From 77d80597b89186c59db3c839dd9ce53b2667dffe Mon Sep 17 00:00:00 2001 From: Ralf Jung Date: Mon, 9 Jul 2018 13:07:00 +0200 Subject: [PATCH 1/7] add debug assertion to from_raw_parts testing the alignment --- src/libcore/slice/mod.rs | 13 +++++++------ 1 file changed, 7 insertions(+), 6 deletions(-) diff --git a/src/libcore/slice/mod.rs b/src/libcore/slice/mod.rs index 87b7ae39cfd05..69bdb15ee4b8f 100644 --- a/src/libcore/slice/mod.rs +++ b/src/libcore/slice/mod.rs @@ -3889,18 +3889,18 @@ unsafe impl<'a, T> TrustedRandomAccess for ExactChunksMut<'a, T> { /// ``` /// use std::slice; /// -/// // manifest a slice out of thin air! -/// let ptr = 0x1234 as *const usize; -/// let amt = 10; -/// unsafe { -/// let slice = slice::from_raw_parts(ptr, amt); -/// } +/// // manifest a slice for a single element +/// let x = 42; +/// let ptr = &x as *const _; +/// let slice = unsafe { slice::from_raw_parts(ptr, 1) }; +/// assert_eq!(slice[0], 42); /// ``` /// /// [`NonNull::dangling()`]: ../../std/ptr/struct.NonNull.html#method.dangling #[inline] #[stable(feature = "rust1", since = "1.0.0")] pub unsafe fn from_raw_parts<'a, T>(data: *const T, len: usize) -> &'a [T] { + debug_assert!(data as usize % mem::align_of::() == 0, "attempt to create unaligned slice"); Repr { raw: FatPtr { data, len } }.rust } @@ -3914,6 +3914,7 @@ pub unsafe fn from_raw_parts<'a, T>(data: *const T, len: usize) -> &'a [T] { #[inline] #[stable(feature = "rust1", since = "1.0.0")] pub unsafe fn from_raw_parts_mut<'a, T>(data: *mut T, len: usize) -> &'a mut [T] { + debug_assert!(data as usize % mem::align_of::() == 0, "attempt to create unaligned slice"); Repr { raw: FatPtr { data, len} }.rust_mut } From 5cebe34268f4cd27b8350482c76929f6f1490a0b Mon Sep 17 00:00:00 2001 From: Ralf Jung Date: Tue, 10 Jul 2018 09:01:10 +0200 Subject: [PATCH 2/7] add some tests for ZST slices, and fix failures due to unaligned references --- src/libcore/slice/mod.rs | 74 +++++++++++++++++++------------------- src/libcore/tests/slice.rs | 69 +++++++++++++++++++++++++++++++++++ 2 files changed, 107 insertions(+), 36 deletions(-) diff --git a/src/libcore/slice/mod.rs b/src/libcore/slice/mod.rs index 69bdb15ee4b8f..4acaf4054840d 100644 --- a/src/libcore/slice/mod.rs +++ b/src/libcore/slice/mod.rs @@ -45,7 +45,7 @@ use option::Option; use option::Option::{None, Some}; use result::Result; use result::Result::{Ok, Err}; -use ptr; +use ptr::{self, NonNull}; use mem; use marker::{Copy, Send, Sync, Sized, self}; use iter_private::TrustedRandomAccess; @@ -80,7 +80,7 @@ macro_rules! slice_offset { ($ptr:expr, $by:expr) => {{ let ptr = $ptr; if size_from_ptr(ptr) == 0 { - (ptr as *mut i8).wrapping_offset($by) as _ + (ptr as *mut i8).wrapping_offset($by.wrapping_mul(align_from_ptr(ptr) as isize)) as _ } else { ptr.offset($by) } @@ -93,7 +93,7 @@ macro_rules! make_ref { let ptr = $ptr; if size_from_ptr(ptr) == 0 { // Use a non-null pointer value - &*(1 as *mut _) + &*(NonNull::dangling().as_ptr() as *const _) } else { &*ptr } @@ -106,13 +106,39 @@ macro_rules! make_ref_mut { let ptr = $ptr; if size_from_ptr(ptr) == 0 { // Use a non-null pointer value - &mut *(1 as *mut _) + &mut *(NonNull::dangling().as_ptr()) } else { &mut *ptr } }}; } +macro_rules! make_slice { + ($start: expr, $end: expr) => {{ + let start = $start; + let len = unsafe { ptrdistance($start, $end) }; + if size_from_ptr(start) == 0 { + // use a non-null pointer value + unsafe { from_raw_parts(NonNull::dangling().as_ptr() as *const _, len) } + } else { + unsafe { from_raw_parts(start, len) } + } + }} +} + +macro_rules! make_mut_slice { + ($start: expr, $end: expr) => {{ + let start = $start; + let len = unsafe { ptrdistance($start, $end) }; + if size_from_ptr(start) == 0 { + // use a non-null pointer value + unsafe { from_raw_parts_mut(NonNull::dangling().as_ptr(), len) } + } else { + unsafe { from_raw_parts_mut(start, len) } + } + }} +} + #[lang = "slice"] #[cfg(not(test))] impl [T] { @@ -581,7 +607,7 @@ impl [T] { pub fn iter(&self) -> Iter { unsafe { let p = if mem::size_of::() == 0 { - 1 as *const _ + NonNull::dangling().as_ptr() as *const _ } else { let p = self.as_ptr(); assume(!p.is_null()); @@ -612,7 +638,7 @@ impl [T] { pub fn iter_mut(&mut self) -> IterMut { unsafe { let p = if mem::size_of::() == 0 { - 1 as *mut _ + NonNull::dangling().as_ptr() } else { let p = self.as_mut_ptr(); assume(!p.is_null()); @@ -2369,6 +2395,11 @@ fn size_from_ptr(_: *const T) -> usize { mem::size_of::() } +#[inline] +fn align_from_ptr(_: *const T) -> usize { + mem::align_of::() +} + // The shared definition of the `Iter` and `IterMut` iterators macro_rules! iterator { (struct $name:ident -> $ptr:ty, $elem:ty, $mkref:ident) => { @@ -2547,34 +2578,6 @@ macro_rules! iterator { } } -macro_rules! make_slice { - ($start: expr, $end: expr) => {{ - let start = $start; - let diff = ($end as usize).wrapping_sub(start as usize); - if size_from_ptr(start) == 0 { - // use a non-null pointer value - unsafe { from_raw_parts(1 as *const _, diff) } - } else { - let len = diff / size_from_ptr(start); - unsafe { from_raw_parts(start, len) } - } - }} -} - -macro_rules! make_mut_slice { - ($start: expr, $end: expr) => {{ - let start = $start; - let diff = ($end as usize).wrapping_sub(start as usize); - if size_from_ptr(start) == 0 { - // use a non-null pointer value - unsafe { from_raw_parts_mut(1 as *mut _, diff) } - } else { - let len = diff / size_from_ptr(start); - unsafe { from_raw_parts_mut(start, len) } - } - }} -} - /// Immutable slice iterator /// /// This struct is created by the [`iter`] method on [slices]. @@ -2791,11 +2794,10 @@ impl<'a, T> ExactSizeIterator for IterMut<'a, T> { } // Return the number of elements of `T` from `start` to `end`. -// Return the arithmetic difference if `T` is zero size. #[inline(always)] unsafe fn ptrdistance(start: *const T, end: *const T) -> usize { if mem::size_of::() == 0 { - (end as usize).wrapping_sub(start as usize) + (end as usize).wrapping_sub(start as usize) / mem::align_of::() } else { end.offset_from(start) as usize } diff --git a/src/libcore/tests/slice.rs b/src/libcore/tests/slice.rs index 7981567067dad..feb6e52981021 100644 --- a/src/libcore/tests/slice.rs +++ b/src/libcore/tests/slice.rs @@ -376,6 +376,75 @@ fn test_windows_zip() { assert_eq!(res, [14, 18, 22, 26]); } +#[test] +#[allow(const_err)] +fn test_iter_consistency() { + use std::fmt::Debug; + use std::mem; + + fn helper(x : T) { + let v : &[T] = &[x, x, x]; + let len = v.len(); + + // TODO: Once #42789 is resolved, also compare the locations with each other + // and with slice patterns. + + for i in 0..len { + let nth = v.iter().nth(i).unwrap(); + assert!(nth as *const _ as usize % mem::align_of::() == 0); + assert_eq!(nth, &x); + } + assert_eq!(v.iter().nth(len), None, "nth(len) should return None"); + + let mut it = v.iter(); + for i in 0..len{ + let remaining = len - i; + assert_eq!(it.size_hint(), (remaining, Some(remaining))); + + let next = it.next().unwrap(); + assert!(next as *const _ as usize % mem::align_of::() == 0); + assert_eq!(next, &x); + } + assert_eq!(it.size_hint(), (0, Some(0))); + assert_eq!(it.next(), None, "The final call to next() should return None"); + } + + fn helper_mut(mut x : T) { + let v : &mut [T] = &mut [x, x, x]; + let len = v.len(); + + // TODO: Once #42789 is resolved, also compare the locations with each other + // and with slice patterns. + + for i in 0..len { + let nth = v.iter_mut().nth(i).unwrap(); + assert!(nth as *mut _ as usize % mem::align_of::() == 0); + assert_eq!(nth, &mut x); + } + assert_eq!(v.iter().nth(len), None, "nth(len) should return None"); + + let mut it = v.iter_mut(); + for i in 0..len { + let remaining = len - i; + assert_eq!(it.size_hint(), (remaining, Some(remaining))); + + let next = it.next().unwrap(); + assert!(next as *mut _ as usize % mem::align_of::() == 0); + assert_eq!(next, &mut x); + } + assert_eq!(it.size_hint(), (0, Some(0))); + assert_eq!