`with` clauses

tema2 · December 9, 2021, 8:54pm

I've seen this idea here.

It's superb idea, so I start mentioning of post ending questions:

Dyn value construction:
What happens if the Box<dyn Trait> is allowed to escape the with scope, and the methods are invoked?

Also, things we don't want to allow (at least at MVP): allowing to move out from binding declared in with clause.

The obvious solution: is to forbid moving out from this binding, but I would rather:

Better solution: Allow only pointer types to be passed in such clauses, this brings in their lifetimes.

Pro: dyn Trait constructions has to deal only with pointers, which can easily be stored and doesn't require any attention.

Pro: Brings in a lifetime, so dyn Trait value gets implicit obligation. This prevents leaks.

Con: how to properly type these obligations? => complications.

Solution is simple: only allow calling with bounded impls in with expression context.

Feature motivation: passing implicit references to Executor in async, to Allocator in no_std, etc... and also this fits to pass a reference to an allocator for allocating trait objects impl trait return types in traits.

CAD97 · December 10, 2021, 12:06am

Super quick idea overview:

impl Visitor for MyNode 
with(cx: &mut Context)
{
    fn visit(&self) {
        cx.counter += 1;
    }
}

fn process_item() {
    let cx = Context { counter: 0 };
    let v = vec![MyNode, MyNode, MyNode];
    with(cx: &mut cx) {
        v.visit();
    }
    assert_eq!(cx.counter, 3);
}

Then the supposed issue is

fn foo<T: Visitor + 'static>(v: T) {
    let x: Box<dyn Visitor> = Box::new(v);
}

For this to be a problem, we fist have to even just allow

fn foo<T: Visitor + 'static>(v: T) {
    v.visit();
}

with(cx: &mut Context { .. }) {
    foo(MyNode)
}

which is not simple itself! MyNode implements Visit "when in a with context", so there's two ways I can see this realistically semantically done:

this is effectively sugar for thread locals, or a similar mechanism, and it fails at runtime if the with context isn't actually present, or
this is effectively sugar for anonymous ad hoc newtyping, or a similar mechanism, and lifetimes are inherited that way.

For an even simpler illustration of the root issue:

let mut cx = Context::new();
let visitor: impl Visitor;
with(cx: &mut cx) {
    visitor = MyNode; // MyNode: Visitor
}
visitor.visit(); // MyNode: !Visitor

I think my latter provision here makes more sense. Utilizing an imaginary structural types to illustrate, with context could semantically behave as (and derive borrow rules from) roughly the following:

// with clause
impl Visitor for MyNode 
with(cx: &mut Context);

// explicit structural newtype
impl Visitor for
WithContext<
    MyNode,
    { cx: &mut Context, .. },
>;

// with block
with(cx: &mut cx) {
    foo(MyNode)
}

// explicit structural newtype
{
    __with_context = AddStructure![
        __with_context
        & { cx: &mut cx }
    ];
    foo(WithContext {
        0: MyNode,
        1: SelectContext![
            __with_context
            | { &mut cx }
        ],
    });
}

That is, the requested context is carried along as a tuple, copying/moving/reborowing the context as required when coerced from a concrete type with the context into a impl Trait that is no longer asking for context.

Yes, this means that boxing it would not be Box<MyNode>, it'd be Box<WithContext<MyNode, { cx: &mut Context }>>. And it carries the lifetime (and isn't 'static).

Personally I don't really like with/implicits, but I do see the value they can provide for easily adding in some more context to existing trait signatures. I think if Rust were to have them, it'd be as I've described here as essentially sugar over newtypes that carry the context, and easily/quickly constructing them just-in-time as-needed.

Here's another, more closure-like syntax (inspired also by Java anonymous classes) to try to help illustrate how I think it could work:

foo(impl Visitor {
    visit: |&self| {
        cx.counter += 1;
    },
})

Also of note is that this wouldn't provide with context to "static methods" (that is, ones without self arguments). Also, you couldn't pass two arguments that were with-dependent on the same with context, because they can't both borrow the same context, it has to be passed in.

The issue is that the called code doesn't know about the context, so it can't pass it.

