acid_alloc 0.1.0

Bare-metal allocators
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327

//! Bump allocation.
//!
//! A bump allocator is a simple and fast allocator well-suited to allocating
//! large numbers of objects that will be deallocated en masse. However, a bump
//! allocator cannot free individual objects; all outstanding allocations must
//! be freed in order to reclaim memory.
//!
//! ## Characteristics
//!
//! #### Time complexity
//!
//! | Operation                | Best-case | Worst-case |
//! |--------------------------|-----------|------------|
//! | Allocate                 | O(1)      | O(1)       |
//! | Deallocate all           | O(1)      | O(1)       |
//!
//! #### Fragmentation
//!
//! Because bump allocators can allocate blocks of any size, they suffer minimal internal
//! fragmentation. External fragmentation becomes significant when many deallocations occur
//! without deallocating all outstanding allocations.

use core::fmt;

use crate::{
    core::{
        alloc::{AllocError, Layout},
        num::NonZeroUsize,
        ptr::NonNull,
    },
    AllocInitError, BackingAllocator, BasePtr, Raw,
};

#[cfg(feature = "unstable")]
use crate::core::alloc::Allocator;

#[cfg(not(feature = "unstable"))]
use crate::core::ptr::NonNullStrict;

#[cfg(any(feature = "alloc", test))]
use crate::Global;

/// A bump allocator.
///
/// For a general discussion of bump allocation, see the [module-level documentation].
///
/// [module-level documentation]: crate::bump
pub struct Bump<A: BackingAllocator> {
    base: BasePtr,
    low_mark: NonZeroUsize,
    outstanding: usize,
    layout: Layout,
    backing_allocator: A,
}

impl Bump<Raw> {
    /// Constructs a new `Bump` from a raw pointer.
    ///
    /// # Safety
    ///
    /// The caller must uphold the following invariants:
    /// - `region` must be a pointer to a region that fits `layout`, and it must be valid for reads
    ///   and writes for the entire size indicated by `layout`.
    /// - No references to the memory at `region` may exist when this function is called.
    /// - As long as the returned `Bump` exists, no accesses may be made to the memory at `region`
    ///   except by way of methods on the returned `Bump`.
    pub unsafe fn new_raw(
        region: NonNull<u8>,
        layout: Layout,
    ) -> Result<Bump<Raw>, AllocInitError> {
        unsafe { RawBump::try_new(region, layout).map(|b| b.with_backing_allocator(Raw)) }
    }

    /// Splits the allocator at the low mark.
    ///
    /// Returns a tuple of two `Bump`s. The first manages all of `self`'s
    /// unallocated memory, while the second manages all of `self`'s allocated
    /// memory; all prior allocations from `self` are backed by the second
    /// element.
    // TODO: this API is not finalized. It should not be considered part of the stable public API.
    #[doc(hidden)]
    pub fn split(self) -> (Bump<Raw>, Bump<Raw>) {
        let base_addr = self.base.addr();
        let lower_size = self.low_mark.get().checked_sub(base_addr.get()).unwrap();
        let lower_limit = self.low_mark;
        let lower = Bump {
            base: BasePtr::new(self.base.ptr(), lower_size),
            outstanding: 0,
            low_mark: lower_limit,
            layout: Layout::from_size_align(lower_size, 1).unwrap(),
            backing_allocator: Raw,
        };

        let upper_size = self.layout.size().checked_sub(lower_size).unwrap();
        let new_base = BasePtr::new(self.base.with_addr(self.low_mark), upper_size);
        let upper = Bump {
            base: new_base,
            low_mark: self.low_mark,
            outstanding: self.outstanding,
            // TODO: Alignment may be higher in some cases. Is that useful with Raw?
            layout: Layout::from_size_align(upper_size, 1).unwrap(),
            backing_allocator: Raw,
        };

        (lower, upper)
    }
}

#[cfg(all(any(feature = "alloc", test), not(feature = "unstable")))]
#[cfg_attr(docs_rs, doc(cfg(all(feature = "alloc"))))]
impl Bump<Global> {
    /// Attempts to construct a new `Bump` backed by the global allocator.
    ///
    /// The memory managed by this `Bump` is allocated from the global allocator according to
    /// `layout`.
    ///
    /// # Errors
    ///
    /// Returns an error if any of the following are true:
    /// - `layout.size()` is zero.
    /// - Sufficient memory could not be allocated from the global allocator.
    pub fn try_new(layout: Layout) -> Result<Bump<Global>, AllocInitError> {
        if layout.size() == 0 {
            return Err(AllocInitError::InvalidConfig);
        }

        unsafe {
            let region_raw = alloc::alloc::alloc(layout);
            let region_ptr = NonNull::new(region_raw).ok_or(AllocInitError::AllocFailed(layout))?;

            match RawBump::try_new(region_ptr, layout) {
                Ok(b) => Ok(b.with_backing_allocator(Global)),
                Err(e) => {
                    alloc::alloc::dealloc(region_ptr.as_ptr(), layout);
                    Err(e)
                }
            }
        }
    }
}