(it.next(), None, "The final call to next() should return None"); + } + + // Make sure this works consistently for various types, including ZSTs. + helper(0u32); + helper(()); + helper([0u32; 0]); // ZST with alignment > 0 + helper_mut(0u32); + helper_mut(()); + helper_mut([0u32; 0]); // ZST with alignment > 0 +} + // The current implementation of SliceIndex fails to handle methods // orthogonally from range types; therefore, it is worth testing // all of the indexing operations on each input. From 87c8c467352504906f57367eda7328d8fdb0aa4b Mon Sep 17 00:00:00 2001 From: Ralf Jung Date: Tue, 10 Jul 2018 09:49:37 +0200 Subject: [PATCH 3/7] pacify tidy --- src/libcore/tests/slice.rs | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/libcore/tests/slice.rs b/src/libcore/tests/slice.rs index feb6e52981021..f49729aefa2de 100644 --- a/src/libcore/tests/slice.rs +++ b/src/libcore/tests/slice.rs @@ -386,7 +386,7 @@ fn test_iter_consistency() { let v : &[T] = &[x, x, x]; let len = v.len(); - // TODO: Once #42789 is resolved, also compare the locations with each other + // FIXME: Once #42789 is resolved, also compare the locations with each other // and with slice patterns. for i in 0..len { @@ -413,7 +413,7 @@ fn test_iter_consistency() { let v : &mut [T] = &mut [x, x, x]; let len = v.len(); - // TODO: Once #42789 is resolved, also compare the locations with each other + // FIXME: Once #42789 is resolved, also compare the locations with each other // and with slice patterns. for i in 0..len { From bcf8375062f05ea3307bfa6d019e310b3e8641b6 Mon Sep 17 00:00:00 2001 From: Ralf Jung Date: Wed, 11 Jul 2018 13:04:55 +0200 Subject: [PATCH 4/7] slice iterators: ZST iterators no longer just "make up" addresses --- src/libcore/slice/mod.rs | 332 ++++++++++++++----------------------- src/libcore/tests/slice.rs | 95 +++++++---- 2 files changed, 187 insertions(+), 240 deletions(-) diff --git a/src/libcore/slice/mod.rs b/src/libcore/slice/mod.rs index 4acaf4054840d..fd52c6bbf3c3f 100644 --- a/src/libcore/slice/mod.rs +++ b/src/libcore/slice/mod.rs @@ -45,7 +45,7 @@ use option::Option; use option::Option::{None, Some}; use result::Result; use result::Result::{Ok, Err}; -use ptr::{self, NonNull}; +use ptr; use mem; use marker::{Copy, Send, Sync, Sized, self}; use iter_private::TrustedRandomAccess; @@ -75,70 +75,6 @@ struct FatPtr { // Extension traits // -// Use macros to be generic over const/mut -macro_rules! slice_offset { - ($ptr:expr, $by:expr) => {{ - let ptr = $ptr; - if size_from_ptr(ptr) == 0 { - (ptr as *mut i8).wrapping_offset($by.wrapping_mul(align_from_ptr(ptr) as isize)) as _ - } else { - ptr.offset($by) - } - }}; -} - -// make a &T from a *const T -macro_rules! make_ref { - ($ptr:expr) => {{ - let ptr = $ptr; - if size_from_ptr(ptr) == 0 { - // Use a non-null pointer value - &*(NonNull::dangling().as_ptr() as *const _) - } else { - &*ptr - } - }}; -} - -// make a &mut T from a *mut T -macro_rules! make_ref_mut { - ($ptr:expr) => {{ - let ptr = $ptr; - if size_from_ptr(ptr) == 0 { - // Use a non-null pointer value - &mut *(NonNull::dangling().as_ptr()) - } else { - &mut *ptr - } - }}; -} - -macro_rules! make_slice { - ($start: expr, $end: expr) => {{ - let start = $start; - let len = unsafe { ptrdistance($start, $end) }; - if size_from_ptr(start) == 0 { - // use a non-null pointer value - unsafe { from_raw_parts(NonNull::dangling().as_ptr() as *const _, len) } - } else { - unsafe { from_raw_parts(start, len) } - } - }} -} - -macro_rules! make_mut_slice { - ($start: expr, $end: expr) => {{ - let start = $start; - let len = unsafe { ptrdistance($start, $end) }; - if size_from_ptr(start) == 0 { - // use a non-null pointer value - unsafe { from_raw_parts_mut(NonNull::dangling().as_ptr(), len) } - } else { - unsafe { from_raw_parts_mut(start, len) } - } - }} -} - #[lang = "slice"] #[cfg(not(test))] impl [T] { @@ -606,17 +542,18 @@ impl [T] { #[inline] pub fn iter(&self) -> Iter { unsafe { - let p = if mem::size_of::() == 0 { - NonNull::dangling().as_ptr() as *const _ + let ptr = self.as_ptr(); + assume(!ptr.is_null()); + + let end = if mem::size_of::() == 0 { + (ptr as usize).wrapping_add(self.len()) as *const _ } else { - let p = self.as_ptr(); - assume(!p.is_null()); - p + ptr.offset(self.len() as isize) }; Iter { - ptr: p, - end: slice_offset!