Even before considering dyn, a with proposal needs to consider and explain exactly how the with context is passed around through code that knows about it (has the with bound) and is packaged for code that doesn't know about the with context (just uses genetics without a with bound).

What does it "desugar" as? The answer to that question makes the answers to the rest of the questions much easier to answer.

ibraheemdev · December 10, 2021, 2:07am

Is this a more explicit version of Haskell/Scala-like implicits?

tema2 · December 10, 2021, 11:32am

CAD97:

impl Visitor for MyNode 
with(cx: &mut Context)
{
    fn visit(&self) {
        cx.counter += 1;
    }
}

fn process_item() {
    let cx = Context { counter: 0 };
    let v = vec![MyNode, MyNode, MyNode];
    with(cx: &mut cx) {
        v.visit();
    }
    assert_eq!(cx.counter, 3);
}

Then the supposed issue is

fn foo<T: Visitor + 'static>(v: T) {
    let x: Box<dyn Visitor> = Box::new(v);
}

In the problematic case you mentioned we bound T: Visitor by 'static => means that foo only takes instances of T with attached lifetimes being at least 'static: so, T: Visitor can be static if both 1) implementor type has no references in it 2) with context where our foo has been called provide &'static mut Context reference.

Actually, I would regard mechanism as capturing lifetimes of with-expression binding.

I don't see why this is a problem. It is not that type is changing, it's more of it's methods cannot be called because the implicit argument (which is taken from env.) is absent.

So people calling Visitor methods outside of with block get an error like
"enviroment to call this method is not setup\present; help: put method call inside of with block"

Isn't it rather implementation concern?

CAD97 · December 10, 2021, 11:46am

Notice that it's been put in a binding of type impl Visitor.

We don't need a specific desugar, but explaining in code exactly what the expected semantics are would go a long way to clarifying, well, what exactly the feature does.

Questions like:

How is context passed between stack frames? Extra implicit arguments? Thread locals?
What does it mean to "concretize" an impl ... with? When you pass an impl to a normal non-with bound, how does that capture the context? What about passing it down further?
What requirements are put on with contexts? How does it know to reborrow (mutable) references, but move custom types?
How does with context interact with closures?

These are not implementation questions; these are important questions about the design that have a large impact on how it can be used. An example desugaring makes answering these (and more) questions about semantics a lot easier.

tema2 · December 10, 2021, 12:36pm

I noticed, as I said we disable methods of Visitor outside of with context, it render impl Visitor type useless... but it's what user has requsted, there should probably be a warning about that.

I see what you're talking about and indeed usability of such impl Visitor type depends on what type it is actually resolved to. Here I would suggest 3 possible solutions:

Force a trait to also declare with => limiting;
Invent a syntax for impl Trait with (...) => probably not worthy;
Forbid casting with bound implementors into abstract types (both an impl and dyn) => unfortunate.

As a compromise, I would forbid casting with bound types into both impl and dyn Trait unless that Trait is declaring matching with context.

Other cases can be added later.

It's captured by implementors;
Via newtype; we simply append all with block sourcing bindings to an anonymous tuple-struct which is unique for each combination of type and context in with bound impl; These anonymous types always implement Deref,DerefMut and (unexistent -_- ) DerefMove;
I don't like the idea of allowing to move values via with clauses: it is pointless: the moved value can only be consumed once, effectively resulting in passing an implicit argument taken by first called method of an impl => no other methods would be possible to call.
They capture it.

So here we go:

impl Visitor for MyNode 
with(cx: &mut Context)
{
    fn visit(&self) {
        cx.counter += 1;
    }
}

//becomes

struct $<'a>(MyNode,&'a mut Context)

//here go `Deref`s impl's...

impl<'a> Visitor for $<'a>
{
    fn visit((ref self1, ref mut  cx): &mut self) { //self1 is renamed self
        let mut a = |arg| cx.counter += 1; //here we produce `impl FnMut(Arg) + 'a`
        a(get_arg());
    }
}

With what I've got, we have no problems with calling any methods in desugared with bound types. Passing context down is hard.... and undesirable, given that we can always pass that context to free standing fn explicitly, we may not want to do it implicitly. As a last resort, we can allow with clauses on freestanding functions later.

camelid · December 11, 2021, 2:24am

The with clauses idea reminds me of this academic paper: Programming with Implicit Values, Functions, and Control (or, Implicit Functions: Dynamic Binding with Lexical Scoping) - Microsoft Research

SkiFire13 · December 11, 2021, 9:46am

This desugaring doesn't feel right:

What are get_arg() and Arg here?
How did the &self parameter become &mut self? This is unsound in presence of code that calls visit while expecting it to take an &self.

