Thanks to my sponsors: Luke Yue, jer, Tiziano Santoro, Diego Roig, Rufus Cable, Mikkel Rasmussen, Beat Scherrer, Sawyer Knoblich, L0r3m1p5um, Johan Saf, Xirvik Servers, Laine Taffin Altman, Josiah Bull, Gorazd Brumen, Henrik Tudborg, Ryan, Adam Lassek, Chris Thackrey, Stephan Buys, prairiewolf and 255 more Luke Yue, jer, Tiziano Santoro, Diego Roig, Rufus Cable, Mikkel Rasmussen, Beat Scherrer, Sawyer Knoblich, L0r3m1p5um, Johan Saf, Xirvik Servers, Laine Taffin Altman, Josiah Bull, Gorazd Brumen, Henrik Tudborg, Ryan, Adam Lassek, Chris Thackrey, Stephan Buys, prairiewolf, Zoran Zaric, Andy F, Nicolas Riebesel, Matt Heise, Chris, Alan O'Donnell, Jörn Huxhorn, Kai Kaufman, Ives van Hoorne, Jan De Landtsheer, Geoff Cant, Matthew Planchard, Marcin Kołodziej, Christian Bourjau, hgranthorner, Matthew T, Guy Waldman, David E Disch, Philipp Gniewosz, Sindre Johansen, clement, Radu Matei, Yves, Garret Kelly, Daniel Silverstone, Tyler Bloom, Michael, Katie Janzen, kuerbsikakteen, WeblWabl, Luke Konopka, Lev Khoroshansky, Antoine Boegli, Walther, Paige Ruten, Jean Manguy, Tanner Muro, belzael, Paul Horn, Jonathan, Dom, Chris Sims, SeniorMars, Damir Vandic, David Souther, Scott Steele, you got maiL, Marie Janssen, Braidon Whatley, medzernik, Steven Pham, Lennart Oldenburg, Lyssieth, Nyefan, Olivia Crain, Ronen Cohen, Max Bruckner, Noel, Dimitri Merejkowsky, Ben Wishovich, Joshua Roesslein, Matěj Volf, Cass, Hadrien G., Mattia Valzelli, Luciano Mammino, Julian Schmid, Borys Minaiev, Ronen Ulanovsky, Boris Dolgov, Jake Demarest-Mays, playest, Yann Schwartz, Egor Ternovoi, Christoph Grabo, Valentin Mariette, Aiden Scandella, C J Silverio, David White, Marc-Andre Giroux, Andrew Neth, Sam Leonard, Peter Shih, Astrid, Scott Sanderson, Torben Clasen, Romain Ruetschi, Chirag Jain, Ivo Murrell, compwhizii, Daniel Papp, Zaki, Tobias Bahls, Leigh Oliver, Sonny Scroggin, Richard Pringle, Beth Rennie, genny, John VanEnk, Jack Maguire, Marco Carmosino, Enrico Zschemisch, Jean-David Gadina, Matt Jackson, Blake Johnson, Max Heaton, Guillaume E, Corey Alexander, Mateusz Wykurz, Adam Gutglick, Timothée Gerber, Zeeger Lubsen, Makoto Nakashima, Marcus Griep, Mike Cripps, Josh Triplett, Yufan Lou, Andy Gocke, Duane Sibilly, Ben Mitchell, Elijah Voigt, avborhanian, Quentin Santos, Urs Metz, Zachary Thomas, Michael Mrozek, notryanb, James Leitch, Niels Abildgaard, Paul Marques Mota, Marcus Griep, Daniel Wagner-Hall, Johnathan Pagnutti, Sean Bryant, Ross Williams, old.woman.josiah, Shane Lillie, anichno, Dylan Anthony, Olly Swanson, Steven McGuire, Vladimir, zaurask, Ula, Miguel Piedrafita, Neil Blakey-Milner, Jelle Besseling, villem, Johan Andersson, Jonathan Adams, Lena Schönburg, Applied Computing Research Labs, std__mpa, Antoine PESTEL-ROPARS, ZacJW, Pete Bevin, Raine Godmaire, Romet Tagobert, Senyo Simpson, Alex Doroshenko, Dennis Henderson, Daniel Strittmatter, Lucille Blumire, René Ribaud, Ian McLinden, Yuriy Taraday, Jon Gjengset, James Rhodes, Paul Schuberth, Marcus Brito, Andrew Plaza, Manuel Hutter, qrpth, Integer 32, LLC, Benjamin Röjder Delnavaz, Mario Fleischhacker, Horváth-Lázár Péter, Geoffrey Thomas, Aleksandre Khokhiashvili, Xavier Groleau, Ahmad Alhashemi, Mason Ginter, Mathias Brossard, Dirkjan Ochtman, Sarah Berrettini, ofrighil, Aalekh Patel, traxys, Helge Eichhorn, Marky Mark, Marty Penner, Nicholas, David Barsky, Brandon Piña, Michael Alyn Miller, Guillaume Demonet, Ramen, Andronik, Cole Kurkowski, budrick, AdrianEddy, Berkus Decker, Moritz Lammerich, thbkrshw, bbutkovic, Victor Song, James Brown, teor, jatescher, Joseph Montanaro, Chris Walker, Thor Kamphefner, David Cornu, Isak Sunde Singh, Michał Bartoszkiewicz, Chris Biscardi, Antoine Rouaze, Jacob Cheriathundam, Michal Hošna, callym, Romain Kelifa, CryoMyst, Santiago Lema, Geoffroy Couprie, Matt Jadczak, Raphaël Thériault, Pete LeVasseur, Richard Stephens, Sylvie Nightshade, Kristoffer Winther Balling, Eugene Bulkin, Philipp Hatt, Vincent, Kamran Khan, Colin VanDervoort, Seth, Gran PC, Malik Bougacha, Camille Louédoc-Eyriès, Morgan Rosenkranz, Mark Tomlin, Chris Emery, Tyler Schmidtke, xales, Max von Forell, Mark Old, pinkhatbeard, Alex Krantz, Herman J. Radtke III, Justin Ossevoort, Evan Relf, Alejandro Angulo, Jack Duvall, Bob Ippolito, Tabitha

