add Deserialize::validate for non-allocating validation (#4493)

# Description of Changes

Adds `Deserialize::validate` and all the friends necessary to make that
work.
The point of this is to enable allocation-less validation of input in
some data format, in particular BSATN, against some expected type, in
particular an `AlgebraicValue` at an `AlgebraicType`.
This is extracted from
#4311 and is used there
to convert raw BSATN to `BytesKey` without constructing the composite
`AlgebraicValue` just for validation only to throw it away immediately.

# API and ABI breaking changes

None

# Expected complexity level and risk

2

# Testing

TODO: tweak existing SATS roundtrip tests to also check validation.

---------

Co-authored-by: Noa <coolreader18@gmail.com>

Author: Centril

Cargo.lock

@@ -347,7 +347,8 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
     de_generics.params.insert(0, de_lt_param.into());
     let (de_impl_generics, _, de_where_clause) = de_generics.split_for_impl();
 
-    let (iter_n, iter_n2, iter_n3, iter_n4) = (0usize.., 0usize.., 0usize.., 0usize..);
+    let (iter_n, iter_n2, iter_n3, iter_n4, iter_n5, iter_n6, iter_n7) =
+        (0usize.., 0usize.., 0usize.., 0usize.., 0usize.., 0usize.., 0usize..);
 
     match &ty.data {
         SatsTypeData::Product(fields) => {
@@ -382,8 +383,10 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
 
             let field_names = fields.iter().map(|f| f.ident.unwrap()).collect::<Vec<_>>();
             let field_strings = fields.iter().map(|f| f.name.as_deref().unwrap()).collect::<Vec<_>>();
-            let field_types = fields.iter().map(|f| &f.ty);
+            let field_types = fields.iter().map(|f| f.ty);
             let field_types2 = field_types.clone();
+            let field_types3 = field_types.clone();
+            let field_types4 = field_types.clone();
             quote! {
                 #[allow(non_camel_case_types)]
                 #[allow(clippy::all)]
@@ -396,6 +399,12 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
                                 _marker: std::marker::PhantomData::<fn() -> #name #ty_generics>,
                             })
                         }
+
+                        fn validate<D: #spacetimedb_lib::de::Deserializer<'de>>(deserializer: D) -> Result<(), D::Error> {
+                            deserializer.validate_product(__ProductVisitor {
+                                _marker: std::marker::PhantomData::<fn() -> #name #ty_generics>,
+                            })
+                        }
                     }
 
                     struct __ProductVisitor #impl_generics #where_clause {
@@ -419,6 +428,13 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
                                         .ok_or_else(|| #spacetimedb_lib::de::Error::invalid_product_length(#iter_n, &self))?,)*
                             })
                         }
+                        fn validate_seq_product<A: #spacetimedb_lib::de::SeqProductAccess<'de>>(self, mut tup: A) -> Result<(), A::Error> {
+                            #(
+                                tup.validate_next_element::<#field_types2>()?
+                                    .ok_or_else(|| #spacetimedb_lib::de::Error::invalid_product_length(#iter_n2, &self))?;
+                            )*
+                            Ok(())
+                        }
                         fn visit_named_product<A: #spacetimedb_lib::de::NamedProductAccess<'de>>(self, mut __prod: A) -> Result<Self::Output, A::Error> {
                             #(let mut #field_names = None;)*
                             while let Some(__field) = #spacetimedb_lib::de::NamedProductAccess::get_field_ident(&mut __prod, Self {
@@ -427,17 +443,39 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
                                 match __field {
                                     #(__ProductFieldIdent::#field_names => {
                                         if #field_names.is_some() {
-                                            return Err(#spacetimedb_lib::de::Error::duplicate_field(#iter_n2, Some(#field_strings), &self))
+                                            return Err(#spacetimedb_lib::de::Error::duplicate_field(#iter_n3, Some(#field_strings), &self))
                                         }
-                                        #field_names = Some(#spacetimedb_lib::de::NamedProductAccess::get_field_value::<#field_types2>(&mut __prod)?)
+                                        #field_names = Some(#spacetimedb_lib::de::NamedProductAccess::get_field_value::<#field_types3>(&mut __prod)?)
                                     })*
                                 }
                             }
                             Ok(#name {
                                 #(#field_names:
-                                    #field_names.ok_or_else(|| #spacetimedb_lib::de::Error::missing_field(#iter_n3, Some(#field_strings), &self))?,)*
+                                    #field_names.ok_or_else(|| #spacetimedb_lib::de::Error::missing_field(#iter_n4, Some(#field_strings), &self))?,)*
                             })
                         }
+                        fn validate_named_product<A: #spacetimedb_lib::de::NamedProductAccess<'de>>(self, mut __prod: A) -> Result<(), A::Error> {
+                            #(let mut #field_names = false;)*
+                            while let Some(__field) = #spacetimedb_lib::de::NamedProductAccess::get_field_ident(&mut __prod, Self {
+                                _marker: std::marker::PhantomData,
+                            })? {
+                                match __field {
+                                    #(__ProductFieldIdent::#field_names => {
+                                        if #field_names {
+                                            return Err(#spacetimedb_lib::de::Error::duplicate_field(#iter_n5, Some(#field_strings), &self))
+                                        }
+                                        #spacetimedb_lib::de::NamedProductAccess::validate_field_value::<#field_types4>(&mut __prod)?;
+                                        #field_names = true;
+                                    })*
+                                }
+                            }
+                            #(
+                                if !#field_names {
+                                    return Err(#spacetimedb_lib::de::Error::missing_field(#iter_n6, Some(#field_strings), &self));
+                                }
+                            )*
+                            Ok(())
+                        }
                     }
 
                     impl #de_impl_generics #spacetimedb_lib::de::FieldNameVisitor<'de> for __ProductVisitor #ty_generics #de_where_clause {
@@ -456,7 +494,7 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
 
