinfo/haskell-cafe Only members subscribed via the mailman list are allowed to post.

I believe it's not that integers must wrap, but that Read behavior must match compiler behavior (and GHC's behavior is to wrap). On Sun, Aug 3, 2025, 12:17 PM Stefan Klinger wrote:

Pierre Thierry (2025-Jul-21, excerpt):

...

Well, IIUC, it conforms to the Haskell 98 specification.

Hm. Maybe I keep missing something here. After all it's beeing pointed out repeatedly by you guys (and yes, I do listen), but I fail to verify that claim.

I don't think the Haskell Spec really *requires* the `read` function for a bounded integral type to wrap around.

Jeff Clites via Haskell-Cafe (2025-Jul-21, excerpt):

...

I think you will find, though, that `read @Word8` is intended to match the behavior of `(fromInteger @Word8) . (read @Integer)`. At least, the `Int` case is specified in the Haskell Report (in the Prelude implementation).

Sorry, I cannot find this. Would you have a URL and a line number for me? I'm really sorry my google-foo seems to be insufficient.

I have found in the 98 report [4], similar in 2010 [5]:

The results of exceptional conditions (such as overflow or underflow) on the fixed-precision numeric types are undefined; an implementation may choose error (_|_, semantically), a truncated value, or a special value such as infinity, indefinite, etc.

So, not violating the report, but the implementation might choose to do better.

Cheers Stefan

[1]: https://mail.haskell.org/pipermail/haskell-cafe/2025-July/137156.html [2]: https://mail.haskell.org/pipermail/haskell-cafe/2025-July/137155.html [3]: https://mail.haskell.org/pipermail/haskell-cafe/2025-July/137162.html [4]: https://www.haskell.org/onlinereport/basic.html#sect6.4 [5]: https://www.haskell.org/onlinereport/haskell2010/haskellch6.html#x13-1350006...

-- Stefan Klinger, Ph.D. -- computer scientist o/X http://stefan-klinger.de /\/ https://github.com/s5k6 \ I prefer receiving plain text messages, not exceeding 32kB. _______________________________________________ Haskell-Cafe mailing list To (un)subscribe, modify options or view archives go to: http://mail.haskell.org/cgi-bin/mailman/listinfo/haskell-cafe Only members subscribed via the mailman list are allowed to post.

On Aug 3, 2025, at 12:17 PM, Stefan Klinger wrote:

Jeff Clites via Haskell-Cafe (2025-Jul-21, excerpt):

...

I think you will find, though, that `read @Word8` is intended to match the behavior of `(fromInteger @Word8) . (read @Integer)`. At least, the `Int` case is specified in the Haskell Report (in the Prelude implementation).

Sorry, I cannot find this. Would you have a URL and a line number for me? I'm really sorry my google-foo seems to be insufficient.

This part is what I was thinking of: https://www.haskell.org/onlinereport/haskell2010/haskellch9.html#verbatim-30... That's the `Read` instance for `Int`, which defines `readsPrec` (which is used by `reads`, which is used by `read`, also defined there). It uses `fromInteger`. This is the section of the spec with the Standard Prelude. (It says it's serving as a specification, though not requiring the actual implementation to be what's given here.) That's only specifically about `Int`. The limited-width types are in these two sections: https://www.haskell.org/onlinereport/haskell2010/haskellch18.html https://www.haskell.org/onlinereport/haskell2010/haskellch23.html This is the part of the spec about the standard libraries, though it doesn't show the full implementations. I don't know if they are supplied elsewhere (I've looked and can't find them), though I don't think that that means that their behavior is unspecified. It does mention, "All arithmetic is performed modulo 2^n, where n is the number of bits in the type." So it doesn't supply the `Read` implementations for these other types and it doesn't directly say that `Read` has to wrap even though arithmetic operations do. But I would expect that the intention is that they act consistently with `Int`. When I said, "I think you will find..." in my original message, what I really meant was that if you file a bug report I think the reply will be that the behavior is as intended (specifically, to match `Int`). But who knows. Enjoy! Jeff