#[cfg(all(any(feature = "alloc", test), feature = "unstable"))]
#[cfg_attr(docs_rs, doc(cfg(all(feature = "alloc"))))]
impl Bump<Global> {
    /// Attempts to construct a new `Bump` backed by the global allocator.
    ///
    /// The memory managed by this `Bump` is allocated from the global allocator according to
    /// `layout`.
    ///
    /// # Errors
    ///
    /// Returns an error if sufficient memory could not be allocated from the global allocator.
    pub fn try_new(layout: Layout) -> Result<Bump<Global>, AllocInitError> {
        Self::try_new_in(layout, Global)
    }
}

#[cfg(feature = "unstable")]
#[cfg_attr(docs_rs, doc(cfg(feature = "unstable")))]
impl<A> Bump<A>
where
    A: Allocator,
{
    /// Attempts to construct a new `Bump` backed by `backing_allocator`.
    ///
    /// The memory managed by this `Bump` is allocated from `backing_allocator` according to
    /// `layout`.
    ///
    /// # Errors
    ///
    /// Returns an error if sufficient memory could not be allocated from `backing_allocator`.
    pub fn try_new_in(layout: Layout, backing_allocator: A) -> Result<Bump<A>, AllocInitError> {
        unsafe {
            let region_ptr = backing_allocator
                .allocate(layout)
                .map_err(|_| AllocInitError::AllocFailed(layout))?;

            match RawBump::try_new(region_ptr.cast(), layout) {
                Ok(b) => Ok(b.with_backing_allocator(backing_allocator)),
                Err(e) => {
                    backing_allocator.deallocate(region_ptr.cast(), layout);
                    Err(e)
                }
            }
        }
    }
}

impl<A> Bump<A>
where
    A: BackingAllocator,
{
    /// Attempts to allocate a block of memory according to `layout`.
    ///
    /// # Errors
    ///
    /// Returns `Err` if there is insufficient memory remaining to accommodate
    /// `layout`.
    pub fn allocate(&mut self, layout: Layout) -> Result<NonNull<[u8]>, AllocError> {
        if layout.size() == 0 {
            return Err(AllocError);
        }

        let new_low_unaligned = self
            .low_mark
            .get()
            .checked_sub(layout.size())
            .ok_or(AllocError)?;

        let new_low_mark = new_low_unaligned & !(layout.align() - 1);

        if new_low_mark < self.base.addr().get() {
            return Err(AllocError);
        }

        self.outstanding += 1;

        // SAFETY: new_low_mark >= base, which is non-null
        self.low_mark = unsafe { NonZeroUsize::new_unchecked(new_low_mark) };

        Ok(self.base.with_addr_and_size(self.low_mark, layout.size()))
    }

    /// Deallocates a block of memory.
    ///
    /// This operation does not increase the amount of available memory unless
    /// `ptr` is the last outstanding allocation from this allocator.
    ///
    /// # Safety
    ///
    /// `ptr` must denote a block of memory [*currently allocated*] via this allocator.
    ///
    /// [*currently allocated*]: https://doc.rust-lang.org/nightly/alloc/alloc/trait.Allocator.html#currently-allocated-memory
    pub unsafe fn deallocate(&mut self, ptr: NonNull<u8>) {
        let _ = ptr;

        self.outstanding = self.outstanding.checked_sub(1).unwrap();

        if self.outstanding == 0 {
            // Reset the allocator.
            self.low_mark = self.base.limit();
        }
    }

    /// Resets the bump allocator.
    ///
    /// This method invalidates all outstanding allocations from this allocator.
    /// The destructors of allocated objects will not be run.
    ///
    /// # Safety
    ///
    /// The caller must uphold the following invariants:
    /// - No references to memory allocated by this `Bump` may exist when the method is called.
    /// - Any pointers to memory previously allocated by this allocator may no longer be
    ///   dereferenced or passed to [`Bump::deallocate()`].
    ///
    /// [`Bump::deallocate()`]: Bump::deallocate
    pub unsafe fn reset(&mut self) {
        self.low_mark = self.base.limit();
    }
}

impl<A> Drop for Bump<A>
where
    A: BackingAllocator,
{
    fn drop(&mut self) {
        unsafe {
            self.backing_allocator
                .deallocate(self.base.ptr(), self.layout)
        };
    }
}

impl<A> fmt::Debug for Bump<A>
where
    A: BackingAllocator,
{
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        f.debug_struct("Bump")
            .field("base", &self.base)
            .field("low_mark", &self.low_mark)
            .finish()
    }
}

struct RawBump {
    base: BasePtr,
    limit: NonZeroUsize,
    layout: Layout,
}

impl RawBump {
    fn with_backing_allocator<A: BackingAllocator>(self, backing_allocator: A) -> Bump<A> {
        Bump {
            base: self.base,
            low_mark: self.limit,
            outstanding: 0,
            layout: self.layout,
            backing_allocator,
        }
    }

    unsafe fn try_new(region: NonNull<u8>, layout: Layout) -> Result<RawBump, AllocInitError> {
        // Verify that the base pointer matches the layout.
        let addr = region.addr().get();
        if addr & !(layout.align() - 1) != addr {
            return Err(AllocInitError::InvalidConfig);
        }

        let base = BasePtr::new(region, layout.size());
        let limit = NonZeroUsize::new(
            region
                .addr()
                .get()
                .checked_add(layout.size())
                .ok_or(AllocInitError::InvalidLocation)?,
        )
        .unwrap();

        Ok(RawBump {
            base,
            limit,
            layout,
        })
    }
}