Portable Executor port to Rust

[nickpdemarco]

This PR reimplements stlab::priority_task_system in Rust.

Usage

The rust port is chosen with a cmake argument, as in:

cmake -S . -B ../BUILD -GNinja -DCMAKE_CXX_STANDARD=17 -DCMAKE_BUILD_TYPE=Release -DSTLAB_TASK_SYSTEM=experimental_rust

The build will require an installation of cargo; otherwise, it should work out of the box.

To test this implementation, build with cmake as above, and then run ctest from the build directory.

Implementation

For greater readability and easier-to-prove safety, the C++ implementation has been broken into four components:

DropJoinThreadPool

Like scoped_threadpool, but the scope is tied to an object's lifetime, rather than a function call.

CoarsePriorityQueue

A priority queue with three priorities.

NotificationQueue

A threadsafe CoarsePriorityQueue.

Waiter

A faithful copy of stlab::detail::waiter. It may be prudent to rewrite this in terms of the Rust-native thread::park

PriorityTaskSystem

Building on the above components, this struct contains the algorithm essential to the original C++ implementation. Namely (quoting the inline documentation):

/// A portable work-stealing task scheduler with three priorities.
///
/// This scheduler spins up a number of threads corresponding to the amount of parallelism available
/// on the target platform, namely, std::thread::available_parallelism() - 1. Each thread is
/// assigned a threadsafe priority queue. To reduce contention on push and pop operations, a thread 
/// will first attempt to acquire the lock for its own queue without blocking.
/// If that fails, it will attempt the same non-blocking push/pop for each other priority queue in
/// the scheduler. Finally, if each of those attempts also fail, the thread will attempt a blocking
/// push/pop on its own priority queue.
///
/// The `add_thread` API is intended to mitigate the possibility of deadlock by spinning up a new
/// worker thread that non-blockingly polls all of the system's priority queues, and then sleeps
/// until `wake()` is called.

[sean-parent]

The usage instructions should be added to the readme file.

[sean-parent]

Use is_nothrow_invokable_v<F> and you can eliminate the try/catch.

[sean-parent]

Our documentation system is Hyde based - Although Hyde 2.0 has some support for doxygen style comments I'm not sure how this will play. The Hyde 2.0 work is currently in my fork https://github.com/sean-parent/stlab-libraries.

[camio]

Should we maybe call this directory just rust? I'm not sure to what extent something is a port once the port is complete :)

[camio]

Given that this whole library is experimental I wonder if we should call this task system portable_rust.

[camio]

Leftover cruft? I think this variable was removed at one point.

[camio]

I'm confused that this is linked to testing instead of it being transitively brought in with stlab::stlab

[camio]

Maybe RustPortableDefaultExecutor?

[camio]

Mabe remove the above line?

[camio]

I'd love to understand why this is used. I tried looking at the once_cell docs but don't remember the difference between &T and Ref

[camio]

Should this maybe live in the stlab namespace somewhere?

[camio]

Does the code in this file belong in stlab/concurrency/default_executor.hpp?

[camio]

Why doesn't this function return void?

[dabrahams]

And until it does return void, you need to describe the return value.

[dabrahams]

Suggested change

	/// @brief Asynchronously invoke f on the rust-backed executor.
	/// @brief Asynchronously invokes f on the rust-backed executor.

Descriptive, not prescriptive. But you also need to describe the result.

[dabrahams]

Suggested change

	/// @brief Asynchronously invoke `f` on the rust-backed executor with priority `p`.
	/// @brief Asynchronously invokes `f` on the rust-backed executor with priority `p`.

[dabrahams]

The name reads like something that is enqueueing a priority.

Suggested change

	auto enqueue_priority(F f, Priority p) {
	auto enqueue_at_priority(F f, Priority p) {

[dabrahams]

What is execute_priority?

IMO all these @-items are—or should be—redundant with the summary or signature you've written and should be omitted. I would only write these kinds of clauses when the summary and the signature can't say everything that needs to be said. You need to add a , returning _______ clause to the summary but I don't know what to suggest because of the opening question of this comment ;-)

[dabrahams]

Suggested change

	/// A static instance of the task system which is invoked through the `execute` functions below.
	/// A static instance of the task system that is invoked through the `execute` functions below.

s/which/that/; which is for after a comma and would make this mean the"the task system" (not the instance) is invoked.

Suggested change

	/// A static instance of the task system which is invoked through the `execute` functions below.
	/// An instance of the task system that is invoked through the `execute` functions below.

Don't repeat stuff like static that is obvious from the declaration, which must appear in the generated documentation.

Suggested change

	/// A static instance of the task system which is invoked through the `execute` functions below.
	/// A task system that is invoked through the `execute` functions below.

"An instance" is almost always vacuous.

Is this not “the” task system, or is it possible and useful to make another instance?

Suggested change

	/// A static instance of the task system which is invoked through the `execute` functions below.
	/// The task system.

or, if this is really internal to the module, you might go with:

Suggested change

	/// A static instance of the task system which is invoked through the `execute` functions below.
	/// The shared state of the task system.

[dabrahams]

Can this be made const?

[dabrahams]

Wow, unary ||. Can you explain what that means?

[AndWass]

That's a lambda taking no arguments

[dabrahams]

I have a feeling that there's an abstraction here that you're obscuring with both the name and the doc. Why isn't this just, e.g., ThreadsafeLambda? Is it OK if the wrapped thing is threadsafe but impure? Just askin'.

[dabrahams]

Suggested change

	/// Precondition: Neither `context` nor `fn_ptr` may rely on thread-local state.
	/// Precondition: Neither `context` nor `fn_ptr` relies on thread-local state.

But it's very unclear exactly exactly what that might mean. I can roughly guess for fn_ptr (the doc should be more precise) but for context it is a true mystery. What does it mean for a void pointer to rely on anything?

[dabrahams]

You need to describe the return value.

[dabrahams]

Suggested change

	pub struct CoarsePriorityQueue<T> {
	pub struct Stable3PriorityQueue<T> {

[dabrahams]

To me it feels like this description is a little backwards, and it's a FIFO queue with 3 priorities. 🤷‍♂️ I realize they are technically equivalent.

[AndWass]

Should be unnecessary (Send and Sync are auto traits)

[AndWass]

I think the usage of this is safe as currently done. Note though when you create a reference from a pointer, you will infer whatever lifetime you want/need to that reference. This can cause use after free: https://play.rust-lang.org/?version=stable&mode=debug&edition=2021&gist=c117639943042e370cc9c4ea225e8412

Storing, and also sharing an Arc would make this a non-issue.