fasterthanlime

Nov 15, 2022 3 min #rust · #async-fn-in-trait · #ftl-infra

Async fn in trait... not

I was planning on showing the in-progress async_fn_in_trait feature in the context of my website, but it turns out, I can't!

My website uses two databases: one local SQLite database for content, and a shared Postgres database for user credentials, preferences etc. Migrations are run on startup, and each migration implements one of the following traits:

#[async_trait::async_trait]
pub trait MigrationSqlite {
    fn tag(&self) -> &'static str;
    async fn up(&self, db: &mut Transaction<Sqlite>) -> Result<()>;
}

#[async_trait::async_trait]
pub trait MigrationPostgres {
    fn tag(&self) -> &'static str;
    async fn up(&self, db: &mut Transaction<Postgres>) -> Result<()>;
}

...which can have async functions thanks to the async-trait crate.

Enabling the unstable feature works for the trait definition:

#![allow(incomplete_features)]
#![feature(async_fn_in_trait)]

pub trait MigrationPostgres {
    fn tag(&self) -> &'static str;
    async fn up(&self, db: &mut Transaction<Postgres>) -> Result<()>;
}

...but fails later, because I'm making a Vec of migrations, to pass to:

pub async fn migrate_all_postgres(
    db: &PgPool,
    wanted_list: Vec<Box<dyn MigrationPostgres>>,
) -> Result<()> {
    // (cut)
}

...and traits with async fns (the real thing) aren't trait-object-safe for now:

$ cargo check
    Checking futile-db v0.1.0 (/home/amos/bearcove/futile/crates/futile-db)
    (cut)
error[E0038]: the trait `MigrationPostgres` cannot be made into an object
   --> crates/futile-db/src/lib.rs:64:47
    |
64  | async fn mk_postgres_pool(migrations: Vec<Box<dyn MigrationPostgres>>) -> Result<sqlx::PgPool> {
    |                                               ^^^^^^^^^^^^^^^^^^^^^ `MigrationPostgres` cannot be made into an object
    |
note: for a trait to be "object safe" it needs to allow building a vtable to allow the call to be resolvable dynamically; for more information visit <https://doc.rust-lang.org/reference/items/traits.html#object-safety>
   --> crates/futile-db/src/migrations/mod.rs:135:14
    |
133 | pub trait MigrationPostgres {
    |           ----------------- this trait cannot be made into an object...
134 |     fn tag(&self) -> &'static str;
135 |     async fn up(&self, db: &mut Transaction<Postgres>) -> Result<()>;
    |              ^^ ...because method `up` references an `impl Trait` type in its return type
    = help: consider moving `up` to another trait

