agb_save 0.23.1

Library for managing saves. Designed for use with the agb library for the Game Boy Advance.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387

extern crate std;

use std::vec::Vec;

use crate::{StorageInfo, StorageMedium};

/// A test implementation of [`StorageMedium`] backed by an in-memory buffer.
///
/// This implementation includes assertions to validate that all operations
/// respect the alignment and size requirements specified in [`StorageInfo`].
pub struct TestStorage {
    data: Vec<u8>,
    info: StorageInfo,
    /// Tracks which regions have been erased (for media that require erase before write).
    /// Each bit represents one erase_size block: 1 = erased, 0 = not erased.
    erased_blocks: Vec<bool>,
    /// Number of writes performed so far.
    write_count: usize,
    /// If set, writes will fail after this many successful writes.
    fail_after_writes: Option<usize>,
}

/// Errors that can occur in [`TestStorage`].
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum TestStorageError {
    /// Attempted to read/write/erase out of bounds.
    OutOfBounds,
    /// Attempted to write to a region that hasn't been erased.
    NotErased,
    /// Simulated write failure for testing crash scenarios.
    SimulatedFailure,
}

impl TestStorage {
    /// Create a new test storage with the given configuration.
    ///
    /// The storage is initialized to all 0xFF bytes (typical for flash memory).
    pub fn new(info: StorageInfo) -> Self {
        let data = std::vec![0xFF; info.size];

        // Calculate number of erase blocks (if erase is required)
        let num_erase_blocks = if let Some(erase_size) = info.erase_size {
            info.size.div_ceil(erase_size.get())
        } else {
            0
        };

        Self {
            data,
            info,
            // Start with all blocks NOT erased (realistic behaviour)
            erased_blocks: std::vec![false; num_erase_blocks],
            write_count: 0,
            fail_after_writes: None,
        }
    }

    /// Create a new test storage that simulates byte-addressable SRAM.
    ///
    /// No erase required, single-byte writes allowed.
    pub fn new_sram(size: usize) -> Self {
        use core::num::NonZeroUsize;
        Self::new(StorageInfo {
            size,
            erase_size: None,
            write_size: NonZeroUsize::new(1).unwrap(),
        })
    }

    /// Create a new test storage that simulates flash memory.
    ///
    /// Requires erase before write, with configurable block sizes.
    pub fn new_flash(size: usize, erase_size: usize, write_size: usize) -> Self {
        use core::num::NonZeroUsize;
        Self::new(StorageInfo {
            size,
            erase_size: NonZeroUsize::new(erase_size),
            write_size: NonZeroUsize::new(write_size).unwrap(),
        })
    }

    /// Reset all erase tracking, marking all blocks as not erased.
    ///
    /// Useful for testing that code properly erases before writing.
    pub fn reset_erase_state(&mut self) {
        for block in &mut self.erased_blocks {
            *block = false;
        }
    }

    /// Configure the storage to fail writes after a given number of successful writes.
    ///
    /// This is useful for testing crash/failure scenarios during save operations.
    /// Pass `None` to disable simulated failures.
    ///
    /// # Example
    ///
    /// ```ignore
    /// let mut storage = TestStorage::new_sram(1024);
    /// storage.fail_after_writes(2); // Fail on the 3rd write
    /// storage.write(0, &[1]).unwrap(); // OK (write 1)
    /// storage.write(1, &[2]).unwrap(); // OK (write 2)
    /// storage.write(2, &[3]).unwrap_err(); // Fails (write 3)
    /// ```
    pub fn fail_after_writes(&mut self, count: Option<usize>) {
        self.fail_after_writes = count;
        self.write_count = 0;
    }

    /// Returns the number of writes performed since the last reset or creation.
    pub fn write_count(&self) -> usize {
        self.write_count
    }