// `Foo`'s definition is valid today, so it has to compile
trait Foo {
    fn foo(&self);
    fn bar(&self, f: impl Fn());
    fn baz(&self) {
        // This is possible only because both `bar` and `foo` take `&self`.
        self.bar(|| self.foo())
    }
}

impl Foo for MyNode
with(ob: &mut Option<Box<i32>>)
{
    fn foo(&self) {
        *ob = None; // Invalidates any reference to the inside of `ob`
    }
    fn bar(&self, f: impl Fn()) {
        // Let's assume that the box is valid now
        let box_ref: &Box<i32> = ob.as_ref().unwrap();
        f(); // This calls `self.foo()` which invalidates `box_ref`
        println!("{}", box_ref); // Oops, now we're printing invalid data
    }
}

fn main() {
    with(cx: &mut Some(Box::new(0)) {
        MyNode.baz();
    }
}

tema2 · December 11, 2021, 1:16pm

Dummies for closure. Sorry.

I commented about rename; actually we pack immutable reference to self and mutable one to ctx in one implicit instance of an anonymous struct => to acess ctx we need mutable reference to our instance and since it is only created in surrounding with context passing it as such is okay. Therefore a mutable reference. Then, we do destructure: obtain a copy of stored shared refernce &self and a mutable reference to ctx.

SkiFire13:

// `Foo`'s definition is valid today, so it has to compile
trait Foo {
    fn foo(&self);
    fn bar(&self, f: impl Fn());
    fn baz(&self) {
        // This is possible only because both `bar` and `foo` take `&self`.
        self.bar(|| self.foo())
    }
}
...

This example is interesting. The problem is that fn foo from impl is and may stay impl Fn while in fact it isn't.

Probably the best thing we can do is to disallow using mutable references from with clauses in method that take &self. But it is limiting...

PoignardAzur · December 11, 2021, 1:38pm

I'm usually in favor of adding implicit arguments to Rust, but I don't think this proposal is a good idea.

The main proposed use-case (adding arguments to a trait implementation that aren't declared in the trait definition) seems like an anti-pattern to me.

When I use a type that implements a trait, I want to be able to look at the trait declaration and treat it as a summary of everything the trait is able to do. If you want an escape hatch from that, there's already cells.

(Also, I'm not sure exactly what the proposed semantics would be, but it sounds like they'd add potential for post-monomorphization errors?)

H2CO3 · December 11, 2021, 1:52pm

Arrgh, that makes me have C# delegate PTSD.

Anyway, @tema2, your proposal doesn't even describe what this is supposed to be, let alone what problem it solves or why we need this.

ibraheemdev · December 11, 2021, 6:44pm

If I understand correctly, this is an incredibly powerful idea:

fn main() {
    let logger = EnvLogger::new();
    with(logger: &logger) {
        run();
    }
}

fn run() {
    // uses implict logger!
    log::info("starting to do thing...");
    do_thing();
    log::info("done thing");
}

fn do_thing() {
    // ...
    log::info("...");
    // ...
}

#[test]
fn test_run() {
    let logger = TestLogger::new();
    with(logger: &logger) {
        run();
    }
}

crate log {
    fn info(s: &str) with(logger: &dyn Logger) {
        logger.info(s);
    }
}

