`str` method for slicing code-point (i.e. `char`) ranges

rkruppe · 2018-05-24T20:34:09.097Z

Let’s not devolve into a long and heated debate over the definition of “character” and the merits of codepoint-based processing. Needing to conform to implement an existing interface that includes indexing and slicing by code point index is sufficient motivation for indexing and slicing strings by code point index.

However, if that’s what one need to do, then UTF-8 is a pretty bad string representation to do it with. I don’t think an implementation of Scheme, for example, would be well-served with convenient but slow methods for code point based access. Rather, I’d expect such an implementation to store Scheme strings as an array of code points.

ciprian.craciun · 2018-05-24T20:44:42.452Z

rkruppe:

However, if that’s what one need to do, then UTF-8 is a pretty bad string representation to do it with. I don’t think an implementation of Scheme, for example, would be well-served with convenient but slow methods for code point based access. Rather, I’d expect such an implementation to store Scheme strings as an array of code points.

Indeed UTF-8 encoding is a bad choice in terms of efficiency, however the standard does clearly state that:

(string-ref string k) It is an error if k is not a valid index of string. The string-ref procedure returns character k of string using zero-origin indexing. There is no requirement for this procedure to execute in constant time.

Therefore if one knows it will do a lot of character-based slicing, one would better use string->vector to obtain a vector of characters. (Not as efficient as a proper string encoded as Vec<char>, but good enough.)

However most of the time the usage of such a builtin would be to obtain a sub-string based on some indices obtained from somewhere…

rkruppe · 2018-05-24T21:05:01.882Z

OK, so you could technically get away with it for Scheme. It’s not clear whether it’s a good choice though. And for other cases where one is forced to do code point indexing (e.g., implementing another language where there is an expectation of constant-time indexing), even that excuse doesn’t apply.

Aside from that, I want to second that even if you use String, the implementation of code point indexing/slicing doesn’t have to be anywhere near as complex as your earlier posts claim. In particular, the problem you pointed out here is quite surmountable:

ciprian.craciun:

No, one can’t use skip just as one can’t use nth , for the simple reason, that if the “count” to be skipped by is larger than the actual number of characters, then the user won’t be issued an error, thus hiding a potential buffer over-run, which although less likely in Rust, will still potentially cause a panic down the road…

For indexing, nth gives you None if the index is out of bounds. For slicing, you can use chars().skip().take() and check afterwards whether you got the expected number of code points. If you are fine with computing the number of code points beforehand, or are caching it for each Scheme string, you can also manually do bounds checking.

kornel · 2018-05-24T23:17:08.992Z

ciprian.craciun:

in all my 15 years of programming I never stumbled upon an issue in which the string I was slicing and dicing contained a “weird character” that was composed of multiple code-points…

I have one in my last name (in NFD, which macOS uses in filenames), so I keep seeing broken software regularly. They are common in Indic scripts. In the west people tend to care more about flag emoji, which are also “weird”.

GolDDranks · 2018-05-25T01:09:50.215Z

I also regularly encounter filenames where the katakana ガギグゲゴ, commonly written with a codepoint each, are split into two (combining form, unlike what I’m going to write here for the effect:) カ゛キ゛ク゛ケ゛コ゛. MacOS default filesystem does this for filenames. Slicing at the wrong boundary is going to land you in the bug land.

CAD97 · 2018-05-25T05:40:00.853Z

At least one of iOS’s “this message crashes your phone” bugs was likely due to ObjC code splitting in-between codepoints such that the text layout engine for notifications crashed, due to a trailing incomplete cluster. Of course we don’t know the exact reason but a trailing zero width joiner sounds likely.

Proliferation of small libraries always feels strange, since you’re relying on more people’s code. Especially for something as difficult as string manipulation, it helps you have some authority behind the implementation you use.

But I think the correct direction is for String to remain a byte oriented UTF8 guaranteeing interface, and for external crates to provide windows for more convenient “character” based APIs for whatever definition of character is most fitting to a problem domain.

Text manipulation is hard. Basically the only guaranteed safe thing you can do is treat it as a binary blob: look it up in I18n and display it without modification. However, the real world is messy, and that’s what libraries that are more able to iterate than the standard are great for dealing with.

