Deprecate JsValue::from_serde and JsValue::into_serde

[Liamolucko]

I've listed serde-wasm-bindgen as the replacement, and changed the section of the guide that talks about Serde to talk about serde-wasm-bindgen instead of the deprecated methods.

I didn't remove it entirely because I can imagine someone remembering it and trying to look it back up, only to find that it no longer exists, which would quite frustrating. I also added a footnote about the deprecated methods in case someone remembers the old way and wants to know what happened.

There were several examples using from_serde/into_serde, which I updated to use serde-wasm-bindgen or not use serde altogether.

The fetch example was a bit weird, in that it took a JS value, parsed it into a Rust value, only to serialize it back into a JS value. I removed that entirely in favour of just passing the original JS value directly. I suppose it behaves slightly differently in that it loses the extra validation, but a panic isn't all that much better than a JS runtime error.

Fixes #2770
Fixes tkaitchuck/aHash#95

This also indirectly 'fixes' issues about the deprecated functions:

Resolves #1258
Resolves #2017
Resolves #2539

[gthb]

Whether serde-wasm-bindgen is preferable probably depends a lot on the use case, so “replacement” and “deprecation” seems a bit off to me.

As a data point, in our use case (a parser module compiled to WebAssembly, passing an AST to the JavaScript side) we went the opposite way, dropping serde-wasm-bindgen in favor of JsValue::from_serde ... effectively simply this change:

 pub fn parse(formula: &str) -> JsValue {
-    let serializer = serde_wasm_bindgen::Serializer::new().serialize_maps_as_objects(true);
     match native_parse(formula) {
         Ok(result) => {
-            result.serialize(&serializer).unwrap_or_else(|err| {
+            JsValue::from_serde(&result).unwrap_or_else(|err| {

and this significantly reduced per-parse call overhead; we saw our measured parse times on real-world data (measured in Node.js 16.x) change from:

• average: 92.6 μs,
• 99.9th percentile : 1.44 ms

to:

• average 38.6 μs
• 99.9th percentile : 390 μs

This is presumably because a structure of potentially many JS objects is returned, which gets chatty over the JS/WebAssembly boundary in the serde-wasm-bindgen implementation, so from_serde is preferable in such use cases.

So the comment “This approach [serde-wasm-bindgen] has both advantages and disadvantages” being removed in this PR remains true and I don't think it should be removed.

Plus serde-wasm-bindgen (or at least the use of it in some cases, wherever the root cause may lie) has this rather serious issue RReverser/serde-wasm-bindgen#28 ... it is still unaddressed, and completely breaks module loading on Safari 14 and earlier. That's 4% of current browsers, according to https://browserslist.dev/?q=aW9zIDwgMTUsIHNhZmFyaSA8IDE1

So, you know, not thrilled about this idea. :-)

[alexcrichton]

I would agree that serde-wasm-bindgen is a bit of a different use case than the methods deprecated here so I don't think it's a direct replacement. Instead though could the __wbindgen_json_{parse,serialize} methods be exposed as first-class methods perhaps? That would give convenient access to JSON and additionally be able to lift the serde dependency up in to callers instead of baking it in wasm-bindgen itself.

[andoriyu]

@alexcrichton I've started this PR rustwasm/gloo#242 to extract this functionality. If __wbindgen_json_{parse,serialize} were publicly exposed, then behavior would match exactly. I've documented the difference in my PR.

[hamza1311]

As far as I understand it, __wbindgen_json_{parse,serialize} is equivalent to js_sys::JSON::{parse,stringify} so those are already exposed. Or maybe I'm misunderstanding something?

[alexcrichton]

Indeed! In that case I think it would be good to migrate the examples to that instead and to mention that as an alternative in addition to serde-wasm-bindgen

[andoriyu]

@hamza1311 I think they slightly different: in my PR for gloo, when I passed undefined to js_sys::JSON::stringify it panicked while __wbindgen_json_serialize didn't.

[Liamolucko]

@hamza1311 I think they slightly different: in my PR for gloo, when I passed undefined to js_sys::JSON::stringify it panicked while __wbindgen_json_serialize didn't.

Looks like the intrinsic has a special case for undefined:

wasm-bindgen/crates/cli-support/src/js/mod.rs

Lines 3446 to 3453 in f197b0e

	Intrinsic::JsonSerialize => {
	assert_eq!(args.len(), 1);
	// Turns out `JSON.stringify(undefined) === undefined`, so if
	// we're passed `undefined` reinterpret it as `null` for JSON
	// purposes.
	prelude.push_str(&format!("const obj = {};\n", args[0]));
	"JSON.stringify(obj === undefined ? null : obj)".to_string()
	}

That should be able to be replicated in gloo pretty easily.

[andoriyu]

@hamza1311 Oh, it's using a replaces function It's just replacing the entire object with null. That's similar to what I did - instead of calling JSON.stringify I return String::new() if the object is undefinied

[alexcrichton]

@Liamolucko would you be up for rewording to indicate that js_sys::JSON is an alternative and leaving the examples as-is but updating them to use js_sys::JSON?

[Liamolucko]

Okay, I've added a section to the guide page which talks about using JSON as an alternative to serde-wasm-bindgen. Currently it uses js-sys + serde_json directly, but it should probably be updated to use gloo-utils when rustwasm/gloo#242 is merged.

In my opinion, serde-wasm-bindgen is the better default, since the performance can swing either way and serde-wasm-bindgen has smaller code size. I agree that JSON should be mentioned though, since it can be much faster in some cases like @gthb's.

Also, I ran serde-wasm-bindgen's benchmark suite on a couple different engines and uploaded the results here, if you're curious exactly how it stacks up against JSON.