But also comes with drawbacks that have been discussed over the years:

github.com/rust-lang/rfcs

Proposal: Auto-propagated function parameters

opened 08:55AM - 08 Feb 18 UTC

yazaddaruvala

T-lang

I've never created an RFC or proposal before, some mentoring would be appreciate…d! # Summary The purpose of this proposal is to provide an ergonomic yet explicit way to get access to a set of variables deep in the call stack, or for a lot of sibling calls which need the same value. You may even call this feature, "*compile time, strongly typed, dependency injection*", or "*context variables*". This particular proposal is about an implementation based on the addition of an AST transform to give Rust some syntax sugar to achieve this. # Motivation There are a lot of times you want to propagate a function parameter deep into the call stack or to a lot of child calls at the same level in the stack. - Recursive functions with a result accumulator (example below) - Request scoped structs in a web application, eg. Request, User, Metrics, Tracer (example below) - i.e. Structs which are used by basically every method - Possibly in Future's [Context as an explicit param to poll](https://github.com/rust-lang-nursery/futures-rfcs/pull/2) The goal of this proposal is to provide Rust as it is today, with some ergonomic wins. There should be minimal/zero drawbacks to this syntax sugar. Ideally the syntax would be extremely intuitive, if not, less than a page of documentation should be needed. ## Ergonomic Goals There are two places this feature can effect readability, a **function's signature**, and a **function's implementation**. ##### Function signatures: These change marginally, as such I don't think there is an ergonomic win or loss while reading function signatures. ##### Function implementations: - Perspective of the writer: - Goal: None - Currently: This proposal happens to improve ergonomics - Perspective of the reader: - Goal: Improve ergonomics - Currently: - This proposal makes it harder to read a code sample for *the first time in that domain*. - This proposal makes it easier to re-read code samples in familiar domains. - Detailing the intents of the function rather than how the function is implemented. - Eliminating variables which are not valuable to improving the readers understanding of the purpose of the function. - i.e. This feature reduces noise, and improves signal, for all future re-reads. A common starting point: I think we can all agree,`for x in ...` (vs it's legacy counterpart) is far more signal (i.e. more readable), even tho *how* we accomplish the iteration is no longer readable. This is because the *purpose was to iterate*, not to increment registers and dereference arrays. Similarly, in some problem domains, while reading over the implementation of a particular function, **certain variables are noise, not signal**. Reading parameters which are **mechanically passed** over and over doesn't help me grok the **purpose of the function**. Additionally, if you asked me, "In a web service, whats the purpose of the request variable if you can't see where it is used?" 1. I would likely be able to guess without looking at any part of the implementation. - I know from years of experience what a request variable does. 2. If it was relatively new to me (i.e. first ever read), it is very obvious where to find that answer: the function's signature/docs. - Having read the docs, the fact that it is used to call dependent services and construct a response becomes a given. ## Current solutions - Utilize global variables - Current usage: e.g. `env::var`, or `stdout`. - Limitation: Read only / synchronization overheads - Utilize thread local storage (TLS) - Current usage: - e.g. futures: 0.1 (I think removed in 0.2); tokio's implicit core. - This solution has been extended in other languages e.g. Java with request scoped dependency injection, aspect oriented programming, and them together as aop-scoped-proxies. - Drawbacks: - Request scopes were built to ensure appropriate cleanup. - With manual TLS, there is no mechanism which enforces cleanup. - I've personally seen `User` objects stored in TLS and then not cleaned up before the next request - This results in "leaking" private data to a different user! - "This is a bad engineer", "better code reviews", Yes I agree! - That said, aren't we all using Rust because **we believe the best engineers and the best process are still fallible?** That as much as we can, we should explore how to get our tools to help fix today's problems? - Appropriate use: - e.g. Logging: where a thread should do lock free batching of log messages before performing disc io. - Inappropriate use: As a crutch for not wanting to pass around a few arguments. - If this is a problem, lets give Rust an alternative, so we avoid abusing TLS. - Utilize `Context` objects which encapsulate all the state needed - This forces all functions to take the whole context. It would be nice to write idiomatic functions, which only take the data they need. - A single Context object, needs to know about application specific types. Therefore it cannot improve the ergo for functions defined in a different crate (e.g. framework, plugin or middleware). - Workaround: You would need one context per crate, and nest them - Obfuscates parameters. i.e. Neither the caller nor the callee's function signature defines the used values. # Explanation Note: Good syntax is very important, but for this iteration, I am going to use placeholder syntax. We can discuss syntax after, if the general concepts of this proposal are more or less discussed and well received. Functions will have special syntax to define auto-propagated params and with it an auto-propagation scope. Auto-propagated params with identical names and types will be automatically propagated by the compiler to any sub-call within scope. Functions within an auto-propagation scope, can have any or all of their auto-propagated params overridden. When called without an auto-propagation scope (usually at the top of the call stack) overrides can be used to set the initial auto-propagation scope. The best way to explain this is with example sugar/de-sugar variants. ```rust // Imagine the database client is a plugin