(p, self.len() as isize), + ptr, + end, _marker: marker::PhantomData } } @@ -637,17 +574,18 @@ impl [T] { #[inline] pub fn iter_mut(&mut self) -> IterMut { unsafe { - let p = if mem::size_of::() == 0 { - NonNull::dangling().as_ptr() + let ptr = self.as_mut_ptr(); + assume(!ptr.is_null()); + + let end = if mem::size_of::() == 0 { + (ptr as usize).wrapping_add(self.len()) as *mut _ } else { - let p = self.as_mut_ptr(); - assume(!p.is_null()); - p + ptr.offset(self.len() as isize) }; IterMut { - ptr: p, - end: slice_offset!(p, self.len() as isize), + ptr, + end, _marker: marker::PhantomData } } @@ -2390,19 +2328,66 @@ impl<'a, T> IntoIterator for &'a mut [T] { } } -#[inline] -fn size_from_ptr(_: *const T) -> usize { - mem::size_of::() -} - -#[inline] -fn align_from_ptr(_: *const T) -> usize { - mem::align_of::() -} - // The shared definition of the `Iter` and `IterMut` iterators macro_rules! iterator { - (struct $name:ident -> $ptr:ty, $elem:ty, $mkref:ident) => { + (struct $name:ident -> $ptr:ty, $elem:ty, $raw_mut:tt, $( $mut_:tt )*) => { + impl<'a, T> $name<'a, T> { + // Helper function for creating a slice from the iterator. + #[inline(always)] + fn make_slice(&self) -> &'a [T] { + unsafe { from_raw_parts(self.ptr, self.len()) } + } + + // Helper function for moving the start of the iterator forwards by `offset` elements, + // returning the old start. + // Unsafe because the offset must be in-bounds or one-past-the-end. + #[inline(always)] + unsafe fn post_inc_start(&mut self, offset: isize) -> * $raw_mut T { + if mem::size_of::() == 0 { + self.end = (self.end as isize).wrapping_sub(offset) as * $raw_mut T; + self.ptr + } else { + let old = self.ptr; + self.ptr = self.ptr.offset(offset); + old + } + } + + // Helper function for moving the end of the iterator backwards by `offset` elements, + // returning the new end. + // Unsafe because the offset must be in-bounds or one-past-the-end. + #[inline(always)] + unsafe fn pre_dec_end(&mut self, offset: isize) -> * $raw_mut T { + if mem::size_of::() == 0 { + self.end = (self.end as isize).wrapping_sub(offset) as * $raw_mut T; + self.ptr + } else { + self.end = self.end.offset(-offset); + self.end + } + } + } + + #[stable(feature = "rust1", since = "1.0.0")] + impl<'a, T> ExactSizeIterator for $name<'a, T> { + #[inline(always)] + fn len(&self) -> usize { + if mem::size_of::() == 0 { + // end is really ptr+len + (self.end as usize).wrapping_sub(self.ptr as usize) + } else { + unsafe { self.end.offset_from(self.ptr) as usize } + } + } + + #[inline(always)] + fn is_empty(&self) -> bool { + // The way we encode the length of a ZST iterator, this works both for ZST + // and non-ZST. + self.ptr == self.end + } + } + #[stable(feature = "rust1", since = "1.0.0")] impl<'a, T> Iterator for $name<'a, T> { type Item = $elem; @@ -2411,21 +2396,21 @@ macro_rules! iterator { fn next(&mut self) -> Option<$elem> { // could be implemented with slices, but this avoids bounds checks unsafe { + assume(!self.ptr.is_null()); if mem::size_of::() != 0 { - assume(!self.ptr.is_null()); assume(!self.end.is_null()); } - if self.ptr == self.end { + if self.is_empty() { None } else { - Some($mkref!(self.ptr.post_inc())) + Some(& $( $mut_ )* *self.post_inc_start(1)) } } } #[inline] fn size_hint(&self) -> (usize, Option) { - let exact = unsafe { ptrdistance(self.ptr, self.end) }; + let exact = self.len(); (exact, Some(exact)) } @@ -2436,8 +2421,21 @@ macro_rules! iterator { #[inline] fn nth(&mut self, n: usize) -> Option<$elem> { - // Call helper method. Can't put the definition here because mut versus const. - self.iter_nth(n) + if n >= self.len() { + // This iterator is now empty. The way we encode the length of a non-ZST + // iterator, this works for both ZST and non-ZST. + // For a ZST we would usually do `self.end = self.ptr`, but since + // we will not give out an address any more after this there is no + // way to observe the difference. + self.ptr = self.end; + return None; + } + // We are in bounds. `offset` does the right thing even for ZSTs. + unsafe { + let elem = Some(& $( $mut_ )* *self.ptr.offset(n as isize)); + self.post_inc_start((n as isize).wrapping_add(1)); + elem + } } #[inline] @@ -2452,14 +2450,14 @@ macro_rules! iterator { // manual unrolling is needed when there are conditional exits from the loop let mut accum = init; unsafe { - while ptrdistance(self.ptr, self.end) >= 4 { - accum = f(accum, $mkref!