[gthb]

The functions in this crate were deprecated, but the usage isn't really deprecated (just no longer the recommended default, and requires a trait from a different crate), so maybe

Suggested change

	fail to compile. So, they were deprecated.
	fail to compile. So, they were moved out of `wasm-bindgen` into `gloo_utils` to
	resolve the circular dependency and replaced by `serde-wasm-bindgen` as the
	default approach to use.

... or something like that.

[gthb]

Suggested change

	#[deprecated = "causes dependency cycles, use `serde-wasm-bindgen` instead"]
	#[deprecated = "causes dependency cycles, use `serde-wasm-bindgen` instead, or `gloo_utils::format::JsValueSerdeExt`"]

[gthb]

Suggested change

	/// instead, or manually call `serde_json::to_string` + `JSON.parse`.
	/// instead, or `gloo_utils::format::JsValueSerdeExt`, or manually call
	/// `serde_json::to_string` + `JSON.parse`.

[gthb]

Suggested change

	/// instead, or manually call `JSON.stringify` + `serde_json::from_str`.
	/// instead, or `gloo_utils::format::JsValueSerdeExt`, or manually call
	/// `JSON.stringify` + `serde_json::from_str`.

[gthb]

Suggested change

	#[deprecated = "causes dependency cycles, use `serde-wasm-bindgen` instead"]
	#[deprecated = "causes dependency cycles, use `serde-wasm-bindgen` instead, or `gloo_utils::format::JsValueSerdeExt`"]

[RReverser]

Also, I ran serde-wasm-bindgen's benchmark suite on a couple different engines and uploaded the results here, if you're curious exactly how it stacks up against JSON.

Just to add some clarification not reflected in graph titles - after various added optimisations over time, serde-wasm-bindgen should be faster than serde-json based approach for almost all cases, except when your data has a lot of strings.

Not much more we can do there, as having all strings serialized into one large string (JSON) on one side, passing that string once, and parsing it back on another side will be always faster than passing tons of small strings one-by-one (same overhead x N).

For other data types we can do a lot better than JSON though, and that's why twitter benchmark (lots of strings) looks so different than others.

UPD / side-note: I see the original comment mentions lots of small objects and yeah, I can see how that case would have similar overhead issues to having lots of strings.

[RReverser]

I feel like it's important to still call out the limitations in terms of type support in JSON-based approach here too (like the document did in the original version).

The new version of this section makes it sound like both approaches are equivalent and the only difference is performance. However, the support for various JavaScript types that are not representable by JSON is an even more important advantage of serde-wasm-bindgen than just runtime perf or code size IMO.

[gthb]

Suggested change

	performance in some cases.
	performance in some cases. But this approach supports only types that can be
	serialized as JSON, leaving out some important types that `serde-wasm-bindgen`
	supports such as `Map`, `Set`, and array buffers.

... addressing @RReverser's point about type support

[RReverser]

Oh, so this edit didn't get in? Can you make a separate PR please?

[gthb]

Voilà! #3047

[alexcrichton]

This looks great to me, thanks again! I think further iteration is safe to happen in-tree

[tomasro27]

I'm still seeing this issue after updating wasm-bindgen to latest 0.2.84.
I also upgraded getrandom on a private branch to use wasm-bindgen 0.2.84.
wasm-bindgen has deprecated JsValue::from_serde and JsValue::into_serde, but it still has serde-json as optional dependency. Is this the issue if I have other crates depending on serde_json?
Any help is appreciated.

On the error below I can see wasm-bindgen on latest version 0.2.84. Also js-sys on latest 0.3.61 which consumes wasm-bindgen 0.2.84.

error: cyclic package dependency: package `ahash v0.7.6` depends on itself. Cycle:
package `ahash v0.7.6`
    ... which satisfies dependency `ahash = "^0.7.0"` of package `hashbrown v0.12.3`
    ... which satisfies dependency `hashbrown = "^0.12"` of package `indexmap v1.9.2`
    ... which satisfies dependency `indexmap = "^1.5.2"` of package `serde_json v1.0.93`
    ... which satisfies dependency `serde_json = "^1.0"` of package `wasm-bindgen v0.2.84`
    ... which satisfies dependency `wasm-bindgen = "^0.2.84"` of package `js-sys v0.3.61`
    ... which satisfies dependency `js-sys = "^0.3"` of package `getrandom v0.2.81 (https://github.com/tomasro27/getrandom?rev=ddcf36ef7ee401af102debb9c758703b1e574461#ddcf36ef)`
    ... which satisfies dependency `getrandom = "^0.2.3"` of package `ahash v0.7.6`

[RReverser]

Did you remove the serde-serialize feature from wasm-bindgen in your Cargo.toml after the update?

[tomasro27]

@RReverser I did not have the serde-serialize feature, but from reading more on the ahash thread, the issue is probably that one of my dependencies directly or indirectly defines wasm-bindgen with the serde-serialize feature enabled.
Is that a fair assumption? meaning that I would need to track down any dependencies that use wasm-bindgen with serde-serialize in my dependency tree so that my project does not enable that feature indirectly.

Is there a way to force indirect dependencies not using serde-serialize feature on wasm-bindgen? or is the only fix to upgrade those dependencies?

Thanks!

[tomasro27]

For anyone that might find this helpful, you can run cargo metadata > metadata.json to generate a file with all the crates/dependencies on your project. Then find all usages of wasm-bindgen with the feature flag serde-serialize (make sure it is not a dev dependency, as that might be okay). After finding which crates depend on wasm-bindgen with the feature flag enabled, you will need to update those packages to the latest version that does not use the serde-serialize feature in their dependencies.

[RReverser]

@tomasro27 FWIW for slightly simpler way you could also do cargo tree -p wasm-bindgen which will show you a tree of deps showing where wasm-bindgen is used. Or you could even just look at Cargo.lock contents.