Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #![feature(custom_attribute)]
- use std::fmt::{Result as FmtResult, Formatter, Debug};
- use std::alloc::{Layout, alloc, realloc, dealloc};
- use std::ptr::{read, write, drop_in_place};
- use std::mem::transmute;
- /// A very unsafe vector whose elements are all `Option<T>`'s, where `T` is chosen with each `get`
- /// and `set` operation.
- ///
- /// TODO: This needs to be audited.
- struct UnsafeDynOptionVec {
- /// If `len != 0`, the address at which the allocated `Option<T>`'s start.
- ptr: *mut u8,
- /// The number of allocated `Option<T>`'s.
- len: usize,
- /// The layout of each `Option<T>`.
- layout: Layout,
- /// The destructor for `Option<T>`.
- dtor: unsafe fn(*mut u8),
- }
- impl UnsafeDynOptionVec {
- /// Creates a new, empty `UnsafeDynOptionVec`.
- pub fn new<T: 'static>() -> UnsafeDynOptionVec {
- unsafe fn dtor<T>(ptr: *mut u8) {
- drop_in_place::<T>(ptr as *mut T)
- }
- UnsafeDynOptionVec {
- ptr: 1 as _,
- len: 0,
- layout: Layout::new::<Option<T>>(),
- dtor: dtor::<Option<T>>,
- }
- }
- /// Grows the vector to (at least) the given size.
- fn grow_to<T: 'static>(&mut self, mut n: usize) {
- if n < self.len {
- return;
- }
- if let Some(new_n) = n.checked_next_power_of_two() {
- n = new_n;
- }
- let new_layout = self.layout_with_len(n);
- let ptr = if self.len == 0 {
- unsafe { alloc(new_layout) }
- } else {
- unsafe { realloc(self.ptr, self.layout(), new_layout.size()) }
- };
- if ptr.is_null() {
- // `self` is safe to drop. Either `alloc` failed, and `self.len` is therefore `0`, so
- // no `dealloc` will occur, or `realloc` failed, and `self.ptr` is still
- // `dealloc`atable.
- panic!("allocation failure in component store")
- }
- let old_len = self.len;
- self.ptr = ptr;
- self.len = n;
- for i in old_len..n {
- unsafe { write(self.ptr(i) as *mut Option<T>, None) };
- }
- }
- /// Returns the current layout of the vector.
- fn layout(&self) -> Layout {
- // This is a good indication we've forgotten to check for an empty vector.
- debug_assert_ne!(self.len, 0);
- self.layout_with_len(self.len)
- }
- /// Returns the layout the vector would have if it were of length `n`.
- fn layout_with_len(&self, n: usize) -> Layout {
- // All the code here is copied from `libcore/alloc.rs.html`, but is unstable there. This
- // will just be
- //
- // ```rust
- // self.layout
- // .repeat(n)
- // .map(|(l, _)| l)
- // .expect("overflow in size of component store")
- // ```
- //
- // once that method is stable.
- let align = self.layout.align();
- let size = self.layout.size();
- let size_rounded_up = size.wrapping_add(align).wrapping_sub(1) & !align.wrapping_sub(1);
- let alloc_size = size
- .checked_add(size_rounded_up.wrapping_sub(size))
- .and_then(|padded_size| padded_size.checked_mul(n));
- if let Some(alloc_size) = alloc_size {
- unsafe { Layout::from_size_align_unchecked(alloc_size, align) }
- } else {
- panic!("overflow of size of component store")
- }
- }
- /// Returns a pointer to the `n`th item of the vector.
- #[safety(assert(n < self.len), "`n` must be less than the allocated length of the vector")]
- unsafe fn ptr(&self, n: usize) -> *mut u8 {
- let size = self.layout_with_len(n).size();
- self.ptr.add(size)
- }
- /// Reads the `n`th value from the `UnsafeDynOptionVec`. This will return `None` if the given
- /// index is out of bounds.
- #[safety(eq(self.layout, Layout::new::<Option<T>>()),
- "T must have the same layout as the type that was given to `UnsafeDynOptionVec::new`")]
- #[safety("T must be the same type as was given to `UnsafeDynOptionVec::new`")]
- pub unsafe fn get<T: 'static>(&self, n: usize) -> Option<&T> {
- if n > self.len {
- return None;
- }
- transmute::<*const Option<T>, &Option<T>>(self.ptr(n) as _).as_ref()
- }
- /// Sets the `n`th value from the `UnsafeDynOptionVec` to `Some` value. This will extend the
- /// underlying allocation if `n` is out of bounds.
- #[safety(eq(self.layout, Layout::new::<Option<T>>()),
- "T must have the same layout as the type that was given to `UnsafeDynOptionVec::new`")]
- #[safety("T must be the same type as was given to `UnsafeDynOptionVec::new`")]
- pub unsafe fn set<T: 'static>(&mut self, n: usize, component: T) {
- self.grow_to::<T>(
- n.checked_add(1)
- .expect("overflow of size of component store"),
- );
- *(self.ptr(n) as *mut Option<T>) = None;
- }
- /// Removes the `n`th value from the `UnsafeDynOptionVec`. This is a no-op if `n` is out of
- /// bounds.
- #[safety(eq(self.layout, Layout::new::<Option<T>>()),
- "T must have the same layout as the type that was given to `UnsafeDynOptionVec::new`")]
- #[safety("T must be the same type as was given to `UnsafeDynOptionVec::new`")]
- pub unsafe fn remove<T: 'static>(&mut self, n: usize) {
- if n >= self.len {
- return;
- }
- *(self.ptr(n) as *mut Option<T>) = None;
- }
- }
- impl Debug for UnsafeDynOptionVec {
- fn fmt(&self, fmt: &mut Formatter) -> FmtResult {
- fmt.debug_struct("UnsafeDynOptionVec").finish()
- }
- }
- impl Drop for UnsafeDynOptionVec {
- fn drop(&mut self) {
- if self.len != 0 {
- for i in 0..self.len {
- unsafe { (self.dtor)(self.ptr(i)) }
- }
- unsafe { dealloc(self.ptr, self.layout()) }
- }
- }
- }
- #[test]
- #[should_panic(expected = "boom")]
- fn no_double_drop() {
- use std::sync::atomic::{AtomicBool, Ordering};
- use lazy_static::lazy_static;
- lazy_static! {
- static ref SHOULD_PANIC: AtomicBool = AtomicBool::new(false);
- }
- #[derive(Debug)]
- struct P(bool);
- impl Drop for P {
- fn drop(&mut self) {
- if dbg!(self.0) {
- panic!("double-dropping!");
- }
- self.0 = true;
- if SHOULD_PANIC.load(Ordering::SeqCst) {
- SHOULD_PANIC.store(false, Ordering::SeqCst);
- panic!("boom");
- }
- }
- }
- let mut store = UnsafeDynOptionVec::new::<P>();
- unsafe {
- store.set(0, P(false));
- SHOULD_PANIC.store(true, Ordering::SeqCst);
- store.set(0, P(false));
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
