nordic-dev.net/rust
nordic-dev.net/rust
2
0
Fork 0
mirror of https://github.com/rust-lang/rust.git synced 2025-04-28 11:07:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

Rollup merge of #56706 - oli-obk:const_unsafe_fn, r=Centril

Browse Source 
Make `const unsafe fn` bodies `unsafe`

r? @Centril

Updated for tracking issue discussion https://github.com/rust-lang/rust/issues/55607#issuecomment-445882296
This commit is contained in:
Mazdak Farrokhzad 2018-12-16 14:08:22 +01:00 committed by GitHub
commit 3552499010
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
8 changed files with 33 additions and 131 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/libcore/num/mod.rs
View File

@ -70,7 +70,7 @@ assert_eq!(size_of::<Option<std::num::", stringify!($Ty), ">>(), size_of::<", st
#[stable(feature = "nonzero", since = "1.28.0")] #[stable(feature = "nonzero", since = "1.28.0")]
#[inline] #[inline]
pub const unsafe fn new_unchecked(n: $Int) -> Self { pub const unsafe fn new_unchecked(n: $Int) -> Self {
$Ty(unsafe { NonZero(n) }) $Ty(NonZero(n))
} }
/// Create a non-zero if the given value is not zero. /// Create a non-zero if the given value is not zero.

2
src/libcore/ptr.rs
View File

@ -2928,7 +2928,7 @@ impl<T: ?Sized> NonNull<T> {
#[stable(feature = "nonnull", since = "1.25.0")] #[stable(feature = "nonnull", since = "1.25.0")]
#[inline] #[inline]
pub const unsafe fn new_unchecked(ptr: *mut T) -> Self { pub const unsafe fn new_unchecked(ptr: *mut T) -> Self {
NonNull { pointer: unsafe { NonZero(ptr as _) } } NonNull { pointer: NonZero(ptr as _) }
} }
/// Creates a new `NonNull` if `ptr` is non-null. /// Creates a new `NonNull` if `ptr` is non-null.

7
src/librustc_mir/build/mod.rs
View File

@ -111,13 +111,6 @@ pub fn mir_build<'a, 'tcx>(tcx: TyCtxt<'a, 'tcx, 'tcx>, def_id: DefId) -> Mir<'t
let safety = match fn_sig.unsafety { let safety = match fn_sig.unsafety {
hir::Unsafety::Normal => Safety::Safe, hir::Unsafety::Normal => Safety::Safe,
hir::Unsafety::Unsafe if tcx.is_min_const_fn(fn_def_id) => {
// As specified in #55607, a `const unsafe fn` differs
// from an `unsafe fn` in that its body is still considered
// safe code by default.
assert!(implicit_argument.is_none());
Safety::Safe
},
hir::Unsafety::Unsafe => Safety::FnUnsafe, hir::Unsafety::Unsafe => Safety::FnUnsafe,
}; };