to a web framework. // It only knows about `database::Query`s and `io::Metrics`, not about `jwt::User` or `framework::Request`. // A single struct would not be known to the database client implementor. // Imagine that you're using JWT auth to extract user information. // I'm going to ignore that this would probably be middleware for the moment, // but the problem is the same. // Framework/Library author implemented // `database.call` = fn call(query: database::Query, context { metrics: io::Metrics }) // Service owner implemented // fn query_builder1(context { user: jwt::User }) // fn query_builder2(context { user: jwt::User, request: framework::Request }) // fn build_response(result1: ..., result2: ..., with { user: jwt::User, request: framework::Request }) // With sugar fn handle_request(context { request: framework::Request, metrics: io::Metrics }) { // let's override the context to have a `user` parameter let context user = jwt::User::from_bearer(request.auth_header()); let result1 = database.call(query_builder1()); let result2 = database.call(query_builder2()); ... return build_response(result1, result2); } // Without sugar fn handle_request(request: framework::Request, metrics: io::Metrics) { let context user = jwt::User::from_bearer(request.auth_header()); let result1 = database.call(query_builder1(user), metrics); let result2 = database.call(query_builder2(user, request), metrics); ... return build_response(user, request, result1, result2); } ``` ```rust // With Sugar fn find_goal_nodes( root: &TreeNode, context { // This function expects these parameters, but understands // they are generally passed down deep in the call stack, without modification. goal: Predicate<...>, results: &mut Vec<&TreeNode>, } ) { if (goal.evaluate(root)) { results.push(root); } for child in root.children() { // All parameters which share the same name, are auto-propagated to the sub-function. // i.e. The parameters `goal`, and `results` are automatically propagated. find_goal_nodes(child); // Also possible to override some params, but still inherit others. // i.e. `goal` is being overridden, but `results` is still auto-propagated. // Note: This is just like shadowing any other variable, and the override to the context dies at the end of the scope. let context goal = goal.negate(); find_goal_nodes(child); // Disclaimer: Frequently overriding an auto-propagated param, would be bad practice. // The line above overriding `goal`, would be a good "hint" that this feature is being abused on this param. } } fn main() { let root: TreeNode = ...; let context goal: Predicate<...> = ...; let context mut results: Vec<&TreeNode> = Vec::new(); // Initial call find_goal_nodes(&root); } ``` ```rust // De-Sugar the above example fn find_goal_nodes( root: &TreeNode, goal: Predicate<...>, results: &mut Vec<&TreeNode>, ) { if (goal.evaluate(root)) { results.push(root); } for child in root.children() { find_goal_nodes(child, goal, results); find_goal_nodes(child, goal.negate(), results); } } fn main() { let root: TreeNode = ...; let goal: Predicate<...> = ...; let mut results: Vec<&TreeNode> = Vec::new(); find_goal_nodes(&root, goal, results); } ``` The real ergonomic wins start showing in large code bases. As such no example can really do it justice. # Open Questions - Requiring that the names match makes the feature less flexible and useful (because everyone has to agree on using the same names). There are also questions around how to handle name/type collisions. # Drawbacks - At initial glance the syntax sugar seems like magic. However, a single page of documentation would highlight a de-sugared example, and it will be very straight forward / intuitive for all. This is similar to a first encounter with `?` or `Into` or `self.___()`. - However, unlike those there is no marker at the call site indicating implicitness. - We could add a marker: - `database.call(query_builder(_), _);` - `database.call(query_builder(...), ...);` - New syntax for "special" parameters. Users could be overwhelmed. - Possibly, but seems unlikely, the mental overhead is far less than generics or lifetimes. - Excessive use of generics can be an issue regardless of parameters being implicit, but this issue gets more-likely as we create more parameters for functions. - This particular syntax (we can fix this when we discuss syntax): - Basically introduces named params. - The initial call is less ergonomic. But perhaps that is ok. - Doesn't improve ergonomics for many sibling calls at the top level. # FAQ - Will this block any future features? - The concept in general is just syntax sugar, and as such should not block any future features - The syntax possibly could, but should be such that it doesn't block future enhancements to method signatures. We can discuss when we open up discussion about syntax. # Alternatives @burdges suggested that we could possibly use something similar to dependent types and type inference. I'm happy to explore this route if everyone prefers it. Although it likely will limit the context to have unique types. @burdges has also suggested a possible `State` monad with the possible inclusion of `do` notation. @mitsuhiko has a suggestion, which I understood as TLS with a tighter scope. Basically instead of "thread local storage", it could be "call stack local storage" (my name). His proposal seems to suggest access through a global like function e.g. `env::var`. I would still like to put the function's dependencies into the function signature somehow. And ideally, get some compile time checks, but without adding the context to all function's signatures, this is compile time check is impossible because of "no global inference". # Conclusion Adding a relatively simple AST transform would open Rust up to some pretty nice and easy ergonomic wins. The syntax would need to be discussed and could bring in more drawback, but at least for now the drawbacks seem minimal and within acceptable bounds. I'd love to hear other people's thoughts: - Do you like it? (+1s will do) - What might your usecase be? - Drawbacks - Any of the drawbacks show-stoppers for you? - Any drawbacks I didn't forsee? - Compile/Lang teams - Is this even feasible? I have no idea if this can actually be an AST transform.

