ARROW-11504: [Rust] Added checks to List DataType.

[jorgecarleitao]

This PR fixes a bug on which GenericListArray is not validating the datatype passed on to from(ArrayData), causing all types of bugs, such as undefined behavior in interpreting the offset buffer.

This PR adds this validation, panicking if the DataType does not match.

This PR also fixes casting from and to Lists, which was creating an ArrayData out of spec.

[github-actions]

https://issues.apache.org/jira/browse/ARROW-11504

[sunchao]

Thanks @jorgecarleitao for pinging. Left a few comments.

[sunchao]

nit: long line? I remember we enforce a limit of 100 characters.

[sunchao]

can we have a few tests to cover this? checking error message and all.

Also I'm not sure if assert_eq is good here: IMO assertion should only be used for checking internal logic that developer should follow and which are not exposed to the library users, but in this case it appears not. It's just a nit though since this is already used in multiple places before.

[jorgecarleitao]

I agree with you. However, that requires a larger change as we would need to move from From to TryFrom, so for now I just want to avoid unsafe code by panicking everytime something may go wrong.

[alamb]

Here is a mid-way proposal: a31a35a

Basically, to use normal rust handling, but the make the Into implementation expect the result

I actually think using asserts / panics directly (as in this PR) is also fine beacuse:

1. it is an improvement over the current behavior (crash / undefined) to get useful error messages (even if it is in a panic :( )
2. the use of ArrayData in my mind is also an implementation detail of an Array so most users of Arrow shouldn't be interacting with this code at all.

[alamb]

BTW I also tried using TryFrom directly and as @jorgecarleitao suspected there are many kernel implementations that rely in this being infallable.

[sunchao]

maybe we won't need prefix anymore with the new is_large.

[nevi-me]

We might still need it, we also use it for formatting in Display

[jorgecarleitao]

I think that we can drop it, yes. We can merge StringOffset, BinaryOffset and OffsetTrait in a single Trait with this, but I wanted to leave it to another PR.

[alamb]

Here is one way to remove prefix that does not go as far as @jorgecarleitao suggests to collapse the traits... 8e68e05

[jhorstmann]

Nice! I recently ran into the same issue and the assertion about the nested datatypes would have saved me some time debugging. In my testcase an assert_eq was failing, but printed both sides exactly the same.

[jorgecarleitao]

@jhorstmann , I think that that shows another, separate issue: imo what we currently show in "debug" should be shown in "Display", and "Debug" should actually show the full structure, i.e. the one created by #[derive(Debug)].

[nevi-me]

No additional comments, other than @sunchao's

[nevi-me]

We might still need it, we also use it for formatting in Display

[alamb]

@jorgecarleitao do you need help with this PR? I can try and take some of @sunchao 's comments if that would help

[jorgecarleitao]

@alamb that would definitely help. If you have the time, I would really appreciate.

[alamb]

@alamb that would definitely help. If you have the time, I would really appreciate.

@jorgecarleitao I will put it on my queue for tomorrow

[alamb]

I think this PR is good to merge as is as it makes the code better than on master (less errors), though it can be further improved.

@sunchao when you get some time I would love your feedback / advice -- should we merge this PR as is? Would you suggest incorporating one/both of the approaches prototyped in #9508 (remove prefix and making a fallable version of ArrayData --> GenericListArray)

[sunchao]

LGTM2 - I think we can merge this as it is and solve the comments separately. Thanks!

BTW this needs rebase.

[nevi-me]

@alamb can we merge this when CI is green, then treat #9508 as a separate JIRA ticket? This had fallen quite behind, but I've rebased and fixed failures on it, when I should have done it against #9508 instead.

[codecov-io]

Codecov Report

Merging #9425 (979a136) into master (5bea624) will increase coverage by 0.07%.
The diff coverage is 85.93%.

@@            Coverage Diff             @@
##           master    #9425      +/-   ##
==========================================
+ Coverage   82.25%   82.33%   +0.07%     
==========================================
  Files         244      245       +1     
  Lines       55685    56270     +585     
==========================================
+ Hits        45806    46330     +524     
- Misses       9879     9940      +61     

Impacted Files	Coverage Δ
rust/arrow/src/alloc/types.rs	0.00% <0.00%> (ø)
rust/datafusion/src/logical_plan/expr.rs	81.56% <ø> (+0.42%)	⬆️
...ion-testing/src/bin/arrow-json-integration-test.rs	0.00% <0.00%> (ø)
rust/arrow/src/ipc/writer.rs	87.23% <50.00%> (-0.59%)	⬇️
rust/arrow/src/array/array_list.rs	92.95% <70.00%> (-1.10%)	⬇️
...datafusion/src/physical_plan/string_expressions.rs	77.00% <82.23%> (+7.37%)	⬆️
...t/datafusion/src/physical_plan/coalesce_batches.rs	84.95% <83.33%> (-0.23%)	⬇️
rust/parquet/src/arrow/array_reader.rs	77.61% <91.30%> (-0.02%)	⬇️
rust/datafusion/src/physical_plan/functions.rs	85.52% <91.42%> (+11.69%)	⬆️
rust/arrow/src/alloc/mod.rs	92.68% <92.68%> (ø)
... and 29 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 4da5822...06ef10c. Read the comment docs.

[alamb]

@nevi-me good plan!

[alamb]

@nevi-me I don't remember seeing this in the original PR -- was this change intended ?

[alamb]

NM I see #9587 now