29
src/librustc_mir/transform/check_unsafety.rs
View File

@ -311,13 +311,9 @@ impl<'a, 'tcx> UnsafetyChecker<'a, 'tcx> {
violations: &[UnsafetyViolation], violations: &[UnsafetyViolation],
unsafe_blocks: &[(ast::NodeId, bool)]) { unsafe_blocks: &[(ast::NodeId, bool)]) {
let safety = self.source_scope_local_data[self.source_info.scope].safety; let safety = self.source_scope_local_data[self.source_info.scope].safety;
let within_unsafe = match (safety, self.min_const_fn) { let within_unsafe = match safety {
// Erring on the safe side, pun intended
(Safety::BuiltinUnsafe, true) |
// mir building encodes const fn bodies as safe, even for `const unsafe fn`
(Safety::FnUnsafe, true) => bug!("const unsafe fn body treated as inherently unsafe"),
// `unsafe` blocks are required in safe code // `unsafe` blocks are required in safe code
(Safety::Safe, _) => { Safety::Safe => {
for violation in violations { for violation in violations {
let mut violation = violation.clone(); let mut violation = violation.clone();
match violation.kind { match violation.kind {
@ -342,9 +338,9 @@ impl<'a, 'tcx> UnsafetyChecker<'a, 'tcx> {
} }
false false
} }
// regular `unsafe` function bodies allow unsafe without additional unsafe blocks // `unsafe` function bodies allow unsafe without additional unsafe blocks
(Safety::BuiltinUnsafe, false) | (Safety::FnUnsafe, false) => true, Safety::BuiltinUnsafe | Safety::FnUnsafe => true,
(Safety::ExplicitUnsafe(node_id), _) => { Safety::ExplicitUnsafe(node_id) => {
// mark unsafe block as used if there are any unsafe operations inside // mark unsafe block as used if there are any unsafe operations inside
if !violations.is_empty() { if !violations.is_empty() {
self.used_unsafe.insert(node_id); self.used_unsafe.insert(node_id);
@ -616,21 +612,6 @@ pub fn check_unsafety<'a, 'tcx>(tcx: TyCtxt<'a, 'tcx, 'tcx>, def_id: DefId) {
} in violations.iter() { } in violations.iter() {
// Report an error. // Report an error.
match kind { match kind {
UnsafetyViolationKind::General if tcx.is_min_const_fn(def_id) => {
let mut err = tcx.sess.struct_span_err(
source_info.span,
&format!("{} is unsafe and unsafe operations \
are not allowed in const fn", description));
err.span_label(source_info.span, &description.as_str()[..])
.note(&details.as_str()[..]);
if tcx.fn_sig(def_id).unsafety() == hir::Unsafety::Unsafe {
err.note(
"unsafe action within a `const unsafe fn` still require an `unsafe` \
block in contrast to regular `unsafe fn`."
);
}
err.emit();
}
UnsafetyViolationKind::GeneralAndConstFn | UnsafetyViolationKind::GeneralAndConstFn |
UnsafetyViolationKind::General => { UnsafetyViolationKind::General => {
struct_span_err!( struct_span_err!(

4
src/test/ui/consts/min_const_fn/min_const_fn_unsafe.rs
View File

@ -28,13 +28,13 @@ const fn call_unsafe_generic_cell_const_fn() -> *const Vec<std::cell::Cell<u32>>
unsafe { ret_null_mut_ptr_no_unsafe::<Vec<std::cell::Cell<u32>>>() } unsafe { ret_null_mut_ptr_no_unsafe::<Vec<std::cell::Cell<u32>>>() }
//~^ ERROR calls to `const unsafe fn` in const fns //~^ ERROR calls to `const unsafe fn` in const fns
} }
const unsafe fn deref_forbidden(x: *mut usize) -> usize { *x } //~ ERROR not allowed in const fn const unsafe fn deref_forbidden(x: *mut usize) -> usize { *x }
//~^ dereferencing raw pointers in constant functions //~^ dereferencing raw pointers in constant functions
fn main() {} fn main() {}
const unsafe fn no_union() { const unsafe fn no_union() {
union Foo { x: (), y: () } union Foo { x: (), y: () }
Foo { x: () }.y //~ ERROR not allowed in const fn Foo { x: () }.y
//~^ unions in const fn //~^ unions in const fn
} }