mathstuf · December 11, 2021, 7:10pm

ibraheemdev:

fn main() {
    let logger = EnvLogger::new();
    with(logger: &logger) {
        run();
    }
}

fn run() {
    // uses implict logger!
    log::info("starting to do thing...");
    do_thing();
    log::info("done thing");
}

What kind of error is expected for:

fn main() {
    run();
}

How, based on the run signature, is the compiler to know that context is missing (the proposal here has a with statement bubbled up, but is it expected to work as you've given?). But this is a new kind of function pointer. How does the "I need a logger context" get added to the returned iterator type here:

fn logged_iter<I, T>(iter: I) -> impl Iterator<Item = T>
where
    I: Iterator<Item = T>,
    T: Debug,
with(logger: &mut Logger)
{
    iter.map(|it| log::info("iterating on {:?}", it); it)
}

How does the with get attached to that impl Iterator so that the caller knows it needs to supply the proper context? If the passed-in iterator has its own with attachment, it needs propagated to the result as well.

I don't see how this isn't more complicated than just adding a parameter to pass the context around as necessary. It's both more explicit and does not require language-level changes to make happen.

ibraheemdev · December 11, 2021, 10:15pm

What kind of error is expected

error[E0277]: the trait bound `with(logger: &dyn Logger)` is not satisfied
 --> src/main.rs:5:11
  |
5 |     run();
  |
note: required by a bound in `info`
 --> src/main.rs:2:11
  |
2 | fn info(s: &str) with(logger: &dyn Logger)
  |                            ^^^^^^^ required by this bound in `info`
= help: consider introducing `logger` with a `with` statement

How, based on the run signature, is the compiler to know that context is missing

From the text:

Within this block, you can invoke fuctions that have a with(x: T) clause (presuming that value is of type T ); you can also invoke code which calls such functions transitively. The values are propagated from the with block to the functions you invoke.

How does the with get attached to that impl Iterator so that the caller knows it needs to supply the proper context?

I don't know much about how rustc type checking works, but I assume the closure type generated would have a where with(logger: &dyn Logger) bound that would be propagated to the iter::Map and the existential impl Iterator as well.

After matching an impl, we are left with a "residual" of implicit parameters. When we monomorphize a function applied to some particular types, we will check the where clauses declared on the function against those types and collect the residual parameters. These are added to the function and supplied by the caller (which must have them in scope).

I don't see how this isn't more complicated than just adding a parameter to pass the context around as necessary. It's both more explicit and does not require language-level changes to make happen.