That said, though, the existing API isn’t that bad for working on codepoint indices. You just have to make the mental shift to using iterators instead of collections.

ciprian.craciun · 2018-05-25T06:10:06.533Z

"CAD97:

That said, though, the existing API isn’t that bad for working on codepoint indices. You just have to make the mental shift to using iterators instead of collections.

Yes it is… And it’s not for the fact that one has to “wrap” his mind to use iterator operations like let mut inices = string.char_indices(); let start_byte = indices.nth(start).unwrap(); let stop_byte = indices.nth(stop - start).unwrap(), it’s for the fact that the previous snippet – as explained in my original post – is incorrect, and the “correct” solution is almost a page long (and I’m sure I got some bugs in there…)

I promise this is the last time I make an attempt in “defending” “theoretically incorrect” API’s, which when used wrong could lead to obnoxious bugs or even worse to crashes, but let’s leave code-point boundaries for a minute and think about the following: I bet there are countless bugs caused by division by zero, however this didn’t prompt any programming language (or standard library) from “forbidding” either the number zero or the division operation. Instead the developers have to check and sanitize their inputs, just like a developer that slices a string on a character basis should have in mind.

To put it from another perspective: from what I understand the main issue with code-point slicing is that there are “characters” that are made of multiple code-points, and slicing a string in the middle of a character like that would lead to bugs.

Then if this is the case then I bet such situations are easy to check and guard against, by changing the signature of a “would be” slicing method to str::get_char_boundary(Range) -> Result<str, CharBoundaryError>, where CharBoundaryError would be an enum that has arms like OutOfRange, CharacterIsMultiCodePoint, etc.

In this way we get a “correct” and useful API at the same time.

rkruppe · 2018-05-25T06:29:00.647Z

ciprian.craciun:

the fact that the previous snippet – as explained in my original post – is incorrect, and the “correct” solution is almost a page long (and I’m sure I got some bugs in there…)

I previously explained how I think the error checking can be done in a much simpler way. If I missed something and was wrong about that, I’d like to hear the reason.

skysch · 2018-05-25T06:29:55.892Z

ciprian.craciun:

I promise this is the last time I make an attempt in “defending” “theoretically incorrect” API’s, which when used wrong could lead to obnoxious bugs or even worse to crashes, but let’s leave code-point boundaries for a minute and think about the following: I bet there are countless bugs caused by division by zero, however this didn’t prompt any programming language (or standard library) from “forbidding” either the number zero or the division operation. Instead the developers have to check and sanitize their inputs, just like a developer that slices a string on a character basis should have in mind.

This isn’t really a helpful analogy. Most everybody knows that division by zero is meaningless. But people regularly ask for ways to treat rust strings as an “indexable array of characters”, while thinking they should get O(1) performance out of it. So if that’s provided, people will undoubtably reach for it without the clear understanding of the tradeoffs that you have.

With that said, I don’t see why a non-std crate can’t be the solution here.

ciprian.craciun · 2018-05-25T06:42:13.855Z

rkruppe:

ciprian.craciun:

the fact that the previous snippet – as explained in my original post – is incorrect, and the “correct” solution is almost a page long (and I’m sure I got some bugs in there…)

I previously explained how I think the error checking can be done in a much simpler way. If I missed something and was wrong about that, I’d like to hear the reason.

Please provide the code that correctly and efficiently implements the slicing with the bounds check (and does at most a single pass through the char or char_indices pass). I tried my best to implement it and the posted variant is the shortest and simplest one I found.

Indeed it can be done with a few calls to chars or char_indices, however those require multiple passes through the string.

rkruppe · 2018-05-25T09:31:02.290Z

I find it very curious that you’re hand-wringing over a constant factor here when the operation is fundamentally linear and could easily be constant time with a more appropriate data representation.

Admittedly, there is one tricky part I didn’t fully realize at first: you need the total code point count of the string (or at least up to the end point you’re considering) to distinguish “end point lands on end of string” from “end point is out of bounds”. However, this can be solved without any additional passes through the string by counting code points as they come out of the iterator. Here’s the implementation you requested: https://play.rust-lang.org/?gist=0434fb6f91de5435921569c3ac96f01f&version=stable&mode=debug

I did omit the start..end -> (start, count) conversion, but that’s because it’s trivial, independent of the core problem, and could be done in multiple different ways depending on what you want to do if start > end (e.g. error, empty substring, or swap start and end).

ciprian.craciun · 2018-05-25T09:56:13.406Z

rkruppe:

I find it very curious that you’re hand-wringing over a constant factor here when the operation is fundamentally linear and could easily be constant time with a more appropriate data representation.