(self.ptr.post_inc()))?; - accum = f(accum, $mkref!(self.ptr.post_inc()))?; - accum = f(accum, $mkref!(self.ptr.post_inc()))?; - accum = f(accum, $mkref!(self.ptr.post_inc()))?; + while self.len() >= 4 { + accum = f(accum, & $( $mut_ )* *self.post_inc_start(1))?; + accum = f(accum, & $( $mut_ )* *self.post_inc_start(1))?; + accum = f(accum, & $( $mut_ )* *self.post_inc_start(1))?; + accum = f(accum, & $( $mut_ )* *self.post_inc_start(1))?; } - while self.ptr != self.end { - accum = f(accum, $mkref!(self.ptr.post_inc()))?; + while !self.is_empty() { + accum = f(accum, & $( $mut_ )* *self.post_inc_start(1))?; } } Try::from_ok(accum) @@ -2486,7 +2484,7 @@ macro_rules! iterator { { // The addition might panic on overflow // Use the len of the slice to hint optimizer to remove result index bounds check. - let n = make_slice!(self.ptr, self.end).len(); + let n = self.make_slice().len(); self.try_fold(0, move |i, x| { if predicate(x) { Err(i) } else { Ok(i + 1) } @@ -2505,7 +2503,7 @@ macro_rules! iterator { // No need for an overflow check here, because `ExactSizeIterator` // implies that the number of elements fits into a `usize`. // Use the len of the slice to hint optimizer to remove result index bounds check. - let n = make_slice!(self.ptr, self.end).len(); + let n = self.make_slice().len(); self.try_rfold(n, move |i, x| { let i = i - 1; if predicate(x) { Err(i) } @@ -2524,14 +2522,14 @@ macro_rules! iterator { fn next_back(&mut self) -> Option<$elem> { // could be implemented with slices, but this avoids bounds checks unsafe { + assume(!self.ptr.is_null()); if mem::size_of::() != 0 { - assume(!self.ptr.is_null()); assume(!self.end.is_null()); } - if self.end == self.ptr { + if self.is_empty() { None } else { - Some($mkref!(self.end.pre_dec())) + Some(& $( $mut_ )* *self.pre_dec_end(1)) } } } @@ -2543,14 +2541,14 @@ macro_rules! iterator { // manual unrolling is needed when there are conditional exits from the loop let mut accum = init; unsafe { - while ptrdistance(self.ptr, self.end) >= 4 { - accum = f(accum, $mkref!(self.end.pre_dec()))?; - accum = f(accum, $mkref!(self.end.pre_dec()))?; - accum = f(accum, $mkref!(self.end.pre_dec()))?; - accum = f(accum, $mkref!(self.end.pre_dec()))?; + while self.len() >= 4 { + accum = f(accum, & $( $mut_ )* *self.pre_dec_end(1))?; + accum = f(accum, & $( $mut_ )* *self.pre_dec_end(1))?; + accum = f(accum, & $( $mut_ )* *self.pre_dec_end(1))?; + accum = f(accum, & $( $mut_ )* *self.pre_dec_end(1))?; } - while self.ptr != self.end { - accum = f(accum, $mkref!(self.end.pre_dec()))?; + while !self.is_empty() { + accum = f(accum, & $( $mut_ )* *self.pre_dec_end(1))?; } } Try::from_ok(accum) @@ -2601,7 +2599,9 @@ macro_rules! iterator { #[stable(feature = "rust1", since = "1.0.0")] pub struct Iter<'a, T: 'a> { ptr: *const T, - end: *const T, + end: *const T, // If T is a ZST, this is actually ptr+len. This encoding is picked so that + // ptr == end is a quick test for the Iterator being empty, that works + // for both ZST and non-ZST. _marker: marker::PhantomData<&'a T>, } @@ -2646,32 +2646,11 @@ impl<'a, T> Iter<'a, T> { /// ``` #[stable(feature = "iter_to_slice", since = "1.4.0")] pub fn as_slice(&self) -> &'a [T] { - make_slice!(self.ptr, self.end) - } - - // Helper function for Iter::nth - fn iter_nth(&mut self, n: usize) -> Option<&'a T> { - match self.as_slice().get(n) { - Some(elem_ref) => unsafe { - self.ptr = slice_offset!(self.ptr, (n as isize).wrapping_add(1)); - Some(elem_ref) - }, - None => { - self.ptr = self.end; - None - } - } + self.make_slice() } } -iterator!{struct Iter -> *const T, &'a T, make_ref} - -#[stable(feature = "rust1", since = "1.0.0")] -impl<'a, T> ExactSizeIterator for Iter<'a, T> { - fn is_empty(&self) -> bool { - self.ptr == self.end - } -} +iterator!