24
src/test/ui/consts/min_const_fn/min_const_fn_unsafe.stderr
View File

@ -1,7 +1,7 @@
error[E0658]: dereferencing raw pointers in constant functions is unstable (see issue #51911) error[E0658]: dereferencing raw pointers in constant functions is unstable (see issue #51911)
--> $DIR/min_const_fn_unsafe.rs:31:59 --> $DIR/min_const_fn_unsafe.rs:31:59
| |
LL | const unsafe fn deref_forbidden(x: *mut usize) -> usize { *x } //~ ERROR not allowed in const fn LL | const unsafe fn deref_forbidden(x: *mut usize) -> usize { *x }
| ^^ | ^^
| |
= help: add #![feature(const_raw_ptr_deref)] to the crate attributes to enable = help: add #![feature(const_raw_ptr_deref)] to the crate attributes to enable
@ -9,7 +9,7 @@ LL | const unsafe fn deref_forbidden(x: *mut usize) -> usize { *x } //~ ERROR no
error[E0658]: unions in const fn are unstable (see issue #51909) error[E0658]: unions in const fn are unstable (see issue #51909)
--> $DIR/min_const_fn_unsafe.rs:38:5 --> $DIR/min_const_fn_unsafe.rs:38:5
| |
LL | Foo { x: () }.y //~ ERROR not allowed in const fn LL | Foo { x: () }.y
| ^^^^^^^^^^^^^^^ | ^^^^^^^^^^^^^^^
| |
= help: add #![feature(const_fn_union)] to the crate attributes to enable = help: add #![feature(const_fn_union)] to the crate attributes to enable
@ -38,24 +38,6 @@ LL | unsafe { ret_null_mut_ptr_no_unsafe::<Vec<std::cell::Cell<u32>>>() }
| |
= help: add #![feature(min_const_unsafe_fn)] to the crate attributes to enable = help: add #![feature(min_const_unsafe_fn)] to the crate attributes to enable
error: dereference of raw pointer is unsafe and unsafe operations are not allowed in const fn error: aborting due to 5 previous errors
--> $DIR/min_const_fn_unsafe.rs:31:59
|
LL | const unsafe fn deref_forbidden(x: *mut usize) -> usize { *x } //~ ERROR not allowed in const fn
| ^^ dereference of raw pointer
|
= note: raw pointers may be NULL, dangling or unaligned; they can violate aliasing rules and cause data races: all of these are undefined behavior
= note: unsafe action within a `const unsafe fn` still require an `unsafe` block in contrast to regular `unsafe fn`.
error: access to union field is unsafe and unsafe operations are not allowed in const fn
--> $DIR/min_const_fn_unsafe.rs:38:5
|
LL | Foo { x: () }.y //~ ERROR not allowed in const fn
| ^^^^^^^^^^^^^^^ access to union field
|
= note: the field may not be properly initialized: using uninitialized data will cause undefined behavior
= note: unsafe action within a `const unsafe fn` still require an `unsafe` block in contrast to regular `unsafe fn`.
error: aborting due to 7 previous errors
For more information about this error, try `rustc --explain E0658`. For more information about this error, try `rustc --explain E0658`.

15
src/test/ui/consts/min_const_fn/min_const_fn_unsafe_feature_gate.rs
View File

@ -34,29 +34,28 @@ const unsafe fn foo9_3() -> *const String {
const unsafe fn foo10_3() -> *const Vec<std::cell::Cell<u32>> { const unsafe fn foo10_3() -> *const Vec<std::cell::Cell<u32>> {
unsafe { foo6::<Vec<std::cell::Cell<u32>>>() } unsafe { foo6::<Vec<std::cell::Cell<u32>>>() }
} }
// not ok
const unsafe fn foo8_2() -> i32 { const unsafe fn foo8_2() -> i32 {
foo4() //~ ERROR not allowed in const fn foo4()
} }
const unsafe fn foo9_2() -> *const String { const unsafe fn foo9_2() -> *const String {
foo5::<String>() //~ ERROR not allowed in const fn foo5::<String>()
} }
const unsafe fn foo10_2() -> *const Vec<std::cell::Cell<u32>> { const unsafe fn foo10_2() -> *const Vec<std::cell::Cell<u32>> {
foo6::<Vec<std::cell::Cell<u32>>>() //~ ERROR not allowed in const fn foo6::<Vec<std::cell::Cell<u32>>>()
} }
const unsafe fn foo30_3(x: *mut usize) -> usize { *x } //~ ERROR not allowed in const fn const unsafe fn foo30_3(x: *mut usize) -> usize { *x }
//~^ dereferencing raw pointers in constant functions //~^ dereferencing raw pointers in constant functions
const unsafe fn foo30_4(x: *mut usize) -> &'static usize { &*x } //~ ERROR not allowed in const fn const unsafe fn foo30_4(x: *mut usize) -> &'static usize { &*x }
//~^ dereferencing raw pointers in constant functions //~^ dereferencing raw pointers in constant functions
const fn foo30_5(x: *mut usize) -> &'static usize { unsafe { &*x } } //~ ERROR not allowed const fn foo30_5(x: *mut usize) -> &'static usize { unsafe { &*x } } //~ is unsafe
//~^ dereferencing raw pointers in constant functions //~^ dereferencing raw pointers in constant functions
fn main() {} fn main() {}
const unsafe fn no_union() { const unsafe fn no_union() {
union Foo { x: (), y: () } union Foo { x: (), y: () }
Foo { x: () }.y //~ ERROR not allowed in const fn Foo { x: () }.y
//~^ unions in const fn //~^ unions in const fn
} }

