How to best convert an underlying reference type to an lvalue quantity reference?

[FrancoisCarouge]

Hello community,

I have an interoperability use case of mp-units with other libraries in FrancoisCarouge/TypedLinearAlgebra. The library provides strong type support at the library interface API boundaries. The library stores the numerical values in the composed third party linear algebra (E.g.: Eigen, std::linalg).

The typed linear algebra library composes mp-units and linear algebra libraries. The typed linear algebra provides type erased interoperability. The library supports the conversions between, to and from, quantity and numeric types. A customization point object supports the injection of the conversions into the type-erased library. The conversions corresponds to the type libraries (e.g. mp-units).

The conversions are supplied in the form of a template structure with a static call operator:

template <typename To, typename From> struct element_caster;

A default implementation for the conversions available for types that are implicitly convertible (or no conversion needed) can be found as the following.

template <typename To, typename From>
[[nodiscard]] static constexpr To element_caster<To, From>::operator()(From value) {
  return value;
}

The end-user provides the element caster specialization(s) according to the library type used. For mp-units, they may look like the following for quantity, quantity point, and quantity reference types converted to and from built-in scalar types. The required explicit conversion type safety remains as expected.

// (1)
template <typename To, mp_units::Quantity From>
struct element_caster<To, From> {
  [[nodiscard]] static constexpr auto operator()(const From &value) -> To {
    return value.numerical_value_in(value.unit);
  }
};

// (2)
template <mp_units::Quantity To, typename From>
struct element_caster<To, From> {
  [[nodiscard]] static constexpr auto operator()(const From &value) -> To {
    return value * To::reference;
  }
};

template <typename To, mp_units::QuantityPoint From>
struct element_caster<To, From> {
  [[nodiscard]] static constexpr auto operator()(const From &value) -> To {
    return value.quantity_from_zero().numerical_value_in(value.unit);
  }
};

template <mp_units::QuantityPoint To, typename From>
struct element_caster<To, From> {
  [[nodiscard]] static constexpr auto operator()(const From &value) -> To {
    return {value * To::unit, mp_units::default_point_origin(To::unit)};
  }
};

template <typename To, mp_units::Reference From>
struct element_caster<To, From> {
  [[nodiscard]] static constexpr auto
  operator()([[maybe_unused]] From value) -> To {
    return 1.;
  }
};

These specializations support the conversion to and from storage for construction, assignment, read of the elements of the matrices.

state x0{3. * m, 2. * m / s, 1. * m / s2}; // (1) Constructor converts the quantity to double storage types.
quantity v = x0[1_i];                      // (2) Accessor converts the double storage to quantity types.

More examples can be seen in the longer Eigen/mp-units sample.

---

Now, here is an interesting, expected use case access pattern for interoperability through an (lvalue?) reference quantity value:

x0[1_i] = 2. * m / s; // (A) Assign the quantity to the element's value underlying storage. 

At the moment, the conversion can be implemented as the following:

// (A)
template <mp_units::Quantity To, typename From>
struct element_caster<To &, From &> {
  [[nodiscard]] static constexpr auto operator()(From &value) -> To & {
    return reinterpret_cast<To &>(value);
  }
};

I understand this implementation is problematic due to the lack of guarantees provided by reinterpret_cast: alignment, type compatibility, underlying quantity layout assumptions, etc... I am seeking correct, better, systematic alternatives that I haven't identified.

• Is this reference conversion implementation acceptable?
• Have I missed an existing reference conversion facility in mp-units?
• What implementation would be better suited for this reference conversion?
• Perhaps I could add or extend mp-units to better support conversion interoperability?
• Is there a deducing this opportunity for the multiplicity of constness, reference, value category variations?

Thank you!

[chiphogg]

I'm pretty sure mp-units has something for this, because I remember having design discussions about Au's .data_in(units) function. @mpusz didn't want to call it that because the "data" member of, e.g., std::array, referred to an array rather than a single value, and he thought that could be confusing. (At least, that's my recollection.)

I remember coming away from the discussion thinking mp-units had a function that played this role (i.e., get an lvalue reference to the underlying stored value), but I can't remember what it's called. Anyway, that should be the way to go!

[chiphogg]

numerical_value_ref_in(your_units)! That sounds like the right one.

[mpusz]

Hi @FrancoisCarouge!

I have followed your work for a while, and I always forward people who ask about heterogeneous vectors to your library. However, I never had time to analyze the design in detail.