    /// Get mutable access to the underlying data for test setup.
    #[cfg(test)]
    pub fn data_mut(&mut self) -> &mut [u8] {
        &mut self.data
    }

    fn check_erase_alignment(&self, offset: usize, len: usize) {
        if let Some(erase_size) = self.info.erase_size {
            let erase_size = erase_size.get();
            assert!(
                offset.is_multiple_of(erase_size),
                "erase offset {offset} is not aligned to erase_size {erase_size}"
            );
            assert!(
                len.is_multiple_of(erase_size),
                "erase length {len} is not aligned to erase_size {erase_size}"
            );
        }
    }

    fn check_write_alignment(&self, offset: usize, len: usize) {
        let write_size = self.info.write_size.get();
        assert!(
            offset.is_multiple_of(write_size),
            "write offset {offset} is not aligned to write_size {write_size}"
        );
        assert!(
            len.is_multiple_of(write_size),
            "write length {len} is not aligned to write_size {write_size}"
        );
    }

    fn check_bounds(&self, offset: usize, len: usize) -> Result<(), TestStorageError> {
        if offset.saturating_add(len) > self.info.size {
            return Err(TestStorageError::OutOfBounds);
        }
        Ok(())
    }

    fn check_erased(&self, offset: usize, len: usize) -> Result<(), TestStorageError> {
        if let Some(erase_size) = self.info.erase_size {
            let erase_size = erase_size.get();
            let start_block = offset / erase_size;
            let end_block = (offset + len).div_ceil(erase_size);

            for block in start_block..end_block {
                if !self.erased_blocks.get(block).copied().unwrap_or(false) {
                    return Err(TestStorageError::NotErased);
                }
            }
        }
        Ok(())
    }
}

impl StorageMedium for TestStorage {
    type Error = TestStorageError;

    fn info(&self) -> StorageInfo {
        self.info
    }

    fn read(&mut self, offset: usize, buf: &mut [u8]) -> Result<(), Self::Error> {
        self.check_bounds(offset, buf.len())?;
        buf.copy_from_slice(&self.data[offset..offset + buf.len()]);
        Ok(())
    }

    fn erase(&mut self, offset: usize, len: usize) -> Result<(), Self::Error> {
        // No-op if erase is not required
        if self.info.erase_size.is_none() {
            return Ok(());
        }

        self.check_bounds(offset, len)?;
        self.check_erase_alignment(offset, len);

        // Fill with 0xFF (typical erased state for flash)
        self.data[offset..offset + len].fill(0xFF);

        // Mark blocks as erased
        let erase_size = self.info.erase_size.unwrap().get();
        let start_block = offset / erase_size;
        let end_block = (offset + len) / erase_size;
        for block in start_block..end_block {
            if let Some(erased) = self.erased_blocks.get_mut(block) {
                *erased = true;
            }
        }

        Ok(())
    }

    fn write(&mut self, offset: usize, data: &[u8]) -> Result<(), Self::Error> {
        // Check for simulated failure
        if let Some(limit) = self.fail_after_writes
            && self.write_count >= limit
        {
            return Err(TestStorageError::SimulatedFailure);
        }

        self.check_bounds(offset, data.len())?;
        self.check_write_alignment(offset, data.len());
        self.check_erased(offset, data.len())?;

        self.data[offset..offset + data.len()].copy_from_slice(data);

        // Mark affected blocks as no longer erased (written to)
        if let Some(erase_size) = self.info.erase_size {
            let erase_size = erase_size.get();
            let start_block = offset / erase_size;
            let end_block = (offset + data.len()).div_ceil(erase_size);
            for block in start_block..end_block {
                if let Some(erased) = self.erased_blocks.get_mut(block) {
                    *erased = false;
                }
            }
        }

        self.write_count += 1;
        Ok(())
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn sram_read_write() {
        let mut storage = TestStorage::new_sram(1024);

        // Write some data
        storage.write(0, &[1, 2, 3, 4]).unwrap();
        storage.write(100, &[5, 6, 7, 8]).unwrap();

        // Read it back
        let mut buf = [0u8; 4];
        storage.read(0, &mut buf).unwrap();
        assert_eq!(buf, [1, 2, 3, 4]);

        storage.read(100, &mut buf).unwrap();
        assert_eq!(buf, [5, 6, 7, 8]);
    }

    #[test]
    fn sram_out_of_bounds() {
        let mut storage = TestStorage::new_sram(100);

        // Write at the end - should succeed
        storage.write(96, &[1, 2, 3, 4]).unwrap();