{struct Iter -> *const T, &'a T, const, /* no mut */} #[stable(feature = "rust1", since = "1.0.0")] impl<'a, T> Clone for Iter<'a, T> { @@ -2712,7 +2691,9 @@ impl<'a, T> AsRef<[T]> for Iter<'a, T> { #[stable(feature = "rust1", since = "1.0.0")] pub struct IterMut<'a, T: 'a> { ptr: *mut T, - end: *mut T, + end: *mut T, // If T is a ZST, this is actually ptr+len. This encoding is picked so that + // ptr == end is a quick test for the Iterator being empty, that works + // for both ZST and non-ZST. _marker: marker::PhantomData<&'a mut T>, } @@ -2720,7 +2701,7 @@ pub struct IterMut<'a, T: 'a> { impl<'a, T: 'a + fmt::Debug> fmt::Debug for IterMut<'a, T> { fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result { f.debug_tuple("IterMut") - .field(&make_slice!(self.ptr, self.end)) + .field(&self.make_slice()) .finish() } } @@ -2766,76 +2747,11 @@ impl<'a, T> IterMut<'a, T> { /// ``` #[stable(feature = "iter_to_slice", since = "1.4.0")] pub fn into_slice(self) -> &'a mut [T] { - make_mut_slice!(self.ptr, self.end) - } - - // Helper function for IterMut::nth - fn iter_nth(&mut self, n: usize) -> Option<&'a mut T> { - match make_mut_slice!(self.ptr, self.end).get_mut(n) { - Some(elem_ref) => unsafe { - self.ptr = slice_offset!(self.ptr, (n as isize).wrapping_add(1)); - Some(elem_ref) - }, - None => { - self.ptr = self.end; - None - } - } - } -} - -iterator!{struct IterMut -> *mut T, &'a mut T, make_ref_mut} - -#[stable(feature = "rust1", since = "1.0.0")] -impl<'a, T> ExactSizeIterator for IterMut<'a, T> { - fn is_empty(&self) -> bool { - self.ptr == self.end + unsafe { from_raw_parts_mut(self.ptr, self.len()) } } } -// Return the number of elements of `T` from `start` to `end`. -#[inline(always)] -unsafe fn ptrdistance(start: *const T, end: *const T) -> usize { - if mem::size_of::() == 0 { - (end as usize).wrapping_sub(start as usize) / mem::align_of::() - } else { - end.offset_from(start) as usize - } -} - -// Extension methods for raw pointers, used by the iterators -trait PointerExt : Copy { - unsafe fn slice_offset(self, i: isize) -> Self; - - /// Increments `self` by 1, but returns the old value. - #[inline(always)] - unsafe fn post_inc(&mut self) -> Self { - let current = *self; - *self = self.slice_offset(1); - current - } - - /// Decrements `self` by 1, and returns the new value. - #[inline(always)] - unsafe fn pre_dec(&mut self) -> Self { - *self = self.slice_offset(-1); - *self - } -} - -impl PointerExt for *const T { - #[inline(always)] - unsafe fn slice_offset(self, i: isize) -> Self { - slice_offset!(self, i) - } -} - -impl PointerExt for *mut T { - #[inline(always)] - unsafe fn slice_offset(self, i: isize) -> Self { - slice_offset!(self, i) - } -} +iterator!{struct IterMut -> *mut T, &'a mut T, mut, mut} /// An internal abstraction over the splitting iterators, so that /// splitn, splitn_mut etc can be implemented once. diff --git a/src/libcore/tests/slice.rs b/src/libcore/tests/slice.rs index f49729aefa2de..4926679a91f3e 100644 --- a/src/libcore/tests/slice.rs +++ b/src/libcore/tests/slice.rs @@ -378,65 +378,96 @@ fn test_windows_zip() { #[test] #[allow(const_err)] -fn test_iter_consistency() { +fn test_iter_ref_consistency() { use std::fmt::Debug; - use std::mem; fn helper(x : T) { let v : &[T] = &[x, x, x]; + let v_ptrs : [*const T; 3] = match v { + [ref v1, ref v2, ref v3] => [v1 as *const _, v2 as *const _, v3 as *const _], + _ => unreachable!() + }; let len = v.len(); - // FIXME: Once #42789 is resolved, also compare the locations with each other - // and with slice patterns. - for i in 0..len { + assert_eq!(&v[i] as *const _, v_ptrs[i]); // check the v_ptrs array, just to be sure let nth = v.iter().nth(i).unwrap(); - assert!(nth as *const _ as usize % mem::align_of::() == 0); - assert_eq!(nth, &x); + assert_eq!(nth as *const _, v_ptrs[i]); } assert_eq!(v.iter().nth(len), None, "nth(len) should return None"); - let mut it = v.iter(); - for i in 0..len{ - let remaining = len - i; - assert_eq!(it.size_hint(), (remaining, Some(remaining))); + { + let mut it = v.iter(); + for i in 0..len{ + let remaining = len - i; + assert_eq!