1. On terminology

element_caster - maybe you should try to be consistent with mdspan terminology and interfaces? Please also check what is in the newest papers about mdspan and submdspan (please note that cppreference.com was not maintained for a while, so it is not updated with the latest changes).

2. Performance

to and from built-in scalar types

If that is true, then you might want to constrain with this assumption. Also, in such a case, it is probably better to pass quantities by value and not const Q&.
Otherwise, it the above is not true, then you may introduce move semantics and/or use numerical_value_ref_in().

3. Interop

Your caster is probably needed for other needs as well, but you could consider using mp-units interoperability traits as well.

4. Casting

I understand this implementation is problematic due to the lack of guarantees provided by reinterpret_cast

Actually, it is not 😉

using Q = quantity<si::metre>;
static_assert(std::is_standard_layout_v<Q>);
static_assert(std::is_pointer_interconvertible_with_class(&Q::numerical_value_is_an_implementation_detail_));

https://godbolt.org/z/Gf3Tx35bT

Of course, please also consider q.numerical_value_ref_in() and qp.quantity_ref_from().

5. Deducing this

Is there a deducing this opportunity for the multiplicity of constness, reference, value category variations?

Probably yes, but you need to point me to the code you would like to optimize.

[FrancoisCarouge]

Thank you @mpusz and @chiphogg for the discussion and forwarding people. ☕🥐

Re: Conversion Performance

Yes, it is indeed probably better to pass quantities and underlying storage types by values instead of const reference parameters in this conversion case. I now address this feedback in this pull request [236]. This sample could indeed be constrained with narrower specializations of conversion for both the double storage type and quantities with a double representation.

Re: Terminology

Yes, and I found the last full mdspan paper should be P0009R18. There is also the mdspan.at() paper P3383R2. The submdspan is P2630R4. I have taken some liberties with naming. My avoidance of _type or _t suffixes for types comes to mind. Is there a specific conversion, or element cast in mdspan I missed? Or a deviation that was surprising? This is good ergonomics feedback!

Re: Casting

I may be missing something obvious! q.numerical_value_ref_in() and qp.quantity_ref_from() appear to provide direct access to the underlying representation of a quantity. I see definitions like rep& quantity::numerical_value_ref_in(U) and quantity_type& quantity_point::quantity_ref_from(PO2) in mp-units. These conversions could be used if the underlying storage type were quantities and the public type the representation. Perhaps an uncommon use case.

The more common, present use case is the opposite. I believe this may not correspond to the conversion where a representation reference converts to a quantity reference. The quantity reference is returned. The representation reference is input. The inverse conversion is needed: get an lvalue quantity reference from a representation value/reference. Perhaps something equivalent to the semantic of a free-function like quantity & to_quantity_ref(double &). Boilerplate context: [1][2].

// The conversion under discussion:
// E.g.: double & --> quantity &
template <mp_units::Quantity To, typename From>
struct element_caster<To &, From &> {
  [[nodiscard]] static constexpr auto operator()(From &value) -> To & {
    return reinterpret_cast<To &>(value); // Is there better?
  }
};

Given confirmation the reinterpret_cast is acceptable, I wonder if it would be acceptable to complement the set of conversions in mp-units with such implementation?

// Minimal illustrative conversion equivalent example:
double v{42.};
quantity<mp_units::isq::length[m], double> & q = reinterpret_cast<quantity<isq::length[m], double>&>(v);
q = 17. * m;

// Should there be an mp-units conversion defined in place of `reinterpret_cast`?
// quantity & q = to_quantity_ref_in<mp_units::isq::length[m], double>(v, m); 

Trying to write more of the conversions, we get the following permutations.
Notes: I abused representation name as both the quantity representation and the underlying storage type of the linear algebra library because the distinction is not relevant here. I've also skipped some of the 32 variations: quantity to/from rep, const vs non-const, ref vs non-ref, forward vs non-forward, rvalue vs lvalue (if that makes sense at all).

From	To	Implementation
quantity	rep	return q.numerical_value_in(q.unit);
quantity &	rep &	return q.numerical_value_ref_in(q.unit);
quantity &&	rep &&	❌ Can't form a reference to a temporary. Is that true for rvalues? ❓off-topic
const quantity	const rep	return q.numerical_value_in(q.unit); Perhaps (not?) a deducing this opportunity here?
const quantity &	const rep &	return q.numerical_value_ref_in(q.unit); Perhaps a deducing this opportunity here?
rep	quantity	return value * To::reference; or other equivalent construction. E.g.: return { value, To::reference}.
rep &	quantity &	❓Can we do better than return reinterpret_cast<quantity<...> &>(value);?
rep &&	quantity &&	❓❌ Can't form a reference to a temporary. Is that true for rvalues? ❓ off-topic
const rep	const quantity	return value * To::reference; Perhaps (not?) a deducing this opportunity here? But how?
const rep &	const quantity &	❓ Perhaps a deducing this opportunity here? But how?
...	...	...

