Replace MemCase's unsound impl of Deref/AsMut with a borrow() method #55
+111
−99
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This code compiled fine, but raised a segfault on the last println:
```rust
use epserde::deser::Deserialize;
use epserde::prelude::Flags;
use epserde::prelude::MemCase;
use epserde::ser::Serialize;
use std::fs::File;
use std::io::BufWriter;
fn main() {
let v = vec![0u64, 10, 20, 30, 40];
let path = std::path::PathBuf::from("/tmp/test.vector");
println!("Writing vector...");
let mut writer = BufWriter::new(File::create(&path).expect("Could not create temp file"));
unsafe { v.serialize(&mut writer) }.expect("Could not write vector");
drop(v);
println!("mmapping vector...");
let v =
unsafe { <Vec<u64>>::mmap(&path, Flags::RANDOM_ACCESS) }.expect("Could not mmap vector");
let v2: &[u64] = *v;
println!("Vector value:");
println!("{:?}", v2);
println!("Dropping vector...");
drop(v);
println!("Vector value:");
println!("{:?}", v2);
}
```
This is because the `Deref` implementation of `MemCase<&[u64]>`
effectively yields a `&&'static [u64]` which can itself be dereferenced
to a `&'static [u64]`, which outlives the `MemCase`.
There does not seem to be a way to implement `Deref` or `AsRef` (or
`std::borrow::Borrow`) without yielding some sort of `'static` here.
So as far as I can tell, we have to take this ergonomic blow in order to
avoid segfaults that are very easy for users to trigger unknowingly.
…onstraint on its DeserType
progval
force-pushed
the
memcase-noderef
branch
from
3c96b72 to
3b24e42
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This code compiled fine, but raised a segfault on the last println:
This is because the
Derefimplementation ofMemCase<&[u64]>effectively yields a&&'static [u64]which can itself be dereferenced to a&'static [u64], which outlives theMemCase.There does not seem to be a way to implement
DereforAsRef(orstd::borrow::Borrow) without yielding some sort of'statichere. So as far as I can tell, we have to take this ergonomic blow in order to avoid segfaults that are very easy for users to trigger unknowingly.Resolves #54