(it.size_hint(), (remaining, Some(remaining))); - let next = it.next().unwrap(); - assert!(next as *const _ as usize % mem::align_of::() == 0); - assert_eq!(next, &x); + let next = it.next().unwrap(); + assert_eq!(next as *const _, v_ptrs[i]); + } + assert_eq!(it.size_hint(), (0, Some(0))); + assert_eq!(it.next(), None, "The final call to next() should return None"); + } + + { + let mut it = v.iter(); + for i in 0..len{ + let remaining = len - i; + assert_eq!(it.size_hint(), (remaining, Some(remaining))); + + let prev = it.next_back().unwrap(); + assert_eq!(prev as *const _, v_ptrs[remaining-1]); + } + assert_eq!(it.size_hint(), (0, Some(0))); + assert_eq!(it.next_back(), None, "The final call to next_back() should return None"); } - assert_eq!(it.size_hint(), (0, Some(0))); - assert_eq!(it.next(), None, "The final call to next() should return None"); } - fn helper_mut(mut x : T) { + fn helper_mut(x : T) { let v : &mut [T] = &mut [x, x, x]; + let v_ptrs : [*mut T; 3] = match v { + [ref v1, ref v2, ref v3] => + [v1 as *const _ as *mut _, v2 as *const _ as *mut _, v3 as *const _ as *mut _], + _ => unreachable!() + }; let len = v.len(); - // FIXME: Once #42789 is resolved, also compare the locations with each other - // and with slice patterns. - for i in 0..len { + assert_eq!(&mut v[i] as *mut _, v_ptrs[i]); // check the v_ptrs array, just to be sure let nth = v.iter_mut().nth(i).unwrap(); - assert!(nth as *mut _ as usize % mem::align_of::() == 0); - assert_eq!(nth, &mut x); + assert_eq!(nth as *mut _, v_ptrs[i]); } assert_eq!(v.iter().nth(len), None, "nth(len) should return None"); - let mut it = v.iter_mut(); - for i in 0..len { - let remaining = len - i; - assert_eq!(it.size_hint(), (remaining, Some(remaining))); + { + let mut it = v.iter_mut(); + for i in 0..len { + let remaining = len - i; + assert_eq!(it.size_hint(), (remaining, Some(remaining))); + + let next = it.next().unwrap(); + assert_eq!(next as *mut _, v_ptrs[i]); + } + assert_eq!(it.size_hint(), (0, Some(0))); + assert_eq!(it.next(), None, "The final call to next() should return None"); + } + + { + let mut it = v.iter_mut(); + for i in 0..len{ + let remaining = len - i; + assert_eq!(it.size_hint(), (remaining, Some(remaining))); - let next = it.next().unwrap(); - assert!(next as *mut _ as usize % mem::align_of::() == 0); - assert_eq!(next, &mut x); + let prev = it.next_back().unwrap(); + assert_eq!(prev as *mut _, v_ptrs[remaining-1]); + } + assert_eq!(it.size_hint(), (0, Some(0))); + assert_eq!(it.next_back(), None, "The final call to next_back() should return None"); } - assert_eq!(it.size_hint(), (0, Some(0))); - assert_eq!(it.next(), None, "The final call to next() should return None"); } - // Make sure this works consistently for various types, including ZSTs. + // Make sure iterators and slice patterns yield consistent addresses for various types, + // including ZSTs. helper(0u32); helper(()); helper([0u32; 0]); // ZST with alignment > 0 From f567aea0565905670c442ae4219417507f5132e2 Mon Sep 17 00:00:00 2001 From: Ralf Jung Date: Wed, 11 Jul 2018 21:36:50 +0200 Subject: [PATCH 5/7] comments --- src/libcore/slice/mod.rs | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/src/libcore/slice/mod.rs b/src/libcore/slice/mod.rs index fd52c6bbf3c3f..e32a53679f1ec 100644 --- a/src/libcore/slice/mod.rs +++ b/src/libcore/slice/mod.rs @@ -2344,6 +2344,7 @@ macro_rules! iterator { #[inline(always)] unsafe fn post_inc_start(&mut self, offset: isize) -> * $raw_mut T { if mem::size_of::() == 0 { + // This is *reducing* the length. `ptr` never changes with ZST. self.end = (self.end as isize).wrapping_sub(offset) as * $raw_mut T; self.ptr } else { @@ -2425,8 +2426,8 @@ macro_rules! iterator { // This iterator is now empty. The way we encode the length of a non-ZST // iterator, this works for both ZST and non-ZST. // For a ZST we would usually do `self.end = self.ptr`, but since - // we will not give out an address any more after this there is no - // way to observe the difference. + // we will not give out an reference any more after this there is no + // way to observe the difference