error[E0038]: the trait `MigrationPostgres` cannot be made into an object
   --> crates/futile-db/src/migrations/mod.rs:71:26
    |
71  |     wanted_list: Vec<Box<dyn MigrationPostgres>>,
    |                          ^^^^^^^^^^^^^^^^^^^^^ `MigrationPostgres` cannot be made into an object
    |
note: for a trait to be "object safe" it needs to allow building a vtable to allow the call to be resolvable dynamically; for more information visit <https://doc.rust-lang.org/reference/items/traits.html#object-safety>
   --> crates/futile-db/src/migrations/mod.rs:135:14
    |
133 | pub trait MigrationPostgres {
    |           ----------------- this trait cannot be made into an object...
134 |     fn tag(&self) -> &'static str;
135 |     async fn up(&self, db: &mut Transaction<Postgres>) -> Result<()>;
    |              ^^ ...because method `up` references an `impl Trait` type in its return type
    = help: consider moving `up` to another trait

(cut)

There is a very good reason for that limitation, and I hear, to lift it, something like dyn* (which is very hard to search for) is needed.

So, instead, I'll show them what I did for hring, to get an "owned" version of the AsyncRead / AsyncWrite traits, that is io-uring-friendly:

pub trait ReadOwned {
    async fn read<B: IoBufMut>(&self, buf: B) -> BufResult<usize, B>;
}

pub trait WriteOwned {
    async fn write<B: IoBuf>(&self, buf: B) -> BufResult<usize, B>;

    async fn writev<B: IoBuf>(&self, list: Vec<B>) -> BufResult<usize, Vec<B>> {
        let mut out_list = Vec::with_capacity(list.len());
        let mut list = list.into_iter();
        let mut total = 0;

        while let Some(buf) = list.next() {
            let (res, buf) = self.write(buf).await;
            out_list.push(buf);
            match res {
                Ok(n) => total += n,
                Err(e) => {
                    out_list.extend(list);
                    return (Err(e), out_list);
                }
            }
        }

        (Ok(total), out_list)
    }

    async fn write_all<B: IoBuf>(&self, mut buf: B) -> BufResult<(), B> {
        let mut written = 0;
        let len = buf.bytes_init();
        while written < len {
            let (res, slice) = self.write(buf.slice(written..len)).await;
            buf = slice.into_inner();
            let n = match res {
                Ok(n) => n,
                Err(e) => return (Err(e), buf),
            };
            written += n;
        }
        (Ok(()), buf)
    }
}

pub trait ReadWriteOwned: ReadOwned + WriteOwned {}
impl<T> ReadWriteOwned for T where T: ReadOwned + WriteOwned {}

This all works flawlessly. Here's the implementation for tokio-uring's TcpStream type:

impl ReadOwned for TcpStream {
    async fn read<B: IoBufMut>(&self, buf: B) -> BufResult<usize, B> {
        TcpStream::read(self, buf).await
    }
}

impl WriteOwned for TcpStream {
    async fn write<B: IoBuf>(&self, buf: B) -> BufResult<usize, B> {
        TcpStream::write(self, buf).await
    }

    async fn writev<B: IoBuf>(&self, list: Vec<B>) -> BufResult<usize, Vec<B>> {
        TcpStream::writev(self, list).await
    }
}

(It's trivial, since the trait is closely modelled after tokio-uring's own types).

Object trait safety is still an issue here, but we can work around it by making most functions take an &impl ReadOwned instead of a &dyn ReadOwned, which makes the function generic (which means it'll be monomorphized, which in turns means the binary will be larger, but there won't be dynamic dispatch at all):

/// Returns `None` on EOF, error if partially parsed message.
pub(crate) async fn read_and_parse<Parser, Output>(
    parser: Parser,
    //        👇
    stream: &impl ReadOwned,
    mut buf: RollMut,
    max_len: usize,
) -> eyre::Result<Option<(RollMut, Output)>>
where
    Parser: Fn(Roll) -> IResult<Roll, Output>,
{
    // cut
}

The rest of the hring API is carefully designed to work around that limitation for now, which is... a bit of a balancing act, but it works!

Comment on /r/fasterthanlime

Here's another article just for you:

Abstracting away correctness

Jun 27, 2020

44 min #golang · #rust

I've been banging the same drum for years: APIs must be carefully designed.

This statement doesn't resonate the same way with everyone. In order to really understand what I mean by "careful API design", one has to have experienced both ends of the spectrum.

But there is a silver lining - once you have experienced "good design", it's really hard to go back to the other kind. Even after acknowledging that "good design" inevitably comes at a cost, whether it's cognitive load, compile times, making hiring more challenging, etc.

Read more