81
src/test/ui/consts/min_const_fn/min_const_fn_unsafe_feature_gate.stderr
View File

@ -1,97 +1,44 @@
error[E0658]: dereferencing raw pointers in constant functions is unstable (see issue #51911) error[E0658]: dereferencing raw pointers in constant functions is unstable (see issue #51911)
--> $DIR/min_const_fn_unsafe_feature_gate.rs:47:51 --> $DIR/min_const_fn_unsafe_feature_gate.rs:46:51
| |
LL | const unsafe fn foo30_3(x: *mut usize) -> usize { *x } //~ ERROR not allowed in const fn LL | const unsafe fn foo30_3(x: *mut usize) -> usize { *x }
| ^^ | ^^
| |
= help: add #![feature(const_raw_ptr_deref)] to the crate attributes to enable = help: add #![feature(const_raw_ptr_deref)] to the crate attributes to enable
error[E0658]: dereferencing raw pointers in constant functions is unstable (see issue #51911) error[E0658]: dereferencing raw pointers in constant functions is unstable (see issue #51911)
--> $DIR/min_const_fn_unsafe_feature_gate.rs:50:60 --> $DIR/min_const_fn_unsafe_feature_gate.rs:49:60
| |
LL | const unsafe fn foo30_4(x: *mut usize) -> &'static usize { &*x } //~ ERROR not allowed in const fn LL | const unsafe fn foo30_4(x: *mut usize) -> &'static usize { &*x }
| ^^^ | ^^^
| |
= help: add #![feature(const_raw_ptr_deref)] to the crate attributes to enable = help: add #![feature(const_raw_ptr_deref)] to the crate attributes to enable
error[E0658]: dereferencing raw pointers in constant functions is unstable (see issue #51911) error[E0658]: dereferencing raw pointers in constant functions is unstable (see issue #51911)
--> $DIR/min_const_fn_unsafe_feature_gate.rs:53:62 --> $DIR/min_const_fn_unsafe_feature_gate.rs:52:62
| |
LL | const fn foo30_5(x: *mut usize) -> &'static usize { unsafe { &*x } } //~ ERROR not allowed LL | const fn foo30_5(x: *mut usize) -> &'static usize { unsafe { &*x } } //~ is unsafe
| ^^^ | ^^^
| |
= help: add #![feature(const_raw_ptr_deref)] to the crate attributes to enable = help: add #![feature(const_raw_ptr_deref)] to the crate attributes to enable
error[E0658]: unions in const fn are unstable (see issue #51909) error[E0658]: unions in const fn are unstable (see issue #51909)
--> $DIR/min_const_fn_unsafe_feature_gate.rs:60:5 --> $DIR/min_const_fn_unsafe_feature_gate.rs:59:5
| |
LL | Foo { x: () }.y //~ ERROR not allowed in const fn LL | Foo { x: () }.y
| ^^^^^^^^^^^^^^^ | ^^^^^^^^^^^^^^^
| |
= help: add #![feature(const_fn_union)] to the crate attributes to enable = help: add #![feature(const_fn_union)] to the crate attributes to enable
error: call to unsafe function is unsafe and unsafe operations are not allowed in const fn error[E0133]: dereference of raw pointer is unsafe and requires unsafe function or block
--> $DIR/min_const_fn_unsafe_feature_gate.rs:39:5 --> $DIR/min_const_fn_unsafe_feature_gate.rs:52:62
| |
LL | foo4() //~ ERROR not allowed in const fn LL | const fn foo30_5(x: *mut usize) -> &'static usize { unsafe { &*x } } //~ is unsafe
| ^^^^^^ call to unsafe function
|
= note: consult the function's documentation for information on how to avoid undefined behavior
= note: unsafe action within a `const unsafe fn` still require an `unsafe` block in contrast to regular `unsafe fn`.
error: call to unsafe function is unsafe and unsafe operations are not allowed in const fn