Early on in the development of the typed linear algebra library, I had used the mp-units interoperability traits. I realized the use case was not about converting between mp-units and another unit type library. The linear algebra storage is not a quantity-like type. It may be a built-in type. It may be more exotic like std::complex. It didn't make sense to me to write a quantity_like_traits<T> for double. It seemed to defeat the purpose of mp-units anyway.

I also considered using a strong type to represent the storage and provide the traits against that. Nonetheless the conversion injection and needs remained ultimately identical. It is really a quantity-representation conversion needed. I suppose it could be a quantity-representation use case which permits the generalization to non-quantity domains (e.g. linear algebra memory storage types). 🍺

[mpusz]

You could probably use start_lifetime_as, but then your double is dead 😕

In the future, we could consider a specialization for quantity<si::metre, double&>, but unfortunately, for now, I don't have time for that. You are welcome to experiment with that, though.

[FrancoisCarouge]

Yes, and thank you:

You can't conjure up a quantity object at that same address

Right, I suppose there's no memory-owning instance of quantity manifested out of thin air. I think here we are conjuring an lvalue quantity & from an lvalue rep &. Value category is complicated, though not too relevant here. The memory is present, though is it legal, might be the UB question.

Undefined Behavior (UB)

We saw earlier that quantity meets is_standard_layout_v and has an encouraging is_pointer_interconvertible_with_class property.

q.numerical_value_ref_in()

The reverse reference "casting" exists and is another encouraging property.

strict aliasing

We might be in the allowed case of an aggregate or union type that recursively includes one of the above types as a member and meet strict aliasing, similar to the is_pointer_interconvertible_with_class above. I think we are missing a few proofs: alignment, size, same storage/rep type...

You could probably use start_lifetime_as, but then your double is dead 😕

👀 I need to catch up on these C++23 memory facilities. I haven't had the pleasure to dive in these yet.

In the future, we could consider a specialization for quantity<si::metre, double&> [...] You are welcome to experiment with that, though.

Unfortunately I believe I have gone through this experiment. This would be the proxy reference pattern. A previous attempt at the typed linear algebra implementation tried them. Others have tried. I recorded a brief lesson learned from it in my considerations: A proxy reference could be used to allow traditional assignment syntax but [...] extra indirection are not interesting tradeoffs. The proxied references injected coupling in the design and prevented standard ergonomics with side effects. Quite a pain for the users. There's the famed vector<bool>::reference that illustrates the difficulties in using them, leaving aside the underlying implementation.

The typed linear algebra library CI/CD pipeline comes equipped with UBSAN and a few other sanitizers. The clean reports are encouraging... granted this tool doesn't quite catch strict aliasing violation.

I'm afraid a typed linear algebra library might fall short for users if I can't provide a provably correct quantity element assignment m[0_i, 0_i] = 1. * m / s;.

I have a hunch it might not be UB. 🤞 This is important for my use case. I will take some time to analyze this. I will report back.⏳

[mpusz]

This would be the proxy reference pattern

I am not sure if I agree. vector<bool> is wrong because it returns a temporary, where other "regular" specializations return a reference. It would not be the same. It would be something similar to optional<T&>, which was recently accepted into the standard, function_ref, or atomic_ref. Most of the things should work, but there are issues, like what the result of q_ref + q+ref should be. Should it create a new storage with the result, or do you need to point to an existing reference to update it with the resulting value?

[chiphogg]

I have a hunch it might not be UB. 🤞 This is important for my use case. I will take some time to analyze this. I will report back.⏳

I am about as certain as I (a non-language-lawyer) can be that this definitely is UB. Furthermore, I believe that no existing or proposed language feature can get around it.

The case where you get a reference to the underlying member is not as symmetric as it may at first appear. In that case, both the quantity itself, and its underlying member, are C++ objects whose lifetime has already begun. In the opposite case, no such quantity object exists, and none can be made to exist at that address without ending the lifetime of the existing underlying object.

For now, the only options that I can see are to end the lifetime of the underlying object (requiring a minimum standard of C++23), or to violate strict aliasing (which is definitely UB).

