Rename PyClassShell with PyCell and do mutability checking

[kngwyu]

Resolves #342 #749 #738

TODO

• Fix documents
• Fix documentation in th guide
• Add documentation about interior mutability.
• Now protocol implementations uses try_borrow_unguarded so fix them to use try_borrow
• Add documents to all new APIs
• Rethink Py::new
  • I just marked it as soft-duplicated
• Add tests for inheriting classes with weakref/dict slots

TL; DR

Now we can take multiple mutable references of PyClass.
This PR fixes it by runtime reference counting like RefCell.
We can use PyCell like RefCell. We can get PyRef and PyRefMut from &PyCell, with interior mutability checking.
The implementation is done via overhauling our PyClass and PyClassShell, resulting in renaming PyClassShell with PyCell.

Notation

BorrowFlag it the reference counter that PyCell has. It can also represent mutably borrowed.

Implementation

So, what's the problem of implementing mutability checking for PyClasses?
The answer is inheritation.
Our PyClass can inherit other class by #[pyclass(extends=OtherClass)] syntax.
In such cases, we should share BorrowFlag between child and parent classes.
So the following object layout is required:

pub struct PyCell {
    ob_base: ffi::PyObject,
    borrow_flag: BorrowFlag,
    value1: ParentClass,
    value2: ChildClass,
}

It is somewhat difficult since PyCell is defined recursively using the layout of base object, but I resolved this by using

#[repr(C)]
pub struct PyCellBase<T: PyTypeInfo> {
    ob_base: T::Layout,
    borrow_flag: Cell<BorrowFlag>,
}

as the farthest baseclasses for all PyClasses.
This needs some helper types like derive_utils::PyBaseTypeUtils.

Changed APIs

• PyTryFrom: Now returns &PyCell<T> instead of &T and &mut T
• FromPyPointer: Same as above.
• AsPyRef: Now has an associated type Target. Returns &PyCell<T> from Py<T>.
  (TODO: make the complete list)

New APIs

• PyRef
• PyRefMut
• (hidden) PyDowncastImpl
  (TODO: make the complete list)

[davidhewitt]

Awesome! There's a lot here and I'll try to give it all a thorough review, though this will take me a few days...

[davidhewitt]

This is awesome stuff, really excited to see this! I've given this a really deep read and asked a lot of questions - hopefully useful comments.

In such cases, we should share BorrowFlag between child and parent classes.

Can you explain in a bit more detail why this has to be the case? I would think that as the Rust objects are separate, it should be safe to have &mut T::Base and &T simultaneously.

[davidhewitt]

Is it worth making an assertion that this doesn't need to be thread-safe (i.e. not AtomicXyz) because the of the GIL?

[kngwyu]

This is already not Send nor Sync.
What kind of assertion do you have in mind?

[davidhewitt]

Even if it's not Send or Sync in Rust, the python interpreter will happily share this data between threads. Perhaps just a comment explaining why Cell is enough?

[kngwyu]

I see.

[kngwyu]

Thank you for the lots of reviews!
Enjoying addressing them 😃

Can you explain in a bit more detail why this has to be the case? I would think that as the Rust objects are separate, it should be safe to have &mut T::Base and &T simultaneously.

If we allow having PyRefMut<T> and PyRefMut<T::BaseType> safely, get_super APIs should be (roughly) as follows:

impl<T> PyCell<T> {
    pub fn get_super(&self) -> &PyCell<T::BaseType> { ... }
}
impl<'p, T> PyRef<'p, T>
{
    pub fn get_super(&self) ->  &PyCell<T::BaseType> { ... }
}
...

I think this has some downsides:

• Simply not convenient. I feel PyRefMut<T> -> PyRefMut<T::BaseType> style API is easier to use.
• If T::BaseType have weakref or dict flag we can't return PyCell<T::BaseType>(just an implementation detail, but can be hard to fix)

[davidhewitt]

Ah, that makes sense, thanks. Let's see what the gitter thread prefers. I'm warming to your design. It would be strange to try to .super() an object and then get a .PyCell.

[davidhewitt]

An idea: what if we had a type PyBorrowed<'a, T> ?

Then the API for get_super could be something like

impl<T> PyBorrowed<`_, T> {
    fn get_super(&self) -> PyBorrowed<T::BaseLayout>
}

Along with:

• PyBorrowed<T> derefs to T
• PyRef<T> derefs to PyBorrowed<T>
• PyBorrowed<PyDict> etc. may also be useful for Why object creation is slow in PyO3 and how to enhance it #679, if we make PyDict<'py, T> an owned pointer.

I wrote this in a rush, sorry if it doesn't make much sense, or it has other problems!

[kngwyu]

An idea: what if we had a type PyBorrowed<'a, T> ?

Sounds good for the future design, but I don't think we should add it now.

[davidhewitt]

Excited to see all the progress on this. I'm hoping to find time to give this another review in the next day or two. 👍

[birkenfeld]

I can't contribute at the moment, but just wanted to say that this is very cool. Making the API safe is very much appreciated!

[kngwyu]

@Alexander-N
Could you please take a glance at class.md and documents for PyCell?
Thanks.

[davidhewitt]

I've managed to give this another read through. Really pleased with how this is shaping up!

Given the similarity between PyCellBase and RefCell, I wonder if we could simplify the code and make PyCell a wrapper around RefCell rather than implementing the unsafe primitives ourselves. I appreciate the way this is laid out it might be hard, but in my opinion if we can do it and reduce the amount of unsafe non-ffi code in pyo3, it's worth it.

[kngwyu]

@davidhewitt
Thank you for lots of reviews 😃

I wonder if we could simplify the code and make PyCell a wrapper around RefCell

RefCell<T> is a pair (T, BorrowFlag).
However, to enable extends= feature, PyCell can be a triplet (Base, Sub, BorrowFlag) or larger tuple. This nature conceptually makes it difficult to use RefCell here.

[davidhewitt]

Few small tidy-ups still possible; in general this is looking great to me.

RefCell is a pair (T, BorrowFlag).
However, to enable extends= feature, PyCell can be a triplet (Base, Sub, BorrowFlag) or larger tuple. This nature conceptually makes it difficult to use RefCell here.

That makes total sense. Let's keep it as-is.

[Alexander-N]

This seems like a great step, very excited to see this! At the moment I can't look at it in detail, but I tried to at least give some feedback, hope it helps.

[Alexander-N]

Suggested change

	We can get `&PyCell<T>`, not `PyCell<T>`.
	We can only get `&PyCell<T>`, not `PyCell<T>`.

[Alexander-N]

Suggested change

	To get a parent class from child, use `PyRef<T>` instead of `&self`,
	To get a parent class from a child, use `PyRef<T>` instead of `&self`,

[Alexander-N]

For me this is surprising, while get_super was very clear.

[kngwyu]

It was initially named as_super but changed to use AsRef since wasm-bindgen does so, after some discussions in gitter.
I prefer to as_super but, in the long run, it would be beneficial to use the same API convention with a major library.

[Alexander-N]

I find it a bit confusing that only into_super was used in the example.

[kngwyu]

Oops, this was left unchanged... thanks

[Alexander-N]

Maybe we can simply remove get_base since I remember there was a problem with this method #381

[kngwyu]

👍

[Alexander-N]

I liked that PyRefMut was replaced with PyClassShell since I find PyRef/PyRefMut unintuitive for reasons mentioned in #356

[Alexander-N]

Forgotten comments?

[kngwyu]

They are comments for developers.
I rewrote them as doc comments.

[kngwyu]

@Alexander-N
Thank you for reviews!