                         fn visit_seq(self, index: usize) -> Self::Output {
                             match index {
-                                #(#iter_n4 => __ProductFieldIdent::#field_names,)*
+                                #(#iter_n7 => __ProductFieldIdent::#field_names,)*
                                 _ => core::unreachable!(),
                             }
                         }
@@ -488,6 +526,18 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
                     }
                 }
             });
+            let arms_validate = variants.iter().map(|var| {
+                let ident = var.ident;
+                if let Some(ty) = var.ty {
+                    quote! {
+                        __Variant::#ident => #spacetimedb_lib::de::VariantAccess::validate::<#ty>(__access)?,
+                    }
+                } else {
+                    quote! {
+                        __Variant::#ident => #spacetimedb_lib::de::VariantAccess::validate::<()>(__access)?,
+                    }
+                }
+            });
             quote! {
                 #[allow(clippy::all)]
                 const _: () = {
@@ -497,6 +547,12 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
                                 _marker: std::marker::PhantomData::<fn() -> #name #ty_generics>,
                             })
                         }
+
+                        fn validate<D: #spacetimedb_lib::de::Deserializer<'de>>(deserializer: D) -> Result<(), D::Error> {
+                            deserializer.validate_sum(__SumVisitor {
+                                _marker: std::marker::PhantomData::<fn() -> #name #ty_generics>,
+                            })
+                        }
                     }
 
                     struct __SumVisitor #impl_generics #where_clause {
@@ -516,6 +572,14 @@ pub(crate) fn derive_deserialize(ty: &SatsType<'_>) -> TokenStream {
                                 #(#arms)*
                             }
                         }
+
+                        fn validate_sum<A: #spacetimedb_lib::de::SumAccess<'de>>(self, __data: A) -> Result<(), A::Error> {
+                            let (__variant, __access) = __data.variant(self)?;
+                            match __variant {
+                                #(#arms_validate)*
+                            }
+                            Ok(())
+                        }
                     }
 
                     #[allow(non_camel_case_types)]

crates/bindings-macro/src/sats.rs

@@ -63,6 +63,36 @@ note: required by a bound in `spacetimedb::spacetimedb_lib::de::SeqProductAccess
   |     fn next_element<T: Deserialize<'de>>(&mut self) -> Result<Option<T>, Self::Error> {
   |                        ^^^^^^^^^^^^^^^^ required by this bound in `SeqProductAccess::next_element`
 
+error[E0277]: the trait bound `Test: Deserialize<'de>` is not satisfied
+ --> tests/ui/tables.rs:5:8
+  |
+3 | #[spacetimedb::table(accessor = table)]
+  | --------------------------------------- required by a bound introduced by this call
+4 | struct Table {
+5 |     x: Test,
+  |        ^^^^ unsatisfied trait bound
+  |
+help: the trait `Deserialize<'de>` is not implemented for `Test`
+ --> tests/ui/tables.rs:1:1
+  |
+1 | struct Test;
+  | ^^^^^^^^^^^
+  = help: the following other types implement trait `Deserialize<'de>`:
+            &'de [u8]
+            &'de str
+            ()
+            (T0, T1)
+            (T0, T1, T2)
+            (T0, T1, T2, T3)
+            (T0, T1, T2, T3, T4)
+            (T0, T1, T2, T3, T4, T5)
+          and $N others
+note: required by a bound in `spacetimedb::spacetimedb_lib::de::SeqProductAccess::validate_next_element`
+ --> $WORKSPACE/crates/sats/src/de.rs
+  |
+  |     fn validate_next_element<T: Deserialize<'de>>(&mut self) -> Result<Option<()>, Self::Error> {
+  |                                 ^^^^^^^^^^^^^^^^ required by this bound in `SeqProductAccess::validate_next_element`
+
 error[E0277]: the trait bound `Test: Deserialize<'_>` is not satisfied
  --> tests/ui/tables.rs:5:8
   |
@@ -90,6 +120,33 @@ note: required by a bound in `get_field_value`
   |     fn get_field_value<T: Deserialize<'de>>(&mut self) -> Result<T, Self::Error> {
   |                           ^^^^^^^^^^^^^^^^ required by this bound in `NamedProductAccess::get_field_value`
 
+error[E0277]: the trait bound `Test: Deserialize<'_>` is not satisfied
+ --> tests/ui/tables.rs:5:8
+  |
+5 |     x: Test,
+  |        ^^^^ unsatisfied trait bound
+  |
+help: the trait `Deserialize<'_>` is not implemented for `Test`
+ --> tests/ui/tables.rs:1:1
+  |
+1 | struct Test;
+  | ^^^^^^^^^^^
+  = help: the following other types implement trait `Deserialize<'de>`:
+            &'de [u8]
+            &'de str
+            ()
+            (T0, T1)
+            (T0, T1, T2)
+            (T0, T1, T2, T3)
+            (T0, T1, T2, T3, T4)
+            (T0, T1, T2, T3, T4, T5)
+          and $N others
+note: required by a bound in `validate_field_value`
+ --> $WORKSPACE/crates/sats/src/de.rs
+  |
+  |     fn validate_field_value<T: Deserialize<'de>>(&mut self) -> Result<(), Self::Error> {
+  |                                ^^^^^^^^^^^^^^^^ required by this bound in `NamedProductAccess::validate_field_value`
+
 error[E0277]: the trait bound `Test: Serialize` is not satisfied
  --> tests/ui/tables.rs:5:8
   |