[I wanted to make the following observation in my previous reply, but I didn’t think anyone would raise this false issue…]

So yes, indeed from a “theoretical” point of view both O(n) and O(c*n) where c is a known constant are equivalent. However in real life, one takes x seconds to execute, and the other one (if the compiler can’t optimize it) roughly c times x seconds.

rkruppe:

Admittedly, there is one tricky part I didn’t fully realize at first: you need the total code point count of the string (or at least up to the end point you’re considering) to distinguish “end point lands on end of string” from “end point is out of bounds”. However, this can be solved without any additional passes through the string by counting code points as they come out of the iterator. Here’s the implementation you requested: https://play.rust-lang.org/?gist=0434fb6f91de5435921569c3ac96f01f&version=stable&mode=debug

Let me paste your solution for the record:

fn code_point_slice(s: &str, code_point_start: usize, code_point_count: usize) -> Result<&str, SlicingError> {
    let mut seen_code_points: usize = 0;
    let (byte_start, byte_end) = {
        let mut iter = s
            .char_indices()
            .inspect(|_| seen_code_points += 1)
            .skip(code_point_start)
            .peekable();
        (iter.peek().map(|x| x.0), iter.nth(code_point_count).map(|x| x.0))
    };
    if code_point_start > seen_code_points {
        return Err(SlicingError::StartOutOfRange);
    }
    if code_point_start + code_point_count > seen_code_points {
        return Err(SlicingError::EndOutOfRange);
    }
    let byte_range = byte_start.unwrap_or(s.len()) .. byte_end.unwrap_or(s.len());
    return Ok(&s[byte_range]);
}

Anyone finds this as “a much simpler way” (@rkruppe) or “[…] existing API isn’t that bad […] just a mental shift […]” (@CAD97)?

I definitively don’t… Thus my proposal to include this into the standard library…

rkruppe · 2018-05-25T10:37:47.059Z

ciprian.craciun:

So yes, indeed from a “theoretical” point of view both O(n) and O(c*n) where c is a known constant are equivalent. However in real life, one takes x seconds to execute, and the other one (if the compiler can’t optimize it) roughly c times x seconds.

Take issue with framing it solely in terms of asymptotic complexity if you want, but at the end of the day any pass through the string takes x seconds (depending on the length of the string) while slicing a Vec<char> takes a few cycles, which certainly is a much larger gap than a factor of two or three except for the shortest of strings. If performance of this operation is important enough to worry about a factor of two, it would be a complete no brainer to use a different representation. Worrying about tuning the “pass through whole string” approach seems to miss the forest for the trees.

ciprian.craciun:

I definitively don’t… Thus my proposal to include this into the standard library…

I don’t deny it’s tricky, so it should definitely be encapsulated in a library function somewhere. It would clearly be insane to open code that in any location where you need to slice a string. But at the same time, I’ve not seen any reason why it should be in the standard library rather than any other library. Furthermore, even if we all agreed this functionality should be in the standard library, @burntsushi’s advice to first prototype it in a library and see how it work in practice would still apply.

Finally, keep in mind that this complexity is pretty much the worst case because you want all of the following:

the full feature set of slicing
on a representation completely unsuited for it
optimized as much as humanly possible

With a more suitable representation like Vec<char> it would be absolutely trivial. A slightly less efficient implementation, such as allowing yourself to count the code points separately is much simpler, comparable to byte-based slicing. Less general operations (e.g., only drop the first N code points) can also be much simpler, especially if they don’t require much error checking (e.g., you only need to truncate to K code points if it’s longer, and leave the string alone if it’s shorter).

ciprian.craciun · 2018-05-25T10:58:54.757Z

rkruppe:

[…] while slicing a Vec<char> takes a few cycles, which certainly is a much larger gap than a factor of two or three except for the shortest of strings. If performance of this operation is important enough to worry about a factor of two, it would be a complete no brainer to use a different representation. Worrying about tuning the “pass through whole string” approach seems to miss the forest for the trees.

