Skip to content

slice-dst: Add example for SliceWithHeader #70

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

slice-dst: Add example for SliceWithHeader #70

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
d552df4
slice-dst: Add example for SliceWithHeader
MattesWhite Apr 9, 2021
c4d0318
Remove ref-cast from slice-dts example
MattesWhite Apr 18, 2021
8caeb9b
Remove Cargo.lock as it is not required for crates
MattesWhite Apr 18, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
56 changes: 56 additions & 0 deletions Cargo.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

3 changes: 3 additions & 0 deletions crates/slice-dst/Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,6 +28,9 @@ optional = true
[build-dependencies]
autocfg = "1.0.0"

[dev-dependencies]
ref-cast = "1.0"

[[test]]
name = "smoke"
path = "tests/smoke.rs"
Expand Down
126 changes: 126 additions & 0 deletions crates/slice-dst/examples/my_vec.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,126 @@
use std::{
fmt::Display,
mem::{self, MaybeUninit},
ops::Deref,
};

use ref_cast::RefCast;
use slice_dst::SliceWithHeader;

/// Default capacity of [`MyVec`].
const MY_VEC_DEFAULT_CAPACITY: usize = 4;

/// On the heap we will store the number of used elements in the slice (length)
/// and a slice of (maybe uninitialized) values.
type HeapData<T> = SliceWithHeader<usize, MaybeUninit<T>>;

/// Our [`Vec`] implementation.
///
/// _Note:_ In contrast to [`std::vec::Vec`] this stores its length on the heap.
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

suggestion: use erasable::Thin and store Thin<Box<HeapData<T>>>, so the pointer is thin (single-usize-big) and length/capacity are both exclusively on the heap. SliceWithHeader stores its (slice) length inline to support erasing. (The eventual custom derive will omit this.)

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm a little bit reluctant to introduce erasable::Thin here. It addresses another issue and is from another crate. I would prefer to stick to an honorable mention here and put another example in the erasable crate.

struct MyVec<T>(Box<HeapData<T>>);

impl<T> MyVec<T> {
/// Empty [`MyVec`] with [default capacity](MY_VEC_DEFAULT_CAPACITY).
fn new() -> Self {
let inner = SliceWithHeader::new(
0,
(0..MY_VEC_DEFAULT_CAPACITY).map(|_| MaybeUninit::uninit()),
);
Self(inner)
}
/// Double the capacity of [`MyVec`].
///
/// Initialized elements are copied to the new allocated slice.
fn grow(&mut self) {
// Create an `ExactSizeIterator` double the size as the previous capacity.
let iter = (0..2 * self.capacity()).map(|_| MaybeUninit::uninit());
// Allocate a new DST.
let new = Self(SliceWithHeader::new(self.0.header, iter));
let mut old = mem::replace(self, new);
for idx in 0..old.0.header {
// Swap old, initialized values with new, uninitialized ones.
mem::swap(&mut self.0.slice[idx], &mut old.0.slice[idx])
}
// Reset length to prevent drop of uninitialized values.
old.0.header = 0;
}
fn push(&mut self, element: T) {
if self.len() == self.capacity() {
self.grow();
}
let len = &mut self.0.header;
self.0.slice[*len] = MaybeUninit::new(element);
*len += 1;
}
}

impl<T> Drop for MyVec<T> {
fn drop(&mut self) {
let len = self.len();
self.0.slice.iter_mut().take(len).for_each(|t| {
unsafe {
// Safe as only initialized values iterated.
std::ptr::drop_in_place(mem::transmute::<_, *mut T>(t));
};
})
}
}

impl<T> Deref for MyVec<T> {
type Target = MySlice<T>;

fn deref(&self) -> &Self::Target {
MySlice::ref_cast(&self.0)
}
}

impl<T> AsRef<MySlice<T>> for MyVec<T> {
fn as_ref(&self) -> &MySlice<T> {
&*self
}
}

/// The slice we get from a [`MyVec`].
///
/// We use the `ref-cast` crate to wrap the [`HeapData`] in our new-type
/// which allows us to implement our own functions.
#[derive(RefCast)]
#[repr(transparent)]
struct MySlice<T>(HeapData<T>);

impl<T> MySlice<T> {
fn len(&self) -> usize {
self.0.header
}
fn capacity(&self) -> usize {
self.0.slice.len()
}
fn iter(&self) -> impl Iterator<Item = &T> {
self.0.slice.iter().take(self.len()).map(|t| unsafe {
// Safe as only the initialized elements are iterated.
Copy link
Owner

@CAD97 CAD97 Apr 16, 2021
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

issue: unfortunately, this isn't sound as written, because anyone can use RefCast::ref_cast to convert between &MySlice and &HeapData, and change the header, changing how many initialized items are believed to exist. Or... it would be unsound if you added a DerefMut impl for MyVec, anyway. Having an example that's only sound due to a technicality is probably not the best idea 😄

suggestion: there are a few ways to fix this:

  • (lazy) note explicitly that access to &mut MySlice<_> would be unsound, due to the above;
  • (simple) just wrap [T] instead of HeapData<T> for MySlice<T>, as it doesn't need access to any of the other heap data (and is already a fat pointer, though using Thin could avoid this);
  • (chore) just inline the transmute usage that ref-cast abstracts away; or
  • (funky) use the priv-in-pub trick discussed in Support private casts dtolnay/ref-cast#9 to get an effectively private cast.

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you very much for pointing this out. I chose the chore option with a detailed // SAFETY: comment. I hope this is okay for you.

mem::transmute(t)
})
}
}

/// As [`MyVec`] implements [`Deref`] we can pass in a `&MyVec`.
fn print_my_vec<T: Display>(slice: &MySlice<T>) {
for (idx, t) in slice.iter().enumerate() {
println!("{}. element: {}", idx, t);
}
}

fn main() {
let mut my_vec = MyVec::new();
assert_eq!(MY_VEC_DEFAULT_CAPACITY, my_vec.capacity());
assert_eq!(0, my_vec.len());

my_vec.push("one");
my_vec.push("two");
my_vec.push("three");
my_vec.push("four");
my_vec.push("five");
assert_eq!(2 * MY_VEC_DEFAULT_CAPACITY, my_vec.capacity());
assert_eq!(5, my_vec.len());
print_my_vec(&my_vec);
}