Port Event class to Rust

[erikjohnston]

Ports the event class to Rust.

The main difference here are:

1. There is now a single event class
2. We now validate a lot more at event construction time than we previously did (we basically checked nothing before). This required some changes to the tests, including Fix tests to work with Rust event matrix-org/sytest#1423

Reviewable commit-by-commit.

Overview of Event Rust structure

The format of the event struct in Rust is quite different than that in Python.

The top-level looks like:

pub struct Event {
    /// The parsed event JSON.
    fields: FormattedEvent,

    /// The event ID. For format v1 this is read directly from the JSON;
    /// for v2+ it is computed from the canonical-JSON hash at
    /// construction time and cached here.
    event_id: Arc<str>,

    /// Synapse-internal per-event state that lives outside the federated
    /// JSON (e.g. outlier flag, soft-failure, stream positions).
    #[pyo3(get)]
    internal_metadata: EventInternalMetadata,

    /// The room version this event was parsed for.
    #[pyo3(get)]
    room_version: &'static RoomVersion,

    /// `None` for accepted events; otherwise a short reason set by auth
    /// when the event was rejected.
    rejected_reason: Option<Box<str>>,
}

which includes the actual parsed event in FormattedEvent, plus the rest of the event metadata.

pub struct FormattedEvent<E = Arc<EventFormatEnum>> {
    #[serde(default)]
    pub signatures: Signatures,

    #[serde(default)]
    pub unsigned: Unsigned,

    #[serde(flatten)]
    pub specific_fields: E,

    #[serde(flatten)]
    pub common_fields: Arc<EventCommonFields>,
}

The struct is further split into the common fields, format specific fields, plus the signatures and unsigned. We split out the signature and unsigned fields as they are mutable, so when we clone the event we can still share the common and specific fields and only copy signature and unsigned.

The specific_fields are the fields that depend on the format version. They can either be a specific format (e.g. E = EventFormatV1) or a type-erased enum EventFormatEnum that is across all room versions:

pub enum EventFormatEnum {
    V1(EventFormatV1),
    V2V3(EventFormatV2V3),
    V4(EventFormatV4),
    VMSC4242(EventFormatVMSC4242),
}

For example:

/// Shared flat-list encoding of `auth_events` and `prev_events`, reused
/// by every format from v2/v3 onwards.
#[derive(Serialize, Deserialize)]
pub struct SimpleAuthPrevEvents {
    pub auth_events: Vec<String>,
    pub prev_events: Vec<String>,
}

/// Version-specific fields for room versions 3-10.
#[derive(Serialize, Deserialize)]
pub struct EventFormatV2V3 {
    pub room_id: Box<str>,
    #[serde(flatten)]
    pub auth_prev_events: SimpleAuthPrevEvents,
}

Dev notes

As discussed in #element-backend-internal:matrix.org

[MadLittleMods]

What benefit are we getting from this being a Arc<str> vs an owned String?

Also a general question of the Arc/Box usage throughout these new types

[erikjohnston]

Ah yeah, so Box<str> vs String is mostly about space, since String has to store a capacity it takes up more memory. It also has mild advantage that is really indicates its immutable.

In this particular case, we also use Arc<str> so that we can point to the same event_id which is defined in EventFormatV1. (Will add a comment to that effect).

[MadLittleMods]

We could explain this a little more plainly. Like "event JSON" and "parsed".

Reading far enough, I see a "Serialization and deserialization" but I think we could explain a bit here.

[MadLittleMods]

Generally, optional fields should be handled via other_fields, as this saves space when they are not present.

These details should be on described next to other_fields

[MadLittleMods]

We could still test this raises NotImplementedError right?

[MadLittleMods]

Explain type ignore (comment)

[MadLittleMods]

Why no longer using real events?

[MadLittleMods]

Need to manually transfer docstrings

[MadLittleMods]

Why state_key_attr naming?

[MadLittleMods]

Suggested change

	/// The event's signatures. This is a mutable field.
	/// The event's signatures. Kept separate from common/specific fields as this is a mutable field.

(also applies for unsigned)

Previous conversation

[MadLittleMods]

I'm not following exactly. I would think common_fields/specific_fields are the ones that are shared/cached because they don't change.

How are signatures/unsigned being cached?

This also goes against what's written above AFAICT:

//! The `signatures` and `unsigned` fields are kept distinct from the
//! common/specific as they allow mutation. When copying an event they need to
//! be deep-copied, but the common/specific fields (which are immutable) can be
//! shared.

[MadLittleMods]

👌 Perfect. I feel like we should drop a note about the writable aspect protecting us here.

[MadLittleMods]

With the newly learned details from #19701 (comment), we're luckily protected out of the box 👍

Perhaps more along these lines of a hint:

Suggested change

	"""Take a copy of the event."""
	"""
	Take a copy of the event.
	Only `unsigned`/`signatures` is mutable. Mutating other properties will result in `AttributeError` (not writable).
	"""

[MadLittleMods]

The "assert" language signals an invariant check. It better describes "this should never happen if code is correct" vs. "something went wrong during execution"

[MadLittleMods]

More:

Suggested change

	return Err(PyRuntimeError::new_err(
	"auth_event_ids is unexpectedly empty for a non-create event",
	));
	"auth_event_ids has not been calculated for event_id={}. All events (aside from the `m.room.create` event should have some `auth_event_ids` set.",

Even more:

Suggested change

	return Err(PyRuntimeError::new_err(
	"auth_event_ids is unexpectedly empty for a non-create event",
	));
	"Expected auth_event_ids for event_id={}. All events (aside from the `m.room.create` event) should have some `auth_event_ids` set. Either the `auth_event_ids` have not been calculated yet or this is a Synapse programming error.",