[…]

With a more suitable representation like Vec<char> it would be absolutely trivial. A slightly less efficient implementation, such as allowing yourself to count the code points separately is much simpler, comparable to byte-based slicing. […]

I really do agree that Vec<char> would be a better solution if one has to fiddle a lot with the characters in a string. However there are cases when one just needs a sub-string (for example as an argument to another function, and for reasons which we all agree might lead to buggy behavior). Therefore converting the string to a vector, slicing it, and then converting it back to a string is just painfully inefficient in so many ways…

For example I stumbled upon this use-case when I had to implement the (write-string <string> <port> <string-start> <string-end>) Scheme R7RS function. Thus I don’t need to fiddle with the string, I just need to slice it. (Granted that internally I could have made so that my port trait should have a method that accepts character iterators, however at the moment – due to simplicity – it accepts only &str and &[u8]…)

MajorBreakfast · 2018-05-25T11:48:15.719Z

I think that useful, but rarely functionality like this should live inside a crate. Otherwise the standard library just gets large in size and also difficult to browse. If you ask me, the library should only contain things that are either common, require standardization or cannot be implemented outside of it. This seems not to be the case here.

ciprian.craciun:

one starts to wonder: “why do I need these 20 crates (that is 75% of my dependencies) that provide only 0.1% of my overall functionality? do I still need this left_pad crate that has a single function called left_pad ?”

Having a bloated standard library is even worse. Also, having many crates as dependencies isn’t a downside at all. Small focused crates are the way to go. They are easy to maintain and they can be easily swapped out if needed. BTW 20 crates are nothing. I’ve a Node.JS project with 1273 packages and npm installs them in 16s. A lot of modules in a few packages or a few modules in a lot of packages makes no difference to the module count. The only difference is that the former is hard to maintain. Maintaining a small package is much easier. And don’t hate on “left-pad”. It’s a perfect example why small packages/crates are the way to go: The package is well tested and it has benchmarks that ensure that it is the fastest way to pad a string to a specified length in JavaScript.

ciprian.craciun · 2018-05-25T12:25:06.906Z

MajorBreakfast:

ciprian.craciun:

one starts to wonder: “why do I need these 20 crates (that is 75% of my dependencies) that provide only 0.1% of my overall functionality? do I still need this left_pad crate that has a single function called left_pad ?”

[…] Also, having many crates as dependencies isn’t a downside at all. Small focused crates are the way to go. They are easy to maintain and they can be easily swapped out if needed. […] I’ve a Node.JS project with 1273 packages and npm installs them in 16s. […]

So I guess you haven’t done lately any software license compliance audits…

MajorBreakfast · 2018-05-25T12:48:13.654Z

ciprian.craciun:

So I guess you haven’t done lately any software license compliance audits…

In JavaScript-land there’s a package for that as well called “legally”. It’s a license checking tool. It gives you a list with all the different licenses which are usually just a handful.

gbutler · 2018-05-25T12:51:16.767Z

Could this problem be addressed better by making the String and &str data-types generic over encoding? For example, what if you could do:

let x = String::<UTF16>::new();
let y = String::<UTF32>::new();
...
etc

If this were possible, and &str were similarly generic, could this solve this problem in the best, most efficient manner? Would this be a possible way forward?

comex · 2018-05-25T13:38:28.490Z

ciprian.craciun:

I really do agree that Vec<char> would be a better solution if one has to fiddle a lot with the characters in a string. However there are cases when one just needs a sub-string (for example as an argument to another function, and for reasons which we all agree might lead to buggy behavior). Therefore converting the string to a vector, slicing it, and then converting it back to a string is just painfully inefficient in so many ways…

Thing is, getting substrings is an operation one often performs in a loop – e.g. in order to split a string by a delimiter. If extracting the substring takes linear time, and the number of substrings you extract depends on the length of the string, then you end up quadratic, which can be really painful.

Anyway, in your average code, if you just “need a substring” (and are dealing with UTF-8 encoded strings), you should be using byte indices instead of codepoint indices. After all, they’re both equally useless if you need a semantic notion of “character”, so you may as well go with the metric that’s more efficient. A Scheme interpreter may be a special case due to the requirements of the Scheme standard, but, well, special cases are special and don’t justify adding easily-misused functionality to the standard library. And even then, you’d be better off using a non-UTF-8 string type throughout your interpreter (not just converting at the boundaries as you’re suggesting).

system · 2019-03-25T08:30:18.734Z

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.