except for raw pointers. self.ptr = self.end; return None; } From da7a20beab54d310146bffb7b29d05dd6e4587bb Mon Sep 17 00:00:00 2001 From: Ralf Jung Date: Wed, 18 Jul 2018 17:39:47 +0200 Subject: [PATCH 6/7] add some more benchmarks to libcore/benches/slice --- src/libcore/benches/slice.rs | 46 ++++++++++++++++++++++++++++++++++++ 1 file changed, 46 insertions(+) diff --git a/src/libcore/benches/slice.rs b/src/libcore/benches/slice.rs index b2fc74544f1df..5a1fd861237f1 100644 --- a/src/libcore/benches/slice.rs +++ b/src/libcore/benches/slice.rs @@ -65,3 +65,49 @@ fn binary_search_l2_with_dups(b: &mut Bencher) { fn binary_search_l3_with_dups(b: &mut Bencher) { binary_search(b, Cache::L3, |i| i / 16 * 16); } + +fn iter(b: &mut Bencher, mapper: impl Fn(usize) -> T) { + let size = 1024; + let mut v = (0..size).map(mapper).collect::>(); + b.iter(move || { + let mut v = &mut v[..]; + black_box(&mut v); + for i in v.iter() { + black_box(i); + } + }); +} + +fn iter_nth(b: &mut Bencher, mapper: impl Fn(usize) -> T) { + let size = 1024; + let mut v = (0..size).map(mapper).collect::>(); + b.iter(move || { + let mut v = &mut v[..]; + black_box(&mut v); + let mut it = v.iter(); + for i in 0..size { + black_box(it.nth(0).unwrap()); + black_box(v.iter().nth(i).unwrap()); + } + }); +} + +#[bench] +fn iter_usize(b: &mut Bencher) { + iter(b, |i| i); +} + +#[bench] +fn iter_zst(b: &mut Bencher) { + iter(b, |_i| ()); +} + +#[bench] +fn iter_nth_usize(b: &mut Bencher) { + iter_nth(b, |i| i); +} + +#[bench] +fn iter_nth_zst(b: &mut Bencher) { + iter_nth(b, |_i| ()); +} From 924225a65c5460f70717e9445e1d875f55dd7ea4 Mon Sep 17 00:00:00 2001 From: Ralf Jung Date: Wed, 18 Jul 2018 18:29:44 +0200 Subject: [PATCH 7/7] use wrapping_offset; fix logic error in nth --- src/libcore/slice/mod.rs | 22 ++++++++++++---------- 1 file changed, 12 insertions(+), 10 deletions(-) diff --git a/src/libcore/slice/mod.rs b/src/libcore/slice/mod.rs index e32a53679f1ec..353d4056238c4 100644 --- a/src/libcore/slice/mod.rs +++ b/src/libcore/slice/mod.rs @@ -546,7 +546,7 @@ impl [T] { assume(!ptr.is_null()); let end = if mem::size_of::() == 0 { - (ptr as usize).wrapping_add(self.len()) as *const _ + (ptr as *const u8).wrapping_offset(self.len() as isize) as *const T } else { ptr.offset(self.len() as isize) }; @@ -578,7 +578,7 @@ impl [T] { assume(!ptr.is_null()); let end = if mem::size_of::() == 0 { - (ptr as usize).wrapping_add(self.len()) as *mut _ + (ptr as *mut u8).wrapping_offset(self.len() as isize) as *mut T } else { ptr.offset(self.len() as isize) }; @@ -2345,7 +2345,7 @@ macro_rules! iterator { unsafe fn post_inc_start(&mut self, offset: isize) -> * $raw_mut T { if mem::size_of::() == 0 { // This is *reducing* the length. `ptr` never changes with ZST. - self.end = (self.end as isize).wrapping_sub(offset) as * $raw_mut T; + self.end = (self.end as * $raw_mut u8).wrapping_offset(-offset) as * $raw_mut T; self.ptr } else { let old = self.ptr; @@ -2360,7 +2360,7 @@ macro_rules! iterator { #[inline(always)] unsafe fn pre_dec_end(&mut self, offset: isize) -> * $raw_mut T { if mem::size_of::() == 0 { - self.end = (self.end as isize).wrapping_sub(offset) as * $raw_mut T; + self.end = (self.end as * $raw_mut u8).wrapping_offset(-offset) as * $raw_mut T; self.ptr } else { self.end = self.end.offset(-offset); @@ -2423,12 +2423,14 @@ macro_rules! iterator { #[inline] fn nth(&mut self, n: usize) -> Option<$elem> { if n >= self.len() { - // This iterator is now empty. The way we encode the length of a non-ZST - // iterator, this works for both ZST and non-ZST. - // For a ZST we would usually do `self.end = self.ptr`, but since - // we will not give out an reference any more after this there is no - // way to observe the difference except for raw pointers. - self.ptr = self.end; + // This iterator is now empty. + if mem::size_of::() == 0 { + // We have to do it this way as `ptr` may never be 0, but `end` + // could be (due to wrapping). + self.end = self.ptr; + } else { + self.ptr = self.end; + } return None; } // We are in bounds. `offset` does the right thing even for ZSTs.