[FrancoisCarouge]

There's nothing wrong at all with a quantity<si::metre, double&> in mp-units. Just like the optional<T&> and others.
I meant in the context of the typed linear algebra, most of the things did work, but there were enough problems the ergonomics suffered. I should be able to talk to Daniel Withopf in May with some luck and get his insights.

end the lifetime of the underlying object (requiring a minimum standard of C++23)

This option is not viable for linear algebra. The value converted is the underlying storage of the matrix. What would it mean to end the lifetime of one of the elements within a matrix? It needs to remain alive.

what the result of q_ref + q+ref should be

I suppose a "When in doubt, do as the built-in types do" approach could be a start. It suggests that the return of q_ref + q_ref should be a q with its storage:

static_assert(std::same_as<double, decltype(std::declval<double &>() + std::declval<double &>())>);

[FrancoisCarouge]

You were right! I was wrong! And today I learned 😄

You said it: I cannot conjure an object that is not type-compatible reference at an address, and the exceptions to the rules are not applicable. It is now so obvious. I can't believe I didn't internalize this information many many years ago.

I went down the rabbit hole:

template <mp_units::Quantity To, typename From>
struct element_caster<To &, From &> {
  [[nodiscard]] static constexpr auto operator()(From &value) -> To & {

    // Problem: Is this cast undefined behavior?
    return reinterpret_cast<To &>(value); // (1)
    // (2) return *reinterpret_cast<To *>(&value);
  }

  // Analysis scope reduction for sanity:
  static_assert(std::same_as<double, From>,
                "In this particular sample, we only deal in doubles. We "
                "restrict the analysis to double for now, before generalizing "
                "to others.");

  // Usage pre-requisites:
  static_assert(std::same_as<typename To::rep, From>,
                "Only conversion between identical mp-units quantity type "
                "representation and the linear algebra storage type is "
                "intended and expected to be supported here.");

  // Known properties:
  static_assert(std::is_standard_layout_v<To>,
                "mp-units quantities are standard layout.");
  static_assert(std::is_standard_layout_v<From>,
                "Linear algebra storage types are standard layout.");

  // Strict Aliasing

  // The strict aliasing rule is a provision that allows the compiler to assume
  // that pointers (or references) of unrelated types do not point to the same
  // memory location. This assumption is critical for Type-Based Alias Analysis
  // (TBAA), enabling aggressive optimizations such as reordering instructions
  // and keeping values in registers.

  // Every object has an effective type, which determines which lvalue accesses
  // are valid and which violate the strict aliasing rules.

  // Obvious pre-condition:
  static_assert(
      sizeof(To) == sizeof(From),
      "The mp-units quantity type and the linear algebra storage type "
      "must have the same size as one of the early conditions for this cast to "
      "be correct: memory can't be accessed out of bounds.");

  // Given an object with effective type T1, using an lvalue expression
  // (typically, dereferencing a pointer) of a different type T2 is undefined
  // behavior, unless:

  // * T2 and T1 are compatible types.
  // --> No:
  // https://en.cppreference.com/w/c/language/compatible_type.html#Compatible_types

  // * T2 is cvr-qualified version of a type that is compatible with T1.
  // --> No

  // * T2 is a signed or unsigned version of a type that is compatible with T1.
  // --> No

  // * T2 is a character type (char, signed char, or unsigned char).
  // --> No

  // * T2 is an aggregate type or union type type that includes one of the
  // aforementioned types among its members (including, recursively, a member of
  // a subaggregate or contained union).
  // --> Maybe?

  // Alignment requirements are also necessary:
  static_assert(
      alignof(To) == alignof(From),
      "The mp-units quantity type and the linear algebra storage type "
      "must have the same alignment as one of the early conditions for "
      "this cast to be correct: memory can't be accessed misaligned.");

  // mp-units quantity types are structural types with this (simplified)
  // declaration: `struct quantity { double value; };`
  // https://github.com/mpusz/mp-units/blob/4130644b3162912b793d38a1e529d7ca4c290b4e/src/core/include/mp-units/framework/quantity.h#L230

  // Uh oh!? Expected. Not relevant here.
  static_assert(not std::is_layout_compatible_v<To, From>);

  // --> No. Not an aggregate type.
  // It turns out this was not the even applicable exception to consider!
  // https://en.cppreference.com/w/cpp/language/aggregate_initialization.html
  static_assert(not std::is_aggregate_v<To>,
                "mp-units quantity types are not agregate types: they have "
                "user-declared constuctors!");

  // Another learning:
  // is_pointer_interconvertible_with_class actually means
  // is_member_pointer_convertible_to_class_pointer! And it is not commutative.
  static_assert(
      std::is_pointer_interconvertible_with_class(
          &To::numerical_value_is_an_implementation_detail_),
      "The mp-units quantity type is pointer-interconvertible with its "
      "first non-static data member, which is the numerical value.");

  // Conclusion:

  // This conversion does not fall under the exception to the rule of:
  // Given an object with effective type T1, using an lvalue expression
  // of a different type T2 is undefined behavior.