Having literally every function in every program taking a &dyn Logger is far from ideal, and globals introduce a few limitations that implicits don't. Not that I am 100% advocating for with to be added to Rust, but there are things that an implicit variable makes a lot of sense for (logger, allocator, async runtime, etc.).

ibraheemdev · December 11, 2021, 10:16pm

Would with(x: impl Trait) be possible?

mathstuf · December 11, 2021, 10:38pm

How is having to add with(…) bounds everywhere better than adding a parameter? Or are these dependencies going to be invisibly added/required at various places? One of the things I really like about Rust is that I can write the signature, fill it in with todo!() and then come back later (but still at least cargo check my way through the "higher level" bits). Having the signature mutate based on the body of the function is certainly new AFAIK (sure, impl Trait "changes" with the body, but the guarantees the caller can rely on do not).

I'll note that having these things mutate based on the body is also a semver hazard: how can I, as a maintainer, make sure that my edits aren't adding or removing with guarantees?

tema2 · December 11, 2021, 10:40pm

At least, not yet: I see an implementation as desugaring to anonymous type, as I have descibed before.

While it can turn out to be a bad practice, I think that allowing impls to require an implicit references to caller's scope has it's own use cases. Which are worthy to go for.

While initially I wanted to left with clauses on free standing fns for future extensions, Now I really don't think that this proposal is worth without it.

As of I see a lot of disconnect here =>
I just redescribe the feature again, considering everything that have been written here before.

`with` clauses:

As an expresion:

Syntax:

with((binding: &(mut) Type,)*) {
    ...
}

Semantics:

The body of with expresion is a block expresion with additional properties:

inside with expr. block with bound impls and fns can be used, if with expr. header contain bindings of required types.

As a bound:

Syntax is analoguos to one of where clauses, except it brace encloses contens;
May appear along with where clause on impl,fn and trait items;

Semantics

Pulls in an annotated scope immutable binding of a reference type.
When introduced on:

impl => these references are stored in an implicit newtype that contains Self value and the reference. This newtype becomes Self type of all methods in the impl, it implements Deref and DerefMut traits with the Output type being equal to old Self type; it provides capability to move out form itself.
Special case is when with bound impl block itself declares a with bound method. In this case Self type of a method captures both an with bound refrence from method and a refrence to the new Self type of the impl;
fn => here, these references are passed as an implicit last arguments;
trait => in this position, with bounds serve as declaration that all and every impl of the trait must adhere the same with bounds;

Passing references around and borrow checking:

All implicit structs crated by desugaring have their lifetime as the least of captured references and original Self type attached lifetimes. (known rule, may be understood but is here for clarity)

Closures capture references from with expr. if needed.

And as of we want to avoid cases like this we have to forbid usage of mutable with sourcing references, in methods taking &self.

tema2 · December 11, 2021, 10:47pm

Not by move, only by references, the concrete type is elided by the same rule and in the same scopes as plain impl Trait

ibraheemdev · December 11, 2021, 11:41pm

Well yes that's the point. Lower-level functions that access the parameters directly have with bounds that will be fulfilled higher up in the program, like the log example I gave. Every function adding with(...) bounds would defeat the it's purpose.

tema2 · December 12, 2021, 12:12am

This is actually makes sense, and is possible. The only thing to get it is to alter semantics from: "explicit introduction, explicit involvment" to "expl. introduction, implicit propagation, explicit requirements, explicit use".

And we got painless with clauses.

However, consider this example:

struct Context;

mod A {
   fn snd() with (&mut Context) {
      
   }
   pub fn fst() {
      snd()
   }
}

mod B {
   fn works() {
      ...
      with(...) {
         A::fst()
      }
   }
}

Depending on contents of B::works (what reference goes to with expr.) we can have an error about not providing implicits to private function.

Also what should error messages look like?

Another concern about this approach is how to implement it?

Topic		Replies	Views
Blog post: Contexts and capabilities in Rust language design	69	12430	February 7, 2023
Blog series: Dyn async in traits language design	36	5304	April 15, 2022
Problems with "dyn* Trait" language design	58	6870	July 29, 2022
Idea of how to bound types that async methods return language design	34	2820	November 30, 2021
Idea: `with` block to ensure definite resource release language design	37	1476	August 5, 2022