        // Write past the end - should fail
        let result = storage.write(97, &[1, 2, 3, 4]);
        assert_eq!(result, Err(TestStorageError::OutOfBounds));

        // Read past the end - should fail
        let mut buf = [0u8; 4];
        let result = storage.read(97, &mut buf);
        assert_eq!(result, Err(TestStorageError::OutOfBounds));
    }

    #[test]
    fn flash_requires_erase() {
        let mut storage = TestStorage::new_flash(1024, 256, 4);
        storage.reset_erase_state();

        // Writing without erase should fail
        let result = storage.write(0, &[1, 2, 3, 4]);
        assert_eq!(result, Err(TestStorageError::NotErased));

        // Erase first, then write should succeed
        storage.erase(0, 256).unwrap();
        storage.write(0, &[1, 2, 3, 4]).unwrap();

        // Read it back
        let mut buf = [0u8; 4];
        storage.read(0, &mut buf).unwrap();
        assert_eq!(buf, [1, 2, 3, 4]);
    }

    #[test]
    #[should_panic(expected = "erase offset")]
    fn flash_erase_alignment_offset() {
        let mut storage = TestStorage::new_flash(1024, 256, 4);
        // Misaligned erase offset should panic
        let _ = storage.erase(100, 256);
    }

    #[test]
    #[should_panic(expected = "erase length")]
    fn flash_erase_alignment_length() {
        let mut storage = TestStorage::new_flash(1024, 256, 4);
        // Misaligned erase length should panic
        let _ = storage.erase(0, 100);
    }

    #[test]
    #[should_panic(expected = "write offset")]
    fn flash_write_alignment_offset() {
        let mut storage = TestStorage::new_flash(1024, 256, 4);
        storage.erase(0, 256).unwrap();
        // Misaligned write offset should panic
        let _ = storage.write(1, &[1, 2, 3, 4]);
    }

    #[test]
    #[should_panic(expected = "write length")]
    fn flash_write_alignment_length() {
        let mut storage = TestStorage::new_flash(1024, 256, 4);
        storage.erase(0, 256).unwrap();
        // Misaligned write length should panic
        let _ = storage.write(0, &[1, 2, 3]);
    }

    #[test]
    fn flash_erase_fills_with_ff() {
        let mut storage = TestStorage::new_flash(1024, 256, 4);

        // Erase first, then write some data
        storage.erase(0, 256).unwrap();
        storage.write(0, &[1, 2, 3, 4]).unwrap();

        // Erase the block again
        storage.erase(0, 256).unwrap();

        // Verify it's filled with 0xFF
        let mut buf = [0u8; 4];
        storage.read(0, &mut buf).unwrap();
        assert_eq!(buf, [0xFF, 0xFF, 0xFF, 0xFF]);
    }

    #[test]
    fn flash_write_after_write_fails() {
        let mut storage = TestStorage::new_flash(1024, 256, 4);

        // Erase first, then write
        storage.erase(0, 256).unwrap();
        storage.write(0, &[1, 2, 3, 4]).unwrap();

        // Second write to same block should fail (block no longer erased)
        let result = storage.write(4, &[5, 6, 7, 8]);
        assert_eq!(result, Err(TestStorageError::NotErased));

        // Re-erase and try again
        storage.erase(0, 256).unwrap();
        storage.write(4, &[5, 6, 7, 8]).unwrap();
    }

    #[test]
    fn simulated_write_failure() {
        let mut storage = TestStorage::new_sram(1024);

        // Configure to fail after 2 writes
        storage.fail_after_writes(Some(2));

        // First two writes succeed
        storage.write(0, &[1]).unwrap();
        assert_eq!(storage.write_count(), 1);

        storage.write(1, &[2]).unwrap();
        assert_eq!(storage.write_count(), 2);

        // Third write fails
        let result = storage.write(2, &[3]);
        assert_eq!(result, Err(TestStorageError::SimulatedFailure));
        assert_eq!(storage.write_count(), 2); // Count doesn't increase on failure

        // Disable failure and writes work again
        storage.fail_after_writes(None);
        storage.write(2, &[3]).unwrap();
    }
}