  // The conversion dereferences the pointer, uses the reference and makes it
  // undefined behavior. It becomes obvious when we note that there does not
  // exists a quantity object for the pointer. The compiler is allowed to assume
  // the pointers point to the different memory location. The program is not
  // correct.

  // The project uses various optimization level, sanitizers, and the
  // "-fstrict-aliasing" flag. The UB did not manifest in tooling or behavior.
  // I needed to crank up the compilers aliasing level warning to its aggressive
  // setting "-Wstrict-aliasing=1" to start receiving feedback. The default
  // level was "3" from the compilers because this warning gives false
  // positives.

  // Where to now?

  // We can use the non-standard "may_alias" attribute to tell the compiler that
  // the type may alias other types. The undefined behavior is avoided.
  // It permits to use an lvalue quantity reference. The usage is natural for
  // users. We avoid ergonomics issues with solutions returning an auxiliary
  // type. But was it worth it?
};

Do you have experience with return reinterpret_cast<To __attribute__((__may_alias__)) &>(value); ?

I have some more follow-up to wrap up this discussion. Thank you!

[mpusz]

Initially, I thought it was easier to store quantities and then use mdspan<double> on top of that for the underlying linear algebra. However, it seems you're trying to go the other way around, which causes the above issues. Isn't it possible to reverse the order here?

[FrancoisCarouge]

It's an interesting thought! It is opposite of all the approaches that we found in the literature. It raises many many questions on how to map an heterogenous quantity types multidimensional container storage to an mdspan<double> with serious questions on the access patterns (policy) of non-array data, memory alignment, and conversions. Something to look into.⏳

[FrancoisCarouge]

I'm experimenting with various tradeoffs:

• Using current reference cast: UB & non-constexpr.
• Using start_lifetime_as: end-user UB possibility from dangling lifetime & end-user UB possibility.
• Using quantity<ref, rep &>: loss of C++ native reference syntax & loss of structured bindings
• Replacing the m[0_i, 0_i] = 42. * m; assignment support with something else: m.set<0, 0>(42. * m); or a weird m[0_i, 0_i, 42. * m]`: loss of C++ native reference syntax & loss of structured bindings & minor user ergonomics. This solution is strictly compliant.
• Storing quantities: as you suggested, I could make a multidimensional span over a storage of variants of quantities: std::mdspan<std::variant<quantity<...>, quantity<...>, ...>, ...>. The linear algebra doesn't know how to use the strong storage. I don't know how to view the strongly typed storage through an mdspan<double> span.

[mpusz]

I meant std::mdspan<double>. You can keep quantities in a tuple or any other heterogeneous type.

[FrancoisCarouge]

I have a functional proof of concept using a std::tuple storage of heterogeneous quantities viewed through a std::mdspan<double, ...> equipped with a tuple accessor policy through which std::linalg operations can be performed. Thank you.

I'll look into some open questions:

• Whether the tuple layout is compatible with SIMD/BLAS operations. Matching performance is a mandatory requirement.
• Whether to continue to support non-strongly typed storage without the undefined behavior by removing lvalue reference assignment support.
• Whether the typed matrix should own memory, not-own memory, or support both memory models. It's currently both, to support Eigen and std::linalg operations. Some languages, libraries make a choice.

[FrancoisCarouge]

To the future reader who found this discussion, to the question: How to best convert an underlying reference type to an lvalue quantity reference?

TL;DR answer: Don't, you shouldn't.

Details:

Reinterpreting double & to quantity<..., double> & is undefined behavior, type-punning. No amount of size, alignment, weakening aliasing, implicit lifetime, or explicit lifetime can make two objects share the same memory. The compiler may reorder, optimize the reads and writes of these two objects. Different tools, platforms, today, or in the future will impact this non-compliant code. You may diagnose these issues with the -fstrict-aliasing -Wstrict-aliasing=1 compiler options.

Out of the compliance with the standard, using compiler extension to alias pointers, will result in non-portable code and prevent constant expression, constexpr code. reinterpret_cast and other type-punning undefined behavior is explicitly non-constexpr.

The issue is a design defect manifesting in the code as this coupling of reference. You may want to think about the design. ❤️