--> $DIR/min_const_fn_unsafe_feature_gate.rs:42:5
|
LL | foo5::<String>() //~ ERROR not allowed in const fn
| ^^^^^^^^^^^^^^^^ call to unsafe function
|
= note: consult the function's documentation for information on how to avoid undefined behavior
= note: unsafe action within a `const unsafe fn` still require an `unsafe` block in contrast to regular `unsafe fn`.
error: call to unsafe function is unsafe and unsafe operations are not allowed in const fn
--> $DIR/min_const_fn_unsafe_feature_gate.rs:45:5
|
LL | foo6::<Vec<std::cell::Cell<u32>>>() //~ ERROR not allowed in const fn
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ call to unsafe function
|
= note: consult the function's documentation for information on how to avoid undefined behavior
= note: unsafe action within a `const unsafe fn` still require an `unsafe` block in contrast to regular `unsafe fn`.
error: dereference of raw pointer is unsafe and unsafe operations are not allowed in const fn
--> $DIR/min_const_fn_unsafe_feature_gate.rs:47:51
|
LL | const unsafe fn foo30_3(x: *mut usize) -> usize { *x } //~ ERROR not allowed in const fn
| ^^ dereference of raw pointer
|
= note: raw pointers may be NULL, dangling or unaligned; they can violate aliasing rules and cause data races: all of these are undefined behavior
= note: unsafe action within a `const unsafe fn` still require an `unsafe` block in contrast to regular `unsafe fn`.
error: dereference of raw pointer is unsafe and unsafe operations are not allowed in const fn
--> $DIR/min_const_fn_unsafe_feature_gate.rs:50:60
|
LL | const unsafe fn foo30_4(x: *mut usize) -> &'static usize { &*x } //~ ERROR not allowed in const fn
| ^^^ dereference of raw pointer
|
= note: raw pointers may be NULL, dangling or unaligned; they can violate aliasing rules and cause data races: all of these are undefined behavior
= note: unsafe action within a `const unsafe fn` still require an `unsafe` block in contrast to regular `unsafe fn`.
error: dereference of raw pointer is unsafe and unsafe operations are not allowed in const fn
--> $DIR/min_const_fn_unsafe_feature_gate.rs:53:62
|
LL | const fn foo30_5(x: *mut usize) -> &'static usize { unsafe { &*x } } //~ ERROR not allowed
| ^^^ dereference of raw pointer | ^^^ dereference of raw pointer
| |
= note: raw pointers may be NULL, dangling or unaligned; they can violate aliasing rules and cause data races: all of these are undefined behavior = note: raw pointers may be NULL, dangling or unaligned; they can violate aliasing rules and cause data races: all of these are undefined behavior
error: access to union field is unsafe and unsafe operations are not allowed in const fn error: aborting due to 5 previous errors
--> $DIR/min_const_fn_unsafe_feature_gate.rs:60:5
|
LL | Foo { x: () }.y //~ ERROR not allowed in const fn
| ^^^^^^^^^^^^^^^ access to union field
|
= note: the field may not be properly initialized: using uninitialized data will cause undefined behavior
= note: unsafe action within a `const unsafe fn` still require an `unsafe` block in contrast to regular `unsafe fn`.
error: aborting due to 11 previous errors Some errors occurred: E0133, E0658.
For more information about an error, try `rustc --explain E0133`.
For more information about this error, try `rustc --explain E0658`.